npm - @dev.sail.money/sailor - Versions diffs - 0.1.0-local → 1.0.0-38 - Mend

@dev.sail.money/sailor 0.1.0-local → 1.0.0-38

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (153) hide show

package/templates/custom-mandate/mandates/SailCalldata.sol CHANGED Viewed

@@ -1,118 +1,118 @@
-// SPDX-License-Identifier: MIT
-pragma solidity 0.8.26;
-// ─────────────────────────────────────────────────────────────────────────────
-// SailCalldata — safe static-parameter extraction for IPermission.evaluate()
-//
-// PROBLEM
-//   evaluate(bytes calldata txData, Context calldata ctx) receives raw ABI-
-//   encoded calldata. Extracting parameters by hand is the most dangerous part
-//   of permission writing:
-//     • Forgetting the length check before decoding → silent wrong value or
-//       revert instead of clean `return false`.
-//     • Wrong slot index → decoding the wrong parameter (type-checks, still wrong).
-//     • Truncation bugs when casting uint256 slots to address (padding bits).
-//
-// SOLUTION
-//   This library centralises the three operations into named helpers:
-//     1. hasParams()  — explicit length guard (call once, at the top of evaluate)
-//     2. asAddress()  — extract + mask to 20 bytes
-//     3. asUint256(), asInt256(), asBytes32(), asBool(), asUint128() — typed slots
-//
-//   All helpers are view/pure and add zero gas overhead beyond the slice itself.
-//
-// USAGE (replace abi.decode pattern)
-//
-//   // Before:
-//   if (txData.length < 4 + 3 * 32) return false;
-//   (address asset, uint256 amount, address onBehalfOf) =
-//       abi.decode(txData[4:], (address, uint256, address));
-//
-//   // After:
-//   if (!SailCalldata.hasParams(txData, 3)) return false;
-//   address  asset      = SailCalldata.asAddress(txData, 0);
-//   uint256  amount     = SailCalldata.asUint256(txData, 1);
-//   address  onBehalfOf = SailCalldata.asAddress(txData, 2);
-//
-// LIMITATIONS
-//   Only covers static (fixed-size) ABI types. Dynamic types (bytes, string,
-//   arrays) use pointer indirection — decode them with abi.decode(txData[4:], ...)
-//   after the hasParams() guard, or write a dedicated extractor.
-//
-// SLOT INDEXING
-//   Slots are 0-indexed from the first constructor parameter (after the 4-byte
-//   selector). Slot 0 = bytes [4..35], slot 1 = bytes [36..67], etc.
-// ─────────────────────────────────────────────────────────────────────────────
-library SailCalldata {
-    // ── Guards ────────────────────────────────────────────────────────────────
-    /// @notice Returns true when txData is long enough to hold `params` static
-    ///         32-byte ABI slots after the 4-byte selector.
-    /// @dev    Call this once at the top of evaluate() before any slot access.
-    ///         Returns false (not revert) so evaluate() can return false cleanly.
-    function hasParams(bytes calldata txData, uint256 params) internal pure returns (bool) {
-        return txData.length >= 4 + params * 32;
-    }
-    // ── Static-type extractors ────────────────────────────────────────────────
-    // All assume hasParams() has already been checked for the relevant slot.
-    // Accessing an out-of-bounds slot will cause the calldata slice to revert —
-    // always guard with hasParams() first.
-    /// @notice Extract an address from ABI slot `i` (0-indexed after selector).
-    ///         Masks to 20 bytes, discarding the ABI zero-padding in the upper 12.
-    function asAddress(bytes calldata txData, uint256 i) internal pure returns (address) {
-        return address(uint160(uint256(bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32]))));
-    }
-    /// @notice Extract a uint256 from ABI slot `i`.
-    function asUint256(bytes calldata txData, uint256 i) internal pure returns (uint256) {
