feat: email billing accounts + Stripe tier checkout + email packs

5 new MCP tools + CLI billing command + OpenClaw shim for run402 email
billing feature (phase 17 of email-billing-accounts).

MCP tools:
- create_email_billing_account(email) — create Stripe-only billing account
- link_wallet_to_account(billing_account_id, wallet) — hybrid Stripe+x402
- tier_checkout(tier, email|wallet) — Stripe tier subscription
- buy_email_pack(email|wallet) — $5 pack (10k emails, never expire)
- set_auto_recharge(billing_account_id, enabled, threshold?) — auto refill

CLI:
- run402 billing create-email <email>
- run402 billing link-wallet <account_id> <wallet>
- run402 billing tier-checkout <tier> [--email|--wallet]
- run402 billing buy-pack [--email|--wallet]
- run402 billing auto-recharge <account_id> <on|off> [--threshold <n>]
- run402 billing balance <identifier>
- run402 billing history <identifier> [--limit <n>]

OpenClaw: openclaw/scripts/billing.mjs re-exports from cli/lib/

Tests: 13/13 sync tests passing. 21/21 SKILL tests passing. Tool docs
updated in SKILL.md and README.md.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

Author: volinskey

README.md

@@ -90,6 +90,11 @@ npx run402-mcp
 | `register_sender_domain` | Register a custom email sending domain (DKIM verification). |
 | `sender_domain_status` | Check sender domain verification status. |
 | `remove_sender_domain` | Remove a custom sender domain. |
+| `create_email_billing_account` | Create a Stripe-only billing account by email (no wallet required). |
+| `link_wallet_to_account` | Link a wallet to an email account for hybrid Stripe + x402 access. |
+| `tier_checkout` | Subscribe/renew/upgrade to a tier via Stripe (alternative to x402). |
+| `buy_email_pack` | Buy a $5 email pack (10,000 emails, never expire). |
+| `set_auto_recharge` | Enable/disable auto-recharge for email packs when credits run low. |
 
