@agenttrust-sdk/mcp 0.1.0

package/dist/tools/read/list-facilitators.js

@@ -0,0 +1,60 @@
+"use strict";
+/**
+ * `agenttrust_list_facilitators` — return the active facilitator
+ * adapter registry as a static manifest. Mirrors the four adapters
+ * shipped in `trustgate/server/src/facilitators/`: Pay.sh (live),
+ * Dexter / atxp / MCPay.
+ *
+ * Manifest is a static module-local constant. The MCP server doesn't
+ * boot the Express service, so dynamically introspecting a live
+ * `FacilitatorRegistry` would require an extra dependency the SDK
+ * doesn't expose. Per the registry/dispatch shape in
+ * `trustgate/server/src/facilitators/index.ts`, the four adapters and
+ * their protocols/status are pinned values that stay in sync with that
+ * file by review.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.listFacilitatorsTool = void 0;
+const zod_1 = require("zod");
+const InputSchema = zod_1.z.object({});
+const FACILITATORS = [
+    {
+        name: "pay-sh",
+        description: "Pay.sh — first concrete x402 facilitator adapter. Live in the demo and CI integration.",
+        protocols: ["x402"],
+        status: "live",
+        docsPath: "integration-guides/pay-sh-adapter",
+    },
+    {
+        name: "dexter",
+        description: "Cascade Dexter — x402 facilitator. Wire-spec + Zod schemas + adapter wired; full integration in flight.",
+        protocols: ["x402"],
+        status: "in-flight",
+        docsPath: "integration-guides/facilitator-adapters",
+    },
+    {
+        name: "atxp",
+        description: "atxp_ai — x402 facilitator with JWT-claim issuance. Adapter shipped; payment proof validation roadmap.",
+        protocols: ["x402"],
+        status: "roadmap",
+        docsPath: "integration-guides/facilitator-adapters",
+    },
+    {
+        name: "mcpay",
+        description: "MCPay — MCP-native facilitator. Adapter shipped against the wire spec; full integration roadmap.",
+        protocols: ["x402", "mcp"],
+        status: "roadmap",
+        docsPath: "integration-guides/facilitator-adapters",
+    },
+];
+exports.listFacilitatorsTool = {
+    name: "agenttrust_list_facilitators",
+    description: "List every facilitator adapter shipped in trustgate/server. Each entry " +
+        "names the wire protocol(s) it speaks (x402, mcp), its current ship status " +
+        "(live / in-flight / roadmap), and the docs path for its walkthrough.",
+    inputSchema: InputSchema,
+    async handler() {
+        return { count: FACILITATORS.length, facilitators: FACILITATORS };
+    },
+};
+//# sourceMappingURL=list-facilitators.js.map

package/dist/tools/read/list-facilitators.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-facilitators.js","sourceRoot":"","sources":["../../../src/tools/read/list-facilitators.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;GAaG;;;AAEH,6BAAwB;AAIxB,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;AAgBjC,MAAM,YAAY,GAAuB;IACvC;QACE,IAAI,EAAS,QAAQ;QACrB,WAAW,EAAE,wFAAwF;QACrG,SAAS,EAAI,CAAC,MAAM,CAAC;QACrB,MAAM,EAAO,MAAM;QACnB,QAAQ,EAAK,mCAAmC;KACjD;IACD;QACE,IAAI,EAAS,QAAQ;QACrB,WAAW,EAAE,yGAAyG;QACtH,SAAS,EAAI,CAAC,MAAM,CAAC;QACrB,MAAM,EAAO,WAAW;QACxB,QAAQ,EAAK,yCAAyC;KACvD;IACD;QACE,IAAI,EAAS,MAAM;QACnB,WAAW,EAAE,wGAAwG;QACrH,SAAS,EAAI,CAAC,MAAM,CAAC;QACrB,MAAM,EAAO,SAAS;QACtB,QAAQ,EAAK,yCAAyC;KACvD;IACD;QACE,IAAI,EAAS,OAAO;QACpB,WAAW,EAAE,kGAAkG;QAC/G,SAAS,EAAI,CAAC,MAAM,EAAE,KAAK,CAAC;QAC5B,MAAM,EAAO,SAAS;QACtB,QAAQ,EAAK,yCAAyC;KACvD;CACF,CAAC;AAEW,QAAA,oBAAoB,GAAwB;IACvD,IAAI,EAAS,8BAA8B;IAC3C,WAAW,EACT,yEAAyE;QACzE,4EAA4E;QAC5E,sEAAsE;IACxE,WAAW,EAAE,WAAW;IAExB,KAAK,CAAC,OAAO;QACX,OAAO,EAAE,KAAK,EAAE,YAAY,CAAC,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,CAAC;IACpE,CAAC;CACF,CAAC"}

