npm - olympay - Versions diffs - 0.1.0 - Mend

olympay 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md ADDED Viewed

@@ -0,0 +1,407 @@
+# olympay
+> CLI for Olympay — financial control for autonomous AI agents.
+```
+ ██████╗ ██╗      ██╗   ██╗███╗   ███╗██████╗  █████╗ ██╗   ██╗
+██╔═══██╗██║      ╚██╗ ██╔╝████╗ ████║██╔══██╗██╔══██╗╚██╗ ██╔╝
+██║   ██║██║       ╚████╔╝ ██╔████╔██║██████╔╝███████║ ╚████╔╝
+██║   ██║██║        ╚██╔╝  ██║╚██╔╝██║██╔═══╝ ██╔══██║  ╚██╔╝
+╚██████╔╝███████╗   ██║   ██║ ╚═╝ ██║██║     ██║  ██║   ██║
+ ╚═════╝ ╚══════╝   ╚═╝   ╚═╝     ╚═╝╚═╝     ╚═╝  ╚═╝   ╚═╝
+  Financial control for autonomous AI agents  •  olympay.tech
+```
+## Installation
+```bash
+npm install -g olympay
+```
+Requires Node.js 18 or later.
+## Getting Started
+### 1. Create an account
+Sign up at [olympay.tech](https://olympay.tech), go to **API** in the sidebar, and click **Generate Key** to create a workspace API key.
+### 2. Authenticate
+```bash
+olympay login --key olympay_ws_YOUR_KEY
+```
+### 3. Spawn an agent
+```bash
+olympay agent create --name "my-agent"
+```
+This returns your agent's ID and its dedicated API key. Store both securely.
+---
+## Command Reference
+### `olympay login`
+Authenticate with a workspace API key.
+```bash
+olympay login --key <workspace_key>
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--key` | Yes | Workspace API key starting with `olympay_ws_` |
+| `--api` | No | Override the API base URL (default: `https://api.olympay.tech/v1`) |
+Credentials are saved to `~/.olympay/config.json`.
+---
+### `olympay logout`
+Remove stored credentials.
+```bash
+olympay logout
+```
+---
+### `olympay whoami`
+Show the currently authenticated workspace API key (masked).
+```bash
+olympay whoami
+```
+---
+### `olympay agent create`
+Spawn a new AI agent. Returns the agent's ID and its dedicated API key.
+```bash
+olympay agent create --name "billing-bot" --description "Handles recurring billing"
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--name` | Yes | Display name for the agent |
+| `--description` | No | Optional description |
+**Output:**
+```
+Agent spawned successfully!
+────────────────────────────────────────────────
+ID:       agt_01j9k2...
+Name:     billing-bot
+API Key:  olympay_agt_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
+Status:   active
+────────────────────────────────────────────────
+Keep this API key safe - use it to authenticate transactions.
+```
+---
+### `olympay agent list`
+List all agents in your workspace.
+```bash
+olympay agent list
+```
+---
+### `olympay agent suspend`
+Suspend an agent. All transactions from a suspended agent are immediately blocked.
+```bash
+olympay agent suspend AGENT_ID
+```
+---
+### `olympay agent activate`
+Re-activate a previously suspended agent.
+```bash
+olympay agent activate AGENT_ID
+```
+---
+### `olympay account create`
+Open a ledger account for an agent.
+```bash
+olympay account create --agent AGENT_ID --name "main" --currency USD
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--agent` | Yes | Agent ID to associate the account with |
+| `--name` | Yes | Account name |
+| `--currency` | No | Currency code (default: `USD`) |
+---
+### `olympay account list`
+List all accounts in your workspace, including balances.
+```bash
+olympay account list
+```
+---
+### `olympay card issue`
+Issue a virtual card linked to an agent account.
+```bash
+olympay card issue --agent AGENT_ID --account ACCOUNT_ID --brand VISA
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--agent` | Yes | Agent ID |
+| `--account` | Yes | Account ID to link the card to |
+| `--brand` | No | Card brand (default: `VISA`) |
+| `--last4` | No | Optional last 4 digits |
+---
+### `olympay card list`
+List all virtual cards in your workspace.
