@mixrpay/agent-sdk 0.8.9 → 0.9.2

package/README.md

@@ -107,6 +107,9 @@ await wallet.fetch(url, options);
 // Get wallet balance
 const balance = await wallet.getBalance();
 
+// Execute on-chain transactions (bridges, swaps, DeFi) from human's wallet
+await wallet.executeTransaction({ to, data, estimatedCostUsd });
+
 // Pre-flight balance check
 const check = await wallet.canAfford(0.50);
 if (check.canAfford) { /* proceed */ }
@@ -116,6 +119,20 @@ const diag = await wallet.runDiagnostics();
 console.log(diag.recommendations);
 ```
 
+## Execute On-Chain Transactions
+
+Agents can execute DeFi transactions (bridges, swaps) from the human's wallet, bounded by session key budget:
+
+```typescript
+const result = await wallet.executeTransaction({
+  to: '0x...contractAddress',
+  data: '0x...calldata',
+  estimatedCostUsd: 25.0,
+  description: 'Bridge USDC via deBridge',
+});
+console.log(`TX: ${result.txHash}`);
+```
+
 ## Configuration
 
 ```typescript

package/dist/index.cjs

@@ -1,46 +1,8 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+'use strict';
 
-// src/index.ts
-var index_exports = {};
-__export(index_exports, {
-  AgentWallet: () => AgentWallet,
-  InsufficientBalanceError: () => InsufficientBalanceError,
-  InvalidSessionKeyError: () => InvalidSessionKeyError,
-  MerchantNotAllowedError: () => MerchantNotAllowedError,
-  MixrPayError: () => MixrPayError,
-  PaymentFailedError: () => PaymentFailedError,
-  SDK_VERSION: () => SDK_VERSION,
-  SessionExpiredError: () => SessionExpiredError,
-  SessionKeyExpiredError: () => SessionKeyExpiredError,
-  SessionLimitExceededError: () => SessionLimitExceededError,
-  SessionNotFoundError: () => SessionNotFoundError,
-  SessionRevokedError: () => SessionRevokedError,
-  SpendingLimitExceededError: () => SpendingLimitExceededError,
-  X402ProtocolError: () => X402ProtocolError,
-  getErrorMessage: () => getErrorMessage,
-  isMixrPayError: () => isMixrPayError
-});
-module.exports = __toCommonJS(index_exports);
+var accounts = require('viem/accounts');
 
 // src/session-key.ts
-var import_accounts = require("viem/accounts");
 
 // src/errors.ts
 var MixrPayError = class extends Error {
@@ -324,7 +286,7 @@ var SessionKey = class _SessionKey {
   isTest;
   constructor(privateKey, isTest) {
     this.privateKey = privateKey;
-    this.account = (0, import_accounts.privateKeyToAccount)(privateKey);
+    this.account = accounts.privateKeyToAccount(privateKey);
     this.address = this.account.address;
     this.isTest = isTest;
   }
@@ -374,7 +336,7 @@ var SessionKey = class _SessionKey {
    * @returns Hex-encoded signature
    */
   async signTransferAuthorization(domain, message) {
-    return (0, import_accounts.signTypedData)({
+    return accounts.signTypedData({
       privateKey: this.privateKey,
       domain,
       types: TRANSFER_WITH_AUTHORIZATION_TYPES,
@@ -389,7 +351,7 @@ var SessionKey = class _SessionKey {
    * @returns Hex-encoded signature
    */
   async signMessage(message) {
-    return (0, import_accounts.signMessage)({
+    return accounts.signMessage({
       privateKey: this.privateKey,
       message
     });
@@ -440,9 +402,6 @@ async function createSessionAuthPayload(sessionKey) {
   };
 }
 