package/dist/tools/read/list-policies.d.ts

@@ -0,0 +1,33 @@
+/**
+ * `agenttrust_list_policies` — enumerate every PolicyAccount registered
+ * for `agent_asset`.
+ *
+ * Implementation: getProgramAccounts with a memcmp filter at offset 8
+ * (the `payer_agent_asset` field — see `state/policy_account.rs:12`).
+ * Returns `{ policyId, pda, enabledKindsBitmask, gateMode }` per match
+ * — the lightweight summary view; clients call `agenttrust_get_policy`
+ * for the full decode.
+ */
+import { z } from "zod";
+import type { Tool } from "../types";
+declare const InputSchema: z.ZodObject<{
+    agent_asset: z.ZodEffects<z.ZodString, string, string>;
+}, "strip", z.ZodTypeAny, {
+    agent_asset: string;
+}, {
+    agent_asset: string;
+}>;
+type Input = z.infer<typeof InputSchema>;
+interface PolicySummary {
+    policyId: number;
+    pda: string;
+    explorerUrl: string;
+    enabledKindsBitmask: number;
+    gateMode: number;
+}
+interface Output {
+    agentAsset: string;
+    policies: PolicySummary[];
+}
+export declare const listPoliciesTool: Tool<Input, Output>;
+export {};

package/dist/tools/read/list-policies.js

@@ -0,0 +1,49 @@
+"use strict";
+/**
+ * `agenttrust_list_policies` — enumerate every PolicyAccount registered
+ * for `agent_asset`.
+ *
+ * Implementation: getProgramAccounts with a memcmp filter at offset 8
+ * (the `payer_agent_asset` field — see `state/policy_account.rs:12`).
+ * Returns `{ policyId, pda, enabledKindsBitmask, gateMode }` per match
+ * — the lightweight summary view; clients call `agenttrust_get_policy`
+ * for the full decode.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.listPoliciesTool = void 0;
+const zod_1 = require("zod");
+const config_1 = require("../../config");
+const common_1 = require("../common");
+const InputSchema = zod_1.z.object({
+    agent_asset: common_1.PubkeySchema.describe("Quantu agent asset pubkey to enumerate policies for"),
+});
+// Anchor `#[account]` discriminator + field layout — payer_agent_asset is
+// the first non-discriminator field, at offset 8.
+const POLICY_FILTER_AGENT_OFFSET = 8;
+exports.listPoliciesTool = {
+    name: "agenttrust_list_policies",
+    description: "List every PolicyAccount registered on-chain for the given agent_asset. " +
+        "Returns a lightweight summary (policy ID, bitmask of enabled policy kinds, " +
+        "gate mode). Use agenttrust_get_policy for the full decoded PolicyAccount.",
+    inputSchema: InputSchema,
+    async handler(input, ctx) {
+        const agent = (0, common_1.parsePubkey)(input.agent_asset, "agent_asset");
+        const policyVault = await ctx.chain.policyVault();
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        const accounts = await policyVault.account.policyAccount.all([
+            { memcmp: { offset: POLICY_FILTER_AGENT_OFFSET, bytes: agent.toBase58() } },
+        ]);
+        const policies = accounts.map(
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        (entry) => ({
+            policyId: Number(entry.account.policyId ?? 0),
+            pda: entry.publicKey.toBase58(),
+            explorerUrl: (0, config_1.explorerUrl)(ctx.chain.cfg, "address", entry.publicKey.toBase58()),
+            enabledKindsBitmask: Number(entry.account.enabledKindsBitmask ?? 0),
+            gateMode: Number(entry.account.gateMode ?? 0),
+        }));
+        policies.sort((a, b) => a.policyId - b.policyId);
+        return { agentAsset: agent.toBase58(), policies };
+    },
+};
+//# sourceMappingURL=list-policies.js.map

package/dist/tools/read/list-policies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-policies.js","sourceRoot":"","sources":["../../../src/tools/read/list-policies.ts"],"names":[],"mappings":";AAAA;;;;;;;;;GASG;;;AAEH,6BAAwB;AAExB,yCAA2C;AAC3C,sCAAsD;AAGtD,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,WAAW,EAAE,qBAAY,CAAC,QAAQ,CAAC,qDAAqD,CAAC;CAC1F,CAAC,CAAC;AAgBH,0EAA0E;AAC1E,kDAAkD;AAClD,MAAM,0BAA0B,GAAG,CAAC,CAAC;AAExB,QAAA,gBAAgB,GAAwB;IACnD,IAAI,EAAS,0BAA0B;IACvC,WAAW,EACT,0EAA0E;QAC1E,6EAA6E;QAC7E,2EAA2E;IAC7E,WAAW,EAAE,WAAW;IAExB,KAAK,CAAC,OAAO,CAAC,KAAY,EAAE,GAAgB;QAC1C,MAAM,KAAK,GAAS,IAAA,oBAAW,EAAC,KAAK,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC;QAClE,MAAM,WAAW,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;QAClD,8DAA8D;QAC9D,MAAM,QAAQ,GAAG,MAAO,WAAW,CAAC,OAAe,CAAC,aAAa,CAAC,GAAG,CAAC;YACpE,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,0BAA0B,EAAE,KAAK,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,EAAE;SAC5E,CAAC,CAAC;QACH,MAAM,QAAQ,GAAoB,QAAQ,CAAC,GAAG;QAC5C,8DAA8D;QAC9D,CAAC,KAAU,EAAE,EAAE,CAAC,CAAC;YACf,QAAQ,EAAa,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,IAAI,CAAC,CAAC;YACxD,GAAG,EAAkB,KAAK,CAAC,SAAS,CAAC,QAAQ,EAAE;YAC/C,WAAW,EAAU,IAAA,oBAAW,EAAC,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,SAAS,EAAE,KAAK,CAAC,SAAS,CAAC,QAAQ,EAAE,CAAC;YACtF,mBAAmB,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,mBAAmB,IAAI,CAAC,CAAC;YACnE,QAAQ,EAAa,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,IAAI,CAAC,CAAC;SACzD,CAAC,CACH,CAAC;QACF,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;QACjD,OAAO,EAAE,UAAU,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,QAAQ,EAAE,CAAC;IACpD,CAAC;CACF,CAAC"}

