@aastar/sdk 0.25.0 → 0.26.0

package/dist/kms.d.cts

@@ -467,6 +467,71 @@ interface KmsEip712FieldValue {
     name: string;
     value: unknown;
 }
+/**
+ * Compute the standard EIP-712 digest for a KMS typed-data request — the same value the
+ * KMS hashes host-side, and the payload to commit to in the WebAuthn ceremony (WYSIWYS,
+ * AirAccount #68). Converts the KMS wire format (`types` = array of struct defs, `message`
+ * = array of `{name,value}`) into viem's `hashTypedData` input. `EIP712Domain` is dropped
+ * from `types` (viem derives it from `domain`).
+ */
+declare function eip712Digest(params: {
+    domain: KmsEip712Domain;
+    primaryType: string;
+    types: KmsEip712TypeDef[];
+    message: KmsEip712FieldValue[];
+}): `0x${string}`;
+/**
+ * Compute the KMS "mint" digest — the WYSIWYS commitment payload for the key-minting
+ * ceremonies (AirAccount #115): `create_agent_key` (`agent`) / `create_p256_session_key`
+ * (`p256`). Mirrors the TA byte-for-byte (`ta/src/main.rs` agent_mint_digest /
+ * p256_session_mint_digest), verified against the locked test vectors on aastar-sdk#135:
+ *
+ *   mint_digest = SHA-256( tag ‖ walletId[16B UUID] ‖ index[u32 BE] ‖ ttlSecs[i64 BE] ‖ SHA-256(subject) )
+ *
+ * Pass the result as the ceremony `payload` (the ceremony binds `challenge =
+ * SHA-256(nonce ‖ mint_digest)` via {@link commitChallenge}).
+ *
+ * NOTE on `index`: the agent/session index is allocated server-side
+ * (`next_agent_index_for_wallet`), so the caller must supply the index the KMS will assign
+ * (e.g. the current count for a new key) — a mismatch fails closed under strict mode.
+ * `subject` is the JWT `sub` (typically the human key id); `ttlSecs` the JWT lifetime.
+ */
+declare function mintDigest(p: {
+    kind: "agent" | "p256";
+    walletId: string;
+    index: number;
+    ttlSecs: number | bigint;
+    subject: string;
+}): `0x${string}`;
+/**
+ * Compute the grant-session `final_hash` — the value the TA signs and the WYSIWYS commitment
+ * payload for the grant ceremony (AirAccount #112). Equals the contract's `buildGrantHash()` /
+ * `buildP256GrantHash()` output byte-for-byte (`SessionKeyValidator._buildGrantHash` already
+ * applies `inner.toEthSignedMessageHash()`); verified against the live contract (E2E oracle).
+ * `inner = keccak256(abi.encode(domainTag, chainId,
+ * verifyingContract, account, <sessionKey | keyX,keyY>, expiry, contractScope, selectorScope,
+ * velocityLimit, velocityWindow, callTargetsHash, selectorsHash, nonce))` with
+ * `callTargetsHash = keccak256(abi.encodePacked(callTargets))`,
+ * `selectorsHash = keccak256(abi.encodePacked(selectorAllowlist))`; then EIP-191-prefixed.
+ */
+declare function grantSessionFinalHash(p: {
+    chainId: number;
+    verifyingContract: string;
+    account: string;
+    expiry: number;
+    contractScope: string;
+    selectorScope: string;
+    velocityLimit: number;
+    velocityWindow: number;
+    callTargets: string[];
+    selectorAllowlist: string[];
+    nonce: number | bigint | string;
+} & ({
+    sessionKey: string;
+} | {
+    keyX: string;
+    keyY: string;
+})): `0x${string}`;
 interface KmsSignTypedDataRequest {
     keyId: string;
     hdPath?: string;
@@ -687,6 +752,20 @@ declare class KmsManager {
         WebAuthn?: WebAuthnAssertion;
         Passkey?: LegacyPasskeyAssertion;
     }): Promise<KmsChangePasskeyResponse>;
+    /** Schedule key deletion, running the WebAuthn ceremony internally (raw-nonce). */
+    deleteKeyWithCeremony(params: {
+        KeyId: string;
+        PendingWindowInDays?: number;
+    }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsDeleteKeyResponse>;
+    /** Unfreeze a dormant key, running the WebAuthn ceremony internally (raw-nonce). */
+    unfreezeKeyWithCeremony(params: {
+        KeyId: string;
+    }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsUnfreezeKeyResponse>;
+    /** Rotate the bound passkey, running the WebAuthn ceremony internally (raw-nonce). */
+    changePasskeyWithCeremony(params: {
+        KeyId: string;
+        PasskeyPublicKey: string;
+    }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsChangePasskeyResponse>;
     /**
      * Sign a message or an EIP-155 transaction (WebAuthn-gated).
      * Provide exactly one of `Message` (hex) or `Transaction`. For a raw 32-byte
@@ -756,17 +835,36 @@ declare class KmsManager {
         DerivationPath: string;
     }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsDeriveAddressResponse>;
     /**
-     * Sign a message or EIP-155 transaction, running the challenge-binding ceremony
-     * internally. `params.KeyId` is required (it identifies the wallet to challenge).
+     * Sign a message or EIP-155 transaction via `/Sign`, running the ceremony internally.
+     * `params.KeyId` is required.
+     *
+     * ⚠️ STRICT MODE: unlike {@link signHashWithCeremony} / {@link signTypedDataWithCeremony},
+     * this does NOT auto-bind a payload commitment, because the TA derives the signed digest
+     * from `Message` / `Transaction` host-side (EIP-191 / RLP) and the SDK can't reproduce it
+     * byte-exactly for every input. So it sends the RAW nonce by default — which the KMS will
+     * REJECT once strict mode (#63) is on. For strict-safe signing either:
+     *   - pass `options.payload` = the exact digest the TA will sign (you computed it), or
+     *   - prefer {@link signHashWithCeremony} (commits to a known 32-byte hash).
      */
     signWithCeremony(params: Omit<KmsSignRequest, "WebAuthn" | "Passkey"> & {
         KeyId: string;
     }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsSignResponse>;
-    /** Sign a 32-byte digest, running the challenge-binding ceremony internally. */
+    /**
+     * Sign a 32-byte digest, running the challenge-binding ceremony internally.
+     * Binds the challenge to `hash` (WYSIWYS commitment, #68) by default — pass an
+     * explicit `options.payload` only to override.
+     */
     signHashWithCeremony(hash: string, target: {
         KeyId: string;
     }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsSignHashResponse>;
-    /** Sign EIP-712 typed data, running the challenge-binding ceremony internally. */
+    /**
+     * Sign EIP-712 typed data, running the challenge-binding ceremony internally.
+     * Auto-binds the WYSIWYS commitment (#68): the ceremony challenge is
+     * `SHA-256(nonce ‖ eip712Digest)`, where `eip712Digest` is the standard EIP-712
+     * digest the KMS hashes host-side — computed here via {@link eip712Digest} so the
+     * user's signature commits to the exact typed-data payload. Pass an explicit
+     * `options.payload` only to override.
+     */
     signTypedDataWithCeremony(params: Omit<KmsSignTypedDataRequest, "webAuthnAssertion">, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsSignTypedDataResponse>;
     /**
      * Sign a GRANT_SESSION_V2 hash, running the grant-session ceremony internally
@@ -827,12 +925,10 @@ type KmsSignerAuth = {
     ceremonyOptions?: Omit<RunCeremonyOptions, "signer">;
     /**
      * Bind each ceremony challenge to the payload via `SHA-256(nonce ‖ hash)`
-     * (WYSIWYS, AirAccount #68). DEFAULT `false` (raw nonce) because the LIVE KMS
-     * host (kms.aastar.io) still verifies the WebAuthn assertion against the raw
-     * nonce — sending the commitment is rejected with "Challenge mismatch". Enable
-     * only once the KMS host recomputes `expected = SHA-256(nonce ‖ payload)` for
-     * signing ops (tracked AirAccount-side). The commitment IS already correct vs
-     * the TA; the gap is the host verify.
