@muhaven/mcp 0.4.0 → 0.4.2

package/CHANGELOG.md

@@ -7,6 +7,56 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [0.4.2] — 2026-05-24
+
+### Fixed
+
+- **Revoke kill-switch — MCP-side gate (defense-in-depth).** A revoked
+  Scoped session let an already-running broker keep buying autonomously
+  (the broker signs from a local snapshot with no "revoked" concept and the
+  on-chain validator stays installed). `position.buy` Path D now hard-gates
+  on the backend mirror: when the broker hands over an active snapshot but
+  `GET /agent/policy/scoped-session` reports NO active session (= revoked or
+  expired on the dashboard), the buy refuses with the new
+  `pathDFallbackReason: 'session_revoked'`, best-effort calls the broker's
+  `clear_policy_snapshot` to purge the dormant key-backed snapshot, and
+  falls back to the Path C deep-link. A transient mirror-fetch ERROR is
+  still treated as best-effort (not "revoked") so a backend blip doesn't
+  break Path D. The authoritative enforcement is the server-side
+  `encrypt-shares` gate (backend change, same release window); this MCP
+  check is the fast, clear fail before the encrypt round-trip. SecEng
+  investigation 2026-05-24.
+
+## [0.4.1] — 2026-05-24
+
+### Added
+
+- **Default broker chain RPC + `--broker-rpc-url` override (OPEN-D
+  follow-up).** The broker daemon needs a chain RPC URL for the Path D
+  `currentNonce()` pre-check. Previously, with neither
+  `MUHAVEN_BROKER_RPC_URL` nor `MUHAVEN_BUNDLER_URL` set, `chainRpcUrl`
+  was undefined → the `current_nonce` IPC returned `chain_rpc_failed` and
+  Path D fell back to the deep-link. Now:
+  - `loadBrokerConfig` **defaults `chainRpcUrl` to the public Arb Sepolia
+    RPC** (`https://sepolia-rollup.arbitrum.io/rpc`) when no RPC env is
+    set, so Path D works out-of-the-box. Resolution order is unchanged
+    where set: `MUHAVEN_BROKER_RPC_URL` → `MUHAVEN_BUNDLER_URL` →
+    default. (The broker's only use is a read-only `eth_call`, which the
+    public RPC serves.)
+  - `muhaven-broker start` / `update` / `setup` gained a
+    **`--broker-rpc-url <URL>`** flag to point the spawned daemon at a
+    private/faster RPC without exporting an env var. Validated by the same
+    https-or-loopback rule as the other URL flags; forwarded into the
+    spawned daemon's child env. When omitted, the daemon inherits a
+    shell-set value or falls back to the default above.
+
+### Changed
+
+- `BrokerRuntimeConfig.chainRpcUrl` is now always populated (default
+  applied) rather than possibly `undefined`. The type stays optional for
+  test-injected configs; the `current_nonce` handler's
+  `chain_rpc_failed`-when-unset path remains as a backstop.
