@agentlair/sdk 0.1.0

package/README.md

@@ -0,0 +1,217 @@
+# @agentlair/sdk
+
+Official TypeScript/JavaScript SDK for [AgentLair](https://agentlair.dev) — email, vault, and account management for AI agents.
+
+**Zero dependencies. Works in Node ≥ 18, Bun, Deno, and modern browsers.**
+
+```bash
+npm install @agentlair/sdk
+# or
+bun add @agentlair/sdk
+```
+
+---
+
+## Quick Start
+
+```typescript
+import { AgentLairClient } from '@agentlair/sdk';
+
+// 1. Create an account (no existing key needed)
+const { api_key, account_id } = await AgentLairClient.createAccount({ name: 'my-agent' });
+// ⚠️ Save api_key immediately — it will not be shown again
+
+// 2. Instantiate the client
+const client = new AgentLairClient({ apiKey: api_key });
+
+// 3. Claim an email address
+await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+
+// 4. Send email
+await client.sendEmail({
+  from: 'my-agent@agentlair.dev',
+  to: 'user@example.com',
+  subject: 'Hello from AgentLair',
+  text: 'Hi! This message was sent by an AI agent.',
+});
+
+// 5. Read inbox
+const { messages } = await client.getInbox({ address: 'my-agent@agentlair.dev' });
+for (const msg of messages) {
+  console.log(msg.from, msg.subject, msg.snippet);
+  const full = await client.readMessage({
+    messageId: msg.message_id_url,
+    address: 'my-agent@agentlair.dev',
+  });
+  console.log(full.body);
+}
+```
+
+---
+
+## Account
+
+### `AgentLairClient.createAccount(options?)` — static
+
+Create a new account and get an API key. No existing account needed.
+
+```typescript
+const { api_key, account_id, tier, limits } = await AgentLairClient.createAccount({
+  name: 'my-agent',   // optional display name
+  email: 'me@example.com', // optional recovery email (enables dashboard login)
+});
+```
+
+Returns `CreateAccountResult`. **The `api_key` is shown only once — store it immediately.**
+
+---
+
+## Email
+
+### `client.claimAddress(options)`
+
+Claim an `@agentlair.dev` address. First-touch ownership — first to claim it owns it.
+
+```typescript
+await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+
+// With E2E encryption (optional — requires X25519 keypair):
+await client.claimAddress({
+  address: 'my-agent@agentlair.dev',
+  public_key: base64urlPublicKey, // 32-byte X25519 public key
+});
+```
+
+### `client.sendEmail(options)`
+
+Send a DKIM-signed email from an address you own. Supports threading.
+
+```typescript
+await client.sendEmail({
+  from: 'my-agent@agentlair.dev',
+  to: 'user@example.com',      // or array of addresses
+  subject: 'Hello',
+  text: 'Plain text body',
+  html: '<p>HTML body</p>',    // optional; send text or html or both
+  in_reply_to: '<msg-id>',     // optional threading
+});
+```
+
+### `client.getInbox(options)`
+
+Get inbox messages (preview only — no full body).
+
+```typescript
+const { messages, count, has_more } = await client.getInbox({
+  address: 'my-agent@agentlair.dev',
+  limit: 20,  // default: 20, max: 100
+});
+```
+
+### `client.readMessage(options)`
+
+Read the full body of a message. Marks as read.
+
+```typescript
+const msg = await client.readMessage({
+  messageId: inboxMsg.message_id_url, // URL-encoded — safe to use directly
+  address: 'my-agent@agentlair.dev',
+});
+console.log(msg.body);      // platform-decrypted body
+// For E2E messages: msg.e2e_encrypted, msg.ciphertext, msg.ephemeral_public_key
+```
+
+---
+
+## Vault
+
+Zero-knowledge secret store. The server stores opaque blobs — it never sees plaintext. Use [`@agentlair/vault-crypto`](https://www.npmjs.com/package/@agentlair/vault-crypto) for client-side encryption helpers.
+
+### `client.vault.put(key, options)`
+
+```typescript
+await client.vault.put('openai-key', {
+  ciphertext: encryptedBlob,    // encrypt before storing
+  metadata: { label: 'OpenAI API Key' }, // optional plaintext metadata
+});
+```
+
+### `client.vault.get(key, options?)`
+
+```typescript
+const { ciphertext, version, latest_version } = await client.vault.get('openai-key');
+// With @agentlair/vault-crypto:
+const plaintext = await vc.decrypt(ciphertext, 'openai-key');
+
+// Specific version:
+const old = await client.vault.get('openai-key', { version: 1 });
+```
+
+### `client.vault.list()`
+
+```typescript
+const { keys, count, limit } = await client.vault.list();
+// keys: [{ key, version, metadata, created_at, updated_at }]
+```
+
+### `client.vault.delete(key, options?)`
+
+```typescript
+await client.vault.delete('openai-key');           // delete all versions
+await client.vault.delete('openai-key', { version: 2 }); // delete v2 only
+```
+
+---
+
+## Error Handling
+
+All methods throw `AgentLairError` on non-2xx responses.
+
+```typescript
+import { AgentLairClient, AgentLairError } from '@agentlair/sdk';
+
+try {
+  await client.claimAddress({ address: 'taken@agentlair.dev' });
+} catch (e) {
+  if (e instanceof AgentLairError) {
+    console.error(e.message);  // human-readable message
+    console.error(e.code);     // machine-readable code (e.g. 'address_taken')
+    console.error(e.status);   // HTTP status (e.g. 409)
+  }
+}
+```
+
+---
+
+## TypeScript
+
+Fully typed — all request/response shapes are exported.
+
+```typescript
+import type {
+  CreateAccountResult,
+  InboxMessage,
+  FullMessage,
+  VaultGetResult,
+} from '@agentlair/sdk';
+```
+
+---
+
+## E2E Encryption
+
+When you claim an address with a `public_key`, inbound emails are encrypted end-to-end using X25519 ECDH + HKDF-SHA-256 + AES-256-GCM. The server never sees plaintext.
+
+E2E decryption is not included in `@agentlair/sdk` (requires `@noble/curves` for X25519 — breaks zero-dep constraint). See the [E2E encryption guide](https://agentlair.dev/docs/e2e) for the decryption recipe.
+
+---
+
+## Related
+
+- [`@agentlair/vault-crypto`](https://www.npmjs.com/package/@agentlair/vault-crypto) — Client-side encryption for the Vault (zero-knowledge AES-256-GCM + HKDF)
+
+---
+
+## License
+
+MIT © [AgentLair](https://agentlair.dev)

