@arcblock/vc 1.29.17 → 1.29.19

package/esm/index.d.mts

@@ -2,12 +2,19 @@ import { WalletObject } from "@ocap/wallet";
 import stringify from "json-stable-stringify";
 
 //#region src/index.d.ts
+interface VerificationMethod {
+  id: string;
+  type: string;
+  controller: string;
+  publicKeyMultibase: string;
+}
 interface Proof {
   type: string;
   created: string;
   proofPurpose: string;
   jws: string;
   pk?: string;
+  verificationMethod?: string;
 }
 interface Issuer {
   id: string;
@@ -24,14 +31,15 @@ interface CredentialStatus {
   scope: string;
 }
 interface VerifiableCredential {
-  '@context': string;
+  '@context': string | string[];
   id: string;
-  type: string;
+  type: string | string[];
   issuer: Issuer;
   issuanceDate: string;
   expirationDate?: string;
   credentialSubject: CredentialSubject;
-  proof: Proof;
+  verificationMethod?: VerificationMethod[];
+  proof: Proof | Proof[];
   tag?: string;
   credentialStatus?: CredentialStatus;
   signature?: unknown;
@@ -50,10 +58,12 @@ interface Credential {
   id: string;
   issued: string;
   issuer: Issuer;
-  proof: Proof;
+  verificationMethod?: VerificationMethod[];
+  proof: Proof | Proof[];
   claim: unknown;
 }
 declare const proofTypes: Record<number, string>;
+declare const verificationKeyTypes: Record<number, string>;
 /**
  * Create a valid verifiable credential
  *
@@ -77,7 +87,7 @@ declare function create({
   endpoint,
   endpointScope
 }: {
-  type: string;
+  type: string | string[];
   subject: CredentialSubject;
   issuer: IssuerInfo;
   issuanceDate?: string;
@@ -152,4 +162,4 @@ declare function verifyCredentialList({
 }): Promise<unknown[]>;
 declare const stableStringify: typeof stringify;
 //#endregion
-export { create, createCredentialList, proofTypes, stableStringify, verify, verifyCredentialList, verifyPresentation };
+export { create, createCredentialList, proofTypes, stableStringify, verificationKeyTypes, verify, verifyCredentialList, verifyPresentation };

