@saihm/mcp-server-pro 0.1.6 → 0.1.7

package/dist/client.js

@@ -291,12 +291,27 @@ export class SaihmProClient {
         if (this.tier === undefined) {
             throw new SaihmEndpointError(0, 'no_tier', 'join requires a tier (set SAIHM_TIER)');
         }
+        const ch = await this.onboardFetch(this.onboardBase + '/api/onboard/challenge', { method: 'GET' });
+        const nonce = ch.nonce;
+        if (typeof nonce !== 'string' || nonce.length === 0) {
+            throw new SaihmEndpointError(502, 'checkout_no_nonce', 'onboard challenge returned no nonce');
+        }
+        let nonceBytes;
+        try {
+            nonceBytes = fromHex(nonce);
+        }
+        catch {
+            throw new SaihmEndpointError(502, 'checkout_bad_nonce', 'onboard challenge nonce is not hex');
+        }
+        const signature = toHex(signChallenge(this.identity.mldsaSecretKey, nonceBytes));
         const out = await this.onboardFetch(this.onboardBase + '/api/stripe/checkout', {
             method: 'POST',
             headers: { 'content-type': 'application/json' },
             body: JSON.stringify({
                 tier: this.tier,
                 mldsaPubKey: toHex(this.identity.mldsaPubKey),
+                nonce,
+                signature,
                 uiMode: 'hosted',
             }),
         });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@saihm/mcp-server-pro",
-  "version": "0.1.6",
+  "version": "0.1.7",
   "description": "SAIHM production thin-client. Seals client-side via @saihm/client-pro (ML-DSA-65 identity, per-cell AES-256-GCM DEK wrapped under a client KEK, ML-KEM-768 authenticated sharing) and POSTs opaque ciphertext to the blind, non-custodial SAIHM /mcp endpoint. The master secret, KEK, and plaintext never leave this process. Apache-2.0.",
   "type": "module",
   "main": "dist/index.js",