@boundlessfi/identity-sdk 0.1.7 → 0.1.8

package/README.md

@@ -146,6 +146,26 @@ await boundless.addRecoveryKey({
 });
 ```
 
+### 6. Using with TrustlessWork (G-Address Bridge)
+
+TrustlessWork and other Stellar APIs require G-addresses (classic accounts) for role assignment. Smart Accounts use C-addresses, which cannot be used directly.
+
+The SDK provides a **delegated account pattern**:
+
+1. Create a G-address that your Smart Account controls:
+
+   ```ts
+   const { gAddress, secretKey } = await boundless.createDelegatedAccount({ autoFund: true });
+   ```
+
+2. Store the `secretKey` securely in your backend (encrypted).
+
+3. Use the `gAddress` when calling TrustlessWork APIs.
+
+4. Funds remain in the Smart Account. The G-address only signs escrow milestones.
+
+**Security Note:** The G-address cannot transfer funds from the Smart Account without the user's passkey approval. It is a signing-only delegate.
+
 ---
 
 ## Advanced Usage

package/dist/index.cjs

@@ -32,6 +32,8 @@ __export(index_exports, {
   SimulationError: () => import_smart_account_kit3.SimulationError,
   SmartAccountError: () => import_smart_account_kit3.SmartAccountError,
   SubmissionError: () => import_smart_account_kit3.SubmissionError,
+  TRUSTLESSWORK_USDC_MAINNET: () => TRUSTLESSWORK_USDC_MAINNET,
+  TRUSTLESSWORK_USDC_TESTNET: () => TRUSTLESSWORK_USDC_TESTNET,
   ValidationError: () => import_smart_account_kit3.ValidationError,
   WalletNotConnectedError: () => import_smart_account_kit3.WalletNotConnectedError,
   WebAuthnError: () => import_smart_account_kit3.WebAuthnError,
@@ -62,7 +64,8 @@ var NETWORK_CONFIGS = {
       spendingLimit: "CBMMWY54XOV6JJHSWCMKWWPXVRXASR5U26UJMLZDN4SP6CFFTVZARPTY",
       weightedThreshold: "CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ"
     },
-    relayerUrl: ""
+    relayerUrl: "",
+    trustlessWorkUsdcIssuer: "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5"
   },
   mainnet: {
     networkPassphrase: "Public Global Stellar Network ; September 2015",
@@ -76,9 +79,12 @@ var NETWORK_CONFIGS = {
       spendingLimit: "REPLACE_WITH_MAINNET_POLICY",
       weightedThreshold: "REPLACE_WITH_MAINNET_POLICY"
     },
-    relayerUrl: ""
+    relayerUrl: "",
+    trustlessWorkUsdcIssuer: "GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN"
   }
 };
+var TRUSTLESSWORK_USDC_TESTNET = NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;
+var TRUSTLESSWORK_USDC_MAINNET = NETWORK_CONFIGS.mainnet.trustlessWorkUsdcIssuer;
 
 // src/errors.ts
 var import_smart_account_kit = require("smart-account-kit");
@@ -97,7 +103,7 @@ var BoundlessLinkError = class extends import_smart_account_kit.SmartAccountErro
 };
 
 // src/boundless-sdk.ts
-var DUMMY_SOURCE = "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5";
+var DUMMY_SOURCE = NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;
 var BoundlessSDK = class {
   // typed via createAuthClient return
   constructor(config) {
@@ -417,6 +423,65 @@ var BoundlessSDK = class {
       this.kit.events.off(event, handler);
     };
   }
+  /**
+   * Creates a G-address that the Smart Account can control.
+   * This G-address can be used with TrustlessWork and other APIs
+   * that require classic Stellar accounts.
+   *
+   * The Smart Account adds the G-address as a delegated signer on
+   * the default context rule (contextRuleId: 0).
+   */
+  async createDelegatedAccount(options) {
+    if (!this.getWalletAddress()) {
+      throw new import_smart_account_kit2.WalletNotConnectedError("Must connect wallet first");
+    }
+    const keypair = options?.keypair || import_stellar_sdk.Keypair.random();
+    const gAddress = keypair.publicKey();
+    const secretKey = keypair.secret();
+    await this.kit.signers.addDelegated(
+      0,
+      // context rule ID (default rule)
+      gAddress
+    );
+    let activated = false;
+    if (options?.autoFund && this.config.network === "testnet") {
+      try {
+        await fetch(`https://friendbot.stellar.org?addr=${gAddress}`);
+        activated = true;
+      } catch (e) {
+        console.warn("Friendbot funding failed:", e);
+      }
+    }
+    return { gAddress, secretKey, activated };
+  }
+  /**
+   * Retrieves the G-address currently delegated by the Smart Account.
+   * Returns null if no delegated account exists.
+   */
+  async getDelegatedAccount() {
+    const address = this.getWalletAddress();
+    if (!address) return null;
+    const tx = await this.kit.rules.get(0);
+    const sim = await tx.simulate();
+    const rule = sim.result;
+    if (!rule || !rule.signers) return null;
+    const delegatedSigner = rule.signers.find(
+      (s) => s.tag === "Delegated"
+    );
+    return delegatedSigner ? delegatedSigner.values[0] : null;
+  }
+  /**
+   * Removes a delegated G-address from the Smart Account's signer list.
+   * After this, the G-address can no longer act on behalf of the Smart Account.
+   */
+  async removeDelegatedAccount(gAddress) {
+    const address = this.getWalletAddress();
+    if (!address) {
+      throw new import_smart_account_kit2.WalletNotConnectedError("Wallet must be connected");
+    }
+    const signer = { tag: "Delegated", values: [gAddress] };
+    await this.kit.signers.remove(0, signer);
+  }
 };
 
 // src/utils.ts
@@ -444,6 +509,8 @@ var import_smart_account_kit3 = require("smart-account-kit");
   SimulationError,
   SmartAccountError,
   SubmissionError,
+  TRUSTLESSWORK_USDC_MAINNET,
+  TRUSTLESSWORK_USDC_TESTNET,
   ValidationError,
   WalletNotConnectedError,
   WebAuthnError,

package/dist/index.cjs.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/index.ts","../src/boundless-sdk.ts","../src/constants.ts","../src/errors.ts","../src/utils.ts"],"sourcesContent":["export * from \"./boundless-sdk\";\nexport * from \"./types\";\nexport * from \"./errors\";\nexport * from \"./constants\";\nexport * from \"./utils\";\nexport {\n  SmartAccountError,\n  WalletNotConnectedError,\n  CredentialNotFoundError,\n  SignerNotFoundError,\n  SimulationError,\n  SubmissionError,\n  ValidationError,\n  WebAuthnError,\n  SessionError,\n  wrapError,\n} from \"smart-account-kit\";\n","import {\n  SmartAccountKit,\n  IndexedDBStorage,\n  WalletNotConnectedError,\n  STROOPS_PER_XLM,\n} from \"smart-account-kit\";\nimport {\n  rpc,\n  Asset,\n  Address,\n  Contract,\n  Account,\n  TransactionBuilder,\n  scValToNative,\n  TimeoutInfinite,\n} from \"@stellar/stellar-sdk\";\nimport type { AssembledTransaction } from \"smart-account-kit\";\nimport { createAuthClient } from \"better-auth/client\";\nimport { inferAdditionalFields } from \"better-auth/client/plugins\";\n\nimport { NETWORK_CONFIGS } from \"./constants\";\nimport { BoundlessAuthError, BoundlessLinkError } from \"./errors\";\nimport type {\n  BoundlessSdkConfig,\n  ConnectOptions,\n  ConnectResult,\n  SignAndSubmitResult,\n  AddRecoveryKeyOptions,\n  RecoveryKeyResult,\n  BoundlessEventName,\n  BoundlessEventHandler,\n} from \"./types\";\n\n// Valid G-address for simulation source (USDC Issuer)\nconst DUMMY_SOURCE = \"GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5\";\n\nexport class BoundlessSDK {\n  private config: BoundlessSdkConfig;\n  private kit: SmartAccountKit;\n  private _walletAddress: string | null = null;\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  private authClient: any; // typed via createAuthClient return\n\n  constructor(config: BoundlessSdkConfig) {\n    this.config = config;\n\n    // 1. Resolve network config\n    const networkConfig = NETWORK_CONFIGS[config.network];\n    const rpcUrl = config.rpcUrl || networkConfig.defaultRpcUrl;\n\n    // 2. Initialize SmartAccountKit\n    this.kit = new SmartAccountKit({\n      rpcUrl,\n      networkPassphrase: networkConfig.networkPassphrase,\n      accountWasmHash: networkConfig.accountWasmHash,\n      webauthnVerifierAddress: networkConfig.webauthnVerifierAddress,\n      rpId: config.rpId,\n      rpName: config.rpName,\n      storage: config.storage, // optional\n      relayerUrl: config.relayerProxyUrl, // optional\n    });\n\n    // 3. Create Better-Auth client\n    // Normalize backend URL: remove trailing /api or /api/auth\n    let normalizedBackendUrl = config.backendUrl.replace(/\\/$/, \"\");\n    if (normalizedBackendUrl.endsWith(\"/api/auth\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 9,\n      );\n    } else if (normalizedBackendUrl.endsWith(\"/api\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 4,\n      );\n    }\n    // Update config with normalized URL for internal use\n    this.config.backendUrl = normalizedBackendUrl;\n\n    // We cannot do `typeof auth` inference across packages easily without importing backend code.\n    // inferAdditionalFields is the standard polyrepo pattern.\n    this.authClient = createAuthClient({\n      baseURL: normalizedBackendUrl,\n      basePath: \"/api/auth\",\n      plugins: [\n        inferAdditionalFields({\n          user: {\n            stellarAddress: { type: \"string\" },\n            credentialId: { type: \"string\" },\n          },\n        }),\n      ],\n    }) as any;\n  }\n\n  /**\n   * Access the underlying SmartAccountKit instance for advanced usage.\n   */\n  get smartAccountKit(): SmartAccountKit {\n    return this.kit;\n  }\n\n  /**\n   * Connect to an existing passkey wallet.\n   * If prompt is true, forces the browser passkey selection UI.\n   * Does NOT deploy a new wallet.\n   */\n  async connect(options?: ConnectOptions): Promise<ConnectResult | null> {\n    const prompt = options?.prompt === true;\n\n    // 1. Silent restore first (default behavior of connectWallet without args)\n    // If prompt is true, we skip silent restore if we want to force UI,\n    // but smart-account-kit connectWallet handles 'prompt: true' by forcing it.\n    // However, the spec says:\n    // \"Call kit.connectWallet() ← silent restore\"\n    // \"If result → return mapped... \"\n    // \"If null AND options?.prompt === true → call kit.connectWallet({ prompt: true })\"\n\n    let result = await this.kit.connectWallet();\n\n    if (result) {\n      this._walletAddress = result.contractId;\n      return {\n        walletAddress: result.contractId,\n        credentialId: (result as any).credentialId || \"\",\n        isNew: false,\n      };\n    }\n\n    if (prompt) {\n      result = await this.kit.connectWallet({ prompt: true });\n      if (result) {\n        this._walletAddress = result.contractId;\n        return {\n          walletAddress: result.contractId,\n          credentialId: (result as any).credentialId || \"\",\n          isNew: false,\n        };\n      }\n    }\n\n    // \"If null AND prompt is falsy → return null.\"\n    return null;\n  }\n\n  /**\n   * Create a new wallet + credential for a user.\n   * Triggers browser passkey prompt.\n   * Links to the active Better-Auth session.\n   */\n  async register(userName: string): Promise<ConnectResult> {\n    // 1. Create wallet (deploys on-chain + persists credential)\n    const result = await this.kit.createWallet(this.config.rpName, userName, {\n      autoSubmit: true,\n    });\n\n    // 2. Link to Better-Auth session\n    // We expect credentialId to be present for new registrations via SmartAccountKit\n    if (!result.credentialId) {\n      console.warn(\"No credentialId returned from createWallet for new user.\");\n    }\n    await this.linkToSession(result.contractId, result.credentialId || \"\");\n\n    this._walletAddress = result.contractId;\n\n    // 3. Return result\n    return {\n      walletAddress: result.contractId,\n      credentialId: result.credentialId,\n      isNew: true,\n    };\n  }\n\n  /**\n   * Link a Stellar wallet address to the currently authenticated user session.\n   */\n  private async linkToSession(\n    contractId: string,\n    credentialId: string,\n  ): Promise<void> {\n    // 1. Check session\n    const res = await this.authClient.getSession();\n    const session = res?.data;\n    if (!session?.user) {\n      throw new BoundlessAuthError(\n        \"No active auth session. User must be logged in via Better-Auth before linking a wallet.\",\n      );\n    }\n\n    // 2. POST /api/auth/stellar/link\n    // Using fetch to manually hit the endpoint registered by the plugin.\n    // The SDK's authClient base URL is config.backendUrl.\n    const linkUrl = `${this.config.backendUrl}/api/auth/stellar/link`;\n\n    const response = await fetch(linkUrl, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n      },\n      body: JSON.stringify({\n        stellarAddress: contractId,\n        credentialId: credentialId,\n      }),\n      // Credentials include cookies for the session\n      credentials: \"include\",\n    });\n\n    if (!response.ok) {\n      const text = await response.text();\n      throw new BoundlessLinkError(\n        `Failed to link wallet: ${text}`,\n        response.status,\n      );\n    }\n  }\n\n  /**\n   * Sign and submit a transaction.\n   * Delegates to SmartAccountKit (which handles relayer if configured).\n   */\n  async signAndSubmit(\n    transaction: AssembledTransaction<any>,\n  ): Promise<SignAndSubmitResult> {\n    const result = await this.kit.signAndSubmit(transaction);\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Fetch the balance of the connected wallet (or any specific address).\n   * By default, fetches native XLM balance.\n   * If assetCode (and issuer) is provided, fetches that asset's balance.\n   * If assetCode starts with 'C', it is treated as a contract ID.\n   */\n  async getBalance(\n    address: string,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<string> {\n    if (!address) return \"0.00\";\n\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    const server = new rpc.Server(\n      this.config.rpcUrl || networkConfig.defaultRpcUrl,\n    );\n\n    // 1. Native Balance\n    if (assetCode === \"XLM\") {\n      try {\n        const result = await server.getSACBalance(\n          networkConfig.nativeTokenContract,\n          Asset.native(),\n          networkConfig.networkPassphrase,\n        );\n        if (result.balanceEntry) {\n          return (Number(result.balanceEntry.amount) / STROOPS_PER_XLM).toFixed(\n            2,\n          );\n        }\n        return \"0.00\";\n      } catch (e) {\n        console.error(\"Error fetching native balance:\", e);\n        return \"0.00\";\n      }\n    }\n\n    // 2. Custom Token Balance\n    let targetContractId = assetCode;\n\n    // Resolve Contract ID\n    if (assetCode.includes(\":\")) {\n      // CODE:ISSUER\n      const [code, issuer] = assetCode.split(\":\");\n      try {\n        const asset = new Asset(code, issuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Invalid asset format: ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (assetIssuer) {\n      // Explicit Code + Issuer\n      try {\n        const asset = new Asset(assetCode, assetIssuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Failed to derive contract for ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (!assetCode.startsWith(\"C\")) {\n      // If it's just \"USDC\" without issuer, we might need a known list or fail.\n      // For SDK, we assume the user must provide enough info.\n      // However, if the user passes a contract address directly, we use it.\n      // Check if it's a valid contract address?\n      // For now, we assume if it's 56 chars starting with C, it's a contract.\n      // If not, we can't guess.\n      // But we'll try to treat it as a contract ID if it looks like one.\n      if (!assetCode.startsWith(\"C\") || assetCode.length !== 56) {\n        console.warn(\n          \"getBalance: Asset code must be XLM, C... contract ID, or CODE:ISSUER\",\n        );\n        return \"0\";\n      }\n    }\n\n    try {\n      // Simulate Balance Call\n      // Use DUMMY_SOURCE for simulation to avoid accountId errors with Smart Accounts\n      const sourceAccount = new Account(DUMMY_SOURCE, \"0\");\n\n      const tokenContract = new Contract(targetContractId);\n      const op = tokenContract.call(\"balance\", new Address(address).toScVal());\n\n      const tx = new TransactionBuilder(sourceAccount, {\n        fee: \"100\",\n        networkPassphrase: networkConfig.networkPassphrase,\n      })\n        .addOperation(op)\n        .setTimeout(TimeoutInfinite)\n        .build();\n\n      const sim = await server.simulateTransaction(tx);\n\n      if (\n        rpc.Api.isSimulationSuccess(sim) &&\n        sim.result &&\n        \"retval\" in sim.result\n      ) {\n        const val = scValToNative(sim.result.retval);\n        // Default formatting: Assume 7 decimals for now or return raw?\n        // Returning human-readable for convenience.\n        // Most Stellar tokens are 7 decimals.\n        return (Number(val) / 1e7).toFixed(2);\n      }\n    } catch (e) {\n      console.error(`Error fetching token balance for ${assetCode}:`, e);\n    }\n\n    return \"0\";\n  }\n\n  /**\n   * Transfer funds (XLM or Token).\n   * Automatically resolves Asset-to-Contract if needed.\n   */\n  async transfer(\n    to: string,\n    amount: string | number,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<SignAndSubmitResult> {\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    let tokenContract: string = networkConfig.nativeTokenContract;\n\n    if (assetCode !== \"XLM\") {\n      if (assetCode.startsWith(\"C\") && assetCode.length === 56) {\n        tokenContract = assetCode;\n      } else if (assetCode.includes(\":\")) {\n        const [code, issuer] = assetCode.split(\":\");\n        const asset = new Asset(code, issuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else if (assetIssuer) {\n        const asset = new Asset(assetCode, assetIssuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else {\n        throw new Error(\n          \"Invalid asset specifier. Use XLM, Contract ID, or Code + Issuer.