obol-mcp 2.0.0

package/dist/mcp.js

@@ -0,0 +1,150 @@
+#!/usr/bin/env node
+/**
+ * Obol MCP Server
+ *
+ * Exposes Obol's Solana data endpoints as MCP tools that any
+ * AI agent can discover and call. Runs over stdio transport.
+ *
+ * The MCP server proxies requests to either:
+ *   - A live Obol instance (default: production)
+ *   - A local dev instance
+ *
+ * In MCP mode, the server operates in "proxy" payment mode:
+ *   - If OBOL_URL points to a mock-mode instance, data is free
+ *   - If OBOL_URL points to an onchain instance, the MCP server
+ *     can optionally include a payment signature via AGENT_PRIVATE_KEY
+ *
+ * Usage:
+ *   npx tsx src/mcp.ts                              # stdio transport
+ *   OBOL_URL=http://localhost:3000 npx tsx src/mcp.ts  # local dev
+ *
+ * Claude Desktop config (~/.claude/claude_desktop_config.json):
+ *   {
+ *     "mcpServers": {
+ *       "obol": {
+ *         "command": "npx",
+ *         "args": ["tsx", "/path/to/obol/src/mcp.ts"],
+ *         "env": {
+ *           "OBOL_URL": "https://obol-production.up.railway.app"
+ *         }
+ *       }
+ *     }
+ *   }
+ */
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import { z } from 'zod';
+const OBOL_URL = process.env.OBOL_URL ?? 'https://obol-production.up.railway.app';
+// ── Helpers ──
+async function obolFetch(path, options) {
+    const url = `${OBOL_URL}${path}`;
+    // For MCP, we call the API without payment headers.
+    // If the server is in mock mode, it returns data.
+    // If in onchain mode, it returns 402 with pricing info.
+    const res = await fetch(url, {
+        method: options?.method ?? 'GET',
+        headers: { 'Content-Type': 'application/json' },
+        body: options?.body ? JSON.stringify(options.body) : undefined,
+    });
+    const data = await res.json();
+    return { status: res.status, data };
+}
+function formatResult(result) {
+    if (result.status === 402) {
+        return JSON.stringify({
+            error: 'Payment required',
+            message: 'This endpoint requires USDC payment via x402. The Obol instance is running in onchain mode.',
+            paymentInfo: result.data,
+        }, null, 2);
+    }
+    return JSON.stringify(result.data, null, 2);
+}
+// ── Server ──
+const server = new McpServer({
+    name: 'obol',
+    version: '2.0.0',
+});
+// ── Wallet Tools ──
+server.tool('obol_wallet_overview', 'Get a Solana wallet overview — SOL balance, token count, total value. Costs $0.01 USDC.', { address: z.string().describe('Solana wallet address') }, async ({ address }) => {
+    const result = await obolFetch(`/api/v1/wallet/${address}/overview`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_wallet_portfolio', 'Get full wallet portfolio — all token holdings with prices, NFTs, and breakdown. Costs $0.05 USDC.', { address: z.string().describe('Solana wallet address') }, async ({ address }) => {
+    const result = await obolFetch(`/api/v1/wallet/${address}/portfolio`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_wallet_activity', 'Get wallet transaction history with categorization (swaps, transfers, etc). Costs $0.05 USDC.', { address: z.string().describe('Solana wallet address') }, async ({ address }) => {
+    const result = await obolFetch(`/api/v1/wallet/${address}/activity`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_wallet_risk', 'Multi-factor risk assessment for a Solana wallet — age, diversification, activity patterns. Costs $0.10 USDC.', { address: z.string().describe('Solana wallet address') }, async ({ address }) => {
+    const result = await obolFetch(`/api/v1/wallet/${address}/risk`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_wallet_pnl', 'Wallet P&L analysis — token flows, current values, transaction history analysis. Costs $0.15 USDC.', { address: z.string().describe('Solana wallet address') }, async ({ address }) => {
+    const result = await obolFetch(`/api/v1/wallet/${address}/pnl`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+// ── Token Tools ──
+server.tool('obol_token_price', 'Get real-time token price via Jupiter. Costs $0.005 USDC.', { mint: z.string().describe('Token mint address (e.g., USDC: EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v)') }, async ({ mint }) => {
+    const result = await obolFetch(`/api/v1/token/${mint}/price`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_token_metadata', 'Get token metadata — name, symbol, supply, decimals. Costs $0.01 USDC.', { mint: z.string().describe('Token mint address') }, async ({ mint }) => {
+    const result = await obolFetch(`/api/v1/token/${mint}/metadata`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+// ── DeFi Tools ──
+server.tool('obol_swap_quote', 'Get a Jupiter swap quote with route planning and price impact. Costs $0.005 USDC.', {
+    inputMint: z.string().describe('Input token mint address (e.g., SOL: So11111111111111111111111111111111111111112)'),
+    outputMint: z.string().describe('Output token mint address'),
+    amount: z.string().describe('Amount in atomic units (e.g., 1000000000 for 1 SOL)'),
+    slippageBps: z.string().optional().describe('Slippage tolerance in basis points (default: 50 = 0.5%)'),
+}, async ({ inputMint, outputMint, amount, slippageBps }) => {
+    const params = new URLSearchParams({ inputMint, outputMint, amount });
+    if (slippageBps)
+        params.set('slippageBps', slippageBps);
+    const result = await obolFetch(`/api/v1/defi/swap/quote?${params}`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_swap_execute', 'Build a Jupiter swap transaction for signing. Returns a serialized transaction the agent must sign and submit. Costs $0.25 USDC.', {
+    inputMint: z.string().describe('Input token mint address'),
+    outputMint: z.string().describe('Output token mint address'),
+    amount: z.string().describe('Amount in atomic units'),
+    userPublicKey: z.string().describe('The wallet public key that will sign and submit the transaction'),
+    slippageBps: z.string().optional().describe('Slippage in basis points (default: 50)'),
+    priorityFee: z.string().optional().describe('Priority fee in lamports (default: auto)'),
+}, async ({ inputMint, outputMint, amount, userPublicKey, slippageBps, priorityFee }) => {
+    const result = await obolFetch('/api/v1/defi/swap/execute', {
+        method: 'POST',
+        body: { inputMint, outputMint, amount, userPublicKey, slippageBps, priorityFee },
+    });
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_defi_positions', 'Get DeFi positions for a wallet — LSTs, LP tokens, lending positions, categorized by protocol. Costs $0.10 USDC.', { address: z.string().describe('Solana wallet address') }, async ({ address }) => {
+    const result = await obolFetch(`/api/v1/defi/positions/${address}`);
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_lst_yields', 'Compare LST yields across Solana — jitoSOL, mSOL, bSOL, jupSOL, hSOL, and more. APYs from Sanctum, exchange rates from Jupiter. Costs $0.02 USDC.', {}, async () => {
+    const result = await obolFetch('/api/v1/defi/lst/yields');
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+// ── Free Tools ──
+server.tool('obol_health', 'Check Obol API health and status. Free.', {}, async () => {
+    const result = await obolFetch('/health');
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+server.tool('obol_info', 'Get Obol API info — all available endpoints, pricing, and payment mode. Free.', {}, async () => {
+    const result = await obolFetch('/');
+    return { content: [{ type: 'text', text: formatResult(result) }] };
+});
+// ── Start ──
+async function main() {
+    const transport = new StdioServerTransport();
+    await server.connect(transport);
+}
+main().catch(err => {
+    console.error('Obol MCP server error:', err);
+    process.exit(1);
+});
+//# sourceMappingURL=mcp.js.map

