@bananalink-sdk/protocol 1.2.7

package/dist/chunk-32OWUOZ3.js

@@ -0,0 +1,308 @@
+import { registerCryptoProvider } from './chunk-TCVKC227.js';
+import { __name } from './chunk-WCQVDF3K.js';
+import { p256 } from '@noble/curves/nist.js';
+import { gcm } from '@noble/ciphers/aes.js';
+import { randomBytes } from '@noble/ciphers/utils.js';
+import { hkdf } from '@noble/hashes/hkdf.js';
+import { hmac } from '@noble/hashes/hmac.js';
+import { sha256 } from '@noble/hashes/sha2.js';
+
+var _NobleKey = class _NobleKey {
+  constructor(data, type, algorithm, extractable = true, usages = []) {
+    this.data = data;
+    this.type = type;
+    this.algorithm = algorithm;
+    this.extractable = extractable;
+    this.usages = usages;
+  }
+};
+__name(_NobleKey, "NobleKey");
+var NobleKey = _NobleKey;
+var _NobleCryptoProvider = class _NobleCryptoProvider {
+  constructor(logger) {
+    this.name = "Noble";
+    this.isAvailable = true;
+    this.logger = logger?.child({ component: "NobleCryptoProvider" });
+  }
+  /**
+   * Generate ECDH P-256 key pair
+   */
+  generateKeyPair() {
+    this.logger?.debug("Generating ECDH P-256 key pair using Noble");
+    try {
+      const privateKeyBytes = p256.utils.randomSecretKey();
+      const publicKeyUncompressed = p256.getPublicKey(privateKeyBytes, false);
+      this.logger?.debug("Key pair generation completed", {
+        publicKeyLength: publicKeyUncompressed.length
+      });
+      return Promise.resolve({
+        privateKey: new NobleKey(privateKeyBytes, "private", "ECDH-P256", true, ["deriveKey"]),
+        publicKey: new NobleKey(publicKeyUncompressed, "public", "ECDH-P256", true, [])
+      });
+    } catch (error) {
+      this.logger?.error("Key pair generation failed", {
+        error: {
+          message: error instanceof Error ? error.message : String(error),
+          stack: error instanceof Error ? error.stack : void 0
+        }
+      });
+      throw error;
+    }
+  }
+  /**
+   * Export public key to ArrayBuffer (raw format)
+   */
+  exportPublicKey(publicKey) {
+    const nobleKey = publicKey;
+    if (nobleKey.type !== "public") {
+      throw new Error("Expected public key");
+    }
+    return Promise.resolve(nobleKey.data.buffer.slice(nobleKey.data.byteOffset, nobleKey.data.byteOffset + nobleKey.data.byteLength));
+  }
+  /**
+   * Export private key to ArrayBuffer (raw format)
+   */
+  exportPrivateKey(privateKey) {
+    const nobleKey = privateKey;
+    if (nobleKey.type !== "private") {
+      throw new Error("Expected private key");
+    }
+    return Promise.resolve(nobleKey.data.buffer.slice(nobleKey.data.byteOffset, nobleKey.data.byteOffset + nobleKey.data.byteLength));
+  }
+  /**
+   * Import public key from ArrayBuffer (raw format)
+   */
+  importPublicKey(keyData) {
+    const keyBytes = new Uint8Array(keyData);
+    this.logger?.debug("importPublicKey called", {
+      keyLength: keyBytes.length,
+      keyBytesFirst20: Array.from(keyBytes.slice(0, 20)).map((b) => b.toString(16).padStart(2, "0")).join(" "),
+      keyBytesHex: Array.from(keyBytes).map((b) => b.toString(16).padStart(2, "0")).join("")
+    });
+    try {
+      let processedKeyBytes;
+      if (keyBytes.length === 65) {
+        this.logger?.debug("Processing 65-byte key", {
+          firstByte: `0x${keyBytes[0].toString(16)}`
+        });
+        if (keyBytes[0] !== 4) {
+          throw new Error(`Expected uncompressed key (0x04 prefix), got 0x${keyBytes[0].toString(16)}`);
+        }
+        processedKeyBytes = keyBytes;
+      } else if (keyBytes.length === 64) {
+        this.logger?.debug("Processing 64-byte key", {
+          action: "adding 0x04 prefix"
+        });
+        processedKeyBytes = new Uint8Array(65);
+        processedKeyBytes[0] = 4;
+        processedKeyBytes.set(keyBytes, 1);
+      } else {
+        throw new Error(`Invalid key length: expected 64 or 65 bytes, got ${keyBytes.length} bytes`);
+      }
+      this.logger?.debug("Key processing completed", {
+        processedLength: processedKeyBytes.length,
+        processedFirst20: Array.from(processedKeyBytes.slice(0, 20)).map((b) => b.toString(16).padStart(2, "0")).join(" ")
+      });
+      const isValid = p256.utils.isValidPublicKey(processedKeyBytes, false);
+      this.logger?.debug("Noble key validation completed", {
+        isValid
+      });
+      if (!isValid) {
+        this.logger?.debug("Key validation failed, trying alternative approaches", {
+          originalValidation: false
+        });
+        const isValidCompressed = p256.utils.isValidPublicKey(processedKeyBytes, true);
+        this.logger?.debug("Alternative validation attempted", {
+          compressedFormatValid: isValidCompressed
+        });
+        throw new Error("Key failed Noble validation");
+      }
+      return Promise.resolve(new NobleKey(processedKeyBytes, "public", "ECDH-P256", true, []));
+    } catch (error) {
+      this.logger?.error("Public key import failed", {
+        error: {
+          message: error instanceof Error ? error.message : String(error),
+          stack: error instanceof Error ? error.stack : void 0
+        }
+      });
+      throw new Error(`Invalid P-256 public key: ${String(error)}`);
+    }
+  }
+  /**
+   * Import private key from ArrayBuffer (raw format)
+   */
+  importPrivateKey(keyData) {
+    const keyBytes = new Uint8Array(keyData);
+    try {
+      if (!p256.utils.isValidSecretKey(keyBytes)) {
+        throw new Error("Invalid secret key");
+      }
+    } catch (error) {
+      throw new Error(`Invalid P-256 private key: ${String(error)}`);
+    }
+    return Promise.resolve(new NobleKey(keyBytes, "private", "ECDH-P256", true, ["deriveKey"]));
+  }
+  /**
+   * Derive shared secret from ECDH key agreement
+   */
+  deriveSharedSecret(privateKey, publicKey) {
+    this.logger?.debug("Deriving shared secret using ECDH with Noble");
+    const privKey = privateKey;
+    const pubKey = publicKey;
+    if (privKey.type !== "private") {
+      const error = new Error("Expected private key");
+      this.logger?.error("Shared secret derivation failed - invalid private key type", {
+        actualType: privKey.type
+      });
+      throw error;
+    }
+    if (pubKey.type !== "public") {
+      const error = new Error("Expected public key");
+      this.logger?.error("Shared secret derivation failed - invalid public key type", {
+        actualType: pubKey.type
+      });
+      throw error;
+    }
+    try {
+      const sharedSecret = p256.getSharedSecret(privKey.data, pubKey.data, false);