 ## Client Configuration
 

SKILL.md

@@ -443,6 +443,73 @@ Remove a project's custom sender domain. Email reverts to sending from `mail.run
 remove_sender_domain(project_id: "prj_...")
 ```
 
+### create_email_billing_account
+
+Create a Stripe-only billing account identified by email (no wallet required). Sends a verification email. Idempotent — duplicate emails return the existing account.
+
+**Parameters:**
+- `email` (required) — Email address
+
+**Example:**
+```
+create_email_billing_account(email: "user@example.com")
+```
+
+### link_wallet_to_account
+
+Link a wallet to an existing email billing account for hybrid Stripe + x402 access. Fails if the wallet is already linked elsewhere.
+
+**Parameters:**
+- `billing_account_id` (required) — The billing account ID
+- `wallet` (required) — Wallet address (0x...)
+
+**Example:**
+```
+link_wallet_to_account(billing_account_id: "acct_...", wallet: "0x...")
+```
+
+### tier_checkout
+
+Subscribe, renew, or upgrade a run402 tier via Stripe credit card. Alternative to x402 on-chain payment. Returns a Stripe checkout URL for the user to complete.
+
+**Parameters:**
+- `tier` (required) — `prototype`, `hobby`, or `team`
+- `email` (optional) — Email address for email-based accounts
+- `wallet` (optional) — Wallet address for wallet-based accounts
+- (must provide either email or wallet)
+
+**Example:**
+```
+tier_checkout(tier: "hobby", email: "user@example.com")
+```
+
+### buy_email_pack
+
+Buy a $5 email pack (10,000 emails, never expire). Pack credits activate only when the tier daily limit is exhausted AND the project has a verified custom sender domain. Returns a Stripe checkout URL.
+
+**Parameters:**
+- `email` (optional) — Email address for email-based accounts
+- `wallet` (optional) — Wallet address for wallet-based accounts
+
+**Example:**
+```
+buy_email_pack(email: "user@example.com")
+```
+
+### set_auto_recharge
+
+Enable or disable automatic $5 email pack repurchase when credits drop below a threshold. Requires a saved Stripe payment method. 3 consecutive failures auto-disable.
+
+**Parameters:**
+- `billing_account_id` (required) — The billing account ID
+- `enabled` (required) — Boolean
+- `threshold` (optional) — Credit threshold to trigger (default 2000)
+
+**Example:**
+```
+set_auto_recharge(billing_account_id: "acct_...", enabled: true, threshold: 2000)
+```
+
 ## Standard Workflow
 
 Follow this sequence to go from zero to a working database:

cli/cli.mjs

@@ -39,6 +39,7 @@ Commands:
   message     Send messages to Run402 developers
   auth        Manage project user authentication (magic link, passwords, settings)
   sender-domain  Manage custom email sender domain (register, status, remove)
+  billing     Email billing accounts, Stripe tier checkout, email packs
   agent       Manage agent identity (contact info)
 
 Run 'run402 <command> --help' for detailed usage of each command.
@@ -171,6 +172,11 @@ switch (cmd) {
     await run(sub, rest);
     break;
   }
+  case "billing": {
+    const { run } = await import("./lib/billing.mjs");
+    await run(sub, rest);
+    break;
+  }
   default:
     console.error(`Unknown command: ${cmd}\n`);
     console.log(HELP);

cli/lib/billing.mjs

@@ -0,0 +1,169 @@
+import { API } from "./config.mjs";
+
+const HELP = `run402 billing — Email billing accounts, Stripe tier checkout, email packs
+
+Usage:
+  run402 billing <subcommand> [args...]
+
+Subcommands:
+  create-email <email>                     Create an email billing account
+  link-wallet <account_id> <wallet>        Link a wallet to an email account
+  tier-checkout <tier> [--email <e> | --wallet <w>]    Stripe tier checkout
+  buy-pack [--email <e> | --wallet <w>]    Buy \$5 email pack (10,000 emails)
+  auto-recharge <account_id> <on|off> [--threshold <n>]
+  balance <identifier>                     Balance by email or wallet (0x...)
+  history <identifier> [--limit <n>]       Ledger history by email or wallet
+
+Examples:
+  run402 billing create-email user@example.com
+  run402 billing tier-checkout hobby --email user@example.com
+  run402 billing buy-pack --wallet 0x1234...
+  run402 billing auto-recharge acct_abc on --threshold 2000
+  run402 billing balance user@example.com
+`;
+
+function parseFlag(args, flag) {
+  for (let i = 0; i < args.length; i++) {
+    if (args[i] === flag && args[i + 1]) return args[i + 1];
+  }
+  return null;
+}
+
+async function createEmail(args) {
+  const email = args[0];
+  if (!email) {
+    console.error(JSON.stringify({ status: "error", message: "Missing email. Usage: run402 billing create-email <email>" }));
+    process.exit(1);
+  }
+  const res = await fetch(`${API}/billing/v1/accounts`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify({ email }),
