Add two arbiter models: dispute resolution and delivery protection

- arbiter-quickstart: landing page explaining both models with
  comparison table, links to the two tutorials
- arbiter-dispute: existing dispute flow (moved from arbiter-quickstart)
- arbiter-delivery: new page for automated evaluation flow using
  deployDeliveryProtectionOperator() and forwardToArbiter()
- overview: add "Two Operator Models" section
- docs.json: add arbiter-dispute and arbiter-delivery to nav

Co-Authored-By: Claude Opus 4.6 (1M context) <[email protected]>

Author: vraspar

docs.json

@@ -92,7 +92,9 @@
               "sdk/overview",
               "sdk/merchant-quickstart",
               "sdk/payer-quickstart",
-              "sdk/arbiter-quickstart"
+              "sdk/arbiter-quickstart",
+              "sdk/arbiter-dispute",
+              "sdk/arbiter-delivery"
             ]
           },
           {

sdk/arbiter-delivery.mdx

@@ -0,0 +1,157 @@
+---
+title: "Delivery Protection Arbiter"
+description: "Automatically evaluate every transaction and release or let funds expire."
+icon: "shield-check"
+---
+
+In this model, the arbiter is the only address that can release funds. The merchant sets up a `forwardToArbiter()` hook that sends the HTTP response body to your arbiter service after every payment. Your service evaluates the response (AI, schema validation, heuristics) and calls `release()` if it passes. If you do not release, funds auto-refund to the payer after escrow expires.
+
+### Prerequisites
+
+* A wallet with ETH on Base Sepolia for gas ([faucet](https://www.alchemy.com/faucets/base-sepolia))
+* Node.js 18+ and npm
+
+<Note>
+There is a full [AI garbage detector example](https://github.com/BackTrackCo/arbiter-examples) that implements this pattern with heuristic + LLM evaluation.
+</Note>
+
+### 1. Install Dependencies
+
+<CodeGroup>
+```bash npm
+npm install @x402r/sdk @x402r/core
+```
+```bash pnpm
+pnpm add @x402r/sdk @x402r/core
+```
+```bash bun
+bun add @x402r/sdk @x402r/core
+```
+</CodeGroup>
+
+`@x402r/core` is needed for `deployDeliveryProtectionOperator()`.
+
+### 2. Deploy a Delivery Protection Operator
+
+```typescript
+import { deployDeliveryProtectionOperator } from '@x402r/core'
+
+const deployment = await deployDeliveryProtectionOperator(
+  walletClient,
+  publicClient,
+  {
+    chainId: 84532,
+    arbiter: account.address,        // your arbiter service wallet
+    feeRecipient: account.address,   // receives protocol fees
+    escrowPeriodSeconds: 300n,       // 5 minutes (short for automated flows)
+  },
+)
+
+console.log('Operator:', deployment.operatorAddress)
+console.log('EscrowPeriod:', deployment.escrowPeriodAddress)
+console.log('ArbiterCondition:', deployment.arbiterConditionAddress)
+```
+
+This is simpler than the marketplace preset. No RefundRequest, Evidence, or Freeze contracts. The operator's `releaseCondition` is set to `StaticAddressCondition(arbiter)`, so only your arbiter address can call `release()`.
+
+### 3. Merchant Setup: Forward to Arbiter
+
+The merchant configures their x402 resource server to forward response data to your arbiter after every payment settlement:
+
+```typescript
+import { forwardToArbiter } from '@x402r/helpers'
+
+const resourceServer = new x402ResourceServer(facilitatorClient)
