@shroud-fi/mcp-server 0.1.0

package/dist/esm/tools/receive.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"receive.js","sourceRoot":"","sources":["../../../src/tools/receive.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAGpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAE5D,MAAM,UAAU,GAAG,CAAC;KACjB,MAAM,CAAC;IACN,SAAS,EAAE,mBAAmB;IAC9B,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,mBAAmB,EAAE,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IACvE,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,MAAM,EAAE,WAAW,CAAC,CAAC,CAAC,QAAQ,EAAE;IAC5D,yEAAyE;IACzE,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE;CACxD,CAAC;KACD,MAAM,EAAE,CAAC;AAEZ,MAAM,CAAC,MAAM,iBAAiB,GAAY;IACxC,IAAI,EAAE,gBAAgB;IACtB,WAAW,EACT,4PAA4P;IAC9P,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ;QACd,oBAAoB,EAAE,KAAK;QAC3B,UAAU,EAAE;YACV,SAAS,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE;YAChD,OAAO,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,EAAE;YAChF,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,WAAW,CAAC,EAAE;YACnE,KAAK,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE;SACtD;QACD,QAAQ,EAAE,CAAC,WAAW,CAAC;KACxB;IACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG;QACpB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,mBAAmB,EAAE,CAAC;QAClC,CAAC;QACD,MAAM,EAAE,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QAC5D,MAAM,KAAK,GAAG,QAAQ,CAAC,SAAS,CAAC,CAAC;QAElC,IAAI,GAAW,CAAC;QAChB,IAAI,OAAO,KAAK,SAAS,IAAI,OAAO,KAAK,QAAQ,EAAE,CAAC;YAClD,MAAM,GAAG,GACP,QAAQ,KAAK,WAAW;gBACtB,CAAC,CAAC,WAAW;gBACb,CAAC,CAAC,QAAQ,KAAK,MAAM;oBACnB,CAAC,CAAC,MAAM;oBACR,CAAC,CAAC,QAAQ,CAAC;YACjB,MAAM,KAAK,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;YAC3E,GAAG,GAAG,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC;QAC9B,CAAC;aAAM,CAAC;YACN,GAAG,GAAG,QAAQ,CAAC,OAAO,CAAC,CAAC;QAC1B,CAAC;QAED,IAAI,GAAG,GAAG,KAAK,EAAE,CAAC;YAChB,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,CAAC,QAAQ,EAAE,EAAE,OAAO,EAAE,GAAG,CAAC,QAAQ,EAAE,EAAE,UAAU,EAAE,EAAE,EAAE,CAAC;QAC5F,CAAC;QAED,MAAM,OAAO,GAAG,aAAa,CAAC;YAC5B,SAAS,EAAE,GAAG,CAAC,SAAS;YACxB,WAAW,EAAE,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW;YAChD,WAAW,EAAE,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW;YAChD,UAAU,EAAE,KAAK;YACjB,GAAG,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAChD,CAAC,CAAC;QAEH,MAAM,GAAG,GAAmC,EAAE,CAAC;QAC/C,MAAM,GAAG,GAAG,KAAK,IAAI,GAAG,CAAC;QACzB,IAAI,CAAC;YACH,IAAI,KAAK,EAAE,MAAM,CAAC,IAAI,OAAO,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,CAAmC,EAAE,CAAC;gBACtF,GAAG,CAAC,IAAI,CAAC;oBACP,cAAc,EAAE,CAAC,CAAC,cAAc;oBAChC,eAAe,EAAE,CAAC,CAAC,eAAe;oBAClC,iBAAiB,EAAE,CAAC,CAAC,iBAAiB;oBACtC,MAAM,EAAE,CAAC,CAAC,MAAM;oBAChB,WAAW,EAAE,CAAC,CAAC,WAAW,CAAC,QAAQ,EAAE;oBACrC,SAAS,EAAE,CAAC,CAAC,SAAS;oBACtB,QAAQ,EAAE,CAAC,CAAC,QAAQ;oBACpB,QAAQ,EAAE,CAAC,CAAC,QAAQ;iBACrB,CAAC,CAAC;gBACH,IAAI,GAAG,CAAC,MAAM,IAAI,GAAG;oBAAE,MAAM;YAC/B,CAAC;QACH,CAAC;gBAAS,CAAC;YACT,OAAO,CAAC,KAAK,EAAE,CAAC;QAClB,CAAC;QAED,OAAO;YACL,EAAE,EAAE,IAAI;YACR,SAAS,EAAE,KAAK,CAAC,QAAQ,EAAE;YAC3B,OAAO,EAAE,GAAG,CAAC,QAAQ,EAAE;YACvB,UAAU,EAAE,GAAG;SAChB,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/esm/tools/register.d.ts

@@ -0,0 +1,9 @@
+/**
+ * shroud_register — publish the agent's stealth meta-address into ERC-6538.
+ *
+ * Idempotent. Returns `{ registered: false }` if the wallet already has an
+ * on-chain entry.
+ */
+import type { McpTool } from '../types.js';
+export declare const shroudRegisterTool: McpTool;
+//# sourceMappingURL=register.d.ts.map

package/dist/esm/tools/register.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"register.d.ts","sourceRoot":"","sources":["../../../src/tools/register.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,OAAO,EAAiB,MAAM,aAAa,CAAC;AAK1D,eAAO,MAAM,kBAAkB,EAAE,OAuBhC,CAAC"}

