@tongateway/mcp 0.13.0 → 0.19.2

package/README.md

@@ -1,8 +1,10 @@
 # @tongateway/mcp
 
+[![smithery badge](https://smithery.ai/badge/tongateway/agent)](https://smithery.ai/servers/tongateway/agent)
+
 MCP server for [Agent Gateway](https://tongateway.ai) — gives AI agents full access to the TON blockchain via Model Context Protocol.
 
-**14 tools:** wallet info, jettons, NFTs, transactions, transfers, .ton DNS, prices, agent wallets, and more.
+**16 tools:** wallet info, jettons, NFTs, transactions, transfers, .ton DNS, prices, DEX orders, agent wallets, and more.
 
 ## Quick Start
 
@@ -50,7 +52,7 @@ openclaw config set --strict-json plugins.entries.acpx.config.mcpServers '{
 }'
 ```
 
-No token needed upfront — the agent authenticates via `request_auth` (generates a one-time link, user connects wallet). Token persists in `~/.tongateway/token` across restarts.
+No token needed upfront — the agent authenticates via `auth.request` (generates a one-time link, user connects wallet). Token persists in `~/.tongateway/token` across restarts.
 
 ## Tools
 
@@ -58,48 +60,55 @@ No token needed upfront — the agent authenticates via `request_auth` (generate
 
 | Tool | Description |
 |------|-------------|
-| `request_auth` | Generate a one-time link for wallet connection |
-| `get_auth_token` | Retrieve token after user connects wallet |
+| `auth.request` | Generate a one-time link for wallet connection |
+| `auth.get_token` | Retrieve token after user connects wallet |
 
 ### Wallet
 
 | Tool | Description |
 |------|-------------|
-| `get_wallet_info` | Wallet address, TON balance, account status |
-| `get_jetton_balances` | All token balances (USDT, NOT, DOGS, etc.) |
-| `get_transactions` | Recent transaction history |
-| `get_nft_items` | NFTs owned by the wallet |
+| `wallet.info` | Wallet address, TON balance, account status |
+| `wallet.jettons` | All token balances (USDT, NOT, DOGS, etc.) |
+| `wallet.transactions` | Recent transaction history |
+| `wallet.nfts` | NFTs owned by the wallet |
 
 ### Transfers (Safe — requires wallet approval)
 
 | Tool | Description |
 |------|-------------|
-| `request_transfer` | Request a TON transfer (to, amountNano, payload?, stateInit?) |
-| `get_request_status` | Check transfer status by ID |
-| `list_pending_requests` | List all pending requests |
+| `transfer.request` | Request a TON transfer (to, amountNano, payload?, stateInit?) |
+| `transfer.status` | Check transfer status by ID |
+| `transfer.pending` | List all pending requests |
 
 ### Lookup
 
 | Tool | Description |
 |------|-------------|
-| `resolve_name` | Resolve .ton domain to address |
-| `get_ton_price` | Current TON price in USD/EUR |
+| `lookup.resolve_name` | Resolve .ton domain to address |
+| `lookup.price` | Current TON price in USD/EUR |
+
+### DEX (open4dev order book)
+
+| Tool | Description |
+|------|-------------|
+| `dex.create_order` | Place a limit order (fromToken, toToken, amount, price) |
+| `dex.pairs` | List available trading pairs |
 
 ### Agent Wallet (Autonomous — no approval needed)
 
 | Tool | Description |
 |------|-------------|
-| `deploy_agent_wallet` | Deploy a dedicated wallet contract for the agent |
-| `execute_agent_wallet_transfer` | Send TON directly from agent wallet |
-| `get_agent_wallet_info` | Balance, seqno, agent key status |
+| `agent_wallet.deploy` | Deploy a dedicated wallet contract for the agent |
+| `agent_wallet.transfer` | Send TON directly from agent wallet |
+| `agent_wallet.info` | Balance, seqno, agent key status |
 
 ## How it works
 
 ```
 You: "Send 1 TON to alice.ton"
 
-Agent: resolve_name("alice.ton") → 0:83df...
-       request_transfer(to="0:83df...", amountNano="1000000000")
+Agent: lookup.resolve_name("alice.ton") → 0:83df...
+       transfer.request(to="0:83df...", amountNano="1000000000")
        → Transfer request created. Approve in your wallet app.
 ```
 
@@ -108,10 +117,39 @@ For agent wallets (autonomous mode):
 ```
 You: "Send 0.5 TON from my agent wallet to 0:abc..."
 
-Agent: execute_agent_wallet_transfer(wallet, to, amount)
+Agent: agent_wallet.transfer(wallet, to, amount)
        → Transfer executed. No approval needed.
 ```
 
+## Build from Source
+
+If you prefer not to use `npx`, you can build and run locally:
+
+```bash
+git clone https://github.com/tongateway/mcp
+cd mcp
+npm install
+npm run build
+```
+
+Then configure your MCP client to use the local build:
+
+```json
+{
+  "mcpServers": {
+    "tongateway": {
+      "command": "node",
+      "args": ["/path/to/mcp/dist/index.js"],
+      "env": {
+        "AGENT_GATEWAY_API_URL": "https://api.tongateway.ai"
+      }
+    }
+  }
+}
+```
+
+See [SECURITY.md](SECURITY.md) for the full security model.
