@ar.io/wayfinder-core 1.9.0 → 1.9.2

package/LICENSE

@@ -186,7 +186,7 @@ APPENDIX: How to apply the Apache License to your work.
       same "printed page" as the copyright notice for easier
       identification within third-party archives.
 
-Copyright [2024] [Permanent Data Solutions, Inc.]
+Copyright 2025 Permanent Data Solutions, Inc.
 
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.

package/README.md

@@ -61,7 +61,7 @@ import {
 
 const wayfinder = createWayfinderClient({
   verificationStrategy: new HashVerificationStrategy({
-    trustedGateways: [new URL('https://permagate.io')],
+    trustedGateways: [new URL('https://turbo-gateway.com')],
   }),
   strict: true, // Fail requests on verification errors
 });
@@ -96,7 +96,7 @@ import { createVerificationStrategy } from '@ar.io/wayfinder-core';
 // Create a hash verification strategy
 const hashStrategy = createVerificationStrategy({
   strategy: 'hash',
-  trustedGateways: [new URL('https://permagate.io')],
+  trustedGateways: [new URL('https://turbo-gateway.com')],
   logger: myLogger,
 });
 
@@ -199,7 +199,7 @@ Fetches a dynamic list of trusted peer gateways from an AR.IO gateway's `/ar-io/
 import { TrustedPeersGatewaysProvider } from '@ar.io/wayfinder-core';
 
 const gatewayProvider = new TrustedPeersGatewaysProvider({
-  trustedGateway: 'https://arweave.net',
+  trustedGateway: 'https://turbo-gateway.com',
 });
 ```
 
@@ -234,11 +234,11 @@ const gatewayProvider = new CompositeGatewaysProvider({
     }),
     // Fallback to trusted peers if network fetch fails
     new TrustedPeersGatewaysProvider({
-      trustedGateway: 'https://arweave.net',
+      trustedGateway: 'https://turbo-gateway.com',
     }),
     // Final fallback to static list
     new StaticGatewaysProvider({
-      gateways: ['https://arweave.net', 'https://permagate.io'],
+      gateways: ['https://turbo-gateway.com', 'https://g8way.io'],
     }),
   ],
 });
@@ -543,7 +543,7 @@ const wayfinder = new Wayfinder({
   verificationSettings: {
     enabled: true,
     strategy: new HashVerificationStrategy({
-      trustedGateways: [new URL('https://permagate.io')],
+      trustedGateways: [new URL('https://turbo-gateway.com')],
     }),
   },
 });
@@ -560,7 +560,7 @@ const wayfinder = new Wayfinder({
   verificationSettings: {
     enabled: true,
     strategy: new DataRootVerificationStrategy({
-      trustedGateways: [new URL('https://permagate.io')],
+      trustedGateways: [new URL('https://turbo-gateway.com')],
     }),
   },
 });
@@ -577,7 +577,7 @@ const wayfinder = new Wayfinder({
   verificationSettings: {
     enabled: true,
     strategy: new SignatureVerificationStrategy({
-      trustedGateways: [new URL('https://permagate.io')],
+      trustedGateways: [new URL('https://turbo-gateway.com')],
     }),
   },
 });

package/dist/client.js

@@ -28,7 +28,7 @@ import { DataRootVerificationStrategy } from './verification/data-root-verificat
 import { HashVerificationStrategy } from './verification/hash-verification.js';
 import { RemoteVerificationStrategy } from './verification/remote-verification.js';
 import { Wayfinder } from './wayfinder.js';
-const DEFAULT_TRUSTED_GATEWAY = 'https://permagate.io';
+const DEFAULT_TRUSTED_GATEWAY = 'https://turbo-gateway.com';
 /**
  * Helper function to construct a routing strategy
  */
@@ -43,7 +43,7 @@ export const createRoutingStrategy = ({ strategy, gatewaysProvider, logger, }) =
             return new RoundRobinRoutingStrategy(baseConfig);
         case 'preferred':
             return new PreferredWithFallbackRoutingStrategy({
-                preferredGateway: 'https://arweave.net',
+                preferredGateway: 'https://turbo-gateway.com',
                 fallbackStrategy: createRoutingStrategy({
                     strategy: 'fastest',
                     gatewaysProvider,
@@ -55,7 +55,7 @@ export const createRoutingStrategy = ({ strategy, gatewaysProvider, logger, }) =
 /**
  * Helper function to construct a verification strategy
  */
-export const createVerificationStrategy = ({ strategy, logger, trustedGateways = [new URL('https://permagate.io')], }) => {
+export const createVerificationStrategy = ({ strategy, logger, trustedGateways = [new URL('https://turbo-gateway.com')], }) => {
     const verificationMap = {
         hash: new HashVerificationStrategy({ logger, trustedGateways }),
         'data-root': new DataRootVerificationStrategy({ logger, trustedGateways }),

package/dist/fetch/wayfinder-fetch.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"wayfinder-fetch.d.ts","sourceRoot":"","sources":["../../src/fetch/wayfinder-fetch.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAQH,OAAO,KAAK,EAAE,qBAAqB,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAS/E;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,oBAAoB,GAAI,mHAYlC,qBAAqB,KAAG,CAAC,CAC1B,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,KACxB,OAAO,CAAC,QAAQ,CAAC,CA0LrB,CAAC"}
+{"version":3,"file":"wayfinder-fetch.d.ts","sourceRoot":"","sources":["../../src/fetch/wayfinder-fetch.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAOH,OAAO,KAAK,EAAE,qBAAqB,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAS/E;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,oBAAoB,GAAI,mHAYlC,qBAAqB,KAAG,CAAC,CAC1B,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,KACxB,OAAO,CAAC,QAAQ,CAAC,CA4MrB,CAAC"}

package/dist/fetch/wayfinder-fetch.js

@@ -15,7 +15,6 @@
  * limitations under the License.
  */
 import { context, trace } from '@opentelemetry/api';
-import { arioHeaderNames } from '../constants.js';
 import { WayfinderEmitter } from '../emitter.js';
 import { defaultLogger } from '../logger.js';
 import { ContiguousDataRetrievalStrategy } from '../retrieval/contiguous.js';
@@ -143,8 +142,6 @@ export const createWayfinderFetch = ({ logger = defaultLogger, strict = false, f
             logger.debug('Successfully fetched data', {
                 uri: requestUri,
             });
-            // Extract data ID from headers for verification
-            const resolvedDataId = dataResponse.headers.get(arioHeaderNames.dataId.toLowerCase()) || txId;
             const contentLength = dataResponse.headers.has('content-length')
                 ? parseInt(dataResponse.headers.get('content-length'), 10)
                 : 0;
@@ -153,20 +150,37 @@ export const createWayfinderFetch = ({ logger = defaultLogger, strict = false, f
                 : verificationStrategy;
             let finalStream = dataResponse.body;
             // Apply verification if strategy is provided
-            if (resolvedDataId && dataResponse.body && finalVerificationStrategy) {
+            if ((txId || arnsName) &&
+                dataResponse.body &&
+                finalVerificationStrategy) {
+                // Extract verification ID from response headers
+                // For ArNS requests, the gateway returns the resolved txId in headers
+                const headerDataId = dataResponse.headers.get('x-ar-io-data-id');
+                const headerResolvedId = dataResponse.headers.get('x-arns-resolved-id');
+                const verificationTxId = headerDataId || headerResolvedId || txId || '';
                 logger.debug('Applying verification to data stream', {
-                    dataId: resolvedDataId,
+                    txId,
+                    arnsName,
+                    headerDataId,
+                    headerResolvedId,
+                    verificationTxId,
                 });
                 // Determine strict mode - check init first, then fall back to instance settings
                 const isStrictMode = init?.verificationSettings?.strict ?? strict;
+                // Determine raw mode - check init first, then auto-detect from path
+                // Raw mode is needed when explicitly fetching via /raw/ endpoint
+                // Only auto-detect for non-ArNS requests since /raw/ on ArNS is just a manifest path
+                const isRawMode = init?.verificationSettings?.raw ??
+                    (!arnsName && path.startsWith('/raw/'));
                 finalStream = tapAndVerifyReadableStream({
                     originalStream: dataResponse.body,
                     contentLength: contentLength,
                     verifyData: finalVerificationStrategy.verifyData.bind(finalVerificationStrategy),
-                    txId: resolvedDataId,
+                    txId: verificationTxId,
                     headers: Object.fromEntries(dataResponse.headers),
                     emitter: requestEmitter,
                     strict: isStrictMode,
+                    raw: isRawMode,
                 });
             }
             return new Response(finalStream, {

package/dist/routing/round-robin.js

@@ -27,8 +27,8 @@ export class RoundRobinRoutingStrategy {
         }
         if (!gateways && !gatewaysProvider) {
             gateways = [
-                new URL('https://arweave.net'),
-                new URL('https://permagate.io'),
+                new URL('https://turbo-gateway.com'),
+                new URL('https://g8way.io'),
             ];
         }
         this.gateways = gateways || [];

package/dist/types.d.ts

@@ -146,6 +146,13 @@ export interface WayfinderOptions {
          * @default false
          */
         strict?: boolean;
+        /**
+         * When true, fetch expected hash from /raw/{txId} endpoint instead of /{txId}.
