@zendfi/sdk 0.5.4 → 0.5.7

package/README.md

@@ -1,28 +1,64 @@
 # @zendfi/sdk
 
-> Zero-config TypeScript SDK for accepting crypto payments with ZendFi
+> The only crypto payment API built for the AI era
 
 [![npm version](https://img.shields.io/npm/v/@zendfi/sdk.svg)](https://www.npmjs.com/package/@zendfi/sdk)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
 
-Accept **SOL, USDC, and USDT** payments in your app with just a few lines of code. Built for developers who want to integrate crypto payments without the complexity.
+Accept **SOL, USDC, and USDT** payments in 7 lines of code. Built for e-commerce. Ready for AI agents.
+
+```typescript
+import { zendfi } from '@zendfi/sdk';
+
+const payment = await zendfi.createPayment({
+  amount: 50,
+  description: 'Premium subscription',
+});
+
+console.log(payment.payment_url); // Send customer here
+```
+
+**That's it.** Works for traditional payments AND AI agents. Same API.
+
+---
+
+## Why ZendFi?
+
+| Feature | Stripe | PayPal | **ZendFi** |
+|---------|--------|--------|------------|
+| **Fees** | 2.9% + $0.30 | 3.5% + $0.49 | **0.6% flat** ✨ |
+| **Settlement** | 7 days | 3-5 days | **Instant** ✨ |
+| **Crypto Native** | Via 3rd party | Via 3rd party | **Built-in** ✨ |
+| **AI Agent Ready** | ❌ | ❌ | **✅ Native** ✨ |
+| **Setup Time** | 30 min | 30 min | **5 min** ✨ |
+
+**Save 81% on fees.** Get paid instantly. Scale to AI when ready.
 
 ---
 
 ## Features
 
-- **All-Inclusive Pricing** — 0.6% platform fee covers everything (network fees included!)
-- **Zero Configuration** — Auto-detects environment from your API key
-- **Type-Safe** — Full TypeScript support with auto-completion
-- **Auto-Retry** — Built-in exponential backoff for network errors
-- **Idempotency** — Automatic duplicate prevention for safe retries
-- **Webhook Helpers** — Auto-verified handlers for Next.js, Express, and more
+### 🚀 **Core Payments** (Start Here)
+- **Simple Payments** — QR codes, payment links, instant settlements
+- **Payment Links** — Reusable checkout pages for social/email
+- **Webhooks** — Real-time notifications with auto-verification
 - **Test Mode** — Free devnet testing with no real money
-- **Multi-Network** — Automatic routing to devnet or mainnet
-- **Agentic Intent Protocol** — AI agent payment capabilities with scoped API keys
-- **Session Keys** — On-chain funded wallets for autonomous agent payments
-- **PPP Pricing** — Purchasing Power Parity for global reach (27+ countries)
-- **Payment Intents** — Two-phase commit pattern for reliable checkout
+- **Type-Safe** — Full TypeScript support with auto-completion
+
+### 💼 **Scale Up** (When You Grow)
+- **Subscriptions** — Recurring billing with trials
+- **Installments** — Buy now, pay later flows
+- **Invoices** — Professional invoicing with email
+- **Payment Splits** — Revenue sharing for marketplaces
+
+### 🤖 **AI-Ready** (Optional Advanced)
+- **Agent Keys** — Scoped API keys for AI with spending limits
+- **Session Keys** — Pre-funded wallets for autonomous payments
+- **Payment Intents** — Two-phase commit for reliable checkout
+- **PPP Pricing** — Auto-adjust prices for 27+ countries
+- **Smart Payments** — AI-optimized payment routing
+
+Don't need AI features? **Ignore them.** The SDK works perfectly for traditional payments.
 
 ---
 
@@ -42,7 +78,7 @@ yarn add @zendfi/sdk
 
 ### 1. Get your API key
 
-Sign up at [zendfi.tech](https://zendfi.tech) and grab your API keys from the dashboard.
+Sign up at [zendfi.tech](https://zendfi.tech) to get your API keys.
 
 ### 2. Set environment variables
 
@@ -106,6 +142,9 @@ For devnet testing:
 1. Use your `zfi_test_` API key
 2. Get free SOL from [sol-faucet.com](https://www.sol-faucet.com/)
 3. All transactions use test tokens (zero value)
+4. Devnet SOL is NOT real SOL (zero value)
+6. Use devnet-compatible wallets (Phantom, Solflare support devnet)
+7. Switch network in wallet: Settings → Developer Settings → Change Network → Devnet
 
 ### Going Live
 
@@ -133,47 +172,90 @@ This covers:
 
 ---
 
-## Agentic Intent Protocol
+## 🤖 AI-Ready Features (Optional Advanced)
 
-Enable AI agents to make payments autonomously with scoped permissions and spending limits.
+Building AI agents? ZendFi has native support for autonomous payments with cryptographic security and spending limits.
 
-### Namespaced APIs
+### When Do I Need This?
+
+**Use traditional payments if:**
+- Building e-commerce, SaaS, or creator tools
+- User clicks "Pay" button for each transaction
+- Standard checkout flow
+
+**Use AI features if:**
+- Building AI agents that make purchases
+- Need autonomous payments without per-transaction approval
+- Want spending limits and scoped permissions
+
+### Quick Example: AI Agent Payment
+
+```typescript
+import { zendfi } from '@zendfi/sdk';
 
-The SDK provides namespaced APIs for agentic capabilities:
+// 1. Create agent key with limited permissions
+const agentKey = await zendfi.agent.createKey({
+  name: 'Shopping Assistant',
+  agent_id: 'shopping-assistant-v1',
+  scopes: ['create_payments'],
+  rate_limit_per_hour: 100,
+});
+
+// 2. User approves spending session (one-time)
+const session = await zendfi.agent.createSession({
+  agent_id: 'shopping-assistant-v1',
+  user_wallet: 'Hx7B...abc',
+  limits: {
+    max_per_transaction: 50,  // $50 max per payment
+    max_per_day: 200,         // $200 daily cap
+  },
+  duration_hours: 24,
+});
+
+// 3. AI agent makes payments autonomously (within limits)
+const payment = await zendfi.agent.pay({
+  session_token: session.session_token,
+  amount: 25.00,
+  description: 'Coffee order',
+});
+
+// Done! User approved once, AI pays within limits
+```
+
+**Learn more:** [AI Payments Documentation](https://docs.zendfi.tech/agentic)
+
+---
+
+## 📚 Core API Reference
+
+### Namespaced APIs
 
 ```typescript
 import { zendfi } from '@zendfi/sdk';
 
-// Agent API - Manage agent keys and sessions
-zendfi.agent.createKey(...)
-zendfi.agent.createSession(...)
-zendfi.agent.pay(...)         // Make payments via sessions
-
-// Payment Intents - Two-phase payment flow
-zendfi.intents.create(...)
-zendfi.intents.confirm(...)
-
-// Pricing - PPP and AI pricing
-zendfi.pricing.getPPPFactor(...)
-zendfi.pricing.getSuggestion(...)
-
-// Autonomy - Autonomous delegation
-zendfi.autonomy.enable(...)
-zendfi.autonomy.getStatus(...)
-
-// Smart Payments - AI-powered routing
-zendfi.smart.execute(...)
-zendfi.smart.submitSigned(...)  // For device-bound flows
-
-// Session Keys - On-chain funded wallets with PKP identity
-zendfi.sessionKeys.create(...)
-zendfi.sessionKeys.submitApproval(...)
-zendfi.sessionKeys.getStatus(...)
-zendfi.sessionKeys.topUp(...)
-zendfi.sessionKeys.revoke(...)
+// Traditional Payments (Most Common)
+zendfi.createPayment(...)
+zendfi.getPayment(...)
+zendfi.listPayments(...)
+
+// Payment Links
+zendfi.createPaymentLink(...)
+
+// Subscriptions
+zendfi.createSubscription(...)
+zendfi.cancelSubscription(...)
+
+// AI Features (Optional)
+zendfi.agent.createKey(...)           // Scoped API keys
+zendfi.agent.createSession(...)       // Spending limits
+zendfi.agent.pay(...)                 // Autonomous payments
+zendfi.intents.create(...)            // Two-phase checkout
+zendfi.sessionKeys.create(...)        // Pre-funded wallets
+zendfi.autonomy.enable(...)           // User-granted delegation
+zendfi.pricing.getPPPFactor(...)      // Global pricing
 ```
 
