recon-crypto-mcp 0.1.0

package/dist/config/user-config.js

@@ -0,0 +1,93 @@
+import { readFileSync, writeFileSync, mkdirSync, existsSync, lstatSync } from "node:fs";
+import { homedir } from "node:os";
+import { join } from "node:path";
+const CONFIG_DIR = join(homedir(), ".recon-crypto-mcp");
+const CONFIG_PATH = join(CONFIG_DIR, "config.json");
+/** Read the user config file; returns null if it doesn't exist. Throws on malformed JSON. */
+export function readUserConfig() {
+    if (!existsSync(CONFIG_PATH))
+        return null;
+    const raw = readFileSync(CONFIG_PATH, "utf8");
+    try {
+        return JSON.parse(raw);
+    }
+    catch (err) {
+        throw new Error(`~/.recon-crypto-mcp/config.json is malformed: ${err.message}. Delete it or re-run \`recon-crypto-mcp-setup\`.`);
+    }
+}
+export function writeUserConfig(config) {
+    if (!existsSync(CONFIG_DIR)) {
+        mkdirSync(CONFIG_DIR, { recursive: true, mode: 0o700 });
+    }
+    // Refuse to follow symlinks or hardlinks when writing the config. A local
+    // attacker with write access to ~/.recon-crypto-mcp (or with a race-window before
+    // first-run setup creates the dir) could pre-place config.json as a symlink
+    // to another file (~/.ssh/authorized_keys, ~/.bashrc, etc.) so the next
+    // writeFileSync clobbers it. lstatSync on the path (not following the link)
+    // catches this: if the entry exists but isn't a regular file, bail loudly.
+    if (existsSync(CONFIG_PATH)) {
+        const st = lstatSync(CONFIG_PATH);
+        if (!st.isFile() || st.isSymbolicLink() || st.nlink > 1) {
+            throw new Error(`Refusing to write ${CONFIG_PATH}: path is a symlink, hardlink, or non-regular file. ` +
+                `Inspect the file manually and remove it before re-running setup.`);
+        }
+    }
+    writeFileSync(CONFIG_PATH, JSON.stringify(config, null, 2) + "\n", { mode: 0o600 });
+}
+/**
+ * Hook invoked whenever `patchUserConfig` is about to change the rpc section
+ * of the user config. rpc.ts registers a handler that drops cached viem
+ * clients + the verified-chain-id memo so subsequent calls re-resolve URLs
+ * and re-verify. Avoids a direct import of rpc.ts here (which would cycle).
+ */
+let rpcChangeHook = null;
+export function onRpcConfigChange(hook) {
+    rpcChangeHook = hook;
+}
+function rpcPatchChangesRpc(base, patch) {
+    if (!patch.rpc)
+        return false;
+    // Any key in patch.rpc that differs from base.rpc counts. JSON.stringify
+    // is fine here — both sides are small, schema-controlled objects.
+    const baseRpc = JSON.stringify(base.rpc);
+    const mergedRpc = JSON.stringify({ ...base.rpc, ...patch.rpc });
+    return baseRpc !== mergedRpc;
+}
+/** Merge a partial update into the existing config (or create a fresh one). */
+export function patchUserConfig(patch) {
+    const existing = readUserConfig();
+    const base = existing ?? { rpc: { provider: "custom" } };
+    const merged = {
+        ...base,
+        ...patch,
+        rpc: { ...base.rpc, ...(patch.rpc ?? {}) },
+        walletConnect: { ...base.walletConnect, ...(patch.walletConnect ?? {}) },
+    };
+    writeUserConfig(merged);
+    // If rpc changed, invalidate cached clients + chain-id verification so the
+    // next live call re-resolves the URL and re-runs verifyChainId against the
+    // new endpoint. Without this, a config rewrite pointing at a hostile RPC
+    // would still be bypassed by the in-memory verifiedChains Set.
+    if (rpcChangeHook && rpcPatchChangesRpc(base, patch))
+        rpcChangeHook();
+    return merged;
+}
+export function getConfigPath() {
+    return CONFIG_PATH;
+}
+export function getConfigDir() {
+    return CONFIG_DIR;
+}
+/** Pull the Etherscan API key from env (highest priority) or user config. */
+export function resolveEtherscanApiKey(userConfig) {
+    return process.env.ETHERSCAN_API_KEY || userConfig?.etherscanApiKey;
+}
+/** Pull the 1inch Developer Portal API key from env or user config; undefined if none set. */
+export function resolveOneInchApiKey(userConfig) {
+    return process.env.ONEINCH_API_KEY || userConfig?.oneInchApiKey;
+}
+/** Pull the WalletConnect project ID from env or user config; undefined if none set. */
+export function resolveWalletConnectProjectId(userConfig) {
+    return process.env.WALLETCONNECT_PROJECT_ID || userConfig?.walletConnect?.projectId;
+}
+//# sourceMappingURL=user-config.js.map