+```bash
+olympay card list
+```
+---
+### `olympay policy list`
+List all spending policies in your workspace.
+```bash
+olympay policy list
+```
+---
+### `olympay policy create`
+Create a new spending policy.
+```bash
+olympay policy create --name "daily-cap" --type SPEND_LIMIT --config '{"maxAmountMinor":10000}'
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--name` | Yes | Policy name |
+| `--type` | Yes | Policy type (see [Policy Types](#policy-types)) |
+| `--config` | No | JSON config object (depends on policy type) |
+| `--description` | No | Optional description |
+**Config by type:**
+| Type | Config keys |
+|---|---|
+| `SPEND_LIMIT` | `maxAmountMinor` (integer, minor currency units) |
+| `MERCHANT_ALLOWLIST` | `merchantIds` (array of strings) |
+| `MERCHANT_BLOCKLIST` | `merchantIds` (array of strings) |
+| `APPROVAL_REQUIRED` | No config needed |
+| `TIME_WINDOW` | `startHour`, `endHour` (0-23, UTC) |
+---
+### `olympay policy assign`
+Assign a policy to an agent, account, or card.
+```bash
+olympay policy assign --policy POLICY_ID --target-type AGENT --target AGENT_ID
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--policy` | Yes | Policy ID |
+| `--target-type` | Yes | `AGENT`, `ACCOUNT`, or `CARD` |
+| `--target` | Yes | ID of the target entity |
+| `--priority` | No | Evaluation priority (lower = higher, default: `100`) |
+---
+### `olympay tx eval`
+Submit a transaction attempt for real-time policy evaluation. Returns the decision (`ALLOW`, `DENY`, or `REVIEW`) and the transaction record.
+```bash
+olympay tx eval --agent AGENT_ID --account ACCOUNT_ID --amount 5000
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--agent` | Yes | Agent ID |
+| `--account` | Yes | Account ID |
+| `--amount` | Yes | Amount in minor units (e.g. `1000` = $10.00) |
+| `--card` | No | Card ID |
+| `--merchant` | No | Merchant identifier |
+| `--currency` | No | Currency code (default: `USD`) |
+| `--direction` | No | `DEBIT` or `CREDIT` (default: `DEBIT`) |
+**Output:**
+```
+Transaction DENY
+────────────────────────────────────────────────────────
+Transaction ID:  3cafac02-d2b9-4b1f-a210-ce38a64a01d6
+Amount:          200.00 USD
+Decision:        DENY
+Reason:          Denied by policy: SPEND_LIMIT
+Policies:        SPEND_LIMIT=DENY
+────────────────────────────────────────────────────────
+```
+If a policy of type `APPROVAL_REQUIRED` matches, the decision is `REVIEW` and an approval request is created — visible in the dashboard.
+---
+### `olympay workspace generate-key`
+Generate a new workspace API key. The full key value is shown only once.
+```bash
+olympay workspace generate-key --name "CI pipeline"
+```
+| Flag | Required | Description |
+|---|---|---|
+| `--name` | No | Label for the key (default: `CLI Key`) |
+---
+### `olympay workspace keys`
+List all active (non-revoked) workspace API keys. Keys are shown in masked form.
+```bash
+olympay workspace keys
+```
+---
+### `olympay workspace revoke`
+Revoke a workspace API key by its ID. Revoked keys are immediately rejected by the API.
+```bash
+olympay workspace revoke KEY_ID
+```
+Use `olympay workspace keys` to find the key ID first.
+---
+## Full Workflow Example
+```bash
+# 1. Authenticate
+olympay login --key olympay_ws_...
+# 2. Spawn an agent for handling SaaS payments
+olympay agent create --name "saas-bot" --description "Manages SaaS subscriptions"
+# Output: ID: <AGENT_ID>, API Key: olympay_agt_...
