@alchemy/cli 0.4.0 → 0.5.0

package/dist/chunk-PIWNNNMZ.js

@@ -1,1327 +0,0 @@
-#!/usr/bin/env node
-if(process.argv.includes("--no-color"))process.env.NO_COLOR="1";
-import {
-  CLIError,
-  ErrorCode,
-  KEY_MAP,
-  configDir,
-  debug,
-  dim,
-  errAccessDenied,
-  errAccessKeyRequired,
-  errAdminAPI,
-  errAuthRequired,
-  errInvalidAPIKey,
-  errInvalidAccessKey,
-  errInvalidArgs,
-  errNetwork,
-  errNetworkNotEnabled,
-  errNotFound,
-  errRPC,
-  errRateLimited,
-  errWalletKeyRequired,
-  exitWithError,
-  get,
-  green,
-  isInteractiveAllowed,
-  isJSONMode,
-  load,
-  maskIf,
-  printHuman,
-  printJSON,
-  printKeyValueBox,
-  promptAutocomplete,
-  promptConfirm,
-  promptMultiselect,
-  promptSelect,
-  promptText,
-  redactSensitiveText,
-  save,
-  timeout,
-  toMap,
-  verbose,
-  withSpinner,
-  yellow
-} from "./chunk-TH75DFAY.js";
-
-// src/lib/client-utils.ts
-function isLocalhost(hostname) {
-  return hostname === "localhost" || hostname === "127.0.0.1" || hostname === "::1";
-}
-function parseBaseURLOverride(envVarName) {
-  const raw = process.env[envVarName];
-  if (!raw) return null;
-  let parsed;
-  try {
-    parsed = new URL(raw);
-  } catch {
-    throw errInvalidArgs(`Invalid ${envVarName} value.`);
-  }
-  if (!isLocalhost(parsed.hostname)) {
-    throw errInvalidArgs(
-      `${envVarName} must target localhost or 127.0.0.1.`
-    );
-  }
-  if (parsed.protocol !== "https:" && parsed.protocol !== "http:") {
-    throw errInvalidArgs(
-      `${envVarName} must use http:// or https://.`
-    );
-  }
-  if (parsed.protocol === "http:" && !isLocalhost(parsed.hostname)) {
-    throw errInvalidArgs(
-      `${envVarName} can only use non-HTTPS for localhost targets.`
-    );
-  }
-  return parsed;
-}
-var BREADCRUMB_HEADER = "alchemy-cli";
-async function fetchWithTimeout(url, init) {
-  try {
-    return await fetch(url, {
-      ...init,
-      headers: {
-        ...init.headers,
-        "x-alchemy-client-breadcrumb": BREADCRUMB_HEADER
-      },
-      ...timeout && { signal: AbortSignal.timeout(timeout) }
-    });
-  } catch (err) {
-    if (err instanceof DOMException && err.name === "TimeoutError") {
-      throw errNetwork(`Request timed out after ${timeout}ms`);
-    }
-    const message = err.message ?? String(err);
-    const causeMessage = err.cause?.message ?? "";
-    const causeCode = err.cause?.code ?? "";
-    const fullErrorText = `${message} ${causeMessage} ${causeCode}`;
-    if (/ENOTFOUND|EAI_AGAIN|getaddrinfo/i.test(fullErrorText)) {
-      try {
-        const hostname = new URL(url).hostname;
-        const networkSlug = hostname.replace(/\.g\.alchemy\.com$/, "");
-        if (networkSlug !== hostname) {
-          throw errInvalidArgs(
-            `Unknown network '${networkSlug}'. Run 'alchemy network list' to see available networks.`
-          );
-        }
-      } catch (innerErr) {
-        if (innerErr instanceof CLIError) throw innerErr;
-      }
-    }
-    throw errNetwork(message);
-  }
-}
-
-// src/lib/admin-client.ts
-var AdminClient = class _AdminClient {
-  static ADMIN_API_HOST = "admin-api.alchemy.com";
-  // Test/debug only: used by mock E2E to route admin requests locally.
-  static ADMIN_API_BASE_URL_ENV = "ALCHEMY_ADMIN_API_BASE_URL";
-  accessKey;
-  constructor(accessKey) {
-    this.validateAccessKey(accessKey);
-    this.accessKey = accessKey;
-  }
-  baseURL() {
-    const override = this.baseURLOverride();
-    if (override) return override.toString().replace(/\/$/, "");
-    return "https://admin-api.alchemy.com";
-  }
-  allowedHosts() {
-    const hosts = /* @__PURE__ */ new Set([_AdminClient.ADMIN_API_HOST]);
-    const override = this.baseURLOverride();
-    if (override) hosts.add(override.hostname);
-    return hosts;
-  }
-  allowInsecureTransport(hostname) {
-    return isLocalhost(hostname);
-  }
-  baseURLOverride() {
-    return parseBaseURLOverride(_AdminClient.ADMIN_API_BASE_URL_ENV);
-  }
-  validateAccessKey(accessKey) {
-    if (!accessKey.trim() || /\s/.test(accessKey)) {
-      throw errInvalidAccessKey();
-    }
-  }
-  assertSafeRequestTarget(url) {
-    let parsed;
-    try {
-      parsed = new URL(url);
-    } catch {
-      throw errInvalidArgs("Invalid admin API URL.");
-    }
-    if (!this.allowedHosts().has(parsed.hostname)) {
-      throw errInvalidArgs(`Refusing to send credentials to unexpected host: ${parsed.hostname}`);
-    }
-    if (parsed.protocol !== "https:" && !this.allowInsecureTransport(parsed.hostname)) {
-      throw errInvalidArgs("Refusing to send credentials over non-HTTPS connection.");
-    }
-  }
-  async request(method, path, body) {
-    const url = `${this.baseURL()}${path}`;
-    this.assertSafeRequestTarget(url);
-    const resp = await fetchWithTimeout(url, {
-      method,
-      redirect: "error",
-      headers: {
-        Authorization: `Bearer ${this.accessKey}`,
-        "Content-Type": "application/json",
-        Accept: "application/json"
-      },
-      ...body !== void 0 && { body: JSON.stringify(body) }
-    });
-    if (resp.status === 401) throw errInvalidAccessKey();
-    if (resp.status === 403) {
-      const detail = await resp.text().catch(() => "");
-      let reason;
-      try {
-        const parsed = JSON.parse(detail);