+     * (WYSIWYS, AirAccount #68). DEFAULT `true` — verified end-to-end against the live
+     * KMS (kms.aastar.io) once AirAccount#110 (host/TA challenge alignment) shipped; the
+     * KMS transition mode accepts it now and strict mode (#63) will REQUIRE it. Set
+     * `false` only to force the legacy raw-nonce challenge (not strict-safe).
      */
     commitPayload?: boolean;
 };
@@ -3096,7 +3192,15 @@ declare class KmsAgentService {
      * the caller supplies the resulting assertion in the request.
      */
     revokeAgentCredential(params: KmsRevokeAgentCredentialRequest): Promise<KmsRevokeAgentCredentialResponse>;
-    /** Mint an agent key, running the challenge-binding ceremony internally. */
+    /**
+     * Mint an agent key, running the challenge-binding ceremony internally.
+     *
+     * STRICT MODE (AirAccount #115): bind the mint params by passing `options.payload =
+     * mintDigest({ kind: "agent", walletId, index, ttlSecs, subject })` — `index` is the
+     * agent_index the KMS will assign (query it first), `subject` the JWT sub (human key id),
+     * `ttlSecs` the JWT lifetime. Without a payload the ceremony sends the raw nonce, which
+     * strict mode rejects.
+     */
     createAgentKeyWithCeremony(params: Omit<KmsCreateAgentKeyRequest, "webAuthnAssertion" | "passkeyAssertion">, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsCreateAgentKeyResponse>;
     /**
      * Refresh an agent credential, running the challenge-binding ceremony
@@ -3207,7 +3311,15 @@ declare class KmsSessionService {
      * the caller. Idempotent: revoking an already-revoked key still resolves.
      */
     revokeP256SessionKey(params: RevokeP256SessionKeyRequest): Promise<RevokeP256SessionKeyResponse>;
-    /** Create a P-256 session key, running the challenge-binding ceremony internally. */
+    /**
+     * Create a P-256 session key, running the challenge-binding ceremony internally.
+     *
+     * STRICT MODE (AirAccount #115): bind the mint params by passing `options.payload =
+     * mintDigest({ kind: "p256", walletId, index, ttlSecs, subject })` — `index` is the
+     * session_index the KMS will assign (query it first), `subject` the JWT sub (human key
+     * id), `ttlSecs` the JWT lifetime. Without a payload the ceremony sends the raw nonce,
+     * which strict mode rejects.
+     */
     createP256SessionKeyWithCeremony(params: Omit<CreateP256SessionKeyRequest, "webAuthnAssertion">, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<CreateP256SessionKeyResponse>;
     /**
      * Revoke a P-256 session key, running the challenge-binding ceremony internally.
@@ -3290,7 +3402,19 @@ declare class KmsPaymentSigner {
      * Sign an x402 payment authorization via `POST /kms/SignX402Payment`.
      */
     signX402Payment(params: KmsSignX402PaymentRequest, auth: KmsPaymentAuth): Promise<KmsPaymentSignatureResponse>;
-}
+    /** Sign a MicroPaymentChannel voucher, running the committed ceremony internally. */
+    signMicropaymentVoucherWithCeremony(params: KmsSignMicropaymentVoucherRequest, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsPaymentSignatureResponse>;
+    /** Sign a GToken EIP-3009 authorization, running the committed ceremony internally. */
+    signGTokenAuthorizationWithCeremony(params: KmsSignGTokenAuthorizationRequest, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsPaymentSignatureResponse>;
+    /** Sign an x402 payment, running the committed ceremony internally. */
+    signX402PaymentWithCeremony(params: KmsSignX402PaymentRequest, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsPaymentSignatureResponse>;
+}
+/** EIP-712 digest for a MicroPaymentChannel `Voucher` (domain MicroPaymentChannel/1.0.0). */
+declare function micropaymentVoucherDigest(p: KmsSignMicropaymentVoucherRequest): `0x${string}`;
+/** EIP-712 digest for a GToken EIP-3009 `TransferWithAuthorization` (domain GToken/1). */
+declare function gTokenAuthorizationDigest(p: KmsSignGTokenAuthorizationRequest): `0x${string}`;
+/** EIP-712 digest for an x402 `PaymentPayload` (domain SuperPaymaster/1). */
+declare function x402PaymentDigest(p: KmsSignX402PaymentRequest): `0x${string}`;
 
 /**
  * Liveness probe response. Returned by `GET /health` without auth — works even
@@ -3520,4 +3644,4 @@ declare class KmsSignerAdapter implements ISignerAdapter {
     signMessage(userId: string, message: `0x${string}` | Uint8Array, ctx?: SignerAuthContext): Promise<`0x${string}`>;
 }
 
-export { ACCOUNT_ABI, AGENT_SESSION_KEY_VALIDATOR_ABI, AIRACCOUNT_ABI, AIRACCOUNT_ADDRESSES, AIRACCOUNT_FACTORY_ABI, AIR_ACCOUNT_COMPOSITE_VALIDATOR_ABI, AIR_ACCOUNT_DELEGATE_ABI, AIR_ACCOUNT_DELEGATE_ADDRESS, ALG_ID, AccountManager, type AccountRecord, type ActiveRecovery, AgentRegistryService, type AgentReputationSummary, type AgentSessionConfig, type AgentSessionInfo, AirAccountServerClient, type AirAccountVersion, BLSSignatureData, BLSSignatureService, type BeginCeremonyResponse, type BindERC8004AgentWalletParams, type BlsConfigRecord, type BuildCredentialOptions, CALLDATA_PARSER_REGISTRY_ABI, ConsoleLogger, type CreateAgentAccountParams, type CreateP256SessionKeyRequest, type CreateP256SessionKeyResponse, DEFAULT_CREDENTIAL_ID, DEFAULT_KMS_ENDPOINT, DEFAULT_ORIGIN, DEFAULT_RP_ID, type DelegateInitParams, DvtPendingConfirmationError, type EIP7702Authorization, EIP7702DelegateService, ENTRYPOINT_ABI_V6, ENTRYPOINT_ABI_V7_V8, ENTRYPOINT_ADDRESSES, ERC20_ABI, ERC8004Service, ERC8004_ADDRESSES, EXECUTE_BATCH_SELECTOR, EXECUTE_SELECTOR, EXECUTE_USER_OP_SELECTOR, type EntryPointConfig, EntryPointVersion, type EntryPointVersionConfig, type EstimateGasParams, EthereumProvider, type ExecuteTransferParams, FACTORY_ABI_V6, FACTORY_ABI_V7_V8, FORCE_EXIT_MODULE_ABI, ForceExitService, type FullConfigGuardianParams, GLOBAL_GUARD_ABI, type GrantP256SessionParams, type GrantSessionParams, GuardChecker, type GuardState, GuardStateReader, GuardStatus, type ILogger, type ISignerAdapter, type IStorageAdapter, type InstallModuleParams, KmsAgentService, type