StellarMind

Multi-agent AI marketplace on Stellar Testnet with x402-protected premium endpoints, budget guardrails, and on-chain payment verification.

Why This Repo Exists

StellarMind demonstrates a production-style pattern for agent commerce:

• agents can call each other through paid APIs
• payment is enforced by protocol (x402), not trust alone
• spending is controlled with explicit budget policies
• every paid step can be verified on-chain

Core Capabilities

• Orchestrator that decomposes tasks and routes work to specialized agents
• Premium agent endpoints protected by @x402/express
• Automatic payment handling via @x402/fetch and Stellar settlement
• Real-time event stream (SSE) in the web dashboard
• Demo automation pipeline for recording and narrated video export

Architecture (High-Level)

Client Task + Budget
        |
        v
Orchestrator (plan, select agents, enforce spend limits)
        |
        v
/api/premium/* endpoints (x402-protected)
        |
        v
402 challenge -> signed payment -> facilitator verification
        |
        v
Agent execution + streamed updates + tx proof links

Quick Start

1) Clone and install

git clone https://github.com/Flamki/stellarmind.git
cd stellarmind
npm install

2) Configure environment

cp .env.example .env

Windows PowerShell:

Copy-Item .env.example .env

Then either:

• run npm run setup to generate testnet wallets automatically, or
• manually fill wallet fields in .env

Add your Anthropic key:

ANTHROPIC_API_KEY=sk-ant-your-key

Optional for deployments:

# Defaults to http://localhost:3001 in local dev
INTERNAL_BASE_URL=http://server:3001

3) Prepare USDC trustlines

npm run setup:usdc

4) Start the app

npm run dev

Open http://localhost:3001.

Because INTERNAL_BASE_URL defaults to http://localhost:$PORT, local demo setup stays one-command simple: npm run dev.

Deployment Notes

The orchestrator uses INTERNAL_BASE_URL for its paid internal calls to /api/premium/*.

• Local development: leave INTERNAL_BASE_URL unset and run npm run dev
• Single container / Docker Compose: set INTERNAL_BASE_URL=http://<service-name>:3001
• Remote or reverse-proxied deployment: set INTERNAL_BASE_URL to the server origin the orchestrator can actually reach, for example https://stellarmind.example.com

Examples:

# Local
PORT=3001

# Docker Compose
PORT=3001
INTERNAL_BASE_URL=http://stellarmind:3001

# Remote deployment behind HTTPS
PORT=3001
INTERNAL_BASE_URL=https://stellarmind.example.com

Operational Health Checks

StellarMind exposes lightweight endpoints for deployment tooling and load balancer probes:

• GET /healthz
  • returns 200 and status: ok when the process is alive
  • no external dependency checks are performed
• GET /readyz
  • returns 200 when the configured critical components are ready
  • returns 503 when required configuration is missing

Example /readyz response:

{
  "status": "ready",
  "ready": true,
  "timestamp": "2026-05-28T12:00:00.000Z",
  "components": {
    "app": { "ready": true, "description": "Core HTTP server initialized" },
    "anthropic": { "configured": true, "ready": true, "description": "Anthropic API key is configured for Claude-powered agents" },
    "x402": { "enabled": true, "ready": true, "description": "x402 payment wallet is configured" }
  }
}

Available Commands

Command	Purpose
npm run dev	Start local server
npm run demo	Run end-to-end demo flow
npm run preflight	Validate readiness (x402, wallets, model, payment path)
npm run setup	Generate/fund Stellar testnet wallets
npm run setup:usdc	Add USDC trustlines for settlement
npm run record:video	Capture website-only demo video
npm run voiceover	Generate narration track
npm run record:narrated	Full narrated demo render pipeline

Demo Acceptance Checklist

• npm run preflight reaches ready state
• main run shows live orchestration events
• at least one transaction hash resolves in Stellar Expert
• low-budget run demonstrates step skipping
• final narrated video is exported and reviewed

Security and Publishing Hygiene

Before pushing to GitHub:

1. Do not commit .env or wallet secrets.
2. Rotate any key that was ever exposed in terminal logs or screenshots.
3. Keep only .env.example in version control.
4. Review staged files with git status and git diff --staged.
5. Verify no private keys are present in docs, recordings, or commits.

This repo includes:

• strict secret-ignore defaults in .gitignore
• a GitHub Actions secret scan workflow (.github/workflows/secret-scan.yml)
• a dedicated security policy (SECURITY.md)

Project Structure

src/
  agents/
    orchestrator.js
    registry.js
    services.js
  stellar/
    wallet.js
  config.js
  server.js
  demo.js
  demo-preflight.js
  setup-wallets.js
  setup-usdc.js
  record-demo-video.js
  generate-demo-voiceover.js
  render-narrated-demo.js
public/
  index.html

Contributing

Read CONTRIBUTING.md before opening a PR.

License

MIT. See LICENSE.