package/dist/config/user-config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-config.js","sourceRoot":"","sources":["../../src/config/user-config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AACxF,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,EAAE,IAAI,EAAW,MAAM,WAAW,CAAC;AAG1C,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,EAAE,EAAE,mBAAmB,CAAC,CAAC;AACxD,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,EAAE,aAAa,CAAC,CAAC;AAEpD,6FAA6F;AAC7F,MAAM,UAAU,cAAc;IAC5B,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC;QAAE,OAAO,IAAI,CAAC;IAC1C,MAAM,GAAG,GAAG,YAAY,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IAC9C,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAe,CAAC;IACvC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CACb,iDAAkD,GAAa,CAAC,OAAO,mDAAmD,CAC3H,CAAC;IACJ,CAAC;AACH,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,MAAkB;IAChD,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC5B,SAAS,CAAC,UAAU,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAC1D,CAAC;IACD,0EAA0E;IAC1E,kFAAkF;IAClF,4EAA4E;IAC5E,wEAAwE;IACxE,4EAA4E;IAC5E,2EAA2E;IAC3E,IAAI,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAC5B,MAAM,EAAE,GAAG,SAAS,CAAC,WAAW,CAAC,CAAC;QAClC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,cAAc,EAAE,IAAI,EAAE,CAAC,KAAK,GAAG,CAAC,EAAE,CAAC;YACxD,MAAM,IAAI,KAAK,CACb,qBAAqB,WAAW,sDAAsD;gBACpF,kEAAkE,CACrE,CAAC;QACJ,CAAC;IACH,CAAC;IACD,aAAa,CAAC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;AACtF,CAAC;AAED;;;;;GAKG;AACH,IAAI,aAAa,GAAwB,IAAI,CAAC;AAE9C,MAAM,UAAU,iBAAiB,CAAC,IAAgB;IAChD,aAAa,GAAG,IAAI,CAAC;AACvB,CAAC;AAED,SAAS,kBAAkB,CAAC,IAAgB,EAAE,KAA0B;IACtE,IAAI,CAAC,KAAK,CAAC,GAAG;QAAE,OAAO,KAAK,CAAC;IAC7B,yEAAyE;IACzE,kEAAkE;IAClE,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACzC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC;IAChE,OAAO,OAAO,KAAK,SAAS,CAAC;AAC/B,CAAC;AAED,+EAA+E;AAC/E,MAAM,UAAU,eAAe,CAAC,KAA0B;IACxD,MAAM,QAAQ,GAAG,cAAc,EAAE,CAAC;IAClC,MAAM,IAAI,GAAe,QAAQ,IAAI,EAAE,GAAG,EAAE,EAAE,QAAQ,EAAE,QAAQ,EAAE,EAAE,CAAC;IACrE,MAAM,MAAM,GAAe;QACzB,GAAG,IAAI;QACP,GAAG,KAAK;QACR,GAAG,EAAE,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,KAAK,CAAC,GAAG,IAAI,EAAE,CAAC,EAAE;QAC1C,aAAa,EAAE,EAAE,GAAG,IAAI,CAAC,aAAa,EAAE,GAAG,CAAC,KAAK,CAAC,aAAa,IAAI,EAAE,CAAC,EAAE;KACzE,CAAC;IACF,eAAe,CAAC,MAAM,CAAC,CAAC;IACxB,2EAA2E;IAC3E,2EAA2E;IAC3E,yEAAyE;IACzE,+DAA+D;IAC/D,IAAI,aAAa,IAAI,kBAAkB,CAAC,IAAI,EAAE,KAAK,CAAC;QAAE,aAAa,EAAE,CAAC;IACtE,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,aAAa;IAC3B,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,MAAM,UAAU,YAAY;IAC1B,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,6EAA6E;AAC7E,MAAM,UAAU,sBAAsB,CAAC,UAA6B;IAClE,OAAO,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,UAAU,EAAE,eAAe,CAAC;AACtE,CAAC;AAED,8FAA8F;AAC9F,MAAM,UAAU,oBAAoB,CAAC,UAA6B;IAChE,OAAO,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,UAAU,EAAE,aAAa,CAAC;AAClE,CAAC;AAED,wFAAwF;AACxF,MAAM,UAAU,6BAA6B,CAAC,UAA6B;IACzE,OAAO,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,UAAU,EAAE,aAAa,EAAE,SAAS,CAAC;AACtF,CAAC"}

package/dist/data/apis/etherscan.d.ts

@@ -0,0 +1,30 @@
+import type { SupportedChain } from "../../types/index.js";
+export interface ContractInfo {
+    address: `0x${string}`;
+    chain: SupportedChain;
+    isVerified: boolean;
+    isProxy: boolean;
+    implementation?: `0x${string}`;
+    /**
+     * Etherscan-reported contract name. This is attacker-controllable at deploy
+     * time — a malicious contract can set ContractName = "Aave V3 Pool" or bury
+     * prompt-injection payloads in it. We sanitize to a short, safe subset
+     * (alphanumerics / dots / underscores / dashes, ≤64 chars) and callers
+     * should NOT display this field without that sanitization.
+     */
+    contractName?: string;
+    compilerVersion?: string;
+    abi?: unknown[];
+}
+/**
+ * Sanitize a free-form name from Etherscan for agent/user display. Strips
+ * anything that could carry a newline or steer the model (markdown fences,
+ * angle brackets, braces, quotes) and caps length. We never want the raw
+ * string hitting the agent transcript — it's attacker-controlled.
+ */
+export declare function sanitizeContractName(raw: string | undefined): string | undefined;
+/**
+ * Fetch contract verification info from Etherscan / Arbiscan.
+ * Cached for 24 hours — verification state rarely changes.
+ */
+export declare function getContractInfo(address: `0x${string}`, chain: SupportedChain): Promise<ContractInfo>;

