@alchemy/x402 0.2.0

package/README.md

@@ -0,0 +1,145 @@
+# @alchemy/x402
+
+CLI and library for Alchemy x402 authentication and payments. Handles SIWE (Sign-In With Ethereum) auth and x402 per-request payments for the Alchemy agentic gateway.
+
+## Install
+
+```bash
+pnpm add @alchemy/x402
+```
+
+## CLI
+
+```bash
+# Generate a new wallet
+npx alchemy-x402 wallet generate
+
+# Import an existing wallet (accepts key or file path)
+npx alchemy-x402 wallet import --private-key <key>
+
+# Generate a SIWE token
+npx alchemy-x402 sign-siwe --private-key <key> --expires-after 1h
+
+# Create an x402 payment from a PAYMENT-REQUIRED header
+npx alchemy-x402 pay --private-key <key> --payment-required <header>
+```
+
+## Library
+
+```ts
+import { signSiwe, generateWallet, getWalletAddress, createPayment, buildX402Client } from "@alchemy/x402";
+```
+
+### Generate a wallet
+
+```ts
+const wallet = generateWallet();
+// { privateKey: "0x...", address: "0x..." }
+
+const address = getWalletAddress("0x<private-key>");
+```
+
+### Sign a SIWE token
+
+```ts
+const token = await signSiwe({
+  privateKey: "0x<private-key>",
+  expiresAfter: "1h", // optional, default "1h"
+});
+```
+
+### Create an x402 payment
+
+```ts
+const paymentHeader = await createPayment({
+  privateKey: "0x<private-key>",
+  paymentRequiredHeader: "<raw PAYMENT-REQUIRED header value>",
+});
+```
+
+### Use with @x402/fetch
+
+For full request orchestration with automatic 402 payment handling, use `buildX402Client` with `@x402/fetch`:
+
+```ts
+import { buildX402Client, signSiwe } from "@alchemy/x402";
+import { wrapFetchWithPayment } from "@x402/fetch";
+
+const privateKey = "0x<private-key>";
+const client = buildX402Client(privateKey);
+const siweToken = await signSiwe({ privateKey });
+
+// Wrap fetch with SIWE auth
+const authedFetch: typeof fetch = async (input, init) => {
+  const headers = new Headers(init?.headers);
+  headers.set("Authorization", `SIWE ${siweToken}`);
+  return fetch(input, { ...init, headers });
+};
+
+// Wrap with automatic x402 payment handling
+const paymentFetch = wrapFetchWithPayment(authedFetch, client);
+
+const response = await paymentFetch("https://x402.alchemy.com/...");
+```
+
+## Private key input
+
+All commands and functions accept private keys as:
+
+- Hex string with `0x` prefix: `0xac09...`
+- Raw hex string: `ac09...`
+- File path: `/path/to/keyfile`
+
+## Development
+
+### Prerequisites
+
+- Node.js >= 20
+- [pnpm](https://pnpm.io/)
+
+**Option A** — [mise](https://mise.jdx.dev/) (recommended, installs both Node and pnpm from `.tool-versions`):
+
+```bash
+mise install
+```
+
+**Option B** — [corepack](https://nodejs.org/api/corepack.html) (ships with Node, reads `packageManager` from package.json):
+
+```bash
+corepack enable
+```
+
+### Getting started
+
+```bash
+git clone git@github.com:alchemyplatform/alchemy-x402.git
+cd alchemy-x402
+pnpm install
+pnpm run build
+pnpm run typecheck
+pnpm test
+```
+
+## For maintainers
+
+### Adding a changeset
+
+This project uses [Changesets](https://github.com/changesets/changesets) for versioning and npm publishing.
+
+When your PR includes a user-facing change, add a changeset:
+
+```bash
+pnpm run changeset
+```
+
+Select the semver bump type (patch/minor/major) and describe the change. Commit the generated `.changeset/*.md` file with your PR.
+
+### Release flow
+
+1. Merge PRs with changeset files to `main`
+2. CI automatically opens a "Version Packages" PR that bumps the version and updates `CHANGELOG.md`
+3. Merge the version PR to publish to npm
+
+### Secrets
+
+Add an `NPM_PUBLISH_TOKEN` secret to the repo (**Settings > Secrets and variables > Actions**) with a token from [npmjs.com](https://www.npmjs.com/settings/~/tokens).