package/dist/client.d.ts

@@ -0,0 +1,157 @@
+/**
+ * @agentlair/sdk — AgentLairClient
+ *
+ * Official TypeScript/JavaScript SDK for AgentLair.
+ * Zero dependencies. Works in Node ≥ 18, Bun, Deno, and modern browsers.
+ *
+ * @example
+ * // Create a new account (no API key needed)
+ * const { api_key, account_id } = await AgentLairClient.createAccount({ name: 'my-agent' });
+ *
+ * @example
+ * // Use an existing key
+ * const client = new AgentLairClient({ apiKey: process.env.AGENTLAIR_API_KEY! });
+ * await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+ * await client.sendEmail({ from: 'my-agent@agentlair.dev', to: 'user@example.com', subject: 'Hello', text: 'Hi!' });
+ * const inbox = await client.getInbox({ address: 'my-agent@agentlair.dev' });
+ */
+import type { AgentLairClientOptions, ClaimAddressOptions, ClaimAddressResult, CreateAccountOptions, CreateAccountResult, FullMessage, GetInboxOptions, GetInboxResult, ReadMessageOptions, SendEmailOptions, SendEmailResult, VaultDeleteOptions, VaultDeleteResult, VaultGetOptions, VaultGetResult, VaultListResult, VaultPutOptions, VaultPutResult } from './types.js';
+/**
+ * vault.put / vault.get / vault.list / vault.delete
+ *
+ * The AgentLair Vault is a zero-knowledge secret store.
+ * The server stores opaque encrypted blobs — plaintext never leaves your client.
+ * Use @agentlair/vault-crypto for client-side encryption helpers.
+ */
+declare class VaultNamespace {
+    private readonly _request;
+    constructor(_request: <T>(method: string, path: string, opts?: {
+        body?: unknown;
+        query?: Record<string, string>;
+    }) => Promise<T>);
+    /**
+     * Store an encrypted blob in the Vault.
+     *
+     * Each PUT creates a new version (append-only, versioned).
+     * Free tier: up to 50 keys, 3 versions each.
+     *
+     * @example
+     * // With @agentlair/vault-crypto:
+     * const vc = VaultCrypto.fromSeed(seed);
+     * const ciphertext = await vc.encrypt('sk-openai-...', 'openai-key');
+     * await client.vault.put('openai-key', { ciphertext });
+     */
+    put(key: string, options: VaultPutOptions): Promise<VaultPutResult>;
+    /**
+     * Retrieve an encrypted blob from the Vault.
+     *
+     * Returns the latest version by default. Pass `version` for a specific one.
+     *
+     * @example
+     * const { ciphertext } = await client.vault.get('openai-key');
+     * // With @agentlair/vault-crypto:
+     * const plaintext = await vc.decrypt(ciphertext, 'openai-key');
+     */
+    get(key: string, options?: VaultGetOptions): Promise<VaultGetResult>;
+    /**
+     * List all Vault keys for this account (metadata only — no ciphertext).
+     *
+     * @example
+     * const { keys, count, limit } = await client.vault.list();
+     */
+    list(): Promise<VaultListResult>;
+    /**
+     * Delete a Vault key (all versions) or a specific version.
+     *
+     * Pass `version` to delete only that version. Omit to delete all versions.
+     *
+     * @example
+     * await client.vault.delete('openai-key');           // delete all versions
+     * await client.vault.delete('openai-key', { version: 2 }); // delete v2 only
+     */
+    delete(key: string, options?: VaultDeleteOptions): Promise<VaultDeleteResult>;
+}
+export declare class AgentLairClient {
+    private readonly _apiKey;
+    private readonly _baseUrl;
+    /**
+     * Namespaced Vault operations: vault.put / vault.get / vault.list / vault.delete
+     */
+    readonly vault: VaultNamespace;
+    constructor(options: AgentLairClientOptions);
+    private _request;
+    /**
+     * Create a new AgentLair account and get an API key.
+     *
+     * No existing account or API key needed — this is the bootstrapping method.
+     * **Save the returned `api_key` immediately** — it will not be shown again.
+     *
+     * @param options   Optional name and recovery email
+     * @param baseUrl   Override API base URL (default: https://agentlair.dev)
+     *
+     * @example
+     * const { api_key, account_id } = await AgentLairClient.createAccount({ name: 'my-agent' });
