@attesso/mcp 1.3.1 → 2.0.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Attesso
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -1,25 +1,11 @@
 # @attesso/mcp
 
-Model Context Protocol server for Attesso settlement operations. Works with any MCP-compatible AI assistant:
+MCP server for Attesso authorization and safety tools. Works with Claude Desktop and any MCP-compatible client.
 
-- Claude Desktop
-- Cursor
-- Windsurf
-- Continue
-- Zed
-- Cline
-- And more
-
-## Installation
-
-```bash
-npm install @attesso/mcp
-```
+Attesso doesn't touch money — it authorizes, validates, revokes, and audits. This MCP server lets AI agents check their spending authorization and audit trail.
 
 ## Setup
 
-Add to your MCP client's configuration. For Claude Desktop (`~/Library/Application Support/Claude/claude_desktop_config.json` on macOS):
-
 ```json
 {
   "mcpServers": {
@@ -34,25 +20,20 @@ Add to your MCP client's configuration. For Claude Desktop (`~/Library/Applicati
 }
 ```
 
-Restart Claude Desktop after updating the configuration.
-
 ## Available Tools
 
 ### Read Operations
 
 | Tool | Description |
 |------|-------------|
-| `attesso_get_mandate` | Get mandate details (status, limits, restrictions, remaining spend) |
-| `attesso_get_payment` | Check payment status and details |
-| `attesso_get_passport` | Get passport token for merchant authentication |
+| `attesso_get_mandate` | Get mandate details: spending limit, status, restrictions |
+| `attesso_get_audit_trail` | Full liability chain, biometric proof, and audit trail |
 
 ### Write Operations
 
 | Tool | Description |
 |------|-------------|
-| `attesso_execute_payment` | Execute a payment against a mandate |
-| `attesso_capture` | Capture an authorized payment with final amount |
-| `attesso_cancel` | Cancel authorization and release held funds |
+| `attesso_revoke_mandate` | Revoke mandate, atomically destroy all derived instruments |
 
 ## Environment Variables
 
@@ -71,74 +52,24 @@ import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js'
 
 const server = createAttessoMCPServer({
   apiKey: process.env.ATTESSO_API_KEY,
-  mandateId: 'mandate_xyz',  // Optional: pre-configure mandate
-  readOnlyMode: false,       // Optional: disable write operations
+  mandateId: 'mandate_xyz',
+  readOnlyMode: false,
 });
 
