@continuonai/rcan-ts 1.2.0 → 1.2.1

package/dist/browser.d.mts

@@ -109,8 +109,9 @@ interface DelegationHop {
     scope: string;
     signature: string;
 }
+/** RCAN v2.2: ML-DSA-65 is the only valid alg ("ml-dsa-65"). Ed25519 is deprecated. */
 interface SignatureBlock {
-    alg: string;
+    alg: "ml-dsa-65";
     kid: string;
     sig: string;
 }
@@ -767,7 +768,7 @@ declare function makeTransparencyMessage(ruri: string, disclosure: string, deleg
 /** The RCAN spec version this SDK implements. */
 declare const SPEC_VERSION = "2.2.0";
 /** The SDK release version. */
-declare const SDK_VERSION = "1.2.0";
+declare const SDK_VERSION = "1.2.1";
 /**
  * Validate version compatibility.
  *
@@ -1863,81 +1864,55 @@ declare function verifyM2mTrustedToken(token: string, targetRrn: string, options
 }): Promise<M2MTrustedClaims>;
 
 /**
- * RCAN v2.2 Post-Quantum Hybrid Signing — ML-DSA-65 (NIST FIPS 204)
- *
- * Provides MLDSAKeyPair for post-quantum signing alongside the existing
- * Ed25519 SignatureBlock.  In hybrid mode a message carries both:
- *   - `signature`  — Ed25519 SignatureBlock  (backward-compat with v2.1)
- *   - `pqSig`      — MLDSASignatureBlock     (new in v2.2)
+ * RCAN v2.2 ML-DSA-65 Signing (NIST FIPS 204)
  *
- * Key sizes (ML-DSA-65, NIST security level 3):
- *   Public key:   1952 bytes
- *   Private key:  4032 bytes
- *   Signature:    3309 bytes
+ * Ed25519 is deprecated. ML-DSA-65 is the ONLY signing algorithm.
+ * All signed messages carry a ``signature`` block with ``alg: "ml-dsa-65"``.
  *
  * Requires: @noble/post-quantum (npm install @noble/post-quantum)
  *
- * Spec: https://rcan.dev/spec#section-7-2
+ * Spec: https://rcan.dev/spec/v2.2#section-7-2
  */
 
-/** @deprecated use PQSignatureBlock */
-type MLDSASignatureBlock = PQSignatureBlock;
 interface MLDSAKeyPairData {
-    /** Public key bytes (1952 bytes) */
     publicKey: Uint8Array;
-    /** Private key bytes (4032 bytes). Absent for verify-only key pairs. */
     secretKey?: Uint8Array;
-    /** 8-char hex key ID */
     keyId: string;
 }
 /**
  * An ML-DSA-65 (CRYSTALS-Dilithium, NIST FIPS 204) key pair.
  *
- * Immutable value object.  Build via {@link MLDSAKeyPair.generate} or
- * {@link MLDSAKeyPair.fromPublicKey}.
+ * This is the ONLY signing key type in RCAN v2.2+. Ed25519 is deprecated.
  */
 declare class MLDSAKeyPair {
     readonly keyId: string;
     readonly publicKey: Uint8Array;
     readonly secretKey: Uint8Array | undefined;
     private constructor();
-    /** Generate a new ML-DSA-65 key pair. */
     static generate(): Promise<MLDSAKeyPair>;
-    /** Build a verify-only key pair from raw public key bytes. */
     static fromPublicKey(publicKey: Uint8Array): Promise<MLDSAKeyPair>;
-    /** Build a full key pair from saved bytes (public + secret). */
     static fromKeyMaterial(publicKey: Uint8Array, secretKey: Uint8Array): Promise<MLDSAKeyPair>;
     get hasPrivateKey(): boolean;
-    /** Sign raw bytes; returns ML-DSA-65 signature (3309 bytes). */
     signBytes(data: Uint8Array): Promise<Uint8Array>;
-    /**
-     * Verify an ML-DSA-65 signature.
-     * @returns true if valid
-     * @throws {Error} on invalid signature
-     */
     verifyBytes(data: Uint8Array, signature: Uint8Array): Promise<void>;
     toString(): string;
 }
 /**
- * Add an ML-DSA-65 signature (`pqSig`) to an RCAN message.
- *
- * This is the v2.2 hybrid complement to the existing Ed25519 signature.
- * Call {@link signMessageEd25519} (or the existing signing path) first to set
- * `signature`, then call this to append `pqSig`.
