szhygulin/recon-crypto-mcp

Highlights

New tools

• resolve_token (#440) — symbol+chain → canonical contract w/ bridged-variant warnings (USDC vs USDC.e on Arbitrum/Polygon/Optimism, USDC vs USDbC on Base).
• list_solana_validators (#436) — stakewiz-backed ranking helper for prepare_native_stake_delegate. Surfaces wiz_score, commission, MEV-enabled, APY estimate, delinquent + superminority flags.
• prepare_sunswap_swap (#432) — TRON-native DEX for same-chain TRX↔TRC20 swaps.
• EVM + Solana swap filters (#439, #516) — excludeExchanges / excludeBridges / order (LiFi), dexes / excludeDexes (Jupiter).

Security hardening

• Invariant #14 (#460) — durableBindings field on every prepare_* tool that binds funds to a durable on-chain object selected from a multi-candidate set (validator vote pubkey, TRON SR, Compound Comet, Morpho marketId, MarginFi bank, Uniswap V3 LP tokenId, BTC multisig xpub, allowance spender). Skill consumes it as the assertion target.
• Invariant #8 BIP-137 hardening (#454) — messageSha256 byte-fingerprint in sign_message_btc / ltc responses + drainer-string refusal (transfer / authorize / grant / custody / release / consent markers, plus multi-word templates).
• SignedContactEntry.intendedChains (#482) — CONTACT-CHAIN MISMATCH warning when prepare's chain arg doesn't match the contact's intended chain set.
• UnsignedTx.secondLlmRequired scaffold (#501) — flag for Inv #12.5 hard-trigger ops.

Token-send

• tokenClass framework (#441) — non-standard transfer-semantics flags (rebasing seeded; blocklisted/FoT/pausable/upgradeable_admin deferred per #508).
• prepare_solana_native_send memo (#434) — optional UTF-8 memo via SPL Memo program v2.
• prepare_morpho_repay accepts amount: "max" (#437) — shares-mode close, exact regardless of accrued interest between sign and broadcast.

Yields v2 (#431)

• DefiLlama bundle (#287, #289, #290, #291) — Marinade + Jito + Kamino-lend + Morpho-Blue curated vaults via one cached fetch.
• MarginFi on-chain wallet-less reader (#288) — DefiLlama doesn't carry MarginFi borrow-lend.
• EigenLayer + native-stake deferred indefinitely (#292, #293) — LRT issuers + Marinade/Jito are the practical substitutes.

PnL

• get_pnl_summary mtd period (#447) — calendar month-to-date.

Fixes

• TRON_TOKENS.USDD pointed at WTRX (#507).
• Self-referencing glama badge breaking on glama.ai (#521).

Roadmap defers

• BIP-322 message signing (#438), prepare_eip7702_authorization (#481), Tier-1 bridge facet decoders (#451), Solana NFT trio (#474 / #475 / #476), BTC/LTC dryRun (#479), solo-validator deposit (#430).

Deliberately deferred

• Token-class seed data for blocklisted/FoT/pausable/upgradeable_admin (#508) — closed as won't-fix-until-concrete-case. Three classes have no live targets; upgradeable_admin needs a more targeted rule. Framework itself is shipped.
• Multi-route swap comparison endpoint (#517) — closed; order: "CHEAPEST" covers the dominant case.
• Skill-side coordination for Invariant #14 enforcement (#460) — companion work in vaultpilot-security-skill. The MCP-side durableBindings field is wire-ready; skill version bump + sentinel update lands separately.