-### Agent API Keys
+### Core Payments
 
 Create scoped API keys for AI agents with limited permissions:
 
@@ -323,13 +405,10 @@ Enable agents to make payments without per-transaction approval:
 
 ```typescript
 // Enable autonomous mode for a wallet
-const delegate = await zendfi.autonomy.enable({
-  wallet_address: 'Hx7B...abc',
-  agent_id: 'shopping-assistant',
-  max_per_day_usd: 100,
-  max_per_transaction_usd: 25,
-  duration_hours: 24,
-  allowed_categories: ['subscriptions', 'digital_goods'],
+await zendfi.autonomy.enable(sessionKeyId, { 
+  max_amount_usd: 100,          // Total amount, not per-day
+  duration_hours: 24,           // Duration
+  delegation_signature: sig,    // Required signature
 });
 
 // Check autonomy status
@@ -352,17 +431,16 @@ Session keys are pre-funded wallets with spending limits that enable AI agents t
 ```typescript
 // Step 1: Create a session key
 const key = await zendfi.sessionKeys.create({
-  agent_id: 'shopping-assistant',
   user_wallet: 'Hx7B...abc',
-  max_amount: 100,       // $100 spending limit
-  expiry_hours: 24,      // Valid for 24 hours
-  token: 'USDC',
+  limit_usdc: 100,
+  duration_days: 7,
+  device_fingerprint: await generateFingerprint(),
 });
 
 // key.session_key_id - Unique identifier
 // key.approval_transaction - Transaction for user to sign
-// key.session_key_address - The funded wallet address
-// key.pkp_public_key - Lit Protocol PKP public key
+// key.session_wallet - The funded wallet address
+// key.pkp_public_key - Lit Protocol PKP public key NB: This only exists if mint_pkp is set to true in sessions
 
 // Step 2: User signs the approval transaction (one-time)
 const signedTx = await wallet.signTransaction(key.approval_transaction);
@@ -373,8 +451,8 @@ await zendfi.sessionKeys.submitApproval(key.session_key_id, {
 // Step 3: Check status and make payments
 const status = await zendfi.sessionKeys.getStatus(key.session_key_id);
 console.log(`Status: ${status.status}`);           // "active"
-console.log(`Remaining: $${status.remaining_amount}`);
-console.log(`Spent: $${status.spent_amount}`);
+console.log(`Remaining: $${status.remaining_usdc}`);
+console.log(`Spent: $${status.used_amount_usdc}`);
 console.log(`Transactions: ${status.transaction_count}`);
 
 // Step 4: Top-up if needed

package/dist/express.d.mts

@@ -1,4 +1,4 @@
-import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-B-RdABQr.mjs';
+import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-D5CigE9G.mjs';
 
 /**
  * Express Webhook Handler

package/dist/express.d.ts

@@ -1,4 +1,4 @@
-import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-B-RdABQr.js';
+import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-D5CigE9G.js';
 
 /**
  * Express Webhook Handler

package/dist/index.d.mts

@@ -1,5 +1,5 @@
-import { C as CreateAgentApiKeyRequest, A as AgentApiKey, b as CreateAgentSessionRequest, c as AgentSession, d as AgentPaymentRequest, e as AgentPaymentResponse, f as AgentAnalytics, g as CreatePaymentIntentRequest, P as PaymentIntent, h as ConfirmPaymentIntentRequest, i as PaymentIntentEvent, j as PPPFactor, k as PricingSuggestionRequest, l as PricingSuggestion, E as EnableAutonomyRequest, m as EnableAutonomyResponse, n as AutonomyStatus, S as SmartPaymentRequest, o as SmartPaymentResponse, p as CreateSessionKeyRequest, q as CreateSessionKeyResponse, r as CreateDeviceBoundSessionKeyRequest$1, s as CreateDeviceBoundSessionKeyResponse$1, t as SubmitSignedTransactionRequest, u as SubmitTransactionResponse, v as SessionKeyStatus, w as SessionKeyListResponse, T as TopUpSessionKeyRequest, x as TopUpSessionKeyResponse, Z as ZendFiConfig, y as CreatePaymentRequest, z as Payment, L as ListPaymentsRequest, B as PaginatedResponse, D as CreateSubscriptionPlanRequest, F as SubscriptionPlan, G as CreateSubscriptionRequest, H as Subscription, I as CreatePaymentLinkRequest, J as PaymentLink, K as CreateInstallmentPlanRequest, M as InstallmentPlan, N as CreateEscrowRequest, O as Escrow, Q as ApproveEscrowRequest, R as RefundEscrowRequest, U as DisputeEscrowRequest, V as CreateInvoiceRequest, X as Invoice, Y as VerifyWebhookRequest, _ as WebhookPayload } from './webhook-handler-B-RdABQr.mjs';
-export { a5 as AgentKeyId, ao as ApiKeyMode, aD as ApiKeyScope, aJ as AutonomousDelegate, a2 as Brand, aG as CaptureMethod, aA as CreateInstallmentPlanResponse, ap as Currency, an as Environment, a9 as EscrowId, au as EscrowStatus, aa as InstallmentPlanId, at as InstallmentPlanStatus, az as InstallmentScheduleItem, ac as IntentId, a7 as InvoiceId, aC as InvoiceLineItem, av as InvoiceStatus, a6 as MerchantId, aI as PPPConfig, a3 as PaymentId, aF as PaymentIntentStatus, ab as PaymentLinkCode, ar as PaymentStatus, aq as PaymentToken, aB as ReleaseCondition, aK as RevokeAutonomyRequest, aO as SecurityStatus, a4 as SessionId, aM as SessionKeyInstructions, aN as SessionKeySecurityInfo, aP as SessionKeyStats, aE as SessionLimits, aL as SmartPaymentStatus, ay as SplitRecipient, aw as SplitStatus, a8 as SubscriptionId, as as SubscriptionStatus, aH as UserProfile, ax as WebhookEvent, a1 as WebhookEventHandler, W as WebhookHandlerConfig, a as WebhookHandlers, a0 as WebhookResult, af as asAgentKeyId, aj as asEscrowId, ak as asInstallmentPlanId, am as asIntentId, ah as asInvoiceId, ag as asMerchantId, ad as asPaymentId, al as asPaymentLinkCode, ae as asSessionId, ai as asSubscriptionId, $ as processWebhook } from './webhook-handler-B-RdABQr.mjs';
+import { C as CreateAgentApiKeyRequest, A as AgentApiKey, b as CreateAgentSessionRequest, c as AgentSession, d as AgentPaymentRequest, e as AgentPaymentResponse, f as AgentAnalytics, g as CreatePaymentIntentRequest, P as PaymentIntent, h as ConfirmPaymentIntentRequest, i as PaymentIntentEvent, j as PPPFactor, k as PricingSuggestionRequest, l as PricingSuggestion, E as EnableAutonomyRequest, m as EnableAutonomyResponse, n as AutonomyStatus, S as SmartPaymentRequest, o as SmartPaymentResponse, p as CreateSessionKeyRequest, q as CreateSessionKeyResponse, r as CreateDeviceBoundSessionKeyRequest$1, s as CreateDeviceBoundSessionKeyResponse$1, t as SubmitSignedTransactionRequest, u as SubmitTransactionResponse, v as SessionKeyStatus, w as SessionKeyListResponse, T as TopUpSessionKeyRequest, x as TopUpSessionKeyResponse, Z as ZendFiConfig, y as CreatePaymentRequest, z as Payment, L as ListPaymentsRequest, B as PaginatedResponse, D as CreateSubscriptionPlanRequest, F as SubscriptionPlan, G as CreateSubscriptionRequest, H as Subscription, I as CreatePaymentLinkRequest, J as PaymentLink, K as CreateInstallmentPlanRequest, M as InstallmentPlan, N as CreateEscrowRequest, O as Escrow, Q as ApproveEscrowRequest, R as RefundEscrowRequest, U as DisputeEscrowRequest, V as CreateInvoiceRequest, X as Invoice, Y as VerifyWebhookRequest, _ as WebhookPayload } from './webhook-handler-D5CigE9G.mjs';
+export { a5 as AgentKeyId, ao as ApiKeyMode, aD as ApiKeyScope, aJ as AutonomousDelegate, a2 as Brand, aG as CaptureMethod, aA as CreateInstallmentPlanResponse, ap as Currency, an as Environment, a9 as EscrowId, au as EscrowStatus, aa as InstallmentPlanId, at as InstallmentPlanStatus, az as InstallmentScheduleItem, ac as IntentId, a7 as InvoiceId, aC as InvoiceLineItem, av as InvoiceStatus, aO as LinkedSessionInfo, a6 as MerchantId, aI as PPPConfig, a3 as PaymentId, aF as PaymentIntentStatus, ab as PaymentLinkCode, ar as PaymentStatus, aq as PaymentToken, aB as ReleaseCondition, aK as RevokeAutonomyRequest, aP as SecurityStatus, a4 as SessionId, aM as SessionKeyInstructions, aN as SessionKeySecurityInfo, aQ as SessionKeyStats, aE as SessionLimits, aL as SmartPaymentStatus, ay as SplitRecipient, aw as SplitStatus, a8 as SubscriptionId, as as SubscriptionStatus, aH as UserProfile, ax as WebhookEvent, a1 as WebhookEventHandler, W as WebhookHandlerConfig, a as WebhookHandlers, a0 as WebhookResult, af as asAgentKeyId, aj as asEscrowId, ak as asInstallmentPlanId, am as asIntentId, ah as asInvoiceId, ag as asMerchantId, ad as asPaymentId, al as asPaymentLinkCode, ae as asSessionId, ai as asSubscriptionId, $ as processWebhook } from './webhook-handler-D5CigE9G.mjs';
 import { Transaction, Keypair } from '@solana/web3.js';
 
