nodpay 0.2.22 → 0.2.24

package/README.md

@@ -1,66 +1,70 @@
-# nodpay
+# NodPay — Trusted Agent Wallet
 
-Agent toolkit for [NodPay](https://nodpay.ai) — propose on-chain payments from a shared wallet.
+> "Two minds, one wallet."
 
-> **This package is for AI agents.** If you're a human, visit [nodpay.ai](https://nodpay.ai).
+A multisig crypto wallet shared between humans and AI agents. Built on [Safe](https://safe.global)'s battle-tested multisig infrastructure and ERC-4337 account abstraction — supports passkey and EOA signers out of the box.
 
-## What NodPay does
+**For the full agent integration guide, see [nodpay.ai/skill.md](https://nodpay.ai/skill.md).**
 
-You (an AI agent) and your human share a 2-of-3 multisig wallet. You propose transactions; the human approves or rejects each one. You cannot spend without their approval.
+## Package Structure
 
-## Usage
+This npm package (`nodpay`) is the **agent-facing CLI**. It is also published as a skill on [ClawHub](https://clawhub.ai/xhyumiracle/nodpay).
 
-```bash
-# No install needed
-NODPAY_AGENT_KEY=0x... npx nodpay propose \
-  --safe 0xWALLET --to 0xRECIPIENT --value-eth 0.01 \
-  --signer-type passkey --passkey-x 0x... --passkey-y 0x...
-```
-
-## Full guide
+| Distribution | Contains | Audience |
+|--------------|----------|----------|
+| **npm** (`npx nodpay`) | CLI scripts + `SKILL.md` | Any AI agent |
+| **ClawHub** (`clawhub install nodpay`) | `SKILL.md` only | OpenClaw agents |
+| **nodpay.ai/skill.md** | `SKILL.md` via CDN proxy | All agent frameworks |
 
-**[nodpay.ai/skill.md](https://nodpay.ai/skill.md)** — complete setup + integration guide for agents (key generation, wallet creation, proposing, error handling).
+The CLI provides three commands:
 
-## How it works
-
-1. Agent generates a key → sends user a wallet creation link
-2. User creates a passkey wallet at nodpay.ai (30 seconds)
-3. Agent proposes transactions with `npx nodpay propose`
-4. User approves/rejects on their phone
+```
+nodpay keygen     # Generate agent keypair (~/.nodpay/.env, chmod 600)
+nodpay propose    # Propose a transaction for human approval
+nodpay txs        # List and verify transactions for a wallet
+```
 
-## Key generation
+## Quick Start
 
 ```bash
-npx nodpay keygen --env-file .env
+# 1. Generate key (public address only in stdout; key never exposed)
+npx nodpay keygen
+
+# 2. Propose a payment
+npx nodpay propose \
+  --chain base \
+  --safe 0xWALLET \
+  --to 0xRECIPIENT \
+  --value-eth 0.01 \
+  --human-signer-passkey-x 0x... \
+  --human-signer-passkey-y 0x... \
+  --recovery-signer 0x...
+
+# 3. Check pending transactions (with verification)
+npx nodpay txs --safe 0xWALLET
 ```
 
-Outputs the agent's **public address only**. The private key is written directly to `.env` — it never appears in stdout, logs, or the agent's context window.
+## Security
 
-If a key already exists, it reuses it and prints the address.
+All config lives in `~/.nodpay/` — zero `process.env` references in code.
 
-### Security design
+- **Hardened Key Isolation:** private key written directly to `~/.nodpay/.env` (chmod 600), strictly excluded from stdout and agent context.
+- **Zero Trust:** `txs` independently verifies every server response (decode calldata → recompute hash → recover signer → check owner set).
+- **Threshold Security:** 2-of-3 multisig — agent cannot move funds unilaterally.
 
-The agent (LLM) **never sees the private key**. `keygen` writes the secret directly to disk; the `propose` command reads it from the environment at runtime. This means:
+See [SKILL.md](./SKILL.md) for the complete Trust Model.
 
-- No private key in conversation history or context window
-- No risk of leaking the key through prompt injection
-- The agent only needs the public address (for wallet links)
-
-## Env
+## Related
 
-| Variable | Required | Description |
-|----------|----------|-------------|
-| `NODPAY_AGENT_KEY` | ✅ | Agent's private key — use `npx nodpay keygen` to generate securely |
+| Package | Description |
+|---------|-------------|
+| [`@nodpay/core`](https://www.npmjs.com/package/@nodpay/core) | Protocol primitives — hash, decode, verify (identity-agnostic) |
+| [nodpay.ai](https://nodpay.ai) | Web app — wallet creation & transaction approval |
 
-## Supported chains
+## Supported Chains
 
 Ethereum · Base · Arbitrum · Optimism · Polygon · Sepolia · Base Sepolia
 
-## Related
-
-- [`@nodpay/core`](https://www.npmjs.com/package/@nodpay/core) — Protocol primitives (hash, decode, verify)
-- [nodpay.ai](https://nodpay.ai) — Web app
-
 ## License
 
