shll-skills 6.0.3 → 6.0.5

package/README.md

@@ -1,4 +1,4 @@
-# SHLL Skills — AI Agent DeFi Toolkit on BSC
+# SHLL Skills — AI Agent DeFi Toolkit on BSC
 
 [![Website](https://img.shields.io/badge/Website-shll.run-blue)](https://shll.run) [![Twitter](https://img.shields.io/badge/Twitter-@shllrun-1DA1F2)](https://twitter.com/shllrun) [![npm](https://img.shields.io/npm/v/shll-skills)](https://www.npmjs.com/package/shll-skills) [![ClawHub](https://img.shields.io/badge/ClawHub-shll--skills-orange)](https://clawhub.ai/kledx/shll-skills)
 
@@ -85,7 +85,7 @@ The server communicates via **stdio** using JSON-RPC 2.0. Send `tools/list` to d
 | `status` | Read | One-shot readiness overview with blockers, warnings, and next actions |
 | `history` | Read | Recent transactions + policy rejections |
 | `token_restriction` | Read | View token whitelist restriction status + whitelisted tokens |
-| `listings` | Read | Available agent templates for rent |
+| `listings` | Read | Available agent templates for subscription |
 | `four_info` | Read | Query Four.meme bonding curve token info |
 | `swap` | Write | PancakeSwap V2/V3 auto-routing swap |
 | `wrap` | Write | BNB → WBNB in vault |
@@ -180,13 +180,13 @@ AI Agent -> CLI/MCP -> PolicyClient.validate() -> PolicyGuard (on-chain) -> vaul
 | | Owner Wallet | Operator Wallet (RUNNER_PRIVATE_KEY) |
 |---|---|---|
 | **Who holds it** | User (MetaMask/hardware) | AI agent |
-| **Use it for** | Rent or mint the agent, hold the Agent NFT, authorize operator | Pay gas and execute policy-limited actions |
+| **Use it for** | Subscribe or mint the agent, hold the Agent NFT, authorize operator | Pay gas and execute policy-limited actions |
 | **Can trade** | — | ✅ Within PolicyGuard limits |
 | **Can withdraw vault** | ✅ | ❌ |
 | **Can transfer NFT** | ✅ | ❌ |
 | **Risk if leaked** | 🚨 Full vault access | ⚠️ Limited to policy-allowed trades |
 
-Do not use the operator wallet to mint or rent the agent. Do not hold the Agent NFT in the operator wallet. Keep only a small BNB balance there for gas.
+Do not use the operator wallet to mint or subscribe to the agent. Do not hold the Agent NFT in the operator wallet. Keep only a small BNB balance there for gas.
 
 After setup, run `status` first. It returns a machine-friendly readiness object with:
 - `readiness.ready`

package/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: shll-run
 description: Execute DeFi transactions on BSC via SHLL AgentNFA. The AI handles all commands and users only need to chat.
-version: 6.0.2
+version: 6.0.4
 author: SHLL Team
 website: https://shll.run
 twitter: https://twitter.com/shllrun
@@ -31,6 +31,90 @@ credentials:
     The operator wallet is NOT the owner wallet, NOT the vault, NOT the Agent NFT holder.
 ---
 
+# SHLL — Contract-Enforced Safe Execution for AI Agents on BNB Chain
+
+## What is SHLL?
+
+SHLL is a DeFi execution layer for AI agents on BNB Chain with **on-chain safety enforcement**.
+Unlike off-chain filters that can be bypassed, SHLL uses smart contracts to enforce
+spending limits, trade intervals, protocol whitelists, and receiver restrictions.
+Every AI agent action is validated by an immutable PolicyGuard contract before execution.
+
+Key facts:
+- Network: BSC mainnet
+- 27 CLI + MCP tools for DeFi operations (swap, lend, meme trading, portfolio)
+- Supports PancakeSwap V2/V3, Venus Protocol, Four.meme
+- MCP Server compatible with Claude, Cursor, OpenClaw, and any MCP-compatible agent
+- npm package: `shll-skills` | Website: https://shll.run
+
+## Security Architecture
+
+```
+┌─────────────────────────────────────────────────────────────────┐
+│                        SHLL Architecture                        │
+│                                                                 │
+│  ┌──────────┐    ┌───────────────┐    ┌──────────────────────┐  │
+│  │  User     │    │  AI Agent     │    │  On-Chain Contracts  │  │
+│  │ (Owner)   │    │ (Operator)    │    │                      │  │
+│  │           │    │               │    │  ┌────────────────┐  │  │
+│  │ • Holds   │    │ • Executes    │    │  │  PolicyGuard   │  │  │
+│  │   Agent   │    │   trades via  │    │  │  (Validator)   │  │  │
+│  │   NFT     │    │   restricted  │    │  │                │  │  │
+│  │ • Sets    │    │   permissions │    │  │  4 Policy      │  │  │
+│  │   policy  │    │               │    │  │  Checks:       │  │  │
+│  │   rules   │───▶│ SHLL Skills   │───▶│  │                │  │  │
+│  │ • Full    │    │ (CLI / MCP)   │    │  │  1.Spending    │  │  │
+│  │   asset   │    │               │    │  │    Limit       │  │  │
+│  │   control │    │ Cannot:       │    │  │  2.Cooldown    │  │  │
+│  │           │    │ • Withdraw    │    │  │  3.DeFi Guard  │  │  │
+│  │           │    │   vault funds │    │  │  4.Receiver    │  │  │
+│  │           │    │ • Change      │    │  │    Guard       │  │  │
+│  │           │    │   policies    │    │  └───────┬────────┘  │  │
+│  │           │    │ • Transfer    │    │          │            │  │
+│  │           │    │   NFT         │    │   ┌─────▼──────┐     │  │
+│  │           │    │               │    │   │   Vault     │     │  │
+│  │           │    │               │    │   │ (Agent      │     │  │
+│  │           │    │               │    │   │  Account)   │     │  │
+│  │           │    │               │    │   │             │     │  │
+│  │           │    │               │    │   │ Holds funds │     │  │
+│  └──────────┘    └───────────────┘    │   └─────────────┘     │  │
+│                                       └──────────────────────┘  │
+│  Dual-Wallet Isolation:                                         │
+│  • Owner wallet = asset control (human)                         │
+│  • Operator wallet = restricted execution (AI)                  │
+│  • Even if operator key leaks, PolicyGuard still limits actions │
+└─────────────────────────────────────────────────────────────────┘
+```
+
+## 4-Policy PolicyGuard Stack
+
+All policies are enforced ON-CHAIN by smart contract. They cannot be bypassed by the AI.
+
+| Policy | Contract | What It Does |
+|--------|----------|-------------|
+| SpendingLimitV2 | On-chain | Per-transaction and daily spending caps in BNB |
+| CooldownPolicy | On-chain | Minimum time gap between consecutive trades |
+| DeFiGuardV2 | On-chain | Whitelist of approved DeFi protocols and functions |
+| ReceiverGuardV2 | On-chain | Only approved receiver addresses can receive funds |
+
+When a policy rejects an action:
+- The transaction is NOT executed
+- The vault funds remain SAFE
+- The rejection reason is returned from the smart contract
+- The rejection is logged and auditable
+- The `enforcement` field in the response is always `on-chain`
+
+## Why On-Chain Enforcement Matters
+
+Most AI agent platforms use off-chain safety filters:
+- Off-chain: AI or backend decides → **can be bypassed** by prompt injection, API manipulation, or code bugs
+- On-chain (SHLL): Smart contract decides → **cannot be bypassed** — the blockchain enforces the rules
+
+PolicyGuard contract: `0x25d17eA0e3Bcb8CA08a2BFE917E817AFc05dbBB3`
+Verify on BscScan: https://bscscan.com/address/0x25d17eA0e3Bcb8CA08a2BFE917E817AFc05dbBB3
+
+---
+
 # SHLL Skill Usage Guide
 
