safehands-pharos 1.0.2 → 1.1.0

package/dist/tools/sendPayment.d.ts

@@ -5,20 +5,23 @@ export declare const sendPaymentSchema: z.ZodObject<{
     memo: z.ZodOptional<z.ZodString>;
     walletAddress: z.ZodString;
     privateKey: z.ZodString;
+    bypassRiskCheck: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
 }, "strip", z.ZodTypeAny, {
     amount: string;
     privateKey: string;
     toAddress: string;
     walletAddress: string;
+    bypassRiskCheck: boolean;
     memo?: string | undefined;
 }, {
     amount: string;
     privateKey: string;
     toAddress: string;
     walletAddress: string;
+    bypassRiskCheck?: boolean | undefined;
     memo?: string | undefined;
 }>;
-export type SendPaymentInput = z.infer<typeof sendPaymentSchema>;
+export type SendPaymentInput = z.input<typeof sendPaymentSchema>;
 export declare const sendPaymentTool: {
     name: string;
     description: string;
@@ -28,21 +31,24 @@ export declare const sendPaymentTool: {
         memo: z.ZodOptional<z.ZodString>;
         walletAddress: z.ZodString;
         privateKey: z.ZodString;
+        bypassRiskCheck: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
     }, "strip", z.ZodTypeAny, {
         amount: string;
         privateKey: string;
         toAddress: string;
         walletAddress: string;
+        bypassRiskCheck: boolean;
         memo?: string | undefined;
     }, {
         amount: string;
         privateKey: string;
         toAddress: string;
         walletAddress: string;
+        bypassRiskCheck?: boolean | undefined;
         memo?: string | undefined;
     }>;
 };
-export declare function handleSendPayment(input: SendPaymentInput): Promise<{
+export declare function handleSendPayment(raw: SendPaymentInput): Promise<{
     success: boolean;
     validation: {
         addressValid: boolean;
@@ -50,6 +56,24 @@ export declare function handleSendPayment(input: SendPaymentInput): Promise<{
         warnings: string[];
     };
     error: string;
+    riskAssessment?: undefined;
+    txHash?: undefined;
+    explorerUrl?: undefined;
+    amountSent?: undefined;
+    gasUsed?: undefined;
+} | {
+    success: boolean;
+    validation: {
+        addressValid: boolean;
+        balanceSufficient: boolean;
+        warnings: string[];
+    };
+    riskAssessment: {
+        riskScore: number;
+        wasBlocked: boolean;
+        blockReason: string;
+    };
+    error: string;
     txHash?: undefined;
     explorerUrl?: undefined;
     amountSent?: undefined;
@@ -65,6 +89,11 @@ export declare function handleSendPayment(input: SendPaymentInput): Promise<{
         balanceSufficient: boolean;
         warnings: string[];
     };
+    riskAssessment: {
+        riskScore: number;
+        wasBlocked: boolean;
+        blockReason?: undefined;
+    };
     error?: undefined;
 }>;
 //# sourceMappingURL=sendPayment.d.ts.map

package/dist/tools/sendPayment.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sendPayment.d.ts","sourceRoot":"","sources":["../../src/tools/sendPayment.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAKxB,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;EAM5B,CAAC;AAEH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAEjE,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;CAI3B,CAAC;AAEF,wBAAsB,iBAAiB,CAAC,KAAK,EAAE,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;GAuD9D"}
+{"version":3,"file":"sendPayment.d.ts","sourceRoot":"","sources":["../../src/tools/sendPayment.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAMxB,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;EAO5B,CAAC;AAEH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAEjE,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;CAI3B,CAAC;AAEF,wBAAsB,iBAAiB,CAAC,GAAG,EAAE,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAyF5D"}

package/dist/tools/sendPayment.js

@@ -2,20 +2,23 @@
 import { z } from "zod";
 import { publicClient, createPharosWalletClient, getExplorerUrl } from "../lib/pharosClient.js";
 import { isAddress, parseEther, formatEther } from "viem";
-import { MAX_BALANCE_USAGE_PCT } from "../lib/constants.js";
+import { assessRisk } from "../lib/riskEngine.js";
+import { MAX_BALANCE_USAGE_PCT, RISK_BLOCK_THRESHOLD } from "../lib/constants.js";
 export const sendPaymentSchema = z.object({
     toAddress: z.string(),
     amount: z.string(),
     memo: z.string().optional(),
     walletAddress: z.string(),
     privateKey: z.string(),
+    bypassRiskCheck: z.boolean().optional().default(false),
 });
 export const sendPaymentTool = {
     name: "send_payment",
     description: "Send native PHRS with pre-flight validation. Checks address validity, balance sufficiency, and warns on high exposure.",
     inputSchema: sendPaymentSchema,
 };
-export async function handleSendPayment(input) {
+export async function handleSendPayment(raw) {
+    const input = sendPaymentSchema.parse(raw);
     const warnings = [];
     const validation = { addressValid: false, balanceSufficient: false, warnings };
     // Address validation
@@ -45,6 +48,33 @@ export async function handleSendPayment(input) {
     if (usagePct > MAX_BALANCE_USAGE_PCT) {
         warnings.push(`Using ${usagePct}% of wallet balance — high exposure`);
     }
+    // Risk assessment
+    let riskScore = 0;
+    if (!input.bypassRiskCheck) {
+        const risk = await assessRisk({
+            action: "transfer",
+            amount: input.amount,
+            toAddress: input.toAddress,
+            walletAddress: input.walletAddress,
+        });
+        riskScore = risk.riskScore;
+        if (riskScore > RISK_BLOCK_THRESHOLD) {
+            return {
+                success: false,
+                validation: {
+                    addressValid: true,
+                    balanceSufficient: true,
+                    warnings,
+                },
+                riskAssessment: {
+                    riskScore,
+                    wasBlocked: true,
+                    blockReason: risk.suggestion,
+                },
+                error: `Payment blocked — risk score ${riskScore}/100: ${risk.suggestion}`,
+            };
+        }
+    }
     try {
         const wallet = createPharosWalletClient(input.privateKey);
         const txHash = await wallet.sendTransaction({
@@ -59,6 +89,10 @@ export async function handleSendPayment(input) {
             amountSent: input.amount,
             gasUsed: receipt.gasUsed.toString(),
             validation,
+            riskAssessment: {
+                riskScore,
+                wasBlocked: false,
+            },
         };
     }
     catch (err) {