+
 ## [0.4.0] — 2026-05-24
 
 ### Added

package/dist/broker.cjs

@@ -18,6 +18,7 @@ var DEFAULT_BROKER_MAX_BYTES = 64 * 1024;
 var DEFAULT_JWT_CACHE_TTL_SEC = 30;
 var DEFAULT_BUNDLER_TIMEOUT_MS = 2e4;
 var DEFAULT_CHAIN_ID = 421614;
+var DEFAULT_BROKER_RPC_URL = "https://sepolia-rollup.arbitrum.io/rpc";
 var DEFAULT_ENTRY_POINT_ADDRESS = "0x0000000071727De22E5E9d8BAf0edAc6f37da032";
 var ADDRESS_HEX_RE = /^0x[0-9a-fA-F]{40}$/;
 function defaultBrokerEndpoint() {
@@ -163,8 +164,8 @@ function loadBrokerConfig(env = process.env) {
     env.MUHAVEN_DASHBOARD_URL,
     DEFAULT_DASHBOARD_URL
   );
-  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env);
-  const chainRpcUrl = chainRpcUrlRaw === void 0 ? void 0 : resolvePublicUrlEnv(
+  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env) ?? DEFAULT_BROKER_RPC_URL;
+  const chainRpcUrl = resolvePublicUrlEnv(
     "MUHAVEN_BROKER_RPC_URL",
     chainRpcUrlRaw,
     chainRpcUrlRaw
@@ -2568,6 +2569,7 @@ function parseSetupFlags(argv) {
   let brokerEndpoint;
   let backendBaseUrl;
   let dashboardBaseUrl;
+  let brokerRpcUrl;
   let skipLogin = false;
   const register = [];
   let registerScope = "user";
@@ -2579,6 +2581,7 @@ function parseSetupFlags(argv) {
     else if (a === "--broker-endpoint" && i + 1 < argv.length) brokerEndpoint = argv[++i];
     else if (a === "--backend-base-url" && i + 1 < argv.length) backendBaseUrl = argv[++i];
     else if (a === "--dashboard-base-url" && i + 1 < argv.length) dashboardBaseUrl = argv[++i];
+    else if (a === "--broker-rpc-url" && i + 1 < argv.length) brokerRpcUrl = argv[++i];
     else if (a === "--register" && i + 1 < argv.length) {
       const value = argv[++i];
       for (const raw of value.split(",")) {
@@ -2609,6 +2612,7 @@ function parseSetupFlags(argv) {
     brokerEndpoint,
     backendBaseUrl,
     dashboardBaseUrl,
+    brokerRpcUrl,
     skipLogin,
     register,
     registerScope
@@ -2732,7 +2736,7 @@ async function runSetup(argv, deps) {
   } catch (err) {
     deps.printErr(`error: ${err.message}`);
     deps.printErr(
-      "usage: muhaven-broker setup [--foreground|-f] [--no-launch-browser] [--skip-login]\n                            [--broker-endpoint PATH] [--backend-base-url URL]\n                            [--dashboard-base-url URL]\n                            [--register HOST[,HOST...]] [--register-scope user|project|local]"
+      "usage: muhaven-broker setup [--foreground|-f] [--no-launch-browser] [--skip-login]\n                            [--broker-endpoint PATH] [--backend-base-url URL]\n                            [--dashboard-base-url URL] [--broker-rpc-url URL]\n                            [--register HOST[,HOST...]] [--register-scope user|project|local]"
     );
     return 2;
   }
@@ -2757,6 +2761,13 @@ async function runSetup(argv, deps) {
       return 2;
     }
   }
+  if (flags.brokerRpcUrl) {
+    const err = validateHttpUrlFlag("--broker-rpc-url", flags.brokerRpcUrl);
+    if (err) {
+      deps.printErr(`error: ${err}`);
+      return 2;
+    }
+  }
   const overrides = applyEnvDefaults({
     env: deps.env,
     platformId: deps.platformId,
@@ -2772,6 +2783,7 @@ async function runSetup(argv, deps) {
   if (flags.brokerEndpoint) effectiveEnv.MUHAVEN_BROKER_ENDPOINT = flags.brokerEndpoint;
   if (flags.backendBaseUrl) effectiveEnv.MUHAVEN_BACKEND_URL = flags.backendBaseUrl;
   if (flags.dashboardBaseUrl) effectiveEnv.MUHAVEN_DASHBOARD_URL = flags.dashboardBaseUrl;
+  if (flags.brokerRpcUrl) effectiveEnv.MUHAVEN_BROKER_RPC_URL = flags.brokerRpcUrl;
   for (const name of overrides.preserved) {
     deps.print(`Env preserved: ${name} (set in your shell)`);
   }
@@ -2854,7 +2866,11 @@ async function runSetup(argv, deps) {
         MUHAVEN_BROKER_ENDPOINT: config.brokerEndpoint,
         MUHAVEN_BACKEND_URL: effectiveEnv.MUHAVEN_BACKEND_URL,
         MUHAVEN_DASHBOARD_URL: effectiveEnv.MUHAVEN_DASHBOARD_URL,
-        MUHAVEN_BROKER_SESSION_KEY: sessionKey
+        MUHAVEN_BROKER_SESSION_KEY: sessionKey,
+        // Forward the chain RPC URL only when resolved (flag or shell env);
+        // absent → the daemon's loadBrokerConfig applies the public Arb
+        // Sepolia default.