-        reason = parsed?.message || parsed?.error?.message || parsed?.error || void 0;
-      } catch {
-        reason = detail || void 0;
-      }
-      throw errAccessDenied(typeof reason === "string" ? reason : void 0);
-    }
-    if (resp.status === 404) {
-      const text = await resp.text().catch(() => "");
-      throw errNotFound(text || path);
-    }
-    if (resp.status === 429) throw errRateLimited();
-    if (!resp.ok) {
-      const text = await resp.text().catch(() => "");
-      throw errAdminAPI(resp.status, text);
-    }
-    return resp.json();
-  }
-  async listChains() {
-    const result = await this.request("GET", "/v1/chains");
-    const chains = (Array.isArray(result.data) ? result.data : void 0) ?? (!Array.isArray(result.data) ? result.data?.networks : void 0) ?? (!Array.isArray(result.data) ? result.data?.chains : void 0) ?? result.networks ?? result.chains;
-    if (!Array.isArray(chains)) {
-      throw errAdminAPI(200, "Unexpected response shape for /v1/chains.");
-    }
-    return chains;
-  }
-  async listApps(opts) {
-    const params = new URLSearchParams();
-    if (opts?.cursor) params.set("cursor", opts.cursor);
-    if (opts?.limit) params.set("limit", String(opts.limit));
-    const qs = params.toString();
-    const resp = await this.request(
-      "GET",
-      `/v1/apps${qs ? `?${qs}` : ""}`
-    );
-    return resp.data;
-  }
-  async listAllApps(opts) {
-    const apps = [];
-    const seenCursors = /* @__PURE__ */ new Set();
-    let cursor;
-    let pages = 0;
-    do {
-      const page = await this.listApps({
-        ...cursor && { cursor },
-        ...opts?.limit !== void 0 && { limit: opts.limit }
-      });
-      pages += 1;
-      apps.push(...page.apps);
-      cursor = page.cursor;
-      if (cursor && seenCursors.has(cursor)) break;
-      if (cursor) seenCursors.add(cursor);
-    } while (cursor);
-    return { apps, pages };
-  }
-  async getApp(id) {
-    const resp = await this.request("GET", `/v1/apps/${id}`);
-    return resp.data;
-  }
-  async createApp(opts) {
-    const resp = await this.request("POST", "/v1/apps", {
-      name: opts.name,
-      chainNetworks: opts.networks,
-      ...opts.description && { description: opts.description },
-      ...opts.products && { products: opts.products }
-    });
-    return resp.data;
-  }
-  async deleteApp(id) {
-    await this.request("DELETE", `/v1/apps/${id}`);
-  }
-  async updateApp(id, opts) {
-    const resp = await this.request("PATCH", `/v1/apps/${id}`, opts);
-    return resp.data;
-  }
-  async updateNetworkAllowlist(id, networks) {
-    const resp = await this.request("PUT", `/v1/apps/${id}/networks`, {
-      chainNetworks: networks
-    });
-    return resp.data;
-  }
-  async updateAddressAllowlist(id, addresses) {
-    const resp = await this.request("PUT", `/v1/apps/${id}/address-allowlist`, {
-      addressAllowlist: addresses
-    });
-    return resp.data;
-  }
-  async updateOriginAllowlist(id, origins) {
-    const resp = await this.request("PUT", `/v1/apps/${id}/origin-allowlist`, {
-      originAllowlist: origins
-    });
-    return resp.data;
-  }
-  async updateIpAllowlist(id, ips) {
-    const resp = await this.request("PUT", `/v1/apps/${id}/ip-allowlist`, {
-      ipAllowlist: ips
-    });
-    return resp.data;
-  }
-};
-
-// src/lib/ens.ts
-import { keccak_256 } from "@noble/hashes/sha3.js";
-var UNIVERSAL_RESOLVER = "0xeEeEEEeE14D718C2B47D9923Deab1335E144EeEe";
-var RESOLVE_SELECTOR = "9061b923";
-var ADDR_SELECTOR = "3b3b57de";
-function bytesToHex(bytes) {
-  return Array.from(bytes).map((b) => b.toString(16).padStart(2, "0")).join("");
-}
-function pad32(hex) {
-  return hex.padStart(64, "0");
-}
-function namehash(name) {
-  let node = new Uint8Array(32);
-  if (!name) return node;
-  const labels = name.split(".");
-  for (let i = labels.length - 1; i >= 0; i--) {
-    const labelHash = keccak_256(new TextEncoder().encode(labels[i]));
-    const combined = new Uint8Array(64);
-    combined.set(node, 0);
-    combined.set(labelHash, 32);
-    node = keccak_256(combined);
-  }
-  return node;
-}
-function dnsEncode(name) {
-  const labels = name.split(".");
-  const parts = [];
-  for (const label of labels) {
-    const encoded = new TextEncoder().encode(label);
-    parts.push(encoded.length);
-    parts.push(...encoded);
-  }
-  parts.push(0);
-  return new Uint8Array(parts);
-}
-function buildResolveCalldata(name) {
-  const dnsName = dnsEncode(name);
-  const node = namehash(name);
-  const innerHex = ADDR_SELECTOR + bytesToHex(node);
-  const innerLen = 36;
-  const dnsHex = bytesToHex(dnsName);
-  const nameLen = dnsName.length;
-  const namePad = Math.ceil(nameLen / 32) * 32;
-  const innerPad = Math.ceil(innerLen / 32) * 32;
-  const nameOffset = 64;
-  const dataOffset = nameOffset + 32 + namePad;
-  let hex = RESOLVE_SELECTOR;
-  hex += pad32(nameOffset.toString(16));
-  hex += pad32(dataOffset.toString(16));
-  hex += pad32(nameLen.toString(16));
-  hex += dnsHex.padEnd(namePad * 2, "0");
-  hex += pad32(innerLen.toString(16));
-  hex += innerHex.padEnd(innerPad * 2, "0");
-  return "0x" + hex;
-}
-function isENSName(value) {
-  return value.endsWith(".eth") && value.length > 4 && !value.startsWith("0x");
