@cloak.ag/sdk 1.0.5 → 1.0.6

package/dist/index.cjs

@@ -307,14 +307,14 @@ function randomBytes(length) {
   } catch {
   }
   try {
-    const nodeCrypto2 = require("crypto");
-    if (nodeCrypto2?.randomBytes) {
-      const buffer = nodeCrypto2.randomBytes(length);
+    const nodeCrypto = require("crypto");
+    if (nodeCrypto?.randomBytes) {
+      const buffer = nodeCrypto.randomBytes(length);
       bytes.set(buffer);
       return bytes;
     }
-    if (nodeCrypto2?.webcrypto?.getRandomValues) {
-      nodeCrypto2.webcrypto.getRandomValues(bytes);
+    if (nodeCrypto?.webcrypto?.getRandomValues) {
+      nodeCrypto.webcrypto.getRandomValues(bytes);
       return bytes;
     }
   } catch {
@@ -436,8 +436,8 @@ function generateMasterSeed() {
     cryptoObj.getRandomValues(seed);
   } else {
     try {
-      const nodeCrypto2 = require("crypto");
-      const buffer = nodeCrypto2.randomBytes(32);
+      const nodeCrypto = require("crypto");
+      const buffer = nodeCrypto.randomBytes(32);
       seed.set(buffer);
     } catch {
       throw new Error("No secure random number generator available");
@@ -1881,10 +1881,25 @@ function getShieldPoolPDAs(programId, mint) {
 // src/utils/proof-generation.ts
 var snarkjs = __toESM(require("snarkjs"), 1);
 var IS_BROWSER = typeof window !== "undefined" || typeof globalThis !== "undefined" && typeof globalThis.document !== "undefined";
+var _nodePath = null;
+var _nodeFs = null;
+var _nodeCrypto = null;
+async function getNodePath() {
+  if (_nodePath) return _nodePath;
+  _nodePath = await import("path");
+  return _nodePath;
+}
+async function getNodeFs() {
+  if (_nodeFs) return _nodeFs;
+  _nodeFs = await import("fs");
+  return _nodeFs;
+}
+async function getNodeCrypto() {
+  if (_nodeCrypto) return _nodeCrypto;
+  _nodeCrypto = await import("crypto");
+  return _nodeCrypto;
+}
 function joinPath(...parts) {
-  if (IS_BROWSER) {
-    return parts.join("/").replace(/\/+/g, "/");
-  }
   return parts.join("/").replace(/\/+/g, "/");
 }
 async function fileExists(filePath) {
@@ -1897,9 +1912,9 @@ async function fileExists(filePath) {
     }
   }
   try {
-    const nodeFs2 = globalThis.require?.("fs") || (typeof require !== "undefined" ? require("fs") : null);
-    if (nodeFs2) {
-      return nodeFs2.existsSync(filePath);
+    const nodeFs = globalThis.require?.("fs") || (typeof require !== "undefined" ? require("fs") : null);
+    if (nodeFs) {
+      return nodeFs.existsSync(filePath);
     }
     const fsModule = await import("fs");
     return fsModule.existsSync(filePath);
@@ -1907,15 +1922,15 @@ async function fileExists(filePath) {
     return false;
   }
 }
-async function generateWithdrawRegularProof(inputs, circuitsPath2) {
+async function generateWithdrawRegularProof(inputs, circuitsPath) {
   let wasmPath;
   let zkeyPath;
   if (IS_BROWSER) {
-    wasmPath = `${circuitsPath2}/withdraw_regular_js/withdraw_regular.wasm`;
-    zkeyPath = `${circuitsPath2}/withdraw_regular_final.zkey`;
+    wasmPath = `${circuitsPath}/withdraw_regular_js/withdraw_regular.wasm`;
+    zkeyPath = `${circuitsPath}/withdraw_regular_final.zkey`;
   } else {
-    wasmPath = joinPath(circuitsPath2, "build", "withdraw_regular_js", "withdraw_regular.wasm");
-    zkeyPath = joinPath(circuitsPath2, "build", "withdraw_regular_final.zkey");
+    wasmPath = joinPath(circuitsPath, "build", "withdraw_regular_js", "withdraw_regular.wasm");
+    zkeyPath = joinPath(circuitsPath, "build", "withdraw_regular_final.zkey");
     const wasmExists = await fileExists(wasmPath);
     const zkeyExists = await fileExists(zkeyPath);
     if (!wasmExists) {
@@ -1957,15 +1972,15 @@ async function generateWithdrawRegularProof(inputs, circuitsPath2) {
     // Not used, kept for compatibility
   };
 }
-async function generateWithdrawSwapProof(inputs, circuitsPath2) {
+async function generateWithdrawSwapProof(inputs, circuitsPath) {
   let wasmPath;
   let zkeyPath;
   if (IS_BROWSER) {
-    wasmPath = `${circuitsPath2}/withdraw_swap_js/withdraw_swap.wasm`;
-    zkeyPath = `${circuitsPath2}/withdraw_swap_final.zkey`;