+         * This is needed for verifying raw manifest data which has a different hash
+         * than the resolved index content.
+         * @default false (auto-detected based on request path)
+         */
+        raw?: boolean;
     };
     /**
      * The routing settings to use for routing requests
@@ -251,6 +258,12 @@ export interface VerificationStrategy {
         data: DataStream;
         headers: Record<string, string>;
         txId: string;
+        /**
+         * When true, fetch expected hash from /raw/{txId} endpoint instead of /{txId}.
+         * This is needed for verifying raw manifest data which has a different hash
+         * than the resolved index content.
+         */
+        raw?: boolean;
     }): Promise<void>;
 }
 export interface DataClassifier {

package/dist/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAIrD;;GAEG;AACH;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAAG,WAAW,GAAG;IAC/C,oBAAoB,CAAC,EAAE,gBAAgB,CAAC,sBAAsB,CAAC,CAAC;IAChE,eAAe,CAAC,EAAE,gBAAgB,CAAC,iBAAiB,CAAC,CAAC;CACvD,CAAC;AAEF;;;GAGG;AACH;;GAEG;AACH,MAAM,MAAM,cAAc,GAAG,CAC3B,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,KACxB,OAAO,CAAC,QAAQ,CAAC,CAAC;AAEvB,MAAM,MAAM,cAAc,GAAG;IAC3B,iBAAiB,EAAE;QAAE,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3C,iBAAiB,EAAE;QAAE,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3C,mBAAmB,EAAE;QACnB,WAAW,EAAE,MAAM,CAAC;QACpB,eAAe,EAAE,MAAM,CAAC;QACxB,WAAW,EAAE,MAAM,CAAC;KACrB,CAAC;IACF,gBAAgB,EAAE,KAAK,CAAC;IACxB,wBAAwB,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3C,qBAAqB,EAAE,KAAK,CAAC;IAC7B,sBAAsB,EAAE;QAAE,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC;IAChD,uBAAuB,EAAE;QACvB,IAAI,EAAE,MAAM,CAAC;QACb,cAAc,EAAE,MAAM,CAAC;QACvB,UAAU,EAAE,MAAM,CAAC;KACpB,CAAC;CACH,CAAC;AAEF,MAAM,MAAM,aAAa,GAAG,QAAQ,GAAG,SAAS,GAAG,UAAU,GAAG,WAAW,CAAC;AAE5E,MAAM,MAAM,kBAAkB,GAAG,MAAM,GAAG,WAAW,GAAG,QAAQ,GAAG,UAAU,CAAC;AAE9E,MAAM,MAAM,gBAAgB,GACxB,kBAAkB,GAClB,cAAc,GACd,gBAAgB,GAChB,YAAY,GACZ,gBAAgB,CAAC;AAErB,MAAM,MAAM,MAAM,GACd,qBAAqB,GACrB,eAAe,GACf,gBAAgB,GAChB,iCAAiC,GACjC,sBAAsB,GACtB,qBAAqB,GACrB,yBAAyB,GACzB,+BAA+B,GAC/B,mCAAmC,CAAC;AAExC,MAAM,MAAM,SAAS,GAAG,KAAK,GAAG,MAAM,CAAC;AAIvC;;;GAGG;AACH,MAAM,WAAW,MAAM;IACrB,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;IACjD,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;IAChD,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;IAChD,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;CAClD;AAED,MAAM,WAAW,yBAAyB;IACxC,gBAAgB,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,CAAC,iBAAiB,CAAC,KAAK,IAAI,CAAC;IACxE,gBAAgB,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,CAAC,iBAAiB,CAAC,KAAK,IAAI,CAAC;IACxE,kBAAkB,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,CAAC,mBAAmB,CAAC,KAAK,IAAI,CAAC;CAC7E;AAED,MAAM,WAAW,8BAA8B;IAC7C,uBAAuB,CAAC,EAAE,CACxB,OAAO,EAAE,cAAc,CAAC,wBAAwB,CAAC,KAC9C,IAAI,CAAC;IACV,oBAAoB,CAAC,EAAE,CACrB,OAAO,EAAE,cAAc,CAAC,qBAAqB,CAAC,KAC3C,IAAI,CAAC;IACV,sBAAsB,CAAC,EAAE,CACvB,OAAO,EAAE,cAAc,CAAC,uBAAuB,CAAC,KAC7C,IAAI,CAAC;CACX;AAED,MAAM,WAAW,eACf,SAAQ,8BAA8B,EACpC,yBAAyB;CAAG;AAEhC,MAAM,WAAW,kBAAkB;IACjC,YAAY,CAAC,EAAE,8BAA8B,CAAC;IAC9C,OAAO,CAAC,EAAE,yBAAyB,CAAC;IACpC,aAAa,CAAC,EAAE,gBAAgB,CAAC;CAClC;AAED,MAAM,MAAM,YAAY,GAAG,QAAQ,MAAM,EAAE,CAAC;AAE5C,MAAM,MAAM,kBAAkB,GAC1B;IACE,WAAW,EAAE,MAAM,CAAC;CACrB,GACD;IACE,YAAY,EAAE,YAAY,CAAC;CAC5B,GACD;IACE,IAAI,EAAE,MAAM,CAAC;CACd,GACD;IACE,QAAQ,EAAE,MAAM,CAAC;CAClB,CAAC;AAEN;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;;OAIG;IACH,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAEhC;;;OAGG;IACH,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IAEpC;;OAEG;IACH,oBAAoB,CAAC,EAAE;QACrB;;;WAGG;QACH,OAAO,CAAC,EAAE,OAAO,CAAC;QAElB;;WAEG;QACH,MAAM,CAAC,EAAE,8BAA8B,GAAG,SAAS,CAAC;QAEpD;;WAEG;QACH,QAAQ,CAAC,EAAE,oBAAoB,GAAG,SAAS,CAAC;QAE5C;;;;;WAKG;QACH,MAAM,CAAC,EAAE,OAAO,CAAC;KAClB,CAAC;IAEF;;OAEG;IACH,eAAe,CAAC,EAAE;QAChB;;WAEG;QACH,MAAM,CAAC,EAAE,yBAAyB,CAAC;QAEnC;;WAEG;QACH,QAAQ,CAAC,EAAE,eAAe,CAAC;KAC5B,CAAC;IAEF;;OAEG;IACH,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;IAEtC;;OAEG;IACH,qBAAqB,CAAC,EAAE,qBAAqB,CAAC;CAC/C;AAED;;;;GAIG;AACH,MAAM,MAAM,qBAAqB,GAAG;IAClC;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;OAEG;IACH,oBAAoB,CAAC,EAAE,oBAAoB,CAAC;IAE5C;;;;;OAKG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC;IAEjB;;;OAGG;IACH,eAAe,CAAC,EAAE,eAAe,CAAC;IAElC;;;OAGG;IACH,qBAAqB,CAAC,EAAE,qBAAqB,CAAC;IAE9C;;OAEG;IACH,OAAO,CAAC,EAAE,gBAAgB,CAAC;IAE3B;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAEhC;;OAEG;IACH,MAAM,CAAC,EAAE,eAAe,CAAC;CAC1B,CAAC;AAEF,MAAM,WAAW,iBAAiB;IAChC,6CAA6C;IAC7C,OAAO,EAAE,OAAO,CAAC;IACjB,qCAAqC;IACrC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,wBAAwB;IACxB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,wCAAwC;IACxC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,+CAA+C;IAC/C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,oCAAoC;IACpC,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAID,MAAM,MAAM,UAAU,GAAG,cAAc,CAAC,UAAU,CAAC,GAAG,aAAa,CAAC,UAAU,CAAC,CAAC;AAEhF,MAAM,WAAW,gBAAgB;IAC/B,WAAW,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;CAC/B;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,aAAa,CAAC,MAAM,EAAE;QACpB,QAAQ,CAAC,EAAE,GAAG,EAAE,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;CAClB;AAED,MAAM,WAAW,oBAAoB;IACnC,eAAe,EAAE,GAAG,EAAE,CAAC;IACvB,UAAU,CAAC,MAAM,EAAE;QACjB,IAAI,EAAE,UAAU,CAAC;QACjB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAChC,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACnB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,MAAM,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,QAAQ,GAAG,aAAa,CAAC,CAAC;CACvE;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC;;OAEG;IACH,OAAO,CAAC,EACN,OAAO,EACP,UAAU,EACV,OAAO,