@agent-shield/sdk 0.4.1 → 0.5.2

package/dist/wrapper/harden.d.ts

@@ -0,0 +1,119 @@
+import { PublicKey, Connection, Keypair } from "@solana/web3.js";
+import { ShieldedWallet, WalletLike } from "./shield";
+import { ResolvedPolicies } from "./policies";
+import type { ShieldPolicies } from "./policies";
+/**
+ * Configuration for hardening a shielded wallet to on-chain enforcement.
+ */
+export interface HardenOptions {
+    /** Solana RPC connection */
+    connection: Connection;
+    /** Owner wallet — vault administrator. Auto-generates a Keypair if omitted. */
+    ownerWallet?: WalletLike;
+    /** Vault ID (auto-incremented if not provided) */
+    vaultId?: number;
+    /** Fee destination for the vault */
+    feeDestination?: PublicKey;
+    /** Developer fee rate (0-500, maps to on-chain rate). Default: 0 */
+    developerFeeRate?: number;
+    /** Override program ID (for devnet/testing) */
+    programId?: PublicKey;
+    /** Maximum leverage in basis points. Default: 0 */
+    maxLeverageBps?: number;
+    /** Maximum concurrent positions. Default: 5 */
+    maxConcurrentPositions?: number;
+    /** Skip TEE wallet requirement — devnet testing only. Default: false */
+    unsafeSkipTeeCheck?: boolean;
+    /** Auto-provision a TEE wallet from a custody provider */
+    teeProvider?: "crossmint" | "turnkey" | "privy";
+}
+/**
+ * Result of hardening a shielded wallet.
+ */
+export interface HardenResult {
+    /** Hardened wallet with dual enforcement (client-side + on-chain) */
+    wallet: ShieldedWallet;
+    /** The owner keypair, only set if ownerWallet was NOT provided */
+    ownerKeypair?: Keypair;
+    /** The vault PDA address */
+    vaultAddress: PublicKey;
+    /** The vault ID used */
+    vaultId: number;
+    /** The policy PDA address */
+    policyAddress: PublicKey;
+}
+/**
+ * Map resolved client-side policies to on-chain InitializeVaultParams.
+ *
+ * Multiple per-token SpendLimits collapse to the largest value as the
+ * on-chain dailySpendingCap (conservative ceiling). Per-token granularity
+ * is enforced client-side. Fields with no on-chain equivalent
+ * (blockUnknownPrograms, rateLimit, customCheck) stay client-side only.
+ */
+export declare function mapPoliciesToVaultParams(resolved: ResolvedPolicies, vaultId: number, feeDestination: PublicKey, opts?: {
+    developerFeeRate?: number;
+    maxLeverageBps?: number;
+    maxConcurrentPositions?: number;
+}): {
+    vaultId: any;
+    dailySpendingCap: bigint;
+    maxTransactionSize: bigint;
+    allowedTokens: PublicKey[];
+    allowedProtocols: PublicKey[];
+    maxLeverageBps: number;
+    maxConcurrentPositions: number;
+    feeDestination: PublicKey;
+    developerFeeRate: number;
+};
+/**
+ * Probe vault PDAs starting from 0 to find the next available vault ID.
+ * Returns 0 for a new owner, or the first unused ID.
+ */
+export declare function findNextVaultId(connection: Connection, ownerPubkey: PublicKey, programId?: PublicKey): Promise<number>;
+/**
+ * Harden a shielded wallet with on-chain vault enforcement.
+ *
+ * Creates an on-chain AgentShield vault, registers the wallet as an agent,
+ * and configures policies matching the wrapper config. Requires a TEE-backed
+ * wallet unless unsafeSkipTeeCheck is set (devnet only).
+ *
+ * @example
+ * ```typescript
+ * import { withVault } from '@agent-shield/sdk';
+ *
+ * const result = await withVault(teeWallet, { maxSpend: '500 USDC/day' }, {
+ *   connection,
+ * });
+ * // result.wallet is ready with full on-chain enforcement
+ * ```
+ */
+export declare function harden(shieldedWallet: ShieldedWallet, options: HardenOptions): Promise<HardenResult>;
+/**
+ * The primary developer-facing function. Wraps a wallet with client-side policy
+ * enforcement and hardens it to on-chain vault enforcement in one call.
+ *
+ * One call = full protection: client-side fast deny + on-chain vault enforcement.
+ *
+ * @example
+ * ```typescript
+ * import { withVault } from '@agent-shield/sdk';
+ *
+ * // Simplest path: bring your TEE wallet
+ * const result = await withVault(teeWallet, { maxSpend: '500 USDC/day' }, {
+ *   connection,
+ * });
+ *
+ * // Devnet testing (no TEE required)
+ * const result = await withVault(wallet, { maxSpend: '500 USDC/day' }, {
+ *   connection,
+ *   unsafeSkipTeeCheck: true,
+ * });
+ * ```
+ */
+export declare function withVault(wallet: WalletLike, policies: ShieldPolicies | undefined, options: HardenOptions): Promise<HardenResult>;
+/**
+ * Public API for client-side-only shielding (no on-chain vault).
+ * For most users, prefer withVault() for full enforcement.
+ */
+export declare function shieldWallet(wallet: WalletLike, policies?: ShieldPolicies, options?: import("./shield").ShieldOptions): ShieldedWallet;
+//# sourceMappingURL=harden.d.ts.map

package/dist/wrapper/harden.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"harden.d.ts","sourceRoot":"","sources":["../../src/wrapper/harden.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,SAAS,EACT,UAAU,EACV,OAAO,EAMR,MAAM,iBAAiB,CAAC;AAMzB,OAAO,EAAE,cAAc,EAAE,UAAU,EAAe,MAAM,UAAU,CAAC;AACnE,OAAO,EAAE,gBAAgB,EAAuB,MAAM,YAAY,CAAC;AAWnE,OAAO,KAAK,EAAE,cAAc,EAAmB,MAAM,YAAY,CAAC;AAMlE;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,4BAA4B;IAC5B,UAAU,EAAE,UAAU,CAAC;IACvB,+EAA+E;IAC/E,WAAW,CAAC,EAAE,UAAU,CAAC;IACzB,kDAAkD;IAClD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,oCAAoC;IACpC,cAAc,CAAC,EAAE,SAAS,CAAC;IAC3B,oEAAoE;IACpE,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,+CAA+C;IAC/C,SAAS,CAAC,EAAE,SAAS,CAAC;IACtB,mDAAmD;IACnD,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,+CAA+C;IAC/C,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,wEAAwE;IACxE,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,0DAA0D;IAC1D,WAAW,CAAC,EAAE,WAAW,GAAG,SAAS,GAAG,OAAO,CAAC;CACjD;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,qEAAqE;IACrE,MAAM,EAAE,cAAc,CAAC;IACvB,kEAAkE;IAClE,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,4BAA4B;IAC5B,YAAY,EAAE,SAAS,CAAC;IACxB,wBAAwB;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,6BAA6B;IAC7B,aAAa,EAAE,SAAS,CAAC;CAC1B;AAED;;;;;;;GAOG;AACH,wBAAgB,wBAAwB,CACtC,QAAQ,EAAE,gBAAgB,EAC1B,OAAO,EAAE,MAAM,EACf,cAAc,EAAE,SAAS,EACzB,IAAI,CAAC,EAAE;IACL,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC,GACA;IACD,OAAO,EAAE,GAAG,CAAC;IACb,gBAAgB,EAAE,MAAM,CAAC;IACzB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,aAAa,EAAE,SAAS,EAAE,CAAC;IAC3B,gBAAgB,EAAE,SAAS,EAAE,CAAC;IAC9B,cAAc,EAAE,MAAM,CAAC;IACvB,sBAAsB,EAAE,MAAM,CAAC;IAC/B,cAAc,EAAE,SAAS,CAAC;IAC1B,gBAAgB,EAAE,MAAM,CAAC;CAC1B,CA+CA;AAED;;;GAGG;AACH,wBAAsB,eAAe,CACnC,UAAU,EAAE,UAAU,EACtB,WAAW,EAAE,SAAS,EACtB,SAAS,CAAC,EAAE,SAAS,GACpB,OAAO,CAAC,MAAM,CAAC,CASjB;AA6PD;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAsB,MAAM,CAC1B,cAAc,EAAE,cAAc,EAC9B,OAAO,EAAE,aAAa,GACrB,OAAO,CAAC,YAAY,CAAC,CA8HvB;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,wBAAsB,SAAS,CAC7B,MAAM,EAAE,UAAU,EAClB,QAAQ,EAAE,cAAc,GAAG,SAAS,EACpC,OAAO,EAAE,aAAa,GACrB,OAAO,CAAC,YAAY,CAAC,CAGvB;AAED;;;GAGG;AACH,wBAAgB,YAAY,CAC1B,MAAM,EAAE,UAAU,EAClB,QAAQ,CAAC,EAAE,cAAc,EACzB,OAAO,CAAC,EAAE,OAAO,UAAU,EAAE,aAAa,GACzC,cAAc,CAEhB"}

