@avaprotocol/sdk-js 2.17.0 → 3.1.0

package/dist/v4/auth.d.ts

@@ -0,0 +1,92 @@
+/**
+ * Canonical EIP-191 message template the aggregator's auth handler
+ * verifies. Must match the format documented in the API spec.
+ *
+ * Filled by `buildAuthMessage` below; the SDK exports both halves
+ * (build + sign) so non-SDK callers (web wallets, smart-account
+ * signers) can produce a message that exchanges cleanly.
+ */
+export declare const AUTH_TEMPLATE = "Please sign the below text for ownership verification.\n\nURI: {uri}\nChain ID: {chainId}\nVersion: {version}\nIssued At: {issuedAt}\nExpire At: {expireAt}\nWallet: {wallet}";
+export interface BuildAuthMessageInput {
+    /** EOA the JWT will be bound to. Lowercased / checksummed both work. */
+    ownerAddress: string;
+    /**
+     * Origin URL the user is authenticating against. Required — callers
+     * MUST pass the actual studio/app origin the user is on right now
+     * (e.g. `https://app.avaprotocol.org` in production, `http://localhost:3000`
+     * in local dev). Shows up in the wallet popup as the "site" the user
+     * is granting access to, so a dishonest value reads as a phishing
+     * attempt or a config bug. The aggregator currently does not validate
+     * this field, but it's a candidate for cross-origin replay protection
+     * if it's ever turned on server-side.
+     */
+    uri: string;
+    /**
+     * Chain ID to embed in the canonical message. Required — callers
+     * MUST pass the user's currently-connected wallet chain (e.g.
+     * `await wallet.getChainId()`). The aggregator echoes this into
+     * the JWT `aud` claim, which becomes the default chain for
+     * subsequent wallet RPCs. Hardcoding a value here would silently
+     * route every request to the wrong chain.
+     *
+     * Source this from the wallet itself (`provider.getNetwork()`,
+     * `wallet.getChainId()`, EIP-1193 `eth_chainId`), NOT from
+     * user-typed input or URL params — those can lie, and a JWT
+     * minted against a forged chain id will route the user's wallet
+     * RPCs to the wrong chain bucket.
+     */
+    chainId: number;
+    /**
+     * Gateway binary version to stamp into the message. Required —
+     * fetch it once per session via `client.health.check()` and pass
+     * the `version` field through. Pinning a literal here (the old
+     * `"v4-sdk"` default) lies about which gateway the message was
+     * signed against and breaks support triage.
+     */
+    version: string;
+    /** Issuance timestamp; defaults to `new Date()`. */
+    issuedAt?: Date;
+    /** Token expiry; defaults to 24h from issuedAt. */
+    expireAt?: Date;
+}
+export interface BuiltAuthMessage {
+    readonly message: string;
+    readonly chainId: number;
+    readonly ownerAddress: string;
+    readonly expireAt: Date;
+}
+/**
+ * Build the canonical auth message a wallet must sign. Pure — does
+ * no signing — so it can run in the browser before opening the wallet
+ * popup.
+ *
+ * @example
+ *   const { version } = await client.health.check();
+ *   const chainId = await wallet.getChainId();
+ *   const uri = window.location.origin; // or the studio's getSiteUrlOrDefault()
+ *   const { message } = buildAuthMessage({ ownerAddress, uri, chainId, version });
+ *   const signature = await wallet.signMessage(message);
+ *   const { token } = await client.auth.exchange({ ownerAddress, message, signature });
+ */
+export declare function buildAuthMessage(input: BuildAuthMessageInput): BuiltAuthMessage;
+/**
+ * One-shot helper: build the message, sign it with the supplied
+ * private key, and return the payload ready for
+ * `client.auth.exchange()`. Only useful in tests / Node tooling
+ * where the private key is in hand; browser flows use
+ * `buildAuthMessage` + a wallet's `personal_sign`.
+ *
+ * `uri`, `chainId`, and `version` are required for the same reasons as
+ * `buildAuthMessage` — silent defaults would lie about the origin the
+ * user is signing for, the chain the JWT is bound to, or the gateway
+ * it was signed against.
+ */
+export declare function signAuthMessage(privateKey: string, input: Omit<BuildAuthMessageInput, "ownerAddress"> & {
+    ownerAddress?: string;
+}): Promise<{
+    message: string;
+    signature: string;
+    ownerAddress: string;
+    expireAt: Date;
+}>;
+//# sourceMappingURL=auth.d.ts.map

