safehands-pharos 1.2.0 → 1.2.4

package/dist/x402Server.js

@@ -1,5 +1,7 @@
 // ─── SafeHands x402 Server ──────────────────────────────────────────────
-// Exposes SafeHands risk assessment endpoints protected by x402 paywalls.
+// Exposes SafeHands risk endpoints. /supported and /health are free and do
+// not require user private keys. Paid routes are gated only when receiver +
+// facilitator signer config is present.
 // ────────────────────────────────────────────────────────────────────────
 import express from "express";
 import { join } from "path";
@@ -15,8 +17,8 @@ import { paymentMiddleware, x402ResourceServer } from "@x402/express";
 import { handleAssessRisk } from "./tools/assessRisk.js";
 import { handleCheckTokenSecurity } from "./tools/checkTokenSecurity.js";
 import { handleSimulateTransaction } from "./tools/simulateTransaction.js";
-import { USDC_ADDRESS } from "./lib/constants.js";
-// Load Environment Variables
+import { CHAIN_ID, PHAROS_ENVIRONMENT, RPC_URL, X402_PAYMENT_TOKEN_ADDRESS } from "./lib/constants.js";
+import { fail, ok } from "./lib/toolResponse.js";
 function loadEnv() {
     try {
         const f = readFileSync(join(process.cwd(), ".env"), "utf-8");
@@ -27,129 +29,173 @@ function loadEnv() {
             const i = t.indexOf("=");
             if (i === -1)
                 continue;
-            process.env[t.slice(0, i).trim()] = t.slice(i + 1).trim();
+            const key = t.slice(0, i).trim();
+            if (process.env[key] === undefined)
+                process.env[key] = t.slice(i + 1).trim();
         }
     }
-    catch (e) { }
+    catch { }
 }
 loadEnv();
-const PK = process.env.PRIVATE_KEY;
-const WALLET = process.env.WALLET_ADDRESS;
-if (!PK || !WALLET) {
-    console.error("❌ PRIVATE_KEY and WALLET_ADDRESS environment variables must be configured in .env");
-    process.exit(1);
-}
-const payToAddress = WALLET;
-const port = parseInt(process.env.X402_PORT || "4021", 10);
-const rpcUrl = "https://atlantic.dplabs-internal.com/";
-const usdcAddress = USDC_ADDRESS;
-// === Define Pharos Testnet ===
+const receiverAddress = (process.env.X402_PAY_TO || process.env.WALLET_ADDRESS || "");
+const facilitatorPrivateKey = process.env.X402_FACILITATOR_PRIVATE_KEY || "";
+const port = parseInt(process.env.X402_SERVER_PORT || process.env.X402_PORT || "4021", 10);
+const rpcUrl = process.env.PHAROS_RPC_URL || RPC_URL;
+const usdcAddress = X402_PAYMENT_TOKEN_ADDRESS;
+const priceUsdc = process.env.X402_PRICE_USDC || "0.001";
+const isPaidConfigured = Boolean(receiverAddress && facilitatorPrivateKey);
 const pharos = defineChain({
-    id: 688_689,
-    name: "Pharos Atlantic",
+    id: CHAIN_ID,
+    name: `Pharos ${PHAROS_ENVIRONMENT}`,
     nativeCurrency: { name: "PHRS", symbol: "PHRS", decimals: 18 },
     rpcUrls: { default: { http: [rpcUrl] } },
     testnet: true,
 });
-// === Create Facilitator EVM Client ===
-const account = privateKeyToAccount(PK);
-const walletClient = createWalletClient({
-    account,
-    chain: pharos,
-    transport: http(undefined, { timeout: 30_000 }),
-}).extend(publicActions);
-const evmSigner = toFacilitatorEvmSigner({
-    address: account.address,
-    getCode: (args) => walletClient.getCode(args),
-    readContract: (args) => walletClient.readContract({ ...args, args: args.args || [] }),
-    verifyTypedData: (args) => walletClient.verifyTypedData(args),
-    writeContract: (args) => walletClient.writeContract({ ...args, args: args.args || [] }),
-    sendTransaction: (args) => walletClient.sendTransaction(args),
-    waitForTransactionReceipt: (args) => walletClient.waitForTransactionReceipt(args),
+const app = express();
+app.disable("x-powered-by");
+app.use((req, res, next) => {
+    req.setTimeout(15_000);
+    res.setHeader("X-Content-Type-Options", "nosniff");
+    res.setHeader("Referrer-Policy", "no-referrer");
+    next();
 });
-// === Initialize Facilitator ===
-const facilitator = new x402Facilitator();
-facilitator.register("eip155:688689", new FacilitatorExactEvmScheme(evmSigner, {}));
-// === Initialize Resource Server ===
-const facilitatorClient = new HTTPFacilitatorClient({ url: `http://localhost:${port}` });
-const resourceServer = new x402ResourceServer(facilitatorClient);
-const evmScheme = new ServerExactEvmScheme();
-evmScheme.registerMoneyParser(async (amount, network) => {
-    if (network === "eip155:688689") {
-        return {
-            amount: Math.round(amount * 1e6).toString(), // Convert to USDC integer units
-            asset: usdcAddress,
-            extra: {
-                token: "USDC",
-                name: "USDC",
-                version: "2",
-            },
-        };
+app.use(express.json({ limit: "64kb" }));