+
 ## Links
 
 - [tongateway.ai](https://tongateway.ai) — landing page + install guides
@@ -119,6 +157,8 @@ Agent: execute_agent_wallet_transfer(wallet, to, amount)
 - [API Docs](https://api.tongateway.ai/docs) — Swagger UI
 - [Agent Wallet Contract](https://github.com/tongateway/ton-agent-gateway-contract) — FunC smart contract
 - [Skill File](https://tongateway.ai/agent-gateway.md) — context file for AI agents
+- [Smithery](https://smithery.ai/servers/tongateway/agent) — MCP marketplace listing
+- [MCP HTTP Endpoint](https://tongateway.run.tools) — remote MCP transport
 
 ## License
 

package/dist/index.js

@@ -1,4 +1,33 @@
 #!/usr/bin/env node
+// Handle --help and --version before importing anything
+if (process.argv.includes('--help') || process.argv.includes('-h')) {
+    console.log(`@tongateway/mcp — TON blockchain gateway for AI agents
+
+Usage:
+  npx @tongateway/mcp              Start MCP server (stdio transport)
+  npx @tongateway/mcp --http       Start HTTP server (port 3100)
+
+Environment variables:
+  AGENT_GATEWAY_API_URL   API base URL (default: https://api.tongateway.ai)
+  AGENT_GATEWAY_TOKEN     Pre-configured auth token (optional)
+  MCP_HTTP_PORT           HTTP server port (default: 3100 with --http)
+
+Tools (16):
+  auth.request, auth.get_token
+  wallet.info, wallet.jettons, wallet.transactions, wallet.nfts
+  transfer.request, transfer.status, transfer.pending
+  lookup.resolve_name, lookup.price
+  dex.create_order, dex.pairs
+  agent_wallet.deploy, agent_wallet.transfer, agent_wallet.info
+
+Docs: https://tongateway.ai/docs
+GitHub: https://github.com/tongateway/mcp`);
+    process.exit(0);
+}
+if (process.argv.includes('--version') || process.argv.includes('-v')) {
+    console.log('0.15.0');
+    process.exit(0);
+}
 import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
 import { StreamableHTTPServerTransport } from '@modelcontextprotocol/sdk/server/streamableHttp.js';
@@ -69,9 +98,9 @@ const server = new McpServer({
     name: 'agent-gateway',
     version: '0.1.0',
 });
-server.tool('request_auth', 'Authenticate with TON blockchain. Call this FIRST if you get "No token configured" errors. Generates a one-time link — ask the user to open it and connect their wallet. Then call get_auth_token to complete. Token persists across restarts.', {
+server.tool('auth.request', 'Authenticate with TON blockchain. Call this tool FIRST if you get "No token configured" errors. It returns a URL that you MUST display to the user as a clickable link. The user opens it in their browser to connect their wallet. After they confirm, call auth.get_token with the authId. Do NOT use curl or fetch — use this MCP tool. Do NOT poll in a loop — just call auth.get_token once after the user says they connected.', {
     label: z.string().optional().describe('Label for this agent session (e.g. "claude-agent")'),
-}, async ({ label }) => {
+}, { title: 'Request Authentication', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async ({ label }) => {
     try {
         const result = await fetch(`${API_URL}/v1/auth/request`, {
             method: 'POST',
@@ -86,15 +115,15 @@ server.tool('request_auth', 'Authenticate with TON blockchain. Call this FIRST i
                 {
                     type: 'text',
                     text: [
-                        `Authentication requested.`,
+                        `IMPORTANT: Show this link to the user NOW:`,
+                        ``,
+                        `👉 ${data.authUrl}`,
                         ``,
-                        `Ask the user to open this link:`,
-                        data.authUrl,
+                        `Tell the user: "Open this link and connect your wallet. Let me know when done."`,
                         ``,
                         `Auth ID: ${data.authId}`,
-                        `Expires: ${new Date(data.expiresAt).toISOString()}`,
                         ``,
-                        `After the user connects their wallet, call get_auth_token with this authId to get the token.`,
+                        `When the user confirms they connected, call auth.get_token with authId "${data.authId}"`,
                     ].join('\n'),
                 },
             ],
@@ -107,9 +136,9 @@ server.tool('request_auth', 'Authenticate with TON blockchain. Call this FIRST i
         };
     }
 });
-server.tool('get_auth_token', 'Complete authentication after the user opened the link from request_auth. Pass the authId you received. Once successful, all other tools become available. You only need to authenticate once — the token is saved automatically.', {
-    authId: z.string().describe('The authId returned by request_auth'),
-}, async ({ authId }) => {
+server.tool('auth.get_token', 'Complete authentication after the user opened the link from auth.request. Pass the authId you received. Once successful, all other tools become available. You only need to authenticate once — the token is saved automatically.', {
+    authId: z.string().describe('The authId returned by auth.request'),
+}, { title: 'Get Auth Token', readOnlyHint: false, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async ({ authId }) => {
     try {
         // Retry up to 3 times with 2s delay (KV eventual consistency)
         let data = null;
@@ -134,7 +163,7 @@ server.tool('get_auth_token', 'Complete authentication after the user opened the
                             `Authentication still pending.`,
                             `The user has not connected their wallet yet.`,
                             ``,
-                            `Wait a moment and call get_auth_token again.`,
+                            `Wait a moment and call auth.get_token again.`,
                         ].join('\n'),
                     },
                 ],
@@ -152,7 +181,7 @@ server.tool('get_auth_token', 'Complete authentication after the user opened the
                         `Token received and configured.`,
                         `Wallet: ${data.address}`,
                         ``,
-                        `You can now use request_transfer, get_request_status, and list_pending_requests.`,
+                        `You can now use transfer.request, transfer.status, and transfer.pending.`,
                     ].join('\n'),
                 },
             ],
@@ -165,20 +194,23 @@ server.tool('get_auth_token', 'Complete authentication after the user opened the
         };
     }
 });
-server.tool('request_transfer', 'Request a TON transfer. The user must approve it in their wallet app. Amount is in nanoTON (1 TON = 1000000000). Supports optional payload (BOC) and stateInit (for contract deployment). The transfer is queued — use get_request_status to check if approved.', {
-    to: z.string().describe('Destination TON address'),