+# 3. Open a USD account for the agent
+olympay account create --agent <AGENT_ID> --name "saas-budget" --currency USD
+# Output: ID: <ACCOUNT_ID>
+# 4. Issue a virtual card
+olympay card issue --agent <AGENT_ID> --account <ACCOUNT_ID> --brand VISA
+# Output: ID: <CARD_ID>
+# 5. Create a spending limit policy (blocks transactions above $100)
+olympay policy create --name "100-cap" --type SPEND_LIMIT --config '{"maxAmountMinor":10000}'
+# Output: ID: <POLICY_ID>
+# 6. Assign the policy to the agent
+olympay policy assign --policy <POLICY_ID> --target-type AGENT --target <AGENT_ID>
+# 7. Evaluate a transaction attempt ($50 - should ALLOW)
+olympay tx eval --agent <AGENT_ID> --account <ACCOUNT_ID> --amount 5000
+# 8. Evaluate a transaction attempt ($200 - should DENY)
+olympay tx eval --agent <AGENT_ID> --account <ACCOUNT_ID> --amount 20000
+# 9. Emergency: suspend the agent
+olympay agent suspend <AGENT_ID>
+# 10. Resume after review
+olympay agent activate <AGENT_ID>
+# 11. List all resources
+olympay agent list
+olympay account list
+olympay card list
+olympay policy list
+```
+---
+## Configuration
+Credentials are stored at `~/.olympay/config.json`:
+```json
+{
+  "apiKey": "olympay_ws_...",
+  "apiBase": "https://api.olympay.tech/v1"
+}
+```
+To use a self-hosted instance, pass `--api` during login:
+```bash
+olympay login --key olympay_ws_... --api https://your-api-domain.com/v1
+```
+---
+## Policy Types
+Policies are managed in the dashboard. The following types are available:
+| Type | Description |
+|---|---|
+| `SPEND_LIMIT` | Block transactions above a configured amount |
+| `MERCHANT_ALLOWLIST` | Restrict spending to approved merchant IDs only |
+| `MERCHANT_BLOCKLIST` | Block spending at specific merchant IDs |
+| `APPROVAL_REQUIRED` | Route all transactions to human approval queue |
+| `TIME_WINDOW` | Restrict spending to defined time ranges |
+---
+## Links
+- **Dashboard**: [olympay.tech](https://olympay.tech)
+- **API Base**: `https://api.olympay.tech/v1`
+- **npm**: [npmjs.com/package/olympay](https://www.npmjs.com/package/olympay)
+---
+## License
+MIT

package/dist/cli.js ADDED Viewed

@@ -0,0 +1,322 @@
+#!/usr/bin/env node
+// src/cli.ts
+import { Command } from "commander";
+import { readFileSync, writeFileSync, existsSync, mkdirSync } from "fs";
+import { homedir } from "os";
+import { join } from "path";
+var CONFIG_DIR = join(homedir(), ".olympay");
+var CONFIG_FILE = join(CONFIG_DIR, "config.json");
+var DEFAULT_API = "https://api.olympay.tech/v1";
+var RESET = "\x1B[0m";
+var GOLD = "\x1B[38;2;196;146;58m";
+var DIM = "\x1B[2m";
+var BOLD = "\x1B[1m";
+var GREEN = "\x1B[32m";
+var RED = "\x1B[31m";
+var CYAN = "\x1B[36m";
+var ASCII_BANNER = `
+${GOLD} \u2588\u2588\u2588\u2588\u2588\u2588\u2557 \u2588\u2588\u2557      \u2588\u2588\u2557   \u2588\u2588\u2557\u2588\u2588\u2588\u2557   \u2588\u2588\u2588\u2557\u2588\u2588\u2588\u2588\u2588\u2588\u2557  \u2588\u2588\u2588\u2588\u2588\u2557 \u2588\u2588\u2557   \u2588\u2588\u2557${RESET}
+${GOLD}\u2588\u2588\u2554\u2550\u2550\u2550\u2588\u2588\u2557\u2588\u2588\u2551      \u255A\u2588\u2588\u2557 \u2588\u2588\u2554\u255D\u2588\u2588\u2588\u2588\u2557 \u2588\u2588\u2588\u2588\u2551\u2588\u2588\u2554\u2550\u2550\u2588\u2588\u2557\u2588\u2588\u2554\u2550\u2550\u2588\u2588\u2557\u255A\u2588\u2588\u2557 \u2588\u2588\u2554\u255D${RESET}
