npm - @agentcash/discovery - Versions diffs - 1.1.0 → 1.1.2 - Mend

@agentcash/discovery 1.1.0 → 1.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/dist/index.d.cts CHANGED Viewed

@@ -59,7 +59,7 @@ interface X402V2PaymentOption {
 type X402PaymentOption = X402V1PaymentOption | X402V2PaymentOption;
 type PaymentOption = X402PaymentOption | MppPaymentOption;
 interface PricingHint {
-    pricingMode: PricingMode;
+    pricingMode: PricingMode | string;
     price?: string;
     minPrice?: string;
     maxPrice?: string;
@@ -116,6 +116,7 @@ interface L2Route {
     summary: string;
     authMode?: AuthMode;
     price?: string;
+    pricingMode?: string;
     protocols?: string[];
 }
 interface L3Result {
@@ -128,6 +129,11 @@ interface L3Result {
     outputSchema?: Record<string, unknown>;
     /** Live payment options parsed from the 402 response. Only present on probe results. */
     paymentOptions?: PaymentOption[];
+    /**
+     * Raw 402 response body captured during probing. Present when the endpoint was probed
+     * and returned a 402. Used by getWarningsForL3 to run full payment-required validation.
+     */
+    paymentRequiredBody?: unknown;
 }
 interface L4Result {
     guidance: string;
@@ -229,6 +235,13 @@ declare function checkL2ForWellknown(wellKnown: WellKnownSource): L2Result;
 declare function getL3ForOpenAPI(openApi: OpenApiSource, path: string, method: HttpMethod): L3Result | null;
 declare function getL3ForProbe(probe: ProbeResult[], path: string, method: HttpMethod): L3Result | null;
+/**
+ * Probes `url` and populates `paymentRequiredBody` on each advisory so that
+ * getWarningsForL3 can run full 402-body validation. Mutates in place; no-ops on network error.
+ */
+declare function attachProbePayload(url: string, advisories: Array<L3Result & {
+    method: HttpMethod;
+}>): Promise<void>;
 declare function getL3(openApi: OpenApiSource | null, probe: ProbeResult[], path: string, method: HttpMethod): L3Result | null;
 declare function checkL4ForOpenAPI(openApi: OpenApiSource): L4Result | null;
@@ -239,6 +252,7 @@ declare const VALIDATION_CODES: {
     readonly X402_NOT_OBJECT: "X402_NOT_OBJECT";
     readonly X402_VERSION_MISSING: "X402_VERSION_MISSING";
     readonly X402_VERSION_UNSUPPORTED: "X402_VERSION_UNSUPPORTED";
+    readonly X402_VERSION_V1_NOT_SUPPORTED: "X402_VERSION_V1_NOT_SUPPORTED";
     readonly X402_ACCEPTS_MISSING: "X402_ACCEPTS_MISSING";
     readonly X402_ACCEPTS_INVALID: "X402_ACCEPTS_INVALID";
     readonly X402_ACCEPTS_EMPTY: "X402_ACCEPTS_EMPTY";
@@ -316,6 +330,10 @@ interface ValidatePaymentRequiredDetailedResult {
 declare function evaluateMetadataCompleteness(metadata: MetadataPreview): ValidationIssue[];
+/**
+ * Validates a 402 response body. Delegates to getWarningsFor402Body (the canonical
+ * audit function) and reconstructs the full typed result shape for backwards compatibility.
+ */
 declare function validatePaymentRequiredDetailed(payload: unknown, options?: ValidatePaymentRequiredOptions): ValidatePaymentRequiredDetailedResult;
 declare const AUDIT_CODES: {
@@ -327,6 +345,7 @@ declare const AUDIT_CODES: {
     readonly L2_AUTH_MODE_MISSING: "L2_AUTH_MODE_MISSING";
     readonly L2_NO_PAID_ROUTES: "L2_NO_PAID_ROUTES";
     readonly L2_PRICE_MISSING_ON_PAID: "L2_PRICE_MISSING_ON_PAID";
+    readonly L2_PRICING_MODE_UNKNOWN: "L2_PRICING_MODE_UNKNOWN";
     readonly L2_PROTOCOLS_MISSING_ON_PAID: "L2_PROTOCOLS_MISSING_ON_PAID";
     readonly L3_NOT_FOUND: "L3_NOT_FOUND";
     readonly L3_INPUT_SCHEMA_MISSING: "L3_INPUT_SCHEMA_MISSING";
@@ -349,8 +368,18 @@ interface AuditWarning {
 declare function getWarningsForOpenAPI(openApi: OpenApiSource | null): AuditWarning[];
 declare function getWarningsForWellKnown(wellKnown: WellKnownSource | null): AuditWarning[];
 declare function getWarningsForL2(l2: L2Result): AuditWarning[];
+/**
+ * Validates a raw 402 response body and returns issues as AuditWarnings.