 const transport = new StdioServerTransport();
 await server.connect(transport);
 ```
 
-## Security Notes
-
-1. **API Keys**: Only use restricted keys (`rk_test_*` for development, `rk_live_*` for production) with MCP. Never use management keys (`sk_mgmt_*`).
-
-2. **Mandate Creation**: Mandates require user biometric authentication (FaceID/TouchID) and cannot be created via MCP. The user must pre-authorize a mandate before the AI assistant can use it.
-
-3. **Read-Only Mode**: For monitoring dashboards or status checks, enable read-only mode to prevent accidental payments:
-   ```json
-   {
-     "env": {
-       "ATTESSO_API_KEY": "rk_test_...",
-       "ATTESSO_READ_ONLY": "true"
-     }
-   }
-   ```
-
-4. **Idempotency**: Payment operations automatically generate idempotency keys for safe retries.
-
-## Example Conversation
-
-**User**: What's the status of mandate_abc123?
-
-**Claude** (calls `attesso_get_mandate`):
-```json
-{
-  "id": "mandate_abc123",
-  "status": "active",
-  "spendingLimit": 50000,
-  "amountSpent": 0,
-  "currency": "USD"
-}
-```
-
-**Claude**: Mandate mandate_abc123 is active with $500.00 available to spend.
+## Security
 
----
-
-**User**: Book me a flight to NYC for $347
-
-**Claude** (calls `attesso_execute_payment`):
-```json
-{
-  "id": "pay_xyz789",
-  "mandateId": "mandate_abc123",
-  "amount": 34700,
-  "merchant": "United Airlines",
-  "status": "completed"
-}
-```
-
-**Claude**: Done! I've charged $347.00 to United Airlines. Payment ID: pay_xyz789.
+- **API Keys**: Only restricted keys (`rk_test_*`, `rk_live_*`). Never management keys.
+- **Mandate creation requires biometric auth** — cannot be done via MCP. The user must pre-authorize.
+- **Read-only mode**: For monitoring without revocation capability.
 
 ## Related Packages
 
-- [`@attesso/sdk`](https://www.npmjs.com/package/@attesso/sdk) - API client with Vercel AI SDK integration
-- [`@attesso/types`](https://www.npmjs.com/package/@attesso/types) - TypeScript types
-
-## Documentation
-
-Full documentation: https://www.attesso.com/docs
+- [`@attesso/sdk`](https://www.npmjs.com/package/@attesso/sdk) — API client with Vercel AI SDK integration
+- [`@attesso/types`](https://www.npmjs.com/package/@attesso/types) — TypeScript types
 
 ## License
 

package/dist/src/schemas.d.ts

@@ -11,33 +11,14 @@ export declare const schemas: {
     }, {
         mandateId: string;
     }>;
-    issueCard: z.ZodObject<{
+    revokeMandate: z.ZodObject<{
         mandateId: z.ZodString;
-        amount: z.ZodNumber;
-        ttlSeconds: z.ZodOptional<z.ZodNumber>;
-        allowedMccs: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        blockedMccs: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
     }, "strip", z.ZodTypeAny, {
         mandateId: string;
-        amount: number;
-        ttlSeconds?: number | undefined;
-        allowedMccs?: string[] | undefined;
-        blockedMccs?: string[] | undefined;
     }, {
         mandateId: string;
-        amount: number;
-        ttlSeconds?: number | undefined;
-        allowedMccs?: string[] | undefined;
-        blockedMccs?: string[] | undefined;
     }>;
-    getCard: z.ZodObject<{
-        cardId: z.ZodString;
-    }, "strip", z.ZodTypeAny, {
-        cardId: string;
-    }, {
-        cardId: string;
-    }>;
-    revokeMandate: z.ZodObject<{
+    getAuditTrail: z.ZodObject<{
         mandateId: z.ZodString;
     }, "strip", z.ZodTypeAny, {
         mandateId: string;
@@ -46,7 +27,6 @@ export declare const schemas: {
     }>;
 };
 export type GetMandateInput = z.infer<typeof schemas.getMandate>;
-export type IssueCardInput = z.infer<typeof schemas.issueCard>;
-export type GetCardInput = z.infer<typeof schemas.getCard>;
 export type RevokeMandateInput = z.infer<typeof schemas.revokeMandate>;
+export type GetAuditTrailInput = z.infer<typeof schemas.getAuditTrail>;
 //# sourceMappingURL=schemas.d.ts.map

package/dist/src/schemas.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../../src/schemas.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,eAAO,MAAM,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAoBnB,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,UAAU,CAAC,CAAC;AACjE,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,SAAS,CAAC,CAAC;AAC/D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,OAAO,CAAC,CAAC;AAC3D,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,aAAa,CAAC,CAAC"}
