npm - @0xio/sdk - Versions diffs - 2.1.8 → 2.3.0 - Mend

@0xio/sdk 2.1.8 → 2.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -2,6 +2,57 @@
 All notable changes to the 0xio Wallet SDK will be documented in this file.
+## [2.3.0] - 2026-03-10
+### Added
+- **Smart Contract Interaction**: New `callContract()` method for state-changing contract calls. The extension builds, signs, and submits via `octra_submit` — works on both mainnet and devnet.
+- **Contract View Calls**: New `contractCallView()` method for read-only contract queries. No wallet unlock or approval popup required.
+- **Contract Storage**: New `getContractStorage()` method to read contract storage by key directly from the chain.
+- **New Types**: `ContractCallData`, `ContractViewCallData`, and `ContractParams` for type-safe contract interaction.
+- **Devnet Version Constant**: New `MIN_EXTENSION_VERSION_DEVNET` export (`'2.2.1'`) for programmatic devnet compatibility checks.
+### Improved
+- **Type Safety**: Replaced `any` with `ContractParams` (`ReadonlyArray<string | number | boolean>`) in `ContractCallData.params` and `ContractViewCallData.params`.
+- **Event Handler Typing**: Three internal event handlers (`handleAccountChanged`, `handleNetworkChanged`, `handleBalanceChanged`) now use properly typed parameters instead of `any`.
+- **Error Consistency**: `getNetworkConfig()` now throws `ZeroXIOWalletError` with `ErrorCode.NETWORK_ERROR` instead of a generic `Error`.
+- **UMD Global Name**: Fixed UMD build global from `OctraWalletSDK` to `ZeroXIOWalletSDK` to match SDK branding.
+### Security
+- **Fixed wildcard origin**: `simulateExtensionEvent` now uses `window.location.origin` instead of `'*'` wildcard, preventing cross-origin message injection.
+- **signMessage length limit**: Added 10,000 character max to prevent memory exhaustion from oversized signing requests.
+- **Narrowed dev detection**: Removed overly broad `hostname.includes('dev')` check that would enable debug mode on any domain containing "dev" (e.g., `developer.mozilla.org`). Dev mode now only activates on `localhost`, `127.0.0.1`, or when `NODE_ENV=development`.
+### Fixed
+- **Message validation**: Increased `isValidMessage()` limit from 280 to 100,000 characters. The 280-char limit was blocking contract call parameters which are serialized JSON and can be large.
+### Compatibility
+- **Mainnet Alpha**: Requires 0xio Wallet Extension v2.0.1 or higher
+- **Devnet**: Requires 0xio Wallet Extension v2.2.1 or higher (contract calls, privacy features)
+---
+## [2.2.0] - 2026-03-08
+### Added
+- **Devnet Network Support**: Added full Octra Devnet configuration (`rpcUrl`, `explorerUrl`, `explorerAddressUrl`, `indexerUrl`) to the built-in `NETWORKS` registry.
+- **Expanded `NetworkInfo` Type**: Added `explorerAddressUrl`, `indexerUrl`, and `supportsPrivacy` fields to the `NetworkInfo` interface for richer network metadata.
+- **Privacy Flag**: Each network now exposes `supportsPrivacy: boolean` so DApps can detect FHE/encrypted balance support at the config level.
+- **Devnet Validation**: `isValidNetworkId()` now accepts `'devnet'` in addition to `'mainnet'` and `'custom'`.
+### Fixed
+- **Explorer URLs**: Mainnet `explorerUrl` and `explorerAddressUrl` now include trailing `/` to match all other 0xio platforms (extension, app, desktop).
+- **Mock Data**: `generateMockData()` now returns a `NetworkInfo` object with all new fields (`explorerAddressUrl`, `indexerUrl`, `supportsPrivacy`, correct URLs).
+### Network Configurations
+| Network | RPC | Explorer | Privacy | Testnet |
+|---------|-----|----------|---------|---------|
+| Mainnet Alpha | `https://octra.network` | `https://octrascan.io` | No | No |
+| Devnet | `http://165.227.225.79:8080` | `https://devnet.octrascan.io` | Yes | Yes |
+| Custom | User-defined | User-defined | No | No |
+---
 ## [2.1.8] - 2026-02-13
 ### Added

package/README.md CHANGED Viewed

@@ -1,14 +1,18 @@
 # 0xio Wallet SDK
-**Version:** 2.1.8
+**Version:** 2.3.0
 Official TypeScript SDK for integrating DApps with 0xio Wallet on Octra Network.