package/dist/cli/index.mjs

@@ -0,0 +1,136 @@
+#!/usr/bin/env node
+import { Command } from "@commander-js/extra-typings";
+import { randomBytes } from "crypto";
+import ms from "ms";
+import { generatePrivateKey, privateKeyToAccount } from "viem/accounts";
+import { existsSync, readFileSync } from "fs";
+import { createPublicClient, http } from "viem";
+import { base } from "viem/chains";
+import { ExactEvmScheme, toClientEvmSigner } from "@x402/evm";
+import { x402Client } from "@x402/core/client";
+import { decodePaymentRequiredHeader, encodePaymentSignatureHeader } from "@x402/core/http";
+
+//#region src/lib/wallet.ts
+const RAW_HEX_RE = /^[0-9a-fA-F]{64}$/;
+function resolvePrivateKey(keyOrPath) {
+	if (keyOrPath.startsWith("0x") || RAW_HEX_RE.test(keyOrPath)) return keyOrPath;
+	if (existsSync(keyOrPath)) return readFileSync(keyOrPath, "utf-8").trim();
+	return keyOrPath;
+}
+function normalizePrivateKey(key) {
+	const resolved = resolvePrivateKey(key);
+	return resolved.startsWith("0x") ? resolved : `0x${resolved}`;
+}
+function generateWallet() {
+	const privateKey = generatePrivateKey();
+	return {
+		privateKey,
+		address: privateKeyToAccount(privateKey).address
+	};
+}
+function getWalletAddress(privateKey) {
+	return privateKeyToAccount(normalizePrivateKey(privateKey)).address;
+}
+
+//#endregion
+//#region src/lib/siwe.ts
+function generateNonce() {
+	return randomBytes(16).toString("hex");
+}
+async function signSiwe(opts) {
+	const account = privateKeyToAccount(normalizePrivateKey(opts.privateKey));
+	const issuedAt = opts.issuedAt ?? (/* @__PURE__ */ new Date()).toISOString();
+	const nonce = opts.nonce ?? generateNonce();
+	const duration = ms(opts.expiresAfter ?? "1h");
+	if (duration === void 0) throw new Error(`Invalid duration: ${opts.expiresAfter}`);
+	const expirationTime = new Date(new Date(issuedAt).getTime() + duration).toISOString();
+	const message = [
+		"x402.alchemy.com wants you to sign in with your Ethereum account:",
+		account.address,
+		"",
+		"Sign in to Alchemy Gateway",
+		"",
+		"URI: https://x402.alchemy.com",
+		"Version: 1",
+		"Chain ID: 8453",
+		`Nonce: ${nonce}`,
+		`Issued At: ${issuedAt}`,
+		`Expiration Time: ${expirationTime}`
+	].join("\n");
+	const signature = await account.signMessage({ message });
+	return `${Buffer.from(message).toString("base64url")}.${signature}`;
+}
+
+//#endregion
+//#region src/cli/commands/sign-siwe.ts
+const signSiweCommand = new Command("sign-siwe").description("Generate a SIWE authentication token").requiredOption("--private-key <key>", "Wallet private key").option("--expires-after <duration>", "Token expiration duration (e.g. 1h, 30m, 7d)", "1h").action(async (opts) => {
+	const token = await signSiwe({
+		privateKey: opts.privateKey,
+		expiresAfter: opts.expiresAfter
+	});
+	process.stdout.write(token);
+});
+
+//#endregion
+//#region src/cli/commands/wallet.ts
+const walletCommand = new Command("wallet").description("Wallet management commands");
+walletCommand.command("generate").description("Generate a new wallet").action(() => {
+	const wallet = generateWallet();
+	console.log(JSON.stringify(wallet, null, 2));
+});
+walletCommand.command("import").description("Import an existing wallet and display its address").requiredOption("--private-key <key>", "Wallet private key").action((opts) => {
+	const address = getWalletAddress(opts.privateKey);
+	console.log(JSON.stringify({ address }, null, 2));
+});
+
+//#endregion
+//#region src/lib/payment.ts
+function buildX402Client(privateKey) {
+	const account = privateKeyToAccount(normalizePrivateKey(privateKey));
+	const publicClient = createPublicClient({
+		chain: base,
+		transport: http()
+	});
+	const scheme = new ExactEvmScheme(toClientEvmSigner({
+		address: account.address,
+		signTypedData: async (params) => {
+			return account.signTypedData(params);
+		},
+		readContract: async (params) => {
+			return publicClient.readContract(params);
+		}
+	}));
+	const client = new x402Client();
+	client.register("eip155:8453", scheme);
+	client.register("eip155:84532", scheme);
+	return client;
+}
+async function createPayment(opts) {
+	const client = buildX402Client(opts.privateKey);
+	const paymentRequired = decodePaymentRequiredHeader(opts.paymentRequiredHeader);
+	return encodePaymentSignatureHeader(await client.createPaymentPayload(paymentRequired));
+}
+
+//#endregion
+//#region src/cli/commands/pay.ts
+const payCommand = new Command("pay").description("Create an x402 payment from a PAYMENT-REQUIRED header").requiredOption("--private-key <key>", "Wallet private key").requiredOption("--payment-required <header>", "Raw PAYMENT-REQUIRED header value").action(async (opts) => {
+	const paymentHeader = await createPayment({
+		privateKey: opts.privateKey,
+		paymentRequiredHeader: opts.paymentRequired
+	});
+	process.stdout.write(paymentHeader);
+});
+
+//#endregion
+//#region src/cli/index.ts
+const program = new Command().name("alchemy-x402").description("CLI for Alchemy x402 authentication and payments").version("0.1.0");
+program.addCommand(signSiweCommand);
+program.addCommand(walletCommand);
+program.addCommand(payCommand);
+program.parseAsync().catch((err) => {
+	console.error(err);
+	process.exit(1);
+});
+
+//#endregion
+export {  };

