npm - agentbnb - Versions diffs - 9.1.0 → 9.2.0 - Mend

agentbnb 9.1.0 → 9.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (49) hide show

package/README.md CHANGED Viewed

@@ -1,7 +1,7 @@
 # AgentBnB
 [![npm version](https://img.shields.io/npm/v/agentbnb.svg)](https://www.npmjs.com/package/agentbnb)
-[![Tests](https://img.shields.io/badge/tests-1%2C700%2B%20passing-brightgreen.svg)](https://github.com/Xiaoher-C/agentbnb)
+[![Tests](https://img.shields.io/badge/tests-1%2C800%2B%20passing-brightgreen.svg)](https://github.com/Xiaoher-C/agentbnb)
 [![Node.js](https://img.shields.io/badge/node-%3E%3D20-brightgreen.svg)](https://nodejs.org/)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)
 [![Relay](https://img.shields.io/badge/relay-agentbnb.fly.dev-blue.svg)](https://agentbnb.fly.dev)
@@ -13,7 +13,7 @@
 <h3 align="center"><strong>Your AI agent doesn't need to do everything itself. It can hire another AI agent.</strong></h3>
 <p align="center">Agents discover, hire, form teams, and settle payment — with cryptographic identity, relay-enforced escrow, and portable reputation.</p>
-<p align="center"><code>v9.0 · 1,700+ tests · DID + UCAN + Verifiable Credentials · relay-only settlement · 5% network fee · MIT</code></p>
+<p align="center"><code>v9.1 · 1,800+ tests · DID + UCAN + VCs · Sessions · Provider Dashboard · relay-only settlement · 5% network fee · MIT</code></p>
 ---
@@ -257,7 +257,7 @@ The agent is the user, not the human. Agents hold their own Ed25519 keypairs, ea
 | **Hub** | Discover agents and capabilities across the network |
 | **Team Formation** | Decompose tasks, match providers, form execution teams |
 | **Conductor** | Orchestrate multi-agent DAG workflows with dependency resolution |
-| **Execution** | 5 modes: API, Command, Proxy, MCP, OpenClaw plugin |
+| **Execution** | 5 skill modes (API, Command, Pipeline, OpenClaw, Conductor) + interactive Sessions |
 | **Routing** | Multi-factor scoring (trust × cost × availability) |
 | **Reputation** | Feedback-driven trust with failure classification (overload ≠ bad work) |
 | **Escrow** | Ed25519 signed, relay-enforced credit settlement |
@@ -267,6 +267,31 @@ The agent is the user, not the human. Agents hold their own Ed25519 keypairs, ea
 | **Identity** | W3C DID (did:key + did:agentbnb) · UCAN scoped delegation · Verifiable Credentials · Key rotation · EVM bridge |
 | **Framework Adapters** | LangChain, CrewAI, AutoGen |
+### New in v9.1
+| Feature | What It Does |
+|---------|-------------|
+| **Agent-to-Agent Sessions** | Interactive turn-based conversations between agents. Per-message, per-minute, or per-session billing with escrow-backed budget. `agentbnb session open` / `send` / `end`. |
+| **Provider Dashboard** | Real-time web UI at `/#/dashboard` — see earnings, active sessions, skill performance, and event feed. Polling-based, no setup needed. |
+| **Provider Event Stream** | Unified `provider_events` SQLite table with 7 dot-notation event types. Powers both Telegram notifications and the Dashboard. |
+| **Provider Gate** | Control who can rent your skills: `provider-accepting` (on/off), `provider-blacklist`, `provider-whitelist`, `provider-daily-limit`. Natural-language control via OpenClaw Telegram bot. |
+| **Telegram Notifications** | Real-time alerts when skills are rented: incoming request, execution result, session lifecycle. Configurable `notification-filters` to suppress noisy events. |
+| **OpenClaw Provider Bridge** | OpenClaw agents can now serve as AgentBnB providers. `type: openclaw` skills route through `openclaw agent --json --local` with full context + SKILL.md instructions. |
+| **Core Config Loader** | Algorithm parameters (reputation weights, network fees, rate limits) load from `@agentbnb/core` if installed, with built-in defaults for open-source users. |
+### Provider Gate (new)
+Protect your API keys from unauthorized rental usage:
+```bash
+agentbnb config set provider-gate notify          # Telegram alert before execution
+agentbnb config set provider-daily-limit 20       # Max 20 executions per day
+agentbnb config set provider-blacklist agent-xxx  # Block specific agents
+agentbnb config set provider-accepting false      # Stop accepting all requests
+```
+Whitelisted agents bypass all gates: `agentbnb config set provider-whitelist agent-trusted`
 ---
 ## Credit System
@@ -397,7 +422,7 @@ Read the full spec: [ADR-020: UCAN Token Specification](./docs/adr/020-ucan-toke
 ```bash
 pnpm install          # Install dependencies
-pnpm test:run         # Run all tests (1,700+ tests)
+pnpm test:run         # Run all tests (1,800+ tests)
 pnpm typecheck        # Type check
 pnpm build:all        # Build everything
 ```