package/dist/wrapper/harden.js

@@ -0,0 +1,399 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.mapPoliciesToVaultParams = mapPoliciesToVaultParams;
+exports.findNextVaultId = findNextVaultId;
+exports.harden = harden;
+exports.withVault = withVault;
+exports.shieldWallet = shieldWallet;
+const web3_js_1 = require("@solana/web3.js");
+const spl_token_1 = require("@solana/spl-token");
+const anchor_1 = require("@coral-xyz/anchor");
+const shield_1 = require("./shield");
+const errors_1 = require("./errors");
+const inspector_1 = require("./inspector");
+const engine_1 = require("./engine");
+const shield_2 = require("./shield");
+const registry_1 = require("./registry");
+const client_1 = require("../client");
+const accounts_1 = require("../accounts");
+const composer_1 = require("../composer");
+const idl_json_1 = require("../idl-json");
+/**
+ * Map resolved client-side policies to on-chain InitializeVaultParams.
+ *
+ * Multiple per-token SpendLimits collapse to the largest value as the
+ * on-chain dailySpendingCap (conservative ceiling). Per-token granularity
+ * is enforced client-side. Fields with no on-chain equivalent
+ * (blockUnknownPrograms, rateLimit, customCheck) stay client-side only.
+ */
+function mapPoliciesToVaultParams(resolved, vaultId, feeDestination, opts) {
+    // Collapse multiple spend limits to the largest (ceiling cap)
+    let maxCap = BigInt(0);
+    const tokenMintSet = new Set();
+    for (const limit of resolved.spendLimits) {
+        if (limit.amount > maxCap) {
+            maxCap = limit.amount;
+        }
+        // Collect token mints from spend limits
+        tokenMintSet.add(limit.mint);
+    }
+    // Merge explicitly allowed tokens (deduped) — allowedTokens is Set<string>|undefined
+    if (resolved.allowedTokens) {
+        for (const t of resolved.allowedTokens) {
+            tokenMintSet.add(t);
+        }
+    }
+    // Cap at 10 tokens (on-chain limit)
+    const allowedTokens = Array.from(tokenMintSet)
+        .slice(0, 10)
+        .map((s) => new web3_js_1.PublicKey(s));
+    // Allowed protocols (Set<string>|undefined), cap at 10
+    const protocolArr = resolved.allowedProtocols
+        ? Array.from(resolved.allowedProtocols)
+        : [];
+    const allowedProtocols = protocolArr
+        .slice(0, 10)
+        .map((s) => new web3_js_1.PublicKey(s));
+    // maxTransactionSize: use resolved value, fall back to dailySpendingCap
+    const maxTransactionSize = resolved.maxTransactionSize ?? maxCap;
+    return {
+        vaultId,
+        dailySpendingCap: maxCap,
+        maxTransactionSize,
+        allowedTokens,
+        allowedProtocols,
+        maxLeverageBps: opts?.maxLeverageBps ?? 0,
+        maxConcurrentPositions: opts?.maxConcurrentPositions ?? 5,
+        feeDestination,
+        developerFeeRate: opts?.developerFeeRate ?? 0,
+    };
+}
+/**
+ * Probe vault PDAs starting from 0 to find the next available vault ID.
+ * Returns 0 for a new owner, or the first unused ID.
+ */
+async function findNextVaultId(connection, ownerPubkey, programId) {
+    for (let id = 0; id <= 255; id++) {
+        const [vaultPda] = (0, accounts_1.getVaultPDA)(ownerPubkey, new anchor_1.BN(id), programId);
+        const account = await connection.getAccountInfo(vaultPda);
+        if (!account) {
+            return id;
+        }
+    }
+    throw new Error("All 256 vault slots are in use for this owner.");
+}
+/**
+ * Infer the token mint from a transaction analysis.
+ * Uses the first outgoing transfer's mint, falls back to SOL mint.
+ */
+function inferTokenMint(analysis) {
+    const SOL_MINT = new web3_js_1.PublicKey("So11111111111111111111111111111111111111112");
+    const outgoing = analysis.transfers.find((t) => t.direction === "outgoing");
+    if (outgoing && !outgoing.mint.equals(web3_js_1.PublicKey.default)) {
+        return outgoing.mint;
+    }
+    return SOL_MINT;
+}
+/**
+ * Infer the total outgoing amount from a transaction analysis.
+ */
+function inferAmount(analysis) {
+    return analysis.transfers
+        .filter((t) => t.direction === "outgoing")
+        .reduce((sum, t) => sum + t.amount, BigInt(0));
+}
+/**
+ * Infer the target protocol from a transaction analysis.
+ * Returns the first non-system program ID, or SystemProgram.
+ */
+function inferTargetProtocol(analysis) {
+    const SYSTEM_PROGRAM = new web3_js_1.PublicKey("11111111111111111111111111111111");
+    for (const pid of analysis.programIds) {
+        if (!pid.equals(SYSTEM_PROGRAM)) {
+            return pid;
+        }
+    }
+    return SYSTEM_PROGRAM;
+}
+/**
+ * Infer the ActionType from a transaction analysis.
+ *
+ * Pure SPL token transfer transactions → Transfer.
+ * Everything else (Jupiter, Flash Trade, etc.) → Swap.
+ */
+function inferActionType(instructions) {
+    const TOKEN_2022_PROGRAM = new web3_js_1.PublicKey("TokenzQdBNbLqP5VEhdkAS6EPFLC1PHnBqCXEpPxuEb");
+    const nonSystemIxs = instructions.filter((ix) => !(0, registry_1.isSystemProgram)(ix.programId) &&
+        !ix.programId.equals(web3_js_1.ComputeBudgetProgram.programId));
+    const allAreTokenTransfers = nonSystemIxs.length > 0 &&
+        nonSystemIxs.every((ix) => ix.programId.equals(spl_token_1.TOKEN_PROGRAM_ID) ||
+            ix.programId.equals(TOKEN_2022_PROGRAM));
+    return allAreTokenTransfers ? { transfer: {} } : { swap: {} };
+}
+/**
+ * Create a hardened wallet that enforces policies both client-side and on-chain.