+        ...effectiveEnv.MUHAVEN_BROKER_RPC_URL ? { MUHAVEN_BROKER_RPC_URL: effectiveEnv.MUHAVEN_BROKER_RPC_URL } : {}
       }
     });
     try {
@@ -3047,6 +3063,7 @@ function parseBringUpFlags(argv) {
   let brokerEndpoint;
   let backendBaseUrl;
   let dashboardBaseUrl;
+  let brokerRpcUrl;
   for (let i = 0; i < argv.length; i++) {
     const a = argv[i];
     if (a === "--no-launch-browser") noLaunchBrowser = true;
@@ -3063,14 +3080,23 @@ function parseBringUpFlags(argv) {
     } else if (a === "--broker-endpoint" && i + 1 < argv.length) brokerEndpoint = argv[++i];
     else if (a === "--backend-base-url" && i + 1 < argv.length) backendBaseUrl = argv[++i];
     else if (a === "--dashboard-base-url" && i + 1 < argv.length) dashboardBaseUrl = argv[++i];
+    else if (a === "--broker-rpc-url" && i + 1 < argv.length) brokerRpcUrl = argv[++i];
     else throw new Error(`unknown flag: ${a}`);
   }
-  return { session, noLaunchBrowser, skipLogin, brokerEndpoint, backendBaseUrl, dashboardBaseUrl };
+  return {
+    session,
+    noLaunchBrowser,
+    skipLogin,
+    brokerEndpoint,
+    backendBaseUrl,
+    dashboardBaseUrl,
+    brokerRpcUrl
+  };
 }
 function usageLine(mode) {
   return `usage: muhaven-broker ${mode} --session <key|-> [--no-launch-browser] [--skip-login]
                             [--broker-endpoint PATH] [--backend-base-url URL]
-                            [--dashboard-base-url URL]
+                            [--dashboard-base-url URL] [--broker-rpc-url URL]
        (omit --session to be asked interactively; pipe the key with \`--session -\`)`;
 }
 async function runBringUp(mode, argv, deps) {
@@ -3103,6 +3129,13 @@ async function runBringUp(mode, argv, deps) {
       return 2;
     }
   }
+  if (flags.brokerRpcUrl) {
+    const e = validateHttpUrlFlag("--broker-rpc-url", flags.brokerRpcUrl);
+    if (e) {
+      deps.printErr(`error: ${e}`);
+      return 2;
+    }
+  }
   const resolution = await resolveSessionKey({
     sessionFlag: flags.session,
     policy: "require",
@@ -3127,6 +3160,7 @@ async function runBringUp(mode, argv, deps) {
   if (flags.brokerEndpoint) effectiveEnv.MUHAVEN_BROKER_ENDPOINT = flags.brokerEndpoint;
   if (flags.backendBaseUrl) effectiveEnv.MUHAVEN_BACKEND_URL = flags.backendBaseUrl;
   if (flags.dashboardBaseUrl) effectiveEnv.MUHAVEN_DASHBOARD_URL = flags.dashboardBaseUrl;
+  if (flags.brokerRpcUrl) effectiveEnv.MUHAVEN_BROKER_RPC_URL = flags.brokerRpcUrl;
   for (const name of overrides.preserved) deps.print(`Env preserved: ${name} (set in your shell)`);
   for (const [k, v] of Object.entries(overrides.toSet)) deps.print(`Env defaulted: ${k}=${v}`);
   const config = loadMcpConfig(effectiveEnv);
@@ -3167,7 +3201,11 @@ async function runBringUp(mode, argv, deps) {
       MUHAVEN_BROKER_ENDPOINT: config.brokerEndpoint,
       MUHAVEN_BACKEND_URL: effectiveEnv.MUHAVEN_BACKEND_URL,
       MUHAVEN_DASHBOARD_URL: effectiveEnv.MUHAVEN_DASHBOARD_URL,
-      MUHAVEN_BROKER_SESSION_KEY: sessionKey
+      MUHAVEN_BROKER_SESSION_KEY: sessionKey,
+      // Forward the chain RPC URL only when resolved (flag or shell env).