 /**
@@ -872,6 +872,7 @@ declare class SessionKeysAPI {
      *
      * @example
      * ```typescript
+     * // Basic creation
      * const result = await zendfi.sessionKeys.create({
      *   user_wallet: 'Hx7B...abc',
      *   limit_usdc: 100,
@@ -879,6 +880,15 @@ declare class SessionKeysAPI {
      *   device_fingerprint: deviceFingerprint,
      * });
      *
+     * // Create with linked session for policy enforcement
+     * const result = await zendfi.sessionKeys.create({
+     *   user_wallet: 'Hx7B...abc',
+     *   limit_usdc: 500,
+     *   duration_days: 7,
+     *   device_fingerprint: deviceFingerprint,
+     *   link_session_id: session.id,  // Links to existing session
+     * });
+     *
      * console.log(`Session key: ${result.session_key_id}`);
      * console.log('Please sign the approval transaction');
      * ```
@@ -1056,6 +1066,98 @@ declare class SessionKeysAPI {
             message: string;
         };
     }>;
+    /**
+     * Link a session key to an AI session for policy enforcement
+     *
+     * When linked, payments through this session key will check both:
+     * 1. Session key balance (hard cap)
+     * 2. AI session limits (per-tx, daily, weekly, monthly)
+     *
+     * This provides defense-in-depth: the session key provides signing
+     * capability while the session enforces granular spending policies.
+     *
+     * @param sessionKeyId - UUID of the session key
+     * @param sessionId - UUID of the AI session to link
+     * @returns Updated session key status
+     *
+     * @example
+     * ```typescript
+     * // Create a session with limits
+     * const session = await zendfi.agent.createSession({
+     *   agent_id: 'shopping-bot',
+     *   user_wallet: userWallet,
+     *   limits: {
+     *     max_per_transaction: 25,
+     *     max_per_day: 100,
+     *   },
+     *   duration_hours: 24,
+     * });
+     *
+     * // Create and fund a session key
+     * const key = await zendfi.sessionKeys.create({
+     *   user_wallet: userWallet,
+     *   limit_usdc: 500,  // Fund with $500
+     *   duration_days: 7,
+     *   device_fingerprint: fp,
+     * });
+     *
+     * // Link them together
+     * await zendfi.sessionKeys.linkSession(key.session_key_id, session.id);
+     *
+     * // Now payments will:
+     * // - Be limited to $25 per transaction (session policy)
+     * // - Be limited to $100 per day (session policy)
+     * // - Never exceed $500 total (session key balance)
+     * ```
+     */
+    linkSession(sessionKeyId: string, sessionId: string): Promise<{
+        success: boolean;
+        session_key_id: string;
+        linked_session_id: string;
+        message: string;
+    }>;
+    /**
+     * Unlink a session key from its AI session
+     *
+     * After unlinking, the session key will only be limited by its funded balance.
+     *
+     * @param sessionKeyId - UUID of the session key
+     * @returns Result of the unlink operation
+     */
+    unlinkSession(sessionKeyId: string): Promise<{
+        success: boolean;
+        session_key_id: string;
+        message: string;
+    }>;
+    /**
+     * Check if a payment amount is allowed
+     *
+     * Checks both session key balance and linked session limits (if any).
+     * Useful for pre-validating payments before attempting them.
+     *
+     * @param sessionKeyId - UUID of the session key
+     * @param amount - Amount in USD to check
+     * @returns Whether the payment is allowed and the effective limit
+     *
+     * @example
+     * ```typescript
+     * const check = await zendfi.sessionKeys.canAfford(keyId, 50);
+     *
+     * if (check.allowed) {
+     *   await zendfi.smart.execute({ ... });
+     * } else {
+     *   console.log(`Cannot afford: ${check.reason}`);
+     *   console.log(`Effective limit: $${check.effective_limit}`);
+     * }
+     * ```
+     */
+    canAfford(sessionKeyId: string, amount: number): Promise<{
+        allowed: boolean;
+        reason?: string;
+        effective_limit: number;
+        session_key_remaining: number;
+        session_remaining_today?: number;
+    }>;
 }
 