package/dist/tools/read/simulate-payment.d.ts

@@ -0,0 +1,44 @@
+/**
+ * `agenttrust_simulate_payment` — read-only `gate_payment` simulation.
+ *
+ * Calls the on-chain `gate_payment` instruction in simulate mode and
+ * decodes the GateDecision return value. The same call path the
+ * Express service's POST /verify route uses for the actual challenge.
+ */
+import { z } from "zod";
+import type { Tool } from "../types";
+declare const InputSchema: z.ZodObject<{
+    payer_agent: z.ZodEffects<z.ZodString, string, string>;
+    payee_agent: z.ZodEffects<z.ZodString, string, string>;
+    amount: z.ZodUnion<[z.ZodNumber, z.ZodString]>;
+    mint: z.ZodEffects<z.ZodString, string, string>;
+    policy_id: z.ZodNumber;
+    caller: z.ZodOptional<z.ZodEffects<z.ZodString, string, string>>;
+}, "strip", z.ZodTypeAny, {
+    payer_agent: string;
+    payee_agent: string;
+    amount: string | number;
+    mint: string;
+    policy_id: number;
+    caller?: string | undefined;
+}, {
+    payer_agent: string;
+    payee_agent: string;
+    amount: string | number;
+    mint: string;
+    policy_id: number;
+    caller?: string | undefined;
+}>;
+type Input = z.infer<typeof InputSchema>;
+type DecisionOutput = {
+    kind: "Allow";
+} | {
+    kind: "Deny";
+    reasonCode: number;
+    reasonName: string;
+} | {
+    kind: "RequireValidation";
+    capabilityHashHex: string;
+};
+export declare const simulatePaymentTool: Tool<Input, DecisionOutput>;
+export {};

package/dist/tools/read/simulate-payment.js

@@ -0,0 +1,54 @@
+"use strict";
+/**
+ * `agenttrust_simulate_payment` — read-only `gate_payment` simulation.
+ *
+ * Calls the on-chain `gate_payment` instruction in simulate mode and
+ * decodes the GateDecision return value. The same call path the
+ * Express service's POST /verify route uses for the actual challenge.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.simulatePaymentTool = void 0;
+const anchor_1 = require("@coral-xyz/anchor");
+const zod_1 = require("zod");
+const chain_1 = require("../../chain");
+const common_1 = require("../common");
+const InputSchema = zod_1.z.object({
+    payer_agent: common_1.PubkeySchema.describe("Payer Quantu agent asset"),
+    payee_agent: common_1.PubkeySchema.describe("Payee Quantu agent asset"),
+    amount: zod_1.z.union([zod_1.z.number().int().nonnegative(), zod_1.z.string().regex(/^\d+$/)])
+        .describe("Amount in mint base units (u64 as number or decimal string)"),
+    mint: common_1.PubkeySchema.describe("SPL or Token-2022 mint pubkey"),
+    policy_id: zod_1.z.number().int().min(0).max(0xffffffff).describe("Policy ID to evaluate"),
+    caller: common_1.PubkeySchema.optional()
+        .describe("Signer pubkey threading the call (defaults to KEYPAIR_B58 signer if set, else throwaway)"),
+});
+exports.simulatePaymentTool = {
+    name: "agenttrust_simulate_payment",
+    description: "Simulate a payer→payee payment against the PolicyVault. Returns the " +
+        "decoded GateDecision: Allow, Deny with stable reasonCode 1..15, or " +
+        "RequireValidation with the 32-byte capability hash. No tx is submitted.",
+    inputSchema: InputSchema,
+    async handler(input, ctx) {
+        const policyVault = await ctx.chain.policyVault();
+        const callerPubkey = input.caller
+            ? (0, common_1.parsePubkey)(input.caller, "caller")
+            : (ctx.chain.signerPubkey() ?? policyVault.provider.publicKey ?? (0, common_1.parsePubkey)(input.payer_agent, "payer_agent"));
+        const decision = await (0, chain_1.simulateGatePayment)({
+            policyVault,
+            programIds: ctx.chain.cfg.programs,
+            caller: callerPubkey,
+            payerAgentAsset: (0, common_1.parsePubkey)(input.payer_agent, "payer_agent"),
+            payeeAgentAsset: (0, common_1.parsePubkey)(input.payee_agent, "payee_agent"),
+            amount: new anchor_1.BN(input.amount.toString()),
+            mint: (0, common_1.parsePubkey)(input.mint, "mint"),
+            policyId: input.policy_id,
+        });
+        if (decision.kind === "Allow")
+            return { kind: "Allow" };
+        if (decision.kind === "Deny") {
+            return { kind: "Deny", reasonCode: decision.reasonCode, reasonName: decision.reasonName };
+        }
+        return { kind: "RequireValidation", capabilityHashHex: (0, common_1.bytesToHex)(decision.capabilityHash) };
+    },
+};
+//# sourceMappingURL=simulate-payment.js.map