+ *
+ * Dual enforcement flow:
+ * 1. Client-side policy check (fast deny)
+ * 2. If approved, compose transaction with validate+authorize + original ixs + finalize
+ * 3. Sign composed transaction with agent's inner wallet
+ */
+function createHardenedWallet(original, vaultAddress, ownerPubkey, vaultId, connection, programId) {
+    const innerWallet = original.innerWallet;
+    const state = original.shieldState;
+    // We need the resolved policies and the pause state from the original
+    // shield for client-side enforcement. We'll delegate to the original
+    // for policy evaluation, but override signTransaction.
+    const hardened = {
+        publicKey: original.publicKey,
+        innerWallet,
+        shieldState: state,
+        isHardened: true,
+        get resolvedPolicies() {
+            return original.resolvedPolicies;
+        },
+        get isPaused() {
+            return original.isPaused;
+        },
+        async signTransaction(tx) {
+            // If paused, pass through without enforcement
+            if (original.isPaused) {
+                return innerWallet.signTransaction(tx);
+            }
+            // Step 1: Client-side policy check (fast deny)
+            let lookupTableAccounts;
+            if (tx instanceof web3_js_1.VersionedTransaction &&
+                tx.message.addressTableLookups.length > 0) {
+                lookupTableAccounts = await (0, inspector_1.resolveTransactionAddressLookupTables)(tx, connection);
+            }
+            const analysis = (0, inspector_1.analyzeTransaction)(tx, innerWallet.publicKey, lookupTableAccounts);
+            const violations = (0, engine_1.evaluatePolicy)(analysis, original.resolvedPolicies, state);
+            if (violations.length > 0) {
+                throw new errors_1.ShieldDeniedError(violations);
+            }
+            // Step 2: Extract original instructions and compose with vault enforcement
+            const originalIxs = (0, inspector_1.extractInstructions)(tx, lookupTableAccounts);
+            const tokenMint = inferTokenMint(analysis);
+            const amount = inferAmount(analysis);
+            const targetProtocol = inferTargetProtocol(analysis);
+            const vaultTokenAccount = (0, spl_token_1.getAssociatedTokenAddressSync)(tokenMint, vaultAddress, true);
+            const program = createProgram(connection, innerWallet, programId);
+            const composedTx = await (0, composer_1.composePermittedTransaction)(program, connection, {
+                vault: vaultAddress,
+                owner: ownerPubkey,
+                vaultId: new anchor_1.BN(vaultId),
+                agent: innerWallet.publicKey,
+                actionType: inferActionType(originalIxs),
+                tokenMint,
+                amount: new anchor_1.BN(amount.toString()),
+                targetProtocol,
+                defiInstructions: originalIxs,
+                vaultTokenAccount,
+            });
+            // Step 3: Sign the composed transaction with the inner wallet
+            const signed = await innerWallet.signTransaction(composedTx);
+            // Step 4: Record in client-side state
+            (0, engine_1.recordTransaction)(analysis, state);
+            return signed;
+        },
+        async signAllTransactions(txs) {
+            const results = [];
+            for (const tx of txs) {
+                results.push(await hardened.signTransaction(tx));
+            }
+            return results;
+        },
+        updatePolicies(policies) {
+            original.updatePolicies(policies);
+        },
+        resetState() {
+            original.resetState();
+        },
+        pause() {
+            original.pause();
+        },
+        resume() {
+            original.resume();
+        },
+        getSpendingSummary() {
+            return original.getSpendingSummary();
+        },
+    };
+    // Expose vault metadata for x402 hardened path
+    hardened._vaultAddress = vaultAddress;
+    hardened._vaultId = vaultId;
+    hardened._programId = programId;
+    hardened._ownerPubkey = ownerPubkey;
+    hardened._connection = connection;
+    return hardened;
+}
+/**
+ * Create a Program instance for vault operations.
+ * Uses the inner wallet as the signer.
+ */
+function createProgram(connection, wallet, programId) {
+    const provider = new anchor_1.AnchorProvider(connection, wallet, {
+        commitment: "confirmed",
+    });
+    const idl = { ...idl_json_1.IDL };
+    if (programId) {
+        idl.address = programId.toBase58();
+    }
+    return new anchor_1.Program(idl, provider);
+}
+/**
+ * Create an Anchor Wallet from a WalletLike.
+ * If the wallet has a `payer` property (Keypair-based), use it directly.
+ * Otherwise create a wrapper that delegates to signTransaction.
+ */
+function toAnchorWallet(wallet) {
+    return {
+        publicKey: wallet.publicKey,
+        signTransaction: wallet.signTransaction.bind(wallet),
+        signAllTransactions: wallet.signAllTransactions?.bind(wallet) ??
+            ((txs) => Promise.all(txs.map((tx) => wallet.signTransaction(tx)))),
+    };
+}
+/**
+ * Harden a shielded wallet with on-chain vault enforcement.
+ *
+ * Creates an on-chain AgentShield vault, registers the wallet as an agent,
+ * and configures policies matching the wrapper config. Requires a TEE-backed
+ * wallet unless unsafeSkipTeeCheck is set (devnet only).
+ *
+ * @example
+ * ```typescript
+ * import { withVault } from '@agent-shield/sdk';
+ *
+ * const result = await withVault(teeWallet, { maxSpend: '500 USDC/day' }, {
+ *   connection,
+ * });
+ * // result.wallet is ready with full on-chain enforcement
+ * ```
+ */
+async function harden(shieldedWallet, options) {
+    // Resolve owner: use provided wallet or auto-generate a keypair
+    let ownerKeypair;
+    let ownerWallet;
+    if (options.ownerWallet) {
+        ownerWallet = options.ownerWallet;
+    }
+    else {
+        ownerKeypair = web3_js_1.Keypair.generate();
+        ownerWallet = {
+            publicKey: ownerKeypair.publicKey,
+            async signTransaction(tx) {
+                if (tx instanceof web3_js_1.VersionedTransaction) {
+                    tx.sign([ownerKeypair]);
+                    return tx;
+                }
+                tx.partialSign(ownerKeypair);
+                return tx;
+            },
+        };
+    }
+    const agentPubkey = shieldedWallet.innerWallet.publicKey;
+    const ownerPubkey = ownerWallet.publicKey;
+    // Validate owner != agent
+    if (ownerPubkey.equals(agentPubkey)) {
+        throw new Error("Owner and agent must be different keys. The wallet passed to shield() is the agent key. " +
+            "Provide a different ownerWallet in HardenOptions, or omit it to auto-generate one.");
+    }
+    // Enforce TEE requirement — production agents must use TEE custody
+    if (!options.unsafeSkipTeeCheck && !(0, shield_1.isTeeWallet)(shieldedWallet.innerWallet)) {
+        throw new errors_1.TeeRequiredError();
+    }
+    // Create client with owner wallet (owner signs vault creation + agent registration)
+    const client = new client_1.AgentShieldClient(options.connection, toAnchorWallet(ownerWallet), options.programId);
+    // Find next vault ID if not provided
+    const vaultId = options.vaultId ??
