diff --git a/.github/workflows/techdocs.yml b/.github/workflows/techdocs.yml
new file mode 100644
index 0000000..c965ba9
--- /dev/null
+++ b/.github/workflows/techdocs.yml
@@ -0,0 +1,126 @@
+name: TechDocs
+
+# Keeps the Backstage TechDocs corpus in sync with the GitHub docs.
+#
+# How the sync works end to end:
+#   1. catalog-info.yaml registers skill-pool in Backstage; the System carries
+#      `backstage.io/techdocs-ref: dir:.`, so Backstage builds TechDocs from
+#      ./mkdocs.yml on its own refresh schedule (builder: local) — no push
+#      needed from here.
+#   2. docs/index.md is generated from README.md by scripts/sync-techdocs.py so
+#      the GitHub landing page and the TechDocs home never drift.
+#   3. This workflow guarantees `main` always holds a buildable, in-sync docs
+#      tree (PR gate below), and can optionally pre-publish a built site to a
+#      TechDocs external storage bucket when one is configured.
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - 'docs/**'
+      - 'mkdocs.yml'
+      - 'README.md'
+      - 'openapi.yaml'
+      - 'catalog-info.yaml'
+      - 'scripts/sync-techdocs.py'
+      - '.github/workflows/techdocs.yml'
+  pull_request:
+    branches: [main]
+    paths:
+      - 'docs/**'
+      - 'mkdocs.yml'
+      - 'README.md'
+      - 'openapi.yaml'
+      - 'catalog-info.yaml'
+      - 'scripts/sync-techdocs.py'
+      - '.github/workflows/techdocs.yml'
+  workflow_dispatch:
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+permissions:
+  contents: read
+
+jobs:
+  # ---------------------------------------------------------------------------
+  # Validate: README↔index sync + a real mkdocs build. Runs on PRs and main.
+  # No cloud credentials required.
+  # ---------------------------------------------------------------------------
+  build:
+    name: Build TechDocs
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '3.12'
+
+      - name: Install TechDocs MkDocs toolchain
+        run: pip install --disable-pip-version-check mkdocs-techdocs-core
+
+      - name: Verify docs/index.md is in sync with README.md
+        run: python3 scripts/sync-techdocs.py --check
+
+      - name: Build TechDocs site
+        run: mkdocs build --site-dir techdocs-site
+
+      - name: Upload built site
+        uses: actions/upload-artifact@v4
+        with:
+          name: techdocs-site
+          path: techdocs-site
+          retention-days: 14
+
+  # ---------------------------------------------------------------------------
+  # Publish: only on main, and only when an external TechDocs publisher is
+  # configured (set repo variable TECHDOCS_PUBLISH=true and the AWS bits below).
+  # A no-op otherwise — Backstage's local builder already serves from the repo.
+  # ---------------------------------------------------------------------------
+  publish:
+    name: Publish to TechDocs storage
+    needs: build
+    if: github.ref == 'refs/heads/main' && github.event_name != 'pull_request' && vars.TECHDOCS_PUBLISH == 'true'
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+    permissions:
+      contents: read
+      id-token: write   # for AWS OIDC, mirrors the deploy workflow
+    env:
+      ENTITY_NAMESPACE: default
+      ENTITY_KIND: system
+      ENTITY_NAME: skill-pool
+      TECHDOCS_S3_BUCKET_NAME: ${{ vars.TECHDOCS_S3_BUCKET_NAME }}
+      AWS_REGION: ${{ vars.AWS_REGION }}
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '3.12'
+
+      - uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+
+      - name: Install toolchains
+        run: |
+          pip install --disable-pip-version-check mkdocs-techdocs-core
+          npm install -g @techdocs/cli
+
+      - name: Configure AWS credentials (OIDC)
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          role-to-assume: ${{ vars.TECHDOCS_PUBLISH_ROLE_ARN }}
+          aws-region: ${{ env.AWS_REGION }}
+
+      - name: Generate + publish TechDocs
+        run: |
+          techdocs-cli generate --no-docker --verbose
+          techdocs-cli publish \
+            --publisher-type awsS3 \
+            --storage-name "$TECHDOCS_S3_BUCKET_NAME" \
+            --entity "$ENTITY_NAMESPACE/$ENTITY_KIND/$ENTITY_NAME"
diff --git a/README.md b/README.md
index 51fc882..df55e2f 100644
--- a/README.md
+++ b/README.md
@@ -186,6 +186,19 @@ Full subcommand list: `init`, `login`, `ensure`, `add` / `add-agent` / `add-comm
 - **[`docs/lifecycle.md`](docs/lifecycle.md)** — embeddings, dependency resolution, decay
 - **[`docs/tenancy.md`](docs/tenancy.md)** · **[`docs/sso.md`](docs/sso.md)** · **[`docs/scim.md`](docs/scim.md)** · **[`docs/theming.md`](docs/theming.md)** · **[`docs/enterprise.md`](docs/enterprise.md)**
 
+### Backstage
+
+This repo is annotated for [Backstage](https://backstage.io/): the Software
+Catalog descriptor lives in [`catalog-info.yaml`](catalog-info.yaml) (a
+`skill-pool` System with the server/web/cli Components, the REST `API`, and the
+db/object-store/cache Resources), and the full `docs/` tree is published as
+[TechDocs](https://backstage.io/docs/features/techdocs/) via
+[`mkdocs.yml`](mkdocs.yml). The TechDocs home is generated from this README by
+[`scripts/sync-techdocs.py`](scripts/sync-techdocs.py), and the
+[`TechDocs` workflow](.github/workflows/techdocs.yml) keeps the two in sync on
+every push. See [`docs/backstage.md`](docs/backstage.md) for the catalog model
+and sync details.
+
 ## Bundled demo content
 
