@aomi-labs/client 0.1.13 → 0.1.15

package/README.md

@@ -63,30 +63,30 @@ new Session(clientOptions: AomiClientOptions, sessionOptions?: SessionOptions)
 new Session(client: AomiClient, sessionOptions?: SessionOptions)
 ```
 
-| Option | Default | Description |
-|--------|---------|-------------|
-| `sessionId` | `crypto.randomUUID()` | Thread/session ID |
-| `namespace` | `"default"` | Backend namespace |
-| `publicKey` | — | Wallet address |
-| `apiKey` | — | API key for private namespaces |
-| `userState` | — | Arbitrary user state sent with requests |
-| `pollIntervalMs` | `500` | Polling interval in ms |
-| `logger` | — | Pass `console` for debug output |
+| Option           | Default               | Description                             |
+| ---------------- | --------------------- | --------------------------------------- |
+| `sessionId`      | `crypto.randomUUID()` | Thread/session ID                       |
+| `namespace`      | `"default"`           | Backend namespace                       |
+| `publicKey`      | —                     | Wallet address                          |
+| `apiKey`         | —                     | API key for private namespaces          |
+| `userState`      | —                     | Arbitrary user state sent with requests |
+| `pollIntervalMs` | `500`                 | Polling interval in ms                  |
+| `logger`         | —                     | Pass `console` for debug output         |
 
 #### Methods
 
-| Method | Description |
-|--------|-------------|
-| `send(message)` | Send a message, wait for completion, return `{ messages, title }` |
-| `sendAsync(message)` | Send without waiting — poll in background, listen via events |
-| `resolve(id, result)` | Resolve a pending wallet request |
-| `reject(id, reason?)` | Reject a pending wallet request |
-| `interrupt()` | Cancel current processing |
-| `close()` | Stop polling, unsubscribe SSE, clean up |
-| `getMessages()` | Current messages |
-| `getTitle()` | Current session title |
-| `getPendingRequests()` | Pending wallet requests |
-| `getIsProcessing()` | Whether the agent is processing |
+| Method                 | Description                                                       |
+| ---------------------- | ----------------------------------------------------------------- |
+| `send(message)`        | Send a message, wait for completion, return `{ messages, title }` |
+| `sendAsync(message)`   | Send without waiting — poll in background, listen via events      |
+| `resolve(id, result)`  | Resolve a pending wallet request                                  |
+| `reject(id, reason?)`  | Reject a pending wallet request                                   |
+| `interrupt()`          | Cancel current processing                                         |
+| `close()`              | Stop polling, unsubscribe SSE, clean up                           |
+| `getMessages()`        | Current messages                                                  |
+| `getTitle()`           | Current session title                                             |
+| `getPendingRequests()` | Pending wallet requests                                           |
+| `getIsProcessing()`    | Whether the agent is processing                                   |
 
 #### Events
 
@@ -119,11 +119,15 @@ When installed globally or in a project, the executable name is `aomi`.
 For one-off usage, run commands via `npx @aomi-labs/client ...`.
 