+const rateLimitWindowMs = 60_000;
+const rateLimitMax = 120;
+const rateLimitBuckets = new Map();
+app.use((req, res, next) => {
+    const key = req.ip || "unknown";
+    const now = Date.now();
+    const bucket = rateLimitBuckets.get(key);
+    if (!bucket || bucket.resetAt <= now) {
+        rateLimitBuckets.set(key, { count: 1, resetAt: now + rateLimitWindowMs });
+        return next();
     }
-    return null;
+    bucket.count += 1;
+    if (bucket.count > rateLimitMax) {
+        return res.status(429).json(fail("RATE_LIMITED", "Too many requests", true, "x402_server"));
+    }
+    return next();
 });
-resourceServer.register("eip155:688689", evmScheme);
-// === Express Server setup ===
-const app = express();
-app.use(express.json());
-// --- Facilitator endpoints ---
+let facilitator = null;
+let resourceServer = null;
+if (isPaidConfigured) {
+    const account = privateKeyToAccount(facilitatorPrivateKey);
+    const walletClient = createWalletClient({
+        account,
+        chain: pharos,
+        transport: http(undefined, { timeout: 30_000 }),
+    }).extend(publicActions);
+    const evmSigner = toFacilitatorEvmSigner({
+        address: account.address,
+        getCode: (args) => walletClient.getCode(args),
+        readContract: (args) => walletClient.readContract({ ...args, args: args.args || [] }),
+        verifyTypedData: (args) => walletClient.verifyTypedData(args),
+        writeContract: (args) => walletClient.writeContract({ ...args, args: args.args || [] }),
+        sendTransaction: (args) => walletClient.sendTransaction(args),
+        waitForTransactionReceipt: (args) => walletClient.waitForTransactionReceipt(args),
+    });
+    facilitator = new x402Facilitator();
+    facilitator.register(`eip155:${CHAIN_ID}`, new FacilitatorExactEvmScheme(evmSigner, {}));
+    const facilitatorClient = new HTTPFacilitatorClient({ url: `http://localhost:${port}` });
+    resourceServer = new x402ResourceServer(facilitatorClient);
+    const evmScheme = new ServerExactEvmScheme();
+    evmScheme.registerMoneyParser(async (amount, network) => {
+        if (network === `eip155:${CHAIN_ID}`) {
+            return {
+                amount: Math.round(amount * 1e6).toString(),
+                asset: usdcAddress,
+                extra: { token: "USDC", name: "USDC", version: "2" },
+            };
+        }
+        return null;
+    });
+    resourceServer.register(`eip155:${CHAIN_ID}`, evmScheme);
+}
 app.post("/verify", async (req, res) => {
+    if (!facilitator) {
+        return res.status(503).json(fail("X402_SERVER_RECEIVER_CONFIG_MISSING", "x402 facilitator is not configured. Set X402_PAY_TO/WALLET_ADDRESS and X402_FACILITATOR_PRIVATE_KEY for paid endpoints. Client PRIVATE_KEY is not used for server receiver config.", false, "x402_server"));
+    }
     try {
         const { paymentPayload, paymentRequirements } = req.body;
         const result = await facilitator.verify(paymentPayload, paymentRequirements);
         res.json(result);
     }
     catch (e) {
-        res.status(500).json({ error: e.message });
+        res.status(500).json(fail("X402_PAYMENT_FAILED", e.message, true, "x402_server"));
     }
 });
 app.post("/settle", async (req, res) => {
+    if (!facilitator) {
+        return res.status(503).json(fail("X402_SERVER_RECEIVER_CONFIG_MISSING", "x402 facilitator is not configured. Set X402_PAY_TO/WALLET_ADDRESS and X402_FACILITATOR_PRIVATE_KEY for paid endpoints. Client PRIVATE_KEY is not used for server receiver config.", false, "x402_server"));
+    }
     try {
         const { paymentPayload, paymentRequirements } = req.body;
         const result = await facilitator.settle(paymentPayload, paymentRequirements);
         res.json(result);
     }
     catch (e) {
-        res.status(500).json({ error: e.message });
+        res.status(500).json(fail("X402_PAYMENT_FAILED", e.message, true, "x402_server"));
     }
 });
-app.get("/supported", (req, res) => {
-    res.json(facilitator.getSupported());
+app.get("/supported", (_req, res) => {
+    if (facilitator)
+        return res.json(facilitator.getSupported());
+    return res.json(ok({
+        configured: false,
+        network: `eip155:${CHAIN_ID}`,
+        scheme: "exact",
+        asset: usdcAddress,
+        priceUsdc,
+        freeEndpoints: ["GET /supported", "GET /health"],
+        paidEndpoints: ["GET /assess-risk", "GET /check-token-security", "GET /simulate-transaction"],
+        configError: {
+            code: "X402_SERVER_RECEIVER_CONFIG_MISSING",
+            message: "Paid endpoints require receiver/payTo plus facilitator signer config. Free endpoints remain available.",
+        },
+    }));
 });
