@nevermined-io/payments 1.5.0 → 1.7.0

package/dist/x402/langchain/decorator.d.ts

@@ -14,7 +14,7 @@
  *
  * The `credits` option accepts two forms:
  *   - **Static number**: `credits: 1` — always charges 1 credit
- *   - **Function**: `credits: (ctx) => Math.max(1, ctx.result.length / 100)` — dynamic
+ *   - **Function**: `credits: (ctx) => Math.max(1, Math.floor(ctx.result.length / 100))` — dynamic
  *
  * When `credits` is a function, it receives `{ args, result }` after tool execution.
  *
@@ -43,7 +43,7 @@
  * ```
  */
 import type { Payments } from '../../payments.js';
-import { type X402PaymentRequired } from '../facilitator-api.js';
+import { type X402PaymentRequired, type SettlePermissionsResult } from '../facilitator-api.js';
 /**
  * Context passed to a dynamic credits function after tool execution.
  */
@@ -66,7 +66,18 @@ export interface RequiresPaymentOptions {
     payments: Payments;
     /** Single plan ID to accept */
     planId: string;
-    /** Number of credits to charge, or a function for dynamic pricing (default: 1) */
+    /**
+     * Number of credits to charge, or a function for dynamic pricing (default: 1).
+     *
+     * This value is sent as `maxAmount` to the facilitator. The amount actually
+     * redeemed depends on the plan's server-side credit configuration:
+     *
+     * - **Fixed plans** (`plan.credits.minAmount === plan.credits.maxAmount`)
+     *   always burn `plan.credits.maxAmount` — this value is then effectively a
+     *   no-op (see nevermined-io/nvm-monorepo#1568).
+     * - **Range plans** clamp this value into
+     *   `[plan.credits.minAmount, plan.credits.maxAmount]`.
+     */
     credits?: number | CreditsCallable;
     /** Optional agent identifier */
     agentId?: string;
@@ -88,7 +99,17 @@ export declare class PaymentRequiredError extends Error {
  * Payment context stored in `config.configurable.payment_context` after verification.
  */
 export interface PaymentContext {
-    /** The x402 access token */
+    /**
+     * Abbreviated, non-functional reference to the x402 access token — the SAME
+     * redacted form surfaced as `nvm.payment_token` (`<first 16>…<last 4>`, or a
+     * `…(short)` marker for a too-short token). The **full token is deliberately
+     * not persisted here**: this object is written into
+     * `config.configurable.payment_context`, and tracing frameworks (e.g.
+     * LangChain) can capture `config.configurable` into span metadata, so storing
+     * the raw credential would let it ride into any traced run opened during or
+     * after the tool body. Settlement uses the token read from
+     * `config.configurable.payment_token`, never this field.
+     */
     token: string;
     /** The payment required object */
     paymentRequired: X402PaymentRequired;
@@ -101,6 +122,24 @@ export interface PaymentContext {
     /** Agent request context for observability */
     agentRequest?: unknown;
 }
+/**
+ * Return the most recent settlement receipt produced by {@link requiresPayment}.
+ *
+ * Use this after invoking a LangChain/LangGraph runnable whose tool is wrapped
+ * with {@link requiresPayment} to recover the settlement receipt
+ * (`creditsRedeemed`, `remainingBalance`, `transaction`, `network`, `payer`)
+ * without threading it back through the runnable config (which LangGraph copies
+ * per node, so the in-place write is invisible to the outer scope).
+ *
+ * Returns `undefined` if no settlement has happened yet in this process, or if
+ * the most recent invocation raised before reaching the settle phase.
+ *
+ * @remarks
+ * This accessor reads from a module-level slot. In multi-tenant processes (e.g.
+ * a server handling concurrent settlements), the value reflects whichever
+ * invocation settled most recently — there is no per-call isolation.
+ */
+export declare function lastSettlement(): SettlePermissionsResult | undefined;
 /**
  * Wraps a LangChain.js tool implementation with x402 payment verification and settlement.
  *

package/dist/x402/langchain/decorator.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"decorator.d.ts","sourceRoot":"","sources":["../../../src/x402/langchain/decorator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AAEH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAA;AACjD,OAAO,EAEL,KAAK,mBAAmB,EAEzB,MAAM,uBAAuB,CAAA;AAE9B;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,iCAAiC;IACjC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IAC7B,8BAA8B;IAC9B,MAAM,EAAE,OAAO,CAAA;CAChB;AAED;;;GAGG;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,GAAG,EAAE,cAAc,KAAK,MAAM,CAAA;AAE7D;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,wDAAwD;IACxD,QAAQ,EAAE,QAAQ,CAAA;IAClB,+BAA+B;IAC/B,MAAM,EAAE,MAAM,CAAA;IACd,kFAAkF;IAClF,OAAO,CAAC,EAAE,MAAM,GAAG,eAAe,CAAA;IAClC,gCAAgC;IAChC,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,qFAAqF;IACrF,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;;;GAKG;AACH,qBAAa,oBAAqB,SAAQ,KAAK;IAC7C,yEAAyE;IACzE,eAAe,EAAE,mBAAmB,GAAG,SAAS,CAAA;gBAEpC,OAAO,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,mBAAmB;CAKnE;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,4BAA4B;IAC5B,KAAK,EAAE,MAAM,CAAA;IACb,kCAAkC;IAClC,eAAe,EAAE,mBAAmB,CAAA;IACpC,kCAAkC;IAClC,eAAe,EAAE,MAAM,CAAA;IACvB,0CAA0C;IAC1C,QAAQ,EAAE,OAAO,CAAA;IACjB,kDAAkD;IAClD,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,8CAA8C;IAC9C,YAAY,CAAC,EAAE,OAAO,CAAA;CACvB;AA8BD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwCG;AACH,wBAAgB,eAAe,CAAC,KAAK,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,OAAO,EAC5E,EAAE,EAAE,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,CAAC,EAAE,OAAO,KAAK,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,EACjE,OAAO,EAAE,sBAAsB,GAC9B,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC,OAAO,CAAC,CAiFrD"}
+{"version":3,"file":"decorator.d.ts","sourceRoot":"","sources":["../../../src/x402/langchain/decorator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AAEH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAA;AACjD,OAAO,EAEL,KAAK,mBAAmB,EAExB,KAAK,uBAAuB,EAC7B,MAAM,uBAAuB,CAAA;AAY9B;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,iCAAiC;IACjC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IAC7B,8BAA8B;IAC9B,MAAM,EAAE,OAAO,CAAA;CAChB;AAED;;;GAGG;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,GAAG,EAAE,cAAc,KAAK,MAAM,CAAA;AAE7D;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,wDAAwD;IACxD,QAAQ,EAAE,QAAQ,CAAA;IAClB,+BAA+B;IAC/B,MAAM,EAAE,MAAM,CAAA;IACd;;;;;;;;;;;OAWG;IACH,OAAO,CAAC,EAAE,MAAM,GAAG,eAAe,CAAA;IAClC,gCAAgC;IAChC,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,qFAAqF;IACrF,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;;;GAKG;AACH,qBAAa,oBAAqB,SAAQ,KAAK;IAC7C,yEAAyE;IACzE,eAAe,EAAE,mBAAmB,GAAG,SAAS,CAAA;gBAEpC,OAAO,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,mBAAmB;CAKnE;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B;;;;;;;;;;OAUG;IACH,KAAK,EAAE,MAAM,CAAA;IACb,kCAAkC;IAClC,eAAe,EAAE,mBAAmB,CAAA;IACpC,kCAAkC;IAClC,eAAe,EAAE,MAAM,CAAA;IACvB,0CAA0C;IAC1C,QAAQ,EAAE,OAAO,CAAA;IACjB,kDAAkD;IAClD,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,8CAA8C;IAC9C,YAAY,CAAC,EAAE,OAAO,CAAA;CACvB;AAeD;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAgB,cAAc,IAAI,uBAAuB,GAAG,SAAS,CAEpE;AAwCD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwCG;AACH,wBAAgB,eAAe,CAAC,KAAK,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,OAAO,EAC5E,EAAE,EAAE,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,CAAC,EAAE,OAAO,KAAK,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,EACjE,OAAO,EAAE,sBAAsB,GAC9B,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC,OAAO,CAAC,CAoNrD"}

package/dist/x402/langchain/decorator.js

@@ -14,7 +14,7 @@
  *
  * The `credits` option accepts two forms:
  *   - **Static number**: `credits: 1` — always charges 1 credit
- *   - **Function**: `credits: (ctx) => Math.max(1, ctx.result.length / 100)` — dynamic
+ *   - **Function**: `credits: (ctx) => Math.max(1, Math.floor(ctx.result.length / 100))` — dynamic
  *
  * When `credits` is a function, it receives `{ args, result }` after tool execution.
  *
@@ -43,6 +43,7 @@
  * ```
  */
 import { buildPaymentRequired, } from '../facilitator-api.js';
+import { abbreviateToken, activeRunTree, addMetadata, buildSettleMetadata, buildVerifyMetadata, redactMetadataKeys, settlementSpan, verifySpan, } from '../langsmith/spans.js';
 /**
  * Thrown when payment verification fails or no token is provided.