\",\n        );\n      }\n    }\n\n    const amountNum = typeof amount === \"string\" ? parseFloat(amount) : amount;\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    const result = await this.kit.transfer(tokenContract as any, to, amountNum);\n\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Disconnect the wallet (clear local session).\n   * Does NOT sign out of Better-Auth.\n   */\n  async disconnect(): Promise<void> {\n    await this.kit.disconnect();\n    this._walletAddress = null;\n  }\n\n  /**\n   * Get the connected wallet address synchronously.\n   */\n  getWalletAddress(): string | null {\n    // smart-account-kit doesn't have a direct synchronous getter documented in the spec provided?\n    // \"Read from the session state that SmartAccountKit maintains internally (check kit after connectWallet result).\"\n    // Usually kit.address or similar is available if connected.\n    // Based on \"sub-managers\" list, it doesn't explicitly show 'address' property on kit intance.\n    // However, typical usage implies we can track it.\n    // BUT the prompt says: \"check kit after connectWallet result\".\n    // Wait, SmartAccountKit instance usage in 6.1 doesn't show a public 'address' field.\n    // But section 7.3 says: \"Read from the session state that SmartAccountKit maintains internally\".\n    // I will assume `kit.address` exists or I need to track it myself?\n    // \"The SDK is one package... Client SDK class... It owns the client-side BoundlessSDK class\".\n    // If I look at `kit` internals or typical patterns, it often exposes the address.\n    // If not, I should probably cache it on `connect` / `register`.\n    // BUT, `kit.connectWallet` returns the result.\n    // If the page reloads, `kit` is re-instantiated. `kit.connectWallet()` (silent) restores it.\n    // So `getWalletAddress` might need to rely on the *result* of the last connect/register.\n    //\n    // HOWEVER, `kit` might have an `address` getter.\n    // Let's assume for now I should inspect `kit` typings if I could, but I can't.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n    // implies `kit` has state.\n    // If `kit` tracks it, it's likely `kit.address`.\n    // I'll check if I can assume it.\n    // If `kit` does not expose it, I'd have to store it in `this.currentAddress`.\n    // But if `kit` disconnects, I need to know.\n    // `kit.events` emit 'walletDisconnected'.\n\n    // I'll use a safer approach: check if `kit` has a known property or Method.\n    // The spec 6.1 Core Methods allows `connectWallet`.\n    // If `kit` doesn't expose `address` directly, I'll rely on my own state updated via events/method calls.\n    // BUT Section 7.3 says \"Read from the session state that SmartAccountKit maintains internally\".\n    // This strongly suggests `kit` has it. I will try `(this.kit as any).address`.\n    // Or better, I will assume it might be there.\n\n    // Actually, looking at `smart-account-kit` typical implementations, it usually has `address`.\n    // I'll assume `this.kit.address` is the way.\n    // If TS complains, I'll fix it. I can't check types right now.\n    // I will use `(this.kit as any).address` to be safe if strict types block it,\n    // but better to try `this.kit.address` first? No, I want to avoid build errors.\n    // I'll cast for now to avoid blocking if the types aren't exactly matching my assumption.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n\n    return this._walletAddress || (this.kit as any).address || null;\n  }\n\n  /**\n   * Add a recovery key (new passkey) to the existing account.\n   */\n  async addRecoveryKey(\n    options: AddRecoveryKeyOptions,\n  ): Promise<RecoveryKeyResult> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to add a recovery key.\",\n      );\n    }\n\n    const { credentialId } = await this.kit.signers.addPasskey(\n      0, // contextRuleId (0 = default)\n      options.appName,\n      options.userName,\n      { nickname: options.nickname },\n    );\n\n    return { credentialId };\n  }\n\n  /**\n   * Remove a credential by ID.\n   */\n  async removeCredential(credentialId: string): Promise<void> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to remove a credential.\",\n      );\n    }\n\n    await this.kit.signers.removePasskey(0, credentialId);\n  }\n\n  /**\n   * Subscribe to events.\n   */\n  onEvent(\n    event: BoundlessEventName,\n    handler: BoundlessEventHandler,\n  ): () => void {\n    const validEvents: BoundlessEventName[] = [\n      \"walletConnected\",\n      \"walletDisconnected\",\n      \"credentialCreated\",\n      \"credentialDeleted\",\n      \"sessionExpired\",\n      \"transactionSigned\",\n      \"transactionSubmitted\",\n    ];\n\n    if (!validEvents.includes(event)) {\n      // Just ignore or warn? Types prevent this usually.\n      console.warn(`BoundlessSDK: Unknown event \"${event}\"`);\n      return () => {};\n    }\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    this.kit.events.on(event, handler as any);\n\n    return () => {\n      // eslint-disable-next-line @typescript-eslint/no-explicit-any\n      this.kit.events.off(event, handler as any);\n    };\n  }\n}\n","export const NETWORK_CONFIGS = {\n  testnet: {\n    networkPassphrase: \"Test SDF Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-testnet.stellar.org\",\n    accountWasmHash:\n      \"a12e8fa9621efd20315753bd4007d974390e31fbcb4a7ddc4dd0a0dec728bf2e\",\n    webauthnVerifierAddress:\n      \"CBSHV66WG7UV6FQVUTB67P3DZUEJ2KJ5X6JKQH5MFRAAFNFJUAJVXJYV\",\n    ed25519VerifierAddress:\n      \"CDGMOL3BP6Y6LYOXXTRNXBNJ2SLNTQ47BGG3LOS2OBBE657E3NYCN54B\",\n    nativeTokenContract:\n      \"CDLZFC3SYJYDZT7K67VZ75HPJVIEUVNIXF47ZG2FB2RMQQVU2HHGCYSC\",\n    policies: {\n      threshold: \"CCT4MMN5MJ6O2OU6LXPYTCVORQ2QVTBMDJ7MYBZQ2ULSYQVUIYP4IFYD\",\n      spendingLimit: \"CBMMWY54XOV6JJHSWCMKWWPXVRXASR5U26UJMLZDN4SP6CFFTVZARPTY\",\n      weightedThreshold:\n        \"CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ\",\n    },\n    relayerUrl: \"\",\n  },\n  mainnet: {\n    networkPassphrase: \"Public Global Stellar Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-rpc.mainnet.stellar.org\",\n    accountWasmHash: \"REPLACE_WITH_MAINNET_WASM_HASH\",\n    webauthnVerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    ed25519VerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    nativeTokenContract: \"REPLACE_WITH_MAINNET_CONTRACT\",\n    policies: {\n      threshold: \"REPLACE_WITH_MAINNET_POLICY\",\n      spendingLimit: \"REPLACE_WITH_MAINNET_POLICY\",\n      weightedThreshold: \"REPLACE_WITH_MAINNET_POLICY\",\n    },\n    relayerUrl: \"\",\n  },\n} as const;\n\nexport type NetworkName = keyof typeof NETWORK_CONFIGS;\n","import { SmartAccountError } from \"smart-account-kit\";\n\nexport class BoundlessAuthError extends SmartAccountError {\n  constructor(message: string) {\n    super(message, \"BOUNDLESS_AUTH\" as any);\n    this.name = \"BoundlessAuthError\";\n  }\n}\n\nexport class BoundlessLinkError extends SmartAccountError {\n  constructor(\n    message: string,\n    public statusCode?: number,\n  ) {\n    super(message, \"BOUNDLESS_LINK\" as any);\n    this.name = \"BoundlessLinkError\";\n  }\n}\n","/**\n * Validate that a string looks like a Soroban contract address.\n * Soroban contract IDs start with 'C' and are 56 characters (StrKey).\n */\nexport function isValidContractAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"C\");\n}\n\n/**\n * Validate that a string looks like a Stellar account address (G…).\n */\nexport function isValidStellarAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"G\");\n}\n\n/**\n * Sleep for N milliseconds.  Useful in retry loops.\n */\nexport function sleep(ms: number): Promise<void> {\n  return new Promise((resolve) => setTimeout(resolve, ms));\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAA,IAAAA,4BAKO;AACP,yBASO;AAEP,oBAAiC;AACjC,qBAAsC;;;AClB/B,IAAM,kBAAkB;AAAA,EAC7B,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBACE;AAAA,IACF,yBACE;AAAA,IACF,wBACE;AAAA,IACF,qBACE;AAAA,IACF,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBACE;AAAA,IACJ;AAAA,IACA,YAAY;AAAA,EACd;AAAA,EACA,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBAAiB;AAAA,IACjB,yBAAyB;AAAA,IACzB,wBAAwB;AAAA,IACxB,qBAAqB;AAAA,IACrB,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBAAmB;AAAA,IACrB;AAAA,IACA,YAAY;AAAA,EACd;AACF;;;AClCA,+BAAkC;AAE3B,IAAM,qBAAN,cAAiC,2CAAkB;AAAA,EACxD,YAAY,SAAiB;AAC3B,UAAM,SAAS,gBAAuB;AACtC,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,qBAAN,cAAiC,2CAAkB;AAAA,EACxD,YACE,SACO,YACP;AACA,UAAM,SAAS,gBAAuB;AAF/B;AAGP,SAAK,OAAO;AAAA,EACd;AACF;;;AFiBA,IAAM,eAAe;AAEd,IAAM,eAAN,MAAmB;AAAA;AAAA,EAOxB,YAAY,QAA4B;AANxC,wBAAQ;AACR,wBAAQ;AACR,wBAAQ,kBAAgC;AAExC;AAAA,wBAAQ;AAGN,SAAK,SAAS;AAGd,UAAM,gBAAgB,gBAAgB,OAAO,OAAO;AACpD,UAAM,SAAS,OAAO,UAAU,cAAc;AAG9C,SAAK,MAAM,IAAI,0CAAgB;AAAA,MAC7B;AAAA,MACA,mBAAmB,cAAc;AAAA,MACjC,iBAAiB,cAAc;AAAA,MAC/B,yBAAyB,cAAc;AAAA,MACvC,MAAM,OAAO;AAAA,MACb,QAAQ,OAAO;AAAA,MACf,SAAS,OAAO;AAAA;AAAA,MAChB,YAAY,OAAO;AAAA;AAAA,IACrB,CAAC;AAID,QAAI,uBAAuB,OAAO,WAAW,QAAQ,OAAO,EAAE;AAC9D,QAAI,qBAAqB,SAAS,WAAW,GAAG;AAC9C,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF,WAAW,qBAAqB,SAAS,MAAM,GAAG;AAChD,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF;AAEA,SAAK,OAAO,aAAa;AAIzB,SAAK,iBAAa,gCAAiB;AAAA,MACjC,SAAS;AAAA,MACT,UAAU;AAAA,MACV,SAAS;AAAA,YACP,sCAAsB;AAAA,UACpB,MAAM;AAAA,YACJ,gBAAgB,EAAE,MAAM,SAAS;AAAA,YACjC,cAAc,EAAE,MAAM,SAAS;AAAA,UACjC;AAAA,QACF,CAAC;AAAA,MACH;AAAA,IACF,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,IAAI,kBAAmC;AACrC,WAAO,KAAK;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAQ,SAAyD;AACrE,UAAM,SAAS,SAAS,WAAW;AAUnC,QAAI,SAAS,MAAM,KAAK,IAAI,cAAc;AAE1C,QAAI,QAAQ;AACV,WAAK,iBAAiB,OAAO;AAC7B,aAAO;AAAA,QACL,eAAe,OAAO;AAAA,QACtB,cAAe,OAAe,gBAAgB;AAAA,QAC9C,OAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI,QAAQ;AACV,eAAS,MAAM,KAAK,IAAI,cAAc,EAAE,QAAQ,KAAK,CAAC;AACtD,UAAI,QAAQ;AACV,aAAK,iBAAiB,OAAO;AAC7B,eAAO;AAAA,UACL,eAAe,OAAO;AAAA,UACtB,cAAe,OAAe,gBAAgB;AAAA,UAC9C,OAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AAGA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAS,UAA0C;AAEvD,UAAM,SAAS,MAAM,KAAK,IAAI,aAAa,KAAK,OAAO,QAAQ,UAAU;AAAA,MACvE,YAAY;AAAA,IACd,CAAC;AAID,QAAI,CAAC,OAAO,cAAc;AACxB,cAAQ,KAAK,0DAA0D;AAAA,IACzE;AACA,UAAM,KAAK,cAAc,OAAO,YAAY,OAAO,gBAAgB,EAAE;AAErE,SAAK,iBAAiB,OAAO;AAG7B,WAAO;AAAA,MACL,eAAe,OAAO;AAAA,MACtB,cAAc,OAAO;AAAA,MACrB,OAAO;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,cACZ,YACA,cACe;AAEf,UAAM,MAAM,MAAM,KAAK,WAAW,WAAW;AAC7C,UAAM,UAAU,KAAK;AACrB,QAAI,CAAC,SAAS,MAAM;AAClB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAKA,UAAM,UAAU,GAAG,KAAK,OAAO,UAAU;AAEzC,UAAM,WAAW,MAAM,MAAM,SAAS;AAAA,MACpC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,gBAAgB;AAAA,QAChB;AAAA,MACF,CAAC;AAAA;AAAA,MAED,aAAa;AAAA,IACf,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAChB,YAAM,OAAO,MAAM,SAAS,KAAK;AACjC,YAAM,IAAI;AAAA,QACR,0BAA0B,IAAI;AAAA,QAC9B,SAAS;AAAA,MACX;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,cACJ,aAC8B;AAC9B,UAAM,SAAS,MAAM,KAAK,IAAI,cAAc,WAAW;AACvD,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,WACJ,SACA,YAAY,OACZ,aACiB;AACjB,QAAI,CAAC,QAAS,QAAO;AAErB,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,UAAM,SAAS,IAAI,uBAAI;AAAA,MACrB,KAAK,OAAO,UAAU,cAAc;AAAA,IACtC;AAGA,QAAI,cAAc,OAAO;AACvB,UAAI;AACF,cAAM,SAAS,MAAM,OAAO;AAAA,UAC1B,cAAc;AAAA,UACd,yBAAM,OAAO;AAAA,UACb,cAAc;AAAA,QAChB;AACA,YAAI,OAAO,cAAc;AACvB,kBAAQ,OAAO,OAAO,aAAa,MAAM,IAAI,2CAAiB;AAAA,YAC5D;AAAA,UACF;AAAA,QACF;AACA,eAAO;AAAA,MACT,SAAS,GAAG;AACV,gBAAQ,MAAM,kCAAkC,CAAC;AACjD,eAAO;AAAA,MACT;AAAA,IACF;AAGA,QAAI,mBAAmB;AAGvB,QAAI,UAAU,SAAS,GAAG,GAAG;AAE3B,YAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,UAAI;AACF,cAAM,QAAQ,IAAI,yBAAM,MAAM,MAAM;AACpC,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,yBAAyB,SAAS,IAAI,CAAC;AACrD,eAAO;AAAA,MACT;AAAA,IACF,WAAW,aAAa;AAEtB,UAAI;AACF,cAAM,QAAQ,IAAI,yBAAM,WAAW,WAAW;AAC9C,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,iCAAiC,SAAS,IAAI,CAAC;AAC7D,eAAO;AAAA,MACT;AAAA,IACF,WAAW,CAAC,UAAU,WAAW,GAAG,GAAG;AAQrC,UAAI,CAAC,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACzD,gBAAQ;AAAA,UACN;AAAA,QACF;AACA,eAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI;AAGF,YAAM,gBAAgB,IAAI,2BAAQ,cAAc,GAAG;AAEnD,YAAM,gBAAgB,IAAI,4BAAS,gBAAgB;AACnD,YAAM,KAAK,cAAc,KAAK,WAAW,IAAI,2BAAQ,OAAO,EAAE,QAAQ,CAAC;AAEvE,YAAM,KAAK,IAAI,sCAAmB,eAAe;AAAA,QAC/C,KAAK;AAAA,QACL,mBAAmB,cAAc;AAAA,MACnC,CAAC,EACE,aAAa,EAAE,EACf,WAAW,kCAAe,EAC1B,MAAM;AAET,YAAM,MAAM,MAAM,OAAO,oBAAoB,EAAE;AAE/C,UACE,uBAAI,IAAI,oBAAoB,GAAG,KAC/B,IAAI,UACJ,YAAY,IAAI,QAChB;AACA,cAAM,UAAM,kCAAc,IAAI,OAAO,MAAM;AAI3C,gBAAQ,OAAO,GAAG,IAAI,KAAK,QAAQ,CAAC;AAAA,MACtC;AAAA,IACF,SAAS,GAAG;AACV,cAAQ,MAAM,oCAAoC,SAAS,KAAK,CAAC;AAAA,IACnE;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SACJ,IACA,QACA,YAAY,OACZ,aAC8B;AAC9B,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,QAAI,gBAAwB,cAAc;AAE1C,QAAI,cAAc,OAAO;AACvB,UAAI,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACxD,wBAAgB;AAAA,MAClB,WAAW,UAAU,SAAS,GAAG,GAAG;AAClC,cAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,cAAM,QAAQ,IAAI,yBAAM,MAAM,MAAM;AACpC,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,WAAW,aAAa;AACtB,cAAM,QAAQ,IAAI,yBAAM,WAAW,WAAW;AAC9C,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,OAAO;AACL,cAAM,IAAI;AAAA,UACR;AAAA,QACF;AAAA,MACF;AAAA,IACF;AAEA,UAAM,YAAY,OAAO,WAAW,WAAW,WAAW,MAAM,IAAI;AAGpE,UAAM,SAAS,MAAM,KAAK,IAAI,SAAS,eAAsB,IAAI,SAAS;AAE1E,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,aAA4B;AAChC,UAAM,KAAK,IAAI,WAAW;AAC1B,SAAK,iBAAiB;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,mBAAkC;AA0ChC,WAAO,KAAK,kBAAmB,KAAK,IAAY,WAAW;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eACJ,SAC4B;AAC5B,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,EAAE,aAAa,IAAI,MAAM,KAAK,IAAI,QAAQ;AAAA,MAC9C;AAAA;AAAA,MACA,QAAQ;AAAA,MACR,QAAQ;AAAA,MACR,EAAE,UAAU,QAAQ,SAAS;AAAA,IAC/B;AAEA,WAAO,EAAE,aAAa;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBAAiB,cAAqC;AAC1D,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,KAAK,IAAI,QAAQ,cAAc,GAAG,YAAY;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA,EAKA,QACE,OACA,SACY;AACZ,UAAM,cAAoC;AAAA,MACxC;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAEA,QAAI,CAAC,YAAY,SAAS,KAAK,GAAG;AAEhC,cAAQ,KAAK,gCAAgC,KAAK,GAAG;AACrD,aAAO,MAAM;AAAA,MAAC;AAAA,IAChB;AAGA,SAAK,IAAI,OAAO,GAAG,OAAO,OAAc;AAExC,WAAO,MAAM;AAEX,WAAK,IAAI,OAAO,IAAI,OAAO,OAAc;AAAA,IAC3C;AAAA,EACF;AACF;;;AGzfO,SAAS,uBAAuB,MAAuB;AAC5D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,sBAAsB,MAAuB;AAC3D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,MAAM,IAA2B;AAC/C,SAAO,IAAI,QAAQ,CAAC,YAAY,WAAW,SAAS,EAAE,CAAC;AACzD;;;AJfA,IAAAC,4BAWO;","names":["import_smart_account_kit","import_smart_account_kit"]}
+{"version":3,"sources":["../src/index.ts","../src/boundless-sdk.ts","../src/constants.ts","../src/errors.ts","../src/utils.ts"],"sourcesContent":["export * from \"./boundless-sdk\";\nexport * from \"./types\";\nexport * from \"./errors\";\nexport * from \"./constants\";\nexport * from \"./utils\";\nexport {\n  SmartAccountError,\n  WalletNotConnectedError,\n  CredentialNotFoundError,\n  SignerNotFoundError,\n  SimulationError,\n  SubmissionError,\n  ValidationError,\n  WebAuthnError,\n  SessionError,\n  wrapError,\n} from \"smart-account-kit\";\n","import {\n  SmartAccountKit,\n  IndexedDBStorage,\n  WalletNotConnectedError,\n  STROOPS_PER_XLM,\n} from \"smart-account-kit\";\nimport {\n  rpc,\n  Asset,\n  Address,\n  Contract,\n  Account,\n  TransactionBuilder,\n  scValToNative,\n  TimeoutInfinite,\n  Keypair,\n} from \"@stellar/stellar-sdk\";\nimport type { AssembledTransaction } from \"smart-account-kit\";\nimport { createAuthClient } from \"better-auth/client\";\nimport { inferAdditionalFields } from \"better-auth/client/plugins\";\n\nimport { NETWORK_CONFIGS } from \"./constants\";\nimport { BoundlessAuthError, BoundlessLinkError } from \"./errors\";\nimport type {\n  BoundlessSdkConfig,\n  ConnectOptions,\n  ConnectResult,\n  SignAndSubmitResult,\n  AddRecoveryKeyOptions,\n  RecoveryKeyResult,\n  BoundlessEventName,\n  BoundlessEventHandler,\n  DelegatedAccountResult,\n} from \"./types\";\n\n// Valid G-address for simulation source (USDC Issuer)\nconst DUMMY_SOURCE = NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;\n\nexport class BoundlessSDK {\n  private config: BoundlessSdkConfig;\n  private kit: SmartAccountKit;\n  private _walletAddress: string | null = null;\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  private authClient: any; // typed via createAuthClient return\n\n  constructor(config: BoundlessSdkConfig) {\n    this.config = config;\n\n    // 1. Resolve network config\n    const networkConfig = NETWORK_CONFIGS[config.network];\n    const rpcUrl = config.rpcUrl || networkConfig.defaultRpcUrl;\n\n    // 2. Initialize SmartAccountKit\n    this.kit = new SmartAccountKit({\n      rpcUrl,\n      networkPassphrase: networkConfig.networkPassphrase,\n      accountWasmHash: networkConfig.accountWasmHash,\n      webauthnVerifierAddress: networkConfig.webauthnVerifierAddress,\n      rpId: config.rpId,\n      rpName: config.rpName,\n      storage: config.storage, // optional\n      relayerUrl: config.relayerProxyUrl, // optional\n    });\n\n    // 3. Create Better-Auth client\n    // Normalize backend URL: remove trailing /api or /api/auth\n    let normalizedBackendUrl = config.backendUrl.replace(/\\/$/, \"\");\n    if (normalizedBackendUrl.endsWith(\"/api/auth\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 9,\n      );\n    } else if (normalizedBackendUrl.endsWith(\"/api\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 4,\n      );\n    }\n    // Update config with normalized URL for internal use\n    this.config.backendUrl = normalizedBackendUrl;\n\n    // We cannot do `typeof auth` inference across packages easily without importing backend code.\n    // inferAdditionalFields is the standard polyrepo pattern.