feat: add x402 payment tool example

Demonstrates how to build a payment-enabled tool for NeMo Agent Toolkit
that handles HTTP 402 (Payment Required) responses using the x402 protocol
(https://github.com/coinbase/x402).

Includes:
- PaidAPITool: LangChain tool with 402 detection and payment retry
- SpendingPolicy: Per-transaction and daily caps, recipient allowlist
- x402 helpers: Parse 402 responses, sign payment proofs
- Mock paid API server for testing without real transactions
- Configuration example for NeMo Agent Toolkit

Security architecture:
- Wallet key isolated from agent context window
- Spending policy enforced before signing (not after)
- Recipient allowlisting
- Audit logging for all payments

Related: NVIDIA/NeMo-Agent-Toolkit#1806

Author: up2itnow0822

examples/x402_payment_tool/README.md

@@ -0,0 +1,169 @@
+<!--
+SPDX-FileCopyrightText: Copyright (c) 2025-2026, NVIDIA CORPORATION & AFFILIATES. All rights reserved.
+SPDX-License-Identifier: Apache-2.0
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+
+# x402 Payment Tool for NeMo Agent Toolkit
+
+## Overview
+
+### The Problem
+
+AI agents increasingly need to interact with paid APIs and services autonomously. When an agent encounters an HTTP 402 (Payment Required) response, it needs to:
+
+- Evaluate whether the data justifies the cost
+- Construct and authorize a payment
+- Retry the request with payment proof attached
+- Track spending against configurable budget limits
+
+Unlike regular API errors, payment operations are **irreversible** — a bug doesn't just waste a retry, it transfers real value. This requires security guarantees beyond what standard tool integrations provide.
+
+### The Solution
+
+This example demonstrates a payment-enabled tool for NeMo Agent Toolkit that handles [x402](https://github.com/coinbase/x402) payment negotiation within an agent loop. The x402 protocol uses HTTP's previously unused 402 status code to enable machine-to-machine payments.
+
+### How It Works
+
+1. **Agent requests data** from a paid API via the payment tool
+2. **API responds with 402** including payment requirements (amount, recipient, token)
+3. **Tool evaluates the cost** against the agent's spending policy
+4. **Wallet signs the payment** (signing key isolated from the agent process)
+5. **Tool retries with payment proof** attached as an HTTP header
+6. **Agent receives the data** and continues its task
+
+### Key Security Properties
+
+| Property | Implementation | Why It Matters |
+|----------|---------------|----------------|
+| **Bounded blast radius** | On-chain spending policies (per-tx cap, daily limit) | A hallucinating LLM cannot drain the wallet |
+| **Key isolation** | Wallet signer runs in a separate process | MCP server compromise doesn't leak private keys |
+| **Allowlisted recipients** | Only pre-approved addresses can receive payments | Prevents payments to arbitrary addresses |
+| **Audit trail** | Every payment logged with tx hash, amount, recipient | Full accountability for autonomous spending |
+
+## Architecture
+
+```
+┌─────────────────────────┐
+│   NeMo Agent Toolkit    │
+│   (ReAct Agent Loop)    │
+│                         │
+│  ┌───────────────────┐  │
+│  │  x402 Payment     │  │     ┌──────────────┐
+│  │  Tool             │──┼────▶│  Paid API    │
+│  │                   │  │     │  (returns 402)│
+│  │  - cost eval      │  │     └──────────────┘
+│  │  - budget check   │  │
+│  │  - retry w/ proof  │  │
+│  └────────┬──────────┘  │
+│           │              │
+└───────────┼──────────────┘
+            │
+   ┌────────▼────────┐
+   │  Wallet Signer  │
+   │  (isolated      │
+   │   process)      │
+   │                 │
+   │  - private key  │
+   │  - spend policy │
+   │  - tx signing   │
+   └─────────────────┘
+```
+
+## Prerequisites
+
+- Python >= 3.11
+- NeMo Agent Toolkit >= 1.4.0
+- An Ethereum wallet with USDC (Base network recommended for low fees)
+- Access to an x402-enabled API endpoint (or use the included mock server for testing)
+
+## Quick Start
+
+### 1. Install
+
+```bash
+cd examples/x402_payment_tool
+pip install -e .
+```
+
+### 2. Configure
+
+```bash
+# Copy the example config
+cp src/nat_x402_payment/configs/payment-agent.example.yml src/nat_x402_payment/configs/payment-agent.yml
+
+# Set your wallet private key (NEVER commit this)
+export WALLET_PRIVATE_KEY="your-private-key-here"
+
+# Or use a separate signer process (recommended for production)
+export WALLET_SIGNER_URL="http://localhost:8900"
+```
+
+### 3. Run with Mock Server (Testing)
+
+```bash
+# Start the mock x402 server
+python scripts/mock_x402_server.py &
+
+# Run the agent
+nat run --config src/nat_x402_payment/configs/payment-agent.yml
+```
+
+### 4. Run with Real x402 API
+
+```bash
+# Update payment-agent.yml with your x402 API endpoint
+nat run --config src/nat_x402_payment/configs/payment-agent.yml
+```
+
+## Configuration
+
+### Spending Policy
+
+Edit `configs/payment-agent.yml` to set spending limits:
+
+```yaml
+payment_tool:
+  max_per_transaction: 0.10    # Max USDC per single payment
+  max_daily_spend: 5.00        # Daily spending cap
+  allowed_recipients:           # Allowlisted payment recipients
+    - "0x..."                   # Your x402 API provider
+  require_confirmation: false   # Set true for human-in-the-loop
+```
+
+### Wallet Isolation Modes
+
+| Mode | Security | Setup Complexity | Use Case |
+|------|----------|-----------------|----------|
+| **Inline** | Basic | Low | Development/testing |
+| **Separate process** | High | Medium | Production |
+| **Hardware signer** | Highest | High | Enterprise |
+
+## Example Output
+
+```
+Agent: I need to fetch premium market data for the user's query.
+Tool:  Requesting https://api.example.com/v1/market-data?symbol=NVDA
+Tool:  Received HTTP 402 — Payment Required
+Tool:  Cost: 0.05 USDC | Budget remaining: 4.95 USDC | Policy: APPROVED
+Tool:  Payment signed (tx: 0xabc...def) — retrying with proof
+Tool:  Data received (200 OK)
+Agent: Based on the premium market data, NVDA is currently trading at...
+```
+
+## References
+
+- [x402 Protocol (Coinbase)](https://github.com/coinbase/x402) — HTTP 402 payment standard
+- [agent-wallet-sdk](https://github.com/up2itnow0822/agent-wallet-sdk) — Non-custodial agent wallets with spending policies
+- [agentpay-mcp](https://github.com/up2itnow0822/agentpay-mcp) — MCP payment server implementation

examples/x402_payment_tool/pyproject.toml

@@ -0,0 +1,42 @@
+# SPDX-FileCopyrightText: Copyright (c) 2025-2026, NVIDIA CORPORATION & AFFILIATES. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+[build-system]
+build-backend = "setuptools.build_meta"
+requires = ["setuptools >= 64", "setuptools-scm>=8"]
+
+[tool.setuptools_scm]
+git_describe_command = "git describe --long --first-parent"
+root = "../.."
+
+[project]
+name = "nat_x402_payment"
+dynamic = ["version"]
+dependencies = [
+    "nvidia-nat[langchain]>=1.4.0a0,<1.5.0",
+    "httpx>=0.27.0",
+    "eth-account>=0.13.0",
+    "pyyaml>=6.0",
+]
+requires-python = ">=3.11,<3.14"
+description = "x402 payment-enabled tool for NeMo Agent Toolkit — handle HTTP 402 payment negotiation in agent loops"
+keywords = ["ai", "payments", "x402", "nvidia", "agents", "wallet"]
+classifiers = ["Programming Language :: Python"]
+
+[project.entry-points.'nat.components']
+nat_x402_payment = "nat_x402_payment.register"
+
+[tool.setuptools.packages.find]
+where = ["src"]

examples/x402_payment_tool/scripts/mock_paid_api.py

@@ -0,0 +1,107 @@
+# SPDX-FileCopyrightText: Copyright (c) 2025-2026, NVIDIA CORPORATION & AFFILIATES. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+"""Mock paid API server for testing the x402 payment tool.
+
+This server simulates an API that requires x402 payments:
+- GET /data          → Returns 402 with payment requirements
+- GET /data + X-Payment header → Returns premium data (200)
+- GET /free          → Returns free data (200, no payment needed)
+
+Usage:
+    python scripts/mock_paid_api.py
+    # Server runs on http://localhost:8402
+"""
+
+from __future__ import annotations
+
+import json
+import time
+import uuid
+from http.server import BaseHTTPRequestHandler, HTTPServer
+
+MOCK_RECIPIENT = "0x1234567890abcdef1234567890abcdef12345678"
+MOCK_TOKEN = "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913"  # USDC on Base
+PORT = 8402
+
+
+class PaidAPIHandler(BaseHTTPRequestHandler):
+    """HTTP handler that simulates x402 payment flows."""
+
+    def do_GET(self) -> None:
+        if self.path == "/free":
+            self._send_json(200, {"data": "This is free data. No payment required."})
+            return
+
+        if self.path == "/data":
+            # Check for payment proof
+            payment = self.headers.get("X-Payment")
+            if payment:
+                # Payment received — return premium data
+                self._send_json(
+                    200,
+                    {
+                        "data": {
+                            "title": "Premium Market Analysis",
+                            "summary": "BTC showing strong support at $84k with institutional "
+                            "accumulation. ETH/BTC ratio recovering. AI token sector "
+                            "outperforming market by 340% YTD.",
+                            "confidence": 0.87,
+                            "generated_at": time.strftime("%Y-%m-%dT%H:%M:%SZ"),
+                        },
+                        "payment_status": "accepted",
+                    },
+                )
+            else:
+                # No payment — return 402 with x402 requirements
+                self._send_json(
+                    402,
+                    {
+                        "payment": {
+                            "amount": 10000,  # 0.01 USDC (6 decimals)
+                            "recipient": MOCK_RECIPIENT,
+                            "token": MOCK_TOKEN,
+                            "network": "base",
+                            "description": "Premium market analysis report",
