@agentcash/telemetry 0.3.0

package/dist/router-plugin.js

@@ -0,0 +1,99 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true}); function _nullishCoalesce(lhs, rhsFn) { if (lhs != null) { return lhs; } else { return rhsFn(); } } function _optionalChain(ops) { let lastAccessLHS = undefined; let value = ops[0]; let i = 1; while (i < ops.length) { const op = ops[i]; const fn = ops[i + 1]; i += 2; if ((op === 'optionalAccess' || op === 'optionalCall') && value == null) { return undefined; } if (op === 'access' || op === 'optionalAccess') { lastAccessLHS = value; value = fn(value); } else if (op === 'call' || op === 'optionalCall') { value = fn((...args) => value.call(lastAccessLHS, ...args)); lastAccessLHS = undefined; } } return value; }
+
+
+
+var _chunkP63MLKU3js = require('./chunk-P63MLKU3.js');
+
+// src/router-plugin.ts
+function createTelemetryPlugin(config) {
+  _chunkP63MLKU3js.initClickhouse.call(void 0, config.clickhouse);
+  if (config.verify) {
+    _chunkP63MLKU3js.pingClickhouse.call(void 0, );
+  }
+  const log = _nullishCoalesce(config.console, () => ( false));
+  return {
+    onRequest(meta) {
+      const ctx = {
+        requestId: meta.requestId,
+        route: meta.route,
+        walletAddress: meta.walletAddress,
+        clientId: meta.clientId,
+        sessionId: meta.sessionId,
+        verifiedWallet: null,
+        setVerifiedWallet(address) {
+          ctx.verifiedWallet = address;
+        },
+        _meta: meta
+      };
+      return ctx;
+    },
+    onPaymentVerified(ctx, payment) {
+      ctx._payment = payment;
+      if (log) {
+        console.log(`[telemetry] VERIFIED ${payment.protocol} ${payment.payer} ${payment.amount}`);
+      }
+    },
+    onPaymentSettled(ctx, settlement) {
+      ctx._settlement = settlement;
+      if (log) {
+        console.log(`[telemetry] SETTLED ${settlement.protocol} tx=${settlement.transaction}`);
+      }
+    },
+    onResponse(ctx, response) {
+      const tCtx = ctx;
+      const meta = tCtx._meta;
+      if (log) {
+        const wallet = ctx.verifiedWallet ? ` wallet=${ctx.verifiedWallet}` : "";
+        console.log(
+          `[telemetry] ${meta.route} \u2192 ${response.statusCode} (${response.duration}ms)${wallet}`
+        );
+      }
+      const row = {
+        id: meta.requestId,
+        x_wallet_address: _nullishCoalesce(_optionalChain([meta, 'access', _ => _.walletAddress, 'optionalAccess', _2 => _2.toLowerCase, 'call', _3 => _3()]), () => ( null)),
+        x_client_id: meta.clientId,
+        session_id: meta.sessionId,
+        verified_wallet_address: _nullishCoalesce(_optionalChain([ctx, 'access', _4 => _4.verifiedWallet, 'optionalAccess', _5 => _5.toLowerCase, 'call', _6 => _6()]), () => ( null)),
+        method: meta.method,
+        route: meta.route,
+        origin: meta.origin,
+        referer: meta.referer,
+        request_content_type: meta.contentType,
+        request_headers: JSON.stringify(meta.headers),
+        request_body: null,
+        status_code: response.statusCode,
+        status_text: response.statusText,
+        duration: response.duration,
+        response_content_type: response.contentType,
+        response_headers: JSON.stringify(response.headers),
+        response_body: null,
+        created_at: /* @__PURE__ */ new Date()
+      };
+      _chunkP63MLKU3js.insertInvocation.call(void 0, row);
+    },
+    onError(ctx, error) {
+      if (log) {
+        console.error(`[telemetry] ERROR ${error.status}: ${error.message}`);
+      }
+    },
+    onAlert(ctx, alert) {
+      if (log) {
+        const logFn = alert.level === "critical" || alert.level === "error" ? console.error : alert.level === "warn" ? console.warn : console.log;
+        logFn(
+          `[telemetry] ${alert.level.toUpperCase()} ${alert.route}: ${alert.message}`,
+          _nullishCoalesce(alert.meta, () => ( ""))
+        );
+      }
+    },
+    onProviderQuota(ctx, event) {
+      if (log) {
+        const logFn = event.level === "critical" ? console.error : event.level === "warn" ? console.warn : console.log;
+        logFn(`[telemetry] QUOTA ${event.level.toUpperCase()} ${event.provider}: ${event.message}`);
+      }
+    }
+  };
+}
+
+
+exports.createTelemetryPlugin = createTelemetryPlugin;
+//# sourceMappingURL=router-plugin.js.map

