@1ly/mcp-server 0.1.2 → 0.1.4

package/dist/security-log.d.ts

@@ -0,0 +1,55 @@
+/**
+ * Security Event Audit Logging
+ *
+ * Provides structured logging for security-relevant events to support:
+ * - Compliance auditing (SOC 2, ISO 27001)
+ * - Security monitoring and alerting
+ * - Incident response and forensics
+ * - Operational analytics
+ *
+ * Implementation Notes:
+ * - Logs to stderr (stdout reserved for MCP protocol communication)
+ * - JSON format for machine readability and SIEM integration
+ * - ISO 8601 timestamps for log aggregation
+ * - Non-blocking operation
+ *
+ * @module security-log
+ */
+/**
+ * Security event types categorized by domain
+ */
+export type SecurityEventType = "budget_exceeded" | "rate_limit_exceeded" | "wallet_path_violation" | "api_base_violation" | "invalid_budget_config" | "large_upload_blocked" | "api_call_paid" | "store_created" | "withdrawal_requested";
+/**
+ * Structured security event log entry
+ */
+export interface SecurityEvent {
+    /** ISO 8601 timestamp */
+    timestamp: string;
+    /** Event type identifier */
+    event: SecurityEventType;
+    /** Event-specific contextual data */
+    details: Record<string, unknown>;
+}
+/**
+ * Log a security-relevant event for audit trail
+ *
+ * Events are written to stderr in JSON format for:
+ * - Log aggregation systems (Datadog, Splunk, ELK)
+ * - SIEM platforms
+ * - Compliance reporting
+ *
+ * @param event - Event type identifier
+ * @param details - Event-specific contextual information
+ *
+ * @example
+ * ```typescript
+ * logSecurityEvent("budget_exceeded", {
+ *   type: "daily",
+ *   currentSpent: 48.50,
+ *   limit: 50.00,
+ *   attemptedAmount: 2.00
+ * });
+ * ```
+ */
+export declare function logSecurityEvent(event: SecurityEventType, details?: Record<string, unknown>): void;
+//# sourceMappingURL=security-log.d.ts.map

package/dist/security-log.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-log.d.ts","sourceRoot":"","sources":["../src/security-log.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH;;GAEG;AACH,MAAM,MAAM,iBAAiB,GAEzB,iBAAiB,GACjB,qBAAqB,GAErB,uBAAuB,GACvB,oBAAoB,GACpB,uBAAuB,GAEvB,sBAAsB,GAEtB,eAAe,GACf,eAAe,GACf,sBAAsB,CAAC;AAE3B;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,4BAA4B;IAC5B,KAAK,EAAE,iBAAiB,CAAC;IACzB,qCAAqC;IACrC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAClC;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,gBAAgB,CAC9B,KAAK,EAAE,iBAAiB,EACxB,OAAO,GAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAM,GACpC,IAAI,CAUN"}

package/dist/security-log.js

@@ -0,0 +1,52 @@
+"use strict";
+/**
+ * Security Event Audit Logging
+ *
+ * Provides structured logging for security-relevant events to support:
+ * - Compliance auditing (SOC 2, ISO 27001)
+ * - Security monitoring and alerting
+ * - Incident response and forensics
+ * - Operational analytics
+ *
+ * Implementation Notes:
+ * - Logs to stderr (stdout reserved for MCP protocol communication)
+ * - JSON format for machine readability and SIEM integration
+ * - ISO 8601 timestamps for log aggregation
+ * - Non-blocking operation
+ *
+ * @module security-log
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.logSecurityEvent = logSecurityEvent;
+/**
+ * Log a security-relevant event for audit trail
+ *
+ * Events are written to stderr in JSON format for:
+ * - Log aggregation systems (Datadog, Splunk, ELK)
+ * - SIEM platforms
+ * - Compliance reporting
+ *
+ * @param event - Event type identifier
+ * @param details - Event-specific contextual information
+ *
+ * @example
+ * ```typescript
+ * logSecurityEvent("budget_exceeded", {
+ *   type: "daily",
+ *   currentSpent: 48.50,
+ *   limit: 50.00,
+ *   attemptedAmount: 2.00
+ * });
+ * ```
+ */
+function logSecurityEvent(event, details = {}) {
+    const entry = {
+        timestamp: new Date().toISOString(),
+        event,
+        details,
+    };
+    // Write to stderr (stdout is MCP protocol channel)
+    // Using console.error for non-blocking write
+    console.error(JSON.stringify(entry));
+}
+//# sourceMappingURL=security-log.js.map

