@seasonkoh/webaz 0.1.25 → 0.1.27

package/dist/pwa/anti-abuse-thresholds.js

@@ -0,0 +1,135 @@
+/** 默认值 === 抽取前的硬编码字面量。修改这里 = 修改全协议默认行为。 */
+export const DEFAULT_ANTI_ABUSE_THRESHOLDS = {
+    trustDisputePenalty: 10,
+    trustSybilFreeThreshold: 3,
+    trustSybilPenalty: 5,
+    trustCrossPenalty: 3,
+    trustRatelimitPenalty: 2,
+    trustLevelTrusted: 20,
+    trustLevelQuality: 50,
+    trustLevelLegend: 80,
+    strikeWarnWindowDays: 7,
+    strikeWarnEscalateCount: 1,
+    strikeSuspendWindowDays: 30,
+    strikeSuspendEscalateCount: 2,
+    strikeWarnExpiryHours: 24,
+    strikeSuspendExpiryDays: 7,
+    outlierWindowDays: 180,
+    outlierSuspendCount: 3,
+    outlierRevokeCount: 5,
+    outlierSuspendDays: 30,
+};
+/**
+ * protocol_params 注册定义（spread 进 server.ts 的 DEFAULT_PARAMS）。
+ * value 必须与 DEFAULT_ANTI_ABUSE_THRESHOLDS 完全一致（测试强制校验）。
+ */
+export const ANTI_ABUSE_PARAMS = [
+    // P1-2 agent 信任公式（公开框架 + 治理可调系数）。等级阈值 cap=1000 给治理收紧空间。
+    { key: 'agent_trust_dispute_penalty', value: '10', type: 'number', description: 'agent 信任分:每次败诉 dispute(refund/partial)扣分(#420 P1-2)', category: 'security', min: 0, max: 100 },
+    { key: 'agent_trust_sybil_free_threshold', value: '3', type: 'number', description: 'agent 信任分:同 IP 注册账户数 ≤ 此值不计 sybil 罚分(含本账户)(#420 P1-2)', category: 'security', min: 0, max: 100 },
+    { key: 'agent_trust_sybil_penalty', value: '5', type: 'number', description: 'agent 信任分:超出 free 阈值后每多 1 个同 IP 账户扣分(#420 P1-2)', category: 'security', min: 0, max: 100 },
+    { key: 'agent_trust_cross_penalty', value: '3', type: 'number', description: 'agent 信任分:每次放置同支审计(commission cross)命中扣分(#420 P1-2)', category: 'security', min: 0, max: 100 },
+    { key: 'agent_trust_ratelimit_penalty', value: '2', type: 'number', description: 'agent 信任分:30d 内每次 429 限速命中扣分(#420 P1-2)', category: 'security', min: 0, max: 100 },
+    { key: 'agent_trust_level_trusted', value: '20', type: 'number', description: 'agent 信任分 ≥ 此值 → trusted 级(#420 P1-2;等级 gate 速率上限)', category: 'security', min: 0, max: 1000 },
+    { key: 'agent_trust_level_quality', value: '50', type: 'number', description: 'agent 信任分 ≥ 此值 → quality 级(#420 P1-2)', category: 'security', min: 0, max: 1000 },
+    { key: 'agent_trust_level_legend', value: '80', type: 'number', description: 'agent 信任分 ≥ 此值 → legend 级(#420 P1-2)', category: 'security', min: 0, max: 1000 },
+    // P1-4 agent strike 升级阶梯（公开 consequence-transparency,见 negative-space.ts;数值治理可调）
+    { key: 'agent_strike_warn_window_days', value: '7', type: 'number', description: 'agent strike:统计 warning 的回看窗口(天)(#420 P1-4)', category: 'security', min: 1, max: 365 },
+    { key: 'agent_strike_warn_escalate_count', value: '1', type: 'number', description: 'agent strike:窗口内已有 ≥N 次 warning 时本次 warning 升级为 suspend_7d(默认 1=累计第 2 次升级)(#420 P1-4)', category: 'security', min: 1, max: 100 },
+    { key: 'agent_strike_suspend_window_days', value: '30', type: 'number', description: 'agent strike:统计 suspend_7d 的回看窗口(天)(#420 P1-4)', category: 'security', min: 1, max: 365 },
+    { key: 'agent_strike_suspend_escalate_count', value: '2', type: 'number', description: 'agent strike:窗口内已有 ≥N 次 suspend_7d 时升级为 permanent(默认 2=累计第 3 次升级)(#420 P1-4)', category: 'security', min: 1, max: 100 },
+    { key: 'agent_strike_warn_expiry_hours', value: '24', type: 'number', description: 'agent strike:warning 自动过期小时数(#420 P1-4)', category: 'security', min: 1, max: 720 },
+    { key: 'agent_strike_suspend_expiry_days', value: '7', type: 'number', description: 'agent strike:suspend_7d 自动过期天数(#420 P1-4)', category: 'security', min: 1, max: 365 },
+    // P1-3 verifier outlier 处罚阈值（少数票 was_majority=0 即时处罚;非 playbook §6.2 confirmed_wrong cron）
+    { key: 'verifier_outlier_window_days', value: '180', type: 'number', description: 'verifier outlier:统计少数票(was_majority=0)的回看窗口(天)(#420 P1-3)', category: 'governance', min: 1, max: 730 },
+    { key: 'verifier_outlier_suspend_count', value: '3', type: 'number', description: 'verifier outlier:窗口内 ≥N 次 → 暂停资格(#420 P1-3)', category: 'governance', min: 1, max: 100 },
+    { key: 'verifier_outlier_revoke_count', value: '5', type: 'number', description: 'verifier outlier:窗口内 ≥N 次 → 永久撤销资格(#420 P1-3)', category: 'governance', min: 1, max: 100 },