KmsAttestationManifestResponse, type KmsAttestationProofResponse, type KmsAttestationResponse, type KmsBeginAuthenticationRequest, type KmsBeginAuthenticationResponse, type KmsBeginGrantSessionAuthRequest, type KmsBeginGrantSessionAuthResponse, type KmsBeginRegistrationRequest, type KmsBeginRegistrationResponse, type KmsChangePasskeyResponse, type KmsCompleteRegistrationRequest, type KmsCompleteRegistrationResponse, type KmsCreateAgentKeyRequest, type KmsCreateAgentKeyResponse, type KmsCreateKeyRequest, type KmsCreateKeyResponse, type KmsDeleteKeyResponse, type KmsDeriveAddressResponse, type KmsDescribeKeyResponse, type KmsEip712Domain, type KmsEip712FieldValue, type KmsEip712TypeDef, type KmsEthereumTransaction, type KmsGetPublicKeyResponse, type KmsHealthResponse, KmsHttpClient, type KmsHttpClientOptions, type KmsKeyResolver, type KmsKeyStatusResponse, type KmsListKeysResponse, KmsManager, KmsMonitorService, type KmsPaymentAuth, type KmsPaymentSignatureResponse, KmsPaymentSigner, type KmsPurgeKeyResponse, type KmsQueueStatusResponse, type KmsRefreshAgentCredentialRequest, type KmsRefreshAgentCredentialResponse, type KmsRevokeAgentCredentialRequest, type KmsRevokeAgentCredentialResponse, type KmsRollbackCounterResponse, KmsSessionService, type KmsSignAgentRequest, type KmsSignAgentResponse, type KmsSignGTokenAuthorizationRequest, type KmsSignGrantSessionRequest, type KmsSignGrantSessionResponse, type KmsSignHashResponse, type KmsSignMicropaymentVoucherRequest, type KmsSignP256GrantSessionRequest, type KmsSignRequest, type KmsSignResponse, type KmsSignTypedDataRequest, type KmsSignTypedDataResponse, type KmsSignX402PaymentRequest, KmsSigner, KmsSignerAdapter, type KmsSignerAuth, type KmsStatsResponse, type KmsVersionResponse, type L2Type, L2_TYPE, type LegacyPasskeyAssertion, LocalWalletSigner, MAX_GUARDIANS, MODULE_TYPE, MemoryStorage, type MintAgentIdentityParams, ModuleManager, type ModuleTypeId, type OapdConfig, type P256GuardianKey, P256PasskeySigner, PackedUserOperation, type PasskeyAssertionContext, type PasskeyCeremonySigner, PaymasterManager, PaymasterPriceStalenessError, type PaymasterRecord, type PendingExit, type PendingWeightChange, PreCheckResult, type QueryAgentReputationParams, RECOVERY_THRESHOLD, RECOVERY_TIMELOCK_SECONDS, RecoveryService, type RevokeP256SessionKeyRequest, type RevokeP256SessionKeyResponse, type RunCeremonyOptions, SESSION_KEY_VALIDATOR_ABI, type SerializedGuardianSpec, type ServerConfig, type SessionInfo, SessionKeyService, type SetAgentWalletParams, type SignP256UserOpRequest, type SignP256UserOpResponse, type SignerAuthContext, SilentLogger, type SubmitAgentReputationParams, TIER_GUARD_HOOK_ABI, TierConfig, TierLevel$1 as TierLevel, type TokenBalance, type TokenGuardState, type TokenInfo, TokenService, TransferManager, type TransferRecord, type TransferResult, type UninstallModuleParams, UserOperation, VALIDATOR_ABI, WEIGHT_CHANGE_EXPIRY_SECONDS, WEIGHT_CHANGE_THRESHOLD, WEIGHT_CHANGE_TIMELOCK_SECONDS, WalletManager, type WebAuthnAssertion, type WebAuthnAuthenticationCredential, type WebAuthnCeremonyContext, type WeightConfig, WeightedSignatureService, YAAAServerClient, base64UrlDecode, base64UrlEncode, beginAuthenticationChallenge, beginGrantSessionChallenge, buildAuthenticationCredential, buildAuthenticatorData, buildClientDataJSON, buildFullInitConfig, buildInstallModuleHash, buildUninstallModuleHash, commitChallenge, computeOapdSalt, erc8004AddressesForChain, getOapdAddress, getOapdAddressWithChainId, initConfigFromRecord, initConfigToTuple, isExecuteUserOpWrapped, isOapdDeployed, isPendingConfirmation, packP256SessionSignature, packSecp256k1SessionSignature, runAuthenticationCeremony, runGrantSessionCeremony, runWebAuthnCeremony, sepoliaV07Config, serializeGuardianSpecs, toGuardianSpecs, validateConfig, wrapExecuteUserOp };
+export { ACCOUNT_ABI, AGENT_SESSION_KEY_VALIDATOR_ABI, AIRACCOUNT_ABI, AIRACCOUNT_ADDRESSES, AIRACCOUNT_FACTORY_ABI, AIR_ACCOUNT_COMPOSITE_VALIDATOR_ABI, AIR_ACCOUNT_DELEGATE_ABI, AIR_ACCOUNT_DELEGATE_ADDRESS, ALG_ID, AccountManager, type AccountRecord, type ActiveRecovery, AgentRegistryService, type AgentReputationSummary, type AgentSessionConfig, type AgentSessionInfo, AirAccountServerClient, type AirAccountVersion, BLSSignatureData, BLSSignatureService, type BeginCeremonyResponse, type BindERC8004AgentWalletParams, type BlsConfigRecord, type BuildCredentialOptions, CALLDATA_PARSER_REGISTRY_ABI, ConsoleLogger, type CreateAgentAccountParams, type CreateP256SessionKeyRequest, type CreateP256SessionKeyResponse, DEFAULT_CREDENTIAL_ID, DEFAULT_KMS_ENDPOINT, DEFAULT_ORIGIN, DEFAULT_RP_ID, type DelegateInitParams, DvtPendingConfirmationError, type EIP7702Authorization, EIP7702DelegateService, ENTRYPOINT_ABI_V6, ENTRYPOINT_ABI_V7_V8, ENTRYPOINT_ADDRESSES, ERC20_ABI, ERC8004Service, ERC8004_ADDRESSES, EXECUTE_BATCH_SELECTOR, EXECUTE_SELECTOR, EXECUTE_USER_OP_SELECTOR, type EntryPointConfig, EntryPointVersion, type EntryPointVersionConfig, type EstimateGasParams, EthereumProvider, type ExecuteTransferParams, FACTORY_ABI_V6, FACTORY_ABI_V7_V8, FORCE_EXIT_MODULE_ABI, ForceExitService, type FullConfigGuardianParams, GLOBAL_GUARD_ABI, type GrantP256SessionParams, type GrantSessionParams, GuardChecker, type GuardState, GuardStateReader, GuardStatus, type ILogger, type ISignerAdapter, type IStorageAdapter, type InstallModuleParams, KmsAgentService, type KmsAttestationManifestResponse, type KmsAttestationProofResponse, type KmsAttestationResponse, type KmsBeginAuthenticationRequest, type KmsBeginAuthenticationResponse, type KmsBeginGrantSessionAuthRequest, type KmsBeginGrantSessionAuthResponse, type KmsBeginRegistrationRequest, type KmsBeginRegistrationResponse, type KmsChangePasskeyResponse, type KmsCompleteRegistrationRequest, type KmsCompleteRegistrationResponse, type KmsCreateAgentKeyRequest, type KmsCreateAgentKeyResponse, type KmsCreateKeyRequest, type KmsCreateKeyResponse, type KmsDeleteKeyResponse, type KmsDeriveAddressResponse, type