-// src/agent-wallet.ts
-var import_accounts2 = require("viem/accounts");
-
 // src/x402.ts
 async function parse402Response(response) {
   let paymentData = null;
@@ -804,7 +763,7 @@ var AgentWallet = class {
   /**
    * Register a new agent with MixrPay.
    * 
-   * This creates a Privy-managed embedded wallet for the agent's payments.
+   * This creates a platform-managed embedded wallet for the agent's payments.
    * The agent proves ownership of their external wallet by signing a challenge.
    * 
    * @param options - Registration options including the private key
@@ -824,7 +783,7 @@ var AgentWallet = class {
   static async register(options) {
     const { privateKey, name } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = (0, import_accounts2.privateKeyToAccount)(privateKey);
+    const account = accounts.privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=register`
@@ -834,7 +793,7 @@ var AgentWallet = class {
       throw new MixrPayError(error.error || `Failed to get challenge: ${challengeResponse.status}`);
     }
     const { challenge, message } = await challengeResponse.json();
-    const signature = await (0, import_accounts2.signMessage)({ message, privateKey });
+    const signature = await accounts.signMessage({ message, privateKey });
     const registerResponse = await fetch(`${baseUrl}/api/v1/agent/register`, {
       method: "POST",
       headers: { "Content-Type": "application/json" },
@@ -892,7 +851,7 @@ var AgentWallet = class {
           healthy: false,
           database: "unknown",
           agentRegistrationAvailable: false,
-          privyConfigured: false,
+          walletServiceConfigured: false,
           error: `Health check failed with status ${response.status}`
         };
       }
@@ -901,14 +860,14 @@ var AgentWallet = class {
         healthy: data.status === "ready",
         database: data.database || "unknown",
         agentRegistrationAvailable: data.services?.agentRegistration?.available ?? false,
-        privyConfigured: data.services?.privy?.configured ?? false
+        walletServiceConfigured: data.services?.wallet?.configured ?? data.services?.privy?.configured ?? false
       };
     } catch (error) {
       return {
         healthy: false,
         database: "unreachable",
         agentRegistrationAvailable: false,
-        privyConfigured: false,
+        walletServiceConfigured: false,
         error: error instanceof Error ? error.message : "Failed to reach server"
       };
     }
@@ -941,7 +900,7 @@ var AgentWallet = class {
   static async getSessionKey(options) {
     const { privateKey, spendingLimitUsd, maxPerTxUsd, maxDailyUsd, durationDays } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = (0, import_accounts2.privateKeyToAccount)(privateKey);
+    const account = accounts.privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=session-key`
@@ -951,7 +910,7 @@ var AgentWallet = class {
       throw new MixrPayError(error.error || `Failed to get challenge: ${challengeResponse.status}`);
     }
     const { challenge, message } = await challengeResponse.json();
-    const signature = await (0, import_accounts2.signMessage)({ message, privateKey });
+    const signature = await accounts.signMessage({ message, privateKey });
     const sessionKeyResponse = await fetch(`${baseUrl}/api/v1/agent/session-key`, {
       method: "POST",
       headers: { "Content-Type": "application/json" },
@@ -1004,7 +963,7 @@ var AgentWallet = class {
   static async getStatus(options) {
     const { privateKey } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = (0, import_accounts2.privateKeyToAccount)(privateKey);
+    const account = accounts.privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=status`
@@ -1014,7 +973,7 @@ var AgentWallet = class {
       throw new MixrPayError(error.error || `Failed to get challenge: ${challengeResponse.status}`);
     }
     const { challenge, message } = await challengeResponse.json();
-    const signature = await (0, import_accounts2.signMessage)({ message, privateKey });
+    const signature = await accounts.signMessage({ message, privateKey });
     const statusResponse = await fetch(
       `${baseUrl}/api/v1/agent/status?challenge=${challenge}&external_wallet=${walletAddress}&signature=${encodeURIComponent(signature)}`
     );
@@ -1060,7 +1019,7 @@ var AgentWallet = class {
   static async revokeSessionKey(options) {
     const { privateKey, sessionKeyId } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = (0, import_accounts2.privateKeyToAccount)(privateKey);
+    const account = accounts.privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=revoke`
@@ -1070,7 +1029,7 @@ var AgentWallet = class {
       throw new MixrPayError(error.error || `Failed to get challenge: ${challengeResponse.status}`);
     }
     const { challenge, message } = await challengeResponse.json();
-    const signature = await (0, import_accounts2.signMessage)({ message, privateKey });
+    const signature = await accounts.signMessage({ message, privateKey });
     const revokeResponse = await fetch(`${baseUrl}/api/v1/agent/session-key/revoke`, {
       method: "POST",
       headers: { "Content-Type": "application/json" },