package/dist/tools/sendPayment.js.map

@@ -1 +1 @@
-{"version":3,"file":"sendPayment.js","sourceRoot":"","sources":["../../src/tools/sendPayment.ts"],"names":[],"mappings":"AAAA,0EAA0E;AAC1E,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,YAAY,EAAE,wBAAwB,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAChG,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,MAAM,CAAC;AAC1D,OAAO,EAAE,qBAAqB,EAAE,MAAM,qBAAqB,CAAC;AAE5D,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,CAAC;IACxC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE;IACrB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAClB,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3B,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE;IACzB,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE;CACvB,CAAC,CAAC;AAIH,MAAM,CAAC,MAAM,eAAe,GAAG;IAC7B,IAAI,EAAE,cAAc;IACpB,WAAW,EAAE,wHAAwH;IACrI,WAAW,EAAE,iBAAiB;CAC/B,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,KAAuB;IAC7D,MAAM,QAAQ,GAAa,EAAE,CAAC;IAC9B,MAAM,UAAU,GAAG,EAAE,YAAY,EAAE,KAAK,EAAE,iBAAiB,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;IAE/E,qBAAqB;IACrB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE,CAAC;QAChC,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,EAAE,GAAG,UAAU,EAAE,YAAY,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC;IACpH,CAAC;IACD,UAAU,CAAC,YAAY,GAAG,IAAI,CAAC;IAE/B,IAAI,KAAK,CAAC,SAAS,KAAK,4CAA4C,EAAE,CAAC;QACrE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC;IAC9E,CAAC;IACD,IAAI,KAAK,CAAC,SAAS,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,aAAa,CAAC,WAAW,EAAE,EAAE,CAAC;QACxE,QAAQ,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;IAC1C,CAAC;IAED,gBAAgB;IAChB,MAAM,SAAS,GAAG,UAAU,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC3C,MAAM,OAAO,GAAG,MAAM,YAAY,CAAC,UAAU,CAAC,EAAE,OAAO,EAAE,KAAK,CAAC,aAA8B,EAAE,CAAC,CAAC;IACjG,MAAM,WAAW,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;IAEvC,IAAI,OAAO,GAAG,SAAS,GAAG,WAAW,EAAE,CAAC;QACtC,OAAO;YACL,OAAO,EAAE,KAAK;YACd,UAAU,EAAE,EAAE,GAAG,UAAU,EAAE,iBAAiB,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,GAAG,QAAQ,EAAE,sBAAsB,CAAC,EAAE;YACxG,KAAK,EAAE,8BAA8B,WAAW,CAAC,OAAO,CAAC,eAAe,KAAK,CAAC,MAAM,QAAQ;SAC7F,CAAC;IACJ,CAAC;IACD,UAAU,CAAC,iBAAiB,GAAG,IAAI,CAAC;IAEpC,MAAM,QAAQ,GAAG,MAAM,CAAC,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,OAAO,CAAC,CAAC;IACtD,IAAI,QAAQ,GAAG,qBAAqB,EAAE,CAAC;QACrC,QAAQ,CAAC,IAAI,CAAC,SAAS,QAAQ,qCAAqC,CAAC,CAAC;IACxE,CAAC;IAED,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,wBAAwB,CAAC,KAAK,CAAC,UAA2B,CAAC,CAAC;QAC3E,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,eAAe,CAAC;YAC1C,EAAE,EAAE,KAAK,CAAC,SAA0B;YACpC,KAAK,EAAE,SAAS;SACjB,CAAC,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,YAAY,CAAC,yBAAyB,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QAE/E,OAAO;YACL,OAAO,EAAE,OAAO,CAAC,MAAM,KAAK,SAAS;YACrC,MAAM;YACN,WAAW,EAAE,cAAc,CAAC,MAAM,CAAC;YACnC,UAAU,EAAE,KAAK,CAAC,MAAM;YACxB,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,QAAQ,EAAE;YACnC,UAAU;SACX,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,mBAAoB,GAAa,CAAC,OAAO,EAAE,EAAE,CAAC;IAC5F,CAAC;AACH,CAAC"}