-}
-async function resolveENS(name, client) {
-  if (!client.network.startsWith("eth-")) {
-    throw errInvalidArgs(
-      `ENS resolution is only supported on Ethereum networks. Current network: ${client.network}`
-    );
-  }
-  const calldata = buildResolveCalldata(name.toLowerCase());
-  const result = await client.call("eth_call", [
-    { to: UNIVERSAL_RESOLVER, data: calldata },
-    "latest"
-  ]);
-  if (!result || result === "0x" || result.length < 130) {
-    throw errInvalidArgs(`ENS name "${name}" could not be resolved.`);
-  }
-  const raw = result.slice(2);
-  const dataOffset = parseInt(raw.slice(0, 64), 16) * 2;
-  const dataLen = parseInt(raw.slice(dataOffset, dataOffset + 64), 16);
-  const dataHex = raw.slice(dataOffset + 64, dataOffset + 64 + dataLen * 2);
-  if (dataHex.length < 64) {
-    throw errInvalidArgs(`ENS name "${name}" could not be resolved.`);
-  }
-  const address = "0x" + dataHex.slice(24, 64);
-  if (address === "0x0000000000000000000000000000000000000000") {
-    throw errInvalidArgs(`ENS name "${name}" is not registered or has no address set.`);
-  }
-  return address;
-}
-
-// src/lib/validators.ts
-function splitCommaList(input) {
-  return input.split(",").map((s) => s.trim()).filter(Boolean);
-}
-var ADDRESS_RE = /^0x[0-9a-fA-F]{40}$/;
-var TX_HASH_RE = /^0x[0-9a-fA-F]{64}$/;
-async function readStdinArg(name) {
-  if (process.stdin.isTTY) {
-    throw errInvalidArgs(`Missing <${name}>. Provide it as an argument or pipe via stdin.`);
-  }
-  process.stdin.setEncoding("utf-8");
-  let input = "";
-  for await (const chunk of process.stdin) {
-    input += chunk;
-  }
-  const data = input.trim().split("\n")[0]?.trim() ?? "";
-  if (!data) {
-    throw errInvalidArgs(`No <${name}> received on stdin.`);
-  }
-  return data;
-}
-async function readStdinLines(name) {
-  if (process.stdin.isTTY) {
-    throw errInvalidArgs(`Missing <${name}>. Provide it as an argument or pipe via stdin.`);
-  }
-  process.stdin.setEncoding("utf-8");
-  let input = "";
-  for await (const chunk of process.stdin) {
-    input += chunk;
-  }
-  const lines = input.split("\n").map((line) => line.trim()).filter((line) => line.length > 0);
-  if (lines.length === 0) {
-    throw errInvalidArgs(`No <${name}> received on stdin.`);
-  }
-  return lines;
-}
-function validateAddress(address) {
-  if (!ADDRESS_RE.test(address)) {
-    throw errInvalidArgs(
-      `Invalid address "${address}". Expected 0x-prefixed 40-hex-character address.`
-    );
-  }
-}
-async function resolveAddress(input, client) {
-  if (isENSName(input)) {
-    return resolveENS(input, client);
-  }
-  validateAddress(input);
-  return input;
-}
-function validateTxHash(hash) {
-  if (!TX_HASH_RE.test(hash)) {
-    throw errInvalidArgs(
-      `Invalid transaction hash "${hash}". Expected 0x-prefixed 64-hex-character hash.`
-    );
-  }
-}
-
-// src/commands/config.ts
-var RESET_KEY_MAP = { ...KEY_MAP, app: "app" };
-var APP_SEARCH_THRESHOLD = 15;
-async function saveAppWithPrompt(app) {
-  const cfg = load();
-  const updated = {
-    ...cfg,
-    api_key: app.apiKey,
-    app: { id: app.id, name: app.name, apiKey: app.apiKey, webhookApiKey: app.webhookApiKey }
-  };
-  if (cfg.api_key) {
-    const replace = await promptConfirm({
-      message: "You already have an API key configured. Use the app's API key instead?",
-      initialValue: true,
-      cancelMessage: "Cancelled default app update."
-    });
-    if (replace === null) {
-      return false;
-    }
-    if (!replace) {
-      updated.api_key = cfg.api_key;
-    }
-  }
-  save(updated);
-  return true;
-}
-async function selectOrCreateApp(admin) {
-  let apps;
-  try {
-    const result = await withSpinner(
-      "Fetching apps\u2026",
-      "Apps fetched",
-      () => admin.listAllApps()
-    );
-    apps = result.apps;
-  } catch {
-    console.log(
-      `  ${dim("Could not fetch apps. Skipping app selection.")}`
-    );
-    return;
-  }
-  if (apps.length > 0) {
-    const CREATE_NEW = "__create_new__";
-    const options = [
-      ...apps.map((a) => ({
-        label: `${a.name} (${a.id})`,
-        value: a.id
-      })),
-      { label: "Create a new app", value: CREATE_NEW }
-    ];
-    const selected = apps.length > APP_SEARCH_THRESHOLD ? await promptAutocomplete({
-      message: "Select default app",
-      placeholder: "Type app name or id",
-      options,
-      cancelMessage: "Cancelled app selection.",
-      commitLabel: null
-    }) : await promptSelect({
-      message: "Select default app",
-      options,
-      cancelMessage: "Cancelled app selection.",
-      commitLabel: null
-    });
-    if (selected === null) {
-      return;
-    }
-    if (selected !== CREATE_NEW) {
-      const app = apps.find((a) => a.id === selected);
-      const saved = await saveAppWithPrompt(app);
-      if (saved) {
-        console.log(`
-  ${green("\u2713")} Default app set to ${app.name} (${app.id})`);
-      } else {
-        console.log(`  ${dim("Skipped setting default app.")}`);
-      }
-      return;
-    }
-  } else {
-    console.log(`  ${dim("No apps found. Let's create one.")}`);
-  }
-  const name = await promptText({
-    message: "App name",
-    cancelMessage: "Cancelled app creation."