 This file defines how an AI agent should use `shll-run` and `shll-mcp` safely.
@@ -68,7 +152,7 @@ On-chain guardrails:
 - Spending limits, cooldowns, whitelist rules, and protocol rules are enforced on-chain.
 - Raw calldata is blocked if the recipient cannot be decoded safely.
 
-## Current Critical Constraints (v6.0.2)
+## Current Critical Constraints (v6.0.4)
 
 1. `init` command is disabled. Do not use it.
 2. Raw calldata remains high risk; rely on strict recipient safety checks.
@@ -112,8 +196,8 @@ export SHLL_RPC="https://your-private-bsc-rpc.example.com"
 - Recommend the listing with `recommended=true` by default unless the user explicitly wants a specialized template.
 - Run `shll-run setup-guide -l <listingId> -d <days>`.
 - Send `setupUrl` plus the wallet-role explanation.
-- Explicitly warn: do not use the operator wallet to mint, rent, or hold the Agent NFT.
-- Explicitly warn: use the owner wallet in the browser for rental or mint and for operator authorization.
+- Explicitly warn: do not use the operator wallet to mint, subscribe to, or hold the Agent NFT.
+- Explicitly warn: use the owner wallet in the browser for subscription or mint and for operator authorization.
 
 4. User returns with token ID:
 - Run `shll-run status -k <tokenId>`.
@@ -230,7 +314,7 @@ When the user provides a token address:
 2. `NOT authorized for token-id`
 - Operator wallet is not authorized; use setup guide or set operator in console.
 
-3. `rental has EXPIRED` or `operator authorization has EXPIRED`
+3. `subscription has EXPIRED` or `operator authorization has EXPIRED`
 - Renew subscription or authorization first.
 
 4. `status: error` with `errorCode: POLICY_REJECTED`
@@ -253,7 +337,7 @@ When the user provides a token address:
 1. Never describe `generate-wallet` as if it were the user's main wallet.
 2. Always call it the operator wallet or AI hot wallet.
 3. Always explain the dual-wallet model the first time setup is discussed.
-4. Always warn that the operator wallet must not be used to mint, rent, or hold the Agent NFT.
+4. Always warn that the operator wallet must not be used to mint, subscribe to, or hold the Agent NFT.
 5. Do not ask the user to manually set `RUNNER_PRIVATE_KEY` in OpenClaw; AI should do it.
 6. After setup is complete and the user provides a token-id, run readiness checks automatically before asking the user what to do next.
 7. When multiple listings are available, recommend one by default and explain why.

package/dist/{chunk-TH3ENDDM.mjs → chunk-RUCWJDVB.mjs}

@@ -6,8 +6,8 @@ var MEV_PROTECTED_RPC = "https://bscrpc.pancakeswap.finance";
 var DEFAULT_LISTING_MANAGER = "0x1f9CE85bD0FF75acc3D92eB79f1Eb472f0865071";
 var DEFAULT_LISTING_ID = "0x64083b44e38db02749e6e16bf84ce6c19146cc42a108e53324e11f250b15a0b7";
 var DEFAULT_INDEXER = "https://indexer-mainnet.shll.run";
-var SKILL_VERSION = "6.0.2";
-var BINDINGS_UPDATED_AT = "2026-03-06";
+var SKILL_VERSION = "6.0.4";
+var BINDINGS_UPDATED_AT = "2026-03-07";
 var PANCAKE_V2_ROUTER = "0x10ED43C718714eb63d5aA57B78B54704E256024E";
 var PANCAKE_V3_SMART_ROUTER = "0x13f4EA83D0bd40E75C8222255bc855a974568Dd4";
 var V3_QUOTER = "0xB048Bbc1Ee6b733FFfCFb9e9CeF7375518e25997";
@@ -855,8 +855,8 @@ async function checkAccess(rpcUrl, tokenId, existingPublicClient) {
   if (now > userExpires) {
     return {
       blocked: true,
-      errorType: "rental_expired",
-      message: `Agent token-id ${tokenId} rental has EXPIRED (expired at ${new Date(Number(userExpires) * 1e3).toISOString()}).`,
+      errorType: "subscription_expired",
+      message: `Agent token-id ${tokenId} subscription has EXPIRED (expired at ${new Date(Number(userExpires) * 1e3).toISOString()}).`,
       details: { expiredAt: new Date(Number(userExpires) * 1e3).toISOString(), action: "renew" }
     };
   }
@@ -885,7 +885,7 @@ async function checkAccess(rpcUrl, tokenId, existingPublicClient) {
         consoleUrl: agentConsoleUrl(tokenId),
         howToFix: [
           `1. Use 'setup_guide' command to generate an OperatorPermit for this wallet`,
-          `2. Renter (${renter}) can call setOperator(${tokenId}, ${account.address}, <expiry>) on AgentNFA`,
+          `2. Subscriber (${renter}) can call setOperator(${tokenId}, ${account.address}, <expiry>) on AgentNFA`,
           `3. Go to ${agentConsoleUrl(tokenId)} to set operator`,
           `4. Use the correct RUNNER_PRIVATE_KEY for operator ${operator}`
         ]
@@ -1217,7 +1217,7 @@ async function ensureAccess(tokenId, rpcUrl, publicClient) {
       "ACCESS_DENIED",
       access.message || `Access denied for token_id ${tokenId.toString()}`,
       access.details,
-      "Check operator permissions and rental status"
+      "Check operator permissions and subscription status"
     );
   }
 }
@@ -1239,6 +1239,9 @@ async function validateActionsOrThrow(policyClient, tokenId, actions) {
         "POLICY_REJECTED",
         "Policy rejected transaction",
         {
+          enforcement: "on-chain",
+          policyGuardContract: DEFAULT_GUARD,
+          verifyOnChain: `https://bscscan.com/address/${DEFAULT_GUARD}`,
           failedActionIndex: index,
           failedActionTarget: action.target,
           failedActionSelector: getActionSelector(action),
@@ -1327,7 +1330,7 @@ async function getPortfolio(tokenIdRaw, rpcUrl) {
   ]);
   const now = BigInt(Math.floor(Date.now() / 1e3));
   let accessStatus = "Active";
-  if (now > userExpires) accessStatus = "Rental Expired";
+  if (now > userExpires) accessStatus = "Subscription Expired";
   else if (now > operatorExpires) accessStatus = "Operator Auth Expired";
   else if (operator.toLowerCase() !== account.address.toLowerCase()) accessStatus = "Operator Mismatch";
   return {
@@ -2099,14 +2102,14 @@ async function buildSetupGuide(listingId, days = 7) {
     walletModel: {
       type: "dual_wallet",
       ownerWallet: {
-        purpose: "Rent or mint the agent, own the Agent NFT, authorize the operator, and hold primary assets.",
-        useFor: ["renting or minting the agent", "holding ownership", "authorizing the operator"]
+        purpose: "Subscribe or mint the agent, own the Agent NFT, authorize the operator, and hold primary assets.",
+        useFor: ["subscribing to or minting the agent", "holding ownership", "authorizing the operator"]
       },
       operatorWallet: {
         purpose: "AI-only hot wallet used for gas and policy-limited execution.",
         useFor: ["paying gas", "executing policy-limited trades"],
         doNotUseFor: [
-          "minting or renting the agent",
+          "minting or subscribing to the agent",
           "holding the Agent NFT",
           "using as your main asset wallet"
         ],
@@ -2114,8 +2117,8 @@ async function buildSetupGuide(listingId, days = 7) {
       }
     },
     criticalWarnings: [
-      "Do not use the operator wallet to mint, rent, or hold the Agent NFT.",
-      "Use your owner wallet in the browser to complete rental and operator authorization.",
+      "Do not use the operator wallet to mint, subscribe to, or hold the Agent NFT.",
+      "Use your owner wallet in the browser to complete subscription and operator authorization.",
       "Keep only a small BNB balance in the operator wallet for gas."
     ],
     listingSelection: {
@@ -2150,7 +2153,7 @@ function generateOperatorWallet() {
     securityModel: "dual_wallet",
     safeIfLeaked: "This is not the owner wallet. A leak does not grant unrestricted vault withdrawal because owner permissions stay on the owner wallet and PolicyGuard still limits operator actions.",
     doNotUseFor: [
-      "minting or renting the agent",
+      "minting or subscribing to the agent",
       "holding the Agent NFT",
       "holding your main assets"
     ],
@@ -2296,7 +2299,7 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
   const opBalance = runnerAccount ? await publicClient.getBalance({ address: runnerAccount.address }) : null;
   const access = await checkAccess(rpcUrl, tokenId, publicClient);
   const now = BigInt(Math.floor(Date.now() / 1e3));
-  const rentalActive = now <= userExpires;
+  const subscriptionActive = now <= userExpires;
   const operatorAuthorizationActive = now <= operatorExpires;
   const runnerMatchesOperator = runnerAccount ? runnerAccount.address.toLowerCase() === operator.toLowerCase() : null;
   const blockers = [];
@@ -2306,9 +2309,9 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
     blockers.push("Operator session key is not loaded.");
     nextActions.push("In OpenClaw, have AI set RUNNER_PRIVATE_KEY for the current session automatically.");
   }
-  if (!rentalActive) {
-    blockers.push(`Rental expired at ${new Date(Number(userExpires) * 1e3).toISOString()}.`);
-    nextActions.push("Use the owner wallet on shll.run to renew the rental before trading.");
+  if (!subscriptionActive) {
+    blockers.push(`Subscription expired at ${new Date(Number(userExpires) * 1e3).toISOString()}.`);
+    nextActions.push("Use the owner wallet on shll.run to renew the subscription before trading.");
   }
   if (!operatorAuthorizationActive) {
     blockers.push(`Operator authorization expired at ${new Date(Number(operatorExpires) * 1e3).toISOString()}.`);
@@ -2332,7 +2335,7 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
   if (blockers.length === 0 && bnbBalance > 0n) {
     nextActions.push("Agent is ready. You can ask AI to trade, lend, transfer, or rebalance from this token-id.");
   }
-  const readinessStage = !runnerAccount ? "needs_session_key" : !rentalActive ? "needs_rental" : !operatorAuthorizationActive || !runnerMatchesOperator ? "needs_operator_authorization" : opBalance !== null && opBalance < MIN_OPERATOR_GAS_WEI ? "needs_operator_gas" : bnbBalance === 0n ? "ready_but_unfunded" : "ready";
+  const readinessStage = !runnerAccount ? "needs_session_key" : !subscriptionActive ? "needs_subscription" : !operatorAuthorizationActive || !runnerMatchesOperator ? "needs_operator_authorization" : opBalance !== null && opBalance < MIN_OPERATOR_GAS_WEI ? "needs_operator_gas" : bnbBalance === 0n ? "ready_but_unfunded" : "ready";
   let activityStats = { available: false };
   try {
     const res = await fetch(`${DEFAULT_INDEXER}/api/agents/${tokenIdRaw}/summary`, { signal: AbortSignal.timeout(5e3) });
@@ -2359,10 +2362,10 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
       nextActions: dedupeStrings(nextActions)
     },
     walletModelReminder: {
-      ownerWallet: "Use your owner wallet to mint, rent, renew, and authorize the operator.",
+      ownerWallet: "Use your owner wallet to mint, subscribe, renew, and authorize the operator.",
       operatorWallet: "Use RUNNER_PRIVATE_KEY only as the AI hot wallet for gas and policy-limited execution.",
       doNotUseOperatorWalletFor: [
-        "minting or renting the agent",
+        "minting or subscribing to the agent",
         "holding the Agent NFT",
         "storing primary funds"
       ]
@@ -2381,8 +2384,8 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
       recommendedMinGasBnb: "0.001"
     },
     access: {
-      rentalActive,
-      rentalExpiresAt: new Date(Number(userExpires) * 1e3).toISOString(),
+      subscriptionActive,
+      subscriptionExpiresAt: new Date(Number(userExpires) * 1e3).toISOString(),
       operatorAuthorizationActive,
       operatorAuthorizationExpiresAt: new Date(Number(operatorExpires) * 1e3).toISOString(),
       runnerMatchesOperator,

package/dist/index.js

@@ -12,8 +12,8 @@ var MEV_PROTECTED_RPC = "https://bscrpc.pancakeswap.finance";
 var DEFAULT_LISTING_MANAGER = "0x1f9CE85bD0FF75acc3D92eB79f1Eb472f0865071";
 var DEFAULT_LISTING_ID = "0x64083b44e38db02749e6e16bf84ce6c19146cc42a108e53324e11f250b15a0b7";
 var DEFAULT_INDEXER = "https://indexer-mainnet.shll.run";
-var SKILL_VERSION = "6.0.2";
-var BINDINGS_UPDATED_AT = "2026-03-06";
+var SKILL_VERSION = "6.0.4";
+var BINDINGS_UPDATED_AT = "2026-03-07";
 var PANCAKE_V2_ROUTER = "0x10ED43C718714eb63d5aA57B78B54704E256024E";
 var PANCAKE_V3_SMART_ROUTER = "0x13f4EA83D0bd40E75C8222255bc855a974568Dd4";
 var V3_QUOTER = "0xB048Bbc1Ee6b733FFfCFb9e9CeF7375518e25997";
@@ -857,8 +857,8 @@ async function checkAccess(rpcUrl, tokenId, existingPublicClient) {
   if (now > userExpires) {
     return {
       blocked: true,
-      errorType: "rental_expired",
-      message: `Agent token-id ${tokenId} rental has EXPIRED (expired at ${new Date(Number(userExpires) * 1e3).toISOString()}).`,
+      errorType: "subscription_expired",
+      message: `Agent token-id ${tokenId} subscription has EXPIRED (expired at ${new Date(Number(userExpires) * 1e3).toISOString()}).`,
       details: { expiredAt: new Date(Number(userExpires) * 1e3).toISOString(), action: "renew" }
     };
   }
@@ -887,7 +887,7 @@ async function checkAccess(rpcUrl, tokenId, existingPublicClient) {
         consoleUrl: agentConsoleUrl(tokenId),
         howToFix: [
           `1. Use 'setup_guide' command to generate an OperatorPermit for this wallet`,
-          `2. Renter (${renter}) can call setOperator(${tokenId}, ${account.address}, <expiry>) on AgentNFA`,
+          `2. Subscriber (${renter}) can call setOperator(${tokenId}, ${account.address}, <expiry>) on AgentNFA`,
           `3. Go to ${agentConsoleUrl(tokenId)} to set operator`,
           `4. Use the correct RUNNER_PRIVATE_KEY for operator ${operator}`
         ]
@@ -1238,7 +1238,7 @@ async function ensureAccess(tokenId, rpcUrl, publicClient) {
       "ACCESS_DENIED",
       access.message || `Access denied for token_id ${tokenId.toString()}`,
       access.details,
-      "Check operator permissions and rental status"
+      "Check operator permissions and subscription status"
     );
   }
 }
@@ -1260,6 +1260,9 @@ async function validateActionsOrThrow(policyClient, tokenId, actions) {
         "POLICY_REJECTED",
         "Policy rejected transaction",
         {
+          enforcement: "on-chain",
+          policyGuardContract: DEFAULT_GUARD,
+          verifyOnChain: `https://bscscan.com/address/${DEFAULT_GUARD}`,
           failedActionIndex: index,
           failedActionTarget: action.target,
           failedActionSelector: getActionSelector(action),
@@ -1349,7 +1352,7 @@ async function getPortfolio(tokenIdRaw, rpcUrl) {
   ]);
   const now = BigInt(Math.floor(Date.now() / 1e3));
   let accessStatus = "Active";
-  if (now > userExpires) accessStatus = "Rental Expired";
+  if (now > userExpires) accessStatus = "Subscription Expired";
   else if (now > operatorExpires) accessStatus = "Operator Auth Expired";
   else if (operator.toLowerCase() !== account.address.toLowerCase()) accessStatus = "Operator Mismatch";
   return {
@@ -2072,14 +2075,14 @@ async function buildSetupGuide(listingId, days = 7) {
     walletModel: {
       type: "dual_wallet",
       ownerWallet: {
-        purpose: "Rent or mint the agent, own the Agent NFT, authorize the operator, and hold primary assets.",
-        useFor: ["renting or minting the agent", "holding ownership", "authorizing the operator"]
+        purpose: "Subscribe or mint the agent, own the Agent NFT, authorize the operator, and hold primary assets.",
+        useFor: ["subscribing to or minting the agent", "holding ownership", "authorizing the operator"]
       },
       operatorWallet: {
         purpose: "AI-only hot wallet used for gas and policy-limited execution.",
         useFor: ["paying gas", "executing policy-limited trades"],
         doNotUseFor: [
-          "minting or renting the agent",
+          "minting or subscribing to the agent",
           "holding the Agent NFT",
           "using as your main asset wallet"
         ],
@@ -2087,8 +2090,8 @@ async function buildSetupGuide(listingId, days = 7) {
       }
     },
     criticalWarnings: [
-      "Do not use the operator wallet to mint, rent, or hold the Agent NFT.",
-      "Use your owner wallet in the browser to complete rental and operator authorization.",
+      "Do not use the operator wallet to mint, subscribe to, or hold the Agent NFT.",
+      "Use your owner wallet in the browser to complete subscription and operator authorization.",
       "Keep only a small BNB balance in the operator wallet for gas."
     ],
     listingSelection: {
@@ -2123,7 +2126,7 @@ function generateOperatorWallet() {
     securityModel: "dual_wallet",
     safeIfLeaked: "This is not the owner wallet. A leak does not grant unrestricted vault withdrawal because owner permissions stay on the owner wallet and PolicyGuard still limits operator actions.",
     doNotUseFor: [
-      "minting or renting the agent",
+      "minting or subscribing to the agent",
       "holding the Agent NFT",
       "holding your main assets"
     ],
@@ -2239,7 +2242,7 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
   const opBalance = runnerAccount ? await publicClient.getBalance({ address: runnerAccount.address }) : null;
   const access = await checkAccess(rpcUrl, tokenId, publicClient);
   const now = BigInt(Math.floor(Date.now() / 1e3));
-  const rentalActive = now <= userExpires;
+  const subscriptionActive = now <= userExpires;
   const operatorAuthorizationActive = now <= operatorExpires;
   const runnerMatchesOperator = runnerAccount ? runnerAccount.address.toLowerCase() === operator.toLowerCase() : null;
   const blockers = [];
@@ -2249,9 +2252,9 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
     blockers.push("Operator session key is not loaded.");
     nextActions.push("In OpenClaw, have AI set RUNNER_PRIVATE_KEY for the current session automatically.");
   }
-  if (!rentalActive) {
-    blockers.push(`Rental expired at ${new Date(Number(userExpires) * 1e3).toISOString()}.`);
-    nextActions.push("Use the owner wallet on shll.run to renew the rental before trading.");
+  if (!subscriptionActive) {
+    blockers.push(`Subscription expired at ${new Date(Number(userExpires) * 1e3).toISOString()}.`);
+    nextActions.push("Use the owner wallet on shll.run to renew the subscription before trading.");
   }
   if (!operatorAuthorizationActive) {
     blockers.push(`Operator authorization expired at ${new Date(Number(operatorExpires) * 1e3).toISOString()}.`);
@@ -2275,7 +2278,7 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
   if (blockers.length === 0 && bnbBalance > 0n) {
     nextActions.push("Agent is ready. You can ask AI to trade, lend, transfer, or rebalance from this token-id.");
   }
-  const readinessStage = !runnerAccount ? "needs_session_key" : !rentalActive ? "needs_rental" : !operatorAuthorizationActive || !runnerMatchesOperator ? "needs_operator_authorization" : opBalance !== null && opBalance < MIN_OPERATOR_GAS_WEI ? "needs_operator_gas" : bnbBalance === 0n ? "ready_but_unfunded" : "ready";
+  const readinessStage = !runnerAccount ? "needs_session_key" : !subscriptionActive ? "needs_subscription" : !operatorAuthorizationActive || !runnerMatchesOperator ? "needs_operator_authorization" : opBalance !== null && opBalance < MIN_OPERATOR_GAS_WEI ? "needs_operator_gas" : bnbBalance === 0n ? "ready_but_unfunded" : "ready";
   let activityStats = { available: false };
   try {
     const res = await fetch(`${DEFAULT_INDEXER}/api/agents/${tokenIdRaw}/summary`, { signal: AbortSignal.timeout(5e3) });
@@ -2302,10 +2305,10 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
       nextActions: dedupeStrings(nextActions)
     },
     walletModelReminder: {
-      ownerWallet: "Use your owner wallet to mint, rent, renew, and authorize the operator.",
+      ownerWallet: "Use your owner wallet to mint, subscribe, renew, and authorize the operator.",
       operatorWallet: "Use RUNNER_PRIVATE_KEY only as the AI hot wallet for gas and policy-limited execution.",
       doNotUseOperatorWalletFor: [
-        "minting or renting the agent",
+        "minting or subscribing to the agent",
         "holding the Agent NFT",
         "storing primary funds"
       ]
@@ -2324,8 +2327,8 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
       recommendedMinGasBnb: "0.001"
     },
     access: {
-      rentalActive,
-      rentalExpiresAt: new Date(Number(userExpires) * 1e3).toISOString(),
+      subscriptionActive,
+      subscriptionExpiresAt: new Date(Number(userExpires) * 1e3).toISOString(),
       operatorAuthorizationActive,
       operatorAuthorizationExpiresAt: new Date(Number(operatorExpires) * 1e3).toISOString(),
       runnerMatchesOperator,
@@ -2712,7 +2715,7 @@ function registerSetupCommands(program2) {
       process.exit(1);
     }
   });
-  const setupCmd = new import_commander7.Command("setup-guide").description("Print dual-wallet setup instructions for a specific template").option("-l, --listing <hex>", "Template listing ID").option("-d, --days <number>", "Number of days to rent", "7");
+  const setupCmd = new import_commander7.Command("setup-guide").description("Print dual-wallet setup instructions for a specific template").option("-l, --listing <hex>", "Template listing ID").option("-d, --days <number>", "Number of days to subscribe", "7");
   setupCmd.action(async (opts) => {
     try {
       const result = await buildSetupGuide(opts.listing, parseInt(opts.days, 10));
@@ -2720,8 +2723,8 @@ function registerSetupCommands(program2) {
         ...result,
         steps: [
           { step: 1, action: `Open ${result.setupUrl}` },
-          { step: 2, action: "Use your owner wallet in the browser. Do not use the operator wallet for rental or mint." },
-          { step: 3, action: "Confirm the rental or mint transaction in the owner wallet." },
+          { step: 2, action: "Use your owner wallet in the browser. Do not use the operator wallet for subscription or mint." },
+          { step: 3, action: "Confirm the subscription or mint transaction in the owner wallet." },
           { step: 4, action: "Authorize the operator wallet for AI execution." },
           { step: 5, action: "Fund the vault with BNB or trading tokens. Do not use the operator wallet as the vault wallet." },
           { step: 6, action: "Send the token-id back to AI so it can automatically run readiness checks." }

package/dist/index.mjs

@@ -27,7 +27,7 @@ import {
   transferFromVault,
   unwrapWbnb,
   wrapBnb
-} from "./chunk-TH3ENDDM.mjs";
+} from "./chunk-RUCWJDVB.mjs";
 
 // src/index.ts
 import { Command as Command9 } from "commander";
@@ -359,7 +359,7 @@ function registerSetupCommands(program2) {
       process.exit(1);
     }
   });
-  const setupCmd = new Command7("setup-guide").description("Print dual-wallet setup instructions for a specific template").option("-l, --listing <hex>", "Template listing ID").option("-d, --days <number>", "Number of days to rent", "7");
+  const setupCmd = new Command7("setup-guide").description("Print dual-wallet setup instructions for a specific template").option("-l, --listing <hex>", "Template listing ID").option("-d, --days <number>", "Number of days to subscribe", "7");
   setupCmd.action(async (opts) => {
     try {
       const result = await buildSetupGuide(opts.listing, parseInt(opts.days, 10));
@@ -367,8 +367,8 @@ function registerSetupCommands(program2) {
         ...result,
         steps: [
           { step: 1, action: `Open ${result.setupUrl}` },
-          { step: 2, action: "Use your owner wallet in the browser. Do not use the operator wallet for rental or mint." },
-          { step: 3, action: "Confirm the rental or mint transaction in the owner wallet." },
+          { step: 2, action: "Use your owner wallet in the browser. Do not use the operator wallet for subscription or mint." },
+          { step: 3, action: "Confirm the subscription or mint transaction in the owner wallet." },
           { step: 4, action: "Authorize the operator wallet for AI execution." },
           { step: 5, action: "Fund the vault with BNB or trading tokens. Do not use the operator wallet as the vault wallet." },
           { step: 6, action: "Send the token-id back to AI so it can automatically run readiness checks." }

package/dist/mcp.js

@@ -12,7 +12,7 @@ var MEV_PROTECTED_RPC = "https://bscrpc.pancakeswap.finance";
 var DEFAULT_LISTING_MANAGER = "0x1f9CE85bD0FF75acc3D92eB79f1Eb472f0865071";
 var DEFAULT_LISTING_ID = "0x64083b44e38db02749e6e16bf84ce6c19146cc42a108e53324e11f250b15a0b7";
 var DEFAULT_INDEXER = "https://indexer-mainnet.shll.run";
-var SKILL_VERSION = "6.0.2";
+var SKILL_VERSION = "6.0.4";
 var PANCAKE_V2_ROUTER = "0x10ED43C718714eb63d5aA57B78B54704E256024E";
 var PANCAKE_V3_SMART_ROUTER = "0x13f4EA83D0bd40E75C8222255bc855a974568Dd4";
 var V3_QUOTER = "0xB048Bbc1Ee6b733FFfCFb9e9CeF7375518e25997";
@@ -856,8 +856,8 @@ async function checkAccess(rpcUrl, tokenId, existingPublicClient) {
   if (now > userExpires) {
     return {
       blocked: true,
-      errorType: "rental_expired",
-      message: `Agent token-id ${tokenId} rental has EXPIRED (expired at ${new Date(Number(userExpires) * 1e3).toISOString()}).`,
+      errorType: "subscription_expired",
+      message: `Agent token-id ${tokenId} subscription has EXPIRED (expired at ${new Date(Number(userExpires) * 1e3).toISOString()}).`,
       details: { expiredAt: new Date(Number(userExpires) * 1e3).toISOString(), action: "renew" }
     };
   }
@@ -886,7 +886,7 @@ async function checkAccess(rpcUrl, tokenId, existingPublicClient) {
         consoleUrl: agentConsoleUrl(tokenId),
         howToFix: [
           `1. Use 'setup_guide' command to generate an OperatorPermit for this wallet`,
-          `2. Renter (${renter}) can call setOperator(${tokenId}, ${account.address}, <expiry>) on AgentNFA`,
+          `2. Subscriber (${renter}) can call setOperator(${tokenId}, ${account.address}, <expiry>) on AgentNFA`,
           `3. Go to ${agentConsoleUrl(tokenId)} to set operator`,
           `4. Use the correct RUNNER_PRIVATE_KEY for operator ${operator}`
         ]
@@ -1218,7 +1218,7 @@ async function ensureAccess(tokenId, rpcUrl, publicClient) {
       "ACCESS_DENIED",
       access.message || `Access denied for token_id ${tokenId.toString()}`,
       access.details,
-      "Check operator permissions and rental status"
+      "Check operator permissions and subscription status"
     );
   }
 }
@@ -1240,6 +1240,9 @@ async function validateActionsOrThrow(policyClient, tokenId, actions) {
         "POLICY_REJECTED",
         "Policy rejected transaction",
         {
+          enforcement: "on-chain",
+          policyGuardContract: DEFAULT_GUARD,
+          verifyOnChain: `https://bscscan.com/address/${DEFAULT_GUARD}`,
           failedActionIndex: index,
           failedActionTarget: action.target,
           failedActionSelector: getActionSelector(action),
@@ -1329,7 +1332,7 @@ async function getPortfolio(tokenIdRaw, rpcUrl) {
   ]);
   const now = BigInt(Math.floor(Date.now() / 1e3));
   let accessStatus = "Active";
-  if (now > userExpires) accessStatus = "Rental Expired";
+  if (now > userExpires) accessStatus = "Subscription Expired";
   else if (now > operatorExpires) accessStatus = "Operator Auth Expired";
   else if (operator.toLowerCase() !== account.address.toLowerCase()) accessStatus = "Operator Mismatch";
   return {
@@ -2103,14 +2106,14 @@ async function buildSetupGuide(listingId, days = 7) {
     walletModel: {
       type: "dual_wallet",
       ownerWallet: {
-        purpose: "Rent or mint the agent, own the Agent NFT, authorize the operator, and hold primary assets.",
-        useFor: ["renting or minting the agent", "holding ownership", "authorizing the operator"]
+        purpose: "Subscribe or mint the agent, own the Agent NFT, authorize the operator, and hold primary assets.",
+        useFor: ["subscribing to or minting the agent", "holding ownership", "authorizing the operator"]
       },
       operatorWallet: {
         purpose: "AI-only hot wallet used for gas and policy-limited execution.",
         useFor: ["paying gas", "executing policy-limited trades"],
         doNotUseFor: [
-          "minting or renting the agent",
+          "minting or subscribing to the agent",
           "holding the Agent NFT",
           "using as your main asset wallet"
         ],
@@ -2118,8 +2121,8 @@ async function buildSetupGuide(listingId, days = 7) {
       }
     },
     criticalWarnings: [
-      "Do not use the operator wallet to mint, rent, or hold the Agent NFT.",
-      "Use your owner wallet in the browser to complete rental and operator authorization.",
+      "Do not use the operator wallet to mint, subscribe to, or hold the Agent NFT.",
+      "Use your owner wallet in the browser to complete subscription and operator authorization.",
       "Keep only a small BNB balance in the operator wallet for gas."
     ],
     listingSelection: {
@@ -2154,7 +2157,7 @@ function generateOperatorWallet() {
     securityModel: "dual_wallet",
     safeIfLeaked: "This is not the owner wallet. A leak does not grant unrestricted vault withdrawal because owner permissions stay on the owner wallet and PolicyGuard still limits operator actions.",
     doNotUseFor: [
-      "minting or renting the agent",
+      "minting or subscribing to the agent",
       "holding the Agent NFT",
       "holding your main assets"
     ],
@@ -2300,7 +2303,7 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
   const opBalance = runnerAccount ? await publicClient.getBalance({ address: runnerAccount.address }) : null;
   const access = await checkAccess(rpcUrl, tokenId, publicClient);
   const now = BigInt(Math.floor(Date.now() / 1e3));
-  const rentalActive = now <= userExpires;
+  const subscriptionActive = now <= userExpires;
   const operatorAuthorizationActive = now <= operatorExpires;
   const runnerMatchesOperator = runnerAccount ? runnerAccount.address.toLowerCase() === operator.toLowerCase() : null;
   const blockers = [];
@@ -2310,9 +2313,9 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
     blockers.push("Operator session key is not loaded.");
     nextActions.push("In OpenClaw, have AI set RUNNER_PRIVATE_KEY for the current session automatically.");
   }
-  if (!rentalActive) {
-    blockers.push(`Rental expired at ${new Date(Number(userExpires) * 1e3).toISOString()}.`);
-    nextActions.push("Use the owner wallet on shll.run to renew the rental before trading.");
+  if (!subscriptionActive) {
+    blockers.push(`Subscription expired at ${new Date(Number(userExpires) * 1e3).toISOString()}.`);
+    nextActions.push("Use the owner wallet on shll.run to renew the subscription before trading.");
   }
   if (!operatorAuthorizationActive) {
     blockers.push(`Operator authorization expired at ${new Date(Number(operatorExpires) * 1e3).toISOString()}.`);
@@ -2336,7 +2339,7 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
   if (blockers.length === 0 && bnbBalance > 0n) {
     nextActions.push("Agent is ready. You can ask AI to trade, lend, transfer, or rebalance from this token-id.");
   }
-  const readinessStage = !runnerAccount ? "needs_session_key" : !rentalActive ? "needs_rental" : !operatorAuthorizationActive || !runnerMatchesOperator ? "needs_operator_authorization" : opBalance !== null && opBalance < MIN_OPERATOR_GAS_WEI ? "needs_operator_gas" : bnbBalance === 0n ? "ready_but_unfunded" : "ready";
+  const readinessStage = !runnerAccount ? "needs_session_key" : !subscriptionActive ? "needs_subscription" : !operatorAuthorizationActive || !runnerMatchesOperator ? "needs_operator_authorization" : opBalance !== null && opBalance < MIN_OPERATOR_GAS_WEI ? "needs_operator_gas" : bnbBalance === 0n ? "ready_but_unfunded" : "ready";
   let activityStats = { available: false };
   try {
     const res = await fetch(`${DEFAULT_INDEXER}/api/agents/${tokenIdRaw}/summary`, { signal: AbortSignal.timeout(5e3) });
@@ -2363,10 +2366,10 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
       nextActions: dedupeStrings(nextActions)
     },
     walletModelReminder: {
-      ownerWallet: "Use your owner wallet to mint, rent, renew, and authorize the operator.",
+      ownerWallet: "Use your owner wallet to mint, subscribe, renew, and authorize the operator.",
       operatorWallet: "Use RUNNER_PRIVATE_KEY only as the AI hot wallet for gas and policy-limited execution.",
       doNotUseOperatorWalletFor: [
-        "minting or renting the agent",
+        "minting or subscribing to the agent",
         "holding the Agent NFT",
         "storing primary funds"
       ]
@@ -2385,8 +2388,8 @@ async function getStatusOverview(tokenIdRaw, rpcUrl) {
       recommendedMinGasBnb: "0.001"
     },
     access: {
-      rentalActive,
-      rentalExpiresAt: new Date(Number(userExpires) * 1e3).toISOString(),
+      subscriptionActive,
+      subscriptionExpiresAt: new Date(Number(userExpires) * 1e3).toISOString(),
       operatorAuthorizationActive,
       operatorAuthorizationExpiresAt: new Date(Number(operatorExpires) * 1e3).toISOString(),
       runnerMatchesOperator,
@@ -2833,7 +2836,7 @@ function asToolResult7(payload) {
 function registerSetupTools(server2) {
   server2.tool(
     "listings",
-    "List all available agent templates for rent",
+    "List all available agent templates for subscription",
     {},
     async () => {
       try {
@@ -2851,10 +2854,10 @@ function registerSetupTools(server2) {
   );
   server2.tool(
     "setup_guide",
-    "Generate step-by-step dual-wallet onboarding instructions. Owner wallet completes rental or mint; operator wallet is AI-only.",
+    "Generate step-by-step dual-wallet onboarding instructions. Owner wallet completes subscription or mint; operator wallet is AI-only.",
     {
       listing_id: CommonSchemas.listingId.optional(),
-      days: import_zod7.z.number().int().min(7).default(7).describe("Number of days to rent")
+      days: import_zod7.z.number().int().min(7).default(7).describe("Number of days to subscribe")
     },
     async ({ listing_id, days }) => {
       try {
@@ -2864,7 +2867,7 @@ function registerSetupTools(server2) {
           steps: [
             { step: 1, title: "Open SHLL Setup Page", action: `Open ${result.setupUrl}` },
             { step: 2, title: "Use Owner Wallet", action: "Use your main owner wallet in the browser. Do not use the operator wallet for this step." },
-            { step: 3, title: "Rent or Mint Agent", action: "Confirm the rental or mint transaction in the owner wallet." },
+            { step: 3, title: "Subscribe or Mint Agent", action: "Confirm the subscription or mint transaction in the owner wallet." },
             { step: 4, title: "Authorize Operator", action: "Authorize the operator wallet for AI execution.", note: `Operator: ${result.operatorAddress}` },
             { step: 5, title: "Fund Vault", action: "Deposit BNB or tokens into the vault for trading. Do not store primary assets in the operator wallet." },
             { step: 6, title: "Return Token ID", action: "Send the token-id back to AI so it can automatically check operator gas, vault balance, and policy readiness." }

package/dist/mcp.mjs

@@ -26,7 +26,7 @@ import {
   transferFromVault,
   unwrapWbnb,
   wrapBnb
-} from "./chunk-TH3ENDDM.mjs";
+} from "./chunk-RUCWJDVB.mjs";
 
 // src/mcp.ts
 import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
@@ -389,7 +389,7 @@ function asToolResult7(payload) {
 function registerSetupTools(server2) {
   server2.tool(
     "listings",
-    "List all available agent templates for rent",
+    "List all available agent templates for subscription",
     {},
     async () => {
       try {
@@ -407,10 +407,10 @@ function registerSetupTools(server2) {
   );
   server2.tool(
     "setup_guide",
-    "Generate step-by-step dual-wallet onboarding instructions. Owner wallet completes rental or mint; operator wallet is AI-only.",
+    "Generate step-by-step dual-wallet onboarding instructions. Owner wallet completes subscription or mint; operator wallet is AI-only.",
     {
       listing_id: CommonSchemas.listingId.optional(),
-      days: z6.number().int().min(7).default(7).describe("Number of days to rent")
+      days: z6.number().int().min(7).default(7).describe("Number of days to subscribe")
     },
     async ({ listing_id, days }) => {
       try {
@@ -420,7 +420,7 @@ function registerSetupTools(server2) {
           steps: [
             { step: 1, title: "Open SHLL Setup Page", action: `Open ${result.setupUrl}` },
             { step: 2, title: "Use Owner Wallet", action: "Use your main owner wallet in the browser. Do not use the operator wallet for this step." },
-            { step: 3, title: "Rent or Mint Agent", action: "Confirm the rental or mint transaction in the owner wallet." },
+            { step: 3, title: "Subscribe or Mint Agent", action: "Confirm the subscription or mint transaction in the owner wallet." },
             { step: 4, title: "Authorize Operator", action: "Authorize the operator wallet for AI execution.", note: `Operator: ${result.operatorAddress}` },
             { step: 5, title: "Fund Vault", action: "Deposit BNB or tokens into the vault for trading. Do not store primary assets in the operator wallet." },
             { step: 6, title: "Return Token ID", action: "Send the token-id back to AI so it can automatically check operator gas, vault balance, and policy readiness." }

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "shll-skills",
-    "version": "6.0.3",
+    "version": "6.0.5",
     "description": "SHLL DeFi Agent - CLI + MCP Server for BSC",
     "main": "dist/index.js",
     "bin": {