+    wasmPath = `${circuitsPath}/withdraw_swap_js/withdraw_swap.wasm`;
+    zkeyPath = `${circuitsPath}/withdraw_swap_final.zkey`;
   } else {
-    wasmPath = joinPath(circuitsPath2, "build", "withdraw_swap_js", "withdraw_swap.wasm");
-    zkeyPath = joinPath(circuitsPath2, "build", "withdraw_swap_final.zkey");
+    wasmPath = joinPath(circuitsPath, "build", "withdraw_swap_js", "withdraw_swap.wasm");
+    zkeyPath = joinPath(circuitsPath, "build", "withdraw_swap_final.zkey");
     const wasmExists = await fileExists(wasmPath);
     const zkeyExists = await fileExists(zkeyPath);
     if (!wasmExists) {
@@ -2014,12 +2029,12 @@ async function generateWithdrawSwapProof(inputs, circuitsPath2) {
     // Not used, kept for compatibility
   };
 }
-async function areCircuitsAvailable(circuitsPath2) {
+async function areCircuitsAvailable(circuitsPath) {
   if (IS_BROWSER) {
-    return Boolean(circuitsPath2 && circuitsPath2 !== "");
+    return Boolean(circuitsPath && circuitsPath !== "");
   }
-  const wasmPath = joinPath(circuitsPath2, "build", "withdraw_regular_js", "withdraw_regular.wasm");
-  const zkeyPath = joinPath(circuitsPath2, "build", "withdraw_regular_final.zkey");
+  const wasmPath = joinPath(circuitsPath, "build", "withdraw_regular_js", "withdraw_regular.wasm");
+  const zkeyPath = joinPath(circuitsPath, "build", "withdraw_regular_final.zkey");
   const wasmExists = await fileExists(wasmPath);
   const zkeyExists = await fileExists(zkeyPath);
   return wasmExists && zkeyExists;
@@ -2033,7 +2048,7 @@ async function getDefaultCircuitsPath() {
   }
   let nodePath;
   try {
-    nodePath = eval("require")("path");
+    nodePath = await getNodePath();
   } catch {
     return "/circuits";
   }
@@ -2083,7 +2098,7 @@ async function verifyCircuitIntegrity(circuitsPath, circuit) {
       vkeyData = await response.text();
     } else {
       try {
-        const nodeFs = eval("require")("fs");
+        const nodeFs = await getNodeFs();
         vkeyData = nodeFs.readFileSync(vkeyPath, "utf8");
       } catch (e) {
         return {
@@ -2101,7 +2116,7 @@ async function verifyCircuitIntegrity(circuitsPath, circuit) {
       const hashArray = Array.from(new Uint8Array(hashBuffer));
       computedHash = hashArray.map((b) => b.toString(16).padStart(2, "0")).join("");
     } else {
-      const nodeCrypto = eval("require")("crypto");
+      const nodeCrypto = await getNodeCrypto();
       computedHash = nodeCrypto.createHash("sha256").update(vkeyData).digest("hex");
     }
     if (computedHash === expectedHash) {
@@ -2128,15 +2143,26 @@ async function verifyCircuitIntegrity(circuitsPath, circuit) {
     };
   }
 }
-async function verifyAllCircuits(circuitsPath2) {
+async function verifyAllCircuits(circuitsPath) {
   const results = await Promise.all([
-    verifyCircuitIntegrity(circuitsPath2, "withdraw_regular"),
-    verifyCircuitIntegrity(circuitsPath2, "withdraw_swap")
+    verifyCircuitIntegrity(circuitsPath, "withdraw_regular"),
+    verifyCircuitIntegrity(circuitsPath, "withdraw_swap")
   ]);
   return results;
 }
 
 // src/core/CloakSDK.ts
+var COMPUTE_BUDGET_PROGRAM_ID = new import_web35.PublicKey("ComputeBudget111111111111111111111111111111");
+function createSetLoadedAccountsDataSizeLimitInstruction(bytes) {
+  const data = Buffer.alloc(5);
+  data.writeUInt8(4, 0);
+  data.writeUInt32LE(bytes, 1);
+  return new import_web35.TransactionInstruction({
+    keys: [],
+    programId: COMPUTE_BUDGET_PROGRAM_ID,
+    data
+  });
+}
 var CLOAK_PROGRAM_ID = new import_web35.PublicKey("c1oak6tetxYnNfvXKFkpn1d98FxtK7B68vBQLYQpWKp");
 var CLOAK_API_URL = "https://api.cloak.ag";
 var CloakSDK = class {
@@ -2297,10 +2323,51 @@ var CloakSDK = class {
         commitment: commitmentBytes
       });
       const { blockhash, lastValidBlockHeight } = await connection.getLatestBlockhash();
+      const priorityFee = options?.priorityFee ?? 1e4;
+      const cuPriceIx = import_web35.ComputeBudgetProgram.setComputeUnitPrice({ microLamports: priorityFee });