 This portal ships ready to seed with 120+ curated skills, agents, and commands from [borghei/Claude-Skills](https://github.com/borghei/Claude-Skills) (License: MIT + Commons Clause — attribution preserved in each item's frontmatter). The set spans `code-reviewer`, `design-auditor`, `api-design-reviewer`, `rag-architect`, `ci-cd-pipeline-builder`, `terraform-patterns`, and dozens more. See the [Bundled Skills page](./docs/wiki/Bundled-Skills.md) for the full list.
diff --git a/catalog-info.yaml b/catalog-info.yaml
index c31638c..1ec6d78 100644
--- a/catalog-info.yaml
+++ b/catalog-info.yaml
@@ -1,17 +1,162 @@
-# Auto-generated by olafkfreund/backstage catalog-onboard workflow.
-# Hand-edit at will — the bot only fires for repos that lack this
-# file entirely.
+# Backstage Software Catalog descriptor for skill-pool.
+# Registered as a Location pointing at this file on the default branch; the
+# Backstage GitHub provider re-reads it on a schedule. TechDocs are built from
+# ./mkdocs.yml (see the System entity's backstage.io/techdocs-ref annotation).
 apiVersion: backstage.io/v1alpha1
-kind: Component
+kind: System
 metadata:
-  name: skill_pool
-  description: "Self-hosted Claude Code skill/agent/command registry for teams — CLI, web UI, auto-bootstrap, retrospective capture."
+  name: skill-pool
+  title: skill-pool
+  description: Self-hosted, multi-tenant Claude Code skill/agent/command/plugin registry for teams.
   annotations:
+    github.com/project-slug: olafkfreund/skill_pool
     backstage.io/techdocs-ref: dir:.
+    backstage.io/source-location: url:https://github.com/olafkfreund/skill_pool/tree/main/
+  links:
+    - url: https://github.com/olafkfreund/skill_pool
+      title: Repository
+      icon: github
+    - url: https://github.com/olafkfreund/skill_pool/tree/main/docs/wiki
+      title: Wiki
+      icon: docs
+  tags:
+    - rust
+    - claude-code
+    - registry
+    - multi-tenant
+spec:
+  owner: group:default/olafkfreund
+  domain: public
+
+---
+apiVersion: backstage.io/v1alpha1
+kind: Component
+metadata:
+  name: skill-pool-server
+  title: skill-pool server
+  description: Rust + Axum API server — REST surface, MCP JSON-RPC transport, plugin git endpoints, and the retrospective-capture daemon.
+  annotations:
     github.com/project-slug: olafkfreund/skill_pool
-  tags: []
+    backstage.io/techdocs-ref: dir:.
+    backstage.io/source-location: url:https://github.com/olafkfreund/skill_pool/tree/main/server/
+  tags:
+    - rust
+    - axum
+    - sqlx
+    - tokio
 spec:
   type: service
   lifecycle: production
-  owner: olafkfreund
-  domain: public
+  owner: group:default/olafkfreund
+  system: skill-pool
+  providesApis:
+    - skill-pool-api
+  dependsOn:
+    - resource:default/skill-pool-db
+    - resource:default/skill-pool-object-store
+    - resource:default/skill-pool-cache
+
+---
+apiVersion: backstage.io/v1alpha1
+kind: Component
+metadata:
+  name: skill-pool-web
+  title: skill-pool web portal
+  description: SvelteKit 2 + Svelte 5 web portal — catalog browse, Monaco editor, version history, drafts inbox, per-tenant theming, RBAC.
+  annotations:
+    github.com/project-slug: olafkfreund/skill_pool
+    backstage.io/source-location: url:https://github.com/olafkfreund/skill_pool/tree/main/web/
+  tags:
+    - sveltekit
+    - svelte
+    - tailwindcss
+    - typescript
+spec:
+  type: website
+  lifecycle: production
+  owner: group:default/olafkfreund
+  system: skill-pool
+  consumesApis:
+    - skill-pool-api
+
+---
+apiVersion: backstage.io/v1alpha1
+kind: Component
+metadata:
+  name: skill-pool-cli
+  title: skill-pool CLI
+  description: Rust CLI (clap + reqwest) — detect/bootstrap, publish/install, capture, doctor, direnv + Claude Code hook installation.
+  annotations:
+    github.com/project-slug: olafkfreund/skill_pool
+    backstage.io/source-location: url:https://github.com/olafkfreund/skill_pool/tree/main/cli/
+  tags:
+    - rust
+    - clap
+    - cli
+spec:
+  type: library
+  lifecycle: production
+  owner: group:default/olafkfreund
+  system: skill-pool
+  consumesApis:
+    - skill-pool-api
+
+---
+apiVersion: backstage.io/v1alpha1
+kind: API
+metadata:
+  name: skill-pool-api
+  title: skill-pool REST API
+  description: Tenant-scoped REST + MCP + plugin-marketplace/git surface served by the skill-pool server.
+  annotations:
+    github.com/project-slug: olafkfreund/skill_pool
+    backstage.io/source-location: url:https://github.com/olafkfreund/skill_pool/tree/main/openapi.yaml
+  tags:
+    - rest
+    - openapi
+spec:
+  type: openapi
+  lifecycle: production
+  owner: group:default/olafkfreund
+  system: skill-pool
+  definition:
+    $text: ./openapi.yaml
+
+---
+apiVersion: backstage.io/v1alpha1
+kind: Resource
+metadata:
+  name: skill-pool-db
+  title: skill-pool database
+  description: Postgres 17 + pgvector 0.7 — catalog rows, tenancy, audit log, usage events, and description embeddings.
+spec:
+  type: database
+  lifecycle: production
+  owner: group:default/olafkfreund
+  system: skill-pool
+
+---
+apiVersion: backstage.io/v1alpha1
+kind: Resource
+metadata:
+  name: skill-pool-object-store
+  title: skill-pool object storage
+  description: opendal-backed bundle storage — S3 / GCS / Azure Blob / MinIO / filesystem from one DSN-style config.
+spec:
+  type: object-storage
+  lifecycle: production
+  owner: group:default/olafkfreund
+  system: skill-pool
+
+---
+apiVersion: backstage.io/v1alpha1
+kind: Resource
+metadata:
+  name: skill-pool-cache
+  title: skill-pool queue + cache
+  description: Optional Redis — async job queue with DLQ and read-through auth/marketplace cache. Fail-open; server stays up if Redis is down.
+spec:
+  type: cache
+  lifecycle: production
+  owner: group:default/olafkfreund
+  system: skill-pool
diff --git a/docs/backstage.md b/docs/backstage.md
new file mode 100644
index 0000000..3d26ebb
--- /dev/null
+++ b/docs/backstage.md
@@ -0,0 +1,66 @@
+# Backstage integration
+
+skill-pool is registered in the [Backstage](https://backstage.io/) Software
+Catalog and ships its documentation as [TechDocs](https://backstage.io/docs/features/techdocs/)
+built straight from this repository. This page describes the catalog model and
+how the docs stay in sync.
+
+## Catalog model
+
+The catalog descriptor lives at [`catalog-info.yaml`](https://github.com/olafkfreund/skill_pool/blob/main/catalog-info.yaml)
+in the repo root. It declares one `System` and the entities that make it up:
+
+| Entity | Kind | Notes |
+| --- | --- | --- |
+| `skill-pool` | System | Umbrella; owns the TechDocs (`backstage.io/techdocs-ref: dir:.`), domain `public`. |
+| `skill-pool-server` | Component (`service`) | Rust + Axum API; **provides** `skill-pool-api`; **depends on** the db, object store, and cache. |
+| `skill-pool-web` | Component (`website`) | SvelteKit portal; **consumes** `skill-pool-api`. |
+| `skill-pool-cli` | Component (`library`) | Rust CLI; **consumes** `skill-pool-api`. |
+| `skill-pool-api` | API (`openapi`) | Definition tracked in [`openapi.yaml`](https://github.com/olafkfreund/skill_pool/blob/main/openapi.yaml). |
+| `skill-pool-db` | Resource (`database`) | Postgres 17 + pgvector. |
+| `skill-pool-object-store` | Resource (`object-storage`) | opendal bundle storage (S3/GCS/Azure/MinIO/fs). |
+| `skill-pool-cache` | Resource (`cache`) | Optional Redis queue + cache. |
+
+All entities are owned by `group:default/olafkfreund` and grouped under the
+`skill-pool` system, so Backstage renders the full provides/consumes/depends-on
+graph on the system page.
+
+## How docs stay in sync
+
+There are three moving parts, and together they make the sync hands-off:
+
+1. **Registration + local builder.** Once `catalog-info.yaml` is registered as a
+   Location, Backstage re-reads it on a schedule. Because the System carries
+   `backstage.io/techdocs-ref: dir:.`, the TechDocs *local builder* rebuilds the
+   site from [`mkdocs.yml`](https://github.com/olafkfreund/skill_pool/blob/main/mkdocs.yml)
+   on `main` — no push from CI required.
+
+2. **README → TechDocs home.** `README.md` is the single source of truth for the
+   project overview. [`scripts/sync-techdocs.py`](https://github.com/olafkfreund/skill_pool/blob/main/scripts/sync-techdocs.py)
+   regenerates `docs/index.md` from it, rewriting links for the TechDocs context
+   (repo-relative `docs/...` links are stripped; links to code outside `docs/`
+   become absolute GitHub URLs). Run it after editing the README:
+
+   ```bash
+   python3 scripts/sync-techdocs.py          # regenerate docs/index.md
+   python3 scripts/sync-techdocs.py --check  # CI gate: fail if drifted
+   ```
+
+3. **CI gate + optional publish.** The
+   [`TechDocs` workflow](https://github.com/olafkfreund/skill_pool/blob/main/.github/workflows/techdocs.yml)
+   runs on every PR and on `main`: it checks the README↔index sync and does a
+   real `mkdocs build`, so broken docs never reach `main`. An optional
+   `publish` job pushes a pre-built site to an external TechDocs bucket (AWS S3)
+   when the repo variable `TECHDOCS_PUBLISH=true` and the publisher settings are
+   present; otherwise Backstage's local builder serves the docs directly.
+
+## Building the docs locally
+
+```bash
+python3 -m venv .venv && . .venv/bin/activate
+pip install mkdocs-techdocs-core
+mkdocs serve          # live preview on http://127.0.0.1:8000
+mkdocs build          # one-shot build into ./site
+```
+
+This mirrors exactly what the Backstage TechDocs builder runs.
diff --git a/docs/index.md b/docs/index.md
index 0c2d80b..4abc45e 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -1,5 +1,4 @@
-<!-- This page is seeded from README.md. Edit either file;
-     they diverge by design after the initial onboarding. -->
+<!-- DO NOT EDIT. Generated from README.md by scripts/sync-techdocs.py. Edit README.md and re-run the script (CI does this on every push). -->
 