 /**

package/dist/index.d.ts

@@ -1,5 +1,5 @@
-import { C as CreateAgentApiKeyRequest, A as AgentApiKey, b as CreateAgentSessionRequest, c as AgentSession, d as AgentPaymentRequest, e as AgentPaymentResponse, f as AgentAnalytics, g as CreatePaymentIntentRequest, P as PaymentIntent, h as ConfirmPaymentIntentRequest, i as PaymentIntentEvent, j as PPPFactor, k as PricingSuggestionRequest, l as PricingSuggestion, E as EnableAutonomyRequest, m as EnableAutonomyResponse, n as AutonomyStatus, S as SmartPaymentRequest, o as SmartPaymentResponse, p as CreateSessionKeyRequest, q as CreateSessionKeyResponse, r as CreateDeviceBoundSessionKeyRequest$1, s as CreateDeviceBoundSessionKeyResponse$1, t as SubmitSignedTransactionRequest, u as SubmitTransactionResponse, v as SessionKeyStatus, w as SessionKeyListResponse, T as TopUpSessionKeyRequest, x as TopUpSessionKeyResponse, Z as ZendFiConfig, y as CreatePaymentRequest, z as Payment, L as ListPaymentsRequest, B as PaginatedResponse, D as CreateSubscriptionPlanRequest, F as SubscriptionPlan, G as CreateSubscriptionRequest, H as Subscription, I as CreatePaymentLinkRequest, J as PaymentLink, K as CreateInstallmentPlanRequest, M as InstallmentPlan, N as CreateEscrowRequest, O as Escrow, Q as ApproveEscrowRequest, R as RefundEscrowRequest, U as DisputeEscrowRequest, V as CreateInvoiceRequest, X as Invoice, Y as VerifyWebhookRequest, _ as WebhookPayload } from './webhook-handler-B-RdABQr.js';
-export { a5 as AgentKeyId, ao as ApiKeyMode, aD as ApiKeyScope, aJ as AutonomousDelegate, a2 as Brand, aG as CaptureMethod, aA as CreateInstallmentPlanResponse, ap as Currency, an as Environment, a9 as EscrowId, au as EscrowStatus, aa as InstallmentPlanId, at as InstallmentPlanStatus, az as InstallmentScheduleItem, ac as IntentId, a7 as InvoiceId, aC as InvoiceLineItem, av as InvoiceStatus, a6 as MerchantId, aI as PPPConfig, a3 as PaymentId, aF as PaymentIntentStatus, ab as PaymentLinkCode, ar as PaymentStatus, aq as PaymentToken, aB as ReleaseCondition, aK as RevokeAutonomyRequest, aO as SecurityStatus, a4 as SessionId, aM as SessionKeyInstructions, aN as SessionKeySecurityInfo, aP as SessionKeyStats, aE as SessionLimits, aL as SmartPaymentStatus, ay as SplitRecipient, aw as SplitStatus, a8 as SubscriptionId, as as SubscriptionStatus, aH as UserProfile, ax as WebhookEvent, a1 as WebhookEventHandler, W as WebhookHandlerConfig, a as WebhookHandlers, a0 as WebhookResult, af as asAgentKeyId, aj as asEscrowId, ak as asInstallmentPlanId, am as asIntentId, ah as asInvoiceId, ag as asMerchantId, ad as asPaymentId, al as asPaymentLinkCode, ae as asSessionId, ai as asSubscriptionId, $ as processWebhook } from './webhook-handler-B-RdABQr.js';
+import { C as CreateAgentApiKeyRequest, A as AgentApiKey, b as CreateAgentSessionRequest, c as AgentSession, d as AgentPaymentRequest, e as AgentPaymentResponse, f as AgentAnalytics, g as CreatePaymentIntentRequest, P as PaymentIntent, h as ConfirmPaymentIntentRequest, i as PaymentIntentEvent, j as PPPFactor, k as PricingSuggestionRequest, l as PricingSuggestion, E as EnableAutonomyRequest, m as EnableAutonomyResponse, n as AutonomyStatus, S as SmartPaymentRequest, o as SmartPaymentResponse, p as CreateSessionKeyRequest, q as CreateSessionKeyResponse, r as CreateDeviceBoundSessionKeyRequest$1, s as CreateDeviceBoundSessionKeyResponse$1, t as SubmitSignedTransactionRequest, u as SubmitTransactionResponse, v as SessionKeyStatus, w as SessionKeyListResponse, T as TopUpSessionKeyRequest, x as TopUpSessionKeyResponse, Z as ZendFiConfig, y as CreatePaymentRequest, z as Payment, L as ListPaymentsRequest, B as PaginatedResponse, D as CreateSubscriptionPlanRequest, F as SubscriptionPlan, G as CreateSubscriptionRequest, H as Subscription, I as CreatePaymentLinkRequest, J as PaymentLink, K as CreateInstallmentPlanRequest, M as InstallmentPlan, N as CreateEscrowRequest, O as Escrow, Q as ApproveEscrowRequest, R as RefundEscrowRequest, U as DisputeEscrowRequest, V as CreateInvoiceRequest, X as Invoice, Y as VerifyWebhookRequest, _ as WebhookPayload } from './webhook-handler-D5CigE9G.js';
+export { a5 as AgentKeyId, ao as ApiKeyMode, aD as ApiKeyScope, aJ as AutonomousDelegate, a2 as Brand, aG as CaptureMethod, aA as CreateInstallmentPlanResponse, ap as Currency, an as Environment, a9 as EscrowId, au as EscrowStatus, aa as InstallmentPlanId, at as InstallmentPlanStatus, az as InstallmentScheduleItem, ac as IntentId, a7 as InvoiceId, aC as InvoiceLineItem, av as InvoiceStatus, aO as LinkedSessionInfo, a6 as MerchantId, aI as PPPConfig, a3 as PaymentId, aF as PaymentIntentStatus, ab as PaymentLinkCode, ar as PaymentStatus, aq as PaymentToken, aB as ReleaseCondition, aK as RevokeAutonomyRequest, aP as SecurityStatus, a4 as SessionId, aM as SessionKeyInstructions, aN as SessionKeySecurityInfo, aQ as SessionKeyStats, aE as SessionLimits, aL as SmartPaymentStatus, ay as SplitRecipient, aw as SplitStatus, a8 as SubscriptionId, as as SubscriptionStatus, aH as UserProfile, ax as WebhookEvent, a1 as WebhookEventHandler, W as WebhookHandlerConfig, a as WebhookHandlers, a0 as WebhookResult, af as asAgentKeyId, aj as asEscrowId, ak as asInstallmentPlanId, am as asIntentId, ah as asInvoiceId, ag as asMerchantId, ad as asPaymentId, al as asPaymentLinkCode, ae as asSessionId, ai as asSubscriptionId, $ as processWebhook } from './webhook-handler-D5CigE9G.js';
 import { Transaction, Keypair } from '@solana/web3.js';
 