-    amountNano: z.string().describe('Amount in nanoTON (1 TON = 1000000000)'),
-    payload: z.string().optional().describe('Optional BOC-encoded payload for the transaction'),
-    stateInit: z.string().optional().describe('Optional stateInit BOC for deploying new contracts'),
-}, async ({ to, amountNano, payload, stateInit }) => {
+server.tool('transfer.request', 'Send a TON transfer. The user approves in their wallet app. Use human-readable amounts (e.g. amount="1.5"). Supports .ton domain names directly (e.g. to="alice.ton"). The API handles name resolution and decimal conversion automatically.', {
+    to: z.string().describe('Destination: TON address or .ton domain (e.g. "alice.ton" or "EQD...abc")'),
+    amount: z.string().describe('Human-readable amount (e.g. "1.5" for 1.5 TON, "100" for 100 TON)'),
+    comment: z.string().optional().describe('Text comment/message to attach (e.g. "Payment for services")'),
+    payload: z.string().optional().describe('Optional BOC-encoded payload (advanced — use comment for text)'),
+    stateInit: z.string().optional().describe('Optional stateInit BOC for contract deployment'),
+}, { title: 'Request Transfer', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async ({ to, amount, comment, payload, stateInit }) => {
     if (!TOKEN) {
         return {
-            content: [{ type: 'text', text: 'No token configured. Use request_auth first to authenticate.' }],
+            content: [{ type: 'text', text: 'No token configured. Use auth.request first to authenticate.' }],
             isError: true,
         };
     }
     try {
-        const body = { to, amountNano };
+        const body = { to, amount };
+        if (comment)
+            body.comment = comment;
         if (payload)
             body.payload = payload;
         if (stateInit)
@@ -194,13 +226,13 @@ server.tool('request_transfer', 'Request a TON transfer. The user must approve i
                     text: [
                         `Transfer request created.`,
                         `ID: ${result.id}`,
-                        `To: ${result.to}`,
-                        `Amount: ${result.amountNano} nanoTON`,
+                        `To: ${result.resolved ? `${result.resolved.from} → ${result.resolved.to}` : result.to}`,
+                        `Amount: ${amount} TON (${result.amountNano} nanoTON)`,
                         `Status: ${result.status}`,
-                        `Expires: ${new Date(result.expiresAt).toISOString()}`,
+                        comment ? `Comment: ${comment}` : null,
                         ``,
-                        `The wallet owner must approve this in their TON Connect client.`,
-                    ].join('\n'),
+                        `Approve in your wallet app.`,
+                    ].filter(Boolean).join('\n'),
                 },
             ],
         };
@@ -212,12 +244,12 @@ server.tool('request_transfer', 'Request a TON transfer. The user must approve i
         };
     }
 });
-server.tool('get_request_status', 'Check the status of a transfer request. Statuses: pending (waiting for approval), confirmed (signed and broadcast), rejected (user declined), expired (5 min timeout). Also shows broadcast result if available.', {
-    id: z.string().describe('The request ID returned by request_transfer'),
-}, async ({ id }) => {
+server.tool('transfer.status', 'Check the status of a transfer request. Statuses: pending (waiting for approval), confirmed (signed and broadcast), rejected (user declined), expired (5 min timeout). Also shows broadcast result if available.', {
+    id: z.string().describe('The request ID returned by transfer.request'),
+}, { title: 'Transfer Status', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async ({ id }) => {
     if (!TOKEN) {
         return {
-            content: [{ type: 'text', text: 'No token configured. Use request_auth first to authenticate.' }],
+            content: [{ type: 'text', text: 'No token configured. Use auth.request first to authenticate.' }],
             isError: true,
         };
     }
@@ -251,10 +283,10 @@ server.tool('get_request_status', 'Check the status of a transfer request. Statu
         };
     }
 });
-server.tool('list_pending_requests', 'List all transfer requests waiting for wallet owner approval. Use to check if there are unfinished transfers.', {}, async () => {
+server.tool('transfer.pending', 'List all transfer requests waiting for wallet owner approval. Use to check if there are unfinished transfers.', {}, { title: 'Pending Transfers', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => {
     if (!TOKEN) {
         return {
-            content: [{ type: 'text', text: 'No token configured. Use request_auth first to authenticate.' }],
+            content: [{ type: 'text', text: 'No token configured. Use auth.request first to authenticate.' }],
             isError: true,
         };
     }
@@ -283,9 +315,59 @@ server.tool('list_pending_requests', 'List all transfer requests waiting for wal
         };
     }
 });
-server.tool('get_wallet_info', 'Get the connected wallet address, TON balance (in nanoTON and TON), and account status. Use this to check how much TON the user has before sending transfers.', {}, async () => {
+server.tool('transfer.batch', 'Send multiple TON transfers in a SINGLE wallet approval. Up to 4 transfers per batch (v4 wallet). All transfers appear as one transaction to sign. Use for batch payments, multi-recipient sends, or multiple DEX orders at once.', {
+    transfers: z.string().describe('JSON array of transfers: [{"to":"addr","amountNano":"1000000000","comment":"optional text"},...]'),
+}, { title: 'Batch Transfer', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async ({ transfers: transfersJson }) => {
+    if (!TOKEN) {
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
+    }
+    try {
+        const transfers = JSON.parse(transfersJson);
+        if (!transfers.length)
+            throw new Error('No transfers provided');
+        if (transfers.length > 4)
+            throw new Error('Max 4 transfers per batch (v4 wallet). Use agent_wallet.batch_transfer for more.');
+        // Encode comments as payloads
+        const processed = [];
+        for (const t of transfers) {
+            const entry = { to: t.to, amountNano: t.amountNano };
+            if (t.comment) {
+                const { beginCell } = await import('@ton/core');
+                const commentCell = beginCell().storeUint(0, 32).storeStringTail(t.comment).endCell();
+                entry.payload = commentCell.toBoc().toString('base64');
+            }
+            processed.push(entry);
+        }
+        const result = await apiCall('/v1/safe/tx/batch', {
+            method: 'POST',
+            body: JSON.stringify({ transfers: processed }),
