@piprail/sdk 1.10.0 → 1.12.0

package/CHANGELOG.md

@@ -4,6 +4,50 @@ All notable changes to `@piprail/sdk` are documented here. The format
 follows [Keep a Changelog](https://keepachangelog.com/en/1.1.0/) and the
 versions follow [Semantic Versioning](https://semver.org/).
 
+## [1.12.0] — 2026-06-09
+
+### Added — One-call domain verification (pending-review → searchable)
+- **`client.verifyDomain()` takes a 402 Index listing all the way to searchable.** A self-registered
+  402 Index listing is `pending-review`; verifying the domain you control approves it (and every other
+  pending listing on it). `client.claimDomain(urlOrDomain, { contactEmail? })` returns the
+  `verificationHash` to serve at your `/.well-known/402index-verify.txt`; `client.verifyDomain(urlOrDomain)`
+  then flips it live. Standalone forms `claim402IndexDomain` / `verify402IndexDomain` + the
+  `DomainClaim` / `DomainVerification` types are exported. Never throws; moves no funds.
+
+### Docs — a complete, agent-followable discovery playbook
+- Rewrote the **"Be discoverable"** README section into a top-to-bottom **4-step playbook** an agent can
+  follow (list → verify domain → discover → self-describe), with the corrected lifecycle output
+  (`visibility` + `note`), a `DIRECTORY_INFO` reference table, and the caveats inline (402 Index is
+  pending-review; `discover()` doesn't read x402scan; x402scan needs an input schema). Updated
+  `llms-full.txt` to the same four moves (EMIT · REGISTER · VERIFY · DISCOVER).
+
+## [1.11.0] — 2026-06-09
+
+### Added — Agent-friendly discovery lifecycle
+- **`register()` outcomes now tell an agent when/where a listing is findable.** Each
+  `RegisterOutcome` carries a `visibility: 'live' | 'pending-review' | 'not-listable'` plus a
+  plain-language `note` — projected from a new exported source-of-truth, **`DIRECTORY_INFO`**
+  (per-index: review mode, auth, chains, `readByDiscover`, caveat). So an agent reads the caveat
+  right where it already is instead of guessing. New exports: `DIRECTORY_INFO`, `getDirectoryInfo`,
+  `decorateOutcome`, and the `DirectoryInfo` / `ListingVisibility` types.
+- **The sharp caveats are now explicit** (in the types, the `note`, and `register()`/`discover()`
+  JSDoc): **402 Index lists a self-registered resource as `pending-review`** (not searchable until
+  approved — verify your domain on 402index.io for instant approval), **`discover()` does NOT read
+  x402scan** (a live x402scan listing won't appear there — don't read its absence as failure), and
+  **CDP Bazaar can't list a backendless PipRail resource at all** (facilitator-coupled).
+
+### Docs — x402 v1/v2 version posture made authoritative
+- A definitive comment in `x402.ts` documents the stance: **emit strict v2, accept liberal v1 + v2**
+  (Postel). v2 *replaced* v1 on the wire; the current reference client `@x402/fetch` is v2, but the
+  original `x402-fetch`/`x402-express`/`x402-next` packages still send v1, so the gate keeps accepting
+  it. PipRail emits no v1 *body* on its own paths; the lone v1 emitter is the `encodeXPaymentHeader`
+  utility (its `x402Version: 1` default is correct — consistent with the v1-flat shape it builds).
+
+### Fixed
+- Corrected stale "searchable within seconds" wording for 402 Index (it added a review queue):
+  `register402Index`'s success `detail` now surfaces the index's own message, and the JSDoc + MCP
+  `piprail_register` tool description reflect the `pending-review` reality.
+
 ## [1.10.0] — 2026-06-09
 
 ### Added — Universal Payments (the standard x402 `exact` rail)
@@ -549,6 +593,8 @@ straight into your wallet. The API is small and self-contained.
   to your wallet; PipRail never holds funds.
 - `viem ^2.21` is a peer dependency. Node 20+ or a modern browser.
 