package/dist/mcp.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mcp.js","sourceRoot":"","sources":["../src/mcp.ts"],"names":[],"mappings":";AACA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AAEH,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACpE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,IAAI,wCAAwC,CAAC;AAElF,gBAAgB;AAEhB,KAAK,UAAU,SAAS,CAAC,IAAY,EAAE,OAA6C;IAClF,MAAM,GAAG,GAAG,GAAG,QAAQ,GAAG,IAAI,EAAE,CAAC;IAEjC,oDAAoD;IACpD,kDAAkD;IAClD,wDAAwD;IACxD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAC3B,MAAM,EAAE,OAAO,EAAE,MAAM,IAAI,KAAK;QAChC,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;QAC/C,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;KAC/D,CAAC,CAAC;IAEH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC;AACtC,CAAC;AAED,SAAS,YAAY,CAAC,MAAyC;IAC7D,IAAI,MAAM,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;QAC1B,OAAO,IAAI,CAAC,SAAS,CAAC;YACpB,KAAK,EAAE,kBAAkB;YACzB,OAAO,EAAE,6FAA6F;YACtG,WAAW,EAAE,MAAM,CAAC,IAAI;SACzB,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IACd,CAAC;IACD,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;AAC9C,CAAC;AAED,eAAe;AAEf,MAAM,MAAM,GAAG,IAAI,SAAS,CAAC;IAC3B,IAAI,EAAE,MAAM;IACZ,OAAO,EAAE,OAAO;CACjB,CAAC,CAAC;AAEH,qBAAqB;AAErB,MAAM,CAAC,IAAI,CACT,sBAAsB,EACtB,yFAAyF,EACzF,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,EACzD,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE;IACpB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,kBAAkB,OAAO,WAAW,CAAC,CAAC;IACrE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,uBAAuB,EACvB,oGAAoG,EACpG,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,EACzD,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE;IACpB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,kBAAkB,OAAO,YAAY,CAAC,CAAC;IACtE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,sBAAsB,EACtB,+FAA+F,EAC/F,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,EACzD,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE;IACpB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,kBAAkB,OAAO,WAAW,CAAC,CAAC;IACrE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,kBAAkB,EAClB,+GAA+G,EAC/G,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,EACzD,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE;IACpB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,kBAAkB,OAAO,OAAO,CAAC,CAAC;IACjE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,iBAAiB,EACjB,oGAAoG,EACpG,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,EACzD,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE;IACpB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,kBAAkB,OAAO,MAAM,CAAC,CAAC;IAChE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,oBAAoB;AAEpB,MAAM,CAAC,IAAI,CACT,kBAAkB,EAClB,2DAA2D,EAC3D,EAAE,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,+EAA+E,CAAC,EAAE,EAC9G,KAAK,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE;IACjB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,iBAAiB,IAAI,QAAQ,CAAC,CAAC;IAC9D,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,qBAAqB,EACrB,wEAAwE,EACxE,EAAE,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,oBAAoB,CAAC,EAAE,EACnD,KAAK,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE;IACjB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,iBAAiB,IAAI,WAAW,CAAC,CAAC;IACjE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,mBAAmB;AAEnB,MAAM,CAAC,IAAI,CACT,iBAAiB,EACjB,mFAAmF,EACnF;IACE,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,mFAAmF,CAAC;IACnH,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,2BAA2B,CAAC;IAC5D,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,qDAAqD,CAAC;IAClF,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,yDAAyD,CAAC;CACvG,EACD,KAAK,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,EAAE,WAAW,EAAE,EAAE,EAAE;IACvD,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC,CAAC;IACtE,IAAI,WAAW;QAAE,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,WAAW,CAAC,CAAC;IACxD,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,2BAA2B,MAAM,EAAE,CAAC,CAAC;IACpE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,mBAAmB,EACnB,kIAAkI,EAClI;IACE,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,0BAA0B,CAAC;IAC1D,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,2BAA2B,CAAC;IAC5D,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,wBAAwB,CAAC;IACrD,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,iEAAiE,CAAC;IACrG,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,wCAAwC,CAAC;IACrF,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,0CAA0C,CAAC;CACxF,EACD,KAAK,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,EAAE,aAAa,EAAE,WAAW,EAAE,WAAW,EAAE,EAAE,EAAE;IACnF,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,2BAA2B,EAAE;QAC1D,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,EAAE,aAAa,EAAE,WAAW,EAAE,WAAW,EAAE;KACjF,CAAC,CAAC;IACH,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,qBAAqB,EACrB,kHAAkH,EAClH,EAAE,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,EACzD,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE;IACpB,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,0BAA0B,OAAO,EAAE,CAAC,CAAC;IACpE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,iBAAiB,EACjB,mJAAmJ,EACnJ,EAAE,EACF,KAAK,IAAI,EAAE;IACT,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,yBAAyB,CAAC,CAAC;IAC1D,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,mBAAmB;AAEnB,MAAM,CAAC,IAAI,CACT,aAAa,EACb,yCAAyC,EACzC,EAAE,EACF,KAAK,IAAI,EAAE;IACT,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,SAAS,CAAC,CAAC;IAC1C,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,MAAM,CAAC,IAAI,CACT,WAAW,EACX,+EAA+E,EAC/E,EAAE,EACF,KAAK,IAAI,EAAE;IACT,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;IACpC,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AACrE,CAAC,CACF,CAAC;AAEF,cAAc;AAEd,KAAK,UAAU,IAAI;IACjB,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;AAClC,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE;IACjB,OAAO,CAAC,KAAK,CAAC,wBAAwB,EAAE,GAAG,CAAC,CAAC;IAC7C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/middleware/validation.d.ts

