npm - cryptoiz-mcp - Versions diffs - 4.16.15 → 4.16.17 - Mend

cryptoiz-mcp 4.16.15 → 4.16.17

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/LICENSE CHANGED Viewed

@@ -1,21 +1,21 @@
-MIT License
-Copyright (c) 2026 CryptoIZ (https://cryptoiz.org)
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.
+MIT License
+Copyright (c) 2026 CryptoIZ (https://cryptoiz.org)
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md CHANGED Viewed

@@ -1,145 +1,145 @@
-# cryptoiz-mcp
-[![npm version](https://img.shields.io/npm/v/cryptoiz-mcp.svg)](https://www.npmjs.com/package/cryptoiz-mcp)
-[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
-[![x402scan](https://img.shields.io/badge/x402scan-listed-blue)](https://x402scan.com/server/cbd8fff5-d636-4331-b22b-3291717a4e9e)
-[![MCP Marketplace](https://img.shields.io/badge/MCP_Marketplace-listed-green)](https://mcp-marketplace.io/server/io-github-dadang11-cryptoiz)
-**CryptoIZ MCP Server** — Solana DEX whale intelligence as a Model Context Protocol (MCP) server. 9 tools (7 paid + 2 free) for Claude Desktop, Cursor, Codex, and any agentcash-compatible client. Native Solana via x402 V2 + Dexter facilitator (gas-sponsored — no SOL needed, only USDC).
-## ⚡ Recommended Install (1 line)
-```bash
-npx agentcash add https://mcp.cryptoiz.org
-```
-That's it. agentcash auto-generates a Solana wallet at `~/.agentcash/wallet.json` (no private key in your Claude config). Fund with $1-5 USDC via `npx agentcash fund` and you're ready.
-**Why agentcash:**
-- ✅ No private key in Claude Desktop config
-- ✅ Wallet auto-generated and isolated
-- ✅ Gas sponsored by Dexter (zero SOL needed)
-- ✅ Update tools without reinstalling client
-- ✅ One wallet across ALL x402 services (CryptoIZ, HYRE, etc.)
-## 5 Specialized Sub-Agents
-Pick what you need:
-```bash
-npx agentcash add https://mcp.cryptoiz.org/agents/alpha          # Whale alpha signals only
-npx agentcash add https://mcp.cryptoiz.org/agents/btc            # BTC regime + futures
-npx agentcash add https://mcp.cryptoiz.org/agents/phases         # Accumulation/Neutral/Distribution
-npx agentcash add https://mcp.cryptoiz.org/agents/divergence     # Divergence patterns
-npx agentcash add https://mcp.cryptoiz.org/agents/deep-research  # Token deep-dive combo
-```
-## Tools & Pricing
-| Tool | Cost | Description |
-|---|---|---|
-| `get_whale_alpha` | $0.05 USDC | Top 20 alpha signals — whale/dolphin accumulation, entry timing |
-| `get_whale_divergence` | $0.02 USDC | Hidden/breakout/classic divergence signals (4h/1d) |
-| `get_whale_accumulation` | $0.02 USDC | Tokens with smart money accumulating |
-| `get_whale_neutral` | $0.02 USDC | Tokens in transition phase |
-| `get_whale_distribution` | $0.02 USDC | Tokens with whales selling (exit signal) |
-| `get_btc_regime` | $0.01 USDC | BTC macro regime + sentiment + technicals |
-| `get_btc_futures_signal` | $0.03 USDC | BTC futures multi-timeframe signal (54% WR) |
-| `get_token_ca` | FREE | Look up Solana contract address by name |
-| `get_status` | FREE | Server status, available tools, pricing |
-All payments settle on Solana mainnet via [Dexter facilitator](https://x402.dexter.cash). Recipient: `DsKmdkYx49Xc1WhqMUAztwhdYPTqieyC98VmnnJdgpXX`.
-## Legacy Setup (Advanced — not recommended)
-For users who prefer self-custody with their own Solana wallet:
-### 1. Install the package globally
-```bash
-npm install -g cryptoiz-mcp
-```
-### 2. Get a Solana wallet private key (base58)
-You need a Solana wallet with at least **$1 USDC** on mainnet. **No SOL needed** — Dexter sponsors all gas. Recommended: dedicated wallet, NOT your main wallet. Phantom: Settings > Security > Export Private Key.
-### 3. Edit Claude Desktop config
-File: `%APPDATA%\Claude\claude_desktop_config.json` (Windows) or `~/Library/Application Support/Claude/claude_desktop_config.json` (macOS).
-```json
-{
-  "mcpServers": {
-    "cryptoiz": {
-      "command": "C:\\Program Files\\nodejs\\node.exe",
-      "args": ["C:\\Users\\<YOU>\\AppData\\Roaming\\npm\\node_modules\\cryptoiz-mcp\\index.js"],
-      "env": {
-        "SVM_PRIVATE_KEY": "<your_base58_solana_private_key>"
-      }
-    }
-  }
-}
-```
-### 4. Restart Claude Desktop
-Then ask Claude: `get cryptoiz status` — you should see version `v4.16.14` and the tool list.
-## Security
-- **agentcash flow** (recommended): private key auto-generated and isolated, never in Claude config
-- **Gas-sponsored**: Dexter facilitator pays all gas (you only pay USDC)
-- **Server-side validation**: every payment verified via Dexter `/settle` before serving data
-- **x402 V2 spec compliant**: open standard, no custom protocol
-- **No tracking**: only on-chain transaction signature is recorded for replay protection
-- **Dedicated wallet recommended** for legacy npm install (don't use your main wallet)
-## Listed at
-- [MCP Marketplace](https://mcp-marketplace.io/server/io-github-dadang11-cryptoiz)
-- [x402scan](https://x402scan.com/server/cbd8fff5-d636-4331-b22b-3291717a4e9e) — 94+ tx, $2.80+ volume
-- [Official MCP Registry](https://github.com/modelcontextprotocol/registry)
-- MPPscan (pending)
-## Architecture
-```
-Claude Desktop / Cursor / Codex
-     │ (MCP)
-     ▼
-agentcash CLI (or cryptoiz-mcp legacy npm)
-     │ (HTTP)
-     ▼
-mcp.cryptoiz.org gateway (Cloudflare Worker + Supabase Edge Function)
-     │ (POST /settle)
-     ▼
-Dexter facilitator (x402.dexter.cash)
-     │ (signs + broadcasts)
-     ▼
-Solana mainnet
-```
-## Troubleshooting
-### "Transaction simulation failed"
-Update to latest: `npx agentcash add https://mcp.cryptoiz.org` (or `npm install -g cryptoiz-mcp@latest` for legacy).
-### "Server disconnected" on Windows
-Use absolute paths in Claude config (legacy npm only). agentcash flow doesn't have this issue.
-### Update notifications keep showing
-Run `npm install -g cryptoiz-mcp@latest`, force-kill all `node.exe` processes via Task Manager, then restart Claude Desktop. Or switch to agentcash for auto-updates.