 # skill-pool
 
@@ -12,7 +11,7 @@
 [![Postgres 17 + pgvector](https://img.shields.io/badge/db-Postgres%2017%20%2B%20pgvector-336791?logo=postgresql&logoColor=white)](https://www.postgresql.org/)
 [![Claude Code compatible](https://img.shields.io/badge/Claude%20Code-compatible-7c5cff)](https://docs.claude.com/en/docs/claude-code)
 
-![skill-pool hero](docs/images/hero.webp)
+![skill-pool hero](images/hero.webp)
 
 ## What is this?
 
@@ -24,25 +23,25 @@ The trick: **retrospective capture**. When Claude finishes a non-trivial fix in
 
 ## Demo
 
-<video src="docs/demo.webm" controls width="800" loop muted playsinline>
+<video src="demo.webm" controls width="800" loop muted playsinline>
   Your browser does not render WebM inline. See the GIF fallback below.
 </video>
 
-![demo (gif fallback)](docs/demo.gif)
+![demo (gif fallback)](demo.gif)
 
 A 90-second walkthrough in three acts: (1) `init --project` + `login` + `bootstrap` (project-aware install), (2) `project list` + `project show` + `plan show` (browse the curated bundle + its plan), (3) `plan import` + `plan history` + `doctor` (import an updated plan and verify state).
 
-> **Onboarding showcase** — for a two-half walkthrough that pairs CLI onboarding with the curator-side portal view of the same project, see [`docs/demo/`](docs/demo/). One command (`./scripts/record-onboarding-demo.sh`) re-records both halves deterministically.
+> **Onboarding showcase** — for a two-half walkthrough that pairs CLI onboarding with the curator-side portal view of the same project, see [`docs/demo/`](demo/README.md). One command (`./scripts/record-onboarding-demo.sh`) re-records both halves deterministically.
 