-        return uint256(bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32]));
-    }
-    /// @notice Extract an int256 from ABI slot `i`.
-    function asInt256(bytes calldata txData, uint256 i) internal pure returns (int256) {
-        return int256(uint256(bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32])));
-    }
-    /// @notice Extract a bytes32 from ABI slot `i`.
-    function asBytes32(bytes calldata txData, uint256 i) internal pure returns (bytes32) {
-        return bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32]);
-    }
-    /// @notice Extract a bool from ABI slot `i` (true when slot value is non-zero).
-    function asBool(bytes calldata txData, uint256 i) internal pure returns (bool) {
-        return asUint256(txData, i) != 0;
-    }
-    /// @notice Extract a uint128 from ABI slot `i` (lower 128 bits of the slot).
-    function asUint128(bytes calldata txData, uint256 i) internal pure returns (uint128) {
-        return uint128(asUint256(txData, i));
-    }
-    /// @notice Extract a uint64 from ABI slot `i`.
-    function asUint64(bytes calldata txData, uint256 i) internal pure returns (uint64) {
-        return uint64(asUint256(txData, i));
-    }
-    /// @notice Extract a uint32 from ABI slot `i`.
-    function asUint32(bytes calldata txData, uint256 i) internal pure returns (uint32) {
-        return uint32(asUint256(txData, i));
-    }
-    /// @notice Extract a uint24 from ABI slot `i` (e.g. Uniswap fee tier).
-    function asUint24(bytes calldata txData, uint256 i) internal pure returns (uint24) {
-        return uint24(asUint256(txData, i));
-    }
-    /// @notice Extract a uint16 from ABI slot `i` (e.g. Aave referral code).
-    function asUint16(bytes calldata txData, uint256 i) internal pure returns (uint16) {
-        return uint16(asUint256(txData, i));
-    }
-    /// @notice Extract bytes4 (a function selector) from ABI slot `i`.
-    function asBytes4(bytes calldata txData, uint256 i) internal pure returns (bytes4) {
-        return bytes4(asBytes32(txData, i));
-    }
-}
+// SPDX-License-Identifier: MIT
+pragma solidity 0.8.26;
+// ─────────────────────────────────────────────────────────────────────────────
+// SailCalldata — safe static-parameter extraction for IPermission.evaluate()
+//
+// PROBLEM
+//   evaluate(bytes calldata txData, Context calldata ctx) receives raw ABI-
+//   encoded calldata. Extracting parameters by hand is the most dangerous part
+//   of permission writing:
+//     • Forgetting the length check before decoding → silent wrong value or
+//       revert instead of clean `return false`.
+//     • Wrong slot index → decoding the wrong parameter (type-checks, still wrong).
+//     • Truncation bugs when casting uint256 slots to address (padding bits).
+//
+// SOLUTION
+//   This library centralises the three operations into named helpers:
+//     1. hasParams()  — explicit length guard (call once, at the top of evaluate)
+//     2. asAddress()  — extract + mask to 20 bytes
+//     3. asUint256(), asInt256(), asBytes32(), asBool(), asUint128() — typed slots
+//
+//   All helpers are view/pure and add zero gas overhead beyond the slice itself.
+//
+// USAGE (replace abi.decode pattern)
+//
+//   // Before:
+//   if (txData.length < 4 + 3 * 32) return false;
+//   (address asset, uint256 amount, address onBehalfOf) =
+//       abi.decode(txData[4:], (address, uint256, address));
+//
+//   // After:
+//   if (!SailCalldata.hasParams(txData, 3)) return false;
+//   address  asset      = SailCalldata.asAddress(txData, 0);
+//   uint256  amount     = SailCalldata.asUint256(txData, 1);
+//   address  onBehalfOf = SailCalldata.asAddress(txData, 2);
+//
+// LIMITATIONS
+//   Only covers static (fixed-size) ABI types. Dynamic types (bytes, string,
