@scriptmasterlabs/mcp-x402 2.1.0 → 2.1.1

package/dist/server/registry/discovery.js

@@ -1,33 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Discovery = void 0;
-const fs_1 = require("fs");
-const path_1 = require("path");
-class Discovery {
-    static instance;
-    agentsJson = null;
-    llmsTxt = null;
-    constructor() { }
-    static getInstance() {
-        if (!Discovery.instance) {
-            Discovery.instance = new Discovery();
-        }
-        return Discovery.instance;
-    }
-    getAgentsJson() {
-        if (!this.agentsJson) {
-            const path = (0, path_1.join)(process.cwd(), 'agents.json');
-            this.agentsJson = JSON.parse((0, fs_1.readFileSync)(path, 'utf8'));
-        }
-        return this.agentsJson;
-    }
-    getLlmsTxt() {
-        if (!this.llmsTxt) {
-            const path = (0, path_1.join)(process.cwd(), 'llms.txt');
-            this.llmsTxt = (0, fs_1.readFileSync)(path, 'utf8');
-        }
-        return this.llmsTxt;
-    }
-}
-exports.Discovery = Discovery;
-//# sourceMappingURL=discovery.js.map

package/dist/server/registry/discovery.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"discovery.js","sourceRoot":"","sources":["../../../src/server/registry/discovery.ts"],"names":[],"mappings":";;;AAAA,2BAAkC;AAClC,+BAA4B;AAQ5B,MAAa,SAAS;IACZ,MAAM,CAAC,QAAQ,CAAY;IAC3B,UAAU,GAAsB,IAAI,CAAC;IACrC,OAAO,GAAkB,IAAI,CAAC;IAEtC,gBAAuB,CAAC;IAExB,MAAM,CAAC,WAAW;QAChB,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,CAAC;YACxB,SAAS,CAAC,QAAQ,GAAG,IAAI,SAAS,EAAE,CAAC;QACvC,CAAC;QACD,OAAO,SAAS,CAAC,QAAQ,CAAC;IAC5B,CAAC;IAED,aAAa;QACX,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;YACrB,MAAM,IAAI,GAAG,IAAA,WAAI,EAAC,OAAO,CAAC,GAAG,EAAE,EAAE,aAAa,CAAC,CAAC;YAChD,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,IAAA,iBAAY,EAAC,IAAI,EAAE,MAAM,CAAC,CAAe,CAAC;QACzE,CAAC;QACD,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED,UAAU;QACR,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAClB,MAAM,IAAI,GAAG,IAAA,WAAI,EAAC,OAAO,CAAC,GAAG,EAAE,EAAE,UAAU,CAAC,CAAC;YAC7C,IAAI,CAAC,OAAO,GAAG,IAAA,iBAAY,EAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAC5C,CAAC;QACD,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;CACF;AA7BD,8BA6BC"}

package/dist/server/registry/pricing.d.ts

@@ -1,10 +0,0 @@
-export declare class PriceRegistry {
-    private static instance;
-    private readonly cache;
-    private readonly baseUrl;
-    private constructor();
-    static getInstance(): PriceRegistry;
-    getPrice(toolName: string): Promise<string | null>;
-    seedDefaults(): void;
-}
-//# sourceMappingURL=pricing.d.ts.map

package/dist/server/registry/pricing.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"pricing.d.ts","sourceRoot":"","sources":["../../../src/server/registry/pricing.ts"],"names":[],"mappings":"AAyEA,qBAAa,aAAa;IACxB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAgB;IACvC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAkC;IACxD,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IAEjC,OAAO;IAIP,MAAM,CAAC,WAAW,IAAI,aAAa;IAO7B,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAmCxD,YAAY,IAAI,IAAI;CAQrB"}