 ## Screenshots
 
 | Skill detail | Editor | Drafts inbox |
 | :---: | :---: | :---: |
-| ![skill detail](docs/images/skill-detail.webp) | ![Monaco editor](docs/images/editor.webp) | ![drafts](docs/images/drafts.webp) |
+| ![skill detail](images/skill-detail.webp) | ![Monaco editor](images/editor.webp) | ![drafts](images/drafts.webp) |
 | Per-tenant theme | OIDC SSO | Members & roles |
-| ![theme](docs/images/theme.webp) | ![SSO](docs/images/sso.webp) | ![members](docs/images/members.webp) |
+| ![theme](images/theme.webp) | ![SSO](images/sso.webp) | ![members](images/members.webp) |
 
-The full 76-skill catalog grid is also available: [`docs/images/catalog.webp`](docs/images/catalog.webp). Custom-domain ACME flow: [`docs/images/domain.webp`](docs/images/domain.webp). Decay candidates: [`docs/images/graveyard.webp`](docs/images/graveyard.webp).
+The full 76-skill catalog grid is also available: [`docs/images/catalog.webp`](images/catalog.webp). Custom-domain ACME flow: [`docs/images/domain.webp`](images/domain.webp). Decay candidates: [`docs/images/graveyard.webp`](images/graveyard.webp).
 
 ## Features
 
@@ -132,11 +131,11 @@ docker compose -f server/compose.yaml up -d
 
 | Surface | Where it lives |
 | --- | --- |
-| Single-node (systemd + Caddy) | [`docs/deploy/single-node.md`](docs/deploy/single-node.md) |
-| NixOS module | [`docs/deploy/nixos.md`](docs/deploy/nixos.md) |
-| Kubernetes (Helm chart) | [`deploy/helm/skill-pool/`](deploy/helm/skill-pool/) · [`docs/deploy/kubernetes.md`](docs/deploy/kubernetes.md) |
-| AWS (EKS + RDS + ElastiCache + S3 + ACM, IAM-IRSA, GH OIDC) | [`deploy/terraform/aws/`](deploy/terraform/aws/) · [`docs/deploy/aws.md`](docs/deploy/aws.md) |
-| GitHub Actions (CI, build to ECR via OIDC, deploy via Helm) | [`.github/workflows/`](.github/workflows/) · [`docs/deploy/github-actions.md`](docs/deploy/github-actions.md) |
+| Single-node (systemd + Caddy) | [`docs/deploy/single-node.md`](deploy/single-node.md) |
+| NixOS module | [`docs/deploy/nixos.md`](deploy/nixos.md) |
+| Kubernetes (Helm chart) | [`deploy/helm/skill-pool/`](https://github.com/olafkfreund/skill_pool/blob/main/deploy/helm/skill-pool/) · [`docs/deploy/kubernetes.md`](deploy/kubernetes.md) |
+| AWS (EKS + RDS + ElastiCache + S3 + ACM, IAM-IRSA, GH OIDC) | [`deploy/terraform/aws/`](https://github.com/olafkfreund/skill_pool/blob/main/deploy/terraform/aws/) · [`docs/deploy/aws.md`](deploy/aws.md) |
+| GitHub Actions (CI, build to ECR via OIDC, deploy via Helm) | [`.github/workflows/`](https://github.com/olafkfreund/skill_pool/blob/main/.github/workflows/) · [`docs/deploy/github-actions.md`](deploy/github-actions.md) |
 
 ## CLI tour
 
@@ -181,17 +180,30 @@ Full subcommand list: `init`, `login`, `ensure`, `add` / `add-agent` / `add-comm
 
 ## Documentation
 
-- **[Wiki](./docs/wiki/)** — operator and user guides (Architecture, CLI reference, API reference, SSO setup, theming, capture pipeline, lifecycle, MCP integration, decisions log, FAQ, bundled skills)
-- **[`docs/architecture.md`](docs/architecture.md)** — components, data flow, invariants
-- **[`docs/api.md`](docs/api.md)** — REST surface
-- **[`docs/web-ui.md`](docs/web-ui.md)** — portal architecture
-- **[`docs/capture.md`](docs/capture.md)** — Phase 4 retrospective-capture pipeline
-- **[`docs/lifecycle.md`](docs/lifecycle.md)** — embeddings, dependency resolution, decay
-- **[`docs/tenancy.md`](docs/tenancy.md)** · **[`docs/sso.md`](docs/sso.md)** · **[`docs/scim.md`](docs/scim.md)** · **[`docs/theming.md`](docs/theming.md)** · **[`docs/enterprise.md`](docs/enterprise.md)**
+- **[Wiki](wiki/README.md)** — operator and user guides (Architecture, CLI reference, API reference, SSO setup, theming, capture pipeline, lifecycle, MCP integration, decisions log, FAQ, bundled skills)
+- **[`docs/architecture.md`](architecture.md)** — components, data flow, invariants
+- **[`docs/api.md`](api.md)** — REST surface
+- **[`docs/web-ui.md`](web-ui.md)** — portal architecture
+- **[`docs/capture.md`](capture.md)** — Phase 4 retrospective-capture pipeline
+- **[`docs/lifecycle.md`](lifecycle.md)** — embeddings, dependency resolution, decay
+- **[`docs/tenancy.md`](tenancy.md)** · **[`docs/sso.md`](sso.md)** · **[`docs/scim.md`](scim.md)** · **[`docs/theming.md`](theming.md)** · **[`docs/enterprise.md`](enterprise.md)**
+
+### Backstage
+
+This repo is annotated for [Backstage](https://backstage.io/): the Software
+Catalog descriptor lives in [`catalog-info.yaml`](catalog-info.yaml) (a
+`skill-pool` System with the server/web/cli Components, the REST `API`, and the
+db/object-store/cache Resources), and the full `docs/` tree is published as
+[TechDocs](https://backstage.io/docs/features/techdocs/) via
+[`mkdocs.yml`](mkdocs.yml). The TechDocs home is generated from this README by
+[`scripts/sync-techdocs.py`](https://github.com/olafkfreund/skill_pool/blob/main/scripts/sync-techdocs.py), and the
+[`TechDocs` workflow](https://github.com/olafkfreund/skill_pool/blob/main/.github/workflows/techdocs.yml) keeps the two in sync on
+every push. See [`docs/backstage.md`](backstage.md) for the catalog model
+and sync details.
 