package/dist/router-plugin.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["/Users/samragsdale/Documents/Code/merit-systems/agentcash-telemetry/dist/router-plugin.js","../src/router-plugin.ts"],"names":[],"mappings":"AAAA;AACE;AACA;AACA;AACF,sDAA4B;AAC5B;AACA;ACmIO,SAAS,qBAAA,CAAsB,MAAA,EAA6C;AAEjF,EAAA,6CAAA,MAAe,CAAO,UAAU,CAAA;AAChC,EAAA,GAAA,CAAI,MAAA,CAAO,MAAA,EAAQ;AACjB,IAAA,6CAAA,CAAe;AAAA,EACjB;AAEA,EAAA,MAAM,IAAA,mBAAM,MAAA,CAAO,OAAA,UAAW,OAAA;AAE9B,EAAA,OAAO;AAAA,IACL,SAAA,CAAU,IAAA,EAAkC;AAC1C,MAAA,MAAM,IAAA,EAA8B;AAAA,QAClC,SAAA,EAAW,IAAA,CAAK,SAAA;AAAA,QAChB,KAAA,EAAO,IAAA,CAAK,KAAA;AAAA,QACZ,aAAA,EAAe,IAAA,CAAK,aAAA;AAAA,QACpB,QAAA,EAAU,IAAA,CAAK,QAAA;AAAA,QACf,SAAA,EAAW,IAAA,CAAK,SAAA;AAAA,QAChB,cAAA,EAAgB,IAAA;AAAA,QAChB,iBAAA,CAAkB,OAAA,EAAiB;AACjC,UAAA,GAAA,CAAI,eAAA,EAAiB,OAAA;AAAA,QACvB,CAAA;AAAA,QACA,KAAA,EAAO;AAAA,MACT,CAAA;AACA,MAAA,OAAO,GAAA;AAAA,IACT,CAAA;AAAA,IAEA,iBAAA,CAAkB,GAAA,EAAoB,OAAA,EAAuB;AAC3D,MAAC,GAAA,CAA+B,SAAA,EAAW,OAAA;AAC3C,MAAA,GAAA,CAAI,GAAA,EAAK;AACP,QAAA,OAAA,CAAQ,GAAA,CAAI,CAAA,qBAAA,EAAwB,OAAA,CAAQ,QAAQ,CAAA,CAAA,EAAI,OAAA,CAAQ,KAAK,CAAA,CAAA,EAAI,OAAA,CAAQ,MAAM,CAAA,CAAA;AACzF,MAAA;AACF,IAAA;AAEkE,IAAA;AAClB,MAAA;AACrC,MAAA;AAC8E,QAAA;AACvF,MAAA;AACF,IAAA;AAEuD,IAAA;AACxC,MAAA;AACK,MAAA;AAET,MAAA;AAC+D,QAAA;AAC9D,QAAA;AACwE,UAAA;AAChF,QAAA;AACF,MAAA;AAEmC,MAAA;AACxB,QAAA;AAC8C,QAAA;AACrC,QAAA;AACD,QAAA;AAC6C,QAAA;AAEjD,QAAA;AACD,QAAA;AACC,QAAA;AACC,QAAA;AACa,QAAA;AACiB,QAAA;AAC9B,QAAA;AAEQ,QAAA;AACA,QAAA;AACH,QAAA;AACa,QAAA;AACiB,QAAA;AAClC,QAAA;AAEM,QAAA;AACvB,MAAA;AAEoB,MAAA;AACtB,IAAA;AAE+C,IAAA;AACpC,MAAA;AAC4D,QAAA;AACrE,MAAA;AACF,IAAA;AAE+C,IAAA;AACpC,MAAA;AAID,QAAA;AAGN,QAAA;AAC2E,UAAA;AAC3D,2BAAA;AAChB,QAAA;AACF,MAAA;AACF,IAAA;AAE+D,IAAA;AACpD,MAAA;AAKC,QAAA;AAEgF,QAAA;AAC1F,MAAA;AACF,IAAA;AACF,EAAA;AACF;AD1JgG;AACA;AACA","file":"/Users/samragsdale/Documents/Code/merit-systems/agentcash-telemetry/dist/router-plugin.js","sourcesContent":[null,"/**\n * RouterPlugin adapter for @agentcash/router.\n *\n * Bridges the router's plugin hooks into ClickHouse telemetry.\n * Uses the same mcp_resource_invocations table as the legacy withTelemetry wrapper.\n *\n * Usage:\n *   import { createRouter } from '@agentcash/router';\n *   import { createTelemetryPlugin } from '@agentcash/telemetry/plugin';\n *\n *   const router = createRouter({\n *     payeeAddress: '...',\n *     plugin: createTelemetryPlugin({\n *       clickhouse: {\n *         url: process.env.TELEM_CLICKHOUSE_URL ?? 'http://localhost:8123',\n *         database: process.env.TELEM_CLICKHOUSE_DATABASE,\n *         username: process.env.TELEM_CLICKHOUSE_USERNAME,\n *         password: process.env.TELEM_CLICKHOUSE_PASSWORD,\n *       },\n *     }),\n *   });\n */\n\nimport { initClickhouse, pingClickhouse, insertInvocation } from './clickhouse';\nimport type { McpResourceInvocation, TelemetryConfig } from './types';\n\n// ---------------------------------------------------------------------------\n// Minimal RouterPlugin types (inlined to avoid depending on @agentcash/router\n// at runtime — the router passes these shapes, we just consume them)\n// ---------------------------------------------------------------------------\n\ninterface RequestMeta {\n  requestId: string;\n  method: string;\n  route: string;\n  origin: string;\n  referer: string | null;\n  walletAddress: string | null;\n  clientId: string | null;\n  sessionId: string | null;\n  contentType: string | null;\n  headers: Record<string, string>;\n  startTime: number;\n}\n\ninterface PluginContext {\n  readonly requestId: string;\n  readonly route: string;\n  readonly walletAddress: string | null;\n  readonly clientId: string | null;\n  readonly sessionId: string | null;\n  verifiedWallet: string | null;\n  setVerifiedWallet(address: string): void;\n}\n\ninterface PaymentEvent {\n  protocol: 'x402' | 'mpp';\n  payer: string;\n  amount: string;\n  network: string;\n}\n\ninterface SettlementEvent {\n  protocol: 'x402' | 'mpp';\n  payer: string;\n  transaction: string;\n  network: string;\n}\n\ninterface ResponseMeta {\n  statusCode: number;\n  statusText: string;\n  duration: number;\n  contentType: string | null;\n  headers: Record<string, string>;\n}\n\ninterface ErrorEvent {\n  status: number;\n  message: string;\n  settled: boolean;\n}\n\ninterface AlertEvent {\n  level: string;\n  message: string;\n  route: string;\n  meta?: Record<string, unknown>;\n}\n\ninterface ProviderQuotaEvent {\n  provider: string;\n  route: string;\n  remaining: number | null;\n  limit: number | null;\n  level: string;\n  overage: string;\n  message: string;\n}\n\n/** RouterPlugin interface — must match @agentcash/router's RouterPlugin */\ninterface RouterPlugin {\n  init?(config: { origin?: string }): void | Promise<void>;\n  onRequest?(meta: RequestMeta): PluginContext;\n  onPaymentVerified?(ctx: PluginContext, payment: PaymentEvent): void;\n  onPaymentSettled?(ctx: PluginContext, settlement: SettlementEvent): void;\n  onResponse?(ctx: PluginContext, response: ResponseMeta): void;\n  onError?(ctx: PluginContext, error: ErrorEvent): void;\n  onAlert?(ctx: PluginContext, alert: AlertEvent): void;\n  onProviderQuota?(ctx: PluginContext, event: ProviderQuotaEvent): void;\n}\n\n// ---------------------------------------------------------------------------\n// Extended context — carries request metadata through the lifecycle\n// ---------------------------------------------------------------------------\n\ninterface TelemetryPluginContext extends PluginContext {\n  /** Stored from onRequest for use in onResponse */\n  _meta: RequestMeta;\n  /** Payment info captured between verify and response */\n  _payment?: PaymentEvent;\n  /** Settlement info captured between settle and response */\n  _settlement?: SettlementEvent;\n}\n\n// ---------------------------------------------------------------------------\n// Plugin factory\n// ---------------------------------------------------------------------------\n\nexport interface TelemetryPluginConfig {\n  clickhouse: TelemetryConfig['clickhouse'];\n  /** If true, pings ClickHouse on init. */\n  verify?: boolean;\n  /** Console logging for dev. Default: false. */\n  console?: boolean;\n}\n\nexport function createTelemetryPlugin(config: TelemetryPluginConfig): RouterPlugin {\n  // Initialize ClickHouse synchronously (connection happens on first query)\n  initClickhouse(config.clickhouse);\n  if (config.verify) {\n    pingClickhouse();\n  }\n\n  const log = config.console ?? false;\n\n  return {\n    onRequest(meta: RequestMeta): PluginContext {\n      const ctx: TelemetryPluginContext = {\n        requestId: meta.requestId,\n        route: meta.route,\n        walletAddress: meta.walletAddress,\n        clientId: meta.clientId,\n        sessionId: meta.sessionId,\n        verifiedWallet: null,\n        setVerifiedWallet(address: string) {\n          ctx.verifiedWallet = address;\n        },\n        _meta: meta,\n      };\n      return ctx as PluginContext;\n    },\n\n    onPaymentVerified(ctx: PluginContext, payment: PaymentEvent) {\n      (ctx as TelemetryPluginContext)._payment = payment;\n      if (log) {\n        console.log(`[telemetry] VERIFIED ${payment.protocol} ${payment.payer} ${payment.amount}`);\n      }\n    },\n\n    onPaymentSettled(ctx: PluginContext, settlement: SettlementEvent) {\n      (ctx as TelemetryPluginContext)._settlement = settlement;\n      if (log) {\n        console.log(`[telemetry] SETTLED ${settlement.protocol} tx=${settlement.transaction}`);\n      }\n    },\n\n    onResponse(ctx: PluginContext, response: ResponseMeta) {\n      const tCtx = ctx as TelemetryPluginContext;\n      const meta = tCtx._meta;\n\n      if (log) {\n        const wallet = ctx.verifiedWallet ? ` wallet=${ctx.verifiedWallet}` : '';\n        console.log(\n          `[telemetry] ${meta.route} → ${response.statusCode} (${response.duration}ms)${wallet}`,\n        );\n      }\n\n      const row: McpResourceInvocation = {\n        id: meta.requestId,\n        x_wallet_address: meta.walletAddress?.toLowerCase() ?? null,\n        x_client_id: meta.clientId,\n        session_id: meta.sessionId,\n        verified_wallet_address: ctx.verifiedWallet?.toLowerCase() ?? null,\n\n        method: meta.method,\n        route: meta.route,\n        origin: meta.origin,\n        referer: meta.referer,\n        request_content_type: meta.contentType,\n        request_headers: JSON.stringify(meta.headers),\n        request_body: null,\n\n        status_code: response.statusCode,\n        status_text: response.statusText,\n        duration: response.duration,\n        response_content_type: response.contentType,\n        response_headers: JSON.stringify(response.headers),\n        response_body: null,\n\n        created_at: new Date(),\n      };\n\n      insertInvocation(row);\n    },\n\n    onError(ctx: PluginContext, error: ErrorEvent) {\n      if (log) {\n        console.error(`[telemetry] ERROR ${error.status}: ${error.message}`);\n      }\n    },\n\n    onAlert(ctx: PluginContext, alert: AlertEvent) {\n      if (log) {\n        const logFn =\n          alert.level === 'critical' || alert.level === 'error'\n            ? console.error\n            : alert.level === 'warn'\n              ? console.warn\n              : console.log;\n        logFn(\n          `[telemetry] ${alert.level.toUpperCase()} ${alert.route}: ${alert.message}`,\n          alert.meta ?? '',\n        );\n      }\n    },\n\n    onProviderQuota(ctx: PluginContext, event: ProviderQuotaEvent) {\n      if (log) {\n        const logFn =\n          event.level === 'critical'\n            ? console.error\n            : event.level === 'warn'\n              ? console.warn\n              : console.log;\n        logFn(`[telemetry] QUOTA ${event.level.toUpperCase()} ${event.provider}: ${event.message}`);\n      }\n    },\n  };\n}\n"]}

