@paybond/kit 0.11.11 → 0.12.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (132) hide show
  1. package/completion-presets/catalog.json +10 -5
  2. package/completion-presets/catalog.sha256 +1 -1
  3. package/dist/agent/evidence.d.ts +10 -0
  4. package/dist/agent/evidence.js +16 -0
  5. package/dist/agent/index.d.ts +3 -2
  6. package/dist/agent/index.js +2 -1
  7. package/dist/agent/interceptor.d.ts +9 -0
  8. package/dist/agent/interceptor.js +181 -1
  9. package/dist/agent/receipt-client.d.ts +64 -0
  10. package/dist/agent/receipt-client.js +45 -0
  11. package/dist/agent/registry.js +1 -0
  12. package/dist/agent/run.d.ts +5 -0
  13. package/dist/agent/run.js +52 -0
  14. package/dist/agent/types.d.ts +70 -0
  15. package/dist/agent-mandate.d.ts +103 -0
  16. package/dist/agent-mandate.js +423 -0
  17. package/dist/agent-receipt-external-attestations.d.ts +56 -0
  18. package/dist/agent-receipt-external-attestations.js +185 -0
  19. package/dist/agent-receipt-pdf-export.d.ts +43 -0
  20. package/dist/agent-receipt-pdf-export.js +109 -0
  21. package/dist/agent-receipt-prevalidate.d.ts +7 -0
  22. package/dist/agent-receipt-prevalidate.js +63 -0
  23. package/dist/agent-receipt.d.ts +154 -0
  24. package/dist/agent-receipt.js +639 -0
  25. package/dist/audit/exports.d.ts +15 -1
  26. package/dist/audit/exports.js +55 -8
  27. package/dist/audit/index.d.ts +2 -2
  28. package/dist/audit/wire.d.ts +12 -0
  29. package/dist/audit/wire.js +13 -1
  30. package/dist/cli/command-spec.js +54 -3
  31. package/dist/cli/commands/dev.js +10 -3
  32. package/dist/cli/commands/discovery.js +17 -6
  33. package/dist/cli/commands/setup.js +19 -1
  34. package/dist/cli/commands/shopify.d.ts +53 -0
  35. package/dist/cli/commands/shopify.js +808 -0
  36. package/dist/cli/help.d.ts +1 -1
  37. package/dist/cli/help.js +15 -5
  38. package/dist/cli/router.js +15 -1
  39. package/dist/commerce-binding.d.ts +59 -0
  40. package/dist/commerce-binding.js +129 -0
  41. package/dist/completion-catalog-digest.d.ts +1 -1
  42. package/dist/completion-catalog-digest.js +1 -1
  43. package/dist/doctor-completion.d.ts +16 -0
  44. package/dist/doctor-completion.js +157 -1
  45. package/dist/index.d.ts +108 -7
  46. package/dist/index.js +221 -18
  47. package/dist/mcp-receipt-resource.d.ts +10 -0
  48. package/dist/mcp-receipt-resource.js +32 -0
  49. package/dist/mcp-server.d.ts +7 -0
  50. package/dist/mcp-server.js +81 -1
  51. package/dist/mpp-commercial.d.ts +19 -0
  52. package/dist/mpp-commercial.js +34 -0
  53. package/dist/mpp-funding.d.ts +71 -0
  54. package/dist/mpp-funding.js +192 -0
  55. package/dist/payment-transport.d.ts +30 -0
  56. package/dist/payment-transport.js +56 -0
  57. package/dist/policy/intent-spec.js +2 -0
  58. package/dist/policy/presets.d.ts +1 -1
  59. package/dist/policy/presets.js +1 -0
  60. package/dist/principal-intent.d.ts +1 -1
  61. package/dist/principal-intent.js +4 -1
  62. package/dist/project-init.d.ts +1 -1
  63. package/dist/project-init.js +1 -0
  64. package/dist/protocol-receipt.d.ts +129 -0
  65. package/dist/protocol-receipt.js +620 -0
  66. package/dist/shopify/checkout.d.ts +29 -0
  67. package/dist/shopify/checkout.js +79 -0
  68. package/dist/shopify/evidence.d.ts +13 -0
  69. package/dist/shopify/evidence.js +85 -0
  70. package/dist/shopify/index.d.ts +8 -0
  71. package/dist/shopify/index.js +6 -0
  72. package/dist/shopify/instrument.d.ts +61 -0
  73. package/dist/shopify/instrument.js +52 -0
  74. package/dist/shopify/order.d.ts +8 -0
  75. package/dist/shopify/order.js +110 -0
  76. package/dist/shopify/types.d.ts +82 -0
  77. package/dist/shopify/types.js +4 -0
  78. package/dist/solutions/catalog.d.ts +1 -1
  79. package/dist/solutions/catalog.js +1 -1
  80. package/dist/stripe-commerce/evidence.d.ts +13 -0
  81. package/dist/stripe-commerce/evidence.js +164 -0
  82. package/dist/stripe-commerce/index.d.ts +3 -0
  83. package/dist/stripe-commerce/index.js +2 -0
  84. package/dist/stripe-commerce/metadata.d.ts +11 -0
  85. package/dist/stripe-commerce/metadata.js +34 -0
  86. package/dist/stripe-commerce/types.d.ts +38 -0
  87. package/dist/stripe-commerce/types.js +1 -0
  88. package/dist/template-init.d.ts +1 -1
  89. package/dist/template-init.js +6 -1
  90. package/package.json +1 -1
  91. package/policy/presets/stripe-commerce.yaml +19 -0
