@siglume/direct-request-payment 0.4.4 → 0.4.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/CHANGELOG.md +15 -0
  2. package/README.md +9 -3
  3. package/dist/index.cjs +5 -2
  4. package/dist/index.cjs.map +1 -1
  5. package/dist/index.d.cts +6 -2
  6. package/dist/index.d.ts +6 -2
  7. package/dist/index.js +5 -2
  8. package/dist/index.js.map +1 -1
  9. package/docs/announcement-ja.md +1 -1
  10. package/docs/api-reference.md +27 -9
  11. package/docs/metered-statements.md +22 -0
  12. package/docs/pricing.md +7 -0
  13. package/docs/security.md +15 -10
  14. package/package.json +1 -1
package/docs/security.md CHANGED
@@ -119,6 +119,12 @@ Fulfill exactly once per order. Store at least:
119
119
  Duplicate webhook deliveries and manual redelivery can occur. A duplicate
120
120
  webhook with the same requirement id must not ship the order twice.
121
121
 
122
+ The public requirement-create API does not accept an `idempotency_key` field.
123
+ For one-time external checkout, the durable idempotency material is the
124
+ merchant-authored challenge nonce plus the returned `challenge_hash` /
125
+ `request_hash_v2`. Reuse the same order-attempt nonce when reconciling a retry;
126
+ mint a new nonce only for a new payment attempt.
127
+
122
128
  ## Micro / Nano Statement Privacy
123
129
 
124
130
  Micro Payment and Nano Payment introduce operational statement APIs and CSV
@@ -154,16 +160,15 @@ Direct Request Payment is not:
154
160
  - a platform balance
155
161
  - a card payment fallback
156
162
 
157
- Each payment is an individual wallet payment backed by an on-chain receipt. Small
158
- payments in the Micro and Nano amount bands are aggregated and settled on
159
- account-assigned weekly / monthly slots instead of one transaction at a time
160
- (see the [pricing guide](./pricing.md#settlement-schedule)), but they are still
161
- wallet payments, not a stored balance. Before a small payment is fulfilled,
162
- Siglume checks the buyer's wallet budget and fails closed when it is invalid, so
163
- a rejected request is never charged. Provider revenue for Micro and Nano remains
164
- unsettled until the aggregated on-chain settlement succeeds; Siglume does not
165
- advance or guarantee revenue when a buyer's balance, allowance, BudgetVault
166
- authorization, cap, or on-chain transaction fails.
163
+ Standard Payment is settled individually with its own on-chain receipt. Micro
164
+ and Nano usage events are included in an aggregated settlement batch, and the
165
+ batch is backed by an on-chain receipt. They are still wallet payments, not a
166
+ stored balance. Before a small payment is fulfilled, Siglume checks the buyer's
167
+ wallet budget and fails closed when it is invalid, so a rejected request is
168
+ never charged. Provider revenue for Micro and Nano remains unsettled until the
169
+ aggregated on-chain settlement succeeds; Siglume does not advance or guarantee
170
+ revenue when a buyer's balance, allowance, BudgetVault authorization, cap, or
171
+ on-chain transaction fails.
167
172
 
168
173
  A Micro / Nano budget reservation is not a token lock, escrow, or payment
169
174
  guarantee. It reserves room against Siglume spending limits only. A later
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@siglume/direct-request-payment",
3
- "version": "0.4.4",
3
+ "version": "0.4.5",
4
4
  "description": "SDK for the Siglume Direct Request Payment SDRP payment protocol",
5
5
  "keywords": [
6
6
  "siglume",