+      const xCoordinate = sharedSecret.slice(1, 33);
+      this.logger?.debug("Shared secret derivation completed", {
+        sharedSecretLength: xCoordinate.length
+      });
+      return Promise.resolve(new NobleKey(xCoordinate, "secret", "AES-GCM", true, ["encrypt", "decrypt"]));
+    } catch (error) {
+      this.logger?.error("Shared secret derivation failed", {
+        error: {
+          message: error instanceof Error ? error.message : String(error),
+          stack: error instanceof Error ? error.stack : void 0
+        }
+      });
+      throw error;
+    }
+  }
+  /**
+   * Derive AES-GCM key from shared secret using HKDF
+   */
+  deriveEncryptionKey(sharedSecret, salt, info) {
+    const secretKey = sharedSecret;
+    if (secretKey.type !== "secret") {
+      throw new Error("Expected secret key");
+    }
+    const derivedKey = hkdf(sha256, secretKey.data, new Uint8Array(salt), new Uint8Array(info), 32);
+    return Promise.resolve(new NobleKey(derivedKey, "secret", "AES-GCM", true, ["encrypt", "decrypt"]));
+  }
+  /**
+   * Generate random bytes
+   */
+  randomBytes(length) {
+    const bytes = randomBytes(length);
+    return bytes.buffer.slice(bytes.byteOffset, bytes.byteOffset + bytes.byteLength);
+  }
+  /**
+   * Encrypt data using AES-GCM
+   */
+  encrypt(key, data, iv) {
+    this.logger?.debug("Encrypting data with AES-GCM using Noble", {
+      dataSize: data.byteLength,
+      ivSize: iv.byteLength
+    });
+    const secretKey = key;
+    if (secretKey.type !== "secret") {
+      const error = new Error("Expected secret key");
+      this.logger?.error("Encryption failed - invalid key type", {
+        actualType: secretKey.type
+      });
+      throw error;
+    }
+    try {
+      const aesGcm = gcm(secretKey.data, new Uint8Array(iv));
+      const ciphertext = aesGcm.encrypt(new Uint8Array(data));
+      this.logger?.debug("Encryption completed", {
+        ciphertextSize: ciphertext.byteLength
+      });
+      return Promise.resolve(ciphertext.buffer.slice(ciphertext.byteOffset, ciphertext.byteOffset + ciphertext.byteLength));
+    } catch (error) {
+      this.logger?.error("Encryption failed", {
+        error: {
+          message: error instanceof Error ? error.message : String(error),
+          stack: error instanceof Error ? error.stack : void 0
+        }
+      });
+      throw error;
+    }
+  }
+  /**
+   * Decrypt data using AES-GCM
+   */
+  decrypt(key, data, iv) {
+    this.logger?.debug("Decrypting data with AES-GCM using Noble", {
+      dataSize: data.byteLength,
+      ivSize: iv.byteLength
+    });
+    const secretKey = key;
+    if (secretKey.type !== "secret") {
+      const error = new Error("Expected secret key");
+      this.logger?.error("Decryption failed - invalid key type", {
+        actualType: secretKey.type
+      });
+      throw error;
+    }
+    try {
+      const aesGcm = gcm(secretKey.data, new Uint8Array(iv));
+      const plaintext = aesGcm.decrypt(new Uint8Array(data));
+      this.logger?.debug("Decryption completed", {
+        plaintextSize: plaintext.byteLength
+      });
+      return Promise.resolve(plaintext.buffer.slice(plaintext.byteOffset, plaintext.byteOffset + plaintext.byteLength));
+    } catch (error) {
+      this.logger?.error("Decryption failed", {
+        error: {
+          message: error instanceof Error ? error.message : String(error),
+          stack: error instanceof Error ? error.stack : void 0
+        }
+      });
+      throw error;
+    }
+  }
+  /**
+   * Generate HMAC-SHA256
+   */
+  generateHMAC(key, data) {
+    const secretKey = key;
+    if (secretKey.type !== "secret") {
+      throw new Error("Expected secret key");
+    }
+    const mac = hmac(sha256, secretKey.data, new Uint8Array(data));
+    return Promise.resolve(mac.buffer.slice(mac.byteOffset, mac.byteOffset + mac.byteLength));
+  }
+  /**
+   * Verify HMAC-SHA256
+   */
+  verifyHMAC(key, data, mac) {
+    const secretKey = key;
+    if (secretKey.type !== "secret") {
+      throw new Error("Expected secret key");
+    }
+    try {
+      const expectedMac = hmac(sha256, secretKey.data, new Uint8Array(data));
+      const providedMac = new Uint8Array(mac);
+      if (expectedMac.length !== providedMac.length) {
+        return Promise.resolve(false);
+      }
+      let result = 0;
+      for (let i = 0; i < expectedMac.length; i++) {
+        result |= expectedMac[i] ^ providedMac[i];
+      }
+      return Promise.resolve(result === 0);
+    } catch {
+      return Promise.resolve(false);
+    }
+  }
+};
+__name(_NobleCryptoProvider, "NobleCryptoProvider");
+var NobleCryptoProvider = _NobleCryptoProvider;
+registerCryptoProvider("noble", (logger) => new NobleCryptoProvider(logger));
+
+export { NobleCryptoProvider };
+//# sourceMappingURL=chunk-32OWUOZ3.js.map
+//# sourceMappingURL=chunk-32OWUOZ3.js.map

package/dist/chunk-32OWUOZ3.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/crypto/providers/noble-provider.ts"],"names":["nobleRandomBytes"],"mappings":";;;;;;;;;AAaA,IAAM,SAAA,GAAN,MAAM,SAAA,CAAkC;AAAA,EACtC,WAAA,CACkB,MACA,IAAA,EACA,SAAA,EACA,cAAuB,IAAA,EACvB,MAAA,GAA4B,EAAC,EAC7C;AALgB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,SAAA,GAAA,SAAA;AACA,IAAA,IAAA,CAAA,WAAA,GAAA,WAAA;AACA,IAAA,IAAA,CAAA,MAAA,GAAA,MAAA;AAAA,EACf;AACL,CAAA;AARwC,MAAA,CAAA,SAAA,EAAA,UAAA,CAAA;AAAxC,IAAM,QAAA,GAAN,SAAA;AAcO,IAAM,oBAAA,GAAN,MAAM,oBAAA,CAA8C;AAAA,EAKzD,YAAY,MAAA,EAAiB;AAJ7B,IAAA,IAAA,CAAgB,IAAA,GAAO,OAAA;AACvB,IAAA,IAAA,CAAgB,WAAA,GAAc,IAAA;AAI5B,IAAA,IAAA,CAAK,SAAS,MAAA,EAAQ,KAAA,CAAM,EAAE,SAAA,EAAW,uBAAuB,CAAA;AAAA,EAClE;AAAA;AAAA;AAAA;AAAA,EAKA,eAAA,GAA4C;AAC1C,IAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,4CAA4C,CAAA;AAE/D,IAAA,IAAI;AACF,MAAA,MAAM,eAAA,GAAkB,IAAA,CAAK,KAAA,CAAM,eAAA,EAAgB;AAEnD,MAAA,MAAM,qBAAA,GAAwB,IAAA,CAAK,YAAA,CAAa,eAAA,EAAiB,KAAK,CAAA;AAEtE,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,+BAAA,EAAiC;AAAA,QAClD,iBAAiB,qBAAA,CAAsB;AAAA,OACxC,CAAA;AAED,MAAA,OAAO,QAAQ,OAAA,CAAQ;AAAA,QACrB,UAAA,EAAY,IAAI,QAAA,CAAS,eAAA,EAAiB,WAAW,WAAA,EAAa,IAAA,EAAM,CAAC,WAAW,CAAC,CAAA;AAAA,QACrF,SAAA,EAAW,IAAI,QAAA,CAAS,qBAAA,EAAuB,UAAU,WAAA,EAAa,IAAA,EAAM,EAAE;AAAA,OAC/E,CAAA;AAAA,IACH,SAAS,KAAA,EAAO;AACd,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,4BAAA,EAA8B;AAAA,QAC/C,KAAA,EAAO;AAAA,UACL,SAAS,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,OAAA,GAAU,OAAO,KAAK,CAAA;AAAA,UAC9D,KAAA,EAAO,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,KAAA,GAAQ;AAAA;AAChD,OACD,