+        });
+        const totalNano = BigInt(result.batch?.totalNano ?? '0');
+        const totalTon = (totalNano / 1000000000n).toString() + '.' +
+            (totalNano % 1000000000n).toString().padStart(9, '0').replace(/0+$/, '') || '0';
+        return {
+            content: [{
+                    type: 'text',
+                    text: [
+                        `Batch transfer created! ${transfers.length} transfers in 1 approval.`,
+                        '',
+                        `Total: ${totalTon} TON`,
+                        `Request ID: ${result.id}`,
+                        '',
+                        ...transfers.map((t, i) => `  ${i + 1}. ${t.amountNano} nanoTON → ${t.to.slice(0, 16)}...${t.comment ? ` "${t.comment}"` : ''}`),
+                        '',
+                        'Approve in your wallet app — one signature for all transfers.',
+                    ].join('\n'),
+                }],
+        };
+    }
+    catch (e) {
+        return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
+    }
+});
+server.tool('wallet.info', 'Get the connected wallet address, TON balance (in nanoTON and TON), and account status. Use this to check how much TON the user has before sending transfers.', {}, { title: 'Wallet Info', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         const result = await apiCall('/v1/wallet/balance');
@@ -306,9 +388,9 @@ server.tool('get_wallet_info', 'Get the connected wallet address, TON balance (i
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('get_jetton_balances', 'List all tokens (jettons) in the wallet — USDT, NOT, DOGS, and others. Shows symbol, name, balance, and decimals for each. Use this when the user asks about their tokens or wants to know what they hold.', {}, async () => {
+server.tool('wallet.jettons', 'List all tokens (jettons) in the wallet — USDT, NOT, DOGS, and others. Shows symbol, name, balance, and decimals for each. Use this when the user asks about their tokens or wants to know what they hold.', {}, { title: 'Jetton Balances', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         const result = await apiCall('/v1/wallet/jettons');
@@ -331,11 +413,11 @@ server.tool('get_jetton_balances', 'List all tokens (jettons) in the wallet —
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('get_transactions', 'Get recent transaction history. Shows timestamps, action types, and whether transactions were flagged as scam. Use when the user asks "what happened" or wants to review recent activity.', {
+server.tool('wallet.transactions', 'Get recent transaction history. Shows timestamps, action types, and whether transactions were flagged as scam. Use when the user asks "what happened" or wants to review recent activity.', {
     limit: z.number().optional().describe('Number of transactions to return (default 10)'),
-}, async ({ limit }) => {
+}, { title: 'Transaction History', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async ({ limit }) => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         const result = await apiCall(`/v1/wallet/transactions?limit=${limit ?? 10}`);
@@ -356,9 +438,9 @@ server.tool('get_transactions', 'Get recent transaction history. Shows timestamp
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('get_nft_items', 'List all NFTs owned by the wallet — name, collection, and address for each. Use when the user asks about their NFTs or collectibles.', {}, async () => {
+server.tool('wallet.nfts', 'List all NFTs owned by the wallet — name, collection, and address for each. Use when the user asks about their NFTs or collectibles.', {}, { title: 'NFT Items', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         const result = await apiCall('/v1/wallet/nfts');
@@ -375,9 +457,9 @@ server.tool('get_nft_items', 'List all NFTs owned by the wallet — name, collec
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('resolve_name', 'Resolve a .ton domain name (like "alice.ton") to a raw wallet address. ALWAYS use this before request_transfer when the user gives a .ton name instead of a raw address.', {
+server.tool('lookup.resolve_name', 'Resolve a .ton domain name (like "alice.ton") to a raw wallet address. ALWAYS use this before transfer.request when the user gives a .ton name instead of a raw address.', {
     domain: z.string().describe('The .ton domain name to resolve (e.g. "alice.ton")'),
-}, async ({ domain }) => {
+}, { title: 'Resolve .ton Name', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async ({ domain }) => {
     try {
         const result = await fetch(`${API_URL}/v1/dns/${encodeURIComponent(domain)}/resolve`);
         const data = await result.json();
@@ -394,9 +476,9 @@ server.tool('resolve_name', 'Resolve a .ton domain name (like "alice.ton") to a
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('get_ton_price', 'Get the current TON price in USD, EUR, or other currencies. Use when the user asks "how much is my TON worth" or before transfers to show USD equivalents.', {
+server.tool('lookup.price', 'Get the current TON price in USD, EUR, or other currencies. Use when the user asks "how much is my TON worth" or before transfers to show USD equivalents.', {
     currencies: z.string().optional().describe('Comma-separated currencies (default "USD")'),
-}, async ({ currencies }) => {
+}, { title: 'TON Price', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async ({ currencies }) => {
     try {
         const curr = currencies || 'USD';
         const result = await fetch(`${API_URL}/v1/market/price?tokens=TON&currencies=${curr}`);
@@ -413,14 +495,14 @@ server.tool('get_ton_price', 'Get the current TON price in USD, EUR, or other cu
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('create_dex_order', 'Place a limit order on the open4dev DEX order book. Provide the token pair, amount in smallest units, and price in human-readable format (e.g. price=20 means "1 fromToken = 20 toToken"). The API handles all decimal conversions and slippage automatically. The order requires wallet approval.', {
+server.tool('dex.create_order', 'Place a limit order on the open4dev DEX order book. Both amount and price are human-readable — the API converts to raw units automatically. The order requires wallet approval. Slippage (4% including fees) is applied automatically.', {
     fromToken: z.string().describe('Token to sell, e.g. "NOT", "TON", "USDT"'),
     toToken: z.string().describe('Token to buy, e.g. "TON", "NOT", "AGNT"'),
-    amount: z.string().describe('Amount to sell in smallest unit. TON/NOT/DOGS/BUILD/AGNT use 9 decimals (1 TON = 10^9). USDT/XAUT0 use 6 decimals (1 USDT = 10^6).'),
-    price: z.number().describe('Human-readable price: how many toToken per 1 fromToken. E.g. price=20 means "1 USDT = 20 AGNT". price=0.05 means "1 AGNT = 0.05 USDT".'),