+    { key: 'verifier_outlier_suspend_days', value: '30', type: 'number', description: 'verifier outlier:暂停时长(天)(#420 P1-3)', category: 'governance', min: 1, max: 365 },
+];
+// ── 同步读取器（与生产热路径同步语义:better-sqlite3 prepared get）──
+function num(db, key, fallback) {
+    try {
+        const r = db.prepare('SELECT value FROM protocol_params WHERE key = ?').get(key);
+        if (!r)
+            return fallback;
+        const n = Number(r.value);
+        return Number.isFinite(n) ? n : fallback;
+    }
+    catch {
+        return fallback;
+    }
+}
+/** 用于会被插入 SQL 字符串的窗口天数:强制非负整数(injection-safe + 语义正确)。 */
+function intNum(db, key, fallback) {
+    const n = Math.round(num(db, key, fallback));
+    return Number.isFinite(n) && n >= 0 ? n : fallback;
+}
+/** 从 protocol_params 读取全部反滥用阈值;缺行/坏值回落默认(= 当前生产行为)。 */
+export function readAntiAbuseThresholds(db) {
+    const d = DEFAULT_ANTI_ABUSE_THRESHOLDS;
+    return {
+        trustDisputePenalty: num(db, 'agent_trust_dispute_penalty', d.trustDisputePenalty),
+        trustSybilFreeThreshold: num(db, 'agent_trust_sybil_free_threshold', d.trustSybilFreeThreshold),
+        trustSybilPenalty: num(db, 'agent_trust_sybil_penalty', d.trustSybilPenalty),
+        trustCrossPenalty: num(db, 'agent_trust_cross_penalty', d.trustCrossPenalty),
+        trustRatelimitPenalty: num(db, 'agent_trust_ratelimit_penalty', d.trustRatelimitPenalty),
+        trustLevelTrusted: num(db, 'agent_trust_level_trusted', d.trustLevelTrusted),
+        trustLevelQuality: num(db, 'agent_trust_level_quality', d.trustLevelQuality),
+        trustLevelLegend: num(db, 'agent_trust_level_legend', d.trustLevelLegend),
+        strikeWarnWindowDays: intNum(db, 'agent_strike_warn_window_days', d.strikeWarnWindowDays),
+        strikeWarnEscalateCount: num(db, 'agent_strike_warn_escalate_count', d.strikeWarnEscalateCount),
+        strikeSuspendWindowDays: intNum(db, 'agent_strike_suspend_window_days', d.strikeSuspendWindowDays),
+        strikeSuspendEscalateCount: num(db, 'agent_strike_suspend_escalate_count', d.strikeSuspendEscalateCount),
+        strikeWarnExpiryHours: num(db, 'agent_strike_warn_expiry_hours', d.strikeWarnExpiryHours),
+        strikeSuspendExpiryDays: num(db, 'agent_strike_suspend_expiry_days', d.strikeSuspendExpiryDays),
+        outlierWindowDays: intNum(db, 'verifier_outlier_window_days', d.outlierWindowDays),
+        outlierSuspendCount: num(db, 'verifier_outlier_suspend_count', d.outlierSuspendCount),
+        outlierRevokeCount: num(db, 'verifier_outlier_revoke_count', d.outlierRevokeCount),
+        outlierSuspendDays: num(db, 'verifier_outlier_suspend_days', d.outlierSuspendDays),
+    };
+}
+// ── 纯决策函数（生产 + 测试共用;无副作用,不读 db）──
+/** P1-2:trust 分 → 等级。镜像原 server.ts:3818-3821 的 ≥ 级联。 */
+export function agentTrustLevel(score, t) {
+    if (score >= t.trustLevelLegend)
+        return 'legend';
+    if (score >= t.trustLevelQuality)
+        return 'quality';
+    if (score >= t.trustLevelTrusted)
+        return 'trusted';
+    return 'new';
+}
+/** P1-2:sybil 罚分。镜像原 `sybilSize > free ? -(sybilSize-free)*pen : 0`。返回非正数。 */
+export function agentSybilPenalty(sybilSize, t) {
+    return sybilSize > t.trustSybilFreeThreshold ? -(sybilSize - t.trustSybilFreeThreshold) * t.trustSybilPenalty : 0;
+}
+/**
+ * P1-4:strike 升级判定。镜像原 server.ts:4493-4502。
+ * priorWarnings = 窗口内已有未过期 warning 数;priorSuspends = 窗口内已有 suspend_7d 数。
+ */
+export function agentStrikeSeverity(initial, priorWarnings, priorSuspends, t) {
+    let severity = initial;
+    let escalated = false;
+    if (initial === 'warning' && priorWarnings >= t.strikeWarnEscalateCount) {
+        severity = 'suspend_7d';
+        escalated = true;
+    }
+    if (initial === 'suspend_7d' || severity === 'suspend_7d') {
+        if (priorSuspends >= t.strikeSuspendEscalateCount) {
+            severity = 'permanent';
+            escalated = true;
+        }
+    }
+    return { severity, escalated };
+}
+/**
+ * P1-3:verifier outlier 累计数 → 处罚档位（不含 existing/dup 守卫,由调用方各自施加）。
+ * 镜像原 revoke-优先、suspend-其次 的阈值比较。
+ */
+export function verifierOutlierBand(count, t) {
+    if (count >= t.outlierRevokeCount)
+        return 'revoke';
+    if (count >= t.outlierSuspendCount)
+        return 'suspend';
+    return 'none';
+}