-## Links
-- **Platform**: https://cryptoiz.org
-- **Setup guide**: https://cryptoiz.org/McpLanding
-- **Twitter**: [@cryptoiz_IDN](https://twitter.com/cryptoiz_IDN)
-- **Telegram**: https://t.me/agus_artemiss
-- **MCP Marketplace**: https://mcp-marketplace.io/server/io-github-dadang11-cryptoiz
-- **x402scan**: https://x402scan.com/server/mcp.cryptoiz.org
-## License
-MIT © CryptoIZ
+# cryptoiz-mcp
+[![npm version](https://img.shields.io/npm/v/cryptoiz-mcp.svg)](https://www.npmjs.com/package/cryptoiz-mcp)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+[![x402scan](https://img.shields.io/badge/x402scan-listed-blue)](https://x402scan.com/server/cbd8fff5-d636-4331-b22b-3291717a4e9e)
+[![MCP Marketplace](https://img.shields.io/badge/MCP_Marketplace-listed-green)](https://mcp-marketplace.io/server/io-github-dadang11-cryptoiz)
+**CryptoIZ MCP Server** — Solana DEX whale intelligence as a Model Context Protocol (MCP) server. 9 tools (7 paid + 2 free) for Claude Desktop, Cursor, Codex, and any agentcash-compatible client. Native Solana via x402 V2 + Dexter facilitator (gas-sponsored — no SOL needed, only USDC).
+## ⚡ Recommended Install (1 line)
+```bash
+npx agentcash add https://mcp.cryptoiz.org
+```
+That's it. agentcash auto-generates a Solana wallet at `~/.agentcash/wallet.json` (no private key in your Claude config). Fund with $1-5 USDC via `npx agentcash fund` and you're ready.
+**Why agentcash:**
+- ✅ No private key in Claude Desktop config
+- ✅ Wallet auto-generated and isolated
+- ✅ Gas sponsored by Dexter (zero SOL needed)
+- ✅ Update tools without reinstalling client
+- ✅ One wallet across ALL x402 services (CryptoIZ, HYRE, etc.)
+## 5 Specialized Sub-Agents
+Pick what you need:
+```bash
+npx agentcash add https://mcp.cryptoiz.org/agents/alpha          # Whale alpha signals only
+npx agentcash add https://mcp.cryptoiz.org/agents/btc            # BTC regime + futures
+npx agentcash add https://mcp.cryptoiz.org/agents/phases         # Accumulation/Neutral/Distribution
+npx agentcash add https://mcp.cryptoiz.org/agents/divergence     # Divergence patterns
+npx agentcash add https://mcp.cryptoiz.org/agents/deep-research  # Token deep-dive combo
+```
+## Tools & Pricing
+| Tool | Cost | Description |
+|---|---|---|
+| `get_whale_alpha` | $0.10 USDC | Top 20 alpha signals — whale/dolphin accumulation, entry timing |
+| `get_whale_divergence` | $0.04 USDC | Hidden/breakout/classic divergence signals (4h/1d) |
+| `get_whale_accumulation` | $0.03 USDC | Tokens with smart money accumulating |
+| `get_whale_neutral` | $0.03 USDC | Tokens in transition phase |
+| `get_whale_distribution` | $0.04 USDC | Tokens with whales selling (exit signal) |
+| `get_btc_regime` | $0.02 USDC | BTC macro regime + sentiment + technicals |
+| `get_btc_futures_signal` | $0.06 USDC | BTC futures multi-timeframe signal (54% WR) |
+| `get_token_ca` | FREE | Look up Solana contract address by name |
+| `get_status` | FREE | Server status, available tools, pricing |
+All payments settle on Solana mainnet via [Dexter facilitator](https://x402.dexter.cash). Recipient: `DsKmdkYx49Xc1WhqMUAztwhdYPTqieyC98VmnnJdgpXX`.
+## Legacy Setup (Advanced — not recommended)
+For users who prefer self-custody with their own Solana wallet:
+### 1. Install the package globally
+```bash
+npm install -g cryptoiz-mcp
+```
+### 2. Get a Solana wallet private key (base58)
+You need a Solana wallet with at least **$1 USDC** on mainnet. **No SOL needed** — Dexter sponsors all gas. Recommended: dedicated wallet, NOT your main wallet. Phantom: Settings > Security > Export Private Key.
+### 3. Edit Claude Desktop config
+File: `%APPDATA%\Claude\claude_desktop_config.json` (Windows) or `~/Library/Application Support/Claude/claude_desktop_config.json` (macOS).
+```json
+{
+  "mcpServers": {
+    "cryptoiz": {
+      "command": "C:\\Program Files\\nodejs\\node.exe",
+      "args": ["C:\\Users\\<YOU>\\AppData\\Roaming\\npm\\node_modules\\cryptoiz-mcp\\index.js"],
+      "env": {
+        "SVM_PRIVATE_KEY": "<your_base58_solana_private_key>"
+      }
+    }
+  }
+}
+```
+### 4. Restart Claude Desktop
+Then ask Claude: `get cryptoiz status` — you should see version `v4.16.17` and the tool list.
+## Security
+- **agentcash flow** (recommended): private key auto-generated and isolated, never in Claude config
+- **Gas-sponsored**: Dexter facilitator pays all gas (you only pay USDC)
+- **Server-side validation**: every payment verified via Dexter `/settle` before serving data
+- **x402 V2 spec compliant**: open standard, no custom protocol
+- **No tracking**: only on-chain transaction signature is recorded for replay protection
+- **Dedicated wallet recommended** for legacy npm install (don't use your main wallet)
+## Listed at
+- [MCP Marketplace](https://mcp-marketplace.io/server/io-github-dadang11-cryptoiz)
+- [x402scan](https://x402scan.com/server/cbd8fff5-d636-4331-b22b-3291717a4e9e) — 94+ tx, $2.80+ volume
+- [Official MCP Registry](https://github.com/modelcontextprotocol/registry)
+- MPPscan (pending)
+## Architecture
+```
+Claude Desktop / Cursor / Codex
+     │ (MCP)
+     ▼
+agentcash CLI (or cryptoiz-mcp legacy npm)
+     │ (HTTP)
+     ▼
+mcp.cryptoiz.org gateway (Cloudflare Worker + Supabase Edge Function)
+     │ (POST /settle)
+     ▼
+Dexter facilitator (x402.dexter.cash)
+     │ (signs + broadcasts)
+     ▼
+Solana mainnet
+```
+## Troubleshooting
+### "Transaction simulation failed"
+Update to latest: `npx agentcash add https://mcp.cryptoiz.org` (or `npm install -g cryptoiz-mcp@latest` for legacy).
+### "Server disconnected" on Windows
+Use absolute paths in Claude config (legacy npm only). agentcash flow doesn't have this issue.
+### Update notifications keep showing
+Run `npm install -g cryptoiz-mcp@latest`, force-kill all `node.exe` processes via Task Manager, then restart Claude Desktop. Or switch to agentcash for auto-updates.
+## Links
+- **Platform**: https://cryptoiz.org
+- **Setup guide**: https://cryptoiz.org/McpLanding
+- **Twitter**: [@cryptoiz_IDN](https://twitter.com/cryptoiz_IDN)
+- **Telegram**: https://t.me/agus_artemiss
+- **MCP Marketplace**: https://mcp-marketplace.io/server/io-github-dadang11-cryptoiz
+- **x402scan**: https://x402scan.com/server/mcp.cryptoiz.org
+## License
+MIT © CryptoIZ

package/index.js CHANGED Viewed

@@ -1,309 +1,309 @@
-'use strict';
-var VERSION = 'v4.16.15';
-var GATEWAY = 'https://rehqwsypjnjirhuiapqh.supabase.co/functions/v1/mcp-x402-gateway';
-// FIX v4.16.12: route ALL paid tools to gateway. Per-tool endpoints (mcp-alpha-scanner etc.)