\n    this.authClient = createAuthClient({\n      baseURL: normalizedBackendUrl,\n      basePath: \"/api/auth\",\n      plugins: [\n        inferAdditionalFields({\n          user: {\n            stellarAddress: { type: \"string\" },\n            credentialId: { type: \"string\" },\n          },\n        }),\n      ],\n    }) as any;\n  }\n\n  /**\n   * Access the underlying SmartAccountKit instance for advanced usage.\n   */\n  get smartAccountKit(): SmartAccountKit {\n    return this.kit;\n  }\n\n  /**\n   * Connect to an existing passkey wallet.\n   * If prompt is true, forces the browser passkey selection UI.\n   * Does NOT deploy a new wallet.\n   */\n  async connect(options?: ConnectOptions): Promise<ConnectResult | null> {\n    const prompt = options?.prompt === true;\n\n    // 1. Silent restore first (default behavior of connectWallet without args)\n    // If prompt is true, we skip silent restore if we want to force UI,\n    // but smart-account-kit connectWallet handles 'prompt: true' by forcing it.\n    // However, the spec says:\n    // \"Call kit.connectWallet() ← silent restore\"\n    // \"If result → return mapped... \"\n    // \"If null AND options?.prompt === true → call kit.connectWallet({ prompt: true })\"\n\n    let result = await this.kit.connectWallet();\n\n    if (result) {\n      this._walletAddress = result.contractId;\n      return {\n        walletAddress: result.contractId,\n        credentialId: (result as any).credentialId || \"\",\n        isNew: false,\n      };\n    }\n\n    if (prompt) {\n      result = await this.kit.connectWallet({ prompt: true });\n      if (result) {\n        this._walletAddress = result.contractId;\n        return {\n          walletAddress: result.contractId,\n          credentialId: (result as any).credentialId || \"\",\n          isNew: false,\n        };\n      }\n    }\n\n    // \"If null AND prompt is falsy → return null.\"\n    return null;\n  }\n\n  /**\n   * Create a new wallet + credential for a user.\n   * Triggers browser passkey prompt.\n   * Links to the active Better-Auth session.\n   */\n  async register(userName: string): Promise<ConnectResult> {\n    // 1. Create wallet (deploys on-chain + persists credential)\n    const result = await this.kit.createWallet(this.config.rpName, userName, {\n      autoSubmit: true,\n    });\n\n    // 2. Link to Better-Auth session\n    // We expect credentialId to be present for new registrations via SmartAccountKit\n    if (!result.credentialId) {\n      console.warn(\"No credentialId returned from createWallet for new user.\");\n    }\n    await this.linkToSession(result.contractId, result.credentialId || \"\");\n\n    this._walletAddress = result.contractId;\n\n    // 3. Return result\n    return {\n      walletAddress: result.contractId,\n      credentialId: result.credentialId,\n      isNew: true,\n    };\n  }\n\n  /**\n   * Link a Stellar wallet address to the currently authenticated user session.\n   */\n  private async linkToSession(\n    contractId: string,\n    credentialId: string,\n  ): Promise<void> {\n    // 1. Check session\n    const res = await this.authClient.getSession();\n    const session = res?.data;\n    if (!session?.user) {\n      throw new BoundlessAuthError(\n        \"No active auth session. User must be logged in via Better-Auth before linking a wallet.\",\n      );\n    }\n\n    // 2. POST /api/auth/stellar/link\n    // Using fetch to manually hit the endpoint registered by the plugin.\n    // The SDK's authClient base URL is config.backendUrl.\n    const linkUrl = `${this.config.backendUrl}/api/auth/stellar/link`;\n\n    const response = await fetch(linkUrl, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n      },\n      body: JSON.stringify({\n        stellarAddress: contractId,\n        credentialId: credentialId,\n      }),\n      // Credentials include cookies for the session\n      credentials: \"include\",\n    });\n\n    if (!response.ok) {\n      const text = await response.text();\n      throw new BoundlessLinkError(\n        `Failed to link wallet: ${text}`,\n        response.status,\n      );\n    }\n  }\n\n  /**\n   * Sign and submit a transaction.\n   * Delegates to SmartAccountKit (which handles relayer if configured).\n   */\n  async signAndSubmit(\n    transaction: AssembledTransaction<any>,\n  ): Promise<SignAndSubmitResult> {\n    const result = await this.kit.signAndSubmit(transaction);\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Fetch the balance of the connected wallet (or any specific address).\n   * By default, fetches native XLM balance.\n   * If assetCode (and issuer) is provided, fetches that asset's balance.\n   * If assetCode starts with 'C', it is treated as a contract ID.\n   */\n  async getBalance(\n    address: string,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<string> {\n    if (!address) return \"0.00\";\n\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    const server = new rpc.Server(\n      this.config.rpcUrl || networkConfig.defaultRpcUrl,\n    );\n\n    // 1. Native Balance\n    if (assetCode === \"XLM\") {\n      try {\n        const result = await server.getSACBalance(\n          networkConfig.nativeTokenContract,\n          Asset.native(),\n          networkConfig.networkPassphrase,\n        );\n        if (result.balanceEntry) {\n          return (Number(result.balanceEntry.amount) / STROOPS_PER_XLM).toFixed(\n            2,\n          );\n        }\n        return \"0.00\";\n      } catch (e) {\n        console.error(\"Error fetching native balance:\", e);\n        return \"0.00\";\n      }\n    }\n\n    // 2. Custom Token Balance\n    let targetContractId = assetCode;\n\n    // Resolve Contract ID\n    if (assetCode.includes(\":\")) {\n      // CODE:ISSUER\n      const [code, issuer] = assetCode.split(\":\");\n      try {\n        const asset = new Asset(code, issuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Invalid asset format: ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (assetIssuer) {\n      // Explicit Code + Issuer\n      try {\n        const asset = new Asset(assetCode, assetIssuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Failed to derive contract for ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (!assetCode.startsWith(\"C\")) {\n      // If it's just \"USDC\" without issuer, we might need a known list or fail.\n      // For SDK, we assume the user must provide enough info.\n      // However, if the user passes a contract address directly, we use it.\n      // Check if it's a valid contract address?\n      // For now, we assume if it's 56 chars starting with C, it's a contract.\n      // If not, we can't guess.\n      // But we'll try to treat it as a contract ID if it looks like one.\n      if (!assetCode.startsWith(\"C\") || assetCode.length !== 56) {\n        console.warn(\n          \"getBalance: Asset code must be XLM, C... contract ID, or CODE:ISSUER\",\n        );\n        return \"0\";\n      }\n    }\n\n    try {\n      // Simulate Balance Call\n      // Use DUMMY_SOURCE for simulation to avoid accountId errors with Smart Accounts\n      const sourceAccount = new Account(DUMMY_SOURCE, \"0\");\n\n      const tokenContract = new Contract(targetContractId);\n      const op = tokenContract.call(\"balance\", new Address(address).toScVal());\n\n      const tx = new TransactionBuilder(sourceAccount, {\n        fee: \"100\",\n        networkPassphrase: networkConfig.networkPassphrase,\n      })\n        .addOperation(op)\n        .setTimeout(TimeoutInfinite)\n        .build();\n\n      const sim = await server.simulateTransaction(tx);\n\n      if (\n        rpc.Api.isSimulationSuccess(sim) &&\n        sim.result &&\n        \"retval\" in sim.result\n      ) {\n        const val = scValToNative(sim.result.retval);\n        // Default formatting: Assume 7 decimals for now or return raw?\n        // Returning human-readable for convenience.\n        // Most Stellar tokens are 7 decimals.\n        return (Number(val) / 1e7).toFixed(2);\n      }\n    } catch (e) {\n      console.error(`Error fetching token balance for ${assetCode}:`, e);\n    }\n\n    return \"0\";\n  }\n\n  /**\n   * Transfer funds (XLM or Token).\n   * Automatically resolves Asset-to-Contract if needed.\n   */\n  async transfer(\n    to: string,\n    amount: string | number,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<SignAndSubmitResult> {\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    let tokenContract: string = networkConfig.nativeTokenContract;\n\n    if (assetCode !== \"XLM\") {\n      if (assetCode.startsWith(\"C\") && assetCode.length === 56) {\n        tokenContract = assetCode;\n      } else if (assetCode.includes(\":\")) {\n        const [code, issuer] = assetCode.split(\":\");\n        const asset = new Asset(code, issuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else if (assetIssuer) {\n        const asset = new Asset(assetCode, assetIssuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else {\n        throw new Error(\n          \"Invalid asset specifier. Use XLM, Contract ID, or Code + Issuer.\",\n        );\n      }\n    }\n\n    const amountNum = typeof amount === \"string\" ? parseFloat(amount) : amount;\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    const result = await this.kit.transfer(tokenContract as any, to, amountNum);\n\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Disconnect the wallet (clear local session).\n   * Does NOT sign out of Better-Auth.\n   */\n  async disconnect(): Promise<void> {\n    await this.kit.disconnect();\n    this._walletAddress = null;\n  }\n\n  /**\n   * Get the connected wallet address synchronously.\n   */\n  getWalletAddress(): string | null {\n    // smart-account-kit doesn't have a direct synchronous getter documented in the spec provided?\n    // \"Read from the session state that SmartAccountKit maintains internally (check kit after connectWallet result).\"\n    // Usually kit.address or similar is available if connected.\n    // Based on \"sub-managers\" list, it doesn't explicitly show 'address' property on kit intance.\n    // However, typical usage implies we can track it.\n    // BUT the prompt says: \"check kit after connectWallet result\".\n    // Wait, SmartAccountKit instance usage in 6.1 doesn't show a public 'address' field.\n    // But section 7.3 says: \"Read from the session state that SmartAccountKit maintains internally\".\n    // I will assume `kit.address` exists or I need to track it myself?\n    // \"The SDK is one package... Client SDK class... It owns the client-side BoundlessSDK class\".\n    // If I look at `kit` internals or typical patterns, it often exposes the address.\n    // If not, I should probably cache it on `connect` / `register`.\n    // BUT, `kit.connectWallet` returns the result.\n    // If the page reloads, `kit` is re-instantiated. `kit.connectWallet()` (silent) restores it.\n    // So `getWalletAddress` might need to rely on the *result* of the last connect/register.\n    //\n    // HOWEVER, `kit` might have an `address` getter.\n    // Let's assume for now I should inspect `kit` typings if I could, but I can't.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n    // implies `kit` has state.\n    // If `kit` tracks it, it's likely `kit.address`.\n    // I'll check if I can assume it.\n    // If `kit` does not expose it, I'd have to store it in `this.currentAddress`.\n    // But if `kit` disconnects, I need to know.\n    // `kit.events` emit 'walletDisconnected'.\n\n    // I'll use a safer approach: check if `kit` has a known property or Method.\n    // The spec 6.1 Core Methods allows `connectWallet`.\n    // If `kit` doesn't expose `address` directly, I'll rely on my own state updated via events/method calls.\n    // BUT Section 7.3 says \"Read from the session state that SmartAccountKit maintains internally\".\n    // This strongly suggests `kit` has it. I will try `(this.kit as any).address`.\n    // Or better, I will assume it might be there.\n\n    // Actually, looking at `smart-account-kit` typical implementations, it usually has `address`.\n    // I'll assume `this.kit.address` is the way.\n    // If TS complains, I'll fix it. I can't check types right now.\n    // I will use `(this.kit as any).address` to be safe if strict types block it,\n    // but better to try `this.kit.address` first? No, I want to avoid build errors.\n    // I'll cast for now to avoid blocking if the types aren't exactly matching my assumption.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n\n    return this._walletAddress || (this.kit as any).address || null;\n  }\n\n  /**\n   * Add a recovery key (new passkey) to the existing account.\n   */\n  async addRecoveryKey(\n    options: AddRecoveryKeyOptions,\n  ): Promise<RecoveryKeyResult> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to add a recovery key.\",\n      );\n    }\n\n    const { credentialId } = await this.kit.signers.addPasskey(\n      0, // contextRuleId (0 = default)\n      options.appName,\n      options.userName,\n      { nickname: options.nickname },\n    );\n\n    return { credentialId };\n  }\n\n  /**\n   * Remove a credential by ID.\n   */\n  async removeCredential(credentialId: string): Promise<void> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to remove a credential.\",\n      );\n    }\n\n    await this.kit.signers.removePasskey(0, credentialId);\n  }\n\n  /**\n   * Subscribe to events.\n   */\n  onEvent(\n    event: BoundlessEventName,\n    handler: BoundlessEventHandler,\n  ): () => void {\n    const validEvents: BoundlessEventName[] = [\n      \"walletConnected\",\n      \"walletDisconnected\",\n      \"credentialCreated\",\n      \"credentialDeleted\",\n      \"sessionExpired\",\n      \"transactionSigned\",\n      \"transactionSubmitted\",\n    ];\n\n    if (!validEvents.includes(event)) {\n      // Just ignore or warn? Types prevent this usually.\n      console.warn(`BoundlessSDK: Unknown event \"${event}\"`);\n      return () => {};\n    }\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    this.kit.events.on(event, handler as any);\n\n    return () => {\n      // eslint-disable-next-line @typescript-eslint/no-explicit-any\n      this.kit.events.off(event, handler as any);\n    };\n  }\n\n  /**\n   * Creates a G-address that the Smart Account can control.\n   * This G-address can be used with TrustlessWork and other APIs\n   * that require classic Stellar accounts.\n   *\n   * The Smart Account adds the G-address as a delegated signer on\n   * the default context rule (contextRuleId: 0).\n   */\n  async createDelegatedAccount(options?: {\n    /** If true, fund the G-address via Friendbot (testnet only) */\n    autoFund?: boolean;\n\n    /** Optional: provide your own keypair instead of generating one */\n    keypair?: Keypair;\n  }): Promise<DelegatedAccountResult> {\n    // 1. Ensure wallet is connected\n    if (!this.getWalletAddress()) {\n      throw new WalletNotConnectedError(\"Must connect wallet first\");\n    }\n\n    // 2. Generate or use provided keypair\n    const keypair = options?.keypair || Keypair.random();\n    const gAddress = keypair.publicKey();\n    const secretKey = keypair.secret();\n\n    // 3. Add the G-address as a delegated signer on the Smart Account\n    // This uses smart-account-kit's kit.signers.addDelegated()\n    await this.kit.signers.addDelegated(\n      0, // context rule ID (default rule)\n      gAddress,\n    );\n\n    // 4. Fund the G-address (testnet only)\n    let activated = false;\n    if (options?.autoFund && this.config.network === \"testnet\") {\n      try {\n        await fetch(`https://friendbot.stellar.org?addr=${gAddress}`);\n        activated = true;\n      } catch (e) {\n        console.warn(\"Friendbot funding failed:\", e);\n      }\n    }\n\n    return { gAddress, secretKey, activated };\n  }\n\n  /**\n   * Retrieves the G-address currently delegated by the Smart Account.\n   * Returns null if no delegated account exists.\n   */\n  async getDelegatedAccount(): Promise<string | null> {\n    const address = this.getWalletAddress();\n    if (!address) return null;\n\n    // Fetch the account state to check signers\n    // SmartAccountKit maintains the account state.\n    // We check the signers on rule 0.\n    const tx = await this.kit.rules.get(0);\n    const sim = await tx.simulate();\n    const rule = sim.result;\n\n    if (!rule || !rule.signers) return null;\n\n    // isDelegatedSigner and other builders are available via kit.builders or direct import\n    // Since we don't have direct import of builders yet, let's use the any cast for now\n    // or better, check the tag manually if we know the structure.\n    // Based on builders.d.ts, a delegated signer has { tag: \"Delegated\", values: [string] }\n    const delegatedSigner = rule.signers.find(\n      (s: any) => s.tag === \"Delegated\",\n    ) as any;\n\n    return delegatedSigner ? delegatedSigner.values[0] : null;\n  }\n\n  /**\n   * Removes a delegated G-address from the Smart Account's signer list.\n   * After this, the G-address can no longer act on behalf of the Smart Account.\n   */\n  async removeDelegatedAccount(gAddress: string): Promise<void> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\"Wallet must be connected\");\n    }\n\n    // We need to create a Signer object for removal.