Add Milestones 1 & 2: full-stack POS foundation with admin UI

- Node/Express/TypeScript API under /api/v1 with JWT auth (login, refresh, logout, /me)
- Prisma schema: vendors, users, roles, products, categories, taxes, transactions
- SQLite for local dev; Postgres via docker-compose for production
- Full CRUD routes for vendors, users, categories, taxes, products with Zod validation and RBAC
- Paginated list endpoints scoped per vendor; refresh token rotation
- React/TypeScript admin SPA (Vite): login, protected routing, sidebar layout
- Pages: Dashboard, Catalog (tabbed Products/Categories/Taxes), Users, Vendor Settings
- Shared UI: Table, Modal, FormField, Btn, PageHeader components
- Multi-stage Dockerfile; docker-compose with Postgres healthcheck
- Seed script with demo vendor and owner account
- INSTRUCTIONS.md, ROADMAP.md, .claude/launch.json for dev server config

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

server/node_modules/bcryptjs/bin/bcrypt

@@ -0,0 +1,25 @@
+#!/usr/bin/env node
+
+var path = require("path"),
+    bcrypt = require(path.join(__dirname, '..', 'index.js')),
+    pkg = require(path.join(__dirname, '..', 'package.json'));
+
+if (process.argv.length < 3) {
+    process.stderr.write([ // No dependencies, so we do it from hand.
+        "",
+        " |_  _ _   _ |_",
+        " |_)(_| \\/|_)|_ v"+pkg['version']+" (c) "+pkg['author'],
+        "        / |     "
+    ].join('\n')+'\n\n'+" Usage: "+path.basename(process.argv[1])+" <input> [rounds|salt]\n");
+    process.exit(1);
+} else {
+    var salt;
+    if (process.argv.length > 3) {
+        salt = process.argv[3];
+        var rounds = parseInt(salt, 10);
+        if (rounds == salt)
+            salt = bcrypt.genSaltSync(rounds);
+    } else
+        salt = bcrypt.genSaltSync();
+    process.stdout.write(bcrypt.hashSync(process.argv[2], salt)+"\n");
+}