@agirails/sdk 4.4.8 → 4.5.2

package/dist/builders/DeliveryProofBuilder.d.ts

@@ -1,18 +1,70 @@
 /**
- * DeliveryProofBuilder - AIP-4 Delivery Proof Construction
- * Reference: AIP-4 §9.1
- *
- * Builds complete delivery proofs with:
- * - IPFS upload of result data
- * - EAS attestation creation
- * - EIP-712 signature
- * - Canonical JSON hashing
+ * DeliveryProofBuilder - AIP-4 / AIP-16 Delivery Proof Construction
+ * Reference: AIP-4 §9.1, AIP-16 Rev 5 §6 (DEC-3 split)
+ *
+ * Builds complete delivery proofs in TWO variants:
+ *
+ * 1. `buildPublicProof(params)` — the original AIP-4 behavior. Uploads the
+ *    plaintext result JSON to IPFS, computes `resultHash = keccak256(...)`
+ *    over the canonical JSON, and creates an EAS attestation that
+ *    references `resultCID` (IPFS pointer to the plaintext) and
+ *    `resultHash` (canonical plaintext hash).
+ *
+ *    `build()` remains as a deprecated alias to `buildPublicProof()` so
+ *    every existing AIP-4 caller continues to work unmodified.
+ *
+ * 2. `buildEncryptedProof(params)` — AIP-16 Rev 5 §6 DEC-3 variant. Takes
+ *    a *signed AIP-16 envelope wire object* as input (i.e. the ciphertext
+ *    has already been produced by the delivery channel + envelope
+ *    builder). Uploads the **ENCRYPTED ENVELOPE WIRE JSON** to IPFS (NOT
+ *    the plaintext) and uses `envelopeHash =
+ *    DeliveryEnvelopeBuilder.computeHash(envelopeWire)` (i.e.
+ *    `keccak256(utf8(canonicalJson(envelopeWire.signed)))`) as the EAS
+ *    `resultHash`. The EAS `resultCID` points at the encrypted-wire CID.
+ *
+ *    **The plaintext NEVER leaves the buyer/provider channel.** It is
+ *    never written to IPFS, never written to EAS, never hashed into the
+ *    EAS attestation.
+ *
+ * ## DEC-3 design choice (IPFS payload for encrypted variant)
+ *
+ * Three options were considered for what the encrypted variant uploads
+ * to IPFS:
+ *
+ *   (a) plaintext bytes — **rejected** (defeats the purpose of encryption;
+ *       the whole point of the encrypted scheme is to keep plaintext off
+ *       any public surface).
+ *   (b) only the envelope hash, no IPFS upload — rejected because dispute
+ *       resolution then requires the original delivery channel to still
+ *       be live. Channels are ephemeral; this would break archival
+ *       guarantees.
+ *   (c) the encrypted envelope wire JSON (full `DeliveryEnvelopeWireV1`,
+ *       signed projection + ciphertext body + provider signature) —
+ *       **CHOSEN.** Gives arbitrators a durable, content-addressable
+ *       artifact: they can fetch the envelope from IPFS, verify the
+ *       provider EIP-712 signature, and confirm `envelopeHash` matches the
+ *       value in the EAS attestation, all without ever decrypting the
+ *       body. The buyer (who holds the X25519 secret) can additionally
+ *       reproduce plaintext on demand.
+ *
+ * Hence: encrypted variant uploads the encrypted wire to IPFS, EAS
+ * references envelope-hash, plaintext stays in the channel.
+ *
+ * ## Common to both variants
+ *
+ * - EIP-712 signature over the `DeliveryProofMessage` using the AIP-4
+ *   `AGIRAILS` domain (NOT the AIP-16 `AGIRAILS Delivery` domain — they
+ *   are deliberately separate to prevent cross-feature signature reuse).
+ * - Anti-replay nonce tracked through {@link NonceManager} under
+ *   namespace `agirails.delivery.v1`.
+ * - The delivery proof itself is uploaded to IPFS and pinned.
  */
 import { Signer } from 'ethers';
 import { EAS } from '@ethereum-attestation-service/eas-sdk';
 import { IPFSClient } from '../utils/IPFSClient';
 import { NonceManager } from '../utils/NonceManager';
 import { DeliveryProofMessage } from '../types/message';
+import { DeliveryEnvelopeWireV1 } from '../delivery/types';
 /**
  * AGIRAILS Delivery Schema UID (Base Sepolia)
  * Deployed 2025-11-23 - AIP-4 delivery proof schema
@@ -20,7 +72,15 @@ import { DeliveryProofMessage } from '../types/message';
  */
 export declare const AGIRAILS_DELIVERY_SCHEMA_UID = "0x1b0ebdf0bd20c28ec9d5362571ce8715a55f46e81c3de2f9b0d8e1b95fb5ffce";
 /**
- * Delivery proof build parameters
+ * Public delivery proof build parameters.
+ *
+ * Used by {@link DeliveryProofBuilder.buildPublicProof} (and by the
+ * deprecated {@link DeliveryProofBuilder.build} alias). The plaintext
+ * `resultData` is uploaded to IPFS and hashed into the EAS attestation;
+ * anyone with the CID can read it.
+ *
+ * For private/encrypted deliveries, see {@link DeliveryProofEncryptedParams}
+ * and {@link DeliveryProofBuilder.buildEncryptedProof}.
  */
 export interface DeliveryProofParams {
     txId: string;
@@ -36,6 +96,51 @@ export interface DeliveryProofParams {
     chainId: number;
     kernelAddress: string;
 }
+/**
+ * Encrypted delivery proof build parameters (AIP-16 §6 DEC-3 variant).
+ *
+ * Carries the *already-signed* AIP-16 envelope wire object. The plaintext
+ * has already been encrypted by the delivery channel layer; this builder
+ * never sees and never touches it.
+ *
+ * On-chain anchoring is via `envelopeHash =
+ * DeliveryEnvelopeBuilder.computeHash(envelopeWire)`. IPFS upload is the
+ * encrypted envelope wire JSON (see top-of-file DEC-3 note for the
+ * rationale).
+ *
+ * `provider` / `consumer` are DIDs (matching the AIP-4 shape). The
+ * `txId` MUST equal `envelopeWire.signed.txId`; the `chainId` MUST equal
+ * `envelopeWire.signed.chainId`; these consistency checks are enforced
+ * by `buildEncryptedProof` before any IPFS or EAS calls so that the
+ * signing layer fails fast on mismatched inputs.
+ */
+export interface DeliveryProofEncryptedParams {
+    /** bytes32 transaction id (0x-prefixed). MUST equal `envelopeWire.signed.txId`. */
+    txId: string;
+    /** Provider DID (e.g. `did:ethr:84532:0x...`). */
+    provider: string;
+    /** Consumer DID. */
+    consumer: string;
+    /**
+     * The signed AIP-16 envelope wire. Either `scheme: "x25519-aes256gcm-v1"`
+     * (true encrypted delivery) or — in principle — `scheme: "public-v1"`
+     * (transports plaintext but still routes through the envelope channel).
+     * Either way, the wire object as supplied is what gets pinned to IPFS,
+     * verbatim, and `envelopeHash` is the EAS anchor.