package/dist/router-plugin.mjs

@@ -0,0 +1,99 @@
+import {
+  initClickhouse,
+  insertInvocation,
+  pingClickhouse
+} from "./chunk-O2PCP6KV.mjs";
+
+// src/router-plugin.ts
+function createTelemetryPlugin(config) {
+  initClickhouse(config.clickhouse);
+  if (config.verify) {
+    pingClickhouse();
+  }
+  const log = config.console ?? false;
+  return {
+    onRequest(meta) {
+      const ctx = {
+        requestId: meta.requestId,
+        route: meta.route,
+        walletAddress: meta.walletAddress,
+        clientId: meta.clientId,
+        sessionId: meta.sessionId,
+        verifiedWallet: null,
+        setVerifiedWallet(address) {
+          ctx.verifiedWallet = address;
+        },
+        _meta: meta
+      };
+      return ctx;
+    },
+    onPaymentVerified(ctx, payment) {
+      ctx._payment = payment;
+      if (log) {
+        console.log(`[telemetry] VERIFIED ${payment.protocol} ${payment.payer} ${payment.amount}`);
+      }
+    },
+    onPaymentSettled(ctx, settlement) {
+      ctx._settlement = settlement;
+      if (log) {
+        console.log(`[telemetry] SETTLED ${settlement.protocol} tx=${settlement.transaction}`);
+      }
+    },
+    onResponse(ctx, response) {
+      const tCtx = ctx;
+      const meta = tCtx._meta;
+      if (log) {
+        const wallet = ctx.verifiedWallet ? ` wallet=${ctx.verifiedWallet}` : "";
+        console.log(
+          `[telemetry] ${meta.route} \u2192 ${response.statusCode} (${response.duration}ms)${wallet}`
+        );
+      }
+      const row = {
+        id: meta.requestId,
+        x_wallet_address: meta.walletAddress?.toLowerCase() ?? null,
+        x_client_id: meta.clientId,
+        session_id: meta.sessionId,
+        verified_wallet_address: ctx.verifiedWallet?.toLowerCase() ?? null,
+        method: meta.method,
+        route: meta.route,
+        origin: meta.origin,
+        referer: meta.referer,
+        request_content_type: meta.contentType,
+        request_headers: JSON.stringify(meta.headers),
+        request_body: null,
+        status_code: response.statusCode,
+        status_text: response.statusText,
+        duration: response.duration,
+        response_content_type: response.contentType,
+        response_headers: JSON.stringify(response.headers),
+        response_body: null,
+        created_at: /* @__PURE__ */ new Date()
+      };
+      insertInvocation(row);
+    },
+    onError(ctx, error) {
+      if (log) {
+        console.error(`[telemetry] ERROR ${error.status}: ${error.message}`);
+      }
+    },
+    onAlert(ctx, alert) {
+      if (log) {
+        const logFn = alert.level === "critical" || alert.level === "error" ? console.error : alert.level === "warn" ? console.warn : console.log;
+        logFn(
+          `[telemetry] ${alert.level.toUpperCase()} ${alert.route}: ${alert.message}`,
+          alert.meta ?? ""
+        );
+      }
+    },
+    onProviderQuota(ctx, event) {
+      if (log) {
+        const logFn = event.level === "critical" ? console.error : event.level === "warn" ? console.warn : console.log;
+        logFn(`[telemetry] QUOTA ${event.level.toUpperCase()} ${event.provider}: ${event.message}`);
+      }
+    }
+  };
+}
+export {
+  createTelemetryPlugin
+};
+//# sourceMappingURL=router-plugin.mjs.map