package/dist/data/apis/etherscan.js

@@ -0,0 +1,109 @@
+import { cache } from "../cache.js";
+import { CACHE_TTL } from "../../config/cache.js";
+import { resolveEtherscanApiKey, readUserConfig } from "../../config/user-config.js";
+const API_BASE = {
+    ethereum: "https://api.etherscan.io/api",
+    arbitrum: "https://api.arbiscan.io/api",
+    polygon: "https://api.polygonscan.com/api",
+};
+/**
+ * Sanitize a free-form name from Etherscan for agent/user display. Strips
+ * anything that could carry a newline or steer the model (markdown fences,
+ * angle brackets, braces, quotes) and caps length. We never want the raw
+ * string hitting the agent transcript — it's attacker-controlled.
+ */
+export function sanitizeContractName(raw) {
+    if (!raw)
+        return undefined;
+    const cleaned = raw.replace(/[^A-Za-z0-9._\-]/g, "").slice(0, 64);
+    return cleaned.length > 0 ? cleaned : undefined;
+}
+/**
+ * Fetch contract verification info from Etherscan / Arbiscan.
+ * Cached for 24 hours — verification state rarely changes.
+ */
+export async function getContractInfo(address, chain) {
+    const key = `etherscan:${chain}:${address.toLowerCase()}`;
+    const hit = cache.get(key);
+    if (hit)
+        return hit;
+    const apiKey = resolveEtherscanApiKey(readUserConfig());
+    const params = new URLSearchParams({
+        module: "contract",
+        action: "getsourcecode",
+        address,
+    });
+    if (apiKey)
+        params.set("apikey", apiKey);
+    const url = `${API_BASE[chain]}?${params.toString()}`;
+    const res = await fetch(url);
+    if (!res.ok) {
+        throw new Error(`Etherscan request failed: ${res.status} ${res.statusText}`);
+    }
+    // Bound the response before JSON-parsing. Etherscan has been well-behaved,
+    // but the response is cached 24h in memory — an unbounded blob is both a
+    // memory-pressure vector and gives a MITM with a broken TLS setup room to
+    // inject a huge payload. 2MB covers the largest verified contracts we've
+    // seen (fully-resolved imports of flattened DeFi protocols top out ~1MB)
+    // with a comfortable margin.
+    const MAX_RESPONSE_BYTES = 2 * 1024 * 1024;
+    const text = await res.text();
+    if (text.length > MAX_RESPONSE_BYTES) {
+        throw new Error(`Etherscan response for ${address} on ${chain} exceeds ${MAX_RESPONSE_BYTES} bytes (got ${text.length}). Refusing to parse.`);
+    }
+    const body = JSON.parse(text);
+    if (body.status !== "1" || !body.result?.[0]) {
+        // Unverified contracts still return a valid response with empty SourceCode.
+        const result = {
+            address,
+            chain,
+            isVerified: false,
+            isProxy: false,
+        };
+        cache.set(key, result, CACHE_TTL.SECURITY_VERIFICATION);
+        return result;
+    }
+    const item = body.result[0];
+    const isVerified = item.SourceCode !== "";
+    let abi;
+    if (isVerified && item.ABI && item.ABI !== "Contract source code not verified") {
+        try {
+            const parsed = JSON.parse(item.ABI);
+            // Cap ABI length. 5000 items is ~10× the largest proxy ABIs we've seen
+            // (LiFi Diamond is ~1000 entries); anything bigger is either a pathological
+            // contract or a hostile response trying to blow up memory on scan paths.
+            const MAX_ABI_ITEMS = 5000;
+            if (Array.isArray(parsed) && parsed.length <= MAX_ABI_ITEMS) {
+                abi = parsed;
+            }
+            else {
+                abi = undefined;
+            }
+        }
+        catch {
+            abi = undefined;
+        }
+    }
+    const info = {
+        address,
+        chain,
+        isVerified,
+        isProxy: item.Proxy === "1",
+        implementation: item.Implementation && /^0x[0-9a-fA-F]{40}$/.test(item.Implementation)
+            ? item.Implementation
+            : undefined,
+        contractName: sanitizeContractName(item.ContractName),
+        // Restrict compiler version to the safe pattern (e.g. v0.8.17+commit.8df45f5f)
+        // so an attacker can't embed control characters or URLs in this field either.
+        compilerVersion: item.CompilerVersion && /^[A-Za-z0-9.+_\-]+$/.test(item.CompilerVersion)
+            ? item.CompilerVersion
+            : undefined,
+        abi,
+        // sourceCode is attacker-controllable and huge; we never hand it to the
+        // agent. Dropped entirely at the source rather than hoping downstream
+        // code remembers not to surface it.
+    };
+    cache.set(key, info, CACHE_TTL.SECURITY_VERIFICATION);
+    return info;
+}
+//# sourceMappingURL=etherscan.js.map