 ## Bundled demo content
 
-This portal ships ready to seed with 120+ curated skills, agents, and commands from [borghei/Claude-Skills](https://github.com/borghei/Claude-Skills) (License: MIT + Commons Clause — attribution preserved in each item's frontmatter). The set spans `code-reviewer`, `design-auditor`, `api-design-reviewer`, `rag-architect`, `ci-cd-pipeline-builder`, `terraform-patterns`, and dozens more. See the [Bundled Skills page](./docs/wiki/Bundled-Skills.md) for the full list.
+This portal ships ready to seed with 120+ curated skills, agents, and commands from [borghei/Claude-Skills](https://github.com/borghei/Claude-Skills) (License: MIT + Commons Clause — attribution preserved in each item's frontmatter). The set spans `code-reviewer`, `design-auditor`, `api-design-reviewer`, `rag-architect`, `ci-cd-pipeline-builder`, `terraform-patterns`, and dozens more. See the [Bundled Skills page](wiki/Bundled-Skills.md) for the full list.
 
 ```bash
 ./scripts/seed-demo.sh
@@ -224,7 +236,7 @@ See [all open issues](https://github.com/olafkfreund/skill_pool/issues) for curr
 
 ## Contributing
 
-- Start with [`docs/architecture.md`](docs/architecture.md) for the mental model.
+- Start with [`docs/architecture.md`](architecture.md) for the mental model.
 - Rust changes:
 
   ```bash
diff --git a/mkdocs.yml b/mkdocs.yml
index 224ff3f..8b59aad 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -1,11 +1,96 @@
-# MkDocs config for Backstage TechDocs.
-# Edit at will — Backstage rebuilds on next view.
-# https://backstage.io/docs/features/techdocs/getting-started
-
-site_name: skill_pool
-site_description: Self-hosted Claude Code skill/agent/command registry for teams — CLI, web UI, auto-bootstrap, retrospective capture.
-
+site_name: skill-pool
+site_description: Self-hosted, multi-tenant Claude Code skill/agent/command/plugin registry for teams.
+repo_url: https://github.com/olafkfreund/skill_pool
+edit_uri: blob/main/docs/
 docs_dir: docs
 