package/esm/index.mjs

@@ -22,6 +22,18 @@ const proofTypes = {
 	[types.KeyType.SECP256K1]: "Secp256k1Signature",
 	[types.KeyType.ETHEREUM]: "EthereumSignature"
 };
+const verificationKeyTypes = {
+	[types.KeyType.ED25519]: "Ed25519VerificationKey2020",
+	[types.KeyType.SECP256K1]: "EcdsaSecp256k1VerificationKey2019",
+	[types.KeyType.ETHEREUM]: "EcdsaSecp256k1VerificationKey2019"
+};
+function resolvePublicKey(proof, verificationMethods, fallbackPk) {
+	if (proof.verificationMethod && verificationMethods?.length) {
+		const keyEntry = verificationMethods.find((k) => k.id === proof.verificationMethod);
+		if (keyEntry?.publicKeyMultibase) return keyEntry.publicKeyMultibase;
+	}
+	return fallbackPk;
+}
 /**
 * Create a valid verifiable credential
 *
@@ -36,7 +48,9 @@ const proofTypes = {
 * @returns Promise<object>
 */
 async function create({ type, subject, issuer, issuanceDate, expirationDate, tag = "", endpoint = "", endpointScope = "public" }) {
-	if (!type) throw new Error("Can not create verifiable credential without empty type");
+	const typeArray = Array.isArray(type) ? [...type] : type ? [type] : [];
+	if (typeArray.length === 0 || typeArray.some((t) => !t)) throw new Error("Can not create verifiable credential without empty type");
+	if (!typeArray.includes("VerifiableCredential")) typeArray.unshift("VerifiableCredential");
 	if (!subject) throw new Error("Can not create verifiable credential from empty subject");
 	if (!subject.id) throw new Error("Can not create verifiable credential without holder");
 	if (!isValid(subject.id)) throw new Error("Can not create verifiable credential invalid holder did");
@@ -50,19 +64,29 @@ async function create({ type, subject, issuer, issuanceDate, expirationDate, tag
 		role: types.RoleType.ROLE_VC
 	};
 	const vcDid = fromPublicKeyHash(wallet.hash(stringify(subject)), vcType);
+	const pkType = typeInfo.pk;
+	if (!proofTypes[pkType]) throw new Error("Unsupported signer type when create verifiable credential");
 	const issuanceDateValue = issuanceDate || (/* @__PURE__ */ new Date()).toISOString();
+	const issuerPk = toBase58(wallet.publicKey);
+	const keyId = `did:abt:${issuerDid}#key-1`;
 	const vcObj = {
-		"@context": "https://schema.arcblock.io/v0.1/context.jsonld",
+		"@context": ["https://www.w3.org/2018/credentials/v1", "https://schema.arcblock.io/v0.1/context.jsonld"],
 		id: vcDid,
-		type,
+		type: typeArray,
 		issuer: {
 			id: issuerDid,
-			pk: toBase58(wallet.publicKey),
+			pk: issuerPk,
 			name: issuerName || issuerDid
 		},
 		issuanceDate: issuanceDateValue,
 		expirationDate,
-		credentialSubject: subject
+		credentialSubject: subject,
+		verificationMethod: [{
+			id: keyId,
+			type: verificationKeyTypes[pkType],
+			controller: `did:abt:${issuerDid}`,
+			publicKeyMultibase: issuerPk
+		}]
 	};
 	if (tag) vcObj.tag = tag;
 	if (endpoint) vcObj.credentialStatus = {
@@ -70,14 +94,13 @@ async function create({ type, subject, issuer, issuanceDate, expirationDate, tag
 		type: "NFTStatusList2021",
 		scope: endpointScope || "public"
 	};
-	const pkType = typeInfo.pk;
-	if (!proofTypes[pkType]) throw new Error("Unsupported signer type when create verifiable credential");
 	const signature = await wallet.sign(stringify(vcObj));
 	const result = {
 		proof: {
 			type: proofTypes[pkType],
 			created: issuanceDateValue,
 			proofPurpose: "assertionMethod",
+			verificationMethod: keyId,
 			jws: toBase64(signature)
 		},
 		...vcObj
@@ -107,7 +130,8 @@ async function verify({ vc, ownerDid, trustedIssuers, ignoreExpired = false }) {
 	if (!vc) throw new Error("Empty verifiable credential object");
 	if (!vc.issuer || !vc.issuer.id || !vc.issuer.pk || !isValid(vc.issuer.id)) throw new Error("Invalid verifiable credential issuer");
 	if (!vc.credentialSubject || !vc.credentialSubject.id || !isValid(vc.credentialSubject.id)) throw new Error("Invalid verifiable credential subject");
-	if (!vc.proof || !vc.proof.jws) throw new Error("Invalid verifiable credential proof");