+        (await findNextVaultId(options.connection, ownerPubkey, options.programId));
+    // Map policies to vault params
+    const feeDestination = options.feeDestination ?? ownerPubkey;
+    const mapped = mapPoliciesToVaultParams(shieldedWallet.resolvedPolicies, vaultId, feeDestination, {
+        developerFeeRate: options.developerFeeRate,
+        maxLeverageBps: options.maxLeverageBps,
+        maxConcurrentPositions: options.maxConcurrentPositions,
+    });
+    // Convert bigints to BN and wrap tokens as AllowedToken for the SDK
+    const vaultParams = {
+        vaultId: new anchor_1.BN(mapped.vaultId),
+        dailySpendingCapUsd: new anchor_1.BN(mapped.dailySpendingCap.toString()),
+        maxTransactionSizeUsd: new anchor_1.BN(mapped.maxTransactionSize.toString()),
+        allowedTokens: mapped.allowedTokens.map((mint) => ({
+            mint,
+            oracleFeed: web3_js_1.PublicKey.default, // stablecoin (1:1 USD) by default
+            decimals: 6,
+            dailyCapBase: new anchor_1.BN(0),
+            maxTxBase: new anchor_1.BN(0),
+        })),
+        allowedProtocols: mapped.allowedProtocols,
+        maxLeverageBps: mapped.maxLeverageBps,
+        maxConcurrentPositions: mapped.maxConcurrentPositions,
+        feeDestination: mapped.feeDestination,
+        developerFeeRate: mapped.developerFeeRate,
+    };
+    // Create vault (signed by owner)
+    try {
+        await client.createVault(vaultParams);
+    }
+    catch (err) {
+        throw new Error(`Failed to create on-chain vault: ${err.message ?? err}. ` +
+            "Ensure the owner wallet has enough SOL for rent.");
+    }
+    // Derive vault PDA address
+    const [vaultAddress] = client.getVaultPDA(ownerPubkey, new anchor_1.BN(vaultId));
+    const [policyAddress] = client.getPolicyPDA(vaultAddress);
+    // Register agent (signed by owner)
+    try {
+        await client.registerAgent(vaultAddress, agentPubkey);
+    }
+    catch (err) {
+        throw new Error(`Vault created at ${vaultAddress.toBase58()} but agent registration failed: ${err.message ?? err}. ` +
+            "You can manually register the agent using the vault SDK: " +
+            `client.registerAgent(new PublicKey("${vaultAddress.toBase58()}"), agentPubkey)`);
+    }
+    // Build hardened wallet with dual enforcement
+    const wallet = createHardenedWallet(shieldedWallet, vaultAddress, ownerPubkey, vaultId, options.connection, options.programId);
+    return {
+        wallet,
+        ownerKeypair,
+        vaultAddress,
+        vaultId,
+        policyAddress,
+    };
+}
+/**
+ * The primary developer-facing function. Wraps a wallet with client-side policy
+ * enforcement and hardens it to on-chain vault enforcement in one call.
+ *
+ * One call = full protection: client-side fast deny + on-chain vault enforcement.
+ *
+ * @example
+ * ```typescript
+ * import { withVault } from '@agent-shield/sdk';
+ *
+ * // Simplest path: bring your TEE wallet
+ * const result = await withVault(teeWallet, { maxSpend: '500 USDC/day' }, {
+ *   connection,
+ * });
+ *
+ * // Devnet testing (no TEE required)
+ * const result = await withVault(wallet, { maxSpend: '500 USDC/day' }, {
+ *   connection,
+ *   unsafeSkipTeeCheck: true,
+ * });
+ * ```
+ */
+async function withVault(wallet, policies, options) {
+    const shielded = (0, shield_2.shield)(wallet, policies);
+    return harden(shielded, options);
+}
+/**
+ * Public API for client-side-only shielding (no on-chain vault).
+ * For most users, prefer withVault() for full enforcement.
+ */
+function shieldWallet(wallet, policies, options) {
+    return (0, shield_2.shield)(wallet, policies, options);
+}
+//# sourceMappingURL=harden.js.map

package/dist/wrapper/harden.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"harden.js","sourceRoot":"","sources":["../../src/wrapper/harden.ts"],"names":[],"mappings":";;AAmFA,4DAkEC;AAMD,0CAaC;AA8QD,wBAiIC;AAwBD,8BAOC;AAMD,oCAMC;AAlmBD,6CASyB;AACzB,iDAG2B;AAC3B,8CAAgE;AAChE,qCAAmE;AAEnE,qCAA+D;AAC/D,2CAIqB;AACrB,qCAA6D;AAE7D,qCAAkC;AAClC,yCAA6C;AAE7C,sCAA8C;AAC9C,0CAAwD;AACxD,0CAA0D;AAC1D,0CAAkC;AA4ClC;;;;;;;GAOG;AACH,SAAgB,wBAAwB,CACtC,QAA0B,EAC1B,OAAe,EACf,cAAyB,EACzB,IAIC;IAYD,8DAA8D;IAC9D,IAAI,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;IACvB,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IAEvC,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,WAAW,EAAE,CAAC;QACzC,IAAI,KAAK,CAAC,MAAM,GAAG,MAAM,EAAE,CAAC;YAC1B,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC;QACxB,CAAC;QACD,wCAAwC;QACxC,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC/B,CAAC;IAED,qFAAqF;IACrF,IAAI,QAAQ,CAAC,aAAa,EAAE,CAAC;QAC3B,KAAK,MAAM,CAAC,IAAI,QAAQ,CAAC,aAAa,EAAE,CAAC;YACvC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QACtB,CAAC;IACH,CAAC;IAED,oCAAoC;IACpC,MAAM,aAAa,GAAG,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC;SAC3C,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;SACZ,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,mBAAS,CAAC,CAAC,CAAC,CAAC,CAAC;IAEhC,uDAAuD;IACvD,MAAM,WAAW,GAAG,QAAQ,CAAC,gBAAgB;QAC3C,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC;QACvC,CAAC,CAAC,EAAE,CAAC;IACP,MAAM,gBAAgB,GAAG,WAAW;SACjC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;SACZ,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,mBAAS,CAAC,CAAC,CAAC,CAAC,CAAC;IAEhC,wEAAwE;IACxE,MAAM,kBAAkB,GAAG,QAAQ,CAAC,kBAAkB,IAAI,MAAM,CAAC;IAEjE,OAAO;QACL,OAAO;QACP,gBAAgB,EAAE,MAAM;QACxB,kBAAkB;QAClB,aAAa;QACb,gBAAgB;QAChB,cAAc,EAAE,IAAI,EAAE,cAAc,IAAI,CAAC;QACzC,sBAAsB,EAAE,IAAI,EAAE,sBAAsB,IAAI,CAAC;QACzD,cAAc;QACd,gBAAgB,EAAE,IAAI,EAAE,gBAAgB,IAAI,CAAC;KAC9C,CAAC;AACJ,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,eAAe,CACnC,UAAsB,EACtB,WAAsB,EACtB,SAAqB;IAErB,KAAK,IAAI,EAAE,GAAG,CAAC,EAAE,EAAE,IAAI,GAAG,EAAE,EAAE,EAAE,EAAE,CAAC;QACjC,MAAM,CAAC,QAAQ,CAAC,GAAG,IAAA,sBAAW,EAAC,WAAW,EAAE,IAAI,WAAE,CAAC,EAAE,CAAC,EAAE,SAAS,CAAC,CAAC;QACnE,MAAM,OAAO,GAAG,MAAM,UAAU,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAC1D,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;AACpE,CAAC;AAED;;;GAGG;AACH,SAAS,cAAc,CAAC,QAA6B;IACnD,MAAM,QAAQ,GAAG,IAAI,mBAAS,CAAC,6CAA6C,CAAC,CAAC;IAC9E,MAAM,QAAQ,GAAG,QAAQ,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,UAAU,CAAC,CAAC;IAC5E,IAAI,QAAQ,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,mBAAS,CAAC,OAAO,CAAC,EAAE,CAAC;QACzD,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,WAAW,CAAC,QAA6B;IAChD,OAAO,QAAQ,CAAC,SAAS;SACtB,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,UAAU,CAAC;SACzC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;AACnD,CAAC;AAED;;;GAGG;AACH,SAAS,mBAAmB,CAAC,QAA6B;IACxD,MAAM,cAAc,GAAG,IAAI,mBAAS,CAAC,kCAAkC,CAAC,CAAC;IACzE,KAAK,MAAM,GAAG,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC;QACtC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,cAAc,CAAC,EAAE,CAAC;YAChC,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,cAAc,CAAC;AACxB,CAAC;AAED;;;;;GAKG;AACH,SAAS,eAAe,CACtB,YAAsC;IAEtC,MAAM,kBAAkB,GAAG,IAAI,mBAAS,CACtC,6CAA6C,CAC9C,CAAC;IACF,MAAM,YAAY,GAAG,YAAY,CAAC,MAAM,CACtC,CAAC,EAAE,EAAE,EAAE,CACL,CAAC,IAAA,0BAAe,EAAC,EAAE,CAAC,SAAS,CAAC;QAC9B,CAAC,EAAE,CAAC,SAAS,CAAC,MAAM,CAAC,8BAAoB,CAAC,SAAS,CAAC,CACvD,CAAC;IACF,MAAM,oBAAoB,GACxB,YAAY,CAAC,MAAM,GAAG,CAAC;QACvB,YAAY,CAAC,KAAK,CAChB,CAAC,EAAE,EAAE,EAAE,CACL,EAAE,CAAC,SAAS,CAAC,MAAM,CAAC,4BAAgB,CAAC;YACrC,EAAE,CAAC,SAAS,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAC1C,CAAC;IACJ,OAAO,oBAAoB,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;AAChE,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,oBAAoB,CAC3B,QAAwB,EACxB,YAAuB,EACvB,WAAsB,EACtB,OAAe,EACf,UAAsB,EACtB,SAAqB;IAErB,MAAM,WAAW,GAAG,QAAQ,CAAC,WAAW,CAAC;IACzC,MAAM,KAAK,GAAG,QAAQ,CAAC,WAAW,CAAC;IAEnC,sEAAsE;IACtE,qEAAqE;IACrE,uDAAuD;IAEvD,MAAM,QAAQ,GAAmB;QAC/B,SAAS,EAAE,QAAQ,CAAC,SAAS;QAC7B,WAAW;QACX,WAAW,EAAE,KAAK;QAClB,UAAU,EAAE,IAAI;QAEhB,IAAI,gBAAgB;YAClB,OAAO,QAAQ,CAAC,gBAAgB,CAAC;QACnC,CAAC;QAED,IAAI,QAAQ;YACV,OAAO,QAAQ,CAAC,QAAQ,CAAC;QAC3B,CAAC;QAED,KAAK,CAAC,eAAe,CACnB,EAAK;YAEL,8CAA8C;YAC9C,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;gBACtB,OAAO,WAAW,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC;YACzC,CAAC;YAED,+CAA+C;YAC/C,IAAI,mBAA4D,CAAC;YACjE,IACE,EAAE,YAAY,8BAAoB;gBAClC,EAAE,CAAC,OAAO,CAAC,mBAAmB,CAAC,MAAM,GAAG,CAAC,EACzC,CAAC;gBACD,mBAAmB,GAAG,MAAM,IAAA,iDAAqC,EAC/D,EAAE,EACF,UAAU,CACX,CAAC;YACJ,CAAC;YAED,MAAM,QAAQ,GAAG,IAAA,8BAAkB,EACjC,EAAE,EACF,WAAW,CAAC,SAAS,EACrB,mBAAmB,CACpB,CAAC;YACF,MAAM,UAAU,GAAG,IAAA,uBAAc,EAC/B,QAAQ,EACR,QAAQ,CAAC,gBAAgB,EACzB,KAAK,CACN,CAAC;YAEF,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC1B,MAAM,IAAI,0BAAiB,CAAC,UAAU,CAAC,CAAC;YAC1C,CAAC;YAED,2EAA2E;YAC3E,MAAM,WAAW,GAAG,IAAA,+BAAmB,EAAC,EAAE,EAAE,mBAAmB,CAAC,CAAC;YACjE,MAAM,SAAS,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;YAC3C,MAAM,MAAM,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;YACrC,MAAM,cAAc,GAAG,mBAAmB,CAAC,QAAQ,CAAC,CAAC;YAErD,MAAM,iBAAiB,GAAG,IAAA,yCAA6B,EACrD,SAAS,EACT,YAAY,EACZ,IAAI,CACL,CAAC;YAEF,MAAM,OAAO,GAAG,aAAa,CAAC,UAAU,EAAE,WAAW,EAAE,SAAS,CAAC,CAAC;YAElE,MAAM,UAAU,GAAG,MAAM,IAAA,sCAA2B,EAClD,OAAO,EACP,UAAU,EACV;gBACE,KAAK,EAAE,YAAY;gBACnB,KAAK,EAAE,WAAW;gBAClB,OAAO,EAAE,IAAI,WAAE,CAAC,OAAO,CAAC;gBACxB,KAAK,EAAE,WAAW,CAAC,SAAS;gBAC5B,UAAU,EAAE,eAAe,CAAC,WAAW,CAAC;gBACxC,SAAS;gBACT,MAAM,EAAE,IAAI,WAAE,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC;gBACjC,cAAc;gBACd,gBAAgB,EAAE,WAAW;gBAC7B,iBAAiB;aAClB,CACF,CAAC;YAEF,8DAA8D;YAC9D,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC;YAE7D,sCAAsC;YACtC,IAAA,0BAAiB,EAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;YAEnC,OAAO,MAAsB,CAAC;QAChC,CAAC;QAED,KAAK,CAAC,mBAAmB,CACvB,GAAQ;YAER,MAAM,OAAO,GAAQ,EAAE,CAAC;YACxB,KAAK,MAAM,EAAE,IAAI,GAAG,EAAE,CAAC;gBACrB,OAAO,CAAC,IAAI,CAAC,MAAM,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC,CAAC;YACnD,CAAC;YACD,OAAO,OAAO,CAAC;QACjB,CAAC;QAED,cAAc,CAAC,QAAwB;YACrC,QAAQ,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QACpC,CAAC;QAED,UAAU;YACR,QAAQ,CAAC,UAAU,EAAE,CAAC;QACxB,CAAC;QAED,KAAK;YACH,QAAQ,CAAC,KAAK,EAAE,CAAC;QACnB,CAAC;QAED,MAAM;YACJ,QAAQ,CAAC,MAAM,EAAE,CAAC;QACpB,CAAC;QAED,kBAAkB;YAChB,OAAO,QAAQ,CAAC,kBAAkB,EAAE,CAAC;QACvC,CAAC;KACF,CAAC;IAEF,+CAA+C;IAC9C,QAAgB,CAAC,aAAa,GAAG,YAAY,CAAC;IAC9C,QAAgB,CAAC,QAAQ,GAAG,OAAO,CAAC;IACpC,QAAgB,CAAC,UAAU,GAAG,SAAS,CAAC;IACxC,QAAgB,CAAC,YAAY,GAAG,WAAW,CAAC;IAC5C,QAAgB,CAAC,WAAW,GAAG,UAAU,CAAC;IAE3C,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;GAGG;AACH,SAAS,aAAa,CACpB,UAAsB,EACtB,MAAkB,EAClB,SAAqB;IAErB,MAAM,QAAQ,GAAG,IAAI,uBAAc,CAAC,UAAU,EAAE,MAAa,EAAE;QAC7D,UAAU,EAAE,WAAW;KACxB,CAAC,CAAC;IACH,MAAM,GAAG,GAAG,EAAE,GAAG,cAAG,EAAS,CAAC;IAC9B,IAAI,SAAS,EAAE,CAAC;QACd,GAAG,CAAC,OAAO,GAAG,SAAS,CAAC,QAAQ,EAAE,CAAC;IACrC,CAAC;IACD,OAAO,IAAI,gBAAO,CAAC,GAAG,EAAE,QAAQ,CAAQ,CAAC;AAC3C,CAAC;AAED;;;;GAIG;AACH,SAAS,cAAc,CAAC,MAAkB;IACxC,OAAO;QACL,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,eAAe,EAAE,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC;QACpD,mBAAmB,EACjB,MAAM,CAAC,mBAAmB,EAAE,IAAI,CAAC,MAAM,CAAC;YACxC,CAAC,CAAC,GAAU,EAAE,EAAE,CACd,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,EAAO,EAAE,EAAE,CAAC,MAAM,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;KACnE,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