npm - @agent-score/commerce - Versions diffs - 2.1.0 → 2.1.1 - Mend

@agent-score/commerce 2.1.0 → 2.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (64) hide show

package/README.md +1 -1
package/dist/challenge/index.js.map +1 -1
package/dist/challenge/index.mjs.map +1 -1
package/dist/{checkout-Bd_4aQ6c.d.mts → checkout-BRw_caGr.d.mts} +1 -22
package/dist/{checkout-BH-I_Ns8.d.ts → checkout-CuSNUJFX.d.ts} +1 -22
package/dist/core.js +1 -1
package/dist/core.js.map +1 -1
package/dist/core.mjs +1 -1
package/dist/core.mjs.map +1 -1
package/dist/{default_rails-BxBzcCA1.d.ts → default_rails-C5gKZJMI.d.ts} +11 -1
package/dist/{default_rails-BWAquZeu.d.mts → default_rails-XFCuRddA.d.mts} +11 -1
package/dist/discovery/index.d.mts +1 -1
package/dist/discovery/index.d.ts +1 -1
package/dist/identity/express.js +1 -1
package/dist/identity/express.js.map +1 -1
package/dist/identity/express.mjs +1 -1
package/dist/identity/express.mjs.map +1 -1
package/dist/identity/fastify.js +1 -1
package/dist/identity/fastify.js.map +1 -1
package/dist/identity/fastify.mjs +1 -1
package/dist/identity/fastify.mjs.map +1 -1
package/dist/identity/hono.js +1 -1
package/dist/identity/hono.js.map +1 -1
package/dist/identity/hono.mjs +1 -1
package/dist/identity/hono.mjs.map +1 -1
package/dist/identity/nextjs.js +1 -1
package/dist/identity/nextjs.js.map +1 -1
package/dist/identity/nextjs.mjs +1 -1
package/dist/identity/nextjs.mjs.map +1 -1
package/dist/identity/policy.js +22 -23363
package/dist/identity/policy.js.map +1 -1
package/dist/identity/policy.mjs +1 -23366
package/dist/identity/policy.mjs.map +1 -1
package/dist/identity/web.js +1 -1
package/dist/identity/web.js.map +1 -1
package/dist/identity/web.mjs +1 -1
package/dist/identity/web.mjs.map +1 -1
package/dist/index.d.mts +72 -5
package/dist/index.d.ts +72 -5
package/dist/index.js +256 -136
package/dist/index.js.map +1 -1
package/dist/index.mjs +253 -134
package/dist/index.mjs.map +1 -1
package/dist/middleware/express.js.map +1 -1
package/dist/middleware/express.mjs.map +1 -1
package/dist/middleware/fastify.js.map +1 -1
package/dist/middleware/fastify.mjs.map +1 -1
package/dist/middleware/hono.js.map +1 -1
package/dist/middleware/hono.mjs.map +1 -1
package/dist/middleware/nextjs.js.map +1 -1
package/dist/middleware/nextjs.mjs.map +1 -1
package/dist/middleware/web.js.map +1 -1
package/dist/middleware/web.mjs.map +1 -1
package/dist/payment/index.d.mts +13 -17
package/dist/payment/index.d.ts +13 -17
package/dist/payment/index.js +80 -4
package/dist/payment/index.js.map +1 -1
package/dist/payment/index.mjs +79 -4
package/dist/payment/index.mjs.map +1 -1
package/dist/stripe-multichain/index.js +53 -4
package/dist/stripe-multichain/index.js.map +1 -1
package/dist/stripe-multichain/index.mjs +53 -4
package/dist/stripe-multichain/index.mjs.map +1 -1
package/package.json +4 -4

package/dist/payment/index.d.ts CHANGED Viewed

@@ -5,7 +5,7 @@ export { B as BuildX402AcceptsForOptions, C as CreateX402ServerOptions, X as X40
 export { a as aliasAmountFields, p as paymentRequiredHeader, w as wwwAuthenticateHeader } from '../wwwauthenticate-D_FMnPgU.js';
 import { S as SignerNetwork } from '../signer-3FAit11j.js';
 export { P as PaymentSigner, e as extractPaymentSigner, a as extractPaymentSignerFromAuth, b as extractSignerForPrecheck, r as readX402PaymentHeader } from '../signer-3FAit11j.js';