-// --- x402 Paid Middleware gating ---
-app.use(paymentMiddleware({
-    "GET /assess-risk": {
-        accepts: {
-            scheme: "exact",
-            price: "0.001", // USDC amount: $0.001
-            network: "eip155:688689",
-            payTo: payToAddress,
+app.get("/health", (_req, res) => {
+    res.json(ok({
+        status: "ok",
+        service: "SafeHands x402 Resource Server",
+        network: `Pharos ${PHAROS_ENVIRONMENT} (Chain ID ${CHAIN_ID})`,
+        environment: PHAROS_ENVIRONMENT,
+        isMainnet: false,
+        receiverConfigured: Boolean(receiverAddress),
+        paidEndpointsConfigured: isPaidConfigured,
+        receiver: receiverAddress || null,
+        asset: usdcAddress,
+        freeEndpoints: ["/supported", "/health"],
+    }));
+});
+function paidConfigError(req, res, next) {
+    if (isPaidConfigured)
+        return next();
+    return res.status(503).json(fail("X402_SERVER_RECEIVER_CONFIG_MISSING", "Paid endpoint receiver/payTo or facilitator signer config is missing. Free endpoints do not require a client signer/private key.", false, "x402_server"));
+}
+if (isPaidConfigured && resourceServer) {
+    app.use(paymentMiddleware({
+        "GET /assess-risk": {
+            accepts: { scheme: "exact", price: priceUsdc, network: `eip155:${CHAIN_ID}`, payTo: receiverAddress },
+            description: `Assess transaction risk (USDC ${priceUsdc})`,
+            mimeType: "application/json",
         },
-        description: "Assess transaction risk (USDC 0.001)",
-        mimeType: "application/json",
-    },
-    "GET /check-token-security": {
-        accepts: {
-            scheme: "exact",
-            price: "0.001", // USDC amount: $0.001
-            network: "eip155:688689",
-            payTo: payToAddress,
+        "GET /check-token-security": {
+            accepts: { scheme: "exact", price: priceUsdc, network: `eip155:${CHAIN_ID}`, payTo: receiverAddress },
+            description: `Verify contract token security profile (USDC ${priceUsdc})`,
+            mimeType: "application/json",
         },
-        description: "Verify contract token security profile (USDC 0.001)",
-        mimeType: "application/json",
-    },
-    "GET /simulate-transaction": {
-        accepts: {
-            scheme: "exact",
-            price: "0.001", // USDC amount: $0.001
-            network: "eip155:688689",
-            payTo: payToAddress,
+        "GET /simulate-transaction": {
+            accepts: { scheme: "exact", price: priceUsdc, network: `eip155:${CHAIN_ID}`, payTo: receiverAddress },
+            description: `Simulate EVM execution trace before broadcasting (USDC ${priceUsdc})`,
+            mimeType: "application/json",
         },
-        description: "Simulate EVM execution trace before broadcasting (USDC 0.001)",
-        mimeType: "application/json",
-    },
-}, resourceServer));
-// --- Paid Business Logic ---
+    }, resourceServer));
+}
+else {
+    app.use(["/assess-risk", "/check-token-security", "/simulate-transaction"], paidConfigError);
+}
 app.get("/assess-risk", async (req, res) => {
     try {
         const { action, tokenIn, tokenOut, amount, toAddress, walletAddress } = req.query;
@@ -164,21 +210,18 @@ app.get("/assess-risk", async (req, res) => {
         res.json(result);
     }
     catch (e) {
-        res.status(400).json({ error: e.message });
+        res.status(400).json(fail("BAD_REQUEST", e.message, false, "x402_server"));
     }
 });
 app.get("/check-token-security", async (req, res) => {
     try {
         const { tokenAddress, chainId } = req.query;
-        const cid = chainId ? parseInt(chainId, 10) : 688689;
-        const result = await handleCheckTokenSecurity({
-            tokenAddress: tokenAddress,
-            chainId: cid,
-        });
+        const cid = chainId ? parseInt(chainId, 10) : CHAIN_ID;
+        const result = await handleCheckTokenSecurity({ tokenAddress: tokenAddress, chainId: cid });
         res.json(result);
     }
     catch (e) {
-        res.status(400).json({ error: e.message });
+        res.status(400).json(fail("BAD_REQUEST", e.message, false, "x402_server"));
     }
 });
 app.get("/simulate-transaction", async (req, res) => {
@@ -195,25 +238,16 @@ app.get("/simulate-transaction", async (req, res) => {
         res.json(result);
     }
     catch (e) {
-        res.status(400).json({ error: e.message });
+        res.status(400).json(fail("BAD_REQUEST", e.message, false, "x402_server"));
     }
 });
-// --- Free endpoints ---
-app.get("/health", (req, res) => {
-    res.json({
-        status: "ok",
-        service: "SafeHands x402 Resource Server",
-        network: "Pharos Atlantic Testnet (Chain ID 688689)",
-        receiver: payToAddress,