  92. package/solutions/stripe-commerce.json +19 -0
  93. package/templates/manifest.json +82 -10
  94. package/templates/openai-shopping-agent/package-lock.json +13 -13
  95. package/templates/openai-shopping-agent/src/paybond.config.ts +1 -1
  96. package/templates/paybond-aws-operator/package-lock.json +7 -7
  97. package/templates/paybond-aws-operator/src/paybond.config.ts +1 -1
  98. package/templates/paybond-claude-agents-demo/package-lock.json +10 -10
  99. package/templates/paybond-claude-agents-demo/src/paybond.config.ts +1 -1
  100. package/templates/paybond-mastra-travel-agent/package-lock.json +33 -33
  101. package/templates/paybond-mastra-travel-agent/src/paybond.config.ts +1 -1
  102. package/templates/paybond-mcp-coding-agent/package-lock.json +7 -7
  103. package/templates/paybond-mcp-coding-agent/src/paybond.config.ts +1 -1
  104. package/templates/paybond-openai-agents-demo/package-lock.json +13 -13
  105. package/templates/paybond-openai-agents-demo/src/paybond.config.ts +1 -1
  106. package/templates/paybond-procurement-agent/package-lock.json +7 -7
  107. package/templates/paybond-procurement-agent/src/paybond.config.ts +1 -1
  108. package/templates/paybond-shopify-shopping-agent/.env.example +3 -0
  109. package/templates/paybond-shopify-shopping-agent/.github/workflows/smoke.yml +20 -0
  110. package/templates/paybond-shopify-shopping-agent/LICENSE +201 -0
  111. package/templates/paybond-shopify-shopping-agent/README.md +29 -0
  112. package/templates/paybond-shopify-shopping-agent/package-lock.json +223 -0
  113. package/templates/paybond-shopify-shopping-agent/package.json +20 -0
  114. package/templates/paybond-shopify-shopping-agent/paybond.policy.yaml +22 -0
  115. package/templates/paybond-shopify-shopping-agent/src/index.ts +54 -0
  116. package/templates/paybond-shopify-shopping-agent/src/paybond.config.ts +51 -0
  117. package/templates/paybond-shopify-shopping-agent/tsconfig.json +13 -0
  118. package/templates/paybond-stripe-agent-demo/.env.example +9 -0
  119. package/templates/paybond-stripe-agent-demo/.github/workflows/smoke.yml +20 -0
  120. package/templates/paybond-stripe-agent-demo/LICENSE +201 -0
  121. package/templates/paybond-stripe-agent-demo/README.md +50 -0
  122. package/templates/paybond-stripe-agent-demo/package-lock.json +223 -0
  123. package/templates/paybond-stripe-agent-demo/package.json +20 -0
  124. package/templates/paybond-stripe-agent-demo/paybond.policy.yaml +22 -0
  125. package/templates/paybond-stripe-agent-demo/src/charge-customer.ts +237 -0
  126. package/templates/paybond-stripe-agent-demo/src/index.ts +78 -0
  127. package/templates/paybond-stripe-agent-demo/src/paybond.config.ts +51 -0
  128. package/templates/paybond-stripe-agent-demo/tsconfig.json +13 -0
  129. package/templates/paybond-travel-agent/package-lock.json +13 -13
  130. package/templates/paybond-travel-agent/src/paybond.config.ts +1 -1
  131. package/templates/paybond-vercel-shopping-agent/package-lock.json +7 -7
  132. package/templates/paybond-vercel-shopping-agent/src/paybond.config.ts +1 -1
package/dist/index.d.ts CHANGED
@@ -4,12 +4,14 @@
4
4
  */
5
5
  import { type BuildSignedCreateIntentParams, type BuildSignedCreateIntentWithPolicyBindingParams, type SettlementRail } from "./principal-intent.js";
6
6
  import { type SignPayeeEvidenceParams } from "./payee-evidence.js";
7
- import { PaybondAgentRunFacade, PaybondInstrumentBuilder, PaybondInstrumentRuntime, PaybondToolRegistry, type CreateGuardedAgentInput, type CreateGuardedAgentResult, type PaybondAgentInput, type PaybondAgentResult, type PaybondInlinePolicy, type PaybondInstrumentAgentOptions, type PaybondInstrumentInput, type PaybondInstrumented, type PaybondToolRegistryConfig, type PaybondWrapToolsOptions } from "./agent/index.js";
7
+ import type { AgentReceiptExternalAttestationV1 } from "./agent-receipt.js";
8
+ import { PaybondAgentRunFacade, type PaybondAgentCallable, PaybondInstrumentBuilder, PaybondInstrumentRuntime, PaybondToolRegistry, type CreateGuardedAgentInput, type CreateGuardedAgentResult, type PaybondInlinePolicy, type PaybondInstrumentAgentOptions, type PaybondInstrumentInput, type PaybondInstrumented, type PaybondToolRegistryConfig, type PaybondWrapToolsOptions } from "./agent/index.js";
8
9
  import { GatewayAgentRunTraceReporter } from "./agent/gateway-trace-reporter.js";
9
10
  import { PaybondAudit } from "./audit/index.js";