+# docs/index.md is generated from README.md by scripts/sync-techdocs.py
+# (run in CI on every push). Edit README.md, not docs/index.md.
+nav:
+  - Home: index.md
+  - Overview:
+      - Backstage integration: backstage.md
+      - Architecture: architecture.md
+      - Web UI: web-ui.md
+      - Tenancy: tenancy.md
+      - Projects: projects.md
+      - Plugins: plugins.md
+      - NixOS / Home Manager: nixos-integration.md
+  - Reference:
+      - HTTP API: api.md
+      - Project manifest: manifest-schema.md
+      - Plugin manifest: plugin-manifest-schema.md
+      - OTLP tracing: otlp.md
+      - Accessibility testing: a11y-testing.md
+  - Pipelines:
+      - Retrospective capture: capture.md
+      - Skill lifecycle: lifecycle.md
+  - Identity:
+      - SSO integration: sso.md
+      - SCIM provisioning: scim.md
+  - Theming: theming.md
+  - Enterprise:
+      - Overview: enterprise.md
+      - Dedicated mode: enterprise/dedicated-mode.md
+      - Shared → dedicated migration: enterprise/migration-shared-to-dedicated.md
+      - Data residency: enterprise/data-residency.md
+      - Custom domains: enterprise/custom-domains.md
+      - Custom CSS: enterprise/custom-css.md
+      - Managed settings: enterprise/managed-settings.md
+      - MDM deployment: enterprise/mdm-deployment.md
+      - Session policy: enterprise/session-policy.md
+      - Rate limits: enterprise/rate-limits.md
+      - Asset CDN: enterprise/asset-cdn.md
+      - Branded CLI banner: enterprise/branded-cli-banner.md
+      - Branded emails: enterprise/branded-emails.md
+      - OG images: enterprise/og-images.md
+  - Deploy:
+      - Single-node: deploy/single-node.md
+      - NixOS: deploy/nixos.md
+      - Kubernetes: deploy/kubernetes.md
+      - AWS: deploy/aws.md
+      - GitHub Actions: deploy/github-actions.md
+      - Bootstrap: bootstrap.md
+  - Operations:
+      - Incident runbook: ops/runbook.md
+      - Capacity planning: ops/capacity.md
+      - Rollback playbook: ops/rollback.md
+  - Examples:
+      - Publish your first skill: examples/publish-your-first-skill.md
+      - Capture an insight: examples/capture-an-insight.md
+      - Wire Claude via MCP: examples/wire-claude-mcp.md
+  - Wiki:
+      - Home: wiki/Home.md
+      - Architecture: wiki/Architecture.md
+      - CLI reference: wiki/CLI-Reference.md
+      - API reference: wiki/API-Reference.md
+      - Multi-tenancy: wiki/Multi-Tenancy.md
+      - Tenant onboarding: wiki/Tenant-Onboarding.md
+      - SSO setup: wiki/SSO-Setup.md
+      - Theming: wiki/Theming.md
+      - Custom domain + ACME: wiki/Custom-Domain-ACME.md
+      - MCP integration: wiki/MCP-Integration.md
+      - Plugin authoring: wiki/Plugin-Authoring.md
+      - Projects: wiki/Projects.md
+      - Bundled skills: wiki/Bundled-Skills.md
+      - Phase 4 — Capture: wiki/Phase-4-Capture.md
+      - Phase 5 — Lifecycle: wiki/Phase-5-Lifecycle.md
+      - Operator guide: wiki/Operator-Guide.md
+      - Decisions log: wiki/Decisions-Log.md
+      - FAQ: wiki/FAQ.md
+
 plugins:
   - techdocs-core
+
+markdown_extensions:
+  - admonition
+  - attr_list
+  - md_in_html
+  - tables
+  - toc:
+      permalink: true
+  - pymdownx.superfences:
+      custom_fences:
+        - name: mermaid
+          class: mermaid
+          format: !!python/name:pymdownx.superfences.fence_code_format
diff --git a/openapi.yaml b/openapi.yaml
new file mode 100644
index 0000000..d3c1ad2
--- /dev/null
+++ b/openapi.yaml
@@ -0,0 +1,504 @@
+openapi: 3.0.3
+info:
+  title: skill-pool API
+  version: "0.1.0"
+  description: |
+    REST surface of the skill-pool server (Rust + Axum) — a self-hosted,
+    multi-tenant registry for Claude Code skills, agents, commands, and plugins.
+
+    Tenancy is resolved per request, either by subdomain
+    (`acme.skill-pool.example.com`) or the `X-Skill-Pool-Tenant: acme` header.
+    All `/v1/*` endpoints except `GET /v1/healthz` require a tenant-scoped
+    bearer token. The plugin marketplace + git endpoints are intentionally
+    public (Claude Code's installer is unauthenticated by design) and
+    rate-limited.
+
+    This document is the catalog-facing summary of the surface described in
+    `docs/api.md`; that doc remains the source of truth for payload detail.
+  license:
+    name: MIT
+  contact:
+    name: skill-pool
+    url: https://github.com/olafkfreund/skill_pool
+servers:
+  - url: https://{tenant}.skill-pool.example.com
+    description: Subdomain-routed tenant
+    variables:
+      tenant:
+        default: acme
+tags:
+  - name: health
+    description: Liveness and dependency status
+  - name: catalog
+    description: Skills, agents, and commands
+  - name: usage
+    description: Usage analytics and lifecycle (admin)
+  - name: plugins
+    description: Claude Code plugin bundles + marketplace
+  - name: mcp
+    description: Model Context Protocol JSON-RPC transport
+components:
+  securitySchemes:
+    bearerAuth:
+      type: http
+      scheme: bearer
+    tenantHeader:
+      type: apiKey
+      in: header
+      name: X-Skill-Pool-Tenant
+  parameters:
+    Kind:
+      name: kind
+      in: query
+      schema:
+        type: string
+        enum: [skill, agent, command]
+        default: skill
+      description: Catalog discriminator. The same table holds all three kinds.
+  schemas:
+    Error:
+      type: object
+      properties:
+        error:
+          type: string
+          enum:
+            - not_found
+            - unauthorized
+            - forbidden
+            - bad_request
+            - tenant_resolution_failed
+            - not_implemented
+            - internal_error
+        message:
+          type: string
+    DepStatus:
+      type: object
+      properties:
+        status:
+          type: string
+          enum: [up, down, off]
+        latency_ms:
+          type: integer
+        error:
+          type: string
+        note:
+          type: string
+    Health:
+      type: object
+      properties:
+        status:
+          type: string
+          enum: [ok, degraded]
+        version:
+          type: string
+        deps:
+          type: object
+          additionalProperties:
+            $ref: '#/components/schemas/DepStatus'
+    Skill:
+      type: object
+      properties:
+        slug:
+          type: string
+        version:
+          type: string
+        description:
+          type: string
+        tags:
+          type: array
+          items:
+            type: string
+        status:
+          type: string
+          enum: [published, archive_candidate, archived]
+        created_at:
+          type: string
+          format: date-time
+        similarity:
+          type: number
+          format: float
+          description: Present only when ?semantic= is set.
+    SkillVersion:
+      type: object
+      properties:
+        version:
+          type: string
+        published_at:
+          type: string
+          format: date-time
+        change_summary:
+          type: string
+        status:
+          type: string
+    DepEdge:
+      type: object
+      properties:
+        slug:
+          type: string
+        version_range:
+          type: string
+        depth:
+          type: integer
+    Plugin:
+      type: object
+      properties:
+        slug:
+          type: string
+        version:
+          type: string
+        name:
+          type: string
+        description:
+          type: string
+        status:
+          type: string
+          enum: [draft, published, archived]
+        sourcing_mode:
+          type: string
+          enum: [internal, external, mirror]
+        manifest:
+          type: object