-        asset: usdcAddress,
-    });
-});
-// Start Server
 app.listen(port, () => {
     console.log(`✅ SafeHands x402 Server listening on http://localhost:${port}`);
-    console.log(`📡 Network: eip155:688689 (Pharos Atlantic Testnet)`);
-    console.log(`💰 Paid Recipient Address: ${payToAddress}`);
-    console.log(`🪙 USDC Contract Address: ${usdcAddress}`);
-    console.log(`🚪 Gated APIs: /assess-risk, /check-token-security, /simulate-transaction`);
+    console.log(`📡 Network: eip155:${CHAIN_ID} (Pharos ${PHAROS_ENVIRONMENT})`);
+    console.log(`💰 Paid endpoints configured: ${isPaidConfigured ? "yes" : "no"}`);
+    if (receiverAddress)
+        console.log(`💰 Paid recipient address: ${receiverAddress}`);
+    console.log(`🪙 x402 payment token: ${usdcAddress}`);
+    console.log(`🆓 Free APIs: /supported, /health`);
 });
 //# sourceMappingURL=x402Server.js.map

package/dist/x402Server.js.map

@@ -1 +1 @@
-{"version":3,"file":"x402Server.js","sourceRoot":"","sources":["../src/x402Server.ts"],"names":[],"mappings":"AAAA,2EAA2E;AAC3E,0EAA0E;AAC1E,2EAA2E;AAE3E,OAAO,OAAO,MAAM,SAAS,CAAC;AAC9B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,YAAY,EAAE,MAAM,IAAI,CAAC;AAClC,OAAO,EAAE,WAAW,EAAE,kBAAkB,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,MAAM,CAAC;AAC5E,OAAO,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,cAAc,IAAI,yBAAyB,EAAE,MAAM,6BAA6B,CAAC;AAC1F,OAAO,EAAE,cAAc,IAAI,oBAAoB,EAAE,MAAM,wBAAwB,CAAC;AAChF,OAAO,EAAE,qBAAqB,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAEtE,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AACzD,OAAO,EAAE,wBAAwB,EAAE,MAAM,+BAA+B,CAAC;AACzE,OAAO,EAAE,yBAAyB,EAAE,MAAM,gCAAgC,CAAC;AAC3E,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,6BAA6B;AAC7B,SAAS,OAAO;IACd,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,CAAC,CAAC;QAC7D,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;YACnB,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YACtC,MAAM,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YACzB,IAAI,CAAC,KAAK,CAAC,CAAC;gBAAE,SAAS;YACvB,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAC5D,CAAC;IACH,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC,CAAA,CAAC;AAChB,CAAC;AACD,OAAO,EAAE,CAAC;AAEV,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC;AACnC,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;AAE1C,IAAI,CAAC,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC;IACnB,OAAO,CAAC,KAAK,CAAC,mFAAmF,CAAC,CAAC;IACnG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,MAAM,YAAY,GAAG,MAAuB,CAAC;AAC7C,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,MAAM,EAAE,EAAE,CAAC,CAAC;AAC3D,MAAM,MAAM,GAAG,uCAAuC,CAAC;AACvD,MAAM,WAAW,GAAG,YAAY,CAAC;AAEjC,gCAAgC;AAChC,MAAM,MAAM,GAAG,WAAW,CAAC;IACzB,EAAE,EAAE,OAAO;IACX,IAAI,EAAE,iBAAiB;IACvB,cAAc,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,EAAE;IAC9D,OAAO,EAAE,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,EAAE,EAAE;IACxC,OAAO,EAAE,IAAI;CACd,CAAC,CAAC;AAEH,wCAAwC;AACxC,MAAM,OAAO,GAAG,mBAAmB,CAAC,EAAmB,CAAC,CAAC;AACzD,MAAM,YAAY,GAAG,kBAAkB,CAAC;IACtC,OAAO;IACP,KAAK,EAAE,MAAM;IACb,SAAS,EAAE,IAAI,CAAC,SAAS,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;CAChD,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;AAEzB,MAAM,SAAS,GAAG,sBAAsB,CAAC;IACvC,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC;IAC7C,YAAY,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,YAAY,CAAC,EAAE,GAAG,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE,EAAE,CAAC;IACrF,eAAe,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,eAAe,CAAC,IAAW,CAAC;IACpE,aAAa,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,aAAa,CAAC,EAAE,GAAG,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE,EAAE,CAAC;IACvF,eAAe,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,eAAe,CAAC,IAAI,CAAC;IAC7D,yBAAyB,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,yBAAyB,CAAC,IAAI,CAAC;CAClF,CAAC,CAAC;AAEH,iCAAiC;AACjC,MAAM,WAAW,GAAG,IAAI,eAAe,EAAE,CAAC;AAC1C,WAAW,CAAC,QAAQ,CAAC,eAAe,EAAE,IAAI,yBAAyB,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,CAAC;AAEpF,qCAAqC;AACrC,MAAM,iBAAiB,GAAG,IAAI,qBAAqB,CAAC,EAAE,GAAG,EAAE,oBAAoB,IAAI,EAAE,EAAE,CAAC,CAAC;AACzF,MAAM,cAAc,GAAG,IAAI,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;AACjE,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;AAE7C,SAAS,CAAC,mBAAmB,CAAC,KAAK,EAAE,MAAc,EAAE,OAAe,EAAE,EAAE;IACtE,IAAI,OAAO,KAAK,eAAe,EAAE,CAAC;QAChC,OAAO;YACL,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,gCAAgC;YAC7E,KAAK,EAAE,WAAW;YAClB,KAAK,EAAE;gBACL,KAAK,EAAE,MAAM;gBACb,IAAI,EAAE,MAAM;gBACZ,OAAO,EAAE,GAAG;aACb;SACF,CAAC;IACJ,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC,CAAC,CAAC;AACH,cAAc,CAAC,QAAQ,CAAC,eAAe,EAAE,SAAS,CAAC,CAAC;AAEpD,+BAA+B;AAC/B,MAAM,GAAG,GAAG,OAAO,EAAE,CAAC;AACtB,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;AAExB,gCAAgC;AAChC,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACrC,IAAI,CAAC;QACH,MAAM,EAAE,cAAc,EAAE,mBAAmB,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACzD,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,cAAc,EAAE,mBAAmB,CAAC,CAAC;QAC7E,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACrC,IAAI,CAAC;QACH,MAAM,EAAE,cAAc,EAAE,mBAAmB,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACzD,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,cAAc,EAAE,mBAAmB,CAAC,CAAC;QAC7E,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IACjC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,YAAY,EAAE,CAAC,CAAC;AACvC,CAAC,CAAC,CAAC;AAEH,sCAAsC;AACtC,GAAG,CAAC,GAAG,CACL,iBAAiB,CACf;IACE,kBAAkB,EAAE;QAClB,OAAO,EAAE;YACP,MAAM,EAAE,OAAO;YACf,KAAK,EAAE,OAAO,EAAE,sBAAsB;YACtC,OAAO,EAAE,eAAe;YACxB,KAAK,EAAE,YAAY;SACpB;QACD,WAAW,EAAE,sCAAsC;QACnD,QAAQ,EAAE,kBAAkB;KAC7B;IACD,2BAA2B,EAAE;QAC3B,OAAO,EAAE;YACP,MAAM,EAAE,OAAO;YACf,KAAK,EAAE,OAAO,EAAE,sBAAsB;YACtC,OAAO,EAAE,eAAe;YACxB,KAAK,EAAE,YAAY;SACpB;QACD,WAAW,EAAE,qDAAqD;QAClE,QAAQ,EAAE,kBAAkB;KAC7B;IACD,2BAA2B,EAAE;QAC3B,OAAO,EAAE;YACP,MAAM,EAAE,OAAO;YACf,KAAK,EAAE,OAAO,EAAE,sBAAsB;YACtC,OAAO,EAAE,eAAe;YACxB,KAAK,EAAE,YAAY;SACpB;QACD,WAAW,EAAE,+DAA+D;QAC5E,QAAQ,EAAE,kBAAkB;KAC7B;CACF,EACD,cAAc,CACf,CACF,CAAC;AAEF,8BAA8B;AAC9B,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACzC,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAClF,MAAM,MAAM,GAAG,MAAM,gBAAgB,CAAC;YACpC,MAAM,EAAE,MAAa;YACrB,OAAO,EAAE,OAAiB;YAC1B,QAAQ,EAAE,QAAkB;YAC5B,MAAM,EAAE,MAAgB;YACxB,SAAS,EAAE,SAAmB;YAC9B,aAAa,EAAE,aAAuB;SACvC,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IAClD,IAAI,CAAC;QACH,MAAM,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAC5C,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAiB,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;QAC/D,MAAM,MAAM,GAAG,MAAM,wBAAwB,CAAC;YAC5C,YAAY,EAAE,YAAsB;YACpC,OAAO,EAAE,GAAG;SACb,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IAClD,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAClF,MAAM,MAAM,GAAG,MAAM,yBAAyB,CAAC;YAC7C,MAAM,EAAE,MAAa;YACrB,OAAO,EAAE,OAAiB;YAC1B,QAAQ,EAAE,QAAkB;YAC5B,MAAM,EAAE,MAAgB;YACxB,SAAS,EAAE,SAAmB;YAC9B,aAAa,EAAE,aAAuB;SACvC,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,yBAAyB;AACzB,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IAC9B,GAAG,CAAC,IAAI,CAAC;QACP,MAAM,EAAE,IAAI;QACZ,OAAO,EAAE,gCAAgC;QACzC,OAAO,EAAE,2CAA2C;QACpD,QAAQ,EAAE,YAAY;QACtB,KAAK,EAAE,WAAW;KACnB,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,eAAe;AACf,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,EAAE;IACpB,OAAO,CAAC,GAAG,CAAC,yDAAyD,IAAI,EAAE,CAAC,CAAC;IAC7E,OAAO,CAAC,GAAG,CAAC,qDAAqD,CAAC,CAAC;IACnE,OAAO,CAAC,GAAG,CAAC,8BAA8B,YAAY,EAAE,CAAC,CAAC;IAC1D,OAAO,CAAC,GAAG,CAAC,6BAA6B,WAAW,EAAE,CAAC,CAAC;IACxD,OAAO,CAAC,GAAG,CAAC,2EAA2E,CAAC,CAAC;AAC3F,CAAC,CAAC,CAAC"}
+{"version":3,"file":"x402Server.js","sourceRoot":"","sources":["../src/x402Server.ts"],"names":[],"mappings":"AAAA,2EAA2E;AAC3E,2EAA2E;AAC3E,4EAA4E;AAC5E,wCAAwC;AACxC,2EAA2E;AAE3E,OAAO,OAAO,MAAM,SAAS,CAAC;AAC9B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,YAAY,EAAE,MAAM,IAAI,CAAC;AAClC,OAAO,EAAE,WAAW,EAAE,kBAAkB,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,MAAM,CAAC;AAC5E,OAAO,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,cAAc,IAAI,yBAAyB,EAAE,MAAM,6BAA6B,CAAC;AAC1F,OAAO,EAAE,cAAc,IAAI,oBAAoB,EAAE,MAAM,wBAAwB,CAAC;AAChF,OAAO,EAAE,qBAAqB,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAEtE,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC;AACzD,OAAO,EAAE,wBAAwB,EAAE,MAAM,+BAA+B,CAAC;AACzE,OAAO,EAAE,yBAAyB,EAAE,MAAM,gCAAgC,CAAC;AAC3E,OAAO,EAAE,QAAQ,EAAE,kBAAkB,EAAE,OAAO,EAAE,0BAA0B,EAAE,MAAM,oBAAoB,CAAC;AACvG,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,uBAAuB,CAAC;AAEjD,SAAS,OAAO;IACd,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,CAAC,CAAC;QAC7D,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;YACnB,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YACtC,MAAM,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YACzB,IAAI,CAAC,KAAK,CAAC,CAAC;gBAAE,SAAS;YACvB,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;YACjC,IAAI,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,SAAS;gBAAE,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAC/E,CAAC;IACH,CAAC;IAAC,MAAM,CAAC,CAAA,CAAC;AACZ,CAAC;AACD,OAAO,EAAE,CAAC;AAEV,MAAM,eAAe,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,EAAE,CAAkB,CAAC;AACvG,MAAM,qBAAqB,GAAG,OAAO,CAAC,GAAG,CAAC,4BAA4B,IAAI,EAAE,CAAC;AAC7E,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,MAAM,EAAE,EAAE,CAAC,CAAC;AAC3F,