10
11
  import { type PolicyRemoteValidateOptions, type PolicyRemoteValidateResult } from "./policy/validate-remote.js";
11
12
  import { type PolicyEffectiveResolveResult } from "./policy/load-effective.js";
12
13
  import { type FundRequestEnvelope, type PaymentRequired, type X402FundPollOptions } from "./x402-funding.js";
14
+ import { type MppFundPollOptions, type PaymentAuthChallenge } from "./mpp-funding.js";
13
15
  export type SpendScope = {
14
16
  scope_type: string;
15
17
  scope_key: string;
@@ -43,6 +45,13 @@ export type PaybondSpendAuthorizationInput = {
43
45
  agentSubject?: string;
44
46
  approvalToken?: string;
45
47
  idempotencyKey?: string;
48
+ /**
49
+ * Agent Receipt Standard context (Phase 1): forwarded to Gateway `/verify` on every call for
50
+ * audit correlation. See `go/gateway/internal/spendauth/types.go` `VerifyRequest`.
51
+ */
52
+ modelFamily?: string;
53
+ configHashHex?: string;
54
+ promptHashHex?: string;
46
55
  };
47
56
  export type SubmitEvidenceResult = {
48
57
  intentId: string;
@@ -54,6 +63,12 @@ export type IntentFundingResult = {
54
63
  settlementRail: SettlementRail;
55
64
  harborFundEndpoint?: string;
56
65
  status?: string;
66
+ /** MPP Payment Auth challenge `intent` (`charge` or `session`). */
67
+ intent?: string;
68
+ /** MPP Payment Auth challenge `method` (`stripe` or `tempo`). */
69
+ method?: string;
70
+ /** MPP Payment Auth challenge id from `WWW-Authenticate: Payment`. */
71
+ challengeId?: string;
57
72
  paymentSessionId?: string;
58
73
  paymentUrl?: string;
59
74
  stripePaymentIntentId?: string;
@@ -69,6 +84,22 @@ export type IntentFundingResult = {
69
84
  bankName?: string;
70
85
  asset?: string;
71
86
  network?: string;
87
+ /** MPP settlement asset (e.g. `usdc`). */
88
+ settlementAsset?: string;
89
+ /** MPP settlement network (e.g. `tempo`). */
90
+ settlementNetwork?: string;
91
+ /** Tempo session channel id (`stripe_mpp` session funding). */
92
+ channelId?: string;
93
+ /** Tempo session protocol version (e.g. `v2`). */
94
+ sessionProtocol?: string;
95
+ /** Required Tempo deposit in USDC base units. */
96
+ depositAmountBaseUnits?: string;
97
+ acceptedCumulativeBaseUnits?: string;
98
+ pendingCumulativeBaseUnits?: string;
99
+ descriptorHash?: string;
100
+ lastVoucherAt?: string;
101
+ lastSettleTxHash?: string;
102
+ channelStatus?: string;
72
103
  authorizationId?: string;
73
104
  captureId?: string;
74
105
  voidId?: string;
@@ -94,6 +125,12 @@ export type FundIntentResult = {
94
125
  statusCode: 200 | 202 | 402;
95
126
  paymentRequired?: string;
96
127
  paymentResponse?: string;
128
+ /** Payment Auth challenges from `WWW-Authenticate` (MPP charge/session). */
129
+ wwwAuthenticate?: string[];
130
+ /** Payment Auth receipt from `Payment-Receipt` when Harbor confirms payment progress. */
131
+ paymentReceipt?: string;
132
+ /** Cache policy echoed from Harbor (`Cache-Control`). */
133
+ cacheControl?: string;
97
134
  intentId: string;
98
135
  tenant: string;
99
136
  state: string;
@@ -722,6 +759,7 @@ export type VerifyProtocolReceiptV1Result = {
722
759
  tenant_id: string;
723
760
  receipt: ProtocolAuthorizationReceiptV1 | ProtocolSettlementReceiptV1 | Record<string, unknown>;
724
761
  };
762
+ export type { VerifyAgentReceiptV1Result } from "./agent/receipt-client.js";
725
763
  export declare class A2AHttpError extends Error {
726
764
  readonly statusCode: number;
727
765
  readonly url: string;
@@ -900,6 +938,7 @@ export declare class HarborClient {
900
938
  */
901
939
  fundIntent(intentId: string, options?: {
902
940
  paymentSignature?: string;
941
+ paymentAuthorization?: string;
903
942
  idempotencyKey?: string;
904
943
  }): Promise<FundIntentResult>;
905
944
  /**
@@ -948,6 +987,10 @@ type GatewayHarborClientOptions = {
948
987
  type GatewayHarborMutationOptions = {
949
988
  idempotencyKey?: string;
950
989
  recognitionProof?: AgentRecognitionProofV1 | Record<string, unknown>;
990
+ /** Kit-verified external attestation digests forwarded for Gateway compose (evidence submit only). */
991
+ agentReceiptAttestations?: AgentReceiptExternalAttestationV1[];
992
+ /** Agent run id matching the attestation header for server-side audit. */
993
+ agentReceiptSourceRunId?: string;
951
994
  };
952
995
  /**
953
996
  * Gateway-backed Harbor surface for hosted Paybond integrations.