+{"version":3,"file":"sendPayment.js","sourceRoot":"","sources":["../../src/tools/sendPayment.ts"],"names":[],"mappings":"AAAA,0EAA0E;AAC1E,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,YAAY,EAAE,wBAAwB,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAChG,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,MAAM,CAAC;AAC1D,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAClD,OAAO,EAAE,qBAAqB,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAC;AAElF,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,CAAC;IACxC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE;IACrB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAClB,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3B,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE;IACzB,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE;IACtB,eAAe,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;CACvD,CAAC,CAAC;AAIH,MAAM,CAAC,MAAM,eAAe,GAAG;IAC7B,IAAI,EAAE,cAAc;IACpB,WAAW,EAAE,wHAAwH;IACrI,WAAW,EAAE,iBAAiB;CAC/B,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,GAAqB;IAC3D,MAAM,KAAK,GAAG,iBAAiB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC3C,MAAM,QAAQ,GAAa,EAAE,CAAC;IAC9B,MAAM,UAAU,GAAG,EAAE,YAAY,EAAE,KAAK,EAAE,iBAAiB,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;IAE/E,qBAAqB;IACrB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE,CAAC;QAChC,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,EAAE,GAAG,UAAU,EAAE,YAAY,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC;IACpH,CAAC;IACD,UAAU,CAAC,YAAY,GAAG,IAAI,CAAC;IAE/B,IAAI,KAAK,CAAC,SAAS,KAAK,4CAA4C,EAAE,CAAC;QACrE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC;IAC9E,CAAC;IACD,IAAI,KAAK,CAAC,SAAS,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,aAAa,CAAC,WAAW,EAAE,EAAE,CAAC;QACxE,QAAQ,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;IAC1C,CAAC;IAED,gBAAgB;IAChB,MAAM,SAAS,GAAG,UAAU,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC3C,MAAM,OAAO,GAAG,MAAM,YAAY,CAAC,UAAU,CAAC,EAAE,OAAO,EAAE,KAAK,CAAC,aAA8B,EAAE,CAAC,CAAC;IACjG,MAAM,WAAW,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;IAEvC,IAAI,OAAO,GAAG,SAAS,GAAG,WAAW,EAAE,CAAC;QACtC,OAAO;YACL,OAAO,EAAE,KAAK;YACd,UAAU,EAAE,EAAE,GAAG,UAAU,EAAE,iBAAiB,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,GAAG,QAAQ,EAAE,sBAAsB,CAAC,EAAE;YACxG,KAAK,EAAE,8BAA8B,WAAW,CAAC,OAAO,CAAC,eAAe,KAAK,CAAC,MAAM,QAAQ;SAC7F,CAAC;IACJ,CAAC;IACD,UAAU,CAAC,iBAAiB,GAAG,IAAI,CAAC;IAEpC,MAAM,QAAQ,GAAG,MAAM,CAAC,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,OAAO,CAAC,CAAC;IACtD,IAAI,QAAQ,GAAG,qBAAqB,EAAE,CAAC;QACrC,QAAQ,CAAC,IAAI,CAAC,SAAS,QAAQ,qCAAqC,CAAC,CAAC;IACxE,CAAC;IAED,kBAAkB;IAClB,IAAI,SAAS,GAAG,CAAC,CAAC;IAClB,IAAI,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;QAC3B,MAAM,IAAI,GAAG,MAAM,UAAU,CAAC;YAC5B,MAAM,EAAE,UAAU;YAClB,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,aAAa,EAAE,KAAK,CAAC,aAAa;SACnC,CAAC,CAAC;QACH,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QAE3B,IAAI,SAAS,GAAG,oBAAoB,EAAE,CAAC;YACrC,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,UAAU,EAAE;oBACV,YAAY,EAAE,IAAI;oBAClB,iBAAiB,EAAE,IAAI;oBACvB,QAAQ;iBACT;gBACD,cAAc,EAAE;oBACd,SAAS;oBACT,UAAU,EAAE,IAAI;oBAChB,WAAW,EAAE,IAAI,CAAC,UAAU;iBAC7B;gBACD,KAAK,EAAE,gCAAgC,SAAS,SAAS,IAAI,CAAC,UAAU,EAAE;aAC3E,CAAC;QACJ,CAAC;IACH,CAAC;IAED,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,wBAAwB,CAAC,KAAK,CAAC,UAA2B,CAAC,CAAC;QAC3E,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,eAAe,CAAC;YAC1C,EAAE,EAAE,KAAK,CAAC,SAA0B;YACpC,KAAK,EAAE,SAAS;SACjB,CAAC,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,YAAY,CAAC,yBAAyB,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QAE/E,OAAO;YACL,OAAO,EAAE,OAAO,CAAC,MAAM,KAAK,SAAS;YACrC,MAAM;YACN,WAAW,EAAE,cAAc,CAAC,MAAM,CAAC;YACnC,UAAU,EAAE,KAAK,CAAC,MAAM;YACxB,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,QAAQ,EAAE;YACnC,UAAU;YACV,cAAc,EAAE;gBACd,SAAS;gBACT,UAAU,EAAE,KAAK;aAClB;SACF,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,mBAAoB,GAAa,CAAC,OAAO,EAAE,EAAE,CAAC;IAC5F,CAAC;AACH,CAAC"}