+     * // Store api_key securely — never log it
+     * const client = new AgentLairClient({ apiKey: api_key });
+     */
+    static createAccount(options?: CreateAccountOptions, baseUrl?: string): Promise<CreateAccountResult>;
+    /**
+     * Claim an @agentlair.dev email address for this account.
+     *
+     * First-touch ownership model — the first agent to claim an address owns it.
+     * DKIM, SPF, and DMARC are pre-configured. Ready to send in under 5 seconds.
+     *
+     * Optionally provide a `public_key` (base64url X25519, 32 bytes) to enable
+     * end-to-end encryption for inbound messages.
+     *
+     * @example
+     * await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+     */
+    claimAddress(options: ClaimAddressOptions): Promise<ClaimAddressResult>;
+    /**
+     * Send a DKIM-signed email from an @agentlair.dev address you own.
+     *
+     * Supports plain text, HTML, or both. Supports threading via `in_reply_to`.
+     * Free tier: 10 emails/day per address.
+     *
+     * @example
+     * await client.sendEmail({
+     *   from: 'my-agent@agentlair.dev',
+     *   to: 'user@example.com',
+     *   subject: 'Hello from AgentLair',
+     *   text: 'Hi! This email was sent by an AI agent.',
+     * });
+     */
+    sendEmail(options: SendEmailOptions): Promise<SendEmailResult>;
+    /**
+     * Get the inbox for an @agentlair.dev address you own.
+     *
+     * Returns message previews (no full body). Use `readMessage()` for the full body.
+     *
+     * @example
+     * const { messages, count } = await client.getInbox({ address: 'my-agent@agentlair.dev' });
+     * for (const msg of messages) {
+     *   console.log(msg.from, msg.subject, msg.snippet);
+     * }
+     */
+    getInbox(options: GetInboxOptions): Promise<GetInboxResult>;
+    /**
+     * Read the full body of a specific message.
+     *
+     * Marks the message as read. For E2E-encrypted messages, returns
+     * `ciphertext` and `ephemeral_public_key` for client-side decryption.
+     *
+     * @param messageId  Use `message_id_url` from inbox (URL-encoded) or raw `message_id`
+     * @param address    The @agentlair.dev address that received the message
+     *
+     * @example
+     * const msg = await client.readMessage({
+     *   messageId: inboxMsg.message_id_url,
+     *   address: 'my-agent@agentlair.dev',
+     * });
+     * console.log(msg.body);
+     */
+    readMessage(options: ReadMessageOptions): Promise<FullMessage>;
+}
+export {};
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAGH,OAAO,KAAK,EACV,sBAAsB,EACtB,mBAAmB,EACnB,kBAAkB,EAClB,oBAAoB,EACpB,mBAAmB,EACnB,WAAW,EACX,eAAe,EACf,cAAc,EACd,kBAAkB,EAClB,gBAAgB,EAChB,eAAe,EACf,kBAAkB,EAClB,iBAAiB,EACjB,eAAe,EACf,cAAc,EACd,eAAe,EACf,eAAe,EACf,cAAc,EACf,MAAM,YAAY,CAAC;AAMpB;;;;;;GAMG;AACH,cAAM,cAAc;IAEhB,OAAO,CAAC,QAAQ,CAAC,QAAQ;gBAAR,QAAQ,EAAE,CAAC,CAAC,EAC3B,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,OAAO,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;KAAE,KACtD,OAAO,CAAC,CAAC,CAAC;IAGjB;;;;;;;;;;;OAWG;IACG,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,cAAc,CAAC;IAMzE;;;;;;;;;OASG;IACG,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,GAAE,eAAoB,GAAG,OAAO,CAAC,cAAc,CAAC;IAM9E;;;;;OAKG;IACG,IAAI,IAAI,OAAO,CAAC,eAAe,CAAC;IAItC;;;;;;;;OAQG;IACG,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,GAAE,kBAAuB,GAAG,OAAO,CAAC,iBAAiB,CAAC;CAOxF;AAID,qBAAa,eAAe;IAC1B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAElC;;OAEG;IACH,QAAQ,CAAC,KAAK,EAAE,cAAc,CAAC;gBAEnB,OAAO,EAAE,sBAAsB;YAQ7B,QAAQ;IAiDtB;;;;;;;;;;;;;OAaG;WACU,aAAa,CACxB,OAAO,GAAE,oBAAyB,EAClC,OAAO,SAAmB,GACzB,OAAO,CAAC,mBAAmB,CAAC;IAoB/B;;;;;;;;;;;OAWG;IACG,YAAY,CAAC,OAAO,EAAE,mBAAmB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAM7E;;;;;;;;;;;;;OAaG;IACG,SAAS,CAAC,OAAO,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC;IAMpE;;;;;;;;;;OAUG;IACG,QAAQ,CAAC,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,cAAc,CAAC;IAQjE;;;;;;;;;;;;;;;OAeG;IACG,WAAW,CAAC,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,WAAW,CAAC;CAOrE"}

