moltspay 0.8.0 → 0.8.2

package/dist/index.mjs

@@ -2891,7 +2891,7 @@ function alphabet(letters) {
   };
 }
 // @__NO_SIDE_EFFECTS__
-function join3(separator = "") {
+function join4(separator = "") {
   astr("join", separator);
   return {
     encode: (from) => {
@@ -3098,10 +3098,10 @@ var init_esm = __esm({
       convertRadix2,
       radix,
       radix2,
-      join: join3,
+      join: join4,
       padding
     };
-    genBase58 = /* @__NO_SIDE_EFFECTS__ */ (abc) => /* @__PURE__ */ chain(/* @__PURE__ */ radix(58), /* @__PURE__ */ alphabet(abc), /* @__PURE__ */ join3(""));
+    genBase58 = /* @__NO_SIDE_EFFECTS__ */ (abc) => /* @__PURE__ */ chain(/* @__PURE__ */ radix(58), /* @__PURE__ */ alphabet(abc), /* @__PURE__ */ join4(""));
     base58 = /* @__PURE__ */ genBase58("123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz");
     createBase58check = (sha2566) => /* @__PURE__ */ chain(checksum(4, (data) => sha2566(sha2566(data))), base58);
   }
@@ -3249,14 +3249,14 @@ var init_esm2 = __esm({
         }
         this.pubHash = hash160(this.pubKey);
       }
-      derive(path3) {
-        if (!/^[mM]'?/.test(path3)) {
+      derive(path4) {
+        if (!/^[mM]'?/.test(path4)) {
           throw new Error('Path must start with "m" or "M"');
         }
-        if (/^[mM]'?$/.test(path3)) {
+        if (/^[mM]'?$/.test(path4)) {
           return this;
         }
-        const parts = path3.replace(/^[mM]'?\//, "").split("/");
+        const parts = path4.replace(/^[mM]'?\//, "").split("/");
         let child = this;
         for (const c of parts) {
           const m = /^(\d+)('?)$/.exec(c);
@@ -9617,8 +9617,8 @@ var init_privateKeyToAccount = __esm({
 });
 
 // node_modules/viem/_esm/accounts/hdKeyToAccount.js
-function hdKeyToAccount(hdKey_, { accountIndex = 0, addressIndex = 0, changeIndex = 0, path: path3, ...options } = {}) {
-  const hdKey = hdKey_.derive(path3 || `m/44'/60'/${accountIndex}'/${changeIndex}/${addressIndex}`);
+function hdKeyToAccount(hdKey_, { accountIndex = 0, addressIndex = 0, changeIndex = 0, path: path4, ...options } = {}) {
+  const hdKey = hdKey_.derive(path4 || `m/44'/60'/${accountIndex}'/${changeIndex}/${addressIndex}`);
   const account = privateKeyToAccount(toHex(hdKey.privateKey), options);
   return {
     ...account,
@@ -30330,87 +30330,9 @@ init_esm_shims();
 
 // src/server/index.ts
 init_esm_shims();
-import { readFileSync } from "fs";
+import { readFileSync, existsSync } from "fs";
 import { createServer } from "http";
-import { ethers } from "ethers";
-
-// src/chains/index.ts
-init_esm_shims();
-var CHAINS = {
-  // ============ Mainnet ============
-  base: {
-    name: "Base",
-    chainId: 8453,
-    rpc: "https://mainnet.base.org",
-    usdc: "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",
-    explorer: "https://basescan.org/address/",
-    explorerTx: "https://basescan.org/tx/",
-    avgBlockTime: 2
-  },
-  polygon: {
-    name: "Polygon",
-    chainId: 137,
-    rpc: "https://polygon-rpc.com",
-    usdc: "0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359",
-    explorer: "https://polygonscan.com/address/",
-    explorerTx: "https://polygonscan.com/tx/",
-    avgBlockTime: 2
-  },
-  ethereum: {
-    name: "Ethereum",
-    chainId: 1,
-    rpc: "https://eth.llamarpc.com",
-    usdc: "0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48",
-    explorer: "https://etherscan.io/address/",
-    explorerTx: "https://etherscan.io/tx/",
-    avgBlockTime: 12
-  },
-  // ============ Testnet ============
-  base_sepolia: {
-    name: "Base Sepolia",
-    chainId: 84532,
-    rpc: "https://sepolia.base.org",
-    usdc: "0x036CbD53842c5426634e7929541eC2318f3dCF7e",
-    explorer: "https://sepolia.basescan.org/address/",
-    explorerTx: "https://sepolia.basescan.org/tx/",
-    avgBlockTime: 2
-  },
-  sepolia: {
-    name: "Sepolia",
-    chainId: 11155111,
-    rpc: "https://rpc.sepolia.org",
-    usdc: "0x1c7D4B196Cb0C7B01d743Fbc6116a902379C7238",
-    explorer: "https://sepolia.etherscan.io/address/",
-    explorerTx: "https://sepolia.etherscan.io/tx/",
-    avgBlockTime: 12
-  }
-};
-function getChain(name) {
-  const config = CHAINS[name];
-  if (!config) {
-    throw new Error(`Unsupported chain: ${name}. Supported: ${Object.keys(CHAINS).join(", ")}`);
-  }
-  return config;
-}
-function listChains() {
-  return Object.keys(CHAINS);
-}
-function getChainById(chainId) {
-  return Object.values(CHAINS).find((c) => c.chainId === chainId);
-}
-var ERC20_ABI = [
-  "function balanceOf(address owner) view returns (uint256)",