package/dist/tools/x402PayAndFetch.d.ts

@@ -0,0 +1,64 @@
+import { z } from "zod";
+export declare const x402PayAndFetchSchema: z.ZodObject<{
+    url: z.ZodString;
+    method: z.ZodDefault<z.ZodOptional<z.ZodEnum<["GET", "POST", "PUT", "DELETE"]>>>;
+    body: z.ZodOptional<z.ZodString>;
+    privateKey: z.ZodOptional<z.ZodString>;
+    rpcUrl: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    method: "GET" | "POST" | "PUT" | "DELETE";
+    url: string;
+    privateKey?: string | undefined;
+    body?: string | undefined;
+    rpcUrl?: string | undefined;
+}, {
+    url: string;
+    privateKey?: string | undefined;
+    body?: string | undefined;
+    method?: "GET" | "POST" | "PUT" | "DELETE" | undefined;
+    rpcUrl?: string | undefined;
+}>;
+export type X402PayAndFetchInput = z.input<typeof x402PayAndFetchSchema>;
+export declare const x402PayAndFetchTool: {
+    name: string;
+    description: string;
+    inputSchema: z.ZodObject<{
+        url: z.ZodString;
+        method: z.ZodDefault<z.ZodOptional<z.ZodEnum<["GET", "POST", "PUT", "DELETE"]>>>;
+        body: z.ZodOptional<z.ZodString>;
+        privateKey: z.ZodOptional<z.ZodString>;
+        rpcUrl: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        method: "GET" | "POST" | "PUT" | "DELETE";
+        url: string;
+        privateKey?: string | undefined;
+        body?: string | undefined;
+        rpcUrl?: string | undefined;
+    }, {
+        url: string;
+        privateKey?: string | undefined;
+        body?: string | undefined;
+        method?: "GET" | "POST" | "PUT" | "DELETE" | undefined;
+        rpcUrl?: string | undefined;
+    }>;
+};
+export declare function handleX402PayAndFetch(raw: X402PayAndFetchInput): Promise<{
+    success: boolean;
+    status: number;
+    statusText: string;
+    data: any;
+    paymentExecuted: boolean;
+    paymentDetails: {
+        header: string;
+    } | null;
+    error?: undefined;
+} | {
+    success: boolean;
+    error: string;
+    status?: undefined;
+    statusText?: undefined;
+    data?: undefined;
+    paymentExecuted?: undefined;
+    paymentDetails?: undefined;
+}>;
+//# sourceMappingURL=x402PayAndFetch.d.ts.map

package/dist/tools/x402PayAndFetch.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402PayAndFetch.d.ts","sourceRoot":"","sources":["../../src/tools/x402PayAndFetch.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAKxB,eAAO,MAAM,qBAAqB;;;;;;;;;;;;;;;;;;EAMhC,CAAC;AAEH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEzE,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;CAM/B,CAAC;AAEF,wBAAsB,qBAAqB,CAAC,GAAG,EAAE,oBAAoB;;;;;;;;;;;;;;;;;;GAkEpE"}

package/dist/tools/x402PayAndFetch.js

@@ -0,0 +1,80 @@
+// ─── Tool: x402_pay_and_fetch ─────────────────────────────────────────────
+// Enables an agent to fetch protected resources from an x402 server.
+// Automatically executes the payment challenge when HTTP 402 is returned.
+// ─────────────────────────────────────────────────────────────────────────
+import { z } from "zod";
+import { wrapFetchWithPayment, x402Client } from "@x402/fetch";
+import { registerExactEvmScheme } from "@x402/evm/exact/client";
+import { privateKeyToAccount } from "viem/accounts";
+export const x402PayAndFetchSchema = z.object({
+    url: z.string().describe("Target URL of the protected resource requiring x402 payment"),
+    method: z.enum(["GET", "POST", "PUT", "DELETE"]).optional().default("GET").describe("HTTP method to use"),
+    body: z.string().optional().describe("Optional stringified JSON request body"),
+    privateKey: z.string().optional().describe("EVM private key to pay with. If not provided, falls back to PRIVATE_KEY env var"),
+    rpcUrl: z.string().optional().describe("Custom RPC URL for payment verification (defaults to Atlantic Testnet RPC)"),
+});
+export const x402PayAndFetchTool = {
+    name: "x402_pay_and_fetch",
+    description: "Fetch resources from an HTTP x402 payment-gated server. " +
+        "If the server challenges with HTTP 402, this tool automatically signs the required payment payload and completes the fetch.",
+    inputSchema: x402PayAndFetchSchema,
+};
+export async function handleX402PayAndFetch(raw) {
+    const input = x402PayAndFetchSchema.parse(raw);
+    const pk = input.privateKey || process.env.PRIVATE_KEY;
+    if (!pk) {
+        throw new Error("Private key is required to execute x402 payments.");
+    }
+    const rpc = input.rpcUrl || process.env.PHAROS_RPC_URL || "https://atlantic.dplabs-internal.com/";
+    // 1. Initialize EVM Account
+    const signer = privateKeyToAccount(pk);
+    // 2. Setup x402 client
+    const client = new x402Client();
+    registerExactEvmScheme(client, {
+        signer,
+        schemeOptions: {
+            688689: { rpcUrl: rpc },
+        },
+    });
+    // 3. Wrap fetch
+    const fetchWithPayment = wrapFetchWithPayment(fetch, client);
+    // 4. Perform the request
+    const fetchOptions = {
+        method: input.method,
+        headers: {
+            "Content-Type": "application/json",
+        },
+    };
+    if (input.body) {
+        fetchOptions.body = input.body;
+    }
+    try {
+        const res = await fetchWithPayment(input.url, fetchOptions);
+        const contentType = res.headers.get("content-type") || "";
+        let responseData;
+        if (contentType.includes("application/json")) {
+            responseData = await res.json();
+        }
+        else {
+            responseData = await res.text();
+        }
+        const paymentResponseHeader = res.headers.get("PAYMENT-RESPONSE");
+        return {
+            success: res.ok,
+            status: res.status,
+            statusText: res.statusText,
+            data: responseData,
+            paymentExecuted: !!paymentResponseHeader,
+            paymentDetails: paymentResponseHeader ? {
+                header: paymentResponseHeader,
+            } : null,
+        };
+    }
+    catch (err) {
+        return {
+            success: false,
+            error: `x402 fetch failed: ${err.message}`,
+        };
+    }
+}
+//# sourceMappingURL=x402PayAndFetch.js.map