package/dist/server/registry/pricing.js

@@ -1,123 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.PriceRegistry = void 0;
-const PRICE_CACHE_TTL = parseInt(process.env['PRICE_CACHE_TTL_MS'] ?? '60000', 10);
-const BASE_PRICES = {
-    // Discovery (free)
-    sml_discover: '0.00',
-    sml_status: '0.00',
-    // SqueezeOS signals
-    leviathan_signal: '0.05',
-    squeezeos_council: '0.10',
-    squeezeos_scan: '0.05',
-    squeezeos_options: '0.05',
-    squeezeos_iwm: '0.03',
-    squeezeos_preview: '0.00',
-    squeezeos_status: '0.00',
-    // SEC / Earnings
-    xmit_edgar_decode: '0.02',
-    xdeo_earnings_estimate: '0.02',
-    // FTD
-    ftd_threshold_scan: '0.05',
-    // Crawl
-    crawl_paid_fetch: '0.005',
-    // Agent marketplace
-    nexus_agent_hire: '0.00',
-    nexus_agent_list: '0.00',
-    nexus_agent_status: '0.00',
-    // Ghost Layer (cross-chain)
-    ghost_transfer: '0.02',
-    ghost_status: '0.00',
-    ghost_routes: '0.00',
-    // RLUSD Rails
-    rails_send: '0.01',
-    rails_status: '0.00',
-    // Launchpad
-    launchpad_create_token: '0.10',
-    launchpad_buy_token: '0.02',
-    launchpad_list: '0.00',
-    launchpad_status: '0.00',
-    // Copy-Trader
-    copytrader_subscribe: '0.05',
-    copytrader_status: '0.00',
-    // Backtest
-    backtest_run: '0.05',
-    backtest_validate: '0.05',
-    backtest_status: '0.00',
-    // Brokers (Tradier)
-    brokers_quote: '0.00',
-    brokers_options_chain: '0.01',
-    brokers_place_order: '0.05',
-    brokers_account: '0.01',
-    // Shadow Desk
-    shadow_query: '0.05',
-    shadow_ingest: '0.02',
-    shadow_status: '0.00',
-    // Forge (LLM gateway)
-    forge_complete: '0.02',
-    forge_status: '0.00',
-    // Proof402
-    proof402_get_invoice: '0.00',
-    proof402_verify: '0.00',
-    proof402_credit_score: '0.00',
-    // Echo (pattern matching)
-    echo_analogs: '0.05',
-    // Agent card / identity
-    agentcard_verify: '0.00',
-    agentcard_register: '0.01',
-    agentcard_lookup: '0.00',
-};
-class PriceRegistry {
-    static instance;
-    cache = new Map();
-    baseUrl;
-    constructor() {
-        this.baseUrl = process.env['SML_API_BASE'] ?? 'https://squeezeos-api.onrender.com';
-    }
-    static getInstance() {
-        if (!PriceRegistry.instance) {
-            PriceRegistry.instance = new PriceRegistry();
-        }
-        return PriceRegistry.instance;
-    }
-    async getPrice(toolName) {
-        const cached = this.cache.get(toolName);
-        const now = Date.now();
-        if (cached && now - cached.fetchedAt < PRICE_CACHE_TTL) {
-            return cached.price;
-        }
-        // Fetch live price from SML pricing API
-        try {
-            const res = await fetch(`${this.baseUrl}/pricing/v1/tool/${toolName}`, {
-                signal: AbortSignal.timeout(3000),
-            });
-            if (res.ok) {
-                const body = (await res.json());
-                this.cache.set(toolName, { price: body.price, fetchedAt: now });
-                return body.price;
-            }
-        }
-        catch {
-            // Fall through to hardcoded baseline
-        }
-        // Use hardcoded baseline if API unavailable
-        const fallback = BASE_PRICES[toolName];
-        if (fallback !== undefined) {
-            this.cache.set(toolName, { price: fallback, fetchedAt: now - PRICE_CACHE_TTL / 2 });
-            return fallback;
-        }
-        // Unknown tool — default to free rather than reject
-        this.cache.set(toolName, { price: '0.00', fetchedAt: now });
-        return '0.00';
-    }
-    seedDefaults() {
-        const now = Date.now();
-        for (const [tool, price] of Object.entries(BASE_PRICES)) {
-            if (!this.cache.has(tool)) {
-                this.cache.set(tool, { price, fetchedAt: now });
-            }
-        }
-    }
-}
-exports.PriceRegistry = PriceRegistry;
-//# sourceMappingURL=pricing.js.map