package/dist/v4/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/v4/auth.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AACH,eAAO,MAAM,aAAa,kLAOT,CAAC;AAElB,MAAM,WAAW,qBAAqB;IACpC,wEAAwE;IACxE,YAAY,EAAE,MAAM,CAAC;IACrB;;;;;;;;;OASG;IACH,GAAG,EAAE,MAAM,CAAC;IACZ;;;;;;;;;;;;;OAaG;IACH,OAAO,EAAE,MAAM,CAAC;IAChB;;;;;;OAMG;IACH,OAAO,EAAE,MAAM,CAAC;IAChB,oDAAoD;IACpD,QAAQ,CAAC,EAAE,IAAI,CAAC;IAChB,mDAAmD;IACnD,QAAQ,CAAC,EAAE,IAAI,CAAC;CACjB;AAED,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAC;IAC9B,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC;CACzB;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,qBAAqB,GAAG,gBAAgB,CA0C/E;AAED;;;;;;;;;;;GAWG;AACH,wBAAsB,eAAe,CACnC,UAAU,EAAE,MAAM,EAClB,KAAK,EAAE,IAAI,CAAC,qBAAqB,EAAE,cAAc,CAAC,GAAG;IAAE,YAAY,CAAC,EAAE,MAAM,CAAA;CAAE,GAC7E,OAAO,CAAC;IAAE,OAAO,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAC;IAAC,YAAY,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,IAAI,CAAA;CAAE,CAAC,CA4BvF"}

