@agent-score/commerce 1.8.1 → 2.0.0

package/dist/index.d.mts

@@ -1,7 +1,13 @@
-export { AccountVerification, AgentIdentity, AgentMemoryHint, AgentScoreCore, AgentScoreCoreOptions, AssessResult, CreateSessionOnMissing, DenialCode, DenialReason, EvaluateOutcome, OperatorVerification, PolicyCheck, PolicyResult, SignerVerdict, VerifyWalletSignerResult, buildAgentMemoryHint } from './core.mjs';
-export { P as PaymentSigner, S as SignerNetwork, e as extractPaymentSigner, r as readX402PaymentHeader } from './signer-CFVQsWjL.mjs';
-export { F as FIXABLE_DENIAL_REASONS, b as buildContactSupportNextSteps, a as buildSignerMismatchBody, d as denialReasonStatus, c as denialReasonToBody, i as isFixableDenial, v as verificationAgentInstructions } from './_response-9yp6Fit2.mjs';
-export { EnforcementMode, GateResult, IdentityStatus, PolicyBlock, buildGateOptionsFromPolicy, runGateWithEnforcement, shippingCountryAllowed, shippingStateAllowed } from './identity/policy.mjs';
+export { AccountVerification, AgentIdentity, AgentMemoryHint, AgentScoreCore, AssessResult, CreateSessionOnMissing, DenialCode, DenialReason, EvaluateOutcome, OperatorVerification, PolicyCheck, PolicyResult, SignerVerdict, VerifyWalletSignerResult, buildAgentMemoryHint } from './core.mjs';
+export { P as PaymentSigner, S as SignerNetwork, e as extractPaymentSigner, a as extractPaymentSignerFromAuth, b as extractSignerForPrecheck, r as readX402PaymentHeader } from './signer-3FAit11j.mjs';
+export { F as FIXABLE_DENIAL_REASONS, b as buildContactSupportNextSteps, a as buildSignerMismatchBody, d as denialReasonStatus, c as denialReasonToBody, i as isFixableDenial, v as verificationAgentInstructions } from './_response-BFYN3b6i.mjs';
+import { U as UCPSigningKey, a as UCPProfile } from './checkout-DRbQ0Fsh.mjs';
+export { A as AGENTSCORE_UCP_CAPABILITY, b as AgentScoreGatePolicy, C as Checkout, c as CheckoutContext, d as CheckoutGateConfig, e as CheckoutRailSpec, f as CheckoutRequest, g as CheckoutResult, h as CheckoutValidationError, i as ComposeMppxFn, D as DiscoveryProbeConfig, G as GateDenial, I as IsCachedAddressFn, M as MountUcpRoutesOptions, j as MppxComposeOutcome, O as OnSettledFn, P as PreValidateFn, k as PricingFn, l as PricingResult, R as RecipientsFn, m as ReferenceIdFn, n as RunGateFn, S as SettleOutcome, o as UCPCapabilityBinding, p as UCPPaymentHandlerBinding, q as UCPProfileBody, r as UCPServiceBinding, s as buildUCPProfile, t as getIdentityStatus, u as makeMppxComposeHook, v as mppPaymentHandler, w as pricingResult, x as stripeSptPaymentHandler, y as validationEnvelope, z as validationResponseExpress, B as validationResponseFastify, E as validationResponseHono, F as validationResponseNextjs, H as validationResponseWeb, J as x402PaymentHandler } from './checkout-DRbQ0Fsh.mjs';
+export { EnforcementMode, GateResult, IdentityStatus, PolicyBlock, buildGateFromPolicy, runGateWithEnforcement, shippingCountryAllowed, shippingStateAllowed, validateShippingAgainstPolicy } from './identity/policy.mjs';
+export { S as SolanaMppRailSpec, b as StripeRailSpec, T as TempoRailSpec, a as TempoSessionRailSpec, X as X402BaseRailSpec } from './rail_spec-XP0wKgJV.mjs';
+export { f as formatUsdCents, l as loadSolanaFeePayer } from './solana-Cds87OTu.mjs';
+import './pricing-CxzwyiO6.mjs';
+import './x402_server-hgQzWQwB.mjs';
 
 /**
  * Google A2A (Agent-to-Agent) v1.0 Agent Card builder.