+ * Sign an RCANMessage with ML-DSA-65 (the only signing algorithm in RCAN v2.2).
  *
- * @param msg      RCAN message (mutated in place — sets `pqSig`)
- * @param keypair  ML-DSA-65 key pair with private key
- * @returns The same message cast to include `pqSig`
+ * Sets msg.signature = { alg: "ml-dsa-65", kid, sig }.
  */
-declare function addPQSignature(msg: RCANMessage, keypair: MLDSAKeyPair): Promise<RCANMessage>;
+declare function signMessage(msg: RCANMessage, keypair: MLDSAKeyPair): Promise<RCANMessage>;
 /**
- * Verify the ML-DSA-65 signature (`pqSig`) on an RCAN message.
+ * Verify the ML-DSA-65 signature on an RCANMessage.
  *
- * @param msg           Message with a `pqSig` field
- * @param trustedKeys   Trusted ML-DSA public key pairs
- * @param requirePQ     If true, raise when `pqSig` is absent (for post-2028 hard mode)
+ * @throws {Error} if signature is missing, alg is not ml-dsa-65, key not found, or invalid.
  */
-declare function verifyPQSignature(msg: RCANMessage, trustedKeys: MLDSAKeyPair[], requirePQ?: boolean): Promise<void>;
+declare function verifyMessage(msg: RCANMessage, trustedKeys: MLDSAKeyPair[]): Promise<void>;
+/** @deprecated Use signMessage() — Ed25519 is removed in RCAN v2.2 */
+declare const addPQSignature: typeof signMessage;
+/** @deprecated Use verifyMessage() — Ed25519 is removed in RCAN v2.2 */
+declare function verifyPQSignature(msg: RCANMessage, trustedKeys: MLDSAKeyPair[], _requirePQ?: boolean): Promise<void>;
 
 /**
  * rcan-ts — Official TypeScript SDK for RCAN v1.6
@@ -1951,4 +1926,4 @@ declare const VERSION = "0.6.0";
 /** @deprecated Use SPEC_VERSION from ./version instead */
 declare const RCAN_VERSION = "1.6";
 
-export { AUTHORITY_ERROR_CODES, type ApprovalStatus, AuditChain, AuditError, type AuditExportRequest, type AuthorityAccessPayload, type AuthorityAccessPayloadWire, type AuthorityDataCategory, type AuthorityResponseData, type AuthorityResponsePayload, COMPETITION_SCOPE_LEVEL, CONTRIBUTE_SCOPE_LEVEL, type CachedKey, type ChainVerifyResult, ClockDriftError, type ClockSyncStatus, CommitmentRecord, type CommitmentRecordData, type CommitmentRecordJSON, type CompetitionBadge, type CompetitionEnter, type CompetitionFormat, type CompetitionScore, type ComputeResource, ConfidenceGate, type ConsentRequestParams, type ConsentResponseParams, type ConsentType, type ContributeCancel, type ContributeRequest, type ContributeResult, DEFAULT_LOA_POLICY, DataCategory, type DelegationHop, FIRMWARE_MANIFEST_PATH, FaultCode, type FaultReportParams, type FaultSeverity, type FederationSyncPayload, FederationSyncType, type FirmwareComponent, FirmwareIntegrityError, type FirmwareManifest, type FirmwareManifestWire, GateError, HiTLGate, type IdentityRecord, type JWKEntry, type JWKSDocument, KeyStore, LevelOfAssurance, type ListResult, type LoaPolicy, M2MAuthError, type M2MPeerClaims, type M2MTrustedClaims, M2M_TRUSTED_ISSUER, MLDSAKeyPair, type MLDSAKeyPairData, type MLDSASignatureBlock, type MediaChunk, MediaEncoding, MessageType, NodeClient, type OfflineCommandResult, OfflineModeManager, type OfflineState, PRODUCTION_LOA_POLICY, type PendingApproval, type PersonalResearchResult, QoSAckTimeoutError, QoSLevel, QoSManager, type QoSResult, type QoSSendOptions, RCANAddressError, type RCANAgentConfig, type RCANConfig, RCANConfigAuthorizationError, RCANDelegationChainError, RCANError, RCANGateError, RCANMessage, type RCANMessageData, type RCANMessageEnvelope, RCANMessageError, type RCANMetadata, RCANNodeError, RCANNodeNotFoundError, RCANNodeSyncError, RCANNodeTrustError, RCANRegistryError, type RCANRegistryNode, RCANReplayAttackError, type