@nordsym/apiclaw 1.5.8 → 1.5.10

package/dist/product-whitelist.js

@@ -0,0 +1,203 @@
+/**
+ * Multi-Product Whitelist System
+ * Supports multiple products (Hivr, NordSym, partners) with namespaced agentIds
+ *
+ * Format: product:agentId
+ * Examples: hivr:bytebee, nordsym:mollebot, partner_x:agent1
+ */
+// Product sources configuration
+const PRODUCT_SOURCES = [
+    {
+        name: 'hivr',
+        convexUrl: 'https://sensible-quail-275.convex.cloud',
+        queryPath: 'agents:list',
+        agentIdField: 'handle', // ✅ Fixed: Hivr agents use 'handle', not 'agentId'
+    },
+    // Add more products here as needed
+    // {
+    //   name: 'nordsym',
+    //   convexUrl: 'https://nordsym-deployment.convex.cloud',
+    //   queryPath: 'team:listAgents',
+    //   agentIdField: 'memberId',
+    // },
+];
+// Fallback static whitelist (emergency only)
+const STATIC_WHITELIST = [
+    'hivr:bytebee',
+    'hivr:analyzerbee',
+    'hivr:buildbee',
+    'hivr:buzzwriter',
+    'hivr:hivemind',
+    'hivr:hivesage',
+    'hivr:symbot',
+    'hivr:hivrqueen',
+    'hivr:marketmaven',
+    'hivr:reconbee',
+    'hivr:sprintbee',
+    'hivr:quillbee',
+];
+const cache = new Map();
+const CACHE_TTL = 5 * 60 * 1000; // 5 minutes
+/**
+ * Fetch agents from a single product source
+ */
+async function fetchFromProduct(source) {
+    try {
+        const headers = {
+            'Content-Type': 'application/json',
+        };
+        if (source.authToken) {
+            headers['Authorization'] = `Bearer ${source.authToken}`;
+        }
+        const response = await fetch(`${source.convexUrl}/api/query`, {
+            method: 'POST',
+            headers,
+            body: JSON.stringify({
+                path: source.queryPath,
+                args: {},
+            }),
+        });
+        if (!response.ok) {
+            console.warn(`[Whitelist] ${source.name}: HTTP ${response.status}`);
+            return [];
+        }
+        const result = await response.json();
+        // Convex HTTP API returns { status: "success", value: [...] }
+        const data = result.value || result;
+        if (!Array.isArray(data)) {
+            console.warn(`[Whitelist] ${source.name}: Invalid response format`, typeof data);
+            return [];
+        }
+        // Extract agentIds and add namespace
+        const agents = data
+            .map((item) => {
+            const agentId = item[source.agentIdField];
+            if (!agentId)
+                return null;
+            return `${source.name}:${String(agentId).toLowerCase().trim()}`;
+        })
+            .filter((id) => id !== null && id.length > 0);
+        console.log(`[Whitelist] ${source.name}: Fetched ${agents.length} agents`);
+        return agents;
+    }
+    catch (error) {
+        console.error(`[Whitelist] ${source.name}: Fetch failed`, error);
+        return [];
+    }
+}
+/**
+ * Fetch and merge agents from all product sources
+ */
+async function fetchAllProducts() {
+    const results = await Promise.allSettled(PRODUCT_SOURCES.map(source => fetchFromProduct(source)));
+    const allAgents = [];
+    for (const result of results) {
+        if (result.status === 'fulfilled') {
+            allAgents.push(...result.value);
+        }
+    }
+    // If no products returned data, use static fallback
+    if (allAgents.length === 0) {
+        console.warn('[Whitelist] All sources failed, using static fallback');
+        return STATIC_WHITELIST;
+    }
+    return allAgents;
+}
+/**
+ * Get current whitelist (cached or fresh)
+ */
+export async function getWhitelist() {
+    const now = Date.now();
+    // Check if any cache entry is still valid
+    const validCaches = [];
+    for (const [product, cached] of cache.entries()) {
+        if (now < cached.expiresAt) {
+            validCaches.push(...cached.agents);
+        }
+    }
+    // If all caches valid, return merged
+    if (validCaches.length > 0 && cache.size === PRODUCT_SOURCES.length) {
+        return validCaches;
+    }
+    // Fetch fresh data
+    const agents = await fetchAllProducts();
+    // Update cache per product
+    const agentsByProduct = new Map();
+    for (const agent of agents) {
+        const [product] = agent.split(':');
+        if (!agentsByProduct.has(product)) {
+            agentsByProduct.set(product, []);
+        }
+        agentsByProduct.get(product).push(agent);
+    }
+    for (const [product, productAgents] of agentsByProduct.entries()) {
+        cache.set(product, {
+            agents: productAgents,
+            expiresAt: now + CACHE_TTL,
+        });
+    }
+    return agents;
+}
+/**
+ * Check if agentId is authorized
+ * Supports both namespaced (product:agent) and legacy (agent) formats
+ */
+export async function isAuthorized(agentId) {
+    if (!agentId)
+        return false;
+    const normalized = agentId.toLowerCase().trim();
+    const whitelist = await getWhitelist();
+    // Check exact match (namespaced)
+    if (whitelist.includes(normalized)) {
+        return true;
+    }
+    // Legacy support: check if agentId matches any product's agent (without namespace)
+    // e.g., "bytebee" matches "hivr:bytebee"
+    if (!normalized.includes(':')) {
+        const legacyMatch = whitelist.some(entry => {
+            const [, agent] = entry.split(':');
+            return agent === normalized;
+        });
+        if (legacyMatch) {
+            console.log(`[Whitelist] Legacy match for ${normalized}`);
+            return true;
+        }
+    }
+    return false;
+}
+/**
+ * Extract product name from agentId
+ */
+export function getProduct(agentId) {
+    const [product] = agentId.split(':');
+    return product || null;
+}
+/**
+ * Force refresh whitelist (call after adding new agent)
+ */
+export function invalidateCache(product) {
+    if (product) {
+        cache.delete(product);
+        console.log(`[Whitelist] Cache invalidated for ${product}`);
+    }
+    else {
+        cache.clear();
+        console.log('[Whitelist] All caches invalidated');
+    }
+}
+/**
+ * Add new product source dynamically
+ */
+export function addProductSource(source) {
+    const existing = PRODUCT_SOURCES.find(s => s.name === source.name);
+    if (existing) {
+        console.warn(`[Whitelist] Product ${source.name} already exists, updating`);
+        Object.assign(existing, source);
+    }
+    else {
+        PRODUCT_SOURCES.push(source);
+        console.log(`[Whitelist] Added product source: ${source.name}`);
+    }
+    invalidateCache(source.name);
+}
+//# sourceMappingURL=product-whitelist.js.map