;;;GAgBG;AACI,KAAK,UAAU,MAAM,CAC1B,cAA8B,EAC9B,OAAsB;IAEtB,gEAAgE;IAChE,IAAI,YAAiC,CAAC;IACtC,IAAI,WAAuB,CAAC;IAE5B,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;QACxB,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IACpC,CAAC;SAAM,CAAC;QACN,YAAY,GAAG,iBAAO,CAAC,QAAQ,EAAE,CAAC;QAClC,WAAW,GAAG;YACZ,SAAS,EAAE,YAAY,CAAC,SAAS;YACjC,KAAK,CAAC,eAAe,CACnB,EAAK;gBAEL,IAAI,EAAE,YAAY,8BAAoB,EAAE,CAAC;oBACvC,EAAE,CAAC,IAAI,CAAC,CAAC,YAAa,CAAC,CAAC,CAAC;oBACzB,OAAO,EAAE,CAAC;gBACZ,CAAC;gBACA,EAAkB,CAAC,WAAW,CAAC,YAAa,CAAC,CAAC;gBAC/C,OAAO,EAAE,CAAC;YACZ,CAAC;SACF,CAAC;IACJ,CAAC;IAED,MAAM,WAAW,GAAG,cAAc,CAAC,WAAW,CAAC,SAAS,CAAC;IACzD,MAAM,WAAW,GAAG,WAAW,CAAC,SAAS,CAAC;IAE1C,0BAA0B;IAC1B,IAAI,WAAW,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CACb,0FAA0F;YACxF,oFAAoF,CACvF,CAAC;IACJ,CAAC;IAED,mEAAmE;IACnE,IAAI,CAAC,OAAO,CAAC,kBAAkB,IAAI,CAAC,IAAA,oBAAW,EAAC,cAAc,CAAC,WAAW,CAAC,EAAE,CAAC;QAC5E,MAAM,IAAI,yBAAgB,EAAE,CAAC;IAC/B,CAAC;IAED,oFAAoF;IACpF,MAAM,MAAM,GAAG,IAAI,0BAAiB,CAClC,OAAO,CAAC,UAAU,EAClB,cAAc,CAAC,WAAW,CAAC,EAC3B,OAAO,CAAC,SAAS,CAClB,CAAC;IAEF,qCAAqC;IACrC,MAAM,OAAO,GACX,OAAO,CAAC,OAAO;QACf,CAAC,MAAM,eAAe,CAAC,OAAO,CAAC,UAAU,EAAE,WAAW,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC;IAE9E,+BAA+B;IAC/B,MAAM,cAAc,GAAG,OAAO,CAAC,cAAc,IAAI,WAAW,CAAC;IAC7D,MAAM,MAAM,GAAG,wBAAwB,CACrC,cAAc,CAAC,gBAAgB,EAC/B,OAAO,EACP,cAAc,EACd;QACE,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;QAC1C,cAAc,EAAE,OAAO,CAAC,cAAc;QACtC,sBAAsB,EAAE,OAAO,CAAC,sBAAsB;KACvD,CACF,CAAC;IAEF,oEAAoE;IACpE,MAAM,WAAW,GAAG;QAClB,OAAO,EAAE,IAAI,WAAE,CAAC,MAAM,CAAC,OAAO,CAAC;QAC/B,mBAAmB,EAAE,IAAI,WAAE,CAAC,MAAM,CAAC,gBAAgB,CAAC,QAAQ,EAAE,CAAC;QAC/D,qBAAqB,EAAE,IAAI,WAAE,CAAC,MAAM,CAAC,kBAAkB,CAAC,QAAQ,EAAE,CAAC;QACnE,aAAa,EAAE,MAAM,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,IAAe,EAAE,EAAE,CAAC,CAAC;YAC5D,IAAI;YACJ,UAAU,EAAE,mBAAS,CAAC,OAAO,EAAE,kCAAkC;YACjE,QAAQ,EAAE,CAAC;YACX,YAAY,EAAE,IAAI,WAAE,CAAC,CAAC,CAAC;YACvB,SAAS,EAAE,IAAI,WAAE,CAAC,CAAC,CAAC;SACrB,CAAC,CAAC;QACH,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;QACzC,cAAc,EAAE,MAAM,CAAC,cAAc;QACrC,sBAAsB,EAAE,MAAM,CAAC,sBAAsB;QACrD,cAAc,EAAE,MAAM,CAAC,cAAc;QACrC,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;KAC1C,CAAC;IAEF,iCAAiC;IACjC,IAAI,CAAC;QACH,MAAM,MAAM,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC;IACxC,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CACb,oCAAoC,GAAG,CAAC,OAAO,IAAI,GAAG,IAAI;YACxD,kDAAkD,CACrD,CAAC;IACJ,CAAC;IAED,2BAA2B;IAC3B,MAAM,CAAC,YAAY,CAAC,GAAG,MAAM,CAAC,WAAW,CAAC,WAAW,EAAE,IAAI,WAAE,CAAC,OAAO,CAAC,CAAC,CAAC;IACxE,MAAM,CAAC,aAAa,CAAC,GAAG,MAAM,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC;IAE1D,mCAAmC;IACnC,IAAI,CAAC;QACH,MAAM,MAAM,CAAC,aAAa,CAAC,YAAY,EAAE,WAAW,CAAC,CAAC;IACxD,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CACb,oBAAoB,YAAY,CAAC,QAAQ,EAAE,mCAAmC,GAAG,CAAC,OAAO,IAAI,GAAG,IAAI;YAClG,2DAA2D;YAC3D,uCAAuC,YAAY,CAAC,QAAQ,EAAE,kBAAkB,CACnF,CAAC;IACJ,CAAC;IAED,8CAA8C;IAC9C,MAAM,MAAM,GAAG,oBAAoB,CACjC,cAAc,EACd,YAAY,EACZ,WAAW,EACX,OAAO,EACP,OAAO,CAAC,UAAU,EAClB,OAAO,CAAC,SAAS,CAClB,CAAC;IAEF,OAAO;QACL,MAAM;QACN,YAAY;QACZ,YAAY;QACZ,OAAO;QACP,aAAa;KACd,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACI,KAAK,UAAU,SAAS,CAC7B,MAAkB,EAClB,QAAoC,EACpC,OAAsB;IAEtB,MAAM,QAAQ,GAAG,IAAA,eAAM,EAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;IAC1C,OAAO,MAAM,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;AACnC,CAAC;AAED;;;GAGG;AACH,SAAgB,YAAY,CAC1B,MAAkB,EAClB,QAAyB,EACzB,OAA0C;IAE1C,OAAO,IAAA,eAAM,EAAC,MAAM,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC3C,CAAC"}

package/dist/wrapper/index.d.ts

@@ -0,0 +1,17 @@
+export { harden, withVault, shieldWallet, mapPoliciesToVaultParams, findNextVaultId, } from "./harden";
+export type { HardenOptions, HardenResult } from "./harden";
+export type { ShieldedWallet, WalletLike, ShieldOptions } from "./shield";
+export { isTeeWallet } from "./shield";
+export type { TeeWallet } from "./shield";
+export type { ShieldPolicies, SpendLimit, SpendingSummary, RateLimitConfig, PolicyCheckResult, TransactionAnalysis, TokenTransfer, ResolvedPolicies, } from "./policies";
+export { parseSpendLimit, resolvePolicies, DEFAULT_POLICIES } from "./policies";
+export { ShieldDeniedError, ShieldConfigError, TeeRequiredError, } from "./errors";
+export type { PolicyViolation } from "./errors";
+export { analyzeTransaction, getNonSystemProgramIds, resolveTransactionAddressLookupTables, extractInstructions, } from "./inspector";
+export { KNOWN_PROTOCOLS, KNOWN_TOKENS, SYSTEM_PROGRAMS, getTokenInfo, getProtocolName, isSystemProgram, isKnownProtocol, } from "./registry";
+export { ShieldState } from "./state";
+export type { ShieldStorage, SpendEntry as ClientSpendEntry, TxEntry, } from "./state";
+export { evaluatePolicy, enforcePolicy, recordTransaction } from "./engine";
+export { shieldedFetch, createShieldedFetchForWallet, selectPaymentOption, evaluateX402Payment, buildX402TransferInstruction, encodeX402Payload, decodePaymentRequiredHeader, encodePaymentSignatureHeader, decodePaymentResponseHeader, X402ParseError, X402PaymentError, X402UnsupportedError, } from "./x402";
+export type { ShieldedFetchOptions, ShieldedFetchResponse, X402PaymentResult, PaymentRequired, PaymentRequirements, PaymentPayload, ResourceInfo, SettleResponse, } from "./x402";
+//# sourceMappingURL=index.d.ts.map