  *
@@ -56,6 +57,38 @@ export class PaymentRequiredError extends Error {
         this.paymentRequired = paymentRequired;
     }
 }
+// Module-level holder for the most recent settlement receipt. LangGraph copies
+// `RunnableConfig.configurable` per node, so the in-place write to
+// `config.configurable.payment_settlement` is not visible to the buyer's outer
+// scope. A module-level slot is the simplest reliable signal. It is
+// intentionally single-tenant — if the same process runs multiple concurrent
+// settlements, the last writer wins. This race is not limited to multi-tenant
+// servers: a single `createPaidReactAgent` run can also hit it, because a ReAct
+// agent may execute several paid tools in parallel within one LLM turn via
+// `ToolNode`, and this single slot only retains the last writer. For
+// multi-tenant or parallel-tool use cases, surface the receipt via a callback
+// or via observability (see Sprint 1 of the LangChain epic).
+let lastSettlementReceipt;
+/**
+ * Return the most recent settlement receipt produced by {@link requiresPayment}.
+ *
+ * Use this after invoking a LangChain/LangGraph runnable whose tool is wrapped
+ * with {@link requiresPayment} to recover the settlement receipt
+ * (`creditsRedeemed`, `remainingBalance`, `transaction`, `network`, `payer`)
+ * without threading it back through the runnable config (which LangGraph copies
+ * per node, so the in-place write is invisible to the outer scope).
+ *
+ * Returns `undefined` if no settlement has happened yet in this process, or if
+ * the most recent invocation raised before reaching the settle phase.
+ *
+ * @remarks
+ * This accessor reads from a module-level slot. In multi-tenant processes (e.g.
+ * a server handling concurrent settlements), the value reflects whichever
+ * invocation settled most recently — there is no per-call isolation.
+ */
+export function lastSettlement() {
+    return lastSettlementReceipt;
+}
 /**
  * Extract the payment token from a LangChain RunnableConfig.
  *
@@ -82,6 +115,17 @@ function storeInConfigurable(config, key, value) {
         return;
     configurable[key] = value;
 }
+/**
+ * Remove a key from config.configurable if present (no-op otherwise).
+ */
+function removeFromConfigurable(config, key) {
+    if (config == null || typeof config !== 'object')
+        return;
+    const configurable = config.configurable;
+    if (configurable == null || typeof configurable !== 'object')
+        return;
+    delete configurable[key];
+}
 /**
  * Wraps a LangChain.js tool implementation with x402 payment verification and settlement.
  *
@@ -126,17 +170,82 @@ function storeInConfigurable(config, key, value) {
 export function requiresPayment(fn, options) {
     const { payments, planId, credits = 1, agentId, network } = options;
     return async (args, config) => {
+        // Reset the module-level slot at the START of every invocation, before
+        // verify. Any failure that does not reach the settle-success write (a
+        // verify failure / PaymentRequiredError, or a swallowed settle failure)
+        // then leaves lastSettlement() returning `undefined` rather than a stale
+        // receipt from a previous invocation — matching the JSDoc contract on
+        // lastSettlement().
+        lastSettlementReceipt = undefined;
         // Build payment required object
         const paymentRequired = buildPaymentRequired(planId, {
             endpoint: fn.name || 'tool',
             agentId,
             network,
         });
+        // The scheme/network the verify span advertises come from the resolved
+        // X402 scheme so the span metadata matches what the buyer paid against.
+        const accepted = paymentRequired.accepts[0];
+        const planIds = paymentRequired.accepts
+            .map((a) => a.planId)
+            .filter((p) => Boolean(p));
+        const resolvedScheme = accepted?.scheme;
+        const resolvedNetwork = network ?? accepted?.network;
+        // LangChain auto-captures every key in config.configurable into the parent
+        // tool span's metadata, and child spans inherit it at construction time.
+        // Strip the full x402 access token from the parent BEFORE opening the verify
+        // span so neither the parent nor the child carries the raw credential — only
+        // the abbreviated nvm.payment_token remains for correlation.
+        const parentRunTree = await activeRunTree();
+        redactMetadataKeys(parentRunTree, 'payment_token');
+        const verifyStarted = Date.now();
+        // Open the verify span BEFORE the token-presence check so failed probes
+        // (no payment_token in config) still produce a clearly-named span with the
+        // static nvm.* attrs attached to both the span and the parent tool span.
+        const vspan = await verifySpan({
+            planIds,
+            scheme: resolvedScheme,
+            network: resolvedNetwork,
+            agentId,
+        });
+        // Pre-verify metadata is best-effort and static-only.
+        const preVerifyMd = buildVerifyMetadata({
+            planIds,
+            scheme: resolvedScheme,
+            network: resolvedNetwork,
+            agentId,
+        });
+        vspan.addMetadata(preVerifyMd);
+        addMetadata(parentRunTree, preVerifyMd);
         // Extract token from config.configurable.payment_token
         const token = extractPaymentToken(config);
         if (!token) {
-            throw new PaymentRequiredError("Payment required: missing payment_token in config.configurable", paymentRequired);
+            await vspan.end(new Error('missing payment_token in config.configurable'));
+            throw new PaymentRequiredError('Payment required: missing payment_token in config.configurable', paymentRequired);
         }
+        // Drop the raw token from configurable now that we hold it in `token`.
+        // LangChain's `ensureConfig` re-promotes every configurable scalar into a
+        // runnable's `metadata` on EACH invocation, so any traced runnable the tool
+        // body spawns (an LLM call, a sub-chain) sharing this config would otherwise
+        // re-leak the full credential into its own span metadata — and a child run
+        // opened *during* `fn()` would capture it before the settle-side
+        // `redactMetadataKeys` below could run. Removing the key here is the
+        // proactive complement to that reactive redaction. This MUST run after
+        // extraction (deleting earlier would make `extractPaymentToken` return null)
+        // and before `fn()` — guaranteed, since `fn()` is called further down.
+        // Settlement uses the local `token`, never configurable, so removal is
+        // non-functional. On the `tool()`/LangGraph path LangChain hands the wrapper
+        // a per-invocation config copy, so this does not mutate a config the caller
+        // reuses across sibling tools.
+        removeFromConfigurable(config, 'payment_token');
+        // Abbreviate/redact the token ONCE here (mirrors Python's
+        // attach_metadata_safely pre-abbreviation) and pass the result into the
+        // metadata builders. abbreviateToken is idempotent, so the builders leave
+        // it unchanged — this means the short-token warning fires at most once per
+        // call (not once per verify AND once per settle), and the raw token never
+        // reaches the builders' frame locals (defense against exception enrichers
+        // that capture locals).
+        const abbreviatedToken = abbreviateToken(token);
         // Resolve pre-execution credits (static only; callable deferred to post-execution)
         const creditsToVerify = typeof credits === 'number' ? credits : 1;
         // Verify permissions
@@ -149,14 +258,38 @@ export function requiresPayment(fn, options) {
             });
         }
         catch (error) {
+            await vspan.end(error);
             throw new PaymentRequiredError(`Payment verification failed: ${error instanceof Error ? error.message : String(error)}`, paymentRequired);
         }
+        // Augment span metadata with verification results + timing (both span and
+        // parent), then close the verify span. Best-effort: a metadata failure must
+        // not mask the PaymentRequiredError that may follow.
+        const verifyMd = buildVerifyMetadata({
+            planIds,
+            scheme: resolvedScheme,
+            network: resolvedNetwork,
+            agentId,
+            verification,
+            durationMs: Date.now() - verifyStarted,
+            token: abbreviatedToken,
+        });
+        vspan.addMetadata(verifyMd);
+        addMetadata(parentRunTree, verifyMd);
         if (!verification.isValid) {
+            await vspan.end(new Error(verification.invalidReason || 'verification failed'));
             throw new PaymentRequiredError(`Payment verification failed: ${verification.invalidReason || 'Insufficient credits or invalid token'}`, paymentRequired);
         }
-        // Store payment context
+        await vspan.end();
+        // Store payment context. The `token` field carries the ABBREVIATED
+        // reference, never the raw credential: `payment_context` is written into
+        // `config.configurable`, which LangChain can capture into span metadata, so
+        // persisting the full token here would reopen the very leak the parent-tree
+        // `redactMetadataKeys('payment_token')` calls close — and a child run opened
+        // *during* the tool body would capture it before any post-hoc redaction
+        // could run. `abbreviatedToken` is always defined past the `!token` guard
+        // above; `?? ''` is a belt-and-suspenders that can never fall back to raw.
         const paymentContext = {
-            token,
+            token: abbreviatedToken ?? '',
             paymentRequired,
             creditsToSettle: creditsToVerify,
             verified: true,
@@ -170,18 +303,52 @@ export function requiresPayment(fn, options) {
         const finalCredits = typeof credits === 'function'
             ? credits({ args: args, result })
             : credits;
-        // Settle credits
+        // Settle credits, wrapped in an nvm:settlement span (mirrors Python's
+        // settlement_span around settle_permissions).