package/dist/router-plugin.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/router-plugin.ts"],"sourcesContent":["/**\n * RouterPlugin adapter for @agentcash/router.\n *\n * Bridges the router's plugin hooks into ClickHouse telemetry.\n * Uses the same mcp_resource_invocations table as the legacy withTelemetry wrapper.\n *\n * Usage:\n *   import { createRouter } from '@agentcash/router';\n *   import { createTelemetryPlugin } from '@agentcash/telemetry/plugin';\n *\n *   const router = createRouter({\n *     payeeAddress: '...',\n *     plugin: createTelemetryPlugin({\n *       clickhouse: {\n *         url: process.env.TELEM_CLICKHOUSE_URL ?? 'http://localhost:8123',\n *         database: process.env.TELEM_CLICKHOUSE_DATABASE,\n *         username: process.env.TELEM_CLICKHOUSE_USERNAME,\n *         password: process.env.TELEM_CLICKHOUSE_PASSWORD,\n *       },\n *     }),\n *   });\n */\n\nimport { initClickhouse, pingClickhouse, insertInvocation } from './clickhouse';\nimport type { McpResourceInvocation, TelemetryConfig } from './types';\n\n// ---------------------------------------------------------------------------\n// Minimal RouterPlugin types (inlined to avoid depending on @agentcash/router\n// at runtime — the router passes these shapes, we just consume them)\n// ---------------------------------------------------------------------------\n\ninterface RequestMeta {\n  requestId: string;\n  method: string;\n  route: string;\n  origin: string;\n  referer: string | null;\n  walletAddress: string | null;\n  clientId: string | null;\n  sessionId: string | null;\n  contentType: string | null;\n  headers: Record<string, string>;\n  startTime: number;\n}\n\ninterface PluginContext {\n  readonly requestId: string;\n  readonly route: string;\n  readonly walletAddress: string | null;\n  readonly clientId: string | null;\n  readonly sessionId: string | null;\n  verifiedWallet: string | null;\n  setVerifiedWallet(address: string): void;\n}\n\ninterface PaymentEvent {\n  protocol: 'x402' | 'mpp';\n  payer: string;\n  amount: string;\n  network: string;\n}\n\ninterface SettlementEvent {\n  protocol: 'x402' | 'mpp';\n  payer: string;\n  transaction: string;\n  network: string;\n}\n\ninterface ResponseMeta {\n  statusCode: number;\n  statusText: string;\n  duration: number;\n  contentType: string | null;\n  headers: Record<string, string>;\n}\n\ninterface ErrorEvent {\n  status: number;\n  message: string;\n  settled: boolean;\n}\n\ninterface AlertEvent {\n  level: string;\n  message: string;\n  route: string;\n  meta?: Record<string, unknown>;\n}\n\ninterface ProviderQuotaEvent {\n  provider: string;\n  route: string;\n  remaining: number | null;\n  limit: number | null;\n  level: string;\n  overage: string;\n  message: string;\n}\n\n/** RouterPlugin interface — must match @agentcash/router's RouterPlugin */\ninterface RouterPlugin {\n  init?(config: { origin?: string }): void | Promise<void>;\n  onRequest?(meta: RequestMeta): PluginContext;\n  onPaymentVerified?(ctx: PluginContext, payment: PaymentEvent): void;\n  onPaymentSettled?(ctx: PluginContext, settlement: SettlementEvent): void;\n  onResponse?(ctx: PluginContext, response: ResponseMeta): void;\n  onError?(ctx: PluginContext, error: ErrorEvent): void;\n  onAlert?(ctx: PluginContext, alert: AlertEvent): void;\n  onProviderQuota?(ctx: PluginContext, event: ProviderQuotaEvent): void;\n}\n\n// ---------------------------------------------------------------------------\n// Extended context — carries request metadata through the lifecycle\n// ---------------------------------------------------------------------------\n\ninterface TelemetryPluginContext extends PluginContext {\n  /** Stored from onRequest for use in onResponse */\n  _meta: RequestMeta;\n  /** Payment info captured between verify and response */\n  _payment?: PaymentEvent;\n  /** Settlement info captured between settle and response */\n  _settlement?: SettlementEvent;\n}\n\n// ---------------------------------------------------------------------------\n// Plugin factory\n// ---------------------------------------------------------------------------\n\nexport interface TelemetryPluginConfig {\n  clickhouse: TelemetryConfig['clickhouse'];\n  /** If true, pings ClickHouse on init. */\n  verify?: boolean;\n  /** Console logging for dev. Default: false. */\n  console?: boolean;\n}\n\nexport function createTelemetryPlugin(config: TelemetryPluginConfig): RouterPlugin {\n  // Initialize ClickHouse synchronously (connection happens on first query)\n  initClickhouse(config.clickhouse);\n  if (config.verify) {\n    pingClickhouse();\n  }\n\n  const log = config.console ?? false;\n\n  return {\n    onRequest(meta: RequestMeta): PluginContext {\n      const ctx: TelemetryPluginContext = {\n        requestId: meta.requestId,\n        route: meta.route,\n        walletAddress: meta.walletAddress,\n        clientId: meta.clientId,\n        sessionId: meta.sessionId,\n        verifiedWallet: null,\n        setVerifiedWallet(address: string) {\n          ctx.verifiedWallet = address;\n        },\n        _meta: meta,\n      };\n      return ctx as PluginContext;\n    },\n\n    onPaymentVerified(ctx: PluginContext, payment: PaymentEvent) {\n      (ctx as TelemetryPluginContext)._payment = payment;\n      if (log) {\n        console.log(`[telemetry] VERIFIED ${payment.protocol} ${payment.payer} ${payment.amount}`);\n      }\n    },\n\n    onPaymentSettled(ctx: PluginContext, settlement: SettlementEvent) {\n      (ctx as TelemetryPluginContext)._settlement = settlement;\n      if (log) {\n        console.log(`[telemetry] SETTLED ${settlement.protocol} tx=${settlement.transaction}`);\n      }\n    },\n\n    onResponse(ctx: PluginContext, response: ResponseMeta) {\n      const tCtx = ctx as TelemetryPluginContext;\n      const meta = tCtx._meta;\n\n      if (log) {\n        const wallet = ctx.verifiedWallet ? ` wallet=${ctx.verifiedWallet}` : '';\n        console.log(\n          `[telemetry] ${meta.route} → ${response.statusCode} (${response.duration}ms)${wallet}`,\n        );\n      }\n\n      const row: McpResourceInvocation = {\n        id: meta.requestId,\n        x_wallet_address: meta.walletAddress?.toLowerCase() ?? null,\n        x_client_id: meta.clientId,\n        session_id: meta.sessionId,\n        verified_wallet_address: ctx.verifiedWallet?.toLowerCase() ?? null,\n\n        method: meta.method,\n        route: meta.route,\n        origin: meta.origin,\n        referer: meta.referer,\n        request_content_type: meta.contentType,\n        request_headers: JSON.stringify(meta.headers),\n        request_body: null,\n\n        status_code: response.statusCode,\n        status_text: response.statusText,\n        duration: response.duration,\n        response_content_type: response.contentType,\n        response_headers: JSON.stringify(response.headers),\n        response_body: null,\n\n        created_at: new Date(),\n      };\n\n      insertInvocation(row);\n    },\n\n    onError(ctx: PluginContext, error: ErrorEvent) {\n      if (log) {\n        console.error(`[telemetry] ERROR ${error.status}: ${error.message}`);\n      }\n    },\n\n    onAlert(ctx: PluginContext, alert: AlertEvent) {\n      if (log) {\n        const logFn =\n          alert.level === 'critical' || alert.level === 'error'\n            ? console.error\n            : alert.level === 'warn'\n              ? console.warn\n              : console.log;\n        logFn(\n          `[telemetry] ${alert.level.toUpperCase()} ${alert.route}: ${alert.message}`,\n          alert.meta ?? '',\n        );\n      }\n    },\n\n    onProviderQuota(ctx: PluginContext, event: ProviderQuotaEvent) {\n      if (log) {\n        const logFn =\n          event.level === 'critical'\n            ? console.error\n            : event.level === 'warn'\n              ? console.warn\n              : console.log;\n        logFn(`[telemetry] QUOTA ${event.level.toUpperCase()} ${event.provider}: ${event.message}`);\n      }\n    },\n  };\n}\n"],"mappings":";;;;;;;AAyIO,SAAS,sBAAsB,QAA6C;AAEjF,iBAAe,OAAO,UAAU;AAChC,MAAI,OAAO,QAAQ;AACjB,mBAAe;AAAA,EACjB;AAEA,QAAM,MAAM,OAAO,WAAW;AAE9B,SAAO;AAAA,IACL,UAAU,MAAkC;AAC1C,YAAM,MAA8B;AAAA,QAClC,WAAW,KAAK;AAAA,QAChB,OAAO,KAAK;AAAA,QACZ,eAAe,KAAK;AAAA,QACpB,UAAU,KAAK;AAAA,QACf,WAAW,KAAK;AAAA,QAChB,gBAAgB;AAAA,QAChB,kBAAkB,SAAiB;AACjC,cAAI,iBAAiB;AAAA,QACvB;AAAA,QACA,OAAO;AAAA,MACT;AACA,aAAO;AAAA,IACT;AAAA,IAEA,kBAAkB,KAAoB,SAAuB;AAC3D,MAAC,IAA+B,WAAW;AAC3C,UAAI,KAAK;AACP,gBAAQ,IAAI,wBAAwB,QAAQ,QAAQ,IAAI,QAAQ,KAAK,IAAI,QAAQ,MAAM,EAAE;AAAA,MAC3F;AAAA,IACF;AAAA,IAEA,iBAAiB,KAAoB,YAA6B;AAChE,MAAC,IAA+B,cAAc;AAC9C,UAAI,KAAK;AACP,gBAAQ,IAAI,uBAAuB,WAAW,QAAQ,OAAO,WAAW,WAAW,EAAE;AAAA,MACvF;AAAA,IACF;AAAA,IAEA,WAAW,KAAoB,UAAwB;AACrD,YAAM,OAAO;AACb,YAAM,OAAO,KAAK;AAElB,UAAI,KAAK;AACP,cAAM,SAAS,IAAI,iBAAiB,WAAW,IAAI,cAAc,KAAK;AACtE,gBAAQ;AAAA,UACN,eAAe,KAAK,KAAK,WAAM,SAAS,UAAU,KAAK,SAAS,QAAQ,MAAM,MAAM;AAAA,QACtF;AAAA,MACF;AAEA,YAAM,MAA6B;AAAA,QACjC,IAAI,KAAK;AAAA,QACT,kBAAkB,KAAK,eAAe,YAAY,KAAK;AAAA,QACvD,aAAa,KAAK;AAAA,QAClB,YAAY,KAAK;AAAA,QACjB,yBAAyB,IAAI,gBAAgB,YAAY,KAAK;AAAA,QAE9D,QAAQ,KAAK;AAAA,QACb,OAAO,KAAK;AAAA,QACZ,QAAQ,KAAK;AAAA,QACb,SAAS,KAAK;AAAA,QACd,sBAAsB,KAAK;AAAA,QAC3B,iBAAiB,KAAK,UAAU,KAAK,OAAO;AAAA,QAC5C,cAAc;AAAA,QAEd,aAAa,SAAS;AAAA,QACtB,aAAa,SAAS;AAAA,QACtB,UAAU,SAAS;AAAA,QACnB,uBAAuB,SAAS;AAAA,QAChC,kBAAkB,KAAK,UAAU,SAAS,OAAO;AAAA,QACjD,eAAe;AAAA,QAEf,YAAY,oBAAI,KAAK;AAAA,MACvB;AAEA,uBAAiB,GAAG;AAAA,IACtB;AAAA,IAEA,QAAQ,KAAoB,OAAmB;AAC7C,UAAI,KAAK;AACP,gBAAQ,MAAM,qBAAqB,MAAM,MAAM,KAAK,MAAM,OAAO,EAAE;AAAA,MACrE;AAAA,IACF;AAAA,IAEA,QAAQ,KAAoB,OAAmB;AAC7C,UAAI,KAAK;AACP,cAAM,QACJ,MAAM,UAAU,cAAc,MAAM,UAAU,UAC1C,QAAQ,QACR,MAAM,UAAU,SACd,QAAQ,OACR,QAAQ;AAChB;AAAA,UACE,eAAe,MAAM,MAAM,YAAY,CAAC,IAAI,MAAM,KAAK,KAAK,MAAM,OAAO;AAAA,UACzE,MAAM,QAAQ;AAAA,QAChB;AAAA,MACF;AAAA,IACF;AAAA,IAEA,gBAAgB,KAAoB,OAA2B;AAC7D,UAAI,KAAK;AACP,cAAM,QACJ,MAAM,UAAU,aACZ,QAAQ,QACR,MAAM,UAAU,SACd,QAAQ,OACR,QAAQ;AAChB,cAAM,qBAAqB,MAAM,MAAM,YAAY,CAAC,IAAI,MAAM,QAAQ,KAAK,MAAM,OAAO,EAAE;AAAA,MAC5F;AAAA,IACF;AAAA,EACF;AACF;","names":[]}