 ```bash
+npx @aomi-labs/client --version                         # print installed CLI version
 npx @aomi-labs/client chat "swap 1 ETH for USDC"        # talk to the agent
 npx @aomi-labs/client chat "swap 1 ETH for USDC" --model claude-sonnet-4
 npx @aomi-labs/client chat "swap 1 ETH" --verbose        # stream tool calls + responses live
-npx @aomi-labs/client models                             # list available models
+npx @aomi-labs/client app list                           # list available apps
+npx @aomi-labs/client model list                         # list available models
 npx @aomi-labs/client model set claude-sonnet-4          # switch the current session model
+npx @aomi-labs/client secret list                        # list configured secret handles
+npx @aomi-labs/client --secret ALCHEMY_API_KEY=...       # ingest a secret for the active session
 npx @aomi-labs/client log                                # show full conversation history
 npx @aomi-labs/client tx                                 # list pending + signed txs
 npx @aomi-labs/client sign tx-1                          # sign a specific pending tx
@@ -150,7 +154,7 @@ session don't need it again.
 The CLI can discover and switch backend models for the active session:
 
 ```bash
-$ npx @aomi-labs/client models
+$ npx @aomi-labs/client model list
 claude-sonnet-4
 gpt-5
 
@@ -164,6 +168,29 @@ $ npx @aomi-labs/client chat "hello" --model claude-sonnet-4
 successful backend update. `aomi chat --model ...` applies the requested model
 before sending the message and updates that persisted state as well.
 
+### Secret management
+
+The CLI supports per-session secret ingestion. This lets the backend use opaque
+handles instead of raw secret values:
+
+```bash
+$ npx @aomi-labs/client --secret ALCHEMY_API_KEY=sk_live_123
+Configured 1 secret for session 7f8a...
+ALCHEMY_API_KEY  $SECRET:ALCHEMY_API_KEY
+
+$ npx @aomi-labs/client --secret ALCHEMY_API_KEY=sk_live_123 chat "simulate a swap on Base"
+```
+
+You can inspect or clear the current session's secret handles:
+
+```bash
+$ npx @aomi-labs/client secret list
+ALCHEMY_API_KEY  $SECRET:ALCHEMY_API_KEY
+
+$ npx @aomi-labs/client secret clear
+Cleared all secrets for the active session.
+```
+
 ### Transaction flow
 
 The backend builds transactions; the CLI persists and signs them:
@@ -252,17 +279,19 @@ $ npx @aomi-labs/client log
 
 All config can be passed as flags (which take priority over env vars):
 
-| Flag | Env Variable | Default | Description |
-|------|-------------|---------|-------------|
-| `--backend-url` | `AOMI_BASE_URL` | `https://api.aomi.dev` | Backend URL |
-| `--api-key` | `AOMI_API_KEY` | — | API key for non-default apps |
-| `--app` | `AOMI_APP` | `default` | App |
-| `--model` | `AOMI_MODEL` | — | Model rig to apply before chat |
-| `--public-key` | `AOMI_PUBLIC_KEY` | — | Wallet address (tells agent your wallet) |
-| `--private-key` | `PRIVATE_KEY` | — | Hex private key for `aomi sign` |
-| `--rpc-url` | `CHAIN_RPC_URL` | — | RPC URL for transaction submission |
-| `--chain` | `AOMI_CHAIN_ID` | `1` | Chain ID (1, 137, 42161, 8453, 10, 11155111) |
-| `--verbose`, `-v` | — | — | Stream tool calls and agent responses live |
+| Flag                    | Env Variable      | Default                | Description                                  |
+| ----------------------- | ----------------- | ---------------------- | -------------------------------------------- |
+| `--backend-url`         | `AOMI_BASE_URL`   | `https://api.aomi.dev` | Backend URL                                  |
+| `--api-key`             | `AOMI_API_KEY`    | —                      | API key for non-default apps                 |
+| `--app`                 | `AOMI_APP`        | `default`              | App                                          |
+| `--model`               | `AOMI_MODEL`      | —                      | Model rig to apply before chat               |
+| `--secret <NAME=value>` | —                 | —                      | Ingest secret values for the active session  |
+| `--public-key`          | `AOMI_PUBLIC_KEY` | —                      | Wallet address (tells agent your wallet)     |
+| `--private-key`         | `PRIVATE_KEY`     | —                      | Hex private key for `aomi sign`              |
+| `--rpc-url`             | `CHAIN_RPC_URL`   | —                      | RPC URL for transaction submission           |
+| `--chain`               | `AOMI_CHAIN_ID`   | `1`                    | Chain ID (1, 137, 42161, 8453, 10, 11155111) |
+| `--verbose`, `-v`       | —                 | —                      | Stream tool calls and agent responses live   |
+| `--version`, `-V`       | —                 | —                      | Print the installed CLI version              |
 