-  "function transfer(address to, uint256 amount) returns (bool)",
-  "function approve(address spender, uint256 amount) returns (bool)",
-  "function allowance(address owner, address spender) view returns (uint256)",
-  "function decimals() view returns (uint8)",
-  "function symbol() view returns (string)",
-  "function name() view returns (string)",
-  "function nonces(address owner) view returns (uint256)",
-  "function permit(address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s)",
-  "event Transfer(address indexed from, address indexed to, uint256 value)",
-  "event Approval(address indexed owner, address indexed spender, uint256 value)"
-];
+import * as path2 from "path";
 
 // src/server/types.ts
 init_esm_shims();
@@ -30419,34 +30341,92 @@ init_esm_shims();
 var X402_VERSION = 2;
 var PAYMENT_REQUIRED_HEADER = "x-payment-required";
 var PAYMENT_HEADER = "x-payment";
+var PAYMENT_RESPONSE_HEADER = "x-payment-response";
+var FACILITATOR_TESTNET = "https://www.x402.org/facilitator";
+var FACILITATOR_MAINNET = "https://api.cdp.coinbase.com/platform/v2/x402";
+function loadEnvFiles() {
+  try {
+    const dotenv = __require("dotenv");
+    const envPaths = [
+      path2.join(process.cwd(), ".env"),
+      path2.join(process.env.HOME || "", ".moltspay", ".env")
+    ];
+    for (const envPath of envPaths) {
+      if (existsSync(envPath)) {
+        dotenv.config({ path: envPath });
+        console.log(`[MoltsPay] Loaded config from ${envPath}`);
+        break;
+      }
+    }
+  } catch {
+  }
+}
+function getCDPConfig() {
+  loadEnvFiles();
+  return {
+    useMainnet: process.env.USE_MAINNET?.toLowerCase() === "true",
+    apiKeyId: process.env.CDP_API_KEY_ID,
+    apiKeySecret: process.env.CDP_API_KEY_SECRET
+  };
+}
+async function getCDPAuthHeaders(method, urlPath, body) {
+  const config = getCDPConfig();
+  if (!config.apiKeyId || !config.apiKeySecret) {
+    throw new Error("CDP_API_KEY_ID and CDP_API_KEY_SECRET required for mainnet");
+  }
+  try {
+    const { getAuthHeaders } = await import("@coinbase/cdp-sdk/auth");
+    const headers = await getAuthHeaders({
+      apiKeyId: config.apiKeyId,
+      apiKeySecret: config.apiKeySecret,
+      requestMethod: method,
+      requestHost: "api.cdp.coinbase.com",
+      requestPath: urlPath,
+      requestBody: body
+    });
+    return headers;
+  } catch (err) {
+    console.error("[MoltsPay] Failed to generate CDP auth headers:", err.message);
+    throw err;
+  }
+}
 var MoltsPayServer = class {
   manifest;
   skills = /* @__PURE__ */ new Map();
   options;
-  provider = null;
-  wallet = null;
+  cdpConfig;
+  facilitatorUrl;
+  networkId;
   constructor(servicesPath, options = {}) {
+    this.cdpConfig = getCDPConfig();
     const content = readFileSync(servicesPath, "utf-8");
     this.manifest = JSON.parse(content);
     this.options = {
       port: options.port || 3e3,
-      host: options.host || "0.0.0.0",
-      privateKey: options.privateKey || process.env.MOLTSPAY_PRIVATE_KEY
+      host: options.host || "0.0.0.0"
     };
-    if (this.options.privateKey) {
-      try {
-        const chain2 = getChain(this.manifest.provider.chain);
-        this.provider = new ethers.JsonRpcProvider(chain2.rpc);
-        this.wallet = new ethers.Wallet(this.options.privateKey, this.provider);
-        console.log(`[MoltsPay] Payment wallet: ${this.wallet.address}`);
-      } catch (err) {
-        console.warn("[MoltsPay] Warning: Could not initialize wallet for payment claims");
+    if (this.cdpConfig.useMainnet) {
+      if (!this.cdpConfig.apiKeyId || !this.cdpConfig.apiKeySecret) {
+        console.warn("[MoltsPay] WARNING: USE_MAINNET=true but CDP keys not set!");
+        console.warn("[MoltsPay] Set CDP_API_KEY_ID and CDP_API_KEY_SECRET in ~/.moltspay/.env");
       }
+      this.facilitatorUrl = FACILITATOR_MAINNET;
+      this.networkId = "eip155:8453";
+    } else {
+      this.facilitatorUrl = options.facilitatorUrl || FACILITATOR_TESTNET;
+      this.networkId = "eip155:84532";
     }
+    const networkName = this.cdpConfig.useMainnet ? "Base mainnet" : "Base Sepolia (testnet)";
+    const facilitatorName = this.cdpConfig.useMainnet ? "CDP" : "x402.org";
     console.log(`[MoltsPay] Loaded ${this.manifest.services.length} services from ${servicesPath}`);
     console.log(`[MoltsPay] Provider: ${this.manifest.provider.name}`);
     console.log(`[MoltsPay] Receive wallet: ${this.manifest.provider.wallet}`);
-    console.log(`[MoltsPay] Protocol: x402 (gasless, pay-for-success)`);