+[1.12.0]: https://www.npmjs.com/package/@piprail/sdk
+[1.11.0]: https://www.npmjs.com/package/@piprail/sdk
 [1.10.0]: https://www.npmjs.com/package/@piprail/sdk
 [1.9.0]: https://www.npmjs.com/package/@piprail/sdk
 [1.8.0]: https://www.npmjs.com/package/@piprail/sdk

package/README.md

@@ -148,24 +148,38 @@ See [`examples/agent-tools.mjs`](../examples/agent-tools.mjs) for MCP / AI-SDK w
 A 402 endpoint is payable, but nobody can *find* it. PipRail closes that gap by building on the
 **open** x402 indexes that already exist (402 Index, the CDP Bazaar read API, x402scan) — **nothing
 PipRail-hosted, no registry, no database.** All opt-in; the pay path is untouched. There's **no PipRail
-account and no x402 sign-up anywhere** — the only thing ever registered is a merchant's own URL, by one
-call. The complete reference — including a **step-by-step walkthrough of exactly what each step needs**
-(wallet? signing? sign-up? — spoiler: 402 Index needs none) — is **[DISCOVERY.md](./DISCOVERY.md)** (§7).
+account and no x402 sign-up anywhere** — the only thing ever registered is a merchant's own URL.
+**The four steps below are the whole playbook** — an agent can follow them top to bottom (every method
+never throws and returns a typed result that says what to do next); [DISCOVERY.md](./DISCOVERY.md) is
+the deep reference.
 
 > **Experimental.** Discovery integrates with third-party open indexes whose conventions are young
 > and moving — treat this layer as experimental. The read path + 402 Index register are live-verified;
 > x402scan SIWX isn't yet. Note **402 Index probes your URL and only lists endpoints that actually
 > return a `402`** — so register a *deployed* gate, not a marketing page. (DISCOVERY.md §10 has the log.)
 
-**1) List a resource you run** — one call, no auth, no signature:
+**1) List a resource you run** — one call, no auth, no signature, no funds:
 
 ```ts
 const client = new PipRailClient({ wallet: { privateKey: KEY }, chain: 'base' })
 
-await client.register('https://api.example.com/report', { name: 'Market Report', priceUsd: 0.05 })
-// → [{ source: '402index', ok: true, detail: 'Listed on 402 Index (searchable at 402index.io).' }]
-// Add targets: ['402index', 'x402scan'] to also register on x402scan via one wallet signature
-// (SIWX — Base/Solana only). It moves no funds; you're listing on third-party open directories.
+const outcomes = await client.register('https://api.example.com/report', {
+  name: 'Market Report', priceUsd: 0.05, asset: 'USDC',
+  targets: ['402index', 'x402scan'], // 402index is the default; x402scan adds SIWX (Base/Solana)
+})
+// Each outcome carries its LIFECYCLE — read `visibility` + `note`. "ok:true" ≠ "searchable now":
+//  • 402index → { ok:true, visibility:'pending-review', note:'… verify your domain for instant approval' }
+//  • x402scan → { ok:true, visibility:'live',           note:"… discover() does NOT read x402scan" }
+```
+
+**2) Flip 402 Index `pending-review` → searchable** — verify the domain you control (no funds, no sign-up):
+
+```ts
+const claim = await client.claimDomain('https://api.example.com/report', { contactEmail: 'you@example.com' })
+// Serve claim.verificationHash as the ENTIRE body of claim.verificationUrl
+//   (https://api.example.com/.well-known/402index-verify.txt) — then:
+await client.verifyDomain('api.example.com') // → { ok:true, status:'verified', servicesCount }
+// Now every pending listing on that domain is approved + searchable.
 ```
 
 **Works on every chain.** 402 Index needs no signature and has no chain allowlist, so *any* chain —
@@ -179,7 +193,7 @@ request sends a `User-Agent: @piprail/sdk` — so the tech spreads through the f
 the logs operators read, never by spamming listings. An opt-in `register(url, { attribution: true })`
 adds a best-effort `via` tag; it's off by default (it's your listing).
 
-**2) Find resources to pay** — read the open indexes (free), filtered to your chain by default:
+**3) Find resources to pay** — read the open indexes (free), filtered to your chain by default:
 
 ```ts
 const hits = await client.discover({ query: 'weather', maxPrice: 0.01 })
@@ -187,25 +201,39 @@ const hits = await client.discover({ query: 'weather', maxPrice: 0.01 })
 const res = await client.fetch(hits[0].resource) // then quote → plan → pay as usual
 ```
 
-`network` defaults to `'self'` (your chain only); pass `'any'` to search every chain, or a CAIP-2 id
-(`'eip155:8453'`) for a specific one. Chain slugs map to CAIP-2 through the `SLUG_TO_CAIP2` table —
-adding a chain adds one entry there (see [DISCOVERY.md](./DISCOVERY.md) §2.5), and an unresolved
-network is kept, never hidden.
+`discover()` reads **402 Index + CDP Bazaar**, **not x402scan** (its reads are paid) — a live x402scan
+listing won't appear here, so don't read that absence as failure. `network` defaults to `'self'` (your
+chain); pass `'any'` for every chain, or a CAIP-2 id (`'eip155:8453'`). Slugs map to CAIP-2 via
+`SLUG_TO_CAIP2`; an unresolved network is kept, never hidden.
 