package/dist/pwa/cf-origin-guard.js

@@ -0,0 +1,33 @@
+import { timingSafeEqual } from 'node:crypto';
+export const CF_ORIGIN_HEADER = 'x-cf-origin-secret';
+function safeEqual(a, b) {
+    const ab = Buffer.from(a);
+    const bb = Buffer.from(b);
+    return ab.length === bb.length && timingSafeEqual(ab, bb);
+}
+export function createCfOriginGuard(env = process.env) {
+    const mode = (env.CF_ORIGIN_GUARD_MODE || 'off').toLowerCase();
+    const secret = env.CF_ORIGIN_SHARED_SECRET || '';
+    const exempt = new Set((env.CF_ORIGIN_GUARD_EXEMPT || '/api/health,/healthz')
+        .split(',').map(s => s.trim()).filter(Boolean));
+    return function cfOriginGuard(req, res, next) {
+        if (mode === 'off')
+            return next();
+        if (exempt.has(req.path))
+            return next();
+        if (!secret) {
+            if (mode === 'enforce') {
+                console.error('[cf-origin-guard] enforce set but CF_ORIGIN_SHARED_SECRET is empty — failing OPEN (no block)');
+            }
+            return next();
+        }
+        const got = req.get(CF_ORIGIN_HEADER) || '';
+        if (got && safeEqual(got, secret))
+            return next(); // arrived via Cloudflare
+        if (mode === 'observe') {
+            console.warn(`[cf-origin-guard] observe: would block direct-origin ${req.method} ${req.path} ip=${req.ip}`);
+            return next();
+        }
+        res.status(403).json({ error: 'direct origin access not allowed; use the public endpoint', error_code: 'CF_ORIGIN_ONLY' });
+    };
+}