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,OAAO,CAAC;AACrD,MAAM,WAAW,GAAG,0BAA0B,CAAC;AAC/C,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,OAAO,CAAC;AACzD,MAAM,gBAAgB,GAAG,OAAO,CAAC,eAAe,IAAI,qBAAqB,CAAC,CAAC;AAE3E,MAAM,MAAM,GAAG,WAAW,CAAC;IACzB,EAAE,EAAE,QAAQ;IACZ,IAAI,EAAE,UAAU,kBAAkB,EAAE;IACpC,cAAc,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,EAAE;IAC9D,OAAO,EAAE,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,EAAE,EAAE;IACxC,OAAO,EAAE,IAAI;CACd,CAAC,CAAC;AAEH,MAAM,GAAG,GAAG,OAAO,EAAE,CAAC;AACtB,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;AAC5B,GAAG,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;IACzB,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;IACvB,GAAG,CAAC,SAAS,CAAC,wBAAwB,EAAE,SAAS,CAAC,CAAC;IACnD,GAAG,CAAC,SAAS,CAAC,iBAAiB,EAAE,aAAa,CAAC,CAAC;IAChD,IAAI,EAAE,CAAC;AACT,CAAC,CAAC,CAAC;AACH,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC;AAEzC,MAAM,iBAAiB,GAAG,MAAM,CAAC;AACjC,MAAM,YAAY,GAAG,GAAG,CAAC;AACzB,MAAM,gBAAgB,GAAG,IAAI,GAAG,EAA8C,CAAC;AAC/E,GAAG,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;IACzB,MAAM,GAAG,GAAG,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;IAChC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,MAAM,MAAM,GAAG,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACzC,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,OAAO,IAAI,GAAG,EAAE,CAAC;QACrC,gBAAgB,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,iBAAiB,EAAE,CAAC,CAAC;QAC1E,OAAO,IAAI,EAAE,CAAC;IAChB,CAAC;IACD,MAAM,CAAC,KAAK,IAAI,CAAC,CAAC;IAClB,IAAI,MAAM,CAAC,KAAK,GAAG,YAAY,EAAE,CAAC;QAChC,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,mBAAmB,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC;IAC9F,CAAC;IACD,OAAO,IAAI,EAAE,CAAC;AAChB,CAAC,CAAC,CAAC;AAEH,IAAI,WAAW,GAA2B,IAAI,CAAC;AAC/C,IAAI,cAAc,GAA8B,IAAI,CAAC;AAErD,IAAI,gBAAgB,EAAE,CAAC;IACrB,MAAM,OAAO,GAAG,mBAAmB,CAAC,qBAAsC,CAAC,CAAC;IAC5E,MAAM,YAAY,GAAG,kBAAkB,CAAC;QACtC,OAAO;QACP,KAAK,EAAE,MAAM;QACb,SAAS,EAAE,IAAI,CAAC,SAAS,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;KAChD,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IAEzB,MAAM,SAAS,GAAG,sBAAsB,CAAC;QACvC,OAAO,EAAE,OAAO,CAAC,OAAO;QACxB,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC;QAC7C,YAAY,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,YAAY,CAAC,EAAE,GAAG,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE,EAAE,CAAC;QACrF,eAAe,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,eAAe,CAAC,IAAW,CAAC;QACpE,aAAa,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,aAAa,CAAC,EAAE,GAAG,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE,EAAE,CAAC;QACvF,eAAe,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,eAAe,CAAC,IAAI,CAAC;QAC7D,yBAAyB,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,yBAAyB,CAAC,IAAI,CAAC;KAClF,CAAC,CAAC;IAEH,WAAW,GAAG,IAAI,eAAe,EAAE,CAAC;IACpC,WAAW,CAAC,QAAQ,CAAC,UAAU,QAAQ,EAAE,EAAE,IAAI,yBAAyB,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,CAAC;IAEzF,MAAM,iBAAiB,GAAG,IAAI,qBAAqB,CAAC,EAAE,GAAG,EAAE,oBAAoB,IAAI,EAAE,EAAE,CAAC,CAAC;IACzF,cAAc,GAAG,IAAI,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;IAC3D,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC7C,SAAS,CAAC,mBAAmB,CAAC,KAAK,EAAE,MAAc,EAAE,OAAe,EAAE,EAAE;QACtE,IAAI,OAAO,KAAK,UAAU,QAAQ,EAAE,EAAE,CAAC;YACrC,OAAO;gBACL,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,QAAQ,EAAE;gBAC3C,KAAK,EAAE,WAAW;gBAClB,KAAK,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE;aACrD,CAAC;QACJ,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC,CAAC,CAAC;IACH,cAAc,CAAC,QAAQ,CAAC,UAAU,QAAQ,EAAE,EAAE,SAAS,CAAC,CAAC;AAC3D,CAAC;AAED,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACrC,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,qCAAqC,EAAE,oLAAoL,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC;IACvR,CAAC;IACD,IAAI,CAAC;QACH,MAAM,EAAE,cAAc,EAAE,mBAAmB,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACzD,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,cAAc,EAAE,mBAAmB,CAAC,CAAC;QAC7E,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,qBAAqB,EAAE,CAAC,CAAC,OAAO,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC;IACpF,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACrC,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,qCAAqC,EAAE,oLAAoL,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC;IACvR,CAAC;IACD,IAAI,CAAC;QACH,MAAM,EAAE,cAAc,EAAE,mBAAmB,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACzD,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,cAAc,EAAE,mBAAmB,CAAC,CAAC;QAC7E,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,qBAAqB,EAAE,CAAC,CAAC,OAAO,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC;IACpF,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;IAClC,IAAI,WAAW;QAAE,OAAO,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,YAAY,EAAE,CAAC,CAAC;IAC7D,OAAO,GAAG,CAAC,IAAI,CACb,EAAE,CAAC;QACD,UAAU,EAAE,KAAK;QACjB,OAAO,EAAE,UAAU,QAAQ,EAAE;QAC7B,MAAM,EAAE,OAAO;QACf,KAAK,EAAE,WAAW;QAClB,SAAS;QACT,aAAa,EAAE,CAAC,gBAAgB,EAAE,aAAa,CAAC;QAChD,aAAa,EAAE,CAAC,kBAAkB,EAAE,2BAA2B,EAAE,2BAA2B,CAAC;QAC7F,WAAW,EAAE;YACX,IAAI,EAAE,qCAAqC;YAC3C,OAAO,EAAE,wGAAwG;SAClH;KACF,CAAC,CACH,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;IAC/B,GAAG,CAAC,IAAI,CACN,EAAE,CAAC;QACD,MAAM,EAAE,IAAI;QACZ,OAAO,EAAE,gCAAgC;QACzC,OAAO,EAAE,UAAU,kBAAkB,cAAc,QAAQ,GAAG;QAC9D,WAAW,EAAE,kBAAkB;QAC/B,SAAS,EAAE,KAAK;QAChB,kBAAkB,EAAE,OAAO,CAAC,eAAe,CAAC;QAC5C,uBAAuB,EAAE,gBAAgB;QACzC,QAAQ,EAAE,eAAe,IAAI,IAAI;QACjC,KAAK,EAAE,WAAW;QAClB,aAAa,EAAE,CAAC,YAAY,EAAE,SAAS,CAAC;KACzC,CAAC,CACH,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,SAAS,eAAe,CAAC,GAAoB,EAAE,GAAqB,EAAE,IAA0B;IAC9F,IAAI,gBAAgB;QAAE,OAAO,IAAI,EAAE,CAAC;IACpC,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CACzB,IAAI,CACF,qCAAqC,EACrC,kIAAkI,EAClI,KAAK,EACL,aAAa,CACd,CACF,CAAC;AACJ,CAAC;AAED,IAAI,gBAAgB,IAAI,cAAc,EAAE,CAAC;IACvC,GAAG,CAAC,GAAG,CACL,iBAAiB,CACf;QACE,kBAAkB,EAAE;YAClB,OAAO,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,QAAQ,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE;YACrG,WAAW,EAAE,iCAAiC,SAAS,GAAG;YAC1D,QAAQ,EAAE,kBAAkB;SAC7B;QACD,2BAA2B,EAAE;YAC3B,OAAO,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,QAAQ,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE;YACrG,WAAW,EAAE,gDAAgD,SAAS,GAAG;YACzE,QAAQ,EAAE,kBAAkB;SAC7B;QACD,2BAA2B,EAAE;YAC3B,OAAO,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,QAAQ,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE;YACrG,WAAW,EAAE,0DAA0D,SAAS,GAAG;YACnF,QAAQ,EAAE,kBAAkB;SAC7B;KACF,EACD,cAAc,CACf,CACF,CAAC;AACJ,CAAC;KAAM,CAAC;IACN,GAAG,CAAC,GAAG,CAAC,CAAC,cAAc,EAAE,uBAAuB,EAAE,uBAAuB,CAAC,EAAE,eAAe,CAAC,CAAC;AAC/F,CAAC;AAED,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IACzC,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAClF,MAAM,MAAM,GAAG,MAAM,gBAAgB,CAAC;YACpC,MAAM,EAAE,MAAa;YACrB,OAAO,EAAE,OAAiB;YAC1B,QAAQ,EAAE,QAAkB;YAC5B,MAAM,EAAE,MAAgB;YACxB,SAAS,EAAE,SAAmB;YAC9B,aAAa,EAAE,aAAuB;SACvC,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC,CAAC,OAAO,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC;IAC7E,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IAClD,IAAI,CAAC;QACH,MAAM,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAC5C,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAiB,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;QACjE,MAAM,MAAM,GAAG,MAAM,wBAAwB,CAAC,EAAE,YAAY,EAAE,YAAsB,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC;QACtG,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC,CAAC,OAAO,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC;IAC7E,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;IAClD,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC;QAClF,MAAM,MAAM,GAAG,MAAM,yBAAyB,CAAC;YAC7C,MAAM,EAAE,MAAa;YACrB,OAAO,EAAE,OAAiB;YAC1B,QAAQ,EAAE,QAAkB;YAC5B,MAAM,EAAE,MAAgB;YACxB,SAAS,EAAE,SAAmB;YAC9B,aAAa,EAAE,aAAuB;SACvC,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC,CAAC,OAAO,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC,CAAC;IAC7E,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,EAAE;IACpB,OAAO,CAAC,GAAG,CAAC,yDAAyD,IAAI,EAAE,CAAC,CAAC;IAC7E,OAAO,CAAC,GAAG,CAAC,sBAAsB,QAAQ,YAAY,kBAAkB,GAAG,CAAC,CAAC;IAC7E,OAAO,CAAC,GAAG,CAAC,iCAAiC,gBAAgB,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;IAChF,IAAI,eAAe;QAAE,OAAO,CAAC,GAAG,CAAC,8BAA8B,eAAe,EAAE,CAAC,CAAC;IAClF,OAAO,CAAC,GAAG,CAAC,0BAA0B,WAAW,EAAE,CAAC,CAAC;IACrD,OAAO,CAAC,GAAG,CAAC,mCAAmC,CAAC,CAAC;AACnD,CAAC,CAAC,CAAC"}

package/examples/pharos-skill-engine/SKILL.safehands.md

@@ -0,0 +1,85 @@
+---
+name: safehands-guard
+version: 1.0.0
+description: Transaction Safety Firewall / Guardrail Skill for Pharos Skill Engine on Pharos Atlantic Testnet.
+author: SZtch
+chain: pharos-atlantic-testnet
+tags: [pharos, skill-engine, guardrail, transaction-safety, x402, risk, ai-agent]
+---
+
+# SafeHands Guard
+
+SafeHands Guard is a **Transaction Safety Firewall / Guardrail Skill** for Pharos Skill Engine. It checks whether an AI agent action, token approval, x402 payment, swap, wallet action, or token interaction is safe before execution on Pharos Atlantic Testnet.
+
+Use this skill when the user wants to check whether an AI agent action, transaction, token approval, x402 payment, swap, wallet action, or token interaction is safe before execution on Pharos Atlantic Testnet.
+
+SafeHands complements Pharos Skill Engine. It is not a replacement for Pharos Skill Engine and should not be used as a generic Web3 toolbox.