-## What's New in v2.1.8
+## What's New in v2.3.0
-- **Transaction Finality**: `TransactionResult` and `Transaction` now include `finality` field (`'pending' | 'confirmed' | 'rejected'`)
-- **RPC Error Types**: 7 new error codes from `octra_submit` and `octra_submitBatch` RPC methods: `MALFORMED_TRANSACTION`, `SELF_TRANSFER`, `SENDER_NOT_FOUND`, `INVALID_SIGNATURE`, `DUPLICATE_TRANSACTION`, `NONCE_TOO_FAR`, `INTERNAL_ERROR`
-- **Error Messages**: All new error codes have human-readable messages via `createErrorMessage()`
+- **Smart Contract Calls**: New `callContract()` for state-changing contract interaction (signed, with approval popup)
+- **Contract View Calls**: New `contractCallView()` for read-only queries (no signing, no popup)
+- **Contract Storage**: New `getContractStorage()` to read on-chain contract storage by key
+- **Type Safety**: New `ContractParams` type (`ReadonlyArray<string | number | boolean>`) replaces `any` in contract interfaces; typed event handlers
+- **Error Consistency**: `getNetworkConfig()` now throws `ZeroXIOWalletError` instead of generic `Error`
+- **Security Fixes**: Fixed wildcard origin in dev utils, added signMessage length limit, narrowed dev detection
+- **Message Limit**: Raised `isValidMessage()` from 280 to 100K chars to support contract call parameters
 ## Installation
@@ -102,6 +106,42 @@ interface TransactionResult {
 }
 ```
+### Smart Contracts
+#### `wallet.callContract(data: ContractCallData): Promise<TransactionResult>`
+Execute a state-changing contract call. The extension signs and submits via `octra_submit`.
+```typescript
+const result = await wallet.callContract({
+  contract: 'oct26Lia...',  // Contract address
+  method: 'swap',           // AML method name
+  params: [100, true, 90],  // Method arguments (flat, not array-wrapped)
+  amount: '0',              // Native OCT to send (optional, default '0')
+  ou: '10000',              // Operational units (optional, default '10000')
+});
+console.log('TX Hash:', result.txHash);
+```
+#### `wallet.contractCallView(data: ContractViewCallData): Promise<any>`
+Read-only contract query. No signing, no approval popup, no wallet unlock required.
+```typescript
+const price = await wallet.contractCallView({
+  contract: 'oct26Lia...',
+  method: 'get_active_price',
+  params: [],
+});
+console.log('Price:', price);
+```
+#### `wallet.getContractStorage(contract: string, key: string): Promise<string | null>`
+Read contract storage by key.
+```typescript
+const value = await wallet.getContractStorage('oct26Lia...', 'total_supply');
+console.log('Total supply:', value);
+```
 ### Message Signing
 #### `wallet.signMessage(message: string): Promise<string>`
@@ -168,9 +208,50 @@ try {
 }
 ```
+## Networks
+The SDK ships with built-in configurations for Octra networks:
+```typescript
+import { NETWORKS, getNetworkConfig } from '@0xio/sdk';
+// Get devnet config
+const devnet = getNetworkConfig('devnet');
+console.log(devnet.rpcUrl);           // http://165.227.225.79:8080
+console.log(devnet.supportsPrivacy);  // true
+console.log(devnet.isTestnet);        // true
+// Get mainnet config
+const mainnet = getNetworkConfig('mainnet');
+console.log(mainnet.rpcUrl);          // https://octra.network
+console.log(mainnet.supportsPrivacy); // false
+```
+| Network | Privacy (FHE) | Explorer |
+|---------|:---:|---|
+| Mainnet Alpha | No | [octrascan.io](https://octrascan.io) |