-}, async ({ fromToken, toToken, amount, price }) => {
+    amount: z.string().describe('Human-readable amount to sell, e.g. "10000" for 10,000 NOT or "5" for 5 USDT'),
+    price: z.number().describe('Human-readable price: how many toToken per 1 fromToken. E.g. price=20 means "1 USDT = 20 AGNT". price=0.000289 means "1 NOT = 0.000289 TON".'),
+}, { title: 'Create DEX Order', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async ({ fromToken, toToken, amount, price }) => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         const result = await apiCall('/v1/dex/order', {
@@ -448,7 +530,7 @@ server.tool('create_dex_order', 'Place a limit order on the open4dev DEX order b
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('list_dex_pairs', 'List available trading pairs on the DEX. Shows which token swaps are configured and available.', {}, async () => {
+server.tool('dex.pairs', 'List available trading pairs on the DEX. Shows which token swaps are configured and available.', {}, { title: 'DEX Pairs', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => {
     try {
         const result = await fetch(`${API_URL}/v1/dex/pairs`);
         const data = await result.json();
@@ -464,9 +546,9 @@ server.tool('list_dex_pairs', 'List available trading pairs on the DEX. Shows wh
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('deploy_agent_wallet', 'Deploy an Agent Wallet smart contract — a dedicated sub-wallet for autonomous operations. WARNING: The agent can spend funds from this wallet WITHOUT user approval. Only deploy if the user explicitly wants autonomous transfers. After deployment, top up the wallet with funds.', {}, async () => {
+server.tool('agent_wallet.deploy', 'Deploy an Agent Wallet smart contract — a dedicated sub-wallet for autonomous operations. WARNING: The agent can spend funds from this wallet WITHOUT user approval. Only deploy if the user explicitly wants autonomous transfers. After deployment, top up the wallet with funds.', {}, { title: 'Deploy Agent Wallet', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async () => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         // Get owner's public key
@@ -547,13 +629,13 @@ server.tool('deploy_agent_wallet', 'Deploy an Agent Wallet smart contract — a
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('execute_agent_wallet_transfer', 'Send TON directly from an Agent Wallet — NO approval needed. The agent signs and broadcasts immediately. Only works with deployed agent wallets. Use for automated/autonomous transfers where speed matters and the user has opted in.', {
+server.tool('agent_wallet.transfer', 'Send TON directly from an Agent Wallet — NO approval needed. The agent signs and broadcasts immediately. Only works with deployed agent wallets. Use for automated/autonomous transfers where speed matters and the user has opted in.', {
     walletAddress: z.string().describe('The agent wallet contract address'),
     to: z.string().describe('Destination TON address'),
     amountNano: z.string().describe('Amount in nanoTON'),
-}, async ({ walletAddress, to, amountNano }) => {
+}, { title: 'Agent Wallet Transfer', readOnlyHint: false, destructiveHint: true, idempotentHint: false, openWorldHint: true }, async ({ walletAddress, to, amountNano }) => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         const { Cell, beginCell, Address, SendMode, external, storeMessage } = await import('@ton/core');
@@ -644,11 +726,112 @@ server.tool('execute_agent_wallet_transfer', 'Send TON directly from an Agent Wa
         return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
     }
 });
-server.tool('get_agent_wallet_info', 'Get info about Agent Wallets — balance, seqno, agent key status. Pass a wallet address for details, or omit to list all agent wallets.', {
+server.tool('agent_wallet.batch_transfer', 'Send multiple TON transfers in a SINGLE transaction from an Agent Wallet — NO approval needed. All transfers are executed atomically in one external message. Max 255 actions per transaction.', {
+    walletAddress: z.string().describe('The agent wallet contract address'),
+    transfers: z.string().describe('JSON array of transfers: [{"to":"addr","amountNano":"1000000000"},...]'),
+}, { title: 'Batch Transfer from Agent Wallet', readOnlyHint: false, destructiveHint: true, idempotentHint: false, openWorldHint: true }, async ({ walletAddress, transfers: transfersJson }) => {
+    if (!TOKEN) {
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
+    }
+    try {
+        const { Cell, beginCell, Address, SendMode, external, storeMessage } = await import('@ton/core');
+        const { sign, keyPairFromSeed } = await import('@ton/crypto');
+        const transfers = JSON.parse(transfersJson);
+        if (!transfers.length)
+            throw new Error('No transfers provided');
+        if (transfers.length > 255)
+            throw new Error('Max 255 transfers per batch');
+        const localWallets = loadLocalWallets();
+        const localConfig = localWallets[walletAddress];
+        if (!localConfig)
+            throw new Error('Agent wallet secret key not found locally.');
+        const infoResult = await apiCall(`/v1/agent-wallet/${encodeURIComponent(walletAddress)}/info`);
+        const seqno = infoResult.seqno;
+        const walletId = localConfig.walletId;
+        const secretKeyBuf = Buffer.from(localConfig.agentSecretKey, 'hex');
+        let secretKey;
+        if (secretKeyBuf.length === 64) {
+            secretKey = secretKeyBuf;
+        }
+        else {
+            const kp = keyPairFromSeed(secretKeyBuf);
+            secretKey = kp.secretKey;
+        }
+        // Build actions list with all transfers
+        const sendMode = SendMode.PAY_GAS_SEPARATELY + SendMode.IGNORE_ERRORS;
+        let actionsList = beginCell().endCell(); // empty tail
+        for (const t of transfers) {
+            const destAddr = Address.parse(t.to);
+            const transferMsg = beginCell()
+                .storeUint(0x18, 6)
+                .storeAddress(destAddr)
+                .storeCoins(BigInt(t.amountNano))
+                .storeUint(0, 1 + 4 + 4 + 64 + 32 + 1 + 1)
+                .endCell();
+            actionsList = beginCell()
+                .storeRef(actionsList)
+                .storeUint(0x0ec3c86d, 32)
+                .storeUint(sendMode, 8)
+                .storeRef(transferMsg)
+                .endCell();
+        }
+        // Build and sign external message
+        const validUntil = Math.floor(Date.now() / 1000) + 300;
+        const unsignedBody = beginCell()
+            .storeUint(0x7369676e, 32)
+            .storeUint(walletId, 32)
+            .storeUint(validUntil, 32)
+            .storeUint(seqno, 32)
+            .storeMaybeRef(actionsList)