@@ -0,0 +1,6 @@
+import type { FastifyRequest, FastifyReply } from 'fastify';
+/** Validate :address param is a valid Solana public key */
+export declare function validateSolanaAddress(request: FastifyRequest, reply: FastifyReply): Promise<void>;
+/** Validate :mint param is a valid Solana public key (token mint) */
+export declare function validateMintAddress(request: FastifyRequest, reply: FastifyReply): Promise<void>;
+//# sourceMappingURL=validation.d.ts.map

package/dist/middleware/validation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.d.ts","sourceRoot":"","sources":["../../src/middleware/validation.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAG5D,2DAA2D;AAC3D,wBAAsB,qBAAqB,CACzC,OAAO,EAAE,cAAc,EACvB,KAAK,EAAE,YAAY,GAClB,OAAO,CAAC,IAAI,CAAC,CAkBf;AAED,qEAAqE;AACrE,wBAAsB,mBAAmB,CACvC,OAAO,EAAE,cAAc,EACvB,KAAK,EAAE,YAAY,GAClB,OAAO,CAAC,IAAI,CAAC,CAkBf"}

package/dist/middleware/validation.js

@@ -0,0 +1,40 @@
+import { PublicKey } from '@solana/web3.js';
+/** Validate :address param is a valid Solana public key */
+export async function validateSolanaAddress(request, reply) {
+    const { address } = request.params;
+    if (!address) {
+        return reply.code(400).send({
+            error: 'Bad Request',
+            message: 'Missing wallet address',
+        });
+    }
+    try {
+        new PublicKey(address);
+    }
+    catch {
+        return reply.code(400).send({
+            error: 'Bad Request',
+            message: `Invalid Solana address: ${address}`,
+        });
+    }
+}
+/** Validate :mint param is a valid Solana public key (token mint) */
+export async function validateMintAddress(request, reply) {
+    const { mint } = request.params;
+    if (!mint) {
+        return reply.code(400).send({
+            error: 'Bad Request',
+            message: 'Missing token mint address',
+        });
+    }
+    try {
+        new PublicKey(mint);
+    }
+    catch {
+        return reply.code(400).send({
+            error: 'Bad Request',
+            message: `Invalid token mint: ${mint}`,
+        });
+    }
+}
+//# sourceMappingURL=validation.js.map

package/dist/middleware/validation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.js","sourceRoot":"","sources":["../../src/middleware/validation.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C,2DAA2D;AAC3D,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,OAAuB,EACvB,KAAmB;IAEnB,MAAM,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC,MAA8B,CAAC;IAE3D,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,KAAK,EAAE,aAAa;YACpB,OAAO,EAAE,wBAAwB;SAClC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC;QACH,IAAI,SAAS,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,KAAK,EAAE,aAAa;YACpB,OAAO,EAAE,2BAA2B,OAAO,EAAE;SAC9C,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,qEAAqE;AACrE,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,OAAuB,EACvB,KAAmB;IAEnB,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,MAA2B,CAAC;IAErD,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,KAAK,EAAE,aAAa;YACpB,OAAO,EAAE,4BAA4B;SACtC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC;QACH,IAAI,SAAS,CAAC,IAAI,CAAC,CAAC;IACtB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,KAAK,EAAE,aAAa;YACpB,OAAO,EAAE,uBAAuB,IAAI,EAAE;SACvC,CAAC,CAAC;IACL,CAAC;AACH,CAAC"}