+    console.log(`[MoltsPay] Network: ${this.networkId} (${networkName})`);
+    console.log(`[MoltsPay] Facilitator: ${facilitatorName} (${this.facilitatorUrl})`);
+    if (this.cdpConfig.useMainnet && this.cdpConfig.apiKeyId) {
+      console.log(`[MoltsPay] CDP API Key: ${this.cdpConfig.apiKeyId.slice(0, 8)}...`);
+    }
+    console.log(`[MoltsPay] Protocol: x402 (gasless for both client AND server)`);
   }
   /**
    * Register a skill handler for a service
@@ -30456,48 +30436,45 @@ var MoltsPayServer = class {
     if (!config) {
       throw new Error(`Service '${serviceId}' not found in manifest`);
     }
-    this.skills.set(serviceId, {
-      id: serviceId,
-      config,
-      handler
-    });
-    console.log(`[MoltsPay] Registered skill: ${serviceId} ($${config.price} ${config.currency})`);
+    this.skills.set(serviceId, { id: serviceId, config, handler });
     return this;
   }
   /**
-   * Start the server
+   * Start HTTP server
    */
   listen(port) {
-    const p = port || this.options.port;
+    const p = port || this.options.port || 3e3;
+    const host = this.options.host || "0.0.0.0";
     const server = createServer((req, res) => this.handleRequest(req, res));
-    server.listen(p, this.options.host, () => {
-      console.log(`[MoltsPay] Server listening on http://${this.options.host}:${p}`);
+    server.listen(p, host, () => {
+      console.log(`[MoltsPay] Server listening on http://${host}:${p}`);
       console.log(`[MoltsPay] Endpoints:`);
       console.log(`  GET  /services     - List available services`);
       console.log(`  POST /execute      - Execute service (x402 payment)`);
     });
   }
+  /**
+   * Handle incoming request
+   */
   async handleRequest(req, res) {
-    const url = new URL(req.url || "/", `http://${req.headers.host}`);
-    const path3 = url.pathname;
-    const method = req.method || "GET";
     res.setHeader("Access-Control-Allow-Origin", "*");
     res.setHeader("Access-Control-Allow-Methods", "GET, POST, OPTIONS");
     res.setHeader("Access-Control-Allow-Headers", "Content-Type, X-Payment");
     res.setHeader("Access-Control-Expose-Headers", "X-Payment-Required, X-Payment-Response");
-    if (method === "OPTIONS") {
+    if (req.method === "OPTIONS") {
       res.writeHead(204);
       res.end();
       return;
     }
     try {
-      if (method === "GET" && path3 === "/services") {
+      const url = new URL(req.url || "/", `http://${req.headers.host}`);
+      if (url.pathname === "/services" && req.method === "GET") {
         return this.handleGetServices(res);
       }
-      if (method === "POST" && path3 === "/execute") {
+      if (url.pathname === "/execute" && req.method === "POST") {
         const body = await this.readBody(req);
         const paymentHeader = req.headers[PAYMENT_HEADER];
-        return this.handleExecute(body, paymentHeader, res);
+        return await this.handleExecute(body, paymentHeader, res);
       }
       this.sendJson(res, 404, { error: "Not found" });
     } catch (err) {
@@ -30509,7 +30486,6 @@ var MoltsPayServer = class {
    * GET /services - List available services
    */
   handleGetServices(res) {
-    const chain2 = getChain(this.manifest.provider.chain);
     const services = this.manifest.services.map((s) => ({
       id: s.id,
       name: s.name,
@@ -30525,15 +30501,15 @@ var MoltsPayServer = class {
       services,
       x402: {
         version: X402_VERSION,
-        network: `eip155:${chain2.chainId}`,
-        schemes: ["exact"]
+        network: this.networkId,
+        schemes: ["exact"],
+        facilitator: this.cdpConfig.useMainnet ? "cdp" : "x402.org",
+        mainnet: this.cdpConfig.useMainnet
       }
     });
   }
   /**
    * POST /execute - Execute service with x402 payment
-   * Body: { service: string, params: object }
-   * Header: X-Payment (optional - if missing, returns 402)
    */
   async handleExecute(body, paymentHeader, res) {
     const { service, params } = body;
@@ -30563,6 +30539,11 @@ var MoltsPayServer = class {
     if (!validation.valid) {
       return this.sendJson(res, 402, { error: validation.error });
     }
+    console.log(`[MoltsPay] Verifying payment with facilitator...`);
+    const verifyResult = await this.verifyWithFacilitator(payment, skill.config);
+    if (!verifyResult.valid) {
+      return this.sendJson(res, 402, { error: `Payment verification failed: ${verifyResult.error}` });
+    }
     console.log(`[MoltsPay] Executing skill: ${service}`);
     let result;
     try {
@@ -30574,32 +30555,46 @@ var MoltsPayServer = class {