+${GOLD}\u2588\u2588\u2551   \u2588\u2588\u2551\u2588\u2588\u2551       \u255A\u2588\u2588\u2588\u2588\u2554\u255D \u2588\u2588\u2554\u2588\u2588\u2588\u2588\u2554\u2588\u2588\u2551\u2588\u2588\u2588\u2588\u2588\u2588\u2554\u255D\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2551 \u255A\u2588\u2588\u2588\u2588\u2554\u255D ${RESET}
+${GOLD}\u2588\u2588\u2551   \u2588\u2588\u2551\u2588\u2588\u2551        \u255A\u2588\u2588\u2554\u255D  \u2588\u2588\u2551\u255A\u2588\u2588\u2554\u255D\u2588\u2588\u2551\u2588\u2588\u2554\u2550\u2550\u2550\u255D \u2588\u2588\u2554\u2550\u2550\u2588\u2588\u2551  \u255A\u2588\u2588\u2554\u255D  ${RESET}
+${GOLD}\u255A\u2588\u2588\u2588\u2588\u2588\u2588\u2554\u255D\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2557   \u2588\u2588\u2551   \u2588\u2588\u2551 \u255A\u2550\u255D \u2588\u2588\u2551\u2588\u2588\u2551     \u2588\u2588\u2551  \u2588\u2588\u2551   \u2588\u2588\u2551   ${RESET}
+${GOLD} \u255A\u2550\u2550\u2550\u2550\u2550\u255D \u255A\u2550\u2550\u2550\u2550\u2550\u2550\u255D   \u255A\u2550\u255D   \u255A\u2550\u255D     \u255A\u2550\u255D\u255A\u2550\u255D     \u255A\u2550\u255D  \u255A\u2550\u255D   \u255A\u2550\u255D   ${RESET}
+${DIM}  Financial control for autonomous AI agents  \u2022  olympay.tech${RESET}
+`;
+function loadConfig() {
+  if (!existsSync(CONFIG_FILE)) return null;
+  try {
+    return JSON.parse(readFileSync(CONFIG_FILE, "utf8"));
+  } catch {
+    return null;
+  }
+}
+function saveConfig(cfg) {
+  if (!existsSync(CONFIG_DIR)) mkdirSync(CONFIG_DIR, { recursive: true });
+  writeFileSync(CONFIG_FILE, JSON.stringify(cfg, null, 2));
+}
+function requireConfig() {
+  const cfg = loadConfig();
+  if (!cfg?.apiKey) {
+    console.error(`${RED}Not logged in.${RESET} Run:  ${GOLD}olympay login --key olympay_ws_...${RESET}`);
+    process.exit(1);
+  }
+  return cfg;
+}
+async function apiCall(method, path, body) {
+  const cfg = requireConfig();
+  const url = `${cfg.apiBase}${path}`;
+  const res = await fetch(url, {
+    method,
+    headers: {
+      "Content-Type": "application/json",
+      "Authorization": `Bearer ${cfg.apiKey}`
+    },
+    body: body ? JSON.stringify(body) : void 0
+  });
+  const json = await res.json();
+  if (!res.ok) {
+    const msg = json?.error?.message ?? `HTTP ${res.status}`;
+    console.error(`${RED}Error:${RESET} ${msg}`);
+    process.exit(1);
+  }
+  return json?.data ?? json;
+}
+var program = new Command();
+program.name("olympay").description("Olympay CLI - spawn and manage AI agents with financial controls").version("0.1.0").addHelpText("before", ASCII_BANNER);
+program.command("login").description("Authenticate with a workspace API key").requiredOption("--key <key>", "Workspace API key (olympay_ws_...)").option("--api <url>", "API base URL", DEFAULT_API).action((opts) => {
+  if (!opts.key.startsWith("olympay_ws_")) {
+    console.error(`${RED}Invalid key format.${RESET} Expected: ${GOLD}olympay_ws_...${RESET}`);
+    process.exit(1);
+  }
+  saveConfig({ apiKey: opts.key, apiBase: opts.api });
+  console.log(ASCII_BANNER);
+  console.log(`${GREEN}Logged in successfully.${RESET}`);
+  console.log(`${DIM}API base:${RESET} ${opts.api}`);
+  console.log(`${DIM}Config:  ${RESET} ${CONFIG_FILE}`);
+  console.log(`
+${GOLD}Next steps:${RESET}`);
+  console.log(`  ${CYAN}olympay agent create --name "my-bot"${RESET}   Spawn your first agent`);
+  console.log(`  ${CYAN}olympay agent list${RESET}                      List all agents`);
+  console.log(`  ${CYAN}olympay account create --agent <id> --name "main"${RESET}`);