 ```bash
 # Use a custom backend
@@ -293,14 +322,16 @@ The CLI is **not** a long-running process — each command starts, runs, and
 exits. Conversation history lives on the backend. Between invocations, the CLI
 persists local state under `AOMI_STATE_DIR` or `~/.aomi` by default:
 
-| Field | Purpose |
-|-------|---------|
-| `sessionId` | Which conversation to continue |
-| `model` | Last successfully applied model for the session |
-| `publicKey` | Wallet address (from `--public-key`) |
-| `chainId` | Active chain ID (from `--chain`) |
-| `pendingTxs` | Unsigned transactions waiting for `aomi sign <id>` |
-| `signedTxs` | Completed transactions with hashes/signatures |
+| Field           | Purpose                                                |
+| --------------- | ------------------------------------------------------ |
+| `sessionId`     | Which conversation to continue                         |
+| `clientId`      | Stable client identity used for session secret handles |
+| `model`         | Last successfully applied model for the session        |
+| `publicKey`     | Wallet address (from `--public-key`)                   |
+| `chainId`       | Active chain ID (from `--chain`)                       |
+| `secretHandles` | Opaque handles returned for ingested secrets           |
+| `pendingTxs`    | Unsigned transactions waiting for `aomi sign <id>`     |
+| `signedTxs`     | Completed transactions with hashes/signatures          |
 
 ```
 $ npx @aomi-labs/client chat "hello"           # creates session, saves sessionId

package/dist/cli.js

@@ -19,6 +19,46 @@ var __spreadValues = (a, b) => {
 };
 var __spreadProps = (a, b) => __defProps(a, __getOwnPropDescs(b));
 
+// package.json
+var package_default = {
+  name: "@aomi-labs/client",
+  version: "0.1.15",
+  description: "Platform-agnostic TypeScript client for the Aomi backend API",
+  type: "module",
+  main: "./dist/index.cjs",
+  module: "./dist/index.js",
+  types: "./dist/index.d.ts",
+  bin: {
+    aomi: "./dist/cli.js"
+  },
+  exports: {
+    ".": {
+      import: {
+        types: "./dist/index.d.ts",
+        default: "./dist/index.js"
+      },
+      require: {
+        types: "./dist/index.d.cts",
+        default: "./dist/index.cjs"
+      }
+    }
+  },
+  files: [
+    "dist",
+    "skills",
+    "README.md"
+  ],
+  scripts: {
+    build: "tsup",
+    "clean:dist": "rm -rf dist"
+  },
+  dependencies: {
+    "@getpara/aa-alchemy": "2.18.0",
+    "@getpara/aa-pimlico": "2.18.0",
+    viem: "^2.40.3"
+  }
+};
+
 // src/cli/errors.ts
 var CliExit = class extends Error {
   constructor(code) {
@@ -93,22 +133,38 @@ function parseAAMode(value) {
   }
   fatal("Unsupported AA mode. Use `4337` or `7702`.");
 }
+function parseSecret(value, secrets) {
+  const eqIdx = value.indexOf("=");
+  if (eqIdx > 0) {
+    secrets[value.slice(0, eqIdx)] = value.slice(eqIdx + 1);
+  }
+}
 function parseArgs(argv) {
   const raw = argv.slice(2);
-  const command = raw[0] && !raw[0].startsWith("--") ? raw[0] : void 0;
+  const command = raw[0] && !raw[0].startsWith("-") ? raw[0] : void 0;
   const rest = command ? raw.slice(1) : raw;
   const positional = [];
   const flags = {};
+  const secrets = {};
   for (let i = 0; i < rest.length; i++) {
     const arg = rest[i];
     if (arg.startsWith("--") && arg.includes("=")) {
       const [key, ...val] = arg.slice(2).split("=");
-      flags[key] = val.join("=");
+      const value = val.join("=");
+      if (key === "secret") {
+        parseSecret(value, secrets);
+      } else {
+        flags[key] = value;
+      }
     } else if (arg.startsWith("--")) {
       const key = arg.slice(2);
       const next = rest[i + 1];
       if (next && !next.startsWith("-")) {
-        flags[key] = next;
+        if (key === "secret") {
+          parseSecret(next, secrets);
+        } else {
+          flags[key] = next;
+        }
         i++;
       } else {
         flags[key] = "true";
@@ -119,7 +175,7 @@ function parseArgs(argv) {
       positional.push(arg);
     }
   }
-  return { command, positional, flags };
+  return { command, positional, flags, secrets };
 }
 function getConfig(parsed) {
   var _a3, _b, _c, _d, _e, _f, _g, _h, _i, _j, _k, _l;
@@ -148,6 +204,7 @@ function getConfig(parsed) {
     privateKey: (_j = parsed.flags["private-key"]) != null ? _j : process.env.PRIVATE_KEY,
     chainRpcUrl: (_k = parsed.flags["rpc-url"]) != null ? _k : process.env.CHAIN_RPC_URL,
     chain: parseChainId((_l = parsed.flags["chain"]) != null ? _l : process.env.AOMI_CHAIN_ID),