+        //
+        // Re-fetch the active run tree: `fn()` may have opened nested traced runs, so
+        // `activeRunTree()` can now return a different RunTree than the verify-side
+        // redaction at the top of this function scrubbed. We already removed
+        // `payment_token` from `config.configurable` before `fn()` ran, so newly
+        // opened child runs can no longer re-promote the raw credential — this
+        // re-redaction is now defense-in-depth, covering any RunTree whose metadata
+        // was populated before that removal took effect. Redact BEFORE opening the
+        // settlement span so the credential never rides into the settle child span or
+        // the (possibly new) parent tree.
+        const settleParentRunTree = await activeRunTree();
+        redactMetadataKeys(settleParentRunTree, 'payment_token');
+        const settleStarted = Date.now();
+        const sspan = await settlementSpan({ planIds, agentId });
         try {
             const settlement = await payments.facilitator.settlePermissions({
                 paymentRequired,
                 x402AccessToken: token,
-                maxAmount: BigInt(finalCredits),
+                // A dynamic `credits` callable can return a float (e.g. length/100).
+                // `BigInt(1.5)` throws RangeError, which the surrounding try/catch
+                // swallows — credits are never burned and the caller is never told.
+                // Floor to keep the settle on the money path.
+                maxAmount: BigInt(Math.floor(finalCredits)),
                 agentRequestId: paymentContext.agentRequestId,
             });
             storeInConfigurable(config, 'payment_settlement', settlement);
+            // Also publish to the module-level slot so lastSettlement() can recover
+            // the receipt — LangGraph copies config.configurable per node, hiding the
+            // line above from the buyer's outer scope.
+            lastSettlementReceipt = settlement;
+            const settleMd = buildSettleMetadata({
+                settlement,
+                planIds,
+                agentId,
+                durationMs: Date.now() - settleStarted,
+                token: abbreviatedToken,
+            });
+            sspan.addMetadata(settleMd);
+            addMetadata(settleParentRunTree, settleMd);
+            await sspan.end();
         }
         catch (settleError) {
             console.error('Payment settlement failed:', settleError);
+            await sspan.end(settleError);
             // Still return result even if settlement fails
         }
         return result;

package/dist/x402/langchain/decorator.js.map

@@ -1 +1 @@
-{"version":3,"file":"decorator.js","sourceRoot":"","sources":["../../../src/x402/langchain/decorator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AAGH,OAAO,EACL,oBAAoB,GAGrB,MAAM,uBAAuB,CAAA;AAkC9B;;;;;GAKG;AACH,MAAM,OAAO,oBAAqB,SAAQ,KAAK;IAI7C,YAAY,OAAe,EAAE,eAAqC;QAChE,KAAK,CAAC,OAAO,CAAC,CAAA;QACd,IAAI,CAAC,IAAI,GAAG,sBAAsB,CAAA;QAClC,IAAI,CAAC,eAAe,GAAG,eAAe,CAAA;IACxC,CAAC;CACF;AAoBD;;;;;GAKG;AACH,SAAS,mBAAmB,CAAC,MAAe;IAC1C,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAA;IAE7D,MAAM,YAAY,GAAI,MAAkC,CAAC,YAAY,CAAA;IACrE,IAAI,YAAY,IAAI,IAAI,IAAI,OAAO,YAAY,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAA;IAEzE,MAAM,KAAK,GAAI,YAAwC,CAAC,aAAa,CAAA;IACrE,OAAO,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAA;AACjD,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,MAAe,EAAE,GAAW,EAAE,KAAc;IACvE,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ;QAAE,OAAM;IAExD,MAAM,YAAY,GAAI,MAAkC,CAAC,YAAY,CAAA;IACrE,IAAI,YAAY,IAAI,IAAI,IAAI,OAAO,YAAY,KAAK,QAAQ;QAAE,OAE7D;IAAC,YAAwC,CAAC,GAAG,CAAC,GAAG,KAAK,CAAA;AACzD,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwCG;AACH,MAAM,UAAU,eAAe,CAC7B,EAAiE,EACjE,OAA+B;IAE/B,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,GAAG,CAAC,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,OAAO,CAAA;IAEnE,OAAO,KAAK,EAAE,IAAW,EAAE,MAAgB,EAAoB,EAAE;QAC/D,gCAAgC;QAChC,MAAM,eAAe,GAAG,oBAAoB,CAAC,MAAM,EAAE;YACnD,QAAQ,EAAE,EAAE,CAAC,IAAI,IAAI,MAAM;YAC3B,OAAO;YACP,OAAO;SACR,CAAC,CAAA;QAEF,uDAAuD;QACvD,MAAM,KAAK,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAA;QACzC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,oBAAoB,CAC5B,gEAAgE,EAChE,eAAe,CAChB,CAAA;QACH,CAAC;QAED,mFAAmF;QACnF,MAAM,eAAe,GAAG,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAA;QAEjE,qBAAqB;QACrB,IAAI,YAAqC,CAAA;QACzC,IAAI,CAAC;YACH,YAAY,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,iBAAiB,CAAC;gBAC1D,eAAe;gBACf,eAAe,EAAE,KAAK;gBACtB,SAAS,EAAE,MAAM,CAAC,eAAe,CAAC;aACnC,CAAC,CAAA;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,oBAAoB,CAC5B,gCAAgC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,EACxF,eAAe,CAChB,CAAA;QACH,CAAC;QAED,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;YAC1B,MAAM,IAAI,oBAAoB,CAC5B,gCAAgC,YAAY,CAAC,aAAa,IAAI,uCAAuC,EAAE,EACvG,eAAe,CAChB,CAAA;QACH,CAAC;QAED,wBAAwB;QACxB,MAAM,cAAc,GAAmB;YACrC,KAAK;YACL,eAAe;YACf,eAAe,EAAE,eAAe;YAChC,QAAQ,EAAE,IAAI;YACd,cAAc,EAAE,YAAY,CAAC,YAAY,EAAE,cAAc,IAAI,YAAY,CAAC,cAAc;YACxF,YAAY,EAAE,YAAY,CAAC,YAAY;SACxC,CAAA;QACD,mBAAmB,CAAC,MAAM,EAAE,iBAAiB,EAAE,cAAc,CAAC,CAAA;QAE9D,4BAA4B;QAC5B,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,CAAA;QAErC,yDAAyD;QACzD,MAAM,YAAY,GAChB,OAAO,OAAO,KAAK,UAAU;YAC3B,CAAC,CAAC,OAAO,CAAC,EAAE,IAAI,EAAE,IAA+B,EAAE,MAAM,EAAE,CAAC;YAC5D,CAAC,CAAC,OAAO,CAAA;QAEb,iBAAiB;QACjB,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,iBAAiB,CAAC;gBAC9D,eAAe;gBACf,eAAe,EAAE,KAAK;gBACtB,SAAS,EAAE,MAAM,CAAC,YAAY,CAAC;gBAC/B,cAAc,EAAE,cAAc,CAAC,cAAc;aAC9C,CAAC,CAAA;YACF,mBAAmB,CAAC,MAAM,EAAE,oBAAoB,EAAE,UAAU,CAAC,CAAA;QAC/D,CAAC;QAAC,OAAO,WAAW,EAAE,CAAC;YACrB,OAAO,CAAC,KAAK,CAAC,4BAA4B,EAAE,WAAW,CAAC,CAAA;YACxD,+CAA+C;QACjD,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC,CAAA;AACH,CAAC","sourcesContent":["/**\n * LangChain tool wrapper for Nevermined payment protection using the x402 protocol.\n *\n * Wraps a LangChain.js tool implementation function to:\n *\n * 1. Extract the x402 payment token from `config.configurable.payment_token`\n * 2. Verify the subscriber has sufficient credits\n * 3. Execute the wrapped tool function\n * 4. Settle (burn) credits after successful execution\n *\n * Payment errors throw `PaymentRequiredError` so LangChain agents can catch and\n * surface them to the user. The error carries the full `X402PaymentRequired`\n * object for programmatic token acquisition.\n *\n * The `credits` option accepts two forms:\n *   - **Static number**: `credits: 1` — always charges 1 credit\n *   - **Function**: `credits: (ctx) => Math.max(1, ctx.result.length / 100)` — dynamic\n *\n * When `credits` is a function, it receives `{ args, result }` after tool execution.\n *\n * @example\n * ```typescript\n * import { tool } from '@langchain/core/tools'\n * import { z } from 'zod'\n * import { Payments } from '@nevermined-io/payments'\n * import { requiresPayment } from '@nevermined-io/payments/langchain'\n *\n * const payments = Payments.getInstance({ nvmApiKey: '...', environment: 'testing' })\n *\n * const searchData = tool(\n *   requiresPayment(\n *     (args) => `Results for ${args.query}`,\n *     { payments, planId: PLAN_ID, credits: 1 }\n *   ),\n *   { name: 'search_data', description: 'Search for data', schema: z.object({ query: z.string() }) }\n * )\n *\n * // Invoke with payment token\n * const result = await searchData.invoke(\n *   { query: 'AI trends' },\n *   { configurable: { payment_token: accessToken } }\n * )\n * ```\n */\n\nimport type { Payments } from '../../payments.js'\nimport {\n  buildPaymentRequired,\n  type X402PaymentRequired,\n  type VerifyPermissionsResult,\n} from '../facilitator-api.js'\n\n/**\n * Context passed to a dynamic credits function after tool execution.\n */\nexport interface CreditsContext {\n  /** The tool's input arguments */\n  args: Record<string, unknown>\n  /** The tool's return value */\n  result: unknown\n}\n\n/**\n * Credits can be a static number or a function that receives\n * `{ args, result }` and returns the number of credits to charge.\n */\nexport type CreditsCallable = (ctx: CreditsContext) => number\n\n/**\n * Options for the `requiresPayment` wrapper.