+| Devnet | Yes | [devnet.octrascan.io](https://devnet.octrascan.io) |
+### NetworkInfo Type
+```typescript
+interface NetworkInfo {
+  id: string;
+  name: string;
+  rpcUrl: string;
+  explorerUrl?: string;         // Transaction explorer base URL
+  explorerAddressUrl?: string;  // Address explorer base URL
+  indexerUrl?: string;          // Indexer/API base URL
+  supportsPrivacy: boolean;     // FHE encrypted balance support
+  color: string;                // Brand color hex
+  isTestnet: boolean;
+}
+```
 ## Requirements
-- 0xio Wallet Extension v2.0.1 or higher
+- 0xio Wallet Extension v2.0.1 or higher (Mainnet Alpha)
+- 0xio Wallet Extension v2.2.1 or higher (Devnet — required for contract calls and privacy features)
 - Modern browser (Chrome, Firefox, Edge, Brave)
 ## Documentation

package/dist/index.d.ts CHANGED Viewed

@@ -17,6 +17,9 @@ interface NetworkInfo {
     readonly name: string;
     readonly rpcUrl: string;
     readonly explorerUrl?: string;
+    readonly explorerAddressUrl?: string;
+    readonly indexerUrl?: string;
+    readonly supportsPrivacy: boolean;
     readonly color: string;
     readonly isTestnet: boolean;
 }
@@ -27,6 +30,30 @@ interface TransactionData {
     readonly feeLevel?: 1 | 3;
     readonly isPrivate?: boolean;
 }
+/** Flat array of AML-compatible primitive values for contract method arguments. */
+type ContractParams = ReadonlyArray<string | number | boolean>;
+interface ContractCallData {
+    /** Contract address (oct-prefixed, 47 chars) */
+    readonly contract: string;
+    /** Contract method name (e.g. 'swap', 'approve') */
+    readonly method: string;
+    /** Method arguments — flat primitives, NOT array-wrapped: `[amount, flag]` not `[[amount, flag]]` */
+    readonly params: ContractParams;
+    /** Native OCT to send with call (human-readable for sendTransaction, micro-units for callContract) */
+    readonly amount?: string | number;
+    /** Operation units / gas limit (default: 10000) */
+    readonly ou?: string | number;
+}
+interface ContractViewCallData {
+    /** Contract address (oct-prefixed, 47 chars) */
+    readonly contract: string;
+    /** Contract method name (e.g. 'balance_of', 'get_active_bin') */
+    readonly method: string;
+    /** Method arguments — flat primitives, NOT array-wrapped */
+    readonly params: ContractParams;
+    /** Caller address for view context (defaults to connected wallet) */
+    readonly caller?: string;
+}
 interface SignedTransaction {
     readonly from: string;
     readonly to_: string;
@@ -289,6 +316,20 @@ declare class ZeroXIOWallet extends EventEmitter {
      * Send transaction
      */
     sendTransaction(txData: TransactionData): Promise<TransactionResult>;
+    /**
+     * Call a smart contract method (state-changing).
+     * The extension builds, signs, and submits the transaction via octra_submit.
+     */
+    callContract(callData: ContractCallData): Promise<TransactionResult>;
+    /**
+     * Read-only contract view call (no signing, no approval popup).
+     * Use this to query contract state without submitting a transaction.
+     */
+    contractCallView(viewData: ContractViewCallData): Promise<any>;
+    /**
+     * Read contract storage by key.
+     */
+    getContractStorage(contract: string, key: string): Promise<string | null>;
     /**
      * Get transaction history
      */
@@ -371,7 +412,7 @@ declare class ZeroXIOWallet extends EventEmitter {
  * to ensure secure wallet interactions.