package/dist/siwx.d.mts

@@ -0,0 +1,29 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { a as TelemetryContext } from './types-Bl8IwXin.mjs';
+
+/**
+ * SIWX telemetry wrapper — composes SIWX verification with telemetry.
+ * One-liner for routes that need wallet auth + telemetry.
+ *
+ * Delegates SIWX verification to @x402/extensions/sign-in-with-x.
+ * This package does NOT implement SIWX itself.
+ *
+ * Import from '@agentcash/telemetry/siwx'.
+ * Requires peer dep: @x402/extensions
+ */
+
+interface SiwxTelemetryContext extends Omit<TelemetryContext, 'verifiedWallet'> {
+    /** Verified wallet address from SIWX authentication */
+    verifiedWallet: string;
+}
+type SiwxHandler = (request: NextRequest, ctx: SiwxTelemetryContext) => Promise<NextResponse>;
+/**
+ * Wrap a Next.js route handler with SIWX verification + telemetry.
+ *
+ * Verifies the SIGN-IN-WITH-X header and sets the verified wallet automatically.
+ * If no SIWX header is present, returns a 402 with SIWX challenge.
+ * If verification fails, returns a 402 (matching x402 protocol convention).
+ */
+declare function withSiwxTelemetry(handler: SiwxHandler): (request: NextRequest) => Promise<NextResponse>;
+
+export { type SiwxTelemetryContext, withSiwxTelemetry };

package/dist/siwx.d.ts

@@ -0,0 +1,29 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { a as TelemetryContext } from './types-Bl8IwXin.js';
+
+/**
+ * SIWX telemetry wrapper — composes SIWX verification with telemetry.
+ * One-liner for routes that need wallet auth + telemetry.
+ *
+ * Delegates SIWX verification to @x402/extensions/sign-in-with-x.
+ * This package does NOT implement SIWX itself.
+ *
+ * Import from '@agentcash/telemetry/siwx'.
+ * Requires peer dep: @x402/extensions
+ */
+
+interface SiwxTelemetryContext extends Omit<TelemetryContext, 'verifiedWallet'> {
+    /** Verified wallet address from SIWX authentication */
+    verifiedWallet: string;
+}
+type SiwxHandler = (request: NextRequest, ctx: SiwxTelemetryContext) => Promise<NextResponse>;
+/**
+ * Wrap a Next.js route handler with SIWX verification + telemetry.
+ *
+ * Verifies the SIGN-IN-WITH-X header and sets the verified wallet automatically.
+ * If no SIWX header is present, returns a 402 with SIWX challenge.
+ * If verification fails, returns a 402 (matching x402 protocol convention).
+ */
+declare function withSiwxTelemetry(handler: SiwxHandler): (request: NextRequest) => Promise<NextResponse>;
+
+export { type SiwxTelemetryContext, withSiwxTelemetry };

package/dist/siwx.js

@@ -0,0 +1,99 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true}); function _nullishCoalesce(lhs, rhsFn) { if (lhs != null) { return lhs; } else { return rhsFn(); } }
+
+var _chunkFJ3YM6KOjs = require('./chunk-FJ3YM6KO.js');
+require('./chunk-GE7VBMQP.js');
+require('./chunk-P63MLKU3.js');
+
+// src/siwx.ts
+var _server = require('next/server');
+var _crypto = require('crypto');
+
+
+
+
+
+var _signinwithx = require('@x402/extensions/sign-in-with-x');
+var _http = require('@x402/core/http');
+function withSiwxTelemetry(handler) {
+  return _chunkFJ3YM6KOjs.withTelemetry.call(void 0, async (request, ctx) => {
+    const header = _nullishCoalesce(request.headers.get("SIGN-IN-WITH-X"), () => ( request.headers.get("sign-in-with-x")));
+    if (!header) {
+      return buildSiwxChallengeResponse(request);
+    }
+    const payload = _signinwithx.parseSIWxHeader.call(void 0, header);
+    const validation = await _signinwithx.validateSIWxMessage.call(void 0, payload, request.url);
+    if (!validation.valid) {
+      return _server.NextResponse.json(
+        { success: false, error: `SIWX validation failed: ${validation.error}` },
+        { status: 402 }
+      );
+    }
+    const verification = await _signinwithx.verifySIWxSignature.call(void 0, payload);
+    if (!verification.valid || !verification.address) {
+      return _server.NextResponse.json(
+        { success: false, error: "SIWX signature verification failed" },
+        { status: 402 }
+      );
+    }
+    const walletAddress = verification.address.toLowerCase();
+    ctx.setVerifiedWallet(walletAddress);
+    return handler(request, {
+      ...ctx,
+      verifiedWallet: walletAddress
+    });
+  });
+}
+function buildSiwxChallengeResponse(request) {
+  const url = new URL(request.url);
+  const nonce = _crypto.randomBytes.call(void 0, 16).toString("hex");
+  const issuedAt = (/* @__PURE__ */ new Date()).toISOString();
+  const expirationTime = new Date(Date.now() + 3e5).toISOString();
+  const paymentRequired = {
+    x402Version: 2,
+    error: "SIWX authentication required",
+    resource: {
+      url: request.url,
+      description: "SIWX-protected endpoint",
+      mimeType: "application/json"
+    },
+    accepts: [
+      {
+        scheme: "exact",
+        network: "eip155:8453",
+        asset: "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",
+        amount: "0",
+        payTo: "0x0000000000000000000000000000000000000000",
+        maxTimeoutSeconds: 300,
+        extra: {}
+      }
+    ],
+    extensions: {
+      "sign-in-with-x": {
+        info: {
+          domain: url.hostname,
+          uri: request.url,
+          version: "1",
+          nonce,
+          issuedAt,
+          expirationTime,
+          statement: "Sign in to verify your wallet identity",
+          resources: [request.url]
+        },
+        supportedChains: [{ chainId: "eip155:8453", type: "eip191" }],
+        schema: _signinwithx.buildSIWxSchema.call(void 0, )
+      }
+    }
+  };
+  const encoded = _http.encodePaymentRequiredHeader.call(void 0, paymentRequired);
+  return new (0, _server.NextResponse)(JSON.stringify(paymentRequired), {
+    status: 402,
+    headers: {
+      "Content-Type": "application/json",
+      "PAYMENT-REQUIRED": encoded
+    }
+  });
+}
+
+
+exports.withSiwxTelemetry = withSiwxTelemetry;
+//# sourceMappingURL=siwx.js.map