+     */
+    envelopeWire: DeliveryEnvelopeWireV1;
+    /** Optional metadata (same shape as the public variant). */
+    metadata?: {
+        executionTime?: number;
+        outputFormat?: string;
+        outputSize?: number;
+        notes?: string;
+    };
+    /** EVM chain id. MUST equal `envelopeWire.signed.chainId`. */
+    chainId: number;
+    /** ACTPKernel contract address (EIP-712 `verifyingContract`). */
+    kernelAddress: string;
+}
 /**
  * DeliveryProofBuilder - Main Builder Class
  */
@@ -46,17 +151,123 @@ export declare class DeliveryProofBuilder {
     private eas;
     constructor(ipfs: IPFSClient, signer: Signer, nonceManager: NonceManager, eas: EAS);
     /**
-     * Build complete delivery proof
-     * Reference: AIP-4 §5.1 (Provider workflow steps 1-9)
+     * Build a *public* delivery proof — the original AIP-4 §5.1 flow.
+     *
+     * Steps:
+     *  1. Upload `params.resultData` (plaintext JSON) to IPFS, pin it.
+     *  2. Compute `resultHash = computeResultHash(params.resultData)`
+     *     (keccak256 over canonical JSON).
+     *  3. Create EAS attestation with `(txId, resultCID, resultHash,
+     *     deliveredAt)`. `deliveredAt` is `secondsNow()`.
+     *  4. Construct unsigned `DeliveryProofMessage`, allocate and record
+     *     an anti-replay nonce.
+     *  5. Sign the proof with EIP-712 over the AIP-4 `AGIRAILS` domain.
+     *  6. Upload signed delivery proof JSON to IPFS, pin it.
+     *
+     * This variant is appropriate when the deliverable is intentionally
+     * public (open data, demo outputs, etc.) and the buyer is fine with
+     * the result being readable by anyone with the CID.
      *
-     * @param params - Delivery proof parameters
-     * @returns Delivery proof message, IPFS CID, and attestation UID
+     * For confidential deliveries, use {@link buildEncryptedProof}.
+     *
+     * @param params - Public delivery proof parameters.
+     * @returns Signed delivery proof message, CID of the proof on IPFS,
+     *          and EAS attestation UID.
+     */
+    buildPublicProof(params: DeliveryProofParams): Promise<{
+        deliveryProof: DeliveryProofMessage;
+        deliveryProofCID: string;
+        attestationUID: string;
+    }>;
+    /**
+     * Build complete delivery proof.
+     *
+     * @deprecated Use {@link buildPublicProof} for explicit intent, or
+     * {@link buildEncryptedProof} for the AIP-16 §6 encrypted variant.
+     * Retained as an alias to `buildPublicProof` so all existing AIP-4
+     * call sites continue to work without modification (DEC-3 backward
+     * compatibility requirement).
+     *
+     * @param params - Delivery proof parameters (public variant shape).
+     * @returns Same shape as {@link buildPublicProof}.
      */
     build(params: DeliveryProofParams): Promise<{
         deliveryProof: DeliveryProofMessage;
         deliveryProofCID: string;
         attestationUID: string;
     }>;
+    /**
+     * Build an *encrypted* delivery proof (AIP-16 Rev 5 §6 DEC-3 variant).
+     *
+     * Takes a *signed AIP-16 envelope wire* as input. The plaintext is
+     * NEVER touched by this builder — the encryption was performed
+     * upstream by the channel/envelope layer.
+     *
+     * Steps:
+     *  1. Sanity-check `params.txId` and `params.chainId` against the
+     *     signed envelope projection. Mismatch → fail fast.
+     *  2. Compute `envelopeHash =
+     *     DeliveryEnvelopeBuilder.computeHash(envelopeWire)` (keccak256
+     *     over canonical JSON of the SIGNED projection — stable across
+     *     SDK languages and immune to `serverMeta` decoration).
+     *  3. Upload the ENCRYPTED ENVELOPE WIRE JSON (the full
+     *     `DeliveryEnvelopeWireV1`, including signed projection,
+     *     ciphertext body, and provider signature) to IPFS. Pin it.
+     *     **NEVER upload plaintext.**
+     *  4. Create EAS attestation with `(txId, encryptedEnvelopeCID,
+     *     envelopeHash, deliveredAt)`. EAS now anchors the envelope hash,
+     *     NOT a plaintext content hash.
+     *  5. Construct the `DeliveryProofMessage` with `resultCID =
+     *     encryptedEnvelopeCID` and `resultHash = envelopeHash`. Sign
+     *     with EIP-712 over the AIP-4 `AGIRAILS` domain (same domain as
+     *     the public variant — both are AIP-4 delivery proofs).
+     *  6. Upload signed delivery proof JSON to IPFS, pin it.
+     *
+     * ## IPFS upload set
+     *
+     *  - The encrypted envelope wire JSON (NOT the plaintext).
+     *  - The signed delivery proof JSON itself.
+     *
+     * ## EAS attestation contents
+     *
+     *  - `txId` — same as the envelope.
+     *  - `resultCID` — IPFS CID of the encrypted envelope wire.
+     *  - `resultHash` — `envelopeHash` (keccak256 of canonical signed
+     *    envelope projection), NOT a plaintext content hash.
+     *  - `deliveredAt` — `secondsNow()`.
+     *
+     * ## Confidentiality invariant
+     *
+     * Anyone with the EAS attestation can:
+     *  - Verify a specific envelope was signed by the provider for a
+     *    specific txId (fetch from IPFS via `resultCID`, recompute
+     *    `envelopeHash`, compare to EAS `resultHash`, recover signature).
+     *  - Confirm the timing of delivery via `deliveredAt`.
+     * They CANNOT:
+     *  - Read the plaintext. It is never on IPFS, never on EAS, never
+     *    in any signed structure produced by this builder.
+     *
+     * Only the buyer (who holds the X25519 ephemeral secret) can decrypt
+     * the body; only the channel can serve the original wire object if
+     * the buyer didn't archive it. In a dispute, the encrypted wire from
+     * IPFS plus the buyer's secret reproduces the plaintext deterministically.
+     *
+     * @param params - Encrypted delivery proof parameters; carries the
+     *                 signed envelope wire.
+     * @returns Signed delivery proof message, CID of the proof on IPFS,
+     *          EAS attestation UID, the IPFS CID of the encrypted envelope
+     *          wire (for downstream wiring / logs), and the envelope hash
+     *          used as the EAS anchor.
+     * @throws If `params.txId` / `params.chainId` disagree with the
+     *         signed envelope projection.