+  .register(networkId, new CommerceEvmScheme(serverConfig))
+  .onAfterSettle(
+    forwardToArbiter('http://your-arbiter:3001', {
+      onError: (err) => console.error('Arbiter unreachable:', err),
+    })
+  )
+```
+
+`forwardToArbiter()` POSTs to `{arbiterUrl}/verify` with:
+
+```json
+{
+  "responseBody": "the HTTP response body as a string",
+  "transaction": "0xsettlement_tx_hash",
+  "paymentPayload": { "x402Version": 1, "scheme": "commerce", "payload": "..." }
+}
+```
+
+Fire-and-forget. Does not block the response to the client. Only fires for `commerce` scheme settlements.
+
+### 4. Build the Arbiter Service
+
+Your arbiter service receives the POST, evaluates the response, and calls `release()` if it passes:
+
+```typescript
+import { createPublicClient, createWalletClient, http } from 'viem'
+import { baseSepolia } from 'viem/chains'
+import { privateKeyToAccount } from 'viem/accounts'
+import { createX402r } from '@x402r/sdk'
+
+const account = privateKeyToAccount(process.env.ARBITER_PRIVATE_KEY as `0x${string}`)
+
+const arbiter = createX402r({
+  publicClient: createPublicClient({ chain: baseSepolia, transport: http() }),
+  walletClient: createWalletClient({
+    account,
+    chain: baseSepolia,
+    transport: http(),
+  }),
+  operatorAddress: deployment.operatorAddress,
+  escrowPeriodAddress: deployment.escrowPeriodAddress,
+})
+
+// Express route handling the POST from forwardToArbiter()
+app.post('/verify', async (req, res) => {
+  const { responseBody, transaction, paymentPayload } = req.body
+
+  // Your evaluation logic here
+  const passed = await evaluate(responseBody)
+
+  if (passed) {
+    // Extract paymentInfo from paymentPayload
+    const paymentInfo = extractPaymentInfo(paymentPayload)
+    const amounts = await arbiter.payment.getAmounts(paymentInfo)
+
+    await arbiter.payment.release(paymentInfo, amounts.capturableAmount)
+    res.json({ verdict: 'PASS' })
+  } else {
+    // Do nothing. Funds auto-refund after escrow expires.
+    res.json({ verdict: 'FAIL' })
+  }
+})
+```
+
+The `evaluate()` function is where your logic lives. It could be:
+- **Heuristic checks:** HTTP status code, response size, content-type validation
+- **AI evaluation:** send response body to an LLM and ask "is this a valid response?"
+- **Schema validation:** check if the response matches an expected JSON schema
+
+### 5. What Happens on Failure
+
+If the arbiter does not call `release()`, the payer can reclaim funds after the escrow period expires by calling `refundInEscrow()`. The escrow period acts as the verification window.
+
+```typescript
+// Anyone can call this after escrow expires (gated by EscrowPeriod condition)
+await payer.payment.refundInEscrow(paymentInfo, amount)
+```
+
+No dispute process needed. The timeout is the safety net.
+
+## Next Steps
+
+<CardGroup cols={3}>
+  <Card title="Dispute Resolution" icon="scale-balanced" href="/sdk/arbiter-dispute">
+    For human-reviewed disputes instead of automated evaluation.
+  </Card>
+  <Card title="Deploy Operator" icon="rocket" href="/sdk/deploy-operator">
+    Full deployment config and condition slot details.
+  </Card>
+  <Card title="Examples" icon="code" href="/sdk/examples">
+    Runnable examples for every SDK operation.
+  </Card>
+</CardGroup>