package/dist/tools/read/simulate-payment.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"simulate-payment.js","sourceRoot":"","sources":["../../../src/tools/read/simulate-payment.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;AAEH,8CAAuC;AACvC,6BAAwB;AAExB,uCAAkD;AAClD,sCAAkE;AAGlE,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,WAAW,EAAE,qBAAY,CAAC,QAAQ,CAAC,0BAA0B,CAAC;IAC9D,WAAW,EAAE,qBAAY,CAAC,QAAQ,CAAC,0BAA0B,CAAC;IAC9D,MAAM,EAAO,OAAC,CAAC,KAAK,CAAC,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC;SAChE,QAAQ,CAAC,6DAA6D,CAAC;IACxF,IAAI,EAAS,qBAAY,CAAC,QAAQ,CAAC,+BAA+B,CAAC;IACnE,SAAS,EAAI,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,uBAAuB,CAAC;IACtF,MAAM,EAAO,qBAAY,CAAC,QAAQ,EAAE;SACnB,QAAQ,CAAC,0FAA0F,CAAC;CACtH,CAAC,CAAC;AAQU,QAAA,mBAAmB,GAAgC;IAC9D,IAAI,EAAS,6BAA6B;IAC1C,WAAW,EACT,sEAAsE;QACtE,qEAAqE;QACrE,yEAAyE;IAC3E,WAAW,EAAE,WAAW;IAExB,KAAK,CAAC,OAAO,CAAC,KAAY,EAAE,GAAgB;QAC1C,MAAM,WAAW,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;QAClD,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM;YAC/B,CAAC,CAAC,IAAA,oBAAW,EAAC,KAAK,CAAC,MAAM,EAAE,QAAQ,CAAC;YACrC,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,EAAE,IAAI,WAAW,CAAC,QAAQ,CAAC,SAAS,IAAI,IAAA,oBAAW,EAAC,KAAK,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC,CAAC;QAElH,MAAM,QAAQ,GAAG,MAAM,IAAA,2BAAmB,EAAC;YACzC,WAAW;YACX,UAAU,EAAO,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ;YACvC,MAAM,EAAW,YAAY;YAC7B,eAAe,EAAE,IAAA,oBAAW,EAAC,KAAK,CAAC,WAAW,EAAE,aAAa,CAAC;YAC9D,eAAe,EAAE,IAAA,oBAAW,EAAC,KAAK,CAAC,WAAW,EAAE,aAAa,CAAC;YAC9D,MAAM,EAAW,IAAI,WAAE,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC;YAChD,IAAI,EAAa,IAAA,oBAAW,EAAC,KAAK,CAAC,IAAI,EAAE,MAAM,CAAC;YAChD,QAAQ,EAAS,KAAK,CAAC,SAAS;SACjC,CAAC,CAAC;QAEH,IAAI,QAAQ,CAAC,IAAI,KAAK,OAAO;YAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC;QACxD,IAAI,QAAQ,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;YAC7B,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,CAAC,UAAU,EAAE,UAAU,EAAE,QAAQ,CAAC,UAAU,EAAE,CAAC;QAC5F,CAAC;QACD,OAAO,EAAE,IAAI,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,IAAA,mBAAU,EAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;IAC/F,CAAC;CACF,CAAC"}

package/dist/tools/types.d.ts

@@ -0,0 +1,31 @@
+/**
+ * MCP tool descriptor shared across read/write/discovery folders.
+ *
+ * Each tool exports a single `Tool<T>` whose `inputSchema` is a Zod
+ * schema (used for runtime validation) and whose `handler` produces a
+ * structured JSON payload. The MCP server adapter turns the payload
+ * into a `text` content block — clients can re-parse the JSON if they
+ * want structured access.
+ */
+import type { z } from "zod";
+import type { ChainClient } from "../chain";
+export interface ToolContext {
+    readonly chain: ChainClient;
+}
+/**
+ * `z.ZodType<TInput, z.ZodTypeDef, any>` — the third generic parameter
+ * (Input) intentionally widens to `any` so schemas with `.default()`
+ * fields (whose pre-parse Input differs from post-parse Output) satisfy
+ * the constraint without a per-tool cast.
+ */
+export interface Tool<TInput, TOutput> {
+    readonly name: string;
+    readonly description: string;
+    readonly inputSchema: z.ZodType<TInput, z.ZodTypeDef, any>;
+    readonly handler: (input: TInput, ctx: ToolContext) => Promise<TOutput>;
+}
+/**
+ * Helper type that lets call-sites stay generic without leaking Zod
+ * specifics.
+ */
+export type AnyTool = Tool<unknown, unknown>;