@@ -1114,7 +1073,7 @@ var AgentWallet = class {
   static async withdraw(options) {
     const { privateKey, amountUsd } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = (0, import_accounts2.privateKeyToAccount)(privateKey);
+    const account = accounts.privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=withdraw`
@@ -1124,7 +1083,7 @@ var AgentWallet = class {
       throw new MixrPayError(error.error || `Failed to get challenge: ${challengeResponse.status}`);
     }
     const { challenge, message } = await challengeResponse.json();
-    const signature = await (0, import_accounts2.signMessage)({ message, privateKey });
+    const signature = await accounts.signMessage({ message, privateKey });
     const withdrawResponse = await fetch(`${baseUrl}/api/v1/agent/withdraw`, {
       method: "POST",
       headers: { "Content-Type": "application/json" },
@@ -1180,7 +1139,7 @@ var AgentWallet = class {
   static async claimInvite(options) {
     const { inviteCode, privateKey } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = (0, import_accounts2.privateKeyToAccount)(privateKey);
+    const account = accounts.privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=claim-invite`
@@ -1190,7 +1149,7 @@ var AgentWallet = class {
       throw new MixrPayError(error.error || `Failed to get challenge: ${challengeResponse.status}`);
     }
     const { challenge, message } = await challengeResponse.json();
-    const signature = await (0, import_accounts2.signMessage)({ message, privateKey });
+    const signature = await accounts.signMessage({ message, privateKey });
     const claimResponse = await fetch(`${baseUrl}/api/v1/agent/claim-invite`, {
       method: "POST",
       headers: { "Content-Type": "application/json" },
@@ -1240,7 +1199,7 @@ var AgentWallet = class {
    * Spawn a child invite for sub-agents.
    * 
    * Allows an agent to create an invite code for a sub-agent with a portion
-   * of their remaining budget (max 20%). The child inherits merchant restrictions
+   * of their remaining budget. The child inherits merchant restrictions
    * and cannot outlive the parent session.
    * 
    * @param options - Spawn options
@@ -1254,7 +1213,7 @@ var AgentWallet = class {
    * 
    * // Spawn a child invite for a sub-agent
    * const childInvite = await wallet.spawnChildInvite({
-   *   budgetUsd: 10.00,  // Max 20% of available budget
+   *   budgetUsd: 10.00,
    *   name: 'Research Sub-Agent',
    *   allowedMerchants: ['firecrawl.dev'],  // Must be subset of parent
    *   expiresInDays: 7,  // Will be capped to parent's expiry
@@ -1269,7 +1228,7 @@ var AgentWallet = class {
     const timestamp = Date.now();
     const nonce = crypto.randomUUID();
     const message = `spawn:${timestamp}:${nonce}`;
-    const signature = await (0, import_accounts2.signMessage)({
+    const signature = await accounts.signMessage({
       message,
       privateKey: this.sessionKey.rawPrivateKey
     });
@@ -1310,8 +1269,7 @@ var AgentWallet = class {
   /**
    * Get available budget information for spawning.
    * 
-   * Returns the current budget status including how much can be spawned
-   * to child agents (20% of available).
+   * Returns the current budget status including spawn availability.
    * 
    * @returns Budget information
    * 
@@ -1971,8 +1929,8 @@ var AgentWallet = class {
    * ```typescript
    * const session = await wallet.getOrCreateSession({
    *   merchantPublicKey: 'pk_live_abc123...',
-   *   spendingLimitUsd: 25.00,
-   *   durationDays: 7,
+   *   spendingLimitUsd: 100,
+   *   durationDays: 30,
    * });
    * 
    * console.log(`Session active: $${session.remainingLimitUsd} remaining`);
@@ -1980,7 +1938,7 @@ var AgentWallet = class {
    */
   async getOrCreateSession(options) {
     this.logger.debug("getOrCreateSession called", options);
-    const { merchantPublicKey, spendingLimitUsd = 25, durationDays = 7 } = options;
+    const { merchantPublicKey, spendingLimitUsd, durationDays } = options;
     try {
       const existingSession = await this.getSessionByMerchant(merchantPublicKey);
       if (existingSession && existingSession.status === "active") {
@@ -2294,10 +2252,7 @@ var AgentWallet = class {
       throw new SpendingLimitExceededError("client_max", this.maxPaymentUsd, priceUsd);
     }
     const session = await this.getOrCreateSession({
-      merchantPublicKey,
-      spendingLimitUsd: 25,
-      // Default limit
-      durationDays: 7
+      merchantPublicKey
     });
     const headers = {
       "Content-Type": "application/json",
@@ -2342,9 +2297,7 @@ var AgentWallet = class {
       if (errorCode === "session_expired") {
         this.logger.info("Session expired, creating new one...");
         const newSession = await this.getOrCreateSession({
-          merchantPublicKey,
-          spendingLimitUsd: 25,
-          durationDays: 7
+          merchantPublicKey
         });
         headers["X-Mixr-Session"] = newSession.id;
         return fetch(url, {
@@ -2723,6 +2676,75 @@ Timestamp: ${timestamp}`;
     return this.parseJitInstance(data.instance);
   }
   // ===========================================================================
+  // Transaction Execution