 /**
@@ -872,6 +872,7 @@ declare class SessionKeysAPI {
      *
      * @example
      * ```typescript
+     * // Basic creation
      * const result = await zendfi.sessionKeys.create({
      *   user_wallet: 'Hx7B...abc',
      *   limit_usdc: 100,
@@ -879,6 +880,15 @@ declare class SessionKeysAPI {
      *   device_fingerprint: deviceFingerprint,
      * });
      *
+     * // Create with linked session for policy enforcement
+     * const result = await zendfi.sessionKeys.create({
+     *   user_wallet: 'Hx7B...abc',
+     *   limit_usdc: 500,
+     *   duration_days: 7,
+     *   device_fingerprint: deviceFingerprint,
+     *   link_session_id: session.id,  // Links to existing session
+     * });
+     *
      * console.log(`Session key: ${result.session_key_id}`);
      * console.log('Please sign the approval transaction');
      * ```
@@ -1056,6 +1066,98 @@ declare class SessionKeysAPI {
             message: string;
         };
     }>;
+    /**
+     * Link a session key to an AI session for policy enforcement
+     *
+     * When linked, payments through this session key will check both:
+     * 1. Session key balance (hard cap)
+     * 2. AI session limits (per-tx, daily, weekly, monthly)
+     *
+     * This provides defense-in-depth: the session key provides signing
+     * capability while the session enforces granular spending policies.
+     *
+     * @param sessionKeyId - UUID of the session key
+     * @param sessionId - UUID of the AI session to link
+     * @returns Updated session key status
+     *
+     * @example
+     * ```typescript
+     * // Create a session with limits
+     * const session = await zendfi.agent.createSession({
+     *   agent_id: 'shopping-bot',
+     *   user_wallet: userWallet,
+     *   limits: {
+     *     max_per_transaction: 25,
+     *     max_per_day: 100,
+     *   },
+     *   duration_hours: 24,
+     * });
+     *
+     * // Create and fund a session key
+     * const key = await zendfi.sessionKeys.create({
+     *   user_wallet: userWallet,
+     *   limit_usdc: 500,  // Fund with $500
+     *   duration_days: 7,
+     *   device_fingerprint: fp,
+     * });
+     *
+     * // Link them together
+     * await zendfi.sessionKeys.linkSession(key.session_key_id, session.id);
+     *
+     * // Now payments will:
+     * // - Be limited to $25 per transaction (session policy)
+     * // - Be limited to $100 per day (session policy)
+     * // - Never exceed $500 total (session key balance)
+     * ```
+     */
+    linkSession(sessionKeyId: string, sessionId: string): Promise<{
+        success: boolean;
+        session_key_id: string;
+        linked_session_id: string;
+        message: string;
+    }>;
+    /**
+     * Unlink a session key from its AI session
+     *
+     * After unlinking, the session key will only be limited by its funded balance.
+     *
+     * @param sessionKeyId - UUID of the session key
+     * @returns Result of the unlink operation
+     */
+    unlinkSession(sessionKeyId: string): Promise<{
+        success: boolean;
+        session_key_id: string;
+        message: string;
+    }>;
+    /**
+     * Check if a payment amount is allowed
+     *
+     * Checks both session key balance and linked session limits (if any).
+     * Useful for pre-validating payments before attempting them.
+     *
+     * @param sessionKeyId - UUID of the session key
+     * @param amount - Amount in USD to check
+     * @returns Whether the payment is allowed and the effective limit
+     *
+     * @example
+     * ```typescript
+     * const check = await zendfi.sessionKeys.canAfford(keyId, 50);
+     *
+     * if (check.allowed) {
+     *   await zendfi.smart.execute({ ... });
+     * } else {
+     *   console.log(`Cannot afford: ${check.reason}`);
+     *   console.log(`Effective limit: $${check.effective_limit}`);
+     * }
+     * ```
+     */
+    canAfford(sessionKeyId: string, amount: number): Promise<{
+        allowed: boolean;
+        reason?: string;
+        effective_limit: number;
+        session_key_remaining: number;
+        session_remaining_today?: number;
+    }>;
 }
 
 /**

package/dist/index.js

@@ -1403,6 +1403,7 @@ var SessionKeysAPI = class {
    * 
    * @example
    * ```typescript
+   * // Basic creation
    * const result = await zendfi.sessionKeys.create({
    *   user_wallet: 'Hx7B...abc',
    *   limit_usdc: 100,
@@ -1410,6 +1411,15 @@ var SessionKeysAPI = class {
    *   device_fingerprint: deviceFingerprint,
    * });
    * 
+   * // Create with linked session for policy enforcement
+   * const result = await zendfi.sessionKeys.create({
+   *   user_wallet: 'Hx7B...abc',
+   *   limit_usdc: 500,
+   *   duration_days: 7,
+   *   device_fingerprint: deviceFingerprint,
+   *   link_session_id: session.id,  // Links to existing session
+   * });
+   * 
    * console.log(`Session key: ${result.session_key_id}`);
    * console.log('Please sign the approval transaction');
    * ```
@@ -1419,7 +1429,9 @@ var SessionKeysAPI = class {
       user_wallet: request.user_wallet,
       limit_usdc: request.limit_usdc,
       duration_days: request.duration_days ?? 7,
-      device_fingerprint: request.device_fingerprint
+      device_fingerprint: request.device_fingerprint,
+      link_session_id: request.link_session_id,
+      link_session_token: request.link_session_token
     });
   }
   // ============================================
@@ -1645,6 +1657,96 @@ var SessionKeysAPI = class {
       session_key_id: sessionKeyId
     });
   }
+  // ============================================
+  // Session Linking
+  // ============================================
+  /**
+   * Link a session key to an AI session for policy enforcement
+   * 
+   * When linked, payments through this session key will check both:
+   * 1. Session key balance (hard cap)
+   * 2. AI session limits (per-tx, daily, weekly, monthly)
+   * 
+   * This provides defense-in-depth: the session key provides signing
+   * capability while the session enforces granular spending policies.
+   * 
+   * @param sessionKeyId - UUID of the session key
+   * @param sessionId - UUID of the AI session to link
+   * @returns Updated session key status
+   * 
+   * @example
+   * ```typescript
+   * // Create a session with limits
+   * const session = await zendfi.agent.createSession({
+   *   agent_id: 'shopping-bot',
+   *   user_wallet: userWallet,
+   *   limits: {
+   *     max_per_transaction: 25,
+   *     max_per_day: 100,
+   *   },
+   *   duration_hours: 24,
+   * });
+   * 
+   * // Create and fund a session key
+   * const key = await zendfi.sessionKeys.create({
+   *   user_wallet: userWallet,
+   *   limit_usdc: 500,  // Fund with $500
+   *   duration_days: 7,
+   *   device_fingerprint: fp,
+   * });
+   * 
+   * // Link them together
+   * await zendfi.sessionKeys.linkSession(key.session_key_id, session.id);
+   * 
+   * // Now payments will:
+   * // - Be limited to $25 per transaction (session policy)
+   * // - Be limited to $100 per day (session policy)
+   * // - Never exceed $500 total (session key balance)
+   * ```
+   */
+  async linkSession(sessionKeyId, sessionId) {
+    return this.request("POST", `/api/v1/ai/session-keys/${sessionKeyId}/link-session`, {
+      session_id: sessionId
+    });
+  }
+  /**
+   * Unlink a session key from its AI session
+   * 
+   * After unlinking, the session key will only be limited by its funded balance.
+   * 
+   * @param sessionKeyId - UUID of the session key
+   * @returns Result of the unlink operation
+   */
+  async unlinkSession(sessionKeyId) {
+    return this.request("POST", `/api/v1/ai/session-keys/${sessionKeyId}/unlink-session`, {});
+  }
+  /**
+   * Check if a payment amount is allowed
+   * 
+   * Checks both session key balance and linked session limits (if any).
+   * Useful for pre-validating payments before attempting them.
+   * 
+   * @param sessionKeyId - UUID of the session key
+   * @param amount - Amount in USD to check
+   * @returns Whether the payment is allowed and the effective limit
+   * 
+   * @example
+   * ```typescript
+   * const check = await zendfi.sessionKeys.canAfford(keyId, 50);
+   * 
+   * if (check.allowed) {
+   *   await zendfi.smart.execute({ ... });
+   * } else {
+   *   console.log(`Cannot afford: ${check.reason}`);
+   *   console.log(`Effective limit: $${check.effective_limit}`);
+   * }
+   * ```
+   */
+  async canAfford(sessionKeyId, amount) {
+    return this.request("POST", `/api/v1/ai/session-keys/${sessionKeyId}/check-payment`, {
+      amount
+    });
+  }
 };
 