-**3) Emit a discovery file** — turn your gate's config into the artifacts a crawler reads (pure, no
-I/O); serve the result as a static file on **your own** origin:
+**4) Make your endpoint self-describing** — turn your gate's config into the artifacts a crawler reads
+(pure, no I/O); serve them on **your own** origin. **x402scan REQUIRES** a resolvable input schema (your
+`/openapi.json` or an `extensions.bazaar` block in the 402 body), so this is what makes an x402scan
+listing accepted:
 
 ```ts
-import { createPaymentGate, buildOpenApi, buildX402DnsTxt } from '@piprail/sdk'
+import { createPaymentGate, buildOpenApi, buildWellKnownX402, buildX402DnsTxt } from '@piprail/sdk'
 
 const gate = createPaymentGate({ chain: 'base', token: 'USDC', amount: '0.05', payTo })
-const openapi = buildOpenApi({
-  origin: 'https://api.example.com',
-  resources: [await gate.describe('https://api.example.com/report')],
-})
-// serve `openapi` at https://api.example.com/openapi.json — each priced op carries an `x-payment-info`
-// block (the field indexes crawl) plus a default root `x-generator` attribution stamp.
-// buildWellKnownX402(...) emits the legacy /.well-known/x402 file; buildX402DnsTxt(...) the _x402 DNS line
+const desc = await gate.describe('https://api.example.com/report')
+const openapi = buildOpenApi({ origin: 'https://api.example.com', resources: [desc] })
+// serve at /openapi.json — each priced op carries an `x-payment-info` block + a root `x-generator` stamp.
+const wellKnown = buildWellKnownX402({ resources: [desc] }) // serve at /.well-known/x402
+// buildX402DnsTxt(...) emits the _x402 DNS line too.
+```
+
+**Know each index before you call** — the facts are one import, `DIRECTORY_INFO`, and `register()`
+projects them onto every outcome (`visibility` + `note`), so an agent never has to guess:
+
+| Index | Write auth | Chains | On a successful register | Read by `discover()`? |
+|---|---|---|---|---|
+| **402 Index** (default) | none | any | `pending-review` → `verifyDomain()` for instant approval | ✅ yes |
+| **x402scan** | one wallet sig (SIWX) | Base / Solana | `live` on x402scan.com | ❌ no (paid reads) |
+| **CDP Bazaar** | — (facilitator-only) | — | `not-listable` for PipRail (backendless) | ✅ read-only |
+
+```ts
+import { DIRECTORY_INFO } from '@piprail/sdk'
+DIRECTORY_INFO['x402scan'].readByDiscover // false — branch on this, don't guess
 ```
 
 For an LLM/MCP these are two more tools — **`piprail_discover`** (find) and **`piprail_register`**

