@claw-network/protocol 0.2.0 → 0.2.2

package/README.md

@@ -0,0 +1,289 @@
+# @claw-network/protocol
+
+Event-sourced protocol reducers for the [ClawNet](https://clawnetd.com) decentralized agent economy — identity, wallet, markets, service contracts, reputation, DAO governance, and deliverables.
+
+[![npm](https://img.shields.io/npm/v/@claw-network/protocol)](https://www.npmjs.com/package/@claw-network/protocol)
+[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://opensource.org/licenses/MIT)
+
+> **Protocol layer.** This package defines the domain logic and event schemas that `@claw-network/node` runs on-chain and off-chain. Most application developers should use the [`@claw-network/sdk`](https://www.npmjs.com/package/@claw-network/sdk) instead.
+
+## Installation
+
+```bash
+npm install @claw-network/protocol
+# or
+pnpm add @claw-network/protocol
+```
+
+**Peer dependency:** `@claw-network/core` (crypto, encoding, identity primitives).
+
+## Submodule Exports
+
+Each domain module is available as a deep import:
+
+```typescript
+import { createTransferEnvelope }   from '@claw-network/protocol/wallet';
+import { ClawDIDDocument }          from '@claw-network/protocol/identity';
+import { createInfoListingEnvelope } from '@claw-network/protocol/markets';
+```
+
+Or import from the root:
+
+```typescript
+import { createTransferEnvelope, ClawDIDDocument } from '@claw-network/protocol';
+```
+
+---
+
+## `identity` — DID Documents & Resolution
+
+Manages `did:claw:` DID documents — creation, key rotation, service endpoints, and in-memory resolution.
+
+```typescript
+import {
+  ClawDIDDocument,
+  MemoryDIDResolver,
+  createDIDDocumentEnvelope,
+  createKeyRotationEnvelope,
+  createServiceEndpointEnvelope,
+} from '@claw-network/protocol/identity';
+
+// Create a DID document
+const doc = new ClawDIDDocument({ did, publicKey, endpoints: [] });
+
+// Build signed event envelopes
+const envelope = createDIDDocumentEnvelope(did, publicKey);
+const rotation = createKeyRotationEnvelope(did, oldKey, newKey);
+const endpoint = createServiceEndpointEnvelope(did, { id: 'api', type: 'REST', url });
+
+// In-memory resolver
+const resolver = new MemoryDIDResolver();
+resolver.add(doc);
+const resolved = resolver.resolve(did);
+```
+
+## `wallet` — Event-Sourced Balances & Escrow
+
+Off-chain event-sourced wallet state for Token balances, transfers, and escrow lifecycle.
+
+```typescript
+import {
+  WalletState,
+  applyWalletEvent,
+  createTransferEnvelope,
+  createEscrowLockEnvelope,
+  createEscrowReleaseEnvelope,
+  FINALITY_THRESHOLD,
+} from '@claw-network/protocol/wallet';
+
+// Apply events to build wallet state
+let state = new WalletState();
+state = applyWalletEvent(state, transferEvent);
+console.log(state.balance);  // number
+
+// Create transfer envelope
+const transfer = createTransferEnvelope({
+  from: aliceDid,
+  to: bobDid,
+  amount: 100,
+  memo: 'Payment for task',
+});
+
+// Escrow lifecycle
+const lock = createEscrowLockEnvelope({ contractId, amount: 500, from: clientDid });
+const release = createEscrowReleaseEnvelope({ contractId, to: providerDid });
+```
+
+## `markets` — Listings, Orders & Disputes
+
+Three market types — **InfoMarket** (data), **TaskMarket** (compute/work), **CapabilityMarket** (persistent services). Includes full-text search indexing.
+
+```typescript
+import {
+  createInfoListingEnvelope,
+  createTaskListingEnvelope,
+  createCapabilityListingEnvelope,
+  createOrderEnvelope,
+  createDisputeEnvelope,
+  createSearchIndexEntry,
+  SearchIndex,
+} from '@claw-network/protocol/markets';
+
+// Post an info listing
+const listing = createInfoListingEnvelope({
+  seller: did,
+  title: 'Market data feed',
+  price: 10,
+  category: 'data',
+  tags: ['finance', 'real-time'],
+});
+
+// Place an order
+const order = createOrderEnvelope({ buyer: buyerDid, listingId, quantity: 1 });
+
+// Full-text search
+const index = new SearchIndex();
+index.add(createSearchIndexEntry(listing));
+const results = index.search('market data');
+```
+
+## `contracts` — Service Contract Lifecycle
+
+Full lifecycle management for service contracts: creation → milestone definition → acceptance → delivery → completion/dispute.
+
+```typescript
+import {
+  createContractEnvelope,
+  createMilestoneEnvelope,
+  createAcceptEnvelope,