package/dist/middleware/x402.d.ts

@@ -0,0 +1,33 @@
+/**
+ * x402 Payment Middleware for Fastify
+ *
+ * Built on the @x402/core SDK for protocol-compliant header encoding/decoding.
+ * Uses @x402/svm utilities for Solana-specific address validation.
+ *
+ * Architecture note:
+ * The full @x402 SDK uses a Facilitator model (verify + settle via a remote
+ * or local facilitator service). For Obol, we implement direct
+ * on-chain verification because we want zero third-party dependencies in
+ * the payment path. The SDK's header format and protocol types are used
+ * to ensure protocol compliance.
+ *
+ * When the x402 ecosystem matures further, we can swap in the SDK's
+ * x402HTTPResourceServer for full protocol support with one line change.
+ */
+import type { FastifyRequest, FastifyReply } from 'fastify';
+export interface PaymentInfo {
+    wallet: string;
+    amount: number;
+    currency: string;
+    verifiedAt: string;
+    txSignature?: string;
+    network?: string;
+    mode: 'mock' | 'onchain';
+}
+declare module 'fastify' {
+    interface FastifyRequest {
+        payment?: PaymentInfo;
+    }
+}
+export declare function x402PaymentMiddleware(request: FastifyRequest, reply: FastifyReply): Promise<void>;
+//# sourceMappingURL=x402.d.ts.map

package/dist/middleware/x402.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402.d.ts","sourceRoot":"","sources":["../../src/middleware/x402.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAuB5D,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;CAC1B;AAED,OAAO,QAAQ,SAAS,CAAC;IACvB,UAAU,cAAc;QACtB,OAAO,CAAC,EAAE,WAAW,CAAC;KACvB;CACF;AAmCD,wBAAsB,qBAAqB,CACzC,OAAO,EAAE,cAAc,EACvB,KAAK,EAAE,YAAY,GAClB,OAAO,CAAC,IAAI,CAAC,CAqQf"}

