@agent-shield/mcp 0.4.2 → 0.4.3

package/dist/tools/setup-status.js

@@ -7,8 +7,7 @@ const config_1 = require("../config");
 exports.setupStatusSchema = zod_1.z.object({});
 /**
  * Check the current AgentShield setup status.
- * Reads ~/.agentshield/config.json and reports tier, wallet, policy, network.
- * If Tier 3 (vault), also includes vault address.
+ * Reads ~/.agentshield/config.json and reports layer status, wallet, policy, network.
  *
  * This tool works without an SDK client — it only reads local config.
  */
@@ -20,26 +19,21 @@ async function setupStatus(_client, _input) {
             "",
             "**Status:** Not configured",
             "",
-            "AgentShield is not configured on this machine. Ask me to set it up!",
+            "AgentShield is not configured on this machine.",
             "",
-            "I can configure three layers of protection:",
-            "- **Shield** (Tier 1) — Software spending controls, free, instant",
-            "- **TEE** (Tier 2) — Hardware enclave key protection, free, ~30s",
-            "- **Vault** (Tier 3) — On-chain policy enforcement, ~0.003 SOL, ~2min",
+            "AgentShield provides on-chain guardrails for AI agents on Solana:",
+            "- Client-side policy checks (fast deny)",
+            "- TEE key custody (hardware enclave protection)",
+            "- On-chain vault enforcement (blockchain-enforced policies)",
             "",
             'Say "Set up AgentShield" to get started.',
         ].join("\n");
     }
-    const tier = (0, config_1.getCurrentTier)(config);
-    const tierLabels = {
-        1: "Shield (software controls)",
-        2: "Shield + TEE (hardware enclave)",
-        3: "Shield + TEE + Vault (on-chain enforcement)",
-    };
+    const fullyConfigured = (0, config_1.isFullyConfigured)(config);
     const lines = [
         "## AgentShield Setup Status",
         "",
-        `**Current Tier:** ${tier} — ${tierLabels[tier]}`,
+        `**Status:** ${fullyConfigured ? "Fully configured" : "Partially configured"}`,
         `**Network:** ${config.network}`,
         `**Template:** ${config.template}`,
         `**Configured:** ${config.configuredAt}`,
@@ -54,7 +48,7 @@ async function setupStatus(_client, _input) {
     }
     lines.push("");
     // Shield layer
-    lines.push("### Shield Layer (Tier 1)");
+    lines.push("### Policy Configuration");
     const shield = config.layers.shield;
     lines.push(`- **Enabled:** ${shield.enabled}`);
     if (shield.enabled) {
@@ -65,7 +59,7 @@ async function setupStatus(_client, _input) {
     }
     lines.push("");
     // TEE layer
-    lines.push("### TEE Layer (Tier 2)");
+    lines.push("### TEE Custody");
     const tee = config.layers.tee;
     lines.push(`- **Enabled:** ${tee.enabled}`);
     if (tee.enabled) {
@@ -74,7 +68,7 @@ async function setupStatus(_client, _input) {
     }
     lines.push("");
     // Vault layer
-    lines.push("### Vault Layer (Tier 3)");
+    lines.push("### On-Chain Vault");
     const vault = config.layers.vault;
     lines.push(`- **Enabled:** ${vault.enabled}`);
     if (vault.enabled) {
@@ -82,24 +76,27 @@ async function setupStatus(_client, _input) {
         lines.push(`- **Owner:** ${vault.owner}`);
         lines.push(`- **Vault ID:** ${vault.vaultId}`);
     }
-    // Upgrade suggestion
-    if (tier < 3) {
+    // Setup recommendation
+    if (!fullyConfigured) {
         lines.push("");
-        lines.push("### Recommended Upgrade");
-        if (tier === 1) {
-            lines.push("For production use, add **TEE custody** (Tier 2) to protect your agent's private key in a hardware enclave.");
-        }
-        else {
-            lines.push("For maximum security (>$5k/day), add **on-chain Vault** (Tier 3) for blockchain-enforced policy limits.");
-        }
-        lines.push('Say "Upgrade my security" to add the next layer.');
+        lines.push("### Setup Incomplete");
+        const missing = [];
+        if (!config.layers.shield.enabled)
+            missing.push("Policy checks");
+        if (!config.layers.tee.enabled)
+            missing.push("TEE custody");
+        if (!config.layers.vault.enabled)
+            missing.push("On-chain vault");
+        lines.push(`Missing: ${missing.join(", ")}`);
+        lines.push("");
+        lines.push("Run shield_configure to set up full protection.");
     }
     return lines.join("\n");
 }
 exports.setupStatusTool = {
     name: "shield_setup_status",
-    description: "Check the current AgentShield setup status. Shows which security tiers are active, " +
-        "wallet configuration, and policy settings. Works even when AgentShield is not configured — " +
+    description: "Check the current AgentShield setup status. Shows wallet configuration, guardrails, and network. " +
+        "Works even when AgentShield is not configured — " +
         "reports setup instructions in that case.",
     schema: exports.setupStatusSchema,
     handler: setupStatus,