package/dist/index.cjs

@@ -0,0 +1,124 @@
+Object.defineProperty(exports, Symbol.toStringTag, { value: 'Module' });
+//#region \0rolldown/runtime.js
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+	if (from && typeof from === "object" || typeof from === "function") {
+		for (var keys = __getOwnPropNames(from), i = 0, n = keys.length, key; i < n; i++) {
+			key = keys[i];
+			if (!__hasOwnProp.call(to, key) && key !== except) {
+				__defProp(to, key, {
+					get: ((k) => from[k]).bind(null, key),
+					enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable
+				});
+			}
+		}
+	}
+	return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", {
+	value: mod,
+	enumerable: true
+}) : target, mod));
+
+//#endregion
+let crypto = require("crypto");
+let ms = require("ms");
+ms = __toESM(ms);
+let viem_accounts = require("viem/accounts");
+let fs = require("fs");
+let viem = require("viem");
+let viem_chains = require("viem/chains");
+let _x402_evm = require("@x402/evm");
+let _x402_core_client = require("@x402/core/client");
+let _x402_core_http = require("@x402/core/http");
+
+//#region src/lib/wallet.ts
+const RAW_HEX_RE = /^[0-9a-fA-F]{64}$/;
+function resolvePrivateKey(keyOrPath) {
+	if (keyOrPath.startsWith("0x") || RAW_HEX_RE.test(keyOrPath)) return keyOrPath;
+	if ((0, fs.existsSync)(keyOrPath)) return (0, fs.readFileSync)(keyOrPath, "utf-8").trim();
+	return keyOrPath;
+}
+function normalizePrivateKey(key) {
+	const resolved = resolvePrivateKey(key);
+	return resolved.startsWith("0x") ? resolved : `0x${resolved}`;
+}
+function generateWallet() {
+	const privateKey = (0, viem_accounts.generatePrivateKey)();
+	return {
+		privateKey,
+		address: (0, viem_accounts.privateKeyToAccount)(privateKey).address
+	};
+}
+function getWalletAddress(privateKey) {
+	return (0, viem_accounts.privateKeyToAccount)(normalizePrivateKey(privateKey)).address;
+}
+
+//#endregion
+//#region src/lib/siwe.ts
+function generateNonce() {
+	return (0, crypto.randomBytes)(16).toString("hex");
+}
+async function signSiwe(opts) {
+	const account = (0, viem_accounts.privateKeyToAccount)(normalizePrivateKey(opts.privateKey));
+	const issuedAt = opts.issuedAt ?? (/* @__PURE__ */ new Date()).toISOString();
+	const nonce = opts.nonce ?? generateNonce();
+	const duration = (0, ms.default)(opts.expiresAfter ?? "1h");
+	if (duration === void 0) throw new Error(`Invalid duration: ${opts.expiresAfter}`);
+	const expirationTime = new Date(new Date(issuedAt).getTime() + duration).toISOString();
+	const message = [
+		"x402.alchemy.com wants you to sign in with your Ethereum account:",
+		account.address,
+		"",
+		"Sign in to Alchemy Gateway",
+		"",
+		"URI: https://x402.alchemy.com",
+		"Version: 1",
+		"Chain ID: 8453",
+		`Nonce: ${nonce}`,
+		`Issued At: ${issuedAt}`,
+		`Expiration Time: ${expirationTime}`
+	].join("\n");
+	const signature = await account.signMessage({ message });
+	return `${Buffer.from(message).toString("base64url")}.${signature}`;
+}
+
+//#endregion
+//#region src/lib/payment.ts
+function buildX402Client(privateKey) {
+	const account = (0, viem_accounts.privateKeyToAccount)(normalizePrivateKey(privateKey));
+	const publicClient = (0, viem.createPublicClient)({
+		chain: viem_chains.base,
+		transport: (0, viem.http)()
+	});
+	const scheme = new _x402_evm.ExactEvmScheme((0, _x402_evm.toClientEvmSigner)({
+		address: account.address,
+		signTypedData: async (params) => {
+			return account.signTypedData(params);
+		},
+		readContract: async (params) => {
+			return publicClient.readContract(params);
+		}
+	}));
+	const client = new _x402_core_client.x402Client();
+	client.register("eip155:8453", scheme);
+	client.register("eip155:84532", scheme);
+	return client;
+}
+async function createPayment(opts) {
+	const client = buildX402Client(opts.privateKey);
+	const paymentRequired = (0, _x402_core_http.decodePaymentRequiredHeader)(opts.paymentRequiredHeader);
+	return (0, _x402_core_http.encodePaymentSignatureHeader)(await client.createPaymentPayload(paymentRequired));
+}
+
+//#endregion
+exports.buildX402Client = buildX402Client;
+exports.createPayment = createPayment;
+exports.generateWallet = generateWallet;
+exports.getWalletAddress = getWalletAddress;
+exports.signSiwe = signSiwe;