package/dist/tools/x402PayAndFetch.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402PayAndFetch.js","sourceRoot":"","sources":["../../src/tools/x402PayAndFetch.ts"],"names":[],"mappings":"AAAA,6EAA6E;AAC7E,qEAAqE;AACrE,0EAA0E;AAC1E,4EAA4E;AAE5E,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,oBAAoB,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAC/D,OAAO,EAAE,sBAAsB,EAAE,MAAM,wBAAwB,CAAC;AAChE,OAAO,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AAEpD,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC5C,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,6DAA6D,CAAC;IACvF,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,oBAAoB,CAAC;IACzG,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,wCAAwC,CAAC;IAC9E,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,iFAAiF,CAAC;IAC7H,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,4EAA4E,CAAC;CACrH,CAAC,CAAC;AAIH,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EACT,0DAA0D;QAC1D,6HAA6H;IAC/H,WAAW,EAAE,qBAAqB;CACnC,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,qBAAqB,CAAC,GAAyB;IACnE,MAAM,KAAK,GAAG,qBAAqB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAE/C,MAAM,EAAE,GAAG,KAAK,CAAC,UAAU,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC;IACvD,IAAI,CAAC,EAAE,EAAE,CAAC;QACR,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;IACvE,CAAC;IAED,MAAM,GAAG,GAAG,KAAK,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,uCAAuC,CAAC;IAElG,4BAA4B;IAC5B,MAAM,MAAM,GAAG,mBAAmB,CAAC,EAAmB,CAAC,CAAC;IAExD,uBAAuB;IACvB,MAAM,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;IAChC,sBAAsB,CAAC,MAAM,EAAE;QAC7B,MAAM;QACN,aAAa,EAAE;YACb,MAAM,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE;SACxB;KACF,CAAC,CAAC;IAEH,gBAAgB;IAChB,MAAM,gBAAgB,GAAG,oBAAoB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAE7D,yBAAyB;IACzB,MAAM,YAAY,GAAgB;QAChC,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;SACnC;KACF,CAAC;IAEF,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QACf,YAAY,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;IACjC,CAAC;IAED,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,gBAAgB,CAAC,KAAK,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;QAC5D,MAAM,WAAW,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;QAE1D,IAAI,YAAiB,CAAC;QACtB,IAAI,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC7C,YAAY,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAClC,CAAC;aAAM,CAAC;YACN,YAAY,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAClC,CAAC;QAED,MAAM,qBAAqB,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;QAElE,OAAO;YACL,OAAO,EAAE,GAAG,CAAC,EAAE;YACf,MAAM,EAAE,GAAG,CAAC,MAAM;YAClB,UAAU,EAAE,GAAG,CAAC,UAAU;YAC1B,IAAI,EAAE,YAAY;YAClB,eAAe,EAAE,CAAC,CAAC,qBAAqB;YACxC,cAAc,EAAE,qBAAqB,CAAC,CAAC,CAAC;gBACtC,MAAM,EAAE,qBAAqB;aAC9B,CAAC,CAAC,CAAC,IAAI;SACT,CAAC;IACJ,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO;YACL,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,sBAAsB,GAAG,CAAC,OAAO,EAAE;SAC3C,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/x402Server.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=x402Server.d.ts.map

package/dist/x402Server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402Server.d.ts","sourceRoot":"","sources":["../src/x402Server.ts"],"names":[],"mappings":""}