+    secrets: parsed.secrets,
     execution,
     aaProvider,
     aaMode
@@ -198,6 +255,7 @@ function toSessionFilePath(localId) {
 function toCliSessionState(stored) {
   return {
     sessionId: stored.sessionId,
+    clientId: stored.clientId,
     baseUrl: stored.baseUrl,
     app: stored.app,
     model: stored.model,
@@ -205,7 +263,8 @@ function toCliSessionState(stored) {
     publicKey: stored.publicKey,
     chainId: stored.chainId,
     pendingTxs: stored.pendingTxs,
-    signedTxs: stored.signedTxs
+    signedTxs: stored.signedTxs,
+    secretHandles: stored.secretHandles
   };
 }
 function readStoredSession(path) {
@@ -1782,6 +1841,22 @@ async function applyModelSelection(session, state, model) {
   state.model = model;
   writeState(state);
 }
+async function ingestSecretsIfPresent(runtime, state, client) {
+  var _a3;
+  const secrets = runtime.config.secrets;
+  if (Object.keys(secrets).length === 0) return {};
+  if (!state.clientId) {
+    state.clientId = crypto.randomUUID();
+    writeState(state);
+  }
+  const response = await client.ingestSecrets(
+    state.clientId,
+    secrets
+  );
+  state.secretHandles = __spreadValues(__spreadValues({}, (_a3 = state.secretHandles) != null ? _a3 : {}), response.handles);
+  writeState(state);
+  return response.handles;
+}
 async function applyRequestedModelIfPresent(runtime, session, state) {
   const requestedModel = runtime.config.model;
   if (!requestedModel || requestedModel === state.model) {
@@ -2641,6 +2716,70 @@ function closeCommand(runtime) {
   console.log("Session closed");
 }
 
+// src/cli/commands/secrets.ts
+async function ingestSecretsCommand(runtime) {
+  const secretEntries = Object.entries(runtime.config.secrets);
+  if (secretEntries.length === 0) {
+    fatal("Usage: aomi --secret NAME=value [NAME=value ...]");
+  }
+  const { session, state } = getOrCreateSession(runtime);
+  try {
+    const handles = await ingestSecretsIfPresent(
+      runtime,
+      state,
+      session.client
+    );
+    const names = Object.keys(handles).sort();
+    console.log(
+      `Configured ${names.length} secret${names.length === 1 ? "" : "s"} for session ${state.sessionId}.`
+    );
+    for (const name of names) {
+      console.log(`${name}  ${handles[name]}`);
+    }
+    printDataFileLocation();
+  } finally {
+    session.close();
+  }
+}
+async function secretCommand(runtime) {
+  var _a3;
+  const subcommand = runtime.parsed.positional[0];
+  if (!subcommand || subcommand === "list") {
+    const state = readState();
+    if (!state) {
+      console.log("No active session");
+      printDataFileLocation();
+      return;
+    }
+    const secretHandles = (_a3 = state.secretHandles) != null ? _a3 : {};
+    const names = Object.keys(secretHandles).sort();
+    if (names.length === 0) {
+      console.log("No secrets configured.");
+      printDataFileLocation();
+      return;
+    }
+    for (const name of names) {
+      console.log(`${name}  ${secretHandles[name]}`);
+    }
+    printDataFileLocation();
+    return;
+  }
+  if (subcommand === "clear") {
+    const { session, state } = getOrCreateSession(runtime);
+    try {
+      await session.client.clearSecrets(state.clientId);
+      state.secretHandles = {};
+      writeState(state);
+      console.log("Cleared all secrets for the active session.");
+      printDataFileLocation();
+    } finally {
+      session.close();
+    }
+    return;
+  }
+  fatal("Usage: aomi secret list\n       aomi secret clear");
+}
+
 // src/cli/commands/sessions.ts
 async function fetchRemoteSessionStats(record) {
   var _a3, _b;
@@ -3665,6 +3804,7 @@ async function signCommand(runtime) {
 }
 
 // src/cli/main.ts
+var CLI_VERSION = package_default.version;
 function printUsage() {
   console.log(`
 aomi \u2014 CLI client for Aomi on-chain agent
@@ -3688,9 +3828,12 @@ Usage:
   aomi tx               List pending and signed transactions
   aomi sign <tx-id> [<tx-id> ...] [--eoa | --aa] [--aa-provider <name>] [--aa-mode <mode>]
                         Sign and submit a pending transaction
+  aomi secret list      List configured secrets for the active session
+  aomi secret clear     Clear all secrets for the active session
   aomi status           Show current session state
   aomi events           List system events
   aomi close            Close the current session
+  aomi --version        Print the installed CLI version
 
 Options:
   --backend-url <url>   Backend URL (default: https://api.aomi.dev)
@@ -3700,7 +3843,9 @@ Options:
