Chat Defense

Banlist

eids blocked at CF edge via KV. Checked on every /auth/register (new JWTs) and on every authenticated request (existing JWTs via banlist check on the JWT payload's externalId claim).