package/dist/server/registry/pricing.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"pricing.js","sourceRoot":"","sources":["../../../src/server/registry/pricing.ts"],"names":[],"mappings":";;;AAAA,MAAM,eAAe,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,OAAO,EAAE,EAAE,CAAC,CAAC;AAEnF,MAAM,WAAW,GAA2B;IAC1C,mBAAmB;IACnB,YAAY,EAAE,MAAM;IACpB,UAAU,EAAE,MAAM;IAClB,oBAAoB;IACpB,gBAAgB,EAAE,MAAM;IACxB,iBAAiB,EAAE,MAAM;IACzB,cAAc,EAAE,MAAM;IACtB,iBAAiB,EAAE,MAAM;IACzB,aAAa,EAAE,MAAM;IACrB,iBAAiB,EAAE,MAAM;IACzB,gBAAgB,EAAE,MAAM;IACxB,iBAAiB;IACjB,iBAAiB,EAAE,MAAM;IACzB,sBAAsB,EAAE,MAAM;IAC9B,MAAM;IACN,kBAAkB,EAAE,MAAM;IAC1B,QAAQ;IACR,gBAAgB,EAAE,OAAO;IACzB,oBAAoB;IACpB,gBAAgB,EAAE,MAAM;IACxB,gBAAgB,EAAE,MAAM;IACxB,kBAAkB,EAAE,MAAM;IAC1B,4BAA4B;IAC5B,cAAc,EAAE,MAAM;IACtB,YAAY,EAAE,MAAM;IACpB,YAAY,EAAE,MAAM;IACpB,cAAc;IACd,UAAU,EAAE,MAAM;IAClB,YAAY,EAAE,MAAM;IACpB,YAAY;IACZ,sBAAsB,EAAE,MAAM;IAC9B,mBAAmB,EAAE,MAAM;IAC3B,cAAc,EAAE,MAAM;IACtB,gBAAgB,EAAE,MAAM;IACxB,cAAc;IACd,oBAAoB,EAAE,MAAM;IAC5B,iBAAiB,EAAE,MAAM;IACzB,WAAW;IACX,YAAY,EAAE,MAAM;IACpB,iBAAiB,EAAE,MAAM;IACzB,eAAe,EAAE,MAAM;IACvB,oBAAoB;IACpB,aAAa,EAAE,MAAM;IACrB,qBAAqB,EAAE,MAAM;IAC7B,mBAAmB,EAAE,MAAM;IAC3B,eAAe,EAAE,MAAM;IACvB,cAAc;IACd,YAAY,EAAE,MAAM;IACpB,aAAa,EAAE,MAAM;IACrB,aAAa,EAAE,MAAM;IACrB,sBAAsB;IACtB,cAAc,EAAE,MAAM;IACtB,YAAY,EAAE,MAAM;IACpB,WAAW;IACX,oBAAoB,EAAE,MAAM;IAC5B,eAAe,EAAE,MAAM;IACvB,qBAAqB,EAAE,MAAM;IAC7B,0BAA0B;IAC1B,YAAY,EAAE,MAAM;IACpB,wBAAwB;IACxB,gBAAgB,EAAE,MAAM;IACxB,kBAAkB,EAAE,MAAM;IAC1B,gBAAgB,EAAE,MAAM;CACzB,CAAC;AAOF,MAAa,aAAa;IAChB,MAAM,CAAC,QAAQ,CAAgB;IACtB,KAAK,GAAG,IAAI,GAAG,EAAuB,CAAC;IACvC,OAAO,CAAS;IAEjC;QACE,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,oCAAoC,CAAC;IACrF,CAAC;IAED,MAAM,CAAC,WAAW;QAChB,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,CAAC;YAC5B,aAAa,CAAC,QAAQ,GAAG,IAAI,aAAa,EAAE,CAAC;QAC/C,CAAC;QACD,OAAO,aAAa,CAAC,QAAQ,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,QAAgB;QAC7B,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEvB,IAAI,MAAM,IAAI,GAAG,GAAG,MAAM,CAAC,SAAS,GAAG,eAAe,EAAE,CAAC;YACvD,OAAO,MAAM,CAAC,KAAK,CAAC;QACtB,CAAC;QAED,wCAAwC;QACxC,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,OAAO,oBAAoB,QAAQ,EAAE,EAAE;gBACrE,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC;aAClC,CAAC,CAAC;YAEH,IAAI,GAAG,CAAC,EAAE,EAAE,CAAC;gBACX,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAsB,CAAC;gBACrD,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC,CAAC;gBAChE,OAAO,IAAI,CAAC,KAAK,CAAC;YACpB,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,qCAAqC;QACvC,CAAC;QAED,4CAA4C;QAC5C,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;QACvC,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;YAC3B,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE,GAAG,GAAG,eAAe,GAAG,CAAC,EAAE,CAAC,CAAC;YACpF,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,oDAAoD;QACpD,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC,CAAC;QAC5D,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,YAAY;QACV,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,KAAK,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;YACxD,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC1B,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,EAAE,EAAE,KAAK,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC,CAAC;YAClD,CAAC;QACH,CAAC;IACH,CAAC;CACF;AA3DD,sCA2DC"}

package/dist/server/security/acl.d.ts

@@ -1,28 +0,0 @@
-import { z } from 'zod';
-export declare const ToolACLSchema: z.ZodObject<{
-    toolName: z.ZodString;
-    walletAddress: z.ZodOptional<z.ZodString>;
-    creditScore: z.ZodOptional<z.ZodNumber>;
-    paidTier: z.ZodDefault<z.ZodBoolean>;
-}, "strip", z.ZodTypeAny, {
-    toolName: string;
-    paidTier: boolean;
-    walletAddress?: string | undefined;
-    creditScore?: number | undefined;
-}, {
-    toolName: string;
-    walletAddress?: string | undefined;
-    creditScore?: number | undefined;
-    paidTier?: boolean | undefined;
-}>;
-export type ToolACL = z.infer<typeof ToolACLSchema>;
-export declare class ACL {
-    private static instance;
-    private constructor();
-    static getInstance(): ACL;
-    isFree(toolName: string): boolean;
-    requiresPayment(toolName: string): boolean;
-    requiresAP2(toolName: string): boolean;
-    minCreditScore(_toolName: string): number;
-}
-//# sourceMappingURL=acl.d.ts.map

package/dist/server/security/acl.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"acl.d.ts","sourceRoot":"","sources":["../../../src/server/security/acl.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,eAAO,MAAM,aAAa;;;;;;;;;;;;;;;EAKxB,CAAC;AAEH,MAAM,MAAM,OAAO,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAC;AAIpD,qBAAa,GAAG;IACd,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAM;IAE7B,OAAO;IAEP,MAAM,CAAC,WAAW,IAAI,GAAG;IAOzB,MAAM,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAIjC,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAI1C,WAAW,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAKtC,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM;CAG1C"}

package/dist/server/security/acl.js

@@ -1,36 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ACL = exports.ToolACLSchema = void 0;
-const zod_1 = require("zod");
-exports.ToolACLSchema = zod_1.z.object({
-    toolName: zod_1.z.string(),
-    walletAddress: zod_1.z.string().optional(),
-    creditScore: zod_1.z.number().optional(),
-    paidTier: zod_1.z.boolean().default(false),
-});
-const FREE_TOOLS = new Set(['ftd_threshold_scan_alerts', 'nexus_agent_hire_query']);
-class ACL {
-    static instance;
-    constructor() { }
-    static getInstance() {
-        if (!ACL.instance) {
-            ACL.instance = new ACL();
-        }
-        return ACL.instance;
-    }
-    isFree(toolName) {
-        return FREE_TOOLS.has(toolName);
-    }
-    requiresPayment(toolName) {
-        return !this.isFree(toolName);
-    }
-    requiresAP2(toolName) {
-        // leviathan, xmit, xdeo require AP2 per spec
-        return ['leviathan_signal', 'xmit_edgar_decode', 'xdeo_earnings_estimate'].includes(toolName);
-    }
-    minCreditScore(_toolName) {
-        return 300;
-    }
-}
-exports.ACL = ACL;
-//# sourceMappingURL=acl.js.map