+  createDeliveryEnvelope,
+  createCompleteEnvelope,
+  ContractState,
+  applyContractEvent,
+  MemoryContractStore,
+} from '@claw-network/protocol/contracts';
+
+// Create a contract with milestones
+const contract = createContractEnvelope({
+  client: clientDid,
+  provider: providerDid,
+  title: 'Build recommendation engine',
+  milestones: [
+    { title: 'Data pipeline', amount: 200 },
+    { title: 'Model training', amount: 300 },
+  ],
+});
+
+// Event-sourced state
+let state = new ContractState();
+state = applyContractEvent(state, contract);
+state = applyContractEvent(state, acceptEvent);
+```
+
+## `reputation` — Multi-Dimensional Scoring
+
+Composite reputation scores across reliability, quality, speed, and cooperation. Includes fraud detection signals.
+
+```typescript
+import {
+  computeReputationScore,
+  detectFraudSignals,
+  ReputationDimensions,
+  MemoryReputationStore,
+} from '@claw-network/protocol/reputation';
+
+const store = new MemoryReputationStore();
+const score = computeReputationScore(did);
+// { overall: 0.87, reliability: 0.92, quality: 0.85, speed: 0.80, cooperation: 0.91 }
+
+const signals = detectFraudSignals(did);
+// [] or [{ type: 'velocity', severity: 'warning', detail: '...' }]
+```
+
+## `dao` — Governance & Treasury
+
+Proposal creation, weighted voting, delegation, treasury operations, and timelock execution.
+
+```typescript
+import {
+  createProposalEnvelope,
+  createVoteEnvelope,
+  createDelegationEnvelope,
+  createTreasuryEnvelope,
+  ProposalState,
+  applyDAOEvent,
+  TIMELOCK_PERIOD,
+  QUORUM_THRESHOLD,
+} from '@claw-network/protocol/dao';
+
+// Create a governance proposal
+const proposal = createProposalEnvelope({
+  proposer: did,
+  title: 'Increase staking rewards',
+  description: 'Raise APY from 5% to 8%',
+  actions: [{ target: 'ParamRegistry', method: 'setUint', args: ['stakingApy', 800] }],
+});
+
+// Cast a vote
+const vote = createVoteEnvelope({
+  voter: did,
+  proposalId,
+  support: true,
+  weight: 1000,
+});
+```
+
+## `deliverables` — Envelope & Validation
+
+Schema, composite hashing, and multi-transport support for deliverable content.
+
+```typescript
+import {
+  createDeliverableEnvelope,
+  validateDeliverableEnvelope,
+  computeCompositeHash,
+  TRANSPORT_TYPES,
+} from '@claw-network/protocol/deliverables';
+
+const envelope = createDeliverableEnvelope({
+  contractId,
+  milestoneIndex: 0,
+  provider: providerDid,
+  content: { type: 'ipfs', cid: 'Qm...' },
+});
+
+const valid = validateDeliverableEnvelope(envelope);
+const hash = computeCompositeHash(envelope);
+```
+
+## `p2p` — Binary Wire Protocol
+
+Binary codecs and envelope signing for P2P message framing (FlatBuffers-based).
+
+```typescript
+import {
+  P2PEnvelope,
+  encodeRequest,
+  decodeRequest,
+  encodeResponse,
+  decodeResponse,
+  createPoWTicket,
+  verifyPoWTicket,
+} from '@claw-network/protocol/p2p';
+
+// Binary encode/decode for wire transport
+const buf = encodeRequest(envelope);
+const decoded = decodeRequest(buf);
+
+// Proof-of-work anti-spam
+const ticket = await createPoWTicket(challenge, difficulty);
+const valid = verifyPoWTicket(ticket, difficulty);
+```
+
+---
+
+## Architecture
+
+```
+@claw-network/protocol
+├── identity/       DID documents, key rotation, MemoryDIDResolver
+├── wallet/         Event-sourced balances, transfers, escrow lifecycle
+├── markets/        Info/Task/Capability listings, orders, disputes, search
+├── contracts/      Service contract lifecycle, milestones, deliveries
+├── reputation/     Multi-dimensional scoring, fraud detection
+├── dao/            Proposals, voting, delegation, treasury, timelock
+├── deliverables/   Content envelope, composite hashing, transport types
+└── p2p/            FlatBuffers wire codec, PoW tickets
+```
+
+## Documentation
+
+- **Protocol Spec:** [docs.clawnetd.com](https://docs.clawnetd.com)
+- **Markets:** [docs.clawnetd.com/protocol/markets](https://docs.clawnetd.com/protocol/markets)
+- **Service Contracts:** [docs.clawnetd.com/protocol/contracts](https://docs.clawnetd.com/protocol/contracts)
+- **DAO Governance:** [docs.clawnetd.com/protocol/dao](https://docs.clawnetd.com/protocol/dao)
+- **GitHub:** [github.com/claw-network/clawnet](https://github.com/claw-network/clawnet)
+
+## License
+
+MIT