@@ -1009,6 +1052,7 @@ export declare class GatewayHarborClient {
1009
1052
  createIntent(body: Record<string, unknown>, options: GatewayHarborMutationOptions): Promise<Record<string, unknown>>;
1010
1053
  fundIntent(intentId: string, options: GatewayHarborMutationOptions & {
1011
1054
  paymentSignature?: string;
1055
+ paymentAuthorization?: string;
1012
1056
  }): Promise<FundIntentResult>;
1013
1057
  submitEvidence(intentId: string, evidenceBody: Record<string, unknown>, options: GatewayHarborMutationOptions): Promise<SubmitEvidenceResult>;
1014
1058
  /** Recognition-gated Gateway Harbor settlement confirmation. */
@@ -1127,6 +1171,12 @@ export declare class GatewayProtocolClient {
1127
1171
  }): Promise<ImportAgentMandateV1Result>;
1128
1172
  getSettlementReceiptV1(receiptId: string): Promise<ProtocolSettlementReceiptV1>;
1129
1173
  verifyProtocolReceiptV1(receipt: ProtocolAuthorizationReceiptV1 | ProtocolSettlementReceiptV1 | Record<string, unknown>): Promise<VerifyProtocolReceiptV1Result>;
1174
+ getAgentReceiptV1ByID(receiptId: string): Promise<import("./agent-receipt.js").AgentReceiptV1>;
1175
+ getAgentReceiptV1ByIntentToolCall(init: {
1176
+ intentId: string;
1177
+ toolCallId: string;
1178
+ }): Promise<import("./agent-receipt.js").AgentReceiptV1>;
1179
+ verifyAgentReceiptV1(receipt: import("./agent-receipt.js").AgentReceiptV1 | Record<string, unknown>): Promise<import("./agent/receipt-client.js").VerifyAgentReceiptV1Result>;
1130
1180
  createHarborIntent(init: {
1131
1181
  body: Record<string, unknown>;
1132
1182
  recognitionProof: AgentRecognitionProofV1 | Record<string, unknown>;
@@ -1159,6 +1209,12 @@ export type ServiceAccountSignalSessionInit = {
1159
1209
  maxRetries?: number;
1160
1210
  };
1161
1211
  export type ServiceAccountFraudSessionInit = ServiceAccountSignalSessionInit;
1212
+ /** Server-derived principal identity: tenant plus the deployment environment the API key is bound to. */
1213
+ export type ResolvedGatewayPrincipal = {
1214
+ tenantId: string;
1215
+ /** `"live"` or `"sandbox"` as reported by the gateway principal, or `null` when the field is absent. */
1216
+ environment: PaybondEnvironment | null;
1217
+ };
1162
1218
  /**
1163
1219
  * Read-only tenant-bound Signal session for one service-account API key.
1164
1220
  */
@@ -1234,6 +1290,7 @@ export declare class PaybondIntents {
1234
1290
  intentId: string;
1235
1291
  recognitionProof: AgentRecognitionProofV1 | Record<string, unknown>;
1236
1292
  paymentSignature?: string;
1293
+ paymentAuthorization?: string;
1237
1294
  idempotencyKey?: string;
1238
1295
  }): Promise<FundIntentResult>;
1239
1296
  /**
@@ -1249,6 +1306,36 @@ export declare class PaybondIntents {
1249
1306
  pollOptions?: X402FundPollOptions;
1250
1307
  idempotencyKey?: string;
1251
1308
  }): Promise<FundIntentResult>;
1309
+ /**
1310
+ * One-shot Stripe MPP charge fund flow: create Payment Auth credentials from 402 challenges,
1311
+ * retry with `paymentAuthorization`, and poll until funded.
1312
+ *
1313
+ * MPP wallet and SPT secrets stay app-owned — pass injectable `createPaymentCredential` and
1314
+ * `issueRecognitionProof` callbacks.
1315
+ */
1316
+ fundWithMppCharge(params: {
1317
+ intentId: string;
1318
+ recognitionProof: AgentRecognitionProofV1 | Record<string, unknown>;
1319
+ createPaymentCredential: (challenge: PaymentAuthChallenge) => Promise<string>;
1320
+ issueRecognitionProof: (envelope: FundRequestEnvelope) => Promise<AgentRecognitionProofV1 | Record<string, unknown>>;
1321
+ pollOptions?: MppFundPollOptions;
1322
+ idempotencyKey?: string;
1323
+ }): Promise<FundIntentResult>;
1324
+ /**
1325
+ * Tempo MPP session fund flow: open a session channel deposit via Payment Auth credentials,
1326
+ * retry with `paymentAuthorization`, and poll until the intent is funded.
