feat: enhance DID/Reputation UI — dashboard, public profiles, credentials, receipts, badge

- Reputation Dashboard: auto-query own DID stats with share section (copyable URL + badge)
- Public Reputation Profile: ?did= query param for shareable reputation links
- Credential List: show all credentials on DID management page
- Task Receipt History: show all receipts on DID management page
- Reputation Badge: SVG badge endpoint at /api/reputation/badge/[did] (shields.io style)
- New API endpoints: GET /api/reputation/credentials?did=X, GET /api/reputation/receipts?did=X
- Tests for all new API endpoints (8 tests passing)
- Fix pre-commit hook double-build OOM issue

Bump to v0.5.7

Author: ralyodio

hooks/pre-commit

@@ -13,9 +13,9 @@ if [ $? -ne 0 ]; then
   exit 1
 fi
 
-# Run tests
+# Run tests (without rebuilding)
 echo "Running tests..."
-pnpm run pre-commit
+npx vitest run
 if [ $? -ne 0 ]; then
   echo "❌ Tests failed. Please fix failing tests before committing."
   exit 1

package.json

@@ -1,6 +1,6 @@
 {
   "name": "coinpayportal",
-  "version": "0.5.6",
+  "version": "0.5.7",
   "private": true,
   "type": "module",
   "bin": {

packages/sdk/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@profullstack/coinpay",
-  "version": "0.5.6",
+  "version": "0.5.7",
   "description": "CoinPay SDK & CLI — Accept cryptocurrency payments (BTC, ETH, SOL, POL, BCH, USDC) with wallet and swap support",
   "type": "module",
   "main": "./src/index.js",

src/app/api/reputation/badge/[did]/route.ts

@@ -0,0 +1,93 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { createClient } from '@supabase/supabase-js';
+import { computeReputation } from '@/lib/reputation/attestation-engine';
+import { isValidDid } from '@/lib/reputation/crypto';
+
+const supabase = createClient(
+  process.env.NEXT_PUBLIC_SUPABASE_URL!,
+  process.env.SUPABASE_SERVICE_ROLE_KEY || process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!
+);
+
+function generateBadgeSvg(taskCount: number, acceptedRate: number, flagged: boolean): string {
+  const label = 'CPR Score';
+  const scoreText = taskCount === 0
+    ? 'no data'
+    : `${(acceptedRate * 100).toFixed(0)}% · ${taskCount} tasks`;
+
+  const labelColor = '#555';
+  const valueColor = flagged
+    ? '#e05d44'
+    : acceptedRate >= 0.9
+      ? '#4c1'
+      : acceptedRate >= 0.7
+        ? '#dfb317'
+        : '#e05d44';
+
+  const labelWidth = label.length * 7 + 12;
+  const valueWidth = scoreText.length * 6.5 + 12;
+  const totalWidth = labelWidth + valueWidth;
+
+  return `<svg xmlns="http://www.w3.org/2000/svg" width="${totalWidth}" height="20" role="img" aria-label="${label}: ${scoreText}">
+  <title>${label}: ${scoreText}</title>
+  <linearGradient id="s" x2="0" y2="100%">
+    <stop offset="0" stop-color="#bbb" stop-opacity=".1"/>
+    <stop offset="1" stop-opacity=".1"/>
+  </linearGradient>
+  <clipPath id="r">
+    <rect width="${totalWidth}" height="20" rx="3" fill="#fff"/>
+  </clipPath>
+  <g clip-path="url(#r)">
+    <rect width="${labelWidth}" height="20" fill="${labelColor}"/>
+    <rect x="${labelWidth}" width="${valueWidth}" height="20" fill="${valueColor}"/>
+    <rect width="${totalWidth}" height="20" fill="url(#s)"/>
+  </g>
+  <g fill="#fff" text-anchor="middle" font-family="Verdana,Geneva,DejaVu Sans,sans-serif" text-rendering="geometricPrecision" font-size="11">
+    <text aria-hidden="true" x="${labelWidth / 2}" y="15" fill="#010101" fill-opacity=".3">${label}</text>
+    <text x="${labelWidth / 2}" y="14">${label}</text>
+    <text aria-hidden="true" x="${labelWidth + valueWidth / 2}" y="15" fill="#010101" fill-opacity=".3">${scoreText}</text>
+    <text x="${labelWidth + valueWidth / 2}" y="14">${scoreText}</text>
+  </g>
+</svg>`;
+}
+
+export async function GET(
+  request: NextRequest,
+  { params }: { params: Promise<{ did: string }> }
+) {
+  try {
+    const { did } = await params;
+    const agentDid = decodeURIComponent(did);
+
+    if (!isValidDid(agentDid)) {
+      const svg = generateBadgeSvg(0, 0, false);
+      return new NextResponse(svg, {
+        headers: {
+          'Content-Type': 'image/svg+xml',
+          'Cache-Control': 'public, max-age=300',
+        },
+      });
+    }
+
+    const reputation = await computeReputation(supabase, agentDid);
+    const allTime = reputation.windows.all_time;
+    const svg = generateBadgeSvg(
+      allTime.task_count,
+      allTime.accepted_rate,
+      reputation.anti_gaming.flagged
+    );
+
+    return new NextResponse(svg, {
+      headers: {
+        'Content-Type': 'image/svg+xml',
+        'Cache-Control': 'public, max-age=300',
+      },
+    });
+  } catch (error) {
+    console.error('Badge generation error:', error);
+    const svg = generateBadgeSvg(0, 0, false);
+    return new NextResponse(svg, {
+      headers: { 'Content-Type': 'image/svg+xml' },
+      status: 500,
+    });
+  }
+}