package/dist/tools/types.js

@@ -0,0 +1,12 @@
+"use strict";
+/**
+ * MCP tool descriptor shared across read/write/discovery folders.
+ *
+ * Each tool exports a single `Tool<T>` whose `inputSchema` is a Zod
+ * schema (used for runtime validation) and whose `handler` produces a
+ * structured JSON payload. The MCP server adapter turns the payload
+ * into a `text` content block — clients can re-parse the JSON if they
+ * want structured access.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/tools/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/tools/types.ts"],"names":[],"mappings":";AAAA;;;;;;;;GAQG"}

package/dist/tools/write/emit-feedback.d.ts

@@ -0,0 +1,55 @@
+/**
+ * `agenttrust_emit_feedback` — facilitator-only `emit_feedback` CPI.
+ *
+ * Composes the trustgate.emitFeedback call directly from the MCP tool
+ * input. Requires KEYPAIR_B58 to equal the facilitator pubkey
+ * (TrustGate enforces `require_keys_eq(payer, facilitator)`). The CPI
+ * threads Quantu accounts through `remaining_accounts` per the
+ * documented order; the SDK's `deriveQuantuFeedbackAccounts` helper
+ * builds them.
+ *
+ * The signer of this tool MUST also be the facilitator whose
+ * `TrustGateAuthority` PDA is being credited.
+ */
+import { z } from "zod";
+import type { Tool } from "../types";
+declare const InputSchema: z.ZodObject<{
+    payment_id_hash_hex: z.ZodEffects<z.ZodString, string, string>;
+    payee_asset: z.ZodEffects<z.ZodString, string, string>;
+    base_collection: z.ZodEffects<z.ZodString, string, string>;
+    score: z.ZodNumber;
+    tag1: z.ZodDefault<z.ZodString>;
+    tag2: z.ZodDefault<z.ZodString>;
+    endpoint: z.ZodDefault<z.ZodString>;
+    feedback_uri: z.ZodDefault<z.ZodString>;
+    atom_enabled: z.ZodDefault<z.ZodBoolean>;
+}, "strip", z.ZodTypeAny, {
+    payment_id_hash_hex: string;
+    payee_asset: string;
+    base_collection: string;
+    score: number;
+    tag1: string;
+    tag2: string;
+    endpoint: string;
+    feedback_uri: string;
+    atom_enabled: boolean;
+}, {
+    payment_id_hash_hex: string;
+    payee_asset: string;
+    base_collection: string;
+    score: number;
+    tag1?: string | undefined;
+    tag2?: string | undefined;
+    endpoint?: string | undefined;
+    feedback_uri?: string | undefined;
+    atom_enabled?: boolean | undefined;
+}>;
+type Input = z.infer<typeof InputSchema>;
+interface Output {
+    txSignature: string;
+    explorerTxUrl: string;
+    feedbackLogPda: string;
+    feedbackLogExplorer: string;
+}
+export declare const emitFeedbackTool: Tool<Input, Output>;
+export {};

