Privacy posture for the migration environment.
The `dev2` environment is a controlled migration stack. It should use isolated resources, avoid production side effects, and be treated as an operator environment rather than a public production deployment.
- Do not point the new frontend directly at a live production D1 database.
- Use copied or sanitized city datasets for migration testing.
- Keep Slack, Turnstile, and admin auth isolated from production where possible.