package/dist/tools/setup-status.js.map

@@ -1 +1 @@
-{"version":3,"file":"setup-status.js","sourceRoot":"","sources":["../../src/tools/setup-status.ts"],"names":[],"mappings":";;;AAkBA,kCAoGC;AAtHD,6BAAwB;AACxB,sCAImB;AAEN,QAAA,iBAAiB,GAAG,OAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;AAI9C;;;;;;GAMG;AACI,KAAK,UAAU,WAAW,CAC/B,OAAY,EACZ,MAAwB;IAExB,MAAM,MAAM,GAAG,IAAA,yBAAgB,GAAE,CAAC;IAElC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO;YACL,6BAA6B;YAC7B,EAAE;YACF,4BAA4B;YAC5B,EAAE;YACF,qEAAqE;YACrE,EAAE;YACF,6CAA6C;YAC7C,mEAAmE;YACnE,kEAAkE;YAClE,uEAAuE;YACvE,EAAE;YACF,0CAA0C;SAC3C,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACf,CAAC;IAED,MAAM,IAAI,GAAG,IAAA,uBAAc,EAAC,MAAM,CAAC,CAAC;IACpC,MAAM,UAAU,GAA2B;QACzC,CAAC,EAAE,4BAA4B;QAC/B,CAAC,EAAE,iCAAiC;QACpC,CAAC,EAAE,6CAA6C;KACjD,CAAC;IAEF,MAAM,KAAK,GAAa;QACtB,6BAA6B;QAC7B,EAAE;QACF,qBAAqB,IAAI,MAAM,UAAU,CAAC,IAAI,CAAC,EAAE;QACjD,gBAAgB,MAAM,CAAC,OAAO,EAAE;QAChC,iBAAiB,MAAM,CAAC,QAAQ,EAAE;QAClC,mBAAmB,MAAM,CAAC,YAAY,EAAE;QACxC,EAAE;KACH,CAAC;IAEF,cAAc;IACd,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IACzB,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;IAChD,KAAK,CAAC,IAAI,CAAC,qBAAqB,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC;IAC3D,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QACvB,KAAK,CAAC,IAAI,CAAC,uBAAuB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;IAC1D,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,eAAe;IACf,KAAK,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;IACxC,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;IACpC,KAAK,CAAC,IAAI,CAAC,kBAAkB,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;IAC/C,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,KAAK,CAAC,IAAI,CAAC,qBAAqB,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC;QACtD,KAAK,CAAC,IAAI,CACR,4BAA4B,MAAM,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,EAAE,CAC9G,CAAC;QACF,KAAK,CAAC,IAAI,CAAC,uBAAuB,MAAM,CAAC,cAAc,MAAM,CAAC,CAAC;QAC/D,KAAK,CAAC,IAAI,CAAC,qBAAqB,MAAM,CAAC,SAAS,SAAS,CAAC,CAAC;IAC7D,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,YAAY;IACZ,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;IACrC,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC;IAC9B,KAAK,CAAC,IAAI,CAAC,kBAAkB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5C,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;QAChB,KAAK,CAAC,IAAI,CAAC,qBAAqB,GAAG,CAAC,SAAS,EAAE,CAAC,CAAC;QACjD,KAAK,CAAC,IAAI,CAAC,kBAAkB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IAC9C,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,cAAc;IACd,KAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;IACvC,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC;IAClC,KAAK,CAAC,IAAI,CAAC,kBAAkB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IAC9C,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QAClB,KAAK,CAAC,IAAI,CAAC,wBAAwB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACpD,KAAK,CAAC,IAAI,CAAC,gBAAgB,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;QAC1C,KAAK,CAAC,IAAI,CAAC,mBAAmB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IACjD,CAAC;IAED,qBAAqB;IACrB,IAAI,IAAI,GAAG,CAAC,EAAE,CAAC;QACb,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;QACtC,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;YACf,KAAK,CAAC,IAAI,CACR,6GAA6G,CAC9G,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,KAAK,CAAC,IAAI,CACR,yGAAyG,CAC1G,CAAC;QACJ,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,kDAAkD,CAAC,CAAC;IACjE,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAEY,QAAA,eAAe,GAAG;IAC7B,IAAI,EAAE,qBAAqB;IAC3B,WAAW,EACT,qFAAqF;QACrF,6FAA6F;QAC7F,0CAA0C;IAC5C,MAAM,EAAE,yBAAiB;IACzB,OAAO,EAAE,WAAW;CACrB,CAAC"}
+{"version":3,"file":"setup-status.js","sourceRoot":"","sources":["../../src/tools/setup-status.ts"],"names":[],"mappings":";;;AAiBA,kCA4FC;AA7GD,6BAAwB;AACxB,sCAImB;AAEN,QAAA,iBAAiB,GAAG,OAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;AAI9C;;;;;GAKG;AACI,KAAK,UAAU,WAAW,CAC/B,OAAY,EACZ,MAAwB;IAExB,MAAM,MAAM,GAAG,IAAA,yBAAgB,GAAE,CAAC;IAElC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO;YACL,6BAA6B;YAC7B,EAAE;YACF,4BAA4B;YAC5B,EAAE;YACF,gDAAgD;YAChD,EAAE;YACF,mEAAmE;YACnE,yCAAyC;YACzC,iDAAiD;YACjD,6DAA6D;YAC7D,EAAE;YACF,0CAA0C;SAC3C,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACf,CAAC;IAED,MAAM,eAAe,GAAG,IAAA,0BAAiB,EAAC,MAAM,CAAC,CAAC;IAElD,MAAM,KAAK,GAAa;QACtB,6BAA6B;QAC7B,EAAE;QACF,eAAe,eAAe,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,sBAAsB,EAAE;QAC9E,gBAAgB,MAAM,CAAC,OAAO,EAAE;QAChC,iBAAiB,MAAM,CAAC,QAAQ,EAAE;QAClC,mBAAmB,MAAM,CAAC,YAAY,EAAE;QACxC,EAAE;KACH,CAAC;IAEF,cAAc;IACd,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IACzB,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;IAChD,KAAK,CAAC,IAAI,CAAC,qBAAqB,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC;IAC3D,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QACvB,KAAK,CAAC,IAAI,CAAC,uBAAuB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;IAC1D,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,eAAe;IACf,KAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;IACvC,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;IACpC,KAAK,CAAC,IAAI,CAAC,kBAAkB,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;IAC/C,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,KAAK,CAAC,IAAI,CAAC,qBAAqB,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC;QACtD,KAAK,CAAC,IAAI,CACR,4BAA4B,MAAM,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,EAAE,CAC9G,CAAC;QACF,KAAK,CAAC,IAAI,CAAC,uBAAuB,MAAM,CAAC,cAAc,MAAM,CAAC,CAAC;QAC/D,KAAK,CAAC,IAAI,CAAC,qBAAqB,MAAM,CAAC,SAAS,SAAS,CAAC,CAAC;IAC7D,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,YAAY;IACZ,KAAK,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;IAC9B,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC;IAC9B,KAAK,CAAC,IAAI,CAAC,kBAAkB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5C,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;QAChB,KAAK,CAAC,IAAI,CAAC,qBAAqB,GAAG,CAAC,SAAS,EAAE,CAAC,CAAC;QACjD,KAAK,CAAC,IAAI,CAAC,kBAAkB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IAC9C,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,cAAc;IACd,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;IACjC,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC;IAClC,KAAK,CAAC,IAAI,CAAC,kBAAkB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IAC9C,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QAClB,KAAK,CAAC,IAAI,CAAC,wBAAwB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACpD,KAAK,CAAC,IAAI,CAAC,gBAAgB,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;QAC1C,KAAK,CAAC,IAAI,CAAC,mBAAmB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IACjD,CAAC;IAED,uBAAuB;IACvB,IAAI,CAAC,eAAe,EAAE,CAAC;QACrB,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QACnC,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO;YAAE,OAAO,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QACjE,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO;YAAE,OAAO,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAC5D,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO;YAAE,OAAO,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QACjE,KAAK,CAAC,IAAI,CAAC,YAAY,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC7C,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC;IAChE,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAEY,QAAA,eAAe,GAAG;IAC7B,IAAI,EAAE,qBAAqB;IAC3B,WAAW,EACT,mGAAmG;QACnG,kDAAkD;QAClD,0CAA0C;IAC5C,MAAM,EAAE,yBAAiB;IACzB,OAAO,EAAE,WAAW;CACrB,CAAC"}