-export { B as BuildDefaultCheckoutRailsOptions, a as BuildMppxComposeRailsOptions, H as HeadersLike, b as asHeaders, c as buildDefaultCheckoutRails, d as buildMppxComposeRails, f as formatUsdCents, h as hasMppxHeader, e as hasPaymentHeader, g as hasX402Header, l as loadSolanaFeePayer, r as readHeader, u as usdToAtomic } from '../default_rails-BxBzcCA1.js';
+export { B as BuildDefaultCheckoutRailsOptions, a as BuildMppxComposeRailsOptions, H as HeadersLike, b as asHeaders, c as buildDefaultCheckoutRails, d as buildMppxComposeRails, f as formatUsdCents, h as hasMppxHeader, e as hasPaymentHeader, g as hasX402Header, l as loadSolanaFeePayer, r as readHeader, u as usdToAtomic } from '../default_rails-C5gKZJMI.js';
 /**
  * Build the base64-encoded `request` blob for an MPP Payment directive (per the
@@ -569,21 +569,17 @@ type MppxComposeResult = {
     challenge: Response;
     [k: string]: unknown;
 };
-/**
- * Run `mppx.compose(...intents)(request)` with a typed return. Replaces the
- * `(mppx as any).compose(...intents)(request)` cast every hand-rolled
- * `composeMppx` hook ends up writing.
- *
- * @example
- * ```ts
- * const result = await composeMppxRequest(mppx, [
- *   ['tempo/charge', { amount, currency, decimals, recipient }],
- *   ['stripe/charge', { amount, currency: 'usd', decimals: 2 }],
- * ], ctx.request.raw);
- * if (result.status === 402) return { status: 402, headers: mppxChallengeHeaders(result) };
- * return { status: 200, raw: result };
- * ```
- */
+/** Run `fn` inside an async context that captures the inner mppx
+ *  verification error (when one fires). Returns the function's result
+ *  plus the captured `failureReason` string (null if no error fired or
+ *  no console.error hit during this scope). Used by `Checkout.handleMppx`
+ *  to surface typed error codes (`tempo_key_not_registered`, etc.) on
+ *  the 402 path without changing the per-merchant `composeMppx` API.
+ */
+declare function runWithMppxFailureCapture<T>(fn: () => Promise<T>): Promise<{
+    result: T;
+    failureReason: string | null;
+}>;
 declare function composeMppxRequest(mppx: unknown, intents: readonly unknown[], request: Request): Promise<MppxComposeResult>;
 /**
  * Extract the 402 challenge response's headers as a plain `Record<string, string>`,
@@ -894,4 +890,4 @@ declare function isEvmNetwork(input: NetworkLike): boolean;
  *  network spec — this helper treats it as false. */
 declare function isSolanaNetwork(input: NetworkLike): boolean;
-export { type ClassifiedX402Error, type MppxComposeResult, type MppxRailSpec, type NetworkFamily, type PaymentHeadersRail, type PaymentHeadersResult, type ProcessX402SettleResult, type RailDefinition, type RailName, SETTLEMENT_OVERRIDES_HEADER, type SettlementHandlers, type SettlementOverrides, type SettlementPayloadLike, SignerNetwork, SolanaMppRailSpec, StripeRailSpec, TempoRailSpec, TempoSessionRailSpec, USDC, type VerifyX402RequestResult, X402BaseRailSpec, X402Server, type X402ServerLike, X402_SUPPORTED_BASE_NETWORKS, type ZeroSettleRail, type ZeroSettleResult, buildIdempotencyKey, buildPaymentDirective, buildPaymentHeaders, buildPaymentRequestBlob, classifyOrchestrationError, classifyX402SettleResult, composeMppxRequest, createMppxServer, detectRailFromHeaders, dispatchSettlementByNetwork, isEvmNetwork, isSolanaNetwork, lazyMppxServer, lazyX402Server, lookupRail, mppxChallengeHeaders, networkFamily, networks, paymentDirective, processX402Settle, rails, registerX402SchemesV1V2, settlementOverrideHeader, validateX402NetworkConfig, verifyX402Request, wrapSolanaChargeWithFinalizedBlockhash, zeroAmountCarveOut };