package/dist/pwa/contract-fingerprint.js

@@ -35,6 +35,7 @@ export const CONTRACT_CHANGES = [
     { contract_version: 2, date: '2026-06-06', surface: 'entity', kind: 'added', summary: '§① entity dictionary gains product + dispute entities (conservative public fields; dispute = redacted dispute_cases) + goal_index pointer. Additive — existing order entity unchanged; agents may ignore.' },
     { contract_version: 3, date: '2026-06-09', surface: 'entity', kind: 'changed', summary: '§① order lifecycle: corrected declined_nofault state meaning text — it is NOT terminal (transitions declined_nofault→completed on settlement). Dropped the contradictory "(terminal)" label that conflicted with the auto-derived terminal:false. Semantics/state-machine unchanged; text-only clarification for agents reading the entity dictionary.' },
     { contract_version: 4, date: '2026-06-09', surface: 'capability', kind: 'changed', summary: '§② capability matrix: POST /api/reviews/:type/:id/claim now requires the new "review_claim" action scope instead of being SAFE (unscoped). The review-claim path locks a 5 WAZ stake (escrow), so it belongs under default-deny accountability like other value writes. GET reviews endpoints stay open.', migration: 'A declared agent that calls review claim must add the "review_claim" scope to its api_key (or hold a Passkey, or declare "*"). Passkey-bound humans and "*" agents are unaffected; GET reviews unchanged.' },
+    { contract_version: 5, date: '2026-06-24', surface: 'integration', kind: 'added', summary: '§④ integration-contract entry (/.well-known/webaz-integration.json) gains an agent_quickstart block: a 60-second stranger-agent cold-start with discrete, machine-parseable fields (canonical_start_url, public_readonly_entrypoints, anonymous_allowed_actions, authenticated_required_actions, safe_next_actions, proposal_flow, contribution_boundary). Additive — no existing field changed; agents may ignore. NB: this surface is NOT covered by the §②/§① fingerprint, so it is registered here by hand.' },
 ];
 export function buildChangeFeed() {
     return {

package/dist/pwa/data/onboarding-cases.js

@@ -77,14 +77,14 @@ export const ONBOARDING_CASES = [
         ],
         decision_options: [
             { key: 'release_seller', text_zh: 'release_seller', text_en: 'release_seller' },
-            { key: 'refund_buyer', text_zh: 'refund_buyer + 物流 stake 优先赔买家 + management_bonus_pool 兜底', text_en: 'refund_buyer + logistics stake to buyer first + management_bonus_pool covers shortfall' },
+            { key: 'refund_buyer', text_zh: 'refund_buyer + 物流 stake 优先赔买家 + protocol_reserve_pool 兜底', text_en: 'refund_buyer + logistics stake to buyer first + protocol_reserve_pool covers shortfall' },
             { key: 'partial_refund', text_zh: 'partial_refund 50/50', text_en: 'partial_refund 50/50' },
             { key: 'liability_split', text_zh: 'liability_split(卖家一半 / 物流方一半)', text_en: 'liability_split (half seller / half logistics)' },
         ],
         expected_verdict: 'refund_buyer',
         key_principles: [
             'ARBITRATION-PLAYBOOK Case 2 物流卡顿 — 卖家无过错应保护',
-            'management_bonus_pool 来源 = ECONOMIC §3 ④a + 失效活动罚没',
+            'protocol_reserve_pool 来源 = ECONOMIC §3 ④a + 失效活动罚没',
             '资金流向:物流 stake 优先赔买家(不入 pool),pool 仅兜底差额',
             '物流方 debt_to_protocol 累计 → > 1000 WAZ 角色暂停',
         ],