src/app/api/reputation/badge/badge.test.ts

@@ -0,0 +1,40 @@
+import { describe, it, expect, vi } from 'vitest';
+import { GET } from './[did]/route';
+import { NextRequest } from 'next/server';
+
+vi.mock('@supabase/supabase-js', () => ({
+  createClient: () => ({}),
+}));
+
+vi.mock('@/lib/reputation/attestation-engine', () => ({
+  computeReputation: async () => ({
+    agent_did: 'did:key:z6MkTest123',
+    windows: {
+      last_30_days: { task_count: 5, accepted_rate: 0.8, dispute_rate: 0.1 },
+      last_90_days: { task_count: 15, accepted_rate: 0.9, dispute_rate: 0.05 },
+      all_time: { task_count: 42, accepted_rate: 0.95, dispute_rate: 0.02 },
+    },
+    anti_gaming: { flagged: false, flags: [], adjusted_weight: 1 },
+  }),
+}));
+
+describe('GET /api/reputation/badge/[did]', () => {
+  it('returns SVG for valid DID', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/badge/did%3Akey%3Az6MkTest123');
+    const res = await GET(req, { params: Promise.resolve({ did: 'did%3Akey%3Az6MkTest123' }) });
+    expect(res.status).toBe(200);
+    expect(res.headers.get('content-type')).toBe('image/svg+xml');
+    const svg = await res.text();
+    expect(svg).toContain('<svg');
+    expect(svg).toContain('95%');
+    expect(svg).toContain('42 tasks');
+  });
+
+  it('returns SVG with "no data" for invalid DID', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/badge/invalid');
+    const res = await GET(req, { params: Promise.resolve({ did: 'invalid' }) });
+    expect(res.status).toBe(200);
+    const svg = await res.text();
+    expect(svg).toContain('no data');
+  });
+});

src/app/api/reputation/credentials/credentials.test.ts

@@ -0,0 +1,55 @@
+import { describe, it, expect, vi, beforeEach } from 'vitest';
+import { GET } from './route';
+import { NextRequest } from 'next/server';
+
+// Mock supabase
+vi.mock('@supabase/supabase-js', () => ({
+  createClient: () => ({
+    from: (table: string) => ({
+      select: () => ({
+        eq: (_col: string, _val: string) => ({
+          order: () => ({
+            data: [
+              {
+                id: 'cred-1',
+                type: 'TaskCompletion',
+                subject_did: 'did:key:z6MkTest123',
+                issuer_did: 'did:key:z6MkIssuer456',
+                claims: { score: 95 },
+                created_at: '2025-01-01T00:00:00Z',
+                revoked: false,
+              },
+            ],
+            error: null,
+          }),
+        }),
+      }),
+    }),
+  }),
+}));
+
+describe('GET /api/reputation/credentials', () => {
+  it('returns 400 when no DID provided', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/credentials');
+    const res = await GET(req);
+    expect(res.status).toBe(400);
+    const data = await res.json();
+    expect(data.success).toBe(false);
+  });
+
+  it('returns 400 for invalid DID format', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/credentials?did=invalid');
+    const res = await GET(req);
+    expect(res.status).toBe(400);
+  });
+
+  it('returns credentials for valid DID', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/credentials?did=did:key:z6MkTest123');
+    const res = await GET(req);
+    expect(res.status).toBe(200);
+    const data = await res.json();
+    expect(data.success).toBe(true);
+    expect(data.credentials).toHaveLength(1);
+    expect(data.credentials[0].id).toBe('cred-1');
+  });
+});

