BeastBrain Superpower Agent Resource Kit
Project-management and execution command center for BeastBrain and BeastPay on Google Cloud Run.
Cloud RunMCPGeminiBeastPay
Live Routes
{
"base_url": "https://brain-api-544494288390.us-central1.run.app",
"health": "/health",
"chat": "/chat",
"projects_app": "/projects",
"creation_app": "/creation",
"payments_app": "/payments",
"card_to_crypto_app": "/card-to-crypto",
"card_to_crypto_browser": "/card-to-crypto/browser",
"card_to_crypto_browser_checkout": "/card-to-crypto/browser/checkout",
"card_to_crypto_emirates_id": "/card-to-crypto/browser",
"card_to_crypto_status": "/api/card-to-crypto/status",
"card_to_crypto_checkout": "/api/card-to-crypto/checkout",
"card_to_crypto_mit_status": "/api/card-to-crypto/mit/status",
"card_to_crypto_mit_setup": "/api/card-to-crypto/mit/setup",
"card_to_crypto_mit_charge": "/api/card-to-crypto/mit/charge",
"beastbrain_app": "/beastbrain",
"staff_login_app": "/staff-login",
"beastbrain_overview": "/api/beastbrain/overview",
"documents_app": "/documents",
"projects_api": "/api/projects",
"creation_capabilities": "/api/creation/capabilities",
"creation_jobs": "/api/creation/jobs",
"staff_api": "/api/staff",
"staff_access_login": "/api/staff/access-login",
"staff_access_log": "/api/staff/access-log",
"staff_device_login": "/api/staff/device-login",
"staff_device_checkins": "/api/staff/{staff_id}/device-checkins",
"staff_device_advice": "/api/staff/{staff_id}/device-checkins/{event_id}/advice",
"staff_device_logins": "/api/staff/{staff_id}/device-logins",
"library_api": "/api/library",
"task_api": "/api/tasks/{task_id}",
"ai_project_update": "/api/projects/{project_id}/ai-update",
"project_skill": "/api/projects/{project_id}/skill",
"project_skill_generate": "/api/projects/{project_id}/skill/generate",
"project_agent_run": "/api/projects/{project_id}/agent/run",
"project_agent_runs": "/api/projects/{project_id}/agent/runs",
"project_agent_governance": "/api/projects/{project_id}/agent-governance",
"project_agent_governance_apply": "/api/projects/{project_id}/agent-governance/apply",
"project_agent_tools": "/api/projects/{project_id}/agent-tools",
"project_agent_tools_apply": "/api/projects/{project_id}/agent-tools/apply",
"ai_access_presets": "/api/ai/access-presets",
"codex_full_access_preset": "/api/ai/access-presets/codex_full_access",
"codex_reasoner": "reasoner=codex with OPENAI_API_KEY or X-OpenAI-API-Key",
"venice_reasoner": "reasoner=venice with VENICE_API_KEY and VENICE_MODEL",
"pidev_reasoner": "reasoner=pidev \u2014 uses pi coding agent as LLM backend (PI_DEV_PROVIDER, PI_DEV_MODEL)",
"payment_department_status": "/api/payment-department/status",
"payment_department_card_lock_setup": "/api/payment-department/card-lock/setup",
"payment_department_settlement_evaluate": "/api/payment-department/settlement/evaluate",
"payment_department_settlements": "/api/payment-department/settlements",
"bank_exchange_pipeline_status": "/api/bank-exchange-pipeline/status",
"bank_exchange_pipeline_usage_threshold": "/api/bank-exchange-pipeline/usage-threshold/evaluate",
"bank_exchange_pipeline_report": "/api/bank-exchange-pipeline/report",
"payment_ops_assist_status": "/api/payment-ops/assist/status",
"payment_ops_assist_runs": "/api/payment-ops/assist/runs",
"payment_ops_banxa_manual_touch": "/api/payment-ops/banxa/manual-touch",
"project_usage_event": "/api/projects/{project_id}/usage/events",
"project_usage_evaluate": "/api/projects/{project_id}/usage/evaluate",
"project_usage_ledger": "/api/projects/{project_id}/usage/ledger",
"ollama_tools": "/api/ollama/tools",
"ollama_tool_call": "/api/ollama/tools/call",
"vin_decode": "/api/vin/decode",
"transak_onramp": "/api/onramp/transak/session",
"kyc_users": "/api/kyc/users",
"kyc_documents": "/api/kyc/users/{user_id}/documents",
"kyc_sumsub_token": "/api/kyc/users/{user_id}/sumsub/token",
