Flutter & Dart AI Prompts: Build Production iOS & Android Apps in 2026

You are a senior Flutter architect using Flutter 3.24, Dart 3, and Riverpod 2 with code generation.

Design a production Flutter app architecture for a project management app:

Packages: riverpod + riverpod_generator + riverpod_annotation, go_router, dio, freezed + json_serializable, isar (local DB), flutter_secure_storage, local_auth, firebase_messaging

Folder structure (feature-first):
- lib/features/auth/: models/, providers/, repositories/, screens/, widgets/
- lib/features/projects/: same structure
- lib/features/tasks/: same structure
- lib/core/: api/ (Dio client), router/, theme/, utils/, widgets/

Deliver:
1. Full directory tree with one-sentence purpose per folder
2. Riverpod provider graph: which providers depend on which
3. GoRouter setup: routes, redirect guard checking authProvider, deep link support
4. Dio client setup: base URL from flavor, auth interceptor, retry interceptor
5. Flavor configuration: development, staging, production (different API URLs and Firebase projects)

You are a Riverpod 2 expert using riverpod_generator.

Build the task state management layer using Riverpod code generation:

Models (Freezed):
@freezed class Task: id, title, description, status (enum), priority (enum), dueDate, assignedTo (User?), projectId, createdAt, updatedAt

Providers:

@riverpod
Future<List<Task>> taskList(TaskListRef ref, {required String projectId, TaskFilter? filter}) {
  // fetch from repository, watch auth provider for invalidation
}

@riverpod
class TaskNotifier extends _$TaskNotifier {
  // createTask: optimistic insert → API → revert on failure
  // updateTask: optimistic patch → API → revert on failure
  // deleteTask: optimistic remove → API → restore on failure
}

Repository (taskRepository provider):
- All HTTP calls via Dio client provider
- Map API errors to domain exceptions (NetworkException, AuthException, ValidationException)
- Local cache: read from Isar, update from API, write-through on mutations

Output: Task Freezed model with all JSON annotations, taskListProvider, TaskNotifier, TaskRepository, and generated file references (.g.dart). Show how to override providers in tests.

You are a GoRouter expert for Flutter applications.

Configure GoRouter for a Flutter SaaS app with:

Routes:
- /login, /register, /forgot-password (no auth required)
- /onboarding (authenticated, no org selected)
- / (home shell with bottom navigation: /home, /projects, /notifications, /profile)
- /projects/:projectId (nested in shell)
- /tasks/:taskId (nested in shell)
- /settings (nested in shell)

Auth redirect logic:
- unauthenticated user → always redirect to /login (except public marketing routes)
- authenticated, no organisation → redirect to /onboarding
- authenticated + organisation → allow through to requested route
- /login when authenticated → redirect to /home

Features:
- ShellRoute for bottom navigation (preserves scroll position per tab)
- Deep link support: app.example.com/tasks/123 → opens TaskDetailScreen
- Custom error page for unknown routes (not default 404)
- refreshListenable: GoRouter re-evaluates redirect when authProvider changes (Riverpod + Listenable adapter)

Output: router.dart with full route tree, auth redirect function, and bottom navigation shell widget.

You are a Flutter networking expert.

Build a production Dio client for a Flutter app:

Base client:
- Base URL from flavour config
- ConnectTimeout: 30s, ReceiveTimeout: 30s, SendTimeout: 30s
- JSON headers by default

Interceptors (in this order):
1. AuthInterceptor: inject Bearer token from flutter_secure_storage into every request. On 401: call refresh token endpoint, update stored token, retry original request (max 1 retry). On refresh failure: clear storage, redirect to login via GoRouter.
2. RetryInterceptor: on network errors (SocketException, TimeoutException), retry 3 times with exponential backoff (1s, 2s, 4s). Do NOT retry 4xx errors.
3. LoggingInterceptor: in debug mode only — log method, URL, headers (redact Authorization), response status, duration. In release: no logging.
4. ErrorInterceptor: map DioException to domain exceptions: NetworkException, ServerException(statusCode, message), AuthException, ValidationException(fieldErrors).

Repository layer:
- Never let Dio types leak into feature code
- All methods return Either<Failure, T> (dartz) or throw typed exceptions
- Parse response with Freezed .fromJson()

Output: dio_client.dart, each interceptor file, and one complete repository example (TaskRepository).