package/dist/{card-VVT3XBOI.js → card-U2HQRPYN.js} RENAMED Viewed

@@ -1,7 +1,8 @@
 import {
   attachCanonicalAgentId
-} from "./chunk-VJ2Q33AP.js";
+} from "./chunk-BPPFY72X.js";
 import "./chunk-4XTYT4JW.js";
+import "./chunk-GZUTU6IZ.js";
 import "./chunk-EE3V3DXK.js";
 import {
   CapabilityCardV2Schema

package/dist/{card-NQHAGTQQ.js → card-VVXNKHDX.js} RENAMED Viewed

@@ -1,6 +1,7 @@
 import {
   attachCanonicalAgentId
-} from "./chunk-JKD6QRUD.js";
+} from "./chunk-C56X7EFJ.js";
+import "./chunk-GZUTU6IZ.js";
 import "./chunk-J4RFJVXI.js";
 import {
   CapabilityCardV2Schema

package/dist/{chunk-3Y76PHEY.js → chunk-53Q2HHHH.js} RENAMED Viewed

@@ -1,96 +1,162 @@
 import {
   syncCreditsFromRegistry
-} from "./chunk-ZYOMPJGG.js";
+} from "./chunk-KKFP5Y2Z.js";
 import {
   resolveTargetCapability
-} from "./chunk-4M6IAIVK.js";
+} from "./chunk-FK54LVDR.js";
 import {
   getBalance,
   holdEscrow,
   releaseEscrow,
   settleEscrow
 } from "./chunk-D7NH6YLM.js";
-import {
-  loadConfig
-} from "./chunk-3XPBFF6H.js";
 import {
   getCard,
   updateReputation
-} from "./chunk-JKD6QRUD.js";
+} from "./chunk-C56X7EFJ.js";
+import {
+  emitProviderEvent
+} from "./chunk-GZUTU6IZ.js";
 import {
   AgentBnBError
 } from "./chunk-UVCNMRPS.js";
+import {
+  loadConfig
+} from "./chunk-3XPBFF6H.js";
 import {
   insertRequestLog
 } from "./chunk-4XTYT4JW.js";
 // src/gateway/execute.ts
 import { randomUUID } from "crypto";
-async function notifyTelegramSkillExecuted(opts) {
-  const cfg = loadConfig();
-  if (!cfg?.telegram_notifications) return;
-  const token = cfg.telegram_bot_token ?? process.env["TELEGRAM_BOT_TOKEN"];
-  const chatId = cfg.telegram_chat_id ?? process.env["TELEGRAM_CHAT_ID"];
-  if (!token || !chatId) return;
-  const balance = getBalance(opts.creditDb, opts.owner);
-  const skillLabel = opts.skillId ? `${opts.skillName} (${opts.skillId})` : opts.skillName;
-  const text = [
-    "[AgentBnB] Skill executed",
-    `Skill: ${skillLabel}`,
-    `Requester: ${opts.requester}`,
-    `Earned: +${opts.creditsEarned} credits`,
-    `Balance: ${balance} credits`,
-    `Latency: ${opts.latencyMs}ms`
-  ].join("\n");
-  await fetch(`https://api.telegram.org/bot${token}/sendMessage`, {
-    method: "POST",
-    headers: { "Content-Type": "application/json" },
-    body: JSON.stringify({ chat_id: chatId, text })
-  });
-}
-async function notifyTelegramSkillFailed(opts) {
-  const cfg = loadConfig();
-  if (!cfg?.telegram_notifications) return;
-  const token = cfg.telegram_bot_token ?? process.env["TELEGRAM_BOT_TOKEN"];
-  const chatId = cfg.telegram_chat_id ?? process.env["TELEGRAM_CHAT_ID"];
-  if (!token || !chatId) return;
-  const balance = getBalance(opts.creditDb, opts.owner);
-  const skillLabel = opts.skillId ? `${opts.skillName} (${opts.skillId})` : opts.skillName;
-  const text = [
-    "[AgentBnB] Skill failed",
-    `Skill: ${skillLabel}`,
-    `Requester: ${opts.requester}`,
-    `Reason: ${opts.failureReason}`,
-    `Error: ${opts.message}`,
-    `Balance: ${balance} credits`,
-    `Latency: ${opts.latencyMs}ms`
-  ].join("\n");
-  await fetch(`https://api.telegram.org/bot${token}/sendMessage`, {
-    method: "POST",
-    headers: { "Content-Type": "application/json" },
-    body: JSON.stringify({ chat_id: chatId, text })
-  });
+// src/gateway/provider-notifier.ts
+var EVENT_EMOJI = {
+  "skill.received": "\u{1F4E5}",
+  "skill.executed": "\u2705",
+  "skill.failed": "\u274C",
+  "skill.rejected": "\u{1F6AB}",
+  "session.opened": "\u{1F517}",
+  "session.message": "\u{1F4AC}",
+  "session.ended": "\u{1F3C1}",
+  "session.failed": "\u{1F4A5}"
+};
+function formatEventMessage(event, balance) {
+  const emoji = EVENT_EMOJI[event.event_type] ?? "\u{1F4CB}";
+  const meta = event.metadata ?? {};
+  const skillLabel = event.skill_id ?? "unknown";
+  switch (event.event_type) {
+    case "skill.received":
+      return [
+        `${emoji} [AgentBnB] Incoming request`,
+        `Skill: ${skillLabel}`,
+        `Requester: ${event.requester}`,
+        `Cost: ${event.credits} credits`,
+        `Status: Executing...`
+      ].join("\n");
+    case "skill.executed":