@@ -209,320 +215,6 @@ interface BuildA2AAgentCardInput {
  */
 declare function buildA2AAgentCard(input: BuildA2AAgentCardInput): A2AAgentCard;
 
-/**
- * Construct a UCPSigningKey from a public JWK dict (e.g. the `publicJWK` returned by
- * `generateUCPSigningKey()`). Validates required fields and rejects symmetric keys that
- * can't publicly verify a JWS in trust-mode UCP. Mirrors python's
- * `UCPSigningKey.from_jwk(public_jwk)` classmethod via the `UCPSigningKey.fromJWK`
- * static-method-style namespace export below.
- */
-declare function ucpSigningKeyFromJWKImpl(jwk: Record<string, unknown>): UCPSigningKey;
-/**
- * UCP (Universal Commerce Protocol) profile builder.
- *
- * Compose the JSON payload published at `/.well-known/ucp` per the UCP spec.
- * Output shape matches the spec example: top-level `{ ucp: {...}, signing_keys: [...] }`
- * envelope, with `services` / `capabilities` / `payment_handlers` as MAPs keyed by
- * reverse-DNS service / capability / handler name.
- *
- * AgentScore identity claims layer over UCP via the `sh.agentscore.identity` capability
- * (vendor-namespaced; UCP doesn't define KYC/sanctions/age/jurisdiction natively). The
- * capability extends `dev.ucp.shopping.checkout` AND `dev.ucp.shopping.cart` (multi-parent,
- * the standard pattern UCP allows for capabilities that compose multiple parents).
- *
- * The unsigned profile body returned here is what merchants publish; pass it through
- * `signUCPProfile` to attach the `agentscore-profile+jws` signature for trust-mode
- * verifiers (vendor extension; UCP itself doesn't mandate profile-body signing).
- *
- * Spec reference: https://ucp.dev/
- */
-/**
- * UCP per-element shape note: each binding interface (`UCPServiceBinding`,
- * `UCPCapabilityBinding`, `UCPPaymentHandlerBinding`) carries the canonical UCP fields
- * plus arbitrary vendor extras flat on the same object via `[k: string]: unknown`. The
- * python sibling models these as dataclasses with an explicit `extras: dict` field. Both
- * designs offer equivalent guarantees through different mechanisms.
- */
-interface UCPSigningKey {
-    /** JWK kid (key id). */
-    kid: string;
-    /** JWK kty (key type) — `EC`, `RSA`, or `OKP`. */
-    kty: string;
-    /** JWK alg (signing algorithm) — `ES256`, `RS256`, or `EdDSA`. */
-    alg?: string;
-    /** JWK use, typically `sig`. */
-    use?: string;
-    /** JWK crv (curve) for EC / OKP keys. */
-    crv?: string;
-    /** JWK x / y / n / e / etc. The full key material; passed through verbatim. */
-    [k: string]: unknown;
-}
-/** Static-method-style namespace on the `UCPSigningKey` interface — mirrors python's
- *  `UCPSigningKey.from_jwk(jwk)` classmethod. Use as `UCPSigningKey.fromJWK(jwk)`. */
-declare const UCPSigningKey: {
-    fromJWK: typeof ucpSigningKeyFromJWKImpl;
-};
-/** Transport binding — keyed under a service name (e.g., `dev.ucp.shopping`). */
-interface UCPServiceBinding {
-    /** Spec version, YYYY-MM-DD per UCP convention. REQUIRED. */
-    version: string;
-    /** URL to human-readable specification. REQUIRED. */
-    spec: string;
-    /** Transport — `rest` / `mcp` / `a2a` / `embedded`. REQUIRED. */
-    transport: 'rest' | 'mcp' | 'a2a' | 'embedded';
-    /** Endpoint URL — required for rest/mcp; A2A points at the agent-card.json URL. */