package/dist/index.d.cts

@@ -0,0 +1,32 @@
+import { x402Client } from "@x402/core/client";
+
+//#region src/types.d.ts
+type Hex = `0x${string}`;
+interface WalletInfo {
+  privateKey: Hex;
+  address: Hex;
+}
+interface SignSiweOptions {
+  privateKey: string;
+  expiresAfter?: string;
+  nonce?: string;
+  issuedAt?: string;
+}
+interface CreatePaymentOptions {
+  privateKey: string;
+  paymentRequiredHeader: string;
+}
+//#endregion
+//#region src/lib/siwe.d.ts
+declare function signSiwe(opts: SignSiweOptions): Promise<string>;
+//#endregion
+//#region src/lib/wallet.d.ts
+declare function generateWallet(): WalletInfo;
+declare function getWalletAddress(privateKey: string): Hex;
+//#endregion
+//#region src/lib/payment.d.ts
+declare function buildX402Client(privateKey: string): x402Client;
+declare function createPayment(opts: CreatePaymentOptions): Promise<string>;
+//#endregion
+export { type CreatePaymentOptions, type Hex, type SignSiweOptions, type WalletInfo, buildX402Client, createPayment, generateWallet, getWalletAddress, signSiwe };
+//# sourceMappingURL=index.d.cts.map

package/dist/index.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.cts","names":[],"sources":["../src/types.ts","../src/lib/siwe.ts","../src/lib/wallet.ts","../src/lib/payment.ts"],"mappings":";;;KAAY,GAAA;AAAA,UAEK,UAAA;EACf,UAAA,EAAY,GAAA;EACZ,OAAA,EAAS,GAAA;AAAA;AAAA,UAGM,eAAA;EACf,UAAA;EACA,YAAA;EACA,KAAA;EACA,QAAA;AAAA;AAAA,UAGe,oBAAA;EACf,UAAA;EACA,qBAAA;AAAA;;;iBCNoB,QAAA,CAAS,IAAA,EAAM,eAAA,GAAkB,OAAA;;;iBCWvC,cAAA,CAAA,GAAkB,UAAA;AAAA,iBAMlB,gBAAA,CAAiB,UAAA,WAAqB,GAAA;;;iBClBtC,eAAA,CAAgB,UAAA,WAAkB,UAAA;AAAA,iBA0B5B,aAAA,CAAc,IAAA,EAAM,oBAAA,GAAuB,OAAA"}