+      // When absent, the daemon's loadBrokerConfig applies the public
+      // Arb Sepolia default — no need to inject it here.
+      ...effectiveEnv.MUHAVEN_BROKER_RPC_URL ? { MUHAVEN_BROKER_RPC_URL: effectiveEnv.MUHAVEN_BROKER_RPC_URL } : {}
     }
   });
   let ready;
@@ -3538,8 +3576,10 @@ function printUsage() {
   print("  start              Bring the daemon up on a DASHBOARD-minted session key (daemon NOT running)");
   print("                       --session <key|->  the key (or `-` to read it from stdin); omit to be");
   print("                         asked interactively. [--skip-login] [--no-launch-browser]");
+  print("                       [--broker-rpc-url URL] chain RPC for Path D (default: public Arb Sepolia)");
   print("  update             Rotate the session key on a running daemon (stop \u2192 swap \u2192 restart,");
   print("                       reusing the existing JWT). --session <key|-> (or interactive).");
+  print("                       [--broker-rpc-url URL] override the daemon chain RPC for Path D");
   print("  stop               Cleanly stop a running daemon (SIGTERM with SIGKILL fallback");
   print("                       after 5s). Also clears the keystore JWT as a best effort.");
   print("  login              Acquire a JWT via the device-code flow + store in keystore");
@@ -3551,7 +3591,7 @@ function printUsage() {
 }
 function getBrokerPackageVersion() {
   {
-    return "0.4.0";
+    return "0.4.2";
   }
 }
 function printVersion() {

package/dist/broker.js

@@ -20,6 +20,7 @@ var DEFAULT_BROKER_MAX_BYTES = 64 * 1024;
 var DEFAULT_JWT_CACHE_TTL_SEC = 30;
 var DEFAULT_BUNDLER_TIMEOUT_MS = 2e4;
 var DEFAULT_CHAIN_ID = 421614;
+var DEFAULT_BROKER_RPC_URL = "https://sepolia-rollup.arbitrum.io/rpc";
 var DEFAULT_ENTRY_POINT_ADDRESS = "0x0000000071727De22E5E9d8BAf0edAc6f37da032";
 var ADDRESS_HEX_RE = /^0x[0-9a-fA-F]{40}$/;
 function defaultBrokerEndpoint() {
@@ -165,8 +166,8 @@ function loadBrokerConfig(env = process.env) {
     env.MUHAVEN_DASHBOARD_URL,
     DEFAULT_DASHBOARD_URL
   );
-  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env);
-  const chainRpcUrl = chainRpcUrlRaw === void 0 ? void 0 : resolvePublicUrlEnv(
+  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env) ?? DEFAULT_BROKER_RPC_URL;
+  const chainRpcUrl = resolvePublicUrlEnv(
     "MUHAVEN_BROKER_RPC_URL",
     chainRpcUrlRaw,
     chainRpcUrlRaw
@@ -2570,6 +2571,7 @@ function parseSetupFlags(argv) {
   let brokerEndpoint;
   let backendBaseUrl;
   let dashboardBaseUrl;
+  let brokerRpcUrl;
   let skipLogin = false;
   const register = [];
   let registerScope = "user";
@@ -2581,6 +2583,7 @@ function parseSetupFlags(argv) {
     else if (a === "--broker-endpoint" && i + 1 < argv.length) brokerEndpoint = argv[++i];