package/dist/esm/tools/register.js

@@ -0,0 +1,33 @@
+/**
+ * shroud_register — publish the agent's stealth meta-address into ERC-6538.
+ *
+ * Idempotent. Returns `{ registered: false }` if the wallet already has an
+ * on-chain entry.
+ */
+import { z } from 'zod';
+import { McpInvalidArgsError } from '../errors.js';
+const ArgsSchema = z.object({}).strict();
+export const shroudRegisterTool = {
+    name: 'shroud_register',
+    description: 'Publish the agent stealth meta-address into ERC-6538. Idempotent — no-op when already registered. Returns the registration tx hash on first call.',
+    inputSchema: {
+        type: 'object',
+        additionalProperties: false,
+        properties: {},
+        required: [],
+    },
+    async handler(ctx, raw) {
+        const parsed = ArgsSchema.safeParse(raw ?? {});
+        if (!parsed.success) {
+            throw new McpInvalidArgsError();
+        }
+        const result = await ctx.agent.ensureRegistered();
+        return {
+            ok: true,
+            registered: result.registered,
+            ...(result.txHash !== undefined ? { txHash: result.txHash } : {}),
+            metaAddress: ctx.agent.metaAddressEncoded,
+        };
+    },
+};
+//# sourceMappingURL=register.js.map

package/dist/esm/tools/register.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register.js","sourceRoot":"","sources":["../../../src/tools/register.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAEnD,MAAM,UAAU,GAAG,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC;AAEzC,MAAM,CAAC,MAAM,kBAAkB,GAAY;IACzC,IAAI,EAAE,iBAAiB;IACvB,WAAW,EACT,mJAAmJ;IACrJ,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ;QACd,oBAAoB,EAAE,KAAK;QAC3B,UAAU,EAAE,EAAE;QACd,QAAQ,EAAE,EAAE;KACb;IACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG;QACpB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,CAAC,CAAC;QAC/C,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,mBAAmB,EAAE,CAAC;QAClC,CAAC;QACD,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,gBAAgB,EAAE,CAAC;QAClD,OAAO;YACL,EAAE,EAAE,IAAI;YACR,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,GAAG,CAAC,MAAM,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACjE,WAAW,EAAE,GAAG,CAAC,KAAK,CAAC,kBAAkB;SAC1C,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/esm/tools/schema.d.ts

@@ -0,0 +1,18 @@
+/**
+ * Shared zod schemas + helpers for tool argument validation.
+ */
+import { z } from 'zod';
+/** 0x-prefixed lowercase EVM address (case preserved by viem checks). */
+export declare const AddressSchema: z.ZodString;
+/** Asset descriptor used by send tools: 'ETH' or token address. */
+export declare const AssetSchema: z.ZodUnion<[z.ZodLiteral<"ETH">, z.ZodObject<{
+    token: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    token: string;
+}, {
+    token: string;
+}>]>;
+/** Positive integer string that parses to bigint. */
+export declare const Uint256StringSchema: z.ZodString;
+export declare function toBigInt(v: string): bigint;
+//# sourceMappingURL=schema.d.ts.map

package/dist/esm/tools/schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../../../src/tools/schema.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,yEAAyE;AACzE,eAAO,MAAM,aAAa,aAEyC,CAAC;AAEpE,mEAAmE;AACnE,eAAO,MAAM,WAAW;;;;;;IAGtB,CAAC;AAEH,qDAAqD;AACrD,eAAO,MAAM,mBAAmB,aAEc,CAAC;AAE/C,wBAAgB,QAAQ,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,CAE1C"}

package/dist/esm/tools/schema.js

@@ -0,0 +1,21 @@
+/**
+ * Shared zod schemas + helpers for tool argument validation.
+ */
+import { z } from 'zod';
+/** 0x-prefixed lowercase EVM address (case preserved by viem checks). */
+export const AddressSchema = z
+    .string()
+    .regex(/^0x[0-9a-fA-F]{40}$/, '0x-prefixed 20-byte hex required');
+/** Asset descriptor used by send tools: 'ETH' or token address. */
+export const AssetSchema = z.union([
+    z.literal('ETH'),
+    z.object({ token: AddressSchema }),
+]);
+/** Positive integer string that parses to bigint. */
+export const Uint256StringSchema = z
+    .string()
+    .regex(/^\d+$/, 'positive integer required');
+export function toBigInt(v) {
+    return BigInt(v);
+}
+//# sourceMappingURL=schema.js.map

package/dist/esm/tools/schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.js","sourceRoot":"","sources":["../../../src/tools/schema.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,yEAAyE;AACzE,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC;KAC3B,MAAM,EAAE;KACR,KAAK,CAAC,qBAAqB,EAAE,kCAAkC,CAAC,CAAC;AAEpE,mEAAmE;AACnE,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC;IACjC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC;IAChB,CAAC,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,aAAa,EAAE,CAAC;CACnC,CAAC,CAAC;AAEH,qDAAqD;AACrD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC;KACjC,MAAM,EAAE;KACR,KAAK,CAAC,OAAO,EAAE,2BAA2B,CAAC,CAAC;AAE/C,MAAM,UAAU,QAAQ,CAAC,CAAS;IAChC,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;AACnB,CAAC"}

package/dist/esm/tools/send-to-wallet.d.ts

@@ -0,0 +1,9 @@
+/**
+ * shroud_send_to_wallet — pay a recipient by their plain EVM wallet address.
+ *
+ * The SDK does the ERC-6538 lookup + meta-address decode + stealth derivation.
+ * Caller never sees a meta-address.
+ */
+import type { McpTool } from '../types.js';
+export declare const shroudSendToWalletTool: McpTool;
+//# sourceMappingURL=send-to-wallet.d.ts.map

package/dist/esm/tools/send-to-wallet.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"send-to-wallet.d.ts","sourceRoot":"","sources":["../../../src/tools/send-to-wallet.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,OAAO,EAAiB,MAAM,aAAa,CAAC;AAiB1D,eAAO,MAAM,sBAAsB,EAAE,OA4CpC,CAAC"}