+ * Uses the v1/v2 protocol validators directly — the canonical source of truth
+ * for 402 body quality checks. x402scan should call this instead of
+ * validatePaymentRequiredDetailed.
+ */
+declare function getWarningsFor402Body(body: unknown): AuditWarning[];
 declare function getWarningsForL3(l3: L3Result | null): AuditWarning[];
 declare function getWarningsForL4(l4: L4Result | null): AuditWarning[];
-export { AUDIT_CODES, type AuditCode, type AuditSeverity, type AuditWarning, type AuthMode, type CheckEndpointNotFound, type CheckEndpointOptions, type CheckEndpointResult, type CheckEndpointSuccess, type DiscoverOriginSchemaNotFound, type DiscoverOriginSchemaOptions, type DiscoverOriginSchemaResult, type DiscoverOriginSchemaSuccess, type EndpointMethodAdvisory, GuidanceMode, type HttpMethod, type L2Result, type L2Route, type L3Result, type L4Result, type MetadataPreview, type MppPaymentOption, type NormalizedAccept, type NormalizedPaymentRequired, type OpenApiRoute, type OpenApiSource, type PaymentOption, type PricingMode, type ProbeResult, type TrustTier, VALIDATION_CODES, type ValidatePaymentRequiredDetailedResult, type ValidatePaymentRequiredOptions, type ValidationIssue, type ValidationSeverity, type ValidationStage, type ValidationSummary, type WellKnownRoute, type WellKnownSource, type X402PaymentOption, type X402V1PaymentOption, type X402V2PaymentOption, checkEndpointSchema, checkL2ForOpenAPI, checkL2ForWellknown, checkL4ForOpenAPI, checkL4ForWellknown, discoverOriginSchema, evaluateMetadataCompleteness, getL3, getL3ForOpenAPI, getL3ForProbe, getOpenAPI, getProbe, getWarningsForL2, getWarningsForL3, getWarningsForL4, getWarningsForOpenAPI, getWarningsForWellKnown, getWellKnown, validatePaymentRequiredDetailed };
+export { AUDIT_CODES, type AuditCode, type AuditSeverity, type AuditWarning, type AuthMode, type CheckEndpointNotFound, type CheckEndpointOptions, type CheckEndpointResult, type CheckEndpointSuccess, type DiscoverOriginSchemaNotFound, type DiscoverOriginSchemaOptions, type DiscoverOriginSchemaResult, type DiscoverOriginSchemaSuccess, type EndpointMethodAdvisory, GuidanceMode, type HttpMethod, type L2Result, type L2Route, type L3Result, type L4Result, type MetadataPreview, type MppPaymentOption, type NormalizedAccept, type NormalizedPaymentRequired, type OpenApiRoute, type OpenApiSource, type PaymentOption, type PricingMode, type ProbeResult, type TrustTier, VALIDATION_CODES, type ValidatePaymentRequiredDetailedResult, type ValidatePaymentRequiredOptions, type ValidationIssue, type ValidationSeverity, type ValidationStage, type ValidationSummary, type WellKnownRoute, type WellKnownSource, type X402PaymentOption, type X402V1PaymentOption, type X402V2PaymentOption, attachProbePayload, checkEndpointSchema, checkL2ForOpenAPI, checkL2ForWellknown, checkL4ForOpenAPI, checkL4ForWellknown, discoverOriginSchema, evaluateMetadataCompleteness, getL3, getL3ForOpenAPI, getL3ForProbe, getOpenAPI, getProbe, getWarningsFor402Body, getWarningsForL2, getWarningsForL3, getWarningsForL4, getWarningsForOpenAPI, getWarningsForWellKnown, getWellKnown, validatePaymentRequiredDetailed };

package/dist/index.d.ts CHANGED Viewed

@@ -59,7 +59,7 @@ interface X402V2PaymentOption {
 type X402PaymentOption = X402V1PaymentOption | X402V2PaymentOption;
 type PaymentOption = X402PaymentOption | MppPaymentOption;
 interface PricingHint {
-    pricingMode: PricingMode;
+    pricingMode: PricingMode | string;
     price?: string;
     minPrice?: string;
     maxPrice?: string;
@@ -116,6 +116,7 @@ interface L2Route {
     summary: string;
     authMode?: AuthMode;
     price?: string;
+    pricingMode?: string;
     protocols?: string[];
 }
 interface L3Result {
@@ -128,6 +129,11 @@ interface L3Result {
     outputSchema?: Record<string, unknown>;
     /** Live payment options parsed from the 402 response. Only present on probe results. */
     paymentOptions?: PaymentOption[];
+    /**
+     * Raw 402 response body captured during probing. Present when the endpoint was probed
+     * and returned a 402. Used by getWarningsForL3 to run full payment-required validation.