1327
+ *
1328
+ * MPP wallet and SPT secrets stay app-owned — pass injectable `createPaymentCredential` and
1329
+ * `issueRecognitionProof` callbacks.
1330
+ */
1331
+ fundWithMppSession(params: {
1332
+ intentId: string;
1333
+ recognitionProof: AgentRecognitionProofV1 | Record<string, unknown>;
1334
+ createPaymentCredential: (challenge: PaymentAuthChallenge) => Promise<string>;
1335
+ issueRecognitionProof: (envelope: FundRequestEnvelope) => Promise<AgentRecognitionProofV1 | Record<string, unknown>>;
1336
+ pollOptions?: MppFundPollOptions;
1337
+ idempotencyKey?: string;
1338
+ }): Promise<FundIntentResult>;
1252
1339
  /**
1253
1340
  * Sign payee evidence and POST it. `payeeSigningSeed` must be 32 bytes.
1254
1341
  */
@@ -1274,6 +1361,14 @@ export declare class Paybond {
1274
1361
  readonly intents: PaybondIntents;
1275
1362
  readonly audit: PaybondAudit;
1276
1363
  readonly agentRun: PaybondAgentRunFacade;
1364
+ readonly agent: PaybondAgentCallable;
1365
+ /**
1366
+ * Deployment environment this session is bound to, as reported by the gateway principal
1367
+ * (`"live"` or `"sandbox"`), or `null` when the gateway did not report one. Server-derived —
1368
+ * prefer this over the client-supplied `expectedEnvironment` hint when gating environment-sensitive
1369
+ * behavior (for example, refusing live Stripe secrets in a sandbox-only demo).
1370
+ */
1371
+ readonly environment: PaybondEnvironment | null;
1277
1372
  private constructor();
1278
1373
  /** Open a tenant-bound hosted Paybond session from a service-account API key. */
1279
1374
  static open(init: PaybondOpenOptions): Promise<Paybond>;
@@ -1318,11 +1413,6 @@ export declare class Paybond {
1318
1413
  instrumentMCP<TTools>(input: Omit<PaybondInstrumentInput<TTools>, "framework"> & {
1319
1414
  tools: TTools;
1320
1415
  }): Promise<PaybondInstrumented<TTools> | PaybondInstrumentRuntime<TTools>>;
1321
- /**
1322
- * Opinionated quickstart: resolve named policy presets (for example `travel`) or file paths,
1323
- * then instrument tools for the selected framework.
1324
- */
1325
- agent<TTools>(input: PaybondAgentInput<TTools>): Promise<PaybondAgentResult<TTools>>;
1326
1416
  /** Wrap tools for an existing bound run without reloading policy. */
1327
1417
  wrapTools(run: import("./agent/run.js").PaybondAgentRun, tools: unknown, options?: PaybondWrapToolsOptions): unknown;
1328
1418
  /**
@@ -1342,10 +1432,21 @@ export { buildSignedCreateIntentBody, buildSignedCreateIntentBodyWithPolicyBindi
1342
1432
  export { artifactsDigest, evidenceSignBytesV1, signPayeeEvidenceBinding, type SignPayeeEvidenceParams, } from "./payee-evidence.js";
1343
1433
  export { AGENT_RECOGNITION_GATEWAY_VERIFIER_ID, AGENT_RECOGNITION_PROOF_KIND_V1, AGENT_RECOGNITION_PURPOSE_CREATE, AGENT_RECOGNITION_PURPOSE_FUND, AGENT_RECOGNITION_PURPOSE_EVIDENCE_SUBMIT, newAgentRecognitionRequestEnvelope, signAgentRecognitionProofV1, signHarborCreateRecognitionProof, signHarborFundRecognitionProof, signHarborEvidenceSubmitRecognitionProof, signHarborSettlementConfirmRecognitionProof, type SignAgentRecognitionProofV1Params, type SignedAgentRecognitionProofV1, } from "./agent-recognition.js";
1344
1434
  export { executeFundWithX402, buildX402FundRequestEnvelope, PaybondX402FundingFailedError, PaybondX402FundingPendingError, type FundRequestEnvelope, type PaymentRequired, type X402FundPollOptions, } from "./x402-funding.js";
1435
+ export { executeFundWithMpp, executeFundWithMppCharge, executeFundWithMppSession, buildMppFundRequestEnvelope, parsePaymentAuthChallenge, selectMppChargeChallenge, selectMppSessionChallenge, PaybondMppFundingFailedError, PaybondMppFundingPendingError, type MppFundPollOptions, type ParsedPaymentAuthChallenge, type PaymentAuthChallenge, } from "./mpp-funding.js";
1436