 // src/client.ts

package/dist/index.mjs

@@ -1325,6 +1325,7 @@ var SessionKeysAPI = class {
    * 
    * @example
    * ```typescript
+   * // Basic creation
    * const result = await zendfi.sessionKeys.create({
    *   user_wallet: 'Hx7B...abc',
    *   limit_usdc: 100,
@@ -1332,6 +1333,15 @@ var SessionKeysAPI = class {
    *   device_fingerprint: deviceFingerprint,
    * });
    * 
+   * // Create with linked session for policy enforcement
+   * const result = await zendfi.sessionKeys.create({
+   *   user_wallet: 'Hx7B...abc',
+   *   limit_usdc: 500,
+   *   duration_days: 7,
+   *   device_fingerprint: deviceFingerprint,
+   *   link_session_id: session.id,  // Links to existing session
+   * });
+   * 
    * console.log(`Session key: ${result.session_key_id}`);
    * console.log('Please sign the approval transaction');
    * ```
@@ -1341,7 +1351,9 @@ var SessionKeysAPI = class {
       user_wallet: request.user_wallet,
       limit_usdc: request.limit_usdc,
       duration_days: request.duration_days ?? 7,
-      device_fingerprint: request.device_fingerprint
+      device_fingerprint: request.device_fingerprint,
+      link_session_id: request.link_session_id,
+      link_session_token: request.link_session_token
     });
   }
   // ============================================
@@ -1567,6 +1579,96 @@ var SessionKeysAPI = class {
       session_key_id: sessionKeyId
     });
   }
+  // ============================================
+  // Session Linking
+  // ============================================
+  /**
+   * Link a session key to an AI session for policy enforcement
+   * 
+   * When linked, payments through this session key will check both:
+   * 1. Session key balance (hard cap)
+   * 2. AI session limits (per-tx, daily, weekly, monthly)
+   * 
+   * This provides defense-in-depth: the session key provides signing
+   * capability while the session enforces granular spending policies.
+   * 
+   * @param sessionKeyId - UUID of the session key
+   * @param sessionId - UUID of the AI session to link
+   * @returns Updated session key status
+   * 
+   * @example
+   * ```typescript
+   * // Create a session with limits
+   * const session = await zendfi.agent.createSession({
+   *   agent_id: 'shopping-bot',
+   *   user_wallet: userWallet,
+   *   limits: {
+   *     max_per_transaction: 25,
+   *     max_per_day: 100,
+   *   },
+   *   duration_hours: 24,
+   * });
+   * 
+   * // Create and fund a session key
+   * const key = await zendfi.sessionKeys.create({
+   *   user_wallet: userWallet,
+   *   limit_usdc: 500,  // Fund with $500
+   *   duration_days: 7,
+   *   device_fingerprint: fp,
+   * });
+   * 
+   * // Link them together
+   * await zendfi.sessionKeys.linkSession(key.session_key_id, session.id);
+   * 
+   * // Now payments will:
+   * // - Be limited to $25 per transaction (session policy)
+   * // - Be limited to $100 per day (session policy)
+   * // - Never exceed $500 total (session key balance)
+   * ```
+   */
+  async linkSession(sessionKeyId, sessionId) {
+    return this.request("POST", `/api/v1/ai/session-keys/${sessionKeyId}/link-session`, {
+      session_id: sessionId
+    });
+  }
+  /**
+   * Unlink a session key from its AI session
+   * 
+   * After unlinking, the session key will only be limited by its funded balance.
+   * 
+   * @param sessionKeyId - UUID of the session key
+   * @returns Result of the unlink operation
+   */
+  async unlinkSession(sessionKeyId) {
+    return this.request("POST", `/api/v1/ai/session-keys/${sessionKeyId}/unlink-session`, {});
+  }
+  /**
+   * Check if a payment amount is allowed
+   * 
+   * Checks both session key balance and linked session limits (if any).
+   * Useful for pre-validating payments before attempting them.
+   * 
+   * @param sessionKeyId - UUID of the session key
+   * @param amount - Amount in USD to check
+   * @returns Whether the payment is allowed and the effective limit
+   * 
+   * @example
+   * ```typescript
+   * const check = await zendfi.sessionKeys.canAfford(keyId, 50);
+   * 
+   * if (check.allowed) {
+   *   await zendfi.smart.execute({ ... });
+   * } else {
+   *   console.log(`Cannot afford: ${check.reason}`);
+   *   console.log(`Effective limit: $${check.effective_limit}`);
+   * }
+   * ```
+   */
+  async canAfford(sessionKeyId, amount) {
+    return this.request("POST", `/api/v1/ai/session-keys/${sessionKeyId}/check-payment`, {
+      amount
+    });
+  }
 };
 
 // src/client.ts

package/dist/nextjs.d.mts

@@ -1,4 +1,4 @@
-import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-B-RdABQr.mjs';
+import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-D5CigE9G.mjs';
 
 /**
  * Next.js Webhook Handler for App Router

package/dist/nextjs.d.ts

@@ -1,4 +1,4 @@
-import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-B-RdABQr.js';
+import { W as WebhookHandlerConfig, a as WebhookHandlers } from './webhook-handler-D5CigE9G.js';
 
 /**
  * Next.js Webhook Handler for App Router

package/dist/{webhook-handler-B-RdABQr.d.mts → webhook-handler-D5CigE9G.d.mts}

@@ -822,6 +822,16 @@ interface CreateSessionKeyRequest {
     duration_days?: number;
     /** Device fingerprint for security */
     device_fingerprint: string;
+    /**
+     * Optional: Link to an existing AI session for policy enforcement.
+     * When linked, payments will check both session key balance AND session limits.
+     */
+    link_session_id?: string;
+    /**
+     * Optional: Link to a session by token instead of ID.
+     * Mutually exclusive with link_session_id.
+     */
+    link_session_token?: string;
 }
 /**
  * Session key creation response (custodial mode)
@@ -921,6 +931,29 @@ interface SessionKeyStatus {
     days_until_expiry: number;
     /** Security status */
     security_status: SecurityStatus;
+    /** Linked AI session info (if linked) */
+    linked_session?: LinkedSessionInfo;
+}
+/**
+ * Information about a linked AI session (for policy enforcement)
+ */
+interface LinkedSessionInfo {
+    /** Session ID */
+    session_id: string;
+    /** Agent ID */
+    agent_id: string;
+    /** Whether the linked session is active */
+    is_active: boolean;
+    /** Per-transaction limit */
+    max_per_transaction?: number;
+    /** Daily remaining */
+    remaining_today: number;
+    /** Weekly remaining */
+    remaining_this_week: number;
+    /** Monthly remaining */
+    remaining_this_month: number;
+    /** Effective limit (minimum of session key balance and session limits) */
+    effective_limit: number;
 }
 interface SecurityStatus {
     device_fingerprint_matched: boolean;
@@ -1095,4 +1128,4 @@ interface WebhookResult {
 }
 declare function processWebhook(a: any, b?: any, c?: any): Promise<WebhookResult>;
 
