@cashfreepayments/agent-skills 0.0.1

package/dist/templates/secure-id.md

@@ -0,0 +1,215 @@
+---
+name: Cashfree Secure ID
+description: Use this to see Secure ID documentation and API references
+---
+
+# Cashfree Secure ID Integration
+
+```markdown
+# Cashfree Secure ID Integration Skills
+
+## Overview
+Cashfree Secure ID is a comprehensive identity verification and fraud prevention suite for the Indian market. It includes bank verification, PAN, GSTIN, Aadhaar, DigiLocker, Video KYC, and biometric verification.
+
+## API Endpoints
+- **Production**: https://api.cashfree.com/verification
+- **Sandbox**: https://sandbox.cashfree.com/verification
+
+## Authentication
+All API requests require headers:
+- `X-Client-Id`: Your client ID from Merchant Dashboard
+- `X-Client-Secret`: Your secret key from Merchant Dashboard
+- `X-Cf-Signature` (optional): Required if 2FA with public key is enabled
+
+## Backend Integration
+
+### 1. Bank Account Verification (Sync)
+POST /bank-account/sync
+```json
+{
+  "bank_account": "026291800001191",
+  "ifsc": "YESB0000262",
+  "name": "John Doe",
+  "phone": "9999999999"
+}
+```
+
+### 2. PAN Verification
+POST /pan
+```json
+{
+  "pan": "ABCPV1234D",
+  "name": "John Doe"
+}
+```
+
+### 3. GSTIN Verification
+POST /gstin
+```json
+{
+  "GSTIN": "29AAICP2912R1ZR",
+  "business_name": "Business Name"
+}
+```
+
+### 4. Name Match
+POST /name-match
+```json
+{
+  "verification_id": "ABC00123",
+  "name_1": "JOHN DOE",
+  "name_2": "JOHN DOE"
+}
+```
+
+### 5. Face Match
+POST /face-match (multipart/form-data)
+- verification_id: string
+- first_image: file
+- second_image: file
+- threshold: "0.75"
+
+### 6. Generate KYC Link
+POST /form
+```json
+{
+  "name": "John Doe",
+  "phone": "9999999999",
+  "email": "test@cashfree.com",
+  "template_name": "Aadhaar_verification",
+  "link_expiry": "2025-06-01",
+  "notification_types": ["sms"],
+  "verification_id": "ABC00123"
+}
+```
+
+## Webhook Configuration
+
+### Setup
+1. Log in to Merchant Dashboard > Developers > Webhooks (under Secure ID)
+2. Add publicly accessible HTTPS webhook URL
+3. Click "Test & Add Webhook"
+
+### Webhook Events
+- `KYC_LINK_ACTION_PERFORMED`: Verification performed via link
+- `KYC_LINK_SUCCESS`: All verifications completed
+- `KYC_LINK_EXPIRED`: Link expired
+- `RPD_BANK_ACCOUNT_VERIFICATION_SUCCESS/FAILURE/EXPIRED`: Reverse penny drop events
+- `E_SIGN_VERIFICATION_SUCCESS/FAILURE/EXPIRED`: E-sign events
+
+### Webhook Signature Verification (MANDATORY)
+Headers received:
+- `x-webhook-signature`: HMAC-SHA256 signature
+- `x-webhook-timestamp`: Unix timestamp
+
+Verification process:
+1. Concatenate: timestamp + rawBody
+2. Generate HMAC-SHA256 with client secret
+3. Base64 encode the hash
+4. Compare with x-webhook-signature
+
+### Node.js Signature Verification
+```javascript
+const crypto = require("crypto");
+
+function verifyWebhookSignature(req) {
+  const ts = req.headers["x-webhook-timestamp"];
+  const rawBody = req.rawBody; // Must use raw body, not parsed JSON
+  const secretKey = "<client-secret>";
+  const signStr = ts + rawBody;
+  const computed = crypto.createHmac("sha256", secretKey).update(signStr).digest("base64");
+  return computed === req.headers["x-webhook-signature"];
+}
+```
+
+### Python Signature Verification
+```python
+import base64, hashlib, hmac
+
+def verify_signature(request):
+    raw_body = request.data.decode('utf-8')
+    timestamp = request.headers['x-webhook-timestamp']
+    signature = request.headers['x-webhook-signature']
+    
+    sign_data = timestamp + raw_body
+    computed = base64.b64encode(
+        hmac.new(b"<client-secret>", sign_data.encode(), hashlib.sha256).digest()
+    ).decode()
+    return computed == signature
+```
+
+### IPs to Whitelist
+Sandbox: 52.66.25.127, 15.206.45.168
+Production: 52.66.101.190, 3.109.102.144, 18.60.134.245, 18.60.183.142
+Port: 443 (HTTPS)
+
+## Frontend Integration (DigiLocker React Native SDK)
+
+### Installation
+```bash
+npm install @cashfreepayments/react-native-digilocker
+# iOS: cd ios && pod install
+```
+
+### Setup
+```jsx
+import { DigiLockerProvider, useDigiLocker } from '@cashfreepayments/react-native-digilocker';
+
+function App() {
+  return (
+    <DigiLockerProvider>
+      {/* App content */}
+    </DigiLockerProvider>
+  );
+}
+
+// Usage
+const { verify } = useDigiLocker();
+verify(url, redirectUrl, {
+  userFlow: 'signin',
+  onSuccess: (data) => console.log(data),
+  onError: (error) => console.error(error),
+  onCancel: () => console.log('cancelled')
+});
+```
+
+## Test Data (Sandbox Only)
+- OTP for all requests: 111000
+- Valid PAN: ABCPV1234D, AZJPG7110R
+- Valid GSTIN: 29AAICP2912R1ZR
+- Valid Bank Account: 026291800001191 (IFSC: YESB0000262)
+- Valid Aadhaar: 655675523712
+
+## Error Handling
+All APIs return standard error structure:
+```json
+{
+  "code": "error_code",
+  "message": "Error description",
+  "type": "validation_error"
+}
+```
+
+Common HTTP status codes: 400 (validation), 401/403 (auth), 422 (unprocessable), 429 (rate limit), 500/502 (server)
+
+## Rate Limits
+- Standard APIs: 100 TPM
+- Medium APIs (PAN Sync, DigiLocker): 200 TPM
+- Bulk operations: 5 TPM
+
+## Best Practices
+1. Always verify webhook signatures before processing
+2. Use raw request body for signature verification
+3. Implement idempotency for webhook handlers (duplicates possible)
+4. Route API calls through backend to avoid CORS errors
+5. Store client secrets securely, never expose in frontend
+6. Use oldest active client secret for webhook signature verification
+```
+
+This skills file covers the key Secure ID APIs, webhook setup, signature verification in multiple languages, frontend SDK integration, and test data. For more details, see:
+
+```suggestions
+(Getting Started with Secure ID)[/api-reference/vrs/getting-started]
+(Webhook Signature Verification)[/api-reference/vrs/webhook-signature-verification]
+(Test Data for Integration)[/api-reference/vrs/data-to-test-integration]
+```