package/dist/data/apis/etherscan.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"etherscan.js","sourceRoot":"","sources":["../../../src/data/apis/etherscan.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,aAAa,CAAC;AACpC,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAGrF,MAAM,QAAQ,GAAmC;IAC/C,QAAQ,EAAE,8BAA8B;IACxC,QAAQ,EAAE,6BAA6B;IACvC,OAAO,EAAE,iCAAiC;CAC3C,CAAC;AAoBF;;;;;GAKG;AACH,MAAM,UAAU,oBAAoB,CAAC,GAAuB;IAC1D,IAAI,CAAC,GAAG;QAAE,OAAO,SAAS,CAAC;IAC3B,MAAM,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC,mBAAmB,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAClE,OAAO,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;AAClD,CAAC;AAiBD;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,OAAsB,EACtB,KAAqB;IAErB,MAAM,GAAG,GAAG,aAAa,KAAK,IAAI,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC;IAC1D,MAAM,GAAG,GAAG,KAAK,CAAC,GAAG,CAAe,GAAG,CAAC,CAAC;IACzC,IAAI,GAAG;QAAE,OAAO,GAAG,CAAC;IAEpB,MAAM,MAAM,GAAG,sBAAsB,CAAC,cAAc,EAAE,CAAC,CAAC;IACxD,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;QACjC,MAAM,EAAE,UAAU;QAClB,MAAM,EAAE,eAAe;QACvB,OAAO;KACR,CAAC,CAAC;IACH,IAAI,MAAM;QAAE,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAEzC,MAAM,GAAG,GAAG,GAAG,QAAQ,CAAC,KAAK,CAAC,IAAI,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC;IACtD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;IAC7B,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,6BAA6B,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,CAAC,CAAC;IAC/E,CAAC;IAED,2EAA2E;IAC3E,yEAAyE;IACzE,0EAA0E;IAC1E,yEAAyE;IACzE,yEAAyE;IACzE,6BAA6B;IAC7B,MAAM,kBAAkB,GAAG,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC;IAC3C,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,IAAI,IAAI,CAAC,MAAM,GAAG,kBAAkB,EAAE,CAAC;QACrC,MAAM,IAAI,KAAK,CACb,0BAA0B,OAAO,OAAO,KAAK,YAAY,kBAAkB,eAAe,IAAI,CAAC,MAAM,uBAAuB,CAC7H,CAAC;IACJ,CAAC;IACD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAiD,CAAC;IAE9E,IAAI,IAAI,CAAC,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7C,4EAA4E;QAC5E,MAAM,MAAM,GAAiB;YAC3B,OAAO;YACP,KAAK;YACL,UAAU,EAAE,KAAK;YACjB,OAAO,EAAE,KAAK;SACf,CAAC;QACF,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,SAAS,CAAC,qBAAqB,CAAC,CAAC;QACxD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,MAAM,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;IAC5B,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,KAAK,EAAE,CAAC;IAC1C,IAAI,GAA0B,CAAC;IAC/B,IAAI,UAAU,IAAI,IAAI,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,KAAK,mCAAmC,EAAE,CAAC;QAC/E,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACpC,uEAAuE;YACvE,4EAA4E;YAC5E,yEAAyE;YACzE,MAAM,aAAa,GAAG,IAAI,CAAC;YAC3B,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,IAAI,aAAa,EAAE,CAAC;gBAC5D,GAAG,GAAG,MAAM,CAAC;YACf,CAAC;iBAAM,CAAC;gBACN,GAAG,GAAG,SAAS,CAAC;YAClB,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,GAAG,GAAG,SAAS,CAAC;QAClB,CAAC;IACH,CAAC;IAED,MAAM,IAAI,GAAiB;QACzB,OAAO;QACP,KAAK;QACL,UAAU;QACV,OAAO,EAAE,IAAI,CAAC,KAAK,KAAK,GAAG;QAC3B,cAAc,EAAE,IAAI,CAAC,cAAc,IAAI,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC;YACpF,CAAC,CAAE,IAAI,CAAC,cAAgC;YACxC,CAAC,CAAC,SAAS;QACb,YAAY,EAAE,oBAAoB,CAAC,IAAI,CAAC,YAAY,CAAC;QACrD,+EAA+E;QAC/E,8EAA8E;QAC9E,eAAe,EACb,IAAI,CAAC,eAAe,IAAI,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC;YACtE,CAAC,CAAC,IAAI,CAAC,eAAe;YACtB,CAAC,CAAC,SAAS;QACf,GAAG;QACH,wEAAwE;QACxE,sEAAsE;QACtE,oCAAoC;KACrC,CAAC;IAEF,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,EAAE,SAAS,CAAC,qBAAqB,CAAC,CAAC;IACtD,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/data/cache.d.ts

@@ -0,0 +1,18 @@
+/** Minimal in-memory TTL cache. Not thread-safe — fine for a single-process MCP server. */
+declare class TTLCache {
+    private store;
+    get<T>(key: string): T | undefined;
+    set<T>(key: string, value: T, ttlMs: number): void;
+    has(key: string): boolean;
+    delete(key: string): void;
+    /** Remove every key starting with the given prefix. Useful for invalidating "aave:ethereum:*". */
+    invalidatePrefix(prefix: string): void;
+    clear(): void;
+    /**
+     * Compute `fn()` if the key is missing or stale, otherwise return the cached value.
+     * Concurrent calls for the same key will each compute the value — fine for MVP.
+     */
+    remember<T>(key: string, ttlMs: number, fn: () => Promise<T>): Promise<T>;
+}
+export declare const cache: TTLCache;
+export {};