+          additionalProperties: true
+        contents:
+          type: array
+          items:
+            type: object
+            properties:
+              kind:
+                type: string
+                enum: [skill, agent, command]
+              slug:
+                type: string
+              version:
+                type: string
+              position:
+                type: integer
+        created_at:
+          type: string
+          format: date-time
+        updated_at:
+          type: string
+          format: date-time
+security:
+  - bearerAuth: []
+    tenantHeader: []
+paths:
+  /v1/healthz:
+    get:
+      tags: [health]
+      summary: Liveness + dependency status
+      description: No auth, no tenant. Always returns 200; read deps.db.status to page.
+      security: []
+      responses:
+        '200':
+          description: Health snapshot
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Health'
+  /v1/skills:
+    get:
+      tags: [catalog]
+      summary: List skills (keyword or semantic)
+      parameters:
+        - { name: query, in: query, schema: { type: string }, description: ILIKE substring on slug + description }
+        - { name: tags, in: query, schema: { type: string }, description: CSV; all tags must be present }
+        - { name: limit, in: query, schema: { type: integer, default: 50, minimum: 1, maximum: 200 } }
+        - { name: semantic, in: query, schema: { type: string }, description: Rank by cosine similarity (Phase 5; requires fastembed) }
+        - { name: min_similarity, in: query, schema: { type: number, format: float } }
+        - $ref: '#/components/parameters/Kind'
+      responses:
+        '200':
+          description: Matching catalog rows
+          content:
+            application/json:
+              schema:
+                type: array
+                items:
+                  $ref: '#/components/schemas/Skill'
+        '400':
+          description: semantic requested but no embedder configured
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+    post:
+      tags: [catalog]
+      summary: Publish a skill/agent/command bundle
+      requestBody:
+        required: true
+        content:
+          multipart/form-data:
+            schema:
+              type: object
+              properties:
+                bundle:
+                  type: string
+                  format: binary
+                  description: gzipped tar with SKILL.md at the root
+                metadata:
+                  type: string
+                  description: 'JSON: { slug, version, description, tags[], kind? }'
+      responses:
+        '201':
+          description: Created skill row
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Skill'
+  /v1/skills/validate:
+    post:
+      tags: [catalog]
+      summary: Lint a bundle without persisting
+      responses:
+        '200':
+          description: Validation result
+  /v1/skills/{slug}:
+    get:
+      tags: [catalog]
+      summary: Get one skill
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+        - $ref: '#/components/parameters/Kind'
+      responses:
+        '200':
+          description: Skill detail
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Skill'
+        '404':
+          description: Not found
+  /v1/skills/{slug}/bundle.tar.gz:
+    get:
+      tags: [catalog]
+      summary: Download the published bundle
+      description: 307 redirect to a 5-minute presigned URL (object stores) or 200 gzip bytes (fs). Emits a download event.
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+        - $ref: '#/components/parameters/Kind'
+        - { name: bytes, in: query, schema: { type: boolean }, description: Force the streaming-bytes path }
+      responses:
+        '200':
+          description: gzip bundle
+          content:
+            application/gzip: {}
+        '307':
+          description: Redirect to presigned URL
+  /v1/skills/{slug}/skill-md:
+    get:
+      tags: [catalog]
+      summary: Rendered SKILL.md (emits a view event)
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+      responses:
+        '200':
+          description: SKILL.md text
+          content:
+            text/markdown: {}
+  /v1/skills/{slug}/versions:
+    get:
+      tags: [catalog]
+      summary: Version history (newest-first, capped at 50)
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+        - $ref: '#/components/parameters/Kind'
+      responses:
+        '200':
+          description: Versions
+          content:
+            application/json:
+              schema:
+                type: array
+                items:
+                  $ref: '#/components/schemas/SkillVersion'
+        '404':
+          description: No row for slug
+  /v1/skills/{slug}/deps:
+    get:
+      tags: [catalog]
+      summary: Transitive dependency closure
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+      responses:
+        '200':
+          description: Dependency edges
+          content:
+            application/json:
+              schema:
+                type: array
+                items:
+                  $ref: '#/components/schemas/DepEdge'
+        '404':
+          description: Parent slug has no published version
+  /v1/skills/{slug}/archive:
+    post:
+      tags: [usage]
+      summary: Archive a skill (admin)
+      description: Requires tenant:admin scope. Flips latest published version to archived.
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+      responses:
+        '200':
+          description: '{ slug, version }'
+        '404':
+          description: No published version
+  /v1/tenant/skills/decay:
+    get:
+      tags: [usage]
+      summary: Decay candidates (admin)
+      parameters:
+        - { name: days, in: query, schema: { type: integer, default: 180, maximum: 1825 } }
+        - { name: max_uses, in: query, schema: { type: integer, default: 3 } }
+        - { name: limit, in: query, schema: { type: integer, default: 200, maximum: 1000 } }
+      responses:
+        '200':
+          description: Stale rows, stalest first
+  /v1/tenant/usage/timeline:
+    get:
+      tags: [usage]
+      summary: Daily activity buckets (admin)
+      parameters:
+        - { name: days, in: query, schema: { type: integer, default: 30, minimum: 1, maximum: 365 } }
+      responses:
+        '200':
+          description: Per-day buckets, zero-filled
+  /v1/tenant/usage/top:
+    get:
+      tags: [usage]
+      summary: Top skills in window (admin)
+      parameters:
+        - { name: days, in: query, schema: { type: integer, default: 30, minimum: 1, maximum: 365 } }
+        - { name: limit, in: query, schema: { type: integer, default: 10, minimum: 1, maximum: 100 } }
+      responses:
+        '200':
+          description: Skills sorted by total events desc
+  /v1/mcp:
+    post:
+      tags: [mcp]
+      summary: MCP JSON-RPC 2.0 transport
+      description: 'Methods: initialize, tools/list, tools/call (search_skills, get_skill), ping.'
+      responses:
+        '200':
+          description: JSON-RPC response
+        '401':
+          description: Missing/invalid bearer token
+  /v1/plugins:
+    get:
+      tags: [plugins]
+      summary: List latest published plugin per slug
+      parameters:
+        - { name: tags, in: query, schema: { type: string } }
+        - { name: status, in: query, schema: { type: string, enum: [draft, published, archived], default: published } }
+        - { name: sourcing_mode, in: query, schema: { type: string, enum: [internal, external, mirror] } }
+        - { name: limit, in: query, schema: { type: integer, default: 50, minimum: 1, maximum: 200 } }