+     */
+    buildEncryptedProof(params: DeliveryProofEncryptedParams): Promise<{
+        deliveryProof: DeliveryProofMessage;
+        deliveryProofCID: string;
+        attestationUID: string;
+        encryptedEnvelopeCID: string;
+        envelopeHash: string;
+    }>;
     /**
      * Verify delivery proof signature and integrity
      * Reference: AIP-4 §5.2 (Consumer verification)

package/dist/builders/DeliveryProofBuilder.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"DeliveryProofBuilder.d.ts","sourceRoot":"","sources":["../../src/builders/DeliveryProofBuilder.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,MAAM,EAAmB,MAAM,QAAQ,CAAC;AACjD,OAAO,EAAE,GAAG,EAAiB,MAAM,uCAAuC,CAAC;AAE3E,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AACrD,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AAGxD;;;;GAIG;AACH,eAAO,MAAM,4BAA4B,uEAAuE,CAAC;AAEjH;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,GAAG,CAAC;IAChB,QAAQ,CAAC,EAAE;QACT,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,CAAC;IACF,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,MAAM,CAAC;CACvB;AAID;;GAEG;AACH,qBAAa,oBAAoB;IAE7B,OAAO,CAAC,IAAI;IACZ,OAAO,CAAC,MAAM;IACd,OAAO,CAAC,YAAY;IACpB,OAAO,CAAC,GAAG;gBAHH,IAAI,EAAE,UAAU,EAChB,MAAM,EAAE,MAAM,EACd,YAAY,EAAE,YAAY,EAC1B,GAAG,EAAE,GAAG;IAGlB;;;;;;OAMG;IACG,KAAK,CAAC,MAAM,EAAE,mBAAmB,GAAG,OAAO,CAAC;QAChD,aAAa,EAAE,oBAAoB,CAAC;QACpC,gBAAgB,EAAE,MAAM,CAAC;QACzB,cAAc,EAAE,MAAM,CAAC;KACxB,CAAC;IA2EF;;;;;;;;OAQG;IACG,MAAM,CACV,aAAa,EAAE,oBAAoB,EACnC,UAAU,EAAE,GAAG,EACf,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,OAAO,CAAC;IA6DnB;;;;;;;OAOG;YACW,iBAAiB;IAsC/B;;;;;;OAMG;YACW,0BAA0B;IAwCxC;;;;;;OAMG;IACH,OAAO,CAAC,qBAAqB;CAU9B"}
+{"version":3,"file":"DeliveryProofBuilder.d.ts","sourceRoot":"","sources":["../../src/builders/DeliveryProofBuilder.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4DG;AAEH,OAAO,EAAE,MAAM,EAAmB,MAAM,QAAQ,CAAC;AACjD,OAAO,EAAE,GAAG,EAAiB,MAAM,uCAAuC,CAAC;AAE3E,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AACrD,OAAO,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AAExD,OAAO,EAAE,sBAAsB,EAAE,MAAM,mBAAmB,CAAC;AAgB3D;;;;GAIG;AACH,eAAO,MAAM,4BAA4B,uEAAuE,CAAC;AAEjH;;;;;;;;;;GAUG;AACH,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,GAAG,CAAC;IAChB,QAAQ,CAAC,EAAE;QACT,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,CAAC;IACF,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,WAAW,4BAA4B;IAC3C,mFAAmF;IACnF,IAAI,EAAE,MAAM,CAAC;IACb,kDAAkD;IAClD,QAAQ,EAAE,MAAM,CAAC;IACjB,oBAAoB;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB;;;;;;OAMG;IACH,YAAY,EAAE,sBAAsB,CAAC;IACrC,4DAA4D;IAC5D,QAAQ,CAAC,EAAE;QACT,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,CAAC;IACF,8DAA8D;IAC9D,OAAO,EAAE,MAAM,CAAC;IAChB,iEAAiE;IACjE,aAAa,EAAE,MAAM,CAAC;CACvB;AAID;;GAEG;AACH,qBAAa,oBAAoB;IAE7B,OAAO,CAAC,IAAI;IACZ,OAAO,CAAC,MAAM;IACd,OAAO,CAAC,YAAY;IACpB,OAAO,CAAC,GAAG;gBAHH,IAAI,EAAE,UAAU,EAChB,MAAM,EAAE,MAAM,EACd,YAAY,EAAE,YAAY,EAC1B,GAAG,EAAE,GAAG;IAGlB;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACG,gBAAgB,CAAC,MAAM,EAAE,mBAAmB,GAAG,OAAO,CAAC;QAC3D,aAAa,EAAE,oBAAoB,CAAC;QACpC,gBAAgB,EAAE,MAAM,CAAC;QACzB,cAAc,EAAE,MAAM,CAAC;KACxB,CAAC;IA2EF;;;;;;;;;;;OAWG;IACG,KAAK,CAAC,MAAM,EAAE,mBAAmB,GAAG,OAAO,CAAC;QAChD,aAAa,EAAE,oBAAoB,CAAC;QACpC,gBAAgB,EAAE,MAAM,CAAC;QACzB,cAAc,EAAE,MAAM,CAAC;KACxB,CAAC;IAIF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAgEG;IACG,mBAAmB,CAAC,MAAM,EAAE,4BAA4B,GAAG,OAAO,CAAC;QACvE,aAAa,EAAE,oBAAoB,CAAC;QACpC,gBAAgB,EAAE,MAAM,CAAC;QACzB,cAAc,EAAE,MAAM,CAAC;QACvB,oBAAoB,EAAE,MAAM,CAAC;QAC7B,YAAY,EAAE,MAAM,CAAC;KACtB,CAAC;IA6FF;;;;;;;;OAQG;IACG,MAAM,CACV,aAAa,EAAE,oBAAoB,EACnC,UAAU,EAAE,GAAG,EACf,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,OAAO,CAAC;IA6DnB;;;;;;;OAOG;YACW,iBAAiB;IAsC/B;;;;;;OAMG;YACW,0BAA0B;IAwCxC;;;;;;OAMG;IACH,OAAO,CAAC,qBAAqB;CAU9B"}

package/dist/builders/DeliveryProofBuilder.js

@@ -1,13 +1,64 @@
 "use strict";
 /**
- * DeliveryProofBuilder - AIP-4 Delivery Proof Construction
- * Reference: AIP-4 §9.1
+ * DeliveryProofBuilder - AIP-4 / AIP-16 Delivery Proof Construction
+ * Reference: AIP-4 §9.1, AIP-16 Rev 5 §6 (DEC-3 split)
  *
- * Builds complete delivery proofs with:
- * - IPFS upload of result data
- * - EAS attestation creation
- * - EIP-712 signature
- * - Canonical JSON hashing
+ * Builds complete delivery proofs in TWO variants:
+ *
+ * 1. `buildPublicProof(params)` — the original AIP-4 behavior. Uploads the
+ *    plaintext result JSON to IPFS, computes `resultHash = keccak256(...)`
+ *    over the canonical JSON, and creates an EAS attestation that
+ *    references `resultCID` (IPFS pointer to the plaintext) and
+ *    `resultHash` (canonical plaintext hash).
+ *
+ *    `build()` remains as a deprecated alias to `buildPublicProof()` so
+ *    every existing AIP-4 caller continues to work unmodified.
+ *
+ * 2. `buildEncryptedProof(params)` — AIP-16 Rev 5 §6 DEC-3 variant. Takes
+ *    a *signed AIP-16 envelope wire object* as input (i.e. the ciphertext
+ *    has already been produced by the delivery channel + envelope
+ *    builder). Uploads the **ENCRYPTED ENVELOPE WIRE JSON** to IPFS (NOT
+ *    the plaintext) and uses `envelopeHash =
+ *    DeliveryEnvelopeBuilder.computeHash(envelopeWire)` (i.e.
+ *    `keccak256(utf8(canonicalJson(envelopeWire.signed)))`) as the EAS
+ *    `resultHash`. The EAS `resultCID` points at the encrypted-wire CID.
+ *
+ *    **The plaintext NEVER leaves the buyer/provider channel.** It is
+ *    never written to IPFS, never written to EAS, never hashed into the
+ *    EAS attestation.
+ *
+ * ## DEC-3 design choice (IPFS payload for encrypted variant)
+ *
+ * Three options were considered for what the encrypted variant uploads
+ * to IPFS:
+ *
+ *   (a) plaintext bytes — **rejected** (defeats the purpose of encryption;
+ *       the whole point of the encrypted scheme is to keep plaintext off
+ *       any public surface).