package/dist/security-log.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-log.js","sourceRoot":"","sources":["../src/security-log.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;GAgBG;;AAqDH,4CAaC;AAlCD;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,SAAgB,gBAAgB,CAC9B,KAAwB,EACxB,UAAmC,EAAE;IAErC,MAAM,KAAK,GAAkB;QAC3B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,KAAK;QACL,OAAO;KACR,CAAC;IAEF,mDAAmD;IACnD,6CAA6C;IAC7C,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;AACvC,CAAC"}

package/dist/tools/create-link.d.ts

@@ -30,6 +30,10 @@ export declare const createLinkTool: {
             isStealth: {
                 type: string;
             };
+            webhookUrl: {
+                type: string;
+                description: string;
+            };
         };
         required: string[];
     };

package/dist/tools/create-link.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"create-link.d.ts","sourceRoot":"","sources":["../../src/tools/create-link.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAiB1B,CAAC;AAaF,wBAAsB,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GA2BnE"}
+{"version":3,"file":"create-link.d.ts","sourceRoot":"","sources":["../../src/tools/create-link.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAkB1B,CAAC;AAcF,wBAAsB,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GA4BnE"}

package/dist/tools/create-link.js

@@ -19,6 +19,7 @@ exports.createLinkTool = {
             currency: { type: "string", enum: ["USDC"] },
             isPublic: { type: "boolean" },
             isStealth: { type: "boolean" },
+            webhookUrl: { type: "string", description: "Optional webhook URL for purchase events" },
         },
         required: ["title", "url"],
     },
@@ -32,6 +33,7 @@ const InputSchema = zod_1.z.object({
     currency: zod_1.z.literal("USDC").optional(),
     isPublic: zod_1.z.boolean().optional(),
     isStealth: zod_1.z.boolean().optional(),
+    webhookUrl: zod_1.z.string().url().optional(),
 });
 async function handleCreateLink(args, config) {
     const input = InputSchema.parse(args);
@@ -53,6 +55,7 @@ async function handleCreateLink(args, config) {
             currency: input.currency || "USDC",
             isPublic: input.isPublic ?? true,
             isStealth: input.isStealth ?? false,
+            webhookUrl: input.webhookUrl,
         }),
     });
     await (0, http_js_1.assertOk)(res, "Create link failed");

package/dist/tools/create-link.js.map

@@ -1 +1 @@
-{"version":3,"file":"create-link.js","sourceRoot":"","sources":["../../src/tools/create-link.ts"],"names":[],"mappings":";;;AAmCA,4CA2BC;AA9DD,6BAAwB;AAExB,wCAAwD;AACxD,sCAAkC;AAErB,QAAA,cAAc,GAAG;IAC5B,IAAI,EAAE,iBAAiB;IACvB,WAAW,EAAE,wEAAwE;IACrF,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,GAAG,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACvB,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YAC/B,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,EAAE;YAC5C,QAAQ,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;YAC7B,SAAS,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;SAC/B;QACD,QAAQ,EAAE,CAAC,OAAO,EAAE,KAAK,CAAC;KAC3B;CACF,CAAC;AAEF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;IACjC,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE;IACrB,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;IAC3C,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,QAAQ,EAAE;IAChE,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,QAAQ,EAAE;IACxD,QAAQ,EAAE,OAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,QAAQ,EAAE;IACtC,QAAQ,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAChC,SAAS,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAClC,CAAC,CAAC;AAEI,KAAK,UAAU,gBAAgB,CAAC,IAAa,EAAE,MAAc;IAClE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,MAAM,CAAC,OAAO,eAAe,EAAE;QACnE,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;SACzC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,QAAQ,EAAE,KAAK,CAAC,QAAQ,IAAI,MAAM;YAClC,QAAQ,EAAE,KAAK,CAAC,QAAQ,IAAI,IAAI;YAChC,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,KAAK;SACpC,CAAC;KACH,CAAC,CAAC;IAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,oBAAoB,CAAC,CAAC;IAC1C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;AACrB,CAAC"}
+{"version":3,"file":"create-link.js","sourceRoot":"","sources":["../../src/tools/create-link.ts"],"names":[],"mappings":";;;AAqCA,4CA4BC;AAjED,6BAAwB;AAExB,wCAAwD;AACxD,sCAAkC;AAErB,QAAA,cAAc,GAAG;IAC5B,IAAI,EAAE,iBAAiB;IACvB,WAAW,EAAE,wEAAwE;IACrF,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,GAAG,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACvB,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YAC/B,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,EAAE;YAC5C,QAAQ,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;YAC7B,SAAS,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;YAC9B,UAAU,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,0CAA0C,EAAE;SACxF;QACD,QAAQ,EAAE,CAAC,OAAO,EAAE,KAAK,CAAC;KAC3B;CACF,CAAC;AAEF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;IACjC,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE;IACrB,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;IAC3C,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,QAAQ,EAAE;IAChE,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,QAAQ,EAAE;IACxD,QAAQ,EAAE,OAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,QAAQ,EAAE;IACtC,QAAQ,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAChC,SAAS,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACjC,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;CACxC,CAAC,CAAC;AAEI,KAAK,UAAU,gBAAgB,CAAC,IAAa,EAAE,MAAc;IAClE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,MAAM,CAAC,OAAO,eAAe,EAAE;QACnE,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;SACzC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,QAAQ,EAAE,KAAK,CAAC,QAAQ,IAAI,MAAM;YAClC,QAAQ,EAAE,KAAK,CAAC,QAAQ,IAAI,IAAI;YAChC,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,KAAK;YACnC,UAAU,EAAE,KAAK,CAAC,UAAU;SAC7B,CAAC;KACH,CAAC,CAAC;IAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,oBAAoB,CAAC,CAAC;IAC1C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;AACrB,CAAC"}