package/dist/client.js

@@ -0,0 +1,241 @@
+/**
+ * @agentlair/sdk — AgentLairClient
+ *
+ * Official TypeScript/JavaScript SDK for AgentLair.
+ * Zero dependencies. Works in Node ≥ 18, Bun, Deno, and modern browsers.
+ *
+ * @example
+ * // Create a new account (no API key needed)
+ * const { api_key, account_id } = await AgentLairClient.createAccount({ name: 'my-agent' });
+ *
+ * @example
+ * // Use an existing key
+ * const client = new AgentLairClient({ apiKey: process.env.AGENTLAIR_API_KEY! });
+ * await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+ * await client.sendEmail({ from: 'my-agent@agentlair.dev', to: 'user@example.com', subject: 'Hello', text: 'Hi!' });
+ * const inbox = await client.getInbox({ address: 'my-agent@agentlair.dev' });
+ */
+import { AgentLairError } from './errors.js';
+const DEFAULT_BASE_URL = 'https://agentlair.dev';
+// ─── VaultNamespace ───────────────────────────────────────────────────────────
+/**
+ * vault.put / vault.get / vault.list / vault.delete
+ *
+ * The AgentLair Vault is a zero-knowledge secret store.
+ * The server stores opaque encrypted blobs — plaintext never leaves your client.
+ * Use @agentlair/vault-crypto for client-side encryption helpers.
+ */
+class VaultNamespace {
+    _request;
+    constructor(_request) {
+        this._request = _request;
+    }
+    /**
+     * Store an encrypted blob in the Vault.
+     *
+     * Each PUT creates a new version (append-only, versioned).
+     * Free tier: up to 50 keys, 3 versions each.
+     *
+     * @example
+     * // With @agentlair/vault-crypto:
+     * const vc = VaultCrypto.fromSeed(seed);
+     * const ciphertext = await vc.encrypt('sk-openai-...', 'openai-key');
+     * await client.vault.put('openai-key', { ciphertext });
+     */
+    async put(key, options) {
+        return this._request('PUT', `/v1/vault/${encodeURIComponent(key)}`, {
+            body: options,
+        });
+    }
+    /**
+     * Retrieve an encrypted blob from the Vault.
+     *
+     * Returns the latest version by default. Pass `version` for a specific one.
+     *
+     * @example
+     * const { ciphertext } = await client.vault.get('openai-key');
+     * // With @agentlair/vault-crypto:
+     * const plaintext = await vc.decrypt(ciphertext, 'openai-key');
+     */
+    async get(key, options = {}) {
+        const query = {};
+        if (options.version !== undefined)
+            query.version = String(options.version);
+        return this._request('GET', `/v1/vault/${encodeURIComponent(key)}`, { query });
+    }
+    /**
+     * List all Vault keys for this account (metadata only — no ciphertext).
+     *
+     * @example
+     * const { keys, count, limit } = await client.vault.list();
+     */
+    async list() {
+        return this._request('GET', '/v1/vault/');
+    }
+    /**
+     * Delete a Vault key (all versions) or a specific version.
+     *
+     * Pass `version` to delete only that version. Omit to delete all versions.
+     *
+     * @example
+     * await client.vault.delete('openai-key');           // delete all versions
+     * await client.vault.delete('openai-key', { version: 2 }); // delete v2 only
+     */
+    async delete(key, options = {}) {
+        const query = {};
+        if (options.version !== undefined)
+            query.version = String(options.version);
+        return this._request('DELETE', `/v1/vault/${encodeURIComponent(key)}`, {
+            query,
+        });
+    }
+}
+// ─── AgentLairClient ──────────────────────────────────────────────────────────
+export class AgentLairClient {
+    _apiKey;
+    _baseUrl;
+    /**
+     * Namespaced Vault operations: vault.put / vault.get / vault.list / vault.delete
+     */
+    vault;
+    constructor(options) {
+        this._apiKey = options.apiKey;
+        this._baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\/$/, '');
+        this.vault = new VaultNamespace(this._request.bind(this));
+    }
+    // ─── Internal request helper ─────────────────────────────────────────────
+    async _request(method, path, opts = {}) {
+        const url = new URL(this._baseUrl + path);
+        if (opts.query) {
+            for (const [k, v] of Object.entries(opts.query)) {
+                url.searchParams.set(k, v);
+            }
+        }
+        const headers = {
+            'Content-Type': 'application/json',
+        };
+        // auth defaults to Bearer <apiKey>; pass null to skip auth
+        if (opts.auth !== null) {
+            headers['Authorization'] = `Bearer ${opts.auth ?? this._apiKey}`;
+        }
+        const response = await fetch(url.toString(), {
+            method,
+            headers,
+            body: opts.body !== undefined ? JSON.stringify(opts.body) : undefined,
+        });
+        let data;
+        const contentType = response.headers.get('content-type') ?? '';
+        if (contentType.includes('application/json')) {
+            data = await response.json();
+        }
+        else {
+            data = await response.text();
+        }
+        if (!response.ok) {
+            const body = data;
+            throw new AgentLairError(body?.message ?? `HTTP ${response.status}`, response.status, body?.error ?? 'error');
+        }
+        return data;
+    }
+    // ─── Static: createAccount ───────────────────────────────────────────────
+    /**
+     * Create a new AgentLair account and get an API key.
+     *
+     * No existing account or API key needed — this is the bootstrapping method.
+     * **Save the returned `api_key` immediately** — it will not be shown again.
+     *
+     * @param options   Optional name and recovery email
+     * @param baseUrl   Override API base URL (default: https://agentlair.dev)
+     *
+     * @example
+     * const { api_key, account_id } = await AgentLairClient.createAccount({ name: 'my-agent' });
+     * // Store api_key securely — never log it
+     * const client = new AgentLairClient({ apiKey: api_key });
+     */
+    static async createAccount(options = {}, baseUrl = DEFAULT_BASE_URL) {
+        const url = baseUrl.replace(/\/$/, '') + '/v1/auth/keys';
+        const response = await fetch(url, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify(options),
+        });
+        const data = await response.json();
+        if (!response.ok) {
+            throw new AgentLairError(data.message ?? `HTTP ${response.status}`, response.status, data.error ?? 'error');
+        }
+        return data;
+    }
+    // ─── Email: claimAddress ─────────────────────────────────────────────────
+    /**
+     * Claim an @agentlair.dev email address for this account.
+     *
+     * First-touch ownership model — the first agent to claim an address owns it.
+     * DKIM, SPF, and DMARC are pre-configured. Ready to send in under 5 seconds.
+     *
+     * Optionally provide a `public_key` (base64url X25519, 32 bytes) to enable