package/dist/pwa/data/onboarding-quiz.js

@@ -128,7 +128,7 @@ export const ONBOARDING_QUIZ = [
         question_en: 'Case 2 logistics stuck: seller has shipping doc, buyer never received, logistics gone 45 days. Arbitrator should:',
         options: [
             { key: 'A', text_zh: 'release_seller(卖家无过错)', text_en: 'release_seller (seller has no fault)' },
-            { key: 'B', text_zh: 'refund_buyer + 物流 stake **优先赔买家**(不足部分由 management_bonus_pool 兜底差额)', text_en: 'refund_buyer + logistics stake **goes to buyer first** (shortfall covered by management_bonus_pool)' },
+            { key: 'B', text_zh: 'refund_buyer + 物流 stake **优先赔买家**(不足部分由 protocol_reserve_pool 兜底差额)', text_en: 'refund_buyer + logistics stake **goes to buyer first** (shortfall covered by protocol_reserve_pool)' },
             { key: 'C', text_zh: 'partial_refund 50/50', text_en: 'partial_refund 50/50' },
             { key: 'D', text_zh: 'liability_split,卖家一半物流方一半', text_en: 'liability_split, half seller half logistics' },
         ],

package/dist/pwa/economic-participation.js

@@ -9,10 +9,10 @@
  *   - 守恒是硬不变量:所有罚没【再分配,绝不增发】(settleFault)。
  *   - 诚实 status:已上线角色标 live;通用第三方承保方(无真实需求)标 scaffolded → 自有 RFC + enters-core 门控,不过早造接口。
  *
- * 公平三原则锚([[project_fairness_principle]]):公开透明 / 谁责任谁承担 / 无责方零成本。
+ * 公平三原则锚:公开透明 / 谁责任谁承担 / 无责方零成本。
  */
 import { SOFTWARE_VERSION, CONTRACT_VERSION } from '../version.js';
-const GH = 'https://github.com/seasonsagents-art/webaz/blob/main';
+const GH = 'https://github.com/webaz-protocol/webaz/blob/main';
 const BASE = 'https://webaz.xyz';
 export function buildEconomicParticipation(getParam) {
     const num = (k, f) => getParam(k, f);