+        - { name: cursor, in: query, schema: { type: string } }
+      responses:
+        '200':
+          description: Paginated plugins with keyset cursor
+          content:
+            application/json:
+              schema:
+                type: object
+                properties:
+                  items:
+                    type: array
+                    items:
+                      $ref: '#/components/schemas/Plugin'
+                  next_cursor:
+                    type: string
+    post:
+      tags: [plugins]
+      summary: Publish a plugin version
+      description: Requires skills:publish scope (curator/admin).
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/Plugin'
+      responses:
+        '201':
+          description: Full plugin row
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Plugin'
+        '409':
+          description: (tenant, slug, version) already exists
+        '422':
+          description: Validation failure (field-keyed)
+  /v1/plugins/{slug}:
+    get:
+      tags: [plugins]
+      summary: Latest published version
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+      responses:
+        '200':
+          description: Plugin
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Plugin'
+        '404':
+          description: No published version
+  /v1/plugins/{slug}/versions:
+    get:
+      tags: [plugins]
+      summary: Version history (all statuses, capped at 50)
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+      responses:
+        '200':
+          description: Versions
+  /v1/plugins/{slug}/versions/{version}:
+    delete:
+      tags: [plugins]
+      summary: Soft-archive a single plugin version
+      description: Requires skills:publish scope. Idempotent — 204 first call, 404 thereafter.
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+        - { name: version, in: path, required: true, schema: { type: string } }
+      responses:
+        '204':
+          description: Archived
+        '404':
+          description: Already archived / not found
+  /.claude-plugin/marketplace.json:
+    get:
+      tags: [plugins]
+      summary: Claude Code marketplace (public, rate-limited)
+      security: []
+      responses:
+        '200':
+          description: Marketplace document (ETag + 60s cache)
+        '304':
+          description: Not modified (If-None-Match)
+  /git/plugins/{slug}.git/info/refs:
+    get:
+      tags: [plugins]
+      summary: Smart-HTTP git ref advertisement (public, read-only)
+      security: []
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+        - { name: service, in: query, required: true, schema: { type: string, enum: [git-upload-pack] } }
+      responses:
+        '200':
+          description: x-git-upload-pack-advertisement
+        '400':
+          description: Unsupported service
+        '404':
+          description: Unknown slug or external-mode plugin
+  /git/plugins/{slug}.git/git-upload-pack:
+    post:
+      tags: [plugins]
+      summary: Smart-HTTP git upload-pack (public, read-only)
+      security: []
+      parameters:
+        - { name: slug, in: path, required: true, schema: { type: string } }
+      responses:
+        '200':
+          description: x-git-upload-pack-result
+        '404':
+          description: Unknown slug or external-mode plugin
diff --git a/scripts/sync-techdocs.py b/scripts/sync-techdocs.py
new file mode 100755
index 0000000..3782192
--- /dev/null
+++ b/scripts/sync-techdocs.py
@@ -0,0 +1,116 @@
+#!/usr/bin/env python3
+"""Generate docs/index.md (the Backstage TechDocs landing page) from README.md.
+
+README.md is the single source of truth for the project overview. TechDocs
+serves docs/ as its docs_dir, so the landing page must live *inside* docs/ with
+links rewritten relative to that directory:
+
+  * `docs/...`        -> stripped (docs/ is the TechDocs root)
+  * repo-root dirs    -> absolute GitHub blob URLs (they aren't shipped to TechDocs)
+  * http(s)/#/mailto  -> left untouched
+
+Run locally (or in CI) after editing README.md so the GitHub README and the
+Backstage TechDocs home stay in sync. Idempotent: re-running with an unchanged
+README produces an identical docs/index.md.
+"""
+
+from __future__ import annotations
+
+import re
+import sys
+from pathlib import Path
+
+REPO_ROOT = Path(__file__).resolve().parent.parent
+README = REPO_ROOT / "README.md"
+INDEX = REPO_ROOT / "docs" / "index.md"
+
+GITHUB_BLOB = "https://github.com/olafkfreund/skill_pool/blob/main/"
+
+# Top-level repo directories/files that are NOT part of the TechDocs docs_dir.
+# Links to these must point at GitHub, not at a (non-existent) TechDocs page.
+REPO_PATHS = {
+    "deploy", ".github", "server", "web", "cli", "scripts", "packaging",
+    "nix", "ops", "site", "enterprise", "direnv", "skills", "CHANGELOG.md",
+    "LICENSE", "flake.nix", "Cargo.toml",
+}
+
+GENERATED_BANNER = (
+    "<!-- DO NOT EDIT. Generated from README.md by scripts/sync-techdocs.py. "
+    "Edit README.md and re-run the script (CI does this on every push). -->\n\n"
+)
+
+
+def rewrite_target(target: str) -> str:
+    """Rewrite a single link/image/href target for the TechDocs context."""
+    stripped = target.strip()
+    if stripped.startswith(("http://", "https://", "#", "mailto:", "//")):
+        return target
+
+    # Normalise a leading ./
+    norm = stripped[2:] if stripped.startswith("./") else stripped
+
+    if norm.startswith("docs/"):
+        inner = norm[len("docs/"):]
+        # A bare directory link (e.g. "docs/wiki/") has no TechDocs page; point
+        # it at the directory's README.md/index.md when one exists.
+        if inner.endswith("/"):
+            for candidate in ("README.md", "index.md"):
+                if (REPO_ROOT / "docs" / inner / candidate).exists():
+                    return inner + candidate
+        return inner
+
+    first = norm.split("/", 1)[0].split("#", 1)[0]
+    if first in REPO_PATHS:
+        return GITHUB_BLOB + norm
+
+    return target
+
+
+# Markdown: ](target)  and  ](target "title")
+_MD_LINK = re.compile(r"(\]\()([^)\s]+)(\s+\"[^\"]*\")?(\))")
+# HTML: src="target" / href="target" / src='target' / href='target'
+_HTML_ATTR = re.compile(r"((?:src|href)=)([\"'])([^\"']+)([\"'])")
+
+
+def rewrite(markdown: str) -> str:
+    def md_sub(m: re.Match) -> str:
+        return f"{m.group(1)}{rewrite_target(m.group(2))}{m.group(3) or ''}{m.group(4)}"
+
+    def html_sub(m: re.Match) -> str:
+        return f"{m.group(1)}{m.group(2)}{rewrite_target(m.group(3))}{m.group(4)}"
+
+    out = _MD_LINK.sub(md_sub, markdown)
+    out = _HTML_ATTR.sub(html_sub, out)
+    return out
+
+
+def main() -> int:
+    if not README.exists():
+        print(f"error: {README} not found", file=sys.stderr)
+        return 1
+
+    content = README.read_text(encoding="utf-8")
+    rendered = GENERATED_BANNER + rewrite(content)
+
+    check = "--check" in sys.argv
+    current = INDEX.read_text(encoding="utf-8") if INDEX.exists() else None
+
+    if check:
+        if current != rendered:
+            print(
+                "docs/index.md is out of sync with README.md.\n"
+                "Run: python3 scripts/sync-techdocs.py",
+                file=sys.stderr,
+            )
+            return 1
+        print("docs/index.md is in sync with README.md.")
+        return 0
+
+    INDEX.parent.mkdir(parents=True, exist_ok=True)
+    INDEX.write_text(rendered, encoding="utf-8")
+    print(f"wrote {INDEX.relative_to(REPO_ROOT)} ({len(rendered)} bytes)")
+    return 0
+
+
+if __name__ == "__main__":
+    raise SystemExit(main())