-  });
-  if (name === null) {
-    return;
-  }
-  if (!name.trim()) {
-    console.log(`  ${dim("Skipped app creation.")}`);
-    return;
-  }
-  let chainChoices = [];
-  try {
-    const chains = await withSpinner(
-      "Fetching chains\u2026",
-      "Chains fetched",
-      () => admin.listChains()
-    );
-    chainChoices = chains.filter((c) => c.availability === "public" && !c.isTestnet).map((c) => ({ label: `${c.name} (${c.id})`, value: c.id }));
-  } catch {
-  }
-  let networks;
-  if (chainChoices.length > 0) {
-    const selectedNetworks = await promptMultiselect({
-      message: "Select networks",
-      options: chainChoices,
-      required: true,
-      cancelMessage: "Cancelled network selection."
-    });
-    if (selectedNetworks === null) {
-      return;
-    }
-    networks = selectedNetworks;
-  } else {
-    const raw = await promptText({
-      message: "Network IDs (comma-separated)",
-      cancelMessage: "Cancelled network selection."
-    });
-    if (raw === null) {
-      return;
-    }
-    networks = splitCommaList(raw);
-  }
-  if (networks.length === 0) {
-    console.log(`  ${dim("No networks selected. Skipped app creation.")}`);
-    return;
-  }
-  try {
-    const app = await withSpinner(
-      "Creating app\u2026",
-      "App created",
-      () => admin.createApp({ name: name.trim(), networks })
-    );
-    console.log(`  ${green("\u2713")} Created app ${app.name} (${app.id})`);
-    const setDefault = await promptConfirm({
-      message: "Set as default app?",
-      initialValue: true,
-      cancelMessage: "Cancelled default app selection."
-    });
-    if (setDefault === null) {
-      return;
-    }
-    if (setDefault) {
-      const saved = await saveAppWithPrompt(app);
-      if (saved) {
-        console.log(`
-  ${green("\u2713")} Default app set to ${app.name} (${app.id})`);
-      } else {
-        console.log(`  ${dim("Skipped setting default app.")}`);
-      }
-    }
-  } catch (err) {
-    exitWithError(err);
-  }
-}
-function registerConfig(program) {
-  const cmd = program.command("config").description("Manage CLI configuration");
-  const setCmd = cmd.command("set").description("Set a config value");
-  setCmd.command("api-key <key>").description("Set the Alchemy API key for RPC requests").action((key) => {
-    try {
-      const cfg = load();
-      save({ ...cfg, api_key: key });
-      printHuman(`${green("\u2713")} Set api-key
-`, { key: "api-key", status: "set" });
-      if (!isJSONMode() && cfg.app?.apiKey && cfg.app.apiKey !== key) {
-        console.log(
-          `  ${yellow("\u25C6")} ${dim("Warning: api-key differs from the selected app key. RPC commands use api-key; run 'alchemy config set app <app-id>' to resync.")}`
-        );
-      }
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  setCmd.command("access-key <key>").description("Set the Alchemy access key for Admin API operations").action(async (key) => {
-    try {
-      const cfg = load();
-      save({ ...cfg, access_key: key });
-      printHuman(`${green("\u2713")} Set access-key
-`, { key: "access-key", status: "set" });
-      if (isInteractiveAllowed(program)) {
-        await selectOrCreateApp(new AdminClient(key));
-      }
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  setCmd.command("webhook-api-key <key>").description("Set the Alchemy webhook API key for Notify operations").action((key) => {
-    try {
-      const cfg = load();
-      save({ ...cfg, webhook_api_key: key });
-      printHuman(`${green("\u2713")} Set webhook-api-key
-`, { key: "webhook-api-key", status: "set" });
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  setCmd.command("app [app-id]").description("Select the default app (interactive) or set by ID").action(async (appId) => {
-    try {
-      const cfg = load();
-      const accessKey = program.opts().accessKey || process.env.ALCHEMY_ACCESS_KEY || cfg.access_key;
-      if (!accessKey) throw errAccessKeyRequired();
-      if (appId) {
-        const admin = new AdminClient(accessKey);
-        const app = await withSpinner(
-          "Fetching app\u2026",
-          "App fetched",
-          () => admin.getApp(appId)
-        );
-        const updated = {
-          ...cfg,
-          api_key: app.apiKey,
-          app: { id: app.id, name: app.name, apiKey: app.apiKey, webhookApiKey: app.webhookApiKey }
-        };
-        save(updated);
-        printHuman(
-          `${green("\u2713")} Default app set to ${app.name} (${app.id})
-`,
-          { app: { id: app.id, name: app.name }, status: "set" }
-        );
-        return;
-      }
-      if (!isInteractiveAllowed(program)) {
-        exitWithError(
-          new Error("Interactive app selection requires an interactive terminal. Use 'config set app <app-id>' or 'alchemy apps list' to find app IDs.")