package/dist/v4/auth.js

@@ -0,0 +1,108 @@
+import { Wallet, getAddress } from "ethers";
+/**
+ * Canonical EIP-191 message template the aggregator's auth handler
+ * verifies. Must match the format documented in the API spec.
+ *
+ * Filled by `buildAuthMessage` below; the SDK exports both halves
+ * (build + sign) so non-SDK callers (web wallets, smart-account
+ * signers) can produce a message that exchanges cleanly.
+ */
+export const AUTH_TEMPLATE = `Please sign the below text for ownership verification.
+
+URI: {uri}
+Chain ID: {chainId}
+Version: {version}
+Issued At: {issuedAt}
+Expire At: {expireAt}
+Wallet: {wallet}`;
+/**
+ * Build the canonical auth message a wallet must sign. Pure — does
+ * no signing — so it can run in the browser before opening the wallet
+ * popup.
+ *
+ * @example
+ *   const { version } = await client.health.check();
+ *   const chainId = await wallet.getChainId();
+ *   const uri = window.location.origin; // or the studio's getSiteUrlOrDefault()
+ *   const { message } = buildAuthMessage({ ownerAddress, uri, chainId, version });
+ *   const signature = await wallet.signMessage(message);
+ *   const { token } = await client.auth.exchange({ ownerAddress, message, signature });
+ */
+export function buildAuthMessage(input) {
+    const trimmedUri = typeof input.uri === "string" ? input.uri.trim() : "";
+    if (!trimmedUri) {
+        throw new Error("buildAuthMessage: uri must be a non-empty string (the origin the user is signing into, e.g. window.location.origin).");
+    }
+    try {
+        new URL(trimmedUri);
+    }
+    catch {
+        throw new Error("buildAuthMessage: uri must be a valid URL (e.g. window.location.origin).");
+    }
+    if (!Number.isInteger(input.chainId) || input.chainId <= 0) {
+        throw new Error("buildAuthMessage: chainId must be a positive integer (the wallet's currently-connected chain).");
+    }
+    if (typeof input.version !== "string" || input.version.length === 0) {
+        throw new Error("buildAuthMessage: version must be a non-empty string (fetch it from `client.health.check()`).");
+    }
+    const issuedAt = input.issuedAt ?? new Date();
+    const expireAt = input.expireAt ?? new Date(issuedAt.getTime() + 24 * 60 * 60 * 1000);
+    // Canonicalize the address so the wire form matches what the
+    // aggregator extracts via crypto.PubkeyToAddress.
+    const ownerAddress = getAddress(input.ownerAddress);
+    const replacements = {
+        "{uri}": trimmedUri,
+        "{chainId}": String(input.chainId),
+        "{version}": input.version,
+        "{issuedAt}": toRFC3339Millis(issuedAt),
+        "{expireAt}": toRFC3339Millis(expireAt),
+        "{wallet}": ownerAddress,
+    };
+    const message = AUTH_TEMPLATE.replace(/\{uri\}|\{chainId\}|\{version\}|\{issuedAt\}|\{expireAt\}|\{wallet\}/g, (m) => replacements[m]);
+    return { message, chainId: input.chainId, ownerAddress, expireAt };
+}
+/**
+ * One-shot helper: build the message, sign it with the supplied
+ * private key, and return the payload ready for
+ * `client.auth.exchange()`. Only useful in tests / Node tooling
+ * where the private key is in hand; browser flows use
+ * `buildAuthMessage` + a wallet's `personal_sign`.
+ *
+ * `uri`, `chainId`, and `version` are required for the same reasons as
+ * `buildAuthMessage` — silent defaults would lie about the origin the
+ * user is signing for, the chain the JWT is bound to, or the gateway
+ * it was signed against.
+ */
+export async function signAuthMessage(privateKey, input) {
+    // Defensive runtime guard for JS callers / TS callers casting through
+    // `any` who'd otherwise hit a cryptic "Cannot read properties of
+    // undefined" inside buildAuthMessage. The type-level requirement
+    // stands; this just makes the breaking-change error legible.
+    if (input == null || typeof input !== "object") {
+        throw new Error("signAuthMessage: input is required — pass { uri, chainId, version } (uri from the calling origin, chainId from the wallet's connected chain, version from client.health.check()).");
+    }
+    const signer = new Wallet(privateKey);
+    const built = buildAuthMessage({
+        ownerAddress: input.ownerAddress ?? signer.address,
+        uri: input.uri,
+        chainId: input.chainId,
+        version: input.version,
+        issuedAt: input.issuedAt,
+        expireAt: input.expireAt,
+    });
+    // signMessage performs EIP-191 personal_sign — the same prefix
+    // accounts.TextHash uses on the verifier side.
+    const signature = await signer.signMessage(built.message);
+    return {
+        message: built.message,
+        signature,
+        ownerAddress: built.ownerAddress,
+        expireAt: built.expireAt,
+    };
+}
+// toRFC3339Millis renders a Date as `2026-05-25T12:00:00.000Z`. Matches
+// the format the aggregator's verifier parses with the layout
+// `2006-01-02T15:04:05.000Z`.
+function toRFC3339Millis(d) {
+    return d.toISOString().replace(/(\.\d{3})\d*Z$/, "$1Z");
+}

