npm - @attesso/sdk - Versions diffs - 1.3.0 → 1.3.2 - Mend

@attesso/sdk 1.3.0 → 1.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +42 -69
package/package.json +10 -10

package/README.md CHANGED Viewed

@@ -1,24 +1,11 @@
 # @attesso/sdk
-Isomorphic client for the Attesso Settlement Protocol. FIDO2-signed execution bindings.
+Isomorphic client for the Attesso API. Card-based payment primitives for AI agents.
 ```bash
 npm install @attesso/sdk
 ```
-## Architecture
-Attesso exposes financial execution as a secure system primitive, similar to `fs` or `net`.
-Instead of managing sensitive credentials in plaintext, agents interact with **Signed Mandates**—cryptographic proofs that authorize a specific scope of execution (amount, merchant, duration), verified server-side.
-### Key Properties
-- **Deterministic**: Same mandate, same constraints, every time
-- **Isolated**: Credentials never exposed to agent runtime
-- **Revocable**: Sub-millisecond propagation via Redis-backed block store
-- **Typed**: Full TypeScript coverage with Zod validation
 ## AttessoClient
 ```typescript
@@ -35,43 +22,55 @@ const client = new AttessoClient({
 #### getMandate(mandateId)
 ```typescript
 const mandate = await client.getMandate('mandate_xyz');
-// { id, botId, maxAmount, currency, merchant?, status, expiresAt?, createdAt }
+// { id, botId, spendingLimit, totalCharged, currency, status, feeMode, fees, ... }
 ```
-#### executePayment(options)
+#### issueCard(mandateId, options)
+Issue an ephemeral virtual card from a standing mandate. The card auto-destructs after use or when the TTL expires.
 ```typescript
-const payment = await client.executePayment({
-  mandateId: 'mandate_xyz',
-  amount: 34700, // cents
-  merchant: 'Acme Corp',
+const card = await client.issueCard('mandate_xyz', {
+  amount: 34700,       // cents
+  ttlSeconds: 300,     // optional, 60-900
+  allowedMccs: ['...'],// optional
+  blockedMccs: ['...'],// optional
 });
-// { id, mandateId, amount, merchant, status, createdAt }
+// { cardId, number, cvc, expMonth, expYear, expiresAt, spendingLimit, fees }
 ```
 #### getPayment(paymentId)
 ```typescript
 const payment = await client.getPayment('payment_abc');
+// { id, mandateId, amount, merchant, status, createdAt }
 ```
-#### getPassport(mandateId)
+#### createMandateRequest(input)
+Create a mandate request and get an approval URL. Send this to the user so they can authorize the spending.
 ```typescript
-const passport = await client.getPassport('mandate_xyz');
-// { token, expiresAt }
+const request = await client.createMandateRequest({
+  amount: 10000,           // cents
+  validityWindow: '24h',
+  category: 'travel',
+  feeMode: 'markup',       // optional, default 'markup'
+  callbackUrl: 'https://your-server.com/webhooks/attesso',
+});
+// { id, approvalUrl, expiresAt, status, callbackSecret }
 ```
-#### capture(paymentId, options)
+#### getMandateRequest(requestId)
 ```typescript
-const result = await client.capture('payment_abc', {
-  amount: 34700,
-  metadata: { orderId: '123' },
-});
-// { id, authorizedAmount, capturedAmount, status: 'completed' }
+const status = await client.getMandateRequest('req_abc123');
+if (status.status === 'approved') {
+  console.log('Mandate created:', status.mandate.id);
+}
 ```
-#### cancel(paymentId)
+#### cancelMandateRequest(requestId)
 ```typescript
-const result = await client.cancel('payment_abc');
-// { id, authorizedAmount, status: 'cancelled' }
+await client.cancelMandateRequest('req_abc123');
 ```
 ## Vercel AI SDK
@@ -83,9 +82,8 @@ import { attesso } from '@attesso/sdk/vercel';