-        );
-      }
-      await selectOrCreateApp(new AdminClient(accessKey));
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  setCmd.command("network <network>").description("Set the default network (e.g. eth-mainnet, polygon-mainnet)").action((network) => {
-    try {
-      const cfg = load();
-      save({ ...cfg, network });
-      printHuman(`${green("\u2713")} Set network to ${network}
-`, { key: "network", value: network, status: "set" });
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  setCmd.command("verbose <enabled>").description("Set default verbose output (true|false)").action((enabled) => {
-    try {
-      const normalized = enabled.trim().toLowerCase();
-      if (normalized !== "true" && normalized !== "false") {
-        throw errInvalidArgs("verbose must be 'true' or 'false'");
-      }
-      const verbose2 = normalized === "true";
-      const cfg = load();
-      save({ ...cfg, verbose: verbose2 });
-      printHuman(
-        `${green("\u2713")} Set verbose default to ${verbose2}
-`,
-        { key: "verbose", value: String(verbose2), status: "set" }
-      );
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  setCmd.command("wallet-key-file <path>").description("Set the path to a wallet private key file for x402").action((path) => {
-    try {
-      const cfg = load();
-      save({ ...cfg, wallet_key_file: path });
-      printHuman(`${green("\u2713")} Set wallet-key-file
-`, { key: "wallet-key-file", status: "set" });
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  setCmd.command("x402 <enabled>").description("Enable or disable x402 wallet-based auth by default (true|false)").action((enabled) => {
-    try {
-      const normalized = enabled.trim().toLowerCase();
-      if (normalized !== "true" && normalized !== "false") {
-        throw errInvalidArgs("x402 must be 'true' or 'false'");
-      }
-      const x402 = normalized === "true";
-      const cfg = load();
-      save({ ...cfg, x402 });
-      printHuman(
-        `${green("\u2713")} Set x402 default to ${x402}
-`,
-        { key: "x402", value: String(x402), status: "set" }
-      );
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  cmd.command("get <key>").description("Get a config value (api-key, access-key, app, network, verbose, wallet-key-file, x402)").action((key) => {
-    const cfg = load();
-    let value = get(cfg, key);
-    let isDefault = false;
-    if (value === void 0) {
-      const defaults = {
-        network: "eth-mainnet",
-        verbose: "false",
-        x402: "false"
-      };
-      const normalizedKey = KEY_MAP[key] ?? key;
-      const defaultValue = defaults[normalizedKey] ?? defaults[key];
-      if (defaultValue !== void 0) {
-        value = defaultValue;
-        isDefault = true;
-      }
-    }
-    if (value === void 0) {
-      exitWithError(errNotFound(`config key '${key}'`));
-    }
-    const isSecret = key === "api-key" || key === "api_key" || key === "access-key" || key === "access_key";
-    const display = isSecret ? maskIf(value) : value;
-    const humanDisplay = isDefault ? `${display} ${dim("(default)")}` : display;
-    printHuman(humanDisplay + "\n", { key, value: display, ...isDefault && { default: true } });
-  });
-  cmd.command("list").description("List all config values").action(() => {
-    const cfg = load();
-    const hasApiKeyMismatch = Boolean(
-      cfg.api_key && cfg.app?.apiKey && cfg.api_key !== cfg.app.apiKey
-    );
-    if (isJSONMode()) {
-      printJSON(toMap(cfg));
-      return;
-    }
-    const pairs = [
-      [
-        "api-key",
-        cfg.api_key ? `${hasApiKeyMismatch ? `${yellow("\u25C6")} ` : ""}${maskIf(cfg.api_key)}` : dim("(not set)")
-      ],
-      ["access-key", cfg.access_key ? maskIf(cfg.access_key) : dim("(not set)")],
-      [
-        "app",
-        cfg.app ? `${cfg.app.name} ${dim(`(${cfg.app.id})`)}` : dim("(not set) \u2014 set automatically via 'config set access-key' or 'config set app'")
-      ],
-      ["network", cfg.network || dim("(not set, defaults to eth-mainnet)")],
-      [
-        "verbose",
-        cfg.verbose !== void 0 ? String(cfg.verbose) : dim("(not set, defaults to false)")
-      ],
-      ["wallet-key-file", cfg.wallet_key_file || dim("(not set)")],
-      ["wallet-address", cfg.wallet_address || dim("(not set)")],
-      [
-        "x402",
-        cfg.x402 !== void 0 ? String(cfg.x402) : dim("(not set, defaults to false)")
-      ]
-    ];
-    printKeyValueBox(pairs);
-    if (hasApiKeyMismatch) {
-      console.log("");
-      console.log(
-        `  ${yellow("\u25C6")} ${dim("Warning: api-key differs from the selected app key. RPC commands use api-key; run 'alchemy config set app <app-id>' to resync.")}`
-      );
-    }
-  });
-  cmd.command("reset [key]").description("Reset config values (all or a specific key)").option("-y, --yes", "Skip confirmation prompt for full reset").action(async (key, options) => {
-    try {
-      if (key) {
-        const mapped = RESET_KEY_MAP[key];
-        if (!mapped) {
-          throw errInvalidArgs(
-            `invalid reset key '${key}' (valid: api-key, access-key, app, network, verbose, wallet-key-file, x402)`
-          );
-        }
-        const cfg = load();
-        const updated = { ...cfg };
-        delete updated[mapped];
-        save(updated);
-        printHuman(`${green("\u2713")} Reset ${key}
-`, {
-          status: "reset",
-          key
-        });
-        return;
-      }
-      if (!options.yes && isInteractiveAllowed(program)) {
-        const proceed = await promptConfirm({
-          message: "Reset all saved config values?",
-          initialValue: false,
-          cancelMessage: "Cancelled config reset."
-        });
-        if (proceed === null) {
-          return;
-        }
-        if (!proceed) {
-          console.log(`  ${dim("Skipped config reset.")}`);
-          return;
-        }
-      }
-      save({});
-      printHuman(`${green("\u2713")} Reset all config values
-`, {
-        status: "reset",
-        scope: "all"
-      });
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-}
-
-// src/commands/wallet.ts
-import { readFileSync as readFileSync2, writeFileSync, mkdirSync } from "fs";
-import { join, dirname } from "path";
-import { randomUUID } from "crypto";
-import { generateWallet, getWalletAddress } from "@alchemy/x402";
-
-// src/lib/resolve.ts
-import { readFileSync } from "fs";
-
-// src/lib/client.ts
-var Client = class _Client {
-  apiKey;
-  network;
-  // Test/debug only: used by mock E2E to route CLI requests locally.