package/dist/tools/list-withdrawals.d.ts

@@ -0,0 +1,26 @@
+import type { Config } from "../config.js";
+export declare const listWithdrawalsTool: {
+    name: string;
+    description: string;
+    inputSchema: {
+        type: "object";
+        properties: {
+            limit: {
+                type: string;
+                description: string;
+            };
+            cursor: {
+                type: string;
+                description: string;
+            };
+        };
+    };
+};
+export declare function handleListWithdrawals(args: unknown, config: Config): Promise<{
+    isError?: true | undefined;
+    content: {
+        type: "text";
+        text: string;
+    }[];
+}>;
+//# sourceMappingURL=list-withdrawals.d.ts.map

package/dist/tools/list-withdrawals.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-withdrawals.d.ts","sourceRoot":"","sources":["../../src/tools/list-withdrawals.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;CAU/B,CAAC;AAOF,wBAAsB,qBAAqB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GAoBxE"}

package/dist/tools/list-withdrawals.js

@@ -0,0 +1,43 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.listWithdrawalsTool = void 0;
+exports.handleListWithdrawals = handleListWithdrawals;
+const zod_1 = require("zod");
+const http_js_1 = require("../http.js");
+const mcp_js_1 = require("../mcp.js");
+exports.listWithdrawalsTool = {
+    name: "1ly_list_withdrawals",
+    description: "List withdrawal requests for your store (requires ONELY_API_KEY).",
+    inputSchema: {
+        type: "object",
+        properties: {
+            limit: { type: "number", description: "Max items (default 25, max 100)" },
+            cursor: { type: "string", description: "Pagination cursor from previous response" },
+        },
+    },
+};
+const InputSchema = zod_1.z.object({
+    limit: zod_1.z.number().min(1).max(100).optional(),
+    cursor: zod_1.z.string().optional(),
+});
+async function handleListWithdrawals(args, config) {
+    const input = InputSchema.parse(args);
+    if (!config.apiKey) {
+        throw new Error("Missing ONELY_API_KEY for listing withdrawals");
+    }
+    const url = new URL(`${config.apiBase}/api/v1/withdrawals`);
+    if (input.limit)
+        url.searchParams.set("limit", String(input.limit));
+    if (input.cursor)
+        url.searchParams.set("cursor", input.cursor);
+    const res = await (0, http_js_1.fetchWithTimeout)(url.toString(), {
+        method: "GET",
+        headers: {
+            Authorization: `Bearer ${config.apiKey}`,
+        },
+    });
+    await (0, http_js_1.assertOk)(res, "List withdrawals failed");
+    const data = await res.json();
+    return (0, mcp_js_1.mcpOk)(data);
+}
+//# sourceMappingURL=list-withdrawals.js.map