+ *   (b) only the envelope hash, no IPFS upload — rejected because dispute
+ *       resolution then requires the original delivery channel to still
+ *       be live. Channels are ephemeral; this would break archival
+ *       guarantees.
+ *   (c) the encrypted envelope wire JSON (full `DeliveryEnvelopeWireV1`,
+ *       signed projection + ciphertext body + provider signature) —
+ *       **CHOSEN.** Gives arbitrators a durable, content-addressable
+ *       artifact: they can fetch the envelope from IPFS, verify the
+ *       provider EIP-712 signature, and confirm `envelopeHash` matches the
+ *       value in the EAS attestation, all without ever decrypting the
+ *       body. The buyer (who holds the X25519 secret) can additionally
+ *       reproduce plaintext on demand.
+ *
+ * Hence: encrypted variant uploads the encrypted wire to IPFS, EAS
+ * references envelope-hash, plaintext stays in the channel.
+ *
+ * ## Common to both variants
+ *
+ * - EIP-712 signature over the `DeliveryProofMessage` using the AIP-4
+ *   `AGIRAILS` domain (NOT the AIP-16 `AGIRAILS Delivery` domain — they
+ *   are deliberately separate to prevent cross-feature signature reuse).
+ * - Anti-replay nonce tracked through {@link NonceManager} under
+ *   namespace `agirails.delivery.v1`.
+ * - The delivery proof itself is uploaded to IPFS and pinned.
  */
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.DeliveryProofBuilder = exports.AGIRAILS_DELIVERY_SCHEMA_UID = void 0;
@@ -15,6 +66,19 @@ const ethers_1 = require("ethers");
 const eas_sdk_1 = require("@ethereum-attestation-service/eas-sdk");
 const canonicalJson_1 = require("../utils/canonicalJson");
 const eip712_1 = require("../types/eip712");
+const envelopeBuilder_1 = require("../delivery/envelopeBuilder");
+/**
+ * Module-local unix-seconds helper (AIP-16 timing rule #12).
+ *
+ * All wall-clock reads inside this module go through this single helper
+ * so tests can inject a fake clock by spying on / mocking it, and so the
+ * code never directly inlines `Math.floor(Date.now() / 1000)`.
+ *
+ * @returns Current unix time in seconds (integer).
+ */
+function secondsNow() {
+    return Math.floor(Date.now() / 1000);
+}
 /**
  * AGIRAILS Delivery Schema UID (Base Sepolia)
  * Deployed 2025-11-23 - AIP-4 delivery proof schema
@@ -33,20 +97,37 @@ class DeliveryProofBuilder {
         this.eas = eas;
     }
     /**
-     * Build complete delivery proof
-     * Reference: AIP-4 §5.1 (Provider workflow steps 1-9)
+     * Build a *public* delivery proof — the original AIP-4 §5.1 flow.
      *
-     * @param params - Delivery proof parameters
-     * @returns Delivery proof message, IPFS CID, and attestation UID
+     * Steps:
+     *  1. Upload `params.resultData` (plaintext JSON) to IPFS, pin it.
+     *  2. Compute `resultHash = computeResultHash(params.resultData)`
+     *     (keccak256 over canonical JSON).
+     *  3. Create EAS attestation with `(txId, resultCID, resultHash,
+     *     deliveredAt)`. `deliveredAt` is `secondsNow()`.
+     *  4. Construct unsigned `DeliveryProofMessage`, allocate and record
+     *     an anti-replay nonce.
+     *  5. Sign the proof with EIP-712 over the AIP-4 `AGIRAILS` domain.
+     *  6. Upload signed delivery proof JSON to IPFS, pin it.
+     *
+     * This variant is appropriate when the deliverable is intentionally
+     * public (open data, demo outputs, etc.) and the buyer is fine with
+     * the result being readable by anyone with the CID.
+     *
+     * For confidential deliveries, use {@link buildEncryptedProof}.
+     *
+     * @param params - Public delivery proof parameters.
+     * @returns Signed delivery proof message, CID of the proof on IPFS,
+     *          and EAS attestation UID.
      */
-    async build(params) {
+    async buildPublicProof(params) {
         // Step 1: Upload result to IPFS
         const resultCID = await this.ipfs.add(JSON.stringify(params.resultData));
         await this.ipfs.pin(resultCID); // Permanent pinning
         // Step 2: Compute result hash (canonical JSON)
         const resultHash = (0, canonicalJson_1.computeResultHash)(params.resultData);
         // Step 3: Create EAS attestation on-chain
-        const deliveredAt = Math.floor(Date.now() / 1000);
+        const deliveredAt = secondsNow();
         const schemaEncoder = new eas_sdk_1.SchemaEncoder('bytes32 txId,string resultCID,bytes32 resultHash,uint256 deliveredAt');
         // Extract Ethereum address from consumer DID
         const consumerAddress = this.extractAddressFromDID(params.consumer);
@@ -99,6 +180,159 @@ class DeliveryProofBuilder {
             attestationUID
         };
     }
+    /**
+     * Build complete delivery proof.
+     *
+     * @deprecated Use {@link buildPublicProof} for explicit intent, or
+     * {@link buildEncryptedProof} for the AIP-16 §6 encrypted variant.
+     * Retained as an alias to `buildPublicProof` so all existing AIP-4
+     * call sites continue to work without modification (DEC-3 backward
+     * compatibility requirement).
+     *
+     * @param params - Delivery proof parameters (public variant shape).
+     * @returns Same shape as {@link buildPublicProof}.
+     */
+    async build(params) {
+        return this.buildPublicProof(params);
+    }
+    /**
+     * Build an *encrypted* delivery proof (AIP-16 Rev 5 §6 DEC-3 variant).
+     *
+     * Takes a *signed AIP-16 envelope wire* as input. The plaintext is
+     * NEVER touched by this builder — the encryption was performed
+     * upstream by the channel/envelope layer.
+     *
+     * Steps:
+     *  1. Sanity-check `params.txId` and `params.chainId` against the
+     *     signed envelope projection. Mismatch → fail fast.
+     *  2. Compute `envelopeHash =
+     *     DeliveryEnvelopeBuilder.computeHash(envelopeWire)` (keccak256
+     *     over canonical JSON of the SIGNED projection — stable across
+     *     SDK languages and immune to `serverMeta` decoration).
+     *  3. Upload the ENCRYPTED ENVELOPE WIRE JSON (the full
+     *     `DeliveryEnvelopeWireV1`, including signed projection,
+     *     ciphertext body, and provider signature) to IPFS. Pin it.
+     *     **NEVER upload plaintext.**
+     *  4. Create EAS attestation with `(txId, encryptedEnvelopeCID,
+     *     envelopeHash, deliveredAt)`. EAS now anchors the envelope hash,
+     *     NOT a plaintext content hash.
+     *  5. Construct the `DeliveryProofMessage` with `resultCID =
+     *     encryptedEnvelopeCID` and `resultHash = envelopeHash`. Sign
+     *     with EIP-712 over the AIP-4 `AGIRAILS` domain (same domain as
+     *     the public variant — both are AIP-4 delivery proofs).
+     *  6. Upload signed delivery proof JSON to IPFS, pin it.
+     *
+     * ## IPFS upload set
+     *
+     *  - The encrypted envelope wire JSON (NOT the plaintext).
+     *  - The signed delivery proof JSON itself.