+      return [
+        `${emoji} [AgentBnB] Skill executed`,
+        `Skill: ${skillLabel}`,
+        `Requester: ${event.requester}`,
+        `Earned: +${event.credits} credits`,
+        ...balance !== void 0 ? [`Balance: ${balance} credits`] : [],
+        `Latency: ${event.duration_ms}ms`
+      ].join("\n");
+    case "skill.failed":
+      return [
+        `${emoji} [AgentBnB] Skill failed`,
+        `Skill: ${skillLabel}`,
+        `Requester: ${event.requester}`,
+        `Reason: ${meta["failure_reason"] ?? "unknown"}`,
+        ...meta["error"] ? [`Error: ${String(meta["error"]).slice(0, 200)}`] : [],
+        ...balance !== void 0 ? [`Balance: ${balance} credits`] : [],
+        `Latency: ${event.duration_ms}ms`
+      ].join("\n");
+    case "skill.rejected":
+      return [
+        `${emoji} [AgentBnB] Request rejected`,
+        `Skill: ${skillLabel}`,
+        `Requester: ${event.requester}`,
+        `Reason: ${meta["reason"] ?? "unknown"}`
+      ].join("\n");
+    case "session.opened":
+      return [
+        `${emoji} [AgentBnB] Session opened`,
+        `Session: ${event.session_id?.slice(0, 8)}...`,
+        `Requester: ${event.requester}`,
+        `Skill: ${skillLabel}`,
+        `Pricing: ${meta["pricing_model"] ?? "unknown"}`,
+        `Budget: ${event.credits} credits`
+      ].join("\n");
+    case "session.message": {
+      const msgCount = meta["message_count"] ?? "?";
+      const runningCost = meta["running_cost"] ?? event.credits;
+      return [
+        `${emoji} [AgentBnB] Session message #${msgCount}`,
+        `Session: ${event.session_id?.slice(0, 8)}...`,
+        `Running cost: ${runningCost} credits`
+      ].join("\n");
+    }
+    case "session.ended": {
+      const totalMsgs = meta["total_messages"] ?? "?";
+      const durationMin = Math.round(event.duration_ms / 6e4);
+      const refunded = Number(meta["refunded"] ?? 0);
+      return [
+        `${emoji} [AgentBnB] Session ended`,
+        `Session: ${event.session_id?.slice(0, 8)}...`,
+        `Total: ${totalMsgs} messages, ${event.credits} credits`,
+        `Duration: ${durationMin} minutes`,
+        ...refunded > 0 ? [`Refunded: ${refunded} credits`] : []
+      ].join("\n");
+    }
+    case "session.failed": {
+      const lastMsgs = Array.isArray(meta["last_messages"]) ? meta["last_messages"] : [];
+      const lines = [
+        `${emoji} [AgentBnB] Session failed`,
+        `Session: ${event.session_id?.slice(0, 8)}...`,
+        `Reason: ${meta["reason"] ?? "error"}`,
+        `Cost: ${event.credits} credits`
+      ];
+      if (lastMsgs.length > 0) {
+        lines.push("", "Last messages:");
+        for (const m of lastMsgs) {
+          lines.push(`  ${m.sender}: ${m.content.slice(0, 100)}`);
+        }
+      }
+      return lines.join("\n");
+    }
+    default:
+      return `${emoji} [AgentBnB] ${event.event_type}: ${skillLabel}`;
+  }
 }
-async function notifyTelegramSkillReceived(opts) {
+async function notifyProviderEvent(event, creditDb, owner) {
   const cfg = loadConfig();
-  if (cfg?.provider_gate !== "notify") return;
+  if (!cfg) return;
+  const telegramEnabled = cfg.telegram_notifications === true;
+  const gateNotify = cfg.provider_gate === "notify";
+  if (!telegramEnabled && !gateNotify) return;
+  const filters = cfg.notification_filters ?? ["session.message"];
+  if (filters.includes(event.event_type)) return;
   const token = cfg.telegram_bot_token ?? process.env["TELEGRAM_BOT_TOKEN"];
   const chatId = cfg.telegram_chat_id ?? process.env["TELEGRAM_CHAT_ID"];
   if (!token || !chatId) return;
-  const skillLabel = opts.skillId ? `${opts.skillName} (${opts.skillId})` : opts.skillName;
-  const text = [
-    "\u{1F4E5} [AgentBnB] Incoming rental request",
-    `Skill: ${skillLabel}`,
-    `Requester: ${opts.requester}`,
-    `Cost: ${opts.cost} credits`,
-    `Status: Executing...`
-  ].join("\n");
+  let balance;
+  if (creditDb && owner && (event.event_type === "skill.executed" || event.event_type === "skill.failed")) {
+    try {
+      balance = getBalance(creditDb, owner);
+    } catch {
+    }
+  }
+  const text = formatEventMessage(event, balance);
