{#- layout_public.html — the institutional/marketing layout (public site). WHO INHERITS THIS: index.html (home) and any public page (about, pricing…). It is NOT for auth (use layout_auth) nor for the logged-in app (use layout_app). THE CONTRACT (same security wiring as every Fabbro layout, defined once): - data-theme on from the `theme` cookie -> no flash. - for JS; forms still submit a hidden csrf_token. - Any inline {% endif %} {% endwith %} {% block scripts %}{% endblock %} {#- Layout-scoped styles (style-src allows 'unsafe-inline'). -#}