npm - nyxora - Versions diffs - 1.5.9 → 1.6.1 - Mend

nyxora 1.5.9 → 1.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/README.md +19 -7
package/SECURITY.md +5 -2
package/package.json +14 -2
package/packages/core/package.json +1 -1
package/packages/dashboard/package.json +1 -1
package/packages/policy/package.json +1 -1
package/packages/signer/package.json +1 -1

package/README.md CHANGED Viewed

@@ -1,13 +1,13 @@
 # Nyxora Agent 🤖
 **Production-Grade Secure AI Execution Framework for Web3 Agents.**
-[![Version](https://img.shields.io/badge/version-1.5.9-blue.svg)](https://github.com/perasyudha/Nyxora)
+[![Version](https://img.shields.io/badge/version-1.6.1-blue.svg)](https://github.com/perasyudha/Nyxora)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
 [![Security: Production-Grade](https://img.shields.io/badge/Security-Production--Grade-blue.svg)](#️-advanced-security-threat-model)
 [![Execution: Cryptographic Approval](https://img.shields.io/badge/Execution-Cryptographic--Approval-orange.svg)](#️-advanced-security-threat-model)
 [![Privacy: Local-Only Keys](https://img.shields.io/badge/Privacy-Local--Only--Keys-success.svg)](#️-advanced-security-threat-model)
-Nyxora (v1.5.9) is a **secure, non-custodial runtime infrastructure for autonomous onchain agents** built with a robust Monorepo architecture (Node.js & React). Designed for autonomous workflows with a premium Glassmorphism UI dashboard and strict client-side key isolation.
+Nyxora (v1.6.1) is a **secure, non-custodial runtime infrastructure for autonomous onchain agents** built with a robust Monorepo architecture (Node.js & React). Designed for autonomous workflows with a premium Glassmorphism UI dashboard and strict client-side key isolation.
 It operates under an institutional-grade **Cryptographically Bound Human-in-the-Loop** execution model, ensuring that Remote AIs (LLMs) never have unilateral access to your funds.
@@ -15,7 +15,7 @@ It operates under an institutional-grade **Cryptographically Bound Human-in-the-
 ## 🔥 Key Features
-### Advanced Security Architecture (v1.5.9)
+### Advanced Security Architecture (v1.6.1)
 *   **3-Tier IPC Architecture**: Nyxora is split into isolated processes: **Core** (LLM Runtime), **Policy Engine** (Guardrails on port 3001), and **Signer Vault** (Isolated Key Manager on Unix Sockets).
 *   **Cryptographically Bound Approval**: Policy changes and transactions requested by the AI are drafted as hashes (`sha256`). Approval via the UI requires a challenge nonce, preventing Man-in-the-Middle (MITM) attacks.
 *   **Immutable Policy Guardrails**: Transaction limits (e.g. `max_usd_per_tx`) are strictly enforced by the Policy Engine. The LLM has zero write-access to bypass these rules.
@@ -56,8 +56,22 @@ To dive deeper into the technical details of our Zero-Knowledge security archite
 ## 🚀 Quick Start & Installation
-### Local Development & Execution
-With the new v1.5.9 Monorepo architecture, launching Nyxora is completely automated via the internal `launcher.ts` orchestrator.
+### Global Installation via NPM (Recommended)
+The easiest and fastest way to use Nyxora is to install it globally via NPM. This ensures you get the latest version and can run Nyxora from anywhere on your machine.
+```bash
+# 1. Install Nyxora globally
+npm install -g nyxora@latest
+# 2. Run the Interactive Setup Wizard (API Keys, Wallet, Model Selection)
+nyxora setup
+# 3. Start the Nyxora Orchestrator and Dashboard
+nyxora
+```
+### Local Development (From Source)
+If you wish to modify the code or run from source, you can use the Monorepo architecture.
 ```bash
 git clone https://github.com/perasyudha/Nyxora.git
@@ -65,8 +79,6 @@ cd Nyxora