+{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../../src/schemas.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,eAAO,MAAM,OAAO;;;;;;;;;;;;;;;;;;;;;;CAYnB,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,UAAU,CAAC,CAAC;AACjE,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,aAAa,CAAC,CAAC;AACvE,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,aAAa,CAAC,CAAC"}

package/dist/src/schemas.js

@@ -7,18 +7,11 @@ export const schemas = {
     getMandate: z.object({
         mandateId: z.string().describe('The unique identifier of the mandate to retrieve'),
     }),
-    issueCard: z.object({
-        mandateId: z.string().describe('The mandate ID to issue an ephemeral card from'),
-        amount: z.number().positive().describe('Amount in cents the agent wants to spend (e.g., 34700 for $347.00)'),
-        ttlSeconds: z.number().int().min(60).max(900).optional().describe('Card time-to-live in seconds (60-900, default 300)'),
-        allowedMccs: z.array(z.string()).optional().describe('Restrict card to these merchant category codes'),
-        blockedMccs: z.array(z.string()).optional().describe('Block card from these merchant category codes'),
-    }),
-    getCard: z.object({
-        cardId: z.string().describe('The unique identifier of the card to retrieve'),
-    }),
     revokeMandate: z.object({
         mandateId: z.string().describe('The mandate ID to revoke'),
     }),
+    getAuditTrail: z.object({
+        mandateId: z.string().describe('The mandate ID to get the audit trail for'),
+    }),
 };
 //# sourceMappingURL=schemas.js.map

package/dist/src/schemas.js.map

@@ -1 +1 @@
-{"version":3,"file":"schemas.js","sourceRoot":"","sources":["../../src/schemas.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,MAAM,CAAC,MAAM,OAAO,GAAG;IACrB,UAAU,EAAE,CAAC,CAAC,MAAM,CAAC;QACnB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,kDAAkD,CAAC;KACnF,CAAC;IAEF,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC;QAClB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,gDAAgD,CAAC;QAChF,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,oEAAoE,CAAC;QAC5G,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,oDAAoD,CAAC;QACvH,WAAW,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,gDAAgD,CAAC;QACtG,WAAW,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,+CAA+C,CAAC;KACtG,CAAC;IAEF,OAAO,EAAE,CAAC,CAAC,MAAM,CAAC;QAChB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,+CAA+C,CAAC;KAC7E,CAAC;IAEF,aAAa,EAAE,CAAC,CAAC,MAAM,CAAC;QACtB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,0BAA0B,CAAC;KAC3D,CAAC;CACH,CAAC"}
+{"version":3,"file":"schemas.js","sourceRoot":"","sources":["../../src/schemas.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,MAAM,CAAC,MAAM,OAAO,GAAG;IACrB,UAAU,EAAE,CAAC,CAAC,MAAM,CAAC;QACnB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,kDAAkD,CAAC;KACnF,CAAC;IAEF,aAAa,EAAE,CAAC,CAAC,MAAM,CAAC;QACtB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,0BAA0B,CAAC;KAC3D,CAAC;IAEF,aAAa,EAAE,CAAC,CAAC,MAAM,CAAC;QACtB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,2CAA2C,CAAC;KAC5E,CAAC;CACH,CAAC"}

package/dist/src/server.d.ts

@@ -1,7 +1,7 @@
 /**
  * MCP Server Factory for Attesso
  *
- * Creates an MCP server that exposes Attesso payment tools.
+ * Creates an MCP server that exposes Attesso authorization tools.
  * Used by Claude Desktop and other MCP-compatible AI assistants.
  */
 import { Server } from '@modelcontextprotocol/sdk/server/index.js';
@@ -19,12 +19,11 @@ export interface AttessoMCPServerConfig {
     /**
      * If provided, use this mandate ID for all operations.
      * Falls back to ATTESSO_MANDATE_ID env var.
-     * Useful for pre-configured agents with a known mandate.
      */
     mandateId?: string;
     /**
-     * If true, only expose read-only tools (get_mandate, get_card).
-     * Write operations (issue_card, revoke_mandate) will not be available.
+     * If true, only expose read-only tools (get_mandate, get_audit_trail).
+     * Write operations (revoke_mandate) will not be available.
      * @default false
      */
     readOnlyMode?: boolean;
@@ -41,14 +40,6 @@ export interface AttessoMCPServerConfig {
  * const transport = new StdioServerTransport();
  * await server.connect(transport);
  * ```
- *
- * @example With configuration
- * ```typescript
- * const server = createAttessoMCPServer({
- *   mandateId: 'mandate_xyz',
- *   readOnlyMode: true,
- * });
- * ```
  */
 export declare function createAttessoMCPServer(config?: AttessoMCPServerConfig): Server;
 //# sourceMappingURL=server.d.ts.map

