Stellar Agent v0.5.2

0.5.2

• Fixed WalletConnect SignClient resolution for the npm-installed @walletconnect/sign-client export shape, including function exports with static init.
• Closed WalletConnect SDK transport, subscriber, and heartbeat handles after pair/status/disconnect/sign commands so installed CLI commands return cleanly after printing JSON.
• Added the Codex-native .codex-plugin/plugin.json manifest to the bundled plugin and made release packaging and artifact verification require it.
• Clarified the difference between the @stellar-agent/codex-plugin npm tooling tarball and the installable stellar-agent-codex-plugin-v*.tgz plugin bundle.
• Improved stellar-agent-codex-plugin --help and documented validate, manifest, and plugin-json.
• Documented that policy explain --request files use destination, not to, and mapped schema validation failures to structured INVALID_INPUT responses.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.5.2.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is queued through the separate protected Publish npm workflow and requires npm-production approval.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.5.1

0.5.1

• Hardened Horizon-backed x402 verification so settled transactions must include a challenge memo bound to the issued resource and nonce, preventing reuse of older matching payments for fresh challenges.
• Normalized malformed x402 proof amounts to invalid_payment_proof responses so local paid API demos return HTTP 402 JSON errors instead of surfacing unhandled parser failures.
• Added safe demo bundle commands, typed SDK examples, agent payment recipes, approval bridge URL helpers, and config-file market alerts from the post-0.5.0 feature set.
• Published programmatic CLI JSON schemas for agent/tool integrations.
• Wrapped missing or malformed market alert config files as structured INVALID_INPUT responses with market-listener docs.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.5.1.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is queued through the separate protected Publish npm workflow and requires npm-production approval.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.5.0

0.5.0

• Added a guarded Mainnet agent-wallet workflow for dedicated, risk-budgeted wallets, including external-funding guidance, arming fingerprints, receipt-backed spend caps, balance checks, and an explicit autosign exception that still requires policy status allowed.
• Added example apps for a local x402 paid API, an agent service market, and a Mainnet agent-wallet playground.
• Hardened example payment proofs with issued nonce, charge, session, and transaction-hash replay checks, plus package-local and repo-level example contract tests.
• Moved shared Mainnet agent-wallet preflight, fingerprint, balance, and risk-budget helpers into @stellar-agent/core so CLI and examples use the same guard semantics.
• Updated Codex payment guidance for Mainnet agent-wallet setup, funding, arming, autosign boundaries, local x402, and MPP workflows.
• Kept production facilitator-backed x402/MPP support, generic Mainnet auto-signing, and non-agent-wallet Mainnet autosign out of scope.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.5.0.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is queued through the separate protected Publish npm workflow and requires npm-production approval.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.4.4

0.4.4

• Hardened payment policy evaluation so Mainnet requests remain marked as real-funds and fail closed when evaluated with a mismatched policy network.
• Added a local default policy and local policy filename so local-profile payment quotes do not reuse a Testnet-labeled policy.
• Tightened local x402 and MPP resource binding to include URL query strings.
• Hardened the local approval bridge by keeping bearer tokens out of unauthenticated HTML, removing remote Freighter script loading, and requiring explicit acknowledgement for non-loopback binds.
• Updated Mainnet safety, x402/MPP, approval bridge, CLI, and policy docs for the tightened behavior.
• Updated Aquarius Mainnet AQUA metadata, client-side pool limiting, and JSON parse-error handling for Aquarius CLI preflight.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.4.4.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is queued through the separate protected Publish npm workflow and requires npm-production approval.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.4.3

0.4.3

• Added npm-facing README files for every public @stellar-agent/* package and package-specific npm homepage links.
• Added root and package README guidance for installing @stellar-agent/cli, choosing scoped packages, and previewing npm README content before release.
• Added release checks that require package READMEs in source and verify package/README.md is present in every packed npm tarball.
• Added stellar-agent --version --json for scripts that need machine-readable CLI version output.
• Updated release notes and npm package descriptions for README/package-page changes.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.4.3.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is queued through the separate protected Publish npm workflow and requires npm-production approval.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.4.2