+            .endCell();
+        const signature = sign(unsignedBody.hash(), secretKey);
+        const signedBody = beginCell()
+            .storeSlice(unsignedBody.beginParse())
+            .storeBuffer(signature)
+            .endCell();
+        const vaultAddr = Address.parse(walletAddress);
+        const extMsg = external({ to: vaultAddr, body: signedBody });
+        const boc = beginCell().store(storeMessage(extMsg)).endCell().toBoc().toString('base64');
+        // Broadcast
+        const broadcastRes = await fetch('https://toncenter.com/api/v2/sendBoc', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ boc }),
+        });
+        const broadcastData = await broadcastRes.json();
+        if (!broadcastData.ok) {
+            throw new Error(`Broadcast failed: ${broadcastData.error || JSON.stringify(broadcastData)}`);
+        }
+        const totalNano = transfers.reduce((sum, t) => sum + BigInt(t.amountNano), 0n);
+        const totalTon = (totalNano / 1000000000n).toString() + '.' +
+            (totalNano % 1000000000n).toString().padStart(9, '0').replace(/0+$/, '');
+        return {
+            content: [{
+                    type: 'text',
+                    text: [
+                        `Batch transfer executed! ${transfers.length} transfers in 1 transaction.`,
+                        '',
+                        `From: ${walletAddress}`,
+                        `Total: ${totalTon} TON`,
+                        `Transfers: ${transfers.length}`,
+                        `Seqno: ${seqno}`,
+                        '',
+                        ...transfers.map((t, i) => `  ${i + 1}. ${t.amountNano} nanoTON → ${t.to.slice(0, 12)}...`),
+                        '',
+                        'All broadcast successfully. No approval needed.',
+                    ].join('\n'),
+                }],
+        };
+    }
+    catch (e) {
+        return { content: [{ type: 'text', text: `Error: ${e.message}` }], isError: true };
+    }
+});
+server.tool('agent_wallet.info', 'Get info about Agent Wallets — balance, seqno, agent key status. Pass a wallet address for details, or omit to list all agent wallets.', {
     walletAddress: z.string().optional().describe('Agent wallet address. If omitted, lists all your agent wallets.'),
-}, async ({ walletAddress }) => {
+}, { title: 'Agent Wallet Info', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async ({ walletAddress }) => {
     if (!TOKEN) {
-        return { content: [{ type: 'text', text: 'No token configured. Use request_auth first.' }], isError: true };
+        return { content: [{ type: 'text', text: 'No token configured. Use auth.request first.' }], isError: true };
     }
     try {
         if (!walletAddress) {
@@ -656,7 +839,7 @@ server.tool('get_agent_wallet_info', 'Get info about Agent Wallets — balance,
             const result = await apiCall('/v1/agent-wallet/list');
             const wallets = result.wallets || [];
             if (!wallets.length) {
-                return { content: [{ type: 'text', text: 'No agent wallets found. Use deploy_agent_wallet to create one.' }] };
+                return { content: [{ type: 'text', text: 'No agent wallets found. Use agent_wallet.deploy to create one.' }] };
             }
             const lines = wallets.map((w) => `- ${w.address} (created ${new Date(w.createdAt).toISOString()})`);
             return {
@@ -700,7 +883,7 @@ if (httpPort) {
         // Health check
         if (req.method === 'GET' && req.url === '/health') {
             res.writeHead(200, { 'Content-Type': 'application/json' });
-            res.end(JSON.stringify({ ok: true, version: '0.12.0' }));
+            res.end(JSON.stringify({ ok: true, version: '0.14.0' }));
             return;
         }
         // MCP endpoint

package/dist/worker.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Cloudflare Worker — MCP HTTP transport for Smithery and remote clients.
+ * Mirrors all 16 tools from the stdio version with full descriptions and annotations.
+ */
+declare const _default: {
+    fetch(request: Request): Promise<Response>;
+};
+export default _default;

package/dist/worker.js

@@ -0,0 +1,260 @@
+/**
+ * Cloudflare Worker — MCP HTTP transport for Smithery and remote clients.
+ * Mirrors all 16 tools from the stdio version with full descriptions and annotations.
+ */
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import { WebStandardStreamableHTTPServerTransport } from '@modelcontextprotocol/sdk/server/webStandardStreamableHttp.js';
+import { z } from 'zod';
+const VERSION = '0.14.0';
+function createMcpServer() {
+    const server = new McpServer({
+        name: 'tongateway',
+        version: VERSION,
+    });
+    // --- Auth ---
+    server.tool('auth.request', 'Authenticate with TON blockchain. Generates a one-time link for the user to connect their wallet. After the user opens the link, call auth.get_token to complete authentication.', { label: z.string().optional().describe('Label for this agent session, e.g. "claude-agent"') }, { title: 'Request Authentication', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport (npx @tongateway/mcp) for full tool execution.' }] }));
+    server.tool('auth.get_token', 'Complete authentication after the user opened the link from auth.request. Returns the token which enables all other tools.', { authId: z.string().describe('The authId returned by auth.request') }, { title: 'Get Auth Token', readOnlyHint: false, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    // --- Wallet ---
+    server.tool('wallet.info', 'Get the connected wallet address, TON balance in nanoTON and human-readable format, and account status (active/uninitialized).', {}, { title: 'Wallet Info', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('wallet.jettons', 'List all jetton (token) balances in the wallet — USDT, NOT, DOGS, BUILD, and others. Returns symbol, name, balance, and decimals for each token.', {}, { title: 'Jetton Balances', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('wallet.transactions', 'Get recent transaction history for the connected wallet. Shows timestamps, action types, and scam flags.', { limit: z.number().optional().describe('Number of transactions to return (default 10, max 100)') }, { title: 'Transaction History', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('wallet.nfts', 'List all NFTs owned by the connected wallet — name, collection name, and contract address for each.', {}, { title: 'NFT Items', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    // --- Transfers ---
+    server.tool('transfer.request', 'Request a TON transfer that the wallet owner must approve. Amount is in nanoTON (1 TON = 1000000000). Supports optional payload BOC and stateInit for contract deployment. Use transfer.status to check approval.', {