-// have stale hardcoded fee payer that breaks after Dexter key rotation. Gateway has dynamic
-// fee payer fetched from /supported. Single source of truth = no per-tool drift.
-var TOOL_ENDPOINTS = {
-  get_whale_alpha: GATEWAY,
-  get_whale_divergence: GATEWAY,
-  get_whale_accumulation: GATEWAY,
-  get_whale_neutral: GATEWAY,
-  get_whale_distribution: GATEWAY,
-  get_btc_regime: GATEWAY,
-  get_btc_futures_signal: GATEWAY,
-  get_token_ca: GATEWAY,
-  get_status: GATEWAY,
-};
-var RECIPIENT = 'DsKmdkYx49Xc1WhqMUAztwhdYPTqieyC98VmnnJdgpXX';
-var USDC_MINT = 'EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v';
-var SOL_RPC = 'https://api.mainnet-beta.solana.com';
-var TOKEN_PROGRAM = 'TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA';
-var ATA_PROGRAM = 'ATokenGPvbdGVxr1b2hvZbsiqW5xWH25efTNsLJA8knL';
-var MEMO_PROGRAM = 'MemoSq4gqABAXKb96qnH8TysNcWxMyWCqXgDLGmfcHr';
-var COMPUTE_BUDGET_PROGRAM = 'ComputeBudget111111111111111111111111111111';
-var _updateNotified = false;
-function notifyUpdate(data, headers) {
-  if (_updateNotified) return;
-  if (!headers || headers.get('x-update-available') !== '1') return;
-  _updateNotified = true;
-  var latest = (data && data.version_latest) || '?';
-  var cmd = (data && data.update_command) || 'npm install -g cryptoiz-mcp@latest';
-  console.error('[cryptoiz-mcp] UPDATE: ' + VERSION + ' -> ' + latest + ' | Run: ' + cmd);
-}
-var solana = require('@solana/web3.js');
-var Connection = solana.Connection;
-var PublicKey = solana.PublicKey;
-var Transaction = solana.Transaction;
-var TransactionMessage = solana.TransactionMessage;
-var VersionedTransaction = solana.VersionedTransaction;
-var Keypair = solana.Keypair;
-// Fix bs58 v6 ESM-only issue: support both CJS (v5) and ESM-compiled (v6)
-var _bs58mod = require('bs58');
-var bs58 = _bs58mod.default || _bs58mod;
-var Server = require('@modelcontextprotocol/sdk/server/index.js').Server;
-var StdioServerTransport = require('@modelcontextprotocol/sdk/server/stdio.js').StdioServerTransport;
-var CallToolRequestSchema = require('@modelcontextprotocol/sdk/types.js').CallToolRequestSchema;
-var ListToolsRequestSchema = require('@modelcontextprotocol/sdk/types.js').ListToolsRequestSchema;
-function getKeypair() {
-  var privKey = process.env.SVM_PRIVATE_KEY;
-  if (!privKey) throw new Error('SVM_PRIVATE_KEY not set in environment');
-  return Keypair.fromSecretKey(bs58.decode(privKey));
-}
-function findATA(wallet, mint) {
-  var walletPk = new PublicKey(wallet);
-  var mintPk = new PublicKey(mint);
-  var ataPk = new PublicKey(ATA_PROGRAM);
-  var tokPk = new PublicKey(TOKEN_PROGRAM);
-  return PublicKey.findProgramAddressSync([walletPk.toBuffer(), tokPk.toBuffer(), mintPk.toBuffer()], ataPk)[0];
-}
-// V2: Dexter gas-sponsored. 4-ix tx: Limit + Price + TransferChecked + Memo(nonce)
-// Dexter pays SOL gas — user only needs USDC
-async function buildV2PaymentPayload(amount, feePayerAddr) {
-  var kp = getKeypair();
-  var conn = new Connection(SOL_RPC, 'confirmed');
-  var userATA = findATA(kp.publicKey.toBase58(), USDC_MINT);
-  var recipientATA = findATA(RECIPIENT, USDC_MINT);
-  var feePayerPk = new PublicKey(feePayerAddr);
-  var computeBudgetPk = new PublicKey(COMPUTE_BUDGET_PROGRAM);
-  var tokenProgramPk = new PublicKey(TOKEN_PROGRAM);
-  var usdcMintPk = new PublicKey(USDC_MINT);
-  // FIX v4.16.13: ComputeUnitLimit 20000 -> 30000.
-  // Memo program needs >13500 CU when content is 'x402:v2:'+32char hex; old (April 6-8)
-  // working code used just 32-char nonceHex which fit in 20000 budget. Bumping limit gives
-  // headroom for slightly longer memo content. Dexter spec allows up to 40000.
-  var setLimitData = Buffer.alloc(5);
-  setLimitData[0] = 0x02;
-  setLimitData.writeUInt32LE(30000, 1);
-  var setLimitIx = { programId: computeBudgetPk, keys: [], data: setLimitData };
-  // ComputeUnitPrice(1)
-  var setPriceData = Buffer.alloc(9);
-  setPriceData[0] = 0x03;
-  setPriceData.writeBigUInt64LE(BigInt(1), 1);
-  var setPriceIx = { programId: computeBudgetPk, keys: [], data: setPriceData };
-  // TransferChecked
-  var transferKeys = [
-    { pubkey: userATA, isSigner: false, isWritable: true },
-    { pubkey: usdcMintPk, isSigner: false, isWritable: false },
-    { pubkey: recipientATA, isSigner: false, isWritable: true },
-    { pubkey: kp.publicKey, isSigner: true, isWritable: false },
-  ];
-  var transferData = Buffer.alloc(10);
-  transferData[0] = 0x0c;
-  transferData.writeUInt32LE(amount & 0xFFFFFFFF, 1);
-  transferData.writeUInt32LE(Math.floor(amount / 0x100000000) & 0xFFFFFFFF, 5);
-  transferData[9] = 6;
-  var transferIx = { programId: tokenProgramPk, keys: transferKeys, data: transferData };
-  // FIX v4.16.12: RESTORE Memo instruction in V2 (4-ix tx: Limit+Price+TransferChecked+Memo).
-  // Empirical: April 6-8 logs prove V2 with memo accepted by Dexter. Removing memo (v4.16.10)
-  // didn't fix anything — the actual bug was Dexter key rotation, fixed in gateway v44.
-  // Memo also makes TX visible to x402scan (memo carries x402 nonce marker).
-  var memoProgramPk = new PublicKey(MEMO_PROGRAM);
-  var nonceBytes = new Uint8Array(16);
-  for (var i = 0; i < 16; i++) nonceBytes[i] = Math.floor(Math.random() * 256);
-  var nonceHex = Array.from(nonceBytes).map(function(b) { return b.toString(16).padStart(2,'0'); }).join('');
-  // FIX v4.16.13: memo = just nonceHex (matches April 6-8 working V2 format).
-  // Adding 'x402:v2:' prefix made memo too long for 20000 CU budget.