\n    // We can use the manual structure { tag: 'Delegated', values: [gAddress] }\n    const signer = { tag: \"Delegated\", values: [gAddress] };\n    await this.kit.signers.remove(0, signer as any);\n  }\n}\n","export const NETWORK_CONFIGS = {\n  testnet: {\n    networkPassphrase: \"Test SDF Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-testnet.stellar.org\",\n    accountWasmHash:\n      \"a12e8fa9621efd20315753bd4007d974390e31fbcb4a7ddc4dd0a0dec728bf2e\",\n    webauthnVerifierAddress:\n      \"CBSHV66WG7UV6FQVUTB67P3DZUEJ2KJ5X6JKQH5MFRAAFNFJUAJVXJYV\",\n    ed25519VerifierAddress:\n      \"CDGMOL3BP6Y6LYOXXTRNXBNJ2SLNTQ47BGG3LOS2OBBE657E3NYCN54B\",\n    nativeTokenContract:\n      \"CDLZFC3SYJYDZT7K67VZ75HPJVIEUVNIXF47ZG2FB2RMQQVU2HHGCYSC\",\n    policies: {\n      threshold: \"CCT4MMN5MJ6O2OU6LXPYTCVORQ2QVTBMDJ7MYBZQ2ULSYQVUIYP4IFYD\",\n      spendingLimit: \"CBMMWY54XOV6JJHSWCMKWWPXVRXASR5U26UJMLZDN4SP6CFFTVZARPTY\",\n      weightedThreshold:\n        \"CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ\",\n    },\n    relayerUrl: \"\",\n    trustlessWorkUsdcIssuer:\n      \"GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5\",\n  },\n  mainnet: {\n    networkPassphrase: \"Public Global Stellar Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-rpc.mainnet.stellar.org\",\n    accountWasmHash: \"REPLACE_WITH_MAINNET_WASM_HASH\",\n    webauthnVerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    ed25519VerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    nativeTokenContract: \"REPLACE_WITH_MAINNET_CONTRACT\",\n    policies: {\n      threshold: \"REPLACE_WITH_MAINNET_POLICY\",\n      spendingLimit: \"REPLACE_WITH_MAINNET_POLICY\",\n      weightedThreshold: \"REPLACE_WITH_MAINNET_POLICY\",\n    },\n    relayerUrl: \"\",\n    trustlessWorkUsdcIssuer:\n      \"GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN\",\n  },\n} as const;\n\n/** TrustlessWork testnet USDC issuer */\nexport const TRUSTLESSWORK_USDC_TESTNET =\n  NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;\n\n/** TrustlessWork mainnet USDC issuer */\nexport const TRUSTLESSWORK_USDC_MAINNET =\n  NETWORK_CONFIGS.mainnet.trustlessWorkUsdcIssuer;\n\nexport type NetworkName = keyof typeof NETWORK_CONFIGS;\n","import { SmartAccountError } from \"smart-account-kit\";\n\nexport class BoundlessAuthError extends SmartAccountError {\n  constructor(message: string) {\n    super(message, \"BOUNDLESS_AUTH\" as any);\n    this.name = \"BoundlessAuthError\";\n  }\n}\n\nexport class BoundlessLinkError extends SmartAccountError {\n  constructor(\n    message: string,\n    public statusCode?: number,\n  ) {\n    super(message, \"BOUNDLESS_LINK\" as any);\n    this.name = \"BoundlessLinkError\";\n  }\n}\n","/**\n * Validate that a string looks like a Soroban contract address.\n * Soroban contract IDs start with 'C' and are 56 characters (StrKey).\n */\nexport function isValidContractAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"C\");\n}\n\n/**\n * Validate that a string looks like a Stellar account address (G…).\n */\nexport function isValidStellarAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"G\");\n}\n\n/**\n * Sleep for N milliseconds.  Useful in retry loops.\n */\nexport function sleep(ms: number): Promise<void> {\n  return new Promise((resolve) => setTimeout(resolve, ms));\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACAA,IAAAA,4BAKO;AACP,yBAUO;AAEP,oBAAiC;AACjC,qBAAsC;;;ACnB/B,IAAM,kBAAkB;AAAA,EAC7B,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBACE;AAAA,IACF,yBACE;AAAA,IACF,wBACE;AAAA,IACF,qBACE;AAAA,IACF,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBACE;AAAA,IACJ;AAAA,IACA,YAAY;AAAA,IACZ,yBACE;AAAA,EACJ;AAAA,EACA,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBAAiB;AAAA,IACjB,yBAAyB;AAAA,IACzB,wBAAwB;AAAA,IACxB,qBAAqB;AAAA,IACrB,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBAAmB;AAAA,IACrB;AAAA,IACA,YAAY;AAAA,IACZ,yBACE;AAAA,EACJ;AACF;AAGO,IAAM,6BACX,gBAAgB,QAAQ;AAGnB,IAAM,6BACX,gBAAgB,QAAQ;;;AC9C1B,+BAAkC;AAE3B,IAAM,qBAAN,cAAiC,2CAAkB;AAAA,EACxD,YAAY,SAAiB;AAC3B,UAAM,SAAS,gBAAuB;AACtC,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,qBAAN,cAAiC,2CAAkB;AAAA,EACxD,YACE,SACO,YACP;AACA,UAAM,SAAS,gBAAuB;AAF/B;AAGP,SAAK,OAAO;AAAA,EACd;AACF;;;AFmBA,IAAM,eAAe,gBAAgB,QAAQ;AAEtC,IAAM,eAAN,MAAmB;AAAA;AAAA,EAOxB,YAAY,QAA4B;AANxC,wBAAQ;AACR,wBAAQ;AACR,wBAAQ,kBAAgC;AAExC;AAAA,wBAAQ;AAGN,SAAK,SAAS;AAGd,UAAM,gBAAgB,gBAAgB,OAAO,OAAO;AACpD,UAAM,SAAS,OAAO,UAAU,cAAc;AAG9C,SAAK,MAAM,IAAI,0CAAgB;AAAA,MAC7B;AAAA,MACA,mBAAmB,cAAc;AAAA,MACjC,iBAAiB,cAAc;AAAA,MAC/B,yBAAyB,cAAc;AAAA,MACvC,MAAM,OAAO;AAAA,MACb,QAAQ,OAAO;AAAA,MACf,SAAS,OAAO;AAAA;AAAA,MAChB,YAAY,OAAO;AAAA;AAAA,IACrB,CAAC;AAID,QAAI,uBAAuB,OAAO,WAAW,QAAQ,OAAO,EAAE;AAC9D,QAAI,qBAAqB,SAAS,WAAW,GAAG;AAC9C,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF,WAAW,qBAAqB,SAAS,MAAM,GAAG;AAChD,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF;AAEA,SAAK,OAAO,aAAa;AAIzB,SAAK,iBAAa,gCAAiB;AAAA,MACjC,SAAS;AAAA,MACT,UAAU;AAAA,MACV,SAAS;AAAA,YACP,sCAAsB;AAAA,UACpB,MAAM;AAAA,YACJ,gBAAgB,EAAE,MAAM,SAAS;AAAA,YACjC,cAAc,EAAE,MAAM,SAAS;AAAA,UACjC;AAAA,QACF,CAAC;AAAA,MACH;AAAA,IACF,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,IAAI,kBAAmC;AACrC,WAAO,KAAK;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAQ,SAAyD;AACrE,UAAM,SAAS,SAAS,WAAW;AAUnC,QAAI,SAAS,MAAM,KAAK,IAAI,cAAc;AAE1C,QAAI,QAAQ;AACV,WAAK,iBAAiB,OAAO;AAC7B,aAAO;AAAA,QACL,eAAe,OAAO;AAAA,QACtB,cAAe,OAAe,gBAAgB;AAAA,QAC9C,OAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI,QAAQ;AACV,eAAS,MAAM,KAAK,IAAI,cAAc,EAAE,QAAQ,KAAK,CAAC;AACtD,UAAI,QAAQ;AACV,aAAK,iBAAiB,OAAO;AAC7B,eAAO;AAAA,UACL,eAAe,OAAO;AAAA,UACtB,cAAe,OAAe,gBAAgB;AAAA,UAC9C,OAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AAGA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAS,UAA0C;AAEvD,UAAM,SAAS,MAAM,KAAK,IAAI,aAAa,KAAK,OAAO,QAAQ,UAAU;AAAA,MACvE,YAAY;AAAA,IACd,CAAC;AAID,QAAI,CAAC,OAAO,cAAc;AACxB,cAAQ,KAAK,0DAA0D;AAAA,IACzE;AACA,UAAM,KAAK,cAAc,OAAO,YAAY,OAAO,gBAAgB,EAAE;AAErE,SAAK,iBAAiB,OAAO;AAG7B,WAAO;AAAA,MACL,eAAe,OAAO;AAAA,MACtB,cAAc,OAAO;AAAA,MACrB,OAAO;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,cACZ,YACA,cACe;AAEf,UAAM,MAAM,MAAM,KAAK,WAAW,WAAW;AAC7C,UAAM,UAAU,KAAK;AACrB,QAAI,CAAC,SAAS,MAAM;AAClB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAKA,UAAM,UAAU,GAAG,KAAK,OAAO,UAAU;AAEzC,UAAM,WAAW,MAAM,MAAM,SAAS;AAAA,MACpC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,gBAAgB;AAAA,QAChB;AAAA,MACF,CAAC;AAAA;AAAA,MAED,aAAa;AAAA,IACf,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAChB,YAAM,OAAO,MAAM,SAAS,KAAK;AACjC,YAAM,IAAI;AAAA,QACR,0BAA0B,IAAI;AAAA,QAC9B,SAAS;AAAA,MACX;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,cACJ,aAC8B;AAC9B,UAAM,SAAS,MAAM,KAAK,IAAI,cAAc,WAAW;AACvD,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,WACJ,SACA,YAAY,OACZ,aACiB;AACjB,QAAI,CAAC,QAAS,QAAO;AAErB,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,UAAM,SAAS,IAAI,uBAAI;AAAA,MACrB,KAAK,OAAO,UAAU,cAAc;AAAA,IACtC;AAGA,QAAI,cAAc,OAAO;AACvB,UAAI;AACF,cAAM,SAAS,MAAM,OAAO;AAAA,UAC1B,cAAc;AAAA,UACd,yBAAM,OAAO;AAAA,UACb,cAAc;AAAA,QAChB;AACA,YAAI,OAAO,cAAc;AACvB,kBAAQ,OAAO,OAAO,aAAa,MAAM,IAAI,2CAAiB;AAAA,YAC5D;AAAA,UACF;AAAA,QACF;AACA,eAAO;AAAA,MACT,SAAS,GAAG;AACV,gBAAQ,MAAM,kCAAkC,CAAC;AACjD,eAAO;AAAA,MACT;AAAA,IACF;AAGA,QAAI,mBAAmB;AAGvB,QAAI,UAAU,SAAS,GAAG,GAAG;AAE3B,YAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,UAAI;AACF,cAAM,QAAQ,IAAI,yBAAM,MAAM,MAAM;AACpC,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,yBAAyB,SAAS,IAAI,CAAC;AACrD,eAAO;AAAA,MACT;AAAA,IACF,WAAW,aAAa;AAEtB,UAAI;AACF,cAAM,QAAQ,IAAI,yBAAM,WAAW,WAAW;AAC9C,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,iCAAiC,SAAS,IAAI,CAAC;AAC7D,eAAO;AAAA,MACT;AAAA,IACF,WAAW,CAAC,UAAU,WAAW,GAAG,GAAG;AAQrC,UAAI,CAAC,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACzD,gBAAQ;AAAA,UACN;AAAA,QACF;AACA,eAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI;AAGF,YAAM,gBAAgB,IAAI,2BAAQ,cAAc,GAAG;AAEnD,YAAM,gBAAgB,IAAI,4BAAS,gBAAgB;AACnD,YAAM,KAAK,cAAc,KAAK,WAAW,IAAI,2BAAQ,OAAO,EAAE,QAAQ,CAAC;AAEvE,YAAM,KAAK,IAAI,sCAAmB,eAAe;AAAA,QAC/C,KAAK;AAAA,QACL,mBAAmB,cAAc;AAAA,MACnC,CAAC,EACE,aAAa,EAAE,EACf,WAAW,kCAAe,EAC1B,MAAM;AAET,YAAM,MAAM,MAAM,OAAO,oBAAoB,EAAE;AAE/C,UACE,uBAAI,IAAI,oBAAoB,GAAG,KAC/B,IAAI,UACJ,YAAY,IAAI,QAChB;AACA,cAAM,UAAM,kCAAc,IAAI,OAAO,MAAM;AAI3C,gBAAQ,OAAO,GAAG,IAAI,KAAK,QAAQ,CAAC;AAAA,MACtC;AAAA,IACF,SAAS,GAAG;AACV,cAAQ,MAAM,oCAAoC,SAAS,KAAK,CAAC;AAAA,IACnE;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SACJ,IACA,QACA,YAAY,OACZ,aAC8B;AAC9B,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,QAAI,gBAAwB,cAAc;AAE1C,QAAI,cAAc,OAAO;AACvB,UAAI,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACxD,wBAAgB;AAAA,MAClB,WAAW,UAAU,SAAS,GAAG,GAAG;AAClC,cAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,cAAM,QAAQ,IAAI,yBAAM,MAAM,MAAM;AACpC,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,WAAW,aAAa;AACtB,cAAM,QAAQ,IAAI,yBAAM,WAAW,WAAW;AAC9C,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,OAAO;AACL,cAAM,IAAI;AAAA,UACR;AAAA,QACF;AAAA,MACF;AAAA,IACF;AAEA,UAAM,YAAY,OAAO,WAAW,WAAW,WAAW,MAAM,IAAI;AAGpE,UAAM,SAAS,MAAM,KAAK,IAAI,SAAS,eAAsB,IAAI,SAAS;AAE1E,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,aAA4B;AAChC,UAAM,KAAK,IAAI,WAAW;AAC1B,SAAK,iBAAiB;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,mBAAkC;AA0ChC,WAAO,KAAK,kBAAmB,KAAK,IAAY,WAAW;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eACJ,SAC4B;AAC5B,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,EAAE,aAAa,IAAI,MAAM,KAAK,IAAI,QAAQ;AAAA,MAC9C;AAAA;AAAA,MACA,QAAQ;AAAA,MACR,QAAQ;AAAA,MACR,EAAE,UAAU,QAAQ,SAAS;AAAA,IAC/B;AAEA,WAAO,EAAE,aAAa;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBAAiB,cAAqC;AAC1D,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,KAAK,IAAI,QAAQ,cAAc,GAAG,YAAY;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA,EAKA,QACE,OACA,SACY;AACZ,UAAM,cAAoC;AAAA,MACxC;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAEA,QAAI,CAAC,YAAY,SAAS,KAAK,GAAG;AAEhC,cAAQ,KAAK,gCAAgC,KAAK,GAAG;AACrD,aAAO,MAAM;AAAA,MAAC;AAAA,IAChB;AAGA,SAAK,IAAI,OAAO,GAAG,OAAO,OAAc;AAExC,WAAO,MAAM;AAEX,WAAK,IAAI,OAAO,IAAI,OAAO,OAAc;AAAA,IAC3C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,uBAAuB,SAMO;AAElC,QAAI,CAAC,KAAK,iBAAiB,GAAG;AAC5B,YAAM,IAAI,kDAAwB,2BAA2B;AAAA,IAC/D;AAGA,UAAM,UAAU,SAAS,WAAW,2BAAQ,OAAO;AACnD,UAAM,WAAW,QAAQ,UAAU;AACnC,UAAM,YAAY,QAAQ,OAAO;AAIjC,UAAM,KAAK,IAAI,QAAQ;AAAA,MACrB;AAAA;AAAA,MACA;AAAA,IACF;AAGA,QAAI,YAAY;AAChB,QAAI,SAAS,YAAY,KAAK,OAAO,YAAY,WAAW;AAC1D,UAAI;AACF,cAAM,MAAM,sCAAsC,QAAQ,EAAE;AAC5D,oBAAY;AAAA,MACd,SAAS,GAAG;AACV,gBAAQ,KAAK,6BAA6B,CAAC;AAAA,MAC7C;AAAA,IACF;AAEA,WAAO,EAAE,UAAU,WAAW,UAAU;AAAA,EAC1C;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,sBAA8C;AAClD,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,QAAS,QAAO;AAKrB,UAAM,KAAK,MAAM,KAAK,IAAI,MAAM,IAAI,CAAC;AACrC,UAAM,MAAM,MAAM,GAAG,SAAS;AAC9B,UAAM,OAAO,IAAI;AAEjB,QAAI,CAAC,QAAQ,CAAC,KAAK,QAAS,QAAO;AAMnC,UAAM,kBAAkB,KAAK,QAAQ;AAAA,MACnC,CAAC,MAAW,EAAE,QAAQ;AAAA,IACxB;AAEA,WAAO,kBAAkB,gBAAgB,OAAO,CAAC,IAAI;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,uBAAuB,UAAiC;AAC5D,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI,kDAAwB,0BAA0B;AAAA,IAC9D;AAIA,UAAM,SAAS,EAAE,KAAK,aAAa,QAAQ,CAAC,QAAQ,EAAE;AACtD,UAAM,KAAK,IAAI,QAAQ,OAAO,GAAG,MAAa;AAAA,EAChD;AACF;;;AGrlBO,SAAS,uBAAuB,MAAuB;AAC5D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,sBAAsB,MAAuB;AAC3D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,MAAM,IAA2B;AAC/C,SAAO,IAAI,QAAQ,CAAC,YAAY,WAAW,SAAS,EAAE,CAAC;AACzD;;;AJfA,IAAAC,4BAWO;","names":["import_smart_account_kit","import_smart_account_kit"]}

package/dist/index.d.cts

@@ -1,6 +1,7 @@
 import * as smart_account_kit from 'smart-account-kit';
 import { SmartAccountKit, AssembledTransaction, SmartAccountError } from 'smart-account-kit';
 export { AssembledTransaction, ConnectWalletResult, ContextRule, ContextRuleType, ContractSigner, CreateWalletResult, CredentialNotFoundError, ExternalWalletAdapter, SelectedSigner, SessionError, SignerNotFoundError, SimulationError, SmartAccountError, StorageAdapter, StoredCredential, StoredSession, SubmissionError, TransactionResult, ValidationError, WalletNotConnectedError, WebAuthnError, wrapError } from 'smart-account-kit';
+import { Keypair } from '@stellar/stellar-sdk';
 
 interface BoundlessSdkConfig {
     network: "mainnet" | "testnet";
@@ -31,6 +32,14 @@ interface AddRecoveryKeyOptions {
 interface RecoveryKeyResult {
     credentialId: string;
 }
+interface DelegatedAccountResult {
+    /** The G-address of the newly created delegated account */
+    gAddress: string;
+    /** The secret key (only returned once — store securely or discard) */
+    secretKey: string;
+    /** Whether the account was funded and activated on-chain */
+    activated: boolean;
+}
 type BoundlessEventName = "walletConnected" | "walletDisconnected" | "credentialCreated" | "credentialDeleted" | "sessionExpired" | "transactionSigned" | "transactionSubmitted";
 type BoundlessEventHandler = (...args: unknown[]) => void;
 
@@ -98,6 +107,30 @@ declare class BoundlessSDK {
      * Subscribe to events.
      */
     onEvent(event: BoundlessEventName, handler: BoundlessEventHandler): () => void;
+    /**
+     * Creates a G-address that the Smart Account can control.
+     * This G-address can be used with TrustlessWork and other APIs
+     * that require classic Stellar accounts.
+     *
+     * The Smart Account adds the G-address as a delegated signer on
+     * the default context rule (contextRuleId: 0).
+     */
+    createDelegatedAccount(options?: {
+        /** If true, fund the G-address via Friendbot (testnet only) */
+        autoFund?: boolean;
+        /** Optional: provide your own keypair instead of generating one */
+        keypair?: Keypair;
+    }): Promise<DelegatedAccountResult>;
+    /**
+     * Retrieves the G-address currently delegated by the Smart Account.
+     * Returns null if no delegated account exists.
+     */
+    getDelegatedAccount(): Promise<string | null>;
+    /**
+     * Removes a delegated G-address from the Smart Account's signer list.
+     * After this, the G-address can no longer act on behalf of the Smart Account.
+     */
+    removeDelegatedAccount(gAddress: string): Promise<void>;
 }
 
 declare class BoundlessAuthError extends SmartAccountError {
@@ -122,6 +155,7 @@ declare const NETWORK_CONFIGS: {
             readonly weightedThreshold: "CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ";
         };
         readonly relayerUrl: "";
+        readonly trustlessWorkUsdcIssuer: "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5";
     };
     readonly mainnet: {
         readonly networkPassphrase: "Public Global Stellar Network ; September 2015";
@@ -136,8 +170,13 @@ declare const NETWORK_CONFIGS: {
             readonly weightedThreshold: "REPLACE_WITH_MAINNET_POLICY";
         };
         readonly relayerUrl: "";
+        readonly trustlessWorkUsdcIssuer: "GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN";
     };
 };
+/** TrustlessWork testnet USDC issuer */
+declare const TRUSTLESSWORK_USDC_TESTNET: "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5";
+/** TrustlessWork mainnet USDC issuer */
+declare const TRUSTLESSWORK_USDC_MAINNET: "GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN";
 type NetworkName = keyof typeof NETWORK_CONFIGS;
 
 /**
@@ -154,4 +193,4 @@ declare function isValidStellarAddress(addr: string): boolean;
  */
 declare function sleep(ms: number): Promise<void>;
 
-export { type AddRecoveryKeyOptions, BoundlessAuthError, type BoundlessEventHandler, type BoundlessEventName, BoundlessLinkError, BoundlessSDK, type BoundlessSdkConfig, type ConnectOptions, type ConnectResult, NETWORK_CONFIGS, type NetworkName, type RecoveryKeyResult, type SignAndSubmitResult, isValidContractAddress, isValidStellarAddress, sleep };
+export { type AddRecoveryKeyOptions, BoundlessAuthError, type BoundlessEventHandler, type BoundlessEventName, BoundlessLinkError, BoundlessSDK, type BoundlessSdkConfig, type ConnectOptions, type ConnectResult, type DelegatedAccountResult, NETWORK_CONFIGS, type NetworkName, type RecoveryKeyResult, type SignAndSubmitResult, TRUSTLESSWORK_USDC_MAINNET, TRUSTLESSWORK_USDC_TESTNET, isValidContractAddress, isValidStellarAddress, sleep };

package/dist/index.d.ts

@@ -1,6 +1,7 @@
 import * as smart_account_kit from 'smart-account-kit';
 import { SmartAccountKit, AssembledTransaction, SmartAccountError } from 'smart-account-kit';
 export { AssembledTransaction, ConnectWalletResult, ContextRule, ContextRuleType, ContractSigner, CreateWalletResult, CredentialNotFoundError, ExternalWalletAdapter, SelectedSigner, SessionError, SignerNotFoundError, SimulationError, SmartAccountError, StorageAdapter, StoredCredential, StoredSession, SubmissionError, TransactionResult, ValidationError, WalletNotConnectedError, WebAuthnError, wrapError } from 'smart-account-kit';
+import { Keypair } from '@stellar/stellar-sdk';
 
 interface BoundlessSdkConfig {
     network: "mainnet" | "testnet";
@@ -31,6 +32,14 @@ interface AddRecoveryKeyOptions {
 interface RecoveryKeyResult {
     credentialId: string;
 }
+interface DelegatedAccountResult {
+    /** The G-address of the newly created delegated account */
+    gAddress: string;
+    /** The secret key (only returned once — store securely or discard) */
+    secretKey: string;
+    /** Whether the account was funded and activated on-chain */
+    activated: boolean;
+}
 type BoundlessEventName = "walletConnected" | "walletDisconnected" | "credentialCreated" | "credentialDeleted" | "sessionExpired" | "transactionSigned" | "transactionSubmitted";
 type BoundlessEventHandler = (...args: unknown[]) => void;
 
@@ -98,6 +107,30 @@ declare class BoundlessSDK {
      * Subscribe to events.
      */
     onEvent(event: BoundlessEventName, handler: BoundlessEventHandler): () => void;
+    /**
+     * Creates a G-address that the Smart Account can control.
+     * This G-address can be used with TrustlessWork and other APIs
+     * that require classic Stellar accounts.
+     *
+     * The Smart Account adds the G-address as a delegated signer on
+     * the default context rule (contextRuleId: 0).
+     */
+    createDelegatedAccount(options?: {
+        /** If true, fund the G-address via Friendbot (testnet only) */
+        autoFund?: boolean;
+        /** Optional: provide your own keypair instead of generating one */
+        keypair?: Keypair;
+    }): Promise<DelegatedAccountResult>;
+    /**
+     * Retrieves the G-address currently delegated by the Smart Account.
+     * Returns null if no delegated account exists.
+     */
+    getDelegatedAccount(): Promise<string | null>;
+    /**
+     * Removes a delegated G-address from the Smart Account's signer list.
+     * After this, the G-address can no longer act on behalf of the Smart Account.
