diff --git a/README.md b/README.md
index 87ffa6a0..5ff8d71d 100644
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
 <div align="center">
-  <img src="web/public/logo.png" alt="BarqFlow Logo" width="120" height="120" />
-  <h1>BarqFlow</h1>
+  <img src="docs/assets/banner.png" alt="BarqFlow" width="100%" />
+
   <p><strong>Rust-native workflow automation and orchestration platform</strong></p>
   <p>Visual workflow design, queue-backed execution, workspace-aware operations, and signed extension packs in a single control plane.</p>
 
@@ -13,33 +13,68 @@
   </p>
 </div>
 
+---
+
+## Table of Contents
+
+- [Overview](#overview)
+- [Why BarqFlow](#why-barqflow)
+- [Architecture](#architecture)
+- [Product Surfaces](#product-surfaces)
+- [Core Capabilities](#core-capabilities)
+- [Quick Start (Docker)](#quick-start-docker)
+- [Local Development](#local-development)
+- [Configuration Reference](#configuration-reference)
+- [HTTP Surface](#http-surface)
+- [Repository Layout](#repository-layout)
+- [Technology Stack](#technology-stack)
+- [Development Workflow](#development-workflow)
+- [Security Notes](#security-notes)
+- [License](#license)
+
+---
+
 ## Overview
 
 BarqFlow is a Rust-first automation platform for building, operating, and governing workflow-driven integrations.
 
-The repository combines:
+A single control plane unifies a full-screen visual workflow designer, a queue-backed execution engine with dedicated run and trigger workers, credential lifecycle management, workspace-aware access control, and signed built-in extension packs.
+
+BarqFlow draws on the UX of modern node-based automation products, but it is implemented as its own Rust and Vue platform in this repository.
 
-- a full-screen visual workflow designer
-- a schema-driven node detail experience
-- a queue-backed execution engine with separate run and trigger workers
-- credential lifecycle and secret binding workflows
-- workspace-aware access control and admin surfaces
-- observability and governance consoles
-- an automation studio for prompt-to-workflow drafting and signed built-in extension packs
+## Why BarqFlow
 
-BarqFlow is inspired by modern node-based automation products at the workflow UX level, but it is implemented as its own Rust/Vue platform in this repository.
+- **Rust performance and safety end to end** — the control plane, execution engine, and runtime are written in Rust on Axum and Tokio for predictable latency and memory safety.
+- **Durable, queue-backed execution** — manual runs and trigger-driven runs are dispatched through a persistent queue with separate worker lanes, leasing, and backpressure.
+- **Workspace-aware governance** — identity, membership, API keys, policies, approvals, and audit posture are first-class concerns, not bolted on.
+- **Signed extensibility** — built-in extension packs are verified against trusted public keys and run with capability-scoped actions.
+- **Container-native deployment** — a single command brings up the full stack via Docker Compose.
 
-## Preferred Deployment Path
+## Architecture
 
-Docker deployment is the recommended way to run BarqFlow.
+<div align="center">
+  <img src="docs/assets/architecture.png" alt="BarqFlow Architecture" width="100%" />
+</div>
 
-The repository already includes:
+The Vue 3 control plane talks to the Axum REST and webhook runtime. Platform services handle auth, workspaces, governance, and the node and credential registry, and enqueue work onto the execution dispatch queue. Run and trigger workers drain the queue, execute against the node runtime and integrations, and persist state to PostgreSQL.
 
-- a deployment helper in [`deploy.sh`](deploy.sh)
-- a container build in [`docker/Dockerfile`](docker/Dockerfile)
-- a multi-service environment in [`docker/docker-compose.yml`](docker/docker-compose.yml)
+<details>
+<summary>Text fallback (Mermaid)</summary>
 
-Use local Rust and frontend development only when you are actively modifying the platform.
+```mermaid
+flowchart LR
+    Browser["Vue 3 Control Plane"] --> API["Axum REST API / Webhook Runtime"]
+    API --> Auth["Auth / Workspaces / Governance"]
+    API --> Queue["Execution Dispatch Queue"]
+    API --> Registry["Node and Credential Registry"]
+    Queue --> Workers["Run Workers / Trigger Workers"]
+    Workers --> Nodes["Node Runtime / Integrations / Code"]
+    API --> Postgres["PostgreSQL"]
+    Workers --> Postgres
+    Registry --> Nodes
+```
+
+</details>
 
 ## Product Surfaces
 
@@ -69,51 +104,6 @@ Use local Rust and frontend development only when you are actively modifying the
 - Signed built-in extension pack discovery
 - Capability-scoped extension action invocation for trusted bundles
 