package/dist/v4/builders/nodes.d.ts

@@ -0,0 +1,106 @@
+import type { v4 } from "@avaprotocol/types";
+/**
+ * Typed builders for the Node discriminated union. Same convention
+ * as `Triggers`: each builder returns a plain JSON object shaped
+ * like `v4.Node` (no class instances).
+ *
+ *   import { Nodes } from "@avaprotocol/sdk-js";
+ *   const node = Nodes.customCode({ id: "step1", name: "step1",
+ *     source: "return {ok: true};" });
+ *   await client.workflows.create({ trigger, nodes: [node], ... });
+ */
+export declare const Nodes: Readonly<{
+    ethTransfer(opts: {
+        id: string;
+        name: string;
+        destination: string;
+        amountWei: string;
+        chainId?: number;
+    }): v4.Node;
+    contractWrite(opts: {
+        id: string;
+        name: string;
+        contractAddress: string;
+        contractAbi?: ReadonlyArray<Record<string, unknown>>;
+        methodCalls?: Array<{
+            methodName: string;
+            methodParams?: string[];
+            callData?: string;
+            applyToFields?: string[];
+        }>;
+        callData?: string;
+        isSimulated?: boolean;
+        valueWei?: string;
+        gasLimit?: string;
+        chainId?: number;
+    }): v4.Node;
+    contractRead(opts: {
+        id: string;
+        name: string;
+        contractAddress: string;
+        contractAbi?: ReadonlyArray<Record<string, unknown>>;
+        methodCalls?: Array<{
+            methodName: string;
+            methodParams?: string[];
+            callData?: string;
+            applyToFields?: string[];
+        }>;
+        chainId?: number;
+    }): v4.Node;
+    graphqlQuery(opts: {
+        id: string;
+        name: string;
+        url: string;
+        query: string;
+        variables?: Record<string, string>;
+    }): v4.Node;
+    restApi(opts: {
+        id: string;
+        name: string;
+        url: string;
+        method: "GET" | "POST" | "PUT" | "PATCH" | "DELETE";
+        body?: string;
+        headers?: Record<string, string>;
+        options?: {
+            summarize?: boolean;
+        };
+    }): v4.Node;
+    branch(opts: {
+        id: string;
+        name: string;
+        conditions: Array<{
+            id: string;
+            expression: string;
+            type?: "if" | "elseIf" | "else";
+        }>;
+    }): v4.Node;
+    filter(opts: {
+        id: string;
+        name: string;
+        expression: string;
+        inputVariable: string;
+    }): v4.Node;
+    loop(opts: {
+        id: string;
+        name: string;
+        inputVariable: string;
+        iterVar?: string;
+        runner: v4.Node;
+    }): v4.Node;
+    customCode(opts: {
+        id: string;
+        name: string;
+        source: string;
+        lang?: v4.Lang;
+    }): v4.Node;
+    balance(opts: {
+        id: string;
+        name: string;
+        address: string;
+        chain: string;
+        includeSpam?: boolean;
+        includeZeroBalances?: boolean;
+        minUsdValueCents?: number;
+    }): v4.Node;
+}>;
+//# sourceMappingURL=nodes.d.ts.map