  *
  * @module communication
- * @version 2.1.8
+ * @version 2.2.0
  * @license MIT
  */
@@ -582,7 +623,7 @@ declare function createDefaultBalance(total?: number): Balance;
  * SDK Configuration constants
  */
 declare const SDK_CONFIG: {
-    readonly version: "2.1.8";
+    readonly version: "2.3.0";
     readonly defaultNetworkId: "mainnet";
     readonly communicationTimeout: 30000;
     readonly retryAttempts: 3;
@@ -688,6 +729,10 @@ declare function generateMockData(): {
         id: string;
         name: string;
         rpcUrl: string;
+        explorerUrl: string;
+        explorerAddressUrl: string;
+        indexerUrl: string;
+        supportsPrivacy: boolean;
         color: string;
         isTestnet: boolean;
     };
@@ -705,8 +750,9 @@ declare function createLogger(prefix: string, debug: boolean): {
     groupEnd: () => void;
 };
-declare const SDK_VERSION = "2.1.8";
+declare const SDK_VERSION = "2.3.0";
 declare const MIN_EXTENSION_VERSION = "2.0.1";
+declare const MIN_EXTENSION_VERSION_DEVNET = "2.2.1";
 declare const SUPPORTED_EXTENSION_VERSIONS = "^2.0.1";
 declare function createZeroXIOWallet(config: {
     appName: string;
@@ -721,5 +767,5 @@ declare function checkSDKCompatibility(): {
     recommendations: string[];
 };
-export { DEFAULT_NETWORK_ID, ErrorCode, EventEmitter, ExtensionCommunicator, MIN_EXTENSION_VERSION, NETWORKS, SDK_CONFIG, SDK_VERSION, SUPPORTED_EXTENSION_VERSIONS, ZeroXIOWallet, ZeroXIOWalletError, checkBrowserSupport, checkSDKCompatibility, createDefaultBalance, createErrorMessage, createLogger, createOctraWallet, createZeroXIOWallet, delay, formatAddress, formatOCT, formatTimestamp, formatTxHash, formatOCT as formatZeroXIO, fromMicroOCT, fromMicroOCT as fromMicroZeroXIO, generateMockData, getAllNetworks, getDefaultNetwork, getNetworkConfig, isBrowser, isErrorType, isValidAddress, isValidAmount, isValidFeeLevel, isValidMessage, isValidNetworkId, retry, toMicroOCT, toMicroOCT as toMicroZeroXIO, withTimeout };
-export type { AccountChangedEvent, Balance, BalanceChangedEvent, ConnectEvent, ConnectOptions, ConnectionInfo, DisconnectEvent, ErrorEvent, ExtensionRequest, ExtensionResponse, NetworkChangedEvent, NetworkInfo, PendingPrivateTransfer, Permission, PrivateBalanceInfo, PrivateTransferData, SDKConfig, SignedTransaction, Transaction, TransactionConfirmedEvent, TransactionData, TransactionFinality, TransactionHistory, TransactionResult, WalletAddress, WalletEvent, WalletEventType };
+export { DEFAULT_NETWORK_ID, ErrorCode, EventEmitter, ExtensionCommunicator, MIN_EXTENSION_VERSION, MIN_EXTENSION_VERSION_DEVNET, NETWORKS, SDK_CONFIG, SDK_VERSION, SUPPORTED_EXTENSION_VERSIONS, ZeroXIOWallet, ZeroXIOWalletError, checkBrowserSupport, checkSDKCompatibility, createDefaultBalance, createErrorMessage, createLogger, createOctraWallet, createZeroXIOWallet, delay, formatAddress, formatOCT, formatTimestamp, formatTxHash, formatOCT as formatZeroXIO, fromMicroOCT, fromMicroOCT as fromMicroZeroXIO, generateMockData, getAllNetworks, getDefaultNetwork, getNetworkConfig, isBrowser, isErrorType, isValidAddress, isValidAmount, isValidFeeLevel, isValidMessage, isValidNetworkId, retry, toMicroOCT, toMicroOCT as toMicroZeroXIO, withTimeout };
+export type { AccountChangedEvent, Balance, BalanceChangedEvent, ConnectEvent, ConnectOptions, ConnectionInfo, ContractCallData, ContractParams, ContractViewCallData, DisconnectEvent, ErrorEvent, ExtensionRequest, ExtensionResponse, NetworkChangedEvent, NetworkInfo, PendingPrivateTransfer, Permission, PrivateBalanceInfo, PrivateTransferData, SDKConfig, SignedTransaction, Transaction, TransactionConfirmedEvent, TransactionData, TransactionFinality, TransactionHistory, TransactionResult, WalletAddress, WalletEvent, WalletEventType };

package/dist/index.esm.js CHANGED Viewed

@@ -171,7 +171,7 @@ function isValidNetworkId(networkId) {