+export { type ClassifiedX402Error, type MppxComposeResult, type MppxRailSpec, type NetworkFamily, type PaymentHeadersRail, type PaymentHeadersResult, type ProcessX402SettleResult, type RailDefinition, type RailName, SETTLEMENT_OVERRIDES_HEADER, type SettlementHandlers, type SettlementOverrides, type SettlementPayloadLike, SignerNetwork, SolanaMppRailSpec, StripeRailSpec, TempoRailSpec, TempoSessionRailSpec, USDC, type VerifyX402RequestResult, X402BaseRailSpec, X402Server, type X402ServerLike, X402_SUPPORTED_BASE_NETWORKS, type ZeroSettleRail, type ZeroSettleResult, buildIdempotencyKey, buildPaymentDirective, buildPaymentHeaders, buildPaymentRequestBlob, classifyOrchestrationError, classifyX402SettleResult, composeMppxRequest, createMppxServer, detectRailFromHeaders, dispatchSettlementByNetwork, isEvmNetwork, isSolanaNetwork, lazyMppxServer, lazyX402Server, lookupRail, mppxChallengeHeaders, networkFamily, networks, paymentDirective, processX402Settle, rails, registerX402SchemesV1V2, runWithMppxFailureCapture, settlementOverrideHeader, validateX402NetworkConfig, verifyX402Request, wrapSolanaChargeWithFinalizedBlockhash, zeroAmountCarveOut };

package/dist/payment/index.js CHANGED Viewed

@@ -64,6 +64,7 @@ __export(payment_exports, {
   readX402PaymentHeader: () => readX402PaymentHeader,
   registerX402SchemesV1V2: () => registerX402SchemesV1V2,
   resolveRecipient: () => resolveRecipient,
+  runWithMppxFailureCapture: () => runWithMppxFailureCapture,
   settlementOverrideHeader: () => settlementOverrideHeader,
   usdToAtomic: () => usdToAtomic,
   validateX402NetworkConfig: () => validateX402NetworkConfig,
@@ -641,6 +642,9 @@ async function verifyX402Request({
   return { ok: true, payload, signedNetwork, signedPayTo };
 }
+// src/payment/mppx_server.ts
+var import_node_async_hooks = require("async_hooks");
 // src/stripe-multichain/mppx_stripe.ts
 async function createMppxStripe({
   profileId,
@@ -819,6 +823,31 @@ function wrapSolanaChargeWithFinalizedBlockhash(baseMethod, rpcUrl) {
     }
   };
 }
+var mppxCapture = new import_node_async_hooks.AsyncLocalStorage();
+var consoleErrorPatched = false;
+function ensureConsoleErrorPatch() {
+  if (consoleErrorPatched) return;
+  consoleErrorPatched = true;
+  const original = console.error.bind(console);
+  console.error = function captureMppxInternal(...args) {
+    if (args[0] === "mppx: internal verification error" && args[1] !== void 0) {
+      const ctx = mppxCapture.getStore();
+      if (ctx) {
+        const e = args[1];
+        const reason = typeof e?.shortMessage === "string" ? e.shortMessage : typeof e?.message === "string" ? e.message : String(args[1]);
+        const details = e?.details;
+        ctx.reason = typeof details === "string" && details.length > 0 ? `${reason} (${details})` : reason;
+      }
+    }
+    return original(...args);
+  };
+}
+async function runWithMppxFailureCapture(fn) {
+  ensureConsoleErrorPatch();
+  const ctx = { reason: null };
+  const result = await mppxCapture.run(ctx, fn);
+  return { result, failureReason: ctx.reason };
+}
 async function composeMppxRequest(mppx, intents, request) {
   if (!mppx || typeof mppx !== "object" || !("compose" in mppx)) {
     throw new Error("composeMppxRequest: argument is not an mppx server instance");
@@ -827,6 +856,7 @@ async function composeMppxRequest(mppx, intents, request) {
   if (typeof compose !== "function") {
     throw new Error("composeMppxRequest: mppx.compose is not a function");
   }
+  ensureConsoleErrorPatch();
   const typedCompose = compose;
   const handler = typedCompose.apply(mppx, [...intents]);