package/dist/v4/builders/nodes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"nodes.d.ts","sourceRoot":"","sources":["../../../src/v4/builders/nodes.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,EAAE,EAAE,MAAM,oBAAoB,CAAC;AAE7C;;;;;;;;;GASG;AACH,eAAO,MAAM,KAAK;sBACE;QAChB,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,EAAE,MAAM,CAAC;QACpB,SAAS,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,GAAG,EAAE,CAAC,IAAI;wBAaS;QAClB,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,eAAe,EAAE,MAAM,CAAC;QACxB,WAAW,CAAC,EAAE,aAAa,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;QACrD,WAAW,CAAC,EAAE,KAAK,CAAC;YAClB,UAAU,EAAE,MAAM,CAAC;YACnB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;YACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;YAClB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;SAC1B,CAAC,CAAC;QACH,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,WAAW,CAAC,EAAE,OAAO,CAAC;QACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,GAAG,EAAE,CAAC,IAAI;uBAkBQ;QACjB,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,eAAe,EAAE,MAAM,CAAC;QACxB,WAAW,CAAC,EAAE,aAAa,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;QACrD,WAAW,CAAC,EAAE,KAAK,CAAC;YAClB,UAAU,EAAE,MAAM,CAAC;YACnB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;YACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;YAClB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;SAC1B,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,GAAG,EAAE,CAAC,IAAI;uBAcQ;QACjB,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,GAAG,EAAE,MAAM,CAAC;QACZ,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KACpC,GAAG,EAAE,CAAC,IAAI;kBAaG;QACZ,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,GAAG,EAAE,MAAM,CAAC;QACZ,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,CAAC;QACpD,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,OAAO,CAAC,EAAE;YAAE,SAAS,CAAC,EAAE,OAAO,CAAA;SAAE,CAAC;KACnC,GAAG,EAAE,CAAC,IAAI;iBAeE;QACX,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,UAAU,EAAE,KAAK,CAAC;YAAE,EAAE,EAAE,MAAM,CAAC;YAAC,UAAU,EAAE,MAAM,CAAC;YAAC,IAAI,CAAC,EAAE,IAAI,GAAG,QAAQ,GAAG,MAAM,CAAA;SAAE,CAAC,CAAC;KACxF,GAAG,EAAE,CAAC,IAAI;iBASE;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC;QAAC,UAAU,EAAE,MAAM,CAAC;QAAC,aAAa,EAAE,MAAM,CAAA;KAAE,GAAG,EAAE,CAAC,IAAI;eASnF;QACT,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,aAAa,EAAE,MAAM,CAAC;QACtB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,EAAE,CAAC,IAAI,CAAC;KACjB,GAAG,EAAE,CAAC,IAAI;qBAaM;QACf,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC;KAChB,GAAG,EAAE,CAAC,IAAI;kBAYG;QACZ,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,KAAK,EAAE,MAAM,CAAC;QACd,WAAW,CAAC,EAAE,OAAO,CAAC;QACtB,mBAAmB,CAAC,EAAE,OAAO,CAAC;QAC9B,gBAAgB,CAAC,EAAE,MAAM,CAAC;KAC3B,GAAG,EAAE,CAAC,IAAI;EAcX,CAAC"}

package/dist/v4/builders/nodes.js

@@ -0,0 +1,133 @@
+/**
+ * Typed builders for the Node discriminated union. Same convention
+ * as `Triggers`: each builder returns a plain JSON object shaped
+ * like `v4.Node` (no class instances).
+ *
+ *   import { Nodes } from "@avaprotocol/sdk-js";
+ *   const node = Nodes.customCode({ id: "step1", name: "step1",
+ *     source: "return {ok: true};" });
+ *   await client.workflows.create({ trigger, nodes: [node], ... });
+ */
+export const Nodes = Object.freeze({
+    ethTransfer(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "ethTransfer",
+            config: {
+                destination: opts.destination,
+                amount: opts.amountWei,
+                ...(opts.chainId ? { chainId: opts.chainId } : {}),
+            },
+        };
+    },
+    contractWrite(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "contractWrite",
+            config: {
+                contractAddress: opts.contractAddress,
+                ...(opts.contractAbi ? { contractAbi: opts.contractAbi } : {}),
+                ...(opts.methodCalls ? { methodCalls: opts.methodCalls } : {}),
+                ...(opts.callData ? { callData: opts.callData } : {}),
+                ...(opts.isSimulated !== undefined ? { isSimulated: opts.isSimulated } : {}),
+                ...(opts.valueWei ? { value: opts.valueWei } : {}),
+                ...(opts.gasLimit ? { gasLimit: opts.gasLimit } : {}),
+                ...(opts.chainId ? { chainId: opts.chainId } : {}),
+            },
+        };
+    },
+    contractRead(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "contractRead",
+            config: {
+                contractAddress: opts.contractAddress,
+                ...(opts.contractAbi ? { contractAbi: opts.contractAbi } : {}),
+                ...(opts.methodCalls ? { methodCalls: opts.methodCalls } : {}),
+                ...(opts.chainId ? { chainId: opts.chainId } : {}),
+            },
+        };
+    },
+    graphqlQuery(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "graphqlQuery",
+            config: {
+                url: opts.url,
+                query: opts.query,
+                ...(opts.variables ? { variables: opts.variables } : {}),
+            },
+        };
+    },
+    restApi(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "restApi",
+            config: {
+                url: opts.url,
+                method: opts.method,
+                ...(opts.body ? { body: opts.body } : {}),
+                ...(opts.headers ? { headers: opts.headers } : {}),
+                ...(opts.options ? { options: opts.options } : {}),
+            },
+        };
+    },
+    branch(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "branch",
+            config: { conditions: opts.conditions },
+        };
+    },
+    filter(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "filter",
+            config: { expression: opts.expression, inputVariable: opts.inputVariable },
+        };
+    },
+    loop(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "loop",
+            config: {
+                inputVariable: opts.inputVariable,
+                ...(opts.iterVar ? { iterVar: opts.iterVar } : {}),
+                runner: opts.runner,
+            },
+        };
+    },
+    customCode(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "customCode",
+            config: {
+                source: opts.source,
+                lang: opts.lang ?? "javascript",
+            },
+        };
+    },
+    balance(opts) {
+        return {
+            id: opts.id,
+            name: opts.name,
+            type: "balance",
+            config: {
+                address: opts.address,
+                chain: opts.chain,
+                ...(opts.includeSpam !== undefined ? { includeSpam: opts.includeSpam } : {}),
+                ...(opts.includeZeroBalances !== undefined ? { includeZeroBalances: opts.includeZeroBalances } : {}),
+                ...(opts.minUsdValueCents !== undefined ? { minUsdValueCents: opts.minUsdValueCents } : {}),
+            },
+        };
+    },
+});