\n */\nexport interface RequiresPaymentOptions {\n  /** The Payments instance (with payments.facilitator) */\n  payments: Payments\n  /** Single plan ID to accept */\n  planId: string\n  /** Number of credits to charge, or a function for dynamic pricing (default: 1) */\n  credits?: number | CreditsCallable\n  /** Optional agent identifier */\n  agentId?: string\n  /** Blockchain network in CAIP-2 format (default: 'eip155:84532' for Base Sepolia) */\n  network?: string\n}\n\n/**\n * Thrown when payment verification fails or no token is provided.\n *\n * Carries the `X402PaymentRequired` object so callers can inspect\n * accepted plans and acquire the correct payment token.\n */\nexport class PaymentRequiredError extends Error {\n  /** The x402 PaymentRequired object for programmatic token acquisition */\n  paymentRequired: X402PaymentRequired | undefined\n\n  constructor(message: string, paymentRequired?: X402PaymentRequired) {\n    super(message)\n    this.name = 'PaymentRequiredError'\n    this.paymentRequired = paymentRequired\n  }\n}\n\n/**\n * Payment context stored in `config.configurable.payment_context` after verification.\n */\nexport interface PaymentContext {\n  /** The x402 access token */\n  token: string\n  /** The payment required object */\n  paymentRequired: X402PaymentRequired\n  /** Number of credits to settle */\n  creditsToSettle: number\n  /** Whether verification was successful */\n  verified: boolean\n  /** Agent request ID for observability tracking */\n  agentRequestId?: string\n  /** Agent request context for observability */\n  agentRequest?: unknown\n}\n\n/**\n * Extract the payment token from a LangChain RunnableConfig.\n *\n * In LangChain.js, the config is the optional second parameter to tool functions:\n * `(args, config?) => ...` where config is a `RunnableConfig`.\n */\nfunction extractPaymentToken(config: unknown): string | null {\n  if (config == null || typeof config !== 'object') return null\n\n  const configurable = (config as Record<string, unknown>).configurable\n  if (configurable == null || typeof configurable !== 'object') return null\n\n  const token = (configurable as Record<string, unknown>).payment_token\n  return typeof token === 'string' ? token : null\n}\n\n/**\n * Store a value in config.configurable if available.\n */\nfunction storeInConfigurable(config: unknown, key: string, value: unknown): void {\n  if (config == null || typeof config !== 'object') return\n\n  const configurable = (config as Record<string, unknown>).configurable\n  if (configurable == null || typeof configurable !== 'object') return\n\n  ;(configurable as Record<string, unknown>)[key] = value\n}\n\n/**\n * Wraps a LangChain.js tool implementation with x402 payment verification and settlement.\n *\n * This is a higher-order function that takes the tool's implementation function and\n * payment options, returning a new function with the same signature that:\n *\n * 1. Extracts the payment token from `config.configurable.payment_token`\n * 2. Verifies the subscriber has sufficient credits\n * 3. Calls the original tool function\n * 4. Settles (burns) credits\n * 5. Stores `payment_context` and `payment_settlement` in `config.configurable`\n *\n * @param fn - The tool implementation function: `(args, config?) => result`\n * @param options - Payment configuration\n * @returns Wrapped function with the same signature\n *\n * @example Static credits\n * ```typescript\n * const searchData = tool(\n *   requiresPayment(\n *     (args) => `Results for ${args.query}`,\n *     { payments, planId: PLAN_ID, credits: 1 }\n *   ),\n *   { name: 'search_data', description: 'Search', schema: z.object({ query: z.string() }) }\n * )\n * ```\n *\n * @example Dynamic credits\n * ```typescript\n * const summarize = tool(\n *   requiresPayment(\n *     (args) => `Summary of ${args.text}`,\n *     {\n *       payments, planId: PLAN_ID,\n *       credits: (ctx) => Math.max(1, Math.floor(String(ctx.result).length / 100)),\n *     }\n *   ),\n *   { name: 'summarize', description: 'Summarize text', schema: z.object({ text: z.string() }) }\n * )\n * ```\n */\nexport function requiresPayment<TArgs extends Record<string, unknown>, TResult>(\n  fn: (args: TArgs, config?: unknown) => TResult | Promise<TResult>,\n  options: RequiresPaymentOptions,\n): (args: TArgs, config?: unknown) => Promise<TResult> {\n  const { payments, planId, credits = 1, agentId, network } = options\n\n  return async (args: TArgs, config?: unknown): Promise<TResult> => {\n    // Build payment required object\n    const paymentRequired = buildPaymentRequired(planId, {\n      endpoint: fn.name || 'tool',\n      agentId,\n      network,\n    })\n\n    // Extract token from config.configurable.payment_token\n    const token = extractPaymentToken(config)\n    if (!token) {\n      throw new PaymentRequiredError(\n        \"Payment required: missing payment_token in config.configurable\",\n        paymentRequired,\n      )\n    }\n\n    // Resolve pre-execution credits (static only; callable deferred to post-execution)\n    const creditsToVerify = typeof credits === 'number' ? credits : 1\n\n    // Verify permissions\n    let verification: VerifyPermissionsResult\n    try {\n      verification = await payments.facilitator.verifyPermissions({\n        paymentRequired,\n        x402AccessToken: token,\n        maxAmount: BigInt(creditsToVerify),\n      })\n    } catch (error) {\n      throw new PaymentRequiredError(\n        `Payment verification failed: ${error instanceof Error ? error.message : String(error)}`,\n        paymentRequired,\n      )\n    }\n\n    if (!verification.isValid) {\n      throw new PaymentRequiredError(\n        `Payment verification failed: ${verification.invalidReason || 'Insufficient credits or invalid token'}`,\n        paymentRequired,\n      )\n    }\n\n    // Store payment context\n    const paymentContext: PaymentContext = {\n      token,\n      paymentRequired,\n      creditsToSettle: creditsToVerify,\n      verified: true,\n      agentRequestId: verification.agentRequest?.agentRequestId || verification.agentRequestId,\n      agentRequest: verification.agentRequest,\n    }\n    storeInConfigurable(config, 'payment_context', paymentContext)\n\n    // Execute the tool function\n    const result = await fn(args, config)\n\n    // Resolve final credits (may be dynamic based on result)\n    const finalCredits =\n      typeof credits === 'function'\n        ? credits({ args: args as Record<string, unknown>, result })\n        : credits\n\n    // Settle credits\n    try {\n      const settlement = await payments.facilitator.settlePermissions({\n        paymentRequired,\n        x402AccessToken: token,\n        maxAmount: BigInt(finalCredits),\n        agentRequestId: paymentContext.agentRequestId,\n      })\n      storeInConfigurable(config, 'payment_settlement', settlement)\n    } catch (settleError) {\n      console.error('Payment settlement failed:', settleError)\n      // Still return result even if settlement fails\n    }\n\n    return result\n  }\n}\n"]}
+{"version":3,"file":"decorator.js","sourceRoot":"","sources":["../../../src/x402/langchain/decorator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AAGH,OAAO,EACL,oBAAoB,GAIrB,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EACL,eAAe,EACf,aAAa,EACb,WAAW,EACX,mBAAmB,EACnB,mBAAmB,EACnB,kBAAkB,EAClB,cAAc,EACd,UAAU,GACX,MAAM,uBAAuB,CAAA;AA6C9B;;;;;GAKG;AACH,MAAM,OAAO,oBAAqB,SAAQ,KAAK;IAI7C,YAAY,OAAe,EAAE,eAAqC;QAChE,KAAK,CAAC,OAAO,CAAC,CAAA;QACd,IAAI,CAAC,IAAI,GAAG,sBAAsB,CAAA;QAClC,IAAI,CAAC,eAAe,GAAG,eAAe,CAAA;IACxC,CAAC;CACF;AA8BD,+EAA+E;AAC/E,mEAAmE;AACnE,+EAA+E;AAC/E,oEAAoE;AACpE,6EAA6E;AAC7E,8EAA8E;AAC9E,gFAAgF;AAChF,2EAA2E;AAC3E,qEAAqE;AACrE,8EAA8E;AAC9E,6DAA6D;AAC7D,IAAI,qBAA0D,CAAA;AAE9D;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,UAAU,cAAc;IAC5B,OAAO,qBAAqB,CAAA;AAC9B,CAAC;AAED;;;;;GAKG;AACH,SAAS,mBAAmB,CAAC,MAAe;IAC1C,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAA;IAE7D,MAAM,YAAY,GAAI,MAAkC,CAAC,YAAY,CAAA;IACrE,IAAI,YAAY,IAAI,IAAI,IAAI,OAAO,YAAY,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAA;IAEzE,MAAM,KAAK,GAAI,YAAwC,CAAC,aAAa,CAAA;IACrE,OAAO,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAA;AACjD,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,MAAe,EAAE,GAAW,EAAE,KAAc;IACvE,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ;QAAE,OAAM;IAExD,MAAM,YAAY,GAAI,MAAkC,CAAC,YAAY,CAAA;IACrE,IAAI,YAAY,IAAI,IAAI,IAAI,OAAO,YAAY,KAAK,QAAQ;QAAE,OAC7D;IAAC,YAAwC,CAAC,GAAG,CAAC,GAAG,KAAK,CAAA;AACzD,CAAC;AAED;;GAEG;AACH,SAAS,sBAAsB,CAAC,MAAe,EAAE,GAAW;IAC1D,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ;QAAE,OAAM;IAExD,MAAM,YAAY,GAAI,MAAkC,CAAC,YAAY,CAAA;IACrE,IAAI,YAAY,IAAI,IAAI,IAAI,OAAO,YAAY,KAAK,QAAQ;QAAE,OAAM;IACpE,OAAQ,YAAwC,CAAC,GAAG,CAAC,CAAA;AACvD,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAwCG;AACH,MAAM,UAAU,eAAe,CAC7B,EAAiE,EACjE,OAA+B;IAE/B,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,GAAG,CAAC,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,OAAO,CAAA;IAEnE,OAAO,KAAK,EAAE,IAAW,EAAE,MAAgB,EAAoB,EAAE;QAC/D,uEAAuE;QACvE,sEAAsE;QACtE,wEAAwE;QACxE,yEAAyE;QACzE,sEAAsE;QACtE,oBAAoB;QACpB,qBAAqB,GAAG,SAAS,CAAA;QAEjC,gCAAgC;QAChC,MAAM,eAAe,GAAG,oBAAoB,CAAC,MAAM,EAAE;YACnD,QAAQ,EAAE,EAAE,CAAC,IAAI,IAAI,MAAM;YAC3B,OAAO;YACP,OAAO;SACR,CAAC,CAAA;QACF,uEAAuE;QACvE,wEAAwE;QACxE,MAAM,QAAQ,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC,CAAC,CAAA;QAC3C,MAAM,OAAO,GAAG,eAAe,CAAC,OAAO;aACpC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC;aACpB,MAAM,CAAC,CAAC,CAAC,EAAe,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAA;QACzC,MAAM,cAAc,GAAG,QAAQ,EAAE,MAAM,CAAA;QACvC,MAAM,eAAe,GAAG,OAAO,IAAI,QAAQ,EAAE,OAAO,CAAA;QAEpD,2EAA2E;QAC3E,yEAAyE;QACzE,6EAA6E;QAC7E,6EAA6E;QAC7E,6DAA6D;QAC7D,MAAM,aAAa,GAAG,MAAM,aAAa,EAAE,CAAA;QAC3C,kBAAkB,CAAC,aAAa,EAAE,eAAe,CAAC,CAAA;QAElD,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;QAChC,wEAAwE;QACxE,2EAA2E;QAC3E,yEAAyE;QACzE,MAAM,KAAK,GAAG,MAAM,UAAU,CAAC;YAC7B,OAAO;YACP,MAAM,EAAE,cAAc;YACtB,OAAO,EAAE,eAAe;YACxB,OAAO;SACR,CAAC,CAAA;QACF,sDAAsD;QACtD,MAAM,WAAW,GAAG,mBAAmB,CAAC;YACtC,OAAO;YACP,MAAM,EAAE,cAAc;YACtB,OAAO,EAAE,eAAe;YACxB,OAAO;SACR,CAAC,CAAA;QACF,KAAK,CAAC,WAAW,CAAC,WAAW,CAAC,CAAA;QAC9B,WAAW,CAAC,aAAa,EAAE,WAAW,CAAC,CAAA;QAEvC,uDAAuD;QACvD,MAAM,KAAK,GAAG,mBAAmB,CAAC,MAAM,CAAC,CAAA;QACzC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,KAAK,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC,CAAA;YAC1E,MAAM,IAAI,oBAAoB,CAC5B,gEAAgE,EAChE,eAAe,CAChB,CAAA;QACH,CAAC;QAED,uEAAuE;QACvE,0EAA0E;QAC1E,4EAA4E;QAC5E,6EAA6E;QAC7E,2EAA2E;QAC3E,iEAAiE;QACjE,qEAAqE;QACrE,uEAAuE;QACvE,6EAA6E;QAC7E,uEAAuE;QACvE,uEAAuE;QACvE,6EAA6E;QAC7E,4EAA4E;QAC5E,+BAA+B;QAC/B,sBAAsB,CAAC,MAAM,EAAE,eAAe,CAAC,CAAA;QAE/C,0DAA0D;QAC1D,wEAAwE;QACxE,0EAA0E;QAC1E,2EAA2E;QAC3E,0EAA0E;QAC1E,0EAA0E;QAC1E,wBAAwB;QACxB,MAAM,gBAAgB,GAAG,eAAe,CAAC,KAAK,CAAC,CAAA;QAE/C,mFAAmF;QACnF,MAAM,eAAe,GAAG,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAA;QAEjE,qBAAqB;QACrB,IAAI,YAAqC,CAAA;QACzC,IAAI,CAAC;YACH,YAAY,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,iBAAiB,CAAC;gBAC1D,eAAe;gBACf,eAAe,EAAE,KAAK;gBACtB,SAAS,EAAE,MAAM,CAAC,eAAe,CAAC;aACnC,CAAC,CAAA;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;YACtB,MAAM,IAAI,oBAAoB,CAC5B,gCAAgC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,EACxF,eAAe,CAChB,CAAA;QACH,CAAC;QAED,0EAA0E;QAC1E,4EAA4E;QAC5E,qDAAqD;QACrD,MAAM,QAAQ,GAAG,mBAAmB,CAAC;YACnC,OAAO;YACP,MAAM,EAAE,cAAc;YACtB,OAAO,EAAE,eAAe;YACxB,OAAO;YACP,YAAY;YACZ,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,aAAa;YACtC,KAAK,EAAE,gBAAgB;SACxB,CAAC,CAAA;QACF,KAAK,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAA;QAC3B,WAAW,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAA;QAEpC,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;YAC1B,MAAM,KAAK,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,YAAY,CAAC,aAAa,IAAI,qBAAqB,CAAC,CAAC,CAAA;YAC/E,MAAM,IAAI,oBAAoB,CAC5B,gCAAgC,YAAY,CAAC,aAAa,IAAI,uCAAuC,EAAE,EACvG,eAAe,CAChB,CAAA;QACH,CAAC;QAED,MAAM,KAAK,CAAC,GAAG,EAAE,CAAA;QAEjB,mEAAmE;QACnE,yEAAyE;QACzE,4EAA4E;QAC5E,4EAA4E;QAC5E,6EAA6E;QAC7E,wEAAwE;QACxE,0EAA0E;QAC1E,2EAA2E;QAC3E,MAAM,cAAc,GAAmB;YACrC,KAAK,EAAE,gBAAgB,IAAI,EAAE;YAC7B,eAAe;YACf,eAAe,EAAE,eAAe;YAChC,QAAQ,EAAE,IAAI;YACd,cAAc,EAAE,YAAY,CAAC,YAAY,EAAE,cAAc,IAAI,YAAY,CAAC,cAAc;YACxF,YAAY,EAAE,YAAY,CAAC,YAAY;SACxC,CAAA;QACD,mBAAmB,CAAC,MAAM,EAAE,iBAAiB,EAAE,cAAc,CAAC,CAAA;QAE9D,4BAA4B;QAC5B,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,CAAA;QAErC,yDAAyD;QACzD,MAAM,YAAY,GAChB,OAAO,OAAO,KAAK,UAAU;YAC3B,CAAC,CAAC,OAAO,CAAC,EAAE,IAAI,EAAE,IAA+B,EAAE,MAAM,EAAE,CAAC;YAC5D,CAAC,CAAC,OAAO,CAAA;QAEb,sEAAsE;QACtE,8CAA8C;QAC9C,EAAE;QACF,8EAA8E;QAC9E,4EAA4E;QAC5E,qEAAqE;QACrE,yEAAyE;QACzE,uEAAuE;QACvE,4EAA4E;QAC5E,2EAA2E;QAC3E,8EAA8E;QAC9E,kCAAkC;QAClC,MAAM,mBAAmB,GAAG,MAAM,aAAa,EAAE,CAAA;QACjD,kBAAkB,CAAC,mBAAmB,EAAE,eAAe,CAAC,CAAA;QACxD,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;QAChC,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC,CAAA;QACxD,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,iBAAiB,CAAC;gBAC9D,eAAe;gBACf,eAAe,EAAE,KAAK;gBACtB,qEAAqE;gBACrE,mEAAmE;gBACnE,oEAAoE;gBACpE,8CAA8C;gBAC9C,SAAS,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;gBAC3C,cAAc,EAAE,cAAc,CAAC,cAAc;aAC9C,CAAC,CAAA;YACF,mBAAmB,CAAC,MAAM,EAAE,oBAAoB,EAAE,UAAU,CAAC,CAAA;YAC7D,wEAAwE;YACxE,0EAA0E;YAC1E,2CAA2C;YAC3C,qBAAqB,GAAG,UAAU,CAAA;YAElC,MAAM,QAAQ,GAAG,mBAAmB,CAAC;gBACnC,UAAU;gBACV,OAAO;gBACP,OAAO;gBACP,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,aAAa;gBACtC,KAAK,EAAE,gBAAgB;aACxB,CAAC,CAAA;YACF,KAAK,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAA;YAC3B,WAAW,CAAC,mBAAmB,EAAE,QAAQ,CAAC,CAAA;YAC1C,MAAM,KAAK,CAAC,GAAG,EAAE,CAAA;QACnB,CAAC;QAAC,OAAO,WAAW,EAAE,CAAC;YACrB,OAAO,CAAC,KAAK,CAAC,4BAA4B,EAAE,WAAW,CAAC,CAAA;YACxD,MAAM,KAAK,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;YAC5B,+CAA+C;QACjD,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC,CAAA;AACH,CAAC","sourcesContent":["/**\n * LangChain tool wrapper for Nevermined payment protection using the x402 protocol.\n *\n * Wraps a LangChain.js tool implementation function to:\n *\n * 1. Extract the x402 payment token from `config.configurable.payment_token`\n * 2. Verify the subscriber has sufficient credits\n * 3. Execute the wrapped tool function\n * 4. Settle (burn) credits after successful execution\n *\n * Payment errors throw `PaymentRequiredError` so LangChain agents can catch and\n * surface them to the user. The error carries the full `X402PaymentRequired`\n * object for programmatic token acquisition.\n *\n * The `credits` option accepts two forms:\n *   - **Static number**: `credits: 1` — always charges 1 credit\n *   - **Function**: `credits: (ctx) => Math.max(1, Math.floor(ctx.result.length / 100))` — dynamic\n *\n * When `credits` is a function, it receives `{ args, result }` after tool execution.\n *\n * @example\n * ```typescript\n * import { tool } from '@langchain/core/tools'\n * import { z } from 'zod'\n * import { Payments } from '@nevermined-io/payments'\n * import { requiresPayment } from '@nevermined-io/payments/langchain'\n *\n * const payments = Payments.getInstance({ nvmApiKey: '...', environment: 'testing' })\n *\n * const searchData = tool(\n *   requiresPayment(\n *     (args) => `Results for ${args.query}`,\n *     { payments, planId: PLAN_ID, credits: 1 }\n *   ),\n *   { name: 'search_data', description: 'Search for data', schema: z.object({ query: z.string() }) }\n * )\n *\n * // Invoke with payment token\n * const result = await searchData.invoke(\n *   { query: 'AI trends' },\n *   { configurable: { payment_token: accessToken } }\n * )\n * ```\n */\n\nimport type { Payments } from '../../payments.js'\nimport {\n  buildPaymentRequired,\n  type X402PaymentRequired,\n  type VerifyPermissionsResult,\n  type SettlePermissionsResult,\n} from '../facilitator-api.js'\nimport {\n  abbreviateToken,\n  activeRunTree,\n  addMetadata,\n  buildSettleMetadata,\n  buildVerifyMetadata,\n  redactMetadataKeys,\n  settlementSpan,\n  verifySpan,\n} from '../langsmith/spans.js'\n\n/**\n * Context passed to a dynamic credits function after tool execution.\n */\nexport interface CreditsContext {\n  /** The tool's input arguments */\n  args: Record<string, unknown>\n  /** The tool's return value */\n  result: unknown\n}\n\n/**\n * Credits can be a static number or a function that receives\n * `{ args, result }` and returns the number of credits to charge.\n */\nexport type CreditsCallable = (ctx: CreditsContext) => number\n\n/**\n * Options for the `requiresPayment` wrapper.\n */\nexport interface RequiresPaymentOptions {\n  /** The Payments instance (with payments.facilitator) */\n  payments: Payments\n  /** Single plan ID to accept */\n  planId: string\n  /**\n   * Number of credits to charge, or a function for dynamic pricing (default: 1).\n   *\n   * This value is sent as `maxAmount` to the facilitator. The amount actually\n   * redeemed depends on the plan's server-side credit configuration:\n   *\n   * - **Fixed plans** (`plan.credits.minAmount === plan.credits.maxAmount`)\n   *   always burn `plan.credits.maxAmount` — this value is then effectively a\n   *   no-op (see nevermined-io/nvm-monorepo#1568).