+//   arrays) use pointer indirection — decode them with abi.decode(txData[4:], ...)
+//   after the hasParams() guard, or write a dedicated extractor.
+//
+// SLOT INDEXING
+//   Slots are 0-indexed from the first constructor parameter (after the 4-byte
+//   selector). Slot 0 = bytes [4..35], slot 1 = bytes [36..67], etc.
+// ─────────────────────────────────────────────────────────────────────────────
+library SailCalldata {
+    // ── Guards ────────────────────────────────────────────────────────────────
+    /// @notice Returns true when txData is long enough to hold `params` static
+    ///         32-byte ABI slots after the 4-byte selector.
+    /// @dev    Call this once at the top of evaluate() before any slot access.
+    ///         Returns false (not revert) so evaluate() can return false cleanly.
+    function hasParams(bytes calldata txData, uint256 params) internal pure returns (bool) {
+        return txData.length >= 4 + params * 32;
+    }
+    // ── Static-type extractors ────────────────────────────────────────────────
+    // All assume hasParams() has already been checked for the relevant slot.
+    // Accessing an out-of-bounds slot will cause the calldata slice to revert —
+    // always guard with hasParams() first.
+    /// @notice Extract an address from ABI slot `i` (0-indexed after selector).
+    ///         Masks to 20 bytes, discarding the ABI zero-padding in the upper 12.
+    function asAddress(bytes calldata txData, uint256 i) internal pure returns (address) {
+        return address(uint160(uint256(bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32]))));
+    }
+    /// @notice Extract a uint256 from ABI slot `i`.
+    function asUint256(bytes calldata txData, uint256 i) internal pure returns (uint256) {
+        return uint256(bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32]));
+    }
+    /// @notice Extract an int256 from ABI slot `i`.
+    function asInt256(bytes calldata txData, uint256 i) internal pure returns (int256) {
+        return int256(uint256(bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32])));
+    }
+    /// @notice Extract a bytes32 from ABI slot `i`.
+    function asBytes32(bytes calldata txData, uint256 i) internal pure returns (bytes32) {
+        return bytes32(txData[4 + i * 32 : 4 + (i + 1) * 32]);
+    }
+    /// @notice Extract a bool from ABI slot `i` (true when slot value is non-zero).
+    function asBool(bytes calldata txData, uint256 i) internal pure returns (bool) {
+        return asUint256(txData, i) != 0;
+    }
+    /// @notice Extract a uint128 from ABI slot `i` (lower 128 bits of the slot).
+    function asUint128(bytes calldata txData, uint256 i) internal pure returns (uint128) {
+        return uint128(asUint256(txData, i));
+    }
+    /// @notice Extract a uint64 from ABI slot `i`.
+    function asUint64(bytes calldata txData, uint256 i) internal pure returns (uint64) {
+        return uint64(asUint256(txData, i));
+    }
+    /// @notice Extract a uint32 from ABI slot `i`.
+    function asUint32(bytes calldata txData, uint256 i) internal pure returns (uint32) {
+        return uint32(asUint256(txData, i));
+    }
+    /// @notice Extract a uint24 from ABI slot `i` (e.g. Uniswap fee tier).
+    function asUint24(bytes calldata txData, uint256 i) internal pure returns (uint24) {
+        return uint24(asUint256(txData, i));
+    }
+    /// @notice Extract a uint16 from ABI slot `i` (e.g. Aave referral code).
+    function asUint16(bytes calldata txData, uint256 i) internal pure returns (uint16) {
+        return uint16(asUint256(txData, i));
+    }
+    /// @notice Extract bytes4 (a function selector) from ABI slot `i`.
+    function asBytes4(bytes calldata txData, uint256 i) internal pure returns (bytes4) {
+        return bytes4(asBytes32(txData, i));
+    }
+}