+});
+program.command("logout").description("Remove stored credentials").action(() => {
+  if (existsSync(CONFIG_FILE)) {
+    writeFileSync(CONFIG_FILE, "{}");
+  }
+  console.log(`${GREEN}Logged out.${RESET} Credentials removed from ${CONFIG_FILE}`);
+});
+program.command("whoami").description("Show current credentials").action(() => {
+  const cfg = loadConfig();
+  if (!cfg?.apiKey) {
+    console.log(`${DIM}Not logged in.${RESET}`);
+  } else {
+    const masked = cfg.apiKey.slice(0, 18) + "..." + cfg.apiKey.slice(-4);
+    console.log(`${GOLD}API key:${RESET}  ${masked}`);
+    console.log(`${GOLD}API base:${RESET} ${cfg.apiBase}`);
+  }
+});
+var agentCmd = program.command("agent").description("Manage AI agents");
+agentCmd.command("create").description("Spawn a new AI agent and receive its API key").requiredOption("--name <name>", "Agent name").option("--description <desc>", "Agent description").action(async (opts) => {
+  const agent = await apiCall("POST", "/agents", {
+    name: opts.name,
+    description: opts.description,
+    status: "active"
+  });
+  console.log(`
+${GREEN}Agent spawned successfully!${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(48)}${RESET}`);
+  console.log(`${GOLD}ID:      ${RESET} ${agent.id}`);
+  console.log(`${GOLD}Name:    ${RESET} ${agent.name}`);
+  console.log(`${GOLD}API Key: ${RESET} ${BOLD}${agent.apiKey}${RESET}`);
+  console.log(`${GOLD}Status:  ${RESET} ${agent.status}`);
+  console.log(`${DIM}${"\u2500".repeat(48)}${RESET}`);
+  console.log(`${DIM}Keep this API key safe - use it to authenticate transactions.${RESET}`);
+});
+agentCmd.command("list").description("List all agents in your workspace").action(async () => {
+  const agents = await apiCall("GET", "/agents");
+  if (!agents.length) {
+    console.log(`${DIM}No agents found.${RESET} Create one with: ${GOLD}olympay agent create --name "..."${RESET}`);
+    return;
+  }
+  console.log(`
+${GOLD}${"ID".padEnd(38)} ${"NAME".padEnd(25)} ${"STATUS".padEnd(12)} API KEY${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(100)}${RESET}`);
+  for (const a of agents) {
+    const key = a.apiKey ? a.apiKey.slice(0, 20) + "..." : DIM + "-" + RESET;
+    const status = a.status === "active" ? `${GREEN}${a.status}${RESET}` : `${DIM}${a.status}${RESET}`;
+    console.log(`${a.id.padEnd(38)} ${a.name.padEnd(25)} ${a.status.padEnd(12)} ${key}`);
+  }
+});
+agentCmd.command("suspend <id>").description("Suspend an agent to block all transactions").action(async (id) => {
+  await apiCall("PATCH", `/agents/${id}/status`, { status: "suspended" });
+  console.log(`${GREEN}Agent ${id} suspended.${RESET}`);
+});
+agentCmd.command("activate <id>").description("Re-activate a suspended agent").action(async (id) => {
+  await apiCall("PATCH", `/agents/${id}/status`, { status: "active" });
+  console.log(`${GREEN}Agent ${id} activated.${RESET}`);
+});
+var accountCmd = program.command("account").description("Manage agent ledger accounts");
+accountCmd.command("create").description("Open a ledger account for an agent").requiredOption("--agent <agentId>", "Agent ID").requiredOption("--name <name>", "Account name").option("--currency <currency>", "Currency code", "USD").action(async (opts) => {
+  const account = await apiCall("POST", "/accounts", {
+    agentId: opts.agent,
+    name: opts.name,
+    currency: opts.currency
+  });
+  console.log(`
+${GREEN}Account opened!${RESET}`);