     else if (a === "--backend-base-url" && i + 1 < argv.length) backendBaseUrl = argv[++i];
     else if (a === "--dashboard-base-url" && i + 1 < argv.length) dashboardBaseUrl = argv[++i];
+    else if (a === "--broker-rpc-url" && i + 1 < argv.length) brokerRpcUrl = argv[++i];
     else if (a === "--register" && i + 1 < argv.length) {
       const value = argv[++i];
       for (const raw of value.split(",")) {
@@ -2611,6 +2614,7 @@ function parseSetupFlags(argv) {
     brokerEndpoint,
     backendBaseUrl,
     dashboardBaseUrl,
+    brokerRpcUrl,
     skipLogin,
     register,
     registerScope
@@ -2734,7 +2738,7 @@ async function runSetup(argv, deps) {
   } catch (err) {
     deps.printErr(`error: ${err.message}`);
     deps.printErr(
-      "usage: muhaven-broker setup [--foreground|-f] [--no-launch-browser] [--skip-login]\n                            [--broker-endpoint PATH] [--backend-base-url URL]\n                            [--dashboard-base-url URL]\n                            [--register HOST[,HOST...]] [--register-scope user|project|local]"
+      "usage: muhaven-broker setup [--foreground|-f] [--no-launch-browser] [--skip-login]\n                            [--broker-endpoint PATH] [--backend-base-url URL]\n                            [--dashboard-base-url URL] [--broker-rpc-url URL]\n                            [--register HOST[,HOST...]] [--register-scope user|project|local]"
     );
     return 2;
   }
@@ -2759,6 +2763,13 @@ async function runSetup(argv, deps) {
       return 2;
     }
   }
+  if (flags.brokerRpcUrl) {
+    const err = validateHttpUrlFlag("--broker-rpc-url", flags.brokerRpcUrl);
+    if (err) {
+      deps.printErr(`error: ${err}`);
+      return 2;
+    }
+  }
   const overrides = applyEnvDefaults({
     env: deps.env,
     platformId: deps.platformId,
@@ -2774,6 +2785,7 @@ async function runSetup(argv, deps) {
   if (flags.brokerEndpoint) effectiveEnv.MUHAVEN_BROKER_ENDPOINT = flags.brokerEndpoint;
   if (flags.backendBaseUrl) effectiveEnv.MUHAVEN_BACKEND_URL = flags.backendBaseUrl;
   if (flags.dashboardBaseUrl) effectiveEnv.MUHAVEN_DASHBOARD_URL = flags.dashboardBaseUrl;
+  if (flags.brokerRpcUrl) effectiveEnv.MUHAVEN_BROKER_RPC_URL = flags.brokerRpcUrl;
   for (const name of overrides.preserved) {
     deps.print(`Env preserved: ${name} (set in your shell)`);
   }
@@ -2856,7 +2868,11 @@ async function runSetup(argv, deps) {
         MUHAVEN_BROKER_ENDPOINT: config.brokerEndpoint,
         MUHAVEN_BACKEND_URL: effectiveEnv.MUHAVEN_BACKEND_URL,
         MUHAVEN_DASHBOARD_URL: effectiveEnv.MUHAVEN_DASHBOARD_URL,
-        MUHAVEN_BROKER_SESSION_KEY: sessionKey
+        MUHAVEN_BROKER_SESSION_KEY: sessionKey,
+        // Forward the chain RPC URL only when resolved (flag or shell env);
+        // absent → the daemon's loadBrokerConfig applies the public Arb
+        // Sepolia default.