         message: err.message
       });
     }
-    console.log(`[MoltsPay] Skill succeeded, claiming payment...`);
-    let txHash = null;
+    console.log(`[MoltsPay] Skill succeeded, settling payment...`);
+    let settlement = null;
     try {
-      txHash = await this.claimPayment(payment);
-      console.log(`[MoltsPay] Payment claimed: ${txHash}`);
+      settlement = await this.settleWithFacilitator(payment, skill.config);
+      console.log(`[MoltsPay] Payment settled: ${settlement.transaction || "pending"}`);
     } catch (err) {
-      console.error("[MoltsPay] Payment claim failed:", err.message);
+      console.error("[MoltsPay] Settlement failed:", err.message);
+    }
+    const responseHeaders = {};
+    if (settlement) {
+      const responsePayload = {
+        success: true,
+        transaction: settlement.transaction,
+        network: payment.network
+      };
+      responseHeaders[PAYMENT_RESPONSE_HEADER] = Buffer.from(
+        JSON.stringify(responsePayload)
+      ).toString("base64");
     }
     this.sendJson(res, 200, {
       success: true,
       result,
-      payment: txHash ? { txHash, status: "claimed" } : { status: "pending" }
-    });
+      payment: settlement ? { transaction: settlement.transaction, status: "settled" } : { status: "pending" }
+    }, responseHeaders);
   }
   /**
    * Return 402 with x402 payment requirements
    */
   sendPaymentRequired(config, res) {
-    const chain2 = getChain(this.manifest.provider.chain);
     const amountInUnits = Math.floor(config.price * 1e6).toString();
     const requirements = [{
       scheme: "exact",
-      network: `eip155:${chain2.chainId}`,
+      network: this.networkId,
       maxAmountRequired: amountInUnits,
       resource: this.manifest.provider.wallet,
-      description: `${config.name} - $${config.price} ${config.currency}`
+      description: `${config.name} - $${config.price} ${config.currency}`,
+      extra: JSON.stringify({
+        facilitator: this.cdpConfig.useMainnet ? "cdp" : "x402.org",
+        mainnet: this.cdpConfig.useMainnet
+      })
     }];
     const encoded = Buffer.from(JSON.stringify(requirements)).toString("base64");
     res.writeHead(402, {
@@ -30613,7 +30608,7 @@ var MoltsPayServer = class {
     }, null, 2));
   }
   /**
-   * Validate x402 payment payload
+   * Basic payment validation
    */
   validatePayment(payment, config) {
     if (payment.x402Version !== X402_VERSION) {
@@ -30622,56 +30617,89 @@ var MoltsPayServer = class {
     if (payment.scheme !== "exact") {
       return { valid: false, error: `Unsupported scheme: ${payment.scheme}` };
     }
-    const chain2 = getChain(this.manifest.provider.chain);
-    const expectedNetwork = `eip155:${chain2.chainId}`;
-    if (payment.network !== expectedNetwork) {
-      return { valid: false, error: `Network mismatch: expected ${expectedNetwork}` };
-    }
-    const auth = payment.payload.authorization;
-    if (auth.to.toLowerCase() !== this.manifest.provider.wallet.toLowerCase()) {
-      return { valid: false, error: "Payment recipient mismatch" };
-    }
-    const amount = Number(auth.value) / 1e6;
-    if (amount < config.price) {
-      return { valid: false, error: `Insufficient amount: $${amount} < $${config.price}` };
-    }
-    const now = Math.floor(Date.now() / 1e3);
-    if (Number(auth.validBefore) < now) {
-      return { valid: false, error: "Payment authorization expired" };
-    }
-    if (Number(auth.validAfter) > now) {
-      return { valid: false, error: "Payment authorization not yet valid" };
+    if (payment.network !== this.networkId) {
+      return { valid: false, error: `Network mismatch: expected ${this.networkId}, got ${payment.network}` };
     }
     return { valid: true };
   }
   /**
-   * Claim payment using transferWithAuthorization
+   * Verify payment with facilitator (testnet or CDP)
    */
-  async claimPayment(payment) {
-    if (!this.wallet || !this.provider) {
-      throw new Error("Wallet not configured for payment claims");
+  async verifyWithFacilitator(payment, config) {
+    try {
+      const amountInUnits = Math.floor(config.price * 1e6).toString();
+      const requirements = {
+        scheme: "exact",
+        network: this.networkId,
+        maxAmountRequired: amountInUnits,
+        resource: this.manifest.provider.wallet,
+        payTo: this.manifest.provider.wallet
+      };
+      const requestBody = {
+        paymentPayload: payment,
+        paymentRequirements: requirements
+      };
+      let headers = { "Content-Type": "application/json" };