package/dist/v4/builders/triggers.d.ts

@@ -0,0 +1,66 @@
+import type { v4 } from "@avaprotocol/types";
+/**
+ * Typed builders for the Trigger discriminated union. Output is a
+ * plain JSON object shaped like `v4.Trigger` (no class instances) so
+ * it round-trips cleanly across the REST boundary.
+ *
+ * Conventional usage:
+ *
+ *   import { Triggers } from "@avaprotocol/sdk-js";
+ *   const trigger = Triggers.cron({ name: "every5min", schedule: ["asterisk/5 * * * *"] });
+ *   const wf = await client.workflows.create({ trigger, nodes, ... });
+ *
+ * The builders ARE NOT classes — calling each returns a plain object
+ * the REST surface accepts. Keep the same shape on the wire whether
+ * SDK callers use the builder or hand-assemble the object.
+ */
+export declare const Triggers: Readonly<{
+    block(opts: {
+        name: string;
+        id?: string;
+        interval: number;
+        chainId?: number;
+    }): v4.Trigger;
+    cron(opts: {
+        name: string;
+        id?: string;
+        /** Crontab strings — multiple schedules OR together. */
+        schedule: string[];
+        timezone?: string;
+    }): v4.Trigger;
+    fixedTime(opts: {
+        name: string;
+        id?: string;
+        epochsMs: number[];
+    }): v4.Trigger;
+    manual(opts: {
+        name: string;
+        id?: string;
+        lang?: v4.Lang;
+        /** Payload returned in the trigger output when the workflow is triggered. */
+        data?: Record<string, unknown>;
+        /** Optional HTTP headers (for webhook-style testing). */
+        headers?: Record<string, string>;
+        /** Optional URL path params (for webhook-style testing). */
+        pathParams?: Record<string, string>;
+    }): v4.Trigger;
+    event(opts: {
+        name: string;
+        id?: string;
+        queries: Array<{
+            addresses?: string[];
+            /** Topic filters; empty string ("") matches any topic at that index. */
+            topics?: string[];
+            maxEventsPerBlock?: number;
+            conditions?: Array<{
+                fieldName: string;
+                operator: "eq" | "ne" | "gt" | "gte" | "lt" | "lte" | "contains";
+                fieldType?: string;
+                value: Record<string, unknown>;
+            }>;
+        }>;
+        chainId?: number;
+        cooldownSeconds?: number;
+    }): v4.Trigger;
+}>;
+//# sourceMappingURL=triggers.d.ts.map