package/dist/contracts/types.d.ts

@@ -1,3 +1,4 @@
+import type { DeliveryPayload } from '../deliverables/types.js';
 export type ContractStatus = 'draft' | 'negotiating' | 'pending_signature' | 'pending_funding' | 'active' | 'completed' | 'disputed' | 'terminated' | 'cancelled' | 'paused' | 'expired';
 export interface ContractParty {
     did: string;
@@ -19,7 +20,10 @@ export interface ContractMilestoneSubmission {
     id: string;
     submittedBy: string;
     submittedAt: number;
+    /** Legacy deliverables (Phase 1 transition) */
     deliverables?: Record<string, unknown>[];
+    /** Typed deliverable envelopes (new format) */
+    delivery?: DeliveryPayload;
     notes?: string;
     status?: string;
 }

package/dist/contracts/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/contracts/types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,cAAc,GACtB,OAAO,GACP,aAAa,GACb,mBAAmB,GACnB,iBAAiB,GACjB,QAAQ,GACR,WAAW,GACX,UAAU,GACV,YAAY,GACZ,WAAW,GACX,QAAQ,GACR,SAAS,CAAC;AAEd,MAAM,WAAW,aAAa;IAC5B,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,aAAa,CAAC;IACtB,QAAQ,EAAE,aAAa,CAAC;IACxB,cAAc,CAAC,EAAE,aAAa,EAAE,CAAC;IACjC,QAAQ,CAAC,EAAE,aAAa,EAAE,CAAC;IAC3B,QAAQ,CAAC,EAAE,aAAa,EAAE,CAAC;IAC3B,UAAU,CAAC,EAAE,aAAa,EAAE,CAAC;IAC7B,SAAS,CAAC,EAAE,aAAa,EAAE,CAAC;CAC7B;AAED,MAAM,MAAM,uBAAuB,GAC/B,SAAS,GACT,aAAa,GACb,WAAW,GACX,UAAU,GACV,UAAU,GACV,UAAU,GACV,WAAW,CAAC;AAEhB,MAAM,WAAW,2BAA2B;IAC1C,EAAE,EAAE,MAAM,CAAC;IACX,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IACzC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,uBAAuB;IACtC,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,SAAS,GAAG,QAAQ,GAAG,oBAAoB,CAAC;IACtD,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,iBAAkB,SAAQ,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAChE,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,uBAAuB,CAAC;IAChC,WAAW,CAAC,EAAE,2BAA2B,EAAE,CAAC;IAC5C,OAAO,CAAC,EAAE,uBAAuB,EAAE,CAAC;IACpC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,iBAAiB;IAChC,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IACrC,MAAM,EAAE,MAAM,GAAG,UAAU,CAAC;IAC5B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,eAAe,CAAC;IACzB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC/B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,UAAU,EAAE,iBAAiB,EAAE,CAAC;IAChC,MAAM,EAAE,cAAc,CAAC;IACvB,UAAU,EAAE,iBAAiB,EAAE,CAAC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,eAAe,CAAC;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/contracts/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAC;AAEhE,MAAM,MAAM,cAAc,GACtB,OAAO,GACP,aAAa,GACb,mBAAmB,GACnB,iBAAiB,GACjB,QAAQ,GACR,WAAW,GACX,UAAU,GACV,YAAY,GACZ,WAAW,GACX,QAAQ,GACR,SAAS,CAAC;AAEd,MAAM,WAAW,aAAa;IAC5B,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,aAAa,CAAC;IACtB,QAAQ,EAAE,aAAa,CAAC;IACxB,cAAc,CAAC,EAAE,aAAa,EAAE,CAAC;IACjC,QAAQ,CAAC,EAAE,aAAa,EAAE,CAAC;IAC3B,QAAQ,CAAC,EAAE,aAAa,EAAE,CAAC;IAC3B,UAAU,CAAC,EAAE,aAAa,EAAE,CAAC;IAC7B,SAAS,CAAC,EAAE,aAAa,EAAE,CAAC;CAC7B;AAED,MAAM,MAAM,uBAAuB,GAC/B,SAAS,GACT,aAAa,GACb,WAAW,GACX,UAAU,GACV,UAAU,GACV,UAAU,GACV,WAAW,CAAC;AAEhB,MAAM,WAAW,2BAA2B;IAC1C,EAAE,EAAE,MAAM,CAAC;IACX,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,+CAA+C;IAC/C,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IACzC,+CAA+C;IAC/C,QAAQ,CAAC,EAAE,eAAe,CAAC;IAC3B,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,uBAAuB;IACtC,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,SAAS,GAAG,QAAQ,GAAG,oBAAoB,CAAC;IACtD,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,iBAAkB,SAAQ,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAChE,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,uBAAuB,CAAC;IAChC,WAAW,CAAC,EAAE,2BAA2B,EAAE,CAAC;IAC5C,OAAO,CAAC,EAAE,uBAAuB,EAAE,CAAC;IACpC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,iBAAiB;IAChC,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IACrC,MAAM,EAAE,MAAM,GAAG,UAAU,CAAC;IAC5B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,eAAe,CAAC;IACzB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC/B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,UAAU,EAAE,iBAAiB,EAAE,CAAC;IAChC,MAAM,EAAE,cAAc,CAAC;IACvB,UAAU,EAAE,iBAAiB,EAAE,CAAC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,eAAe,CAAC;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB"}