package/dist/tools/list-withdrawals.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-withdrawals.js","sourceRoot":"","sources":["../../src/tools/list-withdrawals.ts"],"names":[],"mappings":";;;AAsBA,sDAoBC;AA1CD,6BAAwB;AAExB,wCAAwD;AACxD,sCAAkC;AAErB,QAAA,mBAAmB,GAAG;IACjC,IAAI,EAAE,sBAAsB;IAC5B,WAAW,EAAE,mEAAmE;IAChF,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,iCAAiC,EAAE;YACzE,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,0CAA0C,EAAE;SACpF;KACF;CACF,CAAC;AAEF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;IAC5C,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC9B,CAAC,CAAC;AAEI,KAAK,UAAU,qBAAqB,CAAC,IAAa,EAAE,MAAc;IACvE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;IACnE,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,MAAM,CAAC,OAAO,qBAAqB,CAAC,CAAC;IAC5D,IAAI,KAAK,CAAC,KAAK;QAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC;IACpE,IAAI,KAAK,CAAC,MAAM;QAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;IAE/D,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,CAAC,QAAQ,EAAE,EAAE;QACjD,MAAM,EAAE,KAAK;QACb,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;SACzC;KACF,CAAC,CAAC;IAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,yBAAyB,CAAC,CAAC;IAC/C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;AACrB,CAAC"}

package/dist/tools/update-avatar.d.ts

@@ -0,0 +1,34 @@
+import type { Config } from "../config.js";
+export declare const updateAvatarTool: {
+    name: string;
+    description: string;
+    inputSchema: {
+        type: "object";
+        properties: {
+            avatarUrl: {
+                type: string;
+                description: string;
+            };
+            imageBase64: {
+                type: string;
+                description: string;
+            };
+            mimeType: {
+                type: string;
+                description: string;
+            };
+            filename: {
+                type: string;
+                description: string;
+            };
+        };
+    };
+};
+export declare function handleUpdateAvatar(args: unknown, config: Config): Promise<{
+    isError?: true | undefined;
+    content: {
+        type: "text";
+        text: string;
+    }[];
+}>;
+//# sourceMappingURL=update-avatar.d.ts.map

package/dist/tools/update-avatar.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"update-avatar.d.ts","sourceRoot":"","sources":["../../src/tools/update-avatar.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;CAY5B,CAAC;AAmBF,wBAAsB,kBAAkB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GA6DrE"}

package/dist/tools/update-avatar.js

@@ -0,0 +1,89 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.updateAvatarTool = void 0;
+exports.handleUpdateAvatar = handleUpdateAvatar;
+const zod_1 = require("zod");
+const http_js_1 = require("../http.js");
+const mcp_js_1 = require("../mcp.js");
+exports.updateAvatarTool = {
+    name: "1ly_update_avatar",
+    description: "Update your store avatar image (requires ONELY_API_KEY).",
+    inputSchema: {
+        type: "object",
+        properties: {
+            avatarUrl: { type: "string", description: "Public image URL to use as avatar" },
+            imageBase64: { type: "string", description: "Base64-encoded image bytes" },
+            mimeType: { type: "string", description: "Image MIME type (image/png, image/jpeg, image/webp, image/gif)" },
+            filename: { type: "string", description: "Optional filename (default: avatar.png)" },
+        },
+    },
+};
+const InputSchema = zod_1.z.object({
+    avatarUrl: zod_1.z.string().url().optional(),
+    imageBase64: zod_1.z
+        .string()
+        .min(1)
+        .max(10_485_760) // 10MB max (base64 encoded ~= 1.37x original size)
+        .optional(),
+    mimeType: zod_1.z
+        .enum(["image/png", "image/jpeg", "image/jpg", "image/webp", "image/gif"]) // Strict MIME type validation
+        .optional(),
+    filename: zod_1.z
+        .string()
+        .regex(/^[a-zA-Z0-9_.-]+$/) // Prevent path traversal in filename
+        .max(255)
+        .optional(),
+});
+async function handleUpdateAvatar(args, config) {
+    const input = InputSchema.parse(args);
+    if (!config.apiKey) {
+        throw new Error("Missing ONELY_API_KEY for updating avatar");
+    }
+    if (input.avatarUrl) {
+        const res = await (0, http_js_1.fetchWithTimeout)(`${config.apiBase}/api/v1/avatar`, {
+            method: "POST",
+            headers: {
+                "Content-Type": "application/json",
+                Authorization: `Bearer ${config.apiKey}`,
+            },
+            body: JSON.stringify({ avatarUrl: input.avatarUrl }),
+        });
+        await (0, http_js_1.assertOk)(res, "Update avatar failed");
+        const data = await res.json();
+        return (0, mcp_js_1.mcpOk)(data);
+    }
+    if (!input.imageBase64 || !input.mimeType) {
+        throw new Error("Provide either avatarUrl or imageBase64 + mimeType");
+    }
+    // Decode and validate base64
+    let buffer;
+    try {
+        buffer = Buffer.from(input.imageBase64, "base64");
+    }
+    catch (err) {
+        throw new Error("Invalid base64 encoding");
+    }
+    // Validate decoded size (5MB max for actual image data)
+    const maxSize = 5 * 1024 * 1024; // 5MB
+    if (buffer.length > maxSize) {
+        throw new Error(`Image size ${(buffer.length / 1024 / 1024).toFixed(2)}MB exceeds 5MB limit`);
+    }
+    // Minimum size check (prevent empty uploads)
+    if (buffer.length < 100) {
+        throw new Error("Image too small - minimum 100 bytes");
+    }
+    const blob = new Blob([buffer], { type: input.mimeType });
+    const formData = new FormData();
+    formData.append("file", blob, input.filename || "avatar.png");
+    const res = await (0, http_js_1.fetchWithTimeout)(`${config.apiBase}/api/v1/avatar`, {
+        method: "POST",
+        headers: {
+            Authorization: `Bearer ${config.apiKey}`,
+        },
+        body: formData,
+    });
+    await (0, http_js_1.assertOk)(res, "Update avatar failed");
+    const data = await res.json();
+    return (0, mcp_js_1.mcpOk)(data);
+}
+//# sourceMappingURL=update-avatar.js.map