+      const dataSizeLimit = options?.loadedAccountsDataSizeLimit ?? 256 * 1024;
+      const dataSizeLimitIx = dataSizeLimit > 0 ? createSetLoadedAccountsDataSizeLimitInstruction(dataSizeLimit) : null;
+      let computeUnits;
+      if (options?.optimizeCU && this.keypair) {
+        options?.onProgress?.("simulating", { message: "Simulating transaction for optimal CU..." });
+        const simCuLimitIx = import_web35.ComputeBudgetProgram.setComputeUnitLimit({ units: 2e5 });
+        const simTransaction = new import_web35.Transaction({
+          feePayer: payerPubkey,
+          recentBlockhash: blockhash
+        }).add(simCuLimitIx).add(cuPriceIx);
+        if (dataSizeLimitIx) {
+          simTransaction.add(dataSizeLimitIx);
+        }
+        simTransaction.add(depositIx);
+        try {
+          const simulation = await connection.simulateTransaction(simTransaction, [this.keypair]);
+          if (simulation.value.err) {
+            console.warn("Simulation failed, using default CU:", simulation.value.err);
+            computeUnits = 4e4;
+          } else {
+            const simulatedCU = simulation.value.unitsConsumed ?? 3e4;
+            computeUnits = Math.ceil(simulatedCU * 1.2);
+            console.log(`CU optimization: ${simulatedCU} simulated \u2192 ${computeUnits} limit`);
+          }
+        } catch (simError) {
+          console.warn("Simulation RPC error, using default CU:", simError);
+          computeUnits = 4e4;
+        }
+      } else if (options?.optimizeCU && this.wallet) {
+        console.warn("CU optimization via simulation not available in wallet mode (would require double signing). Using default.");
+        computeUnits = options?.computeUnits ?? 4e4;
+      } else {
+        computeUnits = options?.computeUnits ?? 4e4;
+      }
+      const cuLimitIx = import_web35.ComputeBudgetProgram.setComputeUnitLimit({ units: computeUnits });
       const transaction = new import_web35.Transaction({
         feePayer: payerPubkey,
         recentBlockhash: blockhash
-      }).add(depositIx);
+      }).add(cuLimitIx).add(cuPriceIx);
+      if (dataSizeLimitIx) {
+        transaction.add(dataSizeLimitIx);
+      }
+      transaction.add(depositIx);
       if (!transaction.feePayer) {
         throw new Error("Transaction feePayer is not set");
       }
@@ -2580,8 +2647,8 @@ var CloakSDK = class {
       }
     }
     const isBrowser = typeof window !== "undefined" || typeof globalThis !== "undefined" && globalThis.window;
-    const circuitsPath2 = isBrowser ? "/circuits" : typeof process !== "undefined" && process.env?.CIRCUITS_PATH || await getDefaultCircuitsPath();
-    const useDirectProof = await areCircuitsAvailable(circuitsPath2);
+    const circuitsPath = isBrowser ? "/circuits" : typeof process !== "undefined" && process.env?.CIRCUITS_PATH || await getDefaultCircuitsPath();
+    const useDirectProof = await areCircuitsAvailable(circuitsPath);
     let proofHex;
     let finalPublicInputs;
     if (useDirectProof) {
@@ -2643,7 +2710,7 @@ var CloakSDK = class {
         rem
       };
       options?.onProgress?.("proof_generating");
-      const proofResult = await generateWithdrawRegularProof(proofInputs, circuitsPath2);
+      const proofResult = await generateWithdrawRegularProof(proofInputs, circuitsPath);
       options?.onProgress?.("proof_complete");
       proofHex = Buffer.from(proofResult.proofBytes).toString("hex");
       finalPublicInputs = {
@@ -2654,7 +2721,7 @@ var CloakSDK = class {
       };
     } else {
       throw new Error(
-        `Circuits not available at ${circuitsPath2}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
+        `Circuits not available at ${circuitsPath}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
       );
     }
     const signature = await this.relay.submitWithdraw(
@@ -2851,8 +2918,8 @@ var CloakSDK = class {
         throw new Error("Merkle proof is invalid: missing path elements");
       }
       const envCircuitsPath = typeof window !== "undefined" ? typeof process !== "undefined" && process.env?.NEXT_PUBLIC_CIRCUITS_PATH || void 0 : typeof process !== "undefined" && process.env?.CIRCUITS_PATH || void 0;