     if (!networkId || typeof networkId !== 'string') {
         return false;
     }
-    const validNetworks = ['mainnet', 'custom'];
+    const validNetworks = ['mainnet', 'devnet', 'custom'];
     return validNetworks.includes(networkId.toLowerCase());
 }
 /**
@@ -184,8 +184,8 @@ function isValidMessage(message) {
     if (typeof message !== 'string') {
         return false;
     }
-    // Check length (adjust based on network limits)
-    return message.length <= 280;
+    // 100KB limit — contract call params can be large (serialized JSON)
+    return message.length <= 100000;
 }
 /**
  * Validate fee level
@@ -396,7 +396,11 @@ function generateMockData() {
             id: 'mainnet',
             name: 'Octra Mainnet Alpha',
             rpcUrl: 'https://octra.network',
-            color: '#6366f1',
+            explorerUrl: 'https://octrascan.io/transactions/',
+            explorerAddressUrl: 'https://octrascan.io/addresses/',
+            indexerUrl: 'https://network.octrascan.com',
+            supportsPrivacy: false,
+            color: '#f59e0b',
             isTestnet: false
         }
     };
@@ -407,41 +411,44 @@ function generateMockData() {
 function createLogger(prefix, debug) {
     const isDevelopment = typeof window !== 'undefined' && (window.location.hostname === 'localhost' ||
         window.location.hostname === '127.0.0.1' ||
-        window.location.hostname.includes('dev') ||
         window.__OCTRA_SDK_DEBUG__);
     // Only enable logging in development mode AND when debug is explicitly enabled
     const shouldLog = debug && isDevelopment;
+    const ts = () => {
+        const d = new Date();
+        return `${d.toTimeString().slice(0, 8)}.${String(d.getMilliseconds()).padStart(3, '0')}`;
+    };
     return {
         log: (...args) => {
             if (shouldLog) {
-                console.log(`[${prefix}]`, ...args);
+                console.log(`[${ts()}][${prefix}]`, ...args);
             }
         },
         warn: (...args) => {
             if (shouldLog) {
-                console.warn(`[${prefix}]`, ...args);
+                console.warn(`[${ts()}][${prefix}]`, ...args);
             }
         },
         error: (...args) => {
             // Always show errors in development, even without debug flag
             if (isDevelopment) {
-                console.error(`[${prefix}]`, ...args);
+                console.error(`[${ts()}][${prefix}]`, ...args);
             }
         },
         debug: (...args) => {
             if (shouldLog) {
-                console.debug(`[${prefix}]`, ...args);
+                console.debug(`[${ts()}][${prefix}]`, ...args);
             }
         },
         table: (data) => {
             if (shouldLog) {
-                console.log(`[${prefix}] Table data:`);
+                console.log(`[${ts()}][${prefix}] Table data:`);
                 console.table(data);
             }
         },
         group: (label) => {
             if (shouldLog) {
-                console.group(`[${prefix}] ${label}`);
+                console.group(`[${ts()}][${prefix}] ${label}`);
             }
         },
         groupEnd: () => {
@@ -460,7 +467,7 @@ function createLogger(prefix, debug) {
  * to ensure secure wallet interactions.
  *
  * @module communication
- * @version 2.1.8
+ * @version 2.2.0
  * @license MIT
  */
 /**
@@ -982,17 +989,34 @@ const NETWORKS = {
         id: 'mainnet',
         name: 'Octra Mainnet Alpha',
         rpcUrl: 'https://octra.network',
-        explorerUrl: 'https://octrascan.io/',
-        color: '#6366f1',
+        explorerUrl: 'https://octrascan.io/transactions/',
+        explorerAddressUrl: 'https://octrascan.io/addresses/',
+        indexerUrl: 'https://network.octrascan.com',
+        supportsPrivacy: false,
+        color: '#f59e0b',
         isTestnet: false