GACR,EAAE;QACD,OAAO,EAAE,GAAG,CAAC;QACb,UAAU,EAAE,GAAG,CAAC;QAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KAClC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;CACvB"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAIrD;;GAEG;AACH;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAAG,WAAW,GAAG;IAC/C,oBAAoB,CAAC,EAAE,gBAAgB,CAAC,sBAAsB,CAAC,CAAC;IAChE,eAAe,CAAC,EAAE,gBAAgB,CAAC,iBAAiB,CAAC,CAAC;CACvD,CAAC;AAEF;;;GAGG;AACH;;GAEG;AACH,MAAM,MAAM,cAAc,GAAG,CAC3B,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,KACxB,OAAO,CAAC,QAAQ,CAAC,CAAC;AAEvB,MAAM,MAAM,cAAc,GAAG;IAC3B,iBAAiB,EAAE;QAAE,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3C,iBAAiB,EAAE;QAAE,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3C,mBAAmB,EAAE;QACnB,WAAW,EAAE,MAAM,CAAC;QACpB,eAAe,EAAE,MAAM,CAAC;QACxB,WAAW,EAAE,MAAM,CAAC;KACrB,CAAC;IACF,gBAAgB,EAAE,KAAK,CAAC;IACxB,wBAAwB,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3C,qBAAqB,EAAE,KAAK,CAAC;IAC7B,sBAAsB,EAAE;QAAE,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC;IAChD,uBAAuB,EAAE;QACvB,IAAI,EAAE,MAAM,CAAC;QACb,cAAc,EAAE,MAAM,CAAC;QACvB,UAAU,EAAE,MAAM,CAAC;KACpB,CAAC;CACH,CAAC;AAEF,MAAM,MAAM,aAAa,GAAG,QAAQ,GAAG,SAAS,GAAG,UAAU,GAAG,WAAW,CAAC;AAE5E,MAAM,MAAM,kBAAkB,GAAG,MAAM,GAAG,WAAW,GAAG,QAAQ,GAAG,UAAU,CAAC;AAE9E,MAAM,MAAM,gBAAgB,GACxB,kBAAkB,GAClB,cAAc,GACd,gBAAgB,GAChB,YAAY,GACZ,gBAAgB,CAAC;AAErB,MAAM,MAAM,MAAM,GACd,qBAAqB,GACrB,eAAe,GACf,gBAAgB,GAChB,iCAAiC,GACjC,sBAAsB,GACtB,qBAAqB,GACrB,yBAAyB,GACzB,+BAA+B,GAC/B,mCAAmC,CAAC;AAExC,MAAM,MAAM,SAAS,GAAG,KAAK,GAAG,MAAM,CAAC;AAIvC;;;GAGG;AACH,MAAM,WAAW,MAAM;IACrB,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;IACjD,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;IAChD,IAAI,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;IAChD,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,CAAC;CAClD;AAED,MAAM,WAAW,yBAAyB;IACxC,gBAAgB,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,CAAC,iBAAiB,CAAC,KAAK,IAAI,CAAC;IACxE,gBAAgB,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,CAAC,iBAAiB,CAAC,KAAK,IAAI,CAAC;IACxE,kBAAkB,CAAC,EAAE,CAAC,OAAO,EAAE,cAAc,CAAC,mBAAmB,CAAC,KAAK,IAAI,CAAC;CAC7E;AAED,MAAM,WAAW,8BAA8B;IAC7C,uBAAuB,CAAC,EAAE,CACxB,OAAO,EAAE,cAAc,CAAC,wBAAwB,CAAC,KAC9C,IAAI,CAAC;IACV,oBAAoB,CAAC,EAAE,CACrB,OAAO,EAAE,cAAc,CAAC,qBAAqB,CAAC,KAC3C,IAAI,CAAC;IACV,sBAAsB,CAAC,EAAE,CACvB,OAAO,EAAE,cAAc,CAAC,uBAAuB,CAAC,KAC7C,IAAI,CAAC;CACX;AAED,MAAM,WAAW,eACf,SAAQ,8BAA8B,EACpC,yBAAyB;CAAG;AAEhC,MAAM,WAAW,kBAAkB;IACjC,YAAY,CAAC,EAAE,8BAA8B,CAAC;IAC9C,OAAO,CAAC,EAAE,yBAAyB,CAAC;IACpC,aAAa,CAAC,EAAE,gBAAgB,CAAC;CAClC;AAED,MAAM,MAAM,YAAY,GAAG,QAAQ,MAAM,EAAE,CAAC;AAE5C,MAAM,MAAM,kBAAkB,GAC1B;IACE,WAAW,EAAE,MAAM,CAAC;CACrB,GACD;IACE,YAAY,EAAE,YAAY,CAAC;CAC5B,GACD;IACE,IAAI,EAAE,MAAM,CAAC;CACd,GACD;IACE,QAAQ,EAAE,MAAM,CAAC;CAClB,CAAC;AAEN;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;;OAIG;IACH,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAEhC;;;OAGG;IACH,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IAEpC;;OAEG;IACH,oBAAoB,CAAC,EAAE;QACrB;;;WAGG;QACH,OAAO,CAAC,EAAE,OAAO,CAAC;QAElB;;WAEG;QACH,MAAM,CAAC,EAAE,8BAA8B,GAAG,SAAS,CAAC;QAEpD;;WAEG;QACH,QAAQ,CAAC,EAAE,oBAAoB,GAAG,SAAS,CAAC;QAE5C;;;;;WAKG;QACH,MAAM,CAAC,EAAE,OAAO,CAAC;QAEjB;;;;;WAKG;QACH,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,CAAC;IAEF;;OAEG;IACH,eAAe,CAAC,EAAE;QAChB;;WAEG;QACH,MAAM,CAAC,EAAE,yBAAyB,CAAC;QAEnC;;WAEG;QACH,QAAQ,CAAC,EAAE,eAAe,CAAC;KAC5B,CAAC;IAEF;;OAEG;IACH,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;IAEtC;;OAEG;IACH,qBAAqB,CAAC,EAAE,qBAAqB,CAAC;CAC/C;AAED;;;;GAIG;AACH,MAAM,MAAM,qBAAqB,GAAG;IAClC;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;OAEG;IACH,oBAAoB,CAAC,EAAE,oBAAoB,CAAC;IAE5C;;;;;OAKG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC;IAEjB;;;OAGG;IACH,eAAe,CAAC,EAAE,eAAe,CAAC;IAElC;;;OAGG;IACH,qBAAqB,CAAC,EAAE,qBAAqB,CAAC;IAE9C;;OAEG;IACH,OAAO,CAAC,EAAE,gBAAgB,CAAC;IAE3B;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;OAGG;IACH,KAAK,CAAC,EAAE,OAAO,UAAU,CAAC,KAAK,CAAC;IAEhC;;OAEG;IACH,MAAM,CAAC,EAAE,eAAe,CAAC;CAC1B,CAAC;AAEF,MAAM,WAAW,iBAAiB;IAChC,6CAA6C;IAC7C,OAAO,EAAE,OAAO,CAAC;IACjB,qCAAqC;IACrC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,wBAAwB;IACxB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,wCAAwC;IACxC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,+CAA+C;IAC/C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,oCAAoC;IACpC,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAID,MAAM,MAAM,UAAU,GAAG,cAAc,CAAC,UAAU,CAAC,GAAG,aAAa,CAAC,UAAU,CAAC,CAAC;AAEhF,MAAM,WAAW,gBAAgB;IAC/B,WAAW,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;CAC/B;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,aAAa,CAAC,MAAM,EAAE;QACpB,QAAQ,CAAC,EAAE,GAAG,EAAE,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;CAClB;AAED,MAAM,WAAW,oBAAoB;IACnC,eAAe,EAAE,GAAG,EAAE,CAAC;IACvB,UAAU,CAAC,MAAM,EAAE;QACjB,IAAI,EAAE,UAAU,CAAC;QACjB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAChC,IAAI,EAAE,MAAM,CAAC;QACb;;;;WAIG;QACH,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACnB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,MAAM,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,QAAQ,GAAG,aAAa,CAAC,CAAC;CACvE;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC;;OAEG;IACH,OAAO,CAAC,EACN,OAAO,EACP,UAAU,EACV,OAAO,GACR,EAAE;QACD,OAAO,EAAE,GAAG,CAAC;QACb,UAAU,EAAE,GAAG,CAAC;QAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KAClC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;CACvB"}

package/dist/utils/ario.d.ts

@@ -24,4 +24,9 @@ export declare const arioGatewayHeaders: {
     dataItemSize: string;
     rootTransactionId: string;
 };
+/**
+ * Normalizes HTTP headers to lowercase keys with trimmed values.
+ * This ensures consistent header access regardless of original casing.
