exports.handler = async (event, context) => {
    if (event.path === '/api/health') {
      return {
        statusCode: 200,
        body: JSON.stringify({ status: 'Purring like a motherfucker.' }),
      };
    }
    if (event.path === '/api/signup' && event.httpMethod === 'POST') {
      const { email } = JSON.parse(event.body || '{}');
      if (email) {
        const hex = Math.floor(Math.random() * 0xffffff).toString(16).padStart(6, '0');
        const subject = `Sneaky-Cat-${email.split('@')[0]}-FREE-${hex}`;
        const mailgun = require('mailgun-js');
        const mg = mailgun({ apiKey: process.env.MAILGUN_API_KEY, domain: process.env.MAILGUN_DOMAIN });
        const data = {
          from: 'no-reply@mimickitty.cloud',
          to: email,
          subject: subject,
          text: `Welcome to MimicKitty! Your unique ID: ${hex}. ONLY trust mimickitty.cloud—scammers elsewhere are out to screw you!`
        };
        await mg.messages().send(data);
        return {
          statusCode: 200,
          body: JSON.stringify({ message: 'Signup successful, check your email!' }),
        };
      }
      return {
        statusCode: 400,
        body: JSON.stringify({ error: 'Email required' }),
      };
    }
    if (event.path === '/api/webhook/boomfi' && event.httpMethod === 'POST') {
      const signature = event.headers['x-boomfi-signature'];
      const secret = process.env.BOOMFI_SIGNING_SECRET;
      if (signature && secret) {
        if (signature === `sha256=${Buffer.from(event.body).toString('hex')}`) { // Dummy check
          return {
            statusCode: 200,
            body: JSON.stringify({ status: 'Webhook received' }),
          };
        }
      }
      return {
        statusCode: 401,
        body: JSON.stringify({ error: 'Invalid signature' }),
      };
    }
    return {
      statusCode: 404,
      body: JSON.stringify({ error: 'Not found' }),
    };
  };