{"protocolVersion":"1.0","name":"x402station.io","alternateName":["x402station","Preflight by x402station.io"],"description":"Independent risk-signal layer for x402 agentic commerce — endpoint evidence (decoy / zombie / price-trap / never-paid) before an agent authorizes payment.","canonicalUrl":"https://x402station.io","url":"https://x402station.io","iconUrl":"https://x402station.io/icon.svg","provider":{"organization":"x402station.io","url":"https://x402station.io","contact":"hello@x402station.io","supportContact":{"email":"hello@x402station.io","issues":"https://github.com/sF1nX/x402station-mcp/issues","security":"https://x402station.io/.well-known/security.txt"}},"version":"1.0.0","documentationUrl":"https://x402station.io/api","comparison":"https://x402station.io/vs","capabilities":{"streaming":false,"pushNotifications":true,"stateTransitionHistory":false},"supportedInterfaces":[{"url":"https://x402station.io/api/openapi.json","protocolBinding":"HTTP+JSON","protocolVersion":"1.0"},{"url":"https://x402station.io/.well-known/agent-skills","protocolBinding":"HTTP+JSON","protocolVersion":"1.0"},{"url":"https://x402station.io/.well-known/api-catalog","protocolBinding":"HTTP+JSON","protocolVersion":"1.0"},{"url":"https://x402station.io/.well-known/mcp/server-card.json","protocolBinding":"HTTP+JSON","protocolVersion":"1.0"},{"url":"https://x402station.io/llms.txt","protocolBinding":"HTTP+TEXT","protocolVersion":"1.0"},{"url":"https://x402station.io/mcp","protocolBinding":"HTTP+HTML","protocolVersion":"1.0"}],"x-supported-frameworks":["LangChain","Mastra","Vercel AI SDK","Coinbase AgentKit","Lucid","LangChain JS","MCP-compatible clients"],"x-framework-surfaces":{"mcp":"https://x402station.io/mcp","skill":"https://x402station.io/skill.md","openapi":"https://x402station.io/api/openapi.json","recipes":"https://x402station.io/guard"},"securitySchemes":{"x402":{"apiKeySecurityScheme":{"location":"header","name":"PAYMENT-SIGNATURE","description":"Pay per call with x402 v2. First request returns HTTP 402 with a `payment-required` header (base64-encoded PaymentRequiredResponse). Decode it, sign the EIP-712 authorization with your wallet, and retry with the `PAYMENT-SIGNATURE` header carrying the base64-encoded signed payload. The x-x402 object on this card has the protocol details (network, asset, payTo, manifest URL)."}}},"securityRequirements":[{"x402":[]}],"security":[{"x402":[]}],"defaultInputModes":["application/json"],"defaultOutputModes":["application/json"],"skills":[{"id":"preflight-trial","name":"Free preflight self-test","description":"Free anonymous x402 endpoint risk self-test. POST {url} with no PAYMENT-SIGNATURE and receive the same verdict shape as paid /preflight for integration validation.","tags":["x402","risk-signal","x402 endpoint risk","free-trial","self-test"],"examples":["curl -X POST https://x402station.io/api/v1/preflight-trial -H \"Content-Type: application/json\" -d '{\"url\":\"https://api.venice.ai/api/v1/chat/completions\"}'","No payment header is required. The response parser is the same as paid /api/v1/preflight."],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"preflight","name":"Preflight safety check","description":"Preflight x402 scam check: endpoint risk before you pay — decoy / zombie / price-trap / never-paid? Trust verdict in ~200ms before PAYMENT-SIGNATURE.","tags":["x402","risk-signal","x402 endpoint risk","verify x402 endpoint before paying","payment-signature","autopay safety","x402 scam check","decoy-detection","price-trap"],"examples":["curl -X POST https://x402station.io/api/v1/preflight -H \"Content-Type: application/json\" -d '{\"url\":\"https://api.venice.ai/api/v1/chat/completions\"}'","The first call returns HTTP 402 with the payment-required header. Sign with your wallet, retry with PAYMENT-SIGNATURE, receive the JSON report."],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"preflight-batch","name":"Bulk preflight check (up to 50 URLs, one settlement)","description":"Batch x402 endpoint risk check: preflight many endpoints before paying any of them.","tags":["x402","risk-signal","x402 endpoint risk","verify x402 endpoint before paying","payment-signature","bulk","aggregator","autopay safety"],"examples":["curl -X POST https://x402station.io/api/v1/preflight-batch -H \"Content-Type: application/json\" -d '{\"urls\":[\"https://api.venice.ai/api/v1/chat/completions\",\"https://api.exa.ai/search\"]}'","The first call returns HTTP 402. Sign with your wallet, retry with PAYMENT-SIGNATURE, receive the JSON batch report."],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"forensics","name":"7-day forensics report","description":"Forensic x402 scam/risk report for a suspicious endpoint: probe history, signatures, decoy / price-trap patterns.","tags":["x402","risk-signal","x402 endpoint risk","forensics","uptime","latency","decoy-detection","price-trap"],"examples":["curl -X POST https://x402station.io/api/v1/forensics -H \"Content-Type: application/json\" -d '{\"url\":\"https://api.venice.ai/api/v1/chat/completions\"}'"],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"catalog-decoys","name":"Decoy / zombie blacklist","description":"Searchable catalog of x402 endpoint risk signals; scam-like decoys, zombies, and price-traps flagged.","tags":["x402","risk-signal","x402 endpoint risk","blacklist","x402 scam check","decoy-detection","zombie-detection","never-paid"],"examples":["curl -X POST https://x402station.io/api/v1/catalog/decoys -H \"Content-Type: application/json\" -d '{}'"],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"alternatives","name":"Routing fallback — siblings to a flagged endpoint","description":"Avoid paying unsafe x402 endpoints: ranked safe alternatives for the same capability.","tags":["x402","risk-signal","x402 endpoint risk","alternatives","routing","fallback","discovery"],"examples":["curl -X POST https://x402station.io/api/v1/alternatives -H \"Content-Type: application/json\" -d '{\"url\":\"https://api.venice.ai/api/v1/chat/completions\"}'","curl -X POST https://x402station.io/api/v1/alternatives -H \"Content-Type: application/json\" -d '{\"taskClass\":\"llm-completions\",\"limit\":3}'"],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"whats-new","name":"Catalog diff polling (added / removed endpoints)","description":"New/removed x402 resources: discover unknown endpoints, then preflight before PAYMENT-SIGNATURE.","tags":["x402","risk-signal","x402 endpoint risk","catalog","diff","polling","aggregation"],"examples":["curl -X POST https://x402station.io/api/v1/whats-new -H \"Content-Type: application/json\" -d '{}'","curl -X POST https://x402station.io/api/v1/whats-new -H \"Content-Type: application/json\" -d '{\"since\":\"2026-04-27T00:00:00Z\",\"limit\":50}'"],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"credits","name":"Bulk-prepaid preflight bundle","description":"Prepaid credit pack for high-frequency x402 scam checks, preflight, and verified calls.","tags":["x402","credits","bulk","preflight","autopay safety"],"examples":["curl -X POST https://x402station.io/api/v1/credits -H \"Content-Type: application/json\" -d '{}'","curl https://x402station.io/api/v1/credits/0a44f6b8-3b7d-4f2a-9e3a-2c5fd1b0aa11","curl -X POST https://x402station.io/api/v1/preflight -H \"Content-Type: application/json\" -H \"X-Credit-Id: 0a44f6b8-...\" -d '{\"url\":\"https://api.example.com/route\"}'"],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"watch","name":"Webhook alerts on x402 endpoint state changes","description":"Monitor x402 endpoint risk; webhook on scam-like decoy / zombie / price-trap status changes.","tags":["x402","risk-signal","x402 endpoint risk","webhook","alerts","subscription","monitoring"],"examples":["curl -X POST https://x402station.io/api/v1/watch -H \"Content-Type: application/json\" -d '{\"url\":\"https://api.venice.ai/api/v1/chat/completions\",\"webhookUrl\":\"https://your-agent.example.com/x402-alerts\",\"signals\":[\"zombie\",\"decoy_price_extreme\"]}'","curl -H \"x-x402station-secret: <secret>\" https://x402station.io/api/v1/watch/<watchId>","curl -X DELETE -H \"x-x402station-secret: <secret>\" https://x402station.io/api/v1/watch/<watchId>"],"inputModes":["application/json"],"outputModes":["application/json"]},{"id":"verified","name":"Provider audit + 30-day signed certificate","description":"Verify x402 endpoint before paying: signed certificate with deeper, auditable evidence for agents/policies that need a safety record.","tags":["x402","risk-signal","x402 endpoint risk","verified","badge","provider","trust","certificate","audit"],"examples":["curl -X POST https://x402station.io/api/v1/verified -H \"Content-Type: application/json\" -d '{\"url\":\"https://api.example.com/route\",\"name\":\"Example\"}'","curl https://x402station.io/api/v1/verified/<certId>"],"inputModes":["application/json"],"outputModes":["application/json","image/svg+xml","text/html"]}],"x-x402":{"version":2,"facilitator":"https://x402.org/facilitator","networks":["eip155:8453","eip155:84532"],"asset":"USDC","scheme":"exact","payTo":"0x4053338C7cB38624C0bc23c900F78Cf8470b4E38","manifest":"https://x402station.io/.well-known/x402","openapi":"https://x402station.io/api/openapi.json"},"x-datasets":[{"id":"x402station/preflight-dataset-v0_1","name":"x402station.io Preflight Dataset v0.1","status":"planned","url":"https://huggingface.co/datasets/x402station/preflight-dataset-v0_1","license":"CC-BY-4.0","refreshCadence":"planned weekly snapshot","boundary":"Endpoint-level aggregate probe data is planned for public release; raw probe-by-probe time-series remains gated."}],"x-articles":[{"title":"We probed 20,338 x402 endpoints. 161 are agent honeypots.","url":"https://dev.to/afx/we-probed-20338-x402-endpoints-161-are-agent-honeypots-4c3n","published":"2026-04-26"}]}