+     * end-to-end encryption for inbound messages.
+     *
+     * @example
+     * await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+     */
+    async claimAddress(options) {
+        return this._request('POST', '/v1/email/claim', { body: options });
+    }
+    // ─── Email: sendEmail ────────────────────────────────────────────────────
+    /**
+     * Send a DKIM-signed email from an @agentlair.dev address you own.
+     *
+     * Supports plain text, HTML, or both. Supports threading via `in_reply_to`.
+     * Free tier: 10 emails/day per address.
+     *
+     * @example
+     * await client.sendEmail({
+     *   from: 'my-agent@agentlair.dev',
+     *   to: 'user@example.com',
+     *   subject: 'Hello from AgentLair',
+     *   text: 'Hi! This email was sent by an AI agent.',
+     * });
+     */
+    async sendEmail(options) {
+        return this._request('POST', '/v1/email/send', { body: options });
+    }
+    // ─── Email: getInbox ─────────────────────────────────────────────────────
+    /**
+     * Get the inbox for an @agentlair.dev address you own.
+     *
+     * Returns message previews (no full body). Use `readMessage()` for the full body.
+     *
+     * @example
+     * const { messages, count } = await client.getInbox({ address: 'my-agent@agentlair.dev' });
+     * for (const msg of messages) {
+     *   console.log(msg.from, msg.subject, msg.snippet);
+     * }
+     */
+    async getInbox(options) {
+        const query = { address: options.address };
+        if (options.limit !== undefined)
+            query.limit = String(options.limit);
+        return this._request('GET', '/v1/email/inbox', { query });
+    }
+    // ─── Email: readMessage ──────────────────────────────────────────────────
+    /**
+     * Read the full body of a specific message.
+     *
+     * Marks the message as read. For E2E-encrypted messages, returns
+     * `ciphertext` and `ephemeral_public_key` for client-side decryption.
+     *
+     * @param messageId  Use `message_id_url` from inbox (URL-encoded) or raw `message_id`
+     * @param address    The @agentlair.dev address that received the message
+     *
+     * @example
+     * const msg = await client.readMessage({
+     *   messageId: inboxMsg.message_id_url,
+     *   address: 'my-agent@agentlair.dev',
+     * });
+     * console.log(msg.body);
+     */
+    async readMessage(options) {
+        return this._request('GET', `/v1/email/messages/${options.messageId}`, { query: { address: options.address } });
+    }
+}
+//# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAsB7C,MAAM,gBAAgB,GAAG,uBAAuB,CAAC;AAEjD,iFAAiF;AAEjF;;;;;;GAMG;AACH,MAAM,cAAc;IAEC;IADnB,YACmB,QAIF;QAJE,aAAQ,GAAR,QAAQ,CAIV;IACd,CAAC;IAEJ;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,OAAwB;QAC7C,OAAO,IAAI,CAAC,QAAQ,CAAiB,KAAK,EAAE,aAAa,kBAAkB,CAAC,GAAG,CAAC,EAAE,EAAE;YAClF,IAAI,EAAE,OAAO;SACd,CAAC,CAAC;IACL,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,UAA2B,EAAE;QAClD,MAAM,KAAK,GAA2B,EAAE,CAAC;QACzC,IAAI,OAAO,CAAC,OAAO,KAAK,SAAS;YAAE,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAC3E,OAAO,IAAI,CAAC,QAAQ,CAAiB,KAAK,EAAE,aAAa,kBAAkB,CAAC,GAAG,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;IACjG,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,IAAI;QACR,OAAO,IAAI,CAAC,QAAQ,CAAkB,KAAK,EAAE,YAAY,CAAC,CAAC;IAC7D,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,MAAM,CAAC,GAAW,EAAE,UAA8B,EAAE;QACxD,MAAM,KAAK,GAA2B,EAAE,CAAC;QACzC,IAAI,OAAO,CAAC,OAAO,KAAK,SAAS;YAAE,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAC3E,OAAO,IAAI,CAAC,QAAQ,CAAoB,QAAQ,EAAE,aAAa,kBAAkB,CAAC,GAAG,CAAC,EAAE,EAAE;YACxF,KAAK;SACN,CAAC,CAAC;IACL,CAAC;CACF;AAED,iFAAiF;AAEjF,MAAM,OAAO,eAAe;IACT,OAAO,CAAS;IAChB,QAAQ,CAAS;IAElC;;OAEG;IACM,KAAK,CAAiB;IAE/B,YAAY,OAA+B;QACzC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC;QAC9B,IAAI,CAAC,QAAQ,GAAG,CAAC,OAAO,CAAC,OAAO,IAAI,gBAAgB,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACzE,IAAI,CAAC,KAAK,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAC5D,CAAC;IAED,4EAA4E;IAEpE,KAAK,CAAC,QAAQ,CACpB,MAAc,EACd,IAAY,EACZ,OAAiF,EAAE;QAEnF,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC;QAC1C,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;gBAChD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YAC7B,CAAC;QACH,CAAC;QAED,MAAM,OAAO,GAA2B;YACtC,cAAc,EAAE,kBAAkB;SACnC,CAAC;QAEF,2DAA2D;QAC3D,IAAI,IAAI,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;YACvB,OAAO,CAAC,eAAe,CAAC,GAAG,UAAU,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;QACnE,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE;YAC3C,MAAM;YACN,OAAO;YACP,IAAI,EAAE,IAAI,CAAC,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;SACtE,CAAC,CAAC;QAEH,IAAI,IAAa,CAAC;QAClB,MAAM,WAAW,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;QAC/D,IAAI,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC7C,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC/B,CAAC;aAAM,CAAC;YACN,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC/B,CAAC;QAED,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,GAAG,IAA4C,CAAC;YAC1D,MAAM,IAAI,cAAc,CACtB,IAAI,EAAE,OAAO,IAAI,QAAQ,QAAQ,CAAC,MAAM,EAAE,EAC1C,QAAQ,CAAC,MAAM,EACf,IAAI,EAAE,KAAK,IAAI,OAAO,CACvB,CAAC;QACJ,CAAC;QAED,OAAO,IAAS,CAAC;IACnB,CAAC;IAED,4EAA4E;IAE5E;;;;;;;;;;;;;OAaG;IACH,MAAM,CAAC,KAAK,CAAC,aAAa,CACxB,UAAgC,EAAE,EAClC,OAAO,GAAG,gBAAgB;QAE1B,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,GAAG,eAAe,CAAC;QACzD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAChC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;SAC9B,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAgE,CAAC;QACjG,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,cAAc,CACtB,IAAI,CAAC,OAAO,IAAI,QAAQ,QAAQ,CAAC,MAAM,EAAE,EACzC,QAAQ,CAAC,MAAM,EACf,IAAI,CAAC,KAAK,IAAI,OAAO,CACtB,CAAC;QACJ,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,4EAA4E;IAE5E;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,YAAY,CAAC,OAA4B;QAC7C,OAAO,IAAI,CAAC,QAAQ,CAAqB,MAAM,EAAE,iBAAiB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;IACzF,CAAC;IAED,4EAA4E;IAE5E;;;;;;;;;;;;;OAaG;IACH,KAAK,CAAC,SAAS,CAAC,OAAyB;QACvC,OAAO,IAAI,CAAC,QAAQ,CAAkB,MAAM,EAAE,gBAAgB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;IACrF,CAAC;IAED,4EAA4E;IAE5E;;;;;;;;;;OAUG;IACH,KAAK,CAAC,QAAQ,CAAC,OAAwB;QACrC,MAAM,KAAK,GAA2B,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,CAAC;QACnE,IAAI,OAAO,CAAC,KAAK,KAAK,SAAS;YAAE,KAAK,CAAC,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;QACrE,OAAO,IAAI,CAAC,QAAQ,CAAiB,KAAK,EAAE,iBAAiB,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;IAC5E,CAAC;IAED,4EAA4E;IAE5E;;;;;;;;;;;;;;;OAeG;IACH,KAAK,CAAC,WAAW,CAAC,OAA2B;QAC3C,OAAO,IAAI,CAAC,QAAQ,CAClB,KAAK,EACL,sBAAsB,OAAO,CAAC,SAAS,EAAE,EACzC,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,EAAE,CACxC,CAAC;IACJ,CAAC;CACF"}