+  console.log(`${GOLD}ID:       ${RESET} ${account.id}`);
+  console.log(`${GOLD}Name:     ${RESET} ${account.name}`);
+  console.log(`${GOLD}Currency: ${RESET} ${account.currency}`);
+  console.log(`${GOLD}Status:   ${RESET} ${account.status}`);
+});
+accountCmd.command("list").description("List all accounts in your workspace").action(async () => {
+  const accounts = await apiCall("GET", "/accounts");
+  if (!accounts.length) {
+    console.log(`${DIM}No accounts found.${RESET}`);
+    return;
+  }
+  console.log(`
+${GOLD}${"ID".padEnd(38)} ${"NAME".padEnd(25)} ${"AGENT".padEnd(38)} BALANCE${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(110)}${RESET}`);
+  for (const a of accounts) {
+    const bal = `$${((a.balanceMinor ?? 0) / 100).toFixed(2)} ${a.currency}`;
+    console.log(`${a.id.padEnd(38)} ${a.name.padEnd(25)} ${a.agentId.padEnd(38)} ${bal}`);
+  }
+});
+var cardCmd = program.command("card").description("Manage virtual cards");
+cardCmd.command("issue").description("Issue a virtual card linked to an agent account").requiredOption("--agent <agentId>", "Agent ID").requiredOption("--account <accountId>", "Account ID").option("--brand <brand>", "Card brand (e.g. VISA)", "VISA").option("--last4 <last4>", "Last 4 digits (optional)").action(async (opts) => {
+  const card = await apiCall("POST", "/cards", {
+    agentId: opts.agent,
+    accountId: opts.account,
+    brand: opts.brand,
+    last4: opts.last4
+  });
+  console.log(`
+${GREEN}Card issued!${RESET}`);
+  console.log(`${GOLD}ID:     ${RESET} ${card.id}`);
+  console.log(`${GOLD}Brand:  ${RESET} ${card.brand ?? "VISA"}`);
+  console.log(`${GOLD}Last4:  ${RESET} ${card.last4 ?? DIM + "-" + RESET}`);
+  console.log(`${GOLD}Status: ${RESET} ${card.status}`);
+});
+cardCmd.command("list").description("List all virtual cards in your workspace").action(async () => {
+  const cards = await apiCall("GET", "/cards");
+  if (!cards.length) {
+    console.log(`${DIM}No cards found.${RESET}`);
+    return;
+  }
+  console.log(`
+${GOLD}${"ID".padEnd(38)} ${"BRAND".padEnd(8)} ${"LAST4".padEnd(6)} ${"STATUS".padEnd(12)} AGENT${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(90)}${RESET}`);
+  for (const c of cards) {
+    console.log(`${c.id.padEnd(38)} ${(c.brand ?? "-").padEnd(8)} ${(c.last4 ?? "-").padEnd(6)} ${c.status.padEnd(12)} ${c.agentId}`);
+  }
+});
+var policyCmd = program.command("policy").description("Manage spending policies");
+policyCmd.command("list").description("List all spending policies in your workspace").action(async () => {
+  const policies = await apiCall("GET", "/policies");
+  if (!policies.length) {
+    console.log(`${DIM}No policies found.${RESET} Create one with: ${GOLD}olympay policy create --name "..." --type SPEND_LIMIT${RESET}`);
+    return;
+  }
+  console.log(`
+${GOLD}${"ID".padEnd(38)} ${"NAME".padEnd(30)} ${"TYPE".padEnd(25)} STATUS${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(100)}${RESET}`);
+  for (const p of policies) {
+    const status = p.status === "active" ? `${GREEN}${p.status}${RESET}` : `${DIM}${p.status}${RESET}`;
+    console.log(`${p.id.padEnd(38)} ${p.name.padEnd(30)} ${p.type.padEnd(25)} ${p.status}`);
+  }
+});
+policyCmd.command("create").description("Create a spending policy").requiredOption("--name <name>", "Policy name").requiredOption("--type <type>", "Policy type: SPEND_LIMIT | MERCHANT_ALLOWLIST | MERCHANT_BLOCKLIST | APPROVAL_REQUIRED | TIME_WINDOW").option("--config <json>", "Policy config as JSON string", "{}").option("--description <desc>", "Policy description").action(async (opts) => {
