shll-skills 5.3.0 → 5.3.2

package/.env.example

@@ -1,15 +1,9 @@
 # ── Required ─────────────────────────────────────────────
 # Private key for the operator/renter wallet.
-# ⚠️  This key is used for: init (rent+fund), swap, wrap, unwrap, transfer, config.
+# ⚠️  This key is used for: swap, wrap, unwrap, transfer, lend, redeem, config.
 # ⚠️  Use a DEDICATED wallet with limited funds. Never use your main wallet.
 RUNNER_PRIVATE_KEY=0x_YOUR_PRIVATE_KEY_HERE
 
 # ── Optional Overrides ───────────────────────────────────
 # BSC RPC endpoint (default: public BSC RPC)
-# RPC_URL=https://bsc-dataseed.binance.org
-
-# AgentNFA contract address (default: mainnet deployment)
-# NFA_ADDRESS=0x...
-
-# PolicyGuardV4 contract address (default: mainnet deployment)
-# GUARD_ADDRESS=0x...
+# SHLL_RPC=https://bsc-dataseed.binance.org

package/README.md

@@ -65,7 +65,7 @@ RUNNER_PRIVATE_KEY=0x... shll-mcp
 
 The server communicates via **stdio** using JSON-RPC 2.0. Send `tools/list` to discover all available tools.
 
-### Available MCP Tools (22 total)
+### Available MCP Tools (24 total)
 
 | Tool | Type | Description |
 |------|------|-------------|
@@ -91,6 +91,7 @@ The server communicates via **stdio** using JSON-RPC 2.0. Send `tools/list` to d
 | `generate_wallet` | Info | Create new operator wallet (address + key) |
 | `execute_calldata` | Write | Execute raw calldata from any source through PolicyGuard |
 | `execute_calldata_batch` | Write | Execute multiple calldata actions atomically through PolicyGuard |
+| `token_restriction` | Read | View token whitelist restriction status + whitelisted tokens |
 
 ---
 
@@ -172,9 +173,9 @@ AI Agent -> CLI/MCP -> PolicyClient.validate() -> PolicyGuard (on-chain) -> vaul
 | Variable | Required | Description |
 |----------|----------|-------------|
 | `RUNNER_PRIVATE_KEY` | Yes | Operator wallet key (~$1 BNB for gas) |
-| `SHLL_RPC` | No | BSC RPC URL override |
-| `SHLL_NFA` | No | AgentNFA contract override |
-| `SHLL_GUARD` | No | PolicyGuard contract override |
+| `SHLL_RPC` | No | BSC RPC URL override (default: public BSC RPC) |
+
+> **Note:** Contract addresses (AgentNFA, PolicyGuard) are hardcoded for security reasons. Override env vars are intentionally not supported to prevent supply-chain attacks.
 
 ## Links
 

package/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: shll-run
 description: Execute DeFi transactions on BSC via SHLL AgentNFA. The AI handles all commands — users only need to chat.
-version: 6.0.0
+version: 5.3.2
 author: SHLL Team
 website: https://shll.run
 twitter: https://twitter.com/shllrun
@@ -196,6 +196,8 @@ Supported lending tokens: **BNB, USDT, USDC, BUSD**
 | `shll-run config -k <ID> --tx-limit <BNB> --daily-limit <BNB> --cooldown <SEC>` | Tighten risk limits |
 | `shll-run status -k <ID>` | One-shot security overview (vault, operator, policies, activity) |
 | `shll-run history -k <ID> [--limit N]` | Recent transactions + policy rejections |
+| `shll-run my-agents` | List all agents where current operator key is authorized |
+| `shll-run token-restriction -k <ID>` | View token whitelist restriction status + whitelisted tokens |
 
 **Supported tokens:** BNB, USDC, USDT, WBNB, CAKE, ETH, BTCB, DAI, BUSD, or any 0x address.
 

package/dist/mcp.js

@@ -709,7 +709,7 @@ function policyRejectionHelp(reason, tokenId) {
 }
 var server = new import_mcp.McpServer({
   name: "shll-defi",
-  version: "5.2.0"
+  version: "5.3.2"
 });
 server.tool(
   "portfolio",
@@ -987,7 +987,7 @@ server.tool(
     const data = (0, import_viem2.encodeFunctionData)({ abi: VTOKEN_ABI, functionName: "redeemUnderlying", args: [amt] });
     const action = { target: vTokenAddr, value: 0n, data };
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, protocol: "venus", action: "redeem", token: symbol, amount }) }] };
   }
@@ -1052,7 +1052,7 @@ server.tool(
       action = { target: tokenInfo.address, value: 0n, data };
     }
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, token, amount, to: recipient }) }] };
   }
@@ -1139,7 +1139,7 @@ server.tool(
     const data = (0, import_viem2.encodeFunctionData)({ abi: WBNB_ABI, functionName: "deposit" });
     const action = { target: WBNB, value: amt, data };
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, message: `Wrapped ${amount} BNB \u2192 WBNB` }) }] };
   }
@@ -1160,7 +1160,7 @@ server.tool(
     const data = (0, import_viem2.encodeFunctionData)({ abi: WBNB_ABI, functionName: "withdraw", args: [amt] });
     const action = { target: WBNB, value: 0n, data };
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, message: `Unwrapped ${amount} WBNB \u2192 BNB` }) }] };
   }