+        ...effectiveEnv.MUHAVEN_BROKER_RPC_URL ? { MUHAVEN_BROKER_RPC_URL: effectiveEnv.MUHAVEN_BROKER_RPC_URL } : {}
       }
     });
     try {
@@ -3049,6 +3065,7 @@ function parseBringUpFlags(argv) {
   let brokerEndpoint;
   let backendBaseUrl;
   let dashboardBaseUrl;
+  let brokerRpcUrl;
   for (let i = 0; i < argv.length; i++) {
     const a = argv[i];
     if (a === "--no-launch-browser") noLaunchBrowser = true;
@@ -3065,14 +3082,23 @@ function parseBringUpFlags(argv) {
     } else if (a === "--broker-endpoint" && i + 1 < argv.length) brokerEndpoint = argv[++i];
     else if (a === "--backend-base-url" && i + 1 < argv.length) backendBaseUrl = argv[++i];
     else if (a === "--dashboard-base-url" && i + 1 < argv.length) dashboardBaseUrl = argv[++i];
+    else if (a === "--broker-rpc-url" && i + 1 < argv.length) brokerRpcUrl = argv[++i];
     else throw new Error(`unknown flag: ${a}`);
   }
-  return { session, noLaunchBrowser, skipLogin, brokerEndpoint, backendBaseUrl, dashboardBaseUrl };
+  return {
+    session,
+    noLaunchBrowser,
+    skipLogin,
+    brokerEndpoint,
+    backendBaseUrl,
+    dashboardBaseUrl,
+    brokerRpcUrl
+  };
 }
 function usageLine(mode) {
   return `usage: muhaven-broker ${mode} --session <key|-> [--no-launch-browser] [--skip-login]
                             [--broker-endpoint PATH] [--backend-base-url URL]
-                            [--dashboard-base-url URL]
+                            [--dashboard-base-url URL] [--broker-rpc-url URL]
        (omit --session to be asked interactively; pipe the key with \`--session -\`)`;
 }
 async function runBringUp(mode, argv, deps) {
@@ -3105,6 +3131,13 @@ async function runBringUp(mode, argv, deps) {
       return 2;
     }
   }
+  if (flags.brokerRpcUrl) {
+    const e = validateHttpUrlFlag("--broker-rpc-url", flags.brokerRpcUrl);
+    if (e) {
+      deps.printErr(`error: ${e}`);
+      return 2;
+    }
+  }
   const resolution = await resolveSessionKey({
     sessionFlag: flags.session,
     policy: "require",
@@ -3129,6 +3162,7 @@ async function runBringUp(mode, argv, deps) {
   if (flags.brokerEndpoint) effectiveEnv.MUHAVEN_BROKER_ENDPOINT = flags.brokerEndpoint;
   if (flags.backendBaseUrl) effectiveEnv.MUHAVEN_BACKEND_URL = flags.backendBaseUrl;
   if (flags.dashboardBaseUrl) effectiveEnv.MUHAVEN_DASHBOARD_URL = flags.dashboardBaseUrl;
+  if (flags.brokerRpcUrl) effectiveEnv.MUHAVEN_BROKER_RPC_URL = flags.brokerRpcUrl;
   for (const name of overrides.preserved) deps.print(`Env preserved: ${name} (set in your shell)`);
   for (const [k, v] of Object.entries(overrides.toSet)) deps.print(`Env defaulted: ${k}=${v}`);
   const config = loadMcpConfig(effectiveEnv);
@@ -3169,7 +3203,11 @@ async function runBringUp(mode, argv, deps) {
       MUHAVEN_BROKER_ENDPOINT: config.brokerEndpoint,
       MUHAVEN_BACKEND_URL: effectiveEnv.MUHAVEN_BACKEND_URL,
       MUHAVEN_DASHBOARD_URL: effectiveEnv.MUHAVEN_DASHBOARD_URL,
-      MUHAVEN_BROKER_SESSION_KEY: sessionKey
+      MUHAVEN_BROKER_SESSION_KEY: sessionKey,
+      // Forward the chain RPC URL only when resolved (flag or shell env).
+      // When absent, the daemon's loadBrokerConfig applies the public
+      // Arb Sepolia default — no need to inject it here.