package/dist/tools/update-avatar.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"update-avatar.js","sourceRoot":"","sources":["../../src/tools/update-avatar.ts"],"names":[],"mappings":";;;AAoCA,gDA6DC;AAjGD,6BAAwB;AAExB,wCAAwD;AACxD,sCAAkC;AAErB,QAAA,gBAAgB,GAAG;IAC9B,IAAI,EAAE,mBAAmB;IACzB,WAAW,EAAE,0DAA0D;IACvE,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,SAAS,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,mCAAmC,EAAE;YAC/E,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,4BAA4B,EAAE;YAC1E,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,gEAAgE,EAAE;YAC3G,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,yCAAyC,EAAE;SACrF;KACF;CACF,CAAC;AAEF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACtC,WAAW,EAAE,OAAC;SACX,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,GAAG,CAAC,UAAU,CAAC,CAAC,mDAAmD;SACnE,QAAQ,EAAE;IACb,QAAQ,EAAE,OAAC;SACR,IAAI,CAAC,CAAC,WAAW,EAAE,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE,WAAW,CAAC,CAAC,CAAC,8BAA8B;SACxG,QAAQ,EAAE;IACb,QAAQ,EAAE,OAAC;SACR,MAAM,EAAE;SACR,KAAK,CAAC,mBAAmB,CAAC,CAAC,qCAAqC;SAChE,GAAG,CAAC,GAAG,CAAC;SACR,QAAQ,EAAE;CACd,CAAC,CAAC;AAEI,KAAK,UAAU,kBAAkB,CAAC,IAAa,EAAE,MAAc;IACpE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;IAC/D,CAAC;IAED,IAAI,KAAK,CAAC,SAAS,EAAE,CAAC;QACpB,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,MAAM,CAAC,OAAO,gBAAgB,EAAE;YACpE,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;aACzC;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,SAAS,EAAE,KAAK,CAAC,SAAS,EAAE,CAAC;SACrD,CAAC,CAAC;QAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,sBAAsB,CAAC,CAAC;QAC5C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;IACrB,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,WAAW,IAAI,CAAC,KAAK,CAAC,QAAQ,EAAE,CAAC;QAC1C,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;IACxE,CAAC;IAED,6BAA6B;IAC7B,IAAI,MAAc,CAAC;IACnB,IAAI,CAAC;QACH,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IACpD,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IAED,wDAAwD;IACxD,MAAM,OAAO,GAAG,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,MAAM;IACvC,IAAI,MAAM,CAAC,MAAM,GAAG,OAAO,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CACb,cAAc,CAAC,MAAM,CAAC,MAAM,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,sBAAsB,CAC7E,CAAC;IACJ,CAAC;IAED,6CAA6C;IAC7C,IAAI,MAAM,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,CAAC,MAAM,CAAC,EAAE,EAAE,IAAI,EAAE,KAAK,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC1D,MAAM,QAAQ,GAAG,IAAI,QAAQ,EAAE,CAAC;IAChC,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,QAAQ,IAAI,YAAY,CAAC,CAAC;IAE9D,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,MAAM,CAAC,OAAO,gBAAgB,EAAE;QACpE,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;SACzC;QACD,IAAI,EAAE,QAAQ;KACf,CAAC,CAAC;IAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,sBAAsB,CAAC,CAAC;IAC5C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;AACrB,CAAC"}