package/dist/server/security/acl.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"acl.js","sourceRoot":"","sources":["../../../src/server/security/acl.ts"],"names":[],"mappings":";;;AAAA,6BAAwB;AAEX,QAAA,aAAa,GAAG,OAAC,CAAC,MAAM,CAAC;IACpC,QAAQ,EAAE,OAAC,CAAC,MAAM,EAAE;IACpB,aAAa,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACpC,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,QAAQ,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;CACrC,CAAC,CAAC;AAIH,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,CAAC,2BAA2B,EAAE,wBAAwB,CAAC,CAAC,CAAC;AAEpF,MAAa,GAAG;IACN,MAAM,CAAC,QAAQ,CAAM;IAE7B,gBAAuB,CAAC;IAExB,MAAM,CAAC,WAAW;QAChB,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;YAClB,GAAG,CAAC,QAAQ,GAAG,IAAI,GAAG,EAAE,CAAC;QAC3B,CAAC;QACD,OAAO,GAAG,CAAC,QAAQ,CAAC;IACtB,CAAC;IAED,MAAM,CAAC,QAAgB;QACrB,OAAO,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAClC,CAAC;IAED,eAAe,CAAC,QAAgB;QAC9B,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAChC,CAAC;IAED,WAAW,CAAC,QAAgB;QAC1B,6CAA6C;QAC7C,OAAO,CAAC,kBAAkB,EAAE,mBAAmB,EAAE,wBAAwB,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAChG,CAAC;IAED,cAAc,CAAC,SAAiB;QAC9B,OAAO,GAAG,CAAC;IACb,CAAC;CACF;AA5BD,kBA4BC"}

package/dist/server/security/audit.d.ts

@@ -1,15 +0,0 @@
-export declare class AuditLogger {
-    private static instance;
-    private seq;
-    private prevHash;
-    private readonly logPath;
-    private readonly hmacSecret;
-    private constructor();
-    static getInstance(): AuditLogger;
-    private log;
-    private redact;
-    info(event: string, data?: Record<string, unknown>): void;
-    warn(event: string, data?: Record<string, unknown>): void;
-    error(event: string, data?: Record<string, unknown>): void;
-}
-//# sourceMappingURL=audit.d.ts.map

package/dist/server/security/audit.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../../src/server/security/audit.ts"],"names":[],"mappings":"AAiBA,qBAAa,WAAW;IACtB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAc;IACrC,OAAO,CAAC,GAAG,CAAK;IAChB,OAAO,CAAC,QAAQ,CAAsE;IACtF,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IAEpC,OAAO;IAKP,MAAM,CAAC,WAAW,IAAI,WAAW;IAOjC,OAAO,CAAC,GAAG;IA8BX,OAAO,CAAC,MAAM;IAgBd,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,GAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAM,GAAG,IAAI;IAI7D,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,GAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAM,GAAG,IAAI;IAI7D,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,GAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAM,GAAG,IAAI;CAG/D"}

package/dist/server/security/audit.js

@@ -1,77 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AuditLogger = void 0;
-const crypto_1 = require("crypto");
-const fs_1 = require("fs");
-// Append-only SHA-256 chained audit log (N5)
-// Each entry includes the hash of the previous entry — tampering breaks the chain.
-class AuditLogger {
-    static instance;
-    seq = 0;
-    prevHash = '0000000000000000000000000000000000000000000000000000000000000000';
-    logPath;
-    hmacSecret;
-    constructor() {
-        this.logPath = process.env['AUDIT_LOG_PATH'] ?? './audit.log';
-        this.hmacSecret = process.env['AUDIT_HMAC_SECRET'] ?? 'mcp-x402-audit-secret';
-    }
-    static getInstance() {
-        if (!AuditLogger.instance) {
-            AuditLogger.instance = new AuditLogger();
-        }
-        return AuditLogger.instance;
-    }
-    log(level, event, data) {
-        const seq = ++this.seq;
-        const ts = Date.now();
-        // Redact PII (N3): hash wallet addresses, never log raw filing content
-        const safeData = this.redact(data);
-        const payload = JSON.stringify({ seq, ts, level, event, data: safeData, prev_hash: this.prevHash });
-        const hash = (0, crypto_1.createHmac)('sha256', this.hmacSecret).update(payload).digest('hex');
-        const entry = {
-            seq,
-            ts,
-            level,
-            event,
-            data: safeData,
-            prev_hash: this.prevHash,
-            hash,
-        };
-        this.prevHash = hash;
-        try {
-            (0, fs_1.appendFileSync)(this.logPath, JSON.stringify(entry) + '\n', 'utf8');
-        }
-        catch {
-            // If log write fails, emit to stderr but don't crash
-            process.stderr.write(`[audit-fail] ${JSON.stringify(entry)}\n`);
-        }
-    }
-    redact(data) {
-        const out = {};
-        for (const [k, v] of Object.entries(data)) {
-            if (k === 'wallet' || k === 'address') {
-                // Hash wallet addresses (N3)
-                out[k] = (0, crypto_1.createHash)('sha256').update(String(v)).digest('hex').slice(0, 16) + '...';
-            }
-            else if (k === 'content' || k === 'raw_text' || k === 'filing') {
-                // Never log raw filing data (N3)
-                out[k] = '[REDACTED]';
-            }
-            else {
-                out[k] = v;
-            }
-        }
-        return out;
-    }
-    info(event, data = {}) {
-        this.log('info', event, data);
-    }
-    warn(event, data = {}) {
-        this.log('warn', event, data);
-    }
-    error(event, data = {}) {
-        this.log('error', event, data);
-    }
-}
-exports.AuditLogger = AuditLogger;
-//# sourceMappingURL=audit.js.map