package/dist/tools/write/emit-feedback.js

@@ -0,0 +1,83 @@
+"use strict";
+/**
+ * `agenttrust_emit_feedback` — facilitator-only `emit_feedback` CPI.
+ *
+ * Composes the trustgate.emitFeedback call directly from the MCP tool
+ * input. Requires KEYPAIR_B58 to equal the facilitator pubkey
+ * (TrustGate enforces `require_keys_eq(payer, facilitator)`). The CPI
+ * threads Quantu accounts through `remaining_accounts` per the
+ * documented order; the SDK's `deriveQuantuFeedbackAccounts` helper
+ * builds them.
+ *
+ * The signer of this tool MUST also be the facilitator whose
+ * `TrustGateAuthority` PDA is being credited.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.emitFeedbackTool = void 0;
+const web3_js_1 = require("@solana/web3.js");
+const zod_1 = require("zod");
+const trustgate_1 = require("@agenttrust-sdk/trustgate");
+const config_1 = require("../../config");
+const common_1 = require("../common");
+const InputSchema = zod_1.z.object({
+    payment_id_hash_hex: common_1.HexHashSchema.describe("32-byte SHA-256 of the payment_id"),
+    payee_asset: common_1.PubkeySchema.describe("Quantu agent asset receiving feedback"),
+    base_collection: common_1.PubkeySchema.describe("Quantu base_collection pubkey (from demo state)"),
+    score: zod_1.z.number().int().min(0).max(100),
+    tag1: zod_1.z.string().max(32).default(""),
+    tag2: zod_1.z.string().max(32).default(""),
+    endpoint: zod_1.z.string().max(64).default(""),
+    feedback_uri: zod_1.z.string().max(256).default(""),
+    atom_enabled: zod_1.z.boolean().default(true).describe("Whether the agent's atom_enabled flag is set on-chain (drives the optional ATOM 4-tuple)"),
+});
+exports.emitFeedbackTool = {
+    name: "agenttrust_emit_feedback",
+    description: "Emit ERC-8004 feedback for a confirmed payment. Facilitator-only: " +
+        "KEYPAIR_B58 must equal the facilitator wallet whose TrustGateAuthority " +
+        "PDA is being signed. Threads Quantu agent_account/atom_stats accounts " +
+        "through remaining_accounts. Idempotent on payment_id_hash.",
+    inputSchema: InputSchema,
+    async handler(input, ctx) {
+        const facilitator = ctx.chain.requireSigner();
+        const trustgate = await ctx.chain.trustgate();
+        const paymentIdHash = (0, common_1.hexToBytes)(input.payment_id_hash_hex);
+        if (paymentIdHash.length !== 32)
+            throw new Error("payment_id_hash must decode to 32 bytes");
+        const payeeAsset = (0, common_1.parsePubkey)(input.payee_asset, "payee_asset");
+        const baseCollection = (0, common_1.parsePubkey)(input.base_collection, "base_collection");
+        const authorityPda = (0, trustgate_1.deriveTrustGateAuthorityPda)(ctx.chain.cfg.programs.trustgate, facilitator.publicKey);
+        const emissionLogPda = (0, trustgate_1.deriveFeedbackLogPda)(ctx.chain.cfg.programs.trustgate, Buffer.from(paymentIdHash));
+        const agentAccount = (0, trustgate_1.deriveAgentAccountPda)(ctx.chain.cfg.quantu, payeeAsset);
+        // remaining_accounts order documented in
+        // programs/trustgate/src/ext/agent_registry.rs::GiveFeedback:
+        //   0 agent_account, 1 asset, 2 collection, 3 system_program
+        //   4..7 optional ATOM 4-tuple
+        const remaining = [
+            { pubkey: agentAccount, isSigner: false, isWritable: true },
+            { pubkey: payeeAsset, isSigner: false, isWritable: false },
+            { pubkey: baseCollection, isSigner: false, isWritable: false },
+            { pubkey: web3_js_1.SystemProgram.programId, isSigner: false, isWritable: false },
+        ];
+        if (input.atom_enabled) {
+            remaining.push({ pubkey: (0, trustgate_1.deriveAtomConfigPda)(ctx.chain.cfg.quantu), isSigner: false, isWritable: false }, { pubkey: (0, trustgate_1.deriveAtomStatsPda)(ctx.chain.cfg.quantu, payeeAsset), isSigner: false, isWritable: true }, { pubkey: ctx.chain.cfg.quantu.atomEngine, isSigner: false, isWritable: false }, { pubkey: (0, trustgate_1.deriveAtomRegistryAuthorityPda)(ctx.chain.cfg.quantu), isSigner: false, isWritable: false });
+        }
+        const txSignature = await trustgate.methods
+            .emitFeedback(Array.from(paymentIdHash), facilitator.publicKey, payeeAsset, input.score, input.tag1, input.tag2, input.endpoint, input.feedback_uri)
+            .accounts({
+            payer: facilitator.publicKey,
+            authority: authorityPda,
+            emissionLog: emissionLogPda,
+            systemProgram: web3_js_1.SystemProgram.programId,
+            // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        })
+            .remainingAccounts(remaining)
+            .rpc();
+        return {
+            txSignature,
+            explorerTxUrl: (0, config_1.explorerUrl)(ctx.chain.cfg, "tx", txSignature),
+            feedbackLogPda: emissionLogPda.toBase58(),
+            feedbackLogExplorer: (0, config_1.explorerUrl)(ctx.chain.cfg, "address", emissionLogPda.toBase58()),
+        };
+    },
+};
+//# sourceMappingURL=emit-feedback.js.map