package/dist/src/server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AAoBnE,MAAM,WAAW,sBAAsB;IACrC;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;;;OAIG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,GAAE,sBAA2B,GAAG,MAAM,CAmIlF"}
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AAmBnE,MAAM,WAAW,sBAAsB;IACrC;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;;OAIG;IACH,YAAY,CAAC,EAAE,OAAO,CAAC;CACxB;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,GAAE,sBAA2B,GAAG,MAAM,CAwFlF"}

package/dist/src/server.js

@@ -1,7 +1,7 @@
 /**
  * MCP Server Factory for Attesso
  *
- * Creates an MCP server that exposes Attesso payment tools.
+ * Creates an MCP server that exposes Attesso authorization tools.
  * Used by Claude Desktop and other MCP-compatible AI assistants.
  */
 import { Server } from '@modelcontextprotocol/sdk/server/index.js';
@@ -20,18 +20,9 @@ import { getToolByName, getReadOnlyTools, getAllTools, } from './tools.js';
  * const transport = new StdioServerTransport();
  * await server.connect(transport);
  * ```
- *
- * @example With configuration
- * ```typescript
- * const server = createAttessoMCPServer({
- *   mandateId: 'mandate_xyz',
- *   readOnlyMode: true,
- * });
- * ```
  */
 export function createAttessoMCPServer(config = {}) {
     const apiKey = config.apiKey ?? process.env.ATTESSO_API_KEY;
-    // Validate API key format (only restricted keys allowed for agents)
     if (apiKey && !apiKey.startsWith('rk_test_') && !apiKey.startsWith('rk_live_')) {
         console.error('Error: Attesso MCP server requires restricted keys (rk_test_* or rk_live_*)');
     }
@@ -41,7 +32,6 @@ export function createAttessoMCPServer(config = {}) {
     });
     const defaultMandateId = config.mandateId ?? process.env.ATTESSO_MANDATE_ID;
     const readOnlyMode = config.readOnlyMode ?? false;
-    // Get tools based on mode
     const availableTools = readOnlyMode ? getReadOnlyTools() : getAllTools();
     const server = new Server({
         name: 'attesso',
@@ -51,7 +41,6 @@ export function createAttessoMCPServer(config = {}) {
             tools: {},
         },
     });
-    // Handle list_tools request
     server.setRequestHandler(ListToolsRequestSchema, async () => {
         const tools = availableTools.map((tool) => ({
             name: tool.name,
@@ -60,61 +49,32 @@ export function createAttessoMCPServer(config = {}) {
         }));
         return { tools };
     });
-    // Handle call_tool request
     server.setRequestHandler(CallToolRequestSchema, async (request) => {
         const { name, arguments: args } = request.params;
         const toolDef = getToolByName(name);
         if (!toolDef) {
             return {
-                content: [
-                    {
-                        type: 'text',
-                        text: JSON.stringify({ error: `Unknown tool: ${name}` }),
-                    },
-                ],
+                content: [{ type: 'text', text: JSON.stringify({ error: `Unknown tool: ${name}` }) }],
                 isError: true,
             };
         }
-        // Check read-only mode
         if (readOnlyMode && toolDef.isWriteOperation) {
             return {
-                content: [
-                    {
-                        type: 'text',
-                        text: JSON.stringify({
-                            error: 'Write operations are disabled in read-only mode',
-                            tool: name,
-                        }),
-                    },
-                ],
+                content: [{ type: 'text', text: JSON.stringify({ error: 'Write operations are disabled in read-only mode', tool: name }) }],
                 isError: true,
             };
         }
-        // Validate input
         const parseResult = toolDef.zodSchema.safeParse(args);
         if (!parseResult.success) {
             return {
-                content: [
-                    {
-                        type: 'text',
-                        text: JSON.stringify({
-                            error: 'Invalid input',
-                            details: parseResult.error.format(),
-                        }),
-                    },
-                ],
+                content: [{ type: 'text', text: JSON.stringify({ error: 'Invalid input', details: parseResult.error.format() }) }],
                 isError: true,
             };
         }
         try {
             const result = await executeToolCall(client, name, parseResult.data, defaultMandateId);
             return {
-                content: [
-                    {
-                        type: 'text',
-                        text: JSON.stringify(result, null, 2),
-                    },