package/dist/esm/tools/send-to-wallet.js

@@ -0,0 +1,57 @@
+/**
+ * shroud_send_to_wallet — pay a recipient by their plain EVM wallet address.
+ *
+ * The SDK does the ERC-6538 lookup + meta-address decode + stealth derivation.
+ * Caller never sees a meta-address.
+ */
+import { z } from 'zod';
+import { McpInvalidArgsError } from '../errors.js';
+import { AddressSchema, AssetSchema, Uint256StringSchema, toBigInt, } from './schema.js';
+const ArgsSchema = z
+    .object({
+    recipient: AddressSchema,
+    asset: AssetSchema,
+    amount: Uint256StringSchema,
+})
+    .strict();
+export const shroudSendToWalletTool = {
+    name: 'shroud_send_to_wallet',
+    description: 'Send ETH or an ERC-20 token to a recipient identified by their plain wallet address. The SDK looks up their ERC-6538 stealth meta-address and derives a one-time stealth address automatically. Throws RecipientNotOnboardedError if the wallet has not registered.',
+    inputSchema: {
+        type: 'object',
+        additionalProperties: false,
+        properties: {
+            recipient: { type: 'string', pattern: '^0x[0-9a-fA-F]{40}$' },
+            asset: {
+                oneOf: [
+                    { type: 'string', enum: ['ETH'] },
+                    {
+                        type: 'object',
+                        properties: { token: { type: 'string', pattern: '^0x[0-9a-fA-F]{40}$' } },
+                        required: ['token'],
+                        additionalProperties: false,
+                    },
+                ],
+            },
+            amount: { type: 'string', pattern: '^\\d+$' },
+        },
+        required: ['recipient', 'asset', 'amount'],
+    },
+    async handler(ctx, raw) {
+        const parsed = ArgsSchema.safeParse(raw);
+        if (!parsed.success) {
+            throw new McpInvalidArgsError();
+        }
+        const { recipient, asset, amount } = parsed.data;
+        const assetArg = asset === 'ETH' ? 'ETH' : { token: asset.token };
+        const receipt = await ctx.agent.sendToWallet(recipient, assetArg, toBigInt(amount));
+        return {
+            ok: true,
+            txHash: receipt.txHash,
+            stealthAddress: receipt.stealthAddress,
+            ephemeralPubKey: receipt.ephemeralPubKey,
+            viewTag: receipt.viewTag,
+        };
+    },
+};
+//# sourceMappingURL=send-to-wallet.js.map

package/dist/esm/tools/send-to-wallet.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"send-to-wallet.js","sourceRoot":"","sources":["../../../src/tools/send-to-wallet.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EACL,aAAa,EACb,WAAW,EACX,mBAAmB,EACnB,QAAQ,GACT,MAAM,aAAa,CAAC;AAErB,MAAM,UAAU,GAAG,CAAC;KACjB,MAAM,CAAC;IACN,SAAS,EAAE,aAAa;IACxB,KAAK,EAAE,WAAW;IAClB,MAAM,EAAE,mBAAmB;CAC5B,CAAC;KACD,MAAM,EAAE,CAAC;AAEZ,MAAM,CAAC,MAAM,sBAAsB,GAAY;IAC7C,IAAI,EAAE,uBAAuB;IAC7B,WAAW,EACT,qQAAqQ;IACvQ,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ;QACd,oBAAoB,EAAE,KAAK;QAC3B,UAAU,EAAE;YACV,SAAS,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE;YAC7D,KAAK,EAAE;gBACL,KAAK,EAAE;oBACL,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,KAAK,CAAC,EAAE;oBACjC;wBACE,IAAI,EAAE,QAAQ;wBACd,UAAU,EAAE,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE,EAAE;wBACzE,QAAQ,EAAE,CAAC,OAAO,CAAC;wBACnB,oBAAoB,EAAE,KAAK;qBAC5B;iBACF;aACF;YACD,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE;SAC9C;QACD,QAAQ,EAAE,CAAC,WAAW,EAAE,OAAO,EAAE,QAAQ,CAAC;KAC3C;IACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG;QACpB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,mBAAmB,EAAE,CAAC;QAClC,CAAC;QACD,MAAM,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QACjD,MAAM,QAAQ,GAAG,KAAK,KAAK,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,KAAsB,EAAE,CAAC;QACnF,MAAM,OAAO,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,YAAY,CAC1C,SAA0B,EAC1B,QAAQ,EACR,QAAQ,CAAC,MAAM,CAAC,CACjB,CAAC;QACF,OAAO;YACL,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,cAAc,EAAE,OAAO,CAAC,cAAc;YACtC,eAAe,EAAE,OAAO,CAAC,eAAe;YACxC,OAAO,EAAE,OAAO,CAAC,OAAO;SACzB,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/esm/tools/send.d.ts

