This release includes 2 breaking changes for platform teams planning a safe upgrade.
✓ No known CVEs patched in this version
Affected surfaces
Summary
AI summaryBumped casper-js-sdk minimum version to ^5.0.11 and switched all imports to named exports, fixing crashes for pure‑ESM consumers.
Full changelog
Fixed
Pure-ESM consumers crashed at module load with:
```
SyntaxError: The requested module 'casper-js-sdk' does not provide an export named 'default'
```
casper-js-sdk shipped a real ESM build in 5.0.10+ via the exports field. The new ESM module has no default export, so the SDK's import casperSdk from 'casper-js-sdk' pattern (introduced in 0.1.x for CJS-interop) no longer worked once consumers picked up the newer transitive dep.
What changed
- All 7 import sites now use named imports:
import { PublicKey, SessionBuilder, ... } from 'casper-js-sdk' - Bumped
casper-js-sdkfloor from^5.0.6to^5.0.11(first version with the proper ESM build)
Verified end-to-end
In a pure .mjs consumer (Node 23.11): getTokens, getSwapHistory, getTokenBalance, and buildSwap (full SessionBuilder/PublicKey path producing a valid TransactionV1) all work.
Note for 0.4.0 users
If you installed 0.4.0 and hit the SyntaxError above, upgrade to 0.4.1:
```bash
npm install @make-software/cspr-trade-mcp@latest @make-software/cspr-trade-mcp-sdk@latest
```
Packages
@make-software/[email protected]@make-software/[email protected]
Breaking Changes
- Minimum version requirement for `casper-js-sdk` raised from ^5.0.6 to ^5.0.11
- All import statements changed from default imports (`import casperSdk from 'casper-js-sdk'`) to named imports (e.g., `import { PublicKey, SessionBuilder } from 'casper-js-sdk'`).
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About make-software/cspr-trade-mcp
Non-custodial DEX trading on the Casper Network via CSPR.trade
Related context
Beta — feedback welcome: [email protected]