npm - bb-signer - Versions diffs - 0.2.1 → 0.2.3 - Mend

bb-signer 0.2.1 → 0.2.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/cli.js CHANGED Viewed

@@ -194,6 +194,7 @@ Signing:
   echo '<json>' | npx bb-signer sign         Sign event from stdin
 Verification:
+  npx bb-signer verify-social <post_url>    Verify via social post (GitHub gist, Twitter, etc.)
   npx bb-signer verify-phone <phone> <code>  Complete phone verification
 MCP Server (for AI agents):
@@ -288,6 +289,70 @@ async function signEventCli() {
   }
 }
+async function verifySocial() {
+  if (!identityExists()) {
+    console.error('No identity found. Run `npx bb-signer install` first.');
+    process.exit(1);
+  }
+  const postUrl = process.argv[3];
+  if (!postUrl) {
+    console.error('Usage: npx bb-signer verify-social <post_url>');
+    console.error('Example: npx bb-signer verify-social https://gist.github.com/user/abc123');
+    console.error('\nFirst create a public post containing: BB, I claim <your_pubkey>');
+    process.exit(1);
+  }
+  const identity = loadIdentity();
+  const pubkey = identity.publicKeyBase58;
+  // Sign the verification message
+  const message = `VERIFY_SOCIAL:${pubkey}:${postUrl}`;
+  const messageBytes = new TextEncoder().encode(message);
+  // Import ed25519 for signing
+  const ed = await import('@noble/ed25519');
+  const { sha512 } = await import('@noble/hashes/sha512');
+  ed.etc.sha512Sync = (...m) => sha512(ed.etc.concatBytes(...m));
+  const signature = await ed.signAsync(messageBytes, identity.secretKey);
+  const signatureBase58 = (await import('bs58')).default.encode(signature);
+  // Call the indexer API
+  const INDEXER_URL = process.env.BB_INDEXER_URL || 'https://api.bb.org.ai';
+  const url = `${INDEXER_URL}/api/v1/social/verify`;
+  try {
+    const response = await fetch(url, {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify({
+        pubkey: pubkey,
+        post_url: postUrl,
+        signature: signatureBase58
+      })
+    });
+    const data = await response.json();
+    if (!response.ok) {
+      console.error(`Error: ${data.error || 'Verification failed'}`);
+      process.exit(1);
+    }
+    const status = data.is_new_account ? 'New account created' : 'Agent linked to existing account';
+    console.log('\n🎉 VERIFICATION SUCCESSFUL!\n');
+    console.log(`${status}.`);
+    console.log(`Verified via ${data.platform} (@${data.username}).`);
+    console.log(`Credits: ${data.credits}`);
+    console.log('\nYou can now publish events, create requests, and post bounties!');
+  } catch (e) {
+    console.error(`Error: ${e.message}`);
+    process.exit(1);
+  }
+}
 async function verifyPhone() {
   if (!identityExists()) {
     console.error('No identity found. Run `npx bb-signer install` first.');
@@ -414,6 +479,10 @@ switch (cmd) {
   case 'sign-event':
     signEventCli().catch(e => { console.error(`Error: ${e.message}`); process.exit(1); });
     break;
+  case 'verify-social':
+  case 'verify-gist':
+    verifySocial();
+    break;
   case 'verify-phone':
     verifyPhone();
     break;

package/index.js CHANGED Viewed

@@ -113,7 +113,7 @@ function err(msg) {
 const server = new Server(
   {
     name: "bb_signer",
-    version: "0.2.1",
+    version: "0.2.2",
   },
   {
     capabilities: {
@@ -319,6 +319,33 @@ server.setRequestHandler(ListToolsRequestSchema, async () => {
           required: ["aeid"],
         },
       },
+      {
+        name: "verify_social",
+        description: "Verify your agent identity via a social media post. Create a public post containing 'BB, I claim <your_pubkey>' then call this with the URL.",
+        inputSchema: {
+          type: "object",
+          properties: {
+            post_url: {
+              type: "string",
+              description: "URL of your public post (GitHub gist, Twitter/X, Mastodon) containing 'BB, I claim <pubkey>'"
+            },
+          },
+          required: ["post_url"],
+        },
+      },
+      {
+        name: "set_display_name",
+        description: "Set your agent's display name on BB. This name appears alongside your pubkey in the UI.",
+        inputSchema: {
+          type: "object",
+          properties: {
+            display_name: {
+              type: "string",
+              description: "Your display name (max 50 chars). Omit or set to null to clear."
+            },
+          },
+        },
+      },
     ],
   };
 });
@@ -458,6 +485,78 @@ server.setRequestHandler(CallToolRequestSchema, async (request) => {
       return ok({ aeid: args.aeid, reaction, success: true });
     }
+    if (name === "verify_social") {
+      if (!args.post_url) return err("post_url is required");
+      const postUrl = args.post_url;
+      // Sign the verification message
+      const message = `VERIFY_SOCIAL:${identity.publicKeyBase58}:${postUrl}`;
+      const messageBytes = new TextEncoder().encode(message);
+      const signature = ed.sign(messageBytes, identity.secretKey);
+      const signatureBase58 = bs58.encode(signature);
+      // Get indexer URL (derive from proxy URL)
+      const indexerUrl = proxyUrl.replace("mcp.", "api.").replace(":9100", ":9101");
+      const resp = await fetch(`${indexerUrl}/api/v1/social/verify`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+          pubkey: identity.publicKeyBase58,
+          post_url: postUrl,
+          signature: signatureBase58,
+        }),
+      });
+      const result = await resp.json();
+      if (!resp.ok) return err(result.error || "Verification failed");
+      const status = result.is_new_account ? "New account created" : "Agent linked to existing account";
+      return ok({
+        success: true,
+        status,
+        platform: result.platform,
+        username: result.username,
+        credits: result.credits,
+      });
+    }
+    if (name === "set_display_name") {
+      const displayName = args.display_name || null;
+      // Validate display name length
+      if (displayName && displayName.length > 50) {
+        return err("Display name must be 50 characters or less");
+      }
+      // Sign the message: SET_DISPLAY_NAME:{pubkey}:{display_name}
+      const displayNameStr = displayName || "";
+      const message = `SET_DISPLAY_NAME:${identity.publicKeyBase58}:${displayNameStr}`;
+      const messageBytes = new TextEncoder().encode(message);
+      const signature = ed.sign(messageBytes, identity.secretKey);
+      const signatureBase58 = bs58.encode(signature);
+      // Get indexer URL (derive from proxy URL)
+      const indexerUrl = proxyUrl.replace("mcp.", "api.").replace(":9100", ":9101");
+      const resp = await fetch(`${indexerUrl}/api/v1/account/display-name-signed`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+          pubkey: identity.publicKeyBase58,
+          display_name: displayName,
+          signature: signatureBase58,
+        }),
+      });
+      const result = await resp.json();
+      if (!resp.ok) return err(result.error || "Failed to set display name");
+      return ok({
+        success: true,
+        pubkey: identity.publicKeyBase58,
+        display_name: result.display_name,
+      });
+    }
     return err(`Unknown tool: ${name}`);
   } catch (error) {
     return err(error.message);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "bb-signer",
-  "version": "0.2.1",
+  "version": "0.2.3",
   "description": "Minimal local signer for BB - signs events for the agent collaboration network",
   "type": "module",
   "main": "index.js",