-                ],
+                content: [{ type: 'text', text: JSON.stringify(result, null, 2) }],
             };
         }
         catch (error) {
@@ -124,52 +84,36 @@ export function createAttessoMCPServer(config = {}) {
                     ? { error: error.message }
                     : { error: 'Unknown error' };
             return {
-                content: [
-                    {
-                        type: 'text',
-                        text: JSON.stringify(errorMessage),
-                    },
-                ],
+                content: [{ type: 'text', text: JSON.stringify(errorMessage) }],
                 isError: true,
             };
         }
     });
     return server;
 }
-/**
- * Execute a tool call against the Attesso API.
- */
 async function executeToolCall(client, toolName, input, defaultMandateId) {
     switch (toolName) {
         case 'attesso_get_mandate': {
             const { mandateId } = input;
             const id = mandateId ?? defaultMandateId;
-            if (!id) {
+            if (!id)
                 throw new AttessoError('MANDATE_NOT_FOUND', 'mandateId is required');
-            }
             return client.getMandate(id);
         }
-        case 'attesso_issue_card': {
-            const { mandateId, amount, ttlSeconds, allowedMccs, blockedMccs } = input;
+        case 'attesso_revoke_mandate': {
+            const { mandateId } = input;
             const id = mandateId ?? defaultMandateId;
-            if (!id) {
+            if (!id)
                 throw new AttessoError('MANDATE_NOT_FOUND', 'mandateId is required');
-            }
-            return client.issueCard(id, { amount, ttlSeconds, allowedMccs, blockedMccs });
+            await client.revokeMandate(id);
+            return { revoked: true };
         }
-        case 'attesso_get_card': {
-            const { cardId } = input;
-            // Use the SDK's request method via a direct API call
-            return client.request('GET', `/v1/cards/${cardId}`);
-        }
-        case 'attesso_revoke_mandate': {
+        case 'attesso_get_audit_trail': {
             const { mandateId } = input;
             const id = mandateId ?? defaultMandateId;
-            if (!id) {
+            if (!id)
                 throw new AttessoError('MANDATE_NOT_FOUND', 'mandateId is required');
-            }
-            // Use the SDK's request method via a direct API call
-            return client.request('DELETE', `/v1/mandates/${id}`);
+            return client.getDisputeEvidence(id);
         }
         default:
             throw new Error(`Unknown tool: ${toolName}`);

package/dist/src/server.js.map

@@ -1 +1 @@
-{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EACL,qBAAqB,EACrB,sBAAsB,GAEvB,MAAM,oCAAoC,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC3D,OAAO,EAEL,aAAa,EACb,gBAAgB,EAChB,WAAW,GACZ,MAAM,YAAY,CAAC;AAoCpB;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAM,UAAU,sBAAsB,CAAC,SAAiC,EAAE;IACxE,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAE5D,oEAAoE;IACpE,IAAI,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC/E,OAAO,CAAC,KAAK,CACX,6EAA6E,CAC9E,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,aAAa,CAAC;QAC/B,MAAM;QACN,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,OAAO,CAAC,GAAG,CAAC,gBAAgB;KACxD,CAAC,CAAC;IAEH,MAAM,gBAAgB,GAAG,MAAM,CAAC,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;IAC5E,MAAM,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,KAAK,CAAC;IAElD,0BAA0B;IAC1B,MAAM,cAAc,GAAG,YAAY,CAAC,CAAC,CAAC,gBAAgB,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;IAEzE,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,OAAO;KACjB,EACD;QACE,YAAY,EAAE;YACZ,KAAK,EAAE,EAAE;SACV;KACF,CACF,CAAC;IAEF,4BAA4B;IAC5B,MAAM,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE;QAC1D,MAAM,KAAK,GAAW,cAAc,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YAClD,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,WAAW,EAAE,IAAI,CAAC,WAAkC;SACrD,CAAC,CAAC,CAAC;QAEJ,OAAO,EAAE,KAAK,EAAE,CAAC;IACnB,CAAC,CAAC,CAAC;IAEH,2BAA2B;IAC3B,MAAM,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;QAChE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;QAEjD,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;QACpC,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,iBAAiB,IAAI,EAAE,EAAE,CAAC;qBACzD;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,uBAAuB;QACvB,IAAI,YAAY,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;YAC7C,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;4BACnB,KAAK,EAAE,iDAAiD;4BACxD,IAAI,EAAE,IAAI;yBACX,CAAC;qBACH;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,iBAAiB;QACjB,MAAM,WAAW,GAAG,OAAO,CAAC,SAAS,