+  });
+  const data = await res.json();
+  if (!res.ok) { console.error(JSON.stringify({ status: "error", http: res.status, ...data })); process.exit(1); }
+  console.log(JSON.stringify(data, null, 2));
+}
+
+async function linkWallet(args) {
+  const accountId = args[0];
+  const wallet = args[1];
+  if (!accountId || !wallet) {
+    console.error(JSON.stringify({ status: "error", message: "Usage: run402 billing link-wallet <account_id> <wallet>" }));
+    process.exit(1);
+  }
+  const res = await fetch(`${API}/billing/v1/accounts/${encodeURIComponent(accountId)}/link-wallet`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify({ wallet }),
+  });
+  const data = await res.json();
+  if (!res.ok) { console.error(JSON.stringify({ status: "error", http: res.status, ...data })); process.exit(1); }
+  console.log(JSON.stringify(data, null, 2));
+}
+
+async function tierCheckout(args) {
+  const tier = args[0];
+  if (!tier) {
+    console.error(JSON.stringify({ status: "error", message: "Usage: run402 billing tier-checkout <tier> [--email <e> | --wallet <w>]" }));
+    process.exit(1);
+  }
+  const email = parseFlag(args, "--email");
+  const wallet = parseFlag(args, "--wallet");
+  if (!email && !wallet) {
+    console.error(JSON.stringify({ status: "error", message: "Must provide --email or --wallet" }));
+    process.exit(1);
+  }
+  const body = email ? { email } : { wallet };
+  const res = await fetch(`${API}/billing/v1/tiers/${encodeURIComponent(tier)}/checkout`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify(body),
+  });
+  const data = await res.json();
+  if (!res.ok) { console.error(JSON.stringify({ status: "error", http: res.status, ...data })); process.exit(1); }
+  console.log(JSON.stringify(data, null, 2));
+}
+
+async function buyPack(args) {
+  const email = parseFlag(args, "--email");
+  const wallet = parseFlag(args, "--wallet");
+  if (!email && !wallet) {
+    console.error(JSON.stringify({ status: "error", message: "Must provide --email or --wallet" }));
+    process.exit(1);
+  }
+  const body = email ? { email } : { wallet };
+  const res = await fetch(`${API}/billing/v1/email-packs/checkout`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify(body),
+  });
+  const data = await res.json();
+  if (!res.ok) { console.error(JSON.stringify({ status: "error", http: res.status, ...data })); process.exit(1); }
+  console.log(JSON.stringify(data, null, 2));
+}
+
+async function autoRecharge(args) {
+  const accountId = args[0];
+  const state = args[1];
+  if (!accountId || !state || !["on", "off"].includes(state)) {
+    console.error(JSON.stringify({ status: "error", message: "Usage: run402 billing auto-recharge <account_id> <on|off> [--threshold <n>]" }));
+    process.exit(1);
+  }
+  const thresholdStr = parseFlag(args, "--threshold");
+  const body = {
+    billing_account_id: accountId,
+    enabled: state === "on",
+  };
+  if (thresholdStr) body.threshold = Number(thresholdStr);
+  const res = await fetch(`${API}/billing/v1/email-packs/auto-recharge`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify(body),
+  });
+  const data = await res.json();
+  if (!res.ok) { console.error(JSON.stringify({ status: "error", http: res.status, ...data })); process.exit(1); }
+  console.log(JSON.stringify(data, null, 2));
+}
+
+async function balance(args) {
+  const id = args[0];
+  if (!id) {
+    console.error(JSON.stringify({ status: "error", message: "Usage: run402 billing balance <email-or-wallet>" }));
+    process.exit(1);
+  }
+  const res = await fetch(`${API}/billing/v1/accounts/${encodeURIComponent(id)}`);
+  const data = await res.json();
+  if (!res.ok) { console.error(JSON.stringify({ status: "error", http: res.status, ...data })); process.exit(1); }
+  console.log(JSON.stringify(data, null, 2));
+}
+
+async function history(args) {
+  const id = args[0];
+  if (!id) {
+    console.error(JSON.stringify({ status: "error", message: "Usage: run402 billing history <email-or-wallet> [--limit <n>]" }));
+    process.exit(1);
+  }
+  const limit = parseFlag(args, "--limit") || "50";
+  const res = await fetch(`${API}/billing/v1/accounts/${encodeURIComponent(id)}/history?limit=${encodeURIComponent(limit)}`);
+  const data = await res.json();
+  if (!res.ok) { console.error(JSON.stringify({ status: "error", http: res.status, ...data })); process.exit(1); }
+  console.log(JSON.stringify(data, null, 2));
+}
+
+export async function run(sub, args) {
+  if (!sub || sub === "--help" || sub === "-h") { console.log(HELP); process.exit(0); }
+  switch (sub) {
+    case "create-email": await createEmail(args); break;
+    case "link-wallet": await linkWallet(args); break;
+    case "tier-checkout": await tierCheckout(args); break;