+ */
+export declare function normalizeHeaders(headers: Record<string, string>): Record<string, string>;
 //# sourceMappingURL=ario.d.ts.map

package/dist/utils/ario.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ario.d.ts","sourceRoot":"","sources":["../../src/utils/ario.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;;CAS9B,CAAC"}
+{"version":3,"file":"ario.d.ts","sourceRoot":"","sources":["../../src/utils/ario.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;;CAS9B,CAAC;AAEF;;;GAGG;AACH,wBAAgB,gBAAgB,CAC9B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAC9B,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAOxB"}

package/dist/utils/ario.js

@@ -24,3 +24,13 @@ export const arioGatewayHeaders = {
     dataItemSize: 'x-ar-io-data-item-size',
     rootTransactionId: 'x-ar-io-root-transaction-id',
 };
+/**
+ * Normalizes HTTP headers to lowercase keys with trimmed values.
+ * This ensures consistent header access regardless of original casing.
+ */
+export function normalizeHeaders(headers) {
+    return Object.fromEntries(Object.entries(headers).map(([key, value]) => [
+        key.toLowerCase().trim(),
+        value.trim(),
+    ]));
+}

package/dist/utils/verification-url.d.ts

@@ -19,12 +19,14 @@
  * @param gateway - The gateway URL to use for verification
  * @param txId - The transaction ID
  * @param path - Optional path to append (e.g., '/data_root', '/tx/', etc.)
+ * @param raw - When true, constructs a /raw/{txId} URL without sandbox routing
  * @returns The constructed verification URL
  */
-export declare function constructVerificationUrl({ gateway, txId, path, }: {
+export declare function constructVerificationUrl({ gateway, txId, path, raw, }: {
     gateway: URL;
     txId: string;
     path?: string;
+    raw?: boolean;
 }): string;
 /**
  * Constructs a verification URL for a gateway endpoint without sandbox routing

package/dist/utils/verification-url.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"verification-url.d.ts","sourceRoot":"","sources":["../../src/utils/verification-url.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAIH;;;;;;GAMG;AACH,wBAAgB,wBAAwB,CAAC,EACvC,OAAO,EACP,IAAI,EACJ,IAAS,GACV,EAAE;IACD,OAAO,EAAE,GAAG,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;CACf,GAAG,MAAM,CAUT;AAED;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,EAClC,OAAO,EACP,IAAI,GACL,EAAE;IACD,OAAO,EAAE,GAAG,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;CACd,GAAG,MAAM,CAET"}
+{"version":3,"file":"verification-url.d.ts","sourceRoot":"","sources":["../../src/utils/verification-url.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAIH;;;;;;;GAOG;AACH,wBAAgB,wBAAwB,CAAC,EACvC,OAAO,EACP,IAAI,EACJ,IAAS,EACT,GAAW,GACZ,EAAE;IACD,OAAO,EAAE,GAAG,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,GAAG,CAAC,EAAE,OAAO,CAAC;CACf,GAAG,MAAM,CAgBT;AAED;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,EAClC,OAAO,EACP,IAAI,GACL,EAAE;IACD,OAAO,EAAE,GAAG,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;CACd,GAAG,MAAM,CAET"}

package/dist/utils/verification-url.js

@@ -20,10 +20,15 @@ import { sandboxFromId } from './base64.js';
  * @param gateway - The gateway URL to use for verification
  * @param txId - The transaction ID
  * @param path - Optional path to append (e.g., '/data_root', '/tx/', etc.)
+ * @param raw - When true, constructs a /raw/{txId} URL without sandbox routing
  * @returns The constructed verification URL
  */
-export function constructVerificationUrl({ gateway, txId, path = '', }) {
+export function constructVerificationUrl({ gateway, txId, path = '', raw = false, }) {
     const port = gateway.port ? `:${gateway.port}` : '';
+    // For raw requests, don't use sandbox routing - just use /raw/{txId}
+    if (raw) {
+        return `${gateway.protocol}//${gateway.hostname}${port}/raw/${txId}`;
+    }
     // For localhost, use port-based routing instead of subdomain routing
     if (gateway.hostname === 'localhost' || gateway.hostname === '127.0.0.1') {
         return `${gateway.protocol}//${gateway.hostname}${port}${path}/${txId}`;

package/dist/utils/verify-stream.d.ts

@@ -26,9 +26,10 @@ import { VerificationStrategy } from '../types.js';
  * @param emitter Optional WayfinderEmitter to emit verification events.
  * @param headers Optional headers to pass to the verification function.
  * @param strict If true, the client stream will error if verification fails; otherwise, verification runs asynchronously.
+ * @param raw If true, indicates the data is raw manifest data and verification should use /raw/ endpoints.
  * @returns A ReadableStream that passes through data to the client while verifying in parallel.
  */
-export declare const tapAndVerifyReadableStream: ({ originalStream, contentLength, verifyData, txId, emitter, headers, strict, }: {
+export declare const tapAndVerifyReadableStream: ({ originalStream, contentLength, verifyData, txId, emitter, headers, strict, raw, }: {
     originalStream: ReadableStream;
     contentLength: number;
     headers?: Record<string, string>;
@@ -36,5 +37,6 @@ export declare const tapAndVerifyReadableStream: ({ originalStream, contentLengt
     txId: string;
     emitter?: WayfinderEmitter;
     strict?: boolean;
+    raw?: boolean;
 }) => ReadableStream;
 //# sourceMappingURL=verify-stream.d.ts.map

package/dist/utils/verify-stream.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"verify-stream.d.ts","sourceRoot":"","sources":["../../src/utils/verify-stream.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAEnD;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,0BAA0B,GAAI,gFAQxC;IACD,cAAc,EAAE,cAAc,CAAC;IAC/B,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,UAAU,EAAE,oBAAoB,CAAC,YAAY,CAAC,CAAC;IAC/C,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,gBAAgB,CAAC;IAC3B,MAAM,CAAC,EAAE,OAAO,CAAC;CAClB,KAAG,cAkFH,CAAC"}
+{"version":3,"file":"verify-stream.d.ts","sourceRoot":"","sources":["../../src/utils/verify-stream.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAEnD;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,0BAA0B,GAAI,qFASxC;IACD,cAAc,EAAE,cAAc,CAAC;IAC/B,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,UAAU,EAAE,oBAAoB,CAAC,YAAY,CAAC,CAAC;IAC/C,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,gBAAgB,CAAC;IAC3B,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,GAAG,CAAC,EAAE,OAAO,CAAC;CACf,KAAG,cAmFH,CAAC"}

package/dist/utils/verify-stream.js

@@ -24,9 +24,10 @@
  * @param emitter Optional WayfinderEmitter to emit verification events.
  * @param headers Optional headers to pass to the verification function.
  * @param strict If true, the client stream will error if verification fails; otherwise, verification runs asynchronously.
+ * @param raw If true, indicates the data is raw manifest data and verification should use /raw/ endpoints.
  * @returns A ReadableStream that passes through data to the client while verifying in parallel.
  */
-export const tapAndVerifyReadableStream = ({ originalStream, contentLength, verifyData, txId, emitter, headers = {}, strict = false, }) => {
+export const tapAndVerifyReadableStream = ({ originalStream, contentLength, verifyData, txId, emitter, headers = {}, strict = false, raw = false, }) => {
     if (originalStream instanceof ReadableStream &&
         typeof originalStream.tee === 'function') {
         /**
@@ -42,6 +43,7 @@ export const tapAndVerifyReadableStream = ({ originalStream, contentLength, veri
             data: verifyBranch,
             txId,
             headers,
+            raw,
         });
         let bytesProcessed = 0;
         const reader = clientBranch.getReader();

package/dist/verification/data-root-verification.d.ts

@@ -21,9 +21,11 @@ export declare class DataRootVerificationStrategy implements VerificationStrateg
     getDataRoot({ txId }: {
         txId: string;
     }): Promise<string>;
-    verifyData({ data, txId, }: {
+    verifyData({ data, txId, headers: _headers, raw: _raw, }: {
         data: DataStream;
         txId: string;
+        headers?: Record<string, string>;
+        raw?: boolean;
     }): Promise<void>;
 }
 //# sourceMappingURL=data-root-verification.d.ts.map

package/dist/verification/data-root-verification.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"data-root-verification.d.ts","sourceRoot":"","sources":["../../src/verification/data-root-verification.ts"],"names":[],"mappings":"AA4BA,OAAO,EACL,cAAc,EACd,UAAU,EACV,MAAM,EACN,oBAAoB,EACrB,MAAM,aAAa,CAAC;AAQrB,eAAO,MAAM,2BAA2B,GAAU,aAE/C;IACD,MAAM,EAAE,UAAU,CAAC;CACpB,KAAG,OAAO,CAAC,MAAM,CAwDjB,CAAC;AAGF,qBAAa,4BAA6B,YAAW,oBAAoB;IACvE,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAiB;gBAChC,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,EACtB,UAA0C,GAC3C,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,UAAU,CAAC,EAAE,cAAc,CAAC;KAC7B;IAOD;;;;OAIG;IACG,WAAW,CAAC,EAAE,IAAI,EAAE,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAuCxD,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,GACL,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC,IAAI,CAAC;CA0BlB"}
+{"version":3,"file":"data-root-verification.d.ts","sourceRoot":"","sources":["../../src/verification/data-root-verification.ts"],"names":[],"mappings":"AA4BA,OAAO,EACL,cAAc,EACd,UAAU,EACV,MAAM,EACN,oBAAoB,EACrB,MAAM,aAAa,CAAC;AAQrB,eAAO,MAAM,2BAA2B,GAAU,aAE/C;IACD,MAAM,EAAE,UAAU,CAAC;CACpB,KAAG,OAAO,CAAC,MAAM,CAwDjB,CAAC;AAGF,qBAAa,4BAA6B,YAAW,oBAAoB;IACvE,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAiB;gBAChC,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,EACtB,UAA0C,GAC3C,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,UAAU,CAAC,EAAE,cAAc,CAAC;KAC7B;IAOD;;;;OAIG;IACG,WAAW,CAAC,EAAE,IAAI,EAAE,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAuCxD,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,EACJ,OAAO,EAAE,QAAa,EACtB,GAAG,EAAE,IAAY,GAClB,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,GAAG,OAAO,CAAC,IAAI,CAAC;CA+BlB"}

package/dist/verification/data-root-verification.js

@@ -115,7 +115,11 @@ export class DataRootVerificationStrategy {
         });
         return dataRoot;
     }
-    async verifyData({ data, txId, }) {
+    async verifyData({ data, txId, headers: _headers = {}, raw: _raw = false, }) {
+        // Note: The raw parameter is not applicable for data root verification
+        // as this strategy is specifically for L1 transactions which don't have
+        // the manifest/raw distinction. The parameter is accepted for interface
+        // compatibility but ignored.