@@ -0,0 +1,9 @@
+/**
+ * shroud_send — send to a stealth meta-address (the privacy-native form).
+ *
+ * Uses agent.send (ETH) or agent.sendERC20 (token). Recipient is the encoded
+ * meta-address string `st:base:0x…`.
+ */
+import type { McpTool } from '../types.js';
+export declare const shroudSendTool: McpTool;
+//# sourceMappingURL=send.d.ts.map

package/dist/esm/tools/send.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"send.d.ts","sourceRoot":"","sources":["../../../src/tools/send.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,OAAO,EAAiB,MAAM,aAAa,CAAC;AAY1D,eAAO,MAAM,cAAc,EAAE,OAoD5B,CAAC"}

package/dist/esm/tools/send.js

@@ -0,0 +1,65 @@
+/**
+ * shroud_send — send to a stealth meta-address (the privacy-native form).
+ *
+ * Uses agent.send (ETH) or agent.sendERC20 (token). Recipient is the encoded
+ * meta-address string `st:base:0x…`.
+ */
+import { z } from 'zod';
+import { McpInvalidArgsError } from '../errors.js';
+import { AddressSchema, AssetSchema, Uint256StringSchema, toBigInt } from './schema.js';
+const ArgsSchema = z
+    .object({
+    to: z.string().min(1),
+    asset: AssetSchema,
+    amount: Uint256StringSchema,
+})
+    .strict();
+export const shroudSendTool = {
+    name: 'shroud_send',
+    description: 'Send ETH or an ERC-20 token to a stealth meta-address. `to` is the encoded `st:base:0x…` string. `asset` is "ETH" or { token: 0x… }. `amount` is a base-units string.',
+    inputSchema: {
+        type: 'object',
+        additionalProperties: false,
+        properties: {
+            to: { type: 'string', description: 'Encoded stealth meta-address' },
+            asset: {
+                oneOf: [
+                    { type: 'string', enum: ['ETH'] },
+                    {
+                        type: 'object',
+                        properties: { token: { type: 'string', pattern: '^0x[0-9a-fA-F]{40}$' } },
+                        required: ['token'],
+                        additionalProperties: false,
+                    },
+                ],
+            },
+            amount: { type: 'string', pattern: '^\\d+$', description: 'Base-units integer' },
+        },
+        required: ['to', 'asset', 'amount'],
+    },
+    async handler(ctx, raw) {
+        const parsed = ArgsSchema.safeParse(raw);
+        if (!parsed.success) {
+            throw new McpInvalidArgsError();
+        }
+        const { to, asset, amount } = parsed.data;
+        const amountWei = toBigInt(amount);
+        let receipt;
+        if (asset === 'ETH') {
+            receipt = await ctx.agent.send(to, amountWei);
+        }
+        else {
+            // Validate the token address shape before dispatch.
+            AddressSchema.parse(asset.token);
+            receipt = await ctx.agent.sendERC20(to, asset.token, amountWei);
+        }
+        return {
+            ok: true,
+            txHash: receipt.txHash,
+            stealthAddress: receipt.stealthAddress,
+            ephemeralPubKey: receipt.ephemeralPubKey,
+            viewTag: receipt.viewTag,
+        };
+    },
+};
+//# sourceMappingURL=send.js.map

package/dist/esm/tools/send.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"send.js","sourceRoot":"","sources":["../../../src/tools/send.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAExF,MAAM,UAAU,GAAG,CAAC;KACjB,MAAM,CAAC;IACN,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrB,KAAK,EAAE,WAAW;IAClB,MAAM,EAAE,mBAAmB;CAC5B,CAAC;KACD,MAAM,EAAE,CAAC;AAEZ,MAAM,CAAC,MAAM,cAAc,GAAY;IACrC,IAAI,EAAE,aAAa;IACnB,WAAW,EACT,uKAAuK;IACzK,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ;QACd,oBAAoB,EAAE,KAAK;QAC3B,UAAU,EAAE;YACV,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,8BAA8B,EAAE;YACnE,KAAK,EAAE;gBACL,KAAK,EAAE;oBACL,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,KAAK,CAAC,EAAE;oBACjC;wBACE,IAAI,EAAE,QAAQ;wBACd,UAAU,EAAE,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE,EAAE;wBACzE,QAAQ,EAAE,CAAC,OAAO,CAAC;wBACnB,oBAAoB,EAAE,KAAK;qBAC5B;iBACF;aACF;YACD,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,oBAAoB,EAAE;SACjF;QACD,QAAQ,EAAE,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,CAAC;KACpC;IACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG;QACpB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,mBAAmB,EAAE,CAAC;QAClC,CAAC;QACD,MAAM,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QAC1C,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;QAEnC,IAAI,OAAO,CAAC;QACZ,IAAI,KAAK,KAAK,KAAK,EAAE,CAAC;YACpB,OAAO,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;QAChD,CAAC;aAAM,CAAC;YACN,oDAAoD;YACpD,aAAa,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YACjC,OAAO,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,SAAS,CACjC,EAAE,EACF,KAAK,CAAC,KAAsB,EAC5B,SAAS,CACV,CAAC;QACJ,CAAC;QACD,OAAO;YACL,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,cAAc,EAAE,OAAO,CAAC,cAAc;YACtC,eAAe,EAAE,OAAO,CAAC,eAAe;YACxC,OAAO,EAAE,OAAO,CAAC,OAAO;SACzB,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/esm/tools/status.d.ts

@@ -0,0 +1,6 @@
+/**
+ * shroud_status — read-only snapshot of agent + chain + on-chain registration.
+ */
+import type { McpTool } from '../types.js';
+export declare const shroudStatusTool: McpTool;
+//# sourceMappingURL=status.d.ts.map

package/dist/esm/tools/status.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"status.d.ts","sourceRoot":"","sources":["../../../src/tools/status.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,KAAK,EAAE,OAAO,EAAiB,MAAM,aAAa,CAAC;AAK1D,eAAO,MAAM,gBAAgB,EAAE,OA6B9B,CAAC"}