+	const proofList = Array.isArray(vc.proof) ? vc.proof : vc.proof ? [vc.proof] : [];
+	if (proofList.length === 0 || proofList.some((p) => !p || !p.jws)) throw new Error("Invalid verifiable credential proof");
 	if (vc.issuanceDate === void 0) throw Error("Invalid verifiable credential issue date");
 	if (new Date(vc.issuanceDate).getTime() > Date.now()) throw Error("Verifiable credential has not take effect");
 	if (!ignoreExpired && vc.expirationDate !== void 0 && new Date(vc.expirationDate).getTime() < Date.now()) throw Error("Verifiable credential has expired");
@@ -115,12 +139,11 @@ async function verify({ vc, ownerDid, trustedIssuers, ignoreExpired = false }) {
 	if (!issuerDid) throw new Error("Verifiable credential not issued by trusted issuers");
 	if (!isFromPublicKey(issuerDid, vc.issuer.pk)) throw new Error("Verifiable credential not issuer pk not match with issuer did");
 	if (ownerDid !== vc.credentialSubject.id) throw new Error("Verifiable credential not owned by specified owner did");
-	const issuerWallet = fromPublicKey(vc.issuer.pk, toTypeInfo(issuerDid));
 	const clone = cloneDeep(vc);
-	const signatureStr = clone.proof.jws;
 	delete clone.proof;
 	delete clone.signature;
-	if (await issuerWallet.verify(stringify(clone), fromBase64(signatureStr)) !== true) throw Error("Verifiable credential signature not valid");
+	const signedContent = stringify(clone);
+	for (const proof of proofList) if (await fromPublicKey(resolvePublicKey(proof, vc.verificationMethod, vc.issuer.pk), toTypeInfo(issuerDid)).verify(signedContent, fromBase64(proof.jws)) !== true) throw Error("Verifiable credential signature not valid");
 	return true;
 }
 /**
@@ -170,20 +193,29 @@ async function createCredentialList({ claims, issuer, issuanceDate }) {
 	};
 	const issued = issuanceDate || (/* @__PURE__ */ new Date()).toISOString();
 	const pkType = typeInfo.pk;
+	const issuerPk = toBase58(wallet.publicKey);
+	const keyId = `did:abt:${issuerDid}#key-1`;
 	return await Promise.all(claims.map(async (x) => {
 		const vc = { claim: x };
 		vc.id = fromPublicKeyHash(wallet.hash(stringify(vc.claim)), vcType);
 		vc.issued = issued;
 		vc.issuer = {
 			id: issuerDid,
-			pk: toBase58(wallet.publicKey),
+			pk: issuerPk,
 			name: name$1 || issuerDid
 		};
+		vc.verificationMethod = [{
+			id: keyId,
+			type: verificationKeyTypes[pkType],
+			controller: `did:abt:${issuerDid}`,
+			publicKeyMultibase: issuerPk
+		}];
 		const signature = await wallet.sign(stringify(vc));
 		vc.proof = {
 			type: proofTypes[pkType],
 			created: issued,
 			proofPurpose: "assertionMethod",
+			verificationMethod: keyId,
 			jws: toBase64(signature)
 		};
 		return vc;
@@ -195,15 +227,16 @@ async function verifyCredentialList({ credentials, trustedIssuers }) {
 		const issuerDid = (Array.isArray(trustedIssuers) ? trustedIssuers : [trustedIssuers]).find((d) => d === x.issuer.id);
 		if (!issuerDid) throw new Error("Credential not issued by trusted issuers");
 		if (!isFromPublicKey(issuerDid, x.issuer.pk)) throw new Error("Credential not issuer pk not match with issuer did");
-		const issuerWallet = fromPublicKey(x.issuer.pk, toTypeInfo(issuerDid));
+		const proofList = Array.isArray(x.proof) ? x.proof : x.proof ? [x.proof] : [];
+		if (proofList.length === 0 || proofList.some((p) => !p || !p.jws)) throw new Error("Invalid credential proof");
 		const clone = cloneDeep(x);
-		const signatureStr = clone.proof.jws;
 		delete clone.proof;
-		if (await issuerWallet.verify(stringify(clone), fromBase64(signatureStr)) !== true) throw Error("Status credential signature not valid");
+		const signedContent = stringify(clone);
+		for (const proof of proofList) if (await fromPublicKey(resolvePublicKey(proof, x.verificationMethod, x.issuer.pk), toTypeInfo(issuerDid)).verify(signedContent, fromBase64(proof.jws)) !== true) throw Error("Status credential signature not valid");
 		return x.claim;
 	}));
 }
 const stableStringify = stringify;
 