         // classify the data, if ans104 throw an error
         const dataType = await this.classifier.classify({ txId });
         if (dataType === 'ans104') {

package/dist/verification/hash-verification.d.ts

@@ -11,17 +11,21 @@ export declare class HashVerificationStrategy implements VerificationStrategy {
     /**
      * Gets the digest for a given txId from all trusted gateways and ensures they all match.
      * @param txId - The txId to get the digest for.
+     * @param raw - When true, fetch from /raw/{txId} endpoint instead of /{txId}.
      * @returns The digest for the given txId.
      */
-    getDigest({ txId, }: {
+    getDigest({ txId, raw, }: {
         txId: string;
+        raw?: boolean;
     }): Promise<{
         hash: string;
         algorithm: 'sha256';
     }>;
-    verifyData({ data, txId, }: {
+    verifyData({ data, txId, headers, raw, }: {
         data: DataStream;
         txId: string;
+        headers?: Record<string, string>;
+        raw?: boolean;
     }): Promise<void>;
 }
 //# sourceMappingURL=hash-verification.d.ts.map

package/dist/verification/hash-verification.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"hash-verification.d.ts","sourceRoot":"","sources":["../../src/verification/hash-verification.ts"],"names":[],"mappings":"AAkBA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAK5E,qBAAa,wBAAyB,YAAW,oBAAoB;IACnE,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;gBACpB,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,GACvB,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB;IAMD;;;;OAIG;IACG,SAAS,CAAC,EACd,IAAI,GACL,EAAE;QACD,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,QAAQ,CAAA;KAAE,CAAC;IAoE5C,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,GACL,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC,IAAI,CAAC;CAgBlB"}
+{"version":3,"file":"hash-verification.d.ts","sourceRoot":"","sources":["../../src/verification/hash-verification.ts"],"names":[],"mappings":"AAmBA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAK5E,qBAAa,wBAAyB,YAAW,oBAAoB;IACnE,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;gBACpB,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,GACvB,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB;IAMD;;;;;OAKG;IACG,SAAS,CAAC,EACd,IAAI,EACJ,GAAW,GACZ,EAAE;QACD,IAAI,EAAE,MAAM,CAAC;QACb,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,GAAG,OAAO,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,QAAQ,CAAA;KAAE,CAAC;IA2E5C,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,EACJ,OAAY,EACZ,GAAW,GACZ,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,GAAG,OAAO,CAAC,IAAI,CAAC;CA6DlB"}

package/dist/verification/hash-verification.js

@@ -15,8 +15,9 @@
  * limitations under the License.
  */
 import { pLimit } from 'plimit-lit';
+import { arioHeaderNames } from '../constants.js';
 import { defaultLogger } from '../logger.js';
-import { arioGatewayHeaders } from '../utils/ario.js';
+import { normalizeHeaders } from '../utils/ario.js';
 import { hashDataStreamToB64Url } from '../utils/hash.js';
 import { constructVerificationUrl } from '../utils/verification-url.js';
 export class HashVerificationStrategy {
@@ -31,11 +32,13 @@ export class HashVerificationStrategy {
     /**
      * Gets the digest for a given txId from all trusted gateways and ensures they all match.
      * @param txId - The txId to get the digest for.
+     * @param raw - When true, fetch from /raw/{txId} endpoint instead of /{txId}.
      * @returns The digest for the given txId.
      */
-    async getDigest({ txId, }) {
+    async getDigest({ txId, raw = false, }) {
         this.logger.debug('Getting digest for txId', {
             txId,
+            raw,
             maxConcurrency: this.maxConcurrency,
             trustedGateways: this.trustedGateways,
         });
@@ -43,12 +46,15 @@ export class HashVerificationStrategy {
         const throttle = pLimit(this.maxConcurrency);
         const hashPromises = this.trustedGateways.map(async (gateway) => {
             return throttle(async () => {
-                const urlWithSandbox = constructVerificationUrl({ gateway, txId });
+                const url = constructVerificationUrl({ gateway, txId, raw });
                 /**
                  * This is a problem because we're not able to verify the hash of the data item if the gateway doesn't have the data in its cache. We start with a HEAD request, if it fails, we do a GET request to hydrate the cache and then a HEAD request again to get the cached digest.
+                 *
+                 * Note: Not all gateways return x-ar-io-digest for /raw/ endpoints (e.g., turbo-gateway.com doesn't, but ardrive.net does).
+                 * The implementation tries multiple trusted gateways until one returns the digest.
                  */
                 for (const method of ['HEAD', 'GET', 'HEAD']) {
-                    const response = await fetch(urlWithSandbox, {
+                    const response = await fetch(url, {
                         method,
                         redirect: 'follow',
                         mode: 'cors',
@@ -61,11 +67,12 @@ export class HashVerificationStrategy {
                         throw new Error('Failed to fetch digest for txId', {
                             cause: {
                                 txId,
+                                raw,
                                 gateway: gateway.toString(),
                             },
                         });
                     }
-                    const fetchedTxIdHash = response.headers.get(arioGatewayHeaders.digest);
+                    const fetchedTxIdHash = response.headers.get(arioHeaderNames.digest);
                     if (fetchedTxIdHash) {
                         // avoid hitting other gateways if we've found the hash
                         throttle.clearQueue();
@@ -75,6 +82,7 @@ export class HashVerificationStrategy {
                 throw new Error('No hash found for txId', {
                     cause: {
                         txId,
+                        raw,
                         gateway: gateway.toString(),
                     },
                 });
@@ -83,24 +91,60 @@ export class HashVerificationStrategy {
         const { hash, gateway } = await Promise.any(hashPromises);
         this.logger.debug('Successfully fetched digest for txId from trusted gateway', {
             txId,
+            raw,
             hash,
             gateway: gateway.toString(),
         });
         return { hash, algorithm: 'sha256' };
     }
-    async verifyData({ data, txId, }) {
-        // kick off the hash computation, but don't wait for it until we compute our own hash
-        const [computedHash, fetchedHash] = await Promise.all([
+    async verifyData({ data, txId, headers = {}, raw = false, }) {
+        const normalizedHeaders = normalizeHeaders(headers);
+        // Extract header values for manifest/ArNS detection
+        const headerDataId = normalizedHeaders[arioHeaderNames.dataId.toLowerCase()];
+        const headerResolvedId = normalizedHeaders[arioHeaderNames.arnsResolvedId.toLowerCase()];
+        // Determine what data was actually served and what ID to verify against:
+        // - x-ar-io-data-id: The actual content served (e.g., index.html for manifests)
+        // - x-arns-resolved-id: The resolved txId from ArNS (could be manifest or direct)
+        //
+        // Manifest detection:
+        // - If dataId !== resolvedId → it's a manifest, dataId is the index content
+        // - If dataId === resolvedId (or only one present) → direct content
+        // - If neither present → fall back to original txId
+        const isManifest = headerDataId && headerResolvedId && headerDataId !== headerResolvedId;
+        // The ID to verify against - always verify the actual bytes we received
+        const verificationId = headerDataId || headerResolvedId || txId;
+        // Determine if we need to use raw verification:
+        // - raw=true explicitly set AND we're not looking at resolved manifest content
+        // - For manifests (dataId !== resolvedId), we received index content, verify normally
+        // - For raw manifest fetch (raw=true, no manifest resolution), use /raw/ endpoint
+        const isRawVerification = raw && !isManifest;
+        this.logger.debug('Starting hash verification', {
+            txId,
+            headerDataId,
+            headerResolvedId,
+            verificationId,
+            isManifest,
+            raw,
+            isRawVerification,
+        });
+        // Always verify against trusted gateways - never trust source gateway headers
+        const [computedHash, expectedHash] = await Promise.all([
             hashDataStreamToB64Url({ stream: data }),
-            this.getDigest({ txId }),
+            this.getDigest({ txId: verificationId, raw: isRawVerification }),
         ]);
-        // await on the hash promise and compare to get a little concurrency when computing hashes over larger data
         if (computedHash === undefined) {
             throw new Error('Hash could not be computed');
         }
-        if (computedHash !== fetchedHash.hash) {
+        if (computedHash !== expectedHash.hash) {
             throw new Error('Hash does not match', {
-                cause: { computedHash, trustedHash: fetchedHash },
+                cause: {
+                    computedHash,
+                    trustedHash: expectedHash,
+                    txId,
+                    verificationId,
+                    isManifest,
+                    raw: isRawVerification,
+                },
             });
         }
     }

package/dist/verification/remote-verification.d.ts

@@ -1,19 +1,3 @@
-/**
- * WayFinder
- * Copyright (C) 2022-2025 Permanent Data Solutions, Inc.