+  let configJson;
+  try {
+    configJson = JSON.parse(opts.config);
+  } catch {
+    console.error(`${RED}Error:${RESET} --config must be valid JSON (e.g. '{"maxAmountMinor":10000}')`);
+    process.exit(1);
+  }
+  const validTypes = ["SPEND_LIMIT", "MERCHANT_ALLOWLIST", "MERCHANT_BLOCKLIST", "APPROVAL_REQUIRED", "TIME_WINDOW"];
+  if (!validTypes.includes(opts.type)) {
+    console.error(`${RED}Error:${RESET} Invalid type. Must be one of: ${validTypes.join(", ")}`);
+    process.exit(1);
+  }
+  const policy = await apiCall("POST", "/policies", {
+    name: opts.name,
+    type: opts.type,
+    configJson,
+    description: opts.description
+  });
+  console.log(`
+${GREEN}Policy created!${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(56)}${RESET}`);
+  console.log(`${GOLD}ID:          ${RESET} ${policy.id}`);
+  console.log(`${GOLD}Name:        ${RESET} ${policy.name}`);
+  console.log(`${GOLD}Type:        ${RESET} ${policy.type}`);
+  console.log(`${GOLD}Status:      ${RESET} ${policy.status}`);
+  console.log(`${GOLD}Config:      ${RESET} ${JSON.stringify(policy.configJson)}`);
+  console.log(`${DIM}${"\u2500".repeat(56)}${RESET}`);
+});
+policyCmd.command("assign").description("Assign a policy to an agent, account, or card").requiredOption("--policy <policyId>", "Policy ID").requiredOption("--target-type <type>", "Target type: AGENT | ACCOUNT | CARD").requiredOption("--target <targetId>", "Target entity ID").option("--priority <n>", "Priority (lower = higher priority)", "100").action(async (opts) => {
+  const validTargets = ["AGENT", "ACCOUNT", "CARD"];
+  if (!validTargets.includes(opts.targetType)) {
+    console.error(`${RED}Error:${RESET} --target-type must be one of: ${validTargets.join(", ")}`);
+    process.exit(1);
+  }
+  const assignment = await apiCall("POST", "/policy-assignments", {
+    policyId: opts.policy,
+    targetType: opts.targetType,
+    targetId: opts.target,
+    priority: parseInt(opts.priority, 10)
+  });
+  console.log(`
+${GREEN}Policy assigned!${RESET}`);
+  console.log(`${GOLD}Assignment ID: ${RESET} ${assignment.id}`);
+  console.log(`${GOLD}Policy:        ${RESET} ${assignment.policyId}`);
+  console.log(`${GOLD}Target:        ${RESET} ${assignment.targetType} ${assignment.targetId}`);
+  console.log(`${GOLD}Priority:      ${RESET} ${assignment.priority}`);
+});
+var txCmd = program.command("tx").description("Evaluate and inspect transactions");
+txCmd.command("eval").description("Submit a transaction attempt for policy evaluation").requiredOption("--agent <agentId>", "Agent ID").requiredOption("--account <accountId>", "Account ID").requiredOption("--amount <minor>", "Amount in minor currency units (e.g. 1000 = $10.00)").option("--card <cardId>", "Card ID (optional)").option("--merchant <merchantId>", "Merchant identifier (optional)").option("--currency <currency>", "Currency code", "USD").option("--direction <direction>", "DEBIT or CREDIT", "DEBIT").action(async (opts) => {
+  const amountMinor = parseInt(opts.amount, 10);
+  if (isNaN(amountMinor) || amountMinor <= 0) {
+    console.error(`${RED}Error:${RESET} --amount must be a positive integer (minor units)`);
+    process.exit(1);
+  }
+  const result = await apiCall("POST", "/transactions/attempt", {
+    agentId: opts.agent,
+    accountId: opts.account,