+    case "buy-pack": await buyPack(args); break;
+    case "auto-recharge": await autoRecharge(args); break;
+    case "balance": await balance(args); break;
+    case "history": await history(args); break;
+    default:
+      console.error(`Unknown subcommand: ${sub}\n`);
+      console.log(HELP);
+      process.exit(1);
+  }
+}

openclaw/scripts/billing.mjs

@@ -0,0 +1 @@
+export { run } from "../../cli/lib/billing.mjs";

src/index.ts

@@ -85,6 +85,13 @@ import { registerSenderDomainSchema, handleRegisterSenderDomain } from "./tools/
 import { senderDomainStatusSchema, handleSenderDomainStatus } from "./tools/sender-domain-status.js";
 import { removeSenderDomainSchema, handleRemoveSenderDomain } from "./tools/remove-sender-domain.js";
 
+// New tools — email billing accounts + Stripe tier checkout + email packs
+import { createEmailBillingAccountSchema, handleCreateEmailBillingAccount } from "./tools/create-email-billing-account.js";
+import { linkWalletToAccountSchema, handleLinkWalletToAccount } from "./tools/link-wallet-to-account.js";
+import { tierCheckoutSchema, handleTierCheckout } from "./tools/tier-checkout.js";
+import { buyEmailPackSchema, handleBuyEmailPack } from "./tools/buy-email-pack.js";
+import { setAutoRechargeSchema, handleSetAutoRecharge } from "./tools/set-auto-recharge.js";
+
 // New tools — AI
 import { aiTranslateSchema, handleAiTranslate } from "./tools/ai-translate.js";
 import { aiModerateSchema, handleAiModerate } from "./tools/ai-moderate.js";
@@ -675,5 +682,42 @@ server.tool(
   async (args) => handleRemoveSenderDomain(args),
 );
 
+// --- Email billing accounts + Stripe tier checkout + email packs ---
+
+server.tool(
+  "create_email_billing_account",
+  "Create an email-based billing account (Stripe-only, no wallet required). Sends a verification email. Idempotent — duplicate emails return the existing account.",
+  createEmailBillingAccountSchema,
+  async (args) => handleCreateEmailBillingAccount(args),
+);
+
+server.tool(
+  "link_wallet_to_account",
+  "Link a wallet to an existing email billing account, enabling hybrid Stripe + x402 access. Fails if the wallet is already linked elsewhere.",
+  linkWalletToAccountSchema,
+  async (args) => handleLinkWalletToAccount(args),
+);
+
+server.tool(
+  "tier_checkout",
+  "Subscribe/renew/upgrade to a run402 tier via Stripe credit card. Alternative to x402 on-chain payment. Supports wallet or email identifier. Returns a Stripe checkout URL.",
+  tierCheckoutSchema,
+  async (args) => handleTierCheckout(args),
+);
+
+server.tool(
+  "buy_email_pack",
+  "Buy a $5 email pack (10,000 emails, never expire). Pack credits activate when tier daily limit is exhausted AND a custom sender domain is verified. Returns a Stripe checkout URL.",
+  buyEmailPackSchema,
+  async (args) => handleBuyEmailPack(args),
+);
+
+server.tool(
+  "set_auto_recharge",
+  "Enable or disable automatic email pack repurchase when credits drop below a threshold. Requires a saved Stripe payment method.",
+  setAutoRechargeSchema,
+  async (args) => handleSetAutoRecharge(args),
+);
+
 const transport = new StdioServerTransport();
 await server.connect(transport);

src/tools/buy-email-pack.ts

@@ -0,0 +1,39 @@
+import { z } from "zod";
+import { apiRequest } from "../client.js";
+import { formatApiError } from "../errors.js";
+
+export const buyEmailPackSchema = {
+  email: z.string().optional().describe("Email address (for email-based accounts)"),
+  wallet: z.string().optional().describe("Wallet address (for wallet-based accounts)"),
+};
+
+export async function handleBuyEmailPack(args: {
+  email?: string;
+  wallet?: string;
+}): Promise<{ content: Array<{ type: "text"; text: string }>; isError?: boolean }> {
+  if (!args.email && !args.wallet) {
+    return {
+      content: [{ type: "text", text: "Error: Provide either `email` or `wallet`." }],
+      isError: true,
+    };
+  }
+
+  const body: Record<string, string> = {};
+  if (args.wallet) body.wallet = args.wallet;
+  else if (args.email) body.email = args.email;
+
+  const res = await apiRequest(`/billing/v1/email-packs/checkout`, {
+    method: "POST",
+    body,
+  });
+
+  if (!res.ok) return formatApiError(res, "creating email pack checkout");
+
+  const result = res.body as { checkout_url: string; topup_id: string };
+  return {
+    content: [{
+      type: "text",
+      text: `## Email Pack Checkout Created\n\n**\$5 = 10,000 emails** (never expire)\n\n- **Topup ID:** \`${result.topup_id}\`\n\n**Send your human to complete payment:**\n${result.checkout_url}\n\nOnce paid, credits will be added to the account. Note: pack credits can only be consumed when the project has a verified custom sender domain (see \`register_sender_domain\`).`,
+    }],
+  };
+}