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,gBAAgB,SAAA,EAAgD;AAC9D,IAAA,MAAM,QAAA,GAAW,SAAA;AACjB,IAAA,IAAI,QAAA,CAAS,SAAS,QAAA,EAAU;AAC9B,MAAA,MAAM,IAAI,MAAM,qBAAqB,CAAA;AAAA,IACvC;AACA,IAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,QAAA,CAAS,IAAA,CAAK,OAAO,KAAA,CAAM,QAAA,CAAS,IAAA,CAAK,UAAA,EAAY,SAAS,IAAA,CAAK,UAAA,GAAa,QAAA,CAAS,IAAA,CAAK,UAAU,CAAC,CAAA;AAAA,EAClI;AAAA;AAAA;AAAA;AAAA,EAKA,iBAAiB,UAAA,EAAiD;AAChE,IAAA,MAAM,QAAA,GAAW,UAAA;AACjB,IAAA,IAAI,QAAA,CAAS,SAAS,SAAA,EAAW;AAC/B,MAAA,MAAM,IAAI,MAAM,sBAAsB,CAAA;AAAA,IACxC;AACA,IAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,QAAA,CAAS,IAAA,CAAK,OAAO,KAAA,CAAM,QAAA,CAAS,IAAA,CAAK,UAAA,EAAY,SAAS,IAAA,CAAK,UAAA,GAAa,QAAA,CAAS,IAAA,CAAK,UAAU,CAAC,CAAA;AAAA,EAClI;AAAA;AAAA;AAAA;AAAA,EAKA,gBAAgB,OAAA,EAA8C;AAC5D,IAAA,MAAM,QAAA,GAAW,IAAI,UAAA,CAAW,OAAO,CAAA;AAGvC,IAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,wBAAA,EAA0B;AAAA,MAC3C,WAAW,QAAA,CAAS,MAAA;AAAA,MACpB,eAAA,EAAiB,MAAM,IAAA,CAAK,QAAA,CAAS,MAAM,CAAA,EAAG,EAAE,CAAC,CAAA,CAAE,GAAA,CAAI,OAAK,CAAA,CAAE,QAAA,CAAS,EAAE,CAAA,CAAE,QAAA,CAAS,GAAG,GAAG,CAAC,CAAA,CAAE,IAAA,CAAK,GAAG,CAAA;AAAA,MACrG,aAAa,KAAA,CAAM,IAAA,CAAK,QAAQ,CAAA,CAAE,IAAI,CAAA,CAAA,KAAK,CAAA,CAAE,QAAA,CAAS,EAAE,EAAE,QAAA,CAAS,CAAA,EAAG,GAAG,CAAC,CAAA,CAAE,KAAK,EAAE;AAAA,KACpF,CAAA;AAGD,IAAA,IAAI;AACF,MAAA,IAAI,iBAAA;AAGJ,MAAA,IAAI,QAAA,CAAS,WAAW,EAAA,EAAI;AAE1B,QAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,wBAAA,EAA0B;AAAA,UAC3C,WAAW,CAAA,EAAA,EAAK,QAAA,CAAS,CAAC,CAAA,CAAE,QAAA,CAAS,EAAE,CAAC,CAAA;AAAA,SACzC,CAAA;AACD,QAAA,IAAI,QAAA,CAAS,CAAC,CAAA,KAAM,CAAA,EAAM;AACxB,UAAA,MAAM,IAAI,MAAM,CAAA,+CAAA,EAAkD,QAAA,CAAS,CAAC,CAAA,CAAE,QAAA,CAAS,EAAE,CAAC,CAAA,CAAE,CAAA;AAAA,QAC9F;AACA,QAAA,iBAAA,GAAoB,QAAA;AAAA,MACtB,CAAA,MAAA,IAAW,QAAA,CAAS,MAAA,KAAW,EAAA,EAAI;AAGjC,QAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,wBAAA,EAA0B;AAAA,UAC3C,MAAA,EAAQ;AAAA,SACT,CAAA;AACD,QAAA,iBAAA,GAAoB,IAAI,WAAW,EAAE,CAAA;AACrC,QAAA,iBAAA,CAAkB,CAAC,CAAA,GAAI,CAAA;AACvB,QAAA,iBAAA,CAAkB,GAAA,CAAI,UAAU,CAAC,CAAA;AAAA,MACnC,CAAA,MAAO;AACL,QAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iDAAA,EAAoD,QAAA,CAAS,MAAM,CAAA,MAAA,CAAQ,CAAA;AAAA,MAC7F;AAEA,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,0BAAA,EAA4B;AAAA,QAC7C,iBAAiB,iBAAA,CAAkB,MAAA;AAAA,QACnC,gBAAA,EAAkB,MAAM,IAAA,CAAK,iBAAA,CAAkB,MAAM,CAAA,EAAG,EAAE,CAAC,CAAA,CAAE,GAAA,CAAI,OAAK,CAAA,CAAE,QAAA,CAAS,EAAE,CAAA,CAAE,QAAA,CAAS,GAAG,GAAG,CAAC,CAAA,CAAE,IAAA,CAAK,GAAG;AAAA,OAChH,CAAA;AAGD,MAAA,MAAM,OAAA,GAAU,IAAA,CAAK,KAAA,CAAM,gBAAA,CAAiB,mBAAmB,KAAK,CAAA;AACpE,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,gCAAA,EAAkC;AAAA,QACnD;AAAA,OACD,CAAA;AAED,MAAA,IAAI,CAAC,OAAA,EAAS;AAEZ,QAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,sDAAA,EAAwD;AAAA,UACzE,kBAAA,EAAoB;AAAA,SACrB,CAAA;AAGD,QAAA,MAAM,iBAAA,GAAoB,IAAA,CAAK,KAAA,CAAM,gBAAA,CAAiB,mBAAmB,IAAI,CAAA;AAC7E,QAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,kCAAA,EAAoC;AAAA,UACrD,qBAAA,EAAuB;AAAA,SACxB,CAAA;AAED,QAAA,MAAM,IAAI,MAAM,6BAA6B,CAAA;AAAA,MAC/C;AAEA,MAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,IAAI,QAAA,CAAS,iBAAA,EAAmB,UAAU,WAAA,EAAa,IAAA,EAAM,EAAE,CAAC,CAAA;AAAA,IACzF,SAAS,KAAA,EAAO;AACd,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,0BAAA,EAA4B;AAAA,QAC7C,KAAA,EAAO;AAAA,UACL,SAAS,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,OAAA,GAAU,OAAO,KAAK,CAAA;AAAA,UAC9D,KAAA,EAAO,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,KAAA,GAAQ;AAAA;AAChD,OACD,CAAA;AACD,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,0BAAA,EAA6B,MAAA,CAAO,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,IAC9D;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,iBAAiB,OAAA,EAA8C;AAC7D,IAAA,MAAM,QAAA,GAAW,IAAI,UAAA,CAAW,OAAO,CAAA;AAGvC,IAAA,IAAI;AACF,MAAA,IAAI,CAAC,IAAA,CAAK,KAAA,CAAM,gBAAA,CAAiB,QAAQ,CAAA,EAAG;AAC1C,QAAA,MAAM,IAAI,MAAM,oBAAoB,CAAA;AAAA,MACtC;AAAA,IACF,SAAS,KAAA,EAAO;AACd,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,2BAAA,EAA8B,MAAA,CAAO,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,IAC/D;AAEA,IAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,IAAI,QAAA,CAAS,QAAA,EAAU,SAAA,EAAW,WAAA,EAAa,IAAA,EAAM,CAAC,WAAW,CAAC,CAAC,CAAA;AAAA,EAC5F;AAAA;AAAA;AAAA;AAAA,EAKA,kBAAA,CAAmB,YAA2B,SAAA,EAAkD;AAC9F,IAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,8CAA8C,CAAA;AAEjE,IAAA,MAAM,OAAA,GAAU,UAAA;AAChB,IAAA,MAAM,MAAA,GAAS,SAAA;AAEf,IAAA,IAAI,OAAA,CAAQ,SAAS,SAAA,EAAW;AAC9B,MAAA,MAAM,KAAA,GAAQ,IAAI,KAAA,CAAM,sBAAsB,CAAA;AAC9C,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,4DAAA,EAA8D;AAAA,QAC/E,YAAY,OAAA,CAAQ;AAAA,OACrB,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AACA,IAAA,IAAI,MAAA,CAAO,SAAS,QAAA,EAAU;AAC5B,MAAA,MAAM,KAAA,GAAQ,IAAI,KAAA,CAAM,qBAAqB,CAAA;AAC7C,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,2DAAA,EAA6D;AAAA,QAC9E,YAAY,MAAA,CAAO;AAAA,OACpB,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AAEA,IAAA,IAAI;AAEF,MAAA,MAAM,eAAe,IAAA,CAAK,eAAA,CAAgB,QAAQ,IAAA,EAAM,MAAA,CAAO,MAAM,KAAK,CAAA;AAE1E,MAAA,MAAM,WAAA,GAAc,YAAA,CAAa,KAAA,CAAM,CAAA,EAAG,EAAE,CAAA;AAE5C,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,oCAAA,EAAsC;AAAA,QACvD,oBAAoB,WAAA,CAAY;AAAA,OACjC,CAAA;AAED,MAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,IAAI,QAAA,CAAS,WAAA,EAAa,QAAA,EAAU,SAAA,EAAW,IAAA,EAAM,CAAC,SAAA,EAAW,SAAS,CAAC,CAAC,CAAA;AAAA,IACrG,SAAS,KAAA,EAAO;AACd,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,iCAAA,EAAmC;AAAA,QACpD,KAAA,EAAO;AAAA,UACL,SAAS,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,OAAA,GAAU,OAAO,KAAK,CAAA;AAAA,UAC9D,KAAA,EAAO,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,KAAA,GAAQ;AAAA;AAChD,OACD,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,mBAAA,CAAoB,YAAA,EAA6B,IAAA,EAAmB,IAAA,EAA2C;AAC7G,IAAA,MAAM,SAAA,GAAY,YAAA;AAElB,IAAA,IAAI,SAAA,CAAU,SAAS,QAAA,EAAU;AAC/B,MAAA,MAAM,IAAI,MAAM,qBAAqB,CAAA;AAAA,IACvC;AAGA,IAAA,MAAM,UAAA,GAAa,IAAA,CAAK,MAAA,EAAQ,SAAA,CAAU,IAAA,EAAM,IAAI,UAAA,CAAW,IAAI,CAAA,EAAG,IAAI,UAAA,CAAW,IAAI,GAAG,EAAE,CAAA;AAE9F,IAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,IAAI,QAAA,CAAS,UAAA,EAAY,QAAA,EAAU,SAAA,EAAW,IAAA,EAAM,CAAC,SAAA,EAAW,SAAS,CAAC,CAAC,CAAA;AAAA,EACpG;AAAA;AAAA;AAAA;AAAA,EAKA,YAAY,MAAA,EAA6B;AACvC,IAAA,MAAM,KAAA,GAAQA,YAAiB,MAAM,CAAA;AACrC,IAAA,OAAO,KAAA,CAAM,OAAO,KAAA,CAAM,KAAA,CAAM,YAAY,KAAA,CAAM,UAAA,GAAa,MAAM,UAAU,CAAA;AAAA,EACjF;AAAA;AAAA;AAAA;AAAA,EAKA,OAAA,CAAQ,GAAA,EAAoB,IAAA,EAAmB,EAAA,EAAuC;AACpF,IAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,0CAAA,EAA4C;AAAA,MAC7D,UAAU,IAAA,CAAK,UAAA;AAAA,MACf,QAAQ,EAAA,CAAG;AAAA,KACZ,CAAA;AAED,IAAA,MAAM,SAAA,GAAY,GAAA;AAElB,IAAA,IAAI,SAAA,CAAU,SAAS,QAAA,EAAU;AAC/B,MAAA,MAAM,KAAA,GAAQ,IAAI,KAAA,CAAM,qBAAqB,CAAA;AAC7C,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,sCAAA,EAAwC;AAAA,QACzD,YAAY,SAAA,CAAU;AAAA,OACvB,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,SAAS,GAAA,CAAI,SAAA,CAAU,MAAM,IAAI,UAAA,CAAW,EAAE,CAAC,CAAA;AACrD,MAAA,MAAM,aAAa,MAAA,CAAO,OAAA,CAAQ,IAAI,UAAA,CAAW,IAAI,CAAC,CAAA;AAEtD,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,sBAAA,EAAwB;AAAA,QACzC,gBAAgB,UAAA,CAAW;AAAA,OAC5B,CAAA;AAED,MAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,UAAA,CAAW,MAAA,CAAO,KAAA,CAAM,UAAA,CAAW,UAAA,EAAY,UAAA,CAAW,UAAA,GAAa,UAAA,CAAW,UAAU,CAAC,CAAA;AAAA,IACtH,SAAS,KAAA,EAAO;AACd,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,mBAAA,EAAqB;AAAA,QACtC,KAAA,EAAO;AAAA,UACL,SAAS,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,OAAA,GAAU,OAAO,KAAK,CAAA;AAAA,UAC9D,KAAA,EAAO,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,KAAA,GAAQ;AAAA;AAChD,OACD,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,OAAA,CAAQ,GAAA,EAAoB,IAAA,EAAmB,EAAA,EAAuC;AACpF,IAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,0CAAA,EAA4C;AAAA,MAC7D,UAAU,IAAA,CAAK,UAAA;AAAA,MACf,QAAQ,EAAA,CAAG;AAAA,KACZ,CAAA;AAED,IAAA,MAAM,SAAA,GAAY,GAAA;AAElB,IAAA,IAAI,SAAA,CAAU,SAAS,QAAA,EAAU;AAC/B,MAAA,MAAM,KAAA,GAAQ,IAAI,KAAA,CAAM,qBAAqB,CAAA;AAC7C,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,sCAAA,EAAwC;AAAA,QACzD,YAAY,SAAA,CAAU;AAAA,OACvB,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,SAAS,GAAA,CAAI,SAAA,CAAU,MAAM,IAAI,UAAA,CAAW,EAAE,CAAC,CAAA;AACrD,MAAA,MAAM,YAAY,MAAA,CAAO,OAAA,CAAQ,IAAI,UAAA,CAAW,IAAI,CAAC,CAAA;AAErD,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,sBAAA,EAAwB;AAAA,QACzC,eAAe,SAAA,CAAU;AAAA,OAC1B,CAAA;AAED,MAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,SAAA,CAAU,MAAA,CAAO,KAAA,CAAM,SAAA,CAAU,UAAA,EAAY,SAAA,CAAU,UAAA,GAAa,SAAA,CAAU,UAAU,CAAC,CAAA;AAAA,IAClH,SAAS,KAAA,EAAO;AACd,MAAA,IAAA,CAAK,MAAA,EAAQ,MAAM,mBAAA,EAAqB;AAAA,QACtC,KAAA,EAAO;AAAA,UACL,SAAS,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,OAAA,GAAU,OAAO,KAAK,CAAA;AAAA,UAC9D,KAAA,EAAO,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,KAAA,GAAQ;AAAA;AAChD,OACD,CAAA;AACD,MAAA,MAAM,KAAA;AAAA,IACR;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,YAAA,CAAa,KAAoB,IAAA,EAAyC;AACxE,IAAA,MAAM,SAAA,GAAY,GAAA;AAElB,IAAA,IAAI,SAAA,CAAU,SAAS,QAAA,EAAU;AAC/B,MAAA,MAAM,IAAI,MAAM,qBAAqB,CAAA;AAAA,IACvC;AAEA,IAAA,MAAM,GAAA,GAAM,KAAK,MAAA,EAAQ,SAAA,CAAU,MAAM,IAAI,UAAA,CAAW,IAAI,CAAC,CAAA;AAC7D,IAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,GAAA,CAAI,MAAA,CAAO,KAAA,CAAM,GAAA,CAAI,UAAA,EAAY,GAAA,CAAI,UAAA,GAAa,GAAA,CAAI,UAAU,CAAC,CAAA;AAAA,EAC1F;AAAA;AAAA;AAAA;AAAA,EAKA,UAAA,CAAW,GAAA,EAAoB,IAAA,EAAmB,GAAA,EAAoC;AACpF,IAAA,MAAM,SAAA,GAAY,GAAA;AAElB,IAAA,IAAI,SAAA,CAAU,SAAS,QAAA,EAAU;AAC/B,MAAA,MAAM,IAAI,MAAM,qBAAqB,CAAA;AAAA,IACvC;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,WAAA,GAAc,KAAK,MAAA,EAAQ,SAAA,CAAU,MAAM,IAAI,UAAA,CAAW,IAAI,CAAC,CAAA;AACrE,MAAA,MAAM,WAAA,GAAc,IAAI,UAAA,CAAW,GAAG,CAAA;AAGtC,MAAA,IAAI,WAAA,CAAY,MAAA,KAAW,WAAA,CAAY,MAAA,EAAQ;AAC7C,QAAA,OAAO,OAAA,CAAQ,QAAQ,KAAK,CAAA;AAAA,MAC9B;AAEA,MAAA,IAAI,MAAA,GAAS,CAAA;AACb,MAAA,KAAA,IAAS,CAAA,GAAI,CAAA,EAAG,CAAA,GAAI,WAAA,CAAY,QAAQ,CAAA,EAAA,EAAK;AAC3C,QAAA,MAAA,IAAU,WAAA,CAAY,CAAC,CAAA,GAAI,WAAA,CAAY,CAAC,CAAA;AAAA,MAC1C;AAEA,MAAA,OAAO,OAAA,CAAQ,OAAA,CAAQ,MAAA,KAAW,CAAC,CAAA;AAAA,IACrC,CAAA,CAAA,MAAQ;AACN,MAAA,OAAO,OAAA,CAAQ,QAAQ,KAAK,CAAA;AAAA,IAC9B;AAAA,EACF;AACF,CAAA;AA5V2D,MAAA,CAAA,oBAAA,EAAA,qBAAA,CAAA;AAApD,IAAM,mBAAA,GAAN;AAkWP,sBAAA,CAAuB,SAAS,CAAC,MAAA,KAAW,IAAI,mBAAA,CAAoB,MAAM,CAAC,CAAA","file":"chunk-32OWUOZ3.js","sourcesContent":["import { p256 } from '@noble/curves/nist.js';\nimport { gcm } from '@noble/ciphers/aes.js';\nimport { randomBytes as nobleRandomBytes } from '@noble/ciphers/utils.js';\nimport { hkdf } from '@noble/hashes/hkdf.js';\nimport { hmac } from '@noble/hashes/hmac.js';\nimport { sha256 } from '@noble/hashes/sha2.js';\nimport type { Logger } from '@bananalink-sdk/logger';\nimport type { CryptoProvider, CryptoKeyLike, ProviderKeyPair } from '../../types/crypto-provider';\nimport { registerCryptoProvider } from './registry';\n\n/**\n * Noble library implementation of CryptoKeyLike\n */\nclass NobleKey implements CryptoKeyLike {\n  constructor(\n    public readonly data: Uint8Array,\n    public readonly type: 'public' | 'private' | 'secret',\n    public readonly algorithm: string,\n    public readonly extractable: boolean = true,\n    public readonly usages: readonly string[] = []\n  ) {}\n}\n\n/**\n * Noble cryptography implementation of CryptoProvider\n * Pure JavaScript implementation that works in all environments\n */\nexport class NobleCryptoProvider implements CryptoProvider {\n  public readonly name = 'Noble';\n  public readonly isAvailable = true; // Noble libraries work everywhere\n  private readonly logger?: Logger;\n\n  constructor(logger?: Logger) {\n    this.logger = logger?.child({ component: 'NobleCryptoProvider' });\n  }\n\n  /**\n   * Generate ECDH P-256 key pair\n   */\n  generateKeyPair(): Promise<ProviderKeyPair> {\n    this.logger?.debug('Generating ECDH P-256 key pair using Noble');\n\n    try {\n      const privateKeyBytes = p256.utils.randomSecretKey();\n      // Generate uncompressed public key to match WebCrypto format (65 bytes)\n      const publicKeyUncompressed = p256.getPublicKey(privateKeyBytes, false); // false = uncompressed\n\n      this.logger?.debug('Key pair generation completed', {\n        publicKeyLength: publicKeyUncompressed.length\n      });\n\n      return Promise.resolve({\n        privateKey: new NobleKey(privateKeyBytes, 'private', 'ECDH-P256', true, ['deriveKey']),\n        publicKey: new NobleKey(publicKeyUncompressed, 'public', 'ECDH-P256', true, []),\n      });\n    } catch (error) {\n      this.logger?.error('Key pair generation failed', {\n        error: {\n          message: error instanceof Error ? error.message : String(error),\n          stack: error instanceof Error ? error.stack : undefined\n        }\n      });\n      throw error;\n    }\n  }\n\n  /**\n   * Export public key to ArrayBuffer (raw format)\n   */\n  exportPublicKey(publicKey: CryptoKeyLike): Promise<ArrayBuffer> {\n    const nobleKey = publicKey as NobleKey;\n    if (nobleKey.type !== 'public') {\n      throw new Error('Expected public key');\n    }\n    return Promise.resolve(nobleKey.data.buffer.slice(nobleKey.data.byteOffset, nobleKey.data.byteOffset + nobleKey.data.byteLength));\n  }\n\n  /**\n   * Export private key to ArrayBuffer (raw format)\n   */\n  exportPrivateKey(privateKey: CryptoKeyLike): Promise<ArrayBuffer> {\n    const nobleKey = privateKey as NobleKey;\n    if (nobleKey.type !