-    endpoint?: string;
-    /** URL to JSON Schema — required for rest/mcp/embedded per spec. */
-    schema?: string;
-    /** Optional id for entity-instance disambiguation. */
-    id?: string;
-    /** Entity-specific config. */
-    config?: Record<string, unknown>;
-    /** Vendor-specific extras. */
-    [k: string]: unknown;
-}
-/** Capability binding — keyed under a capability name (e.g., `dev.ucp.shopping.checkout`). */
-interface UCPCapabilityBinding {
-    /** Capability version, YYYY-MM-DD. REQUIRED. */
-    version: string;
-    /** URL to human-readable specification. REQUIRED. */
-    spec: string;
-    /** URL to JSON Schema. REQUIRED. */
-    schema: string;
-    /** Optional id for entity-instance disambiguation. */
-    id?: string;
-    /** Entity-specific config (feature flags, callback URLs, etc). */
-    config?: Record<string, unknown>;
-    /** Parent capability(ies) extended — single string or array for multi-parent. */
-    extends?: string | string[];
-    /** Optional version requirements per UCP §6.5. */
-    requires?: {
-        protocol?: {
-            min: string;
-            max?: string;
-        };
-        capabilities?: Record<string, {
-            min: string;
-            max?: string;
-        }>;
-    };
-    /** Vendor-specific extras allowed per UCP convention (e.g., the AgentScore identity
-     *  capability adds a vendor-namespaced policy declaration here). */
-    [k: string]: unknown;
-}
-/** Payment handler binding — keyed under a handler reverse-DNS name (e.g., `com.google.pay`). */
-interface UCPPaymentHandlerBinding {
-    /** Handler instance id (short, human-readable, e.g., `gpay`, `tempo`, `x402`). REQUIRED. */
-    id: string;
-    /** Handler spec version, YYYY-MM-DD. REQUIRED. */
-    version: string;
-    /** URL to handler spec. REQUIRED. */
-    spec: string;
-    /** URL to handler config schema. REQUIRED. */
-    schema: string;
-    /** Available instruments — type + per-type constraints (cards, wallets, etc.). */
-    available_instruments?: Array<{
-        type: string;
-        constraints?: Record<string, unknown>;
-        [k: string]: unknown;
-    }>;
-    /** Handler config — gateway IDs, merchant IDs, public keys, etc. */
-    config?: Record<string, unknown>;
-    /** Vendor-specific extras. */
-    [k: string]: unknown;
-}
-/** UCP body — nested under the `ucp` key of the published profile. */
-interface UCPProfileBody {
-    /** UCP spec version (YYYY-MM-DD). */
-    version: string;
-    /** Display name for the merchant / agent surface. */
-    name?: string;
-    /** Services — keyed by service name (e.g., `dev.ucp.shopping`). Each value is an
-     *  array of transport bindings (one merchant typically advertises multiple transports
-     *  under one service name). */
-    services: Record<string, UCPServiceBinding[]>;
-    /** Capabilities — keyed by capability name (e.g., `dev.ucp.shopping.checkout`). */
-    capabilities: Record<string, UCPCapabilityBinding[]>;
-    /** Payment handlers — keyed by handler reverse-DNS name (e.g., `com.google.pay`). */
-    payment_handlers: Record<string, UCPPaymentHandlerBinding[]>;
-    /** Optional `supported_versions` map linking historical version-specific profile URLs.