package/dist/index.cjs

@@ -1305,9 +1305,47 @@ async function resolveNetwork2(opts) {
 }
 
 // src/indexes.ts
+var DIRECTORY_INFO = {
+  "402index": {
+    source: "402index",
+    review: "probe-sync",
+    auth: "none",
+    chains: null,
+    onSuccess: "pending-review",
+    readByDiscover: true,
+    caveat: "402 Index probes your URL on submit, then lists it as PENDING REVIEW \u2014 a self-registered resource is NOT in search until approved. Verify your domain on 402index.io for instant approval; otherwise it appears after manual review, so retry discover() later."
+  },
+  x402scan: {
+    source: "x402scan",
+    review: "probe-sync",
+    auth: "siwx",
+    chains: ["eip155:8453", "solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp"],
+    onSuccess: "live",
+    readByDiscover: false,
+    caveat: "x402scan lists Base/Solana only, needs one wallet signature (SIWX), and requires a resolvable input schema (from /openapi.json or the bazaar extension in the 402 body). It goes live on x402scan.com immediately on success \u2014 but discover() does NOT read x402scan, so the listing won't appear in discover() results."
+  },
+  bazaar: {
+    source: "bazaar",
+    review: "settle-coupled",
+    auth: "facilitator-only",
+    chains: null,
+    onSuccess: "not-listable",
+    readByDiscover: true,
+    caveat: "CDP Bazaar has no register endpoint \u2014 it catalogs a resource only when its own facilitator settles a payment. PipRail verifies locally with no facilitator, so a PipRail resource cannot be listed here (you can still READ Bazaar to find others). List on 402 Index or x402scan instead."
+  }
+};
+function getDirectoryInfo(source) {
+  return DIRECTORY_INFO[source];
+}
+function decorateOutcome(o) {
+  const info = DIRECTORY_INFO[o.source];
+  return { ...o, visibility: o.ok ? info.onSuccess : "not-listable", note: info.caveat };
+}
 var BAZAAR_URL = "https://api.cdp.coinbase.com/platform/v2/x402/discovery/resources";
 var INDEX402_SEARCH = "https://402index.io/api/v1/services";
 var INDEX402_REGISTER = "https://402index.io/api/v1/register";
+var INDEX402_CLAIM = "https://402index.io/api/v1/claim";
+var INDEX402_VERIFY = "https://402index.io/api/v1/claim/verify";
 var X402SCAN_REGISTER = "https://www.x402scan.com/api/x402/registry/register";
 var USER_AGENT = "@piprail/sdk (+https://piprail.com)";
 function clientHeaders(extra = {}) {
@@ -1457,7 +1495,13 @@ async function register402Index(input) {
       body: JSON.stringify(payload)
     });
     if (res.ok) {
-      return { source: "402index", ok: true, status: res.status, detail: "Listed on 402 Index (searchable at 402index.io)." };
+      const msg = await readIndexMessage(res);
+      return {
+        source: "402index",
+        ok: true,
+        status: res.status,
+        detail: _nullishCoalesce(msg, () => ( "Registered on 402 Index \u2014 pending review (verify your domain on 402index.io for instant approval)."))
+      };
     }
     const why = await readIndexError(res);
     return {
@@ -1470,6 +1514,14 @@ async function register402Index(input) {
     return { source: "402index", ok: false, detail: errMsg(err) };
   }
 }
+async function readIndexMessage(res) {
+  try {
+    const body = await res.json();
+    return typeof body.message === "string" && body.message.length > 0 ? body.message : void 0;
+  } catch (e17) {
+    return void 0;
+  }
+}
 async function readIndexError(res) {
   try {
     const body = await res.json();
@@ -1477,7 +1529,7 @@ async function readIndexError(res) {
       (p) => typeof p === "string" && p.length > 0
     );
     return parts.length ? [...new Set(parts)].join(" \u2014 ") : void 0;
-  } catch (e17) {
+  } catch (e18) {
     return void 0;
   }
 }
@@ -1529,6 +1581,53 @@ async function registerX402Scan(input, signer) {
     return { source: "x402scan", ok: false, detail: errMsg(err) };
   }
 }
+async function claim402IndexDomain(domainOrUrl, opts = {}) {
+  const domain = hostOf(domainOrUrl);
+  try {
+    const res = await fetch(INDEX402_CLAIM, {
+      method: "POST",
+      headers: clientHeaders({ "content-type": "application/json", accept: "application/json" }),
+      body: JSON.stringify({ domain, ...opts.contactEmail ? { contact_email: opts.contactEmail } : {} })
+    });
+    const body = await res.json().catch(() => ({}));
+    if (!res.ok) {
+      return { ok: false, domain, httpStatus: res.status, detail: _nullishCoalesce(pickString(body, "error", "detail", "message"), () => ( `402 Index claim returned HTTP ${res.status}.`)) };
+    }
+    return {
+      ok: true,
+      domain,
+      httpStatus: res.status,
+      ...optionalString("verificationHash", pickString(body, "verification_hash")),
+      ...optionalString("verificationUrl", pickString(body, "verification_url")),