- *
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- *     http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- */
 import { DataStream, VerificationStrategy } from '../types.js';
 /**
  * This strategy is used to verify data by checking the 'x-ar-io-verified' header from the original response.
@@ -28,6 +12,7 @@ export declare class RemoteVerificationStrategy implements VerificationStrategy
         headers: Record<string, string>;
         txId?: string;
         data?: DataStream;
+        raw?: boolean;
     }): Promise<void>;
 }
 //# sourceMappingURL=remote-verification.d.ts.map

package/dist/verification/remote-verification.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"remote-verification.d.ts","sourceRoot":"","sources":["../../src/verification/remote-verification.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AACH,OAAO,EAAE,UAAU,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAC/D;;;;;;GAMG;AACH,qBAAa,0BAA2B,YAAW,oBAAoB;IACrE,eAAe,EAAE,GAAG,EAAE,CAAM;IAEtB,UAAU,CAAC,MAAM,EAAE;QACvB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAChC,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,UAAU,CAAC;KACnB;CAeF"}
+{"version":3,"file":"remote-verification.d.ts","sourceRoot":"","sources":["../../src/verification/remote-verification.ts"],"names":[],"mappings":"AAiBA,OAAO,EAAE,UAAU,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAG/D;;;;;;GAMG;AACH,qBAAa,0BAA2B,YAAW,oBAAoB;IACrE,eAAe,EAAE,GAAG,EAAE,CAAM;IAEtB,UAAU,CAAC,MAAM,EAAE;QACvB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAChC,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,UAAU,CAAC;QAClB,GAAG,CAAC,EAAE,OAAO,CAAC;KACf;CAcF"}

package/dist/verification/remote-verification.js

@@ -1,3 +1,21 @@
+/**
+ * WayFinder
+ * Copyright (C) 2022-2025 Permanent Data Solutions, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+import { arioHeaderNames } from '../constants.js';
+import { normalizeHeaders } from '../utils/ario.js';
 /**
  * This strategy is used to verify data by checking the 'x-ar-io-verified' header from the original response.
  * It does not require any client side computation, but it does require the gateway to set the header.
@@ -8,13 +26,12 @@
 export class RemoteVerificationStrategy {
     trustedGateways = []; // no trusted gateways for remote verification, we just check the headers of the gateway that returned the data
     async verifyData(params) {
-        // make sure headers are all lowercase
-        const headers = Object.fromEntries(Object.entries(params.headers).map(([key, value]) => [
-            key.toLowerCase().trim(),
-            value.trim(),
-        ]));
+        // Note: The raw parameter doesn't affect remote verification since we only
+        // check the x-ar-io-verified header. The parameter is accepted for interface
+        // compatibility but ignored.
+        const headers = normalizeHeaders(params.headers);
         // we don't use the data at all, just the headers
-        const remoteVerified = headers['x-ar-io-verified'] === 'true';
+        const remoteVerified = headers[arioHeaderNames.verified.toLowerCase()] === 'true';
         if (!remoteVerified) {
             throw new Error(`Data was not verified by gateway.`);
         }

package/dist/verification/signature-verification.d.ts

@@ -47,10 +47,14 @@ export declare class Ans104SignatureVerificationStrategy implements Verification
      *
      * @param data - The data stream to verify
      * @param txId - The transaction ID of the data
+     * @param headers - Optional response headers (not used in signature verification)
+     * @param raw - Optional flag for raw verification (not applicable for signature verification)
      */
-    verifyData({ data, txId, }: {
+    verifyData({ data, txId, headers: _headers, raw: _raw, }: {
         data: DataStream;
         txId: string;
+        headers?: Record<string, string>;
+        raw?: boolean;
     }): Promise<void>;
 }
 /**
@@ -89,9 +93,11 @@ export declare class TransactionSignatureVerificationStrategy implements Verific
         }[];
         signature: string;
     }>;
-    verifyData({ data, txId, }: {
+    verifyData({ data, txId, headers: _headers, raw: _raw, }: {
         data: DataStream;
         txId: string;
+        headers?: Record<string, string>;
+        raw?: boolean;
     }): Promise<void>;
 }
 export declare const SignatureVerificationStrategies: {
@@ -109,9 +115,11 @@ export declare class SignatureVerificationStrategy {
         logger?: Logger;
         classifier?: DataClassifier;
     });
-    verifyData({ data, txId, }: {
+    verifyData({ data, txId, headers, raw, }: {
         data: DataStream;
         txId: string;
+        headers?: Record<string, string>;
+        raw?: boolean;
     }): Promise<void>;
 }
 //# sourceMappingURL=signature-verification.d.ts.map

package/dist/verification/signature-verification.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"signature-verification.d.ts","sourceRoot":"","sources":["../../src/verification/signature-verification.ts"],"names":[],"mappings":"AA2BA,OAAO,KAAK,EACV,cAAc,EACd,UAAU,EACV,MAAM,EACN,oBAAoB,EACrB,MAAM,aAAa,CAAC;AAarB;;;GAGG;AACH,qBAAa,mCACX,YAAW,oBAAoB;IAE/B,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;gBACpB,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,GACvB,EAAE;QAAE,eAAe,EAAE,GAAG,EAAE,CAAC;QAAC,cAAc,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE;IAMvE;;;;;OAKG;YACW,qBAAqB;IA+GnC;;;;;OAKG;IACG,gBAAgB,CAAC,EACrB,IAAI,GACL,EAAE;QACD,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC;QACV,aAAa,EAAE,MAAM,CAAC;QACtB,SAAS,EAAE,UAAU,CAAC;QACtB,KAAK,EAAE,UAAU,CAAC;QAClB,MAAM,EAAE,UAAU,CAAC;QACnB,MAAM,EAAE,UAAU,CAAC;QACnB,IAAI,EAAE,UAAU,CAAC;KAClB,CAAC;IA0EF;;;;;;;;;;;;OAYG;IACG,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,GACL,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC,IAAI,CAAC;CA4ClB;AAED;;;GAGG;AACH,qBAAa,wCACX,YAAW,oBAAoB;IAE/B,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;gBAEpB,EACV,eAAe,EACf,MAAsB,GACvB,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB;IAKD;;;;;OAKG;IACG,gBAAgB,CAAC,EACrB,IAAI,GACL,EAAE;QACD,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC;QACV,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;QACd,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,KAAK,EAAE,MAAM,CAAA;SAAE,EAAE,CAAC;QACxC,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IA2DI,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,GACL,EAAE;QAAE,IAAI,EAAE,UAAU,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC;CAkDtD;AAED,eAAO,MAAM,+BAA+B;;;CAI3C,CAAC;AAEF,qBAAa,6BAA6B;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAsC;IAC7D,OAAO,CAAC,QAAQ,CAAC,WAAW,CAA2C;IACvE,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAiB;IAC5C,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;gBAC3B,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,EACtB,UAA0C,GAC3C,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,UAAU,CAAC,EAAE,cAAc,CAAC;KAC7B;IAcK,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,GACL,EAAE;QAAE,IAAI,EAAE,UAAU,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC;CAatD"}