+     */
+    removeDelegatedAccount(gAddress: string): Promise<void>;
 }
 
 declare class BoundlessAuthError extends SmartAccountError {
@@ -122,6 +155,7 @@ declare const NETWORK_CONFIGS: {
             readonly weightedThreshold: "CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ";
         };
         readonly relayerUrl: "";
+        readonly trustlessWorkUsdcIssuer: "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5";
     };
     readonly mainnet: {
         readonly networkPassphrase: "Public Global Stellar Network ; September 2015";
@@ -136,8 +170,13 @@ declare const NETWORK_CONFIGS: {
             readonly weightedThreshold: "REPLACE_WITH_MAINNET_POLICY";
         };
         readonly relayerUrl: "";
+        readonly trustlessWorkUsdcIssuer: "GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN";
     };
 };
+/** TrustlessWork testnet USDC issuer */
+declare const TRUSTLESSWORK_USDC_TESTNET: "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5";
+/** TrustlessWork mainnet USDC issuer */
+declare const TRUSTLESSWORK_USDC_MAINNET: "GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN";
 type NetworkName = keyof typeof NETWORK_CONFIGS;
 
 /**
@@ -154,4 +193,4 @@ declare function isValidStellarAddress(addr: string): boolean;
  */
 declare function sleep(ms: number): Promise<void>;
 
-export { type AddRecoveryKeyOptions, BoundlessAuthError, type BoundlessEventHandler, type BoundlessEventName, BoundlessLinkError, BoundlessSDK, type BoundlessSdkConfig, type ConnectOptions, type ConnectResult, NETWORK_CONFIGS, type NetworkName, type RecoveryKeyResult, type SignAndSubmitResult, isValidContractAddress, isValidStellarAddress, sleep };
+export { type AddRecoveryKeyOptions, BoundlessAuthError, type BoundlessEventHandler, type BoundlessEventName, BoundlessLinkError, BoundlessSDK, type BoundlessSdkConfig, type ConnectOptions, type ConnectResult, type DelegatedAccountResult, NETWORK_CONFIGS, type NetworkName, type RecoveryKeyResult, type SignAndSubmitResult, TRUSTLESSWORK_USDC_MAINNET, TRUSTLESSWORK_USDC_TESTNET, isValidContractAddress, isValidStellarAddress, sleep };

package/dist/index.js

@@ -16,7 +16,8 @@ import {
   Account,
   TransactionBuilder,
   scValToNative,
-  TimeoutInfinite
+  TimeoutInfinite,
+  Keypair
 } from "@stellar/stellar-sdk";
 import { createAuthClient } from "better-auth/client";
 import { inferAdditionalFields } from "better-auth/client/plugins";
@@ -35,7 +36,8 @@ var NETWORK_CONFIGS = {
       spendingLimit: "CBMMWY54XOV6JJHSWCMKWWPXVRXASR5U26UJMLZDN4SP6CFFTVZARPTY",
       weightedThreshold: "CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ"
     },
-    relayerUrl: ""
+    relayerUrl: "",
+    trustlessWorkUsdcIssuer: "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5"
   },
   mainnet: {
     networkPassphrase: "Public Global Stellar Network ; September 2015",
@@ -49,9 +51,12 @@ var NETWORK_CONFIGS = {
       spendingLimit: "REPLACE_WITH_MAINNET_POLICY",
       weightedThreshold: "REPLACE_WITH_MAINNET_POLICY"
     },
-    relayerUrl: ""
+    relayerUrl: "",
+    trustlessWorkUsdcIssuer: "GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN"
   }
 };
+var TRUSTLESSWORK_USDC_TESTNET = NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;
+var TRUSTLESSWORK_USDC_MAINNET = NETWORK_CONFIGS.mainnet.trustlessWorkUsdcIssuer;
 
 // src/errors.ts
 import { SmartAccountError } from "smart-account-kit";
@@ -70,7 +75,7 @@ var BoundlessLinkError = class extends SmartAccountError {
 };
 
 // src/boundless-sdk.ts
-var DUMMY_SOURCE = "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5";
+var DUMMY_SOURCE = NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;
 var BoundlessSDK = class {
   // typed via createAuthClient return
   constructor(config) {
@@ -390,6 +395,65 @@ var BoundlessSDK = class {
       this.kit.events.off(event, handler);
     };
   }
+  /**
+   * Creates a G-address that the Smart Account can control.
+   * This G-address can be used with TrustlessWork and other APIs
+   * that require classic Stellar accounts.
+   *
+   * The Smart Account adds the G-address as a delegated signer on
+   * the default context rule (contextRuleId: 0).
+   */
+  async createDelegatedAccount(options) {
+    if (!this.getWalletAddress()) {
+      throw new WalletNotConnectedError("Must connect wallet first");
+    }
+    const keypair = options?.keypair || Keypair.random();
+    const gAddress = keypair.publicKey();
+    const secretKey = keypair.secret();
+    await this.kit.signers.addDelegated(
+      0,
+      // context rule ID (default rule)
+      gAddress
+    );
+    let activated = false;
+    if (options?.autoFund && this.config.network === "testnet") {
+      try {
+        await fetch(`https://friendbot.stellar.org?addr=${gAddress}`);
+        activated = true;
+      } catch (e) {
+        console.warn("Friendbot funding failed:", e);
+      }
+    }
+    return { gAddress, secretKey, activated };
+  }
+  /**
+   * Retrieves the G-address currently delegated by the Smart Account.
+   * Returns null if no delegated account exists.
+   */
+  async getDelegatedAccount() {
+    const address = this.getWalletAddress();
+    if (!address) return null;
+    const tx = await this.kit.rules.get(0);
+    const sim = await tx.simulate();
+    const rule = sim.result;
+    if (!rule || !rule.signers) return null;
+    const delegatedSigner = rule.signers.find(
+      (s) => s.tag === "Delegated"
+    );
+    return delegatedSigner ? delegatedSigner.values[0] : null;
+  }
+  /**
+   * Removes a delegated G-address from the Smart Account's signer list.
+   * After this, the G-address can no longer act on behalf of the Smart Account.
+   */
+  async removeDelegatedAccount(gAddress) {
+    const address = this.getWalletAddress();
+    if (!address) {
+      throw new WalletNotConnectedError("Wallet must be connected");
+    }
+    const signer = { tag: "Delegated", values: [gAddress] };
+    await this.kit.signers.remove(0, signer);
+  }
 };
 
 // src/utils.ts
@@ -427,6 +491,8 @@ export {
   SimulationError,
   SmartAccountError2 as SmartAccountError,
   SubmissionError,
+  TRUSTLESSWORK_USDC_MAINNET,
+  TRUSTLESSWORK_USDC_TESTNET,
   ValidationError,
   WalletNotConnectedError2 as WalletNotConnectedError,
   WebAuthnError,

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/boundless-sdk.ts","../src/constants.ts","../src/errors.ts","../src/utils.ts","../src/index.ts"],"sourcesContent":["import {\n  SmartAccountKit,\n  IndexedDBStorage,\n  WalletNotConnectedError,\n  STROOPS_PER_XLM,\n} from \"smart-account-kit\";\nimport {\n  rpc,\n  Asset,\n  Address,\n  Contract,\n  Account,\n  TransactionBuilder,\n  scValToNative,\n  TimeoutInfinite,\n} from \"@stellar/stellar-sdk\";\nimport type { AssembledTransaction } from \"smart-account-kit\";\nimport { createAuthClient } from \"better-auth/client\";\nimport { inferAdditionalFields } from \"better-auth/client/plugins\";\n\nimport { NETWORK_CONFIGS } from \"./constants\";\nimport { BoundlessAuthError, BoundlessLinkError } from \"./errors\";\nimport type {\n  BoundlessSdkConfig,\n  ConnectOptions,\n  ConnectResult,\n  SignAndSubmitResult,\n  AddRecoveryKeyOptions,\n  RecoveryKeyResult,\n  BoundlessEventName,\n  BoundlessEventHandler,\n} from \"./types\";\n\n// Valid G-address for simulation source (USDC Issuer)\nconst DUMMY_SOURCE = \"GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5\";\n\nexport class BoundlessSDK {\n  private config: BoundlessSdkConfig;\n  private kit: SmartAccountKit;\n  private _walletAddress: string | null = null;\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  private authClient: any; // typed via createAuthClient return\n\n  constructor(config: BoundlessSdkConfig) {\n    this.config = config;\n\n    // 1. Resolve network config\n    const networkConfig = NETWORK_CONFIGS[config.network];\n    const rpcUrl = config.rpcUrl || networkConfig.defaultRpcUrl;\n\n    // 2. Initialize SmartAccountKit\n    this.kit = new SmartAccountKit({\n      rpcUrl,\n      networkPassphrase: networkConfig.networkPassphrase,\n      accountWasmHash: networkConfig.accountWasmHash,\n      webauthnVerifierAddress: networkConfig.webauthnVerifierAddress,\n      rpId: config.rpId,\n      rpName: config.rpName,\n      storage: config.storage, // optional\n      relayerUrl: config.relayerProxyUrl, // optional\n    });\n\n    // 3. Create Better-Auth client\n    // Normalize backend URL: remove trailing /api or /api/auth\n    let normalizedBackendUrl = config.backendUrl.replace(/\\/$/, \"\");\n    if (normalizedBackendUrl.endsWith(\"/api/auth\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 9,\n      );\n    } else if (normalizedBackendUrl.endsWith(\"/api\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 4,\n      );\n    }\n    // Update config with normalized URL for internal use\n    this.config.backendUrl = normalizedBackendUrl;\n\n    // We cannot do `typeof auth` inference across packages easily without importing backend code.\n    // inferAdditionalFields is the standard polyrepo pattern.\n    this.authClient = createAuthClient({\n      baseURL: normalizedBackendUrl,\n      basePath: \"/api/auth\",\n      plugins: [\n        inferAdditionalFields({\n          user: {\n            stellarAddress: { type: \"string\" },\n            credentialId: { type: \"string\" },\n          },\n        }),\n      ],\n    }) as any;\n  }\n\n  /**\n   * Access the underlying SmartAccountKit instance for advanced usage.\n   */\n  get smartAccountKit(): SmartAccountKit {\n    return this.kit;\n  }\n\n  /**\n   * Connect to an existing passkey wallet.\n   * If prompt is true, forces the browser passkey selection UI.\n   * Does NOT deploy a new wallet.\n   */\n  async connect(options?: ConnectOptions): Promise<ConnectResult | null> {\n    const prompt = options?.prompt === true;\n\n    // 1. Silent restore first (default behavior of connectWallet without args)\n    // If prompt is true, we skip silent restore if we want to force UI,\n    // but smart-account-kit connectWallet handles 'prompt: true' by forcing it.\n    // However, the spec says:\n    // \"Call kit.connectWallet() ← silent restore\"\n    // \"If result → return mapped... \"\n    // \"If null AND options?.prompt === true → call kit.connectWallet({ prompt: true })\"\n\n    let result = await this.kit.connectWallet();\n\n    if (result) {\n      this._walletAddress = result.contractId;\n      return {\n        walletAddress: result.contractId,\n        credentialId: (result as any).credentialId || \"\",\n        isNew: false,\n      };\n    }\n\n    if (prompt) {\n      result = await this.kit.connectWallet({ prompt: true });\n      if (result) {\n        this._walletAddress = result.contractId;\n        return {\n          walletAddress: result.contractId,\n          credentialId: (result as any).credentialId || \"\",\n          isNew: false,\n        };\n      }\n    }\n\n    // \"If null AND prompt is falsy → return null.\"\n    return null;\n  }\n\n  /**\n   * Create a new wallet + credential for a user.\n   * Triggers browser passkey prompt.\n   * Links to the active Better-Auth session.\n   */\n  async register(userName: string): Promise<ConnectResult> {\n    // 1. Create wallet (deploys on-chain + persists credential)\n    const result = await this.kit.createWallet(this.config.rpName, userName, {\n      autoSubmit: true,\n    });\n\n    // 2. Link to Better-Auth session\n    // We expect credentialId to be present for new registrations via SmartAccountKit\n    if (!result.credentialId) {\n      console.warn(\"No credentialId returned from createWallet for new user.\");\n    }\n    await this.linkToSession(result.contractId, result.credentialId || \"\");\n\n    this._walletAddress = result.contractId;\n\n    // 3. Return result\n    return {\n      walletAddress: result.contractId,\n      credentialId: result.credentialId,\n      isNew: true,\n    };\n  }\n\n  /**\n   * Link a Stellar wallet address to the currently authenticated user session.\n   */\n  private async linkToSession(\n    contractId: string,\n    credentialId: string,\n  ): Promise<void> {\n    // 1. Check session\n    const res = await this.authClient.getSession();\n    const session = res?.data;\n    if (!session?.user) {\n      throw new BoundlessAuthError(\n        \"No active auth session. User must be logged in via Better-Auth before linking a wallet.\",\n      );\n    }\n\n    // 2. POST /api/auth/stellar/link\n    // Using fetch to manually hit the endpoint registered by the plugin.\n    // The SDK's authClient base URL is config.backendUrl.\n    const linkUrl = `${this.config.backendUrl}/api/auth/stellar/link`;\n\n    const response = await fetch(linkUrl, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n      },\n      body: JSON.stringify({\n        stellarAddress: contractId,\n        credentialId: credentialId,\n      }),\n      // Credentials include cookies for the session\n      credentials: \"include\",\n    });\n\n    if (!response.ok) {\n      const text = await response.text();\n      throw new BoundlessLinkError(\n        `Failed to link wallet: ${text}`,\n        response.status,\n      );\n    }\n  }\n\n  /**\n   * Sign and submit a transaction.\n   * Delegates to SmartAccountKit (which handles relayer if configured).\n   */\n  async signAndSubmit(\n    transaction: AssembledTransaction<any>,\n  ): Promise<SignAndSubmitResult> {\n    const result = await this.kit.signAndSubmit(transaction);\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Fetch the balance of the connected wallet (or any specific address).\n   * By default, fetches native XLM balance.\n   * If assetCode (and issuer) is provided, fetches that asset's balance.\n   * If assetCode starts with 'C', it is treated as a contract ID.\n   */\n  async getBalance(\n    address: string,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<string> {\n    if (!address) return \"0.00\";\n\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    const server = new rpc.Server(\n      this.config.rpcUrl || networkConfig.defaultRpcUrl,\n    );\n\n    // 1. Native Balance\n    if (assetCode === \"XLM\") {\n      try {\n        const result = await server.getSACBalance(\n          networkConfig.nativeTokenContract,\n          Asset.native(),\n          networkConfig.networkPassphrase,\n        );\n        if (result.balanceEntry) {\n          return (Number(result.balanceEntry.amount) / STROOPS_PER_XLM).toFixed(\n            2,\n          );\n        }\n        return \"0.00\";\n      } catch (e) {\n        console.error(\"Error fetching native balance:\", e);\n        return \"0.00\";\n      }\n    }\n\n    // 2. Custom Token Balance\n    let targetContractId = assetCode;\n\n    // Resolve Contract ID\n    if (assetCode.includes(\":\")) {\n      // CODE:ISSUER\n      const [code, issuer] = assetCode.split(\":\");\n      try {\n        const asset = new Asset(code, issuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Invalid asset format: ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (assetIssuer) {\n      // Explicit Code + Issuer\n      try {\n        const asset = new Asset(assetCode, assetIssuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Failed to derive contract for ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (!assetCode.startsWith(\"C\")) {\n      // If it's just \"USDC\" without issuer, we might need a known list or fail.\n      // For SDK, we assume the user must provide enough info.\n      // However, if the user passes a contract address directly, we use it.\n      // Check if it's a valid contract address?\n      // For now, we assume if it's 56 chars starting with C, it's a contract.\n      // If not, we can't guess.\n      // But we'll try to treat it as a contract ID if it looks like one.\n      if (!assetCode.startsWith(\"C\") || assetCode.length !== 56) {\n        console.warn(\n          \"getBalance: Asset code must be XLM, C... contract ID, or CODE:ISSUER\",\n        );\n        return \"0\";\n      }\n    }\n\n    try {\n      // Simulate Balance Call\n      // Use DUMMY_SOURCE for simulation to avoid accountId errors with Smart Accounts\n      const sourceAccount = new Account(DUMMY_SOURCE, \"0\");\n\n      const tokenContract = new Contract(targetContractId);\n      const op = tokenContract.call(\"balance\", new Address(address).toScVal());\n\n      const tx = new TransactionBuilder(sourceAccount, {\n        fee: \"100\",\n        networkPassphrase: networkConfig.networkPassphrase,\n      })\n        .addOperation(op)\n        .setTimeout(TimeoutInfinite)\n        .build();\n\n      const sim = await server.simulateTransaction(tx);\n\n      if (\n        rpc.Api.isSimulationSuccess(sim) &&\n        sim.result &&\n        \"retval\" in sim.result\n      ) {\n        const val = scValToNative(sim.result.retval);\n        // Default formatting: Assume 7 decimals for now or return raw?\n        // Returning human-readable for convenience.\n        // Most Stellar tokens are 7 decimals.\n        return (Number(val) / 1e7).toFixed(2);\n      }\n    } catch (e) {\n      console.error(`Error fetching token balance for ${assetCode}:`, e);\n    }\n\n    return \"0\";\n  }\n\n  /**\n   * Transfer funds (XLM or Token).\n   * Automatically resolves Asset-to-Contract if needed.\n   */\n  async transfer(\n    to: string,\n    amount: string | number,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<SignAndSubmitResult> {\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    let tokenContract: string = networkConfig.nativeTokenContract;\n\n    if (assetCode !== \"XLM\") {\n      if (assetCode.startsWith(\"C\") && assetCode.length === 56) {\n        tokenContract = assetCode;\n      } else if (assetCode.includes(\":\")) {\n        const [code, issuer] = assetCode.split(\":\");\n        const asset = new Asset(code, issuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else if (assetIssuer) {\n        const asset = new Asset(assetCode, assetIssuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else {\n        throw new Error(\n          \"Invalid asset specifier. Use XLM, Contract ID, or Code + Issuer.