package/dist/data/cache.js

@@ -0,0 +1,47 @@
+/** Minimal in-memory TTL cache. Not thread-safe — fine for a single-process MCP server. */
+class TTLCache {
+    store = new Map();
+    get(key) {
+        const entry = this.store.get(key);
+        if (!entry)
+            return undefined;
+        if (entry.expiresAt <= Date.now()) {
+            this.store.delete(key);
+            return undefined;
+        }
+        return entry.value;
+    }
+    set(key, value, ttlMs) {
+        this.store.set(key, { value, expiresAt: Date.now() + ttlMs });
+    }
+    has(key) {
+        return this.get(key) !== undefined;
+    }
+    delete(key) {
+        this.store.delete(key);
+    }
+    /** Remove every key starting with the given prefix. Useful for invalidating "aave:ethereum:*". */
+    invalidatePrefix(prefix) {
+        for (const key of this.store.keys()) {
+            if (key.startsWith(prefix))
+                this.store.delete(key);
+        }
+    }
+    clear() {
+        this.store.clear();
+    }
+    /**
+     * Compute `fn()` if the key is missing or stale, otherwise return the cached value.
+     * Concurrent calls for the same key will each compute the value — fine for MVP.
+     */
+    async remember(key, ttlMs, fn) {
+        const cached = this.get(key);
+        if (cached !== undefined)
+            return cached;
+        const value = await fn();
+        this.set(key, value, ttlMs);
+        return value;
+    }
+}
+export const cache = new TTLCache();
+//# sourceMappingURL=cache.js.map

package/dist/data/cache.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cache.js","sourceRoot":"","sources":["../../src/data/cache.ts"],"names":[],"mappings":"AAAA,2FAA2F;AAO3F,MAAM,QAAQ;IACJ,KAAK,GAAG,IAAI,GAAG,EAAiB,CAAC;IAEzC,GAAG,CAAI,GAAW;QAChB,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClC,IAAI,CAAC,KAAK;YAAE,OAAO,SAAS,CAAC;QAC7B,IAAI,KAAK,CAAC,SAAS,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;YAClC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACvB,OAAO,SAAS,CAAC;QACnB,CAAC;QACD,OAAO,KAAK,CAAC,KAAU,CAAC;IAC1B,CAAC;IAED,GAAG,CAAI,GAAW,EAAE,KAAQ,EAAE,KAAa;QACzC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,EAAE,CAAC,CAAC;IAChE,CAAC;IAED,GAAG,CAAC,GAAW;QACb,OAAO,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,SAAS,CAAC;IACrC,CAAC;IAED,MAAM,CAAC,GAAW;QAChB,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACzB,CAAC;IAED,kGAAkG;IAClG,gBAAgB,CAAC,MAAc;QAC7B,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;YACpC,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC;gBAAE,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,KAAK;QACH,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;IACrB,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,QAAQ,CAAI,GAAW,EAAE,KAAa,EAAE,EAAoB;QAChE,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAI,GAAG,CAAC,CAAC;QAChC,IAAI,MAAM,KAAK,SAAS;YAAE,OAAO,MAAM,CAAC;QACxC,MAAM,KAAK,GAAG,MAAM,EAAE,EAAE,CAAC;QACzB,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;QAC5B,OAAO,KAAK,CAAC;IACf,CAAC;CACF;AAED,MAAM,CAAC,MAAM,KAAK,GAAG,IAAI,QAAQ,EAAE,CAAC"}

package/dist/data/format.d.ts

@@ -0,0 +1,6 @@
+import type { TokenAmount, SupportedChain } from "../types/index.js";
+/** Round a number to N decimal places without trailing zeros. */
+export declare function round(n: number, places?: number): number;
+export declare function makeTokenAmount(chain: SupportedChain, address: `0x${string}`, amountWei: bigint, decimals: number, symbol: string, priceUsd?: number): TokenAmount;
+/** Price up a list of token amounts in one batched call. Mutates in place. */
+export declare function priceTokenAmounts(chain: SupportedChain, amounts: TokenAmount[]): Promise<void>;

package/dist/data/format.js

@@ -0,0 +1,44 @@
+import { formatUnits, getAddress } from "viem";
+import { getTokenPrices } from "./prices.js";
+/** Round a number to N decimal places without trailing zeros. */
+export function round(n, places = 6) {
+    const f = 10 ** places;
+    return Math.round(n * f) / f;
+}
+export function makeTokenAmount(chain, address, amountWei, decimals, symbol, priceUsd) {
+    const formatted = formatUnits(amountWei, decimals);
+    const numeric = Number(formatted);
+    const valueUsd = priceUsd !== undefined ? round(numeric * priceUsd, 2) : undefined;
+    const t = {
+        token: getAddress(address),
+        symbol,
+        decimals,
+        amount: amountWei.toString(),
+        formatted,
+        priceUsd,
+        valueUsd,
+    };
+    if (priceUsd === undefined && amountWei > 0n)
+        t.priceMissing = true;
+    return t;
+}
+/** Price up a list of token amounts in one batched call. Mutates in place. */
+export async function priceTokenAmounts(chain, amounts) {
+    if (amounts.length === 0)
+        return;
+    const queries = amounts.map((a) => ({ chain, address: a.token }));
+    const prices = await getTokenPrices(queries);
+    for (const a of amounts) {
+        const key = `${chain}:${a.token.toLowerCase()}`;
+        const p = prices.get(key);
+        if (p !== undefined) {
+            a.priceUsd = p;
+            a.valueUsd = round(Number(a.formatted) * p, 2);
+            delete a.priceMissing;
+        }
+        else if (BigInt(a.amount) > 0n) {
+            a.priceMissing = true;
+        }
+    }
+}
+//# sourceMappingURL=format.js.map