package/dist/tools/update-policy.js

@@ -40,7 +40,7 @@ exports.updatePolicySchema = zod_1.z.object({
     developerFeeRate: zod_1.z
         .number()
         .optional()
-        .describe("New developer fee rate (max 50 = 0.5 BPS)"),
+        .describe("New developer fee rate (max 500 = 5 BPS)"),
     allowedDestinations: zod_1.z
         .array(zod_1.z.string())
         .optional()

package/dist/tools/update-policy.js.map

@@ -1 +1 @@
-{"version":3,"file":"update-policy.js","sourceRoot":"","sources":["../../src/tools/update-policy.ts"],"names":[],"mappings":";;;AA+DA,oCAyDC;AAxHD,6BAAwB;AACxB,8CAAuC;AACvC,6CAA4C;AAG5C,oCAA6C;AAC7C,sCAAwC;AAE3B,QAAA,kBAAkB,GAAG,OAAC,CAAC,MAAM,CAAC;IACzC,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACxD,mBAAmB,EAAE,OAAC;SACnB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,0CAA0C,CAAC;IACvD,qBAAqB,EAAE,OAAC;SACrB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,4CAA4C,CAAC;IACzD,aAAa,EAAE,OAAC;SACb,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;SACjB,QAAQ,EAAE;SACV,QAAQ,CACP,mEAAmE,CACpE;IACH,gBAAgB,EAAE,OAAC;SAChB,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;SACjB,QAAQ,EAAE;SACV,QAAQ,CACP,oEAAoE,CACrE;IACH,cAAc,EAAE,OAAC;SACd,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,kCAAkC,CAAC;IAC/C,gBAAgB,EAAE,OAAC;SAChB,OAAO,EAAE;SACT,QAAQ,EAAE;SACV,QAAQ,CAAC,0CAA0C,CAAC;IACvD,sBAAsB,EAAE,OAAC;SACtB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,8BAA8B,CAAC;IAC3C,gBAAgB,EAAE,OAAC;SAChB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,2CAA2C,CAAC;IACxD,mBAAmB,EAAE,OAAC;SACnB,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;SACjB,QAAQ,EAAE;SACV,QAAQ,CACP,yEAAyE,CAC1E;IACH,gBAAgB,EAAE,OAAC;SAChB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CACP,mFAAmF;QACjF,+DAA+D,CAClE;CACJ,CAAC,CAAC;AAII,KAAK,UAAU,YAAY,CAChC,MAAyB,EACzB,KAAwB;IAExB,IAAI,CAAC;QACH,MAAM,MAAM,GAAuB,EAAE,CAAC;QAEtC,IAAI,KAAK,CAAC,mBAAmB,KAAK,SAAS,EAAE,CAAC;YAC5C,MAAM,CAAC,mBAAmB,GAAG,IAAA,YAAI,EAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;QAC/D,CAAC;QACD,IAAI,KAAK,CAAC,qBAAqB,KAAK,SAAS,EAAE,CAAC;YAC9C,MAAM,CAAC,qBAAqB,GAAG,IAAA,YAAI,EAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACnE,CAAC;QACD,IAAI,KAAK,CAAC,aAAa,KAAK,SAAS,EAAE,CAAC;YACtC,MAAM,CAAC,aAAa,GAAG,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;gBACxD,IAAI,EAAE,IAAA,mBAAW,EAAC,IAAI,CAAC;gBACvB,UAAU,EAAE,mBAAS,CAAC,OAAO;gBAC7B,QAAQ,EAAE,CAAC;gBACX,YAAY,EAAE,IAAI,WAAE,CAAC,CAAC,CAAC;gBACvB,SAAS,EAAE,IAAI,WAAE,CAAC,CAAC,CAAC;aACrB,CAAC,CAAC,CAAC;QACN,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAC,GAAG,CAAC,mBAAW,CAAC,CAAC;QACpE,CAAC;QACD,IAAI,KAAK,CAAC,cAAc,KAAK,SAAS,EAAE,CAAC;YACvC,MAAM,CAAC,cAAc,GAAG,KAAK,CAAC,cAAc,CAAC;QAC/C,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAC;QACnD,CAAC;QACD,IAAI,KAAK,CAAC,sBAAsB,KAAK,SAAS,EAAE,CAAC;YAC/C,MAAM,CAAC,sBAAsB,GAAG,KAAK,CAAC,sBAAsB,CAAC;QAC/D,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAC;QACnD,CAAC;QACD,IAAI,KAAK,CAAC,mBAAmB,KAAK,SAAS,EAAE,CAAC;YAC5C,MAAM,CAAC,mBAAmB,GAAG,KAAK,CAAC,mBAAmB,CAAC,GAAG,CAAC,mBAAW,CAAC,CAAC;QAC1E,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,IAAI,WAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;QAC3D,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,YAAY,CAAC,IAAA,mBAAW,EAAC,KAAK,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC,CAAC;QAExE,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,MAAM,CAAC;QAEzD,OAAO;YACL,mBAAmB;YACnB,gBAAgB,KAAK,CAAC,KAAK,EAAE;YAC7B,yBAAyB,OAAO,EAAE;YAClC,sBAAsB,GAAG,EAAE;SAC5B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACf,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,IAAA,oBAAW,EAAC,KAAK,CAAC,CAAC;IAC5B,CAAC;AACH,CAAC;AAEY,QAAA,gBAAgB,GAAG;IAC9B,IAAI,EAAE,sBAAsB;IAC5B,WAAW,EACT,4DAA4D;QAC5D,oEAAoE;IACtE,MAAM,EAAE,0BAAkB;IAC1B,OAAO,EAAE,YAAY;CACtB,CAAC"}