package/dist/middleware/x402.js

@@ -0,0 +1,294 @@
+/**
+ * x402 Payment Middleware for Fastify
+ *
+ * Built on the @x402/core SDK for protocol-compliant header encoding/decoding.
+ * Uses @x402/svm utilities for Solana-specific address validation.
+ *
+ * Architecture note:
+ * The full @x402 SDK uses a Facilitator model (verify + settle via a remote
+ * or local facilitator service). For Obol, we implement direct
+ * on-chain verification because we want zero third-party dependencies in
+ * the payment path. The SDK's header format and protocol types are used
+ * to ensure protocol compliance.
+ *
+ * When the x402 ecosystem matures further, we can swap in the SDK's
+ * x402HTTPResourceServer for full protocol support with one line change.
+ */
+import { PublicKey } from '@solana/web3.js';
+import { config } from '../config/env.js';
+import { getEndpointPrice, requiresPayment } from '../config/pricing.js';
+import { cache } from '../services/cache.js';
+import { helius } from '../services/helius.js';
+import { logger } from '../utils/logger.js';
+// SDK utilities for protocol compliance
+import { validateSvmAddress, USDC_MAINNET_ADDRESS, SOLANA_MAINNET_CAIP2 } from '@x402/svm';
+// ──────────────────────────────────────────────
+// Constants
+// ──────────────────────────────────────────────
+const X402_VERSION = 2; // SDK v2 protocol
+const MAX_TX_AGE_SECONDS = 300;
+// ──────────────────────────────────────────────
+// Helpers
+// ──────────────────────────────────────────────
+function usdcToAtomicUnits(usdcAmount) {
+    return Math.floor(usdcAmount * 1_000_000).toString();
+}
+function generateMemo() {
+    return `obol_${Date.now()}_${Math.random().toString(36).substring(2, 15)}`;
+}
+/** Build a protocol-compliant payment requirement */
+function buildPaymentRequirement(resource, priceUSDC) {
+    return {
+        scheme: 'exact',
+        network: SOLANA_MAINNET_CAIP2,
+        maxAmountRequired: usdcToAtomicUnits(priceUSDC),
+        resource,
+        description: `Obol: ${resource}`,
+        mimeType: 'application/json',
+        outputSchema: {},
+        payTo: config.payment.recipientAddress,
+        maxTimeoutSeconds: MAX_TX_AGE_SECONDS,
+        asset: USDC_MAINNET_ADDRESS,
+        extra: { memo: generateMemo() },
+    };
+}
+// ──────────────────────────────────────────────
+// Middleware
+// ──────────────────────────────────────────────
+export async function x402PaymentMiddleware(request, reply) {
+    const { url } = request;
+    if (!requiresPayment(url))
+        return;
+    let price;
+    try {
+        price = getEndpointPrice(url);
+    }
+    catch {
+        return reply.code(404).send({ error: 'Not Found', message: 'Endpoint not configured' });
+    }
+    // Check for payment header (SDK uses X-PAYMENT or PAYMENT-SIGNATURE)
+    const paymentHeader = (request.headers['x-payment'] ?? request.headers['payment-signature']);
+    if (!paymentHeader) {
+        const requirement = buildPaymentRequirement(url, price);
+        const paymentRequired = {
+            x402Version: X402_VERSION,
+            error: 'Payment Required',
+            accepts: [requirement],
+        };
+        logger.info({ url, price }, '402: Payment required');
+        // Set protocol-compliant header + JSON body
+        reply.header('X-PAYMENT-REQUIRED', Buffer.from(JSON.stringify(paymentRequired)).toString('base64'));
+        return reply.code(402).send(paymentRequired);
+    }
+    // Decode payment header (base64 JSON)
+    let payment;
+    try {
+        const decoded = Buffer.from(paymentHeader, 'base64').toString('utf-8');
+        payment = JSON.parse(decoded);
+    }
+    catch {
+        return reply.code(400).send({
+            x402Version: X402_VERSION,
+            error: 'Invalid payment header — could not decode',
+        });
+    }
+    const payload = payment.payload;
+    if (!payload) {
+        return reply.code(400).send({
+            x402Version: X402_VERSION,
+            error: 'Invalid payment: missing payload',
+        });
+    }
+    // ── Mock mode ──
+    if (config.payment.mode === 'mock') {
+        logger.debug({ url }, 'Mock: auto-approving');
+        const walletId = payload.fromAddress ?? payload.transaction?.slice(0, 20) ?? 'mock-wallet';
+        request.payment = {
+            wallet: walletId,
+            amount: price,
+            currency: 'USDC',
+            verifiedAt: new Date().toISOString(),
+            mode: 'mock',
+        };
+        return;
+    }
+    // ── On-chain mode ──
+    // SDK v2 sends { payload: { transaction: "base64..." } }
+    // Legacy v1 sends { payload: { signature: "base58...", fromAddress: "..." } }
+    const txSignature = payload.signature ?? payload.transaction;
+    const fromAddress = payload.fromAddress;
+    if (!txSignature) {
+        return reply.code(400).send({
+            x402Version: X402_VERSION,
+            error: 'Missing transaction signature in payment payload',
+        });
+    }
+    // Validate sender address if provided
+    if (fromAddress && !validateSvmAddress(fromAddress)) {
+        return reply.code(400).send({
+            x402Version: X402_VERSION,
+            error: 'Invalid sender address',
+        });
+    }
+    // ── Replay prevention: check if this tx signature was already used ──
+    const txKey = `payment:tx:${txSignature}`;
+    if (await cache.exists(txKey)) {
+        logger.warn({ txSignature: String(txSignature).slice(0, 20) }, 'Replay rejected');
+        return reply.code(400).send({
+            x402Version: X402_VERSION,
+            error: 'Transaction already used for a previous payment',
+        });
+    }
+    // ── Fetch parsed transaction from Solana via Helius ──
+    let parsedTx;
+    try {
+        const conn = helius.getConnection();
+        parsedTx = await conn.getParsedTransaction(String(txSignature), {
+            maxSupportedTransactionVersion: 0,
+            commitment: 'confirmed',
+        });
+    }
+    catch (err) {