-      const circuitsPath2 = envCircuitsPath || await getDefaultCircuitsPath();
-      const useDirectProof = await areCircuitsAvailable(circuitsPath2);
+      const circuitsPath = envCircuitsPath || await getDefaultCircuitsPath();
+      const useDirectProof = await areCircuitsAvailable(circuitsPath);
       let proofHex;
       let finalPublicInputs;
       if (useDirectProof) {
@@ -2895,7 +2962,7 @@ var CloakSDK = class {
           rem
         };
         options?.onProgress?.("proof_generating");
-        const proofResult = await generateWithdrawSwapProof(proofInputs, circuitsPath2);
+        const proofResult = await generateWithdrawSwapProof(proofInputs, circuitsPath);
         options?.onProgress?.("proof_complete");
         proofHex = Buffer.from(proofResult.proofBytes).toString("hex");
         finalPublicInputs = {
@@ -2906,7 +2973,7 @@ var CloakSDK = class {
         };
       } else {
         throw new Error(
-          `Circuits not available at ${circuitsPath2}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
+          `Circuits not available at ${circuitsPath}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
         );
       }
       const signature = await this.relay.submitSwap(

package/dist/index.d.cts

@@ -199,10 +199,46 @@ interface DepositOptions {
     requireNoteAcknowledgment?: boolean;
     /** Skip simulation (default: false) */
     skipPreflight?: boolean;
-    /** Compute units to request (default: auto) */
+    /**
+     * Compute units to request.
+     * - If `optimizeCU` is true, this is ignored and CU is determined via simulation
+     * - Otherwise defaults to 40,000 (suitable for typical deposits)
+     */
     computeUnits?: number;
-    /** Priority fee in micro-lamports (default: 0) */
+    /**
+     * Enable simulation-based CU optimization.
+     * When true, simulates the transaction first to determine actual CU usage,
+     * then sets an optimal limit (simulated + 20% buffer).
+     *
+     * **Note: Only works in keypair mode (Node.js/scripts).**
+     * In wallet/browser mode, this is ignored because simulation would require
+     * the user to sign twice (simulation + actual tx) which is bad UX.
+     *
+     * Trade-offs:
+     * - ✅ Optimal block scheduling priority
+     * - ❌ Adds ~200-500ms latency (extra RPC call)
+     * - ❌ Only available in keypair mode
+     *
+     * Default: false (uses fixed 40K CU which is ~75% efficient for typical deposits)
+     */
+    optimizeCU?: boolean;
+    /** Priority fee in micro-lamports (default: 10,000) */
     priorityFee?: number;
+    /**
+     * Loaded accounts data size limit in bytes.
+     *
+     * Without this, Solana defaults to 64MB which incurs CU overhead
+     * (charged at 8 CU per 32KB). Setting a lower limit improves priority.
+     *
+     * **Note for Cloak deposits:**
+     * The Shield Pool program is ~104KB, so the minimum practical limit is ~128KB.
+     *
+     * Default: 256 * 1024 (256KB) - provides safety margin above program size.
+     * Set to 0 to disable (use Solana 64MB default).
+     *
+     * @see https://www.anza.xyz/blog/cu-optimization-with-setloadedaccountsdatasizelimit
+     */
+    loadedAccountsDataSizeLimit?: number;
     /**
      * Optional: Encrypt output for specific recipient's view key
      * If not provided, encrypts for the wallet's own view key (for self-scanning)

package/dist/index.d.ts

@@ -199,10 +199,46 @@ interface DepositOptions {
     requireNoteAcknowledgment?: boolean;
     /** Skip simulation (default: false) */
     skipPreflight?: boolean;
-    /** Compute units to request (default: auto) */
+    /**
+     * Compute units to request.
+     * - If `optimizeCU` is true, this is ignored and CU is determined via simulation
+     * - Otherwise defaults to 40,000 (suitable for typical deposits)
+     */
     computeUnits?: number;
-    /** Priority fee in micro-lamports (default: 0) */
+    /**
+     * Enable simulation-based CU optimization.