package/dist/tools/write/emit-feedback.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"emit-feedback.js","sourceRoot":"","sources":["../../../src/tools/write/emit-feedback.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;GAYG;;;AAGH,6CAA2D;AAC3D,6BAAwB;AAExB,yDAOmC;AAEnC,yCAA2C;AAC3C,sCAAiF;AAGjF,MAAM,WAAW,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3B,mBAAmB,EAAE,sBAAa,CAAC,QAAQ,CAAC,mCAAmC,CAAC;IAChF,WAAW,EAAU,qBAAY,CAAC,QAAQ,CAAC,uCAAuC,CAAC;IACnF,eAAe,EAAM,qBAAY,CAAC,QAAQ,CAAC,iDAAiD,CAAC;IAC7F,KAAK,EAAgB,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;IACrD,IAAI,EAAiB,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IACnD,IAAI,EAAiB,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IACnD,QAAQ,EAAa,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IACnD,YAAY,EAAS,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IACpD,YAAY,EAAS,OAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,0FAA0F,CAAC;CACpJ,CAAC,CAAC;AAUU,QAAA,gBAAgB,GAAwB;IACnD,IAAI,EAAS,0BAA0B;IACvC,WAAW,EACT,oEAAoE;QACpE,yEAAyE;QACzE,wEAAwE;QACxE,4DAA4D;IAC9D,WAAW,EAAE,WAAW;IAExB,KAAK,CAAC,OAAO,CAAC,KAAY,EAAE,GAAgB;QAC1C,MAAM,WAAW,GAAG,GAAG,CAAC,KAAK,CAAC,aAAa,EAAE,CAAC;QAC9C,MAAM,SAAS,GAAK,MAAM,GAAG,CAAC,KAAK,CAAC,SAAS,EAAE,CAAC;QAEhD,MAAM,aAAa,GAAG,IAAA,mBAAU,EAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;QAC5D,IAAI,aAAa,CAAC,MAAM,KAAK,EAAE;YAAE,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;QAE5F,MAAM,UAAU,GAAM,IAAA,oBAAW,EAAC,KAAK,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC;QACpE,MAAM,cAAc,GAAG,IAAA,oBAAW,EAAC,KAAK,CAAC,eAAe,EAAE,iBAAiB,CAAC,CAAC;QAE7E,MAAM,YAAY,GAAG,IAAA,uCAA2B,EAC9C,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,EAAE,WAAW,CAAC,SAAS,CACxD,CAAC;QACF,MAAM,cAAc,GAAG,IAAA,gCAAoB,EACzC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAC7D,CAAC;QACF,MAAM,YAAY,GAAG,IAAA,iCAAqB,EAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;QAE7E,yCAAyC;QACzC,8DAA8D;QAC9D,6DAA6D;QAC7D,+BAA+B;QAC/B,MAAM,SAAS,GAAG;YAChB,EAAE,MAAM,EAAE,YAAY,EAAyC,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,IAAI,EAAG;YACnG,EAAE,MAAM,EAAE,UAAU,EAA2C,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE;YACnG,EAAE,MAAM,EAAE,cAAc,EAAuC,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE;YACnG,EAAE,MAAM,EAAE,uBAAa,CAAC,SAAS,EAA8B,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE;SACpG,CAAC;QACF,IAAI,KAAK,CAAC,YAAY,EAAE,CAAC;YACvB,SAAS,CAAC,IAAI,CACZ,EAAE,MAAM,EAAE,IAAA,+BAAmB,EAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAU,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,EACjG,EAAE,MAAM,EAAE,IAAA,8BAAkB,EAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,IAAI,EAAG,EACpG,EAAE,MAAM,EAAE,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,UAAU,EAAoB,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,EACjG,EAAE,MAAM,EAAE,IAAA,0CAA8B,EAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,CACrG,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAW,MAAM,SAAS,CAAC,OAAO;aAChD,YAAY,CACX,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,EACzB,WAAW,CAAC,SAAS,EACrB,UAAU,EACV,KAAK,CAAC,KAAK,EACX,KAAK,CAAC,IAAI,EACV,KAAK,CAAC,IAAI,EACV,KAAK,CAAC,QAAQ,EACd,KAAK,CAAC,YAAY,CACnB;aACA,QAAQ,CAAC;YACR,KAAK,EAAU,WAAW,CAAC,SAAS;YACpC,SAAS,EAAM,YAAY;YAC3B,WAAW,EAAI,cAAc;YAC7B,aAAa,EAAE,uBAAa,CAAC,SAAS;YACtC,8DAA8D;SACxD,CAAC;aACR,iBAAiB,CAAC,SAAS,CAAC;aAC5B,GAAG,EAAE,CAAC;QAET,OAAO;YACL,WAAW;YACX,aAAa,EAAQ,IAAA,oBAAW,EAAC,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,IAAI,EAAO,WAAW,CAAC;YACvE,cAAc,EAAO,cAAc,CAAC,QAAQ,EAAE;YAC9C,mBAAmB,EAAE,IAAA,oBAAW,EAAC,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,SAAS,EAAE,cAAc,CAAC,QAAQ,EAAE,CAAC;SACtF,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/tools/write/init-policy.d.ts