src/app/api/reputation/credentials/route.ts

@@ -0,0 +1,34 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { createClient } from '@supabase/supabase-js';
+import { isValidDid } from '@/lib/reputation/crypto';
+
+const supabase = createClient(
+  process.env.NEXT_PUBLIC_SUPABASE_URL!,
+  process.env.SUPABASE_SERVICE_ROLE_KEY || process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!
+);
+
+export async function GET(request: NextRequest) {
+  try {
+    const did = request.nextUrl.searchParams.get('did');
+
+    if (!did || !isValidDid(did)) {
+      return NextResponse.json({ success: false, error: 'Valid DID parameter required' }, { status: 400 });
+    }
+
+    const { data: credentials, error } = await supabase
+      .from('reputation_credentials')
+      .select('*')
+      .eq('subject_did', did)
+      .order('created_at', { ascending: false });
+
+    if (error) {
+      console.error('Credentials fetch error:', error);
+      return NextResponse.json({ success: false, error: 'Failed to fetch credentials' }, { status: 500 });
+    }
+
+    return NextResponse.json({ success: true, credentials: credentials || [] });
+  } catch (error) {
+    console.error('Credentials fetch error:', error);
+    return NextResponse.json({ success: false, error: 'Internal server error' }, { status: 500 });
+  }
+}

src/app/api/reputation/receipts/receipts.test.ts

@@ -0,0 +1,53 @@
+import { describe, it, expect, vi } from 'vitest';
+import { GET } from './route';
+import { NextRequest } from 'next/server';
+
+vi.mock('@supabase/supabase-js', () => ({
+  createClient: () => ({
+    from: () => ({
+      select: () => ({
+        eq: () => ({
+          order: () => ({
+            data: [
+              {
+                id: 'receipt-1',
+                agent_did: 'did:key:z6MkTest123',
+                buyer_did: 'did:key:z6MkBuyer456',
+                task_type: 'coding',
+                amount: 100,
+                currency: 'USD',
+                status: 'accepted',
+                created_at: '2025-01-01T00:00:00Z',
+              },
+            ],
+            error: null,
+          }),
+        }),
+      }),
+    }),
+  }),
+}));
+
+describe('GET /api/reputation/receipts', () => {
+  it('returns 400 when no DID provided', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/receipts');
+    const res = await GET(req);
+    expect(res.status).toBe(400);
+  });
+
+  it('returns 400 for invalid DID', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/receipts?did=bad');
+    const res = await GET(req);
+    expect(res.status).toBe(400);
+  });
+
+  it('returns receipts for valid DID', async () => {
+    const req = new NextRequest('http://localhost/api/reputation/receipts?did=did:key:z6MkTest123');
+    const res = await GET(req);
+    expect(res.status).toBe(200);
+    const data = await res.json();
+    expect(data.success).toBe(true);
+    expect(data.receipts).toHaveLength(1);
+    expect(data.receipts[0].status).toBe('accepted');
+  });
+});

src/app/api/reputation/receipts/route.ts

@@ -0,0 +1,34 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { createClient } from '@supabase/supabase-js';
+import { isValidDid } from '@/lib/reputation/crypto';
+
+const supabase = createClient(
+  process.env.NEXT_PUBLIC_SUPABASE_URL!,
+  process.env.SUPABASE_SERVICE_ROLE_KEY || process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!
+);
+
+export async function GET(request: NextRequest) {
+  try {
+    const did = request.nextUrl.searchParams.get('did');
+
+    if (!did || !isValidDid(did)) {
+      return NextResponse.json({ success: false, error: 'Valid DID parameter required' }, { status: 400 });
+    }
+
+    const { data: receipts, error } = await supabase
+      .from('task_receipts')
+      .select('*')
+      .eq('agent_did', did)
+      .order('created_at', { ascending: false });
+
+    if (error) {
+      console.error('Receipts fetch error:', error);
+      return NextResponse.json({ success: false, error: 'Failed to fetch receipts' }, { status: 500 });
+    }
+
+    return NextResponse.json({ success: true, receipts: receipts || [] });
+  } catch (error) {
+    console.error('Receipts fetch error:', error);
+    return NextResponse.json({ success: false, error: 'Internal server error' }, { status: 500 });
+  }
+}