package/dist/pwa/email-delivery.js

@@ -0,0 +1,127 @@
+const DEFAULT_FROM = 'WebAZ <noreply@webaz.xyz>';
+const DEFAULT_BASE_URL = 'https://webaz.xyz';
+export function emailDeliveryNotConfigured() {
+    return {
+        ok: false,
+        status: 503,
+        error_code: 'EMAIL_DELIVERY_NOT_CONFIGURED',
+        error: '邮箱发送服务未配置，请稍后再试',
+    };
+}
+export function emailDeliveryFailed() {
+    return {
+        ok: false,
+        status: 502,
+        error_code: 'EMAIL_DELIVERY_FAILED',
+        error: '验证码邮件发送失败，请稍后再试',
+    };
+}
+function isProtectedEmailEnv(env) {
+    return env.NODE_ENV === 'production'
+        || !!env.RAILWAY_ENVIRONMENT
+        || !!env.RAILWAY_PROJECT_ID
+        || !!env.RAILWAY_SERVICE_ID;
+}
+export function isVerificationEmailReady(env = process.env) {
+    if (!isProtectedEmailEnv(env))
+        return true;
+    return !!env.RESEND_API_KEY?.trim();
+}
+function purposeText(purpose) {
+    if (purpose === 'register')
+        return { zh: '注册账户（验证邮箱）', en: 'register your account (verify email)' };
+    if (purpose === 'bind_email')
+        return { zh: '绑定邮箱', en: 'bind your email address' };
+    if (purpose === 'recover_key')
+        return { zh: '找回密钥', en: 'recover your account key' };
+    if (purpose.startsWith('withdraw_confirm'))
+        return { zh: '确认提现', en: 'confirm a withdrawal' };
+    return { zh: '验证身份', en: 'verify your identity' };
+}
+function escapeHtml(s) {
+    return s.replace(/[&<>"']/g, c => ({
+        '&': '&amp;',
+        '<': '&lt;',
+        '>': '&gt;',
+        '"': '&quot;',
+        "'": '&#39;',
+    }[c] || c));
+}
+export function buildVerificationEmail(input) {
+    const purpose = purposeText(input.purpose);
+    const baseUrl = input.baseUrl?.trim() || DEFAULT_BASE_URL;
+    const subject = 'WebAZ 验证码 / Verification code';
+    const text = [
+        `WebAZ 验证码: ${input.code}`,
+        '',
+        `用途: ${purpose.zh}`,
+        `有效期: ${input.ttlMin} 分钟`,
+        '',
+        `Your WebAZ verification code is ${input.code}.`,
+        `Use it to ${purpose.en}. It expires in ${input.ttlMin} minutes.`,
+        '',
+        'If you did not request this code, you can ignore this email.',
+        baseUrl,
+    ].join('\n');
+    const html = [
+        '<div style="font-family:system-ui,-apple-system,Segoe UI,sans-serif;line-height:1.5;color:#111827">',
+        '<h2 style="margin:0 0 12px">WebAZ verification code</h2>',
+        `<p style="margin:0 0 8px">用途: ${escapeHtml(purpose.zh)} / ${escapeHtml(purpose.en)}</p>`,
+        `<p style="font-size:28px;font-weight:700;letter-spacing:4px;margin:16px 0">${escapeHtml(input.code)}</p>`,
+        `<p style="margin:0 0 8px">有效期 ${input.ttlMin} 分钟 / Expires in ${input.ttlMin} minutes.</p>`,
+        '<p style="margin:16px 0 0;color:#6b7280">If you did not request this code, you can ignore this email.</p>',
+        `<p style="margin:16px 0 0"><a href="${escapeHtml(baseUrl)}">${escapeHtml(baseUrl)}</a></p>`,
+        '</div>',
+    ].join('');
+    return { subject, text, html };
+}
+export async function deliverVerificationCode(input) {
+    const env = input.env || process.env;
+    const logger = input.logger || console;
+    if (!isProtectedEmailEnv(env)) {
+        logger.log(`[verify] ${input.purpose} -> ${input.target}  code=${input.code}  (expires ${input.ttlMin}min)`);
+        return { ok: true, provider: 'dev_console' };
+    }
+    const apiKey = env.RESEND_API_KEY?.trim();
+    if (!apiKey)
+        return emailDeliveryNotConfigured();
+    const fetchImpl = input.fetchImpl || globalThis.fetch;
+    if (!fetchImpl)
+        return emailDeliveryNotConfigured();
+    const baseUrl = env.WEBAZ_PUBLIC_URL?.trim() || env.PUBLIC_BASE_URL?.trim() || DEFAULT_BASE_URL;
+    const email = buildVerificationEmail({
+        code: input.code,
+        purpose: input.purpose,
+        ttlMin: input.ttlMin,
+        baseUrl,
+    });
+    const body = {
+        from: env.EMAIL_FROM?.trim() || DEFAULT_FROM,
+        to: [input.target],
+        subject: email.subject,
+        text: email.text,
+        html: email.html,
+    };
+    const replyTo = env.EMAIL_REPLY_TO?.trim();
+    if (replyTo)
+        body.reply_to = replyTo;
+    try {
+        const response = await fetchImpl('https://api.resend.com/emails', {
+            method: 'POST',
+            headers: {
+                Authorization: `Bearer ${apiKey}`,
+                'Content-Type': 'application/json',
+            },
+            body: JSON.stringify(body),
+        });
+        if (!response.ok) {
+            logger.warn(`[verify] resend delivery failed: status=${response.status} purpose=${input.purpose}`);
+            return emailDeliveryFailed();
+        }
+        return { ok: true, provider: 'resend' };
+    }
+    catch {
+        logger.warn(`[verify] resend delivery failed: network purpose=${input.purpose}`);
+        return emailDeliveryFailed();
+    }
+}