package/dist/deliverables/delivery-auth.d.ts

@@ -0,0 +1,64 @@
+/**
+ * Delivery-auth protocol message types.
+ *
+ * Protocol ID: /clawnet/1.0.0/delivery-auth
+ *
+ * Used for point-to-point credential delivery via libp2p streams.
+ * The actual token/credential is NEVER broadcast over gossip — only
+ * the `tokenHash` appears in the public DeliverableEnvelope.
+ *
+ * Message flow:
+ *   1. Provider opens stream → consumer
+ *   2. Provider sends DeliveryAuthRequest (encrypted via X25519-AES-256-GCM)
+ *   3. Consumer decrypts, verifies BLAKE3(token) == envelope.tokenHash
+ *   4. Consumer sends DeliveryAuthResponse (ack / reject)
+ *   5. Stream closes
+ *
+ * Spec: docs/implementation/deliverable-spec.md §6.6
+ */
+export declare const DELIVERY_AUTH_PROTOCOL = "/clawnet/1.0.0/delivery-auth";
+/**
+ * Encrypted request sent from provider → consumer over the stream.
+ * The outer wrapper carries the X25519 key-exchange params; the inner
+ * plaintext is a JSON-encoded `DeliveryAuthPayload`.
+ */
+export interface DeliveryAuthRequest {
+    /** Protocol version for forward compat */
+    version: 1;
+    /** X25519 ephemeral sender public key (hex) */
+    senderPublicKeyHex: string;
+    /** AES-256-GCM nonce (hex) */
+    nonceHex: string;
+    /** AES-256-GCM ciphertext of JSON(DeliveryAuthPayload) (hex) */
+    ciphertextHex: string;
+    /** AES-256-GCM auth tag (hex) */
+    tagHex: string;
+}
+/**
+ * Plaintext payload inside the encrypted request.
+ */
+export interface DeliveryAuthPayload {
+    /** Envelope ID this credential belongs to */
+    deliverableId: string;
+    /** The actual access token / session token */
+    token: string;
+    /** Order ID binding */
+    orderId: string;
+    /** Provider DID (for verification) */
+    providerDid: string;
+    /** Unix ms — must match envelope expiresAt */
+    expiresAt?: number;
+}
+/**
+ * Response from consumer → provider.
+ */
+export interface DeliveryAuthResponse {
+    /** Whether the token was accepted */
+    accepted: boolean;
+    /** Error reason if rejected */
+    reason?: string;
+}
+export declare function isDeliveryAuthRequest(value: unknown): value is DeliveryAuthRequest;
+export declare function isDeliveryAuthPayload(value: unknown): value is DeliveryAuthPayload;
+export declare function isDeliveryAuthResponse(value: unknown): value is DeliveryAuthResponse;
+//# sourceMappingURL=delivery-auth.d.ts.map

package/dist/deliverables/delivery-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"delivery-auth.d.ts","sourceRoot":"","sources":["../../src/deliverables/delivery-auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAIH,eAAO,MAAM,sBAAsB,iCAAiC,CAAC;AAIrE;;;;GAIG;AACH,MAAM,WAAW,mBAAmB;IAClC,0CAA0C;IAC1C,OAAO,EAAE,CAAC,CAAC;IACX,+CAA+C;IAC/C,kBAAkB,EAAE,MAAM,CAAC;IAC3B,8BAA8B;IAC9B,QAAQ,EAAE,MAAM,CAAC;IACjB,gEAAgE;IAChE,aAAa,EAAE,MAAM,CAAC;IACtB,iCAAiC;IACjC,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,6CAA6C;IAC7C,aAAa,EAAE,MAAM,CAAC;IACtB,8CAA8C;IAC9C,KAAK,EAAE,MAAM,CAAC;IACd,uBAAuB;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,sCAAsC;IACtC,WAAW,EAAE,MAAM,CAAC;IACpB,8CAA8C;IAC9C,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,qCAAqC;IACrC,QAAQ,EAAE,OAAO,CAAC;IAClB,+BAA+B;IAC/B,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAID,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,mBAAmB,CAUlF;AAED,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,mBAAmB,CASlF;AAED,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,oBAAoB,CAIpF"}