"kyc_status": "/api/kyc/users/{user_id}/verification",
"kyc_sumsub_webhook": "/api/kyc/webhooks/sumsub",
"documents": "/api/documents",
"document_download": "/api/documents/{document_id}/download",
"real_card_onramps": "/api/payment-gateways/real-card",
"real_card_checkout": "/api/gateway-payment",
"live_checkout_browser": "/card-to-crypto/browser",
"emirates_id_verification": "/card-to-crypto/browser",
"checkout_manus": "/card-to-crypto/browser/checkout",
"card_to_crypto_readiness_gates": "/api/card-to-crypto/readiness-gates",
"card_to_crypto_proofs": "/api/card-to-crypto/proofs",
"card_to_crypto_webhooks": "/api/webhooks/card-to-crypto/{provider}",
"card_to_crypto_webhooks_recent": "/api/card-to-crypto/webhooks/recent",
"card_to_crypto_gateway_status": "/api/card-to-crypto/gateway-status",
"card_to_crypto_readiness_proofs": "/api/card-to-crypto/readiness-proofs",
"alchemy_pay_callback": "/api/alchemy-pay/callback",
"card_usage_options": "/api/card-usage/options",
"card_usage_lock": "/api/card-usage/lock",
"checkout_lite_gateways": "/api/payment-gateways/checkout-lite",
"checkout_lite_payment": "/api/checkout-lite/payment",
"checkout_lite_cryptapi_webhook": "/api/checkout-lite/webhook/cryptapi",
"mcp": "/mcp/mcp"
}
Operating Workflow
- Inspect local repo truth before guessing.
- Reproduce the exact live or local symptom.
- Identify the failing boundary: UI, API route, provider, env secret, Cloud Run service, external API, or approval state.
- Patch the smallest responsible code or config path.
- Run focused verification.
- Track project ownership, task assignment, staff status, library files, links, blockers, and completion evidence.
- Deploy to Cloud Run when live behavior depends on it.
- Recheck the public endpoint and update the handoff artifact.
Commands
health
curl -sS https://brain-api-544494288390.us-central1.run.app/health
chat
curl -sS -X POST https://brain-api-544494288390.us-central1.run.app/chat -H 'content-type: application/json' --data '{"message":"say ok in one word","reasoner":"auto"}'
deploy
cd /home/kali/brain-api && gcloud run deploy brain-api --source . --region us-central1 --allow-unauthenticated
gemini_secret_wiring
gcloud run services update brain-api --region us-central1 --update-secrets=GEMINI_API_KEY=gemini-api-key:latest --update-env-vars=BRAIN_DEFAULT_REASONER=gemini
openai_secret_wiring
gcloud run services update brain-api --region us-central1 --update-secrets=OPENAI_API_KEY=openai-api-key:latest --update-env-vars=OPENAI_MODEL=gpt-5.4-mini
venice_secret_wiring
gcloud run services update brain-api --region us-central1 --update-secrets=VENICE_API_KEY=venice-admin-key:latest --update-env-vars=VENICE_MODEL=venice-uncensored
deepseek_secret_wiring
gcloud run services update brain-api --region us-central1 --update-secrets=DEEPSEEK_API_KEY=deepseek-key:latest --update-env-vars=DEEPSEEK_MODEL=deepseek-chat
AI Access Presets
{
"status": "active",
"default_preset_id": "codex_full_access",
"presets": [
{
"preset_id": "codex_full_access",
"label": "Codex-style Full BeastBrain Access",
"status": "active",
"full_access_meaning": "Full access means every approved BeastBrain route, MCP tool, project tool, VM handoff, and checkout-status workflow. It does not mean root access, raw secret visibility, raw card handling, provider approval bypass, OTP/3DS/CAPTCHA bypass, or unverified settlement claims.",
"model": {
"reasoner": "codex",
"provider": "openai",
"configured": false,
"request_scoped_key_supported": true,
"request_scoped_key_header": "X-OpenAI-API-Key",
"fallback_reasoner": "gemini",
"fallback_configured": true,
"model_env": "OPENAI_MODEL",
"default_model": "gpt-5.4-mini",
"status": "fallback_or_request_scoped_key_required"
},
"chat_payload": {
"reasoner": "codex",
"enabled_tools": null,
"note": "enabled_tools=null means all approved BeastBrain tools; use a list for a narrower run."