KmsDescribeKeyResponse, type KmsEip712Domain, type KmsEip712FieldValue, type KmsEip712TypeDef, type KmsEthereumTransaction, type KmsGetPublicKeyResponse, type KmsHealthResponse, KmsHttpClient, type KmsHttpClientOptions, type KmsKeyResolver, type KmsKeyStatusResponse, type KmsListKeysResponse, KmsManager, KmsMonitorService, type KmsPaymentAuth, type KmsPaymentSignatureResponse, KmsPaymentSigner, type KmsPurgeKeyResponse, type KmsQueueStatusResponse, type KmsRefreshAgentCredentialRequest, type KmsRefreshAgentCredentialResponse, type KmsRevokeAgentCredentialRequest, type KmsRevokeAgentCredentialResponse, type KmsRollbackCounterResponse, KmsSessionService, type KmsSignAgentRequest, type KmsSignAgentResponse, type KmsSignGTokenAuthorizationRequest, type KmsSignGrantSessionRequest, type KmsSignGrantSessionResponse, type KmsSignHashResponse, type KmsSignMicropaymentVoucherRequest, type KmsSignP256GrantSessionRequest, type KmsSignRequest, type KmsSignResponse, type KmsSignTypedDataRequest, type KmsSignTypedDataResponse, type KmsSignX402PaymentRequest, KmsSigner, KmsSignerAdapter, type KmsSignerAuth, type KmsStatsResponse, type KmsVersionResponse, type L2Type, L2_TYPE, type LegacyPasskeyAssertion, LocalWalletSigner, MAX_GUARDIANS, MODULE_TYPE, MemoryStorage, type MintAgentIdentityParams, ModuleManager, type ModuleTypeId, type OapdConfig, type P256GuardianKey, P256PasskeySigner, PackedUserOperation, type PasskeyAssertionContext, type PasskeyCeremonySigner, PaymasterManager, PaymasterPriceStalenessError, type PaymasterRecord, type PendingExit, type PendingWeightChange, PreCheckResult, type QueryAgentReputationParams, RECOVERY_THRESHOLD, RECOVERY_TIMELOCK_SECONDS, RecoveryService, type RevokeP256SessionKeyRequest, type RevokeP256SessionKeyResponse, type RunCeremonyOptions, SESSION_KEY_VALIDATOR_ABI, type SerializedGuardianSpec, type ServerConfig, type SessionInfo, SessionKeyService, type SetAgentWalletParams, type SignP256UserOpRequest, type SignP256UserOpResponse, type SignerAuthContext, SilentLogger, type SubmitAgentReputationParams, TIER_GUARD_HOOK_ABI, TierConfig, TierLevel$1 as TierLevel, type TokenBalance, type TokenGuardState, type TokenInfo, TokenService, TransferManager, type TransferRecord, type TransferResult, type UninstallModuleParams, UserOperation, VALIDATOR_ABI, WEIGHT_CHANGE_EXPIRY_SECONDS, WEIGHT_CHANGE_THRESHOLD, WEIGHT_CHANGE_TIMELOCK_SECONDS, WalletManager, type WebAuthnAssertion, type WebAuthnAuthenticationCredential, type WebAuthnCeremonyContext, type WeightConfig, WeightedSignatureService, YAAAServerClient, base64UrlDecode, base64UrlEncode, beginAuthenticationChallenge, beginGrantSessionChallenge, buildAuthenticationCredential, buildAuthenticatorData, buildClientDataJSON, buildFullInitConfig, buildInstallModuleHash, buildUninstallModuleHash, commitChallenge, computeOapdSalt, eip712Digest, erc8004AddressesForChain, gTokenAuthorizationDigest, getOapdAddress, getOapdAddressWithChainId, grantSessionFinalHash, initConfigFromRecord, initConfigToTuple, isExecuteUserOpWrapped, isOapdDeployed, isPendingConfirmation, micropaymentVoucherDigest, mintDigest, packP256SessionSignature, packSecp256k1SessionSignature, runAuthenticationCeremony, runGrantSessionCeremony, runWebAuthnCeremony, sepoliaV07Config, serializeGuardianSpecs, toGuardianSpecs, validateConfig, wrapExecuteUserOp, x402PaymentDigest };

package/dist/kms.d.ts

@@ -467,6 +467,71 @@ interface KmsEip712FieldValue {
     name: string;
     value: unknown;
 }
+/**
+ * Compute the standard EIP-712 digest for a KMS typed-data request — the same value the
+ * KMS hashes host-side, and the payload to commit to in the WebAuthn ceremony (WYSIWYS,
+ * AirAccount #68). Converts the KMS wire format (`types` = array of struct defs, `message`
+ * = array of `{name,value}`) into viem's `hashTypedData` input. `EIP712Domain` is dropped
+ * from `types` (viem derives it from `domain`).
+ */
+declare function eip712Digest(params: {
+    domain: KmsEip712Domain;
+    primaryType: string;
+    types: KmsEip712TypeDef[];
+    message: KmsEip712FieldValue[];
+}): `0x${string}`;
+/**
+ * Compute the KMS "mint" digest — the WYSIWYS commitment payload for the key-minting
+ * ceremonies (AirAccount #115): `create_agent_key` (`agent`) / `create_p256_session_key`
+ * (`p256`). Mirrors the TA byte-for-byte (`ta/src/main.rs` agent_mint_digest /
+ * p256_session_mint_digest), verified against the locked test vectors on aastar-sdk#135:
+ *
+ *   mint_digest = SHA-256( tag ‖ walletId[16B UUID] ‖ index[u32 BE] ‖ ttlSecs[i64 BE] ‖ SHA-256(subject) )
+ *
+ * Pass the result as the ceremony `payload` (the ceremony binds `challenge =
+ * SHA-256(nonce ‖ mint_digest)` via {@link commitChallenge}).
+ *
+ * NOTE on `index`: the agent/session index is allocated server-side
+ * (`next_agent_index_for_wallet`), so the caller must supply the index the KMS will assign
+ * (e.g. the current count for a new key) — a mismatch fails closed under strict mode.
+ * `subject` is the JWT `sub` (typically the human key id); `ttlSecs` the JWT lifetime.
+ */
+declare function mintDigest(p: {
+    kind: "agent" | "p256";
+    walletId: string;
+    index: number;
+    ttlSecs: number | bigint;
+    subject: string;
+}): `0x${string}`;
+/**
+ * Compute the grant-session `final_hash` — the value the TA signs and the WYSIWYS commitment
+ * payload for the grant ceremony (AirAccount #112). Equals the contract's `buildGrantHash()` /
+ * `buildP256GrantHash()` output byte-for-byte (`SessionKeyValidator._buildGrantHash` already
+ * applies `inner.toEthSignedMessageHash()`); verified against the live contract (E2E oracle).
+ * `inner = keccak256(abi.encode(domainTag, chainId,
+ * verifyingContract, account, <sessionKey | keyX,keyY>, expiry, contractScope, selectorScope,
+ * velocityLimit, velocityWindow, callTargetsHash, selectorsHash, nonce))` with
+ * `callTargetsHash = keccak256(abi.encodePacked(callTargets))`,
+ * `selectorsHash = keccak256(abi.encodePacked(selectorAllowlist))`; then EIP-191-prefixed.