 # 1. Install Dependencies
 npm install
-npx ts-node -T packages/core/src/gateway/cli.ts setup
 # 2. Build the Dashboard UI
 npm run build

package/SECURITY.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # Nyxora Security Architecture & Threat Model
-Nyxora (v1.5.2) employs an institutional-grade, **Cryptographically Bound Human-in-the-Loop** security model to protect user assets and private keys against compromised LLMs, supply chain attacks, and prompt injections.
+Nyxora employs an institutional-grade, **Cryptographically Bound Human-in-the-Loop** security model to protect user assets and private keys against compromised LLMs, supply chain attacks, and prompt injections.
 ---
@@ -11,6 +11,9 @@ The core philosophy of Nyxora is **Zero-Knowledge to the LLM**.
 Large Language Models (LLMs) are incredibly powerful reasoning engines, but they are inherently vulnerable to Prompt Injection and hallucinations. Therefore, the LLM must *never* have unilateral access to private keys or the ability to bypass security guardrails.
 To achieve this, Nyxora uses a **3-Tier Monorepo IPC (Inter-Process Communication)** architecture:
+![Architecture Workflow](https://raw.githubusercontent.com/perasyudha/Nyxora/main/assets/architecture.svg)
 1. **Core Runtime (Port 3000):** Executes the LLM logic, handles the UI dashboard, and processes chat inputs.
 2. **Policy Engine (Port 3001):** A strict middleware that evaluates all transaction requests against hard limits (e.g., `max_usd_per_tx`).
 3. **Signer Vault (Unix Socket):** A completely isolated Node.js process that holds the decrypted private keys in memory. It listens exclusively on `/tmp/nyxora-signer.sock`.
@@ -26,7 +29,7 @@ When the LLM decides to swap tokens:
 ---
-## 2. Advanced Cryptographic Security (v1.6.0 Roadmap / v1.5.2 Blueprint)
+## 2. Advanced Cryptographic Security
 To prevent advanced Man-in-the-Middle (MITM) attacks and UI compromises, Nyxora is adopting the following cryptographic standards:

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "nyxora",
-  "version": "1.5.9",
+  "version": "1.6.1",
   "workspaces": [
     "packages/*"
   ],
@@ -11,12 +11,24 @@
     "test": "echo \"Error: no test specified\" && exit 1"
   },
   "dependencies": {
+    "@clack/prompts": "^1.4.0",
+    "better-sqlite3": "^12.10.0",
     "concurrently": "^9.2.1",
+    "cors": "^2.8.6",
     "dotenv": "^17.4.2",
+    "express": "^5.2.1",
+    "express-rate-limit": "^7.5.0",
+    "helmet": "^8.0.0",
     "jsonwebtoken": "^9.0.2",
+    "node-telegram-bot-api": "^0.67.0",
+    "open": "^11.0.0",
+    "openai": "^6.39.0",
     "picocolors": "^1.1.1",
     "ts-node": "^10.9.2",
-    "typescript": "^6.0.3"
+    "typescript": "^6.0.3",
+    "viem": "^2.51.0",
+    "yaml": "^2.9.0",
+    "zod": "^3.23.8"
   },
   "devDependencies": {
     "@types/jsonwebtoken": "^9.0.5",

package/packages/core/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@nyxora/core",
-  "version": "1.5.9",
+  "version": "1.6.1",
   "private": true,
   "main": "src/gateway/server.ts",
   "dependencies": {

package/packages/dashboard/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "dashboard",
   "private": true,
-  "version": "1.5.9",
+  "version": "1.6.1",
   "type": "module",
   "scripts": {
     "dev": "vite",

package/packages/policy/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@nyxora/policy",
-  "version": "1.5.9",
+  "version": "1.6.1",
   "private": true,
   "main": "src/server.ts",
   "dependencies": {

package/packages/signer/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@nyxora/signer",
-  "version": "1.5.9",
+  "version": "1.6.1",
   "private": true,
   "main": "src/server.ts",
   "dependencies": {