\n   * - **Range plans** clamp this value into\n   *   `[plan.credits.minAmount, plan.credits.maxAmount]`.\n   */\n  credits?: number | CreditsCallable\n  /** Optional agent identifier */\n  agentId?: string\n  /** Blockchain network in CAIP-2 format (default: 'eip155:84532' for Base Sepolia) */\n  network?: string\n}\n\n/**\n * Thrown when payment verification fails or no token is provided.\n *\n * Carries the `X402PaymentRequired` object so callers can inspect\n * accepted plans and acquire the correct payment token.\n */\nexport class PaymentRequiredError extends Error {\n  /** The x402 PaymentRequired object for programmatic token acquisition */\n  paymentRequired: X402PaymentRequired | undefined\n\n  constructor(message: string, paymentRequired?: X402PaymentRequired) {\n    super(message)\n    this.name = 'PaymentRequiredError'\n    this.paymentRequired = paymentRequired\n  }\n}\n\n/**\n * Payment context stored in `config.configurable.payment_context` after verification.\n */\nexport interface PaymentContext {\n  /**\n   * Abbreviated, non-functional reference to the x402 access token — the SAME\n   * redacted form surfaced as `nvm.payment_token` (`<first 16>…<last 4>`, or a\n   * `…(short)` marker for a too-short token). The **full token is deliberately\n   * not persisted here**: this object is written into\n   * `config.configurable.payment_context`, and tracing frameworks (e.g.\n   * LangChain) can capture `config.configurable` into span metadata, so storing\n   * the raw credential would let it ride into any traced run opened during or\n   * after the tool body. Settlement uses the token read from\n   * `config.configurable.payment_token`, never this field.\n   */\n  token: string\n  /** The payment required object */\n  paymentRequired: X402PaymentRequired\n  /** Number of credits to settle */\n  creditsToSettle: number\n  /** Whether verification was successful */\n  verified: boolean\n  /** Agent request ID for observability tracking */\n  agentRequestId?: string\n  /** Agent request context for observability */\n  agentRequest?: unknown\n}\n\n// Module-level holder for the most recent settlement receipt. LangGraph copies\n// `RunnableConfig.configurable` per node, so the in-place write to\n// `config.configurable.payment_settlement` is not visible to the buyer's outer\n// scope. A module-level slot is the simplest reliable signal. It is\n// intentionally single-tenant — if the same process runs multiple concurrent\n// settlements, the last writer wins. This race is not limited to multi-tenant\n// servers: a single `createPaidReactAgent` run can also hit it, because a ReAct\n// agent may execute several paid tools in parallel within one LLM turn via\n// `ToolNode`, and this single slot only retains the last writer. For\n// multi-tenant or parallel-tool use cases, surface the receipt via a callback\n// or via observability (see Sprint 1 of the LangChain epic).\nlet lastSettlementReceipt: SettlePermissionsResult | undefined\n\n/**\n * Return the most recent settlement receipt produced by {@link requiresPayment}.\n *\n * Use this after invoking a LangChain/LangGraph runnable whose tool is wrapped\n * with {@link requiresPayment} to recover the settlement receipt\n * (`creditsRedeemed`, `remainingBalance`, `transaction`, `network`, `payer`)\n * without threading it back through the runnable config (which LangGraph copies\n * per node, so the in-place write is invisible to the outer scope).\n *\n * Returns `undefined` if no settlement has happened yet in this process, or if\n * the most recent invocation raised before reaching the settle phase.\n *\n * @remarks\n * This accessor reads from a module-level slot. In multi-tenant processes (e.g.\n * a server handling concurrent settlements), the value reflects whichever\n * invocation settled most recently — there is no per-call isolation.\n */\nexport function lastSettlement(): SettlePermissionsResult | undefined {\n  return lastSettlementReceipt\n}\n\n/**\n * Extract the payment token from a LangChain RunnableConfig.\n *\n * In LangChain.js, the config is the optional second parameter to tool functions:\n * `(args, config?) => ...` where config is a `RunnableConfig`.\n */\nfunction extractPaymentToken(config: unknown): string | null {\n  if (config == null || typeof config !== 'object') return null\n\n  const configurable = (config as Record<string, unknown>).configurable\n  if (configurable == null || typeof configurable !== 'object') return null\n\n  const token = (configurable as Record<string, unknown>).payment_token\n  return typeof token === 'string' ? token : null\n}\n\n/**\n * Store a value in config.configurable if available.\n */\nfunction storeInConfigurable(config: unknown, key: string, value: unknown): void {\n  if (config == null || typeof config !== 'object') return\n\n  const configurable = (config as Record<string, unknown>).configurable\n  if (configurable == null || typeof configurable !== 'object') return\n  ;(configurable as Record<string, unknown>)[key] = value\n}\n\n/**\n * Remove a key from config.configurable if present (no-op otherwise).\n */\nfunction removeFromConfigurable(config: unknown, key: string): void {\n  if (config == null || typeof config !== 'object') return\n\n  const configurable = (config as Record<string, unknown>).configurable\n  if (configurable == null || typeof configurable !== 'object') return\n  delete (configurable as Record<string, unknown>)[key]\n}\n\n/**\n * Wraps a LangChain.js tool implementation with x402 payment verification and settlement.\n *\n * This is a higher-order function that takes the tool's implementation function and\n * payment options, returning a new function with the same signature that:\n *\n * 1. Extracts the payment token from `config.configurable.payment_token`\n * 2. Verifies the subscriber has sufficient credits\n * 3. Calls the original tool function\n * 4. Settles (burns) credits\n * 5. Stores `payment_context` and `payment_settlement` in `config.configurable`\n *\n * @param fn - The tool implementation function: `(args, config?) => result`\n * @param options - Payment configuration\n * @returns Wrapped function with the same signature\n *\n * @example Static credits\n * ```typescript\n * const searchData = tool(\n *   requiresPayment(\n *     (args) => `Results for ${args.query}`,\n *     { payments, planId: PLAN_ID, credits: 1 }\n *   ),\n *   { name: 'search_data', description: 'Search', schema: z.object({ query: z.string() }) }\n * )\n * ```\n *\n * @example Dynamic credits\n * ```typescript\n * const summarize = tool(\n *   requiresPayment(\n *     (args) => `Summary of ${args.text}`,\n *     {\n *       payments, planId: PLAN_ID,\n *       credits: (ctx) => Math.max(1, Math.floor(String(ctx.result).length / 100)),\n *     }\n *   ),\n *   { name: 'summarize', description: 'Summarize text', schema: z.object({ text: z.string() }) }\n * )\n * ```\n */\nexport function requiresPayment<TArgs extends Record<string, unknown>, TResult>(\n  fn: (args: TArgs, config?: unknown) => TResult | Promise<TResult>,\n  options: RequiresPaymentOptions,\n): (args: TArgs, config?: unknown) => Promise<TResult> {\n  const { payments, planId, credits = 1, agentId, network } = options\n\n  return async (args: TArgs, config?: unknown): Promise<TResult> => {\n    // Reset the module-level slot at the START of every invocation, before\n    // verify. Any failure that does not reach the settle-success write (a\n    // verify failure / PaymentRequiredError, or a swallowed settle failure)\n    // then leaves lastSettlement() returning `undefined` rather than a stale\n    // receipt from a previous invocation — matching the JSDoc contract on\n    // lastSettlement().\n    lastSettlementReceipt = undefined\n\n    // Build payment required object\n    const paymentRequired = buildPaymentRequired(planId, {\n      endpoint: fn.name || 'tool',\n      agentId,\n      network,\n    })\n    // The scheme/network the verify span advertises come from the resolved\n    // X402 scheme so the span metadata matches what the buyer paid against.\n    const accepted = paymentRequired.accepts[0]\n    const planIds = paymentRequired.accepts\n      .map((a) => a.planId)\n      .filter((p): p is string => Boolean(p))\n    const resolvedScheme = accepted?.scheme\n    const resolvedNetwork = network ?? accepted?.network\n\n    // LangChain auto-captures every key in config.configurable into the parent\n    // tool span's metadata, and child spans inherit it at construction time.