+ */
+declare function grantSessionFinalHash(p: {
+    chainId: number;
+    verifyingContract: string;
+    account: string;
+    expiry: number;
+    contractScope: string;
+    selectorScope: string;
+    velocityLimit: number;
+    velocityWindow: number;
+    callTargets: string[];
+    selectorAllowlist: string[];
+    nonce: number | bigint | string;
+} & ({
+    sessionKey: string;
+} | {
+    keyX: string;
+    keyY: string;
+})): `0x${string}`;
 interface KmsSignTypedDataRequest {
     keyId: string;
     hdPath?: string;
@@ -687,6 +752,20 @@ declare class KmsManager {
         WebAuthn?: WebAuthnAssertion;
         Passkey?: LegacyPasskeyAssertion;
     }): Promise<KmsChangePasskeyResponse>;
+    /** Schedule key deletion, running the WebAuthn ceremony internally (raw-nonce). */
+    deleteKeyWithCeremony(params: {
+        KeyId: string;
+        PendingWindowInDays?: number;
+    }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsDeleteKeyResponse>;
+    /** Unfreeze a dormant key, running the WebAuthn ceremony internally (raw-nonce). */
+    unfreezeKeyWithCeremony(params: {
+        KeyId: string;
+    }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsUnfreezeKeyResponse>;
+    /** Rotate the bound passkey, running the WebAuthn ceremony internally (raw-nonce). */
+    changePasskeyWithCeremony(params: {
+        KeyId: string;
+        PasskeyPublicKey: string;
+    }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsChangePasskeyResponse>;
     /**
      * Sign a message or an EIP-155 transaction (WebAuthn-gated).
      * Provide exactly one of `Message` (hex) or `Transaction`. For a raw 32-byte
@@ -756,17 +835,36 @@ declare class KmsManager {
         DerivationPath: string;
     }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsDeriveAddressResponse>;
     /**
-     * Sign a message or EIP-155 transaction, running the challenge-binding ceremony
-     * internally. `params.KeyId` is required (it identifies the wallet to challenge).
+     * Sign a message or EIP-155 transaction via `/Sign`, running the ceremony internally.
+     * `params.KeyId` is required.
+     *
+     * ⚠️ STRICT MODE: unlike {@link signHashWithCeremony} / {@link signTypedDataWithCeremony},
+     * this does NOT auto-bind a payload commitment, because the TA derives the signed digest
+     * from `Message` / `Transaction` host-side (EIP-191 / RLP) and the SDK can't reproduce it
+     * byte-exactly for every input. So it sends the RAW nonce by default — which the KMS will
+     * REJECT once strict mode (#63) is on. For strict-safe signing either:
+     *   - pass `options.payload` = the exact digest the TA will sign (you computed it), or
+     *   - prefer {@link signHashWithCeremony} (commits to a known 32-byte hash).
      */
     signWithCeremony(params: Omit<KmsSignRequest, "WebAuthn" | "Passkey"> & {
         KeyId: string;
     }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsSignResponse>;
-    /** Sign a 32-byte digest, running the challenge-binding ceremony internally. */
+    /**
+     * Sign a 32-byte digest, running the challenge-binding ceremony internally.
+     * Binds the challenge to `hash` (WYSIWYS commitment, #68) by default — pass an
+     * explicit `options.payload` only to override.
+     */
     signHashWithCeremony(hash: string, target: {
         KeyId: string;
     }, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsSignHashResponse>;
-    /** Sign EIP-712 typed data, running the challenge-binding ceremony internally. */
+    /**
+     * Sign EIP-712 typed data, running the challenge-binding ceremony internally.
+     * Auto-binds the WYSIWYS commitment (#68): the ceremony challenge is
+     * `SHA-256(nonce ‖ eip712Digest)`, where `eip712Digest` is the standard EIP-712
+     * digest the KMS hashes host-side — computed here via {@link eip712Digest} so the
+     * user's signature commits to the exact typed-data payload. Pass an explicit
+     * `options.payload` only to override.
+     */
     signTypedDataWithCeremony(params: Omit<KmsSignTypedDataRequest, "webAuthnAssertion">, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsSignTypedDataResponse>;
     /**
      * Sign a GRANT_SESSION_V2 hash, running the grant-session ceremony internally
@@ -827,12 +925,10 @@ type KmsSignerAuth = {
     ceremonyOptions?: Omit<RunCeremonyOptions, "signer">;
     /**
      * Bind each ceremony challenge to the payload via `SHA-256(nonce ‖ hash)`
-     * (WYSIWYS, AirAccount #68). DEFAULT `false` (raw nonce) because the LIVE KMS
-     * host (kms.aastar.io) still verifies the WebAuthn assertion against the raw
-     * nonce — sending the commitment is rejected with "Challenge mismatch". Enable
-     * only once the KMS host recomputes `expected = SHA-256(nonce ‖ payload)` for
-     * signing ops (tracked AirAccount-side). The commitment IS already correct vs
-     * the TA; the gap is the host verify.
+     * (WYSIWYS, AirAccount #68). DEFAULT `true` — verified end-to-end against the live
+     * KMS (kms.aastar.io) once AirAccount#110 (host/TA challenge alignment) shipped; the
+     * KMS transition mode accepts it now and strict mode (#63) will REQUIRE it. Set
+     * `false` only to force the legacy raw-nonce challenge (not strict-safe).
      */
     commitPayload?: boolean;
 };
@@ -3096,7 +3192,15 @@ declare class KmsAgentService {
      * the caller supplies the resulting assertion in the request.
      */
     revokeAgentCredential(params: KmsRevokeAgentCredentialRequest): Promise<KmsRevokeAgentCredentialResponse>;
-    /** Mint an agent key, running the challenge-binding ceremony internally. */
+    /**
+     * Mint an agent key, running the challenge-binding ceremony internally.
+     *
+     * STRICT MODE (AirAccount #115): bind the mint params by passing `options.payload =
+     * mintDigest({ kind: "agent", walletId, index, ttlSecs, subject })` — `index` is the
+     * agent_index the KMS will assign (query it first), `subject` the JWT sub (human key id),
+     * `ttlSecs` the JWT lifetime. Without a payload the ceremony sends the raw nonce, which
+     * strict mode rejects.
+     */
     createAgentKeyWithCeremony(params: Omit<KmsCreateAgentKeyRequest, "webAuthnAssertion" | "passkeyAssertion">, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<KmsCreateAgentKeyResponse>;
     /**
      * Refresh an agent credential, running the challenge-binding ceremony
@@ -3207,7 +3311,15 @@ declare class KmsSessionService {
      * the caller. Idempotent: revoking an already-revoked key still resolves.
      */
     revokeP256SessionKey(params: RevokeP256SessionKeyRequest): Promise<RevokeP256SessionKeyResponse>;
-    /** Create a P-256 session key, running the challenge-binding ceremony internally. */
+    /**
+     * Create a P-256 session key, running the challenge-binding ceremony internally.
+     *
+     * STRICT MODE (AirAccount #115): bind the mint params by passing `options.payload =
+     * mintDigest({ kind: "p256", walletId, index, ttlSecs, subject })` — `index` is the
+     * session_index the KMS will assign (query it first), `subject` the JWT sub (human key
+     * id), `ttlSecs` the JWT lifetime. Without a payload the ceremony sends the raw nonce,
+     * which strict mode rejects.
+     */
     createP256SessionKeyWithCeremony(params: Omit<CreateP256SessionKeyRequest, "webAuthnAssertion">, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer">): Promise<CreateP256SessionKeyResponse>;
     /**
      * Revoke a P-256 session key, running the challenge-binding ceremony internally.
@@ -3290,7 +3402,19 @@ declare class KmsPaymentSigner {
      * Sign an x402 payment authorization via `POST /kms/SignX402Payment`.