package/dist/esm/tools/status.js

@@ -0,0 +1,36 @@
+/**
+ * shroud_status — read-only snapshot of agent + chain + on-chain registration.
+ */
+import { z } from 'zod';
+import { McpInvalidArgsError } from '../errors.js';
+const ArgsSchema = z.object({}).strict();
+export const shroudStatusTool = {
+    name: 'shroud_status',
+    description: 'Snapshot of the running agent: operator wallet, meta-address, chain id, current block, on-chain registration state, and stealth contract address.',
+    inputSchema: {
+        type: 'object',
+        additionalProperties: false,
+        properties: {},
+        required: [],
+    },
+    async handler(ctx, raw) {
+        const parsed = ArgsSchema.safeParse(raw ?? {});
+        if (!parsed.success) {
+            throw new McpInvalidArgsError();
+        }
+        const latest = await ctx.transport.publicClient.getBlock({
+            blockTag: 'latest',
+        });
+        const registered = await ctx.agent.isRegistered();
+        return {
+            ok: true,
+            chainId: ctx.chainId,
+            walletAddress: ctx.walletAddress ?? null,
+            metaAddress: ctx.agent.metaAddressEncoded,
+            stealthContract: ctx.agent.stealthContract,
+            latestBlock: (latest.number ?? 0n).toString(),
+            registered,
+        };
+    },
+};
+//# sourceMappingURL=status.js.map

package/dist/esm/tools/status.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"status.js","sourceRoot":"","sources":["../../../src/tools/status.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAEnD,MAAM,UAAU,GAAG,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC;AAEzC,MAAM,CAAC,MAAM,gBAAgB,GAAY;IACvC,IAAI,EAAE,eAAe;IACrB,WAAW,EACT,mJAAmJ;IACrJ,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ;QACd,oBAAoB,EAAE,KAAK;QAC3B,UAAU,EAAE,EAAE;QACd,QAAQ,EAAE,EAAE;KACb;IACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG;QACpB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,CAAC,CAAC;QAC/C,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,mBAAmB,EAAE,CAAC;QAClC,CAAC;QACD,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,QAAQ,CAAC;YACvD,QAAQ,EAAE,QAAQ;SACnB,CAAC,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,YAAY,EAAE,CAAC;QAClD,OAAO;YACL,EAAE,EAAE,IAAI;YACR,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,aAAa,EAAE,GAAG,CAAC,aAAa,IAAI,IAAI;YACxC,WAAW,EAAE,GAAG,CAAC,KAAK,CAAC,kBAAkB;YACzC,eAAe,EAAE,GAAG,CAAC,KAAK,CAAC,eAAe;YAC1C,WAAW,EAAE,CAAC,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,QAAQ,EAAE;YAC7C,UAAU;SACX,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/esm/tools/sweep.d.ts

@@ -0,0 +1,14 @@
+/**
+ * shroud_sweep — sweep a previously-detected stealth address to a destination.
+ *
+ * Caller passes the detection bundle returned by shroud_receive (stealth
+ * address + stealth private key + ephemeral pub key + tx coords). We
+ * reconstruct a minimal DetectedPayment and dispatch to agent.sweep.
+ *
+ * Optional flags:
+ *   - viaRelayer + token → Gelato ERC-20 gasless sweep
+ *   - viaRelayer (ETH) → EIP-7702 ETH gasless sweep (requires selfHostEndpoint)
+ */
+import type { McpTool } from '../types.js';
+export declare const shroudSweepTool: McpTool;
+//# sourceMappingURL=sweep.d.ts.map

package/dist/esm/tools/sweep.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sweep.d.ts","sourceRoot":"","sources":["../../../src/tools/sweep.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAIH,OAAO,KAAK,EAAE,OAAO,EAAiB,MAAM,aAAa,CAAC;AA0B1D,eAAO,MAAM,eAAe,EAAE,OAoF7B,CAAC"}