+      if (this.cdpConfig.useMainnet) {
+        const authHeaders = await getCDPAuthHeaders(
+          "POST",
+          "/platform/v2/x402/verify",
+          requestBody
+        );
+        headers = { ...headers, ...authHeaders };
+      }
+      const response = await fetch(`${this.facilitatorUrl}/verify`, {
+        method: "POST",
+        headers,
+        body: JSON.stringify(requestBody)
+      });
+      const result = await response.json();
+      if (!response.ok || !result.isValid) {
+        return { valid: false, error: result.invalidReason || result.error || "Verification failed" };
+      }
+      return { valid: true };
+    } catch (err) {
+      return { valid: false, error: `Facilitator error: ${err.message}` };
     }
-    const chain2 = getChain(this.manifest.provider.chain);
-    const auth = payment.payload.authorization;
-    const sig = payment.payload.signature;
-    const { r, s, v } = ethers.Signature.from(sig);
-    const usdcAbi = [
-      "function transferWithAuthorization(address from, address to, uint256 value, uint256 validAfter, uint256 validBefore, bytes32 nonce, uint8 v, bytes32 r, bytes32 s)"
-    ];
-    const usdc = new ethers.Contract(chain2.usdc, usdcAbi, this.wallet);
-    const tx = await usdc.transferWithAuthorization(
-      auth.from,
-      auth.to,
-      auth.value,
-      auth.validAfter,
-      auth.validBefore,
-      auth.nonce,
-      v,
-      r,
-      s
-    );
-    const receipt = await tx.wait();
-    return receipt.hash;
+  }
+  /**
+   * Settle payment with facilitator (execute on-chain transfer)
+   */
+  async settleWithFacilitator(payment, config) {
+    const amountInUnits = Math.floor(config.price * 1e6).toString();
+    const requirements = {
+      scheme: "exact",
+      network: this.networkId,
+      maxAmountRequired: amountInUnits,
+      resource: this.manifest.provider.wallet,
+      payTo: this.manifest.provider.wallet
+    };
+    const requestBody = {
+      paymentPayload: payment,
+      paymentRequirements: requirements
+    };
+    let headers = { "Content-Type": "application/json" };
+    if (this.cdpConfig.useMainnet) {
+      const authHeaders = await getCDPAuthHeaders(
+        "POST",
+        "/platform/v2/x402/settle",
+        requestBody
+      );
+      headers = { ...headers, ...authHeaders };
+    }
+    const response = await fetch(`${this.facilitatorUrl}/settle`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify(requestBody)
+    });
+    const result = await response.json();
+    if (!response.ok || !result.success) {
+      throw new Error(result.error || result.errorReason || "Settlement failed");
+    }
+    return {
+      transaction: result.transaction,
+      status: result.status || "settled"
+    };
   }
   async readBody(req) {
     return new Promise((resolve, reject) => {
@@ -30687,18 +30715,100 @@ var MoltsPayServer = class {
       req.on("error", reject);
     });
   }
-  sendJson(res, status, data) {
-    res.writeHead(status, { "Content-Type": "application/json" });
+  sendJson(res, status, data, extraHeaders) {
+    const headers = { "Content-Type": "application/json" };
+    if (extraHeaders) {
+      Object.assign(headers, extraHeaders);
+    }
+    res.writeHead(status, headers);
     res.end(JSON.stringify(data, null, 2));
   }
 };
 
 // src/client/index.ts
 init_esm_shims();
-import { existsSync, readFileSync as readFileSync2, writeFileSync, mkdirSync } from "fs";
+import { existsSync as existsSync2, readFileSync as readFileSync2, writeFileSync, mkdirSync } from "fs";
 import { homedir } from "os";
-import { join } from "path";
-import { Wallet, ethers as ethers2 } from "ethers";
+import { join as join2 } from "path";
+import { Wallet, ethers } from "ethers";
+
+// src/chains/index.ts
+init_esm_shims();
+var CHAINS = {
+  // ============ Mainnet ============
+  base: {
+    name: "Base",
+    chainId: 8453,
+    rpc: "https://mainnet.base.org",
+    usdc: "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",
+    explorer: "https://basescan.org/address/",
+    explorerTx: "https://basescan.org/tx/",
+    avgBlockTime: 2
+  },
+  polygon: {
+    name: "Polygon",
+    chainId: 137,
+    rpc: "https://polygon-rpc.com",
+    usdc: "0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359",
+    explorer: "https://polygonscan.com/address/",
+    explorerTx: "https://polygonscan.com/tx/",
+    avgBlockTime: 2
+  },
+  ethereum: {
+    name: "Ethereum",
+    chainId: 1,
+    rpc: "https://eth.llamarpc.com",
+    usdc: "0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48",