 MIT

package/SKILL.md

@@ -27,27 +27,24 @@ You propose payments, your human approves with one tap. 2-of-3 multisig — you
 
 | Guarantee | How |
 |-----------|-----|
-| **2-of-3 multisig custody** | Agent (EOA), human (passkey), and recovery signer each hold one key. Any 2 can authorize — agent alone cannot move funds. Human + recovery signer can operate without agent. |
-| **Recovery by design** | Recovery signer is a user-held 12-word mnemonic stored locally. If the agent key or passkey is lost, any 2 of the 3 signers can still unlock the wallet. |
-| **Agent key isolated from context** | `keygen` writes directly to `~/.nodpay/.env` (chmod 600). The CLI loads the key internally at runtime — it never appears in stdout, command output, or agent context. |
-| **Zero trust** | Every party verifies every other. Server validates agent signatures before accepting proposals; client and CLI independently verify server responses (decode calldata → recompute hash → recover signer → check owner set). The chain is the sole source of truth. |
-| **Stateless server, client-side crypto** | The server relays signed operations and stores pending UserOps — no private keys, no custody, no accounts. All signing happens locally (agent CLI or user passkey). Funds stay on-chain if the server goes offline. |
+| **Threshold Security** | **Elimination of single point of failure:** authority keys are distributed between the agent, human, and a recovery signer (2-of-3 multisig). Ensures non-custodial control — the agent cannot move funds unilaterally. |
+| **Zero Trust** | **End-to-end verification:** no party is implicitly trusted. Server validates signatures; client and CLI independently verify server responses (decode calldata → recompute hash → recover signer → check owner set). The blockchain serves as the canonical source of truth. |
+| **Disaster Recovery** | **Key redundancy & continuity:** uses a locally-stored 12-word mnemonic as recovery signer. Any two of the three signers can reconstruct authority to unlock the wallet, ensuring the user is never locked out by a single lost credential. |
+| **Hardened Key Isolation** | `keygen` writes directly to `~/.nodpay/.env` (chmod 600). The CLI loads the key internally at runtime. **Runtime Isolation:** it is strictly excluded from stdout and agent context to prevent accidental leakage. |
+| **Keyless & Non-Custodial Server** | **Stateless relayer:** the server stores no private keys and maintains no session state that could compromise assets. All signing happens locally. Funds stay on-chain if the server goes offline. |
 
 All wallet parameters (Safe address, passkey X/Y, recovery signer address) are public key material — safe to store, pass in URLs, and include in CLI flags.
 
-**DO:** Use `npx nodpay keygen` to generate keys. Store wallet info in `~/.nodpay/wallets/`. Let the human approve every transaction.
-**DON'T:** Generate keys manually. Put private keys in chat or code. Trust wallet info without verifying the agent address.
-
 ## Why NodPay
 
 | Feature | How |
 |---------|-----|
-| Instant setup | Counterfactual Safe — wallet address exists before any on-chain tx |
-| Zero barrier to entry | WebAuthn passkey as on-chain signer — no extensions, no seed phrases, no prior crypto knowledge |
-| Gasless first transaction | ERC-4337 account abstraction — bundler sponsors deployment gas via UserOp |
-| Chain-agnostic | CREATE2 deterministic deploy — same address across all supported chains |
-| Trustless by design | 2-of-3 multisig, stateless relay, on-chain verifiable — see Trust Model |
-| Agent-agnostic | Standard CLI (`npx nodpay`) — works with any agent framework, not just OpenClaw |
+| **Instant Onboarding** | **Counterfactual Deployment:** wallet addresses are deterministically generated via CREATE2, allowing the wallet to receive funds before any on-chain transaction occurs. |
+| **Zero-Friction UX** | **WebAuthn Native Signer:** uses passkeys as an on-chain signer. No browser extensions, no seed phrase management, and no prior crypto knowledge required for the human. |
+| **Gasless First Step** | **ERC-4337 Account Abstraction:** leveraging paymasters, the deployment gas for the first transaction is sponsored via UserOp, eliminating the "chicken-and-egg" gas problem. |
+| **Multi-Chain Unified Identity** | **Deterministic Address Persistence:** uses the same salt and initCode to ensure the user maintains the exact same address across all supported L2s and sidechains. |
+| **Provable Security** | **Trust-Minimized Architecture:** a 2-of-3 multisig quorum ensures that neither the agent nor the server has custody. All operations are on-chain verifiable. See Trust Model. |
+| **Universal Compatibility** | **Framework-Agnostic CLI:** a standard Node interface (`npx nodpay`) that integrates seamlessly with any agentic framework, not just OpenClaw. |
 
 ---
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "nodpay",
-  "version": "0.2.22",
+  "version": "0.2.24",
   "description": "NodPay CLI — propose on-chain payments from agent-human shared wallets",
   "type": "module",
   "bin": {