      */
     signX402Payment(params: KmsSignX402PaymentRequest, auth: KmsPaymentAuth): Promise<KmsPaymentSignatureResponse>;
-}
+    /** Sign a MicroPaymentChannel voucher, running the committed ceremony internally. */
+    signMicropaymentVoucherWithCeremony(params: KmsSignMicropaymentVoucherRequest, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsPaymentSignatureResponse>;
+    /** Sign a GToken EIP-3009 authorization, running the committed ceremony internally. */
+    signGTokenAuthorizationWithCeremony(params: KmsSignGTokenAuthorizationRequest, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsPaymentSignatureResponse>;
+    /** Sign an x402 payment, running the committed ceremony internally. */
+    signX402PaymentWithCeremony(params: KmsSignX402PaymentRequest, signer: PasskeyCeremonySigner, options?: Omit<RunCeremonyOptions, "signer" | "payload">): Promise<KmsPaymentSignatureResponse>;
+}
+/** EIP-712 digest for a MicroPaymentChannel `Voucher` (domain MicroPaymentChannel/1.0.0). */
+declare function micropaymentVoucherDigest(p: KmsSignMicropaymentVoucherRequest): `0x${string}`;
+/** EIP-712 digest for a GToken EIP-3009 `TransferWithAuthorization` (domain GToken/1). */
+declare function gTokenAuthorizationDigest(p: KmsSignGTokenAuthorizationRequest): `0x${string}`;
+/** EIP-712 digest for an x402 `PaymentPayload` (domain SuperPaymaster/1). */
+declare function x402PaymentDigest(p: KmsSignX402PaymentRequest): `0x${string}`;
 
 /**
  * Liveness probe response. Returned by `GET /health` without auth — works even
@@ -3520,4 +3644,4 @@ declare class KmsSignerAdapter implements ISignerAdapter {
     signMessage(userId: string, message: `0x${string}` | Uint8Array, ctx?: SignerAuthContext): Promise<`0x${string}`>;
 }
 
-export { ACCOUNT_ABI, AGENT_SESSION_KEY_VALIDATOR_ABI, AIRACCOUNT_ABI, AIRACCOUNT_ADDRESSES, AIRACCOUNT_FACTORY_ABI, AIR_ACCOUNT_COMPOSITE_VALIDATOR_ABI, AIR_ACCOUNT_DELEGATE_ABI, AIR_ACCOUNT_DELEGATE_ADDRESS, ALG_ID, AccountManager, type AccountRecord, type ActiveRecovery, AgentRegistryService, type AgentReputationSummary, type AgentSessionConfig, type AgentSessionInfo, AirAccountServerClient, type AirAccountVersion, BLSSignatureData, BLSSignatureService, type BeginCeremonyResponse, type BindERC8004AgentWalletParams, type BlsConfigRecord, type BuildCredentialOptions, CALLDATA_PARSER_REGISTRY_ABI, ConsoleLogger, type CreateAgentAccountParams, type CreateP256SessionKeyRequest, type CreateP256SessionKeyResponse, DEFAULT_CREDENTIAL_ID, DEFAULT_KMS_ENDPOINT, DEFAULT_ORIGIN, DEFAULT_RP_ID, type DelegateInitParams, DvtPendingConfirmationError, type EIP7702Authorization, EIP7702DelegateService, ENTRYPOINT_ABI_V6, ENTRYPOINT_ABI_V7_V8, ENTRYPOINT_ADDRESSES, ERC20_ABI, ERC8004Service, ERC8004_ADDRESSES, EXECUTE_BATCH_SELECTOR, EXECUTE_SELECTOR, EXECUTE_USER_OP_SELECTOR, type EntryPointConfig, EntryPointVersion, type EntryPointVersionConfig, type EstimateGasParams, EthereumProvider, type ExecuteTransferParams, FACTORY_ABI_V6, FACTORY_ABI_V7_V8, FORCE_EXIT_MODULE_ABI, ForceExitService, type FullConfigGuardianParams, GLOBAL_GUARD_ABI, type GrantP256SessionParams, type GrantSessionParams, GuardChecker, type GuardState, GuardStateReader, GuardStatus, type ILogger, type ISignerAdapter, type IStorageAdapter, type InstallModuleParams, KmsAgentService, type KmsAttestationManifestResponse, type KmsAttestationProofResponse, type KmsAttestationResponse, type KmsBeginAuthenticationRequest, type KmsBeginAuthenticationResponse, type KmsBeginGrantSessionAuthRequest, type KmsBeginGrantSessionAuthResponse, type KmsBeginRegistrationRequest, type KmsBeginRegistrationResponse, type KmsChangePasskeyResponse, type KmsCompleteRegistrationRequest, type KmsCompleteRegistrationResponse, type KmsCreateAgentKeyRequest, type KmsCreateAgentKeyResponse, type KmsCreateKeyRequest, type KmsCreateKeyResponse, type KmsDeleteKeyResponse, type KmsDeriveAddressResponse, type KmsDescribeKeyResponse, type KmsEip712Domain, type KmsEip712FieldValue, type KmsEip712TypeDef, type KmsEthereumTransaction, type KmsGetPublicKeyResponse, type KmsHealthResponse, KmsHttpClient, type KmsHttpClientOptions, type KmsKeyResolver, type KmsKeyStatusResponse, type KmsListKeysResponse, KmsManager, KmsMonitorService, type KmsPaymentAuth, type KmsPaymentSignatureResponse, KmsPaymentSigner, type KmsPurgeKeyResponse, type KmsQueueStatusResponse, type KmsRefreshAgentCredentialRequest, type KmsRefreshAgentCredentialResponse, type KmsRevokeAgentCredentialRequest, type KmsRevokeAgentCredentialResponse, type KmsRollbackCounterResponse, KmsSessionService, type KmsSignAgentRequest, type KmsSignAgentResponse, type KmsSignGTokenAuthorizationRequest, type KmsSignGrantSessionRequest, type KmsSignGrantSessionResponse, type KmsSignHashResponse, type KmsSignMicropaymentVoucherRequest, type KmsSignP256GrantSessionRequest, type KmsSignRequest, type KmsSignResponse, type KmsSignTypedDataRequest, type KmsSignTypedDataResponse, type KmsSignX402PaymentRequest, KmsSigner, KmsSignerAdapter, type KmsSignerAuth, type KmsStatsResponse, type KmsVersionResponse, type L2Type, L2_TYPE, type LegacyPasskeyAssertion, LocalWalletSigner, MAX_GUARDIANS, MODULE_TYPE, MemoryStorage, type MintAgentIdentityParams, ModuleManager, type ModuleTypeId, type OapdConfig, type P256GuardianKey, P256PasskeySigner, PackedUserOperation, type PasskeyAssertionContext, type PasskeyCeremonySigner, PaymasterManager, PaymasterPriceStalenessError, type PaymasterRecord, type PendingExit, type PendingWeightChange, PreCheckResult, type QueryAgentReputationParams, RECOVERY_THRESHOLD, RECOVERY_TIMELOCK_SECONDS, RecoveryService, type RevokeP256SessionKeyRequest, type RevokeP256SessionKeyResponse, type RunCeremonyOptions, SESSION_KEY_VALIDATOR_ABI, type SerializedGuardianSpec, type ServerConfig, type SessionInfo, SessionKeyService, type SetAgentWalletParams, type SignP256UserOpRequest, type SignP256UserOpResponse, type SignerAuthContext, SilentLogger, type