package/dist/errors.d.ts

@@ -0,0 +1,11 @@
+/**
+ * AgentLairError — thrown when the API returns a non-2xx response.
+ */
+export declare class AgentLairError extends Error {
+    /** HTTP status code */
+    readonly status: number;
+    /** Machine-readable error code from the API */
+    readonly code: string;
+    constructor(message: string, status: number, code: string);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,qBAAa,cAAe,SAAQ,KAAK;IACvC,uBAAuB;IACvB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,+CAA+C;IAC/C,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;gBAEV,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM;CAM1D"}

package/dist/errors.js

@@ -0,0 +1,16 @@
+/**
+ * AgentLairError — thrown when the API returns a non-2xx response.
+ */
+export class AgentLairError extends Error {
+    /** HTTP status code */
+    status;
+    /** Machine-readable error code from the API */
+    code;
+    constructor(message, status, code) {
+        super(message);
+        this.name = 'AgentLairError';
+        this.status = status;
+        this.code = code;
+    }
+}
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,OAAO,cAAe,SAAQ,KAAK;IACvC,uBAAuB;IACd,MAAM,CAAS;IACxB,+CAA+C;IACtC,IAAI,CAAS;IAEtB,YAAY,OAAe,EAAE,MAAc,EAAE,IAAY;QACvD,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,gBAAgB,CAAC;QAC7B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,32 @@
+/**
+ * @agentlair/sdk
+ *
+ * Official TypeScript/JavaScript SDK for AgentLair.
+ * Zero dependencies. Works in Node ≥ 18, Bun, Deno, and modern browsers.
+ *
+ * @example
+ * import { AgentLairClient } from '@agentlair/sdk';
+ *
+ * // Bootstrap: create an account
+ * const { api_key } = await AgentLairClient.createAccount({ name: 'my-agent' });
+ *
+ * // Use the client
+ * const client = new AgentLairClient({ apiKey: api_key });
+ * await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+ * await client.sendEmail({
+ *   from: 'my-agent@agentlair.dev',
+ *   to: 'user@example.com',
+ *   subject: 'Hello',
+ *   text: 'Hi from an AI agent!',
+ * });
+ *
+ * // Vault: store secrets (encrypt first with @agentlair/vault-crypto)
+ * await client.vault.put('openai-key', { ciphertext: encryptedBlob });
+ * const { ciphertext } = await client.vault.get('openai-key');
+ *
+ * @see https://agentlair.dev/docs
+ */
+export { AgentLairClient } from './client.js';
+export { AgentLairError } from './errors.js';
+export type { AgentLairClientOptions, CreateAccountOptions, CreateAccountResult, ClaimAddressOptions, ClaimAddressResult, SendEmailOptions, SendEmailResult, GetInboxOptions, GetInboxResult, InboxMessage, FullMessage, ReadMessageOptions, VaultPutOptions, VaultPutResult, VaultGetOptions, VaultGetResult, VaultListResult, VaultKeyInfo, VaultDeleteOptions, VaultDeleteResult, AgentLairErrorBody, } from './types.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,YAAY,EAEV,sBAAsB,EACtB,oBAAoB,EACpB,mBAAmB,EAEnB,mBAAmB,EACnB,kBAAkB,EAClB,gBAAgB,EAChB,eAAe,EACf,eAAe,EACf,cAAc,EACd,YAAY,EACZ,WAAW,EACX,kBAAkB,EAElB,eAAe,EACf,cAAc,EACd,eAAe,EACf,cAAc,EACd,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,iBAAiB,EAEjB,kBAAkB,GACnB,MAAM,YAAY,CAAC"}