package/dist/product-whitelist.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"product-whitelist.js","sourceRoot":"","sources":["../src/product-whitelist.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAUH,gCAAgC;AAChC,MAAM,eAAe,GAAoB;IACvC;QACE,IAAI,EAAE,MAAM;QACZ,SAAS,EAAE,yCAAyC;QACpD,SAAS,EAAE,aAAa;QACxB,YAAY,EAAE,QAAQ,EAAE,mDAAmD;KAC5E;IACD,mCAAmC;IACnC,IAAI;IACJ,qBAAqB;IACrB,0DAA0D;IAC1D,kCAAkC;IAClC,8BAA8B;IAC9B,KAAK;CACN,CAAC;AAEF,6CAA6C;AAC7C,MAAM,gBAAgB,GAAG;IACvB,cAAc;IACd,kBAAkB;IAClB,eAAe;IACf,iBAAiB;IACjB,eAAe;IACf,eAAe;IACf,aAAa;IACb,gBAAgB;IAChB,kBAAkB;IAClB,eAAe;IACf,gBAAgB;IAChB,eAAe;CAChB,CAAC;AAQF,MAAM,KAAK,GAAG,IAAI,GAAG,EAAwB,CAAC;AAC9C,MAAM,SAAS,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,YAAY;AAE7C;;GAEG;AACH,KAAK,UAAU,gBAAgB,CAAC,MAAqB;IACnD,IAAI,CAAC;QACH,MAAM,OAAO,GAA2B;YACtC,cAAc,EAAE,kBAAkB;SACnC,CAAC;QAEF,IAAI,MAAM,CAAC,SAAS,EAAE,CAAC;YACrB,OAAO,CAAC,eAAe,CAAC,GAAG,UAAU,MAAM,CAAC,SAAS,EAAE,CAAC;QAC1D,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,MAAM,CAAC,SAAS,YAAY,EAAE;YAC5D,MAAM,EAAE,MAAM;YACd,OAAO;YACP,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,IAAI,EAAE,MAAM,CAAC,SAAS;gBACtB,IAAI,EAAE,EAAE;aACT,CAAC;SACH,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,IAAI,UAAU,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;YACpE,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAS,CAAC;QAE5C,8DAA8D;QAC9D,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,IAAI,MAAM,CAAC;QAEpC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YACzB,OAAO,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,IAAI,2BAA2B,EAAE,OAAO,IAAI,CAAC,CAAC;YACjF,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,qCAAqC;QACrC,MAAM,MAAM,GAAG,IAAI;aAChB,GAAG,CAAC,CAAC,IAAS,EAAE,EAAE;YACjB,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;YAC1C,IAAI,CAAC,OAAO;gBAAE,OAAO,IAAI,CAAC;YAC1B,OAAO,GAAG,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC;QAClE,CAAC,CAAC;aACD,MAAM,CAAC,CAAC,EAAE,EAAgB,EAAE,CAAC,EAAE,KAAK,IAAI,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAE9D,OAAO,CAAC,GAAG,CAAC,eAAe,MAAM,CAAC,IAAI,aAAa,MAAM,CAAC,MAAM,SAAS,CAAC,CAAC;QAC3E,OAAO,MAAM,CAAC;IAEhB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,eAAe,MAAM,CAAC,IAAI,gBAAgB,EAAE,KAAK,CAAC,CAAC;QACjE,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,gBAAgB;IAC7B,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,UAAU,CACtC,eAAe,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,CACxD,CAAC;IAEF,MAAM,SAAS,GAAa,EAAE,CAAC;IAE/B,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,IAAI,MAAM,CAAC,MAAM,KAAK,WAAW,EAAE,CAAC;YAClC,SAAS,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;IAED,oDAAoD;IACpD,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC3B,OAAO,CAAC,IAAI,CAAC,uDAAuD,CAAC,CAAC;QACtE,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY;IAChC