+     *
+     * ## EAS attestation contents
+     *
+     *  - `txId` — same as the envelope.
+     *  - `resultCID` — IPFS CID of the encrypted envelope wire.
+     *  - `resultHash` — `envelopeHash` (keccak256 of canonical signed
+     *    envelope projection), NOT a plaintext content hash.
+     *  - `deliveredAt` — `secondsNow()`.
+     *
+     * ## Confidentiality invariant
+     *
+     * Anyone with the EAS attestation can:
+     *  - Verify a specific envelope was signed by the provider for a
+     *    specific txId (fetch from IPFS via `resultCID`, recompute
+     *    `envelopeHash`, compare to EAS `resultHash`, recover signature).
+     *  - Confirm the timing of delivery via `deliveredAt`.
+     * They CANNOT:
+     *  - Read the plaintext. It is never on IPFS, never on EAS, never
+     *    in any signed structure produced by this builder.
+     *
+     * Only the buyer (who holds the X25519 ephemeral secret) can decrypt
+     * the body; only the channel can serve the original wire object if
+     * the buyer didn't archive it. In a dispute, the encrypted wire from
+     * IPFS plus the buyer's secret reproduces the plaintext deterministically.
+     *
+     * @param params - Encrypted delivery proof parameters; carries the
+     *                 signed envelope wire.
+     * @returns Signed delivery proof message, CID of the proof on IPFS,
+     *          EAS attestation UID, the IPFS CID of the encrypted envelope
+     *          wire (for downstream wiring / logs), and the envelope hash
+     *          used as the EAS anchor.
+     * @throws If `params.txId` / `params.chainId` disagree with the
+     *         signed envelope projection.
+     */
+    async buildEncryptedProof(params) {
+        // Step 1: Consistency checks. Bail before any IPFS / EAS side effects
+        // if the caller's claimed (txId, chainId) disagree with the envelope.
+        const signed = params.envelopeWire.signed;
+        if (params.txId.toLowerCase() !== signed.txId.toLowerCase()) {
+            throw new Error(`DeliveryProofBuilder.buildEncryptedProof: txId mismatch — params.txId=${params.txId} but envelopeWire.signed.txId=${signed.txId}`);
+        }
+        if (params.chainId !== signed.chainId) {
+            throw new Error(`DeliveryProofBuilder.buildEncryptedProof: chainId mismatch — params.chainId=${params.chainId} but envelopeWire.signed.chainId=${signed.chainId}`);
+        }
+        // Step 2: Compute envelope hash (cross-SDK stable, signature- and
+        // serverMeta-independent). This is the EAS anchor.
+        const envelopeHash = envelopeBuilder_1.DeliveryEnvelopeBuilder.computeHash(params.envelopeWire);
+        // Step 3: Upload ENCRYPTED envelope wire JSON to IPFS. NEVER upload
+        // plaintext. The wire object as supplied — signed projection +
+        // ciphertext body + provider signature — is what gets pinned.
+        const encryptedEnvelopeCID = await this.ipfs.add(JSON.stringify(params.envelopeWire));
+        await this.ipfs.pin(encryptedEnvelopeCID); // Permanent pinning
+        // Step 4: EAS attestation. Schema is identical to the public variant
+        // (the AIP-4 delivery schema is intentionally generic over resultCID
+        // / resultHash semantics) — the differentiation is that `resultHash`
+        // is the *envelope hash*, not a plaintext content hash.
+        const deliveredAt = secondsNow();
+        const schemaEncoder = new eas_sdk_1.SchemaEncoder('bytes32 txId,string resultCID,bytes32 resultHash,uint256 deliveredAt');
+        const consumerAddress = this.extractAddressFromDID(params.consumer);
+        const encodedData = schemaEncoder.encodeData([
+            { name: 'txId', value: params.txId, type: 'bytes32' },
+            { name: 'resultCID', value: encryptedEnvelopeCID, type: 'string' },
+            { name: 'resultHash', value: envelopeHash, type: 'bytes32' },
+            { name: 'deliveredAt', value: deliveredAt, type: 'uint256' }
+        ]);
+        const tx = await this.eas.attest({
+            schema: exports.AGIRAILS_DELIVERY_SCHEMA_UID,
+            data: {
+                recipient: consumerAddress,
+                expirationTime: 0n,
+                revocable: false,
+                data: encodedData
+            }
+        });
+        const receipt = await tx.wait();
+        const attestationUID = receipt.newAttestationUID || receipt;
+        // Step 5: Build delivery proof message (unsigned), then sign.
+        const deliveryProof = {
+            type: 'agirails.delivery.v1',
+            version: '1.0.0',
+            txId: params.txId,
+            provider: params.provider,
+            consumer: params.consumer,
+            resultCID: encryptedEnvelopeCID,
+            resultHash: envelopeHash,
+            metadata: params.metadata || {},
+            easAttestationUID: attestationUID,
+            deliveredAt,
+            chainId: params.chainId,
+            nonce: this.nonceManager.getNextNonce('agirails.delivery.v1'),
+            signature: ''
+        };
+        // Record nonce BEFORE sign/upload to bound replay on retry.
+        this.nonceManager.recordNonce('agirails.delivery.v1', deliveryProof.nonce);
+        const signature = await this.signDeliveryProof(deliveryProof, params.kernelAddress);
+        deliveryProof.signature = signature;
+        // Step 6: Upload signed delivery proof JSON to IPFS.