-     *  Pattern: `{ "2026-01-23": "https://merchant/.well-known/ucp/2026-01-23", ... }`. */
-    supported_versions?: Record<string, string>;
-    /** Vendor-specific extras inside the `ucp` envelope. */
-    [k: string]: unknown;
-}
-/** Full UCP profile body as published at `/.well-known/ucp`. Top-level shape:
- *  `{ ucp: {...}, signing_keys: [...], signature?: "..." }`. */
-interface UCPProfile {
-    /** UCP body. ALL UCP-spec fields nest here per spec. */
-    ucp: UCPProfileBody;
-    /** JWKS — public keys at the OUTER level per UCP spec. Verifiers fetch this profile,
-     *  match the kid from a JWS / RFC 9421 signature header against this list, and validate. */
-    signing_keys: UCPSigningKey[];
-    /** Set when JWS-signed via `signUCPProfile` — JWS Compact Serialization with detached
-     *  payload (header..signature; payload is the canonicalized body minus this field). */
-    signature?: string;
-    /** Top-level vendor-specific extras (outside the `ucp` envelope). */
-    [k: string]: unknown;
-}
-interface BuildUCPProfileInput {
-    /** UCP spec version. Default `'2026-04-08'` (the latest published UCP spec date). MUST match a published UCP spec version, not a free-form date. */
-    version?: string;
-    /** Display name for the merchant / agent surface. */
-    name?: string;
-    /** Services map, keyed by service name. UCP-shopping merchants typically advertise
-     *  bindings under `'dev.ucp.shopping'`. */
-    services?: Record<string, UCPServiceBinding[]>;
-    /** Capabilities map, keyed by capability name. The `sh.agentscore.identity` capability
-     *  is auto-added when `agentscore_gate` is provided. */
-    capabilities?: Record<string, UCPCapabilityBinding[]>;
-    /** Payment handlers map, keyed by handler reverse-DNS name. */
-    payment_handlers?: Record<string, UCPPaymentHandlerBinding[]>;
-    /** JWKS — public keys the merchant signs with. REQUIRED by spec. */
-    signing_keys: UCPSigningKey[];
-    /** Merchant gate policy declaration. When provided, the SDK auto-injects an
-     *  `sh.agentscore.identity` capability binding into `capabilities`, with the
-     *  policy as the binding's `config`. Static merchant declaration only — no
-     *  per-operator data ever ends up on the public profile. Per-operator identity
-     *  attestation lives on the AP2 risk-signal endpoint, not here. */
-    agentscore_gate?: AgentScoreGatePolicy;
-    /** Optional override for the AgentScore capability schema URL. Field is snake_cased
-     *  for cross-language parity with the Python sibling. */
-    agentscore_schema_url?: string;
-    /** Optional override for the AgentScore capability spec URL. */
-    agentscore_spec_url?: string;
-    /** `supported_versions` map at the profile root for backwards-compat across
-     *  spec dates. Pattern: `{ "<date>": "<base>/.well-known/ucp/<date>" }`. */
-    supported_versions?: Record<string, string>;
-    /** Vendor-specific extras at the OUTER level (alongside `ucp` + `signing_keys`). */
-    extras?: Record<string, unknown>;
-    /** Vendor-specific extras INSIDE the `ucp` envelope (alongside `version`, `services`, etc.). */
-    ucp_extras?: Record<string, unknown>;
-}
-/** Merchant gate policy declared on the UCP profile via `sh.agentscore.identity` capability config.
- *  All fields optional; merchant declares which AgentScore checks the gate enforces. Snake-case
- *  field names match the AgentScore API's `/v1/assess` policy contract verbatim — no conversion
- *  layer between this declaration and what the gate actually enforces at runtime. */
-interface AgentScoreGatePolicy {
-    /** Gate denies if the operator/account behind the agent is not Stripe-Identity-verified. */
-    require_kyc?: boolean;
-    /** Gate denies if the operator/account is flagged by OpenSanctions screening. */
-    require_sanctions_clear?: boolean;
-    /** Gate denies if the verified age (from KYC) is below this threshold. Common values: 18, 21. */
-    min_age?: number;
-    /** ISO-3166-1 alpha-2 country codes the gate accepts. Empty/absent allows any. Mutually exclusive
-     *  with `blocked_jurisdictions` (set one or the other, not both). */
-    allowed_jurisdictions?: string[];
-    /** ISO-3166-1 alpha-2 country codes the gate denies. Empty/absent denies none. Mutually exclusive
-     *  with `allowed_jurisdictions`. */
-    blocked_jurisdictions?: string[];
-}
-/**
- * Compose a UCP profile body for `/.well-known/ucp` publication. Returns the spec-
- * compliant shape: `{ ucp: { version, services, capabilities, payment_handlers, ... },
- * signing_keys: [...] }`. Pass through `signUCPProfile` to attach a JWS signature for
- * trust-mode verifiers.