   --public-key <addr>   Wallet address (so the agent knows your wallet)
   --private-key <key>   Hex private key for signing
   --rpc-url <url>       RPC URL for transaction submission
+  --secret NAME=value   Ingest a secret (repeatable, e.g. --secret X_API_KEY=abc)
   --verbose, -v         Show tool calls and streaming output (for chat)
+  --version, -V         Print the installed CLI version
 
 Sign options:
   aomi sign <tx-id> --eoa
@@ -3734,8 +3879,9 @@ Environment (overridden by flags):
 `.trim());
 }
 async function main(runtime) {
-  var _a3;
-  const command = (_a3 = runtime.parsed.command) != null ? _a3 : runtime.parsed.flags["help"] || runtime.parsed.flags["h"] ? "help" : void 0;
+  var _a3, _b, _c;
+  const hasSecrets = Object.keys(runtime.parsed.secrets).length > 0;
+  const command = (_c = (_b = (_a3 = runtime.parsed.command) != null ? _a3 : hasSecrets ? "ingest-secrets" : void 0) != null ? _b : runtime.parsed.flags["version"] || runtime.parsed.flags["V"] ? "version" : void 0) != null ? _c : runtime.parsed.flags["help"] || runtime.parsed.flags["h"] ? "help" : void 0;
   switch (command) {
     case "chat":
       await chatCommand(runtime);
@@ -3767,9 +3913,18 @@ async function main(runtime) {
     case "events":
       await eventsCommand(runtime);
       break;
+    case "secret":
+      await secretCommand(runtime);
+      break;
+    case "ingest-secrets":
+      await ingestSecretsCommand(runtime);
+      break;
     case "close":
       closeCommand(runtime);
       break;
+    case "version":
+      console.log(CLI_VERSION);
+      break;
     case "help":
       printUsage();
       break;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aomi-labs/client",
-  "version": "0.1.13",
+  "version": "0.1.15",
   "description": "Platform-agnostic TypeScript client for the Aomi backend API",
   "type": "module",
   "main": "./dist/index.cjs",

package/skills/aomi-transact/SKILL.md

@@ -5,13 +5,14 @@ description: >
   check balances or prices, build wallet requests, confirm quotes or routes,
   sign transactions or EIP-712 payloads, switch apps or chains, or execute
   swaps, transfers, and DeFi actions on-chain. Covers Aomi chat, transaction
-  review, AA-first signing with automatic EOA fallback, and session controls.
-compatibility: "Requires @aomi-labs/client (`npm install -g @aomi-labs/client`). CLI executable is `aomi`. Requires viem for signing (`npm install viem`). Use AOMI_APP / --app, AOMI_MODEL / --model, AOMI_CHAIN_ID / --chain, CHAIN_RPC_URL / --rpc-url, and AOMI_STATE_DIR for local session storage."
+  review, AA-first signing with automatic EOA fallback, session controls, and
+  per-session secret ingestion.
+compatibility: "Requires @aomi-labs/client (`npm install -g @aomi-labs/client`). CLI executable is `aomi`. Requires viem for signing (`npm install viem`). Use AOMI_APP / --app, AOMI_MODEL / --model, AOMI_CHAIN_ID / --chain, CHAIN_RPC_URL / --rpc-url, optional --secret NAME=value ingestion, and AOMI_STATE_DIR for local session storage."
 license: MIT
 allowed-tools: Bash
 metadata:
   author: aomi-labs
-  version: "0.4"
+  version: "0.5"
 ---
 
 # Aomi Transact
@@ -26,12 +27,14 @@ backend. Local session data lives under `AOMI_STATE_DIR` or `~/.aomi`.
 - The user wants balances, prices, routes, quotes, or transaction status.
 - The user wants to build, confirm, sign, or broadcast wallet requests.
 - The user wants to inspect or switch apps, models, chains, or sessions.
+- The user wants to inject API keys or other backend secrets for the current session.
 
 ## Hard Rules
 
 - Never print secrets verbatim in normal status, preflight, or confirmation output.
 - Treat `PRIVATE_KEY`, `AOMI_API_KEY`, `ALCHEMY_API_KEY`, `PIMLICO_API_KEY`, and private RPC URLs as secrets.
 - If the user provides a private key or API key, do not repeat it back unless they explicitly ask for that exact value to be reformatted.
+- Prefer `aomi --secret NAME=value ...` over stuffing provider API keys into normal chat text.
 - Do not sign anything unless the CLI has actually queued a wallet request and you can identify its `tx-N` ID.
 - If `PRIVATE_KEY` is set in the environment, do not also pass `--private-key` unless you intentionally want to override the environment value.
 - `--public-key` must match the address derived from the signing key. If they differ, `aomi sign` will update the session to the signer address.
@@ -45,6 +48,7 @@ backend. Local session data lives under `AOMI_STATE_DIR` or `~/.aomi`.
 Run this once at the start of the session:
 