+{"version":3,"file":"signature-verification.d.ts","sourceRoot":"","sources":["../../src/verification/signature-verification.ts"],"names":[],"mappings":"AA2BA,OAAO,KAAK,EACV,cAAc,EACd,UAAU,EACV,MAAM,EACN,oBAAoB,EACrB,MAAM,aAAa,CAAC;AAarB;;;GAGG;AACH,qBAAa,mCACX,YAAW,oBAAoB;IAE/B,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;gBACpB,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,GACvB,EAAE;QAAE,eAAe,EAAE,GAAG,EAAE,CAAC;QAAC,cAAc,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE;IAMvE;;;;;OAKG;YACW,qBAAqB;IA+GnC;;;;;OAKG;IACG,gBAAgB,CAAC,EACrB,IAAI,GACL,EAAE;QACD,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC;QACV,aAAa,EAAE,MAAM,CAAC;QACtB,SAAS,EAAE,UAAU,CAAC;QACtB,KAAK,EAAE,UAAU,CAAC;QAClB,MAAM,EAAE,UAAU,CAAC;QACnB,MAAM,EAAE,UAAU,CAAC;QACnB,IAAI,EAAE,UAAU,CAAC;KAClB,CAAC;IA0EF;;;;;;;;;;;;;;OAcG;IACG,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,EACJ,OAAO,EAAE,QAAa,EACtB,GAAG,EAAE,IAAY,GAClB,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,GAAG,OAAO,CAAC,IAAI,CAAC;CA4ClB;AAED;;;GAGG;AACH,qBAAa,wCACX,YAAW,oBAAoB;IAE/B,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;IACvC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;gBAEpB,EACV,eAAe,EACf,MAAsB,GACvB,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB;IAKD;;;;;OAKG;IACG,gBAAgB,CAAC,EACrB,IAAI,GACL,EAAE;QACD,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,OAAO,CAAC;QACV,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;QACd,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,KAAK,EAAE,MAAM,CAAA;SAAE,EAAE,CAAC;QACxC,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IA2DI,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,EACJ,OAAO,EAAE,QAAa,EACtB,GAAG,EAAE,IAAY,GAClB,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,GAAG,OAAO,CAAC,IAAI,CAAC;CAsDlB;AAED,eAAO,MAAM,+BAA+B;;;CAI3C,CAAC;AAEF,qBAAa,6BAA6B;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAsC;IAC7D,OAAO,CAAC,QAAQ,CAAC,WAAW,CAA2C;IACvE,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAiB;IAC5C,SAAgB,eAAe,EAAE,GAAG,EAAE,CAAC;gBAC3B,EACV,eAAe,EACf,cAAkB,EAClB,MAAsB,EACtB,UAA0C,GAC3C,EAAE;QACD,eAAe,EAAE,GAAG,EAAE,CAAC;QACvB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,UAAU,CAAC,EAAE,cAAc,CAAC;KAC7B;IAcK,UAAU,CAAC,EACf,IAAI,EACJ,IAAI,EACJ,OAAY,EACZ,GAAW,GACZ,EAAE;QACD,IAAI,EAAE,UAAU,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,GAAG,CAAC,EAAE,OAAO,CAAC;KACf,GAAG,OAAO,CAAC,IAAI,CAAC;CAalB"}

package/dist/verification/signature-verification.js

@@ -193,8 +193,10 @@ export class Ans104SignatureVerificationStrategy {
      *
      * @param data - The data stream to verify
      * @param txId - The transaction ID of the data
+     * @param headers - Optional response headers (not used in signature verification)
+     * @param raw - Optional flag for raw verification (not applicable for signature verification)
      */
-    async verifyData({ data, txId, }) {
+    async verifyData({ data, txId, headers: _headers = {}, raw: _raw = false, }) {
         // fetch signature data from trusted gateway
         const trustedSignatureData = await this.getSignatureData({ txId });
         if (!DataItem.isDataItem(trustedSignatureData)) {
@@ -296,7 +298,10 @@ export class TransactionSignatureVerificationStrategy {
             cause: { txId },
         });
     }
-    async verifyData({ data, txId, }) {
+    async verifyData({ data, txId, headers: _headers = {}, raw: _raw = false, }) {
+        // Note: The raw parameter is not applicable for transaction signature verification
+        // as this strategy verifies the cryptographic signature of the transaction itself.
+        // The parameter is accepted for interface compatibility but ignored.
         const { format, owner, target, quantity, reward, dataSize, lastTx, tags, signature, } = await this.getSignatureData({ txId });
         const tagList = tags.map((tag) => [
             fromB64Url(tag.name),
@@ -350,13 +355,13 @@ export class SignatureVerificationStrategy {
         });
         this.classifier = classifier;
     }
-    async verifyData({ data, txId, }) {
+    async verifyData({ data, txId, headers = {}, raw = false, }) {
         const dataType = await this.classifier.classify({ txId });
         switch (dataType) {
             case 'ans104':
-                return this.ans104.verifyData({ data, txId });
+                return this.ans104.verifyData({ data, txId, headers, raw });
             case 'transaction':
-                return this.transaction.verifyData({ data, txId });
+                return this.transaction.verifyData({ data, txId, headers, raw });
             default:
                 throw new Error('Unknown data type', {
                     cause: { dataType },

package/dist/version.d.ts

@@ -14,5 +14,5 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-export declare const WAYFINDER_CORE_VERSION = "v1.9.0";
+export declare const WAYFINDER_CORE_VERSION = "v1.9.2";
 //# sourceMappingURL=version.d.ts.map

package/dist/version.js

@@ -14,4 +14,4 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-export const WAYFINDER_CORE_VERSION = 'v1.9.0';
+export const WAYFINDER_CORE_VERSION = 'v1.9.2';

package/dist/wayfinder.d.ts

@@ -119,7 +119,7 @@ export declare class Wayfinder {
      * const wayfinder = new Wayfinder({
      *   verificationSettings: {
      *     strategy: new HashVerificationStrategy({
-     *       trustedGateways: [new URL('https://permagate.io')],
+     *       trustedGateways: [new URL('https://turbo-gateway.com')],
      *     }),
      *     events: {
      *       onVerificationProgress: (event) => {
@@ -189,7 +189,7 @@ export declare class Wayfinder {
      * @example
      * const wayfinder = new Wayfinder();
      * wayfinder.setVerificationStrategy(new HashVerificationStrategy({
-     *   trustedGateways: [new URL('https://permagate.io')],
+     *   trustedGateways: [new URL('https://turbo-gateway.com')],
      * }));
      *
      * @param strategy - The verification strategy to use
@@ -240,7 +240,7 @@ export declare class Wayfinder {
      * @example
      * const wayfinder = new Wayfinder({
      *   verificationStrategy: new HashVerificationStrategy({
-     *     trustedGateways: [new URL('https://permagate.io')],
+     *     trustedGateways: [new URL('https://turbo-gateway.com')],
      *   }),
      * })
      *