- *
- * Auto-injects `sh.agentscore.identity` as a vendor capability extending both
- * `dev.ucp.shopping.checkout` and `dev.ucp.shopping.cart` when `agentscore_gate`
- * is provided. The capability's `config` carries the merchant's static gate
- * policy declaration (require_kyc / require_sanctions_clear / min_age /
- * allowed_jurisdictions / blocked_jurisdictions). NO per-operator data is ever
- * placed on the public profile — per-operator identity attestation flows through
- * the AP2 risk-signal endpoint, not here.
- *
- * Example:
- * ```ts
- * import { buildUCPProfile } from '@agent-score/commerce';
- *
- * const profile = buildUCPProfile({
- *   name: 'Example Merchant',
- *   services: {
- *     'dev.ucp.shopping': [
- *       { version: '2026-04-08', spec: 'https://ucp.dev/2026-04-08/specification/overview',
- *         transport: 'mcp', endpoint: 'https://merchant.example/api/ucp/mcp',
- *         schema: 'https://ucp.dev/services/shopping/mcp.openrpc.json' },
- *     ],
- *   },
- *   payment_handlers: {
- *     ...mppPaymentHandler({ networks: [{ network: 'tempo-mainnet', chain_id: 4217, recipient: TEMPO_ADDR }] }),
- *   },
- *   signing_keys: [signingKey],
- *   agentscore_gate: { require_kyc: true, min_age: 21, allowed_jurisdictions: ['US'] },
- * });
- * ```
- */
-declare function buildUCPProfile(input: BuildUCPProfileInput): UCPProfile;
-declare const AGENTSCORE_UCP_CAPABILITY = "sh.agentscore.identity";
-type MppNetwork = 'tempo-mainnet' | 'tempo-testnet' | 'mpp-solana-mainnet' | 'mpp-solana-devnet' | (string & {});
-interface MppNetworkEntry {
-    network: MppNetwork;
-    /** EVM-style chain id (e.g. 4217 for Tempo mainnet). Omit for non-EVM networks. */
-    chain_id?: number;
-    /** Static settlement address. Omit for per-order recipients (e.g. Stripe-derived deposits). */
-    recipient?: string;
-    [k: string]: unknown;
-}
-interface MppPaymentHandlerInput {
-    networks: MppNetworkEntry[];
-}
-type X402Network = `base-${number}` | 'solana-mainnet-beta' | 'solana-devnet' | 'stellar-pubnet' | 'stellar-testnet' | (string & {});
-interface X402NetworkEntry {
-    network: X402Network;
-    /** Static settlement address. Omit for per-order recipients. */
-    recipient?: string;
-    [k: string]: unknown;
-}
-interface X402PaymentHandlerInput {
-    networks: X402NetworkEntry[];
-}
-interface StripeSptPaymentHandlerInput {
-    /** Stripe profile id (the merchant-side network identifier the agent's SPT is scoped to). */
-    profile_id: string;
-}
-/**
- * Build the `sh.agentscore.payment.mpp` payment handler block for a UCP profile.
- *
- * @example
- * ```ts
- * buildUCPProfile({
- *   ...,
- *   payment_handlers: {
- *     ...mppPaymentHandler({ networks: [{ network: 'tempo-mainnet', chain_id: 4217 }] }),
- *   },
- * });
- * ```
- */
-declare function mppPaymentHandler(input: MppPaymentHandlerInput): Record<string, UCPPaymentHandlerBinding[]>;
-/**
- * Build the `sh.agentscore.payment.x402` payment handler block for a UCP profile.