package/dist/tools/update-link.d.ts

@@ -29,6 +29,9 @@ export declare const updateLinkTool: {
             isStealth: {
                 type: string;
             };
+            webhookUrl: {
+                type: string;
+            };
         };
         required: string[];
     };

package/dist/tools/update-link.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"update-link.d.ts","sourceRoot":"","sources":["../../src/tools/update-link.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAiB1B,CAAC;AAaF,wBAAsB,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GA0BnE"}
+{"version":3,"file":"update-link.d.ts","sourceRoot":"","sources":["../../src/tools/update-link.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAkB1B,CAAC;AAcF,wBAAsB,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GA2BnE"}

package/dist/tools/update-link.js

@@ -19,6 +19,7 @@ exports.updateLinkTool = {
             price: { type: "string" },
             isPublic: { type: "boolean" },
             isStealth: { type: "boolean" },
+            webhookUrl: { type: "string" },
         },
         required: ["id"],
     },
@@ -32,6 +33,7 @@ const InputSchema = zod_1.z.object({
     price: zod_1.z.string().regex(/^\d+(\.\d{1,18})?$/).optional(),
     isPublic: zod_1.z.boolean().optional(),
     isStealth: zod_1.z.boolean().optional(),
+    webhookUrl: zod_1.z.string().url().optional().nullable(),
 });
 async function handleUpdateLink(args, config) {
     const input = InputSchema.parse(args);
@@ -52,6 +54,7 @@ async function handleUpdateLink(args, config) {
             price: input.price,
             isPublic: input.isPublic,
             isStealth: input.isStealth,
+            webhookUrl: input.webhookUrl,
         }),
     });
     await (0, http_js_1.assertOk)(res, "Update link failed");

package/dist/tools/update-link.js.map

@@ -1 +1 @@
-{"version":3,"file":"update-link.js","sourceRoot":"","sources":["../../src/tools/update-link.ts"],"names":[],"mappings":";;;AAmCA,4CA0BC;AA7DD,6BAAwB;AAExB,wCAAwD;AACxD,sCAAkC;AAErB,QAAA,cAAc,GAAG;IAC5B,IAAI,EAAE,iBAAiB;IACvB,WAAW,EAAE,oDAAoD;IACjE,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACtB,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,GAAG,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACvB,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YAC/B,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,QAAQ,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;YAC7B,SAAS,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;SAC/B;QACD,QAAQ,EAAE,CAAC,IAAI,CAAC;KACjB;CACF,CAAC;AAEF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE;IACrB,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;IAC5C,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IAChC,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IACtD,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,QAAQ,EAAE;IAChE,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,QAAQ,EAAE;IACxD,QAAQ,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAChC,SAAS,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAClC,CAAC,CAAC;AAEI,KAAK,UAAU,gBAAgB,CAAC,IAAa,EAAE,MAAc;IAClE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,MAAM,CAAC,OAAO,iBAAiB,KAAK,CAAC,EAAE,EAAE,EAAE;QAC/E,MAAM,EAAE,OAAO;QACf,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;SACzC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,QAAQ,EAAE,KAAK,CAAC,QAAQ;YACxB,SAAS,EAAE,KAAK,CAAC,SAAS;SAC3B,CAAC;KACH,CAAC,CAAC;IAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,oBAAoB,CAAC,CAAC;IAC1C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;AACrB,CAAC"}
+{"version":3,"file":"update-link.js","sourceRoot":"","sources":["../../src/tools/update-link.ts"],"names":[],"mappings":";;;AAqCA,4CA2BC;AAhED,6BAAwB;AAExB,wCAAwD;AACxD,sCAAkC;AAErB,QAAA,cAAc,GAAG;IAC5B,IAAI,EAAE,iBAAiB;IACvB,WAAW,EAAE,oDAAoD;IACjE,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACtB,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,GAAG,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACvB,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YAC/B,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACzB,QAAQ,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;YAC7B,SAAS,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;YAC9B,UAAU,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;SAC/B;QACD,QAAQ,EAAE,CAAC,IAAI,CAAC;KACjB;CACF,CAAC;AAEF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE;IACrB,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;IAC5C,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IAChC,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IACtD,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,QAAQ,EAAE;IAChE,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,QAAQ,EAAE;IACxD,QAAQ,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAChC,SAAS,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACjC,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;CACnD,CAAC,CAAC;AAEI,KAAK,UAAU,gBAAgB,CAAC,IAAa,EAAE,MAAc;IAClE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,MAAM,CAAC,OAAO,iBAAiB,KAAK,CAAC,EAAE,EAAE,EAAE;QAC/E,MAAM,EAAE,OAAO;QACf,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;SACzC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,QAAQ,EAAE,KAAK,CAAC,QAAQ;YACxB,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,UAAU,EAAE,KAAK,CAAC,UAAU;SAC7B,CAAC;KACH,CAAC,CAAC;IAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,oBAAoB,CAAC,CAAC;IAC1C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;AACrB,CAAC"}