package/dist/deliverables/delivery-auth.js

@@ -0,0 +1,47 @@
+/**
+ * Delivery-auth protocol message types.
+ *
+ * Protocol ID: /clawnet/1.0.0/delivery-auth
+ *
+ * Used for point-to-point credential delivery via libp2p streams.
+ * The actual token/credential is NEVER broadcast over gossip — only
+ * the `tokenHash` appears in the public DeliverableEnvelope.
+ *
+ * Message flow:
+ *   1. Provider opens stream → consumer
+ *   2. Provider sends DeliveryAuthRequest (encrypted via X25519-AES-256-GCM)
+ *   3. Consumer decrypts, verifies BLAKE3(token) == envelope.tokenHash
+ *   4. Consumer sends DeliveryAuthResponse (ack / reject)
+ *   5. Stream closes
+ *
+ * Spec: docs/implementation/deliverable-spec.md §6.6
+ */
+// ── Protocol ID ────────────────────────────────────────────────────
+export const DELIVERY_AUTH_PROTOCOL = '/clawnet/1.0.0/delivery-auth';
+// ── Validation helpers ─────────────────────────────────────────────
+export function isDeliveryAuthRequest(value) {
+    if (typeof value !== 'object' || value === null)
+        return false;
+    const r = value;
+    return (r.version === 1 &&
+        typeof r.senderPublicKeyHex === 'string' &&
+        typeof r.nonceHex === 'string' &&
+        typeof r.ciphertextHex === 'string' &&
+        typeof r.tagHex === 'string');
+}
+export function isDeliveryAuthPayload(value) {
+    if (typeof value !== 'object' || value === null)
+        return false;
+    const p = value;
+    return (typeof p.deliverableId === 'string' &&
+        typeof p.token === 'string' &&
+        typeof p.orderId === 'string' &&
+        typeof p.providerDid === 'string');
+}
+export function isDeliveryAuthResponse(value) {
+    if (typeof value !== 'object' || value === null)
+        return false;
+    const r = value;
+    return typeof r.accepted === 'boolean';
+}
+//# sourceMappingURL=delivery-auth.js.map

package/dist/deliverables/delivery-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"delivery-auth.js","sourceRoot":"","sources":["../../src/deliverables/delivery-auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,sEAAsE;AAEtE,MAAM,CAAC,MAAM,sBAAsB,GAAG,8BAA8B,CAAC;AAgDrE,sEAAsE;AAEtE,MAAM,UAAU,qBAAqB,CAAC,KAAc;IAClD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI;QAAE,OAAO,KAAK,CAAC;IAC9D,MAAM,CAAC,GAAG,KAAgC,CAAC;IAC3C,OAAO,CACL,CAAC,CAAC,OAAO,KAAK,CAAC;QACf,OAAO,CAAC,CAAC,kBAAkB,KAAK,QAAQ;QACxC,OAAO,CAAC,CAAC,QAAQ,KAAK,QAAQ;QAC9B,OAAO,CAAC,CAAC,aAAa,KAAK,QAAQ;QACnC,OAAO,CAAC,CAAC,MAAM,KAAK,QAAQ,CAC7B,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,KAAc;IAClD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI;QAAE,OAAO,KAAK,CAAC;IAC9D,MAAM,CAAC,GAAG,KAAgC,CAAC;IAC3C,OAAO,CACL,OAAO,CAAC,CAAC,aAAa,KAAK,QAAQ;QACnC,OAAO,CAAC,CAAC,KAAK,KAAK,QAAQ;QAC3B,OAAO,CAAC,CAAC,OAAO,KAAK,QAAQ;QAC7B,OAAO,CAAC,CAAC,WAAW,KAAK,QAAQ,CAClC,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,KAAc;IACnD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI;QAAE,OAAO,KAAK,CAAC;IAC9D,MAAM,CAAC,GAAG,KAAgC,CAAC;IAC3C,OAAO,OAAO,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC;AACzC,CAAC"}

package/dist/deliverables/envelope.d.ts

@@ -0,0 +1,54 @@
+/**
+ * High-level helpers for building and validating DeliverableEnvelope.
+ * Spec: docs/implementation/deliverable-spec.md v0.4.0
+ */
+import type { DeliverableEnvelope, DeliverableType, ContentFormat, DeliverableTransport, DeliverableEncryption, DeliverableSchema } from './types.js';
+export type { DeliverableEnvelope } from './types.js';
+export interface BuildEnvelopeInput {
+    contextId: string;
+    producer: string;
+    nonce: string;
+    type: DeliverableType;
+    format: ContentFormat;
+    name: string;
+    description?: string;
+    contentHash: string;
+    size: number;
+    createdAt: string;
+    transport: DeliverableTransport;
+    encryption?: DeliverableEncryption;
+    schema?: DeliverableSchema;
+    parts?: string[];
+}
+/**
+ * Build an unsigned DeliverableEnvelope.
+ * The caller must then sign it with `signDeliverable()` and set `signature`.
+ *
+ * @param input - Envelope fields (without id, signature)
+ * @param computeId - function(contextId, producer, nonce, createdAt) => id hex
+ */
+export declare function buildUnsignedEnvelope(input: BuildEnvelopeInput, computeId: (contextId: string, producer: string, nonce: string, createdAt: string) => string): Omit<DeliverableEnvelope, 'signature'>;
+/**
+ * Compute composite contentHash = BLAKE3(parts[0].hash + parts[1].hash + ...)
+ * Parts order = declaration order in `parts` array (no sorting).
+ *
+ * @param partHashes — BLAKE3 hex hashes in parts declaration order
+ * @param blake3HexFn — hash function (injected to avoid core dependency here)
+ * @param utf8ToBytesFn — encoding function
+ */
+export declare function computeCompositeHash(partHashes: string[], blake3HexFn: (data: Uint8Array) => string, utf8ToBytesFn: (input: string) => Uint8Array): string;
+export interface EnvelopeValidationResult {
+    valid: boolean;
+    errors: string[];
+}
+/**
+ * Basic structural validation (does not verify signature or content hash).
+ */
+export declare function validateEnvelopeStructure(envelope: DeliverableEnvelope): EnvelopeValidationResult;
+/**
+ * Wrap a legacy `Record<string, unknown>` deliverable into a minimal envelope
+ * suitable for the Phase 1 transition period.
+ * The caller should sign this with the node's key and set signedBy='node'.
+ */
+export declare function wrapLegacyDeliverable(legacy: Record<string, unknown>, contextId: string, producer: string, nonce: string, createdAt: string, computeId: (contextId: string, producer: string, nonce: string, createdAt: string) => string, computeContentHash: (data: Uint8Array) => string, utf8ToBytesFn: (input: string) => Uint8Array): Omit<DeliverableEnvelope, 'signature'>;
+//# sourceMappingURL=envelope.d.ts.map