package/dist/wayfinder.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"wayfinder.d.ts","sourceRoot":"","sources":["../src/wayfinder.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAIH,OAAO,EAAE,KAAK,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EACL,mBAAmB,EACnB,kBAAkB,EACnB,MAAM,+BAA+B,CAAC;AACvC,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAC;AAEjE,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAOhD,OAAO,KAAK,EACV,qBAAqB,EACrB,gBAAgB,EAChB,MAAM,EACN,eAAe,EACf,iBAAiB,EACjB,oBAAoB,EACpB,gBAAgB,EAChB,oBAAoB,EACpB,YAAY,EACZ,kBAAkB,EACnB,MAAM,YAAY,CAAC;AAKpB,eAAO,MAAM,6BAA6B,GAAI,cAE3C;IACD,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;;;CAMA,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,kBAAkB,GAC7B,QAAQ,kBAAkB,KACzB,YAoCF,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,kBAAkB,GAC7B,OAAO,MAAM,KACZ;IACD,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;CA0CnB,CAAC;AAEF;;;;;;;GAOG;AACH,eAAO,MAAM,mBAAmB,GAAI,uCAIjC;IACD,eAAe,EAAE,GAAG,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;CACd,KAAG,GA8BH,CAAC;AAEF;;GAEG;AACH,qBAAa,SAAS;IACpB;;;;;;OAMG;IACH,SAAgB,gBAAgB,EAAE,gBAAgB,CAAC;IAEnD;;;;OAIG;IACH,SAAgB,eAAe,EAAE,QAAQ,CACvC,WAAW,CAAC,gBAAgB,CAAC,iBAAiB,CAAC,CAAC,CACjD,CAAC;IACF;;OAEG;IACH,SAAgB,oBAAoB,EAAE,QAAQ,CAC5C,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,sBAAsB,CAAC,CAAC,EAAE,UAAU,CAAC,CACxE,GAAG;QACF,QAAQ,EAAE,oBAAoB,GAAG,SAAS,CAAC;KAC5C,CAAC;IAEF;;OAEG;IACH,SAAgB,iBAAiB,EAAE,iBAAiB,CAAC;IAErD;;OAEG;IACH,SAAS,CAAC,cAAc,CAAC,EACrB,iBAAiB,GACjB,kBAAkB,GAClB,mBAAmB,CAAC;IAExB;;OAEG;IACH,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IAE1B;;OAEG;IACH,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC;IAEzB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAyDG;IACH,SAAgB,OAAO,EAAE,gBAAgB,CAAC;IAE1C;;OAEG;IACH,SAAS,CAAC,qBAAqB,EAAE,qBAAqB,CAAC;IAEvD;;;OAGG;IACH;;OAEG;IACH,SAAS,CAAC,KAAK,EAAE,CACf,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,KACxB,OAAO,CAAC,QAAQ,CAAC,CAAC;gBAEX,EACV,MAAM,EACN,KAAK,EACL,gBAAgB,EAChB,oBAAoB,EACpB,eAAe,EACf,iBAAiB,EACjB,qBAAqB,GACtB,GAAE,gBAAqB;IAmHxB;;;;OAIG;IACH,OAAO,CAAC,kCAAkC;IA2B1C;;;;;;;;OAQG;IACH,kBAAkB,CAAC,QAAQ,EAAE,eAAe;IAS5C;;;;;;;;;;OAUG;IACH,uBAAuB,CAAC,QAAQ,EAAE,oBAAoB;IAItD;;;;;;;;;;;;;;;OAeG;IACH,mBAAmB;IAInB;;;;;;;;;;;;;;;;OAgBG;IACH,kBAAkB,CAAC,EACjB,MAAc,EACd,QAAQ,GACT,GAAE;QACD,MAAM,CAAC,EAAE,OAAO,CAAC;QACjB,QAAQ,CAAC,EAAE,oBAAoB,CAAC;KAC5B;IAYN;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA4BG;IACH,OAAO,CACL,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,GAC1B,OAAO,CAAC,QAAQ,CAAC;IAIpB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAgCG;IACG,UAAU,CAAC,MAAM,EAAE,kBAAkB,GAAG,OAAO,CAAC,GAAG,CAAC;CAgD3D"}
+{"version":3,"file":"wayfinder.d.ts","sourceRoot":"","sources":["../src/wayfinder.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAIH,OAAO,EAAE,KAAK,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EACL,mBAAmB,EACnB,kBAAkB,EACnB,MAAM,+BAA+B,CAAC;AACvC,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAC;AAEjE,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAOhD,OAAO,KAAK,EACV,qBAAqB,EACrB,gBAAgB,EAChB,MAAM,EACN,eAAe,EACf,iBAAiB,EACjB,oBAAoB,EACpB,gBAAgB,EAChB,oBAAoB,EACpB,YAAY,EACZ,kBAAkB,EACnB,MAAM,YAAY,CAAC;AAKpB,eAAO,MAAM,6BAA6B,GAAI,cAE3C;IACD,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;;;CAMA,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,kBAAkB,GAC7B,QAAQ,kBAAkB,KACzB,YAoCF,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,kBAAkB,GAC7B,OAAO,MAAM,KACZ;IACD,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;CA0CnB,CAAC;AAEF;;;;;;;GAOG;AACH,eAAO,MAAM,mBAAmB,GAAI,uCAIjC;IACD,eAAe,EAAE,GAAG,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;CACd,KAAG,GA8BH,CAAC;AAEF;;GAEG;AACH,qBAAa,SAAS;IACpB;;;;;;OAMG;IACH,SAAgB,gBAAgB,EAAE,gBAAgB,CAAC;IAEnD;;;;OAIG;IACH,SAAgB,eAAe,EAAE,QAAQ,CACvC,WAAW,CAAC,gBAAgB,CAAC,iBAAiB,CAAC,CAAC,CACjD,CAAC;IACF;;OAEG;IACH,SAAgB,oBAAoB,EAAE,QAAQ,CAC5C,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,sBAAsB,CAAC,CAAC,EAAE,UAAU,CAAC,CACxE,GAAG;QACF,QAAQ,EAAE,oBAAoB,GAAG,SAAS,CAAC;KAC5C,CAAC;IAEF;;OAEG;IACH,SAAgB,iBAAiB,EAAE,iBAAiB,CAAC;IAErD;;OAEG;IACH,SAAS,CAAC,cAAc,CAAC,EACrB,iBAAiB,GACjB,kBAAkB,GAClB,mBAAmB,CAAC;IAExB;;OAEG;IACH,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IAE1B;;OAEG;IACH,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC;IAEzB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAyDG;IACH,SAAgB,OAAO,EAAE,gBAAgB,CAAC;IAE1C;;OAEG;IACH,SAAS,CAAC,qBAAqB,EAAE,qBAAqB,CAAC;IAEvD;;;OAGG;IACH;;OAEG;IACH,SAAS,CAAC,KAAK,EAAE,CACf,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,KACxB,OAAO,CAAC,QAAQ,CAAC,CAAC;gBAEX,EACV,MAAM,EACN,KAAK,EACL,gBAAgB,EAChB,oBAAoB,EACpB,eAAe,EACf,iBAAiB,EACjB,qBAAqB,GACtB,GAAE,gBAAqB;IAoHxB;;;;OAIG;IACH,OAAO,CAAC,kCAAkC;IA2B1C;;;;;;;;OAQG;IACH,kBAAkB,CAAC,QAAQ,EAAE,eAAe;IAS5C;;;;;;;;;;OAUG;IACH,uBAAuB,CAAC,QAAQ,EAAE,oBAAoB;IAItD;;;;;;;;;;;;;;;OAeG;IACH,mBAAmB;IAInB;;;;;;;;;;;;;;;;OAgBG;IACH,kBAAkB,CAAC,EACjB,MAAc,EACd,QAAQ,GACT,GAAE;QACD,MAAM,CAAC,EAAE,OAAO,CAAC;QACjB,QAAQ,CAAC,EAAE,oBAAoB,CAAC;KAC5B;IAYN;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA4BG;IACH,OAAO,CACL,KAAK,EAAE,GAAG,GAAG,WAAW,EACxB,IAAI,CAAC,EAAE,oBAAoB,GAC1B,OAAO,CAAC,QAAQ,CAAC;IAIpB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAgCG;IACG,UAAU,CAAC,MAAM,EAAE,kBAAkB,GAAG,OAAO,CAAC,GAAG,CAAC;CAgD3D"}

package/dist/wayfinder.js

@@ -209,7 +209,7 @@ export class Wayfinder {
      * const wayfinder = new Wayfinder({
      *   verificationSettings: {
      *     strategy: new HashVerificationStrategy({
-     *       trustedGateways: [new URL('https://permagate.io')],
+     *       trustedGateways: [new URL('https://turbo-gateway.com')],
      *     }),
      *     events: {
      *       onVerificationProgress: (event) => {
@@ -263,7 +263,7 @@ export class Wayfinder {
         this.gatewaysProvider =
             gatewaysProvider ??
                 new TrustedPeersGatewaysProvider({
-                    trustedGateway: 'https://arweave.net',
+                    trustedGateway: 'https://turbo-gateway.com',
                     logger: this.logger,
                 });
         // default verification settings
@@ -272,10 +272,11 @@ export class Wayfinder {
                 verificationSettings?.strategy !== undefined,
             events: {},
             strict: false,
+            raw: false,
             strategy: (verificationSettings?.strategy ?? verificationSettings?.enabled)
                 ? new HashVerificationStrategy({
                     logger,
-                    trustedGateways: [new URL('https://permagate.io')],
+                    trustedGateways: [new URL('https://turbo-gateway.com')],
                 })
                 : undefined,
             // overwrite the default settings with the provided ones
@@ -390,7 +391,7 @@ export class Wayfinder {
      * @example
      * const wayfinder = new Wayfinder();
      * wayfinder.setVerificationStrategy(new HashVerificationStrategy({
-     *   trustedGateways: [new URL('https://permagate.io')],
+     *   trustedGateways: [new URL('https://turbo-gateway.com')],
      * }));
      *
      * @param strategy - The verification strategy to use
@@ -442,7 +443,7 @@ export class Wayfinder {
                 this.verificationSettings.strategy ??
                 new HashVerificationStrategy({
                     logger: this.logger,
-                    trustedGateways: [new URL('https://permagate.io')],
+                    trustedGateways: [new URL('https://turbo-gateway.com')],
                 });
     }
     /**
@@ -452,7 +453,7 @@ export class Wayfinder {
      * @example
      * const wayfinder = new Wayfinder({
      *   verificationStrategy: new HashVerificationStrategy({
-     *     trustedGateways: [new URL('https://permagate.io')],
+     *     trustedGateways: [new URL('https://turbo-gateway.com')],
      *   }),
      * })
      *

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@ar.io/wayfinder-core",
-  "version": "1.9.0",
+  "version": "1.9.2",
   "description": "WayFinder core library for intelligently routing to optimal AR.IO gateways",
   "main": "dist/index.js",
   "module": "dist/index.js",