- *
- * @example
- * ```ts
- * buildUCPProfile({
- *   ...,
- *   payment_handlers: {
- *     ...x402PaymentHandler({ networks: [{ network: 'base-8453', recipient: '0xabc...' }] }),
- *   },
- * });
- * ```
- */
-declare function x402PaymentHandler(input: X402PaymentHandlerInput): Record<string, UCPPaymentHandlerBinding[]>;
-/**
- * Build the `sh.agentscore.payment.stripe_spt` payment handler block for a UCP profile.
- *
- * @example
- * ```ts
- * buildUCPProfile({
- *   ...,
- *   payment_handlers: {
- *     ...stripeSptPaymentHandler({ profile_id: 'profile_5xKvNqM9BaH' }),
- *   },
- * });
- * ```
- */
-declare function stripeSptPaymentHandler(input: StripeSptPaymentHandlerInput): Record<string, UCPPaymentHandlerBinding[]>;
-
 /**
  * UCP profile signing helpers (JWKS + JWS).
  *
@@ -560,15 +252,6 @@ interface GeneratedUCPKey {
 interface JWKSResponse {
     keys: UCPSigningKey[];
 }
-/** Options for `signUCPProfile()`. */
-interface SignUCPProfileOptions {
-    /** Private signing key — opaque KeyLike from `generateUCPSigningKey()` or `importJWK()`. */
-    signingKey: unknown;
-    /** Key ID (must match a `kid` in the profile's `signing_keys[]`). */
-    kid: string;
-    /** Signing algorithm — `EdDSA` (default) or `ES256`. */
-    alg?: 'EdDSA' | 'ES256';
-}
 /** A signed UCP profile envelope. Same shape as `UCPProfile` plus the `signature` field
  *  carrying the JWS Compact Serialization over the canonicalized profile body. */
 interface SignedUCPProfile extends UCPProfile {
@@ -625,7 +308,14 @@ declare function generateUCPSigningKey(opts: {
  * c.json(signed);
  * ```
  */
-declare function signUCPProfile(profile: UCPProfile, opts: SignUCPProfileOptions): Promise<SignedUCPProfile>;
+declare function signUCPProfile(profile: UCPProfile, { signingKey, kid, alg, }: {
+    /** Private signing key — opaque KeyLike from `generateUCPSigningKey()` or `importJWK()`. */
+    signingKey: unknown;
+    /** Key ID (must match a `kid` in the profile's `signing_keys[]`). */
+    kid: string;
+    /** Signing algorithm — `EdDSA` (default) or `ES256`. */
+    alg?: 'EdDSA' | 'ES256';
+}): Promise<SignedUCPProfile>;
 /**
  * Verify a signed UCP profile against a JWKS. Returns `true` when the JWS validates
  * against a matching key in `jwks`; throws on signature mismatch, missing key, or
@@ -653,5 +343,58 @@ declare function verifyUCPProfile(profile: SignedUCPProfile, jwks: JWKSResponse)
  * ```
  */
 declare function buildJWKSResponse(keys: UCPSigningKey[]): JWKSResponse;
+/**
+ * Load the merchant's UCP signing key from env, with concurrent-safe caching.
+ *
+ * On first call (per `opts`): reads `opts.envJwkVar`, parses it as a JWK, validates
+ * `kty`/`crv` (OKP+Ed25519 or EC+P-256), and projects to a canonical public JWK.
+ * Falls back to an ephemeral keypair when the env var is missing or whitespace-only.
+ *
+ * Subsequent calls with the same `opts` return the cached key without re-reading env.
+ * Concurrent first-callers await the same in-flight Promise so only one key generation
+ * runs (preventing the race where two callers each generate an independent ephemeral
+ * pair and one signs a JWS the published JWKS then rejects).