+        to: z.string().describe('Destination TON address (raw format 0:abc... or friendly EQ...)'),
+        amountNano: z.string().describe('Amount in nanoTON. 1 TON = 1000000000 nanoTON'),
+        payload: z.string().optional().describe('Optional BOC-encoded payload for the transaction'),
+        stateInit: z.string().optional().describe('Optional stateInit BOC for deploying new smart contracts'),
+    }, { title: 'Request Transfer', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('transfer.status', 'Check the status of a transfer request. Returns: pending (waiting for approval), confirmed (signed and broadcast), rejected (user declined), or expired (5 min timeout). Also shows broadcast result if available.', { id: z.string().describe('The request ID returned by transfer.request') }, { title: 'Transfer Status', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('transfer.pending', 'List all transfer requests currently waiting for wallet owner approval.', {}, { title: 'Pending Transfers', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    // --- Lookup ---
+    server.tool('lookup.resolve_name', 'Resolve a .ton domain name (e.g. "alice.ton") to a raw wallet address. Always use this before transfer.request when the user provides a .ton name.', { domain: z.string().describe('The .ton domain name to resolve, e.g. "alice.ton" or "foundation.ton"') }, { title: 'Resolve .ton Name', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('lookup.price', 'Get the current price of TON in USD, EUR, or other fiat currencies. Use to show users the value of their holdings.', { currencies: z.string().optional().describe('Comma-separated currency codes, e.g. "USD,EUR". Default: "USD"') }, { title: 'TON Price', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    // --- DEX ---
+    server.tool('dex.create_order', 'Place a limit order on the open4dev DEX order book. Both amount and price are human-readable. The API converts to raw units, handles slippage (4% including fees), and gas automatically.', {
+        fromToken: z.string().describe('Token to sell: TON, NOT, USDT, DOGS, BUILD, AGNT, CBBTC, PX, XAUT0'),
+        toToken: z.string().describe('Token to buy: TON, NOT, USDT, DOGS, BUILD, AGNT, CBBTC, PX, XAUT0'),
+        amount: z.string().describe('Human-readable amount to sell, e.g. "10000" for 10,000 NOT or "5" for 5 USDT'),
+        price: z.number().describe('Human-readable price: how many toToken per 1 fromToken. E.g. price=20 means "1 USDT = 20 AGNT".'),
+    }, { title: 'Create DEX Order', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('dex.pairs', 'List all available trading pairs and tokens on the open4dev DEX. Returns supported tokens: TON, NOT, USDT, DOGS, BUILD, AGNT, CBBTC, PX, XAUT0.', {}, { title: 'DEX Pairs', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    // --- Agent Wallet ---
+    server.tool('agent_wallet.deploy', 'Deploy an Agent Wallet smart contract — a dedicated sub-wallet for autonomous transfers without approval. WARNING: The agent can spend all funds in this wallet without user confirmation. Only deploy when the user explicitly requests autonomous mode.', {}, { title: 'Deploy Agent Wallet', readOnlyHint: false, destructiveHint: false, idempotentHint: false, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('agent_wallet.transfer', 'Send TON directly from an Agent Wallet — NO approval needed. Signs and broadcasts the transaction immediately. Only works with deployed agent wallets where the agent key is authorized.', {
+        walletAddress: z.string().describe('The agent wallet contract address'),
+        to: z.string().describe('Destination TON address'),
+        amountNano: z.string().describe('Amount in nanoTON (1 TON = 1000000000)'),
+    }, { title: 'Agent Wallet Transfer', readOnlyHint: false, destructiveHint: true, idempotentHint: false, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    server.tool('agent_wallet.info', 'Get info about Agent Wallets — balance, seqno, and agent key status. Pass a wallet address for details, or omit to list all your agent wallets.', { walletAddress: z.string().optional().describe('Agent wallet address. Omit to list all wallets.') }, { title: 'Agent Wallet Info', readOnlyHint: true, destructiveHint: false, idempotentHint: true, openWorldHint: true }, async () => ({ content: [{ type: 'text', text: 'Use stdio transport for full tool execution.' }] }));
+    // --- Prompts ---
+    server.prompt('quickstart', 'How to get started with Agent Gateway on TON blockchain', async () => ({
+        messages: [{
+                role: 'user',
+                content: {
+                    type: 'text',
+                    text: `# Quick Start
+
+## Install
+\`\`\`bash
+claude mcp add-json tongateway '{"command":"npx","args":["-y","@tongateway/mcp"],"env":{"AGENT_GATEWAY_API_URL":"https://api.tongateway.ai"}}' --scope user
+\`\`\`
+
+## First use
+The agent authenticates automatically — it generates a link, you open it and connect your wallet once. Token persists across restarts.
+
+## Try these commands:
+- "What's my TON balance?"
+- "Show my tokens"
+- "Send 1 TON to alice.ton"
+- "What's the current TON price?"
+- "Show my NFTs"`,
+                },
+            }],
+    }));
+    server.prompt('token-reference', 'Amount conversion and token decimals reference', async () => ({
+        messages: [{
+                role: 'user',
+                content: {
+                    type: 'text',
+                    text: `# Token Reference
+
+## Amount conversion (nanoTON)
+| TON   | nanoTON        |
+|-------|----------------|
+| 0.1   | 100000000      |
+| 0.5   | 500000000      |
+| 1     | 1000000000     |
+| 10    | 10000000000    |
+
+## Token decimals
+- 9 decimals: TON, NOT, DOGS, BUILD, AGNT, PX, CBBTC
+- 6 decimals: USDT, XAUT0
+
+## DEX price format
+Price is human-readable: price=20 means "1 fromToken = 20 toToken"
+Example: USDT→AGNT at price=20 means "1 USDT = 20 AGNT"`,
+                },
+            }],
+    }));
+    server.prompt('example-transfer', 'Example: Send TON to a .ton domain with price check', async () => ({
+        messages: [{
+                role: 'user',
+                content: {
+                    type: 'text',
+                    text: `# Example: Send TON to alice.ton
+
+## Step 1: Check balance
+wallet.info()
+→ Address: 0:9d43...0c02, Balance: 823.18 TON, Status: active
+
+## Step 2: Check price
+lookup.price({ currencies: "USD" })
+→ 1 TON = $2.45 USD
+
+## Step 3: Resolve .ton domain
+lookup.resolve_name({ domain: "alice.ton" })
+→ alice.ton → 0:83df...31a8
+
+## Step 4: Send transfer
+transfer.request({ to: "0:83df...31a8", amountNano: "500000000" })
+→ Transfer request created (ID: abc-123). Approve in your wallet app.