},
"mcp_tools": [
"ask_openai",
"ask_beastbrain",
"project_intelligence_run",
"get_agent_governance_profile",
"apply_agent_governance_template",
"get_agent_tool_stack",
"apply_agent_tool_stack"
],
"approved_tool_names": [
"alchemy_pay_activation_task",
"checkout_lite_openclaw_task",
"classify",
"decode_vin",
"deep_research",
"eth_volume",
"extract_fields",
"extract_kyc",
"fetch_url",
"neapay_build_iso8583",
"neapay_parse_iso8583",
"ollama_code_gen",
"ollama_explain_code",
"ollama_fix_bug",
"ollama_review_code",
"openclaw_run_task",
"payment_ops_superpower_task",
"project_usage_auto_payment_skill",
"run_integration_task",
"scribd_lookup",
"scribd_search",
"summarize",
"web_search"
],
"approved_routes": [
"/chat",
"/mcp/mcp",
"/api/plugins",
"/api/agent-kit",
"/api/projects",
"/api/projects/{project_id}/agent/run",
"/api/projects/{project_id}/ai-update",
"/api/projects/{project_id}/agent-governance/apply",
"/api/projects/{project_id}/agent-tools/apply",
"/api/ide/status",
"/api/ide/vm/status",
"/api/card-to-crypto/status",
"/api/card-to-crypto/checkout",
"/api/payment-gateway-requests",
"/api/beastbrain/overview"
],
"access_controls": {
"secret_values_exposed": false,
"raw_card_data_stored": false,
"merchant_otp_supported": false,
"merchant_side_3ds_supported": false,
"human_gate_bypass_supported": false,
"provider_approval_bypass_supported": false,
"browser_actions": "operator_assist_only",
"payments": "hosted_provider_checkout_only"
},
"blocked_actions": [
"raw_secret_display",
"raw_api_key_storage",
"raw_card_entry",
"cvv_or_expiry_capture",
"otp_mfa_3ds_capture_or_bypass",
"captcha_bypass",
"provider_approval_bypass",
"private_document_auto_upload",
"cookie_password_session_token_exposure",
"unreviewed_payment_settlement_claim"
],
"operator_next_steps": [
"Mount OPENAI_API_KEY through Secret Manager for always-on Codex/OpenAI access, or pass a request-scoped X-OpenAI-API-Key header for one run.",
"Use reasoner=codex in /chat or ask_openai/ask_beastbrain through /mcp/mcp.",
"Keep payment/provider gates human/provider-owned and record proof before claiming completion."
]
}
]
}
References
- Claude Code
- Anthropic Claude Code docs
- Google MCP collection
- Google Cloud Run MCP server
- Model Context Protocol servers
- Model Context Protocol docs
- Cloud Run AI overview
- Cloud Run AI agents guide
- Gemini chat app on Cloud Run codelab
- Google generative AI samples
- Cursor docs
- Cline
- Cline repository
- Cline MCP docs
- Replit and Google Cloud
- Awesome AI agents
Provider Notes
[ "Real card fiat-to-crypto checkout uses hosted onramps and excludes legacy direct-card processors.", "Default real-card provider is Onramper limited to MoonPay, Mercuryo, Ramp, Banxa, and Simplex.", "Checkout Lite is a separate no-KYC crypto lane; CryptAPI can create direct-to-wallet payment addresses without account keys.", "Alchemy Pay is available as a signed hosted on-ramp when ALCHEMYPAY_APP_ID and ALCHEMYPAY_APP_SECRET are mounted.", "Use /card-to-crypto on the certified BeastBrain domain as the public card fiat-to-crypto page.", "NexaPay is wired as the preferred hosted card-to-crypto checkout when NEXAPAY_PUBLIC_KEY or NEXAPAY_MERCHANT_ID is configured.", "Wert is wired as a backup hosted widget using WERT_PARTNER_ID and WERT_API_KEY; production also needs Wert approval and domain whitelisting.", "Transak direct widget fallback can launch checkout with session_id=direct.", "Transak server-side sessions remain provider-blocked when the partner API returns errorCode 1002.", "Do not expose raw secrets or rotate provider credentials blindly after repeated 1002 responses.", "KYC/KYB verification uses Sumsub when SUMSUB_APP_TOKEN and SUMSUB_SECRET_KEY are configured.", "Sumsub webhooks should be configured with SUMSUB_WEBHOOK_SECRET so X-Payload-Digest can be verified.", "Codex/OpenAI chat uses the OpenAI Responses API and the same BeastBrain plugin catalogue.", "Venice chat uses the Venice Chat Completions API when VENICE_API_KEY is configured.", "Project management lives at /projects and stores project, staff, task, library, and activity metadata through /api/projects.", "Project library uploads generate per-project intelligence skills exposed through REST and MCP project_intelligence_run.", "Company content creation lives at /creation and stores image, document, photo-edit, document-edit, and file-edit jobs through /api/creation/jobs.", "Ollama is a local runtime surface; Cloud Run exposes the tool routes, but localhost models only run on the machine where Ollama is active." ]