+      ...optionalString("instructions", pickString(body, "instructions"))
+    };
+  } catch (err) {
+    return { ok: false, domain, detail: errMsg(err) };
+  }
+}
+async function verify402IndexDomain(domainOrUrl) {
+  const domain = hostOf(domainOrUrl);
+  try {
+    const res = await fetch(INDEX402_VERIFY, {
+      method: "POST",
+      headers: clientHeaders({ "content-type": "application/json", accept: "application/json" }),
+      body: JSON.stringify({ domain })
+    });
+    const body = await res.json().catch(() => ({}));
+    if (!res.ok) {
+      return { ok: false, domain, httpStatus: res.status, detail: _nullishCoalesce(pickString(body, "error", "detail", "message"), () => ( `402 Index verify returned HTTP ${res.status}.`)) };
+    }
+    return {
+      ok: true,
+      domain,
+      httpStatus: res.status,
+      ...optionalString("status", pickString(body, "status")),
+      ...typeof body.services_count === "number" ? { servicesCount: body.services_count } : {}
+    };
+  } catch (err) {
+    return { ok: false, domain, detail: errMsg(err) };
+  }
+}
 async function readSiwxInfo(res) {
   try {
     const body = await res.json();
@@ -1539,7 +1638,7 @@ async function readSiwxInfo(res) {
       return info;
     }
     return null;
-  } catch (e18) {
+  } catch (e19) {
     return null;
   }
 }
@@ -1619,7 +1718,7 @@ function firstArray(o, ...keys) {
 function hostOf(url) {
   try {
     return new URL(url).hostname;
-  } catch (e19) {
+  } catch (e20) {
     return url;
   }
 }
@@ -1774,7 +1873,7 @@ var PipRailClient = (_class2 = class {
   safeEmit(event) {
     try {
       this.onEvent(event);
-    } catch (e20) {
+    } catch (e21) {
     }
   }
   /** Auto-mount the chain's driver, resolve the network, and bind the wallet — once. */
@@ -1908,9 +2007,15 @@ var PipRailClient = (_class2 = class {
    *
    * Nothing PipRail-hosted: these are third-party open directories. Never throws
    * for a read problem — an index that's down or changed simply contributes
-   * nothing. Honest caveat: index results are cross-scheme (mostly the
-   * mainstream `exact` scheme); `fetch()` pays only `onchain-proof` rails
-   * directly (pay `exact` resources with the experimental `drivers/evm/exact.ts`).
+   * nothing. Honest caveats (see {@link DIRECTORY_INFO}):
+   * - Reads **`bazaar` + `402index`** only — **NOT `x402scan`** (its reads are paid). A
+   *   resource you registered on x402scan is live there but will NOT appear here; don't
+   *   read that absence as failure. (Passing `sources:['x402scan']` explicitly yields `[]`.)
+   * - A resource just listed via {@link register} may not appear yet — 402 Index reviews
+   *   before publishing, so retry with a brief backoff if a fresh listing is missing.
+   * - Results are cross-scheme (mostly the mainstream `exact` scheme); `fetch()` pays
+   *   only `onchain-proof` rails directly (pay `exact` resources with the experimental
+   *   `drivers/evm/exact.ts`).
    */
   async discover(opts = {}) {
     const found = await searchOpenIndexes({
@@ -1935,12 +2040,27 @@ var PipRailClient = (_class2 = class {
   }
   /**
    * List a resource you run on the OPEN x402 registries, so agents can find it.
-   * Default target is **402 Index** — one POST, no auth, no signature, no payment
-   * (searchable within seconds). Add `'x402scan'` to also register via SIWX (one
-   * wallet signature; EVM + a Base/Solana rail). Returns one {@link RegisterOutcome}
-   * per target — a target the chain can't satisfy comes back `{ ok:false, detail }`,
-   * never a throw. An explicit, developer-invoked action; it moves no funds, and
-   * nothing is PipRail-hosted — you're listing on third-party open directories.
+   * Default target is **402 Index** — one POST, no auth, no signature, no payment.
+   * Add `'x402scan'` to also register via SIWX (one wallet signature; EVM + a
+   * Base/Solana rail). Returns one {@link RegisterOutcome} per target — a target the
+   * chain can't satisfy comes back `{ ok:false, detail }`, never a throw. An explicit,
+   * developer-invoked action; it moves no funds, and nothing is PipRail-hosted —
+   * you're listing on third-party open directories.
+   *
+   * **Listing is asynchronous — each outcome carries a `visibility` + `note` so an
+   * agent knows when/where the resource is findable (don't assume `ok:true` means
+   * "searchable now"):**
+   * - **402 Index** → `visibility:'pending-review'`. It probes your URL on submit, then lists it
+   *   PENDING REVIEW — not searchable until approved (verify your domain on 402index.io for instant
+   *   approval), so `discover()` returns nothing for a fresh listing until then. Retry later.
+   * - **x402scan** → `visibility:'live'`, but **`discover()` does NOT read x402scan** — the