package/templates/default/.cursor/rules CHANGED Viewed

@@ -1,25 +1,25 @@
-# Sail Agent Project
-You are an AI assistant helping the user set up and operate a Sail Protocol SMA (Separately Managed Account) using the Sailor toolkit.
-**Read `AGENTS.md` first.** It is the canonical guide — voice, stage-by-stage workflow, permission authoring, deployment, and automation.
-## Quick reference
-| File | Purpose |
-|------|---------|
-| `AGENTS.md` | Full operator guide — start here |
-| `.sail/config.json` | Project config (chain, contracts) |
-| `.sail/account.json` | Active SMA address |
-| `.sail/.env.local` | RPC URL and passphrase — never commit |
-| `.sail/keys/manager.json` | Encrypted agent key |
-| `.sail/activity.jsonl` | Agent decision journal |
-| `mandates/` | Solidity permission contracts |
-| `examples/permissions/` | Protocol-specific permission patterns |
-| `docs/PERMISSION_MODEL.md` | Conjunctive vs selective kernel deep-dive |
-## Rules
-- Work through AGENTS.md stages in order — never skip
-- Always ask before any action that costs gas or moves funds
-- The browser UI at localhost:3333 is required for mandate signing and monitoring
-- `SAIL_PASSPHRASE` unlocks the manager key headlessly for `sailor run`
+# Sail Agent Project
+You are an AI assistant helping the user set up and operate a Sail Protocol SMA (Separately Managed Account) using the Sailor toolkit.
+**Read `AGENTS.md` first.** It is the canonical guide — voice, stage-by-stage workflow, permission authoring, deployment, and automation.
+## Quick reference
+| File | Purpose |
+|------|---------|
+| `AGENTS.md` | Full operator guide — start here |
+| `.sail/config.json` | Project config (chain, contracts) |
+| `.sail/account.json` | Active SMA address |
+| `.sail/.env.local` | RPC URL and passphrase — never commit |
+| `.sail/keys/manager.json` | Encrypted agent key |
+| `.sail/activity.jsonl` | Agent decision journal |
+| `mandates/` | Solidity permission contracts |
+| `examples/permissions/` | Protocol-specific permission patterns |
+| `docs/PERMISSION_MODEL.md` | Conjunctive vs selective kernel deep-dive |
+## Rules
+- Work through AGENTS.md stages in order — never skip
+- Always ask before any action that costs gas or moves funds
+- The browser UI at localhost:3333 is required for mandate signing and monitoring
+- `SAIL_PASSPHRASE` unlocks the manager key headlessly for `sailor run`

package/templates/default/.env.example CHANGED Viewed

@@ -1,20 +1,20 @@
-# Sailor agent environment
-#
-# RPC configuration — two patterns, pick one:
-#
-# Option A: single active chain (simplest)
-RPC_URL=https://your-rpc-endpoint
-CHAIN_ID=8453
-#
-# Option B: per-chain endpoints (multi-chain projects, or if you prefer explicit names)
-# Set CHAIN_ID to the chain sailor run uses; omit RPC_URL if all chains have a specific var.
-# CHAIN_ID=8453
-# BASE_RPC_URL=https://your-base-endpoint
-# ARBITRUM_RPC_URL=https://your-arbitrum-endpoint
-# UNICHAIN_RPC_URL=https://your-unichain-endpoint
-# ETH_MAINNET_RPC_URL=https://your-mainnet-endpoint
-# BASE_SEPOLIA_RPC_URL=https://your-base-sepolia-endpoint
-# SEPOLIA_RPC_URL=https://your-sepolia-endpoint
-# Optional: non-interactive passphrase (CI, GitHub Actions, launchd, systemd)
-# SAIL_PASSPHRASE=change-me-to-a-strong-passphrase
+# Sailor agent environment
+#
+# RPC configuration — two patterns, pick one:
+#
+# Option A: single active chain (simplest)
+RPC_URL=https://your-rpc-endpoint
+CHAIN_ID=8453
+#
+# Option B: per-chain endpoints (multi-chain projects, or if you prefer explicit names)
+# Set CHAIN_ID to the chain sailor run uses; omit RPC_URL if all chains have a specific var.
+# CHAIN_ID=8453
+# BASE_RPC_URL=https://your-base-endpoint
+# ARBITRUM_RPC_URL=https://your-arbitrum-endpoint
+# UNICHAIN_RPC_URL=https://your-unichain-endpoint
+# ETH_MAINNET_RPC_URL=https://your-mainnet-endpoint
+# BASE_SEPOLIA_RPC_URL=https://your-base-sepolia-endpoint
+# SEPOLIA_RPC_URL=https://your-sepolia-endpoint
+# Optional: non-interactive passphrase (CI, GitHub Actions, launchd, systemd)
+# SAIL_PASSPHRASE=change-me-to-a-strong-passphrase