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACtD,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YACzB,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;4BACnB,KAAK,EAAE,eAAe;4BACtB,OAAO,EAAE,WAAW,CAAC,KAAK,CAAC,MAAM,EAAE;yBACpC,CAAC;qBACH;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,eAAe,CAClC,MAAM,EACN,IAAI,EACJ,WAAW,CAAC,IAAI,EAChB,gBAAgB,CACjB,CAAC;YAEF,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;qBACtC;iBACF;aACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAChB,KAAK,YAAY,YAAY;gBAC3B,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,OAAO,EAAE,KAAK,CAAC,OAAO,EAAE;gBAC9C,CAAC,CAAC,KAAK,YAAY,KAAK;oBACtB,CAAC,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE;oBAC1B,CAAC,CAAC,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC;YAEnC,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC;qBACnC;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,eAAe,CAC5B,MAAqB,EACrB,QAAgB,EAChB,KAAc,EACd,gBAAyB;IAEzB,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,qBAAqB,CAAC,CAAC,CAAC;YAC3B,MAAM,EAAE,SAAS,EAAE,GAAG,KAAwB,CAAC;YAC/C,MAAM,EAAE,GAAG,SAAS,IAAI,gBAAgB,CAAC;YACzC,IAAI,CAAC,EAAE,EAAE,CAAC;gBACR,MAAM,IAAI,YAAY,CAAC,mBAAmB,EAAE,uBAAuB,CAAC,CAAC;YACvE,CAAC;YACD,OAAO,MAAM,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;QAC/B,CAAC;QAED,KAAK,oBAAoB,CAAC,CAAC,CAAC;YAC1B,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,WAAW,EAAE,WAAW,EAAE,GAAG,KAAuB,CAAC;YAC5F,MAAM,EAAE,GAAG,SAAS,IAAI,gBAAgB,CAAC;YACzC,IAAI,CAAC,EAAE,EAAE,CAAC;gBACR,MAAM,IAAI,YAAY,CAAC,mBAAmB,EAAE,uBAAuB,CAAC,CAAC;YACvE,CAAC;YACD,OAAO,MAAM,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,WAAW,EAAE,WAAW,EAAE,CAAC,CAAC;QAChF,CAAC;QAED,KAAK,kBAAkB,CAAC,CAAC,CAAC;YACxB,MAAM,EAAE,MAAM,EAAE,GAAG,KAAqB,CAAC;YACzC,qDAAqD;YACrD,OAAQ,MAAc,CAAC,OAAO,CAAC,KAAK,EAAE,aAAa,MAAM,EAAE,CAAC,CAAC;QAC/D,CAAC;QAED,KAAK,wBAAwB,CAAC,CAAC,CAAC;YAC9B,MAAM,EAAE,SAAS,EAAE,GAAG,KAA2B,CAAC;YAClD,MAAM,EAAE,GAAG,SAAS,IAAI,gBAAgB,CAAC;YACzC,IAAI,CAAC,EAAE,EAAE,CAAC;gBACR,MAAM,IAAI,YAAY,CAAC,mBAAmB,EAAE,uBAAuB,CAAC,CAAC;YACvE,CAAC;YACD,qDAAqD;YACrD,OAAQ,MAAc,CAAC,OAAO,CAAC,QAAQ,EAAE,gBAAgB,EAAE,EAAE,CAAC,CAAC;QACjE,CAAC;QAED;YACE,MAAM,IAAI,KAAK,CAAC,iBAAiB,QAAQ,EAAE,CAAC,CAAC;IACjD,CAAC;AACH,CAAC"}
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EACL,qBAAqB,EACrB,sBAAsB,GAEvB,MAAM,oCAAoC,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC3D,OAAO,EAEL,aAAa,EACb,gBAAgB,EAChB,WAAW,GACZ,MAAM,YAAY,CAAC;AAkCpB;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,sBAAsB,CAAC,SAAiC,EAAE;IACxE,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAE5D,IAAI,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC/E,OAAO,CAAC,KAAK,CACX,6EAA6E,CAC9E,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,aAAa,CAAC;QAC/B,MAAM;QACN,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,OAAO,CAAC,GAAG,CAAC,gBAAgB;KACxD,CAAC,CAAC;IAEH,MAAM,gBAAgB,GAAG,MAAM,CAAC,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;IAC5E,MAAM,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,KAAK,CAAC;IAElD,MAAM,cAAc,GAAG,YAAY,CAAC,CAAC,CAAC,gBAAgB,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;IAEzE,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,OAAO;KACjB,EACD;QACE,YAAY,EAAE;YACZ,KAAK,EAAE,EAAE;SACV;KACF,CACF,CAAC;IAEF,MAAM,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE;QAC1D,MAAM,KAAK,GAAW,cAAc,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YAClD,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,WAAW,EAAE,IAAI,CAAC,WAAkC;SACrD,CAAC,CAAC,CAAC;QAEJ,OAAO,EAAE,KAAK,EAAE,CAAC;IACnB,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;QAChE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;QAEjD,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;QACpC,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,iBAAiB,IAAI,EAAE,EAAE,CAAC,EAAE,CAAC;gBACrF,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,IAAI,YAAY,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;YAC7C,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,iDAAiD,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;gBAC3H,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAG,OAAO,CAAC,SAAS,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACtD,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YACzB,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,eAAe,EAAE,OAAO,EAAE,WAAW,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC;gBAClH,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,eAAe,CAAC,MAAM,EAAE,IAAI,EAAE,WAAW,CAAC,IAAI,EAAE,gBAAgB,CAAC,CAAC;YACvF,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;aACnE,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAChB,KAAK,YAAY,YAAY;gBAC3B,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,OAAO,