package/dist/mcp.mjs

@@ -220,7 +220,7 @@ function policyRejectionHelp(reason, tokenId) {
 }
 var server = new McpServer({
   name: "shll-defi",
-  version: "5.2.0"
+  version: "5.3.2"
 });
 server.tool(
   "portfolio",
@@ -498,7 +498,7 @@ server.tool(
     const data = encodeFunctionData({ abi: VTOKEN_ABI, functionName: "redeemUnderlying", args: [amt] });
     const action = { target: vTokenAddr, value: 0n, data };
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, protocol: "venus", action: "redeem", token: symbol, amount }) }] };
   }
@@ -563,7 +563,7 @@ server.tool(
       action = { target: tokenInfo.address, value: 0n, data };
     }
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, token, amount, to: recipient }) }] };
   }
@@ -650,7 +650,7 @@ server.tool(
     const data = encodeFunctionData({ abi: WBNB_ABI, functionName: "deposit" });
     const action = { target: WBNB, value: amt, data };
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, message: `Wrapped ${amount} BNB \u2192 WBNB` }) }] };
   }
@@ -671,7 +671,7 @@ server.tool(
     const data = encodeFunctionData({ abi: WBNB_ABI, functionName: "withdraw", args: [amt] });
     const action = { target: WBNB, value: 0n, data };
     const sim = await policyClient.validate(tokenId, action);
-    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+    if (!sim.ok) return { content: [{ type: "text", text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
     const result = await policyClient.execute(tokenId, action, true);
     return { content: [{ type: "text", text: JSON.stringify({ status: "success", hash: result.hash, message: `Unwrapped ${amount} WBNB \u2192 BNB` }) }] };
   }

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "shll-skills",
-    "version": "5.3.0",
+    "version": "5.3.2",
     "description": "SHLL DeFi Agent — CLI + MCP Server for BSC",
     "main": "dist/index.js",
     "bin": {
@@ -24,4 +24,4 @@
         "tsup": "^8.0.2",
         "typescript": "^5.4.5"
     }
-}
+}

package/src/mcp.ts

@@ -266,7 +266,7 @@ function policyRejectionHelp(reason: string | undefined, tokenId: string): Recor
 
 const server = new McpServer({
     name: "shll-defi",
-    version: "5.2.0",
+    version: "5.3.2",
 });
 
 // ── Tool: portfolio ─────────────────────────────────────
@@ -575,7 +575,7 @@ server.tool(
         const action: Action = { target: vTokenAddr, value: 0n, data };
 
         const sim = await policyClient.validate(tokenId, action);
-        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
 
         const result = await policyClient.execute(tokenId, action, true);
         return { content: [{ type: "text" as const, text: JSON.stringify({ status: "success", hash: result.hash, protocol: "venus", action: "redeem", token: symbol, amount }) }] };
@@ -649,7 +649,7 @@ server.tool(
         }
 
         const sim = await policyClient.validate(tokenId, action);
-        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
 
         const result = await policyClient.execute(tokenId, action, true);
         return { content: [{ type: "text" as const, text: JSON.stringify({ status: "success", hash: result.hash, token, amount, to: recipient }) }] };
@@ -742,7 +742,7 @@ server.tool(
         const action: Action = { target: WBNB as Address, value: amt, data };
 
         const sim = await policyClient.validate(tokenId, action);
-        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
 
         const result = await policyClient.execute(tokenId, action, true);
         return { content: [{ type: "text" as const, text: JSON.stringify({ status: "success", hash: result.hash, message: `Wrapped ${amount} BNB → WBNB` }) }] };
@@ -766,7 +766,7 @@ server.tool(
         const action: Action = { target: WBNB as Address, value: 0n, data };
 
         const sim = await policyClient.validate(tokenId, action);
-        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason }) }] };
+        if (!sim.ok) return { content: [{ type: "text" as const, text: JSON.stringify({ status: "rejected", reason: sim.reason, ...policyRejectionHelp(sim.reason, token_id) }) }] };
 
         const result = await policyClient.execute(tokenId, action, true);
         return { content: [{ type: "text" as const, text: JSON.stringify({ status: "success", hash: result.hash, message: `Unwrapped ${amount} WBNB → BNB` }) }] };