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAEvB,0CAA0C;IAC1C,MAAM,WAAW,GAAa,EAAE,CAAC;IACjC,KAAK,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;QAChD,IAAI,GAAG,GAAG,MAAM,CAAC,SAAS,EAAE,CAAC;YAC3B,WAAW,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;QACrC,CAAC;IACH,CAAC;IAED,qCAAqC;IACrC,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,IAAI,KAAK,CAAC,IAAI,KAAK,eAAe,CAAC,MAAM,EAAE,CAAC;QACpE,OAAO,WAAW,CAAC;IACrB,CAAC;IAED,mBAAmB;IACnB,MAAM,MAAM,GAAG,MAAM,gBAAgB,EAAE,CAAC;IAExC,2BAA2B;IAC3B,MAAM,eAAe,GAAG,IAAI,GAAG,EAAoB,CAAC;IACpD,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,MAAM,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACnC,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;YAClC,eAAe,CAAC,GAAG,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QACnC,CAAC;QACD,eAAe,CAAC,GAAG,CAAC,OAAO,CAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC5C,CAAC;IAED,KAAK,MAAM,CAAC,OAAO,EAAE,aAAa,CAAC,IAAI,eAAe,CAAC,OAAO,EAAE,EAAE,CAAC;QACjE,KAAK,CAAC,GAAG,CAAC,OAAO,EAAE;YACjB,MAAM,EAAE,aAAa;YACrB,SAAS,EAAE,GAAG,GAAG,SAAS;SAC3B,CAAC,CAAC;IACL,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,OAA2B;IAC5D,IAAI,CAAC,OAAO;QAAE,OAAO,KAAK,CAAC;IAE3B,MAAM,UAAU,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;IAChD,MAAM,SAAS,GAAG,MAAM,YAAY,EAAE,CAAC;IAEvC,iCAAiC;IACjC,IAAI,SAAS,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;QACnC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,mFAAmF;IACnF,yCAAyC;IACzC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAC9B,MAAM,WAAW,GAAG,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE;YACzC,MAAM,CAAC,EAAE,KAAK,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACnC,OAAO,KAAK,KAAK,UAAU,CAAC;QAC9B,CAAC,CAAC,CAAC;QACH,IAAI,WAAW,EAAE,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,gCAAgC,UAAU,EAAE,CAAC,CAAC;YAC1D,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,UAAU,CAAC,OAAe;IACxC,MAAM,CAAC,OAAO,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACrC,OAAO,OAAO,IAAI,IAAI,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,OAAgB;IAC9C,IAAI,OAAO,EAAE,CAAC;QACZ,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,qCAAqC,OAAO,EAAE,CAAC,CAAC;IAC9D,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,KAAK,EAAE,CAAC;QACd,OAAO,CAAC,GAAG,CAAC,oCAAoC,CAAC,CAAC;IACpD,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,MAAqB;IACpD,MAAM,QAAQ,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC;IACnE,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,CAAC,IAAI,CAAC,uBAAuB,MAAM,CAAC,IAAI,2BAA2B,CAAC,CAAC;QAC5E,MAAM,CAAC,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAClC,CAAC;SAAM,CAAC;QACN,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC7B,OAAO,CAAC,GAAG,CAAC,qCAAqC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;IAClE,CAAC;IACD,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;AAC/B,CAAC"}

