@quackai/q402-mcp 0.8.24 → 0.8.25

package/dist/index.js

@@ -211,7 +211,7 @@ var isValidPrivateKey = (s) => typeof s === "string" && PRIVATE_KEY_RE.test(s);
 // package.json
 var package_default = {
   name: "@quackai/q402-mcp",
-  version: "0.8.24",
+  version: "0.8.25",
   description: "MCP server for Q402 \u2014 gasless USDC/USDT/RLUSD payments on 10 EVM chains + Chainlink CCIP USDC bridge on the eth/avax/arbitrum triangle, callable from Claude (Desktop / Code), OpenAI Codex CLI, and any other Model Context Protocol client.",
   mcpName: "io.github.bitgett/q402-mcp",
   keywords: [
@@ -1116,6 +1116,10 @@ async function runPay(input) {
     to: input.to.toLowerCase(),
     amount: input.amount,
     token: input.token,
+    // Bind the funding source too — the user is consenting to spend from THIS
+    // wallet, so a different walletMode/walletId needs a fresh preview.
+    wm: effectiveMode,
+    wid: (input.walletId ?? "").toLowerCase(),
     ...input.hookParams?.splits ? { splits: input.hookParams.splits.map((s) => ({ r: s.recipient.toLowerCase(), bps: s.bps })) } : {}
   };
   const consent = checkConsent(consentIntent, input.consentToken);
@@ -1530,7 +1534,10 @@ async function runBatchPay(input) {
     t: "batch",
     chain: input.chain,
     token: input.token,
-    recipients: input.recipients.map((r) => ({ to: r.to.toLowerCase(), amount: r.amount }))
+    recipients: input.recipients.map((r) => ({ to: r.to.toLowerCase(), amount: r.amount })),
+    // Bind the funding source too (see q402_pay).
+    wm: input.walletMode ?? "",
+    wid: (input.walletId ?? "").toLowerCase()
   };
   const consent = checkConsent(consentIntent, input.consentToken);
   if (!consent.ok) {
@@ -3262,7 +3269,9 @@ async function runBridgeSend(input) {
     src: input.src,
     dst: input.dst,
     amount: input.amount,
-    feeToken: input.feeToken === "native" ? "native" : "LINK"
+    feeToken: input.feeToken === "native" ? "native" : "LINK",
+    // Bind the funding wallet too (see q402_pay).
+    wid: (input.walletId ?? "").toLowerCase()
   };
   const consent = checkConsent(consentIntent, input.consentToken);
   if (input.confirm !== true || !consent.ok) {
@@ -3641,6 +3650,9 @@ var YieldDepositInputSchema = z16.object({
   ),
   confirm: z16.boolean().optional().describe(
     "MUST be true to actually supply funds. Set this only after the user has explicitly approved this exact deposit (amount, token, chain, wallet) in the conversation. When omitted or false the tool previews the action and does NOT move any funds."
+  ),
+  consentToken: z16.string().optional().describe(
+    "Two-phase consent. LEAVE UNSET on the first call: the tool previews the deposit (no funds move) and returns a consentToken. Relay the preview to the user, get an explicit yes, then re-call with confirm:true AND this consentToken. The token is re-derived from (chain, token, amount, wallet) and refused on mismatch, so a previewed deposit can't be swapped."
   )
 });
 var YIELD_DEPOSIT_TOOL = {
@@ -3674,6 +3686,10 @@ var YIELD_DEPOSIT_TOOL = {
       confirm: {
         type: "boolean",
         description: "MUST be true to actually supply funds \u2014 set only after the user explicitly approved this exact deposit in chat. Omit (or false) to preview without moving funds."
+      },
+      consentToken: {
+        type: "string",
+        description: "Two-phase consent token. Leave unset on the first call to get a preview + token; re-call with confirm:true AND this token after the user approves. Bound to (chain, token, amount, wallet) and refused on mismatch."