package/dist/siwx.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["/Users/samragsdale/Documents/Code/merit-systems/agentcash-telemetry/dist/siwx.js","../src/siwx.ts"],"names":[],"mappings":"AAAA;AACE;AACF,sDAA4B;AAC5B,+BAA4B;AAC5B,+BAA4B;AAC5B;AACA;ACKA,qCAA+C;AAC/C,gCAA4B;AAC5B;AACE;AACA;AACA;AACA;AAAA,8DACK;AACP,uCAA4C;AAoBrC,SAAS,iBAAA,CAAkB,OAAA,EAAsB;AACtD,EAAA,OAAO,4CAAA,MAAc,CAAO,OAAA,EAAsB,GAAA,EAAA,GAA0B;AAC1E,IAAA,MAAM,OAAA,mBAAS,OAAA,CAAQ,OAAA,CAAQ,GAAA,CAAI,gBAAgB,CAAA,UAAK,OAAA,CAAQ,OAAA,CAAQ,GAAA,CAAI,gBAAgB,GAAA;AAE5F,IAAA,GAAA,CAAI,CAAC,MAAA,EAAQ;AACX,MAAA,OAAO,0BAAA,CAA2B,OAAO,CAAA;AAAA,IAC3C;AAEA,IAAA,MAAM,QAAA,EAAU,0CAAA,MAAsB,CAAA;AAEtC,IAAA,MAAM,WAAA,EAAa,MAAM,8CAAA,OAAoB,EAAS,OAAA,CAAQ,GAAG,CAAA;AACjE,IAAA,GAAA,CAAI,CAAC,UAAA,CAAW,KAAA,EAAO;AACrB,MAAA,OAAO,oBAAA,CAAa,IAAA;AAAA,QAClB,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,CAAA,wBAAA,EAA2B,UAAA,CAAW,KAAK,CAAA,EAAA;AACtD,QAAA;AAChB,MAAA;AACF,IAAA;AAEsD,IAAA;AACJ,IAAA;AAC5B,MAAA;AAC4C,QAAA;AAChD,QAAA;AAChB,MAAA;AACF,IAAA;AAEuD,IAAA;AACpB,IAAA;AAEX,IAAA;AACnB,MAAA;AACa,MAAA;AACO,IAAA;AAC1B,EAAA;AACH;AAKwE;AACvC,EAAA;AACa,EAAA;AACJ,EAAA;AAC0B,EAAA;AAE1C,EAAA;AACT,IAAA;AACN,IAAA;AACG,IAAA;AACK,MAAA;AACA,MAAA;AACH,MAAA;AACZ,IAAA;AACS,IAAA;AACP,MAAA;AACU,QAAA;AACC,QAAA;AACF,QAAA;AACC,QAAA;AACD,QAAA;AACY,QAAA;AACX,QAAA;AACV,MAAA;AACF,IAAA;AACY,IAAA;AACQ,MAAA;AACV,QAAA;AACQ,UAAA;AACC,UAAA;AACJ,UAAA;AACT,UAAA;AACA,UAAA;AACA,UAAA;AACW,UAAA;AACY,UAAA;AACzB,QAAA;AAC4D,QAAA;AACpC,QAAA;AAC1B,MAAA;AACF,IAAA;AACF,EAAA;AAE2D,EAAA;AAEF,EAAA;AAC/C,IAAA;AACC,IAAA;AACS,MAAA;AACI,MAAA;AACtB,IAAA;AACD,EAAA;AACH;ADnC6E;AACA;AACA","file":"/Users/samragsdale/Documents/Code/merit-systems/agentcash-telemetry/dist/siwx.js","sourcesContent":[null,"/**\n * SIWX telemetry wrapper — composes SIWX verification with telemetry.\n * One-liner for routes that need wallet auth + telemetry.\n *\n * Delegates SIWX verification to @x402/extensions/sign-in-with-x.\n * This package does NOT implement SIWX itself.\n *\n * Import from '@agentcash/telemetry/siwx'.\n * Requires peer dep: @x402/extensions\n */\n\nimport { type NextRequest, NextResponse } from 'next/server';\nimport { randomBytes } from 'crypto';\nimport {\n  parseSIWxHeader,\n  validateSIWxMessage,\n  verifySIWxSignature,\n  buildSIWxSchema,\n} from '@x402/extensions/sign-in-with-x';\nimport { encodePaymentRequiredHeader } from '@x402/core/http';\nimport type { TelemetryContext } from './types';\nimport { withTelemetry } from './telemetry';\n\nexport type { SiwxTelemetryContext };\n\ninterface SiwxTelemetryContext extends Omit<TelemetryContext, 'verifiedWallet'> {\n  /** Verified wallet address from SIWX authentication */\n  verifiedWallet: string;\n}\n\ntype SiwxHandler = (request: NextRequest, ctx: SiwxTelemetryContext) => Promise<NextResponse>;\n\n/**\n * Wrap a Next.js route handler with SIWX verification + telemetry.\n *\n * Verifies the SIGN-IN-WITH-X header and sets the verified wallet automatically.\n * If no SIWX header is present, returns a 402 with SIWX challenge.\n * If verification fails, returns a 402 (matching x402 protocol convention).\n */\nexport function withSiwxTelemetry(handler: SiwxHandler) {\n  return withTelemetry(async (request: NextRequest, ctx: TelemetryContext) => {\n    const header = request.headers.get('SIGN-IN-WITH-X') ?? request.headers.get('sign-in-with-x');\n\n    if (!header) {\n      return buildSiwxChallengeResponse(request);\n    }\n\n    const payload = parseSIWxHeader(header);\n\n    const validation = await validateSIWxMessage(payload, request.url);\n    if (!validation.valid) {\n      return NextResponse.json(\n        { success: false, error: `SIWX validation failed: ${validation.error}` },\n        { status: 402 },\n      );\n    }\n\n    const verification = await verifySIWxSignature(payload);\n    if (!verification.valid || !verification.address) {\n      return NextResponse.json(\n        { success: false, error: 'SIWX signature verification failed' },\n        { status: 402 },\n      );\n    }\n\n    const walletAddress = verification.address.toLowerCase();\n    ctx.setVerifiedWallet(walletAddress);\n\n    return handler(request, {\n      ...ctx,\n      verifiedWallet: walletAddress,\n    } as SiwxTelemetryContext);\n  });\n}\n\n/**\n * Build a 402 response with SIWX challenge.\n */\nfunction buildSiwxChallengeResponse(request: NextRequest): NextResponse {\n  const url = new URL(request.url);\n  const nonce = randomBytes(16).toString('hex');\n  const issuedAt = new Date().toISOString();\n  const expirationTime = new Date(Date.now() + 300_000).toISOString();\n\n  const paymentRequired = {\n    x402Version: 2,\n    error: 'SIWX authentication required',\n    resource: {\n      url: request.url,\n      description: 'SIWX-protected endpoint',\n      mimeType: 'application/json',\n    },\n    accepts: [\n      {\n        scheme: 'exact' as const,\n        network: 'eip155:8453' as const,\n        asset: '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913',\n        amount: '0',\n        payTo: '0x0000000000000000000000000000000000000000',\n        maxTimeoutSeconds: 300,\n        extra: {},\n      },\n    ],\n    extensions: {\n      'sign-in-with-x': {\n        info: {\n          domain: url.hostname,\n          uri: request.url,\n          version: '1',\n          nonce,\n          issuedAt,\n          expirationTime,\n          statement: 'Sign in to verify your wallet identity',\n          resources: [request.url],\n        },\n        supportedChains: [{ chainId: 'eip155:8453', type: 'eip191' }],\n        schema: buildSIWxSchema(),\n      },\n    },\n  };\n\n  const encoded = encodePaymentRequiredHeader(paymentRequired);\n\n  return new NextResponse(JSON.stringify(paymentRequired), {\n    status: 402,\n    headers: {\n      'Content-Type': 'application/json',\n      'PAYMENT-REQUIRED': encoded,\n    },\n  });\n}\n"]}