+      ...effectiveEnv.MUHAVEN_BROKER_RPC_URL ? { MUHAVEN_BROKER_RPC_URL: effectiveEnv.MUHAVEN_BROKER_RPC_URL } : {}
     }
   });
   let ready;
@@ -3540,8 +3578,10 @@ function printUsage() {
   print("  start              Bring the daemon up on a DASHBOARD-minted session key (daemon NOT running)");
   print("                       --session <key|->  the key (or `-` to read it from stdin); omit to be");
   print("                         asked interactively. [--skip-login] [--no-launch-browser]");
+  print("                       [--broker-rpc-url URL] chain RPC for Path D (default: public Arb Sepolia)");
   print("  update             Rotate the session key on a running daemon (stop \u2192 swap \u2192 restart,");
   print("                       reusing the existing JWT). --session <key|-> (or interactive).");
+  print("                       [--broker-rpc-url URL] override the daemon chain RPC for Path D");
   print("  stop               Cleanly stop a running daemon (SIGTERM with SIGKILL fallback");
   print("                       after 5s). Also clears the keystore JWT as a best effort.");
   print("  login              Acquire a JWT via the device-code flow + store in keystore");
@@ -3553,7 +3593,7 @@ function printUsage() {
 }
 function getBrokerPackageVersion() {
   {
-    return "0.4.0";
+    return "0.4.2";
   }
 }
 function printVersion() {

package/dist/index.cjs

@@ -28,6 +28,7 @@ var DEFAULT_BROKER_MAX_BYTES = 64 * 1024;
 var DEFAULT_JWT_CACHE_TTL_SEC = 30;
 var DEFAULT_BUNDLER_TIMEOUT_MS = 2e4;
 var DEFAULT_CHAIN_ID = 421614;
+var DEFAULT_BROKER_RPC_URL = "https://sepolia-rollup.arbitrum.io/rpc";
 var DEFAULT_ENTRY_POINT_ADDRESS = "0x0000000071727De22E5E9d8BAf0edAc6f37da032";
 var ADDRESS_HEX_RE = /^0x[0-9a-fA-F]{40}$/;
 function defaultBrokerEndpoint() {
@@ -173,8 +174,8 @@ function loadBrokerConfig(env = process.env) {
     env.MUHAVEN_DASHBOARD_URL,
     DEFAULT_DASHBOARD_URL
   );
-  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env);
-  const chainRpcUrl = chainRpcUrlRaw === void 0 ? void 0 : resolvePublicUrlEnv(
+  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env) ?? DEFAULT_BROKER_RPC_URL;
+  const chainRpcUrl = resolvePublicUrlEnv(
     "MUHAVEN_BROKER_RPC_URL",
     chainRpcUrlRaw,
     chainRpcUrlRaw
@@ -2798,18 +2799,33 @@ async function attemptPathD(args, deps) {
       message: `backend /agent/policy/state lookup failed: ${err2 instanceof Error ? err2.message : String(err2)}`
     };
   }
+  let mirrorFetchOk = false;
+  let mirrorHadActiveSession = false;
   try {
     const mirror = await deps.backend.get(
       "/api/v1/agent/policy/scoped-session",
       { surface: "mcp" }
     );
+    mirrorFetchOk = true;
     if (mirror?.session) {
+      mirrorHadActiveSession = true;
       mirrorSessionRow = mirror.session;
       mirrorEnableStatus = mirror.session.enableStatus ?? null;
       mirrorValidatorNonce = mirror.session.validatorNonce ?? null;
     }
   } catch (err2) {
   }
+  if (mirrorFetchOk && !mirrorHadActiveSession) {
+    try {
+      await deps.broker.clearPolicySnapshot(activeId);
+    } catch {
+    }
+    return {
+      kind: "fallback",
+      reason: "session_revoked",
+      message: "the Scoped session was revoked (or expired) on the dashboard \u2014 the broker snapshot is stale; purged it and falling back to Path C. Re-mint a Scoped session to resume autonomous buys."