+{"version":3,"file":"update-policy.js","sourceRoot":"","sources":["../../src/tools/update-policy.ts"],"names":[],"mappings":";;;AA+DA,oCAyDC;AAxHD,6BAAwB;AACxB,8CAAuC;AACvC,6CAA4C;AAG5C,oCAA6C;AAC7C,sCAAwC;AAE3B,QAAA,kBAAkB,GAAG,OAAC,CAAC,MAAM,CAAC;IACzC,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,4BAA4B,CAAC;IACxD,mBAAmB,EAAE,OAAC;SACnB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,0CAA0C,CAAC;IACvD,qBAAqB,EAAE,OAAC;SACrB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,4CAA4C,CAAC;IACzD,aAAa,EAAE,OAAC;SACb,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;SACjB,QAAQ,EAAE;SACV,QAAQ,CACP,mEAAmE,CACpE;IACH,gBAAgB,EAAE,OAAC;SAChB,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;SACjB,QAAQ,EAAE;SACV,QAAQ,CACP,oEAAoE,CACrE;IACH,cAAc,EAAE,OAAC;SACd,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,kCAAkC,CAAC;IAC/C,gBAAgB,EAAE,OAAC;SAChB,OAAO,EAAE;SACT,QAAQ,EAAE;SACV,QAAQ,CAAC,0CAA0C,CAAC;IACvD,sBAAsB,EAAE,OAAC;SACtB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,8BAA8B,CAAC;IAC3C,gBAAgB,EAAE,OAAC;SAChB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,0CAA0C,CAAC;IACvD,mBAAmB,EAAE,OAAC;SACnB,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;SACjB,QAAQ,EAAE;SACV,QAAQ,CACP,yEAAyE,CAC1E;IACH,gBAAgB,EAAE,OAAC;SAChB,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CACP,mFAAmF;QACjF,+DAA+D,CAClE;CACJ,CAAC,CAAC;AAII,KAAK,UAAU,YAAY,CAChC,MAAyB,EACzB,KAAwB;IAExB,IAAI,CAAC;QACH,MAAM,MAAM,GAAuB,EAAE,CAAC;QAEtC,IAAI,KAAK,CAAC,mBAAmB,KAAK,SAAS,EAAE,CAAC;YAC5C,MAAM,CAAC,mBAAmB,GAAG,IAAA,YAAI,EAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;QAC/D,CAAC;QACD,IAAI,KAAK,CAAC,qBAAqB,KAAK,SAAS,EAAE,CAAC;YAC9C,MAAM,CAAC,qBAAqB,GAAG,IAAA,YAAI,EAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACnE,CAAC;QACD,IAAI,KAAK,CAAC,aAAa,KAAK,SAAS,EAAE,CAAC;YACtC,MAAM,CAAC,aAAa,GAAG,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;gBACxD,IAAI,EAAE,IAAA,mBAAW,EAAC,IAAI,CAAC;gBACvB,UAAU,EAAE,mBAAS,CAAC,OAAO;gBAC7B,QAAQ,EAAE,CAAC;gBACX,YAAY,EAAE,IAAI,WAAE,CAAC,CAAC,CAAC;gBACvB,SAAS,EAAE,IAAI,WAAE,CAAC,CAAC,CAAC;aACrB,CAAC,CAAC,CAAC;QACN,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAC,GAAG,CAAC,mBAAW,CAAC,CAAC;QACpE,CAAC;QACD,IAAI,KAAK,CAAC,cAAc,KAAK,SAAS,EAAE,CAAC;YACvC,MAAM,CAAC,cAAc,GAAG,KAAK,CAAC,cAAc,CAAC;QAC/C,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAC;QACnD,CAAC;QACD,IAAI,KAAK,CAAC,sBAAsB,KAAK,SAAS,EAAE,CAAC;YAC/C,MAAM,CAAC,sBAAsB,GAAG,KAAK,CAAC,sBAAsB,CAAC;QAC/D,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,CAAC;QACnD,CAAC;QACD,IAAI,KAAK,CAAC,mBAAmB,KAAK,SAAS,EAAE,CAAC;YAC5C,MAAM,CAAC,mBAAmB,GAAG,KAAK,CAAC,mBAAmB,CAAC,GAAG,CAAC,mBAAW,CAAC,CAAC;QAC1E,CAAC;QACD,IAAI,KAAK,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACzC,MAAM,CAAC,gBAAgB,GAAG,IAAI,WAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;QAC3D,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,YAAY,CAAC,IAAA,mBAAW,EAAC,KAAK,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC,CAAC;QAExE,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,MAAM,CAAC;QAEzD,OAAO;YACL,mBAAmB;YACnB,gBAAgB,KAAK,CAAC,KAAK,EAAE;YAC7B,yBAAyB,OAAO,EAAE;YAClC,sBAAsB,GAAG,EAAE;SAC5B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACf,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,IAAA,oBAAW,EAAC,KAAK,CAAC,CAAC;IAC5B,CAAC;AACH,CAAC;AAEY,QAAA,gBAAgB,GAAG;IAC9B,IAAI,EAAE,sBAAsB;IAC5B,WAAW,EACT,4DAA4D;QAC5D,oEAAoE;IACtE,MAAM,EAAE,0BAAkB;IAC1B,OAAO,EAAE,YAAY;CACtB,CAAC"}

package/dist/tools/x402-fetch.d.ts

@@ -0,0 +1,25 @@
+import { z } from "zod";
+import type { AgentShieldClient } from "@agent-shield/sdk";
+import type { McpConfig } from "../config";
+export declare const x402FetchSchema: z.ZodObject<{
+    url: z.ZodString;
+    method: z.ZodDefault<z.ZodOptional<z.ZodString>>;
+    headers: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
+    body: z.ZodOptional<z.ZodString>;
+    maxPayment: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+export type X402FetchInput = z.input<typeof x402FetchSchema>;
+export declare function x402Fetch(_client: AgentShieldClient, config: McpConfig, input: X402FetchInput): Promise<string>;
+export declare const x402FetchTool: {
+    name: string;
+    description: string;
+    schema: z.ZodObject<{
+        url: z.ZodString;
+        method: z.ZodDefault<z.ZodOptional<z.ZodString>>;
+        headers: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
+        body: z.ZodOptional<z.ZodString>;
+        maxPayment: z.ZodOptional<z.ZodString>;
+    }, z.core.$strip>;
+    handler: typeof x402Fetch;
+};
+//# sourceMappingURL=x402-fetch.d.ts.map