package/dist/siwx.mjs

@@ -0,0 +1,99 @@
+import {
+  withTelemetry
+} from "./chunk-JVLKV7CX.mjs";
+import "./chunk-VOY67KA4.mjs";
+import "./chunk-O2PCP6KV.mjs";
+
+// src/siwx.ts
+import { NextResponse } from "next/server";
+import { randomBytes } from "crypto";
+import {
+  parseSIWxHeader,
+  validateSIWxMessage,
+  verifySIWxSignature,
+  buildSIWxSchema
+} from "@x402/extensions/sign-in-with-x";
+import { encodePaymentRequiredHeader } from "@x402/core/http";
+function withSiwxTelemetry(handler) {
+  return withTelemetry(async (request, ctx) => {
+    const header = request.headers.get("SIGN-IN-WITH-X") ?? request.headers.get("sign-in-with-x");
+    if (!header) {
+      return buildSiwxChallengeResponse(request);
+    }
+    const payload = parseSIWxHeader(header);
+    const validation = await validateSIWxMessage(payload, request.url);
+    if (!validation.valid) {
+      return NextResponse.json(
+        { success: false, error: `SIWX validation failed: ${validation.error}` },
+        { status: 402 }
+      );
+    }
+    const verification = await verifySIWxSignature(payload);
+    if (!verification.valid || !verification.address) {
+      return NextResponse.json(
+        { success: false, error: "SIWX signature verification failed" },
+        { status: 402 }
+      );
+    }
+    const walletAddress = verification.address.toLowerCase();
+    ctx.setVerifiedWallet(walletAddress);
+    return handler(request, {
+      ...ctx,
+      verifiedWallet: walletAddress
+    });
+  });
+}
+function buildSiwxChallengeResponse(request) {
+  const url = new URL(request.url);
+  const nonce = randomBytes(16).toString("hex");
+  const issuedAt = (/* @__PURE__ */ new Date()).toISOString();
+  const expirationTime = new Date(Date.now() + 3e5).toISOString();
+  const paymentRequired = {
+    x402Version: 2,
+    error: "SIWX authentication required",
+    resource: {
+      url: request.url,
+      description: "SIWX-protected endpoint",
+      mimeType: "application/json"
+    },
+    accepts: [
+      {
+        scheme: "exact",
+        network: "eip155:8453",
+        asset: "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",
+        amount: "0",
+        payTo: "0x0000000000000000000000000000000000000000",
+        maxTimeoutSeconds: 300,
+        extra: {}
+      }
+    ],
+    extensions: {
+      "sign-in-with-x": {
+        info: {
+          domain: url.hostname,
+          uri: request.url,
+          version: "1",
+          nonce,
+          issuedAt,
+          expirationTime,
+          statement: "Sign in to verify your wallet identity",
+          resources: [request.url]
+        },
+        supportedChains: [{ chainId: "eip155:8453", type: "eip191" }],
+        schema: buildSIWxSchema()
+      }
+    }
+  };
+  const encoded = encodePaymentRequiredHeader(paymentRequired);
+  return new NextResponse(JSON.stringify(paymentRequired), {
+    status: 402,
+    headers: {
+      "Content-Type": "application/json",
+      "PAYMENT-REQUIRED": encoded
+    }
+  });
+}
+export {
+  withSiwxTelemetry
+};
+//# sourceMappingURL=siwx.mjs.map

package/dist/siwx.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/siwx.ts"],"sourcesContent":["/**\n * SIWX telemetry wrapper — composes SIWX verification with telemetry.\n * One-liner for routes that need wallet auth + telemetry.\n *\n * Delegates SIWX verification to @x402/extensions/sign-in-with-x.\n * This package does NOT implement SIWX itself.\n *\n * Import from '@agentcash/telemetry/siwx'.\n * Requires peer dep: @x402/extensions\n */\n\nimport { type NextRequest, NextResponse } from 'next/server';\nimport { randomBytes } from 'crypto';\nimport {\n  parseSIWxHeader,\n  validateSIWxMessage,\n  verifySIWxSignature,\n  buildSIWxSchema,\n} from '@x402/extensions/sign-in-with-x';\nimport { encodePaymentRequiredHeader } from '@x402/core/http';\nimport type { TelemetryContext } from './types';\nimport { withTelemetry } from './telemetry';\n\nexport type { SiwxTelemetryContext };\n\ninterface SiwxTelemetryContext extends Omit<TelemetryContext, 'verifiedWallet'> {\n  /** Verified wallet address from SIWX authentication */\n  verifiedWallet: string;\n}\n\ntype SiwxHandler = (request: NextRequest, ctx: SiwxTelemetryContext) => Promise<NextResponse>;\n\n/**\n * Wrap a Next.js route handler with SIWX verification + telemetry.\n *\n * Verifies the SIGN-IN-WITH-X header and sets the verified wallet automatically.\n * If no SIWX header is present, returns a 402 with SIWX challenge.\n * If verification fails, returns a 402 (matching x402 protocol convention).\n */\nexport function withSiwxTelemetry(handler: SiwxHandler) {\n  return withTelemetry(async (request: NextRequest, ctx: TelemetryContext) => {\n    const header = request.headers.get('SIGN-IN-WITH-X') ?? request.headers.get('sign-in-with-x');\n\n    if (!header) {\n      return buildSiwxChallengeResponse(request);\n    }\n\n    const payload = parseSIWxHeader(header);\n\n    const validation = await validateSIWxMessage(payload, request.url);\n    if (!validation.valid) {\n      return NextResponse.json(\n        { success: false, error: `SIWX validation failed: ${validation.error}` },\n        { status: 402 },\n      );\n    }\n\n    const verification = await verifySIWxSignature(payload);\n    if (!verification.valid || !verification.address) {\n      return NextResponse.json(\n        { success: false, error: 'SIWX signature verification failed' },\n        { status: 402 },\n      );\n    }\n\n    const walletAddress = verification.address.toLowerCase();\n    ctx.setVerifiedWallet(walletAddress);\n\n    return handler(request, {\n      ...ctx,\n      verifiedWallet: walletAddress,\n    } as SiwxTelemetryContext);\n  });\n}\n\n/**\n * Build a 402 response with SIWX challenge.\n */\nfunction buildSiwxChallengeResponse(request: NextRequest): NextResponse {\n  const url = new URL(request.url);\n  const nonce = randomBytes(16).toString('hex');\n  const issuedAt = new Date().toISOString();\n  const expirationTime = new Date(Date.now() + 300_000).toISOString();\n\n  const paymentRequired = {\n    x402Version: 2,\n    error: 'SIWX authentication required',\n    resource: {\n      url: request.url,\n      description: 'SIWX-protected endpoint',\n      mimeType: 'application/json',\n    },\n    accepts: [\n      {\n        scheme: 'exact' as const,\n        network: 'eip155:8453' as const,\n        asset: '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913',\n        amount: '0',\n        payTo: '0x0000000000000000000000000000000000000000',\n        maxTimeoutSeconds: 300,\n        extra: {},\n      },\n    ],\n    extensions: {\n      'sign-in-with-x': {\n        info: {\n          domain: url.hostname,\n          uri: request.url,\n          version: '1',\n          nonce,\n          issuedAt,\n          expirationTime,\n          statement: 'Sign in to verify your wallet identity',\n          resources: [request.url],\n        },\n        supportedChains: [{ chainId: 'eip155:8453', type: 'eip191' }],\n        schema: buildSIWxSchema(),\n      },\n    },\n  };\n\n  const encoded = encodePaymentRequiredHeader(paymentRequired);\n\n  return new NextResponse(JSON.stringify(paymentRequired), {\n    status: 402,\n    headers: {\n      'Content-Type': 'application/json',\n      'PAYMENT-REQUIRED': encoded,\n    },\n  });\n}\n"],"mappings":";;;;;;;AAWA,SAA2B,oBAAoB;AAC/C,SAAS,mBAAmB;AAC5B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,mCAAmC;AAoBrC,SAAS,kBAAkB,SAAsB;AACtD,SAAO,cAAc,OAAO,SAAsB,QAA0B;AAC1E,UAAM,SAAS,QAAQ,QAAQ,IAAI,gBAAgB,KAAK,QAAQ,QAAQ,IAAI,gBAAgB;AAE5F,QAAI,CAAC,QAAQ;AACX,aAAO,2BAA2B,OAAO;AAAA,IAC3C;AAEA,UAAM,UAAU,gBAAgB,MAAM;AAEtC,UAAM,aAAa,MAAM,oBAAoB,SAAS,QAAQ,GAAG;AACjE,QAAI,CAAC,WAAW,OAAO;AACrB,aAAO,aAAa;AAAA,QAClB,EAAE,SAAS,OAAO,OAAO,2BAA2B,WAAW,KAAK,GAAG;AAAA,QACvE,EAAE,QAAQ,IAAI;AAAA,MAChB;AAAA,IACF;AAEA,UAAM,eAAe,MAAM,oBAAoB,OAAO;AACtD,QAAI,CAAC,aAAa,SAAS,CAAC,aAAa,SAAS;AAChD,aAAO,aAAa;AAAA,QAClB,EAAE,SAAS,OAAO,OAAO,qCAAqC;AAAA,QAC9D,EAAE,QAAQ,IAAI;AAAA,MAChB;AAAA,IACF;AAEA,UAAM,gBAAgB,aAAa,QAAQ,YAAY;AACvD,QAAI,kBAAkB,aAAa;AAEnC,WAAO,QAAQ,SAAS;AAAA,MACtB,GAAG;AAAA,MACH,gBAAgB;AAAA,IAClB,CAAyB;AAAA,EAC3B,CAAC;AACH;AAKA,SAAS,2BAA2B,SAAoC;AACtE,QAAM,MAAM,IAAI,IAAI,QAAQ,GAAG;AAC/B,QAAM,QAAQ,YAAY,EAAE,EAAE,SAAS,KAAK;AAC5C,QAAM,YAAW,oBAAI,KAAK,GAAE,YAAY;AACxC,QAAM,iBAAiB,IAAI,KAAK,KAAK,IAAI,IAAI,GAAO,EAAE,YAAY;AAElE,QAAM,kBAAkB;AAAA,IACtB,aAAa;AAAA,IACb,OAAO;AAAA,IACP,UAAU;AAAA,MACR,KAAK,QAAQ;AAAA,MACb,aAAa;AAAA,MACb,UAAU;AAAA,IACZ;AAAA,IACA,SAAS;AAAA,MACP;AAAA,QACE,QAAQ;AAAA,QACR,SAAS;AAAA,QACT,OAAO;AAAA,QACP,QAAQ;AAAA,QACR,OAAO;AAAA,QACP,mBAAmB;AAAA,QACnB,OAAO,CAAC;AAAA,MACV;AAAA,IACF;AAAA,IACA,YAAY;AAAA,MACV,kBAAkB;AAAA,QAChB,MAAM;AAAA,UACJ,QAAQ,IAAI;AAAA,UACZ,KAAK,QAAQ;AAAA,UACb,SAAS;AAAA,UACT;AAAA,UACA;AAAA,UACA;AAAA,UACA,WAAW;AAAA,UACX,WAAW,CAAC,QAAQ,GAAG;AAAA,QACzB;AAAA,QACA,iBAAiB,CAAC,EAAE,SAAS,eAAe,MAAM,SAAS,CAAC;AAAA,QAC5D,QAAQ,gBAAgB;AAAA,MAC1B;AAAA,IACF;AAAA,EACF;AAEA,QAAM,UAAU,4BAA4B,eAAe;AAE3D,SAAO,IAAI,aAAa,KAAK,UAAU,eAAe,GAAG;AAAA,IACvD,QAAQ;AAAA,IACR,SAAS;AAAA,MACP,gBAAgB;AAAA,MAChB,oBAAoB;AAAA,IACtB;AAAA,EACF,CAAC;AACH;","names":[]}