EAAE,KAAK,CAAC,OAAO,EAAE;gBAC9C,CAAC,CAAC,KAAK,YAAY,KAAK;oBACtB,CAAC,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE;oBAC1B,CAAC,CAAC,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC;YAEnC,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,EAAE,CAAC;gBAC/D,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,eAAe,CAC5B,MAAqB,EACrB,QAAgB,EAChB,KAAc,EACd,gBAAyB;IAEzB,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,qBAAqB,CAAC,CAAC,CAAC;YAC3B,MAAM,EAAE,SAAS,EAAE,GAAG,KAAwB,CAAC;YAC/C,MAAM,EAAE,GAAG,SAAS,IAAI,gBAAgB,CAAC;YACzC,IAAI,CAAC,EAAE;gBAAE,MAAM,IAAI,YAAY,CAAC,mBAAmB,EAAE,uBAAuB,CAAC,CAAC;YAC9E,OAAO,MAAM,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;QAC/B,CAAC;QAED,KAAK,wBAAwB,CAAC,CAAC,CAAC;YAC9B,MAAM,EAAE,SAAS,EAAE,GAAG,KAA2B,CAAC;YAClD,MAAM,EAAE,GAAG,SAAS,IAAI,gBAAgB,CAAC;YACzC,IAAI,CAAC,EAAE;gBAAE,MAAM,IAAI,YAAY,CAAC,mBAAmB,EAAE,uBAAuB,CAAC,CAAC;YAC9E,MAAM,MAAM,CAAC,aAAa,CAAC,EAAE,CAAC,CAAC;YAC/B,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;QAC3B,CAAC;QAED,KAAK,yBAAyB,CAAC,CAAC,CAAC;YAC/B,MAAM,EAAE,SAAS,EAAE,GAAG,KAA2B,CAAC;YAClD,MAAM,EAAE,GAAG,SAAS,IAAI,gBAAgB,CAAC;YACzC,IAAI,CAAC,EAAE;gBAAE,MAAM,IAAI,YAAY,CAAC,mBAAmB,EAAE,uBAAuB,CAAC,CAAC;YAC9E,OAAO,MAAM,CAAC,kBAAkB,CAAC,EAAE,CAAC,CAAC;QACvC,CAAC;QAED;YACE,MAAM,IAAI,KAAK,CAAC,iBAAiB,QAAQ,EAAE,CAAC,CAAC;IACjD,CAAC;AACH,CAAC"}

package/dist/src/tools.d.ts

@@ -1,11 +1,10 @@
 /**
  * MCP Tool Definitions for Attesso
  *
- * Defines the 4 tools exposed via MCP:
+ * Defines the 3 tools exposed via MCP:
  * - attesso_get_mandate (read)
- * - attesso_issue_card (write)
- * - attesso_get_card (read)
  * - attesso_revoke_mandate (write)
+ * - attesso_get_audit_trail (read)
  */
 import { z } from 'zod';
 import { zodToJsonSchema } from 'zod-to-json-schema';

package/dist/src/tools.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"tools.d.ts","sourceRoot":"","sources":["../../src/tools.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAGrD,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,UAAU,CAAC,OAAO,eAAe,CAAC,CAAC;IAChD,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC;IACrB,gBAAgB,EAAE,OAAO,CAAC;CAC3B;AAED,eAAO,MAAM,eAAe,EAAE,cAAc,EA0C3C,CAAC;AAEF,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,GAAG,SAAS,CAEtE;AAED,wBAAgB,gBAAgB,IAAI,cAAc,EAAE,CAEnD;AAED,wBAAgB,WAAW,IAAI,cAAc,EAAE,CAE9C"}
+{"version":3,"file":"tools.d.ts","sourceRoot":"","sources":["../../src/tools.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAGrD,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,UAAU,CAAC,OAAO,eAAe,CAAC,CAAC;IAChD,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC;IACrB,gBAAgB,EAAE,OAAO,CAAC;CAC3B;AAED,eAAO,MAAM,eAAe,EAAE,cAAc,EA+B3C,CAAC;AAEF,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,GAAG,SAAS,CAEtE;AAED,wBAAgB,gBAAgB,IAAI,cAAc,EAAE,CAEnD;AAED,wBAAgB,WAAW,IAAI,cAAc,EAAE,CAE9C"}

package/dist/src/tools.js

@@ -1,11 +1,10 @@
 /**
  * MCP Tool Definitions for Attesso
  *
- * Defines the 4 tools exposed via MCP:
+ * Defines the 3 tools exposed via MCP:
  * - attesso_get_mandate (read)
- * - attesso_issue_card (write)
- * - attesso_get_card (read)
  * - attesso_revoke_mandate (write)
+ * - attesso_get_audit_trail (read)
  */
 import { zodToJsonSchema } from 'zod-to-json-schema';
 import { schemas } from './schemas.js';
@@ -14,35 +13,25 @@ export const toolDefinitions = [
     {
         name: 'attesso_get_mandate',
         description: 'Get details about a spending mandate including the spending limit, status, and restrictions. ' +
-            'Use this to check how much money is available before issuing a card.',
+            'Use this to check what the user has authorized and what constraints apply.',
         inputSchema: zodToJsonSchema(schemas.getMandate, 'GetMandateInput'),
         zodSchema: schemas.getMandate,
         isWriteOperation: false,
     },
     {
-        name: 'attesso_get_card',
-        description: 'Get the status and details of an issued ephemeral card. ' +
-            'Use this to check if a card is still active or has been used.',
-        inputSchema: zodToJsonSchema(schemas.getCard, 'GetCardInput'),
-        zodSchema: schemas.getCard,
+        name: 'attesso_get_audit_trail',
+        description: 'Get the complete audit trail for a mandate including biometric proof, ' +
+            'developer identity, agent actions, and revocation events. ' +
+            'Use this to review what happened under a mandate or to resolve a dispute.',
+        inputSchema: zodToJsonSchema(schemas.getAuditTrail, 'GetAuditTrailInput'),
+        zodSchema: schemas.getAuditTrail,
         isWriteOperation: false,
     },
     // Write operations
-    {
-        name: 'attesso_issue_card',