package/dist/esm/tools/sweep.js

@@ -0,0 +1,116 @@
+/**
+ * shroud_sweep — sweep a previously-detected stealth address to a destination.
+ *
+ * Caller passes the detection bundle returned by shroud_receive (stealth
+ * address + stealth private key + ephemeral pub key + tx coords). We
+ * reconstruct a minimal DetectedPayment and dispatch to agent.sweep.
+ *
+ * Optional flags:
+ *   - viaRelayer + token → Gelato ERC-20 gasless sweep
+ *   - viaRelayer (ETH) → EIP-7702 ETH gasless sweep (requires selfHostEndpoint)
+ */
+import { z } from 'zod';
+import { McpInvalidArgsError } from '../errors.js';
+import { AddressSchema, Uint256StringSchema, toBigInt } from './schema.js';
+const HexSchema = z.string().regex(/^0x[0-9a-fA-F]+$/);
+const Hex32Schema = z.string().regex(/^0x[0-9a-fA-F]{64}$/);
+const ArgsSchema = z
+    .object({
+    detection: z.object({
+        stealthAddress: AddressSchema,
+        ephemeralPubKey: HexSchema,
+        stealthPrivateKey: Hex32Schema,
+        txHash: Hex32Schema,
+        blockNumber: Uint256StringSchema,
+        blockHash: Hex32Schema,
+        logIndex: z.number().int().nonnegative(),
+        finality: z.enum(['safe', 'finalized']).optional(),
+    }),
+    destination: AddressSchema,
+    token: AddressSchema.optional(),
+    viaRelayer: z.boolean().optional(),
+    ethRelayerEndpoint: z.string().url().optional(),
+})
+    .strict();
+export const shroudSweepTool = {
+    name: 'shroud_sweep',
+    description: 'Sweep a detected stealth address to a destination wallet. Pass the detection object returned by shroud_receive. Omit `token` for ETH; pass `token` for an ERC-20. Set `viaRelayer: true` for gasless sweep (ERC-20 → Gelato; ETH → requires `ethRelayerEndpoint` to a self-host relayer).',
+    inputSchema: {
+        type: 'object',
+        additionalProperties: false,
+        properties: {
+            detection: {
+                type: 'object',
+                additionalProperties: false,
+                properties: {
+                    stealthAddress: { type: 'string', pattern: '^0x[0-9a-fA-F]{40}$' },
+                    ephemeralPubKey: { type: 'string', pattern: '^0x[0-9a-fA-F]+$' },
+                    stealthPrivateKey: { type: 'string', pattern: '^0x[0-9a-fA-F]{64}$' },
+                    txHash: { type: 'string', pattern: '^0x[0-9a-fA-F]{64}$' },
+                    blockNumber: { type: 'string', pattern: '^\\d+$' },
+                    blockHash: { type: 'string', pattern: '^0x[0-9a-fA-F]{64}$' },
+                    logIndex: { type: 'integer', minimum: 0 },
+                    finality: { type: 'string', enum: ['safe', 'finalized'] },
+                },
+                required: [
+                    'stealthAddress',
+                    'ephemeralPubKey',
+                    'stealthPrivateKey',
+                    'txHash',
+                    'blockNumber',
+                    'blockHash',
+                    'logIndex',
+                ],
+            },
+            destination: { type: 'string', pattern: '^0x[0-9a-fA-F]{40}$' },
+            token: { type: 'string', pattern: '^0x[0-9a-fA-F]{40}$' },
+            viaRelayer: { type: 'boolean' },
+            ethRelayerEndpoint: { type: 'string' },
+        },
+        required: ['detection', 'destination'],
+    },
+    async handler(ctx, raw) {
+        const parsed = ArgsSchema.safeParse(raw);
+        if (!parsed.success) {
+            throw new McpInvalidArgsError();
+        }
+        const { detection, destination, token, viaRelayer, ethRelayerEndpoint } = parsed.data;
+        const dp = {
+            stealthAddress: detection.stealthAddress,
+            ephemeralPubKey: detection.ephemeralPubKey,
+            stealthPrivateKey: detection.stealthPrivateKey,
+            txHash: detection.txHash,
+            blockNumber: toBigInt(detection.blockNumber),
+            blockHash: detection.blockHash,
+            logIndex: detection.logIndex,
+            finality: detection.finality ?? 'safe',
+        };
+        const sweepOpts = {};
+        if (token !== undefined)
+            sweepOpts.token = token;
+        if (viaRelayer === true) {
+            sweepOpts.viaRelayer = true;
+            if (ethRelayerEndpoint !== undefined) {
+                sweepOpts.ethRelayerOptions = { selfHostEndpoint: ethRelayerEndpoint };
+            }
+        }
+        const result = await ctx.agent.sweep(dp, destination, sweepOpts);
+        const swept = result.swept;
+        const out = {
+            ok: true,
+            txHash: swept.txHash,
+            destination: swept.destination,
+        };
+        if (swept.token !== undefined)
+            out.token = swept.token;
+        if (swept.blockNumber !== undefined) {
+            out.blockNumber = swept.blockNumber.toString();
+        }
+        if (swept.taskId !== undefined)
+            out.taskId = swept.taskId;
+        if (swept.status !== undefined)
+            out.status = swept.status;
+        return out;
+    },
+};
+//# sourceMappingURL=sweep.js.map