package/dist/wrapper/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/wrapper/index.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,MAAM,EACN,SAAS,EACT,YAAY,EACZ,wBAAwB,EACxB,eAAe,GAChB,MAAM,UAAU,CAAC;AAClB,YAAY,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAG5D,YAAY,EAAE,cAAc,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAC1E,OAAO,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AACvC,YAAY,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAG1C,YAAY,EACV,cAAc,EACd,UAAU,EACV,eAAe,EACf,eAAe,EACf,iBAAiB,EACjB,mBAAmB,EACnB,aAAa,EACb,gBAAgB,GACjB,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,eAAe,EAAE,eAAe,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAGhF,OAAO,EACL,iBAAiB,EACjB,iBAAiB,EACjB,gBAAgB,GACjB,MAAM,UAAU,CAAC;AAClB,YAAY,EAAE,eAAe,EAAE,MAAM,UAAU,CAAC;AAGhD,OAAO,EACL,kBAAkB,EAClB,sBAAsB,EACtB,qCAAqC,EACrC,mBAAmB,GACpB,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,eAAe,EACf,YAAY,EACZ,eAAe,EACf,YAAY,EACZ,eAAe,EACf,eAAe,EACf,eAAe,GAChB,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACtC,YAAY,EACV,aAAa,EACb,UAAU,IAAI,gBAAgB,EAC9B,OAAO,GACR,MAAM,SAAS,CAAC;AAGjB,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAG5E,OAAO,EACL,aAAa,EACb,4BAA4B,EAC5B,mBAAmB,EACnB,mBAAmB,EACnB,4BAA4B,EAC5B,iBAAiB,EACjB,2BAA2B,EAC3B,4BAA4B,EAC5B,2BAA2B,EAC3B,cAAc,EACd,gBAAgB,EAChB,oBAAoB,GACrB,MAAM,QAAQ,CAAC;AAChB,YAAY,EACV,oBAAoB,EACpB,qBAAqB,EACrB,iBAAiB,EACjB,eAAe,EACf,mBAAmB,EACnB,cAAc,EACd,YAAY,EACZ,cAAc,GACf,MAAM,QAAQ,CAAC"}

package/dist/wrapper/index.js

@@ -0,0 +1,60 @@
+"use strict";
+// Wrapper — client-side policy enforcement + on-chain hardening
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.X402UnsupportedError = exports.X402PaymentError = exports.X402ParseError = exports.decodePaymentResponseHeader = exports.encodePaymentSignatureHeader = exports.decodePaymentRequiredHeader = exports.encodeX402Payload = exports.buildX402TransferInstruction = exports.evaluateX402Payment = exports.selectPaymentOption = exports.createShieldedFetchForWallet = exports.shieldedFetch = exports.recordTransaction = exports.enforcePolicy = exports.evaluatePolicy = exports.ShieldState = exports.isKnownProtocol = exports.isSystemProgram = exports.getProtocolName = exports.getTokenInfo = exports.SYSTEM_PROGRAMS = exports.KNOWN_TOKENS = exports.KNOWN_PROTOCOLS = exports.extractInstructions = exports.resolveTransactionAddressLookupTables = exports.getNonSystemProgramIds = exports.analyzeTransaction = exports.TeeRequiredError = exports.ShieldConfigError = exports.ShieldDeniedError = exports.DEFAULT_POLICIES = exports.resolvePolicies = exports.parseSpendLimit = exports.isTeeWallet = exports.findNextVaultId = exports.mapPoliciesToVaultParams = exports.shieldWallet = exports.withVault = exports.harden = void 0;
+// Main API — harden() and withVault() are the primary entry points
+var harden_1 = require("./harden");
+Object.defineProperty(exports, "harden", { enumerable: true, get: function () { return harden_1.harden; } });
+Object.defineProperty(exports, "withVault", { enumerable: true, get: function () { return harden_1.withVault; } });
+Object.defineProperty(exports, "shieldWallet", { enumerable: true, get: function () { return harden_1.shieldWallet; } });
+Object.defineProperty(exports, "mapPoliciesToVaultParams", { enumerable: true, get: function () { return harden_1.mapPoliciesToVaultParams; } });
+Object.defineProperty(exports, "findNextVaultId", { enumerable: true, get: function () { return harden_1.findNextVaultId; } });
+var shield_1 = require("./shield");
+Object.defineProperty(exports, "isTeeWallet", { enumerable: true, get: function () { return shield_1.isTeeWallet; } });
+var policies_1 = require("./policies");
+Object.defineProperty(exports, "parseSpendLimit", { enumerable: true, get: function () { return policies_1.parseSpendLimit; } });
+Object.defineProperty(exports, "resolvePolicies", { enumerable: true, get: function () { return policies_1.resolvePolicies; } });
+Object.defineProperty(exports, "DEFAULT_POLICIES", { enumerable: true, get: function () { return policies_1.DEFAULT_POLICIES; } });
+// Errors (re-exported from @agent-shield/core + TeeRequiredError)
+var errors_1 = require("./errors");
+Object.defineProperty(exports, "ShieldDeniedError", { enumerable: true, get: function () { return errors_1.ShieldDeniedError; } });
+Object.defineProperty(exports, "ShieldConfigError", { enumerable: true, get: function () { return errors_1.ShieldConfigError; } });
+Object.defineProperty(exports, "TeeRequiredError", { enumerable: true, get: function () { return errors_1.TeeRequiredError; } });
+// Transaction inspection (Solana-specific)
+var inspector_1 = require("./inspector");
+Object.defineProperty(exports, "analyzeTransaction", { enumerable: true, get: function () { return inspector_1.analyzeTransaction; } });
+Object.defineProperty(exports, "getNonSystemProgramIds", { enumerable: true, get: function () { return inspector_1.getNonSystemProgramIds; } });
+Object.defineProperty(exports, "resolveTransactionAddressLookupTables", { enumerable: true, get: function () { return inspector_1.resolveTransactionAddressLookupTables; } });
+Object.defineProperty(exports, "extractInstructions", { enumerable: true, get: function () { return inspector_1.extractInstructions; } });
+// Protocol & token registry (wrapper versions — accept PublicKey | string)
+var registry_1 = require("./registry");
+Object.defineProperty(exports, "KNOWN_PROTOCOLS", { enumerable: true, get: function () { return registry_1.KNOWN_PROTOCOLS; } });
+Object.defineProperty(exports, "KNOWN_TOKENS", { enumerable: true, get: function () { return registry_1.KNOWN_TOKENS; } });
+Object.defineProperty(exports, "SYSTEM_PROGRAMS", { enumerable: true, get: function () { return registry_1.SYSTEM_PROGRAMS; } });