+  // ===========================================================================
+  /**
+   * Execute an on-chain transaction from the human's wallet.
+   * 
+   * Submits arbitrary calldata to any contract, bounded by the session key's
+   * budget limits (max_total, max_per_tx, max_daily). The platform validates
+   * the budget, executes the transaction, and records a charge.
+   * 
+   * @param params - Transaction parameters
+   * @returns Transaction result with hash and remaining budget
+   * @throws {MixrPayError} If budget exceeded, tx reverted, or auth fails
+   * 
+   * @example
+   * ```typescript
+   * // Bridge USDC via deBridge
+   * const quote = await deBridgeMcp.create_tx({ ... });
+   * const result = await wallet.executeTransaction({
+   *   to: quote.contractAddress,
+   *   data: quote.calldata,
+   *   estimatedCostUsd: 25.0,
+   *   description: 'Bridge 25 USDC Base -> Avalanche via deBridge',
+   * });
+   * console.log('TX:', result.txHash);
+   * console.log('Budget remaining:', result.remainingBudgetUsd);
+   * ```
+   */
+  async executeTransaction(params) {
+    this.logger.debug("executeTransaction", { to: params.to, estimatedCostUsd: params.estimatedCostUsd });
+    const authHeaders = await this.getSessionAuthHeaders();
+    const response = await fetch(`${this.baseUrl}/api/v2/tx/execute`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        ...authHeaders
+      },
+      body: JSON.stringify({
+        to: params.to,
+        data: params.data,
+        value: params.value?.toString() ?? "0",
+        chain_id: params.chainId,
+        estimated_cost_usd: params.estimatedCostUsd,
+        description: params.description,
+        idempotency_key: params.idempotencyKey
+      })
+    });
+    const result = await response.json().catch(() => ({}));
+    if (!response.ok) {
+      const errorCode = result.error_code || "TX_FAILED";
+      const errorMessage = result.error || `Transaction execution failed: ${response.status}`;
+      if (errorCode === "BUDGET_EXCEEDED") {
+        throw new MixrPayError(errorMessage, "SPENDING_LIMIT_EXCEEDED");
+      }
+      throw new MixrPayError(errorMessage, errorCode);
+    }
+    this.logger.info("Transaction executed", {
+      txHash: result.tx_hash,
+      estimatedCostUsd: params.estimatedCostUsd,
+      remainingBudgetUsd: result.remaining_budget_usd
+    });
+    return {
+      success: true,
+      txHash: result.tx_hash,
+      chargeId: result.charge_id,
+      estimatedCostUsd: result.estimated_cost_usd,
+      remainingBudgetUsd: result.remaining_budget_usd
+    };
+  }
+  // ===========================================================================
   // Skills Methods
   // ===========================================================================
   /**
@@ -2861,7 +2883,7 @@ Timestamp: ${timestamp}`;
       );
     }
     const data = await response.json();
-    const connectedAppNames = (data.connections || []).filter((c) => c.status === "connected").map((c) => c.app);
+    const connectedAppNames = (data.connections || []).filter((c) => c.status === "connected").map((c) => c.app.toLowerCase());
     return {
       connected: connectedAppNames,
       connections: data.connections || [],
@@ -4604,11 +4626,11 @@ Timestamp: ${timestamp}`;
       ...init.headers
     };
     if (this.sessionKey) {
-      const account = (0, import_accounts2.privateKeyToAccount)(this.sessionKey.rawPrivateKey);
+      const account = accounts.privateKeyToAccount(this.sessionKey.rawPrivateKey);
       const address = account.address.toLowerCase();
       const timestamp = Date.now();
       const message = `MixrPay:${timestamp}:${address}`;
-      const signature = await (0, import_accounts2.signMessage)({
+      const signature = await accounts.signMessage({
         message,
         privateKey: this.sessionKey.rawPrivateKey
       });
@@ -4624,22 +4646,20 @@ Timestamp: ${timestamp}`;
     });
   }
 };
-// Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  AgentWallet,
-  InsufficientBalanceError,
-  InvalidSessionKeyError,
-  MerchantNotAllowedError,
-  MixrPayError,
-  PaymentFailedError,
-  SDK_VERSION,
-  SessionExpiredError,
-  SessionKeyExpiredError,
-  SessionLimitExceededError,
-  SessionNotFoundError,
-  SessionRevokedError,
-  SpendingLimitExceededError,
-  X402ProtocolError,
-  getErrorMessage,
-  isMixrPayError
-});
+
+exports.AgentWallet = AgentWallet;
+exports.InsufficientBalanceError = InsufficientBalanceError;
+exports.InvalidSessionKeyError = InvalidSessionKeyError;
+exports.MerchantNotAllowedError = MerchantNotAllowedError;
+exports.MixrPayError = MixrPayError;
+exports.PaymentFailedError = PaymentFailedError;
+exports.SDK_VERSION = SDK_VERSION;
+exports.SessionExpiredError = SessionExpiredError;
+exports.SessionKeyExpiredError = SessionKeyExpiredError;
+exports.SessionLimitExceededError = SessionLimitExceededError;
+exports.SessionNotFoundError = SessionNotFoundError;
+exports.SessionRevokedError = SessionRevokedError;
+exports.SpendingLimitExceededError = SpendingLimitExceededError;
+exports.X402ProtocolError = X402ProtocolError;
+exports.getErrorMessage = getErrorMessage;
+exports.isMixrPayError = isMixrPayError;

