npm - pop-pay - Versions diffs - 0.5.4 → 0.5.7 - Mend

pop-pay 0.5.4 → 0.5.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +74 -18
package/package.json +7 -2

package/README.md CHANGED Viewed

@@ -2,33 +2,97 @@
 <p align="center">
     <picture>
-        <img src="https://raw.githubusercontent.com/TPEmist/Point-One-Percent/main/project_banner.png" alt="Point One Percent (AgentPay)" width="800">
+        <img src="https://raw.githubusercontent.com/100xPercent/pop-pay-python/main/project_banner.png" alt="Point One Percent (AgentPay)" width="800">
     </picture>
 </p>
 # Point One Percent — pop-pay
 <p align="left"><i>it only takes <b>0.1%</b> of Hallucination to drain <b>100%</b> of your wallet.</i></p>
-The runtime security layer for AI agent commerce. Card credentials are injected directly into the browser DOM via CDP — they never enter the agent's context window. One hallucinated prompt can't drain a wallet it can't see.
+The runtime security layer for AI agent commerce. Drop-in CLI + MCP server. Card credentials are injected directly into the browser DOM via CDP — they never enter the agent's context window. One hallucinated prompt can't drain a wallet it can't see.
-## Getting Started
+<p align="center">
+  <img src="https://raw.githubusercontent.com/100xPercent/pop-pay-python/main/assets/runtime_demo.gif" alt="Point One Percent — live CDP injection demo" width="800">
+</p>
+## Install
+Choose your preferred method:
+<details>
+<summary>Homebrew (macOS)</summary>
+```bash
+brew install 100xPercent/tap/pop-pay
+```
+</details>
+<details>
+<summary>curl (Linux / macOS) — bootstraps via npm; requires Node.js 18+</summary>
+```bash
+curl -fsSL https://raw.githubusercontent.com/100xPercent/pop-pay/main/install.sh | sh
+```
+</details>
-### 1. Initialize the credential vault
+<details>
+<summary>npm (global)</summary>
 ```bash
-npx -y pop-pay pop-init-vault
+npm install -g pop-pay
 ```
-This encrypts your card credentials into `~/.config/pop-pay/vault.enc` (AES-256-GCM). The MCP server decrypts automatically at startup.
+</details>
-For stronger protection (recommended — blocks agents with shell access):
+<details>
+<summary>npx (no install — one-off runs)</summary>
 ```bash
-npx -y pop-pay pop-init-vault --passphrase   # one-time setup
-npx -y pop-pay pop-unlock                     # run once before each session
+npx -y pop-pay <command>
 ```
-### 2. Add to your MCP client
+</details>
+All install paths expose the same binaries: `pop-pay`, `pop-launch`, `pop-init-vault`, `pop-unlock`.
+> Also available as `@100xpercent/mcp-server-pop-pay` — identical package under the MCP `@scope/mcp-server-<name>` convention. Tracks the same version on every release.
+> **Using Python?** Check out [pop-pay-python](https://github.com/100xPercent/pop-pay-python) — `pip install pop-pay`. Same security model, same vault format, independent release cycle — safe to switch between runtimes.
+## Quick Start (CLI)
+### 1. Initialize the encrypted credential vault
+```bash
+pop-pay init-vault
+```
+This encrypts your card credentials into `~/.config/pop-pay/vault.enc` (AES-256-GCM). For stronger protection (blocks agents with shell access):
+```bash
+pop-pay init-vault --passphrase   # one-time setup
+pop-pay unlock                     # run once per session
+```
+### 2. Launch Chrome with CDP remote debugging
+```bash
+pop-pay launch
+```
+This opens a Chromium instance on `http://localhost:9222` that pop-pay injects credentials into. Your agent (via MCP, browser automation, or x402) then drives the checkout flow — card details never leave the browser process.
+### 3. Plug into your agent
+The CLI launches infrastructure; the actual payment tool calls come from your agent. Two supported paths:
+- **MCP server** — add pop-pay to any MCP-compatible client (Claude Code, Cursor, Windsurf, OpenClaw). See [MCP Server](#mcp-server-optional) below.
+- **x402 HTTP** — pay for API calls via the [x402 payment protocol](docs/INTEGRATION_GUIDE.md#x402).
+Full CLI reference: `pop-pay --help`.
+## MCP Server (optional)
+### Add to your MCP client
 Standard config for any MCP-compatible client:
@@ -97,14 +161,6 @@ Runs the MCP server + headless Chromium with CDP. Mount your encrypted vault fro
 </details>
-### 3. Launch Chrome with CDP and start using
-```bash
-npx -y pop-pay launch
-```
-Restart your MCP client. The agent now has access to pop-pay's MCP tools.
 ## MCP Tools
 | Tool | Description |

package/package.json CHANGED Viewed

@@ -1,8 +1,8 @@
 {
   "name": "pop-pay",
-  "version": "0.5.4",
+  "version": "0.5.7",
   "mcpName": "io.github.100xPercent/pop-pay",
-  "description": "Point One Percent - Semantic Payment Guardrail for AI Agents. It only takes 0.1% of hallucination to drain 100% of your wallet.",
+  "description": "The runtime security layer for AI agent commerce. Drop-in CLI + MCP server — blocks hallucinated purchases and keeps card credentials out of agent context. It only takes 0.1% of hallucination to drain 100% of your wallet.",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "bin": {
@@ -25,6 +25,11 @@
     "payment",
     "guardrail",
     "security",
+    "cli",
+    "command-line",
+    "agent-tool",
+    "payment-cli",
+    "browser-agent",
     "mcp",
     "mcp-server",
     "model-context-protocol",