 //#endregion
-export { create, createCredentialList, proofTypes, stableStringify, verify, verifyCredentialList, verifyPresentation };
+export { create, createCredentialList, proofTypes, stableStringify, verificationKeyTypes, verify, verifyCredentialList, verifyPresentation };

package/lib/index.cjs

@@ -27,6 +27,18 @@ const proofTypes = {
 	[_ocap_mcrypto.types.KeyType.SECP256K1]: "Secp256k1Signature",
 	[_ocap_mcrypto.types.KeyType.ETHEREUM]: "EthereumSignature"
 };
+const verificationKeyTypes = {
+	[_ocap_mcrypto.types.KeyType.ED25519]: "Ed25519VerificationKey2020",
+	[_ocap_mcrypto.types.KeyType.SECP256K1]: "EcdsaSecp256k1VerificationKey2019",
+	[_ocap_mcrypto.types.KeyType.ETHEREUM]: "EcdsaSecp256k1VerificationKey2019"
+};
+function resolvePublicKey(proof, verificationMethods, fallbackPk) {
+	if (proof.verificationMethod && verificationMethods?.length) {
+		const keyEntry = verificationMethods.find((k) => k.id === proof.verificationMethod);
+		if (keyEntry?.publicKeyMultibase) return keyEntry.publicKeyMultibase;
+	}
+	return fallbackPk;
+}
 /**
 * Create a valid verifiable credential
 *
@@ -41,7 +53,9 @@ const proofTypes = {
 * @returns Promise<object>
 */
 async function create({ type, subject, issuer, issuanceDate, expirationDate, tag = "", endpoint = "", endpointScope = "public" }) {
-	if (!type) throw new Error("Can not create verifiable credential without empty type");
+	const typeArray = Array.isArray(type) ? [...type] : type ? [type] : [];
+	if (typeArray.length === 0 || typeArray.some((t) => !t)) throw new Error("Can not create verifiable credential without empty type");
+	if (!typeArray.includes("VerifiableCredential")) typeArray.unshift("VerifiableCredential");
 	if (!subject) throw new Error("Can not create verifiable credential from empty subject");
 	if (!subject.id) throw new Error("Can not create verifiable credential without holder");
 	if (!(0, _arcblock_did.isValid)(subject.id)) throw new Error("Can not create verifiable credential invalid holder did");
@@ -55,19 +69,29 @@ async function create({ type, subject, issuer, issuanceDate, expirationDate, tag
 		role: _ocap_mcrypto.types.RoleType.ROLE_VC
 	};
 	const vcDid = (0, _arcblock_did.fromPublicKeyHash)(wallet.hash((0, json_stable_stringify.default)(subject)), vcType);
+	const pkType = typeInfo.pk;
+	if (!proofTypes[pkType]) throw new Error("Unsupported signer type when create verifiable credential");
 	const issuanceDateValue = issuanceDate || (/* @__PURE__ */ new Date()).toISOString();
+	const issuerPk = (0, _ocap_util.toBase58)(wallet.publicKey);
+	const keyId = `did:abt:${issuerDid}#key-1`;
 	const vcObj = {
-		"@context": "https://schema.arcblock.io/v0.1/context.jsonld",
+		"@context": ["https://www.w3.org/2018/credentials/v1", "https://schema.arcblock.io/v0.1/context.jsonld"],
 		id: vcDid,
-		type,
+		type: typeArray,
 		issuer: {
 			id: issuerDid,
-			pk: (0, _ocap_util.toBase58)(wallet.publicKey),
+			pk: issuerPk,
 			name: issuerName || issuerDid
 		},
 		issuanceDate: issuanceDateValue,
 		expirationDate,
-		credentialSubject: subject
+		credentialSubject: subject,
+		verificationMethod: [{
+			id: keyId,
+			type: verificationKeyTypes[pkType],
+			controller: `did:abt:${issuerDid}`,
+			publicKeyMultibase: issuerPk
+		}]
 	};
 	if (tag) vcObj.tag = tag;
 	if (endpoint) vcObj.credentialStatus = {
@@ -75,14 +99,13 @@ async function create({ type, subject, issuer, issuanceDate, expirationDate, tag
 		type: "NFTStatusList2021",
 		scope: endpointScope || "public"
 	};
-	const pkType = typeInfo.pk;
-	if (!proofTypes[pkType]) throw new Error("Unsupported signer type when create verifiable credential");
 	const signature = await wallet.sign((0, json_stable_stringify.default)(vcObj));
 	const result = {
 		proof: {
 			type: proofTypes[pkType],
 			created: issuanceDateValue,
 			proofPurpose: "assertionMethod",
+			verificationMethod: keyId,
 			jws: (0, _ocap_util.toBase64)(signature)
 		},
 		...vcObj
@@ -112,7 +135,8 @@ async function verify({ vc, ownerDid, trustedIssuers, ignoreExpired = false }) {
 	if (!vc) throw new Error("Empty verifiable credential object");
 	if (!vc.issuer || !vc.issuer.id || !vc.issuer.pk || !(0, _arcblock_did.isValid)(vc.issuer.id)) throw new Error("Invalid verifiable credential issuer");
 	if (!vc.credentialSubject || !vc.credentialSubject.id || !(0, _arcblock_did.isValid)(vc.credentialSubject.id)) throw new Error("Invalid verifiable credential subject");
-	if (!vc.proof || !vc.proof.jws) throw new Error("Invalid verifiable credential proof");
+	const proofList = Array.isArray(vc.proof) ? vc.proof : vc.proof ? [vc.proof] : [];