package/dist/server/security/audit.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../../src/server/security/audit.ts"],"names":[],"mappings":";;;AAAA,mCAAgD;AAChD,2BAAoC;AAcpC,6CAA6C;AAC7C,mFAAmF;AACnF,MAAa,WAAW;IACd,MAAM,CAAC,QAAQ,CAAc;IAC7B,GAAG,GAAG,CAAC,CAAC;IACR,QAAQ,GAAG,kEAAkE,CAAC;IACrE,OAAO,CAAS;IAChB,UAAU,CAAS;IAEpC;QACE,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,IAAI,aAAa,CAAC;QAC9D,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,IAAI,uBAAuB,CAAC;IAChF,CAAC;IAED,MAAM,CAAC,WAAW;QAChB,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC;YAC1B,WAAW,CAAC,QAAQ,GAAG,IAAI,WAAW,EAAE,CAAC;QAC3C,CAAC;QACD,OAAO,WAAW,CAAC,QAAQ,CAAC;IAC9B,CAAC;IAEO,GAAG,CAAC,KAAe,EAAE,KAAa,EAAE,IAA6B;QACvE,MAAM,GAAG,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC;QACvB,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEtB,uEAAuE;QACvE,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAEnC,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;QACpG,MAAM,IAAI,GAAG,IAAA,mBAAU,EAAC,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAEjF,MAAM,KAAK,GAAa;YACtB,GAAG;YACH,EAAE;YACF,KAAK;YACL,KAAK;YACL,IAAI,EAAE,QAAQ;YACd,SAAS,EAAE,IAAI,CAAC,QAAQ;YACxB,IAAI;SACL,CAAC;QAEF,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QAErB,IAAI,CAAC;YACH,IAAA,mBAAc,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC,CAAC;QACrE,CAAC;QAAC,MAAM,CAAC;YACP,qDAAqD;YACrD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,gBAAgB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClE,CAAC;IACH,CAAC;IAEO,MAAM,CAAC,IAA6B;QAC1C,MAAM,GAAG,GAA4B,EAAE,CAAC;QACxC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1C,IAAI,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,SAAS,EAAE,CAAC;gBACtC,6BAA6B;gBAC7B,GAAG,CAAC,CAAC,CAAC,GAAG,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC;YACrF,CAAC;iBAAM,IAAI,CAAC,KAAK,SAAS,IAAI,CAAC,KAAK,UAAU,IAAI,CAAC,KAAK,QAAQ,EAAE,CAAC;gBACjE,iCAAiC;gBACjC,GAAG,CAAC,CAAC,CAAC,GAAG,YAAY,CAAC;YACxB,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAED,IAAI,CAAC,KAAa,EAAE,OAAgC,EAAE;QACpD,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,IAAI,CAAC,KAAa,EAAE,OAAgC,EAAE;QACpD,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,KAAa,EAAE,OAAgC,EAAE;QACrD,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;IACjC,CAAC;CACF;AA5ED,kCA4EC"}

package/dist/server/security/rate-limit.d.ts

@@ -1,12 +0,0 @@
-export declare class RateLimiter {
-    private static instance;
-    private readonly toolBuckets;
-    private readonly walletBuckets;
-    private readonly ipBuckets;
-    private constructor();
-    static getInstance(): RateLimiter;
-    checkTool(toolName: string): boolean;
-    checkWallet(wallet: string): boolean;
-    checkIp(ip: string): boolean;
-}
-//# sourceMappingURL=rate-limit.d.ts.map

package/dist/server/security/rate-limit.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"rate-limit.d.ts","sourceRoot":"","sources":["../../../src/server/security/rate-limit.ts"],"names":[],"mappings":"AAaA,qBAAa,WAAW;IACtB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAc;IACrC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAkC;IAC9D,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAkC;IAChE,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAyD;IAEnF,OAAO;IAEP,MAAM,CAAC,WAAW,IAAI,WAAW;IAOjC,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAqBpC,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IAqBpC,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;CAa7B"}