package/dist/pwa/integration-contract.js

@@ -5,7 +5,7 @@
  */
 import { SOFTWARE_VERSION, CONTRACT_VERSION } from '../version.js';
 const BASE = 'https://webaz.xyz';
-const GH = 'https://github.com/seasonsagents-art/webaz/blob/main';
+const GH = 'https://github.com/webaz-protocol/webaz/blob/main';
 // 集成必需文档(规则 + onboarding)由协议自身 serve —— 外部 agent 必须能读到它被约束的规则,
 // 不能指向私有 repo 的 GitHub 链接(对外 404)。RFC/审计是 provenance,留 GH(随 repo 公开解锁)。
 const DOCS = `${BASE}/docs`;
@@ -15,8 +15,49 @@ export function buildIntegrationContract() {
         contract_version: CONTRACT_VERSION,
         software_version: SOFTWARE_VERSION,
         thesis: 'WebAZ is agent-native: you integrate by your agent reading this machine-readable contract and self-integrating — we do NOT build a bespoke API/auth/webhook layer per integrator. The protocol provides rules + semantics + boundaries + accountability + eventing + verifiability + settlement. See docs/RFC-011.',
-        // 源码仓库 launch 前私有 —— 公开声明,防"自称开源但 GitHub 404"被读成 vaporware。
-        source_status: 'The source repo (github.com/seasonsagents-art/webaz) is PRIVATE until the W8 public launch, so GitHub links in these surfaces may return 404 until then — they open at launch, not a dead project. The full machine-readable spec is ALREADY public via these /.well-known/* surfaces; an agent never needs the repo to integrate or verify.',
+        // 源码仓库已公开(github.com/webaz-protocol/webaz);机器可读 spec 也在 /.well-known/*。
+        source_status: 'The source repo (github.com/webaz-protocol/webaz) is public (open source). The full machine-readable spec is also available via these /.well-known/* surfaces; an agent never needs the repo to integrate or verify.',
+        // 60 秒冷启动 —— 一个从没见过 WebAZ、没有登录态、没有内部上下文的陌生 agent,一次 fetch 就能自我定位:
+        // 这是什么 / 从哪开始 / 匿名能做什么 / 鉴权才能做什么 / 安全的第一步 / 怎么提建议参与共建。离散字段(非散文)便于解析。
+        // 贡献边界(RFC-017)前置声明:建议 ≠ 贡献事实 ≠ 奖励,避免任何经济/兑现承诺暗示。
+        agent_quickstart: {
+            what_is_webaz: 'An agent-native, open commerce protocol: humans and AI agents transact on the same state-machine-governed protocol — and can also help build the protocol itself. Pre-launch: simulated test currency, no real money settles yet.',
+            canonical_start_url: `${BASE}/.well-known/webaz-integration.json`,
+            read_this_first: [`${BASE}/.well-known/webaz-integration.json (this document)`, `${DOCS}/INTEGRATOR.md`],
+            public_readonly_entrypoints: [
+                `${BASE}/.well-known/webaz-protocol.json`,
+                `${BASE}/.well-known/webaz-capabilities.json`,
+                `${BASE}/.well-known/webaz-entities.json`,
+                `${BASE}/.well-known/webaz-goals.json`,
+                `${BASE}/api/protocol-status`,
+                `${BASE}/api/agent/changes`,
+                `${BASE}/api/public/build-tasks`,
+            ],
+            anonymous_allowed_actions: [
+                'read every /.well-known/* surface + public GET endpoints (no credential)',
+                'browse the live catalog at /#discover',
+                'discover open build tasks — GET /api/public/build-tasks (MCP: webaz_contribute action=list_open)',
+                'submit a build/improvement suggestion — POST /api/public/task-proposals (MCP: webaz_contribute action=suggest); no key required',
+            ],
+            authenticated_required_actions: [
+                'any write / transact (register, order, list, fulfil, dispute)',
+                'claim or submit a build task (MCP: webaz_contribute action=claim / submit)',
+                'track your own suggestions (MCP: webaz_contribute action=my_suggestions)',
+            ],
+            how_to_authenticate: `An api_key requires a REAL HUMAN to register (invite + Passkey) at ${BASE}/#welcome — agents CANNOT self-register; this is the accountability root. Browsing and reading need no key.`,
+            safe_next_actions: [
+                '1. Read this contract + INTEGRATOR.md to learn the boundaries (anonymous vs. authenticated).',
+                '2. Browse anonymously: the catalog (/#discover) and the well-known surfaces above.',
+                '3. To improve the protocol: discover open tasks or submit a suggestion — both keyless (see proposal_flow).',
+                '4. To transact: have your accountable human get an invite + api_key, then declare scope (§③).',
+            ],
+            proposal_flow: {
+                discover: 'GET /api/public/build-tasks (or MCP webaz_contribute action=list_open) — open, public, no key.',
+                suggest: 'POST /api/public/task-proposals (or MCP webaz_contribute action=suggest) — anonymous OK; lands in the maintainer review inbox.',
+                after_submit: 'A human maintainer reviews. A suggestion never auto-publishes to the task board and is never auto-accepted; conversion to a formal task is manual.',
+            },
+            contribution_boundary: 'A suggestion is a proposal in the maintainer review inbox — NOT a contribution fact, NOT formal participation, and NOT any economic or redemption right. Recorded contribution is facts / evidence / attribution only (RFC-017); it confers no payment and no entitlement.',
+        },
         // 外部 agent 的第一道问题:"我怎么从匿名读升到能写?" —— 入口必须自答(不依赖 GitHub)。
         access: {
             browse_first: 'No account needed to START: browse the live catalog at https://webaz.xyz/#discover and read every well-known surface below anonymously. Try before you commit.',
@@ -60,8 +101,9 @@ export function buildIntegrationContract() {
         enters_core_test: 'A capability enters the protocol (vs integrator self-solving) iff ALL: ≥N independent integrators need it × needs cross-party trust/verification × cannot be reconstructed from already-exposed data.',
         iron_rule: 'arbitrate / vote / agent_revoke / delete_passkey / large withdraw require a live WebAuthn ceremony regardless of declared scope.',
         references: {
+            // RFC-011 is the public formalization of the agent-native integration audit; the audit doc itself is
+            // an internal artifact (not in the public tree), so it is not advertised as a reference here.
             rfc_011: `${GH}/docs/rfcs/RFC-011-agent-native-integration-contract.md`,
-            audit: `${GH}/docs/AGENT-NATIVE-INTEGRATION-AUDIT.md`,
             manifest: `${BASE}/.well-known/webaz-protocol.json`,
         },
     };