 ```bash
+aomi --version
 aomi status 2>/dev/null || echo "no session"
 ```
 
@@ -75,6 +79,7 @@ aomi tx
 aomi log
 aomi status
 aomi events
+aomi --version
 aomi app list
 aomi app current
 aomi model list
@@ -89,8 +94,29 @@ Notes:
 - Quote the chat message.
 - Use `--verbose` when debugging tool calls or streaming behavior.
 - Pass `--public-key` on the first wallet-aware chat if the backend needs the user's address.
+- Use `aomi secret list` to inspect configured secret handles for the active session.
 - `aomi close` wipes the active local session pointer and starts a fresh thread next time.
 
+### Secret Ingestion
+
+Use this when the backend or selected app needs API keys, provider tokens, or
+other named secrets for the current session:
+
+```bash
+aomi --secret ALCHEMY_API_KEY=sk_live_123
+aomi --secret ALCHEMY_API_KEY=sk_live_123 chat "simulate a swap on Base"
+aomi secret list
+aomi secret clear
+```
+
+Important behavior:
+
+- `aomi --secret NAME=value` with no command ingests secrets into the active session and exits.
+- `aomi --secret NAME=value chat "..."` ingests first, then runs the command.
+- `aomi secret list` prints secret handle names, not raw values.
+- `aomi secret clear` removes all secrets for the active session.
+- Do not combine `--secret` with `aomi secret clear`.
+
 ### Building Wallet Requests
 
 Use the first chat turn to give the agent the task and, if relevant, the wallet
@@ -203,12 +229,16 @@ aomi tx
 aomi log
 aomi status
 aomi events
+aomi secret list
+aomi secret clear
 ```
 
