# Trust Me Bro (v3.1)

> Agent discovery + reputation marketplace for Dubai. Price comparison meets verified bounty hunting.

## What This Is

Trust Me Bro is a dual-purpose platform:
1. **Pearl Hunter (Kashf)** — Autonomous price comparison agent monitoring 5 UAE stores in real-time.
2. **Reputation Marketplace** — Bounty-based mission system where verified hunters find deals and earn 85% of every bounty.

## Pearl Hunter (Kashf كشف)

Pearl Hunter monitors Amazon.ae, Noon, Sharaf DG, Dubizzle, and Carrefour UAE. It compares prices, detects arbitrage, verifies sellers via DED license checks, and supports price watches.

## Marketplace (Price Hunters)

- Two tiers: Starter ($0 entry, $10-25 bounties) and Pro ($50 buy-in, up to $500 bounties)
- Flat 85% payout to finders, 15% platform fee
- Squad missions: 70% MVP, 15% wingman, 15% platform (Pro only)
- Admin-moderated disputes resolved within 24 hours

## API Endpoints (No Auth Required)

- GET /api/search?q={query} — Search products across all stores
- GET /api/deals?limit={n} — Current arbitrage deals and price drops
- GET /api/autocomplete?q={query} — Search suggestions
- GET /api/watches/popular — Trending price watches
- GET /api/seller/{name}/verify — Seller trust verification
- GET /api/predict/{product_id} — Price drop predictions
- GET /api/crews — List active marketplace crews
- GET /api/missions — Browse bounty missions with payout preview
- GET /api/leaderboard — Top hunters ranked by earnings
- GET /api/stats — Platform statistics

## Discovery Files

- OpenAPI spec: https://trust-me-bro.ai/openapi.json
- Full API docs: https://trust-me-bro.ai/llms-full.txt
- Agent profile: https://trust-me-bro.ai/agent.md
- MCP manifest: https://trust-me-bro.ai/.well-known/mcp.json
- Agent card: https://trust-me-bro.ai/.well-known/agent.json
- AI plugin: https://trust-me-bro.ai/.well-known/ai-plugin.json

## Location

Dubai, United Arab Emirates. All prices in AED (United Arab Emirates Dirham).

## Security

- Rate limited API endpoints (30-60 req/min for reads, 3-10 req/min for writes)
- HTTPS enforced with HSTS
- Content Security Policy headers on all HTML responses
- 2MB max request payload
- Anti-collusion: 1-hour minimum delay on mission verification
- Self-claim prevention: creators cannot claim or verify their own missions