package/dist/types-Bl8IwXin.d.mts

@@ -0,0 +1,57 @@
+/**
+ * ClickHouse row type for mcp_resource_invocations table.
+ * This is the real contract — not the DDL.
+ */
+interface McpResourceInvocation {
+    id: string;
+    x_wallet_address: string | null;
+    x_client_id: string | null;
+    session_id: string | null;
+    verified_wallet_address: string | null;
+    method: string;
+    route: string;
+    origin: string;
+    referer: string | null;
+    request_content_type: string | null;
+    request_headers: string | null;
+    request_body: string | null;
+    status_code: number;
+    status_text: string;
+    duration: number;
+    response_content_type: string | null;
+    response_headers: string | null;
+    response_body: string | null;
+    created_at: Date;
+}
+/**
+ * Telemetry context passed to handler functions.
+ */
+interface TelemetryContext {
+    /** Wallet address from X-Wallet-Address header (lowercased) */
+    walletAddress: string | null;
+    /** Client ID from X-Client-ID header */
+    clientId: string | null;
+    /** Session ID from X-Session-ID header */
+    sessionId: string | null;
+    /** Verified wallet address (auto-extracted from x402 payment, or set manually) */
+    verifiedWallet: string | null;
+    /** Manually set the verified wallet address (for SIWX, API-key, or other auth) */
+    setVerifiedWallet: (address: string) => void;
+}
+/**
+ * ClickHouse connection config for initTelemetry.
+ */
+interface TelemetryConfig {
+    clickhouse: {
+        url: string;
+        database?: string;
+        username?: string;
+        password?: string;
+    };
+    /** Server's own origin URL (e.g., 'https://enrichx402.com'). Auto-detected from request if not set. */
+    origin?: string;
+    /** If true, pings ClickHouse on init and logs the result. Never throws or blocks. */
+    verify?: boolean;
+}
+
+export type { McpResourceInvocation as M, TelemetryConfig as T, TelemetryContext as a };

package/dist/types-Bl8IwXin.d.ts

@@ -0,0 +1,57 @@
+/**
+ * ClickHouse row type for mcp_resource_invocations table.
+ * This is the real contract — not the DDL.
+ */
+interface McpResourceInvocation {
+    id: string;
+    x_wallet_address: string | null;
+    x_client_id: string | null;
+    session_id: string | null;
+    verified_wallet_address: string | null;
+    method: string;
+    route: string;
+    origin: string;
+    referer: string | null;
+    request_content_type: string | null;
+    request_headers: string | null;
+    request_body: string | null;
+    status_code: number;
+    status_text: string;
+    duration: number;
+    response_content_type: string | null;
+    response_headers: string | null;
+    response_body: string | null;
+    created_at: Date;
+}
+/**
+ * Telemetry context passed to handler functions.
+ */
+interface TelemetryContext {
+    /** Wallet address from X-Wallet-Address header (lowercased) */
+    walletAddress: string | null;
+    /** Client ID from X-Client-ID header */
+    clientId: string | null;
+    /** Session ID from X-Session-ID header */
+    sessionId: string | null;
+    /** Verified wallet address (auto-extracted from x402 payment, or set manually) */
+    verifiedWallet: string | null;
+    /** Manually set the verified wallet address (for SIWX, API-key, or other auth) */
+    setVerifiedWallet: (address: string) => void;
+}
+/**
+ * ClickHouse connection config for initTelemetry.
+ */
+interface TelemetryConfig {
+    clickhouse: {
+        url: string;
+        database?: string;
+        username?: string;
+        password?: string;
+    };
+    /** Server's own origin URL (e.g., 'https://enrichx402.com'). Auto-detected from request if not set. */
+    origin?: string;
+    /** If true, pings ClickHouse on init and logs the result. Never throws or blocks. */
+    verify?: boolean;
+}
+
+export type { McpResourceInvocation as M, TelemetryConfig as T, TelemetryContext as a };