+ *
+ * Different `opts` values get separate cache entries.
+ *
+ * Env-driven precedence:
+ *
+ * - Embedded `kid` in the JWK wins over `opts.envKidVar` env value;
+ *   empty-string `kid` in the env JWK falls through to `opts.defaultKid`.
+ * - Structural `kty`+`crv` in the JWK wins over `opts.envAlgVar` env value
+ *   (which is only consulted in the ephemeral fallback path).
+ *
+ * @throws Error with a sanitized message for malformed env JWKs; raw exception
+ *   detail is intentionally suppressed so key bytes can never reach logs.
+ */
+declare function loadUCPSigningKeyFromEnv({ envJwkVar, envKidVar, envAlgVar, defaultKid, defaultAlg, }?: {
+    /** Env var name carrying the JSON-encoded private JWK. Default `UCP_SIGNING_KEY_JWK_PRIVATE`. */
+    envJwkVar?: string;
+    /** Env var name carrying an explicit kid override. Default `UCP_SIGNING_KEY_KID`. */
+    envKidVar?: string;
+    /** Env var name carrying the alg in the ephemeral fallback. Default `UCP_SIGNING_KEY_ALG`. */
+    envAlgVar?: string;
+    /** Kid to publish when neither the env JWK nor `envKidVar` carries one. Default `merchant-default`. */
+    defaultKid?: string;
+    /** Alg for the ephemeral fallback path. Default `EdDSA`. */
+    defaultAlg?: 'EdDSA' | 'ES256';
+}): Promise<GeneratedUCPKey>;
+
+/**
+ * Operator-token hashing.
+ *
+ * Plaintext operator tokens (`opc_...`) never persist on disk. Merchants hash
+ * them before storing in DB columns and before comparing against persisted
+ * hashes. This helper exposes the canonical hash so every consumer agrees on
+ * the shape.
+ */
+/**
+ * sha256 hex digest of a plaintext operator token.
+ *
+ * Use at every persistence boundary (INSERT) AND every comparison boundary
+ * (SELECT WHERE operator_token_id = ...) so plaintext tokens never land in
+ * durable storage.
+ */
+declare function hashOperatorToken(plaintext: string): string;
 
-export { type A2AAgentCard, type A2AAgentCardCapabilities, type A2AAgentCardExtension, type A2AAgentCardSignature, type A2AAgentInterface, type A2AAgentProvider, type A2AAgentSkill, AGENTSCORE_UCP_CAPABILITY, type AgentScoreGatePolicy, type BuildA2AAgentCardInput, type BuildUCPProfileInput, type GeneratedUCPKey, type JWKSResponse, type MppNetworkEntry, type MppPaymentHandlerInput, type SignUCPProfileOptions, type SignedUCPProfile, type StripeSptPaymentHandlerInput, type UCPCapabilityBinding, type UCPPaymentHandlerBinding, type UCPProfile, type UCPProfileBody, type UCPServiceBinding, UCPSigningKey, UCPVerificationError, UCP_A2A_EXTENSION_URI, type X402NetworkEntry, type X402PaymentHandlerInput, buildA2AAgentCard, buildJWKSResponse, buildUCPProfile, generateUCPSigningKey, mppPaymentHandler, signUCPProfile, stripeSptPaymentHandler, ucpA2AExtension, verifyUCPProfile, x402PaymentHandler };
+export { type A2AAgentCard, type A2AAgentCardCapabilities, type A2AAgentCardExtension, type A2AAgentCardSignature, type A2AAgentInterface, type A2AAgentProvider, type A2AAgentSkill, type GeneratedUCPKey, type JWKSResponse, type SignedUCPProfile, UCPProfile, UCPSigningKey, UCPVerificationError, UCP_A2A_EXTENSION_URI, buildA2AAgentCard, buildJWKSResponse, generateUCPSigningKey, hashOperatorToken, loadUCPSigningKeyFromEnv, signUCPProfile, ucpA2AExtension, verifyUCPProfile };