package/dist/esm/tools/sweep.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sweep.js","sourceRoot":"","sources":["../../../src/tools/sweep.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAE3E,MAAM,SAAS,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;AACvD,MAAM,WAAW,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;AAE5D,MAAM,UAAU,GAAG,CAAC;KACjB,MAAM,CAAC;IACN,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC;QAClB,cAAc,EAAE,aAAa;QAC7B,eAAe,EAAE,SAAS;QAC1B,iBAAiB,EAAE,WAAW;QAC9B,MAAM,EAAE,WAAW;QACnB,WAAW,EAAE,mBAAmB;QAChC,SAAS,EAAE,WAAW;QACtB,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE;QACxC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC,CAAC,QAAQ,EAAE;KACnD,CAAC;IACF,WAAW,EAAE,aAAa;IAC1B,KAAK,EAAE,aAAa,CAAC,QAAQ,EAAE;IAC/B,UAAU,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAClC,kBAAkB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;CAChD,CAAC;KACD,MAAM,EAAE,CAAC;AAEZ,MAAM,CAAC,MAAM,eAAe,GAAY;IACtC,IAAI,EAAE,cAAc;IACpB,WAAW,EACT,2RAA2R;IAC7R,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ;QACd,oBAAoB,EAAE,KAAK;QAC3B,UAAU,EAAE;YACV,SAAS,EAAE;gBACT,IAAI,EAAE,QAAQ;gBACd,oBAAoB,EAAE,KAAK;gBAC3B,UAAU,EAAE;oBACV,cAAc,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE;oBAClE,eAAe,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,kBAAkB,EAAE;oBAChE,iBAAiB,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE;oBACrE,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE;oBAC1D,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE;oBAClD,SAAS,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE;oBAC7D,QAAQ,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,EAAE;oBACzC,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,MAAM,EAAE,WAAW,CAAC,EAAE;iBAC1D;gBACD,QAAQ,EAAE;oBACR,gBAAgB;oBAChB,iBAAiB;oBACjB,mBAAmB;oBACnB,QAAQ;oBACR,aAAa;oBACb,WAAW;oBACX,UAAU;iBACX;aACF;YACD,WAAW,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE;YAC/D,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,qBAAqB,EAAE;YACzD,UAAU,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE;YAC/B,kBAAkB,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;SACvC;QACD,QAAQ,EAAE,CAAC,WAAW,EAAE,aAAa,CAAC;KACvC;IACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG;QACpB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,mBAAmB,EAAE,CAAC;QAClC,CAAC;QACD,MAAM,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,UAAU,EAAE,kBAAkB,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QAEtF,MAAM,EAAE,GAAoB;YAC1B,cAAc,EAAE,SAAS,CAAC,cAA+B;YACzD,eAAe,EAAE,SAAS,CAAC,eAAgC;YAC3D,iBAAiB,EAAE,SAAS,CAAC,iBAAkC;YAC/D,MAAM,EAAE,SAAS,CAAC,MAAuB;YACzC,WAAW,EAAE,QAAQ,CAAC,SAAS,CAAC,WAAW,CAAC;YAC5C,SAAS,EAAE,SAAS,CAAC,SAA0B;YAC/C,QAAQ,EAAE,SAAS,CAAC,QAAQ;YAC5B,QAAQ,EAAE,SAAS,CAAC,QAAQ,IAAI,MAAM;SACvC,CAAC;QAEF,MAAM,SAAS,GAA0C,EAAE,CAAC;QAC5D,IAAI,KAAK,KAAK,SAAS;YAAE,SAAS,CAAC,KAAK,GAAG,KAAsB,CAAC;QAClE,IAAI,UAAU,KAAK,IAAI,EAAE,CAAC;YACxB,SAAS,CAAC,UAAU,GAAG,IAAI,CAAC;YAC5B,IAAI,kBAAkB,KAAK,SAAS,EAAE,CAAC;gBACrC,SAAS,CAAC,iBAAiB,GAAG,EAAE,gBAAgB,EAAE,kBAAkB,EAAE,CAAC;YACzE,CAAC;QACH,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,KAAK,CAAC,KAAK,CAClC,EAAE,EACF,WAA4B,EAC5B,SAAS,CACV,CAAC;QACF,MAAM,KAAK,GAAG,MAAM,CAAC,KAAgC,CAAC;QACtD,MAAM,GAAG,GAA4B;YACnC,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,WAAW,EAAE,KAAK,CAAC,WAAW;SAC/B,CAAC;QACF,IAAI,KAAK,CAAC,KAAK,KAAK,SAAS;YAAE,GAAG,CAAC,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC;QACvD,IAAI,KAAK,CAAC,WAAW,KAAK,SAAS,EAAE,CAAC;YACpC,GAAG,CAAC,WAAW,GAAI,KAAK,CAAC,WAAsB,CAAC,QAAQ,EAAE,CAAC;QAC7D,CAAC;QACD,IAAI,KAAK,CAAC,MAAM,KAAK,SAAS;YAAE,GAAG,CAAC,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC;QAC1D,IAAI,KAAK,CAAC,MAAM,KAAK,SAAS;YAAE,GAAG,CAAC,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC;QAC1D,OAAO,GAAoB,CAAC;IAC9B,CAAC;CACF,CAAC"}

package/dist/esm/tools/x402-pay.d.ts

@@ -0,0 +1,14 @@
+/**
+ * shroud_x402_pay — one-shot HTTP 402 client.
+ *
+ * Fetches a URL; if the server responds 402, the SDK signs an EIP-3009
+ * USDC transferWithAuthorization and retries automatically. Returns the
+ * server's final status, the body (if JSON-decodable), and the settled
+ * tx hash exposed via X-PAYMENT-RESPONSE when present.
+ *
+ * `maxPriceUsdcAtomic` is a hard safety cap. If the server demands more,
+ * the SDK throws X402AmountMismatchError without signing.
+ */
+import type { McpTool } from '../types.js';
+export declare const shroudX402PayTool: McpTool;
+//# sourceMappingURL=x402-pay.d.ts.map

package/dist/esm/tools/x402-pay.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402-pay.d.ts","sourceRoot":"","sources":["../../../src/tools/x402-pay.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAIH,OAAO,KAAK,EAAE,OAAO,EAAiB,MAAM,aAAa,CAAC;AAc1D,eAAO,MAAM,iBAAiB,EAAE,OAiD/B,CAAC"}