+    cardId: opts.card,
+    merchantId: opts.merchant,
+    amountMinor,
+    currency: opts.currency,
+    direction: opts.direction
+  });
+  const { transaction, decision, approvalRequest } = result;
+  const decColor = decision.result === "ALLOW" ? GREEN : decision.result === "DENY" ? RED : GOLD;
+  console.log(`
+${decColor}Transaction ${decision.result}${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(56)}${RESET}`);
+  console.log(`${GOLD}Transaction ID: ${RESET} ${transaction.id}`);
+  console.log(`${GOLD}Amount:         ${RESET} ${(amountMinor / 100).toFixed(2)} ${opts.currency}`);
+  console.log(`${GOLD}Decision:       ${RESET} ${decColor}${decision.result}${RESET}`);
+  console.log(`${GOLD}Reason:         ${RESET} ${decision.reason}`);
+  if (decision.matchedPolicies?.length) {
+    console.log(`${GOLD}Policies:       ${RESET} ${decision.matchedPolicies.map((p) => `${p.policyType}=${p.outcome}`).join(", ")}`);
+  }
+  if (approvalRequest) {
+    console.log(`${GOLD}Approval ID:    ${RESET} ${approvalRequest.id}`);
+    console.log(`${DIM}Human approval required - review in dashboard${RESET}`);
+  }
+  console.log(`${DIM}${"\u2500".repeat(56)}${RESET}`);
+});
+var wsCmd = program.command("workspace").description("Manage workspace settings and API keys");
+wsCmd.command("keys").description("List active workspace API keys").action(async () => {
+  const keys = await apiCall("GET", "/workspace/keys");
+  if (!keys.length) {
+    console.log(`${DIM}No keys found.${RESET} Generate one with: ${GOLD}olympay workspace generate-key${RESET}`);
+    return;
+  }
+  console.log(`
+${GOLD}${"ID".padEnd(38)} ${"NAME".padEnd(20)} KEY${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(100)}${RESET}`);
+  for (const k of keys) {
+    console.log(`${k.id.padEnd(38)} ${k.name.padEnd(20)} ${k.key}`);
+  }
+});
+wsCmd.command("generate-key").description("Generate a new workspace API key").option("--name <name>", "Key label", "CLI Key").action(async (opts) => {
+  const key = await apiCall("POST", "/workspace/keys", { name: opts.name });
+  console.log(`
+${GREEN}New workspace API key generated!${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(56)}${RESET}`);
+  console.log(`${GOLD}ID:   ${RESET} ${key.id}`);
+  console.log(`${GOLD}Name: ${RESET} ${key.name}`);
+  console.log(`${GOLD}Key:  ${RESET} ${BOLD}${key.key}${RESET}`);
+  console.log(`${DIM}${"\u2500".repeat(56)}${RESET}`);
+  console.log(`${DIM}Use with:${RESET} ${GOLD}olympay login --key ${key.key}${RESET}`);
+});
+wsCmd.command("revoke <id>").description("Revoke a workspace API key by ID").action(async (id) => {
+  await apiCall("DELETE", `/workspace/keys/${id}`);
+  console.log(`${GREEN}Key ${id} revoked successfully.${RESET}`);
+});
+program.parse();

package/package.json ADDED Viewed

@@ -0,0 +1,33 @@
+{
+  "name": "olympay",
+  "version": "0.1.0",
+  "description": "CLI for Olympay - financial control for autonomous AI agents",
+  "keywords": [
+    "olympay",
+    "ai",
+    "agents",
+    "fintech",
+    "cli"
+  ],
+  "license": "MIT",
+  "type": "module",
+  "bin": {
+    "olympay": "dist/cli.js"
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "node build.mjs",
+    "olympay": "tsx ./src/cli.ts",
+    "typecheck": "tsc -p tsconfig.json --noEmit"
+  },
+  "dependencies": {
+    "commander": "^14.0.3"
+  },
+  "devDependencies": {
+    "@types/node": "catalog:",
+    "esbuild": "^0.25.5",
+    "tsx": "catalog:"
+  }
+}