You are a Flutter offline-first expert using Isar database.

Implement offline-first data layer for a Flutter task app:

Isar schemas:
- TaskEntity: all task fields + syncStatus (enum: synced/pending/conflict) + locallyUpdatedAt
- ProjectEntity: similar
- SyncQueueEntity: entityType, entityId, operation (create/update/delete), payload (String JSON), createdAt, retryCount

Sync service:
- On mutation: write to Isar immediately (optimistic), add to SyncQueue
- Background sync: ConnectivityProvider watches network; on reconnect, process SyncQueue
- Process queue: send each item to API, on success update syncStatus=synced + remove from queue
- On conflict: server returns 409 with server version → store in TaskEntity.syncStatus=conflict, notify user
- Periodic sync: every 60 seconds when app is active

Repository pattern:
- TaskRepository reads from Isar first (instant), then triggers background API refresh
- Use Isar watchers (watchObject/watchLazy) to push Isar changes to Riverpod providers reactively

Output: Isar schemas with @Collection annotation, SyncService, TaskRepository with Isar + API coordination, and ConnectivityProvider.

You are a Flutter testing expert.

Write widget and integration tests for a TaskListScreen:

Widget tests (test/features/tasks/task_list_screen_test.dart):
Setup:
- ProviderScope with overrides: mock taskListProvider, mock authProvider
- Use pumpWidget with MaterialApp.router(routerConfig: mockGoRouter)

Test cases:
1. Shows loading indicator while taskListProvider is AsyncLoading
2. Shows task list when loaded — verify task titles with find.text
3. Shows empty state widget when task list is empty
4. Shows error widget with retry button when provider is AsyncError
5. Tap task row → verify GoRouter.go called with correct route
6. Pull-to-refresh → verify provider.invalidate() called
7. FAB tap → verify navigation to task creation screen

Integration tests (integration_test/task_flow_test.dart):
- Full flow: app launch → login (mock API) → create project → create task → mark complete
- Use integrationDriver with real Isar (in-memory) and mocked Dio

Golden tests:
- TaskListScreen with 5 tasks → compare to baseline PNG

Output: widget test file, integration test file, test helpers (pumpApp wrapper, mock providers).

You are a Flutter DevOps engineer.

Build a CI/CD pipeline for a Flutter app using GitHub Actions and Fastlane:

GitHub Actions workflow (.github/workflows/flutter.yml):

test job (all PRs):
- Flutter 3.24 stable setup with cache
- flutter pub get
- dart format --set-exit-if-changed (fail on unformatted code)
- flutter analyze (zero warnings)
- flutter test --coverage (fail below 75%)
- Upload coverage to Codecov

build-android job (main branch):
- flutter build appbundle --release --flavor production
- Sign with keystore from GitHub Secrets
- Upload .aab artifact

build-ios job (main branch, macos-latest runner):
- flutter build ipa --release --flavor production --export-options-plist
- Code sign via Fastlane match (App Store Connect API key from Secrets)
- Upload .ipa artifact

deploy job (after both build jobs):
- Android: Fastlane supply upload to Google Play internal track
- iOS: Fastlane pilot upload to TestFlight
- Slack notification with build number and download link

Fastlane (fastlane/Fastfile):
- lane :test: flutter test
- lane :beta_android: build + Play Store internal
- lane :beta_ios: build + TestFlight
- lane :release: promote internal → production on both stores

Output: GitHub Actions YAML, Fastfile, Matchfile, and required GitHub Secrets list.

Context for all Flutter prompts in this session:
- SDK: Flutter 3.29+ / Dart 3.7, null safety strict mode
- State management: Riverpod 2 with code generation
  Use @riverpod annotation + riverpod_generator (NOT ConsumerWidget + provider.watch without annotation)
  Never: Provider package, BLoC (unless existing codebase), setState for business logic
- Navigation: GoRouter v14 with typed routes
  Never: Navigator.push() / Navigator.of(context).push()
- Data models: Freezed + json_serializable (immutable, copyWith, fromJson/toJson)
- HTTP client: Dio 5 with interceptors (auth token injection, 401 refresh, logging)
- Secure storage: flutter_secure_storage (NEVER SharedPreferences for auth tokens)
- Tests: flutter_test + mocktail