+     * When true, simulates the transaction first to determine actual CU usage,
+     * then sets an optimal limit (simulated + 20% buffer).
+     *
+     * **Note: Only works in keypair mode (Node.js/scripts).**
+     * In wallet/browser mode, this is ignored because simulation would require
+     * the user to sign twice (simulation + actual tx) which is bad UX.
+     *
+     * Trade-offs:
+     * - ✅ Optimal block scheduling priority
+     * - ❌ Adds ~200-500ms latency (extra RPC call)
+     * - ❌ Only available in keypair mode
+     *
+     * Default: false (uses fixed 40K CU which is ~75% efficient for typical deposits)
+     */
+    optimizeCU?: boolean;
+    /** Priority fee in micro-lamports (default: 10,000) */
     priorityFee?: number;
+    /**
+     * Loaded accounts data size limit in bytes.
+     *
+     * Without this, Solana defaults to 64MB which incurs CU overhead
+     * (charged at 8 CU per 32KB). Setting a lower limit improves priority.
+     *
+     * **Note for Cloak deposits:**
+     * The Shield Pool program is ~104KB, so the minimum practical limit is ~128KB.
+     *
+     * Default: 256 * 1024 (256KB) - provides safety margin above program size.
+     * Set to 0 to disable (use Solana 64MB default).
+     *
+     * @see https://www.anza.xyz/blog/cu-optimization-with-setloadedaccountsdatasizelimit
+     */
+    loadedAccountsDataSizeLimit?: number;
     /**
      * Optional: Encrypt output for specific recipient's view key
      * If not provided, encrypts for the wallet's own view key (for self-scanning)

package/dist/index.js

@@ -9,7 +9,9 @@ var __require = /* @__PURE__ */ ((x) => typeof require !== "undefined" ? require
 import {
   Keypair,
   PublicKey as PublicKey4,
-  Transaction
+  Transaction,
+  TransactionInstruction as TransactionInstruction2,
+  ComputeBudgetProgram
 } from "@solana/web3.js";
 
 // src/core/types.ts
@@ -172,14 +174,14 @@ function randomBytes(length) {
   } catch {
   }
   try {
-    const nodeCrypto2 = __require("crypto");
-    if (nodeCrypto2?.randomBytes) {
-      const buffer = nodeCrypto2.randomBytes(length);
+    const nodeCrypto = __require("crypto");
+    if (nodeCrypto?.randomBytes) {
+      const buffer = nodeCrypto.randomBytes(length);
       bytes.set(buffer);
       return bytes;
     }
-    if (nodeCrypto2?.webcrypto?.getRandomValues) {
-      nodeCrypto2.webcrypto.getRandomValues(bytes);
+    if (nodeCrypto?.webcrypto?.getRandomValues) {
+      nodeCrypto.webcrypto.getRandomValues(bytes);
       return bytes;
     }
   } catch {
@@ -301,8 +303,8 @@ function generateMasterSeed() {
     cryptoObj.getRandomValues(seed);
   } else {
     try {
-      const nodeCrypto2 = __require("crypto");
-      const buffer = nodeCrypto2.randomBytes(32);
+      const nodeCrypto = __require("crypto");
+      const buffer = nodeCrypto.randomBytes(32);
       seed.set(buffer);
     } catch {
       throw new Error("No secure random number generator available");
@@ -1750,10 +1752,25 @@ function getShieldPoolPDAs(programId, mint) {
 // src/utils/proof-generation.ts
 import * as snarkjs from "snarkjs";
 var IS_BROWSER = typeof window !== "undefined" || typeof globalThis !== "undefined" && typeof globalThis.document !== "undefined";
+var _nodePath = null;
+var _nodeFs = null;
+var _nodeCrypto = null;
+async function getNodePath() {
+  if (_nodePath) return _nodePath;
+  _nodePath = await import("path");
+  return _nodePath;
+}
+async function getNodeFs() {
+  if (_nodeFs) return _nodeFs;
+  _nodeFs = await import("fs");
+  return _nodeFs;
+}
+async function getNodeCrypto() {
+  if (_nodeCrypto) return _nodeCrypto;
+  _nodeCrypto = await import("crypto");
+  return _nodeCrypto;
+}
 function joinPath(...parts) {
-  if (IS_BROWSER) {
-    return parts.join("/").replace(/\/+/g, "/");
-  }
   return parts.join("/").replace(/\/+/g, "/");
 }
 async function fileExists(filePath) {
@@ -1766,9 +1783,9 @@ async function fileExists(filePath) {
     }
   }
   try {