+        logger.error({ err, txSignature: String(txSignature).slice(0, 20) }, 'Failed to fetch transaction');
+        return reply.code(502).send({
+            x402Version: X402_VERSION,
+            error: 'Could not verify transaction — RPC error',
+        });
+    }
+    if (!parsedTx) {
+        return reply.code(400).send({
+            x402Version: X402_VERSION,
+            error: 'Transaction not found on-chain. It may not be confirmed yet — retry in a few seconds.',
+        });
+    }
+    // ── Verify transaction succeeded ──
+    if (parsedTx.meta?.err) {
+        return reply.code(400).send({
+            x402Version: X402_VERSION,
+            error: 'Transaction failed on-chain',
+            details: parsedTx.meta.err,
+        });
+    }
+    // ── Verify transaction age ──
+    const txTimestamp = parsedTx.blockTime;
+    if (txTimestamp) {
+        const ageSeconds = Math.floor(Date.now() / 1000) - txTimestamp;
+        if (ageSeconds > MAX_TX_AGE_SECONDS) {
+            return reply.code(400).send({
+                x402Version: X402_VERSION,
+                error: `Transaction too old (${ageSeconds}s). Must be under ${MAX_TX_AGE_SECONDS}s.`,
+            });
+        }
+        if (ageSeconds < -60) {
+            // Clock skew guard — reject transactions "from the future" beyond 60s tolerance
+            return reply.code(400).send({
+                x402Version: X402_VERSION,
+                error: 'Transaction timestamp is in the future',
+            });
+        }
+    }
+    // ── Find the USDC transfer to our merchant wallet ──
+    const requiredAtomicUnits = BigInt(usdcToAtomicUnits(price));
+    const recipientPubkey = config.payment.recipientAddress;
+    const usdcMint = USDC_MAINNET_ADDRESS;
+    let verifiedAmount = BigInt(0);
+    let verifiedSender = 'unknown';
+    const innerInstructions = parsedTx.meta?.innerInstructions ?? [];
+    const allInstructions = [
+        ...parsedTx.transaction.message.instructions,
+        ...innerInstructions.flatMap(ix => ix.instructions),
+    ];
+    for (const ix of allInstructions) {
+        // We need parsed instructions from the SPL Token program
+        if (!('parsed' in ix))
+            continue;
+        const parsed = ix;
+        if (parsed.program !== 'spl-token')
+            continue;
+        const { type, info } = parsed.parsed;
+        // Match transfer or transferChecked
+        if (type !== 'transfer' && type !== 'transferChecked')
+            continue;
+        const destination = info.destination ?? info.account;
+        const amount = info.amount ?? info.tokenAmount?.amount;
+        const mint = info.mint;
+        if (!destination || !amount)
+            continue;
+        // For transferChecked, mint is in the instruction — reject if wrong mint.
+        // For plain transfer, mint is absent — we verify via the token account below.
+        if (mint && mint !== usdcMint)
+            continue;
+        // For plain transfers without mint field, we MUST verify via token account.
+        // The token account lookup below enforces mint == USDC as a hard requirement.
+        // Resolve destination token account → check if owner is our merchant wallet
+        // The destination in SPL transfer is the token account, not the wallet.
+        // We check if the recipient token account belongs to our merchant.
+        try {
+            const destAccountInfo = await helius.getConnection().getParsedAccountInfo(new PublicKey(destination));
+            if (!destAccountInfo.value)
+                continue;
+            const accountData = destAccountInfo.value.data;
+            if (!('parsed' in accountData))
+                continue;
+            const tokenAccountInfo = accountData.parsed;
+            const owner = tokenAccountInfo.info?.owner;
+            const accountMint = tokenAccountInfo.info?.mint;
+            // Verify: token account is owned by our wallet AND it's USDC
+            // CRITICAL: both checks are mandatory — if either is missing, reject
+            if (owner !== recipientPubkey)
+                continue;
+            if (!accountMint || accountMint !== usdcMint)
+                continue;
+            verifiedAmount += BigInt(amount);
+            verifiedSender = info.authority ?? info.source ?? fromAddress ?? 'unknown';
+        }
+        catch {
+            // If we can't resolve the account, skip this instruction
+            continue;
+        }
+    }
+    if (verifiedAmount < requiredAtomicUnits) {
+        logger.warn({
+            txSignature: String(txSignature).slice(0, 20),
+            required: requiredAtomicUnits.toString(),
+            found: verifiedAmount.toString(),
+        }, 'Insufficient USDC payment');
+        return reply.code(402).send({
+            x402Version: X402_VERSION,
+            error: 'Insufficient payment',
+            required: requiredAtomicUnits.toString(),
+            received: verifiedAmount.toString(),
+            currency: 'USDC',
+        });
+    }
+    // ── Payment verified — record receipt and pass through ──
+    logger.info({
+        url,
+        txSignature: String(txSignature).slice(0, 20) + '...',
+        amount: price,
+        sender: verifiedSender,
+    }, 'Payment verified on-chain');
+    // Record by tx signature for replay prevention (24h TTL)
+    await cache.set(txKey, {
+        txSignature: String(txSignature),
+        fromAddress: verifiedSender,
+        amount: price,
+        endpoint: url,
+        timestamp: new Date().toISOString(),
+    }, 86400);
+    request.payment = {
+        wallet: verifiedSender,
+        amount: price,
+        currency: 'USDC',
+        verifiedAt: new Date().toISOString(),
+        txSignature: String(txSignature),
+        network: SOLANA_MAINNET_CAIP2,
+        mode: 'onchain',
+    };
+    reply.header('X-PAYMENT-RESPONSE', Buffer.from(JSON.stringify({
+        success: true,
+        txHash: txSignature,
+        networkId: SOLANA_MAINNET_CAIP2,
+    })).toString('base64'));
+}
+//# sourceMappingURL=x402.js.map