+	if (proofList.length === 0 || proofList.some((p) => !p || !p.jws)) throw new Error("Invalid verifiable credential proof");
 	if (vc.issuanceDate === void 0) throw Error("Invalid verifiable credential issue date");
 	if (new Date(vc.issuanceDate).getTime() > Date.now()) throw Error("Verifiable credential has not take effect");
 	if (!ignoreExpired && vc.expirationDate !== void 0 && new Date(vc.expirationDate).getTime() < Date.now()) throw Error("Verifiable credential has expired");
@@ -120,12 +144,11 @@ async function verify({ vc, ownerDid, trustedIssuers, ignoreExpired = false }) {
 	if (!issuerDid) throw new Error("Verifiable credential not issued by trusted issuers");
 	if (!(0, _arcblock_did.isFromPublicKey)(issuerDid, vc.issuer.pk)) throw new Error("Verifiable credential not issuer pk not match with issuer did");
 	if (ownerDid !== vc.credentialSubject.id) throw new Error("Verifiable credential not owned by specified owner did");
-	const issuerWallet = (0, _ocap_wallet.fromPublicKey)(vc.issuer.pk, (0, _arcblock_did.toTypeInfo)(issuerDid));
 	const clone = (0, lodash_cloneDeep.default)(vc);
-	const signatureStr = clone.proof.jws;
 	delete clone.proof;
 	delete clone.signature;
-	if (await issuerWallet.verify((0, json_stable_stringify.default)(clone), (0, _ocap_util.fromBase64)(signatureStr)) !== true) throw Error("Verifiable credential signature not valid");
+	const signedContent = (0, json_stable_stringify.default)(clone);
+	for (const proof of proofList) if (await (0, _ocap_wallet.fromPublicKey)(resolvePublicKey(proof, vc.verificationMethod, vc.issuer.pk), (0, _arcblock_did.toTypeInfo)(issuerDid)).verify(signedContent, (0, _ocap_util.fromBase64)(proof.jws)) !== true) throw Error("Verifiable credential signature not valid");
 	return true;
 }
 /**
@@ -175,20 +198,29 @@ async function createCredentialList({ claims, issuer, issuanceDate }) {
 	};
 	const issued = issuanceDate || (/* @__PURE__ */ new Date()).toISOString();
 	const pkType = typeInfo.pk;
+	const issuerPk = (0, _ocap_util.toBase58)(wallet.publicKey);
+	const keyId = `did:abt:${issuerDid}#key-1`;
 	return await Promise.all(claims.map(async (x) => {
 		const vc = { claim: x };
 		vc.id = (0, _arcblock_did.fromPublicKeyHash)(wallet.hash((0, json_stable_stringify.default)(vc.claim)), vcType);
 		vc.issued = issued;
 		vc.issuer = {
 			id: issuerDid,
-			pk: (0, _ocap_util.toBase58)(wallet.publicKey),
+			pk: issuerPk,
 			name: name$1 || issuerDid
 		};
+		vc.verificationMethod = [{
+			id: keyId,
+			type: verificationKeyTypes[pkType],
+			controller: `did:abt:${issuerDid}`,
+			publicKeyMultibase: issuerPk
+		}];
 		const signature = await wallet.sign((0, json_stable_stringify.default)(vc));
 		vc.proof = {
 			type: proofTypes[pkType],
 			created: issued,
 			proofPurpose: "assertionMethod",
+			verificationMethod: keyId,
 			jws: (0, _ocap_util.toBase64)(signature)
 		};
 		return vc;
@@ -200,11 +232,12 @@ async function verifyCredentialList({ credentials, trustedIssuers }) {
 		const issuerDid = (Array.isArray(trustedIssuers) ? trustedIssuers : [trustedIssuers]).find((d) => d === x.issuer.id);
 		if (!issuerDid) throw new Error("Credential not issued by trusted issuers");
 		if (!(0, _arcblock_did.isFromPublicKey)(issuerDid, x.issuer.pk)) throw new Error("Credential not issuer pk not match with issuer did");
-		const issuerWallet = (0, _ocap_wallet.fromPublicKey)(x.issuer.pk, (0, _arcblock_did.toTypeInfo)(issuerDid));
+		const proofList = Array.isArray(x.proof) ? x.proof : x.proof ? [x.proof] : [];
+		if (proofList.length === 0 || proofList.some((p) => !p || !p.jws)) throw new Error("Invalid credential proof");
 		const clone = (0, lodash_cloneDeep.default)(x);
-		const signatureStr = clone.proof.jws;
 		delete clone.proof;
-		if (await issuerWallet.verify((0, json_stable_stringify.default)(clone), (0, _ocap_util.fromBase64)(signatureStr)) !== true) throw Error("Status credential signature not valid");
+		const signedContent = (0, json_stable_stringify.default)(clone);
+		for (const proof of proofList) if (await (0, _ocap_wallet.fromPublicKey)(resolvePublicKey(proof, x.verificationMethod, x.issuer.pk), (0, _arcblock_did.toTypeInfo)(issuerDid)).verify(signedContent, (0, _ocap_util.fromBase64)(proof.jws)) !== true) throw Error("Status credential signature not valid");
 		return x.claim;
 	}));
 }
@@ -215,6 +248,7 @@ exports.create = create;
 exports.createCredentialList = createCredentialList;
 exports.proofTypes = proofTypes;
 exports.stableStringify = stableStringify;
+exports.verificationKeyTypes = verificationKeyTypes;
 exports.verify = verify;
 exports.verifyCredentialList = verifyCredentialList;
 exports.verifyPresentation = verifyPresentation;