 - `aomi tx` inspects pending and signed requests.
 - `aomi log` replays conversation and tool output.
 - `aomi status` shows the current session summary.
 - `aomi events` shows raw backend system events.
+- `aomi secret list` shows configured secret handles for the active session.
+- `aomi secret clear` removes all configured secrets for the active session.
 
 ### App And Model Commands
 
@@ -253,10 +283,10 @@ aomi close
 
 ### AA Providers
 
-| Provider | Flag | Env Var | Notes |
-|----------|------|---------|-------|
-| Alchemy | `--aa-provider alchemy` | `ALCHEMY_API_KEY` | Supports sponsorship, 4337, 7702 |
-| Pimlico | `--aa-provider pimlico` | `PIMLICO_API_KEY` | Supports 4337 and 7702 |
+| Provider | Flag                    | Env Var           | Notes                            |
+| -------- | ----------------------- | ----------------- | -------------------------------- |
+| Alchemy  | `--aa-provider alchemy` | `ALCHEMY_API_KEY` | Supports sponsorship, 4337, 7702 |
+| Pimlico  | `--aa-provider pimlico` | `PIMLICO_API_KEY` | Supports 4337 and 7702           |
 
 Provider selection rules:
 
@@ -266,20 +296,20 @@ Provider selection rules:
 
 ### AA Modes
 
-| Mode | Flag | Meaning |
-|------|------|---------|
+| Mode   | Flag             | Meaning                          |
+| ------ | ---------------- | -------------------------------- |
 | `4337` | `--aa-mode 4337` | Bundler-based smart account flow |
-| `7702` | `--aa-mode 7702` | Delegated execution flow |
+| `7702` | `--aa-mode 7702` | Delegated execution flow         |
 
 ### Default Chain Modes
 
-| Chain | ID | Default AA Mode |
-|-------|----|-----------------|
-| Ethereum | 1 | 7702 |
-| Polygon | 137 | 4337 |
-| Arbitrum | 42161 | 4337 |
-| Base | 8453 | 4337 |
-| Optimism | 10 | 4337 |
+| Chain    | ID    | Default AA Mode |
+| -------- | ----- | --------------- |
+| Ethereum | 1     | 7702            |
+| Polygon  | 137   | 4337            |
+| Arbitrum | 42161 | 4337            |
+| Base     | 8453  | 4337            |
+| Optimism | 10    | 4337            |
 
 ### Sponsorship
 
@@ -299,14 +329,14 @@ Default signing behavior for Alchemy:
 
 ### Supported Chains
 
-| Chain | ID |
-|-------|----|
-| Ethereum | 1 |
-| Polygon | 137 |
-| Arbitrum One | 42161 |
-| Base | 8453 |
-| Optimism | 10 |
-| Sepolia | 11155111 |
+| Chain        | ID       |
+| ------------ | -------- |
+| Ethereum     | 1        |
+| Polygon      | 137      |
+| Arbitrum One | 42161    |
+| Base         | 8453     |
+| Optimism     | 10       |
+| Sepolia      | 11155111 |
 
 ### RPC Guidance By Chain
 
@@ -331,42 +361,42 @@ Practical rule:
 
 All config can be passed as flags. Flags override environment variables.
 