RCANResolveResult, RCANSignatureError, RCANValidationError, RCANVersionIncompatibleError, RCAN_VERSION, ROLE_JWT_LEVEL, RRF_REVOCATION_CACHE_TTL_MS, RRF_REVOCATION_URL, type RegistrationResult, RegistryClient, type RegistryIdentity, RegistryTier, ReplayCache, type ReplayCheckResult, type ReplayableMessage, type ResearchMetrics, RevocationCache$1 as RevocationCache, type RevocationStatus, type RevocationStatusValue, type Robot, type RobotRegistration, RobotURI, RobotURIError, type RobotURIOptions, Role, type RunType, SAFETY_MESSAGE_TYPE, SCOPE_MIN_ROLE, SDK_VERSION, SPEC_VERSION, type SafetyEvent, type SafetyMessage, type ScopeValidationResult, type SeasonStanding, type SenderType, type SignatureBlock, type StandingEntry, type StreamChunk, type TrainingConsentRequestParams, type TransparencyMessage, TransportEncoding, TransportError, TrustAnchorCache, VERSION, type ValidationResult, type WorkUnitStatus, addDelegationHop, addMediaInline, addMediaRef, addPQSignature, assertClockSynced, authorityAccessFromWire, authorityAccessToWire, canonicalManifestJson, checkClockSync, checkRevocation, decodeBleFrames, decodeCompact, decodeMinimal, encodeBleFrames, encodeCompact, encodeMinimal, extractIdentityFromJwt, extractLoaFromJwt, extractRoleFromJwt, fetchCanonicalSchema, fetchRRFRevocations, isAuthorityRequestValid, isM2mTrustedRevoked, isPreemptedBy, isSafetyMessage, makeCloudRelayMessage, makeCompetitionEnter, makeCompetitionScore, makeConfigUpdate, makeConsentDeny, makeConsentGrant, makeConsentRequest, makeContributeCancel, makeContributeRequest, makeContributeResult, makeEstopMessage, makeEstopWithQoS, makeFaultReport, makeFederationSync, makeKeyRotationMessage, makePersonalResearchResult, makeResumeMessage, makeRevocationBroadcast, makeSeasonStanding, makeStopMessage, makeStreamChunk, makeTrainingConsentDeny, makeTrainingConsentGrant, makeTrainingConsentRequest, makeTrainingDataMessage, makeTransparencyMessage, manifestFromWire, manifestToWire, parseM2mPeerToken, parseM2mTrustedToken, roleFromJwtLevel, selectTransport, validateAuthorityAccess, validateCompetitionScope, validateConfig, validateConfigAgainstSchema, validateConfigUpdate, validateConsentMessage, validateContributeScope, validateCrossRegistryCommand, validateDelegationChain, validateLoaForScope, validateManifest, validateMediaChunks, validateMessage, validateNodeAgainstSchema, validateReplay, validateRoleForScope, validateSafetyMessage, validateTrainingDataMessage, validateURI, validateVersionCompat, verifyM2mTrustedToken, verifyM2mTrustedTokenClaims, verifyPQSignature };
+export { AUTHORITY_ERROR_CODES, type ApprovalStatus, AuditChain, AuditError, type AuditExportRequest, type AuthorityAccessPayload, type AuthorityAccessPayloadWire, type AuthorityDataCategory, type AuthorityResponseData, type AuthorityResponsePayload, COMPETITION_SCOPE_LEVEL, CONTRIBUTE_SCOPE_LEVEL, type CachedKey, type ChainVerifyResult, ClockDriftError, type ClockSyncStatus, CommitmentRecord, type CommitmentRecordData, type CommitmentRecordJSON, type CompetitionBadge, type CompetitionEnter, type CompetitionFormat, type CompetitionScore, type ComputeResource, ConfidenceGate, type ConsentRequestParams, type ConsentResponseParams, type ConsentType, type ContributeCancel, type ContributeRequest, type ContributeResult, DEFAULT_LOA_POLICY, DataCategory, type DelegationHop, FIRMWARE_MANIFEST_PATH, FaultCode, type FaultReportParams, type FaultSeverity, type FederationSyncPayload, FederationSyncType, type FirmwareComponent, FirmwareIntegrityError, type FirmwareManifest, type FirmwareManifestWire, GateError, HiTLGate, type IdentityRecord, type JWKEntry, type JWKSDocument, KeyStore, LevelOfAssurance, type ListResult, type LoaPolicy, M2MAuthError, type