package/dist/tools/update-profile.d.ts

@@ -0,0 +1,30 @@
+import type { Config } from "../config.js";
+export declare const updateProfileTool: {
+    name: string;
+    description: string;
+    inputSchema: {
+        type: "object";
+        properties: {
+            username: {
+                type: string;
+                description: string;
+            };
+            displayName: {
+                type: string;
+                description: string;
+            };
+            bio: {
+                type: string;
+                description: string;
+            };
+        };
+    };
+};
+export declare function handleUpdateProfile(args: unknown, config: Config): Promise<{
+    isError?: true | undefined;
+    content: {
+        type: "text";
+        text: string;
+    }[];
+}>;
+//# sourceMappingURL=update-profile.d.ts.map

package/dist/tools/update-profile.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"update-profile.d.ts","sourceRoot":"","sources":["../../src/tools/update-profile.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;CAW7B,CAAC;AAQF,wBAAsB,mBAAmB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GAkBtE"}

package/dist/tools/update-profile.js

@@ -0,0 +1,42 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.updateProfileTool = void 0;
+exports.handleUpdateProfile = handleUpdateProfile;
+const zod_1 = require("zod");
+const http_js_1 = require("../http.js");
+const mcp_js_1 = require("../mcp.js");
+exports.updateProfileTool = {
+    name: "1ly_update_profile",
+    description: "Update basic store profile details (requires ONELY_API_KEY).",
+    inputSchema: {
+        type: "object",
+        properties: {
+            username: { type: "string", description: "New username (lowercase, underscores)" },
+            displayName: { type: "string", description: "Public display name" },
+            bio: { type: "string", description: "Short bio (max 160 chars)" },
+        },
+    },
+};
+const InputSchema = zod_1.z.object({
+    username: zod_1.z.string().min(3).max(32).regex(/^[a-z0-9_]+$/).optional(),
+    displayName: zod_1.z.string().max(50).optional(),
+    bio: zod_1.z.string().max(160).optional(),
+});
+async function handleUpdateProfile(args, config) {
+    const input = InputSchema.parse(args);
+    if (!config.apiKey) {
+        throw new Error("Missing ONELY_API_KEY for updating profile");
+    }
+    const res = await (0, http_js_1.fetchWithTimeout)(`${config.apiBase}/api/v1/profile`, {
+        method: "PATCH",
+        headers: {
+            "Content-Type": "application/json",
+            Authorization: `Bearer ${config.apiKey}`,
+        },
+        body: JSON.stringify(input),
+    });
+    await (0, http_js_1.assertOk)(res, "Update profile failed");
+    const data = await res.json();
+    return (0, mcp_js_1.mcpOk)(data);
+}
+//# sourceMappingURL=update-profile.js.map

package/dist/tools/update-profile.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"update-profile.js","sourceRoot":"","sources":["../../src/tools/update-profile.ts"],"names":[],"mappings":";;;AAwBA,kDAkBC;AA1CD,6BAAwB;AAExB,wCAAwD;AACxD,sCAAkC;AAErB,QAAA,iBAAiB,GAAG;IAC/B,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EAAE,8DAA8D;IAC3E,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,uCAAuC,EAAE;YAClF,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,qBAAqB,EAAE;YACnE,GAAG,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,2BAA2B,EAAE;SAClE;KACF;CACF,CAAC;AAEF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,QAAQ,EAAE;IACpE,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC1C,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;CACpC,CAAC,CAAC;AAEI,KAAK,UAAU,mBAAmB,CAAC,IAAa,EAAE,MAAc;IACrE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,IAAA,0BAAgB,EAAC,GAAG,MAAM,CAAC,OAAO,iBAAiB,EAAE;QACrE,MAAM,EAAE,OAAO;QACf,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,aAAa,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;SACzC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC;KAC5B,CAAC,CAAC;IAEH,MAAM,IAAA,kBAAQ,EAAC,GAAG,EAAE,uBAAuB,CAAC,CAAC;IAC7C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,IAAA,cAAK,EAAC,IAAI,CAAC,CAAC;AACrB,CAAC"}