-  var memoIx = { programId: memoProgramPk, keys: [], data: Buffer.from(nonceHex, 'utf8') };
-  var bh = await conn.getLatestBlockhash('confirmed');
-  var message = new TransactionMessage({
-    payerKey: feePayerPk,
-    recentBlockhash: bh.blockhash,
-    instructions: [setLimitIx, setPriceIx, transferIx, memoIx],
-  }).compileToV0Message();
-  var vtx = new VersionedTransaction(message);
-  vtx.sign([kp]);
-  var txB64 = Buffer.from(vtx.serialize()).toString('base64');
-  console.error('[cryptoiz-mcp] V2 tx built (Dexter gas-sponsored), 4 ix limit=30000');
-  return txB64;
-}
-// V1: direct on-chain, user pays SOL gas (fallback only)
-async function sendUSDC(amount, toolName) {
-  var kp = getKeypair();
-  var conn = new Connection(SOL_RPC, 'confirmed');
-  var userATA = findATA(kp.publicKey.toBase58(), USDC_MINT);
-  var recipientATA = findATA(RECIPIENT, USDC_MINT);
-  var keys = [
-    { pubkey: userATA, isSigner: false, isWritable: true },
-    { pubkey: new PublicKey(USDC_MINT), isSigner: false, isWritable: false },
-    { pubkey: recipientATA, isSigner: false, isWritable: true },
-    { pubkey: kp.publicKey, isSigner: true, isWritable: false },
-  ];
-  // FIX v4.16.10: TransferChecked needs 10 bytes (1 disc + 8 amount + 1 decimals)
-  var data = Buffer.alloc(10);
-  data[0] = 0x0c;
-  data.writeUInt32LE(amount & 0xFFFFFFFF, 1);
-  data.writeUInt32LE(Math.floor(amount / 0x100000000) & 0xFFFFFFFF, 5);
-  data[9] = 6;
-  var transferIx = { programId: new PublicKey(TOKEN_PROGRAM), keys: keys, data: data };
-  var nonce = Date.now().toString(16) + Math.floor(Math.random()*0xffff).toString(16);
-  var memoIx = {
-    programId: new PublicKey(MEMO_PROGRAM),
-    keys: [],
-    data: Buffer.from('x402:v1:' + (toolName || 'tool') + ':' + nonce, 'utf8')
-  };
-  var bh = await conn.getLatestBlockhash('confirmed');
-  var tx = new Transaction({ feePayer: kp.publicKey, blockhash: bh.blockhash, lastValidBlockHeight: bh.lastValidBlockHeight });
-  tx.add(memoIx);
-  tx.add(transferIx);
-  tx.sign(kp);
-  var sig = await conn.sendRawTransaction(tx.serialize(), { skipPreflight: false });
-  await conn.confirmTransaction({ signature: sig, blockhash: bh.blockhash, lastValidBlockHeight: bh.lastValidBlockHeight }, 'confirmed');
-  console.error('[cryptoiz-mcp] V1 TX: ' + sig);
-  return sig;
-}
-function clientHeaders(extra) {
-  var h = { 'x-client-version': VERSION.replace(/^v/i, '') };
-  if (extra) for (var k in extra) if (Object.prototype.hasOwnProperty.call(extra, k)) h[k] = extra[k];
-  return h;
-}
-// v4.16.14: input validation per tool — defense in depth, server-side double-validates.
-function validateArgs(toolName, args) {
-  if (args == null) return {}; // Empty args ok
-  if (typeof args !== 'object' || Array.isArray(args)) {
-    throw new Error('Invalid args: expected object, got ' + typeof args);
-  }
-  var clean = {};
-  if (toolName === 'get_whale_divergence') {
-    if (args.timeframe != null) {
-      if (typeof args.timeframe !== 'string') throw new Error('timeframe must be string');
-      if (args.timeframe !== '4h' && args.timeframe !== '1d') throw new Error("timeframe must be '4h' or '1d'");
-      clean.timeframe = args.timeframe;
-    }
-  } else if (toolName === 'get_token_ca') {
-    if (args.name == null) throw new Error('name is required for get_token_ca');
-    if (typeof args.name !== 'string') throw new Error('name must be string');
-    var trimmed = args.name.trim();
-    if (trimmed.length < 1 || trimmed.length > 64) throw new Error('name length must be 1-64 chars');
-    if (!/^[a-zA-Z0-9 _\-\$\.\u00c0-\uffff]+$/.test(trimmed)) throw new Error('name contains invalid chars');
-    clean.name = trimmed;
-  }
-  // Other tools accept no args — anything passed is silently dropped.
-  return clean;
-}
-async function callTool(toolName, args) {
-  args = validateArgs(toolName, args);
-  var queryParts = ['tool=' + toolName];
-  if (toolName === 'get_whale_divergence' && args && args.timeframe) queryParts.push('tf=' + args.timeframe);
-  if (toolName === 'get_token_ca' && args && args.name) queryParts.push('name=' + encodeURIComponent(args.name));
-  var url = (TOOL_ENDPOINTS[toolName] || GATEWAY) + '?' + queryParts.join('&');
-  // Step 1: discovery
-  var resp1 = await fetch(url, { headers: clientHeaders() });
-  if (resp1.status === 200) { var d = await resp1.json(); notifyUpdate(d, resp1.headers); return d; }
-  if (resp1.status !== 402) throw new Error('Server error ' + resp1.status + ': ' + (await resp1.text()).substring(0, 200));
-  // Step 2: parse payment requirements
-  // FIX v4.16.11: detect V2 by extra.feePayer presence (Dexter sponsorship marker),
-  // not by header. Per-tool endpoints (mcp-alpha-scanner, mcp-btc-regime, etc.) only
-  // serve 402 in body, no payment-required header. Header check stays as fast path.
-  var payReq = null;
-  var prHeader = resp1.headers.get('payment-required');
-  if (prHeader) {
-    try {
-      var arr = JSON.parse(Buffer.from(prHeader, 'base64').toString('utf8'));
-      if (arr && arr[0]) payReq = arr[0];
-    } catch(_e) {}
-  }
-  if (!payReq) {
-    var b402 = await resp1.json();
-    if (b402 && b402.accepts && b402.accepts[0]) payReq = b402.accepts[0];
-  }
-  if (!payReq) throw new Error('No payment requirements in 402');
-  // V2 = Dexter sponsored gas = extra.feePayer field present (independent of transport)
-  var useV2 = !!(payReq.extra && payReq.extra.feePayer);
-  var amount = parseInt(payReq.maxAmountRequired || payReq.amount || '10000');
-  var hasFeePayer = payReq.extra && payReq.extra.feePayer;
-  var paymentHeader = '';
-  var headerName = '';
-  // Step 3: Try V2 Dexter (gas-sponsored by Dexter — user only needs USDC)
-  if (useV2 && hasFeePayer) {
-    console.error('[cryptoiz-mcp] V2 mode: Dexter gas-sponsored, paying ' + (amount/1000000).toFixed(4) + ' USDC');
-    try {
-      var txB64 = await buildV2PaymentPayload(amount, payReq.extra.feePayer);
-      // FIX v4.16.10: x402Version:2 (was 1), add 'accepted' (chosen PaymentRequirements
-      // verbatim — Dexter /verify needs this to match amount/asset/payTo). Removed bogus
-      // signature field — V2 schema only has payload.transaction.