-## Architecture
-
-```mermaid
-flowchart LR
-    Browser["Vue 3 Control Plane"] --> API["Axum REST API / Webhook Runtime"]
-    API --> Auth["Auth / Workspaces / Governance"]
-    API --> Queue["Execution Dispatch Queue"]
-    API --> Registry["Node and Credential Registry"]
-    Queue --> Workers["Run Workers / Trigger Workers"]
-    Workers --> Nodes["Node Runtime / Integrations / Code"]
-    API --> Postgres["PostgreSQL"]
-    Workers --> Postgres
-    Registry --> Nodes
-```
-
-## Technology Stack
-
-- Backend: Rust, Axum, Tokio, SQLx, PostgreSQL
-- Frontend: Vue 3, TypeScript, Pinia, Vue Router, Vue Flow, Tailwind CSS
-- Runtime: queue-backed execution workers, cron scheduling, webhook dispatch, SSE execution streams
-- Security: JWT auth, encrypted credentials, signed extension manifests, workspace scoping
-
-## Repository Layout
-
-```text
-bin/
-  barqflow/                 CLI wrapper
-crates/
-  api/                      REST controllers, routes, repositories, governance, observability
-  core/                     Shared contracts, types, traits, schema primitives
-  db/                       Database pool helpers and models
-  exec/                     Workflow runner, runtime context, polling, checkpoints
-  flow/                     Graph helpers and expression handling
-  nodes/                    Built-in nodes, credentials, trigger/runtime implementations
-  polling/                  Polling-related crate support
-  registry/                 Node and credential registries
-  server/                   Boot sequence and top-level app state
-extensions/
-  ai-automation-pack/       Built-in signed AI extension pack
-  ops-observability-pack/   Built-in signed operations extension pack
-web/
-  public/                   Static assets
-  src/                      Vue application, views, feature modules, contracts
-```
-
 ## Core Capabilities
 
 | Area | Current Coverage |
@@ -129,9 +119,9 @@ web/
 | Extensibility | Signed built-in extension packs with capability-scoped actions |
 | AI workflow drafting | Prompt-based starter workflow generation in Automation Studio |
 
-## Docker Deployment
+## Quick Start (Docker)
 
-This is the preferred approach for running BarqFlow.
+Docker deployment is the recommended way to run BarqFlow. The repository ships a deployment helper in [`deploy.sh`](deploy.sh), a container build in [`docker/Dockerfile`](docker/Dockerfile), and a multi-service environment in [`docker/docker-compose.yml`](docker/docker-compose.yml).
 
 ### Prerequisites
 
@@ -146,18 +136,7 @@ cd BarqFlow
 ./deploy.sh
 ```
 
-The deployment script performs three steps:
-
-1. Stops existing BarqFlow containers
-2. Rebuilds the images with `docker/docker-compose.yml`
-3. Starts the stack in detached mode
-
-Then open `http://localhost:3000`.
-
-### What the Docker stack starts
-
-- `db`: PostgreSQL 15
-- `engine`: the BarqFlow Rust server plus compiled frontend assets
+The deployment script stops existing BarqFlow containers, rebuilds the images with `docker/docker-compose.yml`, and starts the stack in detached mode. Then open `http://localhost:3000`.
 
 ### Manual Docker Compose workflow
 
@@ -169,29 +148,25 @@ docker-compose -f docker/docker-compose.yml build --no-cache
 docker-compose -f docker/docker-compose.yml up -d
 ```
 
-Then open `http://localhost:3000`.
+### What the stack starts
 
-### Docker configuration notes
+- `db`: PostgreSQL 15
+- `engine`: the BarqFlow Rust server plus compiled frontend assets
 
-- The compose file currently exposes:
-  - PostgreSQL on `5432`
-  - BarqFlow on `3000`
-- The default compose file includes development-style inline secrets and should be replaced or overridden for real production deployments.
-- For production, set strong values for:
-  - `JWT_SECRET`
-  - `BARQFLOW_ENCRYPTION_KEY`
-  - `DATABASE_URL` as needed for your deployment target
+The compose file exposes PostgreSQL on `5432` and BarqFlow on `3000`. The default compose file includes development-style inline secrets and must be replaced or overridden for production deployments. For production, set strong values for `JWT_SECRET`, `BARQFLOW_ENCRYPTION_KEY`, and `DATABASE_URL`.
 