package/dist/server/security/rate-limit.js

@@ -1,72 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.RateLimiter = void 0;
-const PER_TOOL_MINUTE_LIMIT = 100;
-const PER_WALLET_DAY_LIMIT = 1000;
-const IP_MINUTE_LIMIT = 200;
-function nowMs() {
-    return Date.now();
-}
-class RateLimiter {
-    static instance;
-    toolBuckets = new Map();
-    walletBuckets = new Map();
-    ipBuckets = new Map();
-    constructor() { }
-    static getInstance() {
-        if (!RateLimiter.instance) {
-            RateLimiter.instance = new RateLimiter();
-        }
-        return RateLimiter.instance;
-    }
-    checkTool(toolName) {
-        const now = nowMs();
-        let bucket = this.toolBuckets.get(toolName);
-        if (!bucket) {
-            bucket = {
-                minute: { count: 0, resetAt: now + 60_000 },
-                day: { count: 0, resetAt: now + 86_400_000 },
-            };
-            this.toolBuckets.set(toolName, bucket);
-        }
-        if (now > bucket.minute.resetAt) {
-            bucket.minute = { count: 0, resetAt: now + 60_000 };
-        }
-        if (bucket.minute.count >= PER_TOOL_MINUTE_LIMIT)
-            return false;
-        bucket.minute.count++;
-        return true;
-    }
-    checkWallet(wallet) {
-        const now = nowMs();
-        let bucket = this.walletBuckets.get(wallet);
-        if (!bucket) {
-            bucket = {
-                minute: { count: 0, resetAt: now + 60_000 },
-                day: { count: 0, resetAt: now + 86_400_000 },
-            };
-            this.walletBuckets.set(wallet, bucket);
-        }
-        if (now > bucket.day.resetAt) {
-            bucket.day = { count: 0, resetAt: now + 86_400_000 };
-        }
-        if (bucket.day.count >= PER_WALLET_DAY_LIMIT)
-            return false;
-        bucket.day.count++;
-        return true;
-    }
-    checkIp(ip) {
-        const now = nowMs();
-        let entry = this.ipBuckets.get(ip);
-        if (!entry || now > entry.resetAt) {
-            entry = { count: 0, resetAt: now + 60_000 };
-            this.ipBuckets.set(ip, entry);
-        }
-        if (entry.count >= IP_MINUTE_LIMIT)
-            return false;
-        entry.count++;
-        return true;
-    }
-}
-exports.RateLimiter = RateLimiter;
-//# sourceMappingURL=rate-limit.js.map

package/dist/server/security/rate-limit.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"rate-limit.js","sourceRoot":"","sources":["../../../src/server/security/rate-limit.ts"],"names":[],"mappings":";;;AAKA,MAAM,qBAAqB,GAAG,GAAG,CAAC;AAClC,MAAM,oBAAoB,GAAG,IAAI,CAAC;AAClC,MAAM,eAAe,GAAG,GAAG,CAAC;AAE5B,SAAS,KAAK;IACZ,OAAO,IAAI,CAAC,GAAG,EAAE,CAAC;AACpB,CAAC;AAED,MAAa,WAAW;IACd,MAAM,CAAC,QAAQ,CAAc;IACpB,WAAW,GAAG,IAAI,GAAG,EAAuB,CAAC;IAC7C,aAAa,GAAG,IAAI,GAAG,EAAuB,CAAC;IAC/C,SAAS,GAAG,IAAI,GAAG,EAA8C,CAAC;IAEnF,gBAAuB,CAAC;IAExB,MAAM,CAAC,WAAW;QAChB,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC;YAC1B,WAAW,CAAC,QAAQ,GAAG,IAAI,WAAW,EAAE,CAAC;QAC3C,CAAC;QACD,OAAO,WAAW,CAAC,QAAQ,CAAC;IAC9B,CAAC;IAED,SAAS,CAAC,QAAgB;QACxB,MAAM,GAAG,GAAG,KAAK,EAAE,CAAC;QACpB,IAAI,MAAM,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAE5C,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,GAAG;gBACP,MAAM,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,MAAM,EAAE;gBAC3C,GAAG,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,UAAU,EAAE;aAC7C,CAAC;YACF,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACzC,CAAC;QAED,IAAI,GAAG,GAAG,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YAChC,MAAM,CAAC,MAAM,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,MAAM,EAAE,CAAC;QACtD,CAAC;QAED,IAAI,MAAM,CAAC,MAAM,CAAC,KAAK,IAAI,qBAAqB;YAAE,OAAO,KAAK,CAAC;QAC/D,MAAM,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,WAAW,CAAC,MAAc;QACxB,MAAM,GAAG,GAAG,KAAK,EAAE,CAAC;QACpB,IAAI,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAE5C,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,GAAG;gBACP,MAAM,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,MAAM,EAAE;gBAC3C,GAAG,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,UAAU,EAAE;aAC7C,CAAC;YACF,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACzC,CAAC;QAED,IAAI,GAAG,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;YAC7B,MAAM,CAAC,GAAG,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,UAAU,EAAE,CAAC;QACvD,CAAC;QAED,IAAI,MAAM,CAAC,GAAG,CAAC,KAAK,IAAI,oBAAoB;YAAE,OAAO,KAAK,CAAC;QAC3D,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC;QACnB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO,CAAC,EAAU;QAChB,MAAM,GAAG,GAAG,KAAK,EAAE,CAAC;QACpB,IAAI,KAAK,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEnC,IAAI,CAAC,KAAK,IAAI,GAAG,GAAG,KAAK,CAAC,OAAO,EAAE,CAAC;YAClC,KAAK,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,MAAM,EAAE,CAAC;YAC5C,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;QAChC,CAAC;QAED,IAAI,KAAK,CAAC,KAAK,IAAI,eAAe;YAAE,OAAO,KAAK,CAAC;QACjD,KAAK,CAAC,KAAK,EAAE,CAAC;QACd,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAtED,kCAsEC"}