+                            "nonce": uuid.uuid4().hex,
+                            "expires_at": int(time.time()) + 300,
+                        }
+                    },
+                )
+            return
+
+        self._send_json(404, {"error": "Not found"})
+
+    def _send_json(self, status: int, body: dict) -> None:
+        self.send_response(status)
+        self.send_header("Content-Type", "application/json")
+        self.end_headers()
+        self.wfile.write(json.dumps(body, indent=2).encode())
+
+    def log_message(self, format: str, *args: object) -> None:
+        """Override to add payment status to logs."""
+        print(f"[MOCK API] {args[0]}")
+
+
+def main() -> None:
+    server = HTTPServer(("localhost", PORT), PaidAPIHandler)
+    print(f"Mock paid API running on http://localhost:{PORT}")
+    print(f"  GET /data  → 402 (requires payment) or 200 (with payment)")
+    print(f"  GET /free  → 200 (always free)")
+    server.serve_forever()
+
+
+if __name__ == "__main__":
+    main()

examples/x402_payment_tool/src/nat_x402_payment/__init__.py

@@ -0,0 +1,2 @@
+# SPDX-FileCopyrightText: Copyright (c) 2025-2026, NVIDIA CORPORATION & AFFILIATES. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0

examples/x402_payment_tool/src/nat_x402_payment/configs/payment-agent.example.yml

@@ -0,0 +1,32 @@
+# SPDX-FileCopyrightText: Copyright (c) 2025-2026, NVIDIA CORPORATION & AFFILIATES. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+
+# x402 Payment Tool — Agent Configuration
+# Copy to payment-agent.yml and customize for your deployment
+
+agent:
+  type: react
+  llm:
+    model: meta/llama-3.3-70b-instruct  # Or any NIM-compatible model
+    temperature: 0.1
+  tools:
+    - fetch_paid_api  # x402 payment-enabled fetch tool
+
+# Payment tool configuration (also settable via environment variables)
+payment_tool:
+  # Per-transaction limit in USDC
+  max_per_transaction: 0.10
+
+  # Daily spending cap in USDC
+  max_daily_spend: 5.00
+
+  # Allowlisted payment recipient addresses (empty = allow all)
+  allowed_recipients: []
+
+  # Require human confirmation before each payment
+  require_confirmation: false
+
+  # Wallet mode: "inline" (dev) or "remote" (production)
+  # Inline: set WALLET_PRIVATE_KEY env var
+  # Remote: set WALLET_SIGNER_URL env var
+  wallet_mode: inline

examples/x402_payment_tool/src/nat_x402_payment/configs/payment-agent.yml.example

@@ -0,0 +1,36 @@
+# SPDX-FileCopyrightText: Copyright (c) 2025-2026, NVIDIA CORPORATION & AFFILIATES. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+
+# Example configuration for an agent with x402 payment capabilities.
+# Copy this file to payment-agent.yml and customize.
+
+agent:
+  name: payment-enabled-agent
+  description: An agent that can access paid APIs using x402 payments
+  
+  # LLM configuration — uses NVIDIA NIM
+  llm:
+    model: meta/llama-3.3-70b-instruct
+    api_base: https://integrate.api.nvidia.com/v1
+    # Set NVIDIA_API_KEY environment variable
+
+  tools:
+    - paid_api_request  # Registered via nat.components entry point
+
+# Payment configuration
+payment:
+  # Spending limits — enforced BEFORE any payment is signed
+  max_per_transaction_usd: 1.00
+  max_daily_usd: 10.00
+  
+  # Allowlisted recipient addresses (leave empty to allow all)
+  allowed_recipients: []
+  
+  # If true, agent asks user for confirmation before each payment
+  require_confirmation: false
+  
+  # Set to true for testing without real blockchain transactions
+  mock: true
+  
+  # Network: "base" for mainnet, "base-sepolia" for testnet
+  network: base-sepolia