package/dist/templates/subscriptions.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Subscriptions skill template
+ */
+export declare function getSubscriptionsSkillTemplate(): string;
+//# sourceMappingURL=subscriptions.d.ts.map

package/dist/templates/subscriptions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"subscriptions.d.ts","sourceRoot":"","sources":["../../src/templates/subscriptions.ts"],"names":[],"mappings":"AAKA;;GAEG;AACH,wBAAgB,6BAA6B,IAAI,MAAM,CAGtD"}

package/dist/templates/subscriptions.js

@@ -0,0 +1,10 @@
+import * as fs from "fs";
+import * as path from "path";
+/**
+ * Subscriptions skill template
+ */
+export function getSubscriptionsSkillTemplate() {
+    const templatePath = path.join(__dirname, "subscriptions.md");
+    return fs.readFileSync(templatePath, "utf8");
+}
+//# sourceMappingURL=subscriptions.js.map

package/dist/templates/subscriptions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"subscriptions.js","sourceRoot":"","sources":["../../src/templates/subscriptions.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAI7B;;GAEG;AACH,MAAM,UAAU,6BAA6B;IACzC,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,kBAAkB,CAAC,CAAC;IAC9D,OAAO,EAAE,CAAC,YAAY,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;AACjD,CAAC"}

package/dist/templates/subscriptions.md

@@ -0,0 +1,193 @@
+---
+name: Cashfree Subscriptions
+description: Use this to see Subscriptions documentation and API references
+---
+
+# Cashfree Subscriptions Integration
+
+## Overview
+This skills file covers Cashfree Payments Subscriptions integration including backend APIs, frontend SDKs, and webhook handling for recurring payments.
+
+## Backend Integration
+
+### Step 1: Create a Plan
+```bash
+curl --request POST \
+  --url https://sandbox.cashfree.com/pg/plans \
+  --header 'accept: application/json' \
+  --header 'content-type: application/json' \
+  --header 'x-api-version: 2025-01-01' \
+  --header 'x-client-id: YOUR_CLIENT_ID' \
+  --header 'x-client-secret: YOUR_CLIENT_SECRET' \
+  --data '{
+    "plan_id": "plan_premium",
+    "plan_name": "Premium Plan",
+    "plan_type": "PERIODIC",
+    "plan_currency": "INR",
+    "plan_max_amount": 1000,
+    "plan_recurring_amount": 100,
+    "plan_intervals": 1,
+    "plan_interval_type": "MONTH"
+  }'
+```
+
+### Step 2: Create a Subscription
+```bash
+curl --request POST \
+  --url https://sandbox.cashfree.com/pg/subscriptions \
+  --header 'accept: application/json' \
+  --header 'content-type: application/json' \
+  --header 'x-api-version: 2025-01-01' \
+  --header 'x-client-id: YOUR_CLIENT_ID' \
+  --header 'x-client-secret: YOUR_CLIENT_SECRET' \
+  --data '{
+    "subscription_id": "sub_unique_id",
+    "customer_details": {
+      "customer_name": "John Doe",
+      "customer_email": "john@example.com",
+      "customer_phone": "9999999999"
+    },
+    "plan_details": {
+      "plan_id": "plan_premium"
+    },
+    "authorization_details": {
+      "authorization_amount": 1,
+      "authorization_amount_refund": true
+    },
+    "subscription_meta": {
+      "return_url": "https://yoursite.com/return",
+      "notification_channel": ["EMAIL", "SMS"]
+    },
+    "subscription_expiry_time": "2028-12-24T14:15:22Z"
+  }'
+```
+
+### Step 3: Get Subscription Status
+```bash
+curl --request GET \
+  --url https://sandbox.cashfree.com/pg/subscriptions/{subscription_id} \
+  --header 'x-api-version: 2025-01-01' \
+  --header 'x-client-id: YOUR_CLIENT_ID' \
+  --header 'x-client-secret: YOUR_CLIENT_SECRET'
+```
+
+### Step 4: Raise a Charge
+```bash
+curl --request POST \
+  --url https://sandbox.cashfree.com/pg/subscriptions/pay \
+  --header 'accept: application/json' \
+  --header 'content-type: application/json' \
+  --header 'x-api-version: 2025-01-01' \