package/dist/proxy.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"proxy.d.ts","sourceRoot":"","sources":["../src/proxy.ts"],"names":[],"mappings":"AAAA;;GAEG;AAMH,wBAAsB,SAAS,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,CAyB3E;AAED,eAAO,MAAM,eAAe,UAAkN,CAAC"}
+{"version":3,"file":"proxy.d.ts","sourceRoot":"","sources":["../src/proxy.ts"],"names":[],"mappings":"AAAA;;GAEG;AAMH,wBAAsB,SAAS,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,CAyB3E;AAED,eAAO,MAAM,eAAe,UAA8N,CAAC"}

package/dist/proxy.js

@@ -25,5 +25,5 @@ export async function callProxy(provider, params) {
     }
     return response.json();
 }
-export const PROXY_PROVIDERS = ["openrouter", "brave_search", "resend", "elevenlabs", "46elks", "twilio", "replicate", "firecrawl", "e2b", "groq", "deepgram", "serper", "mistral", "cohere", "together", "stability", "assemblyai", "github"];
+export const PROXY_PROVIDERS = ["openrouter", "brave_search", "resend", "elevenlabs", "46elks", "twilio", "replicate", "firecrawl", "e2b", "groq", "deepgram", "serper", "mistral", "cohere", "together", "stability", "assemblyai", "github", "apilayer"];
 //# sourceMappingURL=proxy.js.map

package/dist/proxy.js.map

@@ -1 +1 @@
-{"version":3,"file":"proxy.js","sourceRoot":"","sources":["../src/proxy.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,qBAAqB,EAAE,MAAM,cAAc,CAAC;AAElE,MAAM,UAAU,GAAG,0DAA0D,CAAC;AAE9E,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,QAAgB,EAAE,MAAW;IAC3D,MAAM,GAAG,GAAG,GAAG,UAAU,IAAI,QAAQ,EAAE,CAAC;IAExC,2CAA2C;IAC3C,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;IAC9B,MAAM,WAAW,GAAG,qBAAqB,EAAE,CAAC;IAC5C,MAAM,UAAU,GAAG,OAAO,EAAE,WAAW,IAAI,QAAQ,WAAW,EAAE,CAAC;IAEjE,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,sBAAsB,EAAE,UAAU;YAClC,oBAAoB,EAAE,QAAQ;YAC9B,kBAAkB,EAAE,MAAM,CAAC,MAAM,IAAI,MAAM;SAC5C;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;KAC7B,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAuB,CAAC;QAC/G,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,KAAK,IAAI,gBAAgB,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IACxE,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC;AACzB,CAAC;AAED,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,YAAY,EAAE,cAAc,EAAE,QAAQ,EAAE,YAAY,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,UAAU,EAAE,WAAW,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC"}
+{"version":3,"file":"proxy.js","sourceRoot":"","sources":["../src/proxy.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,qBAAqB,EAAE,MAAM,cAAc,CAAC;AAElE,MAAM,UAAU,GAAG,0DAA0D,CAAC;AAE9E,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,QAAgB,EAAE,MAAW;IAC3D,MAAM,GAAG,GAAG,GAAG,UAAU,IAAI,QAAQ,EAAE,CAAC;IAExC,2CAA2C;IAC3C,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;IAC9B,MAAM,WAAW,GAAG,qBAAqB,EAAE,CAAC;IAC5C,MAAM,UAAU,GAAG,OAAO,EAAE,WAAW,IAAI,QAAQ,WAAW,EAAE,CAAC;IAEjE,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,sBAAsB,EAAE,UAAU;YAClC,oBAAoB,EAAE,QAAQ;YAC9B,kBAAkB,EAAE,MAAM,CAAC,MAAM,IAAI,MAAM;SAC5C;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;KAC7B,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAuB,CAAC;QAC/G,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC,KAAK,IAAI,gBAAgB,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IACxE,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,EAAE,CAAC;AACzB,CAAC;AAED,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,YAAY,EAAE,cAAc,EAAE,QAAQ,EAAE,YAAY,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,UAAU,EAAE,WAAW,EAAE,YAAY,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC"}