package/dist/index.d.mts

@@ -0,0 +1,32 @@
+import { x402Client } from "@x402/core/client";
+
+//#region src/types.d.ts
+type Hex = `0x${string}`;
+interface WalletInfo {
+  privateKey: Hex;
+  address: Hex;
+}
+interface SignSiweOptions {
+  privateKey: string;
+  expiresAfter?: string;
+  nonce?: string;
+  issuedAt?: string;
+}
+interface CreatePaymentOptions {
+  privateKey: string;
+  paymentRequiredHeader: string;
+}
+//#endregion
+//#region src/lib/siwe.d.ts
+declare function signSiwe(opts: SignSiweOptions): Promise<string>;
+//#endregion
+//#region src/lib/wallet.d.ts
+declare function generateWallet(): WalletInfo;
+declare function getWalletAddress(privateKey: string): Hex;
+//#endregion
+//#region src/lib/payment.d.ts
+declare function buildX402Client(privateKey: string): x402Client;
+declare function createPayment(opts: CreatePaymentOptions): Promise<string>;
+//#endregion
+export { type CreatePaymentOptions, type Hex, type SignSiweOptions, type WalletInfo, buildX402Client, createPayment, generateWallet, getWalletAddress, signSiwe };
+//# sourceMappingURL=index.d.mts.map

package/dist/index.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.mts","names":[],"sources":["../src/types.ts","../src/lib/siwe.ts","../src/lib/wallet.ts","../src/lib/payment.ts"],"mappings":";;;KAAY,GAAA;AAAA,UAEK,UAAA;EACf,UAAA,EAAY,GAAA;EACZ,OAAA,EAAS,GAAA;AAAA;AAAA,UAGM,eAAA;EACf,UAAA;EACA,YAAA;EACA,KAAA;EACA,QAAA;AAAA;AAAA,UAGe,oBAAA;EACf,UAAA;EACA,qBAAA;AAAA;;;iBCNoB,QAAA,CAAS,IAAA,EAAM,eAAA,GAAkB,OAAA;;;iBCWvC,cAAA,CAAA,GAAkB,UAAA;AAAA,iBAMlB,gBAAA,CAAiB,UAAA,WAAqB,GAAA;;;iBClBtC,eAAA,CAAgB,UAAA,WAAkB,UAAA;AAAA,iBA0B5B,aAAA,CAAc,IAAA,EAAM,oBAAA,GAAuB,OAAA"}

