Improve API token format and enhance auth status command

- Change token format to reviq_<base58> prefix instead of raw hex
- Add me.authStatus API endpoint for detailed auth information
- Enhance CLI `reviq auth status` to show token details from API
- Add comprehensive tests for token generation (18 tests)
- Extract bootstrap logic to @reviq/db for reusability and testing
- Remove default db export; callers must use createDb() directly

Token changes:
- New format: reviq_<base58-encoded-32-bytes>
- Added parseToken() for validation
- Added isValidTokenFormat() helper

Auth status endpoint returns:
- User profile information
- Auth method (api_token or session)
- Token/session details (name, expiration, last used)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

packages/api-contract/src/contract.ts

@@ -33,6 +33,7 @@ import {
   updateMemberRoleInputSchema,
 } from "./schemas/org.js";
 import {
+  authStatusOutputSchema,
   deviceOutputSchema,
   passkeyOutputSchema,
   sessionOutputSchema,
@@ -113,6 +114,9 @@ export const contract = oc.router({
     updateProfile: oc.input(updateProfileInputSchema).output(z.void()),
     delete: oc.input(z.object({ password: z.string() })).output(z.void()),
 
+    // Auth status (for CLI and debugging)
+    authStatus: oc.output(authStatusOutputSchema),
+
     // Authentication settings
     setPassword: oc.input(setPasswordInputSchema).output(z.void()),