\n    // Strip the full x402 access token from the parent BEFORE opening the verify\n    // span so neither the parent nor the child carries the raw credential — only\n    // the abbreviated nvm.payment_token remains for correlation.\n    const parentRunTree = await activeRunTree()\n    redactMetadataKeys(parentRunTree, 'payment_token')\n\n    const verifyStarted = Date.now()\n    // Open the verify span BEFORE the token-presence check so failed probes\n    // (no payment_token in config) still produce a clearly-named span with the\n    // static nvm.* attrs attached to both the span and the parent tool span.\n    const vspan = await verifySpan({\n      planIds,\n      scheme: resolvedScheme,\n      network: resolvedNetwork,\n      agentId,\n    })\n    // Pre-verify metadata is best-effort and static-only.\n    const preVerifyMd = buildVerifyMetadata({\n      planIds,\n      scheme: resolvedScheme,\n      network: resolvedNetwork,\n      agentId,\n    })\n    vspan.addMetadata(preVerifyMd)\n    addMetadata(parentRunTree, preVerifyMd)\n\n    // Extract token from config.configurable.payment_token\n    const token = extractPaymentToken(config)\n    if (!token) {\n      await vspan.end(new Error('missing payment_token in config.configurable'))\n      throw new PaymentRequiredError(\n        'Payment required: missing payment_token in config.configurable',\n        paymentRequired,\n      )\n    }\n\n    // Drop the raw token from configurable now that we hold it in `token`.\n    // LangChain's `ensureConfig` re-promotes every configurable scalar into a\n    // runnable's `metadata` on EACH invocation, so any traced runnable the tool\n    // body spawns (an LLM call, a sub-chain) sharing this config would otherwise\n    // re-leak the full credential into its own span metadata — and a child run\n    // opened *during* `fn()` would capture it before the settle-side\n    // `redactMetadataKeys` below could run. Removing the key here is the\n    // proactive complement to that reactive redaction. This MUST run after\n    // extraction (deleting earlier would make `extractPaymentToken` return null)\n    // and before `fn()` — guaranteed, since `fn()` is called further down.\n    // Settlement uses the local `token`, never configurable, so removal is\n    // non-functional. On the `tool()`/LangGraph path LangChain hands the wrapper\n    // a per-invocation config copy, so this does not mutate a config the caller\n    // reuses across sibling tools.\n    removeFromConfigurable(config, 'payment_token')\n\n    // Abbreviate/redact the token ONCE here (mirrors Python's\n    // attach_metadata_safely pre-abbreviation) and pass the result into the\n    // metadata builders. abbreviateToken is idempotent, so the builders leave\n    // it unchanged — this means the short-token warning fires at most once per\n    // call (not once per verify AND once per settle), and the raw token never\n    // reaches the builders' frame locals (defense against exception enrichers\n    // that capture locals).\n    const abbreviatedToken = abbreviateToken(token)\n\n    // Resolve pre-execution credits (static only; callable deferred to post-execution)\n    const creditsToVerify = typeof credits === 'number' ? credits : 1\n\n    // Verify permissions\n    let verification: VerifyPermissionsResult\n    try {\n      verification = await payments.facilitator.verifyPermissions({\n        paymentRequired,\n        x402AccessToken: token,\n        maxAmount: BigInt(creditsToVerify),\n      })\n    } catch (error) {\n      await vspan.end(error)\n      throw new PaymentRequiredError(\n        `Payment verification failed: ${error instanceof Error ? error.message : String(error)}`,\n        paymentRequired,\n      )\n    }\n\n    // Augment span metadata with verification results + timing (both span and\n    // parent), then close the verify span. Best-effort: a metadata failure must\n    // not mask the PaymentRequiredError that may follow.\n    const verifyMd = buildVerifyMetadata({\n      planIds,\n      scheme: resolvedScheme,\n      network: resolvedNetwork,\n      agentId,\n      verification,\n      durationMs: Date.now() - verifyStarted,\n      token: abbreviatedToken,\n    })\n    vspan.addMetadata(verifyMd)\n    addMetadata(parentRunTree, verifyMd)\n\n    if (!verification.isValid) {\n      await vspan.end(new Error(verification.invalidReason || 'verification failed'))\n      throw new PaymentRequiredError(\n        `Payment verification failed: ${verification.invalidReason || 'Insufficient credits or invalid token'}`,\n        paymentRequired,\n      )\n    }\n\n    await vspan.end()\n\n    // Store payment context. The `token` field carries the ABBREVIATED\n    // reference, never the raw credential: `payment_context` is written into\n    // `config.configurable`, which LangChain can capture into span metadata, so\n    // persisting the full token here would reopen the very leak the parent-tree\n    // `redactMetadataKeys('payment_token')` calls close — and a child run opened\n    // *during* the tool body would capture it before any post-hoc redaction\n    // could run. `abbreviatedToken` is always defined past the `!token` guard\n    // above; `?? ''` is a belt-and-suspenders that can never fall back to raw.\n    const paymentContext: PaymentContext = {\n      token: abbreviatedToken ?? '',\n      paymentRequired,\n      creditsToSettle: creditsToVerify,\n      verified: true,\n      agentRequestId: verification.agentRequest?.agentRequestId || verification.agentRequestId,\n      agentRequest: verification.agentRequest,\n    }\n    storeInConfigurable(config, 'payment_context', paymentContext)\n\n    // Execute the tool function\n    const result = await fn(args, config)\n\n    // Resolve final credits (may be dynamic based on result)\n    const finalCredits =\n      typeof credits === 'function'\n        ? credits({ args: args as Record<string, unknown>, result })\n        : credits\n\n    // Settle credits, wrapped in an nvm:settlement span (mirrors Python's\n    // settlement_span around settle_permissions).\n    //\n    // Re-fetch the active run tree: `fn()` may have opened nested traced runs, so\n    // `activeRunTree()` can now return a different RunTree than the verify-side\n    // redaction at the top of this function scrubbed. We already removed\n    // `payment_token` from `config.configurable` before `fn()` ran, so newly\n    // opened child runs can no longer re-promote the raw credential — this\n    // re-redaction is now defense-in-depth, covering any RunTree whose metadata\n    // was populated before that removal took effect. Redact BEFORE opening the\n    // settlement span so the credential never rides into the settle child span or\n    // the (possibly new) parent tree.\n    const settleParentRunTree = await activeRunTree()\n    redactMetadataKeys(settleParentRunTree, 'payment_token')\n    const settleStarted = Date.now()\n    const sspan = await settlementSpan({ planIds, agentId })\n    try {\n      const settlement = await payments.facilitator.settlePermissions({\n        paymentRequired,\n        x402AccessToken: token,\n        // A dynamic `credits` callable can return a float (e.g. length/100).\n        // `BigInt(1.5)` throws RangeError, which the surrounding try/catch\n        // swallows — credits are never burned and the caller is never told.\n        // Floor to keep the settle on the money path.\n        maxAmount: BigInt(Math.floor(finalCredits)),\n        agentRequestId: paymentContext.agentRequestId,\n      })\n      storeInConfigurable(config, 'payment_settlement', settlement)\n      // Also publish to the module-level slot so lastSettlement() can recover\n      // the receipt — LangGraph copies config.configurable per node, hiding the\n      // line above from the buyer's outer scope.\n      lastSettlementReceipt = settlement\n\n      const settleMd = buildSettleMetadata({\n        settlement,\n        planIds,\n        agentId,\n        durationMs: Date.now() - settleStarted,\n        token: abbreviatedToken,\n      })\n      sspan.addMetadata(settleMd)\n      addMetadata(settleParentRunTree, settleMd)\n      await sspan.end()\n    } catch (settleError) {\n      console.error('Payment settlement failed:', settleError)\n      await sspan.end(settleError)\n      // Still return result even if settlement fails\n    }\n\n    return result\n  }\n}\n"]}

package/dist/x402/langchain/index.d.ts

@@ -1,5 +1,6 @@
 /**
  * LangChain integration for Nevermined payment protection using the x402 protocol.