package/dist/esm/tools/x402-pay.js

@@ -0,0 +1,75 @@
+/**
+ * shroud_x402_pay — one-shot HTTP 402 client.
+ *
+ * Fetches a URL; if the server responds 402, the SDK signs an EIP-3009
+ * USDC transferWithAuthorization and retries automatically. Returns the
+ * server's final status, the body (if JSON-decodable), and the settled
+ * tx hash exposed via X-PAYMENT-RESPONSE when present.
+ *
+ * `maxPriceUsdcAtomic` is a hard safety cap. If the server demands more,
+ * the SDK throws X402AmountMismatchError without signing.
+ */
+import { z } from 'zod';
+import { createX402Client } from '@shroud-fi/x402';
+import { McpInvalidArgsError } from '../errors.js';
+import { Uint256StringSchema, toBigInt } from './schema.js';
+const ArgsSchema = z
+    .object({
+    url: z.string().url(),
+    method: z.enum(['GET', 'POST', 'PUT', 'PATCH', 'DELETE']).optional(),
+    body: z.string().optional(),
+    headers: z.record(z.string()).optional(),
+    maxPriceUsdcAtomic: Uint256StringSchema.optional(),
+})
+    .strict();
+export const shroudX402PayTool = {
+    name: 'shroud_x402_pay',
+    description: 'Fetch an HTTP URL. If the server responds 402, the SDK auto-signs EIP-3009 USDC payment using the agent operator wallet and retries. Returns final status, response body (if any), and settled tx hash (if X-PAYMENT-RESPONSE was returned). `maxPriceUsdcAtomic` caps how much the client will pay (base units, 6 decimals).',
+    inputSchema: {
+        type: 'object',
+        additionalProperties: false,
+        properties: {
+            url: { type: 'string' },
+            method: { type: 'string', enum: ['GET', 'POST', 'PUT', 'PATCH', 'DELETE'] },
+            body: { type: 'string' },
+            headers: { type: 'object', additionalProperties: { type: 'string' } },
+            maxPriceUsdcAtomic: { type: 'string', pattern: '^\\d+$' },
+        },
+        required: ['url'],
+    },
+    async handler(ctx, raw) {
+        const parsed = ArgsSchema.safeParse(raw);
+        if (!parsed.success) {
+            throw new McpInvalidArgsError();
+        }
+        const { url, method, body, headers, maxPriceUsdcAtomic } = parsed.data;
+        const client = createX402Client({ transport: ctx.transport });
+        const init = {
+            method: method ?? 'GET',
+            ...(headers !== undefined ? { headers } : {}),
+            ...(body !== undefined ? { body } : {}),
+            ...(maxPriceUsdcAtomic !== undefined
+                ? { maxPriceAtomic: toBigInt(maxPriceUsdcAtomic) }
+                : {}),
+        };
+        const response = await client.fetch(url, init);
+        const text = await response.text();
+        let json;
+        try {
+            json = JSON.parse(text);
+        }
+        catch {
+            json = null;
+        }
+        return {
+            ok: response.ok,
+            status: response.status,
+            bodyText: text.length > 4096 ? text.slice(0, 4096) : text,
+            bodyJson: json,
+            ...(response.x402Settlement !== undefined
+                ? { settledTxHash: response.x402Settlement.txHash }
+                : {}),
+        };
+    },
+};
+//# sourceMappingURL=x402-pay.js.map

package/dist/esm/tools/x402-pay.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402-pay.js","sourceRoot":"","sources":["../../../src/tools/x402-pay.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAEnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAE5D,MAAM,UAAU,GAAG,CAAC;KACjB,MAAM,CAAC;IACN,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE;IACrB,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE;IACpE,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3B,OAAO,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxC,kBAAkB,EAAE,mBAAmB,CAAC,QAAQ,EAAE;CACnD,CAAC;KACD,MAAM,EAAE,CAAC;AAEZ,MAAM,CAAC,MAAM,iBAAiB,GAAY;IACxC,IAAI,EAAE,iBAAiB;IACvB,WAAW,EACT,+TAA+T;IACjU,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ;QACd,oBAAoB,EAAE,KAAK;QAC3B,UAAU,EAAE;YACV,GAAG,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACvB,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,CAAC,EAAE;YAC3E,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,OAAO,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,oBAAoB,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE;YACrE,kBAAkB,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE;SAC1D;QACD,QAAQ,EAAE,CAAC,KAAK,CAAC;KAClB;IACD,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG;QACpB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,mBAAmB,EAAE,CAAC;QAClC,CAAC;QACD,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,kBAAkB,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QACvE,MAAM,MAAM,GAAG,gBAAgB,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,SAAS,EAAE,CAAC,CAAC;QAC9D,MAAM,IAAI,GAA8C;YACtD,MAAM,EAAE,MAAM,IAAI,KAAK;YACvB,GAAG,CAAC,OAAO,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC7C,GAAG,CAAC,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACvC,GAAG,CAAC,kBAAkB,KAAK,SAAS;gBAClC,CAAC,CAAC,EAAE,cAAc,EAAE,QAAQ,CAAC,kBAAkB,CAAC,EAAE;gBAClD,CAAC,CAAC,EAAE,CAAC;SACR,CAAC;QACF,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAC/C,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACnC,IAAI,IAAa,CAAC;QAClB,IAAI,CAAC;YACH,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC1B,CAAC;QAAC,MAAM,CAAC;YACP,IAAI,GAAG,IAAI,CAAC;QACd,CAAC;QACD,OAAO;YACL,EAAE,EAAE,QAAQ,CAAC,EAAE;YACf,MAAM,EAAE,QAAQ,CAAC,MAAM;YACvB,QAAQ,EAAE,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI;YACzD,QAAQ,EAAE,IAAI;YACd,GAAG,CAAC,QAAQ,CAAC,cAAc,KAAK,SAAS;gBACvC,CAAC,CAAC,EAAE,aAAa,EAAE,QAAQ,CAAC,cAAc,CAAC,MAAM,EAAE;gBACnD,CAAC,CAAC,EAAE,CAAC;SACR,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/esm/tools/x402-serve.d.ts

@@ -0,0 +1,17 @@
+/**
+ * shroud_x402_serve — server-side x402 primitives.
+ *
+ * One tool, two ops:
+ *   - op: 'challenge' → mint a 402 challenge bundle (headers + body) the
+ *     caller serves from their own HTTP framework. Each challenge derives a
+ *     FRESH stealth payTo address.
+ *   - op: 'verify' → verify a client's signed X-PAYMENT payload against a
+ *     prior challenge. Skip-facilitator mode by default — caller settles
+ *     the EIP-3009 authorization on-chain themselves.
+ *
+ * Caller is responsible for transport (Express/Fastify/Next/etc) — this
+ * stays framework-agnostic.
+ */
+import type { McpTool } from '../types.js';
+export declare const shroudX402ServeTool: McpTool;
+//# sourceMappingURL=x402-serve.d.ts.map

package/dist/esm/tools/x402-serve.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402-serve.d.ts","sourceRoot":"","sources":["../../../src/tools/x402-serve.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAKH,OAAO,KAAK,EAAE,OAAO,EAAiB,MAAM,aAAa,CAAC;AA+B1D,eAAO,MAAM,mBAAmB,EAAE,OA4FjC,CAAC"}