 ## Local Development
 
-#### Prerequisites
+Use local Rust and frontend development only when you are actively modifying the platform.
+
+### Prerequisites
 
 - Rust `1.88+`
 - Node.js `20+`
 - npm `10+`
 - PostgreSQL `15+`
 
-#### 1. Configure environment
+### 1. Configure environment
 
 Create a root `.env` file:
 
@@ -204,20 +179,20 @@ RUST_LOG=info,barqflow=debug
 BARQFLOW_ENV=development
 ```
 
-#### 2. Run database migrations
+### 2. Run database migrations
 
 ```bash
 cargo install sqlx-cli --no-default-features --features rustls,postgres
 sqlx migrate run --source crates/api/migrations
 ```
 
-#### 3. Start the backend
+### 3. Start the backend
 
 ```bash
 cargo run -p barqflow-server
 ```
 
-#### 4. Start the frontend
+### 4. Start the frontend
 
 ```bash
 cd web
@@ -227,9 +202,7 @@ npm run dev
 
 The frontend dev server runs on `http://localhost:3001` and proxies API and webhook traffic to the Rust backend on port `3000`.
 
-## Frontend Production Build
-
-Build the frontend for backend static serving:
+### Frontend production build
 
 ```bash
 cd web
@@ -239,7 +212,7 @@ npm run build
 
 The production backend serves compiled frontend assets from `web/dist`.
 
-## Runtime and Configuration Notes
+## Configuration Reference
 
 ### Required secrets
 
@@ -266,22 +239,52 @@ The production backend serves compiled frontend assets from `web/dist`.
 
 ## HTTP Surface
 
-### REST base
-- `/rest`
-
-### Webhook base
-- `/webhook`
+| Base | Path |
+|---|---|
+| REST | `/rest` |
+| Webhook | `/webhook` |
 
 ### Major API domains
-- auth and user profile
-- workspaces and membership
-- workflows, templates, history, and diff
-- executions, logs, and event streams
-- credentials and credential types
-- settings and runtime posture
-- observability overview
-- governance controls
-- automation studio and extension runtime actions
+
+- Auth and user profile
+- Workspaces and membership
+- Workflows, templates, history, and diff
+- Executions, logs, and event streams
+- Credentials and credential types
+- Settings and runtime posture
+- Observability overview
+- Governance controls
+- Automation studio and extension runtime actions
+
+## Repository Layout
+
+```text
+bin/
+  barqflow/                 CLI wrapper
+crates/
+  api/                      REST controllers, routes, repositories, governance, observability
+  core/                     Shared contracts, types, traits, schema primitives
+  db/                       Database pool helpers and models
+  exec/                     Workflow runner, runtime context, polling, checkpoints
+  flow/                     Graph helpers and expression handling
+  nodes/                    Built-in nodes, credentials, trigger/runtime implementations
+  polling/                  Polling-related crate support
+  registry/                 Node and credential registries
+  server/                   Boot sequence and top-level app state
+extensions/
+  ai-automation-pack/       Built-in signed AI extension pack
+  ops-observability-pack/   Built-in signed operations extension pack
+web/
+  public/                   Static assets
+  src/                      Vue application, views, feature modules, contracts
+```
+
+## Technology Stack
+
+- **Backend:** Rust, Axum, Tokio, SQLx, PostgreSQL
+- **Frontend:** Vue 3, TypeScript, Pinia, Vue Router, Vue Flow, Tailwind CSS
+- **Runtime:** queue-backed execution workers, cron scheduling, webhook dispatch, SSE execution streams
+- **Security:** JWT auth, encrypted credentials, signed extension manifests, workspace scoping
 
 ## Development Workflow
 
@@ -302,3 +305,9 @@ The production backend serves compiled frontend assets from `web/dist`.
 BarqFlow is licensed under `Elastic License 2.0`.
 
 This repository is source-available, but it is not licensed for offering BarqFlow as a hosted or managed commercial service. See [LICENSE](LICENSE) for the governing terms.
+
+---
+
+<div align="center">
+  <sub>Designed and engineered by <strong>Mohamed Yasser</strong> · Solutions Architect</sub>