package/dist/tools/x402-fetch.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402-fetch.d.ts","sourceRoot":"","sources":["../../src/tools/x402-fetch.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AAE3D,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAE3C,eAAO,MAAM,eAAe;;;;;;iBAkB1B,CAAC;AAEH,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE7D,wBAAsB,SAAS,CAC7B,OAAO,EAAE,iBAAiB,EAC1B,MAAM,EAAE,SAAS,EACjB,KAAK,EAAE,cAAc,GACpB,OAAO,CAAC,MAAM,CAAC,CA2EjB;AAED,eAAO,MAAM,aAAa;;;;;;;;;;;CAQzB,CAAC"}

package/dist/tools/x402-fetch.js

@@ -0,0 +1,133 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.x402FetchTool = exports.x402FetchSchema = void 0;
+exports.x402Fetch = x402Fetch;
+const zod_1 = require("zod");
+const errors_1 = require("../errors");
+exports.x402FetchSchema = zod_1.z.object({
+    url: zod_1.z.string().describe("URL of the x402-protected API endpoint"),
+    method: zod_1.z
+        .string()
+        .optional()
+        .default("GET")
+        .describe("HTTP method (default: GET)"),
+    headers: zod_1.z
+        .record(zod_1.z.string(), zod_1.z.string())
+        .optional()
+        .describe("Additional HTTP headers as key-value pairs"),
+    body: zod_1.z.string().optional().describe("Request body (for POST/PUT)"),
+    maxPayment: zod_1.z
+        .string()
+        .optional()
+        .describe("Maximum payment amount in token base units (rejects if server asks for more)"),
+});
+async function x402Fetch(_client, config, input) {
+    try {
+        // Dynamic import to avoid loading x402 code unless needed
+        const { shieldWallet, shieldedFetch } = await Promise.resolve().then(() => __importStar(require("@agent-shield/sdk")));
+        const { Connection, Keypair } = await Promise.resolve().then(() => __importStar(require("@solana/web3.js")));
+        // Load wallet keypair — direct bytes, walletPath file, or agentKeypairPath
+        let keypair;
+        const cfgAny = config;
+        if (typeof cfgAny.keypair === "string") {
+            // Direct keypair bytes (JSON array string) — programmatic/test usage
+            keypair = Keypair.fromSecretKey(new Uint8Array(JSON.parse(cfgAny.keypair)));
+        }
+        else if (config.walletPath) {
+            const { loadKeypair } = await Promise.resolve().then(() => __importStar(require("../config")));
+            keypair = loadKeypair(config.walletPath);
+        }
+        else if (config.agentKeypairPath) {
+            const { loadKeypair } = await Promise.resolve().then(() => __importStar(require("../config")));
+            keypair = loadKeypair(config.agentKeypairPath);
+        }
+        else {
+            return "## Error\n\nNo agent keypair configured. Run `shield_configure` first.";
+        }
+        const wallet = {
+            publicKey: keypair.publicKey,
+            signTransaction: async (tx) => {
+                tx.partialSign?.(keypair);
+                return tx;
+            },
+        };
+        const connection = new Connection(config.rpcUrl, "confirmed");
+        const shielded = shieldWallet(wallet, undefined, { connection });
+        const fetchInit = {
+            method: input.method ?? "GET",
+        };
+        if (input.headers) {
+            fetchInit.headers = input.headers;
+        }
+        if (input.body) {
+            fetchInit.body = input.body;
+        }
+        const res = await shieldedFetch(shielded, input.url, {
+            ...fetchInit,
+            connection,
+        });
+        const body = await res.text();
+        const x402 = res.x402;
+        const lines = [`=== x402 Fetch Result ===`];
+        lines.push(`URL: ${input.url}`);
+        lines.push(`Status: ${res.status}`);
+        if (x402) {
+            lines.push(`Paid: ${x402.paid}`);
+            if (x402.paid) {
+                lines.push(`Amount: ${x402.amountPaid}`);
+                lines.push(`Asset: ${x402.asset}`);
+                lines.push(`Pay To: ${x402.payTo}`);
+                if (x402.settlement?.transaction) {
+                    lines.push(`Tx: ${x402.settlement.transaction}`);
+                }
+            }
+        }
+        lines.push(`Response: ${body.slice(0, 2000)}`);
+        return lines.join("\n");
+    }
+    catch (error) {
+        return (0, errors_1.formatError)(error);
+    }
+}
+exports.x402FetchTool = {
+    name: "shield_x402_fetch",
+    description: "Fetch a URL with automatic x402 (HTTP 402 Payment Required) support. " +
+        "If the server returns 402 with payment requirements, the agent wallet " +
+        "signs a payment transaction (enforced by shield policies) and retries.",
+    schema: exports.x402FetchSchema,
+    handler: x402Fetch,
+};
+//# sourceMappingURL=x402-fetch.js.map