package/dist/x402Server.js

@@ -0,0 +1,219 @@
+// ─── SafeHands x402 Server ──────────────────────────────────────────────
+// Exposes SafeHands risk assessment endpoints protected by x402 paywalls.
+// ────────────────────────────────────────────────────────────────────────
+import express from "express";
+import { join } from "path";
+import { readFileSync } from "fs";
+import { defineChain, createWalletClient, http, publicActions } from "viem";
+import { privateKeyToAccount } from "viem/accounts";
+import { x402Facilitator } from "@x402/core/facilitator";
+import { toFacilitatorEvmSigner } from "@x402/evm";
+import { ExactEvmScheme as FacilitatorExactEvmScheme } from "@x402/evm/exact/facilitator";
+import { ExactEvmScheme as ServerExactEvmScheme } from "@x402/evm/exact/server";
+import { HTTPFacilitatorClient } from "@x402/core/server";
+import { paymentMiddleware, x402ResourceServer } from "@x402/express";
+import { handleAssessRisk } from "./tools/assessRisk.js";
+import { handleCheckTokenSecurity } from "./tools/checkTokenSecurity.js";
+import { handleSimulateTransaction } from "./tools/simulateTransaction.js";
+import { USDC_ADDRESS } from "./lib/constants.js";
+// Load Environment Variables
+function loadEnv() {
+    try {
+        const f = readFileSync(join(process.cwd(), ".env"), "utf-8");
+        for (const l of f.split("\n")) {
+            const t = l.trim();
+            if (!t || t.startsWith("#"))
+                continue;
+            const i = t.indexOf("=");
+            if (i === -1)
+                continue;
+            process.env[t.slice(0, i).trim()] = t.slice(i + 1).trim();
+        }
+    }
+    catch (e) { }
+}
+loadEnv();
+const PK = process.env.PRIVATE_KEY;
+const WALLET = process.env.WALLET_ADDRESS;
+if (!PK || !WALLET) {
+    console.error("❌ PRIVATE_KEY and WALLET_ADDRESS environment variables must be configured in .env");
+    process.exit(1);
+}
+const payToAddress = WALLET;
+const port = parseInt(process.env.X402_PORT || "4021", 10);
+const rpcUrl = "https://atlantic.dplabs-internal.com/";
+const usdcAddress = USDC_ADDRESS;
+// === Define Pharos Testnet ===
+const pharos = defineChain({
+    id: 688_689,
+    name: "Pharos Atlantic",
+    nativeCurrency: { name: "PHRS", symbol: "PHRS", decimals: 18 },
+    rpcUrls: { default: { http: [rpcUrl] } },
+    testnet: true,
+});
+// === Create Facilitator EVM Client ===
+const account = privateKeyToAccount(PK);
+const walletClient = createWalletClient({
+    account,
+    chain: pharos,
+    transport: http(undefined, { timeout: 30_000 }),
+}).extend(publicActions);
+const evmSigner = toFacilitatorEvmSigner({
+    address: account.address,
+    getCode: (args) => walletClient.getCode(args),
+    readContract: (args) => walletClient.readContract({ ...args, args: args.args || [] }),
+    verifyTypedData: (args) => walletClient.verifyTypedData(args),
+    writeContract: (args) => walletClient.writeContract({ ...args, args: args.args || [] }),
+    sendTransaction: (args) => walletClient.sendTransaction(args),
+    waitForTransactionReceipt: (args) => walletClient.waitForTransactionReceipt(args),
+});
+// === Initialize Facilitator ===
+const facilitator = new x402Facilitator();
+facilitator.register("eip155:688689", new FacilitatorExactEvmScheme(evmSigner, {}));
+// === Initialize Resource Server ===
+const facilitatorClient = new HTTPFacilitatorClient({ url: `http://localhost:${port}` });
+const resourceServer = new x402ResourceServer(facilitatorClient);
+const evmScheme = new ServerExactEvmScheme();
+evmScheme.registerMoneyParser(async (amount, network) => {
+    if (network === "eip155:688689") {
+        return {
+            amount: Math.round(amount * 1e6).toString(), // Convert to USDC integer units
+            asset: usdcAddress,
+            extra: {
+                token: "USDC",
+                name: "USDC",
+                version: "2",
+            },
+        };
+    }
+    return null;
+});
+resourceServer.register("eip155:688689", evmScheme);
+// === Express Server setup ===
+const app = express();
+app.use(express.json());
+// --- Facilitator endpoints ---
+app.post("/verify", async (req, res) => {
+    try {
+        const { paymentPayload, paymentRequirements } = req.body;
+        const result = await facilitator.verify(paymentPayload, paymentRequirements);
+        res.json(result);
+    }
+    catch (e) {
+        res.status(500).json({ error: e.message });
+    }
+});
+app.post("/settle", async (req, res) => {
+    try {
+        const { paymentPayload, paymentRequirements } = req.body;
+        const result = await facilitator.settle(paymentPayload, paymentRequirements);
+        res.json(result);
+    }
+    catch (e) {
+        res.status(500).json({ error: e.message });
+    }
+});
+app.get("/supported", (req, res) => {
+    res.json(facilitator.getSupported());
+});
+// --- x402 Paid Middleware gating ---
+app.use(paymentMiddleware({
+    "GET /assess-risk": {
+        accepts: {
+            scheme: "exact",
+            price: "0.001", // USDC amount: $0.001
+            network: "eip155:688689",
+            payTo: payToAddress,
+        },
+        description: "Assess transaction risk (USDC 0.001)",
+        mimeType: "application/json",
+    },
+    "GET /check-token-security": {
+        accepts: {
+            scheme: "exact",
+            price: "0.001", // USDC amount: $0.001
+            network: "eip155:688689",
+            payTo: payToAddress,
+        },
+        description: "Verify contract token security profile (USDC 0.001)",
+        mimeType: "application/json",
+    },
+    "GET /simulate-transaction": {
+        accepts: {
+            scheme: "exact",
+            price: "0.001", // USDC amount: $0.001
+            network: "eip155:688689",
+            payTo: payToAddress,
+        },
+        description: "Simulate EVM execution trace before broadcasting (USDC 0.001)",
+        mimeType: "application/json",
+    },
+}, resourceServer));
+// --- Paid Business Logic ---
+app.get("/assess-risk", async (req, res) => {
+    try {
+        const { action, tokenIn, tokenOut, amount, toAddress, walletAddress } = req.query;
+        const result = await handleAssessRisk({
+            action: action,
+            tokenIn: tokenIn,
+            tokenOut: tokenOut,
+            amount: amount,
+            toAddress: toAddress,
+            walletAddress: walletAddress,
+        });
+        res.json(result);
+    }
+    catch (e) {
+        res.status(400).json({ error: e.message });
+    }
+});
+app.get("/check-token-security", async (req, res) => {
+    try {
+        const { tokenAddress, chainId } = req.query;
+        const cid = chainId ? parseInt(chainId, 10) : 688689;
+        const result = await handleCheckTokenSecurity({
+            tokenAddress: tokenAddress,
+            chainId: cid,
+        });
+        res.json(result);
+    }
+    catch (e) {
+        res.status(400).json({ error: e.message });
+    }
+});
+app.get("/simulate-transaction", async (req, res) => {
+    try {
+        const { action, tokenIn, tokenOut, amount, toAddress, walletAddress } = req.query;
+        const result = await handleSimulateTransaction({
+            action: action,
+            tokenIn: tokenIn,
+            tokenOut: tokenOut,
+            amount: amount,
+            toAddress: toAddress,
+            walletAddress: walletAddress,
+        });
+        res.json(result);
+    }
+    catch (e) {
+        res.status(400).json({ error: e.message });
+    }
+});
+// --- Free endpoints ---
+app.get("/health", (req, res) => {
+    res.json({
+        status: "ok",
+        service: "SafeHands x402 Resource Server",
+        network: "Pharos Atlantic Testnet (Chain ID 688689)",
+        receiver: payToAddress,
+        asset: usdcAddress,
+    });
+});
+// Start Server
+app.listen(port, () => {
+    console.log(`✅ SafeHands x402 Server listening on http://localhost:${port}`);
+    console.log(`📡 Network: eip155:688689 (Pharos Atlantic Testnet)`);
+    console.log(`💰 Paid Recipient Address: ${payToAddress}`);
+    console.log(`🪙 USDC Contract Address: ${usdcAddress}`);
+    console.log(`🚪 Gated APIs: /assess-risk, /check-token-security, /simulate-transaction`);
+});
+//# sourceMappingURL=x402Server.js.map