+        const deliveryProofCID = await this.ipfs.add(JSON.stringify(deliveryProof));
+        await this.ipfs.pin(deliveryProofCID);
+        return {
+            deliveryProof,
+            deliveryProofCID,
+            attestationUID,
+            encryptedEnvelopeCID,
+            envelopeHash
+        };
+    }
     /**
      * Verify delivery proof signature and integrity
      * Reference: AIP-4 §5.2 (Consumer verification)

package/dist/builders/DeliveryProofBuilder.js.map

@@ -1 +1 @@
-{"version":3,"file":"DeliveryProofBuilder.js","sourceRoot":"","sources":["../../src/builders/DeliveryProofBuilder.ts"],"names":[],"mappings":";AAAA;;;;;;;;;GASG;;;AAEH,mCAAiD;AACjD,mEAA2E;AAC3E,0DAA2D;AAI3D,4CAA8F;AAE9F;;;;GAIG;AACU,QAAA,4BAA4B,GAAG,oEAAoE,CAAC;AAoBjH,6DAA6D;AAE7D;;GAEG;AACH,MAAa,oBAAoB;IAC/B,YACU,IAAgB,EAChB,MAAc,EACd,YAA0B,EAC1B,GAAQ;QAHR,SAAI,GAAJ,IAAI,CAAY;QAChB,WAAM,GAAN,MAAM,CAAQ;QACd,iBAAY,GAAZ,YAAY,CAAc;QAC1B,QAAG,GAAH,GAAG,CAAK;IACf,CAAC;IAEJ;;;;;;OAMG;IACH,KAAK,CAAC,KAAK,CAAC,MAA2B;QAKrC,gCAAgC;QAChC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC;QACzE,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,oBAAoB;QAEpD,+CAA+C;QAC/C,MAAM,UAAU,GAAG,IAAA,iCAAiB,EAAC,MAAM,CAAC,UAAU,CAAC,CAAC;QAExD,0CAA0C;QAC1C,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAElD,MAAM,aAAa,GAAG,IAAI,uBAAa,CACrC,sEAAsE,CACvE,CAAC;QAEF,6CAA6C;QAC7C,MAAM,eAAe,GAAG,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAEpE,MAAM,WAAW,GAAG,aAAa,CAAC,UAAU,CAAC;YAC3C,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE;YACrD,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,QAAQ,EAAE;YACvD,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE;YAC1D,EAAE,IAAI,EAAE,aAAa,EAAE,KAAK,EAAE,WAAW,EAAE,IAAI,EAAE,SAAS,EAAE;SAC7D,CAAC,CAAC;QAEH,MAAM,EAAE,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC;YAC/B,MAAM,EAAE,oCAA4B;YACpC,IAAI,EAAE;gBACJ,SAAS,EAAE,eAAe;gBAC1B,cAAc,EAAE,EAAE,EAAE,6BAA6B;gBACjD,SAAS,EAAE,KAAK;gBAChB,IAAI,EAAE,WAAW;aAClB;SACF,CAAC,CAAC;QAEH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC;QAChC,gEAAgE;QAChE,MAAM,cAAc,GAAI,OAAe,CAAC,iBAAiB,IAAK,OAAe,CAAC;QAE9E,kDAAkD;QAClD,MAAM,aAAa,GAAyB;YAC1C,IAAI,EAAE,sBAAsB;YAC5B,OAAO,EAAE,OAAO;YAChB,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,SAAS;YACT,UAAU;YACV,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,EAAE;YAC/B,iBAAiB,EAAE,cAAc;YACjC,WAAW;YACX,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,KAAK,EAAE,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,sBAAsB,CAAC;YAC7D,SAAS,EAAE,EAAE,CAAC,sBAAsB;SACrC,CAAC;QAEF,kEAAkE;QAClE,8DAA8D;QAC9D,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,sBAAsB,EAAE,aAAa,CAAC,KAAK,CAAC,CAAC;QAE3E,4BAA4B;QAC5B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,aAAa,EAAE,MAAM,CAAC,aAAa,CAAC,CAAC;QACpF,aAAa,CAAC,SAAS,GAAG,SAAS,CAAC;QAEpC,wCAAwC;QACxC,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC;QAC5E,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC,CAAC,YAAY;QAEnD,OAAO;YACL,aAAa;YACb,gBAAgB;YAChB,cAAc;SACf,CAAC;IACJ,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,MAAM,CACV,aAAmC,EACnC,UAAe,EACf,aAAqB;QAErB,sBAAsB;QACtB,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAAC,aAAa,EAAE,aAAa,CAAC,CAAC;QAC7F,MAAM,eAAe,GAAG,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;QAE3E,IAAI,gBAAgB,CAAC,WAAW,EAAE,KAAK,eAAe,CAAC,WAAW,EAAE,EAAE,CAAC;YACrE,MAAM,IAAI,KAAK,CAAC,8DAA8D,CAAC,CAAC;QAClF,CAAC;QAED,wBAAwB;QACxB,MAAM,YAAY,GAAG,IAAA,iCAAiB,EAAC,UAAU,CAAC,CAAC;QAEnD,IAAI,YAAY,KAAK,aAAa,CAAC,UAAU,EAAE,CAAC;YAC9C,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;QACjE,CAAC;QAED,gDAAgD;QAChD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,cAAc,CAAC,aAAa,CAAC,iBAAiB,CAAC,CAAC;QAEnF,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QAED,IAAI,WAAW,CAAC,MAAM,KAAK,oCAA4B,EAAE,CAAC;YACxD,MAAM,IAAI,KAAK,CAAC,wCAAwC,oCAA4B,SAAS,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;QACrH,CAAC;QAED,mFAAmF;QACnF,IAAI,SAAS,IAAI,WAAW,IAAK,WAAmB,CAAC,OAAO,EAAE,CAAC;YAC7D,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC7C,CAAC;QAED,IAAI,gBAAgB,IAAI,WAAW,IAAK,WAAmB,CAAC,cAAc,GAAG,CAAC,EAAE,CAAC;YAC/E,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC7C,CAAC;QAED,oDAAoD;QACpD,MAAM,aAAa,GAAG,IAAI,uBAAa,CACrC,sEAAsE,CACvE,CAAC;QACF,MAAM,WAAW,GAAG,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;QAE/D,MAAM,eAAe,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC;QAChF,MAAM,oBAAoB,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC;QAC1F,MAAM,qBAAqB,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,YAAY,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC;QAE5F,IAAI,eAAe,KAAK,aAAa,CAAC,IAAI,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;QAED,IAAI,oBAAoB,KAAK,aAAa,CAAC,SAAS,EAAE,CAAC;YACrD,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACpD,CAAC;QAED,IAAI,qBAAqB,KAAK,aAAa,CAAC,UAAU,EAAE,CAAC;YACvD,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;;;;;OAOG;IACK,KAAK,CAAC,iBAAiB,CAC7B,aAAmC,EACnC,aAAqB;QAErB,MAAM,MAAM,GAAiB;YAC3B,IAAI,EAAE,UAAU;YAChB,OAAO,EAAE,GAAG;YACZ,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,iBAAiB,EAAE,aAAa;SACjC,CAAC;QAEF,MAAM,OAAO,GAA0B;YACrC,IAAI,EAAE,aAAa,CAAC,IAAI;YACxB,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,SAAS,EAAE,aAAa,CAAC,SAAS;YAClC,UAAU,EAAE,aAAa,CAAC,UAAU;YACpC,iBAAiB,EAAE,aAAa,CAAC,iBAAiB;YAClD,WAAW,EAAE,aAAa,CAAC,WAAW;YACtC,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,KAAK,EAAE,aAAa,CAAC,KAAK;SAC3B,CAAC;QAEF,yCAAyC;QACzC,sDAAsD;QACtD,IAAI,eAAe,IAAI,IAAI,CAAC,MAAM,