+Object.defineProperty(exports, "getTokenInfo", { enumerable: true, get: function () { return registry_1.getTokenInfo; } });
+Object.defineProperty(exports, "getProtocolName", { enumerable: true, get: function () { return registry_1.getProtocolName; } });
+Object.defineProperty(exports, "isSystemProgram", { enumerable: true, get: function () { return registry_1.isSystemProgram; } });
+Object.defineProperty(exports, "isKnownProtocol", { enumerable: true, get: function () { return registry_1.isKnownProtocol; } });
+// Client-side state (re-exported from @agent-shield/core)
+var state_1 = require("./state");
+Object.defineProperty(exports, "ShieldState", { enumerable: true, get: function () { return state_1.ShieldState; } });
+// Policy engine (wrapper versions — accept PublicKey-based TransactionAnalysis)
+var engine_1 = require("./engine");
+Object.defineProperty(exports, "evaluatePolicy", { enumerable: true, get: function () { return engine_1.evaluatePolicy; } });
+Object.defineProperty(exports, "enforcePolicy", { enumerable: true, get: function () { return engine_1.enforcePolicy; } });
+Object.defineProperty(exports, "recordTransaction", { enumerable: true, get: function () { return engine_1.recordTransaction; } });
+// x402 — HTTP 402 payment support
+var x402_1 = require("./x402");
+Object.defineProperty(exports, "shieldedFetch", { enumerable: true, get: function () { return x402_1.shieldedFetch; } });
+Object.defineProperty(exports, "createShieldedFetchForWallet", { enumerable: true, get: function () { return x402_1.createShieldedFetchForWallet; } });
+Object.defineProperty(exports, "selectPaymentOption", { enumerable: true, get: function () { return x402_1.selectPaymentOption; } });
+Object.defineProperty(exports, "evaluateX402Payment", { enumerable: true, get: function () { return x402_1.evaluateX402Payment; } });
+Object.defineProperty(exports, "buildX402TransferInstruction", { enumerable: true, get: function () { return x402_1.buildX402TransferInstruction; } });
+Object.defineProperty(exports, "encodeX402Payload", { enumerable: true, get: function () { return x402_1.encodeX402Payload; } });
+Object.defineProperty(exports, "decodePaymentRequiredHeader", { enumerable: true, get: function () { return x402_1.decodePaymentRequiredHeader; } });
+Object.defineProperty(exports, "encodePaymentSignatureHeader", { enumerable: true, get: function () { return x402_1.encodePaymentSignatureHeader; } });
+Object.defineProperty(exports, "decodePaymentResponseHeader", { enumerable: true, get: function () { return x402_1.decodePaymentResponseHeader; } });
+Object.defineProperty(exports, "X402ParseError", { enumerable: true, get: function () { return x402_1.X402ParseError; } });
+Object.defineProperty(exports, "X402PaymentError", { enumerable: true, get: function () { return x402_1.X402PaymentError; } });
+Object.defineProperty(exports, "X402UnsupportedError", { enumerable: true, get: function () { return x402_1.X402UnsupportedError; } });
+//# sourceMappingURL=index.js.map

package/dist/wrapper/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/wrapper/index.ts"],"names":[],"mappings":";AAAA,gEAAgE;;;AAEhE,mEAAmE;AACnE,mCAMkB;AALhB,gGAAA,MAAM,OAAA;AACN,mGAAA,SAAS,OAAA;AACT,sGAAA,YAAY,OAAA;AACZ,kHAAA,wBAAwB,OAAA;AACxB,yGAAA,eAAe,OAAA;AAMjB,mCAAuC;AAA9B,qGAAA,WAAW,OAAA;AAcpB,uCAAgF;AAAvE,2GAAA,eAAe,OAAA;AAAE,2GAAA,eAAe,OAAA;AAAE,4GAAA,gBAAgB,OAAA;AAE3D,kEAAkE;AAClE,mCAIkB;AAHhB,2GAAA,iBAAiB,OAAA;AACjB,2GAAA,iBAAiB,OAAA;AACjB,0GAAA,gBAAgB,OAAA;AAIlB,2CAA2C;AAC3C,yCAKqB;AAJnB,+GAAA,kBAAkB,OAAA;AAClB,mHAAA,sBAAsB,OAAA;AACtB,kIAAA,qCAAqC,OAAA;AACrC,gHAAA,mBAAmB,OAAA;AAGrB,2EAA2E;AAC3E,uCAQoB;AAPlB,2GAAA,eAAe,OAAA;AACf,wGAAA,YAAY,OAAA;AACZ,2GAAA,eAAe,OAAA;AACf,wGAAA,YAAY,OAAA;AACZ,2GAAA,eAAe,OAAA;AACf,2GAAA,eAAe,OAAA;AACf,2GAAA,eAAe,OAAA;AAGjB,0DAA0D;AAC1D,iCAAsC;AAA7B,oGAAA,WAAW,OAAA;AAOpB,gFAAgF;AAChF,mCAA4E;AAAnE,wGAAA,cAAc,OAAA;AAAE,uGAAA,aAAa,OAAA;AAAE,2GAAA,iBAAiB,OAAA;AAEzD,kCAAkC;AAClC,+BAagB;AAZd,qGAAA,aAAa,OAAA;AACb,oHAAA,4BAA4B,OAAA;AAC5B,2GAAA,mBAAmB,OAAA;AACnB,2GAAA,mBAAmB,OAAA;AACnB,oHAAA,4BAA4B,OAAA;AAC5B,yGAAA,iBAAiB,OAAA;AACjB,mHAAA,2BAA2B,OAAA;AAC3B,oHAAA,4BAA4B,OAAA;AAC5B,mHAAA,2BAA2B,OAAA;AAC3B,sGAAA,cAAc,OAAA;AACd,wGAAA,gBAAgB,OAAA;AAChB,4GAAA,oBAAoB,OAAA"}

package/dist/wrapper/inspector.d.ts

@@ -0,0 +1,22 @@
+import { AddressLookupTableAccount, Connection, PublicKey, Transaction, TransactionInstruction, VersionedTransaction } from "@solana/web3.js";
+import { TransactionAnalysis } from "./policies";
+/**
+ * Analyze a transaction to extract program IDs, token transfers, and estimated value.
+ * Works with both legacy Transaction and VersionedTransaction.
+ */
+export declare function analyzeTransaction(tx: Transaction | VersionedTransaction, signerPubkey: PublicKey, addressLookupTableAccounts?: AddressLookupTableAccount[]): TransactionAnalysis;
+/**
+ * Extract instructions from either Transaction or VersionedTransaction.
+ */
+export declare function extractInstructions(tx: Transaction | VersionedTransaction, addressLookupTableAccounts?: AddressLookupTableAccount[]): TransactionInstruction[];
+/**
+ * Resolve Address Lookup Table accounts for a VersionedTransaction.
+ * Returns empty array if the transaction has no ALT references.
+ */
+export declare function resolveTransactionAddressLookupTables(tx: VersionedTransaction, connection: Connection): Promise<AddressLookupTableAccount[]>;
+/**
+ * Get all non-system program IDs from a transaction analysis.
+ * Useful for checking if a transaction interacts with unknown programs.
+ */
+export declare function getNonSystemProgramIds(analysis: TransactionAnalysis): PublicKey[];
+//# sourceMappingURL=inspector.d.ts.map