SubmitAgentReputationParams, TIER_GUARD_HOOK_ABI, TierConfig, TierLevel$1 as TierLevel, type TokenBalance, type TokenGuardState, type TokenInfo, TokenService, TransferManager, type TransferRecord, type TransferResult, type UninstallModuleParams, UserOperation, VALIDATOR_ABI, WEIGHT_CHANGE_EXPIRY_SECONDS, WEIGHT_CHANGE_THRESHOLD, WEIGHT_CHANGE_TIMELOCK_SECONDS, WalletManager, type WebAuthnAssertion, type WebAuthnAuthenticationCredential, type WebAuthnCeremonyContext, type WeightConfig, WeightedSignatureService, YAAAServerClient, base64UrlDecode, base64UrlEncode, beginAuthenticationChallenge, beginGrantSessionChallenge, buildAuthenticationCredential, buildAuthenticatorData, buildClientDataJSON, buildFullInitConfig, buildInstallModuleHash, buildUninstallModuleHash, commitChallenge, computeOapdSalt, erc8004AddressesForChain, getOapdAddress, getOapdAddressWithChainId, initConfigFromRecord, initConfigToTuple, isExecuteUserOpWrapped, isOapdDeployed, isPendingConfirmation, packP256SessionSignature, packSecp256k1SessionSignature, runAuthenticationCeremony, runGrantSessionCeremony, runWebAuthnCeremony, sepoliaV07Config, serializeGuardianSpecs, toGuardianSpecs, validateConfig, wrapExecuteUserOp };
+export { ACCOUNT_ABI, AGENT_SESSION_KEY_VALIDATOR_ABI, AIRACCOUNT_ABI, AIRACCOUNT_ADDRESSES, AIRACCOUNT_FACTORY_ABI, AIR_ACCOUNT_COMPOSITE_VALIDATOR_ABI, AIR_ACCOUNT_DELEGATE_ABI, AIR_ACCOUNT_DELEGATE_ADDRESS, ALG_ID, AccountManager, type AccountRecord, type ActiveRecovery, AgentRegistryService, type AgentReputationSummary, type AgentSessionConfig, type AgentSessionInfo, AirAccountServerClient, type AirAccountVersion, BLSSignatureData, BLSSignatureService, type BeginCeremonyResponse, type BindERC8004AgentWalletParams, type BlsConfigRecord, type BuildCredentialOptions, CALLDATA_PARSER_REGISTRY_ABI, ConsoleLogger, type CreateAgentAccountParams, type CreateP256SessionKeyRequest, type CreateP256SessionKeyResponse, DEFAULT_CREDENTIAL_ID, DEFAULT_KMS_ENDPOINT, DEFAULT_ORIGIN, DEFAULT_RP_ID, type DelegateInitParams, DvtPendingConfirmationError, type EIP7702Authorization, EIP7702DelegateService, ENTRYPOINT_ABI_V6, ENTRYPOINT_ABI_V7_V8, ENTRYPOINT_ADDRESSES, ERC20_ABI, ERC8004Service, ERC8004_ADDRESSES, EXECUTE_BATCH_SELECTOR, EXECUTE_SELECTOR, EXECUTE_USER_OP_SELECTOR, type EntryPointConfig, EntryPointVersion, type EntryPointVersionConfig, type EstimateGasParams, EthereumProvider, type ExecuteTransferParams, FACTORY_ABI_V6, FACTORY_ABI_V7_V8, FORCE_EXIT_MODULE_ABI, ForceExitService, type FullConfigGuardianParams, GLOBAL_GUARD_ABI, type GrantP256SessionParams, type GrantSessionParams, GuardChecker, type GuardState, GuardStateReader, GuardStatus, type ILogger, type ISignerAdapter, type IStorageAdapter, type InstallModuleParams, KmsAgentService, type KmsAttestationManifestResponse, type KmsAttestationProofResponse, type KmsAttestationResponse, type KmsBeginAuthenticationRequest, type KmsBeginAuthenticationResponse, type KmsBeginGrantSessionAuthRequest, type KmsBeginGrantSessionAuthResponse, type KmsBeginRegistrationRequest, type KmsBeginRegistrationResponse, type KmsChangePasskeyResponse, type KmsCompleteRegistrationRequest, type KmsCompleteRegistrationResponse, type KmsCreateAgentKeyRequest, type KmsCreateAgentKeyResponse, type KmsCreateKeyRequest, type KmsCreateKeyResponse, type KmsDeleteKeyResponse, type KmsDeriveAddressResponse, type KmsDescribeKeyResponse, type KmsEip712Domain, type KmsEip712FieldValue, type KmsEip712TypeDef, type KmsEthereumTransaction, type KmsGetPublicKeyResponse, type KmsHealthResponse, KmsHttpClient, type KmsHttpClientOptions, type KmsKeyResolver, type KmsKeyStatusResponse, type KmsListKeysResponse, KmsManager, KmsMonitorService, type KmsPaymentAuth, type KmsPaymentSignatureResponse, KmsPaymentSigner, type KmsPurgeKeyResponse, type KmsQueueStatusResponse, type KmsRefreshAgentCredentialRequest, type KmsRefreshAgentCredentialResponse, type KmsRevokeAgentCredentialRequest, type KmsRevokeAgentCredentialResponse, type KmsRollbackCounterResponse, KmsSessionService, type KmsSignAgentRequest, type KmsSignAgentResponse, type KmsSignGTokenAuthorizationRequest, type KmsSignGrantSessionRequest, type KmsSignGrantSessionResponse, type KmsSignHashResponse, type KmsSignMicropaymentVoucherRequest, type KmsSignP256GrantSessionRequest, type KmsSignRequest, type KmsSignResponse, type KmsSignTypedDataRequest, type KmsSignTypedDataResponse, type KmsSignX402PaymentRequest, KmsSigner, KmsSignerAdapter, type KmsSignerAuth, type KmsStatsResponse, type KmsVersionResponse, type L2Type, L2_TYPE, type LegacyPasskeyAssertion, LocalWalletSigner, MAX_GUARDIANS, MODULE_TYPE, MemoryStorage, type MintAgentIdentityParams, ModuleManager, type ModuleTypeId, type OapdConfig, type P256GuardianKey, P256PasskeySigner, PackedUserOperation, type PasskeyAssertionContext, type PasskeyCeremonySigner, PaymasterManager, PaymasterPriceStalenessError, type PaymasterRecord, type PendingExit, type PendingWeightChange, PreCheckResult, type QueryAgentReputationParams, RECOVERY_THRESHOLD, RECOVERY_TIMELOCK_SECONDS, RecoveryService, type RevokeP256SessionKeyRequest, type RevokeP256SessionKeyResponse, type RunCeremonyOptions, SESSION_KEY_VALIDATOR_ABI, type SerializedGuardianSpec, type ServerConfig, type SessionInfo, SessionKeyService, type SetAgentWalletParams, type SignP256UserOpRequest, type SignP256UserOpResponse, type SignerAuthContext, SilentLogger, type SubmitAgentReputationParams, TIER_GUARD_HOOK_ABI, TierConfig, TierLevel$1 as TierLevel, type TokenBalance, type TokenGuardState, type TokenInfo, TokenService, TransferManager, type TransferRecord, type TransferResult, type UninstallModuleParams, UserOperation, VALIDATOR_ABI, WEIGHT_CHANGE_EXPIRY_SECONDS, WEIGHT_CHANGE_THRESHOLD, WEIGHT_CHANGE_TIMELOCK_SECONDS, WalletManager, type WebAuthnAssertion, type WebAuthnAuthenticationCredential, type WebAuthnCeremonyContext, type WeightConfig, WeightedSignatureService, YAAAServerClient, base64UrlDecode, base64UrlEncode, beginAuthenticationChallenge, beginGrantSessionChallenge, buildAuthenticationCredential, buildAuthenticatorData, buildClientDataJSON, buildFullInitConfig, buildInstallModuleHash, buildUninstallModuleHash, commitChallenge, computeOapdSalt, eip712Digest, erc8004AddressesForChain, gTokenAuthorizationDigest, getOapdAddress, getOapdAddressWithChainId, grantSessionFinalHash, initConfigFromRecord, initConfigToTuple, isExecuteUserOpWrapped, isOapdDeployed, isPendingConfirmation, micropaymentVoucherDigest, mintDigest, packP256SessionSignature, packSecp256k1SessionSignature, runAuthenticationCeremony, runGrantSessionCeremony, runWebAuthnCeremony, sepoliaV07Config, serializeGuardianSpecs, toGuardianSpecs, validateConfig, wrapExecuteUserOp, x402PaymentDigest };