-  static RPC_BASE_URL_ENV = "ALCHEMY_RPC_BASE_URL";
-  constructor(apiKey, network) {
-    this.apiKey = apiKey;
-    this.network = network;
-    this.validateNetwork(network);
-  }
-  validateNetwork(network) {
-    if (this.rpcBaseURLOverride()) {
-      return;
-    }
-    const hostname = `${network}.g.alchemy.com`;
-    let parsed;
-    try {
-      parsed = new URL(`https://${hostname}`);
-    } catch {
-      throw errInvalidArgs(
-        `Unknown network '${network}'. Run 'alchemy network list' to see available networks.`
-      );
-    }
-    if (!parsed.hostname.endsWith(".g.alchemy.com")) {
-      throw errInvalidArgs(
-        `Unknown network '${network}'. Run 'alchemy network list' to see available networks.`
-      );
-    }
-  }
-  rpcBaseURLOverride() {
-    return parseBaseURLOverride(_Client.RPC_BASE_URL_ENV);
-  }
-  rpcBaseURL() {
-    const override = this.rpcBaseURLOverride();
-    if (override) return override;
-    return new URL(`https://${this.network}.g.alchemy.com`);
-  }
-  rpcURL() {
-    return new URL(`/v2/${this.apiKey}`, this.rpcBaseURL()).toString();
-  }
-  enhancedURL() {
-    return new URL(`/nft/v3/${this.apiKey}`, this.rpcBaseURL()).toString();
-  }
-  parseNetworkNotEnabledError(detail) {
-    const match = detail.match(
-      /([A-Z0-9_]+)\s+is not enabled for this app\.\s+Visit this page to enable the network:\s+(https?:\/\/\S+)/i
-    );
-    if (!match) return null;
-    return errNetworkNotEnabled(match[1], detail);
-  }
-  authErrorFromResponseBody(detail) {
-    const networkNotEnabled = this.parseNetworkNotEnabledError(detail);
-    if (networkNotEnabled) return networkNotEnabled;
-    return errInvalidAPIKey(detail || void 0);
-  }
-  tryParseRPCError(text) {
-    try {
-      const parsed = JSON.parse(text);
-      if (parsed?.error?.code !== void 0 && parsed?.error?.message !== void 0) {
-        return errRPC(parsed.error.code, parsed.error.message);
-      }
-    } catch {
-    }
-    return null;
-  }
-  verboseLog(message) {
-    if (verbose) {
-      process.stderr.write(`[verbose] ${message}
-`);
-    }
-  }
-  async doFetch(url, init) {
-    return fetchWithTimeout(url, init);
-  }
-  async call(method, params = []) {
-    const body = {
-      jsonrpc: "2.0",
-      method,
-      params,
-      id: 1
-    };
-    const redactedURL = redactSensitiveText(this.rpcURL());
-    this.verboseLog(`\u2192 POST ${redactedURL}`);
-    this.verboseLog(`  method: ${method}`);
-    const hasParams = Array.isArray(params) ? params.length > 0 : Object.keys(params).length > 0;
-    if (hasParams) {
-      this.verboseLog(`  params: ${JSON.stringify(params)}`);
-    }
-    const startTime = Date.now();
-    const resp = await this.doFetch(this.rpcURL(), {
-      method: "POST",
-      headers: {
-        "Content-Type": "application/json",
-        Accept: "application/json"
-      },
-      body: JSON.stringify(body)
-    });
-    this.verboseLog(`\u2190 ${resp.status} ${resp.statusText} (${Date.now() - startTime}ms)`);
-    if (resp.status === 429) throw errRateLimited();
-    if (resp.status === 401 || resp.status === 403) {
-      const detail = await resp.text().catch(() => "");
-      throw this.authErrorFromResponseBody(detail);
-    }
-    if (!resp.ok) {
-      const text = await resp.text().catch(() => "");
-      const rpcError = this.tryParseRPCError(text);
-      if (rpcError) throw rpcError;
-      throw errNetwork(`HTTP ${resp.status}: ${text}`);
-    }
-    const rpcResp = await resp.json();
-    if (rpcResp.error) {
-      throw errRPC(rpcResp.error.code, rpcResp.error.message);
-    }
-    return rpcResp.result;
-  }
-  async callEnhanced(path, params) {
-    const url = new URL(`${this.enhancedURL()}/${path}`);
-    for (const [k, v] of Object.entries(params)) {
-      url.searchParams.set(k, v);
-    }
-    const redactedURL = redactSensitiveText(url.toString());
-    this.verboseLog(`\u2192 GET ${redactedURL}`);
-    const startTime = Date.now();
-    const resp = await this.doFetch(url.toString(), {
-      headers: { Accept: "application/json" }
-    });
-    this.verboseLog(`\u2190 ${resp.status} ${resp.statusText} (${Date.now() - startTime}ms)`);
-    if (resp.status === 429) throw errRateLimited();
-    if (resp.status === 401 || resp.status === 403) {
-      const detail = await resp.text().catch(() => "");
-      throw this.authErrorFromResponseBody(detail);
-    }
-    if (!resp.ok) {
-      const text = await resp.text().catch(() => "");
-      const rpcError = this.tryParseRPCError(text);
-      if (rpcError) throw rpcError;
-      throw errNetwork(`HTTP ${resp.status}: ${text}`);
-    }
-    return resp.json();
-  }
-};
-
-// src/lib/x402-client.ts
-import { signSiwe, createPayment } from "@alchemy/x402";
-var X402Client = class _X402Client {
-  network;
-  privateKey;
-  siweToken = null;
-  static X402_BASE_URL_ENV = "ALCHEMY_X402_BASE_URL";
-  static DEFAULT_BASE = "https://x402.alchemy.com";
-  constructor(privateKey, network) {
-    this.privateKey = privateKey;
-    this.network = network;
-    this.validateNetwork(network);
-  }
-  validateNetwork(network) {
-    if (this.baseURLOverride()) return;