== 'private') {\n      throw new Error('Expected private key');\n    }\n    return Promise.resolve(nobleKey.data.buffer.slice(nobleKey.data.byteOffset, nobleKey.data.byteOffset + nobleKey.data.byteLength));\n  }\n\n  /**\n   * Import public key from ArrayBuffer (raw format)\n   */\n  importPublicKey(keyData: ArrayBuffer): Promise<CryptoKeyLike> {\n    const keyBytes = new Uint8Array(keyData);\n\n    // Debug logging\n    this.logger?.debug('importPublicKey called', {\n      keyLength: keyBytes.length,\n      keyBytesFirst20: Array.from(keyBytes.slice(0, 20)).map(b => b.toString(16).padStart(2, '0')).join(' '),\n      keyBytesHex: Array.from(keyBytes).map(b => b.toString(16).padStart(2, '0')).join('')\n    });\n\n    // Validate public key using Noble's validation\n    try {\n      let processedKeyBytes: Uint8Array;\n\n      // Handle different key formats\n      if (keyBytes.length === 65) {\n        // Already in uncompressed format (0x04 + 32 + 32)\n        this.logger?.debug('Processing 65-byte key', {\n          firstByte: `0x${keyBytes[0].toString(16)}`\n        });\n        if (keyBytes[0] !== 0x04) {\n          throw new Error(`Expected uncompressed key (0x04 prefix), got 0x${keyBytes[0].toString(16)}`);\n        }\n        processedKeyBytes = keyBytes;\n      } else if (keyBytes.length === 64) {\n        // Raw format (32 + 32) - needs 0x04 prefix for Noble\n        // This is the WebCrypto export format\n        this.logger?.debug('Processing 64-byte key', {\n          action: 'adding 0x04 prefix'\n        });\n        processedKeyBytes = new Uint8Array(65);\n        processedKeyBytes[0] = 0x04; // Uncompressed point indicator\n        processedKeyBytes.set(keyBytes, 1); // Copy the 64 bytes after the prefix\n      } else {\n        throw new Error(`Invalid key length: expected 64 or 65 bytes, got ${keyBytes.length} bytes`);\n      }\n\n      this.logger?.debug('Key processing completed', {\n        processedLength: processedKeyBytes.length,\n        processedFirst20: Array.from(processedKeyBytes.slice(0, 20)).map(b => b.toString(16).padStart(2, '0')).join(' ')\n      });\n\n      // Validate using Noble's validation\n      const isValid = p256.utils.isValidPublicKey(processedKeyBytes, false); // false = allow uncompressed\n      this.logger?.debug('Noble key validation completed', {\n        isValid\n      });\n\n      if (!isValid) {\n        // Try additional debugging\n        this.logger?.debug('Key validation failed, trying alternative approaches', {\n          originalValidation: false\n        });\n\n        // Try with compressed format check\n        const isValidCompressed = p256.utils.isValidPublicKey(processedKeyBytes, true);\n        this.logger?.debug('Alternative validation attempted', {\n          compressedFormatValid: isValidCompressed\n        });\n\n        throw new Error('Key failed Noble validation');\n      }\n\n      return Promise.resolve(new NobleKey(processedKeyBytes, 'public', 'ECDH-P256', true, []));\n    } catch (error) {\n      this.logger?.error('Public key import failed', {\n        error: {\n          message: error instanceof Error ? error.message : String(error),\n          stack: error instanceof Error ? error.stack : undefined\n        }\n      });\n      throw new Error(`Invalid P-256 public key: ${String(error)}`);\n    }\n  }\n\n  /**\n   * Import private key from ArrayBuffer (raw format)\n   */\n  importPrivateKey(keyData: ArrayBuffer): Promise<CryptoKeyLike> {\n    const keyBytes = new Uint8Array(keyData);\n\n    // Validate private key (Noble will throw if invalid)\n    try {\n      if (!p256.utils.isValidSecretKey(keyBytes)) {\n        throw new Error('Invalid secret key');\n      }\n    } catch (error) {\n      throw new Error(`Invalid P-256 private key: ${String(error)}`);\n    }\n\n    return Promise.resolve(new NobleKey(keyBytes, 'private', 'ECDH-P256', true, ['deriveKey']));\n  }\n\n  /**\n   * Derive shared secret from ECDH key agreement\n   */\n  deriveSharedSecret(privateKey: CryptoKeyLike, publicKey: CryptoKeyLike): Promise<CryptoKeyLike> {\n    this.logger?.debug('Deriving shared secret using ECDH with Noble');\n\n    const privKey = privateKey as NobleKey;\n    const pubKey = publicKey as NobleKey;\n\n    if (privKey.type !== 'private') {\n      const error = new Error('Expected private key');\n      this.logger?.error('Shared secret derivation failed - invalid private key type', {\n        actualType: privKey.type\n      });\n      throw error;\n    }\n    if (pubKey.type !== 'public') {\n      const error = new Error('Expected public key');\n      this.logger?.error('Shared secret derivation failed - invalid public key type', {\n        actualType: pubKey.type\n      });\n      throw error;\n    }\n\n    try {\n      // Perform ECDH key agreement - return x-coordinate only to match WebCrypto\n      const sharedSecret = p256.getSharedSecret(privKey.data, pubKey.data, false); // uncompressed\n      // Extract only the x-coordinate (32 bytes) to match WebCrypto behavior\n      const xCoordinate = sharedSecret.slice(1, 33); // Skip 0x04 prefix, take next 32 bytes\n\n      this.logger?.debug('Shared secret derivation completed', {\n        sharedSecretLength: xCoordinate.length\n      });\n\n      return Promise.resolve(new NobleKey(xCoordinate, 'secret', 'AES-GCM', true, ['encrypt', 'decrypt']));\n    } catch (error) {\n      this.logger?.error('Shared secret derivation failed', {\n        error: {\n          message: error instanceof Error ? error.message : String(error),\n          stack: error instanceof Error ? error.stack : undefined\n        }\n      });\n      throw error;\n    }\n  }\n\n  /**\n   * Derive AES-GCM key from shared secret using HKDF\n   */\n  deriveEncryptionKey(sharedSecret: CryptoKeyLike, salt: ArrayBuffer, info: ArrayBuffer): Promise<CryptoKeyLike> {\n    const secretKey = sharedSecret as NobleKey;\n\n    if (secretKey.type !