package/templates/default/.github/workflows/agent-tick.yml CHANGED Viewed

@@ -1,33 +1,33 @@
-name: Agent Tick
-on:
-  schedule:
-    # Every Monday at 09:00 UTC
-    - cron: "0 9 * * 1"
-  workflow_dispatch:
-jobs:
-  tick:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
-        with:
-          node-version: 20
-          cache: "npm"
-      - name: Install dependencies
-        run: npm ci
-      - name: Copy keystore to expected path
-        run: |
-          mkdir -p .sail/keys
-          cp ci-keystore.json .sail/keys/manager.json
-      - name: Run agent tick
-        env:
-          RPC_URL: ${{ secrets.RPC_URL }}
-          SAIL_PASSPHRASE: ${{ secrets.SAIL_PASSPHRASE }}
-          CHAIN_ID: ${{ vars.CHAIN_ID || '8453' }}
-        run: npx sailor run --once
+name: Agent Tick
+on:
+  schedule:
+    # Every Monday at 09:00 UTC
+    - cron: "0 9 * * 1"
+  workflow_dispatch:
+jobs:
+  tick:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-node@v4
+        with:
+          node-version: 20
+          cache: "npm"
+      - name: Install dependencies
+        run: npm ci
+      - name: Copy keystore to expected path
+        run: |
+          mkdir -p .sail/keys
+          cp ci-keystore.json .sail/keys/manager.json
+      - name: Run agent tick
+        env:
+          RPC_URL: ${{ secrets.RPC_URL }}
+          SAIL_PASSPHRASE: ${{ secrets.SAIL_PASSPHRASE }}
+          CHAIN_ID: ${{ vars.CHAIN_ID || '8453' }}
+        run: npx sailor run --once

package/templates/default/.sail/README.md CHANGED Viewed

@@ -1,13 +1,13 @@
-# Sailor Project Workspace
-This folder is the local workspace for one Sailor agent deployment.
-## Layout
-- `config.json` is the project manifest: name, chain, and state location.
-- `keys/` stores encrypted local signing keys. Never commit these files.
-- `runtime/` is for local UI and signing handoff state.
-- `state/` is for persistent agent state, audit logs, and tx history.
-AI coding agents should read the project's `AGENTS.md` and this folder's `config.json`
-before changing strategy code or running commands that touch funds.
+# Sailor Project Workspace
+This folder is the local workspace for one Sailor agent deployment.
+## Layout
+- `config.json` is the project manifest: name, chain, and state location.
+- `keys/` stores encrypted local signing keys. Never commit these files.
+- `runtime/` is for local UI and signing handoff state.
+- `state/` is for persistent agent state, audit logs, and tx history.
+AI coding agents should read the project's `AGENTS.md` and this folder's `config.json`
+before changing strategy code or running commands that touch funds.

package/templates/default/.sail/config.json CHANGED Viewed

@@ -1,10 +1,10 @@
-{
-  "version": 1,
-  "name": "sail-agent",
-  "chainId": null,
-  "stateDir": ".sail/state",
-  "contracts": {
-    "kernel": "",
-    "mandateFactory": ""
-  }
-}
+{
+  "version": 1,
+  "name": "sail-agent",
+  "chainId": null,
+  "stateDir": ".sail/state",
+  "contracts": {
+    "kernel": "",
+    "mandateFactory": ""
+  }
+}