  */
-export { requiresPayment, PaymentRequiredError, type RequiresPaymentOptions, type CreditsCallable, type CreditsContext, type PaymentContext, } from './decorator.js';
+export { requiresPayment, lastSettlement, PaymentRequiredError, type RequiresPaymentOptions, type CreditsCallable, type CreditsContext, type PaymentContext, } from './decorator.js';
+export { createPaidReactAgent, type CreatePaidReactAgentOptions, } from './agent.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/x402/langchain/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/x402/langchain/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EACL,eAAe,EACf,oBAAoB,EACpB,KAAK,sBAAsB,EAC3B,KAAK,eAAe,EACpB,KAAK,cAAc,EACnB,KAAK,cAAc,GACpB,MAAM,gBAAgB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/x402/langchain/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EACL,eAAe,EACf,cAAc,EACd,oBAAoB,EACpB,KAAK,sBAAsB,EAC3B,KAAK,eAAe,EACpB,KAAK,cAAc,EACnB,KAAK,cAAc,GACpB,MAAM,gBAAgB,CAAA;AACvB,OAAO,EACL,oBAAoB,EACpB,KAAK,2BAA2B,GACjC,MAAM,YAAY,CAAA"}

package/dist/x402/langchain/index.js

@@ -1,5 +1,6 @@
 /**
  * LangChain integration for Nevermined payment protection using the x402 protocol.
  */
-export { requiresPayment, PaymentRequiredError, } from './decorator.js';
+export { requiresPayment, lastSettlement, PaymentRequiredError, } from './decorator.js';
+export { createPaidReactAgent, } from './agent.js';
 //# sourceMappingURL=index.js.map

package/dist/x402/langchain/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/x402/langchain/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EACL,eAAe,EACf,oBAAoB,GAKrB,MAAM,gBAAgB,CAAA","sourcesContent":["/**\n * LangChain integration for Nevermined payment protection using the x402 protocol.\n */\n\nexport {\n  requiresPayment,\n  PaymentRequiredError,\n  type RequiresPaymentOptions,\n  type CreditsCallable,\n  type CreditsContext,\n  type PaymentContext,\n} from './decorator.js'\n"]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/x402/langchain/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EACL,eAAe,EACf,cAAc,EACd,oBAAoB,GAKrB,MAAM,gBAAgB,CAAA;AACvB,OAAO,EACL,oBAAoB,GAErB,MAAM,YAAY,CAAA","sourcesContent":["/**\n * LangChain integration for Nevermined payment protection using the x402 protocol.\n */\n\nexport {\n  requiresPayment,\n  lastSettlement,\n  PaymentRequiredError,\n  type RequiresPaymentOptions,\n  type CreditsCallable,\n  type CreditsContext,\n  type PaymentContext,\n} from './decorator.js'\nexport {\n  createPaidReactAgent,\n  type CreatePaidReactAgentOptions,\n} from './agent.js'\n"]}

package/dist/x402/langsmith/index.d.ts

@@ -0,0 +1,15 @@
+/**
+ * LangSmith observability bridge for Nevermined payments (TypeScript).
+ *
+ * Surfaces the cross-SDK `nvm:verify` / `nvm:settlement` spans defined by the
+ * observability-spans-v1 contract, matching the Python SDK attribute-for-
+ * attribute so a single LangSmith trace can be correlated across both SDKs.
+ *
+ * These helpers are wired into the `requiresPayment` decorator automatically;
+ * they are also exported here for manual use in non-LangChain code paths.
+ *
+ * Requires the optional `langsmith` peer dependency and `LANGSMITH_TRACING=true`;
+ * every helper no-ops when tracing is inactive or `langsmith` is not installed.
+ */
+export { abbreviateToken, activeRunTree, addMetadata, buildSettleMetadata, buildVerifyMetadata, redactMetadataKeys, settlementSpan, verifySpan, NVM_VERIFY_SPAN, NVM_SETTLEMENT_SPAN, type NvmSpan, type SpanMetadata, type VerifyMetadataInput, type SettleMetadataInput, type VerifySpanInput, type SettlementSpanInput, } from './spans.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/x402/langsmith/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/x402/langsmith/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EACL,eAAe,EACf,aAAa,EACb,WAAW,EACX,mBAAmB,EACnB,mBAAmB,EACnB,kBAAkB,EAClB,cAAc,EACd,UAAU,EACV,eAAe,EACf,mBAAmB,EACnB,KAAK,OAAO,EACZ,KAAK,YAAY,EACjB,KAAK,mBAAmB,EACxB,KAAK,mBAAmB,EACxB,KAAK,eAAe,EACpB,KAAK,mBAAmB,GACzB,MAAM,YAAY,CAAA"}

package/dist/x402/langsmith/index.js

@@ -0,0 +1,15 @@
+/**
+ * LangSmith observability bridge for Nevermined payments (TypeScript).
+ *
+ * Surfaces the cross-SDK `nvm:verify` / `nvm:settlement` spans defined by the
+ * observability-spans-v1 contract, matching the Python SDK attribute-for-
+ * attribute so a single LangSmith trace can be correlated across both SDKs.
+ *
+ * These helpers are wired into the `requiresPayment` decorator automatically;
+ * they are also exported here for manual use in non-LangChain code paths.
+ *
+ * Requires the optional `langsmith` peer dependency and `LANGSMITH_TRACING=true`;
+ * every helper no-ops when tracing is inactive or `langsmith` is not installed.
+ */
+export { abbreviateToken, activeRunTree, addMetadata, buildSettleMetadata, buildVerifyMetadata, redactMetadataKeys, settlementSpan, verifySpan, NVM_VERIFY_SPAN, NVM_SETTLEMENT_SPAN, } from './spans.js';
+//# sourceMappingURL=index.js.map

package/dist/x402/langsmith/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/x402/langsmith/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EACL,eAAe,EACf,aAAa,EACb,WAAW,EACX,mBAAmB,EACnB,mBAAmB,EACnB,kBAAkB,EAClB,cAAc,EACd,UAAU,EACV,eAAe,EACf,mBAAmB,GAOpB,MAAM,YAAY,CAAA","sourcesContent":["/**\n * LangSmith observability bridge for Nevermined payments (TypeScript).\n *\n * Surfaces the cross-SDK `nvm:verify` / `nvm:settlement` spans defined by the\n * observability-spans-v1 contract, matching the Python SDK attribute-for-\n * attribute so a single LangSmith trace can be correlated across both SDKs.\n *\n * These helpers are wired into the `requiresPayment` decorator automatically;\n * they are also exported here for manual use in non-LangChain code paths.\n *\n * Requires the optional `langsmith` peer dependency and `LANGSMITH_TRACING=true`;\n * every helper no-ops when tracing is inactive or `langsmith` is not installed.\n */\n\nexport {\n  abbreviateToken,\n  activeRunTree,\n  addMetadata,\n  buildSettleMetadata,\n  buildVerifyMetadata,\n  redactMetadataKeys,\n  settlementSpan,\n  verifySpan,\n  NVM_VERIFY_SPAN,\n  NVM_SETTLEMENT_SPAN,\n  type NvmSpan,\n  type SpanMetadata,\n  type VerifyMetadataInput,\n  type SettleMetadataInput,\n  type VerifySpanInput,\n  type SettlementSpanInput,\n} from './spans.js'\n"]}