-      var v2Payload = {
-        x402Version: 2,
-        scheme: 'exact',
-        network: payReq.network || 'solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp',
-        accepted: payReq,
-        payload: { transaction: txB64 },
-        extensions: {}
-      };
-      paymentHeader = Buffer.from(JSON.stringify(v2Payload)).toString('base64');
-      headerName = 'payment-signature';
-    } catch(v2Err) {
-      console.error('[cryptoiz-mcp] V2 build failed: ' + v2Err.message + ' -> fallback V1');
-      useV2 = false;
-    }
-  }
-  // Step 4: V1 fallback (user pays gas — only if V2 failed)
-  if (!paymentHeader) {
-    console.error('[cryptoiz-mcp] V1 fallback: direct on-chain transfer');
-    var sig = await sendUSDC(amount, toolName);
-    paymentHeader = Buffer.from(JSON.stringify({ signature: sig })).toString('base64');
-    headerName = 'x-payment';
-  }
-  // Step 5: submit payment
-  var headers2 = {};
-  headers2[headerName] = paymentHeader;
-  var resp2 = await fetch(url, { headers: clientHeaders(headers2) });
-  // Step 6: if V2 failed at server, retry with V1
-  if (resp2.status !== 200 && useV2) {
-    console.error('[cryptoiz-mcp] V2 settle failed, trying V1 fallback...');
-    var fallbackSig = await sendUSDC(amount, toolName);
-    var v1Header = Buffer.from(JSON.stringify({ signature: fallbackSig })).toString('base64');
-    resp2 = await fetch(url, { headers: clientHeaders({ 'x-payment': v1Header }) });
-  }
-  if (resp2.status !== 200) throw new Error('Payment failed ' + resp2.status + ': ' + (await resp2.text()).substring(0, 300));
-  var data = await resp2.json();
-  notifyUpdate(data, resp2.headers);
-  return data;
-}
-var TOOLS = [
-  { name: 'get_whale_alpha', description: 'Alpha scanner - early accumulation tokens. Cost: $0.05 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
-  { name: 'get_whale_divergence', description: 'Whale divergence signals. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: { timeframe: { type: 'string', enum: ['4h', '1d'] } }, additionalProperties: false } },
-  { name: 'get_whale_accumulation', description: 'Accumulation phase tokens. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
-  { name: 'get_whale_neutral', description: 'Neutral phase tokens. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
-  { name: 'get_whale_distribution', description: 'Distribution phase tokens. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
-  { name: 'get_btc_regime', description: 'BTC macro regime. Cost: $0.01 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
-  { name: 'get_btc_futures_signal', description: 'BTC futures signal. Cost: $0.03 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
-  { name: 'get_token_ca', description: 'Token contract address. FREE', inputSchema: { type: 'object', properties: { name: { type: 'string' } }, required: ['name'], additionalProperties: false } },
-  { name: 'get_status', description: 'CryptoIZ MCP status. FREE', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
-];
-var server = new Server({ name: 'cryptoiz-mcp', version: VERSION }, { capabilities: { tools: {} } });
-server.setRequestHandler(ListToolsRequestSchema, async () => ({ tools: TOOLS }));
-server.setRequestHandler(CallToolRequestSchema, async (request) => {
-  try {
-    var result = await callTool(request.params.name, request.params.arguments || {});
-    return { content: [{ type: 'text', text: JSON.stringify(result, null, 2) }] };
-  } catch(e) {
-    return { content: [{ type: 'text', text: 'Error: ' + e.message }], isError: true };
-  }
-});
-async function main() {
-  var transport = new StdioServerTransport();
-  await server.connect(transport);
-  console.error('[cryptoiz-mcp] ' + VERSION + ' running (V2 Dexter gas-sponsored + V1 fallback)');
-}
-main().catch(console.error);
+'use strict';
+var VERSION = 'v4.16.15';
+var GATEWAY = 'https://rehqwsypjnjirhuiapqh.supabase.co/functions/v1/mcp-x402-gateway';
+// FIX v4.16.12: route ALL paid tools to gateway. Per-tool endpoints (mcp-alpha-scanner etc.)
+// have stale hardcoded fee payer that breaks after Dexter key rotation. Gateway has dynamic
+// fee payer fetched from /supported. Single source of truth = no per-tool drift.
+var TOOL_ENDPOINTS = {
+  get_whale_alpha: GATEWAY,
+  get_whale_divergence: GATEWAY,
+  get_whale_accumulation: GATEWAY,
+  get_whale_neutral: GATEWAY,
+  get_whale_distribution: GATEWAY,
+  get_btc_regime: GATEWAY,
+  get_btc_futures_signal: GATEWAY,
+  get_token_ca: GATEWAY,
+  get_status: GATEWAY,
+};
+var RECIPIENT = 'DsKmdkYx49Xc1WhqMUAztwhdYPTqieyC98VmnnJdgpXX';
+var USDC_MINT = 'EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v';
+var SOL_RPC = 'https://api.mainnet-beta.solana.com';
+var TOKEN_PROGRAM = 'TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA';
+var ATA_PROGRAM = 'ATokenGPvbdGVxr1b2hvZbsiqW5xWH25efTNsLJA8knL';
+var MEMO_PROGRAM = 'MemoSq4gqABAXKb96qnH8TysNcWxMyWCqXgDLGmfcHr';
+var COMPUTE_BUDGET_PROGRAM = 'ComputeBudget111111111111111111111111111111';
+var _updateNotified = false;
+function notifyUpdate(data, headers) {
+  if (_updateNotified) return;
+  if (!headers || headers.get('x-update-available') !== '1') return;
+  _updateNotified = true;
+  var latest = (data && data.version_latest) || '?';
+  var cmd = (data && data.update_command) || 'npm install -g cryptoiz-mcp@latest';
+  console.error('[cryptoiz-mcp] UPDATE: ' + VERSION + ' -> ' + latest + ' | Run: ' + cmd);
+}
+var solana = require('@solana/web3.js');
+var Connection = solana.Connection;
+var PublicKey = solana.PublicKey;
+var Transaction = solana.Transaction;
+var TransactionMessage = solana.TransactionMessage;
+var VersionedTransaction = solana.VersionedTransaction;
+var Keypair = solana.Keypair;
+// Fix bs58 v6 ESM-only issue: support both CJS (v5) and ESM-compiled (v6)
+var _bs58mod = require('bs58');
+var bs58 = _bs58mod.default || _bs58mod;
+var Server = require('@modelcontextprotocol/sdk/server/index.js').Server;
+var StdioServerTransport = require('@modelcontextprotocol/sdk/server/stdio.js').StdioServerTransport;
+var CallToolRequestSchema = require('@modelcontextprotocol/sdk/types.js').CallToolRequestSchema;
+var ListToolsRequestSchema = require('@modelcontextprotocol/sdk/types.js').ListToolsRequestSchema;
+function getKeypair() {
+  var privKey = process.env.SVM_PRIVATE_KEY;
+  if (!privKey) throw new Error('SVM_PRIVATE_KEY not set in environment');
+  return Keypair.fromSecretKey(bs58.decode(privKey));
+}
+function findATA(wallet, mint) {
+  var walletPk = new PublicKey(wallet);
+  var mintPk = new PublicKey(mint);
+  var ataPk = new PublicKey(ATA_PROGRAM);
+  var tokPk = new PublicKey(TOKEN_PROGRAM);
+  return PublicKey.findProgramAddressSync([walletPk.toBuffer(), tokPk.toBuffer(), mintPk.toBuffer()], ataPk)[0];
+}
+// V2: Dexter gas-sponsored. 4-ix tx: Limit + Price + TransferChecked + Memo(nonce)
+// Dexter pays SOL gas — user only needs USDC
+async function buildV2PaymentPayload(amount, feePayerAddr) {
+  var kp = getKeypair();
+  var conn = new Connection(SOL_RPC, 'confirmed');
+  var userATA = findATA(kp.publicKey.toBase58(), USDC_MINT);
+  var recipientATA = findATA(RECIPIENT, USDC_MINT);
+  var feePayerPk = new PublicKey(feePayerAddr);
+  var computeBudgetPk = new PublicKey(COMPUTE_BUDGET_PROGRAM);
+  var tokenProgramPk = new PublicKey(TOKEN_PROGRAM);
+  var usdcMintPk = new PublicKey(USDC_MINT);
+  // FIX v4.16.13: ComputeUnitLimit 20000 -> 30000.