package/dist/index.mjs

@@ -0,0 +1,92 @@
+import { randomBytes } from "crypto";
+import ms from "ms";
+import { generatePrivateKey, privateKeyToAccount } from "viem/accounts";
+import { existsSync, readFileSync } from "fs";
+import { createPublicClient, http } from "viem";
+import { base } from "viem/chains";
+import { ExactEvmScheme, toClientEvmSigner } from "@x402/evm";
+import { x402Client } from "@x402/core/client";
+import { decodePaymentRequiredHeader, encodePaymentSignatureHeader } from "@x402/core/http";
+
+//#region src/lib/wallet.ts
+const RAW_HEX_RE = /^[0-9a-fA-F]{64}$/;
+function resolvePrivateKey(keyOrPath) {
+	if (keyOrPath.startsWith("0x") || RAW_HEX_RE.test(keyOrPath)) return keyOrPath;
+	if (existsSync(keyOrPath)) return readFileSync(keyOrPath, "utf-8").trim();
+	return keyOrPath;
+}
+function normalizePrivateKey(key) {
+	const resolved = resolvePrivateKey(key);
+	return resolved.startsWith("0x") ? resolved : `0x${resolved}`;
+}
+function generateWallet() {
+	const privateKey = generatePrivateKey();
+	return {
+		privateKey,
+		address: privateKeyToAccount(privateKey).address
+	};
+}
+function getWalletAddress(privateKey) {
+	return privateKeyToAccount(normalizePrivateKey(privateKey)).address;
+}
+
+//#endregion
+//#region src/lib/siwe.ts
+function generateNonce() {
+	return randomBytes(16).toString("hex");
+}
+async function signSiwe(opts) {
+	const account = privateKeyToAccount(normalizePrivateKey(opts.privateKey));
+	const issuedAt = opts.issuedAt ?? (/* @__PURE__ */ new Date()).toISOString();
+	const nonce = opts.nonce ?? generateNonce();
+	const duration = ms(opts.expiresAfter ?? "1h");
+	if (duration === void 0) throw new Error(`Invalid duration: ${opts.expiresAfter}`);
+	const expirationTime = new Date(new Date(issuedAt).getTime() + duration).toISOString();
+	const message = [
+		"x402.alchemy.com wants you to sign in with your Ethereum account:",
+		account.address,
+		"",
+		"Sign in to Alchemy Gateway",
+		"",
+		"URI: https://x402.alchemy.com",
+		"Version: 1",
+		"Chain ID: 8453",
+		`Nonce: ${nonce}`,
+		`Issued At: ${issuedAt}`,
+		`Expiration Time: ${expirationTime}`
+	].join("\n");
+	const signature = await account.signMessage({ message });
+	return `${Buffer.from(message).toString("base64url")}.${signature}`;
+}
+
+//#endregion
+//#region src/lib/payment.ts
+function buildX402Client(privateKey) {
+	const account = privateKeyToAccount(normalizePrivateKey(privateKey));
+	const publicClient = createPublicClient({
+		chain: base,
+		transport: http()
+	});
+	const scheme = new ExactEvmScheme(toClientEvmSigner({
+		address: account.address,
+		signTypedData: async (params) => {
+			return account.signTypedData(params);
+		},
+		readContract: async (params) => {
+			return publicClient.readContract(params);
+		}
+	}));
+	const client = new x402Client();
+	client.register("eip155:8453", scheme);
+	client.register("eip155:84532", scheme);
+	return client;
+}
+async function createPayment(opts) {
+	const client = buildX402Client(opts.privateKey);
+	const paymentRequired = decodePaymentRequiredHeader(opts.paymentRequiredHeader);
+	return encodePaymentSignatureHeader(await client.createPaymentPayload(paymentRequired));
+}
+
+//#endregion
+export { buildX402Client, createPayment, generateWallet, getWalletAddress, signSiwe };
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.mjs","names":[],"sources":["../src/lib/wallet.ts","../src/lib/siwe.ts","../src/lib/payment.ts"],"sourcesContent":["import { readFileSync, existsSync } from \"fs\";\nimport { generatePrivateKey, privateKeyToAccount } from \"viem/accounts\";\nimport type { Hex, WalletInfo } from \"../types.js\";\n\nconst RAW_HEX_RE = /^[0-9a-fA-F]{64}$/;\n\nexport function resolvePrivateKey(keyOrPath: string): string {\n  if (keyOrPath.startsWith(\"0x\") || RAW_HEX_RE.test(keyOrPath)) {\n    return keyOrPath;\n  }\n  if (existsSync(keyOrPath)) {\n    return readFileSync(keyOrPath, \"utf-8\").trim();\n  }\n  return keyOrPath;\n}\n\nexport function normalizePrivateKey(key: string): Hex {\n  const resolved = resolvePrivateKey(key);\n  return resolved.startsWith(\"0x\") ? (resolved as Hex) : (`0x${resolved}` as Hex);\n}\n\nexport function generateWallet(): WalletInfo {\n  const privateKey = generatePrivateKey();\n  const account = privateKeyToAccount(privateKey);\n  return { privateKey, address: account.address };\n}\n\nexport function getWalletAddress(privateKey: string): Hex {\n  const normalized = normalizePrivateKey(privateKey);\n  const account = privateKeyToAccount(normalized);\n  return account.address;\n}\n","import { randomBytes } from \"crypto\";\nimport