package/dist/tools/x402-fetch.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402-fetch.js","sourceRoot":"","sources":["../../src/tools/x402-fetch.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA2BA,8BA+EC;AA1GD,6BAAwB;AAExB,sCAAwC;AAG3B,QAAA,eAAe,GAAG,OAAC,CAAC,MAAM,CAAC;IACtC,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,wCAAwC,CAAC;IAClE,MAAM,EAAE,OAAC;SACN,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CAAC,4BAA4B,CAAC;IACzC,OAAO,EAAE,OAAC;SACP,MAAM,CAAC,OAAC,CAAC,MAAM,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC;SAC9B,QAAQ,EAAE;SACV,QAAQ,CAAC,4CAA4C,CAAC;IACzD,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,6BAA6B,CAAC;IACnE,UAAU,EAAE,OAAC;SACV,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CACP,8EAA8E,CAC/E;CACJ,CAAC,CAAC;AAII,KAAK,UAAU,SAAS,CAC7B,OAA0B,EAC1B,MAAiB,EACjB,KAAqB;IAErB,IAAI,CAAC;QACH,0DAA0D;QAC1D,MAAM,EAAE,YAAY,EAAE,aAAa,EAAE,GAAG,wDAAa,mBAAmB,GAAC,CAAC;QAC1E,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,GAAG,wDAAa,iBAAiB,GAAC,CAAC;QAEhE,2EAA2E;QAC3E,IAAI,OAAqC,CAAC;QAC1C,MAAM,MAAM,GAAG,MAA4C,CAAC;QAC5D,IAAI,OAAO,MAAM,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;YACvC,qEAAqE;YACrE,OAAO,GAAG,OAAO,CAAC,aAAa,CAC7B,IAAI,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,OAAiB,CAAC,CAAC,CACrD,CAAC;QACJ,CAAC;aAAM,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;YAC7B,MAAM,EAAE,WAAW,EAAE,GAAG,wDAAa,WAAW,GAAC,CAAC;YAClD,OAAO,GAAG,WAAW,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;QAC3C,CAAC;aAAM,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;YACnC,MAAM,EAAE,WAAW,EAAE,GAAG,wDAAa,WAAW,GAAC,CAAC;YAClD,OAAO,GAAG,WAAW,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC;QACjD,CAAC;aAAM,CAAC;YACN,OAAO,wEAAwE,CAAC;QAClF,CAAC;QAED,MAAM,MAAM,GAAG;YACb,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,eAAe,EAAE,KAAK,EAAK,EAAK,EAAc,EAAE;gBAC7C,EAAU,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,CAAC;gBACnC,OAAO,EAAE,CAAC;YACZ,CAAC;SACF,CAAC;QAEF,MAAM,UAAU,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;QAC9D,MAAM,QAAQ,GAAG,YAAY,CAAC,MAAa,EAAE,SAAS,EAAE,EAAE,UAAU,EAAE,CAAC,CAAC;QAExE,MAAM,SAAS,GAAgB;YAC7B,MAAM,EAAE,KAAK,CAAC,MAAM,IAAI,KAAK;SAC9B,CAAC;QACF,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;YAClB,SAAS,CAAC,OAAO,GAAG,KAAK,CAAC,OAAiC,CAAC;QAC9D,CAAC;QACD,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;YACf,SAAS,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;QAC9B,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,KAAK,CAAC,GAAG,EAAE;YACnD,GAAG,SAAS;YACZ,UAAU;SACX,CAAC,CAAC;QAEH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAC9B,MAAM,IAAI,GAAI,GAAW,CAAC,IAAI,CAAC;QAE/B,MAAM,KAAK,GAAG,CAAC,2BAA2B,CAAC,CAAC;QAC5C,KAAK,CAAC,IAAI,CAAC,QAAQ,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC;QAChC,KAAK,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;QAEpC,IAAI,IAAI,EAAE,CAAC;YACT,KAAK,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;YACjC,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;gBACd,KAAK,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC;gBACzC,KAAK,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;gBACnC,KAAK,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;gBACpC,IAAI,IAAI,CAAC,UAAU,EAAE,WAAW,EAAE,CAAC;oBACjC,KAAK,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC,CAAC;gBACnD,CAAC;YACH,CAAC;QACH,CAAC;QAED,KAAK,CAAC,IAAI,CAAC,aAAa,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAE/C,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,IAAA,oBAAW,EAAC,KAAK,CAAC,CAAC;IAC5B,CAAC;AACH,CAAC;AAEY,QAAA,aAAa,GAAG;IAC3B,IAAI,EAAE,mBAAmB;IACzB,WAAW,EACT,uEAAuE;QACvE,wEAAwE;QACxE,wEAAwE;IAC1E,MAAM,EAAE,uBAAe;IACvB,OAAO,EAAE,SAAS;CACnB,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@agent-shield/mcp",
-  "version": "0.4.2",
+  "version": "0.4.3",
   "author": "Kaleb Rupe (https://x.com/MightieMags)",
   "homepage": "https://github.com/Kaleb-Rupe/agentshield#readme",
   "bugs": {
@@ -9,16 +9,12 @@
   },
   "description": "MCP server for AgentShield — manage on-chain vaults and enforce policies via AI tools",
   "main": "dist/index.js",
+  "module": "dist/index.js",
   "types": "dist/index.d.ts",
+  "sideEffects": false,
   "bin": {
     "agent-shield-mcp": "dist/index.js"
   },
-  "scripts": {
-    "build": "tsc",
-    "clean": "rm -rf dist",
-    "test": "mocha --require ts-node/register 'tests/*.test.ts' 'tests/**/*.test.ts' --timeout 30000",
-    "prepublishOnly": "pnpm run build"
-  },
   "files": [
     "dist/**/*",
     "README.md"
@@ -43,8 +39,6 @@
     }
   },
   "devDependencies": {
-    "@agent-shield/sdk": "workspace:*",
-    "@agent-shield/custody-crossmint": "workspace:*",
     "@coral-xyz/anchor": "^0.32.1",
     "@solana/spl-token": "^0.4.0",
     "@solana/web3.js": "^1.95.0",
@@ -56,7 +50,9 @@
     "mocha": "^10.3.0",
     "sinon": "^17.0.1",
     "ts-node": "^10.9.2",
-    "typescript": "^5.3.3"
+    "typescript": "^5.3.3",
+    "@agent-shield/custody-crossmint": "0.1.4",
+    "@agent-shield/sdk": "0.5.1"
   },
   "keywords": [
     "mcp",
@@ -74,5 +70,10 @@
     "type": "git",
     "url": "https://github.com/Kaleb-Rupe/agentshield",
     "directory": "packages/mcp"
+  },
+  "scripts": {
+    "build": "tsc",
+    "clean": "rm -rf dist",
+    "test": "mocha --require ts-node/register 'tests/*.test.ts' 'tests/**/*.test.ts' --timeout 30000"
   }
-}
+}

package/dist/tools/upgrade-tier.d.ts

@@ -1,19 +0,0 @@
-import { z } from "zod";
-export declare const upgradeTierSchema: z.ZodObject<{
-    targetTier: z.ZodUnion<readonly [z.ZodLiteral<2>, z.ZodLiteral<3>]>;
-}, z.core.$strip>;
-export type UpgradeTierInput = z.infer<typeof upgradeTierSchema>;
-/**
- * Upgrade from the current tier to a higher one.
- * Preserves existing policy settings.
- */
-export declare function upgradeTier(_client: any, input: UpgradeTierInput): Promise<string>;
-export declare const upgradeTierTool: {
-    name: string;
-    description: string;
-    schema: z.ZodObject<{
-        targetTier: z.ZodUnion<readonly [z.ZodLiteral<2>, z.ZodLiteral<3>]>;
-    }, z.core.$strip>;
-    handler: typeof upgradeTier;
-};
-//# sourceMappingURL=upgrade-tier.d.ts.map

