I kept rewriting the same quiz + spaced-repetition code. So I packaged it into an API

Yeah, you talked me into both — pushed them live yesterday.
/grade takes an optional source passage now. If it's there, the grader treats it as the real reference and the expected answer is just a hint. And if the passage is too thin or off topic to actually decide anything, it returns null + an "abstained" flag instead of making up a number. Old calls that only send an expected answer still work the same.
But your ceiling point stuck with me, because you're right — grounding doesn't fix a thin source, it just moves the vagueness somewhere else. That's basically why I didn't treat grounding as the answer and leaned on the abstain flag instead. When there's genuinely not enough to go on, the honest thing is to say so, not guess a 3.
On whether "not enough context to grade this" breaks the experience — I kind of dodged that on purpose. The API just hands back the flag and a null score, it doesn't show anything to a learner. So whoever builds on top decides what to do: re-ask, send it to a human, skip it, whatever. A flashcard app and a real exam want totally different things there and I didn't want to pick for them. Honestly I don't have enough real grading traffic yet to know which way people lean — that's the thing I'm waiting to see.
You've clearly built one of these before though — when you added an abstain path, did you actually show it to the user, or just quietly not count the question?

You've named the exact reason /review/next is stateless. QuizForge doesn't store the card — you POST the current state (repetitions, ease factor, interval) plus how the answer went, and it returns the next state and due date. It's a pure function, not a session. Which answers your multi-device question by sidestepping it: there's no per-device state to drift, because the API holds none at all. Consistency is whatever your backend record says. If mobile and desktop read and write the same card row, scheduling is identical by construction; if each device keeps its own local copy, they diverge — but that's an architecture choice on the caller's side, not something the algorithm decides.
On your edge cases — two are in the algorithm, one deliberately isn't, and I'd rather be straight about which:
- Keeps getting it wrong (quality < 3): repetitions reset to 0, interval drops back to 1 day, and the ease factor decays on the SM-2 curve with a hard floor at 1.3. A stubborn item collapses to daily and stays aggressive until it sticks.
- Missed session / "almost due": not modeled, on purpose. The scheduler computes the next due date forward from the day you actually review — it doesn't penalize lateness or decay an overdue item. The "is this due / almost due / overdue" bookkeeping lives in the caller. I didn't want the API guessing a learner's calendar. The honest tradeoff: stateless means I don't solve multi-device for you — I just make sure I'm never the thing that breaks it. Did you end up wanting the scheduler to punish overdue items, or did leaving lateness out keep it more predictable?

The cache landing first is the right read — "don't pay twice for the same chapter" is the line that needs no demo.You've clearly felt it.
On the boring-but-important part, here's the honest data story, because privacy buyers deserve the unsexy version:

• QuizForge doesn't persist raw student text. On /generate the text is resolved, sent to the model, and dropped. The cache stores only the derived output — quiz and flashcards — keyed by a one-way SHA-256 hash of the input. You can't reverse the key back into the source.
• That cache is in-memory by default, so it's wiped on every restart. Redis is optional and, today, has no TTL — a gap
  I'd close before anyone leans on it hard.
• /grade and /review/next store nothing at all.
• The one boundary I won't hand-wave: on the hosted rail the text does transit to the LLM provider to be processed. So if "real student text" is the bar, the honest answer is the self-host kit — run it on your own infra against your own model key, and the text never leaves your perimeter except to the model you chose. That's exactly why the split exists.
• And the gap, said plainly: there's no per-record delete endpoint yet. Deletion today means restarting the instance or flushing the store. If the privacy/control buyer is real, that's the next thing I'd build.

Exactly — that terminology-vs-meaning gap is the case I worried about most. A learner who's right but phrases it differently is the worst person to mark wrong.
The way it's set up: the grader doesn't match strings. The prompt explicitly tells the model to judge on meaning rather than wording, and to score 0–5 instead of pass/fail — so "right idea, off vocabulary" can land at a 3 or 4 instead of a hard zero (the correct flag flips at score ≥ 3). That soft band is doing most of the work on exactly your edge case.
The honest limit: it grades the answer against the expected answer for that question, not against the full source passage. So if the expected answer is thin, the model can still under-credit a valid alternative phrasing — the robustness is only as good as that reference answer. I haven't grounded grading back to the source text yet; that's the
next thing if graders keep tripping on it. You clearly have scar tissue here — how did you end up handling it? Better reference answers, or did you go to retrieval against the source?

The self-host option as a signal for who to target first is something I learned with Genie 007. People who had already tried to solve the problem manually were the fastest to convert and the most useful for pricing. They could actually quantify it. "This saves me 30 minutes a day" is a completely different sales conversation than "this might save me time." The free month to anchor on their own number is the right sequence. Makes the pricing conversation about their data, not your estimate.

That first buyer segment framing is exactly right — and it reframes something I had been treating as a distribution problem.
The people most likely to pay early aren't browsing for quiz tools. They're developers who already built the loop once, felt the cost, and are doing it again. They arrive with context and a number in their head. That's a completely different conversation than convincing someone the problem exists.
On the free hosted month in exchange for a number: I'm going to try this. I have one person already in a positioning conversation (another IH commenter who offered a pricing breakdown). He's the right profile — he understood the build immediately, not generically. That's where I'll start.
One honest caveat: the "what did this save you" number is only useful if the person actually builds something during that month, not just pokes at the API for ten minutes. So I'm going to be selective about the first one or two rather than offering it broadly.
Thanks for the anchor framing — that's a concrete output I can actually use in copy once it's a real number.

This is a very useful replies I've gotten — thank you for taking the time on it. You actually described the build better than my own post did: the value isn't the LLM call, it's the loop around it —generate → grade → schedule review → cache identical input → keep it testable — plus the build time and repeated LLM spend it saves. Funny timing on the pricing, because that's roughly the structure I already landed on, which makes me think the instinct is right:

• free dev tier (30 calls/mo) to try it
• a starter tier for indie edtech builders ($15/mo)
• higher hosted tiers above that
• self-host kit (source + Docker, bring-your-own-key) as the control/privacy option The piece I haven't done is your last point — metering the top tier on generated items / active learners instead of raw requests. Right now it's request-based hard-limit tiers (no overage, so no surprise bills), but a learner/item-based unit is a much better story for an edtech buyer and I hadn't framed it that way. Same with the positioning: "assessment + spaced-repetition infrastructure for edtech builders" is a far sharper line than "text → quizzes API." Taking both.
  And yes — I'd genuinely take you up on the written breakdown. Tier structure + who each tier is for + the first buyer segment to test is exactly the part I'm least sure about. I can share my real numbers (actual per-call LLM cost, etc.) so it's grounded rather than hypothetical.