package/dist/middleware/x402.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402.js","sourceRoot":"","sources":["../../src/middleware/x402.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAGH,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACzE,OAAO,EAAE,KAAK,EAAE,MAAM,sBAAsB,CAAC;AAC7C,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAE5C,wCAAwC;AACxC,OAAO,EAAE,kBAAkB,EAAE,oBAAoB,EAAE,oBAAoB,EAAE,MAAM,WAAW,CAAC;AAE3F,iDAAiD;AACjD,YAAY;AACZ,iDAAiD;AAEjD,MAAM,YAAY,GAAG,CAAC,CAAC,CAAC,kBAAkB;AAC1C,MAAM,kBAAkB,GAAG,GAAG,CAAC;AAsB/B,iDAAiD;AACjD,UAAU;AACV,iDAAiD;AAEjD,SAAS,iBAAiB,CAAC,UAAkB;IAC3C,OAAO,IAAI,CAAC,KAAK,CAAC,UAAU,GAAG,SAAS,CAAC,CAAC,QAAQ,EAAE,CAAC;AACvD,CAAC;AAED,SAAS,YAAY;IACnB,OAAO,QAAQ,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;AAC7E,CAAC;AAED,qDAAqD;AACrD,SAAS,uBAAuB,CAAC,QAAgB,EAAE,SAAiB;IAClE,OAAO;QACL,MAAM,EAAE,OAAgB;QACxB,OAAO,EAAE,oBAAoB;QAC7B,iBAAiB,EAAE,iBAAiB,CAAC,SAAS,CAAC;QAC/C,QAAQ;QACR,WAAW,EAAE,SAAS,QAAQ,EAAE;QAChC,QAAQ,EAAE,kBAAkB;QAC5B,YAAY,EAAE,EAAE;QAChB,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,gBAAgB;QACtC,iBAAiB,EAAE,kBAAkB;QACrC,KAAK,EAAE,oBAAoB;QAC3B,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,EAAE;KAChC,CAAC;AACJ,CAAC;AAED,iDAAiD;AACjD,aAAa;AACb,iDAAiD;AAEjD,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,OAAuB,EACvB,KAAmB;IAEnB,MAAM,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC;IAExB,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC;QAAE,OAAO;IAElC,IAAI,KAAa,CAAC;IAClB,IAAI,CAAC;QACH,KAAK,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAC;IAChC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,OAAO,EAAE,yBAAyB,EAAE,CAAC,CAAC;IAC1F,CAAC;IAED,qEAAqE;IACrE,MAAM,aAAa,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,WAAW,CAAC,IAAI,OAAO,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAuB,CAAC;IAEnH,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,WAAW,GAAG,uBAAuB,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QACxD,MAAM,eAAe,GAAG;YACtB,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,kBAAkB;YACzB,OAAO,EAAE,CAAC,WAAW,CAAC;SACvB,CAAC;QAEF,MAAM,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,EAAE,uBAAuB,CAAC,CAAC;QAErD,4CAA4C;QAC5C,KAAK,CAAC,MAAM,CAAC,oBAAoB,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;QACpG,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;IAC/C,CAAC;IAED,sCAAsC;IACtC,IAAI,OAAgC,CAAC;IACrC,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QACvE,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAA4B,CAAC;IAC3D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,2CAA2C;SACnD,CAAC,CAAC;IACL,CAAC;IAED,MAAM,OAAO,GAAG,OAAO,CAAC,OAA8C,CAAC;IACvE,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,kCAAkC;SAC1C,CAAC,CAAC;IACL,CAAC;IAED,kBAAkB;IAClB,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;QACnC,MAAM,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,EAAE,sBAAsB,CAAC,CAAC;QAC9C,MAAM,QAAQ,GAAI,OAAO,CAAC,WAAsB,IAAK,OAAO,CAAC,WAAsB,EAAE,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,aAAa,CAAC;QACnH,OAAO,CAAC,OAAO,GAAG;YAChB,MAAM,EAAE,QAAQ;YAChB,MAAM,EAAE,KAAK;YACb,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACpC,IAAI,EAAE,MAAM;SACb,CAAC;QACF,OAAO;IACT,CAAC;IAED,sBAAsB;IACtB,yDAAyD;IACzD,8EAA8E;IAC9E,MAAM,WAAW,GAAI,OAAO,CAAC,SAAoB,IAAK,OAAO,CAAC,WAAsB,CAAC;IACrF,MAAM,WAAW,GAAG,OAAO,CAAC,WAAiC,CAAC;IAE9D,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,kDAAkD;SAC1D,CAAC,CAAC;IACL,CAAC;IAED,sCAAsC;IACtC,IAAI,WAAW,IAAI,CAAC,kBAAkB,CAAC,WAAW,CAAC,EAAE,CAAC;QACpD,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,wBAAwB;SAChC,CAAC,CAAC;IACL,CAAC;IAED,uEAAuE;IACvE,MAAM,KAAK,GAAG,cAAc,WAAW,EAAE,CAAC;IAC1C,IAAI,MAAM,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9B,MAAM,CAAC,IAAI,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,EAAE,iBAAiB,CAAC,CAAC;QAClF,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,iDAAiD;SACzD,CAAC,CAAC;IACL,CAAC;IAED,wDAAwD;IACxD,IAAI,QAA0C,CAAC;IAC/C,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,CAAC,aAAa,EAAE,CAAC;QACpC,QAAQ,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE;YAC9D,8BAA8B,EAAE,CAAC;YACjC,UAAU,EAAE,WAAW;SACxB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,EAAE,6BAA6B,CAAC,CAAC;QACpG,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,0CAA0C;SAClD,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,uFAAuF;SAC/F,CAAC,CAAC;IACL,CAAC;IAED,qCAAqC;IACrC,IAAI,QAAQ,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC;QACvB,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,6BAA6B;YACpC,OAAO,EAAE,QAAQ,CAAC,IAAI,CAAC,GAAG;SAC3B,CAAC,CAAC;IACL,CAAC;IAED,+BAA+B;IAC/B,MAAM,WAAW,GAAG,QAAQ,CAAC,SAAS,CAAC;IACvC,IAAI,WAAW,EAAE,CAAC;QAChB,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