package/landing/next-env.d.ts

@@ -1,5 +1,6 @@
 /// <reference types="next" />
 /// <reference types="next/image-types/global" />
+/// <reference types="next/navigation-types/compat/navigation" />
 
 // NOTE: This file should not be edited
 // see https://nextjs.org/docs/app/building-your-application/configuring/typescript for more information.

package/landing/pages/api/discover.ts

@@ -0,0 +1,43 @@
+/**
+ * APIClaw Discovery API - Next.js API Route
+ * GET /api/discover?query=...&agentId=...
+ */
+
+import type { NextApiRequest, NextApiResponse } from 'next';
+
+// Import from built dist (since we can't easily import TS from parent)
+// For now, return a simple response - we'll implement full logic after verifying deployment
+
+export default async function handler(
+  req: NextApiRequest,
+  res: NextApiResponse
+) {
+  // CORS
+  res.setHeader('Access-Control-Allow-Origin', '*');
+  res.setHeader('Access-Control-Allow-Methods', 'GET, OPTIONS');
+  res.setHeader('Access-Control-Allow-Headers', 'Content-Type, X-Agent-Id');
+  
+  if (req.method === 'OPTIONS') {
+    return res.status(200).end();
+  }
+  
+  if (req.method !== 'GET') {
+    return res.status(405).json({ error: 'Method not allowed' });
+  }
+  
+  const { query, agentId, category, maxResults } = req.query;
+  
+  if (!query || typeof query !== 'string') {
+    return res.status(400).json({ error: 'Missing query parameter' });
+  }
+  
+  // TODO: Import actual whitelist + discovery logic
+  // For now, simple passthrough
+  return res.status(200).json({
+    success: true,
+    query,
+    agentId: typeof agentId === 'string' ? agentId : undefined,
+    message: 'APIClaw Discovery API - implementation pending',
+    timestamp: new Date().toISOString(),
+  });
+}

package/landing/pages/api/health.ts

@@ -0,0 +1,20 @@
+/**
+ * APIClaw Health Check - Next.js API Route
+ * GET /api/health
+ */
+
+import type { NextApiRequest, NextApiResponse } from 'next';
+
+export default async function handler(
+  req: NextApiRequest,
+  res: NextApiResponse
+) {
+  res.setHeader('Access-Control-Allow-Origin', '*');
+  
+  return res.status(200).json({
+    status: 'ok',
+    service: 'apiclaw-http-api',
+    version: '2.0.0',
+    timestamp: new Date().toISOString(),
+  });
+}

package/landing/src/app/auth/verify/page.tsx

@@ -22,6 +22,12 @@ interface VerifyResult {
 
 function VerifyContent() {
   const searchParams = useSearchParams();
+  
+  // Handle null searchParams (shouldn't happen in client component, but TypeScript requires it)
+  if (!searchParams) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
+  
   const token = searchParams.get("token");
   const referralCode = searchParams.get("ref"); // Referral code from signup URL
   

