chore(analytics): Umami-Kern entfernen — Injection, Client-Lib, Auth-Hook, Container, DB

Erster Schritt der Umami-Komplett-Entfernung (Entscheidung: kein Web-Analytics):
- hooks.server.ts: injectUmamiAnalytics-Injection raus (stoppt Script-Load in der Unified-App)
- packages/shared-utils/analytics-server.ts: GELÖSCHT (Script-Injection-Util)
- packages/shared-utils/analytics.ts: zu No-op entkernt — window.umami/isUmamiAvailable
  raus, trackEvent no-op; alle 28 *Events-Aufrufer kompilieren weiter (senden nichts)
- packages/shared-auth/authService.ts: inline-Umami-trackAuth-Hook + Aufrufe raus
- infrastructure/docker-compose.gpu-box.yml: umami-Service (mana-mon-umami) raus
- docker/init-db: CREATE DATABASE umami + GRANT raus
- gelöscht: docs/ANALYTICS.md, scripts/mac-mini/setup-umami-db.sh, picture-landing .env.example

VERBLEIBEND (separat, größer): ~60 weitere Dateien — 7 Landing-Layout.astro
(eigene Script-Injection), website-blocks Analytics-Feature, Legal/Datenschutz,
i18n×5, Admin-UI, ~20 Docs. Teils produkt-/rechts-sensibel → in Wellen.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

apps/mana/apps/web/src/hooks.server.ts

@@ -1,5 +1,4 @@
 import type { Handle } from '@sveltejs/kit';
-import { injectUmamiAnalytics } from '@mana/shared-utils/analytics-server';
 import { setSecurityHeaders } from '@mana/shared-utils/security-headers';
 
 /**
@@ -226,7 +225,7 @@ window.__PUBLIC_MANA_ANALYTICS_URL__ = ${JSON.stringify(PUBLIC_MANA_ANALYTICS_UR
 window.__PUBLIC_AI_MISSION_GRANTS__ = ${JSON.stringify(PUBLIC_AI_MISSION_GRANTS)};
 window.__PUBLIC_GLITCHTIP_DSN__ = ${JSON.stringify(PUBLIC_GLITCHTIP_DSN)};
 </script>`;
-			return injectUmamiAnalytics(html.replace('<head>', `<head>${envScript}`));
+			return html.replace('<head>', `<head>${envScript}`);
 		},
 	});
 

apps/picture/apps/landing/.env.example

@@ -1,3 +0,0 @@
-# Umami Analytics
-PUBLIC_UMAMI_URL=https://your-umami-instance.com
-PUBLIC_UMAMI_WEBSITE_ID=your-website-id