package/dist/tools/upgrade-tier.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"upgrade-tier.d.ts","sourceRoot":"","sources":["../../src/tools/upgrade-tier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAKxB,eAAO,MAAM,iBAAiB;;iBAI5B,CAAC;AAEH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAEjE;;;GAGG;AACH,wBAAsB,WAAW,CAC/B,OAAO,EAAE,GAAG,EACZ,KAAK,EAAE,gBAAgB,GACtB,OAAO,CAAC,MAAM,CAAC,CAkIjB;AAED,eAAO,MAAM,eAAe;;;;;;;CAS3B,CAAC"}

package/dist/tools/upgrade-tier.js

@@ -1,115 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.upgradeTierTool = exports.upgradeTierSchema = void 0;
-exports.upgradeTier = upgradeTier;
-const zod_1 = require("zod");
-const config_1 = require("../config");
-const ACTIONS_SERVER_URL = "https://agent-middleware.vercel.app";
-exports.upgradeTierSchema = zod_1.z.object({
-    targetTier: zod_1.z
-        .union([zod_1.z.literal(2), zod_1.z.literal(3)])
-        .describe("Target tier: 2=add TEE custody, 3=add on-chain Vault"),
-});
-/**
- * Upgrade from the current tier to a higher one.
- * Preserves existing policy settings.
- */
-async function upgradeTier(_client, input) {
-    const config = (0, config_1.loadShieldConfig)();
-    if (!config) {
-        return ("AgentShield is not configured yet. " +
-            "Use shield_configure to set up from scratch instead of upgrading.");
-    }
-    const currentTier = (0, config_1.getCurrentTier)(config);
-    if (input.targetTier <= currentTier) {
-        return `Already at Tier ${currentTier} — cannot downgrade to Tier ${input.targetTier}. Downgrades are not supported via tools.`;
-    }
-    const lines = [];
-    // ── Upgrade to Tier 2 (add TEE) ──────────────────────────────
-    if (input.targetTier >= 2 && !config.layers.tee.enabled) {
-        try {
-            const response = await fetch(`${ACTIONS_SERVER_URL}/api/actions/provision-tee`, {
-                method: "POST",
-                headers: { "Content-Type": "application/json" },
-                body: JSON.stringify({ network: config.network }),
-            });
-            if (!response.ok) {
-                const errorBody = await response.text();
-                return `Error provisioning TEE wallet: ${response.status} ${errorBody}`;
-            }
-            const teeResult = (await response.json());
-            const oldPubkey = config.wallet.publicKey;
-            config.layers.tee = {
-                enabled: true,
-                locator: teeResult.locator,
-                publicKey: teeResult.publicKey,
-            };
-            config.wallet.type = "crossmint";
-            config.wallet.publicKey = teeResult.publicKey;
-            lines.push("## Upgraded to Tier 2 (Shield + TEE)");
-            lines.push("");
-            lines.push(`**TEE Public Key:** ${teeResult.publicKey}`);
-            lines.push(`**Locator:** ${teeResult.locator}`);
-            lines.push("");
-            lines.push("Your agent's private key is now protected in a hardware enclave.");
-            lines.push("**Disclosure:** Your TEE wallet is custodied by AgentShield's platform. You can export or migrate later.");
-            lines.push("");
-            lines.push("### Transfer Funds");
-            lines.push(`If you have funds in your old wallet (\`${oldPubkey}\`), transfer them to the new TEE wallet:`);
-            lines.push(`- **New address:** \`${teeResult.publicKey}\``);
-            lines.push("- Use any Solana wallet to send SOL and tokens to the new address.");
-        }
-        catch (error) {
-            const msg = error instanceof Error ? error.message : String(error);
-            return `Error connecting to AgentShield platform for TEE provisioning: ${msg}`;
-        }
-    }
-    // ── Upgrade to Tier 3 (add Vault) ────────────────────────────
-    if (input.targetTier >= 3 && !config.layers.vault.enabled) {
-        const params = new URLSearchParams();
-        params.set("template", config.template);
-        params.set("agentPubkey", config.wallet.publicKey);
-        const shield = config.layers.shield;
-        if (shield.dailyCapUsd) {
-            params.set("dailyCap", shield.dailyCapUsd.toString());
-        }
-        const actionUrl = `${ACTIONS_SERVER_URL}/api/actions/provision?${params.toString()}`;
-        const blinkUrl = `https://dial.to/?action=solana-action:${encodeURIComponent(actionUrl)}`;
-        config.layers.vault.enabled = true;
-        if (lines.length > 0) {
-            lines.push("");
-            lines.push("---");
-            lines.push("");
-        }
-        lines.push(lines.length === 0
-            ? "## Upgraded to Tier 3 (Shield + Vault)"
-            : "## Also Adding Tier 3 (On-Chain Vault)");
-        if (!config.layers.tee.enabled) {
-            lines.push("");
-            lines.push("**Warning:** Your agent's private key is stored locally without hardware protection. " +
-                "We recommend adding TEE custody for production use.");
-        }
-        lines.push("");
-        lines.push("Sign the vault creation transaction to complete the upgrade:");
-        lines.push(`1. **Blink URL:** ${blinkUrl}`);
-        lines.push(`2. **Action URL:** ${actionUrl}`);
-        lines.push("");
-        lines.push("After signing, your vault address will be saved and on-chain policy enforcement will be active.");
-        lines.push("");
-        lines.push("### Policy Applied");
-        lines.push(`Your existing policy will be enforced on-chain: $${shield.dailyCapUsd}/day cap, ${shield.allowedProtocols.length} protocols, ${shield.maxLeverageBps} BPS max leverage.`);
-    }
-    // Save updated config
-    (0, config_1.saveShieldConfig)(config);
-    return lines.join("\n");
-}
-exports.upgradeTierTool = {
-    name: "shield_upgrade_tier",
-    description: "Upgrade AgentShield from the current tier to a higher one. " +
-        "Tier 2 adds TEE custody (hardware enclave key protection). " +
-        "Tier 3 adds on-chain Vault (blockchain-enforced policy). " +
-        "Preserves existing policy settings during upgrade.",
-    schema: exports.upgradeTierSchema,
-    handler: upgradeTier,
-};
-//# sourceMappingURL=upgrade-tier.js.map