IAAI,OAAQ,IAAI,CAAC,MAAc,CAAC,aAAa,KAAK,UAAU,EAAE,CAAC;YAC/F,MAAM,SAAS,GAAG,MAAO,IAAI,CAAC,MAAc,CAAC,aAAa,CACxD,MAAM,EACN,+BAAsB,EACtB,OAAO,CACR,CAAC;YACF,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,MAAM,IAAI,KAAK,CAAC,iEAAiE,CAAC,CAAC;IAErF,CAAC;IAED;;;;;;OAMG;IACK,KAAK,CAAC,0BAA0B,CACtC,aAAmC,EACnC,aAAqB;QAErB,MAAM,MAAM,GAAiB;YAC3B,IAAI,EAAE,UAAU;YAChB,OAAO,EAAE,GAAG;YACZ,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,iBAAiB,EAAE,aAAa;SACjC,CAAC;QAEF,MAAM,OAAO,GAA0B;YACrC,IAAI,EAAE,aAAa,CAAC,IAAI;YACxB,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,SAAS,EAAE,aAAa,CAAC,SAAS;YAClC,UAAU,EAAE,aAAa,CAAC,UAAU;YACpC,iBAAiB,EAAE,aAAa,CAAC,iBAAiB;YAClD,WAAW,EAAE,aAAa,CAAC,WAAW;YACtC,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,KAAK,EAAE,aAAa,CAAC,KAAK;SAC3B,CAAC;QAEF,kDAAkD;QAClD,wEAAwE;QACxE,IAAI,CAAC;YACH,MAAM,gBAAgB,GAAG,IAAA,wBAAe,EACtC,MAAM,EACN,+BAAsB,EACtB,OAAO,EACP,aAAa,CAAC,SAAS,CACxB,CAAC;YAEF,OAAO,gBAAgB,CAAC;QAC1B,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,kEAAkE;YAClE,MAAM,IAAI,KAAK,CAAC,sBAAsB,KAAK,CAAC,OAAO,IAAI,+BAA+B,EAAE,CAAC,CAAC;QAC5F,CAAC;IACH,CAAC;IAED;;;;;;OAMG;IACK,qBAAqB,CAAC,GAAW;QACvC,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACtD,MAAM,OAAO,GAAG,KAAK,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEzD,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YACvD,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,EAAE,CAAC,CAAC;QAChD,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CACF;AAtRD,oDAsRC"}
+{"version":3,"file":"DeliveryProofBuilder.js","sourceRoot":"","sources":["../../src/builders/DeliveryProofBuilder.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4DG;;;AAEH,mCAAiD;AACjD,mEAA2E;AAC3E,0DAA2D;AAI3D,4CAA8F;AAE9F,iEAAsE;AAEtE;;;;;;;;GAQG;AACH,SAAS,UAAU;IACjB,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;AACvC,CAAC;AAED;;;;GAIG;AACU,QAAA,4BAA4B,GAAG,oEAAoE,CAAC;AA0EjH,6DAA6D;AAE7D;;GAEG;AACH,MAAa,oBAAoB;IAC/B,YACU,IAAgB,EAChB,MAAc,EACd,YAA0B,EAC1B,GAAQ;QAHR,SAAI,GAAJ,IAAI,CAAY;QAChB,WAAM,GAAN,MAAM,CAAQ;QACd,iBAAY,GAAZ,YAAY,CAAc;QAC1B,QAAG,GAAH,GAAG,CAAK;IACf,CAAC;IAEJ;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACH,KAAK,CAAC,gBAAgB,CAAC,MAA2B;QAKhD,gCAAgC;QAChC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC;QACzE,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,oBAAoB;QAEpD,+CAA+C;QAC/C,MAAM,UAAU,GAAG,IAAA,iCAAiB,EAAC,MAAM,CAAC,UAAU,CAAC,CAAC;QAExD,0CAA0C;QAC1C,MAAM,WAAW,GAAG,UAAU,EAAE,CAAC;QAEjC,MAAM,aAAa,GAAG,IAAI,uBAAa,CACrC,sEAAsE,CACvE,CAAC;QAEF,6CAA6C;QAC7C,MAAM,eAAe,GAAG,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAEpE,MAAM,WAAW,GAAG,aAAa,CAAC,UAAU,CAAC;YAC3C,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE;YACrD,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,QAAQ,EAAE;YACvD,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE;YAC1D,EAAE,IAAI,EAAE,aAAa,EAAE,KAAK,EAAE,WAAW,EAAE,IAAI,EAAE,SAAS,EAAE;SAC7D,CAAC,CAAC;QAEH,MAAM,EAAE,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC;YAC/B,MAAM,EAAE,oCAA4B;YACpC,IAAI,EAAE;gBACJ,SAAS,EAAE,eAAe;gBAC1B,cAAc,EAAE,EAAE,EAAE,6BAA6B;gBACjD,SAAS,EAAE,KAAK;gBAChB,IAAI,EAAE,WAAW;aAClB;SACF,CAAC,CAAC;QAEH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC;QAChC,gEAAgE;QAChE,MAAM,cAAc,GAAI,OAAe,CAAC,iBAAiB,IAAK,OAAe,CAAC;QAE9E,kDAAkD;QAClD,MAAM,aAAa,GAAyB;YAC1C,IAAI,EAAE,sBAAsB;YAC5B,OAAO,EAAE,OAAO;YAChB,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,SAAS;YACT,UAAU;YACV,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,EAAE;YAC/B,iBAAiB,EAAE,cAAc;YACjC,WAAW;YACX,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,KAAK,EAAE,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,sBAAsB,CAAC;YAC7D,SAAS,EAAE,EAAE,CAAC,sBAAsB;SACrC,CAAC;QAEF,kEAAkE;QAClE,8DAA8D;QAC9D,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,sBAAsB,EAAE,aAAa,CAAC,KAAK,CAAC,CAAC;QAE3E,4BAA4B;QAC5B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,aAAa,EAAE,MAAM,CAAC,aAAa,CAAC,CAAC;QACpF,aAAa,CAAC,SAAS,GAAG,SAAS,CAAC;QAEpC,wCAAwC;QACxC,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC;QAC5E,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC,CAAC,YAAY;QAEnD,OAAO;YACL,aAAa;YACb,gBAAgB;YAChB,cAAc;SACf,CAAC;IACJ,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,KAAK,CAAC,MAA2B;QAKrC,OAAO,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC;IACvC,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAgEG;IACH,KAAK,CAAC,mBAAmB,CAAC,MAAoC;QAO5D,sEAAsE;QACtE,sEAAsE;QACtE,MAAM,MAAM,GAAG,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC;QAC1C,IAAI,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,KAAK,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,EAAE,CAAC;YAC5D,MAAM,IAAI,KAAK,CACb,yEAAyE,MAAM,CAAC,IAAI,iCAAiC,MAAM,CAAC,IAAI,EAAE,CACnI,CAAC;QACJ,CAAC;QACD,IAAI,MAAM,CAAC,OAAO,KAAK,MAAM,CAAC,OAAO,EAAE,CAAC;YACtC,MAAM,IAAI,KAAK,CACb,+EAA+E,MAAM,CAAC,OAAO,oCAAoC,MAAM,CAAC,OAAO,EAAE,CAClJ,CAAC;QACJ,CAAC;QAED,kEAAkE;QAClE,mDAAmD;QACnD,MAAM,YAAY,GAAG,yCAAuB,CAAC,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAE9E,oEAAoE;QACpE,+DAA+D;QAC/D,8DAA8D;QAC9D,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC;QACtF,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC,CAAC,oBAAoB;QAE/D,qEAAqE;QACrE,qEAAqE;QACrE,qEAAqE;QACrE,wDAAwD;QACxD,MAAM,WAAW,GAAG,UAAU,EAAE,CAAC;QAEjC,MAAM,aAAa,GAAG,IAAI,uBAAa,CACrC,sEAAsE,CACvE,CAAC;QAEF,MAAM,eAAe,GAAG,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAEpE,MAAM,WAAW,GAAG,aAAa,CAAC,UAAU,CAAC;YAC3C,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE;YACrD,