\",\n        );\n      }\n    }\n\n    const amountNum = typeof amount === \"string\" ? parseFloat(amount) : amount;\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    const result = await this.kit.transfer(tokenContract as any, to, amountNum);\n\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Disconnect the wallet (clear local session).\n   * Does NOT sign out of Better-Auth.\n   */\n  async disconnect(): Promise<void> {\n    await this.kit.disconnect();\n    this._walletAddress = null;\n  }\n\n  /**\n   * Get the connected wallet address synchronously.\n   */\n  getWalletAddress(): string | null {\n    // smart-account-kit doesn't have a direct synchronous getter documented in the spec provided?\n    // \"Read from the session state that SmartAccountKit maintains internally (check kit after connectWallet result).\"\n    // Usually kit.address or similar is available if connected.\n    // Based on \"sub-managers\" list, it doesn't explicitly show 'address' property on kit intance.\n    // However, typical usage implies we can track it.\n    // BUT the prompt says: \"check kit after connectWallet result\".\n    // Wait, SmartAccountKit instance usage in 6.1 doesn't show a public 'address' field.\n    // But section 7.3 says: \"Read from the session state that SmartAccountKit maintains internally\".\n    // I will assume `kit.address` exists or I need to track it myself?\n    // \"The SDK is one package... Client SDK class... It owns the client-side BoundlessSDK class\".\n    // If I look at `kit` internals or typical patterns, it often exposes the address.\n    // If not, I should probably cache it on `connect` / `register`.\n    // BUT, `kit.connectWallet` returns the result.\n    // If the page reloads, `kit` is re-instantiated. `kit.connectWallet()` (silent) restores it.\n    // So `getWalletAddress` might need to rely on the *result* of the last connect/register.\n    //\n    // HOWEVER, `kit` might have an `address` getter.\n    // Let's assume for now I should inspect `kit` typings if I could, but I can't.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n    // implies `kit` has state.\n    // If `kit` tracks it, it's likely `kit.address`.\n    // I'll check if I can assume it.\n    // If `kit` does not expose it, I'd have to store it in `this.currentAddress`.\n    // But if `kit` disconnects, I need to know.\n    // `kit.events` emit 'walletDisconnected'.\n\n    // I'll use a safer approach: check if `kit` has a known property or Method.\n    // The spec 6.1 Core Methods allows `connectWallet`.\n    // If `kit` doesn't expose `address` directly, I'll rely on my own state updated via events/method calls.\n    // BUT Section 7.3 says \"Read from the session state that SmartAccountKit maintains internally\".\n    // This strongly suggests `kit` has it. I will try `(this.kit as any).address`.\n    // Or better, I will assume it might be there.\n\n    // Actually, looking at `smart-account-kit` typical implementations, it usually has `address`.\n    // I'll assume `this.kit.address` is the way.\n    // If TS complains, I'll fix it. I can't check types right now.\n    // I will use `(this.kit as any).address` to be safe if strict types block it,\n    // but better to try `this.kit.address` first? No, I want to avoid build errors.\n    // I'll cast for now to avoid blocking if the types aren't exactly matching my assumption.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n\n    return this._walletAddress || (this.kit as any).address || null;\n  }\n\n  /**\n   * Add a recovery key (new passkey) to the existing account.\n   */\n  async addRecoveryKey(\n    options: AddRecoveryKeyOptions,\n  ): Promise<RecoveryKeyResult> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to add a recovery key.\",\n      );\n    }\n\n    const { credentialId } = await this.kit.signers.addPasskey(\n      0, // contextRuleId (0 = default)\n      options.appName,\n      options.userName,\n      { nickname: options.nickname },\n    );\n\n    return { credentialId };\n  }\n\n  /**\n   * Remove a credential by ID.\n   */\n  async removeCredential(credentialId: string): Promise<void> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to remove a credential.\",\n      );\n    }\n\n    await this.kit.signers.removePasskey(0, credentialId);\n  }\n\n  /**\n   * Subscribe to events.\n   */\n  onEvent(\n    event: BoundlessEventName,\n    handler: BoundlessEventHandler,\n  ): () => void {\n    const validEvents: BoundlessEventName[] = [\n      \"walletConnected\",\n      \"walletDisconnected\",\n      \"credentialCreated\",\n      \"credentialDeleted\",\n      \"sessionExpired\",\n      \"transactionSigned\",\n      \"transactionSubmitted\",\n    ];\n\n    if (!validEvents.includes(event)) {\n      // Just ignore or warn? Types prevent this usually.\n      console.warn(`BoundlessSDK: Unknown event \"${event}\"`);\n      return () => {};\n    }\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    this.kit.events.on(event, handler as any);\n\n    return () => {\n      // eslint-disable-next-line @typescript-eslint/no-explicit-any\n      this.kit.events.off(event, handler as any);\n    };\n  }\n}\n","export const NETWORK_CONFIGS = {\n  testnet: {\n    networkPassphrase: \"Test SDF Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-testnet.stellar.org\",\n    accountWasmHash:\n      \"a12e8fa9621efd20315753bd4007d974390e31fbcb4a7ddc4dd0a0dec728bf2e\",\n    webauthnVerifierAddress:\n      \"CBSHV66WG7UV6FQVUTB67P3DZUEJ2KJ5X6JKQH5MFRAAFNFJUAJVXJYV\",\n    ed25519VerifierAddress:\n      \"CDGMOL3BP6Y6LYOXXTRNXBNJ2SLNTQ47BGG3LOS2OBBE657E3NYCN54B\",\n    nativeTokenContract:\n      \"CDLZFC3SYJYDZT7K67VZ75HPJVIEUVNIXF47ZG2FB2RMQQVU2HHGCYSC\",\n    policies: {\n      threshold: \"CCT4MMN5MJ6O2OU6LXPYTCVORQ2QVTBMDJ7MYBZQ2ULSYQVUIYP4IFYD\",\n      spendingLimit: \"CBMMWY54XOV6JJHSWCMKWWPXVRXASR5U26UJMLZDN4SP6CFFTVZARPTY\",\n      weightedThreshold:\n        \"CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ\",\n    },\n    relayerUrl: \"\",\n  },\n  mainnet: {\n    networkPassphrase: \"Public Global Stellar Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-rpc.mainnet.stellar.org\",\n    accountWasmHash: \"REPLACE_WITH_MAINNET_WASM_HASH\",\n    webauthnVerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    ed25519VerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    nativeTokenContract: \"REPLACE_WITH_MAINNET_CONTRACT\",\n    policies: {\n      threshold: \"REPLACE_WITH_MAINNET_POLICY\",\n      spendingLimit: \"REPLACE_WITH_MAINNET_POLICY\",\n      weightedThreshold: \"REPLACE_WITH_MAINNET_POLICY\",\n    },\n    relayerUrl: \"\",\n  },\n} as const;\n\nexport type NetworkName = keyof typeof NETWORK_CONFIGS;\n","import { SmartAccountError } from \"smart-account-kit\";\n\nexport class BoundlessAuthError extends SmartAccountError {\n  constructor(message: string) {\n    super(message, \"BOUNDLESS_AUTH\" as any);\n    this.name = \"BoundlessAuthError\";\n  }\n}\n\nexport class BoundlessLinkError extends SmartAccountError {\n  constructor(\n    message: string,\n    public statusCode?: number,\n  ) {\n    super(message, \"BOUNDLESS_LINK\" as any);\n    this.name = \"BoundlessLinkError\";\n  }\n}\n","/**\n * Validate that a string looks like a Soroban contract address.\n * Soroban contract IDs start with 'C' and are 56 characters (StrKey).\n */\nexport function isValidContractAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"C\");\n}\n\n/**\n * Validate that a string looks like a Stellar account address (G…).\n */\nexport function isValidStellarAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"G\");\n}\n\n/**\n * Sleep for N milliseconds.  Useful in retry loops.\n */\nexport function sleep(ms: number): Promise<void> {\n  return new Promise((resolve) => setTimeout(resolve, ms));\n}\n","export * from \"./boundless-sdk\";\nexport * from \"./types\";\nexport * from \"./errors\";\nexport * from \"./constants\";\nexport * from \"./utils\";\nexport {\n  SmartAccountError,\n  WalletNotConnectedError,\n  CredentialNotFoundError,\n  SignerNotFoundError,\n  SimulationError,\n  SubmissionError,\n  ValidationError,\n  WebAuthnError,\n  SessionError,\n  wrapError,\n} from \"smart-account-kit\";\n"],"mappings":";;;;;AAAA;AAAA,EACE;AAAA,EAEA;AAAA,EACA;AAAA,OACK;AACP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAEP,SAAS,wBAAwB;AACjC,SAAS,6BAA6B;;;AClB/B,IAAM,kBAAkB;AAAA,EAC7B,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBACE;AAAA,IACF,yBACE;AAAA,IACF,wBACE;AAAA,IACF,qBACE;AAAA,IACF,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBACE;AAAA,IACJ;AAAA,IACA,YAAY;AAAA,EACd;AAAA,EACA,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBAAiB;AAAA,IACjB,yBAAyB;AAAA,IACzB,wBAAwB;AAAA,IACxB,qBAAqB;AAAA,IACrB,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBAAmB;AAAA,IACrB;AAAA,IACA,YAAY;AAAA,EACd;AACF;;;AClCA,SAAS,yBAAyB;AAE3B,IAAM,qBAAN,cAAiC,kBAAkB;AAAA,EACxD,YAAY,SAAiB;AAC3B,UAAM,SAAS,gBAAuB;AACtC,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,qBAAN,cAAiC,kBAAkB;AAAA,EACxD,YACE,SACO,YACP;AACA,UAAM,SAAS,gBAAuB;AAF/B;AAGP,SAAK,OAAO;AAAA,EACd;AACF;;;AFiBA,IAAM,eAAe;AAEd,IAAM,eAAN,MAAmB;AAAA;AAAA,EAOxB,YAAY,QAA4B;AANxC,wBAAQ;AACR,wBAAQ;AACR,wBAAQ,kBAAgC;AAExC;AAAA,wBAAQ;AAGN,SAAK,SAAS;AAGd,UAAM,gBAAgB,gBAAgB,OAAO,OAAO;AACpD,UAAM,SAAS,OAAO,UAAU,cAAc;AAG9C,SAAK,MAAM,IAAI,gBAAgB;AAAA,MAC7B;AAAA,MACA,mBAAmB,cAAc;AAAA,MACjC,iBAAiB,cAAc;AAAA,MAC/B,yBAAyB,cAAc;AAAA,MACvC,MAAM,OAAO;AAAA,MACb,QAAQ,OAAO;AAAA,MACf,SAAS,OAAO;AAAA;AAAA,MAChB,YAAY,OAAO;AAAA;AAAA,IACrB,CAAC;AAID,QAAI,uBAAuB,OAAO,WAAW,QAAQ,OAAO,EAAE;AAC9D,QAAI,qBAAqB,SAAS,WAAW,GAAG;AAC9C,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF,WAAW,qBAAqB,SAAS,MAAM,GAAG;AAChD,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF;AAEA,SAAK,OAAO,aAAa;AAIzB,SAAK,aAAa,iBAAiB;AAAA,MACjC,SAAS;AAAA,MACT,UAAU;AAAA,MACV,SAAS;AAAA,QACP,sBAAsB;AAAA,UACpB,MAAM;AAAA,YACJ,gBAAgB,EAAE,MAAM,SAAS;AAAA,YACjC,cAAc,EAAE,MAAM,SAAS;AAAA,UACjC;AAAA,QACF,CAAC;AAAA,MACH;AAAA,IACF,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,IAAI,kBAAmC;AACrC,WAAO,KAAK;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAQ,SAAyD;AACrE,UAAM,SAAS,SAAS,WAAW;AAUnC,QAAI,SAAS,MAAM,KAAK,IAAI,cAAc;AAE1C,QAAI,QAAQ;AACV,WAAK,iBAAiB,OAAO;AAC7B,aAAO;AAAA,QACL,eAAe,OAAO;AAAA,QACtB,cAAe,OAAe,gBAAgB;AAAA,QAC9C,OAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI,QAAQ;AACV,eAAS,MAAM,KAAK,IAAI,cAAc,EAAE,QAAQ,KAAK,CAAC;AACtD,UAAI,QAAQ;AACV,aAAK,iBAAiB,OAAO;AAC7B,eAAO;AAAA,UACL,eAAe,OAAO;AAAA,UACtB,cAAe,OAAe,gBAAgB;AAAA,UAC9C,OAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AAGA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAS,UAA0C;AAEvD,UAAM,SAAS,MAAM,KAAK,IAAI,aAAa,KAAK,OAAO,QAAQ,UAAU;AAAA,MACvE,YAAY;AAAA,IACd,CAAC;AAID,QAAI,CAAC,OAAO,cAAc;AACxB,cAAQ,KAAK,0DAA0D;AAAA,IACzE;AACA,UAAM,KAAK,cAAc,OAAO,YAAY,OAAO,gBAAgB,EAAE;AAErE,SAAK,iBAAiB,OAAO;AAG7B,WAAO;AAAA,MACL,eAAe,OAAO;AAAA,MACtB,cAAc,OAAO;AAAA,MACrB,OAAO;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,cACZ,YACA,cACe;AAEf,UAAM,MAAM,MAAM,KAAK,WAAW,WAAW;AAC7C,UAAM,UAAU,KAAK;AACrB,QAAI,CAAC,SAAS,MAAM;AAClB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAKA,UAAM,UAAU,GAAG,KAAK,OAAO,UAAU;AAEzC,UAAM,WAAW,MAAM,MAAM,SAAS;AAAA,MACpC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,gBAAgB;AAAA,QAChB;AAAA,MACF,CAAC;AAAA;AAAA,MAED,aAAa;AAAA,IACf,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAChB,YAAM,OAAO,MAAM,SAAS,KAAK;AACjC,YAAM,IAAI;AAAA,QACR,0BAA0B,IAAI;AAAA,QAC9B,SAAS;AAAA,MACX;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,cACJ,aAC8B;AAC9B,UAAM,SAAS,MAAM,KAAK,IAAI,cAAc,WAAW;AACvD,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,WACJ,SACA,YAAY,OACZ,aACiB;AACjB,QAAI,CAAC,QAAS,QAAO;AAErB,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,UAAM,SAAS,IAAI,IAAI;AAAA,MACrB,KAAK,OAAO,UAAU,cAAc;AAAA,IACtC;AAGA,QAAI,cAAc,OAAO;AACvB,UAAI;AACF,cAAM,SAAS,MAAM,OAAO;AAAA,UAC1B,cAAc;AAAA,UACd,MAAM,OAAO;AAAA,UACb,cAAc;AAAA,QAChB;AACA,YAAI,OAAO,cAAc;AACvB,kBAAQ,OAAO,OAAO,aAAa,MAAM,IAAI,iBAAiB;AAAA,YAC5D;AAAA,UACF;AAAA,QACF;AACA,eAAO;AAAA,MACT,SAAS,GAAG;AACV,gBAAQ,MAAM,kCAAkC,CAAC;AACjD,eAAO;AAAA,MACT;AAAA,IACF;AAGA,QAAI,mBAAmB;AAGvB,QAAI,UAAU,SAAS,GAAG,GAAG;AAE3B,YAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,UAAI;AACF,cAAM,QAAQ,IAAI,MAAM,MAAM,MAAM;AACpC,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,yBAAyB,SAAS,IAAI,CAAC;AACrD,eAAO;AAAA,MACT;AAAA,IACF,WAAW,aAAa;AAEtB,UAAI;AACF,cAAM,QAAQ,IAAI,MAAM,WAAW,WAAW;AAC9C,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,iCAAiC,SAAS,IAAI,CAAC;AAC7D,eAAO;AAAA,MACT;AAAA,IACF,WAAW,CAAC,UAAU,WAAW,GAAG,GAAG;AAQrC,UAAI,CAAC,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACzD,gBAAQ;AAAA,UACN;AAAA,QACF;AACA,eAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI;AAGF,YAAM,gBAAgB,IAAI,QAAQ,cAAc,GAAG;AAEnD,YAAM,gBAAgB,IAAI,SAAS,gBAAgB;AACnD,YAAM,KAAK,cAAc,KAAK,WAAW,IAAI,QAAQ,OAAO,EAAE,QAAQ,CAAC;AAEvE,YAAM,KAAK,IAAI,mBAAmB,eAAe;AAAA,QAC/C,KAAK;AAAA,QACL,mBAAmB,cAAc;AAAA,MACnC,CAAC,EACE,aAAa,EAAE,EACf,WAAW,eAAe,EAC1B,MAAM;AAET,YAAM,MAAM,MAAM,OAAO,oBAAoB,EAAE;AAE/C,UACE,IAAI,IAAI,oBAAoB,GAAG,KAC/B,IAAI,UACJ,YAAY,IAAI,QAChB;AACA,cAAM,MAAM,cAAc,IAAI,OAAO,MAAM;AAI3C,gBAAQ,OAAO,GAAG,IAAI,KAAK,QAAQ,CAAC;AAAA,MACtC;AAAA,IACF,SAAS,GAAG;AACV,cAAQ,MAAM,oCAAoC,SAAS,KAAK,CAAC;AAAA,IACnE;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SACJ,IACA,QACA,YAAY,OACZ,aAC8B;AAC9B,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,QAAI,gBAAwB,cAAc;AAE1C,QAAI,cAAc,OAAO;AACvB,UAAI,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACxD,wBAAgB;AAAA,MAClB,WAAW,UAAU,SAAS,GAAG,GAAG;AAClC,cAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,cAAM,QAAQ,IAAI,MAAM,MAAM,MAAM;AACpC,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,WAAW,aAAa;AACtB,cAAM,QAAQ,IAAI,MAAM,WAAW,WAAW;AAC9C,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,OAAO;AACL,cAAM,IAAI;AAAA,UACR;AAAA,QACF;AAAA,MACF;AAAA,IACF;AAEA,UAAM,YAAY,OAAO,WAAW,WAAW,WAAW,MAAM,IAAI;AAGpE,UAAM,SAAS,MAAM,KAAK,IAAI,SAAS,eAAsB,IAAI,SAAS;AAE1E,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,aAA4B;AAChC,UAAM,KAAK,IAAI,WAAW;AAC1B,SAAK,iBAAiB;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,mBAAkC;AA0ChC,WAAO,KAAK,kBAAmB,KAAK,IAAY,WAAW;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eACJ,SAC4B;AAC5B,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,EAAE,aAAa,IAAI,MAAM,KAAK,IAAI,QAAQ;AAAA,MAC9C;AAAA;AAAA,MACA,QAAQ;AAAA,MACR,QAAQ;AAAA,MACR,EAAE,UAAU,QAAQ,SAAS;AAAA,IAC/B;AAEA,WAAO,EAAE,aAAa;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBAAiB,cAAqC;AAC1D,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,KAAK,IAAI,QAAQ,cAAc,GAAG,YAAY;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA,EAKA,QACE,OACA,SACY;AACZ,UAAM,cAAoC;AAAA,MACxC;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAEA,QAAI,CAAC,YAAY,SAAS,KAAK,GAAG;AAEhC,cAAQ,KAAK,gCAAgC,KAAK,GAAG;AACrD,aAAO,MAAM;AAAA,MAAC;AAAA,IAChB;AAGA,SAAK,IAAI,OAAO,GAAG,OAAO,OAAc;AAExC,WAAO,MAAM;AAEX,WAAK,IAAI,OAAO,IAAI,OAAO,OAAc;AAAA,IAC3C;AAAA,EACF;AACF;;;AGzfO,SAAS,uBAAuB,MAAuB;AAC5D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,sBAAsB,MAAuB;AAC3D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,MAAM,IAA2B;AAC/C,SAAO,IAAI,QAAQ,CAAC,YAAY,WAAW,SAAS,EAAE,CAAC;AACzD;;;ACfA;AAAA,EACE,qBAAAA;AAAA,EACA,2BAAAC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;","names":["SmartAccountError","WalletNotConnectedError"]}
