In heeler, taught the admin layout, middleware, and superadmin tRPC procedure to recognize an impersonating superadmin so the original user can still hit the admin panel while wearing someone else's hat. Audit logging now records the original superadmin's id and email rather than the target's, which is the version that won't cause grief later. Also added an impersonation banner to the dashboard, switched signin to a hard navigation because the session cookie was occasionally losing the race, opened the demo subdomain to unauthenticated visitors, and dropped some bcrypt and DB timing logs while I was poking at login latency. On stockly-landing, rewrote the hero copy and went through every section removing em-dashes, which apparently read as AI-flavored to someone. The replacements are mostly commas, colons, and the occasional period.

7 commits across 2 repos (stockly-landing: 2, heeler: 5). 15 files changed.