ms from \"ms\";\nimport { privateKeyToAccount } from \"viem/accounts\";\nimport type { SignSiweOptions } from \"../types.js\";\nimport { normalizePrivateKey } from \"./wallet.js\";\n\nfunction generateNonce(): string {\n  return randomBytes(16).toString(\"hex\");\n}\n\nexport async function signSiwe(opts: SignSiweOptions): Promise<string> {\n  const normalized = normalizePrivateKey(opts.privateKey);\n  const account = privateKeyToAccount(normalized);\n\n  const issuedAt = opts.issuedAt ?? new Date().toISOString();\n  const nonce = opts.nonce ?? generateNonce();\n\n  const duration = ms((opts.expiresAfter ?? \"1h\") as Parameters<typeof ms>[0]);\n  if (duration === undefined) {\n    throw new Error(`Invalid duration: ${opts.expiresAfter}`);\n  }\n  const expirationTime = new Date(new Date(issuedAt).getTime() + duration).toISOString();\n\n  const message = [\n    \"x402.alchemy.com wants you to sign in with your Ethereum account:\",\n    account.address,\n    \"\",\n    \"Sign in to Alchemy Gateway\",\n    \"\",\n    \"URI: https://x402.alchemy.com\",\n    \"Version: 1\",\n    \"Chain ID: 8453\",\n    `Nonce: ${nonce}`,\n    `Issued At: ${issuedAt}`,\n    `Expiration Time: ${expirationTime}`,\n  ].join(\"\\n\");\n\n  const signature = await account.signMessage({ message });\n\n  const encodedMessage = Buffer.from(message).toString(\"base64url\");\n  return `${encodedMessage}.${signature}`;\n}\n","import { createPublicClient, http } from \"viem\";\nimport { base } from \"viem/chains\";\nimport { privateKeyToAccount } from \"viem/accounts\";\nimport { ExactEvmScheme, toClientEvmSigner } from \"@x402/evm\";\nimport { x402Client } from \"@x402/core/client\";\nimport { decodePaymentRequiredHeader, encodePaymentSignatureHeader } from \"@x402/core/http\";\nimport type { CreatePaymentOptions } from \"../types.js\";\nimport { normalizePrivateKey } from \"./wallet.js\";\n\nexport function buildX402Client(privateKey: string) {\n  const normalized = normalizePrivateKey(privateKey);\n  const account = privateKeyToAccount(normalized);\n\n  const publicClient = createPublicClient({\n    chain: base,\n    transport: http(),\n  });\n\n  const signer = toClientEvmSigner({\n    address: account.address,\n    signTypedData: async (params) => {\n      return account.signTypedData(params as Parameters<typeof account.signTypedData>[0]);\n    },\n    readContract: async (params) => {\n      return publicClient.readContract(params as Parameters<typeof publicClient.readContract>[0]);\n    },\n  });\n\n  const scheme = new ExactEvmScheme(signer);\n  const client = new x402Client();\n  client.register(\"eip155:8453\", scheme);\n  client.register(\"eip155:84532\", scheme);\n  return client;\n}\n\nexport async function createPayment(opts: CreatePaymentOptions): Promise<string> {\n  const client = buildX402Client(opts.privateKey);\n  const paymentRequired = decodePaymentRequiredHeader(opts.paymentRequiredHeader);\n  const payload = await client.createPaymentPayload(paymentRequired);\n  return encodePaymentSignatureHeader(payload);\n}\n"],"mappings":";;;;;;;;;;;AAIA,MAAM,aAAa;AAEnB,SAAgB,kBAAkB,WAA2B;AAC3D,KAAI,UAAU,WAAW,KAAK,IAAI,WAAW,KAAK,UAAU,CAC1D,QAAO;AAET,KAAI,WAAW,UAAU,CACvB,QAAO,aAAa,WAAW,QAAQ,CAAC,MAAM;AAEhD,QAAO;;AAGT,SAAgB,oBAAoB,KAAkB;CACpD,MAAM,WAAW,kBAAkB,IAAI;AACvC,QAAO,SAAS,WAAW,KAAK,GAAI,WAAoB,KAAK;;AAG/D,SAAgB,iBAA6B;CAC3C,MAAM,aAAa,oBAAoB;AAEvC,QAAO;EAAE;EAAY,SADL,oBAAoB,WAAW,CACT;EAAS;;AAGjD,SAAgB,iBAAiB,YAAyB;AAGxD,QADgB,oBADG,oBAAoB,WAAW,CACH,CAChC;;;;;ACxBjB,SAAS,gBAAwB;AAC/B,QAAO,YAAY,GAAG,CAAC,SAAS,MAAM;;AAGxC,eAAsB,SAAS,MAAwC;CAErE,MAAM,UAAU,oBADG,oBAAoB,KAAK,WAAW,CACR;CAE/C,MAAM,WAAW,KAAK,6BAAY,IAAI,MAAM,EAAC,aAAa;CAC1D,MAAM,QAAQ,KAAK,SAAS,eAAe;CAE3C,MAAM,WAAW,GAAI,KAAK,gBAAgB,KAAkC;AAC5E,KAAI,aAAa,OACf,OAAM,IAAI,MAAM,qBAAqB,KAAK,eAAe;CAE3D,MAAM,iBAAiB,IAAI,KAAK,IAAI,KAAK,SAAS,CAAC,SAAS,GAAG,SAAS,CAAC,aAAa;CAEtF,MAAM,UAAU;EACd;EACA,QAAQ;EACR;EACA;EACA;EACA;EACA;EACA;EACA,UAAU;EACV,cAAc;EACd,oBAAoB;EACrB,CAAC,KAAK,KAAK;CAEZ,MAAM,YAAY,MAAM,QAAQ,YAAY,EAAE,SAAS,CAAC;AAGxD,QAAO,GADgB,OAAO,KAAK,QAAQ,CAAC,SAAS,YAAY,CACxC,GAAG;;;;;AC/B9B,SAAgB,gBAAgB,YAAoB;CAElD,MAAM,UAAU,oBADG,oBAAoB,WAAW,CACH;CAE/C,MAAM,eAAe,mBAAmB;EACtC,OAAO;EACP,WAAW,MAAM;EAClB,CAAC;CAYF,MAAM,SAAS,IAAI,eAVJ,kBAAkB;EAC/B,SAAS,QAAQ;EACjB,eAAe,OAAO,WAAW;AAC/B,UAAO,QAAQ,cAAc,OAAsD;;EAErF,cAAc,OAAO,WAAW;AAC9B,UAAO,aAAa,aAAa,OAA0D;;EAE9F,CAAC,CAEuC;CACzC,MAAM,SAAS,IAAI,YAAY;AAC/B,QAAO,SAAS,eAAe,OAAO;AACtC,QAAO,SAAS,gBAAgB,OAAO;AACvC,QAAO;;AAGT,eAAsB,cAAc,MAA6C;CAC/E,MAAM,SAAS,gBAAgB,KAAK,WAAW;CAC/C,MAAM,kBAAkB,4BAA4B,KAAK,sBAAsB;AAE/E,QAAO,6BADS,MAAM,OAAO,qBAAqB,gBAAgB,CACtB"}