+  --header 'x-client-id: YOUR_CLIENT_ID' \
+  --header 'x-client-secret: YOUR_CLIENT_SECRET' \
+  --data '{
+    "subscription_id": "sub_unique_id",
+    "payment_id": "payment_001",
+    "payment_type": "CHARGE",
+    "payment_amount": 100,
+    "payment_schedule_date": "2024-11-30T14:15:22Z"
+  }'
+```
+
+## Frontend Integration (JavaScript)
+
+### Initiate Subscription Checkout
+```javascript
+const cashfree = Cashfree({
+  mode: "sandbox" // or "production"
+});
+
+document.getElementById("payButton").addEventListener("click", function() {
+  cashfree.subscriptionsCheckout({
+    subsSessionId: "subscription_session_id_from_backend",
+    redirectTarget: "_blank"
+  }).then(function(result) {
+    if (result.error) {
+      console.error(result.error.message);
+    }
+  });
+});
+```
+
+## Webhook Handling
+
+### Webhook Events
+- `SUBSCRIPTION_STATUS_CHANGE` - Subscription status updates (ACTIVE, ON_HOLD, COMPLETED, etc.)
+- `SUBSCRIPTION_AUTH_STATUS` - Authorization completion (success/failed)
+- `SUBSCRIPTION_PAYMENT_SUCCESS` - Successful recurring payment
+- `SUBSCRIPTION_PAYMENT_FAILED` - Failed payment
+- `SUBSCRIPTION_PAYMENT_CANCELLED` - Cancelled payment
+- `SUBSCRIPTION_REFUND_STATUS` - Refund status updates
+
+### Sample Webhook Payload (SUBSCRIPTION_PAYMENT_SUCCESS)
+```json
+{
+  "data": {
+    "payment_id": "12345",
+    "cf_payment_id": "67890",
+    "subscription_id": "sub12345",
+    "cf_subscription_id": "sub67890",
+    "payment_amount": 200,
+    "payment_status": "SUCCESS",
+    "authorization_details": {
+      "authorization_status": "ACTIVE",
+      "payment_method": "upi"
+    }
+  },
+  "event_time": "2024-07-20T11:16:10+05:30",
+  "type": "SUBSCRIPTION_PAYMENT_SUCCESS"
+}
+```
+
+### Webhook Signature Verification
+```javascript
+const crypto = require('crypto');
+
+function verifyWebhookSignature(timestamp, rawBody, signature, secretKey) {
+  const signedPayload = timestamp + rawBody;
+  const expectedSignature = crypto
+    .createHmac('sha256', secretKey)
+    .update(signedPayload)
+    .digest('base64');
+  
+  return expectedSignature === signature;
+}
+
+// Usage in Express.js
+app.post('/webhook', express.raw({type: 'application/json'}), (req, res) => {
+  const timestamp = req.headers['x-webhook-timestamp'];
+  const signature = req.headers['x-webhook-signature'];
+  
+  if (verifyWebhookSignature(timestamp, req.body.toString(), signature, CLIENT_SECRET)) {
+    const event = JSON.parse(req.body);
+    // Process webhook based on event.type
+    res.status(200).send('OK');
+  } else {
+    res.status(401).send('Invalid signature');
+  }
+});
+```
+
+## Subscription Lifecycle States
+- **INITIALISED** - Created, awaiting customer authorisation
+- **BANK_APPROVAL_PENDING** - Customer authorised, bank confirmation pending
+- **ACTIVE** - Ready for payment collection
+- **ON_HOLD** - Paused due to failed payment
+- **PAUSED** - Merchant paused the subscription
+- **COMPLETED** - Subscription cycle completed
+- **CANCELLED** - Merchant cancelled
+- **CUSTOMER_CANCELLED** - Customer cancelled at bank
+
+## Environment URLs
+- **Sandbox**: `https://sandbox.cashfree.com`
+- **Production**: `https://api.cashfree.com`
+
+---
+
+This covers the complete integration flow from the [Cashfree Hosted Checkout](/payments/subscription/hosted-checkout), [Subscription Webhooks](/api-reference/payments/previous/v2023-08-01/subscription/webhooks), and [Create Subscription](/payments/subscription/create) documentation pages.
+
+```suggestions
+(Subscription Introduction)[/payments/subscription/introduction]
+(Cashfree Hosted Checkout)[/payments/subscription/hosted-checkout]
+(Subscription Webhooks)[/api-reference/payments/previous/v2023-08-01/subscription/webhooks]
+```