package/dist/index.d.cts

@@ -233,12 +233,12 @@ interface CreateSessionOptions {
     merchantPublicKey: string;
     /**
      * Maximum spending limit for this session in USD.
-     * @default 25.00
+     * If omitted, the server applies its own default.
      */
     spendingLimitUsd?: number;
     /**
      * Number of days this session should be valid.
-     * @default 7
+     * If omitted, the server applies its own default.
      */
     durationDays?: number;
 }
@@ -557,7 +557,7 @@ interface AgentClaimInviteResult {
  * Options for spawning a child invite
  */
 interface SpawnChildOptions {
-    /** Budget in USD for the child (max 20% of available) */
+    /** Budget in USD for the child (subject to platform limits) */
     budgetUsd: number;
     /** Name for the child invite */
     name: string;
@@ -574,13 +574,13 @@ interface SpawnChildResult {
     inviteCode: string;
     /** Database ID of the invite */
     inviteId: string;
-    /** Actual budget (may be less than requested due to 20% cap) */
+    /** Actual budget (may be less than requested due to platform limits) */
     budgetUsd: number;
     /** When the invite expires */
     expiresAt: Date;
     /** Depth in hierarchy (1 = child, 2 = grandchild, etc.) */
     depth: number;
-    /** How much this child can spawn (20% of their budget) */
+    /** How much this child can spawn */
     maxSpawnBudget: number;
     /** Allowed merchants for this child */
     allowedMerchants: string[];
@@ -597,9 +597,9 @@ interface AvailableBudget {
     allocatedToChildren: number;
     /** Available for spending or spawning */
     available: number;
-    /** Maximum budget for next spawn (20% of available) */
+    /** Maximum budget for next spawn */
     maxSpawnBudget: number;
-    /** Whether spawning is allowed (depth < 10, can_spawn, available > 0) */
+    /** Whether spawning is allowed */
     canSpawn: boolean;
 }
 /**
@@ -748,7 +748,7 @@ declare class AgentWallet {
     /**
      * Register a new agent with MixrPay.
      *
-     * This creates a Privy-managed embedded wallet for the agent's payments.
+     * This creates a platform-managed embedded wallet for the agent's payments.
      * The agent proves ownership of their external wallet by signing a challenge.
      *
      * @param options - Registration options including the private key
@@ -786,7 +786,7 @@ declare class AgentWallet {
         healthy: boolean;
         database: string;
         agentRegistrationAvailable: boolean;
-        privyConfigured: boolean;
+        walletServiceConfigured: boolean;
         error?: string;
     }>;
     /**
@@ -916,7 +916,7 @@ declare class AgentWallet {
      * Spawn a child invite for sub-agents.
      *
      * Allows an agent to create an invite code for a sub-agent with a portion
-     * of their remaining budget (max 20%). The child inherits merchant restrictions
+     * of their remaining budget. The child inherits merchant restrictions
      * and cannot outlive the parent session.
      *
      * @param options - Spawn options
@@ -930,7 +930,7 @@ declare class AgentWallet {
      *
      * // Spawn a child invite for a sub-agent
      * const childInvite = await wallet.spawnChildInvite({
-     *   budgetUsd: 10.00,  // Max 20% of available budget
+     *   budgetUsd: 10.00,
      *   name: 'Research Sub-Agent',
      *   allowedMerchants: ['firecrawl.dev'],  // Must be subset of parent
      *   expiresInDays: 7,  // Will be capped to parent's expiry
@@ -944,8 +944,7 @@ declare class AgentWallet {
     /**
      * Get available budget information for spawning.
      *
-     * Returns the current budget status including how much can be spawned
-     * to child agents (20% of available).
+     * Returns the current budget status including spawn availability.
      *
      * @returns Budget information
      *
@@ -1202,8 +1201,8 @@ declare class AgentWallet {
      * ```typescript
      * const session = await wallet.getOrCreateSession({
      *   merchantPublicKey: 'pk_live_abc123...',
-     *   spendingLimitUsd: 25.00,
-     *   durationDays: 7,
+     *   spendingLimitUsd: 100,
+     *   durationDays: 30,
      * });
      *
      * console.log(`Session active: $${session.remainingLimitUsd} remaining`);
@@ -1459,6 +1458,46 @@ declare class AgentWallet {
      * ```
      */
     getJitInstance(instanceId: string): Promise<JitInstance>;
+    /**
+     * Execute an on-chain transaction from the human's wallet.
+     *
+     * Submits arbitrary calldata to any contract, bounded by the session key's
+     * budget limits (max_total, max_per_tx, max_daily). The platform validates
+     * the budget, executes the transaction, and records a charge.
+     *
+     * @param params - Transaction parameters
+     * @returns Transaction result with hash and remaining budget
+     * @throws {MixrPayError} If budget exceeded, tx reverted, or auth fails
+     *
+     * @example
+     * ```typescript
+     * // Bridge USDC via deBridge
+     * const quote = await deBridgeMcp.create_tx({ ... });
+     * const result = await wallet.executeTransaction({
+     *   to: quote.contractAddress,
+     *   data: quote.calldata,
+     *   estimatedCostUsd: 25.0,
+     *   description: 'Bridge 25 USDC Base -> Avalanche via deBridge',
+     * });
+     * console.log('TX:', result.txHash);
+     * console.log('Budget remaining:', result.remainingBudgetUsd);
+     * ```
+     */
+    executeTransaction(params: {
+        to: `0x${string}`;
+        data: `0x${string}`;
+        value?: bigint;
+        chainId?: number;
+        estimatedCostUsd: number;
+        description?: string;
+        idempotencyKey?: string;
+    }): Promise<{
+        success: boolean;
+        txHash: string;
+        chargeId: string;
+        estimatedCostUsd: number;
+        remainingBudgetUsd: number | null;
+    }>;
     /**
      * Use a configured skill by deploying a JIT MCP server with your saved API keys.
      *