-export { processWebhook as $, type AgentApiKey as A, type PaginatedResponse as B, type CreateAgentApiKeyRequest as C, type CreateSubscriptionPlanRequest as D, type EnableAutonomyRequest as E, type SubscriptionPlan as F, type CreateSubscriptionRequest as G, type Subscription as H, type CreatePaymentLinkRequest as I, type PaymentLink as J, type CreateInstallmentPlanRequest as K, type ListPaymentsRequest as L, type InstallmentPlan as M, type CreateEscrowRequest as N, type Escrow as O, type PaymentIntent as P, type ApproveEscrowRequest as Q, type RefundEscrowRequest as R, type SmartPaymentRequest as S, type TopUpSessionKeyRequest as T, type DisputeEscrowRequest as U, type CreateInvoiceRequest as V, type WebhookHandlerConfig as W, type Invoice as X, type VerifyWebhookRequest as Y, type ZendFiConfig as Z, type WebhookPayload as _, type WebhookHandlers as a, type WebhookResult as a0, type WebhookEventHandler as a1, type Brand as a2, type PaymentId as a3, type SessionId as a4, type AgentKeyId as a5, type MerchantId as a6, type InvoiceId as a7, type SubscriptionId as a8, type EscrowId as a9, type CreateInstallmentPlanResponse as aA, type ReleaseCondition as aB, type InvoiceLineItem as aC, type ApiKeyScope as aD, type SessionLimits as aE, type PaymentIntentStatus as aF, type CaptureMethod as aG, type UserProfile as aH, type PPPConfig as aI, type AutonomousDelegate as aJ, type RevokeAutonomyRequest as aK, type SmartPaymentStatus as aL, type SessionKeyInstructions as aM, type SessionKeySecurityInfo as aN, type SecurityStatus as aO, type SessionKeyStats as aP, type InstallmentPlanId as aa, type PaymentLinkCode as ab, type IntentId as ac, asPaymentId as ad, asSessionId as ae, asAgentKeyId as af, asMerchantId as ag, asInvoiceId as ah, asSubscriptionId as ai, asEscrowId as aj, asInstallmentPlanId as ak, asPaymentLinkCode as al, asIntentId as am, type Environment as an, type ApiKeyMode as ao, type Currency as ap, type PaymentToken as aq, type PaymentStatus as ar, type SubscriptionStatus as as, type InstallmentPlanStatus as at, type EscrowStatus as au, type InvoiceStatus as av, type SplitStatus as aw, type WebhookEvent as ax, type SplitRecipient as ay, type InstallmentScheduleItem as az, type CreateAgentSessionRequest as b, type AgentSession as c, type AgentPaymentRequest as d, type AgentPaymentResponse as e, type AgentAnalytics as f, type CreatePaymentIntentRequest as g, type ConfirmPaymentIntentRequest as h, type PaymentIntentEvent as i, type PPPFactor as j, type PricingSuggestionRequest as k, type PricingSuggestion as l, type EnableAutonomyResponse as m, type AutonomyStatus as n, type SmartPaymentResponse as o, type CreateSessionKeyRequest as p, type CreateSessionKeyResponse as q, type CreateDeviceBoundSessionKeyRequest as r, type CreateDeviceBoundSessionKeyResponse as s, type SubmitSignedTransactionRequest as t, type SubmitTransactionResponse as u, type SessionKeyStatus as v, type SessionKeyListResponse as w, type TopUpSessionKeyResponse as x, type CreatePaymentRequest as y, type Payment as z };
+export { processWebhook as $, type AgentApiKey as A, type PaginatedResponse as B, type CreateAgentApiKeyRequest as C, type CreateSubscriptionPlanRequest as D, type EnableAutonomyRequest as E, type SubscriptionPlan as F, type CreateSubscriptionRequest as G, type Subscription as H, type CreatePaymentLinkRequest as I, type PaymentLink as J, type CreateInstallmentPlanRequest as K, type ListPaymentsRequest as L, type InstallmentPlan as M, type CreateEscrowRequest as N, type Escrow as O, type PaymentIntent as P, type ApproveEscrowRequest as Q, type RefundEscrowRequest as R, type SmartPaymentRequest as S, type TopUpSessionKeyRequest as T, type DisputeEscrowRequest as U, type CreateInvoiceRequest as V, type WebhookHandlerConfig as W, type Invoice as X, type VerifyWebhookRequest as Y, type ZendFiConfig as Z, type WebhookPayload as _, type WebhookHandlers as a, type WebhookResult as a0, type WebhookEventHandler as a1, type Brand as a2, type PaymentId as a3, type SessionId as a4, type AgentKeyId as a5, type MerchantId as a6, type InvoiceId as a7, type SubscriptionId as a8, type EscrowId as a9, type CreateInstallmentPlanResponse as aA, type ReleaseCondition as aB, type InvoiceLineItem as aC, type ApiKeyScope as aD, type SessionLimits as aE, type PaymentIntentStatus as aF, type CaptureMethod as aG, type UserProfile as aH, type PPPConfig as aI, type AutonomousDelegate as aJ, type RevokeAutonomyRequest as aK, type SmartPaymentStatus as aL, type SessionKeyInstructions as aM, type SessionKeySecurityInfo as aN, type LinkedSessionInfo as aO, type SecurityStatus as aP, type SessionKeyStats as aQ, type InstallmentPlanId as aa, type PaymentLinkCode as ab, type IntentId as ac, asPaymentId as ad, asSessionId as ae, asAgentKeyId as af, asMerchantId as ag, asInvoiceId as ah, asSubscriptionId as ai, asEscrowId as aj, asInstallmentPlanId as ak, asPaymentLinkCode as al, asIntentId as am, type Environment as an, type ApiKeyMode as ao, type Currency as ap, type PaymentToken as aq, type PaymentStatus as ar, type SubscriptionStatus as as, type InstallmentPlanStatus as at, type EscrowStatus as au, type InvoiceStatus as av, type SplitStatus as aw, type WebhookEvent as ax, type SplitRecipient as ay, type InstallmentScheduleItem as az, type CreateAgentSessionRequest as b, type AgentSession as c, type AgentPaymentRequest as d, type AgentPaymentResponse as e, type AgentAnalytics as f, type CreatePaymentIntentRequest as g, type ConfirmPaymentIntentRequest as h, type PaymentIntentEvent as i, type PPPFactor as j, type PricingSuggestionRequest as k, type PricingSuggestion as l, type EnableAutonomyResponse as m, type AutonomyStatus as n, type SmartPaymentResponse as o, type CreateSessionKeyRequest as p, type CreateSessionKeyResponse as q, type CreateDeviceBoundSessionKeyRequest as r, type CreateDeviceBoundSessionKeyResponse as s, type SubmitSignedTransactionRequest as t, type SubmitTransactionResponse as u, type SessionKeyStatus as v, type SessionKeyListResponse as w, type TopUpSessionKeyResponse as x, type CreatePaymentRequest as y, type Payment as z };

package/dist/{webhook-handler-B-RdABQr.d.ts → webhook-handler-D5CigE9G.d.ts}

@@ -822,6 +822,16 @@ interface CreateSessionKeyRequest {
     duration_days?: number;
     /** Device fingerprint for security */
     device_fingerprint: string;
+    /**
+     * Optional: Link to an existing AI session for policy enforcement.
+     * When linked, payments will check both session key balance AND session limits.
+     */
+    link_session_id?: string;
+    /**
+     * Optional: Link to a session by token instead of ID.
+     * Mutually exclusive with link_session_id.
+     */
+    link_session_token?: string;
 }
 /**
  * Session key creation response (custodial mode)
@@ -921,6 +931,29 @@ interface SessionKeyStatus {
     days_until_expiry: number;
     /** Security status */
     security_status: SecurityStatus;
+    /** Linked AI session info (if linked) */
+    linked_session?: LinkedSessionInfo;
+}
+/**
+ * Information about a linked AI session (for policy enforcement)
+ */
+interface LinkedSessionInfo {
+    /** Session ID */
+    session_id: string;
+    /** Agent ID */
+    agent_id: string;
+    /** Whether the linked session is active */
+    is_active: boolean;
+    /** Per-transaction limit */
+    max_per_transaction?: number;
+    /** Daily remaining */
+    remaining_today: number;
+    /** Weekly remaining */
+    remaining_this_week: number;
+    /** Monthly remaining */
+    remaining_this_month: number;
+    /** Effective limit (minimum of session key balance and session limits) */
+    effective_limit: number;
 }
 interface SecurityStatus {
     device_fingerprint_matched: boolean;
@@ -1095,4 +1128,4 @@ interface WebhookResult {
 }
 declare function processWebhook(a: any, b?: any, c?: any): Promise<WebhookResult>;
 