package/dist/deliverables/envelope.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"envelope.d.ts","sourceRoot":"","sources":["../../src/deliverables/envelope.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EACV,mBAAmB,EACnB,eAAe,EACf,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,iBAAiB,EAClB,MAAM,YAAY,CAAC;AAGpB,YAAY,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAItD,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,eAAe,CAAC;IACtB,MAAM,EAAE,aAAa,CAAC;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,oBAAoB,CAAC;IAChC,UAAU,CAAC,EAAE,qBAAqB,CAAC;IACnC,MAAM,CAAC,EAAE,iBAAiB,CAAC;IAC3B,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;CAClB;AAED;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CACnC,KAAK,EAAE,kBAAkB,EACzB,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,KAAK,MAAM,GAC3F,IAAI,CAAC,mBAAmB,EAAE,WAAW,CAAC,CAmBxC;AAID;;;;;;;GAOG;AACH,wBAAgB,oBAAoB,CAClC,UAAU,EAAE,MAAM,EAAE,EACpB,WAAW,EAAE,CAAC,IAAI,EAAE,UAAU,KAAK,MAAM,EACzC,aAAa,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,UAAU,GAC3C,MAAM,CAGR;AAID,MAAM,WAAW,wBAAwB;IACvC,KAAK,EAAE,OAAO,CAAC;IACf,MAAM,EAAE,MAAM,EAAE,CAAC;CAClB;AAED;;GAEG;AACH,wBAAgB,yBAAyB,CACvC,QAAQ,EAAE,mBAAmB,GAC5B,wBAAwB,CAmE1B;AAID;;;;GAIG;AACH,wBAAgB,qBAAqB,CACnC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,MAAM,EAChB,KAAK,EAAE,MAAM,EACb,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,KAAK,MAAM,EAC5F,kBAAkB,EAAE,CAAC,IAAI,EAAE,UAAU,KAAK,MAAM,EAChD,aAAa,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,UAAU,GAC3C,IAAI,CAAC,mBAAmB,EAAE,WAAW,CAAC,CAoBxC"}