-    if (!/^[A-Za-z0-9:_-]{1,128}$/.test(network)) {
-      throw errInvalidArgs(`Invalid network: ${network}`);
-    }
-  }
-  baseURLOverride() {
-    return parseBaseURLOverride(_X402Client.X402_BASE_URL_ENV);
-  }
-  baseURL() {
-    const override = this.baseURLOverride();
-    if (override) return override;
-    return new URL(_X402Client.DEFAULT_BASE);
-  }
-  rpcURL() {
-    return new URL(`/${this.network}/v2`, this.baseURL()).toString();
-  }
-  enhancedURL() {
-    return new URL(`/${this.network}/nft/v3`, this.baseURL()).toString();
-  }
-  async ensureSiweToken() {
-    if (this.siweToken) return this.siweToken;
-    this.siweToken = await signSiwe({
-      privateKey: this.privateKey,
-      expiresAfter: "1h"
-    });
-    return this.siweToken;
-  }
-  refreshSiweToken() {
-    this.siweToken = null;
-  }
-  async call(method, params = []) {
-    const body = { jsonrpc: "2.0", method, params, id: 1 };
-    const jsonBody = JSON.stringify(body);
-    const buildInit = (extra) => ({
-      method: "POST",
-      headers: {
-        "Content-Type": "application/json",
-        Accept: "application/json",
-        Authorization: `SIWE ${this.siweToken}`,
-        ...extra
-      },
-      body: jsonBody
-    });
-    await this.ensureSiweToken();
-    let resp = await this.doFetch(this.rpcURL(), buildInit());
-    resp = await this.handleAuthAndPayment(resp, {
-      authRetry: async () => {
-        this.refreshSiweToken();
-        await this.ensureSiweToken();
-        return this.doFetch(this.rpcURL(), buildInit());
-      },
-      paymentRetry: async (paymentSig) => this.doFetch(this.rpcURL(), buildInit({ "Payment-Signature": paymentSig }))
-    });
-    if (resp.status === 429) throw errRateLimited();
-    if (resp.status === 402) throw await this.parsePaymentError(resp);
-    if (!resp.ok) {
-      const text = await resp.text().catch(() => "");
-      throw errNetwork(`HTTP ${resp.status}: ${text}`);
-    }
-    const rpcResp = await resp.json();
-    if (rpcResp.error) {
-      throw errRPC(rpcResp.error.code, rpcResp.error.message);
-    }
-    return rpcResp.result;
-  }
-  async callEnhanced(path, params) {
-    const url = new URL(`${this.enhancedURL()}/${path}`);
-    for (const [k, v] of Object.entries(params)) {
-      url.searchParams.set(k, v);
-    }
-    const urlStr = url.toString();
-    const buildInit = (extra) => ({
-      headers: {
-        Accept: "application/json",
-        Authorization: `SIWE ${this.siweToken}`,
-        ...extra
-      }
-    });
-    await this.ensureSiweToken();
-    let resp = await this.doFetch(urlStr, buildInit());
-    resp = await this.handleAuthAndPayment(resp, {
-      authRetry: async () => {
-        this.refreshSiweToken();
-        await this.ensureSiweToken();
-        return this.doFetch(urlStr, buildInit());
-      },
-      paymentRetry: async (paymentSig) => this.doFetch(urlStr, buildInit({ "Payment-Signature": paymentSig }))
-    });
-    if (resp.status === 429) throw errRateLimited();
-    if (resp.status === 402) throw await this.parsePaymentError(resp);
-    if (!resp.ok) {
-      const text = await resp.text().catch(() => "");
-      throw errNetwork(`HTTP ${resp.status}: ${text}`);
-    }
-    return resp.json();
-  }
-  async doFetch(url, init) {
-    return fetchWithTimeout(url, init);
-  }
-  async parsePaymentError(resp) {
-    const text = await resp.text().catch(() => "");
-    try {
-      const body = JSON.parse(text);
-      const reason = body?.extensions?.paymentError?.info?.reason;
-      const message = body?.extensions?.paymentError?.info?.message;
-      const payer = body?.extensions?.paymentError?.info?.payer;
-      if (reason === "insufficient_funds") {
-        const network = body?.accepts?.[0]?.network;
-        const asset = body?.accepts?.[0]?.extra?.name ?? "USDC";
-        const networkLabel = network === "eip155:8453" ? "Base" : network ?? "the payment network";
-        return new CLIError(
-          ErrorCode.PAYMENT_REQUIRED,
-          `Insufficient ${asset} balance on ${networkLabel}. ${message ?? ""}`.trim(),
-          `Fund wallet ${payer ?? ""} with ${asset} on ${networkLabel} to use x402.`.trim()
-        );
-      }
-      return new CLIError(
-        ErrorCode.PAYMENT_REQUIRED,
-        `x402 payment failed: ${message || body?.error || text}`
-      );
-    } catch {
-      return new CLIError(
-        ErrorCode.PAYMENT_REQUIRED,
-        `x402 payment failed: ${text}`
-      );
-    }
-  }
-  async handleAuthAndPayment(resp, retries) {
-    if (resp.status === 401) {
-      const detail = await resp.text().catch(() => "");
-      if (detail.includes("MESSAGE_EXPIRED")) {
-        return retries.authRetry();
-      }
-      throw new CLIError(
-        ErrorCode.AUTH_REQUIRED,
-        `x402 authentication failed: ${detail || "unauthorized"}`,
-        "Check your wallet key and try again."
-      );
-    }
-    if (resp.status === 402) {
-      const paymentRequiredHeader = resp.headers.get("payment-required");
-      if (!paymentRequiredHeader) {
-        throw new CLIError(
-          ErrorCode.PAYMENT_REQUIRED,
-          "x402 payment required but no Payment-Required header received."