+</div>
diff --git a/docs/assets/architecture.png b/docs/assets/architecture.png
new file mode 100644
index 00000000..99a55976
Binary files /dev/null and b/docs/assets/architecture.png differ
diff --git a/docs/assets/architecture.svg b/docs/assets/architecture.svg
new file mode 100644
index 00000000..60ce9eb2
--- /dev/null
+++ b/docs/assets/architecture.svg
@@ -0,0 +1,135 @@
+<svg xmlns="http://www.w3.org/2000/svg" width="2400" height="1500" viewBox="0 0 2400 1500" role="img" aria-labelledby="title desc">
+  <title id="title">BarqFlow Architecture</title>
+  <desc id="desc">Queue-backed execution across a Rust control plane</desc>
+  <defs>
+    <pattern id="dotGrid" width="32" height="32" patternUnits="userSpaceOnUse">
+      <circle cx="2" cy="2" r="1.6" fill="#1B2A4A" opacity="0.08"/>
+    </pattern>
+
+    <marker id="arrowGold" markerWidth="14" markerHeight="14" refX="11" refY="7" orient="auto" markerUnits="strokeWidth">
+      <path d="M 2 2 L 12 7 L 2 12 Z" fill="#C5A55A"/>
+    </marker>
+
+    <filter id="softShadow" x="-20%" y="-20%" width="140%" height="140%">
+      <feDropShadow dx="0" dy="6" stdDeviation="8" flood-color="#1B2A4A" flood-opacity="0.10"/>
+    </filter>
+
+    <style>
+      .bg { fill: #FFFFFF; }
+      .container { fill: #F2F2F2; stroke: #1B2A4A; stroke-width: 2; rx: 18; opacity: 0.58; }
+      .card { fill: #FFFFFF; stroke: #1B2A4A; stroke-width: 2; rx: 8; filter: url(#softShadow); }
+      .card-secondary { fill: #F2F2F2; stroke: #1B2A4A; stroke-width: 2; rx: 8; filter: url(#softShadow); }
+      .emphasis { fill: #1B2A4A; stroke: #1B2A4A; stroke-width: 2; rx: 8; filter: url(#softShadow); }
+      .title { fill: #1B2A4A; font: 700 58px Georgia, "Times New Roman", serif; letter-spacing: 0; }
+      .subtitle { fill: #1B2A4A; font: 400 27px Inter, -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif; opacity: 0.78; letter-spacing: 0; }
+      .group-label { fill: #1B2A4A; font: 700 24px Inter, -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif; letter-spacing: 2.4px; }
+      .label { fill: #1B2A4A; font: 650 30px Inter, -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif; letter-spacing: 0; }
+      .small-label { fill: #1B2A4A; font: 650 25px Inter, -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif; letter-spacing: 0; }
+      .white-label { fill: #FFFFFF; font: 700 31px Inter, -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif; letter-spacing: 0; }
+      .arrow { fill: none; stroke: #C5A55A; stroke-width: 2; stroke-linecap: round; stroke-linejoin: round; marker-end: url(#arrowGold); }
+      .route { fill: none; stroke: #C5A55A; stroke-width: 2; stroke-linecap: round; stroke-linejoin: round; }
+      .icon-line { fill: none; stroke: currentColor; stroke-width: 2.4; stroke-linecap: round; stroke-linejoin: round; }
+      .icon-navy { color: #1B2A4A; opacity: 0.9; }
+      .icon-white { color: #FFFFFF; opacity: 0.95; }
+    </style>
+  </defs>
+
+  <rect class="bg" width="2400" height="1500"/>
+  <rect width="2400" height="1500" fill="url(#dotGrid)"/>
+
+  <text class="title" x="96" y="116">BarqFlow Architecture</text>
+  <text class="subtitle" x="98" y="164">Queue-backed execution across a Rust control plane</text>
+  <rect x="98" y="198" width="60" height="3" fill="#C5A55A" rx="1.5"/>
+
+  <!-- Entry -->
+  <rect class="emphasis" x="110" y="382" width="360" height="150"/>
+  <g class="icon-white" transform="translate(142 421)">
+    <rect class="icon-line" x="0" y="0" width="52" height="36" rx="4"/>
+    <path class="icon-line" d="M 19 50 L 33 50 M 26 36 L 26 50"/>
+  </g>
+  <text class="white-label" x="290" y="441" text-anchor="middle">Vue 3</text>
+  <text class="white-label" x="290" y="482" text-anchor="middle">Control Plane</text>
+
+  <!-- API -->
+  <rect class="card" x="580" y="382" width="430" height="150"/>
+  <g class="icon-navy" transform="translate(614 421)">
+    <path class="icon-line" d="M 9 7 H 47 A 8 8 0 0 1 55 15 V 43 A 8 8 0 0 1 47 51 H 9 A 8 8 0 0 1 1 43 V 15 A 8 8 0 0 1 9 7 Z"/>