+
+```text
+User intent
+→ SafeHands preflight
+→ ALLOW / WARN / BLOCK / REQUIRE_CONFIRMATION
+→ Pharos Skill Engine or MCP execution
+→ SafeHands risk report
+```
+
+## When to use this skill
+
+Use SafeHands when:
+
+- The user or agent is about to send PHRS, approve tokens, swap assets, call a custom contract, publish risk data, or pay an x402 endpoint.
+- The user asks if a token address is canonical, custom, non-registry, unknown, or invalid.
+- The user asks why an action was blocked, warned, or requires confirmation.
+- The agent needs a wallet readiness check before an on-chain or x402 action.
+
+## When not to use this skill
+
+Do not use SafeHands as the primary execution engine for generic Web3 tasks. If the user only wants to deploy a contract, write Solidity, or perform a normal Pharos Skill Engine tutorial flow, use the appropriate Pharos Skill Engine capability first and add SafeHands only as the preflight guardrail.
+
+## Pharos Atlantic Testnet context
+
+| Field | Value |
+|---|---|
+| Environment | `atlantic-testnet` |
+| Chain ID | `688689` |
+| Mainnet | `false` |
+| Default write tools | disabled |
+| Safety posture | testnet-only guardrail |
+
+## Capability Index
+
+| User wants to... | Capability | Reference |
+|---|---|---|
+| Check whether an on-chain action is safe before execution | SafeHands Preflight Check | references/safehands.md#safehands-preflight-check |
+| Check whether an x402 paid endpoint is safe to pay | SafeHands x402 Preflight | references/safehands.md#safehands-x402-preflight |
+| Check whether an agent wallet is ready to act | SafeHands Wallet Health | references/safehands.md#safehands-wallet-health |
+| Check whether a token address is canonical or custom | Token Registry Status | references/safehands.md#token-registry-status |
+| Explain why an action was blocked or warned | Explain Risk | references/safehands.md#explain-risk |
+| Generate a human-readable safety report | SafeHands Risk Report | references/safehands.md#safehands-risk-report |
+
+## Natural language examples
+
+- "Check if this token approval is safe before execution."
+- "Run SafeHands preflight before paying this x402 endpoint."
+- "Explain why this action was blocked."
+- "Check whether this token is canonical on Pharos Atlantic Testnet."
+- "Tell me if this wallet is ready for x402 payment."
+
+## Agent behavior guidelines
+
+1. Always run `safehands_preflight_check` before any write action.
+2. If `decision` is `BLOCK`, do not execute the action.
+3. If `decision` is `WARN`, explain the risk and ask for user confirmation.
+4. If `decision` is `REQUIRE_CONFIRMATION`, ask for explicit user approval.
+5. If `decision` is `REQUIRE_FUNDING`, ask the user to fund the testnet wallet before continuing.
+6. If `decision` is `REQUIRE_TOKEN_REVIEW`, ask the user to verify the exact token contract.
+7. If `decision` is `ALLOW`, the action may continue through Pharos Skill Engine or MCP execution.
+8. Never silently replace a user-provided token address.
+9. Never request or reveal private keys in the conversation.
+10. Treat SafeHands output as a safety decision, not a guarantee that external contracts are audited.
+
+## Safety disclaimer
+
+SafeHands is built for Pharos Atlantic Testnet hackathon workflows. It is not audited for mainnet production use. Write tools are disabled by default and require explicit configuration. Managed wallet storage is testnet-grade only.
+
+For command templates, parameters, output parsing, and error handling, see [`references/safehands.md`](references/safehands.md).

package/examples/pharos-skill-engine/assets/safehands/example-actions.json

@@ -0,0 +1,49 @@
+{
+  "safeApproval": {
+    "actionType": "approve_token",
+    "chainId": 688689,
+    "isMainnet": false,
+    "tokenAddress": "0xcfC8330f4BCAB529c625D12781b1C19466A9Fc8B",
+    "spender": "0x000000000000000000000000000000000000dEaD",
+    "approvalAmount": "1"
+  },
+  "blockedUnlimitedApproval": {
+    "actionType": "approve_token",
+    "chainId": 688689,
+    "isMainnet": false,
+    "tokenAddress": "0xcfC8330f4BCAB529c625D12781b1C19466A9Fc8B",
+    "spender": "0x000000000000000000000000000000000000dEaD",
+    "approvalAmount": "max"
+  },
+  "x402FreeEndpoint": {
+    "url": "https://example.com/health",
+    "paymentAmountUsdc": "0",
+    "probeEndpoint": false
+  },
+  "x402PaidEndpoint": {
+    "url": "https://example.com/assess-risk",
+    "paymentAmountUsdc": "0.001",
+    "probeEndpoint": false
+  },
+  "mainnetBlockedAction": {
+    "actionType": "send_payment",
+    "chainId": 1,
+    "isMainnet": true,
+    "recipient": "0x000000000000000000000000000000000000dEaD",
+    "amount": "0.001"
+  },
+  "chainIdMismatch": {
+    "actionType": "send_payment",
+    "chainId": 688688,
+    "isMainnet": false,
+    "recipient": "0x000000000000000000000000000000000000dEaD",
+    "amount": "0.001"
+  },
+  "customTokenWarning": {
+    "actionType": "execute_swap",
+    "chainId": 688689,
+    "isMainnet": false,
+    "tokenAddress": "0x000000000000000000000000000000000000dEaD",
+    "amount": "1"
+  }
+}

package/examples/pharos-skill-engine/assets/safehands/policy-defaults.json

@@ -0,0 +1,11 @@
+{
+  "environment": "atlantic-testnet",
+  "chainId": 688689,
+  "isMainnet": false,
+  "writeToolsEnabledByDefault": false,
+  "allowUnlimitedApprovalByDefault": false,
+  "maxTxAmountPHRS": "0.1",
+  "maxX402PaymentUSDC": "0.01",
+  "maxApprovalAmountUSDC": "10",
+  "maxDailySpendUSD": "10"
+}