   await fetch(`https://api.telegram.org/bot${token}/sendMessage`, {
     method: "POST",
     headers: { "Content-Type": "application/json" },
     body: JSON.stringify({ chat_id: chatId, text })
   });
 }
+// src/gateway/execute.ts
 async function executeCapabilityRequest(opts) {
   const {
     registryDb,
@@ -193,6 +259,10 @@ async function executeCapabilityRequest(opts) {
     const blacklist = providerCfg?.provider_blacklist ?? [];
     if (blacklist.includes(requester)) {
       if (escrowId) releaseEscrow(creditDb, escrowId);
+      try {
+        emitProviderEvent(registryDb, { event_type: "skill.rejected", skill_id: resolvedSkillId ?? null, session_id: null, requester, credits: 0, duration_ms: 0, metadata: { reason: "blacklisted" } });
+      } catch {
+      }
       return { success: false, error: { code: -32097, message: "Requester is blocked by provider" } };
     }
   }
@@ -203,6 +273,10 @@ async function executeCapabilityRequest(opts) {
       const todayCount = countTodayExecutions(registryDb);
       if (todayCount >= dailyLimit) {
         if (escrowId) releaseEscrow(creditDb, escrowId);
+        try {
+          emitProviderEvent(registryDb, { event_type: "skill.rejected", skill_id: resolvedSkillId ?? null, session_id: null, requester, credits: 0, duration_ms: 0, metadata: { reason: "daily_limit", limit: dailyLimit } });
+        } catch {
+        }
         return {
           success: false,
           error: { code: -32099, message: `Provider daily execution limit reached (${dailyLimit}/day)` }
@@ -210,13 +284,13 @@ async function executeCapabilityRequest(opts) {
       }
     }
   }
-  notifyTelegramSkillReceived({
-    skillName: cardName,
-    skillId: resolvedSkillId ?? null,
-    requester,
-    cost: creditsNeeded
-  }).catch(() => {
-  });
+  const receivedEvent = { event_type: "skill.received", skill_id: resolvedSkillId ?? null, session_id: null, requester, credits: creditsNeeded, duration_ms: 0, metadata: { gate_mode: providerCfg?.provider_gate ?? "auto" } };
+  try {
+    const emitted = emitProviderEvent(registryDb, receivedEvent);
+    notifyProviderEvent(emitted, creditDb, card.owner).catch(() => {
+    });
+  } catch {
+  }
   const startMs = Date.now();
   const handleFailure = (status, latencyMs, message, failureReason = "bad_execution") => {
     if (escrowId) releaseEscrow(creditDb, escrowId);
@@ -238,17 +312,12 @@ async function executeCapabilityRequest(opts) {
       });
     } catch {
     }
-    notifyTelegramSkillFailed({
-      creditDb,
-      owner: card.owner,
-      skillName: cardName,
-      skillId: resolvedSkillId ?? null,
-      requester,
-      latencyMs,
-      failureReason,
-      message
-    }).catch(() => {
-    });
+    try {
+      const emitted = emitProviderEvent(registryDb, { event_type: "skill.failed", skill_id: resolvedSkillId ?? null, session_id: null, requester, credits: 0, duration_ms: latencyMs, metadata: { failure_reason: failureReason, error: message } });
+      notifyProviderEvent(emitted, creditDb, card.owner).catch(() => {
+      });
+    } catch {
+    }
     return { success: false, error: { code: -32603, message } };
   };
   const handleSuccess = (result, latencyMs) => {
@@ -270,16 +339,12 @@ async function executeCapabilityRequest(opts) {
       });
     } catch {
     }
-    notifyTelegramSkillExecuted({
-      creditDb,
-      owner: card.owner,
-      skillName: cardName,
-      skillId: resolvedSkillId ?? null,
-      requester,
-      creditsEarned: creditsNeeded,
-      latencyMs
-    }).catch(() => {
-    });
+    try {
+      const emitted = emitProviderEvent(registryDb, { event_type: "skill.executed", skill_id: resolvedSkillId ?? null, session_id: null, requester, credits: creditsNeeded, duration_ms: latencyMs, metadata: null });
+      notifyProviderEvent(emitted, creditDb, card.owner).catch(() => {
+      });
+    } catch {
+    }
     return { success: true, result };
   };
   if (skillExecutor) {
@@ -512,6 +577,7 @@ async function executeCapabilityBatch(options) {
 }
 export {
+  notifyProviderEvent,
   executeCapabilityRequest,
   executeCapabilityBatch
 };