-    const nodeFs2 = globalThis.require?.("fs") || (typeof __require !== "undefined" ? __require("fs") : null);
-    if (nodeFs2) {
-      return nodeFs2.existsSync(filePath);
+    const nodeFs = globalThis.require?.("fs") || (typeof __require !== "undefined" ? __require("fs") : null);
+    if (nodeFs) {
+      return nodeFs.existsSync(filePath);
     }
     const fsModule = await import("fs");
     return fsModule.existsSync(filePath);
@@ -1776,15 +1793,15 @@ async function fileExists(filePath) {
     return false;
   }
 }
-async function generateWithdrawRegularProof(inputs, circuitsPath2) {
+async function generateWithdrawRegularProof(inputs, circuitsPath) {
   let wasmPath;
   let zkeyPath;
   if (IS_BROWSER) {
-    wasmPath = `${circuitsPath2}/withdraw_regular_js/withdraw_regular.wasm`;
-    zkeyPath = `${circuitsPath2}/withdraw_regular_final.zkey`;
+    wasmPath = `${circuitsPath}/withdraw_regular_js/withdraw_regular.wasm`;
+    zkeyPath = `${circuitsPath}/withdraw_regular_final.zkey`;
   } else {
-    wasmPath = joinPath(circuitsPath2, "build", "withdraw_regular_js", "withdraw_regular.wasm");
-    zkeyPath = joinPath(circuitsPath2, "build", "withdraw_regular_final.zkey");
+    wasmPath = joinPath(circuitsPath, "build", "withdraw_regular_js", "withdraw_regular.wasm");
+    zkeyPath = joinPath(circuitsPath, "build", "withdraw_regular_final.zkey");
     const wasmExists = await fileExists(wasmPath);
     const zkeyExists = await fileExists(zkeyPath);
     if (!wasmExists) {
@@ -1826,15 +1843,15 @@ async function generateWithdrawRegularProof(inputs, circuitsPath2) {
     // Not used, kept for compatibility
   };
 }
-async function generateWithdrawSwapProof(inputs, circuitsPath2) {
+async function generateWithdrawSwapProof(inputs, circuitsPath) {
   let wasmPath;
   let zkeyPath;
   if (IS_BROWSER) {
-    wasmPath = `${circuitsPath2}/withdraw_swap_js/withdraw_swap.wasm`;
-    zkeyPath = `${circuitsPath2}/withdraw_swap_final.zkey`;
+    wasmPath = `${circuitsPath}/withdraw_swap_js/withdraw_swap.wasm`;
+    zkeyPath = `${circuitsPath}/withdraw_swap_final.zkey`;
   } else {
-    wasmPath = joinPath(circuitsPath2, "build", "withdraw_swap_js", "withdraw_swap.wasm");
-    zkeyPath = joinPath(circuitsPath2, "build", "withdraw_swap_final.zkey");
+    wasmPath = joinPath(circuitsPath, "build", "withdraw_swap_js", "withdraw_swap.wasm");
+    zkeyPath = joinPath(circuitsPath, "build", "withdraw_swap_final.zkey");
     const wasmExists = await fileExists(wasmPath);
     const zkeyExists = await fileExists(zkeyPath);
     if (!wasmExists) {
@@ -1883,12 +1900,12 @@ async function generateWithdrawSwapProof(inputs, circuitsPath2) {
     // Not used, kept for compatibility
   };
 }
-async function areCircuitsAvailable(circuitsPath2) {
+async function areCircuitsAvailable(circuitsPath) {
   if (IS_BROWSER) {
-    return Boolean(circuitsPath2 && circuitsPath2 !== "");
+    return Boolean(circuitsPath && circuitsPath !== "");
   }
-  const wasmPath = joinPath(circuitsPath2, "build", "withdraw_regular_js", "withdraw_regular.wasm");
-  const zkeyPath = joinPath(circuitsPath2, "build", "withdraw_regular_final.zkey");
+  const wasmPath = joinPath(circuitsPath, "build", "withdraw_regular_js", "withdraw_regular.wasm");
+  const zkeyPath = joinPath(circuitsPath, "build", "withdraw_regular_final.zkey");
   const wasmExists = await fileExists(wasmPath);
   const zkeyExists = await fileExists(zkeyPath);
   return wasmExists && zkeyExists;
@@ -1902,7 +1919,7 @@ async function getDefaultCircuitsPath() {
   }
   let nodePath;
   try {
-    nodePath = eval("require")("path");
+    nodePath = await getNodePath();
   } catch {
     return "/circuits";
   }
@@ -1952,7 +1969,7 @@ async function verifyCircuitIntegrity(circuitsPath, circuit) {
       vkeyData = await response.text();
     } else {
       try {
-        const nodeFs = eval("require")("fs");
+        const nodeFs = await getNodeFs();
         vkeyData = nodeFs.readFileSync(vkeyPath, "utf8");
       } catch (e) {
         return {