package/dist/index.js

@@ -0,0 +1,31 @@
+/**
+ * @agentlair/sdk
+ *
+ * Official TypeScript/JavaScript SDK for AgentLair.
+ * Zero dependencies. Works in Node ≥ 18, Bun, Deno, and modern browsers.
+ *
+ * @example
+ * import { AgentLairClient } from '@agentlair/sdk';
+ *
+ * // Bootstrap: create an account
+ * const { api_key } = await AgentLairClient.createAccount({ name: 'my-agent' });
+ *
+ * // Use the client
+ * const client = new AgentLairClient({ apiKey: api_key });
+ * await client.claimAddress({ address: 'my-agent@agentlair.dev' });
+ * await client.sendEmail({
+ *   from: 'my-agent@agentlair.dev',
+ *   to: 'user@example.com',
+ *   subject: 'Hello',
+ *   text: 'Hi from an AI agent!',
+ * });
+ *
+ * // Vault: store secrets (encrypt first with @agentlair/vault-crypto)
+ * await client.vault.put('openai-key', { ciphertext: encryptedBlob });
+ * const { ciphertext } = await client.vault.get('openai-key');
+ *
+ * @see https://agentlair.dev/docs
+ */
+export { AgentLairClient } from './client.js';
+export { AgentLairError } from './errors.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,211 @@
+/**
+ * @agentlair/sdk — Type definitions
+ */
+export interface CreateAccountOptions {
+    /** Optional display name for this account/agent */
+    name?: string;
+    /** Optional recovery email — enables dashboard login */
+    email?: string;
+}
+export interface CreateAccountResult {
+    /** API key — save this immediately, it will not be shown again */
+    api_key: string;
+    /** Short prefix of the API key (safe to log) */
+    key_prefix: string;
+    /** Unique account identifier */
+    account_id: string;
+    /** Account tier */
+    tier: 'free' | 'paid';
+    /** ISO timestamp of creation */
+    created_at: string;
+    /** Human-readable warning */
+    warning: string;
+    /** Rate/usage limits for this tier */
+    limits: {
+        stacks: number;
+        addresses: number;
+        dns_records: number;
+        emails_per_day: number;
+        requests_per_day: number;
+    };
+}
+export interface ClaimAddressOptions {
+    /** Full address to claim, e.g. "my-agent@agentlair.dev" */
+    address: string;
+    /**
+     * Optional base64url-encoded X25519 public key (32 bytes).
+     * When provided, enables end-to-end encryption for inbound messages.
+     * Inbound emails will have `e2e_encrypted: true` and a `ciphertext` field.
+     */
+    public_key?: string;
+}
+export interface ClaimAddressResult {
+    address: string;
+    claimed: boolean;
+    already_owned: boolean;
+    account_id: string;
+    /** Whether E2E encryption is enabled for this address */
+    e2e_enabled: boolean;
+}
+export interface SendEmailOptions {
+    /** Sender address — must be a claimed @agentlair.dev address you own */
+    from: string;
+    /** Recipient address or array of addresses */
+    to: string | string[];
+    /** Email subject */
+    subject: string;
+    /** Plain text body (required if html not provided) */
+    text?: string;
+    /** HTML body (required if text not provided) */
+    html?: string;
+    /** Message-ID of the email being replied to (for threading) */
+    in_reply_to?: string;
+}
+export interface SendEmailResult {
+    /** Internal message ID */
+    id: string;
+    /** Delivery status */
+    status: 'sent' | 'queued';
+    /** Provider message ID (if delivered) */
+    provider_id?: string;
+    /** Delivery timestamp */
+    sent_at?: string;
+    /** Warning if provider not configured */
+    warning?: string;
+}
+export interface InboxMessage {
+    /** Full Message-ID header (may contain angle brackets) */
+    message_id: string;
+    /** URL-encoded message_id (use this in readMessage calls) */
+    message_id_url: string;
+    /** Sender address */
+    from: string;
+    /** Recipient address */
+    to: string;
+    /** Email subject */
+    subject: string;
+    /** Up to 120-char preview of the body */
+    snippet: string;
+    /** ISO timestamp when received */
+    received_at: string;
+    /** Whether the message has been read */
+    read: boolean;
+    /** True if inbound E2E encryption is enabled for this address */
+    e2e_encrypted?: boolean;
+}
+export interface GetInboxOptions {
+    /** The @agentlair.dev address to read */
+    address: string;
+    /** Max messages to return (default: 20, max: 100) */
+    limit?: number;
+}
+export interface GetInboxResult {
+    messages: InboxMessage[];
+    has_more: boolean;
+    count: number;
+    address: string;
+}
+export interface ReadMessageOptions {
+    /** Message ID — use message_id_url from inbox for safety, or raw message_id */
+    messageId: string;
+    /** The @agentlair.dev address that received the message */
+    address: string;
+}
+export interface FullMessage extends InboxMessage {
+    /** Full message body (platform-decrypted). For E2E messages, see `ciphertext`. */
+    body?: string;
+    /**
+     * Raw E2E ciphertext (base64url). Only present when `e2e_encrypted: true`.
+     * Decrypt client-side using X25519 ECDH + HKDF-SHA-256 + AES-256-GCM
+     * with the private key corresponding to the address's registered public key.
+     */
+    ciphertext?: string;
+    /**
+     * Ephemeral sender public key for E2E decryption (base64url X25519).
+     * Only present when `e2e_encrypted: true`.
+     */
+    ephemeral_public_key?: string;
+    /** Thread/reply context */
+    in_reply_to?: string;
+    /** HTML version of the body, if available */
+    html?: string;
+}
+export interface VaultPutOptions {
+    /**
+     * Encrypted blob to store (typically base64url-encoded ciphertext).
+     * The server stores this opaque blob — it never sees plaintext.
+     * Use @agentlair/vault-crypto for client-side encryption.
+     */
+    ciphertext: string;
+    /** Optional metadata object (max 4KB) — stored in plaintext, visible in index */
+    metadata?: Record<string, unknown>;
+}
+export interface VaultPutResult {
+    key: string;
+    stored: boolean;
+    /** New version number (increments on each PUT) */
+    version: number;
+    created_at: string;
+    updated_at: string;
+}
+export interface VaultGetOptions {
+    /** Specific version to retrieve (default: latest) */
+    version?: number;
+}
+export interface VaultGetResult {
+    key: string;
+    /** The encrypted blob as stored */