package/lib/index.d.cts

@@ -2,12 +2,19 @@ import { WalletObject } from "@ocap/wallet";
 import stringify from "json-stable-stringify";
 
 //#region src/index.d.ts
+interface VerificationMethod {
+  id: string;
+  type: string;
+  controller: string;
+  publicKeyMultibase: string;
+}
 interface Proof {
   type: string;
   created: string;
   proofPurpose: string;
   jws: string;
   pk?: string;
+  verificationMethod?: string;
 }
 interface Issuer {
   id: string;
@@ -24,14 +31,15 @@ interface CredentialStatus {
   scope: string;
 }
 interface VerifiableCredential {
-  '@context': string;
+  '@context': string | string[];
   id: string;
-  type: string;
+  type: string | string[];
   issuer: Issuer;
   issuanceDate: string;
   expirationDate?: string;
   credentialSubject: CredentialSubject;
-  proof: Proof;
+  verificationMethod?: VerificationMethod[];
+  proof: Proof | Proof[];
   tag?: string;
   credentialStatus?: CredentialStatus;
   signature?: unknown;
@@ -50,10 +58,12 @@ interface Credential {
   id: string;
   issued: string;
   issuer: Issuer;
-  proof: Proof;
+  verificationMethod?: VerificationMethod[];
+  proof: Proof | Proof[];
   claim: unknown;
 }
 declare const proofTypes: Record<number, string>;
+declare const verificationKeyTypes: Record<number, string>;
 /**
  * Create a valid verifiable credential
  *
@@ -77,7 +87,7 @@ declare function create({
   endpoint,
   endpointScope
 }: {
-  type: string;
+  type: string | string[];
   subject: CredentialSubject;
   issuer: IssuerInfo;
   issuanceDate?: string;
@@ -152,4 +162,4 @@ declare function verifyCredentialList({
 }): Promise<unknown[]>;
 declare const stableStringify: typeof stringify;
 //#endregion
-export { create, createCredentialList, proofTypes, stableStringify, verify, verifyCredentialList, verifyPresentation };
+export { create, createCredentialList, proofTypes, stableStringify, verificationKeyTypes, verify, verifyCredentialList, verifyPresentation };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@arcblock/vc",
-  "version": "1.29.17",
+  "version": "1.29.19",
   "description": "TypeScript lib to work with ArcBlock Verifiable Credentials",
   "keywords": [
     "arcblock",
@@ -72,10 +72,10 @@
     "url": "https://github.com/ArcBlock/blockchain/issues"
   },
   "dependencies": {
-    "@arcblock/did": "1.29.17",
-    "@ocap/mcrypto": "1.29.17",
-    "@ocap/util": "1.29.17",
-    "@ocap/wallet": "1.29.17",
+    "@arcblock/did": "1.29.19",
+    "@ocap/mcrypto": "1.29.19",
+    "@ocap/util": "1.29.19",
+    "@ocap/wallet": "1.29.19",
     "debug": "^4.4.3",
     "is-absolute-url": "^3.0.3",
     "json-stable-stringify": "^1.0.1",