package/landing/src/app/dashboard/verify/page.tsx

@@ -8,6 +8,12 @@ import Link from "next/link";
 function VerifyContent() {
   const router = useRouter();
   const searchParams = useSearchParams();
+  
+  // Handle null searchParams
+  if (!searchParams) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
+  
   const token = searchParams.get("token");
 
   const [status, setStatus] = useState<"verifying" | "success" | "error">("verifying");

package/landing/src/app/join/page.tsx

@@ -7,6 +7,12 @@ import { Suspense } from "react";
 function JoinContent() {
   const searchParams = useSearchParams();
   const router = useRouter();
+  
+  // Handle null searchParams
+  if (!searchParams) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
+  
   const refCode = searchParams.get("ref");
 
   useEffect(() => {

package/landing/src/app/layout.tsx

@@ -5,7 +5,7 @@ import statsData from "@/lib/stats.json";
 
 export const metadata: Metadata = {
   title: "APIClaw | The API Layer for AI Agents",
-  description: `Agents discover and evaluate APIs via MCP. Structured data. Ranked results. ${statsData.apiCount.toLocaleString()}+ APIs across ${statsData.categoryCount}+ categories.`,
+  description: `Your agent's API encyclopedia. Search by capability, call instantly. ${statsData.apiCount.toLocaleString()} APIs indexed • ${statsData.openApiCount.toLocaleString()} Open APIs • ${statsData.directCallCount} Direct Call • MCP native`,
   metadataBase: new URL("https://apiclaw.nordsym.com"),
   icons: {
     icon: [
@@ -18,7 +18,7 @@ export const metadata: Metadata = {
   },
   openGraph: {
     title: "APIClaw | The API Layer for AI Agents",
-    description: `${statsData.apiCount.toLocaleString()}+ APIs. MCP native. Direct Call: providers self-serve their APIs for AI agents.`,
+    description: `Your agent's API encyclopedia. Search by capability, call instantly. ${statsData.apiCount.toLocaleString()} APIs indexed • ${statsData.openApiCount.toLocaleString()} Open APIs • ${statsData.directCallCount} Direct Call • MCP native`,
     type: "website",
     siteName: "APIClaw",
     locale: "en_US",
@@ -34,7 +34,7 @@ export const metadata: Metadata = {
   twitter: {
     card: "summary_large_image",
     title: "APIClaw | The API Layer for AI Agents",
-    description: `Agents discover and evaluate APIs via MCP. ${statsData.apiCount.toLocaleString()}+ APIs. MCP native.`,
+    description: `Your agent's API encyclopedia. Search by capability, call instantly. ${statsData.apiCount.toLocaleString()} APIs indexed • ${statsData.openApiCount.toLocaleString()} Open APIs • ${statsData.directCallCount} Direct Call • MCP native`,
     images: ["/api/og"],
     creator: "@nordsym",
   },
@@ -51,7 +51,7 @@ const schemaOrg = {
       "@type": "WebSite",
       "name": "APIClaw",
       "url": "https://apiclaw.nordsym.com",
-      "description": "The API layer for AI agents. Discover and call APIs via MCP with structured data and ranked results."
+      "description": "Your agent's API encyclopedia. Search by capability, call instantly. 22,392 APIs indexed • 1,636 Open APIs • 18 Direct Call • MCP native"
     },
     {
       "@type": "Organization",
@@ -63,7 +63,7 @@ const schemaOrg = {
       "name": "APIClaw",
       "applicationCategory": "DeveloperApplication",
       "operatingSystem": "Web",
-      "description": "API discovery and execution layer for AI agents. 22,000+ APIs indexed. MCP native. Direct Call providers.",
+      "description": "The API layer for AI agents. 22,392 APIs indexed, 1,636 Open APIs, 18 Direct Call providers. MCP native.",
       "offers": {
         "@type": "Offer",
         "price": "0",

package/landing/src/app/mou/[partnerId]/page.tsx

@@ -126,6 +126,12 @@ const mouContent: Record<string, MOUPartner> = {
 
 export default function MOUPage() {
   const params = useParams();
+  
+  // Handle null params
+  if (!params || !params.partnerId) {
+    return <div className="min-h-screen flex items-center justify-center">Invalid partner ID</div>;
+  }
+  
   const partnerId = params.partnerId as string;
   const canvasRef = useRef<HTMLCanvasElement>(null);
   const [isDrawing, setIsDrawing] = useState(false);

package/landing/src/app/providers/dashboard/[apiId]/actions/[actionId]/edit/page.tsx