+  // Memo program needs >13500 CU when content is 'x402:v2:'+32char hex; old (April 6-8)
+  // working code used just 32-char nonceHex which fit in 20000 budget. Bumping limit gives
+  // headroom for slightly longer memo content. Dexter spec allows up to 40000.
+  var setLimitData = Buffer.alloc(5);
+  setLimitData[0] = 0x02;
+  setLimitData.writeUInt32LE(30000, 1);
+  var setLimitIx = { programId: computeBudgetPk, keys: [], data: setLimitData };
+  // ComputeUnitPrice(1)
+  var setPriceData = Buffer.alloc(9);
+  setPriceData[0] = 0x03;
+  setPriceData.writeBigUInt64LE(BigInt(1), 1);
+  var setPriceIx = { programId: computeBudgetPk, keys: [], data: setPriceData };
+  // TransferChecked
+  var transferKeys = [
+    { pubkey: userATA, isSigner: false, isWritable: true },
+    { pubkey: usdcMintPk, isSigner: false, isWritable: false },
+    { pubkey: recipientATA, isSigner: false, isWritable: true },
+    { pubkey: kp.publicKey, isSigner: true, isWritable: false },
+  ];
+  var transferData = Buffer.alloc(10);
+  transferData[0] = 0x0c;
+  transferData.writeUInt32LE(amount & 0xFFFFFFFF, 1);
+  transferData.writeUInt32LE(Math.floor(amount / 0x100000000) & 0xFFFFFFFF, 5);
+  transferData[9] = 6;
+  var transferIx = { programId: tokenProgramPk, keys: transferKeys, data: transferData };
+  // FIX v4.16.12: RESTORE Memo instruction in V2 (4-ix tx: Limit+Price+TransferChecked+Memo).
+  // Empirical: April 6-8 logs prove V2 with memo accepted by Dexter. Removing memo (v4.16.10)
+  // didn't fix anything — the actual bug was Dexter key rotation, fixed in gateway v44.
+  // Memo also makes TX visible to x402scan (memo carries x402 nonce marker).
+  var memoProgramPk = new PublicKey(MEMO_PROGRAM);
+  var nonceBytes = new Uint8Array(16);
+  for (var i = 0; i < 16; i++) nonceBytes[i] = Math.floor(Math.random() * 256);
+  var nonceHex = Array.from(nonceBytes).map(function(b) { return b.toString(16).padStart(2,'0'); }).join('');
+  // FIX v4.16.13: memo = just nonceHex (matches April 6-8 working V2 format).
+  // Adding 'x402:v2:' prefix made memo too long for 20000 CU budget.
+  var memoIx = { programId: memoProgramPk, keys: [], data: Buffer.from(nonceHex, 'utf8') };
+  var bh = await conn.getLatestBlockhash('confirmed');
+  var message = new TransactionMessage({
+    payerKey: feePayerPk,
+    recentBlockhash: bh.blockhash,
+    instructions: [setLimitIx, setPriceIx, transferIx, memoIx],
+  }).compileToV0Message();
+  var vtx = new VersionedTransaction(message);
+  vtx.sign([kp]);
+  var txB64 = Buffer.from(vtx.serialize()).toString('base64');
+  console.error('[cryptoiz-mcp] V2 tx built (Dexter gas-sponsored), 4 ix limit=30000');
+  return txB64;
+}
+// V1: direct on-chain, user pays SOL gas (fallback only)
+async function sendUSDC(amount, toolName) {
+  var kp = getKeypair();
+  var conn = new Connection(SOL_RPC, 'confirmed');
+  var userATA = findATA(kp.publicKey.toBase58(), USDC_MINT);
+  var recipientATA = findATA(RECIPIENT, USDC_MINT);
+  var keys = [
+    { pubkey: userATA, isSigner: false, isWritable: true },
+    { pubkey: new PublicKey(USDC_MINT), isSigner: false, isWritable: false },
+    { pubkey: recipientATA, isSigner: false, isWritable: true },
+    { pubkey: kp.publicKey, isSigner: true, isWritable: false },
+  ];
+  // FIX v4.16.10: TransferChecked needs 10 bytes (1 disc + 8 amount + 1 decimals)
+  var data = Buffer.alloc(10);
+  data[0] = 0x0c;
+  data.writeUInt32LE(amount & 0xFFFFFFFF, 1);
+  data.writeUInt32LE(Math.floor(amount / 0x100000000) & 0xFFFFFFFF, 5);
+  data[9] = 6;
+  var transferIx = { programId: new PublicKey(TOKEN_PROGRAM), keys: keys, data: data };
+  var nonce = Date.now().toString(16) + Math.floor(Math.random()*0xffff).toString(16);
+  var memoIx = {
+    programId: new PublicKey(MEMO_PROGRAM),
+    keys: [],
+    data: Buffer.from('x402:v1:' + (toolName || 'tool') + ':' + nonce, 'utf8')
+  };
+  var bh = await conn.getLatestBlockhash('confirmed');
+  var tx = new Transaction({ feePayer: kp.publicKey, blockhash: bh.blockhash, lastValidBlockHeight: bh.lastValidBlockHeight });
+  tx.add(memoIx);
+  tx.add(transferIx);
+  tx.sign(kp);
+  var sig = await conn.sendRawTransaction(tx.serialize(), { skipPreflight: false });
+  await conn.confirmTransaction({ signature: sig, blockhash: bh.blockhash, lastValidBlockHeight: bh.lastValidBlockHeight }, 'confirmed');
+  console.error('[cryptoiz-mcp] V1 TX: ' + sig);
+  return sig;
+}
+function clientHeaders(extra) {
+  var h = { 'x-client-version': VERSION.replace(/^v/i, '') };
+  if (extra) for (var k in extra) if (Object.prototype.hasOwnProperty.call(extra, k)) h[k] = extra[k];
+  return h;
+}
+// v4.16.14: input validation per tool — defense in depth, server-side double-validates.