0.4.2

• Added Aquarius AMM deployment discovery, pool inspection, account-position reads, LP deposit/withdraw preflight, swap quote/preflight, and rewards inspection.
• Added defi.aquarius policy controls for allowed pools, assets, actions, nominal exposure, slippage bounds, and Mainnet approval gating.
• Added Testnet example scripts for Blend and Aquarius DeFi workflows under examples/defi/, plus pnpm examples:defi:testnet.
• Added a bundled stellar-agent-defi Codex skill covering Blend and Aquarius command sequencing, preflight requirements, policy boundaries, and Mainnet signing limits.
• Documented Aquarius Testnet endpoints, examples, read-only/preflight-only boundaries, and Mainnet external-signer requirements.
• Kept Aquarius public asset metadata visible in redacted CLI output and tightened slippage-bound and asset-allowlist policy checks.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.4.2.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is queued through the separate protected Publish npm workflow and requires npm-production approval.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.4.1

0.4.1

• Added MCP tools for core Stellar liquidity-pool listing, inspection, trade reads, LP position inspection, LP preflight, finite market listeners, and strategy liquidity investigation.
• Added package-level LP input validation for pool ids, distinct reserve assets, and deposit price bounds.
• Added nominal LP exposure metadata to preflight output and documented that it is a policy proxy, not a mark-to-market value or profitability estimate.
• Added --fee-strategy to market lp trustline add for consistency with other mutating Testnet commands.
• Added live Testnet verifier coverage for read-only market workflows and LP preflight against an existing Testnet core pool.
• Fixed stale release-line documentation and added a release metadata guard for previous-minor doc drift.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.4.1.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is queued through the separate protected Publish npm workflow and requires npm-production approval.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.4.0

0.4.0

• Added market commands for core Stellar AMM pool listing, inspection, trade reads, LP position inspection, and finite JSON market alerts.
• Added guarded Testnet market lp preflight, pool-share trustline creation, deposit, and withdrawal commands with policy checks before submission and receipt logging after successful transactions.
• Added market.liquidity policy controls for allowed pools, assets, actions, exposure limits, and explicit deposit price bounds.
• Added strategy explain, strategy simulate, and strategy investigate liquidity so agents can evaluate liquidity proposals without hidden signing or submission.
• Added a Soroban pool investigation boundary: contract interface inspection is read-only, and generic Soroban AMM mutation reports adapter_required until a protocol-specific adapter, policy controls, simulation, and signing model exist.
• Documented safe market-making scope, Mainnet liquidity guards, and liquidity-pool risk notes.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.4.0.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is prepared but remains a separate manual provenance-backed step.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.3.0

0.3.0

• Added fee-stat-aware transaction building with base, low, medium, high, and p95 fee strategies, including session caching and base-fee fallback behavior.
• Added guarded Testnet pay batch support for bundling multiple payments into one transaction with per-payment policy checks and aggregate spend-limit evaluation.
• Tightened signed-XDR submission so ambiguous Horizon submit responses are confirmed by transaction lookup before reporting success.
• Added cache inspect and cache clear commands plus global --no-cache support for long-running agent sessions.
• Expanded CLI help smoke coverage, docs-linked error hints, and agent integration docs for faster setup and troubleshooting.
• Updated GitHub Actions workflow actions to Node 24-runtime majors while keeping the project test runtime on Node 22.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.3.0.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is prepared but remains a separate manual provenance-backed step.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.

Stellar Agent v0.2.0

0.2.0

• Added first-class Blend DeFi inspection, preflight, deployment discovery, guided trustline setup, and guarded Testnet supply, borrow, repay, withdraw, and batch commands.
• Integrated Blend SDK-backed pool loading, reserve math, position estimates, APYs, request construction, Soroban simulation, and receipt metadata while keeping Mainnet DeFi auto-signing blocked.
• Added explicit DeFi policy controls for allowed pools, request types, borrow value, protocol exposure, health factor, and simulation requirements.
• Added live Testnet verification for Blend deployment discovery, USDC trustline creation, XLM collateral supply, batched Blend actions, and receipt validation.
• Hardened protocol SDK boundaries with release checks, production dependency audits, lazy DeFi adapter loading, and security documentation for future protocol SDK additions.
• Refreshed the README opening to better explain the agentic payment use case while preserving safety-first release notes.

Artifacts

• npm package tarballs for every publishable @stellar-agent/* workspace package.
• Codex plugin artifact: stellar-agent-codex-plugin-v0.2.0.tgz.
• release-manifest.json with artifact SHA-256 checksums and source commit.

Verification

• pnpm release:preflight
• Fresh install from generated npm tarballs
• Bundled Codex plugin validation from the generated plugin tarball

Boundaries

• npm publication is prepared but remains a separate manual provenance-backed step.
• Testnet remains the default.
• Mainnet local auto-signing and Mainnet secret-key storage remain blocked.