package/dist/kms.js

@@ -1,4 +1,4 @@
-export { ACCOUNT_ABI, AGENT_SESSION_KEY_VALIDATOR_ABI, AIRACCOUNT_ABI, AIRACCOUNT_ADDRESSES, AIRACCOUNT_FACTORY_ABI, AIR_ACCOUNT_COMPOSITE_VALIDATOR_ABI, AIR_ACCOUNT_DELEGATE_ABI, AIR_ACCOUNT_DELEGATE_ADDRESS, ALG_ID, AccountManager, AgentRegistryService, AirAccountServerClient, BLSSignatureService, CALLDATA_PARSER_REGISTRY_ABI, ConsoleLogger, DEFAULT_CREDENTIAL_ID, DEFAULT_KMS_ENDPOINT, DEFAULT_ORIGIN, DEFAULT_RP_ID, DvtPendingConfirmationError, EIP7702DelegateService, ENTRYPOINT_ABI_V6, ENTRYPOINT_ABI_V7_V8, ENTRYPOINT_ADDRESSES, ERC20_ABI, ERC8004Service, ERC8004_ADDRESSES, EXECUTE_BATCH_SELECTOR, EXECUTE_SELECTOR, EXECUTE_USER_OP_SELECTOR, EntryPointVersion, EthereumProvider, FACTORY_ABI_V6, FACTORY_ABI_V7_V8, FORCE_EXIT_MODULE_ABI, ForceExitService, GLOBAL_GUARD_ABI, GuardChecker, GuardStateReader, KmsAgentService, KmsHttpClient, KmsManager, KmsMonitorService, KmsPaymentSigner, KmsSessionService, KmsSigner, KmsSignerAdapter, L2_TYPE, LocalWalletSigner, MAX_GUARDIANS, MODULE_TYPE, MemoryStorage, ModuleManager, P256PasskeySigner, PaymasterManager, PaymasterPriceStalenessError, RECOVERY_THRESHOLD, RECOVERY_TIMELOCK_SECONDS, RecoveryService, SESSION_KEY_VALIDATOR_ABI, SessionKeyService, SilentLogger, TIER_GUARD_HOOK_ABI, TokenService, TransferManager, VALIDATOR_ABI, WEIGHT_CHANGE_EXPIRY_SECONDS, WEIGHT_CHANGE_THRESHOLD, WEIGHT_CHANGE_TIMELOCK_SECONDS, WalletManager, WeightedSignatureService, YAAAServerClient, base64UrlDecode, base64UrlEncode, beginAuthenticationChallenge, beginGrantSessionChallenge, buildAuthenticationCredential, buildAuthenticatorData, buildClientDataJSON, buildFullInitConfig, buildInstallModuleHash, buildUninstallModuleHash, commitChallenge, computeOapdSalt, erc8004AddressesForChain, getOapdAddress, getOapdAddressWithChainId, initConfigFromRecord, initConfigToTuple, isExecuteUserOpWrapped, isOapdDeployed, isPendingConfirmation, packP256SessionSignature, packSecp256k1SessionSignature, runAuthenticationCeremony, runGrantSessionCeremony, runWebAuthnCeremony, sepoliaV07Config, serializeGuardianSpecs, toGuardianSpecs, validateConfig, wrapExecuteUserOp } from './chunk-D2RDBN46.js';
+export { ACCOUNT_ABI, AGENT_SESSION_KEY_VALIDATOR_ABI, AIRACCOUNT_ABI, AIRACCOUNT_ADDRESSES, AIRACCOUNT_FACTORY_ABI, AIR_ACCOUNT_COMPOSITE_VALIDATOR_ABI, AIR_ACCOUNT_DELEGATE_ABI, AIR_ACCOUNT_DELEGATE_ADDRESS, ALG_ID, AccountManager, AgentRegistryService, AirAccountServerClient, BLSSignatureService, CALLDATA_PARSER_REGISTRY_ABI, ConsoleLogger, DEFAULT_CREDENTIAL_ID, DEFAULT_KMS_ENDPOINT, DEFAULT_ORIGIN, DEFAULT_RP_ID, DvtPendingConfirmationError, EIP7702DelegateService, ENTRYPOINT_ABI_V6, ENTRYPOINT_ABI_V7_V8, ENTRYPOINT_ADDRESSES, ERC20_ABI, ERC8004Service, ERC8004_ADDRESSES, EXECUTE_BATCH_SELECTOR, EXECUTE_SELECTOR, EXECUTE_USER_OP_SELECTOR, EntryPointVersion, EthereumProvider, FACTORY_ABI_V6, FACTORY_ABI_V7_V8, FORCE_EXIT_MODULE_ABI, ForceExitService, GLOBAL_GUARD_ABI, GuardChecker, GuardStateReader, KmsAgentService, KmsHttpClient, KmsManager, KmsMonitorService, KmsPaymentSigner, KmsSessionService, KmsSigner, KmsSignerAdapter, L2_TYPE, LocalWalletSigner, MAX_GUARDIANS, MODULE_TYPE, MemoryStorage, ModuleManager, P256PasskeySigner, PaymasterManager, PaymasterPriceStalenessError, RECOVERY_THRESHOLD, RECOVERY_TIMELOCK_SECONDS, RecoveryService, SESSION_KEY_VALIDATOR_ABI, SessionKeyService, SilentLogger, TIER_GUARD_HOOK_ABI, TokenService, TransferManager, VALIDATOR_ABI, WEIGHT_CHANGE_EXPIRY_SECONDS, WEIGHT_CHANGE_THRESHOLD, WEIGHT_CHANGE_TIMELOCK_SECONDS, WalletManager, WeightedSignatureService, YAAAServerClient, base64UrlDecode, base64UrlEncode, beginAuthenticationChallenge, beginGrantSessionChallenge, buildAuthenticationCredential, buildAuthenticatorData, buildClientDataJSON, buildFullInitConfig, buildInstallModuleHash, buildUninstallModuleHash, commitChallenge, computeOapdSalt, eip712Digest, erc8004AddressesForChain, gTokenAuthorizationDigest, getOapdAddress, getOapdAddressWithChainId, grantSessionFinalHash, initConfigFromRecord, initConfigToTuple, isExecuteUserOpWrapped, isOapdDeployed, isPendingConfirmation, micropaymentVoucherDigest, mintDigest, packP256SessionSignature, packSecp256k1SessionSignature, runAuthenticationCeremony, runGrantSessionCeremony, runWebAuthnCeremony, sepoliaV07Config, serializeGuardianSpecs, toGuardianSpecs, validateConfig, wrapExecuteUserOp, x402PaymentDigest } from './chunk-4GJSK7E6.js';
 export { ALG_BLS, ALG_CUMULATIVE_T2, ALG_CUMULATIVE_T3, ALG_ECDSA, ALG_P256, AirAccountClient, BLSManager, CryptoUtil, DEFAULT_PASSKEY_ROUTES, ERC4337Utils, PasskeyManager, UserOpBuilder, YAAAClient, algIdForTier, resolveTier } from './chunk-X3AMH53O.js';
 import './chunk-6DZCDV4Q.js';
 import './chunk-MBWBHKUE.js';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aastar/sdk",
-  "version": "0.25.0",
+  "version": "0.26.0",
   "description": "All-in-one TypeScript SDK for the AAStar Protocol / Mycelium Network — ERC-4337 account abstraction, gasless transactions, SuperPaymaster gas sponsorship, KMS WebAuthn passkeys, BLS aggregate signatures, multi-chain (Optimism + Ethereum) community economies & reputation. Single bundled package with subpath exports.",
   "keywords": [
     "erc-4337",