package/dist/tools/update-socials.d.ts

@@ -0,0 +1,41 @@
+import type { Config } from "../config.js";
+export declare const updateSocialsTool: {
+    name: string;
+    description: string;
+    inputSchema: {
+        type: "object";
+        properties: {
+            socials: {
+                type: string;
+                items: {
+                    type: string;
+                    properties: {
+                        type: {
+                            type: string;
+                            enum: string[];
+                        };
+                        url: {
+                            type: string;
+                        };
+                        displayOrder: {
+                            type: string;
+                        };
+                        isVisible: {
+                            type: string;
+                        };
+                    };
+                    required: string[];
+                };
+            };
+        };
+        required: string[];
+    };
+};
+export declare function handleUpdateSocials(args: unknown, config: Config): Promise<{
+    isError?: true | undefined;
+    content: {
+        type: "text";
+        text: string;
+    }[];
+}>;
+//# sourceMappingURL=update-socials.d.ts.map

package/dist/tools/update-socials.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"update-socials.d.ts","sourceRoot":"","sources":["../../src/tools/update-socials.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAI3C,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAqC7B,CAAC;AA2BF,wBAAsB,mBAAmB,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM;;;;;;GAkBtE"}

package/dist/tools/update-socials.js

@@ -0,0 +1,85 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.updateSocialsTool = void 0;
+exports.handleUpdateSocials = handleUpdateSocials;
+const zod_1 = require("zod");
+const http_js_1 = require("../http.js");
+const mcp_js_1 = require("../mcp.js");
+exports.updateSocialsTool = {
+    name: "1ly_update_socials",
+    description: "Update socials for your store (requires ONELY_API_KEY).",
+    inputSchema: {
+        type: "object",
+        properties: {
+            socials: {
+                type: "array",
+                items: {
+                    type: "object",
+                    properties: {
+                        type: {
+                            type: "string",
+                            enum: [
+                                "x",
+                                "github",
+                                "telegram",
+                                "web3_bio",
+                                "website",
+                                "youtube",
+                                "linkedin",
+                                "discord",
+                                "facebook",
+                                "tiktok",
+                                "instagram",
+                            ],
+                        },
+                        url: { type: "string" },
+                        displayOrder: { type: "number" },
+                        isVisible: { type: "boolean" },
+                    },
+                    required: ["type", "url"],
+                },
+            },
+        },
+        required: ["socials"],
+    },
+};
+const socialTypeEnum = zod_1.z.enum([
+    "x",
+    "github",
+    "telegram",
+    "web3_bio",
+    "website",
+    "youtube",
+    "linkedin",
+    "discord",
+    "facebook",
+    "tiktok",
+    "instagram",
+]);
+const socialSchema = zod_1.z.object({
+    type: socialTypeEnum,
+    url: zod_1.z.string().url(),
+    displayOrder: zod_1.z.number().min(0).max(50).optional(),
+    isVisible: zod_1.z.boolean().optional(),
+});
+const InputSchema = zod_1.z.object({
+    socials: zod_1.z.array(socialSchema).max(10),
+});
+async function handleUpdateSocials(args, config) {
+    const input = InputSchema.parse(args);
+    if (!config.apiKey) {
+        throw new Error("Missing ONELY_API_KEY for updating socials");
+    }
+    const res = await (0, http_js_1.fetchWithTimeout)(`${config.apiBase}/api/v1/socials`, {
+        method: "POST",
+        headers: {
+            "Content-Type": "application/json",
+            Authorization: `Bearer ${config.apiKey}`,
+        },
+        body: JSON.stringify({ socials: input.socials }),
+    });
+    await (0, http_js_1.assertOk)(res, "Update socials failed");
+    const data = await res.json();
+    return (0, mcp_js_1.mcpOk)(data);
+}
+//# sourceMappingURL=update-socials.js.map