package/dist/v4/builders/triggers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"triggers.d.ts","sourceRoot":"","sources":["../../../src/v4/builders/triggers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,EAAE,EAAE,MAAM,oBAAoB,CAAC;AAE7C;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,QAAQ;gBACP;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,EAAE,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,EAAE,CAAC,OAAO;eAc/E;QACT,IAAI,EAAE,MAAM,CAAC;QACb,EAAE,CAAC,EAAE,MAAM,CAAC;QACZ,wDAAwD;QACxD,QAAQ,EAAE,MAAM,EAAE,CAAC;QACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,GAAG,EAAE,CAAC,OAAO;oBAYE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,EAAE,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;KAAE,GAAG,EAAE,CAAC,OAAO;iBASjE;QACX,IAAI,EAAE,MAAM,CAAC;QACb,EAAE,CAAC,EAAE,MAAM,CAAC;QACZ,IAAI,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC;QACf,6EAA6E;QAC7E,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC/B,yDAAyD;QACzD,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACjC,4DAA4D;QAC5D,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KACrC,GAAG,EAAE,CAAC,OAAO;gBAcF;QACV,IAAI,EAAE,MAAM,CAAC;QACb,EAAE,CAAC,EAAE,MAAM,CAAC;QACZ,OAAO,EAAE,KAAK,CAAC;YACb,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;YACrB,wEAAwE;YACxE,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;YAClB,iBAAiB,CAAC,EAAE,MAAM,CAAC;YAC3B,UAAU,CAAC,EAAE,KAAK,CAAC;gBACjB,SAAS,EAAE,MAAM,CAAC;gBAClB,QAAQ,EAAE,IAAI,GAAG,IAAI,GAAG,IAAI,GAAG,KAAK,GAAG,IAAI,GAAG,KAAK,GAAG,UAAU,CAAC;gBACjE,SAAS,CAAC,EAAE,MAAM,CAAC;gBACnB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;aAChC,CAAC,CAAC;SACJ,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,eAAe,CAAC,EAAE,MAAM,CAAC;KAC1B,GAAG,EAAE,CAAC,OAAO;EAYd,CAAC"}

package/dist/v4/builders/triggers.js

@@ -0,0 +1,74 @@
+/**
+ * Typed builders for the Trigger discriminated union. Output is a
+ * plain JSON object shaped like `v4.Trigger` (no class instances) so
+ * it round-trips cleanly across the REST boundary.
+ *
+ * Conventional usage:
+ *
+ *   import { Triggers } from "@avaprotocol/sdk-js";
+ *   const trigger = Triggers.cron({ name: "every5min", schedule: ["asterisk/5 * * * *"] });
+ *   const wf = await client.workflows.create({ trigger, nodes, ... });
+ *
+ * The builders ARE NOT classes — calling each returns a plain object
+ * the REST surface accepts. Keep the same shape on the wire whether
+ * SDK callers use the builder or hand-assemble the object.
+ */
+export const Triggers = Object.freeze({
+    block(opts) {
+        return {
+            type: "block",
+            name: opts.name,
+            ...(opts.id ? { id: opts.id } : {}),
+            // The OpenAPI Trigger schema is a discriminated union — the
+            // inline shape below carries the BlockTrigger's `config` slot
+            // alongside the discriminator. Both forms (`{type, config}` and
+            // the `BlockTrigger.type` enum) survive the wire-level merge
+            // oapi-codegen's serializer performs.
+            config: { interval: opts.interval, ...(opts.chainId ? { chainId: opts.chainId } : {}) },
+        };
+    },
+    cron(opts) {
+        return {
+            type: "cron",
+            name: opts.name,
+            ...(opts.id ? { id: opts.id } : {}),
+            config: {
+                schedules: opts.schedule,
+                ...(opts.timezone ? { timezone: opts.timezone } : {}),
+            },
+        };
+    },
+    fixedTime(opts) {
+        return {
+            type: "fixedTime",
+            name: opts.name,
+            ...(opts.id ? { id: opts.id } : {}),
+            config: { epochs: opts.epochsMs },
+        };
+    },
+    manual(opts) {
+        return {
+            type: "manual",
+            name: opts.name,
+            ...(opts.id ? { id: opts.id } : {}),
+            config: {
+                lang: opts.lang ?? "json",
+                ...(opts.data !== undefined ? { data: opts.data } : {}),
+                ...(opts.headers ? { headers: opts.headers } : {}),
+                ...(opts.pathParams ? { pathParams: opts.pathParams } : {}),
+            },
+        };
+    },
+    event(opts) {
+        return {
+            type: "event",
+            name: opts.name,
+            ...(opts.id ? { id: opts.id } : {}),
+            config: {
+                queries: opts.queries,
+                ...(opts.chainId ? { chainId: opts.chainId } : {}),
+                ...(opts.cooldownSeconds !== undefined ? { cooldownSeconds: opts.cooldownSeconds } : {}),
+            },
+        };
+    },
+});