package/dist/server/security/sandbox.d.ts

@@ -1,7 +0,0 @@
-import { z } from 'zod';
-export declare class Sandbox {
-    static validate<T>(schema: z.ZodType<T>, input: unknown): T;
-    static validateUrl(raw: string): URL;
-    static sanitizeApiResponse(text: string): string;
-}
-//# sourceMappingURL=sandbox.d.ts.map

package/dist/server/security/sandbox.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"sandbox.d.ts","sourceRoot":"","sources":["../../../src/server/security/sandbox.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAIxB,qBAAa,OAAO;IAClB,MAAM,CAAC,QAAQ,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,GAAG,CAAC;IAY3D,MAAM,CAAC,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG;IAcpC,MAAM,CAAC,mBAAmB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM;CAQjD"}

package/dist/server/security/sandbox.js

@@ -1,42 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Sandbox = void 0;
-// Sandboxed input validation layer — all tool inputs pass through here before execution.
-// No eval(), no dynamic require(), no raw SQL (N4 enforcement at schema layer).
-class Sandbox {
-    static validate(schema, input) {
-        const result = schema.safeParse(input);
-        if (!result.success) {
-            const issues = result.error.issues
-                .map((i) => `${i.path.join('.')}: ${i.message}`)
-                .join('; ');
-            throw new Error(`Input validation failed: ${issues}`);
-        }
-        return result.data;
-    }
-    // Ensure URL is http/https only — no file://, data://, javascript:
-    static validateUrl(raw) {
-        let url;
-        try {
-            url = new URL(raw);
-        }
-        catch {
-            throw new Error(`Invalid URL: ${raw}`);
-        }
-        if (url.protocol !== 'http:' && url.protocol !== 'https:') {
-            throw new Error(`Disallowed URL protocol: ${url.protocol}`);
-        }
-        return url;
-    }
-    // Strip any response content that looks like a prompt injection attempt
-    static sanitizeApiResponse(text) {
-        // Remove common injection markers
-        return text
-            .replace(/<\/?system>/gi, '')
-            .replace(/\[INST\]/gi, '')
-            .replace(/\[\/?INST\]/gi, '')
-            .slice(0, 50_000); // Hard cap on returned content size
-    }
-}
-exports.Sandbox = Sandbox;
-//# sourceMappingURL=sandbox.js.map

package/dist/server/security/sandbox.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"sandbox.js","sourceRoot":"","sources":["../../../src/server/security/sandbox.ts"],"names":[],"mappings":";;;AAEA,yFAAyF;AACzF,gFAAgF;AAChF,MAAa,OAAO;IAClB,MAAM,CAAC,QAAQ,CAAI,MAAoB,EAAE,KAAc;QACrD,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QACvC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM;iBAC/B,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC;iBAC/C,IAAI,CAAC,IAAI,CAAC,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,4BAA4B,MAAM,EAAE,CAAC,CAAC;QACxD,CAAC;QACD,OAAO,MAAM,CAAC,IAAI,CAAC;IACrB,CAAC;IAED,mEAAmE;IACnE,MAAM,CAAC,WAAW,CAAC,GAAW;QAC5B,IAAI,GAAQ,CAAC;QACb,IAAI,CAAC;YACH,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QACrB,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,KAAK,CAAC,gBAAgB,GAAG,EAAE,CAAC,CAAC;QACzC,CAAC;QACD,IAAI,GAAG,CAAC,QAAQ,KAAK,OAAO,IAAI,GAAG,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAC1D,MAAM,IAAI,KAAK,CAAC,4BAA4B,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC9D,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAED,wEAAwE;IACxE,MAAM,CAAC,mBAAmB,CAAC,IAAY;QACrC,kCAAkC;QAClC,OAAO,IAAI;aACR,OAAO,CAAC,eAAe,EAAE,EAAE,CAAC;aAC5B,OAAO,CAAC,YAAY,EAAE,EAAE,CAAC;aACzB,OAAO,CAAC,eAAe,EAAE,EAAE,CAAC;aAC5B,KAAK,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC,oCAAoC;IAC3D,CAAC;CACF;AAnCD,0BAmCC"}

package/dist/server/tools/agentcard.d.ts

@@ -1,3 +0,0 @@
-import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
-export declare function registerAgentCard(server: McpServer): void;
-//# sourceMappingURL=agentcard.d.ts.map

package/dist/server/tools/agentcard.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"agentcard.d.ts","sourceRoot":"","sources":["../../../src/server/tools/agentcard.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AA0BzE,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,SAAS,GAAG,IAAI,CA0GzD"}