@@ -1970,7 +1987,7 @@ async function verifyCircuitIntegrity(circuitsPath, circuit) {
       const hashArray = Array.from(new Uint8Array(hashBuffer));
       computedHash = hashArray.map((b) => b.toString(16).padStart(2, "0")).join("");
     } else {
-      const nodeCrypto = eval("require")("crypto");
+      const nodeCrypto = await getNodeCrypto();
       computedHash = nodeCrypto.createHash("sha256").update(vkeyData).digest("hex");
     }
     if (computedHash === expectedHash) {
@@ -1997,15 +2014,26 @@ async function verifyCircuitIntegrity(circuitsPath, circuit) {
     };
   }
 }
-async function verifyAllCircuits(circuitsPath2) {
+async function verifyAllCircuits(circuitsPath) {
   const results = await Promise.all([
-    verifyCircuitIntegrity(circuitsPath2, "withdraw_regular"),
-    verifyCircuitIntegrity(circuitsPath2, "withdraw_swap")
+    verifyCircuitIntegrity(circuitsPath, "withdraw_regular"),
+    verifyCircuitIntegrity(circuitsPath, "withdraw_swap")
   ]);
   return results;
 }
 
 // src/core/CloakSDK.ts
+var COMPUTE_BUDGET_PROGRAM_ID = new PublicKey4("ComputeBudget111111111111111111111111111111");
+function createSetLoadedAccountsDataSizeLimitInstruction(bytes) {
+  const data = Buffer.alloc(5);
+  data.writeUInt8(4, 0);
+  data.writeUInt32LE(bytes, 1);
+  return new TransactionInstruction2({
+    keys: [],
+    programId: COMPUTE_BUDGET_PROGRAM_ID,
+    data
+  });
+}
 var CLOAK_PROGRAM_ID = new PublicKey4("c1oak6tetxYnNfvXKFkpn1d98FxtK7B68vBQLYQpWKp");
 var CLOAK_API_URL = "https://api.cloak.ag";
 var CloakSDK = class {
@@ -2166,10 +2194,51 @@ var CloakSDK = class {
         commitment: commitmentBytes
       });
       const { blockhash, lastValidBlockHeight } = await connection.getLatestBlockhash();
+      const priorityFee = options?.priorityFee ?? 1e4;
+      const cuPriceIx = ComputeBudgetProgram.setComputeUnitPrice({ microLamports: priorityFee });
+      const dataSizeLimit = options?.loadedAccountsDataSizeLimit ?? 256 * 1024;
+      const dataSizeLimitIx = dataSizeLimit > 0 ? createSetLoadedAccountsDataSizeLimitInstruction(dataSizeLimit) : null;
+      let computeUnits;
+      if (options?.optimizeCU && this.keypair) {
+        options?.onProgress?.("simulating", { message: "Simulating transaction for optimal CU..." });
+        const simCuLimitIx = ComputeBudgetProgram.setComputeUnitLimit({ units: 2e5 });
+        const simTransaction = new Transaction({
+          feePayer: payerPubkey,
+          recentBlockhash: blockhash
+        }).add(simCuLimitIx).add(cuPriceIx);
+        if (dataSizeLimitIx) {
+          simTransaction.add(dataSizeLimitIx);
+        }
+        simTransaction.add(depositIx);
+        try {
+          const simulation = await connection.simulateTransaction(simTransaction, [this.keypair]);
+          if (simulation.value.err) {
+            console.warn("Simulation failed, using default CU:", simulation.value.err);
+            computeUnits = 4e4;
+          } else {
+            const simulatedCU = simulation.value.unitsConsumed ?? 3e4;
+            computeUnits = Math.ceil(simulatedCU * 1.2);
+            console.log(`CU optimization: ${simulatedCU} simulated \u2192 ${computeUnits} limit`);
+          }
+        } catch (simError) {
+          console.warn("Simulation RPC error, using default CU:", simError);
+          computeUnits = 4e4;
+        }
+      } else if (options?.optimizeCU && this.wallet) {
+        console.warn("CU optimization via simulation not available in wallet mode (would require double signing). Using default.");
+        computeUnits = options?.computeUnits ?? 4e4;
+      } else {
+        computeUnits = options?.computeUnits ?? 4e4;
+      }
+      const cuLimitIx = ComputeBudgetProgram.setComputeUnitLimit({ units: computeUnits });
       const transaction = new Transaction({
         feePayer: payerPubkey,
         recentBlockhash: blockhash
-      }).add(depositIx);
+      }).add(cuLimitIx).add(cuPriceIx);
+      if (dataSizeLimitIx) {
+        transaction.add(dataSizeLimitIx);
+      }