sdk/arbiter-dispute.mdx

@@ -0,0 +1,171 @@
+---
+title: "Dispute Resolution Arbiter"
+description: "Review refund requests, approve or deny refunds, and distribute fees."
+icon: "scale-balanced"
+---
+
+### Prerequisites
+
+* A wallet with ETH on Base Sepolia for gas ([faucet](https://www.alchemy.com/faucets/base-sepolia))
+* Node.js 18+ and npm
+* A marketplace operator where your address is configured as the arbiter (see [Deploy an Operator](/sdk/deploy-operator))
+
+<Note>
+There are pre-configured [arbiter examples](https://github.com/BackTrackCo/x402r-sdk/tree/main/examples/arbiter) and a full [dispute resolution scenario](https://github.com/BackTrackCo/x402r-sdk/tree/main/examples/scenarios/dispute-resolution.ts) in the SDK repo.
+</Note>
+
+### 1. Install Dependencies
+
+<CodeGroup>
+```bash npm
+npm install @x402r/sdk
+```
+```bash pnpm
+pnpm add @x402r/sdk
+```
+```bash bun
+bun add @x402r/sdk
+```
+</CodeGroup>
+
+### 2. Create an Arbiter Client
+
+```typescript
+import { createPublicClient, createWalletClient, http } from 'viem'
+import { baseSepolia } from 'viem/chains'
+import { privateKeyToAccount } from 'viem/accounts'
+import { createArbiterClient } from '@x402r/sdk'
+
+const account = privateKeyToAccount(process.env.PRIVATE_KEY as `0x${string}`)
+
+const arbiter = createArbiterClient({
+  publicClient: createPublicClient({ chain: baseSepolia, transport: http() }),
+  walletClient: createWalletClient({
+    account,
+    chain: baseSepolia,
+    transport: http(),
+  }),
+  operatorAddress: '0x...',              // from deploy result
+  refundRequestAddress: '0x...',         // from deploy result
+  refundRequestEvidenceAddress: '0x...', // from deploy result
+  escrowPeriodAddress: '0x...',
+  freezeAddress: '0x...',
+})
+```
+
+### 3. Check for Pending Refund Requests
+
+```typescript
+import type { PaymentInfo } from '@x402r/sdk'
+
+const paymentInfo: PaymentInfo = { /* ... */ }
+
+const hasRefund = await arbiter.refund?.has(paymentInfo)
+if (hasRefund) {
+  const request = await arbiter.refund?.get(paymentInfo)
+  console.log('Amount:', request?.amount)
+  console.log('Status:', request?.status) // 0 = Pending, 1 = Approved, 2 = Denied, 3 = Refused
+}
+```
+
+To list all refund requests for your operator:
+
+```typescript
+const requests = await arbiter.refund?.getOperatorRequests(
+  arbiter.config.operatorAddress,
+  0n,   // offset
+  10n,  // count
+)
+console.log('Pending requests:', requests)
+```
+
+### 4. Review Evidence
+
+Both payers and merchants can submit evidence as IPFS CIDs. Read all entries before making a decision:
+
+```typescript
+const count = await arbiter.evidence?.count(paymentInfo)
+console.log('Evidence entries:', count)
+
+const batch = await arbiter.evidence?.getBatch(paymentInfo, 0n, count!)
+
+for (const entry of batch!.entries) {
+  console.log('CID:', entry.cid)
+  console.log('Submitter:', entry.submitter)
+  console.log('Timestamp:', entry.timestamp)
+}
+```
+
+### 5. Approve a Refund
+
+Call `payment.refundInEscrow()` to approve. The RefundRequest recorder auto-approves the pending request, so there is no separate `approve()` call:
+
+```typescript
+const tx = await arbiter.payment.refundInEscrow(paymentInfo, request!.amount)
+console.log('Refund approved:', tx)
+
+// Verify
+const approved = await arbiter.refund?.get(paymentInfo)
+console.log('Approved amount:', approved?.approvedAmount)
+console.log('Status:', approved?.status) // 1 = Approved
+```
+
+### 6. Deny a Refund Request
+
+If the evidence does not support a refund:
+
+```typescript
+const denyTx = await arbiter.refund?.deny(paymentInfo)
+console.log('Refund denied:', denyTx)
+```
+
+Or decline to rule entirely:
+
+```typescript
+const refuseTx = await arbiter.refund?.refuse(paymentInfo)
+console.log('Declined to rule:', refuseTx)
+```
+
+### 7. Unfreeze a Payment
+
+If the payer froze the payment during the dispute, unfreeze it after resolution:
+
+```typescript
+const frozen = await arbiter.freeze?.isFrozen(paymentInfo)
+if (frozen) {
+  const tx = await arbiter.freeze?.unfreeze(paymentInfo)
+  console.log('Unfrozen:', tx)
+}
+```
+
+### 8. Distribute Accumulated Fees
+
+Protocol fees accumulate on the operator when payments are released:
+
+```typescript
+import { getChainConfig } from '@x402r/sdk'
+
+const config = getChainConfig(84532)
+
+const fees = await arbiter.operator.getAccumulatedProtocolFees(config.usdc)
+console.log('Accumulated fees:', fees)
+
+if (fees > 0n) {
+  const tx = await arbiter.operator.distributeFees(config.usdc)
+  console.log('Fees distributed:', tx)
+}
+```
+
+## Next Steps
+
+<CardGroup cols={3}>
+  <Card title="Delivery Protection" icon="shield-check" href="/sdk/arbiter-delivery">
+    Automated evaluation for every transaction.
+  </Card>
+  <Card title="Deploy Operator" icon="rocket" href="/sdk/deploy-operator">
+    How your address gets configured as arbiter on an operator.
+  </Card>
+  <Card title="Examples" icon="code" href="/sdk/examples">
+    Full dispute resolution scenario end-to-end.
+  </Card>
+</CardGroup>