M2MPeerClaims, type M2MTrustedClaims, M2M_TRUSTED_ISSUER, MLDSAKeyPair, type MLDSAKeyPairData, type MediaChunk, MediaEncoding, MessageType, NodeClient, type OfflineCommandResult, OfflineModeManager, type OfflineState, PRODUCTION_LOA_POLICY, type PendingApproval, type PersonalResearchResult, QoSAckTimeoutError, QoSLevel, QoSManager, type QoSResult, type QoSSendOptions, RCANAddressError, type RCANAgentConfig, type RCANConfig, RCANConfigAuthorizationError, RCANDelegationChainError, RCANError, RCANGateError, RCANMessage, type RCANMessageData, type RCANMessageEnvelope, RCANMessageError, type RCANMetadata, RCANNodeError, RCANNodeNotFoundError, RCANNodeSyncError, RCANNodeTrustError, RCANRegistryError, type RCANRegistryNode, RCANReplayAttackError, type RCANResolveResult, RCANSignatureError, RCANValidationError, RCANVersionIncompatibleError, RCAN_VERSION, ROLE_JWT_LEVEL, RRF_REVOCATION_CACHE_TTL_MS, RRF_REVOCATION_URL, type RegistrationResult, RegistryClient, type RegistryIdentity, RegistryTier, ReplayCache, type ReplayCheckResult, type ReplayableMessage, type ResearchMetrics, RevocationCache$1 as RevocationCache, type RevocationStatus, type RevocationStatusValue, type Robot, type RobotRegistration, RobotURI, RobotURIError, type RobotURIOptions, Role, type RunType, SAFETY_MESSAGE_TYPE, SCOPE_MIN_ROLE, SDK_VERSION, SPEC_VERSION, type SafetyEvent, type SafetyMessage, type ScopeValidationResult, type SeasonStanding, type SenderType, type SignatureBlock, type StandingEntry, type StreamChunk, type TrainingConsentRequestParams, type TransparencyMessage, TransportEncoding, TransportError, TrustAnchorCache, VERSION, type ValidationResult, type WorkUnitStatus, addDelegationHop, addMediaInline, addMediaRef, addPQSignature, assertClockSynced, authorityAccessFromWire, authorityAccessToWire, canonicalManifestJson, checkClockSync, checkRevocation, decodeBleFrames, decodeCompact, decodeMinimal, encodeBleFrames, encodeCompact, encodeMinimal, extractIdentityFromJwt, extractLoaFromJwt, extractRoleFromJwt, fetchCanonicalSchema, fetchRRFRevocations, isAuthorityRequestValid, isM2mTrustedRevoked, isPreemptedBy, isSafetyMessage, makeCloudRelayMessage, makeCompetitionEnter, makeCompetitionScore, makeConfigUpdate, makeConsentDeny, makeConsentGrant, makeConsentRequest, makeContributeCancel, makeContributeRequest, makeContributeResult, makeEstopMessage, makeEstopWithQoS, makeFaultReport, makeFederationSync, makeKeyRotationMessage, makePersonalResearchResult, makeResumeMessage, makeRevocationBroadcast, makeSeasonStanding, makeStopMessage, makeStreamChunk, makeTrainingConsentDeny, makeTrainingConsentGrant, makeTrainingConsentRequest, makeTrainingDataMessage, makeTransparencyMessage, manifestFromWire, manifestToWire, parseM2mPeerToken, parseM2mTrustedToken, roleFromJwtLevel, selectTransport, signMessage, validateAuthorityAccess, validateCompetitionScope, validateConfig, validateConfigAgainstSchema, validateConfigUpdate, validateConsentMessage, validateContributeScope, validateCrossRegistryCommand, validateDelegationChain, validateLoaForScope, validateManifest, validateMediaChunks, validateMessage, validateNodeAgainstSchema, validateReplay, validateRoleForScope, validateSafetyMessage, validateTrainingDataMessage, validateURI, validateVersionCompat, verifyM2mTrustedToken, verifyM2mTrustedTokenClaims, verifyMessage, verifyPQSignature };

package/dist/browser.mjs

@@ -100,7 +100,7 @@ var RobotURI = class _RobotURI {
 
 // src/version.ts
 var SPEC_VERSION = "2.2.0";
-var SDK_VERSION = "1.2.0";
+var SDK_VERSION = "1.2.1";
 function validateVersionCompat(incomingVersion, localVersion = SPEC_VERSION) {
   const parseParts = (v) => {