+    explorer: "https://etherscan.io/address/",
+    explorerTx: "https://etherscan.io/tx/",
+    avgBlockTime: 12
+  },
+  // ============ Testnet ============
+  base_sepolia: {
+    name: "Base Sepolia",
+    chainId: 84532,
+    rpc: "https://sepolia.base.org",
+    usdc: "0x036CbD53842c5426634e7929541eC2318f3dCF7e",
+    explorer: "https://sepolia.basescan.org/address/",
+    explorerTx: "https://sepolia.basescan.org/tx/",
+    avgBlockTime: 2
+  },
+  sepolia: {
+    name: "Sepolia",
+    chainId: 11155111,
+    rpc: "https://rpc.sepolia.org",
+    usdc: "0x1c7D4B196Cb0C7B01d743Fbc6116a902379C7238",
+    explorer: "https://sepolia.etherscan.io/address/",
+    explorerTx: "https://sepolia.etherscan.io/tx/",
+    avgBlockTime: 12
+  }
+};
+function getChain(name) {
+  const config = CHAINS[name];
+  if (!config) {
+    throw new Error(`Unsupported chain: ${name}. Supported: ${Object.keys(CHAINS).join(", ")}`);
+  }
+  return config;
+}
+function listChains() {
+  return Object.keys(CHAINS);
+}
+function getChainById(chainId) {
+  return Object.values(CHAINS).find((c) => c.chainId === chainId);
+}
+var ERC20_ABI = [
+  "function balanceOf(address owner) view returns (uint256)",
+  "function transfer(address to, uint256 amount) returns (bool)",
+  "function approve(address spender, uint256 amount) returns (bool)",
+  "function allowance(address owner, address spender) view returns (uint256)",
+  "function decimals() view returns (uint8)",
+  "function symbol() view returns (string)",
+  "function name() view returns (string)",
+  "function nonces(address owner) view returns (uint256)",
+  "function permit(address owner, address spender, uint256 value, uint256 deadline, uint8 v, bytes32 r, bytes32 s)",
+  "event Transfer(address indexed from, address indexed to, uint256 value)",
+  "event Approval(address indexed owner, address indexed spender, uint256 value)"
+];
 
 // src/client/types.ts
 init_esm_shims();
@@ -30722,7 +30832,7 @@ var MoltsPayClient = class {
   todaySpending = 0;
   lastSpendingReset = 0;
   constructor(options = {}) {
-    this.configDir = options.configDir || join(homedir(), ".moltspay");
+    this.configDir = options.configDir || join2(homedir(), ".moltspay");
     this.config = this.loadConfig();
     this.walletData = this.loadWallet();
     if (this.walletData) {
@@ -30847,7 +30957,7 @@ var MoltsPayClient = class {
   async signEIP3009(to, amount, chain2) {
     const validAfter = 0;
     const validBefore = Math.floor(Date.now() / 1e3) + 3600;
-    const nonce = ethers2.hexlify(ethers2.randomBytes(32));
+    const nonce = ethers.hexlify(ethers.randomBytes(32));
     const value = BigInt(Math.floor(amount * 1e6)).toString();
     const authorization = {
       from: this.wallet.address,
@@ -30904,8 +31014,8 @@ var MoltsPayClient = class {
   }
   // --- Config & Wallet Management ---
   loadConfig() {
-    const configPath = join(this.configDir, "config.json");
-    if (existsSync(configPath)) {
+    const configPath = join2(this.configDir, "config.json");
+    if (existsSync2(configPath)) {
       const content = readFileSync2(configPath, "utf-8");
       return { ...DEFAULT_CONFIG, ...JSON.parse(content) };
     }
@@ -30913,12 +31023,12 @@ var MoltsPayClient = class {
   }
   saveConfig() {
     mkdirSync(this.configDir, { recursive: true });
-    const configPath = join(this.configDir, "config.json");
+    const configPath = join2(this.configDir, "config.json");
     writeFileSync(configPath, JSON.stringify(this.config, null, 2));
   }
   loadWallet() {
-    const walletPath = join(this.configDir, "wallet.json");
-    if (existsSync(walletPath)) {
+    const walletPath = join2(this.configDir, "wallet.json");
+    if (existsSync2(walletPath)) {
       const content = readFileSync2(walletPath, "utf-8");
       return JSON.parse(content);
     }
@@ -30935,7 +31045,7 @@ var MoltsPayClient = class {
       privateKey: wallet.privateKey,
       createdAt: Date.now()
     };
-    const walletPath = join(configDir, "wallet.json");
+    const walletPath = join2(configDir, "wallet.json");
     writeFileSync(walletPath, JSON.stringify(walletData, null, 2));
     const config = {
       chain: options.chain,
@@ -30944,7 +31054,7 @@ var MoltsPayClient = class {
         maxPerDay: options.maxPerDay
       }
     };
-    const configPath = join(configDir, "config.json");
+    const configPath = join2(configDir, "config.json");
     writeFileSync(configPath, JSON.stringify(config, null, 2));
     return { address: wallet.address, configDir };
   }