     },
+    'devnet': {
+        id: 'devnet',
+        name: 'Octra Devnet',
+        rpcUrl: 'http://165.227.225.79:8080',
+        explorerUrl: 'https://devnet.octrascan.io/tx.html?hash=',
+        explorerAddressUrl: 'https://devnet.octrascan.io/address.html?addr=',
+        indexerUrl: 'https://devnet.octrascan.io',
+        supportsPrivacy: true,
+        color: '#8b5cf6',
+        isTestnet: true
+    },
     'custom': {
         id: 'custom',
         name: 'Custom Network',
         rpcUrl: '',
         explorerUrl: '',
+        explorerAddressUrl: '',
+        indexerUrl: '',
+        supportsPrivacy: false,
         color: '#64748b',
-        isTestnet: false // User configurable - can be mainnet or testnet
+        isTestnet: false
     }
 };
 const DEFAULT_NETWORK_ID = 'mainnet';
@@ -1002,7 +1026,7 @@ const DEFAULT_NETWORK_ID = 'mainnet';
 function getNetworkConfig(networkId = DEFAULT_NETWORK_ID) {
     const network = NETWORKS[networkId];
     if (!network) {
-        throw new Error(`Unknown network ID: ${networkId}`);
+        throw new ZeroXIOWalletError(ErrorCode.NETWORK_ERROR, `Unknown network ID: ${networkId}`);
     }
     return network;
 }
@@ -1031,7 +1055,7 @@ function createDefaultBalance(total = 0) {
  * SDK Configuration constants
  */
 const SDK_CONFIG = {
-    version: '2.1.8',
+    version: '2.3.0',
     defaultNetworkId: DEFAULT_NETWORK_ID,
     communicationTimeout: 30000, // 30 seconds
     retryAttempts: 3,
@@ -1339,6 +1363,78 @@ class ZeroXIOWallet extends EventEmitter {
             throw new ZeroXIOWalletError(ErrorCode.TRANSACTION_FAILED, 'Failed to send transaction', error);
         }
     }
+    /**
+     * Call a smart contract method (state-changing).
+     * The extension builds, signs, and submits the transaction via octra_submit.
+     */
+    async callContract(callData) {
+        this.ensureConnected();
+        try {
+            this.logger.log('Calling contract:', callData);
+            const result = await this.communicator.sendRequest('call_contract', {
+                contract: callData.contract,
+                method: callData.method,
+                params: callData.params,
+                amount: callData.amount != null ? String(callData.amount) : '0',
+                ou: callData.ou != null ? String(callData.ou) : '10000',
+            });
+            this.logger.log('Contract call result:', result);
+            return result;
+        }
+        catch (error) {
+            this.logger.error('Contract call failed:', error);
+            if (error instanceof ZeroXIOWalletError) {
+                throw error;
+            }
+            throw new ZeroXIOWalletError(ErrorCode.TRANSACTION_FAILED, 'Failed to call contract', error);
+        }
+    }
+    /**
+     * Read-only contract view call (no signing, no approval popup).
+     * Use this to query contract state without submitting a transaction.
+     */
+    async contractCallView(viewData) {
+        this.ensureInitialized();
+        try {
+            this.logger.log('Contract view call:', viewData);
+            const result = await this.communicator.sendRequest('contract_call_view', {
+                contract: viewData.contract,
+                method: viewData.method,
+                params: viewData.params,
+                caller: viewData.caller || this.getAddress() || '',
+            });
+            this.logger.log('Contract view result:', result);
+            return result;
+        }
+        catch (error) {
+            this.logger.error('Contract view call failed:', error);
+            if (error instanceof ZeroXIOWalletError) {
+                throw error;
+            }
+            throw new ZeroXIOWalletError(ErrorCode.NETWORK_ERROR, 'Failed to call contract view', error);
+        }
+    }
+    /**
+     * Read contract storage by key.