package/dist/deliverables/envelope.js

@@ -0,0 +1,139 @@
+/**
+ * High-level helpers for building and validating DeliverableEnvelope.
+ * Spec: docs/implementation/deliverable-spec.md v0.4.0
+ */
+/**
+ * Build an unsigned DeliverableEnvelope.
+ * The caller must then sign it with `signDeliverable()` and set `signature`.
+ *
+ * @param input - Envelope fields (without id, signature)
+ * @param computeId - function(contextId, producer, nonce, createdAt) => id hex
+ */
+export function buildUnsignedEnvelope(input, computeId) {
+    const id = computeId(input.contextId, input.producer, input.nonce, input.createdAt);
+    return {
+        id,
+        nonce: input.nonce,
+        contextId: input.contextId,
+        type: input.type,
+        format: input.format,
+        name: input.name,
+        ...(input.description ? { description: input.description } : {}),
+        contentHash: input.contentHash,
+        size: input.size,
+        producer: input.producer,
+        createdAt: input.createdAt,
+        transport: input.transport,
+        ...(input.encryption ? { encryption: input.encryption } : {}),
+        ...(input.schema ? { schema: input.schema } : {}),
+        ...(input.parts ? { parts: input.parts } : {}),
+    };
+}
+// ── Composite content hash ─────────────────────────────────
+/**
+ * Compute composite contentHash = BLAKE3(parts[0].hash + parts[1].hash + ...)
+ * Parts order = declaration order in `parts` array (no sorting).
+ *
+ * @param partHashes — BLAKE3 hex hashes in parts declaration order
+ * @param blake3HexFn — hash function (injected to avoid core dependency here)
+ * @param utf8ToBytesFn — encoding function
+ */
+export function computeCompositeHash(partHashes, blake3HexFn, utf8ToBytesFn) {
+    const joined = partHashes.join('');
+    return blake3HexFn(utf8ToBytesFn(joined));
+}
+/**
+ * Basic structural validation (does not verify signature or content hash).
+ */
+export function validateEnvelopeStructure(envelope) {
+    const errors = [];
+    if (!envelope.id || typeof envelope.id !== 'string') {
+        errors.push('id is required');
+    }
+    if (!envelope.nonce || typeof envelope.nonce !== 'string') {
+        errors.push('nonce is required');
+    }
+    if (!envelope.contextId || typeof envelope.contextId !== 'string') {
+        errors.push('contextId is required');
+    }
+    if (!envelope.type || typeof envelope.type !== 'string') {
+        errors.push('type is required');
+    }
+    if (!envelope.format || typeof envelope.format !== 'string') {
+        errors.push('format is required');
+    }
+    if (!envelope.name || typeof envelope.name !== 'string') {
+        errors.push('name is required');
+    }
+    if (!envelope.contentHash || typeof envelope.contentHash !== 'string') {
+        errors.push('contentHash is required');
+    }
+    if (typeof envelope.size !== 'number' || envelope.size < 0) {
+        errors.push('size must be a non-negative number');
+    }
+    if (!envelope.producer || typeof envelope.producer !== 'string') {
+        errors.push('producer is required');
+    }
+    if (!envelope.signature || typeof envelope.signature !== 'string') {
+        errors.push('signature is required');
+    }
+    if (!envelope.createdAt || typeof envelope.createdAt !== 'string') {
+        errors.push('createdAt is required');
+    }
+    if (!envelope.transport || typeof envelope.transport !== 'object') {
+        errors.push('transport is required');
+    }
+    else {
+        const method = envelope.transport.method;
+        if (!['inline', 'external', 'stream', 'endpoint'].includes(method)) {
+            errors.push(`transport.method must be inline|external|stream|endpoint, got: ${method}`);
+        }
+    }
+    // Composite must have parts
+    if (envelope.type === 'composite' && (!envelope.parts || envelope.parts.length === 0)) {
+        errors.push('composite type requires non-empty parts array');
+    }
+    // Encryption structure check
+    if (envelope.encryption) {
+        if (envelope.encryption.algorithm !== 'x25519-aes-256-gcm') {
+            errors.push(`encryption.algorithm must be 'x25519-aes-256-gcm'`);
+        }
+        if (!envelope.encryption.keyEnvelopes || typeof envelope.encryption.keyEnvelopes !== 'object') {
+            errors.push('encryption.keyEnvelopes is required');
+        }
+        if (!envelope.encryption.nonce) {
+            errors.push('encryption.nonce is required');
+        }
+        if (!envelope.encryption.tag) {
+            errors.push('encryption.tag is required');
+        }
+    }
+    return { valid: errors.length === 0, errors };
+}
+// ── Legacy wrapper ─────────────────────────────────────────
+/**
+ * Wrap a legacy `Record<string, unknown>` deliverable into a minimal envelope
+ * suitable for the Phase 1 transition period.
+ * The caller should sign this with the node's key and set signedBy='node'.
+ */
+export function wrapLegacyDeliverable(legacy, contextId, producer, nonce, createdAt, computeId, computeContentHash, utf8ToBytesFn) {
+    const content = JSON.stringify(legacy);
+    const bytes = utf8ToBytesFn(content);
+    const hash = computeContentHash(bytes);
+    return {
+        id: computeId(contextId, producer, nonce, createdAt),
+        nonce,
+        contextId,
+        type: 'data',
+        format: 'application/json',
+        name: legacy.name || 'legacy-deliverable',
+        contentHash: hash,
+        size: bytes.length,
+        producer,
+        createdAt,
+        transport: { method: 'inline', data: Buffer.from(bytes).toString('base64') },
+        legacy: true,
+        signedBy: 'node',
+    };
+}
+//# sourceMappingURL=envelope.js.map