package/dist/server/tools/agentcard.js

@@ -1,118 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.registerAgentCard = registerAgentCard;
-const zod_1 = require("zod");
-const x402_js_1 = require("../payments/x402.js");
-const rate_limit_js_1 = require("../security/rate-limit.js");
-const sandbox_js_1 = require("../security/sandbox.js");
-const audit_js_1 = require("../security/audit.js");
-const pricing_js_1 = require("../registry/pricing.js");
-const agentcard_js_1 = require("../../lib/sml-api/agentcard.js");
-const LookupSchema = zod_1.z.object({
-    identifier: zod_1.z.string().min(1),
-});
-const VerifySchema = zod_1.z.object({
-    wallet_address: zod_1.z.string().min(10),
-    message: zod_1.z.string().min(1),
-    signature: zod_1.z.string().min(1),
-});
-const MintSchema = zod_1.z.object({
-    wallet_address: zod_1.z.string().min(10),
-    name: zod_1.z.string().min(1).max(64),
-    did: zod_1.z.string().optional(),
-    metadata: zod_1.z.record(zod_1.z.unknown()).optional(),
-    payment_wallet: zod_1.z.string().optional(),
-});
-function registerAgentCard(server) {
-    const audit = audit_js_1.AuditLogger.getInstance();
-    // ── FREE: agentcard_lookup ─────────────────────────────────────────────────
-    server.tool('agentcard_lookup', {
-        identifier: zod_1.z.string().describe('Agent wallet address or DID to look up.'),
-    }, async (rawArgs) => {
-        const { identifier } = sandbox_js_1.Sandbox.validate(LookupSchema, rawArgs);
-        if (!rate_limit_js_1.RateLimiter.getInstance().checkTool('agentcard_lookup')) {
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'rate_limit_exceeded', retry_after: 60 }) }], isError: true };
-        }
-        try {
-            const data = await agentcard_js_1.AgentCardAPI.lookup(identifier);
-            audit.info('agentcard_lookup', { identifier });
-            return { content: [{ type: 'text', text: JSON.stringify(data) }] };
-        }
-        catch (err) {
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'api_error', message: String(err) }) }], isError: true };
-        }
-    });
-    // ── FREE: agentcard_verify ─────────────────────────────────────────────────
-    server.tool('agentcard_verify', {
-        wallet_address: zod_1.z.string().describe('Agent wallet address that signed the message.'),
-        message: zod_1.z.string().describe('Original message that was signed.'),
-        signature: zod_1.z.string().describe('Ed25519 signature (hex or base64).'),
-    }, async (rawArgs) => {
-        const args = sandbox_js_1.Sandbox.validate(VerifySchema, rawArgs);
-        if (!rate_limit_js_1.RateLimiter.getInstance().checkTool('agentcard_verify')) {
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'rate_limit_exceeded', retry_after: 60 }) }], isError: true };
-        }
-        try {
-            const data = await agentcard_js_1.AgentCardAPI.verify({
-                walletAddress: args.wallet_address,
-                message: args.message,
-                signature: args.signature,
-            });
-            audit.info('agentcard_verify', { wallet_address: args.wallet_address });
-            return { content: [{ type: 'text', text: JSON.stringify(data) }] };
-        }
-        catch (err) {
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'api_error', message: String(err) }) }], isError: true };
-        }
-    });
-    // ── PAID: agentcard_mint (0.01 USDC) ──────────────────────────────────────
-    server.tool('agentcard_mint', {
-        wallet_address: zod_1.z.string().describe('XRPL wallet address for the new agent identity.'),
-        name: zod_1.z.string().describe('Human-readable agent name (max 64 chars).'),
-        did: zod_1.z.string().describe('Optional DID (decentralized identifier) for the agent.'),
-        metadata: zod_1.z.record(zod_1.z.unknown()).describe('Optional metadata object (capabilities, version, etc.).'),
-        payment_wallet: zod_1.z.string().describe('Wallet to pay x402 fee from (defaults to wallet_address).'),
-    }, async (rawArgs) => {
-        const args = sandbox_js_1.Sandbox.validate(MintSchema, rawArgs);
-        const paymentWallet = args.payment_wallet ?? args.wallet_address;
-        if (!rate_limit_js_1.RateLimiter.getInstance().checkTool('agentcard_mint')) {
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'rate_limit_exceeded', retry_after: 60 }) }], isError: true };
-        }
-        await pricing_js_1.PriceRegistry.getInstance().seedDefaults();
-        const price = await pricing_js_1.PriceRegistry.getInstance().getPrice('agentcard_mint');
-        if (!price) {
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'price_unavailable' }) }], isError: true };
-        }
-        let payment;
-        try {
-            payment = await (0, x402_js_1.executeX402Payment)({ price, currency: 'USDC', toolName: 'agentcard_mint', walletAddress: paymentWallet });
-        }
-        catch (err) {
-            audit.warn('agentcard_mint_payment_fail', { error: String(err) });
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'payment_failed', message: String(err) }) }], isError: true };
-        }
-        try {
-            const data = await agentcard_js_1.AgentCardAPI.mint({
-                walletAddress: args.wallet_address,
-                name: args.name,
-                did: args.did,
-                metadata: args.metadata,
-            });
-            audit.info('agentcard_mint_success', { name: args.name, receiptId: payment.receiptId });
-            return {
-                content: [{
-                        type: 'text',
-                        text: JSON.stringify({
-                            data,
-                            _meta: { receipt_id: payment.receiptId, tx_hash: payment.txHash, chain: payment.chain, amount_paid: `${payment.amountPaid} ${payment.currency}`, timestamp: payment.timestamp },
-                        }),
-                    }],
-            };
-        }
-        catch (err) {
-            audit.error('agentcard_mint_api_fail', { error: String(err) });
-            return { content: [{ type: 'text', text: JSON.stringify({ error: 'api_error', message: String(err) }) }], isError: true };
-        }
-    });
-}
-//# sourceMappingURL=agentcard.js.map