@cogcoin/client 0.5.1 → 0.5.3

package/dist/wallet/state/crypto.js

@@ -1,5 +1,5 @@
-import * as crypto from "node:crypto";
-const { createCipheriv, createDecipheriv, randomBytes, } = crypto;
+import { argon2id } from "hash-wasm";
+import { createCipheriv, createDecipheriv, randomBytes, } from "node:crypto";
 const DEFAULT_ARGON2_MEMORY_KIB = 65_536;
 const DEFAULT_ARGON2_ITERATIONS = 3;
 const DEFAULT_ARGON2_PARALLELISM = 1;
@@ -7,12 +7,6 @@ const DERIVED_KEY_LENGTH = 32;
 const GCM_NONCE_BYTES = 12;
 const ARGON2_SALT_BYTES = 16;
 const BIGINT_JSON_TAG = "$cogcoinBigInt";
-function requireArgon2() {
-    if (typeof crypto.argon2 !== "function") {
-        throw new Error("Node.js 24.7.0 or newer is required because node:crypto argon2 is unavailable.");
-    }
-    return crypto.argon2;
-}
 function jsonReplacer(_key, value) {
     if (typeof value === "bigint") {
         return {
@@ -30,23 +24,17 @@ function jsonReviver(_key, value) {
     }
     return value;
 }
-function deriveArgon2Key(message, nonce, memoryKib, iterations, parallelism) {
-    return new Promise((resolve, reject) => {
-        requireArgon2()("argon2id", {
-            message,
-            nonce,
-            memory: memoryKib,
-            passes: iterations,
-            parallelism,
-            tagLength: DERIVED_KEY_LENGTH,
-        }, (error, derivedKey) => {
-            if (error) {
-                reject(error);
-                return;
-            }
-            resolve(Buffer.from(derivedKey));
-        });
+async function deriveArgon2Key(message, nonce, memoryKib, iterations, parallelism) {
+    const derivedKey = await argon2id({
+        password: message,
+        salt: nonce,
+        memorySize: memoryKib,
+        iterations,
+        parallelism,
+        hashLength: DERIVED_KEY_LENGTH,
+        outputType: "binary",
     });
+    return Buffer.from(derivedKey);
 }
 export async function deriveKeyFromPassphrase(passphrase, options = {}) {
     const salt = Buffer.from(options.salt ?? randomBytes(ARGON2_SALT_BYTES));

package/dist/wallet/state/explicit-lock.d.ts

@@ -0,0 +1,4 @@
+import type { WalletExplicitLockStateV1 } from "../types.js";
+export declare function loadWalletExplicitLock(lockPath: string): Promise<WalletExplicitLockStateV1 | null>;
+export declare function saveWalletExplicitLock(lockPath: string, state: WalletExplicitLockStateV1): Promise<void>;
+export declare function clearWalletExplicitLock(lockPath: string): Promise<void>;

package/dist/wallet/state/explicit-lock.js

@@ -0,0 +1,19 @@
+import { readFile, rm } from "node:fs/promises";
+import { writeJsonFileAtomic } from "../fs/atomic.js";
+export async function loadWalletExplicitLock(lockPath) {
+    try {
+        return JSON.parse(await readFile(lockPath, "utf8"));
+    }
+    catch (error) {
+        if (error instanceof Error && "code" in error && error.code === "ENOENT") {
+            return null;
+        }
+        throw error;
+    }
+}
+export async function saveWalletExplicitLock(lockPath, state) {
+    await writeJsonFileAtomic(lockPath, state, { mode: 0o600 });
+}
+export async function clearWalletExplicitLock(lockPath) {
+    await rm(lockPath, { force: true });
+}

package/dist/wallet/tx/anchor.js

@@ -996,6 +996,7 @@ export async function anchorDomain(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {

package/dist/wallet/tx/cog.js

@@ -623,6 +623,7 @@ export async function sendCog(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {
@@ -763,6 +764,7 @@ export async function lockCogToDomain(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {
@@ -918,6 +920,7 @@ async function runClaimLikeMutation(options, reclaim) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {

package/dist/wallet/tx/domain-admin.js

@@ -557,6 +557,7 @@ async function submitDomainAdminMutation(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {

package/dist/wallet/tx/domain-market.js

@@ -683,6 +683,7 @@ export async function transferDomain(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {
@@ -916,6 +917,7 @@ async function runSellMutation(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {
@@ -1143,6 +1145,7 @@ export async function buyDomain(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {

package/dist/wallet/tx/field.js

@@ -1267,6 +1267,7 @@ async function submitStandaloneFieldMutation(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {
@@ -1418,6 +1419,7 @@ async function submitFieldCreateFamily(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {

package/dist/wallet/tx/register.js

@@ -686,6 +686,7 @@ export async function registerDomain(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {

package/dist/wallet/tx/reputation.js

@@ -528,6 +528,7 @@ async function submitReputationMutation(options) {
             dataDir: options.dataDir,
             databasePath: options.databasePath,
             secretProvider: provider,
+            walletControlLockHeld: true,
             paths,
         });
         try {

package/dist/wallet/types.d.ts

@@ -247,3 +247,8 @@ export interface UnlockSessionStateV1 {
     sourceStateRevision: number;
     wrappedSessionKeyMaterial: string;
 }
+export interface WalletExplicitLockStateV1 {
+    schemaVersion: 1;
+    walletRootId: string;
+    lockedAtUnixMs: number;
+}

package/package.json

@@ -1,11 +1,11 @@
 {
   "name": "@cogcoin/client",
-  "version": "0.5.1",
+  "version": "0.5.3",
   "description": "Store-backed Cogcoin client with wallet flows, SQLite persistence, and managed Bitcoin Core integration.",
   "license": "MIT",
   "type": "module",
   "engines": {
-    "node": ">=24.7.0"
+    "node": ">=22.0.0"
   },
   "homepage": "https://cogcoin.org",
   "repository": {
@@ -68,6 +68,7 @@
     "@scure/bip32": "^2.0.1",
     "@scure/bip39": "^2.0.1",
     "better-sqlite3": "12.8.0",
+    "hash-wasm": "^4.12.0",
     "zeromq": "6.5.0"
   },
   "devDependencies": {