package/dist/v4/chains.d.ts

@@ -0,0 +1,19 @@
+export declare const Chains: Readonly<{
+    /**
+     * The chain the auth handler signs the canonical EIP-191 message
+     * against. Defaults to Sepolia — keep this synced with the
+     * aggregator's `smart_wallet.chain_id` setting (currently Sepolia
+     * in dev/staging, Ethereum mainnet in production). This is the only
+     * chain constant the SDK adds on top of the catalog, because the
+     * catalog is consumer-agnostic and doesn't know about our auth flow.
+     */
+    EigenLayerAuth: 11155111;
+    EthereumMainnet: 1;
+    Sepolia: 11155111;
+    Holesky: 17000;
+    BaseMainnet: 8453;
+    BaseSepolia: 84532;
+    BnbMainnet: 56;
+}>;
+export type ChainId = (typeof Chains)[keyof typeof Chains] | number;
+//# sourceMappingURL=chains.d.ts.map

package/dist/v4/chains.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"chains.d.ts","sourceRoot":"","sources":["../../src/v4/chains.ts"],"names":[],"mappings":"AAYA,eAAO,MAAM,MAAM;IAEjB;;;;;;;OAOG;;;;;;;;EAEH,CAAC;AAEH,MAAM,MAAM,OAAO,GAAG,CAAC,OAAO,MAAM,CAAC,CAAC,MAAM,OAAO,MAAM,CAAC,GAAG,MAAM,CAAC"}

package/dist/v4/chains.js

@@ -0,0 +1,22 @@
+// Chain ID constants for v4 callers. The aggregator's REST API accepts
+// any int64 chainId on chain-aware requests — these constants exist so
+// SDK callers don't sprinkle magic numbers and so the auth flow has a
+// single source of truth for which chain JWTs are minted against.
+//
+// The full chain set comes from `@avaprotocol/protocols` (the data-only
+// DeFi catalog), with one SDK-specific addition (`EigenLayerAuth`) for
+// the auth-handler audience. New chains added to the catalog flow
+// through automatically — bumping the catalog dep is enough.
+import { Chains as CatalogChains } from "@avaprotocol/protocols";
+export const Chains = Object.freeze({
+    ...CatalogChains,
+    /**
+     * The chain the auth handler signs the canonical EIP-191 message
+     * against. Defaults to Sepolia — keep this synced with the
+     * aggregator's `smart_wallet.chain_id` setting (currently Sepolia
+     * in dev/staging, Ethereum mainnet in production). This is the only
+     * chain constant the SDK adds on top of the catalog, because the
+     * catalog is consumer-agnostic and doesn't know about our auth flow.
+     */
+    EigenLayerAuth: 11155111,
+});