-        description: 'Issue an ephemeral virtual card from a standing mandate. ' +
-            'This auth-holds the user\'s payment method and creates a card with a TTL. ' +
-            'The card auto-destructs after use or when the TTL expires. ' +
-            'Amount must be in cents (e.g., 34700 for $347.00). ' +
-            'Only call this when you are ready to make a purchase.',
-        inputSchema: zodToJsonSchema(schemas.issueCard, 'IssueCardInput'),
-        zodSchema: schemas.issueCard,
-        isWriteOperation: true,
-    },
     {
         name: 'attesso_revoke_mandate',
-        description: 'Revoke a mandate so it can no longer be used to issue cards. ' +
-            'Use this when the mandate is no longer needed.',
+        description: 'Revoke a mandate, atomically destroying all derived payment instruments ' +
+            'across all processors. Use this when spending authorization is no longer needed.',
         inputSchema: zodToJsonSchema(schemas.revokeMandate, 'RevokeMandateInput'),
         zodSchema: schemas.revokeMandate,
         isWriteOperation: true,

package/dist/src/tools.js.map

@@ -1 +1 @@
-{"version":3,"file":"tools.js","sourceRoot":"","sources":["../../src/tools.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AACrD,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAUvC,MAAM,CAAC,MAAM,eAAe,GAAqB;IAC/C,kBAAkB;IAClB;QACE,IAAI,EAAE,qBAAqB;QAC3B,WAAW,EACT,+FAA+F;YAC/F,sEAAsE;QACxE,WAAW,EAAE,eAAe,CAAC,OAAO,CAAC,UAAU,EAAE,iBAAiB,CAAC;QACnE,SAAS,EAAE,OAAO,CAAC,UAAU;QAC7B,gBAAgB,EAAE,KAAK;KACxB;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,WAAW,EACT,0DAA0D;YAC1D,+DAA+D;QACjE,WAAW,EAAE,eAAe,CAAC,OAAO,CAAC,OAAO,EAAE,cAAc,CAAC;QAC7D,SAAS,EAAE,OAAO,CAAC,OAAO;QAC1B,gBAAgB,EAAE,KAAK;KACxB;IACD,mBAAmB;IACnB;QACE,IAAI,EAAE,oBAAoB;QAC1B,WAAW,EACT,2DAA2D;YAC3D,4EAA4E;YAC5E,6DAA6D;YAC7D,qDAAqD;YACrD,uDAAuD;QACzD,WAAW,EAAE,eAAe,CAAC,OAAO,CAAC,SAAS,EAAE,gBAAgB,CAAC;QACjE,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,gBAAgB,EAAE,IAAI;KACvB;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,WAAW,EACT,+DAA+D;YAC/D,gDAAgD;QAClD,WAAW,EAAE,eAAe,CAAC,OAAO,CAAC,aAAa,EAAE,oBAAoB,CAAC;QACzE,SAAS,EAAE,OAAO,CAAC,aAAa;QAChC,gBAAgB,EAAE,IAAI;KACvB;CACF,CAAC;AAEF,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;AACtD,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,OAAO,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC;AAC5D,CAAC;AAED,MAAM,UAAU,WAAW;IACzB,OAAO,eAAe,CAAC;AACzB,CAAC"}
+{"version":3,"file":"tools.js","sourceRoot":"","sources":["../../src/tools.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AACrD,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAUvC,MAAM,CAAC,MAAM,eAAe,GAAqB;IAC/C,kBAAkB;IAClB;QACE,IAAI,EAAE,qBAAqB;QAC3B,WAAW,EACT,+FAA+F;YAC/F,4EAA4E;QAC9E,WAAW,EAAE,eAAe,CAAC,OAAO,CAAC,UAAU,EAAE,iBAAiB,CAAC;QACnE,SAAS,EAAE,OAAO,CAAC,UAAU;QAC7B,gBAAgB,EAAE,KAAK;KACxB;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,WAAW,EACT,wEAAwE;YACxE,4DAA4D;YAC5D,2EAA2E;QAC7E,WAAW,EAAE,eAAe,CAAC,OAAO,CAAC,aAAa,EAAE,oBAAoB,CAAC;QACzE,SAAS,EAAE,OAAO,CAAC,aAAa;QAChC,gBAAgB,EAAE,KAAK;KACxB;IACD,mBAAmB;IACnB;QACE,IAAI,EAAE,wBAAwB;QAC9B,WAAW,EACT,0EAA0E;YAC1E,kFAAkF;QACpF,WAAW,EAAE,eAAe,CAAC,OAAO,CAAC,aAAa,EAAE,oBAAoB,CAAC;QACzE,SAAS,EAAE,OAAO,CAAC,aAAa;QAChC,gBAAgB,EAAE,IAAI;KACvB;CACF,CAAC;AAEF,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;AACtD,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,OAAO,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC;AAC5D,CAAC;AAED,MAAM,UAAU,WAAW;IACzB,OAAO,eAAe,CAAC;AACzB,CAAC"}

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@attesso/mcp",
-  "version": "1.3.1",
-  "description": "Attesso bindings for the Model Context Protocol.",
+  "version": "2.0.0",
+  "description": "Attesso MCP server. Authorization and safety tools for AI agents.",
   "author": "Attesso",
   "license": "MIT",
   "repository": {
@@ -34,8 +34,7 @@
   "scripts": {
     "build": "tsc",
     "dev": "tsc --watch",
-    "clean": "rm -rf dist",
-    "test": "vitest run"
+    "clean": "rm -rf dist"
   },
   "keywords": [
     "attesso",
@@ -43,15 +42,15 @@
     "model-context-protocol",
     "ai-agents",
     "mandates",
-    "virtual-cards",
-    "payments",
+    "authorization",
+    "safety",
     "claude",
     "llm"
   ],
   "dependencies": {
     "@attesso/sdk": "workspace:*",
     "@attesso/types": "workspace:*",
-    "@modelcontextprotocol/sdk": "^1.25.0",
+    "@modelcontextprotocol/sdk": "^1.26.0",
     "zod-to-json-schema": "^3.23.0"
   },
   "peerDependencies": {
@@ -63,8 +62,8 @@
     }
   },
   "devDependencies": {
-    "typescript": "^5.7.0",
-    "vitest": "^2.1.0",
+    "typescript": "^5.9.0",
+    "vitest": "^4.0.0",
     "zod": "^3.25.0"
   }
 }