package/dist/tools/upgrade-tier.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"upgrade-tier.js","sourceRoot":"","sources":["../../src/tools/upgrade-tier.ts"],"names":[],"mappings":";;;AAiBA,kCAqIC;AAtJD,6BAAwB;AACxB,sCAA+E;AAE/E,MAAM,kBAAkB,GAAG,qCAAqC,CAAC;AAEpD,QAAA,iBAAiB,GAAG,OAAC,CAAC,MAAM,CAAC;IACxC,UAAU,EAAE,OAAC;SACV,KAAK,CAAC,CAAC,OAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,OAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;SACnC,QAAQ,CAAC,sDAAsD,CAAC;CACpE,CAAC,CAAC;AAIH;;;GAGG;AACI,KAAK,UAAU,WAAW,CAC/B,OAAY,EACZ,KAAuB;IAEvB,MAAM,MAAM,GAAG,IAAA,yBAAgB,GAAE,CAAC;IAClC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,CACL,qCAAqC;YACrC,mEAAmE,CACpE,CAAC;IACJ,CAAC;IAED,MAAM,WAAW,GAAG,IAAA,uBAAc,EAAC,MAAM,CAAC,CAAC;IAE3C,IAAI,KAAK,CAAC,UAAU,IAAI,WAAW,EAAE,CAAC;QACpC,OAAO,mBAAmB,WAAW,+BAA+B,KAAK,CAAC,UAAU,2CAA2C,CAAC;IAClI,CAAC;IAED,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,gEAAgE;IAChE,IAAI,KAAK,CAAC,UAAU,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QACxD,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAC1B,GAAG,kBAAkB,4BAA4B,EACjD;gBACE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,OAAO,EAAE,CAAC;aAClD,CACF,CAAC;YAEF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACxC,OAAO,kCAAkC,QAAQ,CAAC,MAAM,IAAI,SAAS,EAAE,CAAC;YAC1E,CAAC;YAED,MAAM,SAAS,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAGvC,CAAC;YAEF,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC;YAE1C,MAAM,CAAC,MAAM,CAAC,GAAG,GAAG;gBAClB,OAAO,EAAE,IAAI;gBACb,OAAO,EAAE,SAAS,CAAC,OAAO;gBAC1B,SAAS,EAAE,SAAS,CAAC,SAAS;aAC/B,CAAC;YACF,MAAM,CAAC,MAAM,CAAC,IAAI,GAAG,WAAW,CAAC;YACjC,MAAM,CAAC,MAAM,CAAC,SAAS,GAAG,SAAS,CAAC,SAAS,CAAC;YAE9C,KAAK,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;YACnD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,KAAK,CAAC,IAAI,CAAC,uBAAuB,SAAS,CAAC,SAAS,EAAE,CAAC,CAAC;YACzD,KAAK,CAAC,IAAI,CAAC,gBAAgB,SAAS,CAAC,OAAO,EAAE,CAAC,CAAC;YAChD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,KAAK,CAAC,IAAI,CACR,kEAAkE,CACnE,CAAC;YACF,KAAK,CAAC,IAAI,CACR,0GAA0G,CAC3G,CAAC;YACF,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;YACjC,KAAK,CAAC,IAAI,CACR,2CAA2C,SAAS,2CAA2C,CAChG,CAAC;YACF,KAAK,CAAC,IAAI,CAAC,wBAAwB,SAAS,CAAC,SAAS,IAAI,CAAC,CAAC;YAC5D,KAAK,CAAC,IAAI,CACR,oEAAoE,CACrE,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,GAAG,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACnE,OAAO,kEAAkE,GAAG,EAAE,CAAC;QACjF,CAAC;IACH,CAAC;IAED,gEAAgE;IAChE,IAAI,KAAK,CAAC,UAAU,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QAC1D,MAAM,MAAM,GAAG,IAAI,eAAe,EAAE,CAAC;QACrC,MAAM,CAAC,GAAG,CAAC,UAAU,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;QACxC,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAEnD,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;QACpC,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YACvB,MAAM,CAAC,GAAG,CAAC,UAAU,EAAE,MAAM,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC;QACxD,CAAC;QAED,MAAM,SAAS,GAAG,GAAG,kBAAkB,0BAA0B,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;QACrF,MAAM,QAAQ,GAAG,yCAAyC,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;QAE1F,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC;QAEnC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAClB,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjB,CAAC;QAED,KAAK,CAAC,IAAI,CACR,KAAK,CAAC,MAAM,KAAK,CAAC;YAChB,CAAC,CAAC,wCAAwC;YAC1C,CAAC,CAAC,wCAAwC,CAC7C,CAAC;QAEF,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;YAC/B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,KAAK,CAAC,IAAI,CACR,uFAAuF;gBACrF,qDAAqD,CACxD,CAAC;QACJ,CAAC;QAED,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,8DAA8D,CAAC,CAAC;QAC3E,KAAK,CAAC,IAAI,CAAC,qBAAqB,QAAQ,EAAE,CAAC,CAAC;QAC5C,KAAK,CAAC,IAAI,CAAC,sBAAsB,SAAS,EAAE,CAAC,CAAC;QAC9C,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CACR,iGAAiG,CAClG,CAAC;QACF,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QACjC,KAAK,CAAC,IAAI,CACR,oDAAoD,MAAM,CAAC,WAAW,aAAa,MAAM,CAAC,gBAAgB,CAAC,MAAM,eAAe,MAAM,CAAC,cAAc,oBAAoB,CAC1K,CAAC;IACJ,CAAC;IAED,sBAAsB;IACtB,IAAA,yBAAgB,EAAC,MAAM,CAAC,CAAC;IAEzB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAEY,QAAA,eAAe,GAAG;IAC7B,IAAI,EAAE,qBAAqB;IAC3B,WAAW,EACT,6DAA6D;QAC7D,6DAA6D;QAC7D,2DAA2D;QAC3D,oDAAoD;IACtD,MAAM,EAAE,yBAAiB;IACzB,OAAO,EAAE,WAAW;CACrB,CAAC"}