-        );
-      }
-      const paymentSignature = await createPayment({
-        privateKey: this.privateKey,
-        paymentRequiredHeader
-      });
-      return retries.paymentRetry(paymentSignature);
-    }
-    return resp;
-  }
-};
-
-// src/lib/resolve.ts
-function resolveAPIKey(program, cfg) {
-  const opts = program.opts();
-  if (opts.apiKey) return opts.apiKey;
-  if (process.env.ALCHEMY_API_KEY) return process.env.ALCHEMY_API_KEY;
-  const config = cfg ?? load();
-  if (config.api_key) return config.api_key;
-  if (config.app?.apiKey) return config.app.apiKey;
-  return void 0;
-}
-function resolveAccessKey(program, cfg) {
-  const opts = program.opts();
-  if (opts.accessKey) return opts.accessKey;
-  if (process.env.ALCHEMY_ACCESS_KEY) return process.env.ALCHEMY_ACCESS_KEY;
-  const config = cfg ?? load();
-  if (config.access_key) return config.access_key;
-  return void 0;
-}
-function resolveNetwork(program, cfg, defaultNetwork) {
-  const opts = program.opts();
-  if (opts.network) return opts.network;
-  if (process.env.ALCHEMY_NETWORK) return process.env.ALCHEMY_NETWORK;
-  const config = cfg ?? load();
-  if (config.network) return config.network;
-  return defaultNetwork ?? "eth-mainnet";
-}
-function resolveAppId(program, cfg) {
-  const opts = program.opts();
-  if (opts.appId) return opts.appId;
-  const config = cfg ?? load();
-  if (config.app?.id) return config.app.id;
-  return void 0;
-}
-function adminClientFromFlags(program) {
-  const accessKey = resolveAccessKey(program);
-  if (!accessKey) throw errAccessKeyRequired();
-  return new AdminClient(accessKey);
-}
-function resolveX402(program, cfg) {
-  const opts = program.opts();
-  if (opts.x402) return true;
-  const config = cfg ?? load();
-  return config.x402 === true;
-}
-function resolveWalletKey(program, cfg) {
-  const opts = program.opts();
-  if (opts.walletKeyFile) {
-    return readFileSync(opts.walletKeyFile, "utf-8").trim();
-  }
-  if (process.env.ALCHEMY_WALLET_KEY) {
-    return process.env.ALCHEMY_WALLET_KEY;
-  }
-  const config = cfg ?? load();
-  if (config.wallet_key_file) {
-    return readFileSync(config.wallet_key_file, "utf-8").trim();
-  }
-  return void 0;
-}
-function clientFromFlags(program, opts) {
-  const cfg = load();
-  const network = resolveNetwork(program, cfg, opts?.defaultNetwork);
-  debug(`using network=${network}`);
-  const programOpts = program.opts();
-  if (programOpts.accessKey) {
-    throw errInvalidArgs(
-      "--access-key is for admin commands (apps, chains, webhooks). Use --api-key for RPC commands."
-    );
-  }
-  if (resolveX402(program, cfg)) {
-    const walletKey = resolveWalletKey(program, cfg);
-    if (!walletKey) throw errWalletKeyRequired();
-    return new X402Client(walletKey, network);
-  }
-  const apiKey = resolveAPIKey(program, cfg);
-  if (!apiKey) throw errAuthRequired();
-  return new Client(apiKey, network);
-}
-
-// src/commands/wallet.ts
-var WALLET_KEYS_DIR = "wallet-keys";
-var UUID_SLICE_LEN = 8;
-var ADDRESS_SLICE_LEN = 12;
-function walletKeysDirPath() {
-  return join(configDir(), WALLET_KEYS_DIR);
-}
-function walletKeyPath(address) {
-  const addr = address.trim().toLowerCase().replace(/^0x/, "").replace(/[^a-z0-9]/g, "").slice(0, ADDRESS_SLICE_LEN);
-  const addressTag = addr || "unknown";
-  const fileName = `wallet-key-${addressTag}-${Date.now()}-${randomUUID().slice(0, UUID_SLICE_LEN)}.txt`;
-  return join(walletKeysDirPath(), fileName);
-}
-function persistWalletKey(privateKey, address) {
-  const keyPath = walletKeyPath(address);
-  mkdirSync(dirname(keyPath), { recursive: true, mode: 493 });
-  writeFileSync(keyPath, privateKey + "\n", { mode: 384, flag: "wx" });
-  return keyPath;
-}
-function generateAndPersistWallet() {
-  const wallet = generateWallet();
-  const keyPath = persistWalletKey(wallet.privateKey, wallet.address);
-  const cfg = load();
-  save({ ...cfg, wallet_key_file: keyPath, wallet_address: wallet.address });
-  return { address: wallet.address, keyFile: keyPath };
-}
-function importAndPersistWallet(path) {
-  let key;
-  try {
-    key = readFileSync2(path, "utf-8").trim();
-  } catch {
-    throw errInvalidArgs(`Could not read key file: ${path}`);
-  }
-  const address = getWalletAddress(key);
-  const keyPath = persistWalletKey(key, address);
-  const cfg = load();
-  save({ ...cfg, wallet_key_file: keyPath, wallet_address: address });
-  return { address, keyFile: keyPath };
-}
-function registerWallet(program) {
-  const cmd = program.command("wallet").description("Manage x402 wallet");
-  cmd.command("generate").description("Generate a new wallet for x402 authentication").action(() => {
-    try {
-      const wallet = generateAndPersistWallet();
-      if (isJSONMode()) {
-        printJSON(wallet);
-      } else {
-        printKeyValueBox([
-          ["Address", green(wallet.address)],
-          ["Key file", wallet.keyFile]
-        ]);
-        console.log(`  ${green("\u2713")} Wallet generated and saved to config`);
-      }
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  cmd.command("import").argument("<path>", "Path to private key file").description("Import a wallet from a private key file").action((path) => {
-    try {
-      const wallet = importAndPersistWallet(path);
-      if (isJSONMode()) {
-        printJSON(wallet);
-      } else {
-        printKeyValueBox([
-          ["Address", green(wallet.address)],
-          ["Key file", wallet.keyFile]
-        ]);
-        console.log(`  ${green("\u2713")} Wallet imported and saved to config`);
-      }
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-  cmd.command("address").description("Display the address of the configured wallet").action(() => {
-    try {
-      const key = resolveWalletKey(program);
-      if (!key) throw errWalletKeyRequired();
-      const address = getWalletAddress(key);
-      printHuman(
-        `${address}
-`,
-        { address }
-      );
-    } catch (err) {
-      exitWithError(err);
-    }
-  });
-}
-
-export {
-  fetchWithTimeout,
-  AdminClient,
-  splitCommaList,
-  readStdinArg,
-  readStdinLines,
-  validateAddress,
-  resolveAddress,
-  validateTxHash,
-  selectOrCreateApp,
-  registerConfig,
-  resolveAPIKey,
-  resolveNetwork,
-  resolveAppId,
-  adminClientFromFlags,
-  clientFromFlags,
-  generateAndPersistWallet,
-  importAndPersistWallet,
-  registerWallet
-};