package/dist/data/format.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"format.js","sourceRoot":"","sources":["../../src/data/format.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,MAAM,CAAC;AAE/C,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,iEAAiE;AACjE,MAAM,UAAU,KAAK,CAAC,CAAS,EAAE,MAAM,GAAG,CAAC;IACzC,MAAM,CAAC,GAAG,EAAE,IAAI,MAAM,CAAC;IACvB,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC;AAC/B,CAAC;AAED,MAAM,UAAU,eAAe,CAC7B,KAAqB,EACrB,OAAsB,EACtB,SAAiB,EACjB,QAAgB,EAChB,MAAc,EACd,QAAiB;IAEjB,MAAM,SAAS,GAAG,WAAW,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;IACnD,MAAM,OAAO,GAAG,MAAM,CAAC,SAAS,CAAC,CAAC;IAClC,MAAM,QAAQ,GAAG,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,GAAG,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACnF,MAAM,CAAC,GAAgB;QACrB,KAAK,EAAE,UAAU,CAAC,OAAO,CAAkB;QAC3C,MAAM;QACN,QAAQ;QACR,MAAM,EAAE,SAAS,CAAC,QAAQ,EAAE;QAC5B,SAAS;QACT,QAAQ;QACR,QAAQ;KACT,CAAC;IACF,IAAI,QAAQ,KAAK,SAAS,IAAI,SAAS,GAAG,EAAE;QAAE,CAAC,CAAC,YAAY,GAAG,IAAI,CAAC;IACpE,OAAO,CAAC,CAAC;AACX,CAAC;AAED,8EAA8E;AAC9E,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAqB,EACrB,OAAsB;IAEtB,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO;IACjC,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IAClE,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,OAAO,CAAC,CAAC;IAC7C,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,MAAM,GAAG,GAAG,GAAG,KAAK,IAAI,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;QAChD,MAAM,CAAC,GAAG,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC1B,IAAI,CAAC,KAAK,SAAS,EAAE,CAAC;YACpB,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC;YACf,CAAC,CAAC,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;YAC/C,OAAO,CAAC,CAAC,YAAY,CAAC;QACxB,CAAC;aAAM,IAAI,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,EAAE,EAAE,CAAC;YACjC,CAAC,CAAC,YAAY,GAAG,IAAI,CAAC;QACxB,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/data/prices.d.ts

@@ -0,0 +1,12 @@
+import type { SupportedChain } from "../types/index.js";
+export interface PriceQuery {
+    chain: SupportedChain;
+    address: `0x${string}` | "native";
+}
+/**
+ * Batch fetch USD prices for the given tokens. Results are cached 30s.
+ * Missing tokens are simply absent from the returned map.
+ */
+export declare function getTokenPrices(queries: PriceQuery[]): Promise<Map<string, number>>;
+/** Convenience: look up a single price, return undefined if unknown. */
+export declare function getTokenPrice(chain: SupportedChain, address: `0x${string}` | "native"): Promise<number | undefined>;

package/dist/data/prices.js

@@ -0,0 +1,81 @@
+import { cache } from "./cache.js";
+import { CACHE_TTL } from "../config/cache.js";
+/**
+ * DefiLlama free price API.
+ * Docs: https://defillama.com/docs/api  (coins endpoint)
+ * Example: GET https://coins.llama.fi/prices/current/ethereum:0xabc...,arbitrum:0xdef...
+ */
+const DEFILLAMA_BASE = "https://coins.llama.fi";
+/** DefiLlama uses these chain identifiers. */
+const LLAMA_CHAIN = {
+    ethereum: "ethereum",
+    arbitrum: "arbitrum",
+    polygon: "polygon",
+};
+const ZERO_ADDRESS = "0x0000000000000000000000000000000000000000";
+/** Coingecko ID for each chain's native asset. Ethereum + Arbitrum share ETH; Polygon uses MATIC. */
+const NATIVE_COINGECKO_ID = {
+    ethereum: "coingecko:ethereum",
+    arbitrum: "coingecko:ethereum",
+    polygon: "coingecko:matic-network",
+};
+function queryToLlamaKey(q) {
+    if (q.address === "native" || q.address.toLowerCase() === ZERO_ADDRESS) {
+        return NATIVE_COINGECKO_ID[q.chain];
+    }
+    return `${LLAMA_CHAIN[q.chain]}:${q.address.toLowerCase()}`;
+}
+function cacheKey(q) {
+    return `price:${queryToLlamaKey(q)}`;
+}
+/**
+ * Batch fetch USD prices for the given tokens. Results are cached 30s.
+ * Missing tokens are simply absent from the returned map.
+ */
+export async function getTokenPrices(queries) {
+    const out = new Map();
+    const toFetch = [];
+    // Satisfy anything we already have in cache.
+    for (const q of queries) {
+        const hit = cache.get(cacheKey(q));
+        if (hit !== undefined) {
+            out.set(queryToLlamaKey(q), hit);
+        }
+        else {
+            toFetch.push(q);
+        }
+    }
+    if (toFetch.length === 0)
+        return out;
+    // DefiLlama accepts comma-separated keys. Chunk to avoid URL size limits.
+    const CHUNK = 50;
+    for (let i = 0; i < toFetch.length; i += CHUNK) {
+        const chunk = toFetch.slice(i, i + CHUNK);
+        const keys = chunk.map(queryToLlamaKey).join(",");
+        const url = `${DEFILLAMA_BASE}/prices/current/${encodeURIComponent(keys)}`;
+        try {
+            const res = await fetch(url);
+            if (!res.ok)
+                continue;
+            const body = (await res.json());
+            for (const q of chunk) {
+                const key = queryToLlamaKey(q);
+                const coin = body.coins[key];
+                if (coin && typeof coin.price === "number") {
+                    out.set(key, coin.price);
+                    cache.set(cacheKey(q), coin.price, CACHE_TTL.PRICE);
+                }
+            }
+        }
+        catch {
+            // Swallow — callers degrade gracefully when a price is missing.
+        }
+    }
+    return out;
+}
+/** Convenience: look up a single price, return undefined if unknown. */
+export async function getTokenPrice(chain, address) {
+    const map = await getTokenPrices([{ chain, address }]);
+    return map.get(queryToLlamaKey({ chain, address }));
+}
+//# sourceMappingURL=prices.js.map