+ export { buildPaybondStripeMetadata, assertNotStripeFundingWebhook, mapStripeToolResultToEvidence, STRIPE_COMMERCE_MAPPER_VERSION, PAYBOND_STRIPE_METADATA_TENANT_ID_KEY, PAYBOND_STRIPE_METADATA_INTENT_ID_KEY, PAYBOND_STRIPE_METADATA_RAIL_KEY, type BuildPaybondStripeMetadataParams, type CostAndCompletionEvidence, type MapStripeToolResultToEvidenceOptions, type PaybondStripeMetadata, type PaybondStripeSettlementRail, type StripeChargeVendorEvidence, type StripeCommerceEvidencePreset, type StripeToolResultInput, } from "./stripe-commerce/index.js";
1437
+ export { PAYBOND_UCP_AGENT_PROFILE_URL, PAYBOND_SHOPIFY_UCP_VERSION, SHOPIFY_COMMERCE_MAPPER_VERSION, assertNotShopifyFundingWebhook, createCheckoutWithBinding, createGuardedShopifyCheckoutHandler, getOrder, instrumentShopifyCheckout, mapShopifyToolResultToEvidence, mergeBindingIntoCheckoutPayload, toUcpCheckoutLineItems, type CreateCheckoutWithBindingParams, type CreateGuardedShopifyCheckoutHandlerOptions, type GetShopifyOrderParams, type InstrumentShopifyCheckoutInput, type MapShopifyToolResultToEvidenceOptions, type ShopifyCheckoutCreatePayload, type ShopifyCheckoutExecuteInput, type ShopifyCheckoutExecutor, type ShopifyCheckoutLineItemInput, type ShopifyCheckoutSessionBinding, type ShopifyCheckoutToolArgs, type ShopifyCheckoutToolResult, type ShopifyCommerceEvidencePreset, type ShopifyOrderSummary, type ShopifyUcpCheckoutLineItem, type ShopifyUcpFetch, } from "./shopify/index.js";
1438
+ export { normalizeCommerceBinding, encodeCommerceBindingToStripeMetadata, decodeCommerceBindingFromStripeMetadata, encodeCommerceBindingToShopifyNoteAttributes, decodeCommerceBindingFromShopifyNoteAttributes, PAYBOND_COMMERCE_BINDING_TENANT_ID_KEY, PAYBOND_COMMERCE_BINDING_INTENT_ID_KEY, type CommerceBinding, type ShopifyNoteAttribute, type StripeMetadata, } from "./commerce-binding.js";
1345
1439
  export { validateCompletionEvidence, type CompletionEvidenceValidationReport, } from "./completion-validate-evidence.js";
1346
1440
  export { completionSchemaDigestHex, computeVendorContractDigests, verifyVendorContract, verifyCatalogVendorContracts, type VendorContract, type VendorContractDigests, } from "./completion-contract-digest.js";
1347
1441
  export { contractSnapshotForPreset, mapVendorEvidenceToCanonical, resolveCompletionPreset, } from "./completion-resolve.js";
1348
- export { PaybondAgentRun, PaybondAgentRunBindError, PaybondAgentRunFacade, PaybondEvidenceSubmitError, PaybondFrameworkAdapter, PaybondToolInterceptor, PaybondToolRegistry, PaybondToolRegistryValidationError, PaybondUnregisteredSideEffectingToolError, buildAutoEvidencePayload, createGenericToolExecutor, createGuardedAgent, createGuardedAgentRunner, createPaybondAgent, createPaybondGenericAgentConfig, createPaybondGenericInputGuard, createPaybondToolRegistry, createToolInputGuardAdapter, instrumentPaybondAgent, instrumentPaybondClaudeAgents, instrumentPaybondLangGraph, instrumentPaybondMCP, instrumentPaybondOpenAI, instrumentPaybondVercel, paybondGenericToolExecutorAdapter, paybondToolInputGuardAdapter, resolveAgentPolicySource, toPaybondAgentResult, wrapPaybondTools, PaybondInstrumentBuilder, PaybondInstrumented, PaybondInstrumentRuntime, PaybondLazyContextError, PaybondUnboundContextError, discoverPolicyFromAgent, discoverToolNames, discoverToolsFromAgent, inlinePolicyToDocument, isInlinePolicy, isInstrumentableAgentObject, readPaybondAgentInstrumentation, type CreateGuardedAgentInput, type CreateGuardedAgentResult, type GuardedAgentFramework, type PaybondAgentHooks, type PaybondAgentInput, type PaybondAgentResult, type PaybondAgentRunBindInput, type PaybondAuthorizeToolCallInput, type PaybondEvidenceMapper, type PaybondGenericAgentConfig, type PaybondGenericToolCall, type PaybondGenericToolDefinition, type PaybondGenericWrappedToolDefinition, type PaybondInlinePolicy, type PaybondAgentInstrumentation, type PaybondInstrumentAgentOptions, type