-export { processWebhook as $, type AgentApiKey as A, type PaginatedResponse as B, type CreateAgentApiKeyRequest as C, type CreateSubscriptionPlanRequest as D, type EnableAutonomyRequest as E, type SubscriptionPlan as F, type CreateSubscriptionRequest as G, type Subscription as H, type CreatePaymentLinkRequest as I, type PaymentLink as J, type CreateInstallmentPlanRequest as K, type ListPaymentsRequest as L, type InstallmentPlan as M, type CreateEscrowRequest as N, type Escrow as O, type PaymentIntent as P, type ApproveEscrowRequest as Q, type RefundEscrowRequest as R, type SmartPaymentRequest as S, type TopUpSessionKeyRequest as T, type DisputeEscrowRequest as U, type CreateInvoiceRequest as V, type WebhookHandlerConfig as W, type Invoice as X, type VerifyWebhookRequest as Y, type ZendFiConfig as Z, type WebhookPayload as _, type WebhookHandlers as a, type WebhookResult as a0, type WebhookEventHandler as a1, type Brand as a2, type PaymentId as a3, type SessionId as a4, type AgentKeyId as a5, type MerchantId as a6, type InvoiceId as a7, type SubscriptionId as a8, type EscrowId as a9, type CreateInstallmentPlanResponse as aA, type ReleaseCondition as aB, type InvoiceLineItem as aC, type ApiKeyScope as aD, type SessionLimits as aE, type PaymentIntentStatus as aF, type CaptureMethod as aG, type UserProfile as aH, type PPPConfig as aI, type AutonomousDelegate as aJ, type RevokeAutonomyRequest as aK, type SmartPaymentStatus as aL, type SessionKeyInstructions as aM, type SessionKeySecurityInfo as aN, type SecurityStatus as aO, type SessionKeyStats as aP, type InstallmentPlanId as aa, type PaymentLinkCode as ab, type IntentId as ac, asPaymentId as ad, asSessionId as ae, asAgentKeyId as af, asMerchantId as ag, asInvoiceId as ah, asSubscriptionId as ai, asEscrowId as aj, asInstallmentPlanId as ak, asPaymentLinkCode as al, asIntentId as am, type Environment as an, type ApiKeyMode as ao, type Currency as ap, type PaymentToken as aq, type PaymentStatus as ar, type SubscriptionStatus as as, type InstallmentPlanStatus as at, type EscrowStatus as au, type InvoiceStatus as av, type SplitStatus as aw, type WebhookEvent as ax, type SplitRecipient as ay, type InstallmentScheduleItem as az, type CreateAgentSessionRequest as b, type AgentSession as c, type AgentPaymentRequest as d, type AgentPaymentResponse as e, type AgentAnalytics as f, type CreatePaymentIntentRequest as g, type ConfirmPaymentIntentRequest as h, type PaymentIntentEvent as i, type PPPFactor as j, type PricingSuggestionRequest as k, type PricingSuggestion as l, type EnableAutonomyResponse as m, type AutonomyStatus as n, type SmartPaymentResponse as o, type CreateSessionKeyRequest as p, type CreateSessionKeyResponse as q, type CreateDeviceBoundSessionKeyRequest as r, type CreateDeviceBoundSessionKeyResponse as s, type SubmitSignedTransactionRequest as t, type SubmitTransactionResponse as u, type SessionKeyStatus as v, type SessionKeyListResponse as w, type TopUpSessionKeyResponse as x, type CreatePaymentRequest as y, type Payment as z };
+export { processWebhook as $, type AgentApiKey as A, type PaginatedResponse as B, type CreateAgentApiKeyRequest as C, type CreateSubscriptionPlanRequest as D, type EnableAutonomyRequest as E, type SubscriptionPlan as F, type CreateSubscriptionRequest as G, type Subscription as H, type CreatePaymentLinkRequest as I, type PaymentLink as J, type CreateInstallmentPlanRequest as K, type ListPaymentsRequest as L, type InstallmentPlan as M, type CreateEscrowRequest as N, type Escrow as O, type PaymentIntent as P, type ApproveEscrowRequest as Q, type RefundEscrowRequest as R, type SmartPaymentRequest as S, type TopUpSessionKeyRequest as T, type DisputeEscrowRequest as U, type CreateInvoiceRequest as V, type WebhookHandlerConfig as W, type Invoice as X, type VerifyWebhookRequest as Y, type ZendFiConfig as Z, type WebhookPayload as _, type WebhookHandlers as a, type WebhookResult as a0, type WebhookEventHandler as a1, type Brand as a2, type PaymentId as a3, type SessionId as a4, type AgentKeyId as a5, type MerchantId as a6, type InvoiceId as a7, type SubscriptionId as a8, type EscrowId as a9, type CreateInstallmentPlanResponse as aA, type ReleaseCondition as aB, type InvoiceLineItem as aC, type ApiKeyScope as aD, type SessionLimits as aE, type PaymentIntentStatus as aF, type CaptureMethod as aG, type UserProfile as aH, type PPPConfig as aI, type AutonomousDelegate as aJ, type RevokeAutonomyRequest as aK, type SmartPaymentStatus as aL, type SessionKeyInstructions as aM, type SessionKeySecurityInfo as aN, type LinkedSessionInfo as aO, type SecurityStatus as aP, type SessionKeyStats as aQ, type InstallmentPlanId as aa, type PaymentLinkCode as ab, type IntentId as ac, asPaymentId as ad, asSessionId as ae, asAgentKeyId as af, asMerchantId as ag, asInvoiceId as ah, asSubscriptionId as ai, asEscrowId as aj, asInstallmentPlanId as ak, asPaymentLinkCode as al, asIntentId as am, type Environment as an, type ApiKeyMode as ao, type Currency as ap, type PaymentToken as aq, type PaymentStatus as ar, type SubscriptionStatus as as, type InstallmentPlanStatus as at, type EscrowStatus as au, type InvoiceStatus as av, type SplitStatus as aw, type WebhookEvent as ax, type SplitRecipient as ay, type InstallmentScheduleItem as az, type CreateAgentSessionRequest as b, type AgentSession as c, type AgentPaymentRequest as d, type AgentPaymentResponse as e, type AgentAnalytics as f, type CreatePaymentIntentRequest as g, type ConfirmPaymentIntentRequest as h, type PaymentIntentEvent as i, type PPPFactor as j, type PricingSuggestionRequest as k, type PricingSuggestion as l, type EnableAutonomyResponse as m, type AutonomyStatus as n, type SmartPaymentResponse as o, type CreateSessionKeyRequest as p, type CreateSessionKeyResponse as q, type CreateDeviceBoundSessionKeyRequest as r, type CreateDeviceBoundSessionKeyResponse as s, type SubmitSignedTransactionRequest as t, type SubmitTransactionResponse as u, type SessionKeyStatus as v, type SessionKeyListResponse as w, type TopUpSessionKeyResponse as x, type CreatePaymentRequest as y, type Payment as z };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zendfi/sdk",
-  "version": "0.5.4",
+  "version": "0.5.7",
   "description": "Zero-config TypeScript SDK for ZendFi crypto payments",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",