+{"version":3,"sources":["../src/boundless-sdk.ts","../src/constants.ts","../src/errors.ts","../src/utils.ts","../src/index.ts"],"sourcesContent":["import {\n  SmartAccountKit,\n  IndexedDBStorage,\n  WalletNotConnectedError,\n  STROOPS_PER_XLM,\n} from \"smart-account-kit\";\nimport {\n  rpc,\n  Asset,\n  Address,\n  Contract,\n  Account,\n  TransactionBuilder,\n  scValToNative,\n  TimeoutInfinite,\n  Keypair,\n} from \"@stellar/stellar-sdk\";\nimport type { AssembledTransaction } from \"smart-account-kit\";\nimport { createAuthClient } from \"better-auth/client\";\nimport { inferAdditionalFields } from \"better-auth/client/plugins\";\n\nimport { NETWORK_CONFIGS } from \"./constants\";\nimport { BoundlessAuthError, BoundlessLinkError } from \"./errors\";\nimport type {\n  BoundlessSdkConfig,\n  ConnectOptions,\n  ConnectResult,\n  SignAndSubmitResult,\n  AddRecoveryKeyOptions,\n  RecoveryKeyResult,\n  BoundlessEventName,\n  BoundlessEventHandler,\n  DelegatedAccountResult,\n} from \"./types\";\n\n// Valid G-address for simulation source (USDC Issuer)\nconst DUMMY_SOURCE = NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;\n\nexport class BoundlessSDK {\n  private config: BoundlessSdkConfig;\n  private kit: SmartAccountKit;\n  private _walletAddress: string | null = null;\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  private authClient: any; // typed via createAuthClient return\n\n  constructor(config: BoundlessSdkConfig) {\n    this.config = config;\n\n    // 1. Resolve network config\n    const networkConfig = NETWORK_CONFIGS[config.network];\n    const rpcUrl = config.rpcUrl || networkConfig.defaultRpcUrl;\n\n    // 2. Initialize SmartAccountKit\n    this.kit = new SmartAccountKit({\n      rpcUrl,\n      networkPassphrase: networkConfig.networkPassphrase,\n      accountWasmHash: networkConfig.accountWasmHash,\n      webauthnVerifierAddress: networkConfig.webauthnVerifierAddress,\n      rpId: config.rpId,\n      rpName: config.rpName,\n      storage: config.storage, // optional\n      relayerUrl: config.relayerProxyUrl, // optional\n    });\n\n    // 3. Create Better-Auth client\n    // Normalize backend URL: remove trailing /api or /api/auth\n    let normalizedBackendUrl = config.backendUrl.replace(/\\/$/, \"\");\n    if (normalizedBackendUrl.endsWith(\"/api/auth\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 9,\n      );\n    } else if (normalizedBackendUrl.endsWith(\"/api\")) {\n      normalizedBackendUrl = normalizedBackendUrl.substring(\n        0,\n        normalizedBackendUrl.length - 4,\n      );\n    }\n    // Update config with normalized URL for internal use\n    this.config.backendUrl = normalizedBackendUrl;\n\n    // We cannot do `typeof auth` inference across packages easily without importing backend code.\n    // inferAdditionalFields is the standard polyrepo pattern.\n    this.authClient = createAuthClient({\n      baseURL: normalizedBackendUrl,\n      basePath: \"/api/auth\",\n      plugins: [\n        inferAdditionalFields({\n          user: {\n            stellarAddress: { type: \"string\" },\n            credentialId: { type: \"string\" },\n          },\n        }),\n      ],\n    }) as any;\n  }\n\n  /**\n   * Access the underlying SmartAccountKit instance for advanced usage.\n   */\n  get smartAccountKit(): SmartAccountKit {\n    return this.kit;\n  }\n\n  /**\n   * Connect to an existing passkey wallet.\n   * If prompt is true, forces the browser passkey selection UI.\n   * Does NOT deploy a new wallet.\n   */\n  async connect(options?: ConnectOptions): Promise<ConnectResult | null> {\n    const prompt = options?.prompt === true;\n\n    // 1. Silent restore first (default behavior of connectWallet without args)\n    // If prompt is true, we skip silent restore if we want to force UI,\n    // but smart-account-kit connectWallet handles 'prompt: true' by forcing it.\n    // However, the spec says:\n    // \"Call kit.connectWallet() ← silent restore\"\n    // \"If result → return mapped... \"\n    // \"If null AND options?.prompt === true → call kit.connectWallet({ prompt: true })\"\n\n    let result = await this.kit.connectWallet();\n\n    if (result) {\n      this._walletAddress = result.contractId;\n      return {\n        walletAddress: result.contractId,\n        credentialId: (result as any).credentialId || \"\",\n        isNew: false,\n      };\n    }\n\n    if (prompt) {\n      result = await this.kit.connectWallet({ prompt: true });\n      if (result) {\n        this._walletAddress = result.contractId;\n        return {\n          walletAddress: result.contractId,\n          credentialId: (result as any).credentialId || \"\",\n          isNew: false,\n        };\n      }\n    }\n\n    // \"If null AND prompt is falsy → return null.\"\n    return null;\n  }\n\n  /**\n   * Create a new wallet + credential for a user.\n   * Triggers browser passkey prompt.\n   * Links to the active Better-Auth session.\n   */\n  async register(userName: string): Promise<ConnectResult> {\n    // 1. Create wallet (deploys on-chain + persists credential)\n    const result = await this.kit.createWallet(this.config.rpName, userName, {\n      autoSubmit: true,\n    });\n\n    // 2. Link to Better-Auth session\n    // We expect credentialId to be present for new registrations via SmartAccountKit\n    if (!result.credentialId) {\n      console.warn(\"No credentialId returned from createWallet for new user.\");\n    }\n    await this.linkToSession(result.contractId, result.credentialId || \"\");\n\n    this._walletAddress = result.contractId;\n\n    // 3. Return result\n    return {\n      walletAddress: result.contractId,\n      credentialId: result.credentialId,\n      isNew: true,\n    };\n  }\n\n  /**\n   * Link a Stellar wallet address to the currently authenticated user session.\n   */\n  private async linkToSession(\n    contractId: string,\n    credentialId: string,\n  ): Promise<void> {\n    // 1. Check session\n    const res = await this.authClient.getSession();\n    const session = res?.data;\n    if (!session?.user) {\n      throw new BoundlessAuthError(\n        \"No active auth session. User must be logged in via Better-Auth before linking a wallet.\",\n      );\n    }\n\n    // 2. POST /api/auth/stellar/link\n    // Using fetch to manually hit the endpoint registered by the plugin.\n    // The SDK's authClient base URL is config.backendUrl.\n    const linkUrl = `${this.config.backendUrl}/api/auth/stellar/link`;\n\n    const response = await fetch(linkUrl, {\n      method: \"POST\",\n      headers: {\n        \"Content-Type\": \"application/json\",\n      },\n      body: JSON.stringify({\n        stellarAddress: contractId,\n        credentialId: credentialId,\n      }),\n      // Credentials include cookies for the session\n      credentials: \"include\",\n    });\n\n    if (!response.ok) {\n      const text = await response.text();\n      throw new BoundlessLinkError(\n        `Failed to link wallet: ${text}`,\n        response.status,\n      );\n    }\n  }\n\n  /**\n   * Sign and submit a transaction.\n   * Delegates to SmartAccountKit (which handles relayer if configured).\n   */\n  async signAndSubmit(\n    transaction: AssembledTransaction<any>,\n  ): Promise<SignAndSubmitResult> {\n    const result = await this.kit.signAndSubmit(transaction);\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Fetch the balance of the connected wallet (or any specific address).\n   * By default, fetches native XLM balance.\n   * If assetCode (and issuer) is provided, fetches that asset's balance.\n   * If assetCode starts with 'C', it is treated as a contract ID.\n   */\n  async getBalance(\n    address: string,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<string> {\n    if (!address) return \"0.00\";\n\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    const server = new rpc.Server(\n      this.config.rpcUrl || networkConfig.defaultRpcUrl,\n    );\n\n    // 1. Native Balance\n    if (assetCode === \"XLM\") {\n      try {\n        const result = await server.getSACBalance(\n          networkConfig.nativeTokenContract,\n          Asset.native(),\n          networkConfig.networkPassphrase,\n        );\n        if (result.balanceEntry) {\n          return (Number(result.balanceEntry.amount) / STROOPS_PER_XLM).toFixed(\n            2,\n          );\n        }\n        return \"0.00\";\n      } catch (e) {\n        console.error(\"Error fetching native balance:\", e);\n        return \"0.00\";\n      }\n    }\n\n    // 2. Custom Token Balance\n    let targetContractId = assetCode;\n\n    // Resolve Contract ID\n    if (assetCode.includes(\":\")) {\n      // CODE:ISSUER\n      const [code, issuer] = assetCode.split(\":\");\n      try {\n        const asset = new Asset(code, issuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Invalid asset format: ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (assetIssuer) {\n      // Explicit Code + Issuer\n      try {\n        const asset = new Asset(assetCode, assetIssuer);\n        targetContractId = asset.contractId(networkConfig.networkPassphrase);\n      } catch (e) {\n        console.error(`Failed to derive contract for ${assetCode}`, e);\n        return \"0\";\n      }\n    } else if (!assetCode.startsWith(\"C\")) {\n      // If it's just \"USDC\" without issuer, we might need a known list or fail.\n      // For SDK, we assume the user must provide enough info.\n      // However, if the user passes a contract address directly, we use it.\n      // Check if it's a valid contract address?\n      // For now, we assume if it's 56 chars starting with C, it's a contract.\n      // If not, we can't guess.\n      // But we'll try to treat it as a contract ID if it looks like one.\n      if (!assetCode.startsWith(\"C\") || assetCode.length !== 56) {\n        console.warn(\n          \"getBalance: Asset code must be XLM, C... contract ID, or CODE:ISSUER\",\n        );\n        return \"0\";\n      }\n    }\n\n    try {\n      // Simulate Balance Call\n      // Use DUMMY_SOURCE for simulation to avoid accountId errors with Smart Accounts\n      const sourceAccount = new Account(DUMMY_SOURCE, \"0\");\n\n      const tokenContract = new Contract(targetContractId);\n      const op = tokenContract.call(\"balance\", new Address(address).toScVal());\n\n      const tx = new TransactionBuilder(sourceAccount, {\n        fee: \"100\",\n        networkPassphrase: networkConfig.networkPassphrase,\n      })\n        .addOperation(op)\n        .setTimeout(TimeoutInfinite)\n        .build();\n\n      const sim = await server.simulateTransaction(tx);\n\n      if (\n        rpc.Api.isSimulationSuccess(sim) &&\n        sim.result &&\n        \"retval\" in sim.result\n      ) {\n        const val = scValToNative(sim.result.retval);\n        // Default formatting: Assume 7 decimals for now or return raw?\n        // Returning human-readable for convenience.\n        // Most Stellar tokens are 7 decimals.\n        return (Number(val) / 1e7).toFixed(2);\n      }\n    } catch (e) {\n      console.error(`Error fetching token balance for ${assetCode}:`, e);\n    }\n\n    return \"0\";\n  }\n\n  /**\n   * Transfer funds (XLM or Token).\n   * Automatically resolves Asset-to-Contract if needed.\n   */\n  async transfer(\n    to: string,\n    amount: string | number,\n    assetCode = \"XLM\",\n    assetIssuer?: string,\n  ): Promise<SignAndSubmitResult> {\n    const networkConfig = NETWORK_CONFIGS[this.config.network];\n    let tokenContract: string = networkConfig.nativeTokenContract;\n\n    if (assetCode !== \"XLM\") {\n      if (assetCode.startsWith(\"C\") && assetCode.length === 56) {\n        tokenContract = assetCode;\n      } else if (assetCode.includes(\":\")) {\n        const [code, issuer] = assetCode.split(\":\");\n        const asset = new Asset(code, issuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else if (assetIssuer) {\n        const asset = new Asset(assetCode, assetIssuer);\n        tokenContract = asset.contractId(networkConfig.networkPassphrase);\n      } else {\n        throw new Error(\n          \"Invalid asset specifier. Use XLM, Contract ID, or Code + Issuer.\",\n        );\n      }\n    }\n\n    const amountNum = typeof amount === \"string\" ? parseFloat(amount) : amount;\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    const result = await this.kit.transfer(tokenContract as any, to, amountNum);\n\n    return {\n      hash: result.hash,\n      success: result.success,\n    };\n  }\n\n  /**\n   * Disconnect the wallet (clear local session).\n   * Does NOT sign out of Better-Auth.\n   */\n  async disconnect(): Promise<void> {\n    await this.kit.disconnect();\n    this._walletAddress = null;\n  }\n\n  /**\n   * Get the connected wallet address synchronously.\n   */\n  getWalletAddress(): string | null {\n    // smart-account-kit doesn't have a direct synchronous getter documented in the spec provided?\n    // \"Read from the session state that SmartAccountKit maintains internally (check kit after connectWallet result).\"\n    // Usually kit.address or similar is available if connected.\n    // Based on \"sub-managers\" list, it doesn't explicitly show 'address' property on kit intance.\n    // However, typical usage implies we can track it.\n    // BUT the prompt says: \"check kit after connectWallet result\".\n    // Wait, SmartAccountKit instance usage in 6.1 doesn't show a public 'address' field.\n    // But section 7.3 says: \"Read from the session state that SmartAccountKit maintains internally\".\n    // I will assume `kit.address` exists or I need to track it myself?\n    // \"The SDK is one package... Client SDK class... It owns the client-side BoundlessSDK class\".\n    // If I look at `kit` internals or typical patterns, it often exposes the address.\n    // If not, I should probably cache it on `connect` / `register`.\n    // BUT, `kit.connectWallet` returns the result.\n    // If the page reloads, `kit` is re-instantiated. `kit.connectWallet()` (silent) restores it.\n    // So `getWalletAddress` might need to rely on the *result* of the last connect/register.\n    //\n    // HOWEVER, `kit` might have an `address` getter.\n    // Let's assume for now I should inspect `kit` typings if I could, but I can't.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n    // implies `kit` has state.\n    // If `kit` tracks it, it's likely `kit.address`.\n    // I'll check if I can assume it.\n    // If `kit` does not expose it, I'd have to store it in `this.currentAddress`.\n    // But if `kit` disconnects, I need to know.\n    // `kit.events` emit 'walletDisconnected'.\n\n    // I'll use a safer approach: check if `kit` has a known property or Method.\n    // The spec 6.1 Core Methods allows `connectWallet`.\n    // If `kit` doesn't expose `address` directly, I'll rely on my own state updated via events/method calls.\n    // BUT Section 7.3 says \"Read from the session state that SmartAccountKit maintains internally\".\n    // This strongly suggests `kit` has it. I will try `(this.kit as any).address`.\n    // Or better, I will assume it might be there.\n\n    // Actually, looking at `smart-account-kit` typical implementations, it usually has `address`.\n    // I'll assume `this.kit.address` is the way.\n    // If TS complains, I'll fix it. I can't check types right now.\n    // I will use `(this.kit as any).address` to be safe if strict types block it,\n    // but better to try `this.kit.address` first? No, I want to avoid build errors.\n    // I'll cast for now to avoid blocking if the types aren't exactly matching my assumption.\n    // \"Read from the session state that SmartAccountKit maintains internally\"\n\n    return this._walletAddress || (this.kit as any).address || null;\n  }\n\n  /**\n   * Add a recovery key (new passkey) to the existing account.\n   */\n  async addRecoveryKey(\n    options: AddRecoveryKeyOptions,\n  ): Promise<RecoveryKeyResult> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to add a recovery key.\",\n      );\n    }\n\n    const { credentialId } = await this.kit.signers.addPasskey(\n      0, // contextRuleId (0 = default)\n      options.appName,\n      options.userName,\n      { nickname: options.nickname },\n    );\n\n    return { credentialId };\n  }\n\n  /**\n   * Remove a credential by ID.\n   */\n  async removeCredential(credentialId: string): Promise<void> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\n        \"Wallet must be connected to remove a credential.\",\n      );\n    }\n\n    await this.kit.signers.removePasskey(0, credentialId);\n  }\n\n  /**\n   * Subscribe to events.\n   */\n  onEvent(\n    event: BoundlessEventName,\n    handler: BoundlessEventHandler,\n  ): () => void {\n    const validEvents: BoundlessEventName[] = [\n      \"walletConnected\",\n      \"walletDisconnected\",\n      \"credentialCreated\",\n      \"credentialDeleted\",\n      \"sessionExpired\",\n      \"transactionSigned\",\n      \"transactionSubmitted\",\n    ];\n\n    if (!validEvents.includes(event)) {\n      // Just ignore or warn? Types prevent this usually.\n      console.warn(`BoundlessSDK: Unknown event \"${event}\"`);\n      return () => {};\n    }\n\n    // eslint-disable-next-line @typescript-eslint/no-explicit-any\n    this.kit.events.on(event, handler as any);\n\n    return () => {\n      // eslint-disable-next-line @typescript-eslint/no-explicit-any\n      this.kit.events.off(event, handler as any);\n    };\n  }\n\n  /**\n   * Creates a G-address that the Smart Account can control.\n   * This G-address can be used with TrustlessWork and other APIs\n   * that require classic Stellar accounts.\n   *\n   * The Smart Account adds the G-address as a delegated signer on\n   * the default context rule (contextRuleId: 0).\n   */\n  async createDelegatedAccount(options?: {\n    /** If true, fund the G-address via Friendbot (testnet only) */\n    autoFund?: boolean;\n\n    /** Optional: provide your own keypair instead of generating one */\n    keypair?: Keypair;\n  }): Promise<DelegatedAccountResult> {\n    // 1. Ensure wallet is connected\n    if (!this.getWalletAddress()) {\n      throw new WalletNotConnectedError(\"Must connect wallet first\");\n    }\n\n    // 2. Generate or use provided keypair\n    const keypair = options?.keypair || Keypair.random();\n    const gAddress = keypair.publicKey();\n    const secretKey = keypair.secret();\n\n    // 3. Add the G-address as a delegated signer on the Smart Account\n    // This uses smart-account-kit's kit.signers.addDelegated()\n    await this.kit.signers.addDelegated(\n      0, // context rule ID (default rule)\n      gAddress,\n    );\n\n    // 4. Fund the G-address (testnet only)\n    let activated = false;\n    if (options?.autoFund && this.config.network === \"testnet\") {\n      try {\n        await fetch(`https://friendbot.stellar.org?addr=${gAddress}`);\n        activated = true;\n      } catch (e) {\n        console.warn(\"Friendbot funding failed:\", e);\n      }\n    }\n\n    return { gAddress, secretKey, activated };\n  }\n\n  /**\n   * Retrieves the G-address currently delegated by the Smart Account.\n   * Returns null if no delegated account exists.\n   */\n  async getDelegatedAccount(): Promise<string | null> {\n    const address = this.getWalletAddress();\n    if (!address) return null;\n\n    // Fetch the account state to check signers\n    // SmartAccountKit maintains the account state.\n    // We check the signers on rule 0.\n    const tx = await this.kit.rules.get(0);\n    const sim = await tx.simulate();\n    const rule = sim.result;\n\n    if (!rule || !rule.signers) return null;\n\n    // isDelegatedSigner and other builders are available via kit.builders or direct import\n    // Since we don't have direct import of builders yet, let's use the any cast for now\n    // or better, check the tag manually if we know the structure.\n    // Based on builders.d.ts, a delegated signer has { tag: \"Delegated\", values: [string] }\n    const delegatedSigner = rule.signers.find(\n      (s: any) => s.tag === \"Delegated\",\n    ) as any;\n\n    return delegatedSigner ? delegatedSigner.values[0] : null;\n  }\n\n  /**\n   * Removes a delegated G-address from the Smart Account's signer list.\n   * After this, the G-address can no longer act on behalf of the Smart Account.\n   */\n  async removeDelegatedAccount(gAddress: string): Promise<void> {\n    const address = this.getWalletAddress();\n    if (!address) {\n      throw new WalletNotConnectedError(\"Wallet must be connected\");\n    }\n\n    // We need to create a Signer object for removal.