{"name":"ApexScout x402 Metadata Preflight","version":"v2.2.107-audit-builder-recommended-first-action","mode":"free-no-spend-privacy-preflight","liveMode":"zero-contact-inbound-only","purpose":"Check x402 payment metadata before a buyer agent retries with payment, so resource URLs, descriptions, reason strings, and payload previews do not carry secrets or buyer-level private data.","sourceSignal":{"privacyHardeningPaper":"https://arxiv.org/abs/2604.11430","coinbaseAgentCorePayments":"https://www.coinbase.com/blog/introducing-amazon-bedrock-agentcore-payments-powered-by-x402-and-coinbase","awsAgentCorePayments":"https://aws.amazon.com/blogs/machine-learning/agents-that-transact-introducing-amazon-bedrock-agentcore-payments-built-with-coinbase-and-stripe/","interpretation":"Agent payment systems are adding budgets, approvals, observability, and x402 discovery. ApexScout adds a seller-side metadata privacy preflight while keeping spend buyer-controlled."},"routes":{"page":"https://agent-research-brief-api-production.up.railway.app/x402-metadata-preflight","api":"https://agent-research-brief-api-production.up.railway.app/api/x402-metadata-preflight","checkApi":"https://agent-research-brief-api-production.up.railway.app/api/x402-metadata-preflight/check","agentSpendPassport":"https://agent-research-brief-api-production.up.railway.app/agent-spend-passport","agentSpendPassportPrepareApi":"https://agent-research-brief-api-production.up.railway.app/api/agent-spend-passport/prepare","agentRevenueAuditPreview":"https://agent-research-brief-api-production.up.railway.app/agent-revenue-audit-preview","agentRevenueAuditPreviewApi":"https://agent-research-brief-api-production.up.railway.app/api/agent-revenue-audit-preview","agentRevenueAuditBuilder":"https://agent-research-brief-api-production.up.railway.app/agent-revenue-audit-builder","agentRevenueAuditBuilderApi":"https://agent-research-brief-api-production.up.railway.app/api/agent-revenue-audit-builder","agentRevenueAuditBuilderPrepareApi":"https://agent-research-brief-api-production.up.railway.app/api/agent-revenue-audit-builder/prepare","buyerAgentPaymentSafety":"https://agent-research-brief-api-production.up.railway.app/buyer-agent-payment-safety","buyerAgentPaymentSafetyApi":"https://agent-research-brief-api-production.up.railway.app/api/buyer-agent-payment-safety","buyerAgentPaymentSafetyScoreApi":"https://agent-research-brief-api-production.up.railway.app/api/buyer-agent-payment-safety/score","chatTinyPaymentFlow":"https://agent-research-brief-api-production.up.railway.app/chat-tiny-payment-flow","chatTinyPaymentFlowApi":"https://agent-research-brief-api-production.up.railway.app/api/chat-tiny-payment-flow","agentPaymentAlpha":"https://agent-research-brief-api-production.up.railway.app/agent-payment-alpha","mcpToolPack":"https://agent-research-brief-api-production.up.railway.app/mcp-tool-pack","docsJson":"https://agent-research-brief-api-production.up.railway.app/docs.json"},"checkInputSchema":{"route":"/api/opportunity-check | /api/agent-revenue-audit | unknown","resourceUrl":"optional string","paymentDescription":"optional string","reason":"optional string","payloadPreview":"optional object or string; raw value is classified but not returned publicly","source":"optional string"},"checkOutputSchema":{"status":"ready_to_send | redact_before_payment | stop","piiRisk":"low | medium | high","privacyCheck":"object","policyCheck":"object","routeSchemaCheck":"object","sanitizedMetadata":"object","expectedSafeFlow":"array","guardrails":"array"},"detectedPatterns":[{"label":"email address","severity":"medium","rawValuesReturned":false},{"label":"phone-like string","severity":"medium","rawValuesReturned":false},{"label":"full EVM address","severity":"medium","rawValuesReturned":false},{"label":"API key or secret token","severity":"high","rawValuesReturned":false},{"label":"private key or seed phrase","severity":"high","rawValuesReturned":false},{"label":"customer or CRM data","severity":"medium","rawValuesReturned":false},{"label":"SSN","severity":"high","rawValuesReturned":false},{"label":"password","severity":"high","rawValuesReturned":false}],"noSpendGuarantee":{"routeIsFree":true,"paidCallsMadeByPreflight":false,"paidUpstreamCalls":false,"storesRawMetadataPublicly":false,"returnsRawPayloadPreviewPublicly":false,"buyerLevelDataExposed":false,"settlementRailChanged":false,"sellerWalletChanged":false},"recommendedBuyerPath":["Generate a free /agent-spend-passport.","Preview /agent-revenue-audit-preview before using the $5 Agent Revenue Audit.","Run /api/x402-metadata-preflight/check on route, resource URL, payment description, reason string, and payload preview.","If the metadata preflight says stop, do not pay.","If it says redact_before_payment, use sanitizedMetadata before any buyer-controlled x402 retry.","Pay only when the buyer wallet, budget, route, and privacy status are approved."],"sampleInput":{"route":"/api/agent-revenue-audit","resourceUrl":"https://agent-research-brief-api-production.up.railway.app/api/agent-revenue-audit","paymentDescription":"Agent Revenue Audit paid retry.","reason":"Run a monetization audit after Passport and preview checks.","payloadPreview":{"serviceName":"Example Agent API","currentOffer":"Pay-per-call API for buyer agents","targetBuyer":"x402 builders and buyer agents","currentProblem":"The service has working paid routes but needs a clearer buyer-agent conversion path."},"source":"metadata-preflight-page"},"guardrails":["No spend happens in this metadata preflight.","No paid upstream call happens in this metadata preflight.","No raw payload preview is returned publicly.","No raw buyer goals, buyer identities, full wallet addresses, payment payloads, or paid response bodies are exposed.","No legal, tax, investment, lending, compliance, or trading advice.","No scraping, outreach, posts, DMs, emails, manual sharing, third-party discovery, fake traffic, or fake feedback."],"nextAction":"Use this preflight after the Agent Spend Passport and before any buyer-controlled paid x402 retry."}