@@ -30961,14 +31071,14 @@ var MoltsPayClient = class {
     } catch {
       throw new Error(`Unknown chain: ${this.config.chain}`);
     }
-    const provider = new ethers2.JsonRpcProvider(chain2.rpc);
+    const provider = new ethers.JsonRpcProvider(chain2.rpc);
     const nativeBalance = await provider.getBalance(this.wallet.address);
     const usdcAbi = ["function balanceOf(address) view returns (uint256)"];
-    const usdc = new ethers2.Contract(chain2.usdc, usdcAbi, provider);
+    const usdc = new ethers.Contract(chain2.usdc, usdcAbi, provider);
     const usdcBalance = await usdc.balanceOf(this.wallet.address);
     return {
-      usdc: parseFloat(ethers2.formatUnits(usdcBalance, 6)),
-      native: parseFloat(ethers2.formatEther(nativeBalance))
+      usdc: parseFloat(ethers.formatUnits(usdcBalance, 6)),
+      native: parseFloat(ethers.formatEther(nativeBalance))
     };
   }
 };
@@ -30978,15 +31088,15 @@ init_esm_shims();
 
 // src/wallet/Wallet.ts
 init_esm_shims();
-import { ethers as ethers3 } from "ethers";
+import { ethers as ethers2 } from "ethers";
 
 // src/wallet/createWallet.ts
 init_esm_shims();
-import { ethers as ethers4 } from "ethers";
-import { writeFileSync as writeFileSync2, readFileSync as readFileSync3, existsSync as existsSync2, mkdirSync as mkdirSync2 } from "fs";
-import { join as join2, dirname } from "path";
+import { ethers as ethers3 } from "ethers";
+import { writeFileSync as writeFileSync2, readFileSync as readFileSync3, existsSync as existsSync3, mkdirSync as mkdirSync2 } from "fs";
+import { join as join3, dirname } from "path";
 import { createCipheriv, createDecipheriv, randomBytes, scryptSync } from "crypto";
-var DEFAULT_STORAGE_DIR = join2(process.env.HOME || "~", ".moltspay");
+var DEFAULT_STORAGE_DIR = join3(process.env.HOME || "~", ".moltspay");
 var DEFAULT_STORAGE_FILE = "wallet.json";
 function encryptPrivateKey(privateKey, password) {
   const salt = randomBytes(16);
@@ -31009,8 +31119,8 @@ function decryptPrivateKey(encrypted, password, iv, salt) {
   return decrypted;
 }
 function createWallet(options = {}) {
-  const storagePath = options.storagePath || join2(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
-  if (existsSync2(storagePath) && !options.overwrite) {
+  const storagePath = options.storagePath || join3(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
+  if (existsSync3(storagePath) && !options.overwrite) {
     try {
       const existing = JSON.parse(readFileSync3(storagePath, "utf8"));
       return {
@@ -31027,7 +31137,7 @@ function createWallet(options = {}) {
     }
   }
   try {
-    const wallet = ethers4.Wallet.createRandom();
+    const wallet = ethers3.Wallet.createRandom();
     const walletData = {
       address: wallet.address,
       label: options.label,
@@ -31044,7 +31154,7 @@ function createWallet(options = {}) {
       walletData.privateKey = wallet.privateKey;
     }
     const dir = dirname(storagePath);
-    if (!existsSync2(dir)) {
+    if (!existsSync3(dir)) {
       mkdirSync2(dir, { recursive: true });
     }
     writeFileSync2(storagePath, JSON.stringify(walletData, null, 2), { mode: 384 });
@@ -31062,8 +31172,8 @@ function createWallet(options = {}) {
   }
 }
 function loadWallet(options = {}) {
-  const storagePath = options.storagePath || join2(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
-  if (!existsSync2(storagePath)) {
+  const storagePath = options.storagePath || join3(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
+  if (!existsSync3(storagePath)) {
     return { success: false, error: "Wallet not found. Run createWallet() first." };
   }
   try {
@@ -31082,26 +31192,26 @@ function loadWallet(options = {}) {
   }
 }
 function getWalletAddress(storagePath) {
-  const path3 = storagePath || join2(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
-  if (!existsSync2(path3)) {
+  const path4 = storagePath || join3(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
+  if (!existsSync3(path4)) {
     return null;
   }
   try {
-    const data = JSON.parse(readFileSync3(path3, "utf8"));
+    const data = JSON.parse(readFileSync3(path4, "utf8"));
     return data.address;
   } catch {
     return null;
   }
 }
 function walletExists(storagePath) {
-  const path3 = storagePath || join2(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
-  return existsSync2(path3);
+  const path4 = storagePath || join3(DEFAULT_STORAGE_DIR, DEFAULT_STORAGE_FILE);
+  return existsSync3(path4);
 }
 
 // src/verify/index.ts
 init_esm_shims();
-import { ethers as ethers5 } from "ethers";