package/dist/deliverables/envelope.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"envelope.js","sourceRoot":"","sources":["../../src/deliverables/envelope.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAiCH;;;;;;GAMG;AACH,MAAM,UAAU,qBAAqB,CACnC,KAAyB,EACzB,SAA4F;IAE5F,MAAM,EAAE,GAAG,SAAS,CAAC,KAAK,CAAC,SAAS,EAAE,KAAK,CAAC,QAAQ,EAAE,KAAK,CAAC,KAAK,EAAE,KAAK,CAAC,SAAS,CAAC,CAAC;IACpF,OAAO;QACL,EAAE;QACF,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,GAAG,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAChE,WAAW,EAAE,KAAK,CAAC,WAAW;QAC9B,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,QAAQ,EAAE,KAAK,CAAC,QAAQ;QACxB,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,GAAG,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7D,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACjD,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KACL,CAAC;AAC9C,CAAC;AAED,8DAA8D;AAE9D;;;;;;;GAOG;AACH,MAAM,UAAU,oBAAoB,CAClC,UAAoB,EACpB,WAAyC,EACzC,aAA4C;IAE5C,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACnC,OAAO,WAAW,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC;AAC5C,CAAC;AASD;;GAEG;AACH,MAAM,UAAU,yBAAyB,CACvC,QAA6B;IAE7B,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,IAAI,CAAC,QAAQ,CAAC,EAAE,IAAI,OAAO,QAAQ,CAAC,EAAE,KAAK,QAAQ,EAAE,CAAC;QACpD,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;IAChC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,KAAK,IAAI,OAAO,QAAQ,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC1D,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IACnC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,SAAS,IAAI,OAAO,QAAQ,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QAClE,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;IACvC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,QAAQ,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QACxD,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IAClC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,MAAM,IAAI,OAAO,QAAQ,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;QAC5D,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;IACpC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,QAAQ,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QACxD,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IAClC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,WAAW,IAAI,OAAO,QAAQ,CAAC,WAAW,KAAK,QAAQ,EAAE,CAAC;QACtE,MAAM,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;IACzC,CAAC;IACD,IAAI,OAAO,QAAQ,CAAC,IAAI,KAAK,QAAQ,IAAI,QAAQ,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QAC3D,MAAM,CAAC,IAAI,CAAC,oCAAoC,CAAC,CAAC;IACpD,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,QAAQ,IAAI,OAAO,QAAQ,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAChE,MAAM,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;IACtC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,SAAS,IAAI,OAAO,QAAQ,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QAClE,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;IACvC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,SAAS,IAAI,OAAO,QAAQ,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QAClE,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;IACvC,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,SAAS,IAAI,OAAO,QAAQ,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QAClE,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;IACvC,CAAC;SAAM,CAAC;QACN,MAAM,MAAM,GAAI,QAAQ,CAAC,SAAgD,CAAC,MAAM,CAAC;QACjF,IAAI,CAAC,CAAC,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC,QAAQ,CAAC,MAAgB,CAAC,EAAE,CAAC;YAC7E,MAAM,CAAC,IAAI,CAAC,kEAAkE,MAAM,EAAE,CAAC,CAAC;QAC1F,CAAC;IACH,CAAC;IAED,4BAA4B;IAC5B,IAAI,QAAQ,CAAC,IAAI,KAAK,WAAW,IAAI,CAAC,CAAC,QAAQ,CAAC,KAAK,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC,CAAC,EAAE,CAAC;QACtF,MAAM,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;IAC/D,CAAC;IAED,6BAA6B;IAC7B,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC;QACxB,IAAI,QAAQ,CAAC,UAAU,CAAC,SAAS,KAAK,oBAAoB,EAAE,CAAC;YAC3D,MAAM,CAAC,IAAI,CAAC,mDAAmD,CAAC,CAAC;QACnE,CAAC;QACD,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,YAAY,IAAI,OAAO,QAAQ,CAAC,UAAU,CAAC,YAAY,KAAK,QAAQ,EAAE,CAAC;YAC9F,MAAM,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC;QACrD,CAAC;QACD,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;YAC/B,MAAM,CAAC,IAAI,CAAC,8BAA8B,CAAC,CAAC;QAC9C,CAAC;QACD,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC;YAC7B,MAAM,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;AAChD,CAAC;AAED,8DAA8D;AAE9D;;;;GAIG;AACH,MAAM,UAAU,qBAAqB,CACnC,MAA+B,EAC/B,SAAiB,EACjB,QAAgB,EAChB,KAAa,EACb,SAAiB,EACjB,SAA4F,EAC5F,kBAAgD,EAChD,aAA4C;IAE5C,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACvC,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,CAAC,CAAC;IACrC,MAAM,IAAI,GAAG,kBAAkB,CAAC,KAAK,CAAC,CAAC;IAEvC,OAAO;QACL,EAAE,EAAE,SAAS,CAAC,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,CAAC;QACpD,KAAK;QACL,SAAS;QACT,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,kBAAkB;QAC1B,IAAI,EAAG,MAAM,CAAC,IAAe,IAAI,oBAAoB;QACrD,WAAW,EAAE,IAAI;QACjB,IAAI,EAAE,KAAK,CAAC,MAAM;QAClB,QAAQ;QACR,SAAS;QACT,SAAS,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE;QAC5E,MAAM,EAAE,IAAI;QACZ,QAAQ,EAAE,MAAM;KACyB,CAAC;AAC9C,CAAC"}

package/dist/deliverables/index.d.ts

@@ -0,0 +1,4 @@
+export * from './types.js';
+export * from './envelope.js';
+export * from './delivery-auth.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/deliverables/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/deliverables/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,eAAe,CAAC;AAC9B,cAAc,oBAAoB,CAAC"}

package/dist/deliverables/index.js

@@ -0,0 +1,4 @@
+export * from './types.js';
+export * from './envelope.js';
+export * from './delivery-auth.js';
+//# sourceMappingURL=index.js.map

package/dist/deliverables/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/deliverables/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,eAAe,CAAC;AAC9B,cAAc,oBAAoB,CAAC"}