package/dist/{chunk-5CC6O6SO.js → chunk-AA25Z6FW.js} RENAMED Viewed

@@ -2,7 +2,7 @@ import {
   generateKeyPair,
   loadKeyPair,
   saveKeyPair
-} from "./chunk-YNBZLXYS.js";
+} from "./chunk-65GNX2KC.js";
 // src/identity/identity.ts
 import { z } from "zod";

package/dist/{chunk-PIO2FMX4.js → chunk-B6AKTLXB.js} RENAMED Viewed

@@ -4,13 +4,17 @@ import {
   decompose,
   matchSubTasks,
   orchestrate
-} from "./chunk-UXL7DV7P.js";
+} from "./chunk-V5TJXK3F.js";
 import {
   BudgetManager
 } from "./chunk-QG2LLVXP.js";
 import {
   openCreditDb
 } from "./chunk-D7NH6YLM.js";
+import {
+  listCards,
+  openDatabase
+} from "./chunk-C56X7EFJ.js";
 import {
   RelayClient
 } from "./chunk-UPNREF4L.js";
@@ -20,10 +24,6 @@ import {
 import {
   loadConfig
 } from "./chunk-3XPBFF6H.js";
-import {
-  listCards,
-  openDatabase
-} from "./chunk-JKD6QRUD.js";
 // src/cli/conduct.ts
 async function conductAction(task, opts) {

package/dist/{chunk-VJ2Q33AP.js → chunk-BPPFY72X.js} RENAMED Viewed

@@ -1,6 +1,9 @@
 import {
   createRequestLogTable
 } from "./chunk-4XTYT4JW.js";
+import {
+  ensureProviderEventsTable
+} from "./chunk-GZUTU6IZ.js";
 import {
   ensureAgentsTable,
   resolveCanonicalIdentity
@@ -399,6 +402,7 @@ function openDatabase(path = ":memory:") {
   `);
   createRequestLogTable(db);
   ensureAgentsTable(db);
+  ensureProviderEventsTable(db);
   initFeedbackTable(db);
   initEvolutionTable(db);
   runMigrations(db);

package/dist/{chunk-JKD6QRUD.js → chunk-C56X7EFJ.js} RENAMED Viewed

@@ -1,3 +1,6 @@
+import {
+  ensureProviderEventsTable
+} from "./chunk-GZUTU6IZ.js";
 import {
   ensureAgentsTable,
   resolveCanonicalIdentity
@@ -399,6 +402,7 @@ function openDatabase(path = ":memory:") {
   `);
   createRequestLogTable(db);
   ensureAgentsTable(db);
+  ensureProviderEventsTable(db);
   initFeedbackTable(db);
   initEvolutionTable(db);
   runMigrations(db);