+function validateArgs(toolName, args) {
+  if (args == null) return {}; // Empty args ok
+  if (typeof args !== 'object' || Array.isArray(args)) {
+    throw new Error('Invalid args: expected object, got ' + typeof args);
+  }
+  var clean = {};
+  if (toolName === 'get_whale_divergence') {
+    if (args.timeframe != null) {
+      if (typeof args.timeframe !== 'string') throw new Error('timeframe must be string');
+      if (args.timeframe !== '4h' && args.timeframe !== '1d') throw new Error("timeframe must be '4h' or '1d'");
+      clean.timeframe = args.timeframe;
+    }
+  } else if (toolName === 'get_token_ca') {
+    if (args.name == null) throw new Error('name is required for get_token_ca');
+    if (typeof args.name !== 'string') throw new Error('name must be string');
+    var trimmed = args.name.trim();
+    if (trimmed.length < 1 || trimmed.length > 64) throw new Error('name length must be 1-64 chars');
+    if (!/^[a-zA-Z0-9 _\-\$\.\u00c0-\uffff]+$/.test(trimmed)) throw new Error('name contains invalid chars');
+    clean.name = trimmed;
+  }
+  // Other tools accept no args — anything passed is silently dropped.
+  return clean;
+}
+async function callTool(toolName, args) {
+  args = validateArgs(toolName, args);
+  var queryParts = ['tool=' + toolName];
+  if (toolName === 'get_whale_divergence' && args && args.timeframe) queryParts.push('tf=' + args.timeframe);
+  if (toolName === 'get_token_ca' && args && args.name) queryParts.push('name=' + encodeURIComponent(args.name));
+  var url = (TOOL_ENDPOINTS[toolName] || GATEWAY) + '?' + queryParts.join('&');
+  // Step 1: discovery
+  var resp1 = await fetch(url, { headers: clientHeaders() });
+  if (resp1.status === 200) { var d = await resp1.json(); notifyUpdate(d, resp1.headers); return d; }
+  if (resp1.status !== 402) throw new Error('Server error ' + resp1.status + ': ' + (await resp1.text()).substring(0, 200));
+  // Step 2: parse payment requirements
+  // FIX v4.16.11: detect V2 by extra.feePayer presence (Dexter sponsorship marker),
+  // not by header. Per-tool endpoints (mcp-alpha-scanner, mcp-btc-regime, etc.) only
+  // serve 402 in body, no payment-required header. Header check stays as fast path.
+  var payReq = null;
+  var prHeader = resp1.headers.get('payment-required');
+  if (prHeader) {
+    try {
+      var arr = JSON.parse(Buffer.from(prHeader, 'base64').toString('utf8'));
+      if (arr && arr[0]) payReq = arr[0];
+    } catch(_e) {}
+  }
+  if (!payReq) {
+    var b402 = await resp1.json();
+    if (b402 && b402.accepts && b402.accepts[0]) payReq = b402.accepts[0];
+  }
+  if (!payReq) throw new Error('No payment requirements in 402');
+  // V2 = Dexter sponsored gas = extra.feePayer field present (independent of transport)
+  var useV2 = !!(payReq.extra && payReq.extra.feePayer);
+  var amount = parseInt(payReq.maxAmountRequired || payReq.amount || '10000');
+  var hasFeePayer = payReq.extra && payReq.extra.feePayer;
+  var paymentHeader = '';
+  var headerName = '';
+  // Step 3: Try V2 Dexter (gas-sponsored by Dexter — user only needs USDC)
+  if (useV2 && hasFeePayer) {
+    console.error('[cryptoiz-mcp] V2 mode: Dexter gas-sponsored, paying ' + (amount/1000000).toFixed(4) + ' USDC');
+    try {
+      var txB64 = await buildV2PaymentPayload(amount, payReq.extra.feePayer);
+      // FIX v4.16.10: x402Version:2 (was 1), add 'accepted' (chosen PaymentRequirements
+      // verbatim — Dexter /verify needs this to match amount/asset/payTo). Removed bogus
+      // signature field — V2 schema only has payload.transaction.
+      var v2Payload = {
+        x402Version: 2,
+        scheme: 'exact',
+        network: payReq.network || 'solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp',
+        accepted: payReq,
+        payload: { transaction: txB64 },
+        extensions: {}
+      };
+      paymentHeader = Buffer.from(JSON.stringify(v2Payload)).toString('base64');
+      headerName = 'payment-signature';
+    } catch(v2Err) {
+      console.error('[cryptoiz-mcp] V2 build failed: ' + v2Err.message + ' -> fallback V1');
+      useV2 = false;
+    }
+  }
+  // Step 4: V1 fallback (user pays gas — only if V2 failed)
+  if (!paymentHeader) {
+    console.error('[cryptoiz-mcp] V1 fallback: direct on-chain transfer');
+    var sig = await sendUSDC(amount, toolName);
+    paymentHeader = Buffer.from(JSON.stringify({ signature: sig })).toString('base64');
+    headerName = 'x-payment';
+  }
+  // Step 5: submit payment
+  var headers2 = {};
+  headers2[headerName] = paymentHeader;
+  var resp2 = await fetch(url, { headers: clientHeaders(headers2) });
+  // Step 6: if V2 failed at server, retry with V1
+  if (resp2.status !== 200 && useV2) {
+    console.error('[cryptoiz-mcp] V2 settle failed, trying V1 fallback...');
+    var fallbackSig = await sendUSDC(amount, toolName);
+    var v1Header = Buffer.from(JSON.stringify({ signature: fallbackSig })).toString('base64');
+    resp2 = await fetch(url, { headers: clientHeaders({ 'x-payment': v1Header }) });
+  }
+  if (resp2.status !== 200) throw new Error('Payment failed ' + resp2.status + ': ' + (await resp2.text()).substring(0, 300));
+  var data = await resp2.json();
+  notifyUpdate(data, resp2.headers);
+  return data;
+}
+var TOOLS = [
+  { name: 'get_whale_alpha', description: 'Alpha scanner - early accumulation tokens. Cost: $0.05 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
+  { name: 'get_whale_divergence', description: 'Whale divergence signals. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: { timeframe: { type: 'string', enum: ['4h', '1d'] } }, additionalProperties: false } },
+  { name: 'get_whale_accumulation', description: 'Accumulation phase tokens. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
+  { name: 'get_whale_neutral', description: 'Neutral phase tokens. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
+  { name: 'get_whale_distribution', description: 'Distribution phase tokens. Cost: $0.02 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
+  { name: 'get_btc_regime', description: 'BTC macro regime. Cost: $0.01 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
+  { name: 'get_btc_futures_signal', description: 'BTC futures signal. Cost: $0.03 USDC', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
+  { name: 'get_token_ca', description: 'Token contract address. FREE', inputSchema: { type: 'object', properties: { name: { type: 'string' } }, required: ['name'], additionalProperties: false } },
+  { name: 'get_status', description: 'CryptoIZ MCP status. FREE', inputSchema: { type: 'object', properties: {}, additionalProperties: false } },