package/dist/index.d.ts

@@ -233,12 +233,12 @@ interface CreateSessionOptions {
     merchantPublicKey: string;
     /**
      * Maximum spending limit for this session in USD.
-     * @default 25.00
+     * If omitted, the server applies its own default.
      */
     spendingLimitUsd?: number;
     /**
      * Number of days this session should be valid.
-     * @default 7
+     * If omitted, the server applies its own default.
      */
     durationDays?: number;
 }
@@ -557,7 +557,7 @@ interface AgentClaimInviteResult {
  * Options for spawning a child invite
  */
 interface SpawnChildOptions {
-    /** Budget in USD for the child (max 20% of available) */
+    /** Budget in USD for the child (subject to platform limits) */
     budgetUsd: number;
     /** Name for the child invite */
     name: string;
@@ -574,13 +574,13 @@ interface SpawnChildResult {
     inviteCode: string;
     /** Database ID of the invite */
     inviteId: string;
-    /** Actual budget (may be less than requested due to 20% cap) */
+    /** Actual budget (may be less than requested due to platform limits) */
     budgetUsd: number;
     /** When the invite expires */
     expiresAt: Date;
     /** Depth in hierarchy (1 = child, 2 = grandchild, etc.) */
     depth: number;
-    /** How much this child can spawn (20% of their budget) */
+    /** How much this child can spawn */
     maxSpawnBudget: number;
     /** Allowed merchants for this child */
     allowedMerchants: string[];
@@ -597,9 +597,9 @@ interface AvailableBudget {
     allocatedToChildren: number;
     /** Available for spending or spawning */
     available: number;
-    /** Maximum budget for next spawn (20% of available) */
+    /** Maximum budget for next spawn */
     maxSpawnBudget: number;
-    /** Whether spawning is allowed (depth < 10, can_spawn, available > 0) */
+    /** Whether spawning is allowed */
     canSpawn: boolean;
 }
 /**
@@ -748,7 +748,7 @@ declare class AgentWallet {
     /**
      * Register a new agent with MixrPay.
      *
-     * This creates a Privy-managed embedded wallet for the agent's payments.
+     * This creates a platform-managed embedded wallet for the agent's payments.
      * The agent proves ownership of their external wallet by signing a challenge.
      *
      * @param options - Registration options including the private key
@@ -786,7 +786,7 @@ declare class AgentWallet {
         healthy: boolean;
         database: string;
         agentRegistrationAvailable: boolean;
-        privyConfigured: boolean;
+        walletServiceConfigured: boolean;
         error?: string;
     }>;
     /**
@@ -916,7 +916,7 @@ declare class AgentWallet {
      * Spawn a child invite for sub-agents.
      *
      * Allows an agent to create an invite code for a sub-agent with a portion
-     * of their remaining budget (max 20%). The child inherits merchant restrictions
+     * of their remaining budget. The child inherits merchant restrictions
      * and cannot outlive the parent session.
      *
      * @param options - Spawn options
@@ -930,7 +930,7 @@ declare class AgentWallet {
      *
      * // Spawn a child invite for a sub-agent
      * const childInvite = await wallet.spawnChildInvite({
-     *   budgetUsd: 10.00,  // Max 20% of available budget
+     *   budgetUsd: 10.00,
      *   name: 'Research Sub-Agent',
      *   allowedMerchants: ['firecrawl.dev'],  // Must be subset of parent
      *   expiresInDays: 7,  // Will be capped to parent's expiry
@@ -944,8 +944,7 @@ declare class AgentWallet {
     /**
      * Get available budget information for spawning.
      *
-     * Returns the current budget status including how much can be spawned
-     * to child agents (20% of available).
+     * Returns the current budget status including spawn availability.
      *
      * @returns Budget information
      *
@@ -1202,8 +1201,8 @@ declare class AgentWallet {
      * ```typescript
      * const session = await wallet.getOrCreateSession({
      *   merchantPublicKey: 'pk_live_abc123...',
-     *   spendingLimitUsd: 25.00,
-     *   durationDays: 7,
+     *   spendingLimitUsd: 100,
+     *   durationDays: 30,
      * });
      *
      * console.log(`Session active: $${session.remainingLimitUsd} remaining`);
@@ -1459,6 +1458,46 @@ declare class AgentWallet {
      * ```
      */
     getJitInstance(instanceId: string): Promise<JitInstance>;
+    /**
+     * Execute an on-chain transaction from the human's wallet.
+     *
+     * Submits arbitrary calldata to any contract, bounded by the session key's
+     * budget limits (max_total, max_per_tx, max_daily). The platform validates
+     * the budget, executes the transaction, and records a charge.
+     *
+     * @param params - Transaction parameters
+     * @returns Transaction result with hash and remaining budget
+     * @throws {MixrPayError} If budget exceeded, tx reverted, or auth fails
+     *
+     * @example
+     * ```typescript
+     * // Bridge USDC via deBridge
+     * const quote = await deBridgeMcp.create_tx({ ... });
+     * const result = await wallet.executeTransaction({
+     *   to: quote.contractAddress,
+     *   data: quote.calldata,
+     *   estimatedCostUsd: 25.0,
+     *   description: 'Bridge 25 USDC Base -> Avalanche via deBridge',
+     * });
+     * console.log('TX:', result.txHash);
+     * console.log('Budget remaining:', result.remainingBudgetUsd);
+     * ```
+     */
+    executeTransaction(params: {
+        to: `0x${string}`;
+        data: `0x${string}`;
+        value?: bigint;
+        chainId?: number;
+        estimatedCostUsd: number;
+        description?: string;
+        idempotencyKey?: string;
+    }): Promise<{
+        success: boolean;
+        txHash: string;
+        chargeId: string;
+        estimatedCostUsd: number;
+        remainingBudgetUsd: number | null;
+    }>;
     /**
      * Use a configured skill by deploying a JIT MCP server with your saved API keys.
      *

package/dist/index.js

@@ -1,9 +1,6 @@
+import { privateKeyToAccount, signMessage, signTypedData } from 'viem/accounts';
+
 // src/session-key.ts
-import {
-  privateKeyToAccount,
-  signTypedData,
-  signMessage as viemSignMessage
-} from "viem/accounts";
 
 // src/errors.ts
 var MixrPayError = class extends Error {
@@ -352,7 +349,7 @@ var SessionKey = class _SessionKey {
    * @returns Hex-encoded signature
    */
   async signMessage(message) {
-    return viemSignMessage({
+    return signMessage({
       privateKey: this.privateKey,
       message
     });
@@ -403,9 +400,6 @@ async function createSessionAuthPayload(sessionKey) {
   };
 }
 