,WAAW,CAAC;QAC/D,IAAI,UAAU,GAAG,kBAAkB,EAAE,CAAC;YACpC,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC1B,WAAW,EAAE,YAAY;gBACzB,KAAK,EAAE,wBAAwB,UAAU,qBAAqB,kBAAkB,IAAI;aACrF,CAAC,CAAC;QACL,CAAC;QACD,IAAI,UAAU,GAAG,CAAC,EAAE,EAAE,CAAC;YACrB,gFAAgF;YAChF,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC1B,WAAW,EAAE,YAAY;gBACzB,KAAK,EAAE,wCAAwC;aAChD,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,sDAAsD;IACtD,MAAM,mBAAmB,GAAG,MAAM,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC;IAC7D,MAAM,eAAe,GAAG,MAAM,CAAC,OAAO,CAAC,gBAAgB,CAAC;IACxD,MAAM,QAAQ,GAAG,oBAAoB,CAAC;IAEtC,IAAI,cAAc,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;IAC/B,IAAI,cAAc,GAAG,SAAS,CAAC;IAE/B,MAAM,iBAAiB,GAAG,QAAQ,CAAC,IAAI,EAAE,iBAAiB,IAAI,EAAE,CAAC;IACjE,MAAM,eAAe,GAAG;QACtB,GAAG,QAAQ,CAAC,WAAW,CAAC,OAAO,CAAC,YAAY;QAC5C,GAAG,iBAAiB,CAAC,OAAO,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,YAAY,CAAC;KACpD,CAAC;IAEF,KAAK,MAAM,EAAE,IAAI,eAAe,EAAE,CAAC;QACjC,yDAAyD;QACzD,IAAI,CAAC,CAAC,QAAQ,IAAI,EAAE,CAAC;YAAE,SAAS;QAChC,MAAM,MAAM,GAAG,EAAuB,CAAC;QACvC,IAAI,MAAM,CAAC,OAAO,KAAK,WAAW;YAAE,SAAS;QAE7C,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,MAAM,CAAC,MAG7B,CAAC;QAEF,oCAAoC;QACpC,IAAI,IAAI,KAAK,UAAU,IAAI,IAAI,KAAK,iBAAiB;YAAE,SAAS;QAEhE,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC,OAAO,CAAC;QACrD,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,WAAW,EAAE,MAAM,CAAC;QACvD,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;QAEvB,IAAI,CAAC,WAAW,IAAI,CAAC,MAAM;YAAE,SAAS;QAEtC,0EAA0E;QAC1E,8EAA8E;QAC9E,IAAI,IAAI,IAAI,IAAI,KAAK,QAAQ;YAAE,SAAS;QAExC,4EAA4E;QAC5E,8EAA8E;QAE9E,4EAA4E;QAC5E,wEAAwE;QACxE,mEAAmE;QACnE,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,MAAM,MAAM,CAAC,aAAa,EAAE,CAAC,oBAAoB,CAAC,IAAI,SAAS,CAAC,WAAW,CAAC,CAAC,CAAC;YACtG,IAAI,CAAC,eAAe,CAAC,KAAK;gBAAE,SAAS;YAErC,MAAM,WAAW,GAAG,eAAe,CAAC,KAAK,CAAC,IAAI,CAAC;YAC/C,IAAI,CAAC,CAAC,QAAQ,IAAI,WAAW,CAAC;gBAAE,SAAS;YAEzC,MAAM,gBAAgB,GAAG,WAAW,CAAC,MAAsD,CAAC;YAC5F,MAAM,KAAK,GAAG,gBAAgB,CAAC,IAAI,EAAE,KAAK,CAAC;YAC3C,MAAM,WAAW,GAAG,gBAAgB,CAAC,IAAI,EAAE,IAAI,CAAC;YAEhD,6DAA6D;YAC7D,qEAAqE;YACrE,IAAI,KAAK,KAAK,eAAe;gBAAE,SAAS;YACxC,IAAI,CAAC,WAAW,IAAI,WAAW,KAAK,QAAQ;gBAAE,SAAS;YAEvD,cAAc,IAAI,MAAM,CAAC,MAAM,CAAC,CAAC;YACjC,cAAc,GAAG,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,MAAM,IAAI,WAAW,IAAI,SAAS,CAAC;QAC7E,CAAC;QAAC,MAAM,CAAC;YACP,yDAAyD;YACzD,SAAS;QACX,CAAC;IACH,CAAC;IAED,IAAI,cAAc,GAAG,mBAAmB,EAAE,CAAC;QACzC,MAAM,CAAC,IAAI,CAAC;YACV,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;YAC7C,QAAQ,EAAE,mBAAmB,CAAC,QAAQ,EAAE;YACxC,KAAK,EAAE,cAAc,CAAC,QAAQ,EAAE;SACjC,EAAE,2BAA2B,CAAC,CAAC;QAChC,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,WAAW,EAAE,YAAY;YACzB,KAAK,EAAE,sBAAsB;YAC7B,QAAQ,EAAE,mBAAmB,CAAC,QAAQ,EAAE;YACxC,QAAQ,EAAE,cAAc,CAAC,QAAQ,EAAE;YACnC,QAAQ,EAAE,MAAM;SACjB,CAAC,CAAC;IACL,CAAC;IAED,2DAA2D;IAC3D,MAAM,CAAC,IAAI,CAAC;QACV,GAAG;QACH,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK;QACrD,MAAM,EAAE,KAAK;QACb,MAAM,EAAE,cAAc;KACvB,EAAE,2BAA2B,CAAC,CAAC;IAEhC,yDAAyD;IACzD,MAAM,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE;QACrB,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC;QAChC,WAAW,EAAE,cAAc;QAC3B,MAAM,EAAE,KAAK;QACb,QAAQ,EAAE,GAAG;QACb,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,EAAE,KAAK,CAAC,CAAC;IAEV,OAAO,CAAC,OAAO,GAAG;QAChB,MAAM,EAAE,cAAc;QACtB,MAAM,EAAE,KAAK;QACb,QAAQ,EAAE,MAAM;QAChB,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACpC,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC;QAChC,OAAO,EAAE,oBAAoB;QAC7B,IAAI,EAAE,SAAS;KAChB,CAAC;IAEF,KAAK,CAAC,MAAM,CAAC,oBAAoB,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC;QAC5D,OAAO,EAAE,IAAI;QACb,MAAM,EAAE,WAAW;QACnB,SAAS,EAAE,oBAAoB;KAChC,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;AAC1B,CAAC"}

package/dist/plugins/defi/routes.d.ts

@@ -0,0 +1,12 @@
+import type { FastifyInstance } from 'fastify';
+/**
+ * DeFi plugin — all /api/v1/defi/* routes
+ *
+ * Endpoints:
+ *   GET  /api/v1/defi/swap/quote       ($0.005) — Jupiter swap quote
+ *   POST /api/v1/defi/swap/execute     ($0.25)  — Jupiter swap transaction builder
+ *   GET  /api/v1/defi/positions/:addr   ($0.10)  — DeFi positions aggregation
+ *   GET  /api/v1/defi/lst/yields        ($0.02)  — LST yield comparison
+ */
+export declare function defiPlugin(app: FastifyInstance): Promise<void>;
+//# sourceMappingURL=routes.d.ts.map

package/dist/plugins/defi/routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"routes.d.ts","sourceRoot":"","sources":["../../../src/plugins/defi/routes.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAgB/C;;;;;;;;GAQG;AACH,wBAAsB,UAAU,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAAC,IAAI,CAAC,CA+epE"}