package/dist/x402Server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402Server.js","sourceRoot":"","sources":["../src/x402Server.ts"],"names":[],"mappings":"AAAA,2EAA2E;AAC3E,0EAA0E;AAC1E,2EAA2E;AAE3E,OAAO,OAAO,MAAM,SAAS,CAAC;AAC9B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,YAAY,EAAE,MAAM,IAAI,CAAC;AAClC,OAAO,EAAE,WAAW,EAAE,kBAAkB,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,MAAM,CAAC;AAC5E,OAAO,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,cAAc,IAAI,yBAAyB,EAAE,MAAM,6BAA6B,CAAC;AAC1F,OAAO,EAAE,cAAc,IAAI,oBAAoB,EAAE,MAAM,wBAAwB,CAAC;AAChF,OAAO,EAAE,qBAAqB,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAEtE,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AACzD,OAAO,EAAE,wBAAwB,EAAE,MAAM,+BAA+B,CAAC;AACzE,OAAO,EAAE,yBAAyB,EAAE,MAAM,gCAAgC,CAAC;AAC3E,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,6BAA6B;AAC7B,SAAS,OAAO;IACd,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,CAAC,CAAC;QAC7D,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;YACnB,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YACtC,MAAM,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YACzB,IAAI,CAAC,KAAK,CAAC,CAAC;gBAAE,SAAS;YACvB,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAC5D,CAAC;IACH,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC,CAAA,CAAC;AAChB,CAAC;AACD,OAAO,EAAE,CAAC;AAEV,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC;AACnC,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;AAE1C,IAAI,CAAC,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC;IACnB,OAAO,CAAC,KAAK,CAAC,mFAAmF,CAAC,CAAC;IACnG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,MAAM,YAAY,GAAG,MAAuB,CAAC;AAC7C,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,MAAM,EAAE,EAAE,CAAC,CAAC;AAC3D,MAAM,MAAM,GAAG,uCAAuC,CAAC;AACvD,MAAM,WAAW,GAAG,YAAY,CAAC;AAEjC,gCAAgC;AAChC,MAAM,MAAM,GAAG,WAAW,CAAC;IACzB,EAAE,EAAE,OAAO;IACX,IAAI,EAAE,iBAAiB;IACvB,cAAc,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,EAAE;IAC9D,OAAO,EAAE,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,EAAE,EAAE;IACxC,OAAO,EAAE,IAAI;CACd,CAAC,CAAC;AAEH,wCAAwC;AACxC,MAAM,OAAO,GAAG,mBAAmB,CAAC,EAAmB,CAAC,CAAC;AACzD,MAAM,YAAY,GAAG,kBAAkB,CAAC;IACtC,OAAO;IACP,KAAK,EAAE,MAAM;IACb,SAAS,EAAE,IAAI,CAAC,SAAS,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;CAChD,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;AAEzB,MAAM,SAAS,GAAG,sBAAsB,CAAC;IACvC,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC;IAC7C,YAAY,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,YAAY,CAAC,EAAE,GAAG,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE,EAAE,CAAC;IACrF,eAAe,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,eAAe,CAAC,IAAW,CAAC;IACpE,aAAa,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,aAAa,CAAC,EAAE,GAAG,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE,EAAE,CAAC;IACvF,eAAe,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,eAAe,CAAC,IAAI,CAAC;IAC7D,yBAAyB,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,yBAAyB,CAAC,IAAI,CAAC;CAClF,CAAC,CAAC;AAEH,iCAAiC;AACjC,MAAM,WAAW,GAAG,IAAI,eAAe,EAAE,CAAC;AAC1C,WAAW,CAAC,QAAQ,CAAC,eAAe,EAAE,IAAI,yBAAyB,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,CAAC;AAEpF,qCAAqC;AACrC,MAAM,iBAAiB,GAAG,IAAI,qBAAqB,CAAC,EAAE,GAAG,EAAE,oBAAoB,IAAI,EAAE,EAAE,CAAC,CAAC;AACzF,MAAM,cAAc,GAAG,IAAI,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;AACjE,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;AAE7C,SAAS,CAAC,mBAAmB,CAAC,KAAK,EAAE,MAAc,EAAE,OAAe,EAAE,EAAE;IACtE,IAAI,OAAO,KAAK,eAAe,EAAE,CAAC;QAChC,OAAO;YACL,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,gCAAgC;YAC7E,KAAK,EAAE,WAAW;YAClB,KAAK,EAAE;gBACL,KAAK,EAAE,MAAM;gBACb,IAAI,EAAE,MAAM;gBACZ,OAAO,EAAE,GAAG;aACb;SACF,CAAC;IACJ,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC,CAAC,CAAC;AACH,cAAc,CAAC,QAAQ,CAAC,eAAe,EAAE,SAAS,CAAC,CAAC;AAEpD,+BAA+B;AAC/B,MAAM,GAAG,GAAG,OAAO,EAAE,CAAC;AACtB,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;AAExB,gCAAgC;AAChC,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACrC,IAAI,CAAC;QACH,MAAM,EAAE,cAAc,EAAE,mBAAmB,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACzD,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,cAAc,EAAE,mBAAmB,CAAC,CAAC;QAC7E,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACrC,IAAI,CAAC;QACH,MAAM,EAAE,cAAc,EAAE,mBAAmB,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACzD,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,cAAc,EAAE,mBAAmB,CAAC,CAAC;QAC7E,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IACjC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,YAAY,EAAE,CAAC,CAAC;AACvC,CAAC,CAAC,CAAC;AAEH,sCAAsC;AACtC,GAAG,CAAC,GAAG,CACL,iBAAiB,CACf;IACE,kBAAkB,EAAE;QAClB,OAAO,EAAE;YACP,MAAM,EAAE,OAAO;YACf,KAAK,EAAE,OAAO,EAAE,sBAAsB;YACtC,OAAO,EAAE,eAAe;YACxB,KAAK,EAAE,YAAY;SACpB;QACD,WAAW,EAAE,sCAAsC;QACnD,QAAQ,EAAE,kBAAkB;KAC7B;IACD,2BAA2B,EAAE;QAC3B,OAAO,EAAE;YACP,MAAM,EAAE,OAAO;YACf,KAAK,EAAE,OAAO,EAAE,sBAAsB;YACtC,OAAO,EAAE,eAAe;YACxB,KAAK,EAAE,YAAY;SACpB;QACD,WAAW,EAAE,qDAAqD;QAClE,QAAQ,EAAE,kBAAkB;KAC7B;IACD,2BAA2B,EAAE;QAC3B,OAAO,EAAE;YACP,MAAM,EAAE,OAAO;YACf,KAAK,EAAE,OAAO,EAAE,sBAAsB;YACtC,OAAO,EAAE,eAAe;YACxB,KAAK,EAAE,YAAY;SACpB;QACD,WAAW,EAAE,+DAA+D;QAC5E,QAAQ,EAAE,kBAAkB;KAC7B;CACF,EACD,cAAc,CACf,CACF,CAAC;AAEF,8BAA8B;AAC9B,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACzC,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAClF,MAAM,MAAM,GAAG,MAAM,gBAAgB,CAAC;YACpC,MAAM,EAAE,MAAa;YACrB,OAAO,EAAE,OAAiB;YAC1B,QAAQ,EAAE,QAAkB;YAC5B,MAAM,EAAE,MAAgB;YACxB,SAAS,EAAE,SAAmB;YAC9B,aAAa,EAAE,aAAuB;SACvC,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IAClD,IAAI,CAAC;QACH,MAAM,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAC5C,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAiB,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;QAC/D,MAAM,MAAM,GAAG,MAAM,wBAAwB,CAAC;YAC5C,YAAY,EAAE,YAAsB;YACpC,OAAO,EAAE,GAAG;SACb,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IAClD,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAClF,MAAM,MAAM,GAAG,MAAM,yBAAyB,CAAC;YAC7C,MAAM,EAAE,MAAa;YACrB,OAAO,EAAE,OAAiB;YAC1B,QAAQ,EAAE,QAAkB;YAC5B,MAAM,EAAE,MAAgB;YACxB,SAAS,EAAE,SAAmB;YAC9B,aAAa,EAAE,aAAuB;SACvC,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,yBAAyB;AACzB,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IAC9B,GAAG,CAAC,IAAI,CAAC;QACP,MAAM,EAAE,IAAI;QACZ,OAAO,EAAE,gCAAgC;QACzC,OAAO,EAAE,2CAA2C;QACpD,QAAQ,EAAE,YAAY;QACtB,KAAK,EAAE,WAAW;KACnB,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,eAAe;AACf,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,EAAE;IACpB,OAAO,CAAC,GAAG,CAAC,yDAAyD,IAAI,EAAE,CAAC,CAAC;IAC7E,OAAO,CAAC,GAAG,CAAC,qDAAqD,CAAC,CAAC;IACnE,OAAO,CAAC,GAAG,CAAC,8BAA8B,YAAY,EAAE,CAAC,CAAC;IAC1D,OAAO,CAAC,GAAG,CAAC,6BAA6B,WAAW,EAAE,CAAC,CAAC;IACxD,OAAO,CAAC,GAAG,CAAC,2EAA2E,CAAC,CAAC;AAC3F,CAAC,CAAC,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "safehands-pharos",
-  "version": "1.0.2",
+  "version": "1.1.0",
   "description": "Risk-gating middleware for Pharos agents. Blocks dangerous swaps and transfers before they hit the chain.",
   "type": "module",
   "main": "dist/index.js",
@@ -22,6 +22,7 @@
     "build": "tsc",
     "start": "node dist/index.js",
     "dev": "tsx src/index.ts",
+    "x402-server": "tsx src/x402Server.ts",
     "test:rpc": "tsx src/lib/testRpc.ts",
     "test:all": "tsx src/lib/testTools.ts"
   },
@@ -49,6 +50,12 @@
   },
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.12.1",
+    "@types/express": "^5.0.6",
+    "@x402/core": "^2.14.0",
+    "@x402/evm": "^2.14.0",
+    "@x402/express": "^2.14.0",
+    "@x402/fetch": "^2.14.0",
+    "express": "^5.2.1",
     "viem": "^2.31.3",
     "zod": "^3.25.67"
   },