-// src/agent-wallet.ts
-import { privateKeyToAccount as privateKeyToAccount2, signMessage } from "viem/accounts";
-
 // src/x402.ts
 async function parse402Response(response) {
   let paymentData = null;
@@ -767,7 +761,7 @@ var AgentWallet = class {
   /**
    * Register a new agent with MixrPay.
    * 
-   * This creates a Privy-managed embedded wallet for the agent's payments.
+   * This creates a platform-managed embedded wallet for the agent's payments.
    * The agent proves ownership of their external wallet by signing a challenge.
    * 
    * @param options - Registration options including the private key
@@ -787,7 +781,7 @@ var AgentWallet = class {
   static async register(options) {
     const { privateKey, name } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = privateKeyToAccount2(privateKey);
+    const account = privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=register`
@@ -855,7 +849,7 @@ var AgentWallet = class {
           healthy: false,
           database: "unknown",
           agentRegistrationAvailable: false,
-          privyConfigured: false,
+          walletServiceConfigured: false,
           error: `Health check failed with status ${response.status}`
         };
       }
@@ -864,14 +858,14 @@ var AgentWallet = class {
         healthy: data.status === "ready",
         database: data.database || "unknown",
         agentRegistrationAvailable: data.services?.agentRegistration?.available ?? false,
-        privyConfigured: data.services?.privy?.configured ?? false
+        walletServiceConfigured: data.services?.wallet?.configured ?? data.services?.privy?.configured ?? false
       };
     } catch (error) {
       return {
         healthy: false,
         database: "unreachable",
         agentRegistrationAvailable: false,
-        privyConfigured: false,
+        walletServiceConfigured: false,
         error: error instanceof Error ? error.message : "Failed to reach server"
       };
     }
@@ -904,7 +898,7 @@ var AgentWallet = class {
   static async getSessionKey(options) {
     const { privateKey, spendingLimitUsd, maxPerTxUsd, maxDailyUsd, durationDays } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = privateKeyToAccount2(privateKey);
+    const account = privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=session-key`
@@ -967,7 +961,7 @@ var AgentWallet = class {
   static async getStatus(options) {
     const { privateKey } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = privateKeyToAccount2(privateKey);
+    const account = privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=status`
@@ -1023,7 +1017,7 @@ var AgentWallet = class {
   static async revokeSessionKey(options) {
     const { privateKey, sessionKeyId } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = privateKeyToAccount2(privateKey);
+    const account = privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=revoke`
@@ -1077,7 +1071,7 @@ var AgentWallet = class {
   static async withdraw(options) {
     const { privateKey, amountUsd } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = privateKeyToAccount2(privateKey);
+    const account = privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=withdraw`
@@ -1143,7 +1137,7 @@ var AgentWallet = class {
   static async claimInvite(options) {
     const { inviteCode, privateKey } = options;
     const baseUrl = (options.baseUrl || DEFAULT_BASE_URL).replace(/\/$/, "");
-    const account = privateKeyToAccount2(privateKey);
+    const account = privateKeyToAccount(privateKey);
     const walletAddress = account.address;
     const challengeResponse = await fetch(
       `${baseUrl}/api/v1/agent/challenge?wallet=${walletAddress}&action=claim-invite`
@@ -1203,7 +1197,7 @@ var AgentWallet = class {
    * Spawn a child invite for sub-agents.
    * 
    * Allows an agent to create an invite code for a sub-agent with a portion
-   * of their remaining budget (max 20%). The child inherits merchant restrictions
+   * of their remaining budget. The child inherits merchant restrictions
    * and cannot outlive the parent session.
    * 
    * @param options - Spawn options
@@ -1217,7 +1211,7 @@ var AgentWallet = class {
    * 
    * // Spawn a child invite for a sub-agent
    * const childInvite = await wallet.spawnChildInvite({
-   *   budgetUsd: 10.00,  // Max 20% of available budget
+   *   budgetUsd: 10.00,
    *   name: 'Research Sub-Agent',
    *   allowedMerchants: ['firecrawl.dev'],  // Must be subset of parent
    *   expiresInDays: 7,  // Will be capped to parent's expiry
@@ -1273,8 +1267,7 @@ var AgentWallet = class {
   /**
    * Get available budget information for spawning.
    * 
-   * Returns the current budget status including how much can be spawned
-   * to child agents (20% of available).
+   * Returns the current budget status including spawn availability.
    * 
    * @returns Budget information
    * 
@@ -1934,8 +1927,8 @@ var AgentWallet = class {
    * ```typescript
    * const session = await wallet.getOrCreateSession({
    *   merchantPublicKey: 'pk_live_abc123...',
-   *   spendingLimitUsd: 25.00,
-   *   durationDays: 7,
+   *   spendingLimitUsd: 100,
+   *   durationDays: 30,
    * });
    * 
    * console.log(`Session active: $${session.remainingLimitUsd} remaining`);
@@ -1943,7 +1936,7 @@ var AgentWallet = class {
    */
   async getOrCreateSession(options) {
     this.logger.debug("getOrCreateSession called", options);
-    const { merchantPublicKey, spendingLimitUsd = 25, durationDays = 7 } = options;
+    const { merchantPublicKey, spendingLimitUsd, durationDays } = options;
     try {
       const existingSession = await this.getSessionByMerchant(merchantPublicKey);
       if (existingSession && existingSession.status === "active") {
@@ -2257,10 +2250,7 @@ var AgentWallet = class {
       throw new SpendingLimitExceededError("client_max", this.maxPaymentUsd, priceUsd);
     }