+
+## Step 5: Check status
+transfer.status({ id: "abc-123" })
+→ Status: confirmed, Broadcast: success`,
+                },
+            }],
+    }));
+    server.prompt('example-dex-order', 'Example: Place a DEX order to swap tokens', async () => ({
+        messages: [{
+                role: 'user',
+                content: {
+                    type: 'text',
+                    text: `# Example: Swap 10,000 NOT for TON
+
+## Step 1: Check available tokens
+dex.pairs()
+→ Available tokens: TON, NOT, USDT, DOGS, BUILD, AGNT, CBBTC, PX, XAUT0
+
+## Step 2: Check your NOT balance
+wallet.jettons()
+→ NOT: 3,186,370.60, USDT: 107.79, BUILD: 45,277.57
+
+## Step 3: Get current price
+lookup.price({ currencies: "USD" })
+→ 1 TON = $2.45 USD
+(NOT ≈ 0.000289 TON per NOT)
+
+## Step 4: Place order
+dex.create_order({
+  fromToken: "NOT",
+  toToken: "TON",
+  amount: "10000",  // human-readable, API converts to raw
+  price: 0.000289            // TON per NOT
+})
+→ Order placed! Approve in your wallet app.`,
+                },
+            }],
+    }));
+    server.prompt('example-agent-wallet', 'Example: Deploy and use an autonomous Agent Wallet', async () => ({
+        messages: [{
+                role: 'user',
+                content: {
+                    type: 'text',
+                    text: `# Example: Autonomous Agent Wallet
+
+⚠️ WARNING: Agent Wallet allows spending WITHOUT approval!
+
+## Step 1: Deploy
+agent_wallet.deploy()
+→ Agent Wallet deployed at EQCT1... Approve 0.1 TON deploy fee in wallet.
+
+## Step 2: Top up
+transfer.request({ to: "EQCT1...", amountNano: "1000000000" })
+→ Transfer 1 TON to agent wallet. Approve in wallet.
+
+## Step 3: Send from agent wallet (NO approval needed!)
+agent_wallet.transfer({
+  walletAddress: "0:93d4...",
+  to: "0:abc...",
+  amountNano: "500000000"
+})
+→ Transfer executed. No approval needed.
+
+## Check balance
+agent_wallet.info({ walletAddress: "0:93d4..." })
+→ Balance: 0.5 TON, Seqno: 1, Status: active`,
+                },
+            }],
+    }));
+    // --- Resources ---
+    server.resource('docs', 'https://tongateway.ai/docs', async (uri) => ({
+        contents: [{
+                uri: uri.href,
+                mimeType: 'text/plain',
+                text: 'Agent Gateway documentation: https://tongateway.ai/docs\nAPI Swagger: https://api.tongateway.ai/docs\nSkill file: https://tongateway.ai/agent-gateway.md',
+            }],
+    }));
+    server.resource('skill', 'https://tongateway.ai/agent-gateway.md', async (uri) => ({
+        contents: [{
+                uri: uri.href,
+                mimeType: 'text/plain',
+                text: 'Skill file with all 16 tool descriptions, usage examples, and amount conversion: https://tongateway.ai/agent-gateway.md',
+            }],
+    }));
+    return server;
+}
+const CORS_HEADERS = {
+    'Access-Control-Allow-Origin': '*',
+    'Access-Control-Allow-Methods': 'GET, POST, DELETE, OPTIONS',
+    'Access-Control-Allow-Headers': 'Content-Type, Accept, Authorization, Mcp-Session-Id',
+    'Access-Control-Expose-Headers': 'Mcp-Session-Id',
+};
+export default {
+    async fetch(request) {
+        const url = new URL(request.url);
+        if (request.method === 'OPTIONS') {
+            return new Response(null, { status: 204, headers: CORS_HEADERS });
+        }
+        if (request.method === 'GET' && (url.pathname === '/' || url.pathname === '/health')) {
+            return new Response(JSON.stringify({
+                ok: true,
+                name: '@tongateway/mcp',
+                version: VERSION,
+                description: 'TON blockchain gateway for AI agents — 16 tools for wallet info, transfers, jettons, NFTs, DNS, prices, DEX orders, and agent wallets.',
+                tools: 16,
+                prompts: 2,
+                resources: 2,
+                transport: 'streamable-http',
+                endpoint: '/mcp',
+                install: 'npx -y @tongateway/mcp',
+                homepage: 'https://tongateway.ai',
+                docs: 'https://tongateway.ai/docs',
+                repository: 'https://github.com/tongateway/mcp',
+            }), { headers: { 'Content-Type': 'application/json', ...CORS_HEADERS } });
+        }
+        if (url.pathname === '/mcp') {
+            try {
+                const server = createMcpServer();
+                const transport = new WebStandardStreamableHTTPServerTransport({
+                    sessionIdGenerator: undefined,
+                });
+                await server.connect(transport);
+                const response = await transport.handleRequest(request);
+                const newHeaders = new Headers(response.headers);
+                for (const [k, v] of Object.entries(CORS_HEADERS)) {
+                    newHeaders.set(k, v);
+                }
+                return new Response(response.body, { status: response.status, headers: newHeaders });
+            }
+            catch (e) {
+                return new Response(JSON.stringify({ error: e.message }), {
+                    status: 500,
+                    headers: { 'Content-Type': 'application/json', ...CORS_HEADERS },
+                });
+            }
+        }
+        return new Response('Not found', { status: 404, headers: CORS_HEADERS });
+    },
+};

package/package.json

@@ -1,7 +1,8 @@
 {
   "name": "@tongateway/mcp",
-  "version": "0.13.0",
-  "description": "MCP server for Agent Gateway — lets AI agents request TON blockchain transfers",
+  "version": "0.19.2",
+  "description": "TON blockchain gateway for AI agents — 16 MCP tools: wallet info, transfers, jettons, NFTs, DNS, prices, DEX orders, agent wallets",
+  "homepage": "https://tongateway.ai",
   "license": "MIT",
   "repository": {
     "type": "git",
@@ -24,7 +25,8 @@
   ],
   "scripts": {
     "build": "tsc",
-    "dev": "tsx src/index.ts"
+    "dev": "tsx src/index.ts",
+    "test": "vitest run"
   },
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.12.1",
@@ -33,8 +35,11 @@
     "zod": "^4.3.6"
   },
   "devDependencies": {
+    "@cloudflare/workers-types": "^4.20260317.1",
     "@types/node": "^22.17.2",
     "tsx": "^4.20.5",
-    "typescript": "^5.9.2"
+    "typescript": "^5.9.2",
+    "vitest": "^4.1.1",
+    "wrangler": "^4.77.0"
   }
 }