+   *   listing is real on x402scan.com yet won't show up in `discover()`. Base/Solana only;
+   *   needs a resolvable input schema (`/openapi.json` or the `extensions.bazaar` block).
+   * - **Bazaar** → `visibility:'not-listable'` for PipRail (it lists only what its facilitator
+   *   settles; PipRail uses none). You can still READ Bazaar via {@link discover} to find others.
+   *
+   * The per-source facts live in {@link DIRECTORY_INFO} (importable) if you'd rather branch
+   * on them before calling.
    */
   async register(url, opts = {}) {
     const targets = _nullishCoalesce(opts.targets, () => ( ["402index"]));
@@ -1979,7 +2099,33 @@ var PipRailClient = (_class2 = class {
         });
       }
     }
-    return outcomes;
+    return outcomes.map(decorateOutcome);
+  }
+  /**
+   * **402 Index domain verification, step 1 of 2.** A self-registered 402 Index
+   * listing is `pending-review` (see {@link register}); verifying your domain flips
+   * it — and every other pending listing on that domain — to APPROVED/searchable.
+   * Pass the resource URL or a bare domain; returns the `verificationHash` to serve
+   * as the entire body of `verificationUrl` (your `/.well-known/402index-verify.txt`).
+   * Then serve it and call {@link verifyDomain}. Moves no funds; never throws.
+   *
+   * ```ts
+   * const claim = await client.claimDomain('https://api.example.com/report')
+   * // serve claim.verificationHash at claim.verificationUrl, then:
+   * const res = await client.verifyDomain('api.example.com')  // → { ok:true, status:'verified' }
+   * ```
+   */
+  async claimDomain(urlOrDomain, opts = {}) {
+    return claim402IndexDomain(urlOrDomain, opts);
+  }
+  /**
+   * **402 Index domain verification, step 2 of 2.** After {@link claimDomain} and
+   * serving the hash at your `/.well-known/402index-verify.txt`, this tells 402 Index
+   * to re-fetch + approve. On success the domain's pending listings become searchable
+   * (`{ ok:true, status:'verified', servicesCount }`). Moves no funds; never throws.
+   */
+  async verifyDomain(urlOrDomain) {
+    return verify402IndexDomain(urlOrDomain);
   }
   /**
    * The discovery signer for the bound wallet (its address + a message signer),
@@ -2339,7 +2485,7 @@ var PipRailClient = (_class2 = class {
 function safeBig(s) {
   try {
     return BigInt(s);
-  } catch (e21) {
+  } catch (e22) {
     return 0n;
   }
 }
@@ -2405,7 +2551,7 @@ function railOnNetwork(rail, matches) {
 function hostOf2(url) {
   try {
     return new URL(url).hostname;
-  } catch (e22) {
+  } catch (e23) {
     return url;
   }
 }
@@ -2436,7 +2582,7 @@ async function readInvalidReason(response) {
         detail: typeof body.detail === "string" ? body.detail : ""
       };
     }
-  } catch (e23) {
+  } catch (e24) {
   }
   return null;
 }
@@ -2447,7 +2593,7 @@ async function readBody(res) {
   if (!text) return null;
   try {
     return JSON.parse(text);
-  } catch (e24) {
+  } catch (e25) {
     return text;
   }
 }
@@ -2627,7 +2773,7 @@ function paymentTools(client) {
     },
     {
       name: "piprail_register",
-      description: "List an x402 payment-gated resource YOU run on the open indexes so other agents can discover it. Default target is 402 Index \u2014 no auth, no signature, no payment; searchable within seconds. Returns one outcome per index ({ source, ok, detail }); a step the chain can't satisfy comes back ok:false with the reason. Moves no funds; nothing is PipRail-hosted.",
+      description: "List an x402 payment-gated resource YOU run on the open indexes so other agents can discover it. Default target is 402 Index \u2014 no auth, no signature, no payment; a self-registered listing is pending review (verify your domain on 402index.io for instant approval). Returns one outcome per index ({ source, ok, detail, visibility, note }); a step the chain can't satisfy comes back ok:false with the reason. Moves no funds; nothing is PipRail-hosted.",
       annotations: {
         title: "Register an x402 endpoint",
         readOnlyHint: false,
@@ -2685,7 +2831,7 @@ async function post(url, body, headers) {
   let json = null;
   try {
     json = await res.json();
-  } catch (e25) {
+  } catch (e26) {
   }
   return { status: res.status, json };
 }
@@ -2939,7 +3085,7 @@ function createPaymentGate(options) {
     if (options.onPaid) {
       try {
         options.onPaid(receipt);
-      } catch (e26) {
+      } catch (e27) {
       }
     }
   }
@@ -3109,7 +3255,7 @@ var GENERATOR = "@piprail/sdk \xB7 https://piprail.com";
 function pathOf(url) {
   try {
     return new URL(url).pathname || "/";
-  } catch (e27) {
+  } catch (e28) {
     return url.startsWith("/") ? url : `/${url}`;
   }
 }
@@ -3216,4 +3362,9 @@ function buildX402DnsTxt(input) {
 