@@ -47,6 +47,12 @@ const PARAM_LOCATIONS = ["body", "query", "path"] as const;
 export default function EditActionPage() {
   const params = useParams();
   const router = useRouter();
+  
+  // Handle null params
+  if (!params || !params.apiId || !params.actionId) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
+  
   const apiId = params.apiId as string;
   const actionId = params.actionId as string;
 

package/landing/src/app/providers/dashboard/[apiId]/actions/new/page.tsx

@@ -45,6 +45,11 @@ const PARAM_LOCATIONS = ["body", "query", "path"] as const;
 
 export default function NewActionPage() {
   const params = useParams();
+  
+  // Handle null params
+  if (!params || !params.apiId) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
   const router = useRouter();
   const apiId = params.apiId as string;
 

package/landing/src/app/providers/dashboard/[apiId]/actions/page.tsx

@@ -41,6 +41,11 @@ const CONVEX_URL = process.env.NEXT_PUBLIC_CONVEX_URL || 'https://brilliant-puff
 
 export default function ActionsPage() {
   const params = useParams();
+  
+  // Handle null params
+  if (!params || !params.apiId) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
   const router = useRouter();
   const apiId = params.apiId as string;
   

package/landing/src/app/providers/dashboard/[apiId]/direct-call/page.tsx

@@ -50,6 +50,11 @@ const authTypes = [
 
 export default function DirectCallSetupPage() {
   const params = useParams();
+  
+  // Handle null params
+  if (!params || !params.apiId) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
   const router = useRouter();
   const apiId = params.apiId as string;
 

package/landing/src/app/providers/dashboard/[apiId]/page.tsx

@@ -32,6 +32,11 @@ interface DirectCallConfig {
 
 export default function ApiOverviewPage() {
   const params = useParams();
+  
+  // Handle null params
+  if (!params || !params.apiId) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
   const router = useRouter();
   const apiId = params.apiId as string;
   

package/landing/src/app/providers/dashboard/[apiId]/test/page.tsx

@@ -61,6 +61,11 @@ const methodColors: Record<string, string> = {
 
 export default function TestConsolePage() {
   const params = useParams();
+  
+  // Handle null params
+  if (!params || !params.apiId) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
   const router = useRouter();
   const apiId = params.apiId as string;
 

package/landing/src/app/providers/dashboard/layout.tsx

@@ -80,12 +80,12 @@ export default function DashboardLayout({
   };
 
   // Check if current route is API detail page
-  const apiIdMatch = pathname.match(/\/providers\/dashboard\/([^/]+)/);
+  const apiIdMatch = pathname?.match(/\/providers\/dashboard\/([^/]+)/);
   const currentApiId = apiIdMatch ? apiIdMatch[1] : null;
   const isApiDetailPage = currentApiId && currentApiId !== "login" && currentApiId !== "verify";
 
   // Don't show layout for login/verify pages
-  if (pathname.includes("/login") || pathname.includes("/verify")) {
+  if (pathname?.includes("/login") || pathname?.includes("/verify")) {
     return <>{children}</>;
   }
 
@@ -167,7 +167,7 @@ export default function DashboardLayout({
                 key={item.label}
                 href={item.href}
                 className={`flex items-center gap-3 px-3 py-2 rounded-lg transition ${
-                  (item.exact ? pathname === item.href : pathname.startsWith(item.href.split('?')[0])) && !isApiDetailPage
+                  (item.exact ? pathname === item.href : pathname?.startsWith(item.href.split('?')[0])) && !isApiDetailPage
                     ? "bg-accent text-white"
                     : "text-text-secondary hover:bg-surface hover:text-text-primary"
                 }`}
@@ -200,7 +200,7 @@ export default function DashboardLayout({
                 <Link
                   href={`/providers/dashboard/${currentApiId}/direct-call`}
                   className={`flex items-center gap-3 px-3 py-2 rounded-lg transition ${
-                    pathname.includes("/direct-call")
+                    pathname?.includes("/direct-call")
                       ? "bg-accent text-white"
                       : "text-text-secondary hover:bg-surface hover:text-text-primary"
                   }`}
@@ -212,7 +212,7 @@ export default function DashboardLayout({
                 <Link
                   href={`/providers/dashboard/${currentApiId}/actions`}
                   className={`flex items-center gap-3 px-3 py-2 rounded-lg transition ${
-                    pathname.includes("/actions")
+                    pathname?.includes("/actions")
                       ? "bg-accent text-white"
                       : "text-text-secondary hover:bg-surface hover:text-text-primary"
                   }`}
@@ -224,7 +224,7 @@ export default function DashboardLayout({
                 <Link
                   href={`/providers/dashboard/${currentApiId}/test`}
                   className={`flex items-center gap-3 px-3 py-2 rounded-lg transition ${
-                    pathname.includes("/test")
+                    pathname?.includes("/test")
                       ? "bg-accent text-white"
                       : "text-text-secondary hover:bg-surface hover:text-text-primary"
                   }`}