package/dist/pwa/internal/pv-settlement.js

@@ -0,0 +1,12 @@
+/**
+ * Excised stub factory. Accepts the same deps as the original engine (so the call site is unchanged) but
+ * returns no-op functions. Deps are intentionally unused.
+ */
+export function createPvSettlementEngine(_deps) {
+    return {
+        // 匹配结算已切除:不匹配、不产生 Score、不动 PV 腿。永远返回 0。
+        runBinarySettlement: () => 0,
+        // 兑付已切除:永远 disabled,从不发放。
+        executeSafeSettlementCron: () => ({ periodId: '', status: 'disabled' }),
+    };
+}

package/dist/pwa/internal/wallet-signer.js

@@ -0,0 +1,26 @@
+import { privateKeyToAccount, privateKeyToAddress } from 'viem/accounts';
+import { createHmac } from 'node:crypto';
+/** Seed string for the hot-wallet role (also the issuer role today — see Phase 0.5). */
+export const HOT_WALLET_SEED = 'platform-hot-wallet';
+/**
+ * In-process signer derived from a single master seed (current production behavior; dev/testnet).
+ * `privKey(role) = 0x<HMAC-SHA256(masterSeed, role)>` — byte-for-byte identical to the legacy
+ * `derivePrivKey` in server.ts, so addresses / signatures do not change.
+ *
+ * Phase 1+ will provide `createKmsSigner(...)` / `createSafeSigner(...)` implementing the same
+ * interface, selected via the `HOT_WALLET_SIGNER` env var.
+ */
+export function createLocalSeedSigner(masterSeed) {
+    const privKey = (role) => `0x${createHmac('sha256', masterSeed).update(role).digest('hex')}`;
+    // Issuer currently shares the hot-wallet key (unchanged address). Phase 0.5 points it at a
+    // dedicated key + dual-key credential verification; do NOT change this seed before that.
+    const ISSUER_SEED = HOT_WALLET_SEED;
+    return {
+        hotAccount: () => privateKeyToAccount(privKey(HOT_WALLET_SEED)),
+        hotAddress: () => privateKeyToAddress(privKey(HOT_WALLET_SEED)),
+        depositAccount: (userId) => privateKeyToAccount(privKey(userId)),
+        depositAddress: (userId) => privateKeyToAddress(privKey(userId)),
+        issuerSignMessage: (message) => privateKeyToAccount(privKey(ISSUER_SEED)).signMessage({ message }),
+        issuerAddress: () => privateKeyToAddress(privKey(ISSUER_SEED)),
+    };
+}