 
 
-exports.CHAINS = CHAINS; exports.ConfirmationTimeoutError = _chunkMDLZJGLYcjs.ConfirmationTimeoutError; exports.EIP3009_TYPES = EIP3009_TYPES; exports.EXACT_NETWORK_SLUGS = EXACT_NETWORK_SLUGS; exports.GENERATOR = GENERATOR; exports.HEADER_REQUIRED = HEADER_REQUIRED; exports.HEADER_RESPONSE = HEADER_RESPONSE; exports.HEADER_RESPONSE_V1 = HEADER_RESPONSE_V1; exports.HEADER_SIGNATURE = HEADER_SIGNATURE; exports.HEADER_SIGNATURE_V1 = HEADER_SIGNATURE_V1; exports.InsufficientFundsError = _chunkMDLZJGLYcjs.InsufficientFundsError; exports.InvalidEnvelopeError = _chunkMDLZJGLYcjs.InvalidEnvelopeError; exports.MaxRetriesExceededError = _chunkMDLZJGLYcjs.MaxRetriesExceededError; exports.MissingDriverError = _chunkMDLZJGLYcjs.MissingDriverError; exports.NoCompatibleAcceptError = _chunkMDLZJGLYcjs.NoCompatibleAcceptError; exports.NonReplayableBodyError = _chunkMDLZJGLYcjs.NonReplayableBodyError; exports.PaymentDeclinedError = _chunkMDLZJGLYcjs.PaymentDeclinedError; exports.PaymentTimeoutError = _chunkMDLZJGLYcjs.PaymentTimeoutError; exports.PipRailClient = PipRailClient; exports.PipRailError = _chunkMDLZJGLYcjs.PipRailError; exports.RecipientNotReadyError = _chunkMDLZJGLYcjs.RecipientNotReadyError; exports.SettlementError = _chunkMDLZJGLYcjs.SettlementError; exports.UnknownTokenError = _chunkMDLZJGLYcjs.UnknownTokenError; exports.UnsupportedNetworkError = _chunkMDLZJGLYcjs.UnsupportedNetworkError; exports.WrongChainError = _chunkMDLZJGLYcjs.WrongChainError; exports.WrongFamilyError = _chunkMDLZJGLYcjs.WrongFamilyError; exports.buildChallengeHeader = buildChallengeHeader; exports.buildExactAuthorization = buildExactAuthorization; exports.buildOpenApi = buildOpenApi; exports.buildReceiptHeader = buildReceiptHeader; exports.buildSignatureHeader = buildSignatureHeader; exports.buildWellKnownX402 = buildWellKnownX402; exports.buildX402DnsTxt = buildX402DnsTxt; exports.chainIdForExactNetwork = chainIdForExactNetwork; exports.createPaymentGate = createPaymentGate; exports.eip3009Abi = eip3009Abi; exports.encodeXPaymentHeader = encodeXPaymentHeader; exports.evaluatePolicy = evaluatePolicy; exports.normalizeNetwork = normalizeNetwork; exports.parseChallenge = parseChallenge; exports.parseExactPaymentHeader = parseExactPaymentHeader; exports.parseExactRequirements = parseExactRequirements; exports.parseReceipt = parseReceipt; exports.parseSignatureHeader = parseSignatureHeader; exports.paymentTools = paymentTools; exports.pickAccept = pickAccept; exports.planAcross = planAcross; exports.readExactDomain = readExactDomain; exports.register402Index = register402Index; exports.registerDriver = registerDriver; exports.registerX402Scan = registerX402Scan; exports.requirePayment = requirePayment; exports.resolveChain = resolveChain; exports.searchOpenIndexes = searchOpenIndexes; exports.settleViaFacilitator = settleViaFacilitator; exports.toInsufficientFundsError = _chunkMDLZJGLYcjs.toInsufficientFundsError; exports.toInvalidBody = toInvalidBody;
+
+
+
+
+