     const session = await this.getOrCreateSession({
-      merchantPublicKey,
-      spendingLimitUsd: 25,
-      // Default limit
-      durationDays: 7
+      merchantPublicKey
     });
     const headers = {
       "Content-Type": "application/json",
@@ -2305,9 +2295,7 @@ var AgentWallet = class {
       if (errorCode === "session_expired") {
         this.logger.info("Session expired, creating new one...");
         const newSession = await this.getOrCreateSession({
-          merchantPublicKey,
-          spendingLimitUsd: 25,
-          durationDays: 7
+          merchantPublicKey
         });
         headers["X-Mixr-Session"] = newSession.id;
         return fetch(url, {
@@ -2686,6 +2674,75 @@ Timestamp: ${timestamp}`;
     return this.parseJitInstance(data.instance);
   }
   // ===========================================================================
+  // Transaction Execution
+  // ===========================================================================
+  /**
+   * Execute an on-chain transaction from the human's wallet.
+   * 
+   * Submits arbitrary calldata to any contract, bounded by the session key's
+   * budget limits (max_total, max_per_tx, max_daily). The platform validates
+   * the budget, executes the transaction, and records a charge.
+   * 
+   * @param params - Transaction parameters
+   * @returns Transaction result with hash and remaining budget
+   * @throws {MixrPayError} If budget exceeded, tx reverted, or auth fails
+   * 
+   * @example
+   * ```typescript
+   * // Bridge USDC via deBridge
+   * const quote = await deBridgeMcp.create_tx({ ... });
+   * const result = await wallet.executeTransaction({
+   *   to: quote.contractAddress,
+   *   data: quote.calldata,
+   *   estimatedCostUsd: 25.0,
+   *   description: 'Bridge 25 USDC Base -> Avalanche via deBridge',
+   * });
+   * console.log('TX:', result.txHash);
+   * console.log('Budget remaining:', result.remainingBudgetUsd);
+   * ```
+   */
+  async executeTransaction(params) {
+    this.logger.debug("executeTransaction", { to: params.to, estimatedCostUsd: params.estimatedCostUsd });
+    const authHeaders = await this.getSessionAuthHeaders();
+    const response = await fetch(`${this.baseUrl}/api/v2/tx/execute`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        ...authHeaders
+      },
+      body: JSON.stringify({
+        to: params.to,
+        data: params.data,
+        value: params.value?.toString() ?? "0",
+        chain_id: params.chainId,
+        estimated_cost_usd: params.estimatedCostUsd,
+        description: params.description,
+        idempotency_key: params.idempotencyKey
+      })
+    });
+    const result = await response.json().catch(() => ({}));
+    if (!response.ok) {
+      const errorCode = result.error_code || "TX_FAILED";
+      const errorMessage = result.error || `Transaction execution failed: ${response.status}`;
+      if (errorCode === "BUDGET_EXCEEDED") {
+        throw new MixrPayError(errorMessage, "SPENDING_LIMIT_EXCEEDED");
+      }
+      throw new MixrPayError(errorMessage, errorCode);
+    }
+    this.logger.info("Transaction executed", {
+      txHash: result.tx_hash,
+      estimatedCostUsd: params.estimatedCostUsd,
+      remainingBudgetUsd: result.remaining_budget_usd
+    });
+    return {
+      success: true,
+      txHash: result.tx_hash,
+      chargeId: result.charge_id,
+      estimatedCostUsd: result.estimated_cost_usd,
+      remainingBudgetUsd: result.remaining_budget_usd
+    };
+  }
+  // ===========================================================================
   // Skills Methods
   // ===========================================================================
   /**
@@ -2824,7 +2881,7 @@ Timestamp: ${timestamp}`;
       );
     }
     const data = await response.json();
-    const connectedAppNames = (data.connections || []).filter((c) => c.status === "connected").map((c) => c.app);
+    const connectedAppNames = (data.connections || []).filter((c) => c.status === "connected").map((c) => c.app.toLowerCase());
     return {
       connected: connectedAppNames,
       connections: data.connections || [],
@@ -4567,7 +4624,7 @@ Timestamp: ${timestamp}`;
       ...init.headers
     };
     if (this.sessionKey) {
-      const account = privateKeyToAccount2(this.sessionKey.rawPrivateKey);
+      const account = privateKeyToAccount(this.sessionKey.rawPrivateKey);
       const address = account.address.toLowerCase();
       const timestamp = Date.now();
       const message = `MixrPay:${timestamp}:${address}`;
@@ -4587,21 +4644,5 @@ Timestamp: ${timestamp}`;
     });
   }
 };
-export {
-  AgentWallet,
-  InsufficientBalanceError,
-  InvalidSessionKeyError,
-  MerchantNotAllowedError,
-  MixrPayError,
-  PaymentFailedError,
-  SDK_VERSION,
-  SessionExpiredError,
-  SessionKeyExpiredError,
-  SessionLimitExceededError,
-  SessionNotFoundError,
-  SessionRevokedError,
-  SpendingLimitExceededError,
-  X402ProtocolError,
-  getErrorMessage,
-  isMixrPayError
-};
+
+export { AgentWallet, InsufficientBalanceError, InvalidSessionKeyError, MerchantNotAllowedError, MixrPayError, PaymentFailedError, SDK_VERSION, SessionExpiredError, SessionKeyExpiredError, SessionLimitExceededError, SessionNotFoundError, SessionRevokedError, SpendingLimitExceededError, X402ProtocolError, getErrorMessage, isMixrPayError };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@mixrpay/agent-sdk",
-  "version": "0.8.9",
+  "version": "0.9.2",
   "description": "MixrPay Agent SDK - Enable AI agents to make x402 payments with session keys",
   "type": "module",
   "main": "./dist/index.js",
@@ -19,7 +19,7 @@
     "LICENSE"
   ],
   "scripts": {
-    "build": "tsup src/index.ts --format esm,cjs --dts --clean",
+    "build": "tsup --config tsup.config.ts",
     "dev": "tsup src/index.ts --format esm,cjs --dts --watch",
     "test": "vitest run",
     "test:watch": "vitest",