+    };
+  }
   if (!snapshot.permissionId) {
     return {
       kind: "fallback",
@@ -3679,7 +3695,7 @@ var SERVER_NAME = "@muhaven/mcp";
 var SERVER_VERSION = resolveServerVersion();
 function resolveServerVersion() {
   {
-    return "0.4.0";
+    return "0.4.2";
   }
 }
 function toJsonInputSchema(schema) {

package/dist/index.js

@@ -24,6 +24,7 @@ var DEFAULT_BROKER_MAX_BYTES = 64 * 1024;
 var DEFAULT_JWT_CACHE_TTL_SEC = 30;
 var DEFAULT_BUNDLER_TIMEOUT_MS = 2e4;
 var DEFAULT_CHAIN_ID = 421614;
+var DEFAULT_BROKER_RPC_URL = "https://sepolia-rollup.arbitrum.io/rpc";
 var DEFAULT_ENTRY_POINT_ADDRESS = "0x0000000071727De22E5E9d8BAf0edAc6f37da032";
 var ADDRESS_HEX_RE = /^0x[0-9a-fA-F]{40}$/;
 function defaultBrokerEndpoint() {
@@ -169,8 +170,8 @@ function loadBrokerConfig(env = process.env) {
     env.MUHAVEN_DASHBOARD_URL,
     DEFAULT_DASHBOARD_URL
   );
-  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env);
-  const chainRpcUrl = chainRpcUrlRaw === void 0 ? void 0 : resolvePublicUrlEnv(
+  const chainRpcUrlRaw = readEnv("MUHAVEN_BROKER_RPC_URL", env) ?? readEnv("MUHAVEN_BUNDLER_URL", env) ?? DEFAULT_BROKER_RPC_URL;
+  const chainRpcUrl = resolvePublicUrlEnv(
     "MUHAVEN_BROKER_RPC_URL",
     chainRpcUrlRaw,
     chainRpcUrlRaw
@@ -2794,18 +2795,33 @@ async function attemptPathD(args, deps) {
       message: `backend /agent/policy/state lookup failed: ${err2 instanceof Error ? err2.message : String(err2)}`
     };
   }
+  let mirrorFetchOk = false;
+  let mirrorHadActiveSession = false;
   try {
     const mirror = await deps.backend.get(
       "/api/v1/agent/policy/scoped-session",
       { surface: "mcp" }
     );
+    mirrorFetchOk = true;
     if (mirror?.session) {
+      mirrorHadActiveSession = true;
       mirrorSessionRow = mirror.session;
       mirrorEnableStatus = mirror.session.enableStatus ?? null;
       mirrorValidatorNonce = mirror.session.validatorNonce ?? null;
     }
   } catch (err2) {
   }
+  if (mirrorFetchOk && !mirrorHadActiveSession) {
+    try {
+      await deps.broker.clearPolicySnapshot(activeId);
+    } catch {
+    }
+    return {
+      kind: "fallback",
+      reason: "session_revoked",
+      message: "the Scoped session was revoked (or expired) on the dashboard \u2014 the broker snapshot is stale; purged it and falling back to Path C. Re-mint a Scoped session to resume autonomous buys."
+    };
+  }
   if (!snapshot.permissionId) {
     return {
       kind: "fallback",
@@ -3675,7 +3691,7 @@ var SERVER_NAME = "@muhaven/mcp";
 var SERVER_VERSION = resolveServerVersion();
 function resolveServerVersion() {
   {
-    return "0.4.0";
+    return "0.4.2";
   }
 }
 function toJsonInputSchema(schema) {

package/manifest.json

@@ -3,7 +3,7 @@
   "manifest_version": "0.2",
   "name": "muhaven-mcp",
   "display_name": "MuHaven (RWA portfolio)",
-  "version": "0.4.0",
+  "version": "0.4.2",
   "description": "Confidential RWA portfolio management on Fhenix CoFHE. Read your encrypted balances, propose yield claims and policy changes — all signing happens in a sibling broker daemon, the LLM never sees your private key.",
   "long_description": "MuHaven MCP exposes 24 tools across read.* / position.* / policy.* / issuer.* / governance.* groups for managing real-world asset (RWA) tokens with FHE-encrypted balances. Authentication uses a one-time device-code ceremony (run `muhaven-broker login`); subsequent tool calls fetch the JWT from the broker over a Unix socket. Position / governance tools deep-link to the dashboard for passkey signing — they NEVER auto-submit to a bundler. The companion `muhaven-broker` daemon must be running before tools can be invoked. See README for setup.",
   "author": {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@muhaven/mcp",
-  "version": "0.4.0",
+  "version": "0.4.2",
   "description": "MuHaven MCP server — read/position/policy toolsets bridging Claude Desktop / Cursor / Claude Code to the MuHaven backend, with a sibling muhaven-broker daemon holding the session-key private half over a local IPC socket",
   "type": "module",
   "repository": {