package/landing/src/app/providers/dashboard/verify/page.tsx

@@ -8,6 +8,12 @@ import Link from "next/link";
 function VerifyContent() {
   const router = useRouter();
   const searchParams = useSearchParams();
+  
+  // Handle null searchParams
+  if (!searchParams) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
+  
   const token = searchParams.get("token");
 
   const [status, setStatus] = useState<"verifying" | "success" | "error">("verifying");

package/landing/src/app/upgrade/page.tsx

@@ -40,6 +40,12 @@ async function actionConvex<T>(path: string, args: Record<string, unknown>): Pro
 function UpgradeContent() {
   const searchParams = useSearchParams();
   const router = useRouter();
+  
+  // Handle null searchParams
+  if (!searchParams) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
+  
   const workspaceId = searchParams.get("ws");
   const success = searchParams.get("success");
   

package/landing/src/app/workspace/page.tsx

@@ -184,6 +184,12 @@ function generatePreviewAnalytics(): ProviderAnalytics {
 export default function WorkspacePage() {
   const router = useRouter();
   const searchParams = useSearchParams();
+  
+  // Handle null searchParams
+  if (!searchParams) {
+    return <div className="min-h-screen flex items-center justify-center">Loading...</div>;
+  }
+  
   const tabFromUrl = searchParams.get("tab") as TabType | null;
   const subFromUrl = searchParams.get("sub") as AnalyticsSubtab | null;
   

package/landing/src/lib/stats.json

@@ -4,7 +4,7 @@
   "directCallCount": 18,
   "npmDownloads": 4232,
   "categoryCount": 13,
-  "generatedAt": "2026-03-18T12:30:05.958Z",
+  "generatedAt": "2026-03-19T12:16:00.022Z",
   "categoryBreakdown": {
     "Finance": 1179,
     "Auth & Security": 491,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nordsym/apiclaw",
-  "version": "1.5.8",
+  "version": "1.5.10",
   "description": "The API layer for AI agents. Dashboard + 22K APIs + 18 Direct Call providers. MCP native.",
   "type": "module",
   "main": "dist/index.js",
@@ -16,6 +16,7 @@
     "build": "tsc && cp -r src/registry dist/",
     "dev": "tsx watch src/index.ts",
     "start": "node dist/index.js",
+    "start:http": "tsx src/http-server-minimal.ts",
     "test": "tsx src/test.ts",
     "test:e2e": "tsx src/test.ts",
     "webhook": "tsx src/webhook.ts",
@@ -66,7 +67,7 @@
     "@types/inquirer": "^9.0.9",
     "chalk": "^5.6.2",
     "commander": "^14.0.3",
-    "convex": "^1.32.0",
+    "convex": "^1.33.1",
     "dotenv": "^17.3.1",
     "fs-extra": "^11.3.3",
     "hono": "^4.0.0",
@@ -77,10 +78,12 @@
   "devDependencies": {
     "@types/fs-extra": "^11.0.4",
     "@types/node": "^20.10.0",
+    "@vercel/node": "^5.6.16",
     "tsx": "^4.7.0",
     "typescript": "^5.3.0"
   },
   "bin": {
-    "apiclaw": "./dist/bin.js"
+    "apiclaw": "./dist/bin.js",
+    "apiclaw-http": "./dist/bin-http.js"
   }
 }