+exports.CHAINS = CHAINS; exports.ConfirmationTimeoutError = _chunkMDLZJGLYcjs.ConfirmationTimeoutError; exports.DIRECTORY_INFO = DIRECTORY_INFO; exports.EIP3009_TYPES = EIP3009_TYPES; exports.EXACT_NETWORK_SLUGS = EXACT_NETWORK_SLUGS; exports.GENERATOR = GENERATOR; exports.HEADER_REQUIRED = HEADER_REQUIRED; exports.HEADER_RESPONSE = HEADER_RESPONSE; exports.HEADER_RESPONSE_V1 = HEADER_RESPONSE_V1; exports.HEADER_SIGNATURE = HEADER_SIGNATURE; exports.HEADER_SIGNATURE_V1 = HEADER_SIGNATURE_V1; exports.InsufficientFundsError = _chunkMDLZJGLYcjs.InsufficientFundsError; exports.InvalidEnvelopeError = _chunkMDLZJGLYcjs.InvalidEnvelopeError; exports.MaxRetriesExceededError = _chunkMDLZJGLYcjs.MaxRetriesExceededError; exports.MissingDriverError = _chunkMDLZJGLYcjs.MissingDriverError; exports.NoCompatibleAcceptError = _chunkMDLZJGLYcjs.NoCompatibleAcceptError; exports.NonReplayableBodyError = _chunkMDLZJGLYcjs.NonReplayableBodyError; exports.PaymentDeclinedError = _chunkMDLZJGLYcjs.PaymentDeclinedError; exports.PaymentTimeoutError = _chunkMDLZJGLYcjs.PaymentTimeoutError; exports.PipRailClient = PipRailClient; exports.PipRailError = _chunkMDLZJGLYcjs.PipRailError; exports.RecipientNotReadyError = _chunkMDLZJGLYcjs.RecipientNotReadyError; exports.SettlementError = _chunkMDLZJGLYcjs.SettlementError; exports.UnknownTokenError = _chunkMDLZJGLYcjs.UnknownTokenError; exports.UnsupportedNetworkError = _chunkMDLZJGLYcjs.UnsupportedNetworkError; exports.WrongChainError = _chunkMDLZJGLYcjs.WrongChainError; exports.WrongFamilyError = _chunkMDLZJGLYcjs.WrongFamilyError; exports.buildChallengeHeader = buildChallengeHeader; exports.buildExactAuthorization = buildExactAuthorization; exports.buildOpenApi = buildOpenApi; exports.buildReceiptHeader = buildReceiptHeader; exports.buildSignatureHeader = buildSignatureHeader; exports.buildWellKnownX402 = buildWellKnownX402; exports.buildX402DnsTxt = buildX402DnsTxt; exports.chainIdForExactNetwork = chainIdForExactNetwork; exports.claim402IndexDomain = claim402IndexDomain; exports.createPaymentGate = createPaymentGate; exports.decorateOutcome = decorateOutcome; exports.eip3009Abi = eip3009Abi; exports.encodeXPaymentHeader = encodeXPaymentHeader; exports.evaluatePolicy = evaluatePolicy; exports.getDirectoryInfo = getDirectoryInfo; exports.normalizeNetwork = normalizeNetwork; exports.parseChallenge = parseChallenge; exports.parseExactPaymentHeader = parseExactPaymentHeader; exports.parseExactRequirements = parseExactRequirements; exports.parseReceipt = parseReceipt; exports.parseSignatureHeader = parseSignatureHeader; exports.paymentTools = paymentTools; exports.pickAccept = pickAccept; exports.planAcross = planAcross; exports.readExactDomain = readExactDomain; exports.register402Index = register402Index; exports.registerDriver = registerDriver; exports.registerX402Scan = registerX402Scan; exports.requirePayment = requirePayment; exports.resolveChain = resolveChain; exports.searchOpenIndexes = searchOpenIndexes; exports.settleViaFacilitator = settleViaFacilitator; exports.toInsufficientFundsError = _chunkMDLZJGLYcjs.toInsufficientFundsError; exports.toInvalidBody = toInvalidBody; exports.verify402IndexDomain = verify402IndexDomain;