\n    // We can use the manual structure { tag: 'Delegated', values: [gAddress] }\n    const signer = { tag: \"Delegated\", values: [gAddress] };\n    await this.kit.signers.remove(0, signer as any);\n  }\n}\n","export const NETWORK_CONFIGS = {\n  testnet: {\n    networkPassphrase: \"Test SDF Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-testnet.stellar.org\",\n    accountWasmHash:\n      \"a12e8fa9621efd20315753bd4007d974390e31fbcb4a7ddc4dd0a0dec728bf2e\",\n    webauthnVerifierAddress:\n      \"CBSHV66WG7UV6FQVUTB67P3DZUEJ2KJ5X6JKQH5MFRAAFNFJUAJVXJYV\",\n    ed25519VerifierAddress:\n      \"CDGMOL3BP6Y6LYOXXTRNXBNJ2SLNTQ47BGG3LOS2OBBE657E3NYCN54B\",\n    nativeTokenContract:\n      \"CDLZFC3SYJYDZT7K67VZ75HPJVIEUVNIXF47ZG2FB2RMQQVU2HHGCYSC\",\n    policies: {\n      threshold: \"CCT4MMN5MJ6O2OU6LXPYTCVORQ2QVTBMDJ7MYBZQ2ULSYQVUIYP4IFYD\",\n      spendingLimit: \"CBMMWY54XOV6JJHSWCMKWWPXVRXASR5U26UJMLZDN4SP6CFFTVZARPTY\",\n      weightedThreshold:\n        \"CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ\",\n    },\n    relayerUrl: \"\",\n    trustlessWorkUsdcIssuer:\n      \"GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5\",\n  },\n  mainnet: {\n    networkPassphrase: \"Public Global Stellar Network ; September 2015\",\n    defaultRpcUrl: \"https://soroban-rpc.mainnet.stellar.org\",\n    accountWasmHash: \"REPLACE_WITH_MAINNET_WASM_HASH\",\n    webauthnVerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    ed25519VerifierAddress: \"REPLACE_WITH_MAINNET_VERIFIER\",\n    nativeTokenContract: \"REPLACE_WITH_MAINNET_CONTRACT\",\n    policies: {\n      threshold: \"REPLACE_WITH_MAINNET_POLICY\",\n      spendingLimit: \"REPLACE_WITH_MAINNET_POLICY\",\n      weightedThreshold: \"REPLACE_WITH_MAINNET_POLICY\",\n    },\n    relayerUrl: \"\",\n    trustlessWorkUsdcIssuer:\n      \"GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN\",\n  },\n} as const;\n\n/** TrustlessWork testnet USDC issuer */\nexport const TRUSTLESSWORK_USDC_TESTNET =\n  NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;\n\n/** TrustlessWork mainnet USDC issuer */\nexport const TRUSTLESSWORK_USDC_MAINNET =\n  NETWORK_CONFIGS.mainnet.trustlessWorkUsdcIssuer;\n\nexport type NetworkName = keyof typeof NETWORK_CONFIGS;\n","import { SmartAccountError } from \"smart-account-kit\";\n\nexport class BoundlessAuthError extends SmartAccountError {\n  constructor(message: string) {\n    super(message, \"BOUNDLESS_AUTH\" as any);\n    this.name = \"BoundlessAuthError\";\n  }\n}\n\nexport class BoundlessLinkError extends SmartAccountError {\n  constructor(\n    message: string,\n    public statusCode?: number,\n  ) {\n    super(message, \"BOUNDLESS_LINK\" as any);\n    this.name = \"BoundlessLinkError\";\n  }\n}\n","/**\n * Validate that a string looks like a Soroban contract address.\n * Soroban contract IDs start with 'C' and are 56 characters (StrKey).\n */\nexport function isValidContractAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"C\");\n}\n\n/**\n * Validate that a string looks like a Stellar account address (G…).\n */\nexport function isValidStellarAddress(addr: string): boolean {\n  return typeof addr === \"string\" && addr.length === 56 && addr.startsWith(\"G\");\n}\n\n/**\n * Sleep for N milliseconds.  Useful in retry loops.\n */\nexport function sleep(ms: number): Promise<void> {\n  return new Promise((resolve) => setTimeout(resolve, ms));\n}\n","export * from \"./boundless-sdk\";\nexport * from \"./types\";\nexport * from \"./errors\";\nexport * from \"./constants\";\nexport * from \"./utils\";\nexport {\n  SmartAccountError,\n  WalletNotConnectedError,\n  CredentialNotFoundError,\n  SignerNotFoundError,\n  SimulationError,\n  SubmissionError,\n  ValidationError,\n  WebAuthnError,\n  SessionError,\n  wrapError,\n} from \"smart-account-kit\";\n"],"mappings":";;;;;AAAA;AAAA,EACE;AAAA,EAEA;AAAA,EACA;AAAA,OACK;AACP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAEP,SAAS,wBAAwB;AACjC,SAAS,6BAA6B;;;ACnB/B,IAAM,kBAAkB;AAAA,EAC7B,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBACE;AAAA,IACF,yBACE;AAAA,IACF,wBACE;AAAA,IACF,qBACE;AAAA,IACF,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBACE;AAAA,IACJ;AAAA,IACA,YAAY;AAAA,IACZ,yBACE;AAAA,EACJ;AAAA,EACA,SAAS;AAAA,IACP,mBAAmB;AAAA,IACnB,eAAe;AAAA,IACf,iBAAiB;AAAA,IACjB,yBAAyB;AAAA,IACzB,wBAAwB;AAAA,IACxB,qBAAqB;AAAA,IACrB,UAAU;AAAA,MACR,WAAW;AAAA,MACX,eAAe;AAAA,MACf,mBAAmB;AAAA,IACrB;AAAA,IACA,YAAY;AAAA,IACZ,yBACE;AAAA,EACJ;AACF;AAGO,IAAM,6BACX,gBAAgB,QAAQ;AAGnB,IAAM,6BACX,gBAAgB,QAAQ;;;AC9C1B,SAAS,yBAAyB;AAE3B,IAAM,qBAAN,cAAiC,kBAAkB;AAAA,EACxD,YAAY,SAAiB;AAC3B,UAAM,SAAS,gBAAuB;AACtC,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,qBAAN,cAAiC,kBAAkB;AAAA,EACxD,YACE,SACO,YACP;AACA,UAAM,SAAS,gBAAuB;AAF/B;AAGP,SAAK,OAAO;AAAA,EACd;AACF;;;AFmBA,IAAM,eAAe,gBAAgB,QAAQ;AAEtC,IAAM,eAAN,MAAmB;AAAA;AAAA,EAOxB,YAAY,QAA4B;AANxC,wBAAQ;AACR,wBAAQ;AACR,wBAAQ,kBAAgC;AAExC;AAAA,wBAAQ;AAGN,SAAK,SAAS;AAGd,UAAM,gBAAgB,gBAAgB,OAAO,OAAO;AACpD,UAAM,SAAS,OAAO,UAAU,cAAc;AAG9C,SAAK,MAAM,IAAI,gBAAgB;AAAA,MAC7B;AAAA,MACA,mBAAmB,cAAc;AAAA,MACjC,iBAAiB,cAAc;AAAA,MAC/B,yBAAyB,cAAc;AAAA,MACvC,MAAM,OAAO;AAAA,MACb,QAAQ,OAAO;AAAA,MACf,SAAS,OAAO;AAAA;AAAA,MAChB,YAAY,OAAO;AAAA;AAAA,IACrB,CAAC;AAID,QAAI,uBAAuB,OAAO,WAAW,QAAQ,OAAO,EAAE;AAC9D,QAAI,qBAAqB,SAAS,WAAW,GAAG;AAC9C,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF,WAAW,qBAAqB,SAAS,MAAM,GAAG;AAChD,6BAAuB,qBAAqB;AAAA,QAC1C;AAAA,QACA,qBAAqB,SAAS;AAAA,MAChC;AAAA,IACF;AAEA,SAAK,OAAO,aAAa;AAIzB,SAAK,aAAa,iBAAiB;AAAA,MACjC,SAAS;AAAA,MACT,UAAU;AAAA,MACV,SAAS;AAAA,QACP,sBAAsB;AAAA,UACpB,MAAM;AAAA,YACJ,gBAAgB,EAAE,MAAM,SAAS;AAAA,YACjC,cAAc,EAAE,MAAM,SAAS;AAAA,UACjC;AAAA,QACF,CAAC;AAAA,MACH;AAAA,IACF,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,IAAI,kBAAmC;AACrC,WAAO,KAAK;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAQ,SAAyD;AACrE,UAAM,SAAS,SAAS,WAAW;AAUnC,QAAI,SAAS,MAAM,KAAK,IAAI,cAAc;AAE1C,QAAI,QAAQ;AACV,WAAK,iBAAiB,OAAO;AAC7B,aAAO;AAAA,QACL,eAAe,OAAO;AAAA,QACtB,cAAe,OAAe,gBAAgB;AAAA,QAC9C,OAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI,QAAQ;AACV,eAAS,MAAM,KAAK,IAAI,cAAc,EAAE,QAAQ,KAAK,CAAC;AACtD,UAAI,QAAQ;AACV,aAAK,iBAAiB,OAAO;AAC7B,eAAO;AAAA,UACL,eAAe,OAAO;AAAA,UACtB,cAAe,OAAe,gBAAgB;AAAA,UAC9C,OAAO;AAAA,QACT;AAAA,MACF;AAAA,IACF;AAGA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAS,UAA0C;AAEvD,UAAM,SAAS,MAAM,KAAK,IAAI,aAAa,KAAK,OAAO,QAAQ,UAAU;AAAA,MACvE,YAAY;AAAA,IACd,CAAC;AAID,QAAI,CAAC,OAAO,cAAc;AACxB,cAAQ,KAAK,0DAA0D;AAAA,IACzE;AACA,UAAM,KAAK,cAAc,OAAO,YAAY,OAAO,gBAAgB,EAAE;AAErE,SAAK,iBAAiB,OAAO;AAG7B,WAAO;AAAA,MACL,eAAe,OAAO;AAAA,MACtB,cAAc,OAAO;AAAA,MACrB,OAAO;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,cACZ,YACA,cACe;AAEf,UAAM,MAAM,MAAM,KAAK,WAAW,WAAW;AAC7C,UAAM,UAAU,KAAK;AACrB,QAAI,CAAC,SAAS,MAAM;AAClB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAKA,UAAM,UAAU,GAAG,KAAK,OAAO,UAAU;AAEzC,UAAM,WAAW,MAAM,MAAM,SAAS;AAAA,MACpC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,gBAAgB;AAAA,QAChB;AAAA,MACF,CAAC;AAAA;AAAA,MAED,aAAa;AAAA,IACf,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAChB,YAAM,OAAO,MAAM,SAAS,KAAK;AACjC,YAAM,IAAI;AAAA,QACR,0BAA0B,IAAI;AAAA,QAC9B,SAAS;AAAA,MACX;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,cACJ,aAC8B;AAC9B,UAAM,SAAS,MAAM,KAAK,IAAI,cAAc,WAAW;AACvD,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,WACJ,SACA,YAAY,OACZ,aACiB;AACjB,QAAI,CAAC,QAAS,QAAO;AAErB,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,UAAM,SAAS,IAAI,IAAI;AAAA,MACrB,KAAK,OAAO,UAAU,cAAc;AAAA,IACtC;AAGA,QAAI,cAAc,OAAO;AACvB,UAAI;AACF,cAAM,SAAS,MAAM,OAAO;AAAA,UAC1B,cAAc;AAAA,UACd,MAAM,OAAO;AAAA,UACb,cAAc;AAAA,QAChB;AACA,YAAI,OAAO,cAAc;AACvB,kBAAQ,OAAO,OAAO,aAAa,MAAM,IAAI,iBAAiB;AAAA,YAC5D;AAAA,UACF;AAAA,QACF;AACA,eAAO;AAAA,MACT,SAAS,GAAG;AACV,gBAAQ,MAAM,kCAAkC,CAAC;AACjD,eAAO;AAAA,MACT;AAAA,IACF;AAGA,QAAI,mBAAmB;AAGvB,QAAI,UAAU,SAAS,GAAG,GAAG;AAE3B,YAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,UAAI;AACF,cAAM,QAAQ,IAAI,MAAM,MAAM,MAAM;AACpC,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,yBAAyB,SAAS,IAAI,CAAC;AACrD,eAAO;AAAA,MACT;AAAA,IACF,WAAW,aAAa;AAEtB,UAAI;AACF,cAAM,QAAQ,IAAI,MAAM,WAAW,WAAW;AAC9C,2BAAmB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MACrE,SAAS,GAAG;AACV,gBAAQ,MAAM,iCAAiC,SAAS,IAAI,CAAC;AAC7D,eAAO;AAAA,MACT;AAAA,IACF,WAAW,CAAC,UAAU,WAAW,GAAG,GAAG;AAQrC,UAAI,CAAC,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACzD,gBAAQ;AAAA,UACN;AAAA,QACF;AACA,eAAO;AAAA,MACT;AAAA,IACF;AAEA,QAAI;AAGF,YAAM,gBAAgB,IAAI,QAAQ,cAAc,GAAG;AAEnD,YAAM,gBAAgB,IAAI,SAAS,gBAAgB;AACnD,YAAM,KAAK,cAAc,KAAK,WAAW,IAAI,QAAQ,OAAO,EAAE,QAAQ,CAAC;AAEvE,YAAM,KAAK,IAAI,mBAAmB,eAAe;AAAA,QAC/C,KAAK;AAAA,QACL,mBAAmB,cAAc;AAAA,MACnC,CAAC,EACE,aAAa,EAAE,EACf,WAAW,eAAe,EAC1B,MAAM;AAET,YAAM,MAAM,MAAM,OAAO,oBAAoB,EAAE;AAE/C,UACE,IAAI,IAAI,oBAAoB,GAAG,KAC/B,IAAI,UACJ,YAAY,IAAI,QAChB;AACA,cAAM,MAAM,cAAc,IAAI,OAAO,MAAM;AAI3C,gBAAQ,OAAO,GAAG,IAAI,KAAK,QAAQ,CAAC;AAAA,MACtC;AAAA,IACF,SAAS,GAAG;AACV,cAAQ,MAAM,oCAAoC,SAAS,KAAK,CAAC;AAAA,IACnE;AAEA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SACJ,IACA,QACA,YAAY,OACZ,aAC8B;AAC9B,UAAM,gBAAgB,gBAAgB,KAAK,OAAO,OAAO;AACzD,QAAI,gBAAwB,cAAc;AAE1C,QAAI,cAAc,OAAO;AACvB,UAAI,UAAU,WAAW,GAAG,KAAK,UAAU,WAAW,IAAI;AACxD,wBAAgB;AAAA,MAClB,WAAW,UAAU,SAAS,GAAG,GAAG;AAClC,cAAM,CAAC,MAAM,MAAM,IAAI,UAAU,MAAM,GAAG;AAC1C,cAAM,QAAQ,IAAI,MAAM,MAAM,MAAM;AACpC,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,WAAW,aAAa;AACtB,cAAM,QAAQ,IAAI,MAAM,WAAW,WAAW;AAC9C,wBAAgB,MAAM,WAAW,cAAc,iBAAiB;AAAA,MAClE,OAAO;AACL,cAAM,IAAI;AAAA,UACR;AAAA,QACF;AAAA,MACF;AAAA,IACF;AAEA,UAAM,YAAY,OAAO,WAAW,WAAW,WAAW,MAAM,IAAI;AAGpE,UAAM,SAAS,MAAM,KAAK,IAAI,SAAS,eAAsB,IAAI,SAAS;AAE1E,WAAO;AAAA,MACL,MAAM,OAAO;AAAA,MACb,SAAS,OAAO;AAAA,IAClB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,aAA4B;AAChC,UAAM,KAAK,IAAI,WAAW;AAC1B,SAAK,iBAAiB;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,mBAAkC;AA0ChC,WAAO,KAAK,kBAAmB,KAAK,IAAY,WAAW;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eACJ,SAC4B;AAC5B,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,EAAE,aAAa,IAAI,MAAM,KAAK,IAAI,QAAQ;AAAA,MAC9C;AAAA;AAAA,MACA,QAAQ;AAAA,MACR,QAAQ;AAAA,MACR,EAAE,UAAU,QAAQ,SAAS;AAAA,IAC/B;AAEA,WAAO,EAAE,aAAa;AAAA,EACxB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBAAiB,cAAqC;AAC1D,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAEA,UAAM,KAAK,IAAI,QAAQ,cAAc,GAAG,YAAY;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA,EAKA,QACE,OACA,SACY;AACZ,UAAM,cAAoC;AAAA,MACxC;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAEA,QAAI,CAAC,YAAY,SAAS,KAAK,GAAG;AAEhC,cAAQ,KAAK,gCAAgC,KAAK,GAAG;AACrD,aAAO,MAAM;AAAA,MAAC;AAAA,IAChB;AAGA,SAAK,IAAI,OAAO,GAAG,OAAO,OAAc;AAExC,WAAO,MAAM;AAEX,WAAK,IAAI,OAAO,IAAI,OAAO,OAAc;AAAA,IAC3C;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,uBAAuB,SAMO;AAElC,QAAI,CAAC,KAAK,iBAAiB,GAAG;AAC5B,YAAM,IAAI,wBAAwB,2BAA2B;AAAA,IAC/D;AAGA,UAAM,UAAU,SAAS,WAAW,QAAQ,OAAO;AACnD,UAAM,WAAW,QAAQ,UAAU;AACnC,UAAM,YAAY,QAAQ,OAAO;AAIjC,UAAM,KAAK,IAAI,QAAQ;AAAA,MACrB;AAAA;AAAA,MACA;AAAA,IACF;AAGA,QAAI,YAAY;AAChB,QAAI,SAAS,YAAY,KAAK,OAAO,YAAY,WAAW;AAC1D,UAAI;AACF,cAAM,MAAM,sCAAsC,QAAQ,EAAE;AAC5D,oBAAY;AAAA,MACd,SAAS,GAAG;AACV,gBAAQ,KAAK,6BAA6B,CAAC;AAAA,MAC7C;AAAA,IACF;AAEA,WAAO,EAAE,UAAU,WAAW,UAAU;AAAA,EAC1C;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,sBAA8C;AAClD,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,QAAS,QAAO;AAKrB,UAAM,KAAK,MAAM,KAAK,IAAI,MAAM,IAAI,CAAC;AACrC,UAAM,MAAM,MAAM,GAAG,SAAS;AAC9B,UAAM,OAAO,IAAI;AAEjB,QAAI,CAAC,QAAQ,CAAC,KAAK,QAAS,QAAO;AAMnC,UAAM,kBAAkB,KAAK,QAAQ;AAAA,MACnC,CAAC,MAAW,EAAE,QAAQ;AAAA,IACxB;AAEA,WAAO,kBAAkB,gBAAgB,OAAO,CAAC,IAAI;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,uBAAuB,UAAiC;AAC5D,UAAM,UAAU,KAAK,iBAAiB;AACtC,QAAI,CAAC,SAAS;AACZ,YAAM,IAAI,wBAAwB,0BAA0B;AAAA,IAC9D;AAIA,UAAM,SAAS,EAAE,KAAK,aAAa,QAAQ,CAAC,QAAQ,EAAE;AACtD,UAAM,KAAK,IAAI,QAAQ,OAAO,GAAG,MAAa;AAAA,EAChD;AACF;;;AGrlBO,SAAS,uBAAuB,MAAuB;AAC5D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,sBAAsB,MAAuB;AAC3D,SAAO,OAAO,SAAS,YAAY,KAAK,WAAW,MAAM,KAAK,WAAW,GAAG;AAC9E;AAKO,SAAS,MAAM,IAA2B;AAC/C,SAAO,IAAI,QAAQ,CAAC,YAAY,WAAW,SAAS,EAAE,CAAC;AACzD;;;ACfA;AAAA,EACE,qBAAAA;AAAA,EACA,2BAAAC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;","names":["SmartAccountError","WalletNotConnectedError"]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@boundlessfi/identity-sdk",
-  "version": "0.1.7",
+  "version": "0.1.8",
   "private": false,
   "type": "module",
   "main": "./dist/index.cjs",

package/src/boundless-sdk.ts

@@ -13,6 +13,7 @@ import {
   TransactionBuilder,
   scValToNative,
   TimeoutInfinite,
+  Keypair,
 } from "@stellar/stellar-sdk";
 import type { AssembledTransaction } from "smart-account-kit";
 import { createAuthClient } from "better-auth/client";
@@ -29,10 +30,11 @@ import type {
   RecoveryKeyResult,
   BoundlessEventName,
   BoundlessEventHandler,
+  DelegatedAccountResult,
 } from "./types";
 
 // Valid G-address for simulation source (USDC Issuer)
-const DUMMY_SOURCE = "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5";
+const DUMMY_SOURCE = NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;
 
 export class BoundlessSDK {
   private config: BoundlessSdkConfig;
@@ -507,4 +509,94 @@ export class BoundlessSDK {
       this.kit.events.off(event, handler as any);
     };
   }
+
+  /**
+   * Creates a G-address that the Smart Account can control.
+   * This G-address can be used with TrustlessWork and other APIs
+   * that require classic Stellar accounts.
+   *
+   * The Smart Account adds the G-address as a delegated signer on
+   * the default context rule (contextRuleId: 0).
+   */
+  async createDelegatedAccount(options?: {
+    /** If true, fund the G-address via Friendbot (testnet only) */
+    autoFund?: boolean;
+
+    /** Optional: provide your own keypair instead of generating one */
+    keypair?: Keypair;
+  }): Promise<DelegatedAccountResult> {
+    // 1. Ensure wallet is connected
+    if (!this.getWalletAddress()) {
+      throw new WalletNotConnectedError("Must connect wallet first");
+    }
+
+    // 2. Generate or use provided keypair
+    const keypair = options?.keypair || Keypair.random();
+    const gAddress = keypair.publicKey();
+    const secretKey = keypair.secret();
+
+    // 3. Add the G-address as a delegated signer on the Smart Account
+    // This uses smart-account-kit's kit.signers.addDelegated()
+    await this.kit.signers.addDelegated(
+      0, // context rule ID (default rule)
+      gAddress,
+    );
+
+    // 4. Fund the G-address (testnet only)
+    let activated = false;
+    if (options?.autoFund && this.config.network === "testnet") {
+      try {
+        await fetch(`https://friendbot.stellar.org?addr=${gAddress}`);
+        activated = true;
+      } catch (e) {
+        console.warn("Friendbot funding failed:", e);
+      }
+    }
+
+    return { gAddress, secretKey, activated };
+  }
+
+  /**
+   * Retrieves the G-address currently delegated by the Smart Account.
+   * Returns null if no delegated account exists.
+   */
+  async getDelegatedAccount(): Promise<string | null> {
+    const address = this.getWalletAddress();
+    if (!address) return null;
+
+    // Fetch the account state to check signers
+    // SmartAccountKit maintains the account state.
+    // We check the signers on rule 0.
+    const tx = await this.kit.rules.get(0);
+    const sim = await tx.simulate();
+    const rule = sim.result;
+
+    if (!rule || !rule.signers) return null;
+
+    // isDelegatedSigner and other builders are available via kit.builders or direct import
+    // Since we don't have direct import of builders yet, let's use the any cast for now
+    // or better, check the tag manually if we know the structure.
+    // Based on builders.d.ts, a delegated signer has { tag: "Delegated", values: [string] }
+    const delegatedSigner = rule.signers.find(
+      (s: any) => s.tag === "Delegated",
+    ) as any;
+
+    return delegatedSigner ? delegatedSigner.values[0] : null;
+  }
+
+  /**
+   * Removes a delegated G-address from the Smart Account's signer list.
+   * After this, the G-address can no longer act on behalf of the Smart Account.
+   */
+  async removeDelegatedAccount(gAddress: string): Promise<void> {
+    const address = this.getWalletAddress();
+    if (!address) {
+      throw new WalletNotConnectedError("Wallet must be connected");
+    }
+
+    // We need to create a Signer object for removal.
+    // We can use the manual structure { tag: 'Delegated', values: [gAddress] }
+    const signer = { tag: "Delegated", values: [gAddress] };
+    await this.kit.signers.remove(0, signer as any);
+  }
 }

package/src/constants.ts

@@ -17,6 +17,8 @@ export const NETWORK_CONFIGS = {
         "CBYDQ5XUBP7G24FI3LLGLW56QZCIEUSVRPX7FVOUCKHJQQ6DTF6BQGBZ",
     },
     relayerUrl: "",
+    trustlessWorkUsdcIssuer:
+      "GBBD47IF6LWK7P7MDEVSCWR7DPUWV3NY3DTQEVFL4NAT4AQH3ZLLFLA5",
   },
   mainnet: {
     networkPassphrase: "Public Global Stellar Network ; September 2015",
@@ -31,7 +33,17 @@ export const NETWORK_CONFIGS = {
       weightedThreshold: "REPLACE_WITH_MAINNET_POLICY",
     },
     relayerUrl: "",
+    trustlessWorkUsdcIssuer:
+      "GA5ZSEJYB37JRC5AVCIA5MOP4RHTM335X2KGX3IHOJAPP5RE34K4KZVN",
   },
 } as const;
 
+/** TrustlessWork testnet USDC issuer */
+export const TRUSTLESSWORK_USDC_TESTNET =
+  NETWORK_CONFIGS.testnet.trustlessWorkUsdcIssuer;
+
+/** TrustlessWork mainnet USDC issuer */
+export const TRUSTLESSWORK_USDC_MAINNET =
+  NETWORK_CONFIGS.mainnet.trustlessWorkUsdcIssuer;
+
 export type NetworkName = keyof typeof NETWORK_CONFIGS;

package/src/types.ts

@@ -61,6 +61,19 @@ export interface RecoveryKeyResult {
   credentialId: string;
 }
 
+// ── delegated account (bridge) ──────────────────────────────────
+
+export interface DelegatedAccountResult {
+  /** The G-address of the newly created delegated account */
+  gAddress: string;
+
+  /** The secret key (only returned once — store securely or discard) */
+  secretKey: string;
+
+  /** Whether the account was funded and activated on-chain */
+  activated: boolean;
+}
+
 // ── events ──────────────────────────────────────────────────────
 
 export type BoundlessEventName =