     const parts = v.split(".");
@@ -279,7 +279,6 @@ var RCANMessage = class _RCANMessage {
     if (this.mediaChunks !== void 0) obj.mediaChunks = this.mediaChunks;
     if (this.firmwareHash !== void 0) obj.firmwareHash = this.firmwareHash;
     if (this.attestationRef !== void 0) obj.attestationRef = this.attestationRef;
-    if (this.pqSig !== void 0) obj.pqSig = this.pqSig;
     return obj;
   }
   /** Serialize to JSON string */
@@ -3114,21 +3113,15 @@ function fromBase64url(b64) {
   return bytes;
 }
 async function sha256hex(data) {
-  const g = typeof globalThis !== "undefined" ? globalThis : {};
-  const webcrypto = g.crypto;
-  const subtle = webcrypto?.subtle;
-  if (subtle) {
-    const buf = await subtle.digest("SHA-256", data);
+  if (typeof crypto !== "undefined" && crypto.subtle) {
+    const buf = await crypto.subtle.digest("SHA-256", data.buffer);
     return Array.from(new Uint8Array(buf)).map((b) => b.toString(16).padStart(2, "0")).join("").slice(0, 8);
   }
-  const nodeCrypto = await import("crypto").catch(() => null);
-  if (nodeCrypto) {
-    return nodeCrypto.createHash("sha256").update(data).digest("hex").slice(0, 8);
-  }
-  throw new Error("No SHA-256 implementation available");
+  const { createHash } = __require("crypto");
+  return createHash("sha256").update(data).digest("hex").slice(0, 8);
 }
 var _mlDsaModule;
-async function requireNoblePostQuantum() {
+async function requireMlDsa() {
   if (_mlDsaModule) return _mlDsaModule;
   if (typeof __require !== "undefined") {
     try {
@@ -3142,7 +3135,7 @@ async function requireNoblePostQuantum() {
     return _mlDsaModule;
   } catch {
     throw new Error(
-      "ML-DSA signing requires @noble/post-quantum. Install with: npm install @noble/post-quantum"
+      "ML-DSA-65 signing requires @noble/post-quantum. Install with: npm install @noble/post-quantum"
     );
   }
 }
@@ -3155,23 +3148,16 @@ var MLDSAKeyPair = class _MLDSAKeyPair {
     this.publicKey = data.publicKey;
     this.secretKey = data.secretKey;
   }
-  /** Generate a new ML-DSA-65 key pair. */
   static async generate() {
-    const { ml_dsa65 } = await requireNoblePostQuantum();
-    const kp = ml_dsa65.keygen();
+    const m = await requireMlDsa();
+    const kp = m.ml_dsa65.keygen();
     const keyId = await sha256hex(kp.publicKey);
-    return new _MLDSAKeyPair({
-      publicKey: kp.publicKey,
-      secretKey: kp.secretKey,
-      keyId
-    });
+    return new _MLDSAKeyPair({ publicKey: kp.publicKey, secretKey: kp.secretKey, keyId });
   }
-  /** Build a verify-only key pair from raw public key bytes. */
   static async fromPublicKey(publicKey) {
     const keyId = await sha256hex(publicKey);
     return new _MLDSAKeyPair({ publicKey, keyId });
   }
-  /** Build a full key pair from saved bytes (public + secret). */
   static async fromKeyMaterial(publicKey, secretKey) {
     const keyId = await sha256hex(publicKey);
     return new _MLDSAKeyPair({ publicKey, secretKey, keyId });
@@ -3179,82 +3165,68 @@ var MLDSAKeyPair = class _MLDSAKeyPair {
   get hasPrivateKey() {
     return this.secretKey !== void 0;
   }
-  /** Sign raw bytes; returns ML-DSA-65 signature (3309 bytes). */
   async signBytes(data) {
-    if (!this.secretKey) {
-      throw new Error("Cannot sign: MLDSAKeyPair has no private key (verify-only)");
-    }
-    const { ml_dsa65 } = await requireNoblePostQuantum();
-    return ml_dsa65.sign(data, this.secretKey);
+    if (!this.secretKey) throw new Error("Cannot sign: MLDSAKeyPair has no private key (verify-only)");
+    const m = await requireMlDsa();
+    return m.ml_dsa65.sign(data, this.secretKey);
   }
-  /**
-   * Verify an ML-DSA-65 signature.