package/dist/data/prices.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prices.js","sourceRoot":"","sources":["../../src/data/prices.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AACnC,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAG/C;;;;GAIG;AACH,MAAM,cAAc,GAAG,wBAAwB,CAAC;AAEhD,8CAA8C;AAC9C,MAAM,WAAW,GAAmC;IAClD,QAAQ,EAAE,UAAU;IACpB,QAAQ,EAAE,UAAU;IACpB,OAAO,EAAE,SAAS;CACnB,CAAC;AAEF,MAAM,YAAY,GAAG,4CAA4C,CAAC;AAClE,qGAAqG;AACrG,MAAM,mBAAmB,GAAmC;IAC1D,QAAQ,EAAE,oBAAoB;IAC9B,QAAQ,EAAE,oBAAoB;IAC9B,OAAO,EAAE,yBAAyB;CACnC,CAAC;AAWF,SAAS,eAAe,CAAC,CAAa;IACpC,IAAI,CAAC,CAAC,OAAO,KAAK,QAAQ,IAAI,CAAC,CAAC,OAAO,CAAC,WAAW,EAAE,KAAK,YAAY,EAAE,CAAC;QACvE,OAAO,mBAAmB,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;IACtC,CAAC;IACD,OAAO,GAAG,WAAW,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC;AAC9D,CAAC;AAED,SAAS,QAAQ,CAAC,CAAa;IAC7B,OAAO,SAAS,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC;AACvC,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,OAAqB;IACxD,MAAM,GAAG,GAAG,IAAI,GAAG,EAAkB,CAAC;IACtC,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,6CAA6C;IAC7C,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,MAAM,GAAG,GAAG,KAAK,CAAC,GAAG,CAAS,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3C,IAAI,GAAG,KAAK,SAAS,EAAE,CAAC;YACtB,GAAG,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;QACnC,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;IACH,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,GAAG,CAAC;IAErC,0EAA0E;IAC1E,MAAM,KAAK,GAAG,EAAE,CAAC;IACjB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,IAAI,KAAK,EAAE,CAAC;QAC/C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC;QAC1C,MAAM,IAAI,GAAG,KAAK,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAClD,MAAM,GAAG,GAAG,GAAG,cAAc,mBAAmB,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC;QAC3E,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;YAC7B,IAAI,CAAC,GAAG,CAAC,EAAE;gBAAE,SAAS;YACtB,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAkB,CAAC;YACjD,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;gBACtB,MAAM,GAAG,GAAG,eAAe,CAAC,CAAC,CAAC,CAAC;gBAC/B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;gBAC7B,IAAI,IAAI,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;oBAC3C,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;oBACzB,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,EAAE,SAAS,CAAC,KAAK,CAAC,CAAC;gBACtD,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,gEAAgE;QAClE,CAAC;IACH,CAAC;IAED,OAAO,GAAG,CAAC;AACb,CAAC;AAED,wEAAwE;AACxE,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,KAAqB,EAAE,OAAiC;IAC1F,MAAM,GAAG,GAAG,MAAM,cAAc,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC;IACvD,OAAO,GAAG,CAAC,GAAG,CAAC,eAAe,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC;AACtD,CAAC"}

package/dist/data/rpc.d.ts

@@ -0,0 +1,17 @@
+import { type PublicClient } from "viem";
+import { type SupportedChain } from "../types/index.js";
+/**
+ * Get (or lazily create) a viem PublicClient for the given chain.
+ * Throws RpcConfigError if the chain has no RPC configured.
+ */
+export declare function getClient(chain: SupportedChain): PublicClient;
+/**
+ * Verify the RPC endpoint actually speaks the chain we think it does. A wrong-
+ * chain RPC would happily sign "ETH" txs against (say) a fork or BSC — values
+ * and addresses overlap but token semantics don't, and the user would end up
+ * sending real ETH against what they thought was a testnet. We do this on the
+ * first live call per chain, memoize it, and throw loud if it mismatches.
+ */
+export declare function verifyChainId(chain: SupportedChain): Promise<void>;
+/** Invalidate the cached clients — useful after the user re-runs setup. */
+export declare function resetClients(): void;