+     */
+    async getContractStorage(contract, key) {
+        this.ensureInitialized();
+        try {
+            this.logger.log('Getting contract storage:', { contract, key });
+            const result = await this.communicator.sendRequest('get_contract_storage', {
+                contract,
+                key,
+            });
+            return result;
+        }
+        catch (error) {
+            this.logger.error('Get contract storage failed:', error);
+            if (error instanceof ZeroXIOWalletError) {
+                throw error;
+            }
+            throw new ZeroXIOWalletError(ErrorCode.NETWORK_ERROR, 'Failed to get contract storage', error);
+        }
+    }
     /**
      * Get transaction history
      */
@@ -1479,6 +1575,9 @@ class ZeroXIOWallet extends EventEmitter {
         if (!message || typeof message !== 'string') {
             throw new ZeroXIOWalletError(ErrorCode.SIGNATURE_FAILED, 'Message must be a non-empty string');
         }
+        if (message.length > 10000) {
+            throw new ZeroXIOWalletError(ErrorCode.SIGNATURE_FAILED, 'Message too long (max 10,000 characters)');
+        }
         try {
             this.logger.log('Requesting message signature for:', message.substring(0, 100) + (message.length > 100 ? '...' : ''));
             const result = await this.communicator.sendRequest('signMessage', { message });
@@ -1543,7 +1642,7 @@ class ZeroXIOWallet extends EventEmitter {
         const accountChangedEvent = {
             previousAddress,
             newAddress: data.address,
-            balance: data.balance
+            balance: data.balance ?? this.connectionInfo.balance
         };
         this.emit('accountChanged', accountChangedEvent);
         this.logger.log('Account changed:', accountChangedEvent);
@@ -1657,8 +1756,9 @@ var wallet = /*#__PURE__*/Object.freeze({
  */
 // Main exports
 // Version information
-const SDK_VERSION = '2.1.8';
-const MIN_EXTENSION_VERSION = '2.0.1';
+const SDK_VERSION = '2.3.0';
+const MIN_EXTENSION_VERSION = '2.0.1'; // Mainnet Alpha
+const MIN_EXTENSION_VERSION_DEVNET = '2.2.1'; // Devnet (contract calls, privacy)
 const SUPPORTED_EXTENSION_VERSIONS = '^2.0.1'; // Supports all versions >= 2.0.1
 // Quick setup function for simple use cases
 async function createZeroXIOWallet(config) {
@@ -1712,8 +1812,7 @@ if (typeof window !== 'undefined') {
     window.__ZEROXIO_SDK_VERSION__ = SDK_VERSION;
     // Development mode detection
     const isDevelopment = window.location.hostname === 'localhost' ||
-        window.location.hostname === '127.0.0.1' ||
-        window.location.hostname.includes('dev');
+        window.location.hostname === '127.0.0.1';
     if (isDevelopment) {
         // Set debug flag but don't automatically log
         window.__OCTRA_SDK_DEBUG__ = true;
@@ -1741,7 +1840,7 @@ if (typeof window !== 'undefined') {
                 window.postMessage({
                     source: '0xio-sdk-bridge',
                     event: { type: eventType, data }
-                }, '*');
+                }, window.location.origin);
                 console.log('[0xio SDK] Simulated extension event:', eventType, data);
             },
             showWelcome: () => {
@@ -1758,5 +1857,5 @@ if (typeof window !== 'undefined') {
     }
 }
-export { DEFAULT_NETWORK_ID, ErrorCode, EventEmitter, ExtensionCommunicator, MIN_EXTENSION_VERSION, NETWORKS, SDK_CONFIG, SDK_VERSION, SUPPORTED_EXTENSION_VERSIONS, ZeroXIOWallet, ZeroXIOWalletError, checkBrowserSupport, checkSDKCompatibility, createDefaultBalance, createErrorMessage, createLogger, createOctraWallet, createZeroXIOWallet, delay, formatAddress, formatOCT, formatTimestamp, formatTxHash, formatOCT as formatZeroXIO, fromMicroOCT, fromMicroOCT as fromMicroZeroXIO, generateMockData, getAllNetworks, getDefaultNetwork, getNetworkConfig, isBrowser, isErrorType, isValidAddress, isValidAmount, isValidFeeLevel, isValidMessage, isValidNetworkId, retry, toMicroOCT, toMicroOCT as toMicroZeroXIO, withTimeout };
+export { DEFAULT_NETWORK_ID, ErrorCode, EventEmitter, ExtensionCommunicator, MIN_EXTENSION_VERSION, MIN_EXTENSION_VERSION_DEVNET, NETWORKS, SDK_CONFIG, SDK_VERSION, SUPPORTED_EXTENSION_VERSIONS, ZeroXIOWallet, ZeroXIOWalletError, checkBrowserSupport, checkSDKCompatibility, createDefaultBalance, createErrorMessage, createLogger, createOctraWallet, createZeroXIOWallet, delay, formatAddress, formatOCT, formatTimestamp, formatTxHash, formatOCT as formatZeroXIO, fromMicroOCT, fromMicroOCT as fromMicroZeroXIO, generateMockData, getAllNetworks, getDefaultNetwork, getNetworkConfig, isBrowser, isErrorType, isValidAddress, isValidAmount, isValidFeeLevel, isValidMessage, isValidNetworkId, retry, toMicroOCT, toMicroOCT as toMicroZeroXIO, withTimeout };
 //# sourceMappingURL=index.esm.js.map