@@ -0,0 +1,133 @@
+/**
+ * `agenttrust_init_policy` — initialise a PolicyAccount + VelocityLedger
+ * for the caller's `(agent_asset, policy_id)` pair. Requires the
+ * PolicyAuthority to already exist with the signer as a member; this
+ * tool surfaces a clear error pointing at `init_authority` if not.
+ *
+ * The full per-kind config is exposed as JSON; sane defaults zero every
+ * field so callers can incrementally enable kinds via the bitmask.
+ */
+import { z } from "zod";
+import type { Tool } from "../types";
+declare const InputSchema: z.ZodObject<{
+    agent_asset: z.ZodEffects<z.ZodString, string, string>;
+    policy_id: z.ZodNumber;
+    enabled_kinds_bitmask: z.ZodNumber;
+    gate_mode: z.ZodDefault<z.ZodNumber>;
+    scope_kind: z.ZodDefault<z.ZodNumber>;
+    spending: z.ZodDefault<z.ZodObject<{
+        per_tx_max: z.ZodDefault<z.ZodUnion<[z.ZodNumber, z.ZodString]>>;
+        daily_max: z.ZodDefault<z.ZodUnion<[z.ZodNumber, z.ZodString]>>;
+        weekly_max: z.ZodDefault<z.ZodUnion<[z.ZodNumber, z.ZodString]>>;
+    }, "strip", z.ZodTypeAny, {
+        per_tx_max: string | number;
+        daily_max: string | number;
+        weekly_max: string | number;
+    }, {
+        per_tx_max?: string | number | undefined;
+        daily_max?: string | number | undefined;
+        weekly_max?: string | number | undefined;
+    }>>;
+    velocity: z.ZodDefault<z.ZodObject<{
+        window_secs: z.ZodDefault<z.ZodUnion<[z.ZodNumber, z.ZodString]>>;
+        max_in_window: z.ZodDefault<z.ZodUnion<[z.ZodNumber, z.ZodString]>>;
+        tier0_decay_factor: z.ZodDefault<z.ZodUnion<[z.ZodNumber, z.ZodString]>>;
+    }, "strip", z.ZodTypeAny, {
+        window_secs: string | number;
+        max_in_window: string | number;
+        tier0_decay_factor: string | number;
+    }, {
+        window_secs?: string | number | undefined;
+        max_in_window?: string | number | undefined;
+        tier0_decay_factor?: string | number | undefined;
+    }>>;
+    counterparty: z.ZodDefault<z.ZodObject<{
+        min_tier: z.ZodDefault<z.ZodNumber>;
+        max_risk_score: z.ZodDefault<z.ZodNumber>;
+        min_confidence: z.ZodDefault<z.ZodNumber>;
+        default_unrated_treatment: z.ZodDefault<z.ZodNumber>;
+    }, "strip", z.ZodTypeAny, {
+        min_tier: number;
+        max_risk_score: number;
+        min_confidence: number;
+        default_unrated_treatment: number;
+    }, {
+        min_tier?: number | undefined;
+        max_risk_score?: number | undefined;
+        min_confidence?: number | undefined;
+        default_unrated_treatment?: number | undefined;
+    }>>;
+    validation: z.ZodDefault<z.ZodObject<{
+        required_capability_hash_hex: z.ZodOptional<z.ZodEffects<z.ZodString, string, string>>;
+        accepted_attestors: z.ZodDefault<z.ZodArray<z.ZodEffects<z.ZodString, string, string>, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        accepted_attestors: string[];
+        required_capability_hash_hex?: string | undefined;
+    }, {
+        required_capability_hash_hex?: string | undefined;
+        accepted_attestors?: string[] | undefined;
+    }>>;
+}, "strip", z.ZodTypeAny, {
+    policy_id: number;
+    validation: {
+        accepted_attestors: string[];
+        required_capability_hash_hex?: string | undefined;
+    };
+    agent_asset: string;
+    enabled_kinds_bitmask: number;
+    gate_mode: number;
+    scope_kind: number;
+    spending: {
+        per_tx_max: string | number;
+        daily_max: string | number;
+        weekly_max: string | number;
+    };
+    velocity: {
+        window_secs: string | number;
+        max_in_window: string | number;
+        tier0_decay_factor: string | number;
+    };
+    counterparty: {
+        min_tier: number;
+        max_risk_score: number;
+        min_confidence: number;
+        default_unrated_treatment: number;
+    };
+}, {
+    policy_id: number;
+    agent_asset: string;
+    enabled_kinds_bitmask: number;
+    validation?: {
+        required_capability_hash_hex?: string | undefined;
+        accepted_attestors?: string[] | undefined;
+    } | undefined;
+    gate_mode?: number | undefined;
+    scope_kind?: number | undefined;
+    spending?: {
+        per_tx_max?: string | number | undefined;
+        daily_max?: string | number | undefined;
+        weekly_max?: string | number | undefined;
+    } | undefined;
+    velocity?: {
+        window_secs?: string | number | undefined;
+        max_in_window?: string | number | undefined;
+        tier0_decay_factor?: string | number | undefined;
+    } | undefined;
+    counterparty?: {
+        min_tier?: number | undefined;
+        max_risk_score?: number | undefined;
+        min_confidence?: number | undefined;
+        default_unrated_treatment?: number | undefined;
+    } | undefined;
+}>;
+type Input = z.infer<typeof InputSchema>;
+interface Output {
+    txSignature: string;
+    explorerTxUrl: string;
+    policyPda: string;
+    policyExplorer: string;
+    velocityPda: string;
+    velocityExplorer: string;
+}
+export declare const initPolicyTool: Tool<Input, Output>;
+export {};