   return handler(request);
@@ -835,6 +865,22 @@ function mppxChallengeHeaders(result) {
   return Object.fromEntries(result.challenge.headers);
 }
+// src/errors.ts
+var CheckoutValidationError = class extends Error {
+  code;
+  action;
+  status;
+  extra;
+  constructor(opts) {
+    super(opts.message);
+    this.name = "CheckoutValidationError";
+    this.code = opts.code;
+    this.action = opts.action ?? "fix_request";
+    this.status = opts.status ?? 400;
+    this.extra = opts.extra;
+  }
+};
 // src/payment/dispatch.ts
 function detectRailFromHeaders(headers) {
   const get = (name) => {
@@ -863,17 +909,32 @@ async function dispatchSettlementByNetwork(payload, handlers) {
   const network = payload.accepted.network;
   if (network.startsWith("eip155:")) {
     if (!handlers.evm) {
-      throw new Error(`No EVM settlement handler registered (network: ${network})`);
+      throw new CheckoutValidationError({
+        code: "payment_provider_unavailable",
+        message: `No EVM settlement handler registered (network: ${network})`,
+        action: "retry_later",
+        status: 503
+      });
     }
     return handlers.evm(payload);
   }
   if (network.startsWith("solana:")) {
     if (!handlers.svm) {
-      throw new Error(`No Solana settlement handler registered (network: ${network})`);
+      throw new CheckoutValidationError({
+        code: "payment_provider_unavailable",
+        message: `No Solana settlement handler registered (network: ${network})`,
+        action: "retry_later",
+        status: 503
+      });
     }
     return handlers.svm(payload);
   }
-  throw new Error(`Unrecognized network in settlement payload: ${network}`);
+  throw new CheckoutValidationError({
+    code: "payment_provider_unavailable",
+    message: `Unrecognized network in settlement payload: ${network}`,
+    action: "retry_later",
+    status: 503
+  });
 }
 // src/payment/wwwauthenticate.ts
@@ -1248,7 +1309,11 @@ async function loadSolanaFeePayer(opts) {
   return kit.createKeyPairSignerFromPrivateKeyBytes(bytes);
 }
+// src/payment/constants.ts
+var STRIPE_MIN_CHARGE_USD = 0.5;
 // src/payment/compose_rails.ts
+var warnedStripeBelowMinimum = false;
 function buildMppxComposeRails(opts) {
   const rails2 = [];
   if (opts.tempoRecipient) {
@@ -1270,7 +1335,17 @@ function buildMppxComposeRails(opts) {
     }]);
   }
   if (opts.includeStripe !== false) {
-    rails2.push(["stripe/charge", { amount: opts.amountUsd, currency: "usd", decimals: 2 }]);
+    const amountUsdNumeric = Number(opts.amountUsd);
+    if (Number.isFinite(amountUsdNumeric) && amountUsdNumeric < STRIPE_MIN_CHARGE_USD) {
+      if (!warnedStripeBelowMinimum) {
+        warnedStripeBelowMinimum = true;
+        console.warn(
+          `[buildMppxComposeRails] Dropping stripe/charge rail: amountUsd=${opts.amountUsd} is below Stripe's $${STRIPE_MIN_CHARGE_USD.toFixed(2)} USD minimum. Stripe's fixed ~$0.30 fee makes sub-50-cent charges unprofitable (and many accounts reject PI creation with amount_too_small below this floor). Pass includeStripe: false to suppress this warning.`
+        );
+      }
+    } else {
+      rails2.push(["stripe/charge", { amount: opts.amountUsd, currency: "usd", decimals: 2 }]);
+    }
   }
   return rails2;
 }
@@ -1399,6 +1474,7 @@ function isSolanaNetwork(input) {
   readX402PaymentHeader,
   registerX402SchemesV1V2,
   resolveRecipient,
+  runWithMppxFailureCapture,
   settlementOverrideHeader,
   usdToAtomic,
   validateX402NetworkConfig,