       }
     },
     required: ["token", "amount"],
@@ -3692,12 +3708,20 @@ async function runYieldDeposit(input) {
   }
   const walletId = typeof input.walletId === "string" && input.walletId.length > 0 ? input.walletId.toLowerCase() : CONFIG.walletId ?? void 0;
   const idempotencyKey = typeof input.idempotencyKey === "string" && input.idempotencyKey.length > 0 ? input.idempotencyKey : hexlify2(randomBytes2(32));
-  if (input.confirm !== true) {
+  const consentIntent = {
+    t: "yield-deposit",
+    chain: input.chain,
+    token: input.token,
+    amount: input.amount,
+    walletId: walletId ?? null
+  };
+  const consent = checkConsent(consentIntent, input.consentToken);
+  if (input.confirm !== true || !consent.ok) {
     const walletDesc = walletId ? `wallet ${walletId}` : "your default Agent Wallet";
     return {
       content: [{
         type: "text",
-        text: `Will supply ${input.amount} ${input.token} into Aave on ${input.chain} from ${walletDesc}. This MOVES FUNDS. Re-call with confirm:true to execute.`
+        text: `Will supply ${input.amount} ${input.token} into Aave on ${input.chain} from ${walletDesc}. This MOVES FUNDS. Confirm with the user, then re-call with confirm:true AND consentToken="${consent.expected}".`
       }]
     };
   }
@@ -3821,6 +3845,9 @@ var YieldWithdrawInputSchema = z17.object({
   ),
   confirm: z17.boolean().optional().describe(
     "MUST be true to actually withdraw funds. Set this only after the user has explicitly approved this exact withdrawal (amount, token, chain, wallet) in the conversation. When omitted or false the tool previews the action and does NOT move any funds."
+  ),
+  consentToken: z17.string().optional().describe(
+    "Two-phase consent. LEAVE UNSET on the first call: the tool previews the withdrawal (no funds move) and returns a consentToken. Relay the preview to the user, get an explicit yes, then re-call with confirm:true AND this consentToken. The token is re-derived from (chain, token, amount, wallet)."
   )
 });
 var YIELD_WITHDRAW_TOOL = {
@@ -3854,6 +3881,10 @@ var YIELD_WITHDRAW_TOOL = {
       confirm: {
         type: "boolean",
         description: "MUST be true to actually withdraw funds \u2014 set only after the user explicitly approved this exact withdrawal in chat. Omit (or false) to preview without moving funds."
+      },
+      consentToken: {
+        type: "string",
+        description: "Two-phase consent token. Leave unset on the first call to get a preview + token; re-call with confirm:true AND this token after the user approves. Bound to (chain, token, amount, wallet)."
       }
     },
     required: ["token", "amount"],
@@ -3873,12 +3904,20 @@ async function runYieldWithdraw(input) {
   const walletId = typeof input.walletId === "string" && input.walletId.length > 0 ? input.walletId.toLowerCase() : CONFIG.walletId ?? void 0;
   const idempotencyKey = typeof input.idempotencyKey === "string" && input.idempotencyKey.length > 0 ? input.idempotencyKey : hexlify3(randomBytes3(32));
   const amountDesc = input.amount === "max" ? "the FULL position" : `${input.amount} ${input.token}`;
-  if (input.confirm !== true) {
+  const consentIntent = {
+    t: "yield-withdraw",
+    chain: input.chain,
+    token: input.token,
+    amount: input.amount,
+    walletId: walletId ?? null
+  };
+  const consent = checkConsent(consentIntent, input.consentToken);
+  if (input.confirm !== true || !consent.ok) {
     const walletDesc = walletId ? `wallet ${walletId}` : "your default Agent Wallet";
     return {
       content: [{
         type: "text",
-        text: `Will withdraw ${amountDesc} from Aave on ${input.chain} back to ${walletDesc}. This MOVES FUNDS. Re-call with confirm:true to execute.`
+        text: `Will withdraw ${amountDesc} from Aave on ${input.chain} back to ${walletDesc}. This MOVES FUNDS. Confirm with the user, then re-call with confirm:true AND consentToken="${consent.expected}".`
       }]
     };
   }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@quackai/q402-mcp",
-  "version": "0.8.24",
+  "version": "0.8.25",
   "description": "MCP server for Q402 — gasless USDC/USDT/RLUSD payments on 10 EVM chains + Chainlink CCIP USDC bridge on the eth/avax/arbitrum triangle, callable from Claude (Desktop / Code), OpenAI Codex CLI, and any other Model Context Protocol client.",
   "mcpName": "io.github.bitgett/q402-mcp",
   "keywords": [