package/package.json

@@ -0,0 +1,57 @@
+{
+  "name": "@alchemy/x402",
+  "version": "0.2.0",
+  "description": "CLI and library for Alchemy x402 authentication and payments",
+  "type": "module",
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./dist/index.d.mts",
+        "default": "./dist/index.mjs"
+      },
+      "require": {
+        "types": "./dist/index.d.cts",
+        "default": "./dist/index.cjs"
+      }
+    }
+  },
+  "bin": {
+    "alchemy-x402": "./dist/cli/index.mjs"
+  },
+  "dependencies": {
+    "@commander-js/extra-typings": "^14.0.0",
+    "@x402/core": "^2.4.0",
+    "@x402/evm": "^2.4.0",
+    "@x402/fetch": "^2.4.0",
+    "commander": "^14.0.3",
+    "ms": "^2.1.3",
+    "viem": "^2.46.3"
+  },
+  "devDependencies": {
+    "@changesets/changelog-github": "^0.5.2",
+    "@changesets/cli": "^2.29.8",
+    "@types/ms": "^2.1.0",
+    "@types/node": "^25.3.0",
+    "tsdown": "^0.20.3",
+    "typescript": "^5.9.3",
+    "vitest": "^4.0.18"
+  },
+  "files": [
+    "dist"
+  ],
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "license": "MIT",
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "tsdown",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run",
+    "changeset": "changeset",
+    "version-packages": "changeset version",
+    "release": "pnpm run build && changeset publish"
+  }
+}