-   * @returns true if valid
-   * @throws {Error} on invalid signature
-   */
   async verifyBytes(data, signature) {
-    const { ml_dsa65 } = await requireNoblePostQuantum();
-    const ok = ml_dsa65.verify(signature, data, this.publicKey);
-    if (!ok) throw new Error("ML-DSA signature verification failed");
+    const m = await requireMlDsa();
+    const ok = m.ml_dsa65.verify(signature, data, this.publicKey);
+    if (!ok) throw new Error("ML-DSA-65 signature verification failed");
   }
   toString() {
-    const mode = this.hasPrivateKey ? "private+public" : "public-only";
-    return `MLDSAKeyPair(keyId=${this.keyId}, alg=ML-DSA-65, ${mode})`;
+    return `MLDSAKeyPair(keyId=${this.keyId}, alg=ML-DSA-65, ${this.hasPrivateKey ? "private+public" : "public-only"})`;
   }
 };
 function canonicalMessageBytes(msg) {
-  const m = msg;
   const payload = {
     rcan: msg.rcan,
-    msg_id: m["msgId"] ?? m["msg_id"] ?? "",
+    msg_id: msg["msgId"] ?? "",
     timestamp: msg.timestamp,
     cmd: msg.cmd,
     target: msg.target,
     params: msg.params
   };
-  const sorted = JSON.stringify(
-    Object.fromEntries(Object.entries(payload).sort()),
-    null,
-    void 0
+  return new TextEncoder().encode(
+    JSON.stringify(Object.fromEntries(Object.entries(payload).sort()))
   );
-  return new TextEncoder().encode(sorted);
 }
-async function addPQSignature(msg, keypair) {
+async function signMessage(msg, keypair) {
   const payload = canonicalMessageBytes(msg);
   const rawSig = await keypair.signBytes(payload);
-  const block = {
+  msg["signature"] = {
     alg: "ml-dsa-65",
     kid: keypair.keyId,
     sig: toBase64url(rawSig)
   };
-  msg["pqSig"] = block;
   return msg;
 }
-async function verifyPQSignature(msg, trustedKeys, requirePQ = false) {
-  const pqSig = msg["pqSig"];
-  if (!pqSig) {
-    if (requirePQ) {
-      throw new Error("ML-DSA signature (pqSig) required but missing from message");
-    }
-    return;
-  }
-  if (pqSig.alg !== "ml-dsa-65") {
-    throw new Error(`Unsupported PQ signature algorithm: ${pqSig.alg}`);
+async function verifyMessage(msg, trustedKeys) {
+  const sig = msg.signature;
+  if (!sig) throw new Error("Message is unsigned \u2014 signature field missing");
+  if (sig.alg !== "ml-dsa-65") {
+    throw new Error(
+      `Unsupported signature algorithm: ${sig.alg}. RCAN v2.2 requires ml-dsa-65 (Ed25519 is deprecated).`
+    );
   }
-  const matched = trustedKeys.find((k) => k.keyId === pqSig.kid);
+  const matched = trustedKeys.find((k) => k.keyId === sig.kid);
   if (!matched) {
     throw new Error(
-      `No trusted ML-DSA key with kid=${pqSig.kid}. Known kids: [${trustedKeys.map((k) => k.keyId).join(", ")}]`
+      `No trusted ML-DSA-65 key with kid=${sig.kid}. Known kids: [${trustedKeys.map((k) => k.keyId).join(", ")}]`
     );
   }
   let rawSig;
   try {
-    rawSig = fromBase64url(pqSig.sig);
+    rawSig = fromBase64url(sig.sig);
   } catch (e) {
-    throw new Error(`Invalid base64url ML-DSA signature: ${e}`);
+    throw new Error(`Invalid base64url sig: ${e}`);
   }
-  const payload = canonicalMessageBytes(msg);
-  await matched.verifyBytes(payload, rawSig);
+  await matched.verifyBytes(canonicalMessageBytes(msg), rawSig);
+}
+var addPQSignature = signMessage;
+async function verifyPQSignature(msg, trustedKeys, _requirePQ = true) {
+  return verifyMessage(msg, trustedKeys);
 }
 
 // src/index.ts
@@ -3382,6 +3354,7 @@ export {
   parseM2mTrustedToken,
   roleFromJwtLevel,
   selectTransport,
+  signMessage,
   validateAuthorityAccess,
   validateCompetitionScope,
   validateConfig,
@@ -3404,6 +3377,7 @@ export {
   validateVersionCompat,
   verifyM2mTrustedToken,
   verifyM2mTrustedTokenClaims,
+  verifyMessage,
   verifyPQSignature
 };
 //# sourceMappingURL=browser.mjs.map