PaybondInstrumentBinding, type PaybondInstrumentContext, type PaybondInstrumentContextInput, type PaybondInstrumentContextProvider, type PaybondInstrumentInput, type PaybondInterceptEvidenceResult, type PaybondInterceptWrapExecuteInput, type PaybondInterceptWrapExecuteResult, type PaybondRunBinding, type PaybondRunBindingAttachInput, type PaybondRunBindingSandboxBootstrapInput, type PaybondRunGuard, type PaybondSideEffectingToolEntry, type PaybondSideEffectingToolPolicy, type PaybondSpendResolver, type PaybondToolCallContext, type PaybondToolInputGuardAllowDecision, type PaybondToolInputGuardApprovalRequiredDecision, type PaybondToolInputGuardDecision, type PaybondToolInputGuardDenyDecision, type PaybondToolInputGuardAdapter, type PaybondToolRegistryConfig, type PaybondToolResolution, type PaybondWrapToolsOptions, } from "./agent/index.js";
1442
+ export { PaybondAgentRun, PaybondAgentRunBindError, PaybondAgentRunFacade, PaybondEvidenceSubmitError, PaybondFrameworkAdapter, PaybondToolInterceptor, PaybondToolRegistry, PaybondToolRegistryValidationError, PaybondUnregisteredSideEffectingToolError, buildAutoEvidencePayload, createGenericToolExecutor, createGuardedAgent, createGuardedAgentRunner, createPaybondAgent, createPaybondGenericAgentConfig, createPaybondGenericInputGuard, createPaybondToolRegistry, createToolInputGuardAdapter, instrumentPaybondAgent, instrumentPaybondClaudeAgents, instrumentPaybondLangGraph, instrumentPaybondMCP, instrumentPaybondOpenAI, instrumentPaybondVercel, paybondGenericToolExecutorAdapter, paybondToolInputGuardAdapter, resolveAgentPolicySource, toPaybondAgentResult, wrapPaybondTools, PaybondInstrumentBuilder, PaybondInstrumented, PaybondInstrumentRuntime, PaybondLazyContextError, PaybondUnboundContextError, discoverPolicyFromAgent, discoverToolNames, discoverToolsFromAgent, inlinePolicyToDocument, isInlinePolicy, isInstrumentableAgentObject, readPaybondAgentInstrumentation, type CreateGuardedAgentInput, type CreateGuardedAgentResult, type GuardedAgentFramework, type PaybondAgentHooks, type PaybondAgentInput, type PaybondAgentResult, type PaybondAgentRunBindInput, type PaybondAuthorizeToolCallInput, type PaybondEvidenceMapper, type PaybondExternalAttestationMapper, type PaybondGenericAgentConfig, type PaybondGenericToolCall, type PaybondGenericToolDefinition, type PaybondGenericWrappedToolDefinition, type PaybondInlinePolicy, type PaybondAgentInstrumentation, type PaybondInstrumentAgentOptions, type PaybondInstrumentBinding, type PaybondInstrumentContext, type PaybondInstrumentContextInput, type PaybondInstrumentContextProvider, type PaybondInstrumentInput, type PaybondInterceptEvidenceResult, type PaybondInterceptWrapExecuteInput, type PaybondInterceptWrapExecuteResult, type PaybondRunBinding, type PaybondRunBindingAttachInput, type PaybondRunBindingSandboxBootstrapInput, type PaybondRunGuard, type PaybondSideEffectingToolEntry, type PaybondSideEffectingToolPolicy, type PaybondSpendResolver, type PaybondToolCallContext, type PaybondToolInputGuardAllowDecision, type PaybondToolInputGuardApprovalRequiredDecision, type PaybondToolInputGuardDecision, type PaybondToolInputGuardDenyDecision, type PaybondToolInputGuardAdapter, type PaybondToolRegistryConfig, type PaybondToolResolution, type PaybondWrapToolsOptions, } from "./agent/index.js";
1349
1443
  export { PaybondAudit, PaybondAuditExports, GatewayAuditExportsClient, parseAuditExportList, parseAuditExportJobGet, verifyAuditManifest, verifyAuditBundleLocal, type AuditExportJobDetail, type AuditExportJobGetResponse, type AuditExportJobSummary, type AuditExportListPage, type AuditVerifyResult, type AuditExportsGateway, } from "./audit/index.js";
1350
1444
  export { PaybondPolicy, composePolicyLayers, composeBundledPresetDefault, domain, guardrails, paybondPolicyPresets, resolveComposedPresetDocument, type LayeredPolicyPresetId, type PaybondPolicyPresets, type PolicyGuardrailLayer, type PolicyPresetId, type VerticalPolicyOptions, } from "./policy/index.js";