+    <path class="icon-line" d="M 1 21 H 55 M 14 35 H 28 M 36 35 H 44"/>
+  </g>
+  <text class="label" x="795" y="441" text-anchor="middle">Axum REST API /</text>
+  <text class="label" x="795" y="482" text-anchor="middle">Webhook Runtime</text>
+
+  <!-- Platform services -->
+  <rect class="container" x="1120" y="270" width="520" height="560"/>
+  <text class="group-label" x="1185" y="324">PLATFORM SERVICES</text>
+
+  <rect class="card" x="1185" y="368" width="390" height="100"/>
+  <text class="small-label" x="1380" y="409" text-anchor="middle">Auth / Workspaces /</text>
+  <text class="small-label" x="1380" y="443" text-anchor="middle">Governance</text>
+
+  <rect class="card" x="1185" y="516" width="390" height="100"/>
+  <text class="small-label" x="1380" y="557" text-anchor="middle">Node &amp; Credential</text>
+  <text class="small-label" x="1380" y="591" text-anchor="middle">Registry</text>
+
+  <rect class="card-secondary" x="1185" y="664" width="390" height="100"/>
+  <text class="small-label" x="1380" y="705" text-anchor="middle">Execution Dispatch</text>
+  <text class="small-label" x="1380" y="739" text-anchor="middle">Queue</text>
+
+  <!-- Execution workers -->
+  <rect class="container" x="1760" y="336" width="500" height="390"/>
+  <text class="group-label" x="1824" y="390">EXECUTION WORKERS</text>
+
+  <rect class="card" x="1832" y="430" width="356" height="96"/>
+  <text class="label" x="2010" y="491" text-anchor="middle">Run Workers</text>
+
+  <rect class="card" x="1832" y="578" width="356" height="96"/>
+  <text class="label" x="2010" y="639" text-anchor="middle">Trigger Workers</text>
+
+  <!-- Runtime -->
+  <rect class="card" x="1748" y="866" width="524" height="132"/>
+  <g class="icon-navy" transform="translate(1791 902)">
+    <path class="icon-line" d="M 18 10 L 2 28 L 18 46"/>
+    <path class="icon-line" d="M 42 10 L 58 28 L 42 46"/>
+    <path class="icon-line" d="M 35 6 L 25 50"/>
+  </g>
+  <text class="label" x="2010" y="918" text-anchor="middle">Node Runtime /</text>
+  <text class="label" x="2010" y="959" text-anchor="middle">Integrations / Code</text>
+
+  <!-- PostgreSQL datastore -->
+  <g filter="url(#softShadow)">
+    <path d="M 1835 1133 C 1835 1098 2195 1098 2195 1133 L 2195 1284 C 2195 1319 1835 1319 1835 1284 Z" fill="#1B2A4A" stroke="#1B2A4A" stroke-width="2"/>
+    <ellipse cx="2015" cy="1133" rx="180" ry="35" fill="#1B2A4A" stroke="#FFFFFF" stroke-width="2" opacity="0.28"/>
+    <path d="M 1835 1133 C 1835 1168 2195 1168 2195 1133" fill="none" stroke="#FFFFFF" stroke-width="2" opacity="0.28"/>
+  </g>
+  <text class="white-label" x="2015" y="1221" text-anchor="middle">PostgreSQL</text>
+
+  <!-- Primary flow -->
+  <path class="arrow" d="M 470 457 H 580"/>
+
+  <!-- API branch to platform services -->
+  <path class="route" d="M 1010 457 H 1072 V 418 H 1185"/>
+  <path class="route" d="M 1072 457 V 566 H 1185"/>
+  <path class="arrow" d="M 1072 714 H 1185"/>
+  <path class="route" d="M 1072 566 V 714"/>
+
+  <!-- Queue to workers and worker fan-out -->
+  <path class="route" d="M 1575 714 H 1688 V 478 H 1832"/>
+  <path class="arrow" d="M 1688 626 H 1832"/>
+  <path class="route" d="M 1688 478 V 626"/>
+
+  <!-- Workers to runtime -->
+  <path class="route" d="M 2010 526 V 552"/>
+  <path class="route" d="M 2010 674 V 782"/>
+  <path class="arrow" d="M 2010 782 V 866"/>
+  <path class="route" d="M 2010 552 V 578"/>
+
+  <!-- Registry to runtime -->
+  <path class="route" d="M 1575 566 H 1668 V 932 H 1748"/>
+  <path class="arrow" d="M 1668 932 H 1748"/>
+
+  <!-- API and workers to PostgreSQL -->
+  <path class="route" d="M 795 532 V 1196 H 1835"/>
+  <path class="arrow" d="M 795 1196 H 1835"/>
+  <path class="arrow" d="M 2195 932 V 1133"/>
+  <path class="route" d="M 2010 998 V 1046 H 2195 V 932"/>
+</svg>
diff --git a/docs/assets/banner.png b/docs/assets/banner.png
new file mode 100644
index 00000000..ffcdbb50
Binary files /dev/null and b/docs/assets/banner.png differ