-| Flag | Env Var | Default | Purpose |
-|------|---------|---------|---------|
-| `--backend-url` | `AOMI_BASE_URL` | `https://api.aomi.dev` | Backend URL |
-| `--api-key` | `AOMI_API_KEY` | none | API key for non-default apps |
-| `--app` | `AOMI_APP` | `default` | Backend app |
-| `--model` | `AOMI_MODEL` | backend default | Session model |
-| `--public-key` | `AOMI_PUBLIC_KEY` | none | Wallet address for chat/session context |
-| `--private-key` | `PRIVATE_KEY` | none | Signing key for `aomi sign` |
-| `--rpc-url` | `CHAIN_RPC_URL` | chain RPC default | RPC override for signing |
-| `--chain` | `AOMI_CHAIN_ID` | `1` | Active wallet chain |
-| `--aa-provider` | `AOMI_AA_PROVIDER` | auto | AA provider override |
-| `--aa-mode` | `AOMI_AA_MODE` | chain default | AA mode override |
+| Flag            | Env Var            | Default                | Purpose                                 |
+| --------------- | ------------------ | ---------------------- | --------------------------------------- |
+| `--backend-url` | `AOMI_BASE_URL`    | `https://api.aomi.dev` | Backend URL                             |
+| `--api-key`     | `AOMI_API_KEY`     | none                   | API key for non-default apps            |
+| `--app`         | `AOMI_APP`         | `default`              | Backend app                             |
+| `--model`       | `AOMI_MODEL`       | backend default        | Session model                           |
+| `--public-key`  | `AOMI_PUBLIC_KEY`  | none                   | Wallet address for chat/session context |
+| `--private-key` | `PRIVATE_KEY`      | none                   | Signing key for `aomi sign`             |
+| `--rpc-url`     | `CHAIN_RPC_URL`    | chain RPC default      | RPC override for signing                |
+| `--chain`       | `AOMI_CHAIN_ID`    | `1`                    | Active wallet chain                     |
+| `--aa-provider` | `AOMI_AA_PROVIDER` | auto                   | AA provider override                    |
+| `--aa-mode`     | `AOMI_AA_MODE`     | chain default          | AA mode override                        |
 
 ### AA Provider Credentials
 
-| Env Var | Purpose |
-|---------|---------|
-| `ALCHEMY_API_KEY` | Enables Alchemy AA |
+| Env Var                 | Purpose                             |
+| ----------------------- | ----------------------------------- |
+| `ALCHEMY_API_KEY`       | Enables Alchemy AA                  |
 | `ALCHEMY_GAS_POLICY_ID` | Optional Alchemy sponsorship policy |
-| `PIMLICO_API_KEY` | Enables Pimlico AA |
+| `PIMLICO_API_KEY`       | Enables Pimlico AA                  |
 
 `ALCHEMY_API_KEY` can also be used to construct chain-specific signing RPCs:
 
-| Chain | Example Alchemy RPC |
-|-------|---------------------|
-| Ethereum | `https://eth-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>` |
-| Polygon | `https://polygon-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>` |
-| Arbitrum | `https://arb-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>` |
-| Base | `https://base-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>` |
-| Optimism | `https://opt-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>` |
-| Sepolia | `https://eth-sepolia.g.alchemy.com/v2/<ALCHEMY_API_KEY>` |
+| Chain    | Example Alchemy RPC                                          |
+| -------- | ------------------------------------------------------------ |
+| Ethereum | `https://eth-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>`     |
+| Polygon  | `https://polygon-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>` |
+| Arbitrum | `https://arb-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>`     |
+| Base     | `https://base-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>`    |
+| Optimism | `https://opt-mainnet.g.alchemy.com/v2/<ALCHEMY_API_KEY>`     |
+| Sepolia  | `https://eth-sepolia.g.alchemy.com/v2/<ALCHEMY_API_KEY>`     |
 
 ### Storage
 
-| Env Var | Default | Purpose |
-|---------|---------|---------|
+| Env Var          | Default   | Purpose                                |
+| ---------------- | --------- | -------------------------------------- |
 | `AOMI_STATE_DIR` | `~/.aomi` | Root directory for local session state |
 
 Storage layout by default: