jup.sh 0.1.0-alpha.7

v0.1.0-alpha.7 improves the review handoff path for agents.

When policy returns review_required, pay --json now includes both a full
Risk Review URL and a local CLI handoff command:

{
  "nextAction": "open_review",
  "reviewUrl": "https://www.jup.sh/pay/intent_xxx#intent=...",
  "reviewCommand": "npx jup-sh@alpha review intent_xxx"
}

What This Release Adds

• reviewCommand in pay --json output.
• Full reviewUrl payload in review_required pay --json output.
• reviewCommand in review --json output.
• Updated CLI JSON contract docs.
• Updated Agent Integration docs.
• Updated npm README.
• Smoke test coverage for the review handoff fields.

Why This Matters

Agents should not need to reconstruct review URLs by hand. They can create a
payment intent, branch on nextAction, and hand off the exact review path when
policy requires human review.

Current Boundary

This release is still a developer alpha. It improves handoff metadata only.
It does not call wallets, sign transactions, execute swaps, or move funds.

Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody.
• No remote backend persistence.
• No authentication.
• No published SDK package.

Verification

Run the full release gate:

npm run release:check

jup.sh 0.1.0-alpha.6

jup.sh 0.1.0-alpha.6 Release Notes

v0.1.0-alpha.6 adds local workspace diagnostics.

The main addition:

npx jup-sh@alpha doctor

Agents and scripts can use:

npx jup-sh@alpha doctor --json

What This Release Adds

• jup-sh doctor
• jup-sh doctor --json
• CLI version reporting.
• Config file detection.
• Policy file detection.
• Intent store status and intent count.
• Review URL and quote provider reporting.
• Trusted recipient reporting.
• Warnings for missing config, missing policy, and inconsistent limits.

Current Boundary

This release is still a developer alpha. Doctor only checks local configuration
and state. It does not call wallets, sign transactions, execute swaps, or move
funds.

Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody.
• No remote backend persistence.
• No authentication.
• No published SDK package.

Verification

Run the full release gate:

npm run release:check

jup.sh 0.1.0-alpha.5

jup.sh 0.1.0-alpha.5 Release Notes

v0.1.0-alpha.5 improves the review-required path.

The main addition is a top-level review shortcut:

npx jup-sh@alpha review intent_xxx

This prints the full hosted Risk Review URL for a saved intent.

Agents and scripts can use JSON mode:

npx jup-sh@alpha review intent_xxx --json

What This Release Adds

• jup-sh review <intent_id>
• jup-sh review <intent_id> --json
• jup-sh review <intent_id> --payload-only
• Shared review URL generation with intent export.
• Agent Integration docs for the review branch.
• Smoke test coverage for review URL and review JSON output.

Current Boundary

This release is still a developer alpha. Risk Review is a static handoff path
for policy exceptions. It does not approve, sign, or execute payments.

Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody.
• No remote backend persistence.
• No authentication.
• No published SDK package.

Verification

Run the full release gate:

npm run release:check

jup.sh 0.1.0-alpha.4

jup.sh 0.1.0-alpha.4 Release Notes

v0.1.0-alpha.4 makes the local risk policy easier to tune from the CLI.

The main workflow:

npx jup-sh@alpha init
npx jup-sh@alpha policy trust api.vendor.example
npx jup-sh@alpha policy set max-auto 10
npx jup-sh@alpha pay --agent deepseek --token SOL --amount 6 --settle USDC --recipient api.vendor.example --json

What This Release Adds

• jup-sh policy trust <recipient>
• jup-sh policy untrust <recipient>
• jup-sh policy set <field> <value>
• Common field aliases:
  • max-auto
  • max-allowed
  • max-price-impact
  • review-high-price-impact
  • review-unknown-recipients
• Agent Integration docs for policy tuning.
• Smoke test coverage for policy mutations.

Current Boundary

This release is still a developer alpha. auto_pay means an intent is inside
local policy and ready for a future authorization layer. It does not mean the
CLI signed or moved funds.

Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody.
• No remote backend persistence.
• No authentication.
• No published SDK package.

Verification

Run the full release gate:

npm run release:check

jup.sh 0.1.0-alpha.3

jup.sh 0.1.0-alpha.3 Release Notes

v0.1.0-alpha.3 improves the first developer experience for jup-sh.

The main change is a top-level init command:

npx jup-sh@alpha init

This writes:

jup.config.json
jup.policy.json

Then an agent or script can create a payment intent:

npx jup-sh@alpha pay --agent deepseek --token SOL --amount 20 --settle USDC --json

What This Release Adds

• Top-level jup-sh init.
• jup.config.json generation.
• jup.policy.json generation.
• Config-aware defaults for:
  • policy file path;
  • local intent store;
  • Risk Review base URL;
  • quote provider.
• Agent Integration documentation.
• Quickstart updates for the init -> pay --json flow.

Current Boundary

This release is still a developer alpha. It is designed for testing the local
agent payment contract:

initialize workspace -> agent intent -> local policy -> quote estimate -> local intent -> review URL

It does not move funds.

Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody.
• No remote backend persistence.
• No authentication.
• No published SDK package.

Verification

Run the full release gate:

npm run release:check

jup.sh 0.1.0-alpha.2

jup.sh 0.1.0-alpha.2 Release Notes

v0.1.0-alpha.2 is the first npm alpha packaging checkpoint for jup-sh.

The goal is simple: make the agent-facing CLI easy to try without cloning the
repository.

npx jup-sh@alpha pay --agent deepseek --token SOL --amount 20 --settle USDC --json

What This Release Adds

• Public npm package name: jup-sh.
• Public binary: jup-sh.
• Self-contained Node.js alpha CLI.
• Local payment intent creation.
• Local policy checks.
• Mock settlement quotes.
• Optional Jupiter quote-only settlement estimates.
• Local intent storage.
• Risk Review URL export.
• Agent-facing JSON output and exit codes.

Current Boundary

This release is still a developer alpha. It is designed for testing the agent
payment contract:

agent intent -> local policy -> quote estimate -> local intent -> review URL

It does not move funds.

Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody.
• No remote backend persistence.
• No authentication.
• No published SDK package.

Verification

Run the full release gate:

npm run release:check

The release gate covers:

• website JavaScript syntax checks;
• SDK typecheck and smoke tests;
• Rust CLI check;
• alpha CLI smoke tests;
• npm package dry-run checks;
• Rust workspace tests.

jup.sh 0.1.0-alpha.1

jup.sh 0.1.0-alpha.1 Release Notes

Status: GitHub pre-release.

Release date: 2026-05-10.

This is the second alpha checkpoint for the jup.sh risk layer.

It is still a source-run developer alpha, not a production payment system.

Summary

v0.1.0-alpha.0 established the first local CLI and static Risk Review flow.

v0.1.0-alpha.1 focuses on the TypeScript SDK and policy explainability:

agent intent
-> policy profile
-> trusted recipient check
-> Jupiter quote estimate
-> policy explanation
-> Risk Review URL when needed

The goal is to make the risk layer clearer before adding any signing, custody,
or swap execution.

What Is Included

• Source-only TypeScript SDK helpers:
  • createPaymentIntent
  • createJupiterQuoteProvider
  • createRiskReviewUrl
  • encodeRiskReviewPayload
  • parseRiskReviewPayload
• SDK policy profiles:
  • sandbox
  • balanced
  • strict
• Trusted recipient helper:
  • withTrustedRecipients
• Policy decision explanation helper:
  • explainPolicyDecision
• SDK examples for:
  • mock payment intent creation;
  • Jupiter quote-only estimates;
  • Risk Review URL export;
  • policy profiles;
  • trusted recipients;
  • policy explanations.
• Risk Review UI now leads with:
  • summary;
  • risk factors;
  • recommended action;
  • passed checks;
  • raw policy evidence.
• Developer docs updated for the SDK risk-layer surface.

What Is Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody of funds.
• No remote backend persistence.
• No authentication.
• No published npm package.

Verification

Verified before tagging:

npm run release:check

This currently covers:

• JavaScript syntax checks;
• TypeScript SDK typecheck;
• SDK smoke tests;
• alpha CLI wrapper smoke tests;
• npm package dry-run;
• Rust workspace tests.

Notes

jup.sh is an independent community-built tool and is not affiliated with
Jupiter.

This checkpoint is about making policy output usable by developers, agents, and
human reviewers. It keeps the system quote-only and review-first.

jup.sh 0.1.0-alpha.0

jup.sh 0.1.0-alpha.0 Release Notes

Status: GitHub pre-release.

Release date: 2026-05-09.

This is the first alpha checkpoint for jup.sh.

It is a source-run developer alpha, not a production payment system.

Summary

jup.sh is exploring:

Risk and settlement for Solana agent payments.
Agents pay with any verified token. Recipients settle in USDC. Policy decides
when humans step in.

This alpha turns that direction into a local CLI and static Risk Review flow.
It does not move funds.

What Is Included

• Static pay.sh-inspired jup.sh website.
• Rust workspace for reusable payment intent logic.
• Local CLI command:

jup-sh pay --agent claude --token SOL --settle 20 USDC

• Local deterministic policy checks.
• Local payment intent persistence under .jup-sh/intents.
• Mock settlement quotes.
• Optional Jupiter quote-only settlement estimates:

jup-sh pay --agent claude --token SOL --settle 20 USDC --quote-provider jupiter

• Quote-aware policy checks:
  • quote_available
  • quote_settlement_token
  • quote_price_impact
• Risk Review URL export:

jup-sh intent export intent_xxx

• Static Risk Review page that can render exported intent payloads.
• Agent-facing JSON output:

jup-sh pay --agent claude --token SOL --settle 20 USDC --json

• Agent-facing pay exit codes:
  • 0 = auto_pay
  • 2 = review_required
  • 1 = rejected or command failure
• CLI JSON contract documentation:

docs/cli-json-contract.md

• Private npm alpha wrapper prototype:

npm run cli:alpha -- pay --agent claude --token SOL --settle 20 USDC

• Smoke tests and npm package dry-run checks:

npm run alpha:smoke
npm run alpha:pack

What Is Not Included

• No wallet signing.
• No swap execution.
• No Solana Pay transaction request generation.
• No custody of funds.
• No remote backend persistence.
• No authentication.
• No published npm package.

Verification

Verified before tagging:

npm run check
npm run alpha:smoke
npm run alpha:pack
cd rust && cargo test --workspace

Expected npm run alpha:pack package contents:

README.md
bin/jup-sh
package.json

Notes

jup.sh is an independent community-built tool and is not affiliated with
Jupiter.

This alpha intentionally keeps signing and money movement out of scope. The
purpose is to harden the first agent-facing contract: local intent creation,
policy decisioning, quote-aware review, and exportable Risk Review payloads.