package/package.json

@@ -0,0 +1,49 @@
+{
+    "name": "@cashfreepayments/agent-skills",
+    "version": "0.0.1",
+    "description": "CLI tool to add Cashfree MCP configurations to AI coding assistants",
+    "type": "module",
+    "main": "dist/index.js",
+    "bin": {
+        "cashfree": "./bin/cashfree.js"
+    },
+    "scripts": {
+        "build": "tsc && npm run copy-templates",
+        "copy-templates": "node -e \"require('fs-extra').copySync('src/templates', 'dist/templates', { filter: (src) => src.endsWith('.md') || src === 'src/templates' })\"",
+        "dev": "tsc -w",
+        "test": "vitest",
+        "prepublishOnly": "npm run build"
+    },
+    "keywords": [
+        "cashfree",
+        "mcp",
+        "model-context-protocol",
+        "cli",
+        "cursor",
+        "claude-code",
+        "copilot",
+        "ai-coding"
+    ],
+    "author": "Cashfree Payments",
+    "license": "MIT",
+    "dependencies": {
+        "chalk": "^5.3.0",
+        "commander": "^12.1.0",
+        "fs-extra": "^11.2.0",
+        "inquirer": "^9.2.15"
+    },
+    "devDependencies": {
+        "@types/fs-extra": "^11.0.4",
+        "@types/inquirer": "^9.0.7",
+        "@types/node": "^20.11.0",
+        "typescript": "^5.3.3",
+        "vitest": "^1.2.0"
+    },
+    "engines": {
+        "node": ">=18.0.0"
+    },
+    "files": [
+        "dist",
+        "bin"
+    ]
+}