-var TRANSFER_EVENT_TOPIC = ethers5.id("Transfer(address,address,uint256)");
+import { ethers as ethers4 } from "ethers";
+var TRANSFER_EVENT_TOPIC = ethers4.id("Transfer(address,address,uint256)");
 async function verifyPayment(params) {
   const { txHash, expectedAmount, expectedTo } = params;
   let chain2;
@@ -31118,7 +31228,7 @@ async function verifyPayment(params) {
     return { verified: false, error: `Unsupported chain: ${params.chain}` };
   }
   try {
-    const provider = new ethers5.JsonRpcProvider(chain2.rpc);
+    const provider = new ethers4.JsonRpcProvider(chain2.rpc);
     const receipt = await provider.getTransactionReceipt(txHash);
     if (!receipt) {
       return { verified: false, error: "Transaction not found or not confirmed" };
@@ -31178,7 +31288,7 @@ async function getTransactionStatus(txHash, chain2 = "base") {
     return { status: "not_found" };
   }
   try {
-    const provider = new ethers5.JsonRpcProvider(chainConfig.rpc);
+    const provider = new ethers4.JsonRpcProvider(chainConfig.rpc);
     const receipt = await provider.getTransactionReceipt(txHash);
     if (!receipt) {
       const tx = await provider.getTransaction(txHash);
@@ -31215,7 +31325,7 @@ async function waitForTransaction(txHash, chain2 = "base", confirmations = 1, ti
   } catch (e) {
     return { verified: false, confirmed: false, error: `Unsupported chain: ${chain2}` };
   }
-  const provider = new ethers5.JsonRpcProvider(chainConfig.rpc);
+  const provider = new ethers4.JsonRpcProvider(chainConfig.rpc);
   try {
     const receipt = await provider.waitForTransaction(txHash, confirmations, timeoutMs);
     if (!receipt) {
@@ -31238,8 +31348,8 @@ async function waitForTransaction(txHash, chain2 = "base", confirmations = 1, ti
 // src/cdp/index.ts
 init_esm_shims();
 import * as fs from "fs";
-import * as path2 from "path";
-var DEFAULT_STORAGE_DIR2 = path2.join(process.env.HOME || ".", ".moltspay");
+import * as path3 from "path";
+var DEFAULT_STORAGE_DIR2 = path3.join(process.env.HOME || ".", ".moltspay");
 var CDP_CONFIG_FILE = "cdp-wallet.json";
 function isCDPAvailable() {
   try {
@@ -31261,7 +31371,7 @@ function getCDPCredentials(config) {
 async function initCDPWallet(config = {}) {
   const storageDir = config.storageDir || DEFAULT_STORAGE_DIR2;
   const chain2 = config.chain || "base";
-  const storagePath = path2.join(storageDir, CDP_CONFIG_FILE);
+  const storagePath = path3.join(storageDir, CDP_CONFIG_FILE);
   if (fs.existsSync(storagePath)) {
     try {
       const data = JSON.parse(fs.readFileSync(storagePath, "utf-8"));
@@ -31323,7 +31433,7 @@ async function initCDPWallet(config = {}) {
 }
 function loadCDPWallet(config = {}) {
   const storageDir = config.storageDir || DEFAULT_STORAGE_DIR2;
-  const storagePath = path2.join(storageDir, CDP_CONFIG_FILE);
+  const storagePath = path3.join(storageDir, CDP_CONFIG_FILE);
   if (!fs.existsSync(storagePath)) {
     return null;
   }
@@ -31356,9 +31466,9 @@ var CDPWallet = class {
    * Get USDC balance
    */
   async getBalance() {
-    const { ethers: ethers6 } = await import("ethers");
-    const provider = new ethers6.JsonRpcProvider(this.chainConfig.rpc);
-    const usdcContract = new ethers6.Contract(
+    const { ethers: ethers5 } = await import("ethers");
+    const provider = new ethers5.JsonRpcProvider(this.chainConfig.rpc);
+    const usdcContract = new ethers5.Contract(
       this.chainConfig.usdc,
       ["function balanceOf(address) view returns (uint256)"],
       provider
@@ -31369,7 +31479,7 @@ var CDPWallet = class {
     ]);
     return {
       usdc: (Number(usdcBalance) / 1e6).toFixed(2),
-      eth: ethers6.formatEther(ethBalance)
+      eth: ethers5.formatEther(ethBalance)
     };
   }
   /**
@@ -31387,7 +31497,7 @@ var CDPWallet = class {
     }
     try {
       const { CdpClient } = await import("@coinbase/cdp-sdk");
-      const { ethers: ethers6 } = await import("ethers");
+      const { ethers: ethers5 } = await import("ethers");
       const cdp = new CdpClient({
         apiKeyId: creds.apiKeyId,
         apiKeySecret: creds.apiKeySecret,
@@ -31395,7 +31505,7 @@ var CDPWallet = class {
       });
       const account = await cdp.evm.getAccount({ address: this.address });
       const amountWei = BigInt(Math.floor(params.amount * 1e6));
-      const iface = new ethers6.Interface([
+      const iface = new ethers5.Interface([
         "function transfer(address to, uint256 amount) returns (bool)"
       ]);
       const callData = iface.encodeFunctionData("transfer", [params.to, amountWei]);