+     */
+    paymentRequiredBody?: unknown;
 }
 interface L4Result {
     guidance: string;
@@ -229,6 +235,13 @@ declare function checkL2ForWellknown(wellKnown: WellKnownSource): L2Result;
 declare function getL3ForOpenAPI(openApi: OpenApiSource, path: string, method: HttpMethod): L3Result | null;
 declare function getL3ForProbe(probe: ProbeResult[], path: string, method: HttpMethod): L3Result | null;
+/**
+ * Probes `url` and populates `paymentRequiredBody` on each advisory so that
+ * getWarningsForL3 can run full 402-body validation. Mutates in place; no-ops on network error.
+ */
+declare function attachProbePayload(url: string, advisories: Array<L3Result & {
+    method: HttpMethod;
+}>): Promise<void>;
 declare function getL3(openApi: OpenApiSource | null, probe: ProbeResult[], path: string, method: HttpMethod): L3Result | null;
 declare function checkL4ForOpenAPI(openApi: OpenApiSource): L4Result | null;
@@ -239,6 +252,7 @@ declare const VALIDATION_CODES: {
     readonly X402_NOT_OBJECT: "X402_NOT_OBJECT";
     readonly X402_VERSION_MISSING: "X402_VERSION_MISSING";
     readonly X402_VERSION_UNSUPPORTED: "X402_VERSION_UNSUPPORTED";
+    readonly X402_VERSION_V1_NOT_SUPPORTED: "X402_VERSION_V1_NOT_SUPPORTED";
     readonly X402_ACCEPTS_MISSING: "X402_ACCEPTS_MISSING";
     readonly X402_ACCEPTS_INVALID: "X402_ACCEPTS_INVALID";
     readonly X402_ACCEPTS_EMPTY: "X402_ACCEPTS_EMPTY";
@@ -316,6 +330,10 @@ interface ValidatePaymentRequiredDetailedResult {
 declare function evaluateMetadataCompleteness(metadata: MetadataPreview): ValidationIssue[];
+/**
+ * Validates a 402 response body. Delegates to getWarningsFor402Body (the canonical
+ * audit function) and reconstructs the full typed result shape for backwards compatibility.
+ */
 declare function validatePaymentRequiredDetailed(payload: unknown, options?: ValidatePaymentRequiredOptions): ValidatePaymentRequiredDetailedResult;
 declare const AUDIT_CODES: {
@@ -327,6 +345,7 @@ declare const AUDIT_CODES: {
     readonly L2_AUTH_MODE_MISSING: "L2_AUTH_MODE_MISSING";
     readonly L2_NO_PAID_ROUTES: "L2_NO_PAID_ROUTES";
     readonly L2_PRICE_MISSING_ON_PAID: "L2_PRICE_MISSING_ON_PAID";
+    readonly L2_PRICING_MODE_UNKNOWN: "L2_PRICING_MODE_UNKNOWN";
     readonly L2_PROTOCOLS_MISSING_ON_PAID: "L2_PROTOCOLS_MISSING_ON_PAID";
     readonly L3_NOT_FOUND: "L3_NOT_FOUND";
     readonly L3_INPUT_SCHEMA_MISSING: "L3_INPUT_SCHEMA_MISSING";
@@ -349,8 +368,18 @@ interface AuditWarning {
 declare function getWarningsForOpenAPI(openApi: OpenApiSource | null): AuditWarning[];
 declare function getWarningsForWellKnown(wellKnown: WellKnownSource | null): AuditWarning[];
 declare function getWarningsForL2(l2: L2Result): AuditWarning[];
+/**
+ * Validates a raw 402 response body and returns issues as AuditWarnings.