== 'secret') {\n      throw new Error('Expected secret key');\n    }\n\n    // Perform HKDF with SHA-256\n    const derivedKey = hkdf(sha256, secretKey.data, new Uint8Array(salt), new Uint8Array(info), 32); // 32 bytes = 256 bits\n\n    return Promise.resolve(new NobleKey(derivedKey, 'secret', 'AES-GCM', true, ['encrypt', 'decrypt']));\n  }\n\n  /**\n   * Generate random bytes\n   */\n  randomBytes(length: number): ArrayBuffer {\n    const bytes = nobleRandomBytes(length);\n    return bytes.buffer.slice(bytes.byteOffset, bytes.byteOffset + bytes.byteLength);\n  }\n\n  /**\n   * Encrypt data using AES-GCM\n   */\n  encrypt(key: CryptoKeyLike, data: ArrayBuffer, iv: ArrayBuffer): Promise<ArrayBuffer> {\n    this.logger?.debug('Encrypting data with AES-GCM using Noble', {\n      dataSize: data.byteLength,\n      ivSize: iv.byteLength\n    });\n\n    const secretKey = key as NobleKey;\n\n    if (secretKey.type !== 'secret') {\n      const error = new Error('Expected secret key');\n      this.logger?.error('Encryption failed - invalid key type', {\n        actualType: secretKey.type\n      });\n      throw error;\n    }\n\n    try {\n      const aesGcm = gcm(secretKey.data, new Uint8Array(iv));\n      const ciphertext = aesGcm.encrypt(new Uint8Array(data));\n\n      this.logger?.debug('Encryption completed', {\n        ciphertextSize: ciphertext.byteLength\n      });\n\n      return Promise.resolve(ciphertext.buffer.slice(ciphertext.byteOffset, ciphertext.byteOffset + ciphertext.byteLength));\n    } catch (error) {\n      this.logger?.error('Encryption failed', {\n        error: {\n          message: error instanceof Error ? error.message : String(error),\n          stack: error instanceof Error ? error.stack : undefined\n        }\n      });\n      throw error;\n    }\n  }\n\n  /**\n   * Decrypt data using AES-GCM\n   */\n  decrypt(key: CryptoKeyLike, data: ArrayBuffer, iv: ArrayBuffer): Promise<ArrayBuffer> {\n    this.logger?.debug('Decrypting data with AES-GCM using Noble', {\n      dataSize: data.byteLength,\n      ivSize: iv.byteLength\n    });\n\n    const secretKey = key as NobleKey;\n\n    if (secretKey.type !== 'secret') {\n      const error = new Error('Expected secret key');\n      this.logger?.error('Decryption failed - invalid key type', {\n        actualType: secretKey.type\n      });\n      throw error;\n    }\n\n    try {\n      const aesGcm = gcm(secretKey.data, new Uint8Array(iv));\n      const plaintext = aesGcm.decrypt(new Uint8Array(data));\n\n      this.logger?.debug('Decryption completed', {\n        plaintextSize: plaintext.byteLength\n      });\n\n      return Promise.resolve(plaintext.buffer.slice(plaintext.byteOffset, plaintext.byteOffset + plaintext.byteLength));\n    } catch (error) {\n      this.logger?.error('Decryption failed', {\n        error: {\n          message: error instanceof Error ? error.message : String(error),\n          stack: error instanceof Error ? error.stack : undefined\n        }\n      });\n      throw error;\n    }\n  }\n\n  /**\n   * Generate HMAC-SHA256\n   */\n  generateHMAC(key: CryptoKeyLike, data: ArrayBuffer): Promise<ArrayBuffer> {\n    const secretKey = key as NobleKey;\n\n    if (secretKey.type !== 'secret') {\n      throw new Error('Expected secret key');\n    }\n\n    const mac = hmac(sha256, secretKey.data, new Uint8Array(data));\n    return Promise.resolve(mac.buffer.slice(mac.byteOffset, mac.byteOffset + mac.byteLength));\n  }\n\n  /**\n   * Verify HMAC-SHA256\n   */\n  verifyHMAC(key: CryptoKeyLike, data: ArrayBuffer, mac: ArrayBuffer): Promise<boolean> {\n    const secretKey = key as NobleKey;\n\n    if (secretKey.type !== 'secret') {\n      throw new Error('Expected secret key');\n    }\n\n    try {\n      const expectedMac = hmac(sha256, secretKey.data, new Uint8Array(data));\n      const providedMac = new Uint8Array(mac);\n\n      // Constant-time comparison\n      if (expectedMac.length !== providedMac.length) {\n        return Promise.resolve(false);\n      }\n\n      let result = 0;\n      for (let i = 0; i < expectedMac.length; i++) {\n        result |= expectedMac[i] ^ providedMac[i];\n      }\n\n      return Promise.resolve(result === 0);\n    } catch {\n      return Promise.resolve(false);\n    }\n  }\n}\n\n/**\n * Self-register Noble provider on import\n * This allows the provider to be available when explicitly imported\n */\nregisterCryptoProvider('noble', (logger) => new NobleCryptoProvider(logger));\n\n// TypeScript module augmentation to track this provider is available\ndeclare global {\n  // eslint-disable-next-line @typescript-eslint/no-namespace\n  namespace BananaLink {\n    interface RegisteredCryptoProviders {\n      noble: true;\n    }\n  }\n}\n"]}

package/dist/chunk-65HNHRJK.cjs

@@ -0,0 +1,123 @@
+'use strict';
+
+var chunkWGEGR3DF_cjs = require('./chunk-WGEGR3DF.cjs');
+
+// src/validators/index.ts
+function isValidAddress(address) {
+  return typeof address === "string" && /^0x[0-9a-fA-F]{40}$/.test(address);
+}
+chunkWGEGR3DF_cjs.__name(isValidAddress, "isValidAddress");
+function isValidUrl(url) {
+  if (typeof url !== "string") return false;
+  try {
+    new URL(url);
+    return true;
+  } catch {
+    return false;
+  }
+}
+chunkWGEGR3DF_cjs.__name(isValidUrl, "isValidUrl");
+function isValidTimestamp(timestamp) {
+  if (typeof timestamp !== "string") return false;
+  try {
+    const date = new Date(timestamp);
+    return !isNaN(date.getTime()) && timestamp === date.toISOString();
+  } catch {
+    return false;
+  }
+}
+chunkWGEGR3DF_cjs.__name(isValidTimestamp, "isValidTimestamp");
+function isValidChainId(chainId) {
+  return typeof chainId === "number" && Number.isInteger(chainId) && chainId > 0;
+}
+chunkWGEGR3DF_cjs.__name(isValidChainId, "isValidChainId");
+function isValidNonce(nonce) {
+  return typeof nonce === "string" && /^[a-fA-F0-9]{64}$/.test(nonce);
+}
+chunkWGEGR3DF_cjs.__name(isValidNonce, "isValidNonce");
+function isValidSessionId(sessionId) {
+  return typeof sessionId === "string" && /^[0-9a-f]{8}-[0-9a-f]{4}-4[0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}$/.test(sessionId);
+}
+chunkWGEGR3DF_cjs.__name(isValidSessionId, "isValidSessionId");
+function isValidBase64(str) {
+  if (typeof str !== "string" || str.length === 0) return false;
+  const base64Pattern = /^[A-Za-z0-9+/\-_]+(={0,2})$/;
+  if (!base64Pattern.test(str)) return false;
+  const paddingMatch = str.match(/=*$/);
+  const padding = paddingMatch ? paddingMatch[0].length : 0;
+  return padding === 0 || padding <= 2 && str.length % 4 === 0;
+}
+chunkWGEGR3DF_cjs.__name(isValidBase64, "isValidBase64");
+function isValidHex(hex) {
+  return typeof hex === "string" && /^(0x)?[0-9a-fA-F]+$/.test(hex);
+}
+chunkWGEGR3DF_cjs.__name(isValidHex, "isValidHex");
+function isValidMessageType(type) {
+  return type === "auth" || type === "tx" || type === "sign";
+}
+chunkWGEGR3DF_cjs.__name(isValidMessageType, "isValidMessageType");
+function isValidEncryptionAlgorithm(algo) {