1351
1445
  export { getSolutionSmokeDefaults, isKnownSolutionId, listSolutionIds, loadSolutionManifest, paybondSolutionPresets, type PaybondSolutionBundle, type PaybondSolutionPresets, type SolutionId, type SolutionManifest, type SolutionSmokeDefaults, } from "./solutions/index.js";
1446
+ export { appendDirectHarborPaymentAuthorization, formatPaymentAuthorizationValue, PAYBOND_PAYMENT_AUTHORIZATION_HEADER, PAYMENT_TRANSPORT_RESPONSE_HEADERS, paymentAuthorizationGatewayHeader, readFundPaymentTransportHeaders, type FundPaymentTransportHeaders, } from "./payment-transport.js";
1447
+ export { AGENT_RECEIPT_KIND_V1, AGENT_RECEIPT_SCHEMA_VERSION, AGENT_RECEIPT_SCOPE_ACTION, AGENT_RECEIPT_SCOPE_INTENT_TERMINAL, AGENT_RECEIPT_SIGNING_ALGORITHM_ED25519, AGENT_RECEIPT_VERSION_V1, AGENT_RECEIPT_SIGNING_KEYS_WELL_KNOWN_PATH, AGENT_RECEIPT_WELL_KNOWN_PATH, PAYBOND_AGENT_RECEIPT_ATTESTATIONS_HEADER, PAYBOND_AGENT_RECEIPT_SOURCE_RUN_HEADER, actionReceiptId, attachOperatorAttestationV1, canonicalAgentReceiptBytes, configHashSha256Hex, promptHashSha256Hex, valueDigestSha256Hex, verifyAgentReceiptV1, verifyAgentReceiptV1FromJSON, type AgentReceiptAgentV1, type AgentReceiptAuthorizationV1, type AgentReceiptEvidenceV1, type AgentReceiptExecutionV1, type AgentReceiptExternalAttestationV1, type AgentReceiptMerchantV1, type AgentReceiptOperatorAttestationV1, type AgentReceiptOutcomeV1, type AgentReceiptPaymentV1, type AgentReceiptPolicyV1, type AgentReceiptReferencesV1, type AgentReceiptV1, type ConfigHashInput, type VerifyAgentReceiptV1Options, } from "./agent-receipt.js";
1448
+ export { FORBIDDEN_AGENT_RECEIPT_FIELDS, parseAgentReceiptJSON, validateAgentReceiptJSON, } from "./agent-receipt-prevalidate.js";
1449
+ export { AGENT_RECEIPT_EXTERNAL_SOURCE_AP2, AGENT_RECEIPT_EXTERNAL_SOURCE_SEP2828, AGENT_RECEIPT_EXTERNAL_SOURCE_X402, partnerRecordDigestSha256Hex, protocolAuthorizationReceiptToExternalAttestations, protocolSettlementReceiptToExternalAttestations, resolveExternalAttestations, sep2828RecordsToExternalAttestations, signedMandateToExternalAttestations, x402ReceiptToExternalAttestations, type PaybondExternalAttestationInput, } from "./agent-receipt-external-attestations.js";
1450
+ export { AGENT_RECEIPT_PDF_EXPORT_DERIVED_VIEW_LABEL, AGENT_RECEIPT_PDF_EXPORT_MANIFEST_KIND, AGENT_RECEIPT_PDF_EXPORT_MANIFEST_SCHEMA_VERSION, FORBIDDEN_PDF_EXPORT_MANIFEST_FIELDS, gateAgentReceiptPDFExport, parseAgentReceiptPDFExportManifestJSON, validateAgentReceiptPDFExportManifestJSON, type AgentReceiptPDFExportFooterStamp, type AgentReceiptPDFExportManifest, type AgentReceiptPDFExportSourceKind, type GateAgentReceiptPDFExportInput, } from "./agent-receipt-pdf-export.js";
1451
+ export { AGENT_AUTHORIZATION_KIND_PRINCIPAL, AGENT_AUTHORIZATION_KIND_TENANT, AGENT_MANDATE_KIND_V1, AGENT_MANDATE_SCHEMA_VERSION, AGENT_MANDATE_SIGNING_ALGORITHM_ED25519_SHA256, CONSTRAINT_REFERENCE_KIND_POLICY, CONSTRAINT_REFERENCE_KIND_PREDICATE, HUMAN_PRESENCE_MODE_HUMAN_NOT_PRESENT, HUMAN_PRESENCE_MODE_HUMAN_PRESENT, agentMandateDigestSha256Hex, canonicalAgentMandateJsonBytes, normalizeAgentMandateV1, signAgentMandateV1, verifySignedAgentMandateV1, } from "./agent-mandate.js";
1452
+ export { PROTOCOL_AUTHORIZATION_RECEIPT_KIND_V1, PROTOCOL_RECEIPT_SCHEMA_VERSION, PROTOCOL_RECEIPT_SIGNING_ALGORITHM_ED25519_SHA256, PROTOCOL_RECEIPT_STATUS_AUTHORIZED, PROTOCOL_RECEIPT_VERSION_V1, PROTOCOL_SETTLEMENT_RECEIPT_KIND_V1, PROTOCOL_SOURCE_ACP, PROTOCOL_SOURCE_AP2, PROTOCOL_SOURCE_UCP, normalizeProtocolAuthorizationReceiptV1, normalizeProtocolSettlementReceiptV1, signProtocolAuthorizationReceiptV1, signProtocolSettlementReceiptV1, verifyProtocolAuthorizationReceiptV1, verifyProtocolSettlementReceiptV1, } from "./protocol-receipt.js";