+ * Uses the v1/v2 protocol validators directly — the canonical source of truth
+ * for 402 body quality checks. x402scan should call this instead of
+ * validatePaymentRequiredDetailed.
+ */
+declare function getWarningsFor402Body(body: unknown): AuditWarning[];
 declare function getWarningsForL3(l3: L3Result | null): AuditWarning[];
 declare function getWarningsForL4(l4: L4Result | null): AuditWarning[];
-export { AUDIT_CODES, type AuditCode, type AuditSeverity, type AuditWarning, type AuthMode, type CheckEndpointNotFound, type CheckEndpointOptions, type CheckEndpointResult, type CheckEndpointSuccess, type DiscoverOriginSchemaNotFound, type DiscoverOriginSchemaOptions, type DiscoverOriginSchemaResult, type DiscoverOriginSchemaSuccess, type EndpointMethodAdvisory, GuidanceMode, type HttpMethod, type L2Result, type L2Route, type L3Result, type L4Result, type MetadataPreview, type MppPaymentOption, type NormalizedAccept, type NormalizedPaymentRequired, type OpenApiRoute, type OpenApiSource, type PaymentOption, type PricingMode, type ProbeResult, type TrustTier, VALIDATION_CODES, type ValidatePaymentRequiredDetailedResult, type ValidatePaymentRequiredOptions, type ValidationIssue, type ValidationSeverity, type ValidationStage, type ValidationSummary, type WellKnownRoute, type WellKnownSource, type X402PaymentOption, type X402V1PaymentOption, type X402V2PaymentOption, checkEndpointSchema, checkL2ForOpenAPI, checkL2ForWellknown, checkL4ForOpenAPI, checkL4ForWellknown, discoverOriginSchema, evaluateMetadataCompleteness, getL3, getL3ForOpenAPI, getL3ForProbe, getOpenAPI, getProbe, getWarningsForL2, getWarningsForL3, getWarningsForL4, getWarningsForOpenAPI, getWarningsForWellKnown, getWellKnown, validatePaymentRequiredDetailed };
+export { AUDIT_CODES, type AuditCode, type AuditSeverity, type AuditWarning, type AuthMode, type CheckEndpointNotFound, type CheckEndpointOptions, type CheckEndpointResult, type CheckEndpointSuccess, type DiscoverOriginSchemaNotFound, type DiscoverOriginSchemaOptions, type DiscoverOriginSchemaResult, type DiscoverOriginSchemaSuccess, type EndpointMethodAdvisory, GuidanceMode, type HttpMethod, type L2Result, type L2Route, type L3Result, type L4Result, type MetadataPreview, type MppPaymentOption, type NormalizedAccept, type NormalizedPaymentRequired, type OpenApiRoute, type OpenApiSource, type PaymentOption, type PricingMode, type ProbeResult, type TrustTier, VALIDATION_CODES, type ValidatePaymentRequiredDetailedResult, type ValidatePaymentRequiredOptions, type ValidationIssue, type ValidationSeverity, type ValidationStage, type ValidationSummary, type WellKnownRoute, type WellKnownSource, type X402PaymentOption, type X402V1PaymentOption, type X402V2PaymentOption, attachProbePayload, checkEndpointSchema, checkL2ForOpenAPI, checkL2ForWellknown, checkL4ForOpenAPI, checkL4ForWellknown, discoverOriginSchema, evaluateMetadataCompleteness, getL3, getL3ForOpenAPI, getL3ForProbe, getOpenAPI, getProbe, getWarningsFor402Body, getWarningsForL2, getWarningsForL3, getWarningsForL4, getWarningsForOpenAPI, getWarningsForWellKnown, getWellKnown, validatePaymentRequiredDetailed };