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,oBAAoB,EAAE,IAAI,EAAE,QAAQ,EAAE;YAClE,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,YAAY,EAAE,IAAI,EAAE,SAAS,EAAE;YAC5D,EAAE,IAAI,EAAE,aAAa,EAAE,KAAK,EAAE,WAAW,EAAE,IAAI,EAAE,SAAS,EAAE;SAC7D,CAAC,CAAC;QAEH,MAAM,EAAE,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC;YAC/B,MAAM,EAAE,oCAA4B;YACpC,IAAI,EAAE;gBACJ,SAAS,EAAE,eAAe;gBAC1B,cAAc,EAAE,EAAE;gBAClB,SAAS,EAAE,KAAK;gBAChB,IAAI,EAAE,WAAW;aAClB;SACF,CAAC,CAAC;QAEH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC;QAChC,MAAM,cAAc,GAAI,OAAe,CAAC,iBAAiB,IAAK,OAAe,CAAC;QAE9E,8DAA8D;QAC9D,MAAM,aAAa,GAAyB;YAC1C,IAAI,EAAE,sBAAsB;YAC5B,OAAO,EAAE,OAAO;YAChB,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,SAAS,EAAE,oBAAoB;YAC/B,UAAU,EAAE,YAAY;YACxB,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,EAAE;YAC/B,iBAAiB,EAAE,cAAc;YACjC,WAAW;YACX,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,KAAK,EAAE,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,sBAAsB,CAAC;YAC7D,SAAS,EAAE,EAAE;SACd,CAAC;QAEF,4DAA4D;QAC5D,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,sBAAsB,EAAE,aAAa,CAAC,KAAK,CAAC,CAAC;QAE3E,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,aAAa,EAAE,MAAM,CAAC,aAAa,CAAC,CAAC;QACpF,aAAa,CAAC,SAAS,GAAG,SAAS,CAAC;QAEpC,qDAAqD;QACrD,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC;QAC5E,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;QAEtC,OAAO;YACL,aAAa;YACb,gBAAgB;YAChB,cAAc;YACd,oBAAoB;YACpB,YAAY;SACb,CAAC;IACJ,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,MAAM,CACV,aAAmC,EACnC,UAAe,EACf,aAAqB;QAErB,sBAAsB;QACtB,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAAC,aAAa,EAAE,aAAa,CAAC,CAAC;QAC7F,MAAM,eAAe,GAAG,IAAI,CAAC,qBAAqB,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;QAE3E,IAAI,gBAAgB,CAAC,WAAW,EAAE,KAAK,eAAe,CAAC,WAAW,EAAE,EAAE,CAAC;YACrE,MAAM,IAAI,KAAK,CAAC,8DAA8D,CAAC,CAAC;QAClF,CAAC;QAED,wBAAwB;QACxB,MAAM,YAAY,GAAG,IAAA,iCAAiB,EAAC,UAAU,CAAC,CAAC;QAEnD,IAAI,YAAY,KAAK,aAAa,CAAC,UAAU,EAAE,CAAC;YAC9C,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;QACjE,CAAC;QAED,gDAAgD;QAChD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,cAAc,CAAC,aAAa,CAAC,iBAAiB,CAAC,CAAC;QAEnF,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAClD,CAAC;QAED,IAAI,WAAW,CAAC,MAAM,KAAK,oCAA4B,EAAE,CAAC;YACxD,MAAM,IAAI,KAAK,CAAC,wCAAwC,oCAA4B,SAAS,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;QACrH,CAAC;QAED,mFAAmF;QACnF,IAAI,SAAS,IAAI,WAAW,IAAK,WAAmB,CAAC,OAAO,EAAE,CAAC;YAC7D,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC7C,CAAC;QAED,IAAI,gBAAgB,IAAI,WAAW,IAAK,WAAmB,CAAC,cAAc,GAAG,CAAC,EAAE,CAAC;YAC/E,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAC7C,CAAC;QAED,oDAAoD;QACpD,MAAM,aAAa,GAAG,IAAI,uBAAa,CACrC,sEAAsE,CACvE,CAAC;QACF,MAAM,WAAW,GAAG,aAAa,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;QAE/D,MAAM,eAAe,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC;QAChF,MAAM,oBAAoB,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC;QAC1F,MAAM,qBAAqB,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,YAAY,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC;QAE5F,IAAI,eAAe,KAAK,aAAa,CAAC,IAAI,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;QAED,IAAI,oBAAoB,KAAK,aAAa,CAAC,SAAS,EAAE,CAAC;YACrD,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACpD,CAAC;QAED,IAAI,qBAAqB,KAAK,aAAa,CAAC,UAAU,EAAE,CAAC;YACvD,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;;;;;OAOG;IACK,KAAK,CAAC,iBAAiB,CAC7B,aAAmC,EACnC,aAAqB;QAErB,MAAM,MAAM,GAAiB;YAC3B,IAAI,EAAE,UAAU;YAChB,OAAO,EAAE,GAAG;YACZ,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,iBAAiB,EAAE,aAAa;SACjC,CAAC;QAEF,MAAM,OAAO,GAA0B;YACrC,IAAI,EAAE,aAAa,CAAC,IAAI;YACxB,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,SAAS,EAAE,aAAa,CAAC,SAAS;YAClC,UAAU,EAAE,aAAa,CAAC,UAAU;YACpC,iBAAiB,EAAE,aAAa,CAAC,iBAAiB;YAClD,WAAW,EAAE,aAAa,CAAC,WAAW;YACtC,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,KAAK,EAAE,aAAa,CAAC,KAAK;SAC3B,CAAC;QAEF,yCAAyC;QACzC,sDAAsD;QACtD,IAAI,eAAe,IAAI,IAAI,CAAC,MAAM,IAAI,OAAQ,IAAI,CAAC,MAAc,CAAC,aAAa,KAAK,UAAU,EAAE,CAAC;YAC/F,MAAM,SAAS,GAAG,MAAO,IAAI,CAAC,MAAc,CAAC,aAAa,CACxD,MAAM,EACN,+BAAsB,EACtB,OAAO,CACR,CAAC;YACF,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,MAAM,IAAI,KAAK,CAAC,iEAAiE,CAAC,CAAC;IAErF,CAAC;IAED;;;;;;OAMG;IACK,KAAK,CAAC,0BAA0B,CACtC,aAAmC,EACnC,aAAqB;QAErB,MAAM,MAAM,GAAiB;YAC3B,IAAI,EAAE,UAAU;YAChB,OAAO,EAAE,GAAG;YACZ,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,iBAAiB,EAAE,aAAa;SACjC,CAAC;QAEF,MAAM,OAAO,GAA0B;YACrC,IAAI,EAAE,aAAa,CAAC,IAAI;YACxB,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,QAAQ,EAAE,aAAa,CAAC,QAAQ;YAChC,SAAS,EAAE,aAAa,CAAC,SAAS;YAClC,UAAU,EAAE,aAAa,CAAC,UAAU;YACpC,iBAAiB,EAAE,aAAa,CAAC,iBAAiB;YAClD,WAAW,EAAE,aAAa,CAAC,WAAW;YACtC,OAAO,EAAE,aAAa,CAAC,OAAO;YAC9B,KAAK,EAAE,aAAa,CAAC,KAAK;SAC3B,CAAC;QAEF,kDAAkD;QAClD,wEAAwE;QACxE,IAAI,CAAC;YACH,MAAM,gBAAgB,GAAG,IAAA,wBAAe,EACtC,MAAM,EACN,+BAAsB,EACtB,OAAO,EACP,aAAa,CAAC,SAAS,CACxB,CAAC;YAEF,OAAO,gBAAgB,CAAC;QAC1B,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,kEAAkE;YAClE,MAAM,IAAI,KAAK,CAAC,sBAAsB,KAAK,CAAC,OAAO,IAAI,+BAA+B,EAAE,CAAC,CAAC;QAC5F,CAAC;IACH,CAAC;IAED;;;;;;OAMG;IACK,qBAAqB,CAAC,GAAW;QACvC,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACtD,MAAM,OAAO,GAAG,KAAK,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEzD,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YACvD,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,EAAE,CAAC,CAAC;QAChD,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CACF;AA/dD,oDA+dC"}