+  return algo === "AES-GCM" || algo === "plaintext";
+}
+chunkWGEGR3DF_cjs.__name(isValidEncryptionAlgorithm, "isValidEncryptionAlgorithm");
+function isValidDomain(domain) {
+  if (typeof domain !== "string" || domain.length === 0) return false;
+  return /^[a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?(\.[a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)*$/.test(
+    domain
+  );
+}
+chunkWGEGR3DF_cjs.__name(isValidDomain, "isValidDomain");
+function isValidPublicKey(publicKey) {
+  if (typeof publicKey !== "string") return false;
+  const parts = publicKey.split(":");
+  if (parts.length !== 2) return false;
+  const [algorithm, key] = parts;
+  return (algorithm === "AES-GCM" || algorithm === "cleartext") && (algorithm === "cleartext" || isValidBase64(key));
+}
+chunkWGEGR3DF_cjs.__name(isValidPublicKey, "isValidPublicKey");
+function isValidEncryptedPayload(payload) {
+  if (!payload || typeof payload !== "object") return false;
+  const p = payload;
+  return isValidBase64(p.iv) && isValidBase64(p.ciphertext) && isValidBase64(p.mac);
+}
+chunkWGEGR3DF_cjs.__name(isValidEncryptedPayload, "isValidEncryptedPayload");
+function createValidationResult(valid, data, error) {
+  if (valid) {
+    return { valid: true, data };
+  }
+  return { valid: false, error };
+}
+chunkWGEGR3DF_cjs.__name(createValidationResult, "createValidationResult");
+function hasRequiredFields(obj, fields) {
+  if (!obj || typeof obj !== "object") return false;
+  const o = obj;
+  return fields.every(
+    (field) => field in o && o[field] !== null && o[field] !== void 0 && o[field] !== ""
+  );
+}
+chunkWGEGR3DF_cjs.__name(hasRequiredFields, "hasRequiredFields");
+function isValidSIWEMessage(message) {
+  if (!message || typeof message !== "object") return false;
+  const m = message;
+  return isValidDomain(m.domain) && isValidAddress(m.address) && isValidUrl(m.uri) && m.version === "1" && isValidChainId(m.chainId) && isValidNonce(m.nonce) && isValidTimestamp(m.issuedAt);
+}
+chunkWGEGR3DF_cjs.__name(isValidSIWEMessage, "isValidSIWEMessage");
+
+exports.createValidationResult = createValidationResult;
+exports.hasRequiredFields = hasRequiredFields;
+exports.isValidAddress = isValidAddress;
+exports.isValidBase64 = isValidBase64;
+exports.isValidChainId = isValidChainId;
+exports.isValidDomain = isValidDomain;
+exports.isValidEncryptedPayload = isValidEncryptedPayload;
+exports.isValidEncryptionAlgorithm = isValidEncryptionAlgorithm;
+exports.isValidHex = isValidHex;
+exports.isValidMessageType = isValidMessageType;
+exports.isValidNonce = isValidNonce;
+exports.isValidPublicKey = isValidPublicKey;
+exports.isValidSIWEMessage = isValidSIWEMessage;
+exports.isValidSessionId = isValidSessionId;
+exports.isValidTimestamp = isValidTimestamp;
+exports.isValidUrl = isValidUrl;
+//# sourceMappingURL=chunk-65HNHRJK.cjs.map
+//# sourceMappingURL=chunk-65HNHRJK.cjs.map

package/dist/chunk-65HNHRJK.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/validators/index.ts"],"names":["__name"],"mappings":";;;;;AAYO,SAAS,eAAe,OAAA,EAAqC;AAClE,EAAA,OAAO,OAAO,OAAA,KAAY,QAAA,IAAY,qBAAA,CAAsB,KAAK,OAAO,CAAA;AAC1E;AAFgBA,wBAAA,CAAA,cAAA,EAAA,gBAAA,CAAA;AAOT,SAAS,WAAW,GAAA,EAA6B;AACtD,EAAA,IAAI,OAAO,GAAA,KAAQ,QAAA,EAAU,OAAO,KAAA;AACpC,EAAA,IAAI;AACF,IAAA,IAAI,IAAI,GAAG,CAAA;AACX,IAAA,OAAO,IAAA;AAAA,EACT,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,KAAA;AAAA,EACT;AACF;AARgBA,wBAAA,CAAA,UAAA,EAAA,YAAA,CAAA;AAaT,SAAS,iBAAiB,SAAA,EAAyC;AACxE,EAAA,IAAI,OAAO,SAAA,KAAc,QAAA,EAAU,OAAO,KAAA;AAC1C,EAAA,IAAI;AACF,IAAA,MAAM,IAAA,GAAO,IAAI,IAAA,CAAK,SAAS,CAAA;AAC/B,IAAA,OAAO,CAAC,MAAM,IAAA,CAAK,OAAA,EAAS,CAAA,IAAK,SAAA,KAAc,KAAK,WAAA,EAAY;AAAA,EAClE,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,KAAA;AAAA,EACT;AACF;AARgBA,wBAAA,CAAA,gBAAA,EAAA,kBAAA,CAAA;AAaT,SAAS,eAAe,OAAA,EAAqC;AAClE,EAAA,OAAO,OAAO,OAAA,KAAY,QAAA,IAAY,OAAO,SAAA,CAAU,OAAO,KAAK,OAAA,GAAU,CAAA;AAC/E;AAFgBA,wBAAA,CAAA,cAAA,EAAA,gBAAA,CAAA;AAQT,SAAS,aAAa,KAAA,EAAiC;AAC5D,EAAA,OAAO,OAAO,KAAA,KAAU,QAAA,IAAY,mBAAA,CAAoB,KAAK,KAAK,CAAA;AACpE;AAFgBA,wBAAA,CAAA,YAAA,EAAA,cAAA,CAAA;AAOT,SAAS,iBAAiB,SAAA,EAAyC;AACxE,EAAA,OACE,OAAO,SAAA,KAAc,QAAA,IACrB,uEAAA,CAAwE,KAAK,SAAS,CAAA;AAE1F;AALgBA,wBAAA,CAAA,gBAAA,EAAA,kBAAA,CAAA;AAWT,SAAS,cAAc,GAAA,EAA6B;AACzD,EAAA,IAAI,OAAO,GAAA,KAAQ,QAAA,IAAY,GAAA,CAAI,MAAA,KAAW,GAAG,OAAO,KAAA;AAIxD,EAAA,MAAM,aAAA,GAAgB,6BAAA;AAEtB,EAAA,IAAI,CAAC,aAAA,CAAc,IAAA,CAAK,GAAG,GAAG,OAAO,KAAA;AAIrC,EAAA,MAAM,YAAA,GAAe,GAAA,CAAI,KAAA,CAAM,KAAK,CAAA;AACpC,EAAA,MAAM,OAAA,GAAU,YAAA,GAAe,YAAA,CAAa,CAAC,EAAE,MAAA,GAAS,CAAA;AAGxD,EAAA,OAAO,YAAY,CAAA,IAAM,OAAA,IAAW,CAAA,IAAM,GAAA,CAAI,SAAS,CAAA,KAAM,CAAA;AAC/D;AAhBgBA,wBAAA,CAAA,aAAA,EAAA,eAAA,CAAA;AAqBT,SAAS,WAAW,GAAA,EAA6B;AACtD,EAAA,OAAO,OAAO,GAAA,KAAQ,QAAA,IAAY,qBAAA,CAAsB,KAAK,GAAG,CAAA;AAClE;AAFgBA,wBAAA,CAAA,UAAA,EAAA,YAAA,CAAA;AAgBT,SAAS,mBAAmB,IAAA,EAA+C;AAChF,EAAA,OAAO,IAAA,KAAS,MAAA,IAAU,IAAA,KAAS,IAAA,IAAQ,IAAA,KAAS,MAAA;AACtD;AAFgBA,wBAAA,CAAA,kBAAA,EAAA,oBAAA,CAAA;AAOT,SAAS,2BAA2B,IAAA,EAAgD;AACzF,EAAA,OAAO,IAAA,KAAS,aAAa,IAAA,KAAS,WAAA;AACxC;AAFgBA,wBAAA,CAAA,0BAAA,EAAA,4BAAA,CAAA;AAOT,SAAS,cAAc,MAAA,EAAmC;AAC/D,EAAA,IAAI,OAAO,MAAA,KAAW,QAAA,IAAY,MAAA,CAAO,MAAA,KAAW,GAAG,OAAO,KAAA;AAE9D,EAAA,OAAO,+FAAA,CAAgG,IAAA;AAAA,IACrG;AAAA,GACF;AACF;AANgBA,wBAAA,CAAA,aAAA,EAAA,eAAA,CAAA;AAWT,SAAS,iBAAiB,SAAA,EAAyC;AACxE,EAAA,IAAI,OAAO,SAAA,KAAc,QAAA,EAAU,OAAO,KAAA;AAC1C,EAAA,MAAM,KAAA,GAAQ,SAAA,CAAU,KAAA,CAAM,GAAG,CAAA;AACjC,EAAA,IAAI,KAAA,CAAM,MAAA,KAAW,CAAA,EAAG,OAAO,KAAA;AAC/B,EAAA,MAAM,CAAC,SAAA,EAAW,GAAG,CAAA,GAAI,KAAA;AACzB,EAAA,OAAA,CACG,cAAc,SAAA,IAAa,SAAA,KAAc,iBACzC,SAAA,KAAc,WAAA,IAAe,cAAc,GAAG,CAAA,CAAA;AAEnD;AATgBA,wBAAA,CAAA,gBAAA,EAAA,kBAAA,CAAA;AAoBT,SAAS,wBAAwB,OAAA,EAA+C;AACrF,EAAA,IAAI,CAAC,OAAA,IAAW,OAAO,OAAA,KAAY,UAAU,OAAO,KAAA;AACpD,EAAA,MAAM,CAAA,GAAI,OAAA;AACV,EAAA,OACE,aAAA,CAAc,CAAA,CAAE,EAAE,CAAA,IAClB,aAAA,CAAc,EAAE,UAAU,CAAA,IAC1B,aAAA,CAAc,CAAA,CAAE,GAAG,CAAA;AAEvB;AARgBA,wBAAA,CAAA,uBAAA,EAAA,yBAAA,CAAA;AAaT,SAAS,sBAAA,CACd,KAAA,EACA,IAAA,EACA,KAAA,EACqB;AACrB,EAAA,IAAI,KAAA,EAAO;AACT,IAAA,OAAO,EAAE,KAAA,EAAO,IAAA,EAAM,IAAA,EAAK;AAAA,EAC7B;AACA,EAAA,OAAO,EAAE,KAAA,EAAO,KAAA,EAAO,KAAA,EAAM;AAC/B;AATgBA,wBAAA,CAAA,sBAAA,EAAA,wBAAA,CAAA;AAcT,SAAS,iBAAA,CACd,KACA,MAAA,EACU;AACV,EAAA,IAAI,CAAC,GAAA,IAAO,OAAO,GAAA,KAAQ,UAAU,OAAO,KAAA;AAC5C,EAAA,MAAM,CAAA,GAAI,GAAA;AACV,EAAA,OAAO,MAAA,CAAO,KAAA;AAAA,IACZ,CAAC,KAAA,KACC,KAAA,IAAS,CAAA,IACT,EAAE,KAAe,CAAA,KAAM,IAAA,IACvB,CAAA,CAAE,KAAe,CAAA,KAAM,MAAA,IACvB,CAAA,CAAE,KAAe,CAAA,KAAM;AAAA,GAC3B;AACF;AAbgBA,wBAAA,CAAA,iBAAA,EAAA,mBAAA,CAAA;AA4BT,SAAS,mBAAmB,OAAA,EAA0C;AAC3E,EAAA,IAAI,CAAC,OAAA,IAAW,OAAO,OAAA,KAAY,UAAU,OAAO,KAAA;AACpD,EAAA,MAAM,CAAA,GAAI,OAAA;AAEV,EAAA,OACE,aAAA,CAAc,CAAA,CAAE,MAAM,CAAA,IACtB,cAAA,CAAe,EAAE,OAAO,CAAA,IACxB,UAAA,CAAW,CAAA,CAAE,GAAG,CAAA,IAChB,EAAE,OAAA,KAAY,GAAA,IACd,cAAA,CAAe,CAAA,CAAE,OAAO,CAAA,IACxB,YAAA,CAAa,CAAA,CAAE,KAAK,CAAA,IACpB,gBAAA,CAAiB,CAAA,CAAE,QAAQ,CAAA;AAE/B;AAbgBA,wBAAA,CAAA,kBAAA,EAAA,oBAAA,CAAA","file":"chunk-65HNHRJK.cjs","sourcesContent":["/**\n * Lightweight validation utilities for BananaLink protocol types\n *\n * Zero dependencies, minimal bundle size (~3KB)\n * Suitable for browsers, React Native, and Node.js\n *\n * For full Zod-based validation, use: @bananalink-sdk/protocol/validation\n */\n\n/**\n * Validate Ethereum address format (0x + 40 hex characters)\n */\nexport function isValidAddress(address: unknown): address is string {\n  return typeof address === 'string' && /^0x[0-9a-fA-F]{40}$/.test(address);\n}\n\n/**\n * Validate URL format\n */\nexport function isValidUrl(url: unknown): url is string {\n  if (typeof url !== 'string') return false;\n  try {\n    new URL(url);\n    return true;\n  } catch {\n    return false;\n  }\n}\n\n/**\n * Validate ISO 8601 timestamp format\n */\nexport function isValidTimestamp(timestamp: unknown): timestamp is string {\n  if (typeof timestamp !== 'string') return false;\n  try {\n    const date = new Date(timestamp);\n    return !isNaN(date.getTime()) && timestamp === date.toISOString();\n  } catch {\n    return false;\n  }\n}\n\n/**\n * Validate chain ID (positive integer)\n */\nexport function isValidChainId(chainId: unknown): chainId is number {\n  return typeof chainId === 'number' && Number.isInteger(chainId) && chainId > 0;\n}\n\n/**\n * Validate nonce format (64 hex characters = 32 bytes)\n * Protocol v2.0 standard\n */\nexport function isValidNonce(nonce: unknown): nonce is string {\n  return typeof nonce === 'string' && /^[a-fA-F0-9]{64}$/.test(nonce);\n}\n\n/**\n * Validate session ID format (UUID v4)\n */\nexport function isValidSessionId(sessionId: unknown): sessionId is string {\n  return (\n    typeof sessionId === 'string' &&\n    /^[0-9a-f]{8}-[0-9a-f]{4}-4[0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}$/.test(sessionId)\n  );\n}\n\n/**\n * Validate base64 string format\n * Accepts standard base64 (with padding) and base64url variants\n */\nexport function isValidBase64(str: unknown): str is string {\n  if (typeof str !== 'string' || str.length === 0) return false;\n\n  // RFC 4648 base64 pattern: A-Z, a-z, 0-9, +, /, = (padding)\n  // Also accepts base64url variant: A-Z, a-z, 0-9, -, _\n  const base64Pattern = /^[A-Za-z0-9+/\\-_]+(={0,2})$/;\n\n  if (!base64Pattern.test(str)) return false;\n\n  // Validate padding - must be 0, 1, or 2 '=' characters at the end\n  // Length must be multiple of 4 for standard base64 with padding\n  const paddingMatch = str.match(/=*$/);\n  const padding = paddingMatch ? paddingMatch[0].length : 0;\n\n  // For base64url (no padding) or standard base64 (proper padding)\n  return padding === 0 || (padding <= 2 && (str.length % 4 === 0));\n}\n\n/**\n * Validate hex string format\n */\nexport function isValidHex(hex: unknown): hex is string {\n  return typeof hex === 'string' && /^(0x)?[0-9a-fA-F]+$/.test(hex);\n}\n\n/**\n * Validation result with detailed error information\n */\nexport interface ValidationResult<T = unknown> {\n  valid: boolean;\n  error?: string;\n  data?: T;\n}\n\n/**\n * Validate message type enum\n */\nexport function isValidMessageType(type: unknown): type is 'auth' | 'tx' | 'sign' {\n  return type === 'auth' || type === 'tx' || type === 'sign';\n}\n\n/**\n * Validate encryption algorithm\n */\nexport function isValidEncryptionAlgorithm(algo: unknown): algo is 'AES-GCM' | 'plaintext' {\n  return algo === 'AES-GCM' || algo === 'plaintext';\n}\n\n/**\n * Validate domain name format\n */\nexport function isValidDomain(domain: unknown): domain is string {\n  if (typeof domain !== 'string' || domain.length === 0) return false;\n  // Basic domain validation (not comprehensive, but sufficient for protocol)\n  return /^[a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?(\\.[a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)*$/.test(\n    domain\n  );\n}\n\n/**\n * Validate public key format (algorithm:base64)\n */\nexport function isValidPublicKey(publicKey: unknown): publicKey is string {\n  if (typeof publicKey !== 'string') return false;\n  const parts = publicKey.split(':');\n  if (parts.length !== 2) return false;\n  const [algorithm, key] = parts;\n  return (\n    (algorithm === 'AES-GCM' || algorithm === 'cleartext') &&\n    (algorithm === 'cleartext' || isValidBase64(key))\n  );\n}\n\n/**\n * Validate encrypted payload structure\n */\nexport interface EncryptedPayload {\n  iv: string;\n  ciphertext: string;\n  mac: string;\n}\n\nexport function isValidEncryptedPayload(payload: unknown): payload is EncryptedPayload {\n  if (!payload || typeof payload !== 'object') return false;\n  const p = payload as Record<string, unknown>;\n  return (\n    isValidBase64(p.iv) &&\n    isValidBase64(p.ciphertext) &&\n    isValidBase64(p.mac)\n  );\n}\n\n/**\n * Create a validation result\n */\nexport function createValidationResult<T = unknown>(\n  valid: boolean,\n  data?: T,\n  error?: string\n): ValidationResult<T> {\n  if (valid) {\n    return { valid: true, data };\n  }\n  return { valid: false, error };\n}\n\n/**\n * Validate required fields are present and non-empty\n */\nexport function hasRequiredFields<T extends object>(\n  obj: unknown,\n  fields: (keyof T)[]\n): obj is T {\n  if (!obj || typeof obj !== 'object') return false;\n  const o = obj as Record<string, unknown>;\n  return fields.every(\n    (field) =>\n      field in o &&\n      o[field as string] !== null &&\n      o[field as string] !== undefined &&\n      o[field as string] !== ''\n  );\n}\n\n/**\n * Validate SIWE message structure (minimal check)\n */\nexport interface SIWEMessage {\n  domain: string;\n  address: string;\n  uri: string;\n  version: string;\n  chainId: number;\n  nonce: string;\n  issuedAt: string;\n}\n\nexport function isValidSIWEMessage(message: unknown): message is SIWEMessage {\n  if (!message || typeof message !== 'object') return false;\n  const m = message as Record<string, unknown>;\n\n  return (\n    isValidDomain(m.domain) &&\n    isValidAddress(m.address) &&\n    isValidUrl(m.uri) &&\n    m.version === '1' &&\n    isValidChainId(m.chainId) &&\n    isValidNonce(m.nonce) &&\n    isValidTimestamp(m.issuedAt)\n  );\n}\n"]}