+    ciphertext: string;
+    /** Same as ciphertext — v1 compatibility alias */
+    value: string;
+    metadata: Record<string, unknown> | null;
+    version: number;
+    latest_version: number;
+    created_at: string;
+    updated_at: string;
+}
+export interface VaultKeyInfo {
+    key: string;
+    version: number;
+    metadata: Record<string, unknown> | null;
+    created_at: string;
+    updated_at: string;
+}
+export interface VaultListResult {
+    keys: VaultKeyInfo[];
+    count: number;
+    /** Maximum keys allowed on this tier */
+    limit: number;
+    tier: string;
+}
+export interface VaultDeleteOptions {
+    /**
+     * Specific version to delete. If omitted, all versions are deleted.
+     */
+    version?: number;
+}
+export interface VaultDeleteResult {
+    key: string;
+    deleted: boolean;
+    /** Number of versions removed (when deleting all) */
+    versions_removed?: number;
+    /** Version removed (when deleting a single version) */
+    version_removed?: number;
+}
+export interface AgentLairClientOptions {
+    /**
+     * AgentLair API key (al_live_...).
+     * Not required for `createAccount()` which is called statically.
+     */
+    apiKey: string;
+    /**
+     * Base URL for the AgentLair API.
+     * @default "https://agentlair.dev"
+     */
+    baseUrl?: string;
+}
+export interface AgentLairErrorBody {
+    error: string;
+    message: string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,MAAM,WAAW,oBAAoB;IACnC,mDAAmD;IACnD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,wDAAwD;IACxD,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,mBAAmB;IAClC,kEAAkE;IAClE,OAAO,EAAE,MAAM,CAAC;IAChB,gDAAgD;IAChD,UAAU,EAAE,MAAM,CAAC;IACnB,gCAAgC;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,mBAAmB;IACnB,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC;IACtB,gCAAgC;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,6BAA6B;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,sCAAsC;IACtC,MAAM,EAAE;QACN,MAAM,EAAE,MAAM,CAAC;QACf,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;QACpB,cAAc,EAAE,MAAM,CAAC;QACvB,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;CACH;AAID,MAAM,WAAW,mBAAmB;IAClC,2DAA2D;IAC3D,OAAO,EAAE,MAAM,CAAC;IAChB;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,OAAO,CAAC;IACjB,aAAa,EAAE,OAAO,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,yDAAyD;IACzD,WAAW,EAAE,OAAO,CAAC;CACtB;AAED,MAAM,WAAW,gBAAgB;IAC/B,wEAAwE;IACxE,IAAI,EAAE,MAAM,CAAC;IACb,8CAA8C;IAC9C,EAAE,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IACtB,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,sDAAsD;IACtD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,gDAAgD;IAChD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,+DAA+D;IAC/D,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAC9B,0BAA0B;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,sBAAsB;IACtB,MAAM,EAAE,MAAM,GAAG,QAAQ,CAAC;IAC1B,yCAAyC;IACzC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,yBAAyB;IACzB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,yCAAyC;IACzC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,YAAY;IAC3B,0DAA0D;IAC1D,UAAU,EAAE,MAAM,CAAC;IACnB,6DAA6D;IAC7D,cAAc,EAAE,MAAM,CAAC;IACvB,qBAAqB;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,yCAAyC;IACzC,OAAO,EAAE,MAAM,CAAC;IAChB,kCAAkC;IAClC,WAAW,EAAE,MAAM,CAAC;IACpB,wCAAwC;IACxC,IAAI,EAAE,OAAO,CAAC;IACd,iEAAiE;IACjE,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED,MAAM,WAAW,eAAe;IAC9B,yCAAyC;IACzC,OAAO,EAAE,MAAM,CAAC;IAChB,qDAAqD;IACrD,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,EAAE,YAAY,EAAE,CAAC;IACzB,QAAQ,EAAE,OAAO,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,kBAAkB;IACjC,+EAA+E;IAC/E,SAAS,EAAE,MAAM,CAAC;IAClB,2DAA2D;IAC3D,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,WAAY,SAAQ,YAAY;IAC/C,kFAAkF;IAClF,IAAI,CAAC,EAAE,MAAM,CAAC;IACd;;;;OAIG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,2BAA2B;IAC3B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,6CAA6C;IAC7C,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAID,MAAM,WAAW,eAAe;IAC9B;;;;OAIG;IACH,UAAU,EAAE,MAAM,CAAC;IACnB,iFAAiF;IACjF,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED,MAAM,WAAW,cAAc;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,OAAO,CAAC;IAChB,kDAAkD;IAClD,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,qDAAqD;IACrD,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,mCAAmC;IACnC,UAAU,EAAE,MAAM,CAAC;IACnB,kDAAkD;IAClD,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACzC,OAAO,EAAE,MAAM,CAAC;IAChB,cAAc,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,YAAY;IAC3B,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACzC,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,YAAY,EAAE,CAAC;IACrB,KAAK,EAAE,MAAM,CAAC;IACd,wCAAwC;IACxC,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,iBAAiB;IAChC,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,OAAO,CAAC;IACjB,qDAAqD;IACrD,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,uDAAuD;IACvD,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAID,MAAM,WAAW,sBAAsB;IACrC;;;OAGG;IACH,MAAM,EAAE,MAAM,CAAC;IACf;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAID,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;CACjB"}

package/dist/types.js

@@ -0,0 +1,5 @@
+/**
+ * @agentlair/sdk — Type definitions
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG"}

package/package.json

@@ -0,0 +1,52 @@
+{
+  "name": "@agentlair/sdk",
+  "version": "0.1.0",
+  "description": "Official TypeScript/JavaScript SDK for AgentLair — email, vault, and account management for AI agents. Zero dependencies. Works in Node, Bun, Deno, and browsers.",
+  "type": "module",
+  "main": "./dist/index.js",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "test": "bun test",
+    "prepublishOnly": "bun run build"
+  },
+  "keywords": [
+    "agentlair",
+    "ai-agent",
+    "email",
+    "vault",
+    "sdk",
+    "typescript",
+    "zero-deps",
+    "agent-email",
+    "agent-secrets",
+    "web-crypto"
+  ],
+  "author": "AgentLair",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/piiiico/agentlair-sdk"
+  },
+  "homepage": "https://agentlair.dev",
+  "bugs": {
+    "url": "https://github.com/piiiico/agentlair-sdk/issues"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "devDependencies": {
+    "typescript": "^5.9.3"
+  }
+}