package/dist/data/rpc.js

@@ -0,0 +1,68 @@
+import { createPublicClient, http } from "viem";
+import { resolveRpcUrl, VIEM_CHAINS } from "../config/chains.js";
+import { readUserConfig, onRpcConfigChange } from "../config/user-config.js";
+import { CHAIN_IDS } from "../types/index.js";
+const clients = new Map();
+const verifiedChains = new Set();
+// Invalidate cached clients + the verified-chains memo whenever the user
+// rewrites their rpc config, so the next call re-resolves URLs and re-runs
+// chain-id verification. `onRpcConfigChange` accepts a single hook; rpc.ts
+// owns it because it owns the cache.
+onRpcConfigChange(() => {
+    clients.clear();
+    verifiedChains.clear();
+});
+/**
+ * Get (or lazily create) a viem PublicClient for the given chain.
+ * Throws RpcConfigError if the chain has no RPC configured.
+ */
+export function getClient(chain) {
+    const cached = clients.get(chain);
+    if (cached)
+        return cached;
+    const userConfig = readUserConfig();
+    const url = resolveRpcUrl(chain, userConfig);
+    // Do NOT set `batch: true` by default. JSON-RPC batching works on Infura/Alchemy but is
+    // silently mis-handled by many public endpoints — we saw calls like getUserAccountData,
+    // NPM.balanceOf, Multicall3.aggregate3 return 0x under load, purely because they were
+    // coalesced into a batched POST the provider couldn't fulfill. Individual eth_call
+    // requests are slower but never ghost-fail. Users on premium endpoints can opt back in
+    // via RPC_BATCH=1. Multicall3 still batches at the contract layer regardless.
+    const batchEnabled = process.env.RPC_BATCH === "1";
+    const client = createPublicClient({
+        chain: VIEM_CHAINS[chain],
+        transport: http(url, {
+            batch: batchEnabled,
+            retryCount: 3,
+            retryDelay: 500,
+        }),
+    });
+    clients.set(chain, client);
+    return client;
+}
+/**
+ * Verify the RPC endpoint actually speaks the chain we think it does. A wrong-
+ * chain RPC would happily sign "ETH" txs against (say) a fork or BSC — values
+ * and addresses overlap but token semantics don't, and the user would end up
+ * sending real ETH against what they thought was a testnet. We do this on the
+ * first live call per chain, memoize it, and throw loud if it mismatches.
+ */
+export async function verifyChainId(chain) {
+    if (verifiedChains.has(chain))
+        return;
+    const client = getClient(chain);
+    const actual = await client.getChainId();
+    const expected = CHAIN_IDS[chain];
+    if (actual !== expected) {
+        throw new Error(`RPC for ${chain} returned chainId ${actual}, expected ${expected}. ` +
+            `The configured endpoint does NOT point at ${chain} — refusing to proceed. ` +
+            `Fix via \`recon-crypto-mcp-setup\` or the relevant env var.`);
+    }
+    verifiedChains.add(chain);
+}
+/** Invalidate the cached clients — useful after the user re-runs setup. */
+export function resetClients() {
+    clients.clear();
+    verifiedChains.clear();
+}
+//# sourceMappingURL=rpc.js.map

package/dist/data/rpc.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rpc.js","sourceRoot":"","sources":["../../src/data/rpc.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,IAAI,EAAqB,MAAM,MAAM,CAAC;AACnE,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AACjE,OAAO,EAAE,cAAc,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAC7E,OAAO,EAAE,SAAS,EAAuB,MAAM,mBAAmB,CAAC;AAEnE,MAAM,OAAO,GAAG,IAAI,GAAG,EAAgC,CAAC;AACxD,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;AAEjD,yEAAyE;AACzE,2EAA2E;AAC3E,2EAA2E;AAC3E,qCAAqC;AACrC,iBAAiB,CAAC,GAAG,EAAE;IACrB,OAAO,CAAC,KAAK,EAAE,CAAC;IAChB,cAAc,CAAC,KAAK,EAAE,CAAC;AACzB,CAAC,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,UAAU,SAAS,CAAC,KAAqB;IAC7C,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;IAClC,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAE1B,MAAM,UAAU,GAAG,cAAc,EAAE,CAAC;IACpC,MAAM,GAAG,GAAG,aAAa,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;IAC7C,wFAAwF;IACxF,wFAAwF;IACxF,sFAAsF;IACtF,mFAAmF;IACnF,uFAAuF;IACvF,8EAA8E;IAC9E,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,SAAS,KAAK,GAAG,CAAC;IACnD,MAAM,MAAM,GAAG,kBAAkB,CAAC;QAChC,KAAK,EAAE,WAAW,CAAC,KAAK,CAAC;QACzB,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;YACnB,KAAK,EAAE,YAAY;YACnB,UAAU,EAAE,CAAC;YACb,UAAU,EAAE,GAAG;SAChB,CAAC;KACH,CAAC,CAAC;IACH,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAC3B,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,KAAqB;IACvD,IAAI,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC;QAAE,OAAO;IACtC,MAAM,MAAM,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;IAChC,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC;IACzC,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;IAClC,IAAI,MAAM,KAAK,QAAQ,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CACb,WAAW,KAAK,qBAAqB,MAAM,cAAc,QAAQ,IAAI;YACnE,6CAA6C,KAAK,0BAA0B;YAC5E,6DAA6D,CAChE,CAAC;IACJ,CAAC;IACD,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;AAC5B,CAAC;AAED,2EAA2E;AAC3E,MAAM,UAAU,YAAY;IAC1B,OAAO,CAAC,KAAK,EAAE,CAAC;IAChB,cAAc,CAAC,KAAK,EAAE,CAAC;AACzB,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+export {};