+      transaction.add(depositIx);
       if (!transaction.feePayer) {
         throw new Error("Transaction feePayer is not set");
       }
@@ -2449,8 +2518,8 @@ var CloakSDK = class {
       }
     }
     const isBrowser = typeof window !== "undefined" || typeof globalThis !== "undefined" && globalThis.window;
-    const circuitsPath2 = isBrowser ? "/circuits" : typeof process !== "undefined" && process.env?.CIRCUITS_PATH || await getDefaultCircuitsPath();
-    const useDirectProof = await areCircuitsAvailable(circuitsPath2);
+    const circuitsPath = isBrowser ? "/circuits" : typeof process !== "undefined" && process.env?.CIRCUITS_PATH || await getDefaultCircuitsPath();
+    const useDirectProof = await areCircuitsAvailable(circuitsPath);
     let proofHex;
     let finalPublicInputs;
     if (useDirectProof) {
@@ -2512,7 +2581,7 @@ var CloakSDK = class {
         rem
       };
       options?.onProgress?.("proof_generating");
-      const proofResult = await generateWithdrawRegularProof(proofInputs, circuitsPath2);
+      const proofResult = await generateWithdrawRegularProof(proofInputs, circuitsPath);
       options?.onProgress?.("proof_complete");
       proofHex = Buffer.from(proofResult.proofBytes).toString("hex");
       finalPublicInputs = {
@@ -2523,7 +2592,7 @@ var CloakSDK = class {
       };
     } else {
       throw new Error(
-        `Circuits not available at ${circuitsPath2}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
+        `Circuits not available at ${circuitsPath}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
       );
     }
     const signature = await this.relay.submitWithdraw(
@@ -2720,8 +2789,8 @@ var CloakSDK = class {
         throw new Error("Merkle proof is invalid: missing path elements");
       }
       const envCircuitsPath = typeof window !== "undefined" ? typeof process !== "undefined" && process.env?.NEXT_PUBLIC_CIRCUITS_PATH || void 0 : typeof process !== "undefined" && process.env?.CIRCUITS_PATH || void 0;
-      const circuitsPath2 = envCircuitsPath || await getDefaultCircuitsPath();
-      const useDirectProof = await areCircuitsAvailable(circuitsPath2);
+      const circuitsPath = envCircuitsPath || await getDefaultCircuitsPath();
+      const useDirectProof = await areCircuitsAvailable(circuitsPath);
       let proofHex;
       let finalPublicInputs;
       if (useDirectProof) {
@@ -2764,7 +2833,7 @@ var CloakSDK = class {
           rem
         };
         options?.onProgress?.("proof_generating");
-        const proofResult = await generateWithdrawSwapProof(proofInputs, circuitsPath2);
+        const proofResult = await generateWithdrawSwapProof(proofInputs, circuitsPath);
         options?.onProgress?.("proof_complete");
         proofHex = Buffer.from(proofResult.proofBytes).toString("hex");
         finalPublicInputs = {
@@ -2775,7 +2844,7 @@ var CloakSDK = class {
         };
       } else {
         throw new Error(
-          `Circuits not available at ${circuitsPath2}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
+          `Circuits not available at ${circuitsPath}. Make sure circuits are built and accessible. In browser, circuits should be served from /circuits. In Node.js, set CIRCUITS_PATH environment variable or ensure circuits are in the expected location.`
         );
       }
       const signature = await this.relay.submitSwap(

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@cloak.ag/sdk",
   "description": "TypeScript SDK for Cloak",
-  "version": "1.0.5",
+  "version": "1.0.6",
   "type": "module",
   "main": "dist/index.cjs",
   "module": "dist/index.js",
@@ -14,7 +14,7 @@
     }
   },
   "scripts": {
-    "build": "tsup src/index.ts --format cjs,esm --dts --external fs --external path",
+    "build": "tsup src/index.ts --format cjs,esm --dts --external fs --external path --external crypto",
     "lint": "tsc --noEmit",
     "test": "NODE_OPTIONS=--experimental-vm-modules jest",
     "test:watch": "NODE_OPTIONS=--experimental-vm-modules jest --watch",