+];
+var server = new Server({ name: 'cryptoiz-mcp', version: VERSION }, { capabilities: { tools: {} } });
+server.setRequestHandler(ListToolsRequestSchema, async () => ({ tools: TOOLS }));
+server.setRequestHandler(CallToolRequestSchema, async (request) => {
+  try {
+    var result = await callTool(request.params.name, request.params.arguments || {});
+    return { content: [{ type: 'text', text: JSON.stringify(result, null, 2) }] };
+  } catch(e) {
+    return { content: [{ type: 'text', text: 'Error: ' + e.message }], isError: true };
+  }
+});
+async function main() {
+  var transport = new StdioServerTransport();
+  await server.connect(transport);
+  console.error('[cryptoiz-mcp] ' + VERSION + ' running (V2 Dexter gas-sponsored + V1 fallback)');
+}
+main().catch(console.error);

package/package.json CHANGED Viewed

@@ -1,49 +1,50 @@
-{
-  "name": "cryptoiz-mcp",
-  "version": "4.16.15",
-  "description": "CryptoIZ MCP Server - Solana DEX whale intelligence (alpha, divergence, accumulation, BTC regime). Recommended install: npx agentcash add https://mcp.cryptoiz.org. x402 V2 + Dexter gas-sponsored payments.",
-  "main": "index.js",
-  "type": "commonjs",
-  "bin": {
-    "cryptoiz-mcp": "./index.js",
-    "cryptoiz-mcp-setup": "./setup.js"
-  },
-  "files": [
-    "index.js",
-    "setup.js",
-    "package.json",
-    "README.md"
-  ],
-  "dependencies": {
-    "@modelcontextprotocol/sdk": "^1.29.0",
-    "@solana/web3.js": "^1.95.8",
-    "bs58": "^6.0.0"
-  },
-  "engines": {
-    "node": ">=18.0.0"
-  },
-  "author": "CryptoIZ",
-  "license": "MIT",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/dadang11/cryptoiz-mcp.git"
-  },
-  "keywords": [
-    "mcp",
-    "solana",
-    "whale-tracking",
-    "alpha-scanner",
-    "x402",
-    "dexter",
-    "agentcash",
-    "defi",
-    "smart-money",
-    "btc-regime",
-    "divergence",
-    "accumulation"
-  ],
-  "homepage": "https://cryptoiz.org/McpLanding",
-  "bugs": {
-    "url": "https://github.com/dadang11/cryptoiz-mcp/issues"
-  }
-}
+{
+  "name": "cryptoiz-mcp",
+  "version": "4.16.17",
+  "mcpName": "io.github.dadang11/cryptoiz",
+  "description": "CryptoIZ MCP Server - Solana DEX whale intelligence (alpha, divergence, accumulation, BTC regime). Recommended install: npx agentcash add https://mcp.cryptoiz.org. x402 V2 + Dexter gas-sponsored payments.",
+  "main": "index.js",
+  "type": "commonjs",
+  "bin": {
+    "cryptoiz-mcp": "./index.js",
+    "cryptoiz-mcp-setup": "./setup.js"
+  },
+  "files": [
+    "index.js",
+    "setup.js",
+    "package.json",
+    "README.md"
+  ],
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.29.0",
+    "@solana/web3.js": "^1.95.8",
+    "bs58": "^6.0.0"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "author": "CryptoIZ",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/dadang11/cryptoiz-mcp.git"
+  },
+  "keywords": [
+    "mcp",
+    "solana",
+    "whale-tracking",
+    "alpha-scanner",
+    "x402",
+    "dexter",
+    "agentcash",
+    "defi",
+    "smart-money",
+    "btc-regime",
+    "divergence",
+    "accumulation"
+  ],
+  "homepage": "https://cryptoiz.org/McpLanding",
+  "bugs": {
+    "url": "https://github.com/dadang11/cryptoiz-mcp/issues"
+  }
+}

package/setup.js CHANGED Viewed

@@ -1,51 +1,51 @@
-'use strict';
-var VERSION = 'v4.16.15';
-var fs = require('fs');
-var os = require('os');
-var path = require('path');
-var privKey = process.argv[2];
-if (!privKey) {
-  console.log('Usage: npx cryptoiz-mcp-setup YOUR_SOLANA_PRIVATE_KEY');
-  process.exit(1);
-}
-var config = {
-  mcpServers: {
-    cryptoiz: {
-      command: 'C:\\Program Files\\nodejs\\node.exe',
-      args: [require.resolve('./index.js')],
-      env: { SVM_PRIVATE_KEY: privKey }
-    }
-  }
-};
-var configPaths = [
-  path.join(process.env.LOCALAPPDATA || '', 'Packages', 'Claude_pzs8sxrjxfjjc', 'LocalCache', 'Roaming', 'Claude', 'claude_desktop_config.json'),
-  path.join(process.env.APPDATA || '', 'Claude', 'claude_desktop_config.json'),
-  path.join(os.homedir(), 'Library', 'Application Support', 'Claude', 'claude_desktop_config.json'),
-];
-var written = false;
-for (var i = 0; i < configPaths.length; i++) {
-  var p = configPaths[i];
-  try {
-    var dir = path.dirname(p);
-    if (!fs.existsSync(dir)) fs.mkdirSync(dir, { recursive: true });
-    var existing = {};
-    if (fs.existsSync(p)) {
-      try { existing = JSON.parse(fs.readFileSync(p, 'utf8')); } catch(_e) {}
-    }
-    existing.mcpServers = existing.mcpServers || {};
-    existing.mcpServers.cryptoiz = config.mcpServers.cryptoiz;
-    fs.writeFileSync(p, JSON.stringify(existing, null, 2), 'utf8');
-    console.log('Config written to: ' + p);
-    written = true;
-  } catch(_e) {}
-}
-if (written) {
-  console.log('Done! Restart Claude Desktop to activate CryptoIZ MCP.');
-} else {
-  console.log('Could not write config. Please manually add config to Claude Desktop settings.');
-}
+'use strict';
+var VERSION = 'v4.16.15';
+var fs = require('fs');
+var os = require('os');
+var path = require('path');
+var privKey = process.argv[2];
+if (!privKey) {
+  console.log('Usage: npx cryptoiz-mcp-setup YOUR_SOLANA_PRIVATE_KEY');
+  process.exit(1);
+}
+var config = {
+  mcpServers: {
+    cryptoiz: {
+      command: 'C:\\Program Files\\nodejs\\node.exe',
+      args: [require.resolve('./index.js')],
+      env: { SVM_PRIVATE_KEY: privKey }
+    }
+  }
+};
+var configPaths = [
+  path.join(process.env.LOCALAPPDATA || '', 'Packages', 'Claude_pzs8sxrjxfjjc', 'LocalCache', 'Roaming', 'Claude', 'claude_desktop_config.json'),
+  path.join(process.env.APPDATA || '', 'Claude', 'claude_desktop_config.json'),
+  path.join(os.homedir(), 'Library', 'Application Support', 'Claude', 'claude_desktop_config.json'),
+];
+var written = false;
+for (var i = 0; i < configPaths.length; i++) {
+  var p = configPaths[i];
+  try {
+    var dir = path.dirname(p);
+    if (!fs.existsSync(dir)) fs.mkdirSync(dir, { recursive: true });
+    var existing = {};
+    if (fs.existsSync(p)) {
+      try { existing = JSON.parse(fs.readFileSync(p, 'utf8')); } catch(_e) {}
+    }
+    existing.mcpServers = existing.mcpServers || {};
+    existing.mcpServers.cryptoiz = config.mcpServers.cryptoiz;
+    fs.writeFileSync(p, JSON.stringify(existing, null, 2), 'utf8');
+    console.log('Config written to: ' + p);
+    written = true;
+  } catch(_e) {}
+}
+if (written) {
+  console.log('Done! Restart Claude Desktop to activate CryptoIZ MCP.');
+} else {
+  console.log('Could not write config. Please manually add config to Claude Desktop settings.');
+}