 const result = await generateText({
   model: openai('gpt-4o'),
   tools: attesso.tools({
-    mandateId: 'mandate_xyz',      // optional: pre-select mandate
-    merchant: 'Acme Corp',         // optional: lock to merchant
-    maxAmountPerTransaction: 50000, // optional: per-tx cap
+    mandateId: 'mandate_xyz',       // optional: pre-select mandate
+    maxAmountPerTransaction: 50000, // optional: per-tx cap in cents
   }),
   prompt: 'Book a flight under $500',
 });
@@ -93,39 +91,14 @@ const result = await generateText({
 ### Tools
-| Tool | Parameters | Returns |
-|------|------------|---------|
-| `attesso_pay` | `{ mandateId?, amount, merchant? }` | PaymentResponse |
-| `attesso_get_mandate` | `{ mandateId? }` | MandateResponse |
-| `attesso_get_payment` | `{ paymentId }` | PaymentResponse |
-| `attesso_get_passport` | `{ mandateId? }` | PassportToken |
-| `attesso_capture` | `{ paymentId, amount, metadata? }` | CaptureResponse |
-| `attesso_cancel` | `{ paymentId }` | CancelResponse |
-> **Note**: The Vercel AI SDK uses `attesso_pay` for payments. If using the MCP server (`@attesso/mcp`) directly with Claude Desktop or other MCP clients, the equivalent tool is named `attesso_execute_payment`.
-## Origin Restrictions
-```typescript
-const client = new AttessoClient({
-  apiKey: '...',
-  allowedOrigins: ['https://myapp.com', 'https://*.trusted.com'],
-});
-```
-Throws `OriginNotAllowedError` if called from unlisted origin.
+| Tool | Parameters | Description |
+|------|------------|-------------|
+| `attesso_get_mandate` | `{ mandateId }` | Check spending limit, status, and restrictions |
+| `attesso_issue_card` | `{ mandateId, amount, ttlSeconds? }` | Issue an ephemeral virtual card |
+| `attesso_get_card` | `{ cardId }` | Check card status and details |
+| `attesso_revoke_mandate` | `{ mandateId }` | Revoke a mandate |
-## Types
-```typescript
-import type {
-  MandateResponse,
-  PaymentResponse,
-  PassportToken,
-  CapturePaymentResponse,
-  CancelAuthorizationResponse,
-} from '@attesso/sdk';
-```
+When a `mandateId` is provided in the config, it is omitted from tool parameters automatically.
 ## Errors
@@ -133,7 +106,7 @@ import type {
 import { AttessoError, OriginNotAllowedError } from '@attesso/sdk';
 try {
-  await client.executePayment({ ... });
+  await client.issueCard('mandate_xyz', { amount: 50000 });
 } catch (e) {
   if (e instanceof AttessoError) {
     console.log(e.code); // MANDATE_NOT_FOUND, AMOUNT_EXCEEDS_LIMIT, etc.

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@attesso/sdk",
-  "version": "1.3.0",
-  "description": "TypeScript SDK for the Attesso API — create mandates, issue virtual cards, and manage payments for AI agents.",
+  "version": "1.3.2",
+  "description": "Attesso Node.js library. Financial execution primitives for autonomous systems.",
   "author": "Attesso",
   "license": "MIT",
   "repository": {
@@ -32,12 +32,6 @@
       "require": "./dist/vercel/index.js"
     }
   },
-  "scripts": {
-    "build": "tsc",
-    "dev": "tsc --watch",
-    "clean": "rm -rf dist",
-    "test": "vitest run"
-  },
   "keywords": [
     "attesso",
     "sdk",
@@ -48,7 +42,7 @@
     "vercel-ai-sdk"
   ],
   "dependencies": {
-    "@attesso/types": "workspace:*"
+    "@attesso/types": "1.2.2"
   },
   "peerDependencies": {
     "ai": ">=3.0.0",
@@ -67,5 +61,11 @@
     "typescript": "^5.7.0",
     "vitest": "^2.1.0",
     "zod": "^3.23.0"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "clean": "rm -rf dist",
+    "test": "vitest run"
   }
-}
+}