@dexterai/vault 0.1.0

package/LICENSE

@@ -0,0 +1,24 @@
+MIT License
+
+Copyright (c) 2025 Dexter
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+
+

package/README.md

@@ -0,0 +1,61 @@
+# @dexterai/vault
+
+The canonical off-chain mirror of the dexter-vault Solana Anchor program.
+
+This package owns every TypeScript file in the Dexter codebase that
+produces bytes the on-chain program will verify. If you are about to
+hand-roll an instruction builder, a precompile message, a Swig role list,
+or a vault account decoder, stop and import from here instead.
+
+## Install
+
+```bash
+npm install @dexterai/vault
+```
+
+## Why this package exists
+
+Three places used to hand-roll the same protocol. Drift was the default.
+This package is the structural fix: there is exactly one TypeScript file
+that knows how to build each instruction, encode each message, decode
+the vault account, and provision the canonical 4-role Swig.
+
+## Version coupling
+
+`@dexterai/vault@0.1.x` is compatible with dexter-vault program version 2
+(10 vault instructions plus 2 session-key instructions
+(`register_session_key`/`revoke_session_key`) — 12 total Anchor
+discriminators; role 3 ProgramExec for `settle_tab_voucher`). Future
+program versions will bump the SDK major or have their delta documented
+in CHANGELOG.
+
+## Subpath exports
+
+- `@dexterai/vault` — types + counterfactual derivation
+- `@dexterai/vault/types` — `VaultState`, `ActiveSession`, `PendingWithdrawal`, `SessionKey`, `SessionScope`, `SignedVoucher`, `VoucherPayload`
+- `@dexterai/vault/constants` — program IDs, USDC mint, all 12 discriminators
+- `@dexterai/vault/instructions` — every builder; the canonical `buildSwigCreationBundle`
+- `@dexterai/vault/messages` — `sessionRegisterMessage` (180 bytes), `sessionRevokeMessage` (128 bytes), `voucherPayloadMessage` / `buildVoucherMessage` (44 bytes), `buildSetSwigOperationMessage`
+- `@dexterai/vault/reader` — `readVaultOnchain` (slim), `readVaultFull` (with active session)
+- `@dexterai/vault/precompile` — `buildSecp256r1VerifyInstruction`, `buildPrecompileMessage`, `buildEd25519VerifyInstruction`
+- `@dexterai/vault/signers` — `Ed25519Signer`, `PasskeySigner` interfaces
+- `@dexterai/vault/signers/node` — `NodeEd25519Signer` (tweetnacl-backed)
+
+## Known gaps (v0.1)
+
+- **No `BrowserPasskeySigner`.** v0.1 ships the `PasskeySigner` interface
+  but no implementation. dexter-fe continues to hand-roll WebAuthn until
+  v0.2 (tracked as task #235). Lift target: `dexter-fe/app/lib/passkey.ts`
+  + `dexter-fe/app/lib/passkey-anon.ts`. AAGUID/UA capture must survive
+  the lift.
+
+## Byte-parity guarantee
+
+`tests/byte-parity.test.ts` (added in v0.1 build, see Task 3 of the extract plan) snapshots:
+- All 12 instruction discriminators (10 vault + 2 session-key)
+- All 3 message layouts (180-byte registration, 128-byte revocation, 44-byte voucher)
+- The canonical vault account decode (v2 layout)
+- The counterfactual Swig derivation for a known seed
+
+Any change to any of these requires an explicit snapshot update —
+flipping a byte by accident fails CI.

package/dist/constants/index.cjs

@@ -0,0 +1,92 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/constants/index.ts
+var constants_exports = {};
+__export(constants_exports, {
+  DEXTER_VAULT_PROGRAM_ID: () => DEXTER_VAULT_PROGRAM_ID,
+  DISCRIMINATORS: () => DISCRIMINATORS,
+  ED25519_PROGRAM_ID: () => ED25519_PROGRAM_ID,
+  INSTRUCTIONS_SYSVAR_ID: () => INSTRUCTIONS_SYSVAR_ID,
+  OTS_SESSION_REGISTER_V1_DOMAIN: () => OTS_SESSION_REGISTER_V1_DOMAIN,
+  OTS_SESSION_REVOKE_V1_DOMAIN: () => OTS_SESSION_REVOKE_V1_DOMAIN,
+  SECP256R1_PROGRAM_ID: () => SECP256R1_PROGRAM_ID,
+  SWIG_PROGRAM_ID: () => SWIG_PROGRAM_ID,
+  USDC_DEVNET: () => USDC_DEVNET,
+  USDC_MAINNET: () => USDC_MAINNET,
+  VAULT_SEED_PREFIX: () => VAULT_SEED_PREFIX
+});
+module.exports = __toCommonJS(constants_exports);
+var import_web3 = require("@solana/web3.js");
+var DEXTER_VAULT_PROGRAM_ID = new import_web3.PublicKey(
+  "Hg3wRaydFtJhYrdvYrKECacpJYDsC9Px7yKmpncj2fhc"
+);
+var SWIG_PROGRAM_ID = new import_web3.PublicKey(
+  "swigypWHEksbC64pWKwah1WTeh9JXwx8H1rJHLdbQMB"
+);
+var SECP256R1_PROGRAM_ID = new import_web3.PublicKey(
+  "Secp256r1SigVerify1111111111111111111111111"
+);
+var ED25519_PROGRAM_ID = new import_web3.PublicKey(
+  "Ed25519SigVerify111111111111111111111111111"
+);
+var INSTRUCTIONS_SYSVAR_ID = new import_web3.PublicKey(
+  "Sysvar1nstructions1111111111111111111111111"
+);
+var USDC_MAINNET = "EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v";
+var USDC_DEVNET = "4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU";
+var VAULT_SEED_PREFIX = Buffer.from("vault");
+var DISCRIMINATORS = Object.freeze({
+  initialize_vault: Uint8Array.from([48, 191, 163, 44, 71, 129, 63, 164]),
+  set_swig: Uint8Array.from([253, 229, 89, 206, 192, 118, 137, 165]),
+  settle_voucher: Uint8Array.from([144, 176, 128, 220, 156, 79, 41, 54]),
+  request_withdrawal: Uint8Array.from([251, 85, 121, 205, 56, 201, 12, 177]),
+  finalize_withdrawal: Uint8Array.from([178, 87, 206, 68, 201, 186, 164, 232]),
+  force_release: Uint8Array.from([122, 190, 243, 252, 54, 202, 208, 234]),
+  rotate_passkey: Uint8Array.from([28, 134, 49, 89, 196, 34, 58, 174]),
+  rotate_dexter_authority: Uint8Array.from([145, 60, 4, 119, 180, 205, 236, 134]),
+  prove_passkey: Uint8Array.from([35, 175, 41, 143, 201, 118, 49, 184]),
+  settle_tab_voucher: Uint8Array.from([173, 22, 98, 31, 110, 129, 59, 161]),
+  register_session_key: Uint8Array.from([69, 94, 60, 44, 49, 199, 183, 233]),
+  revoke_session_key: Uint8Array.from([81, 192, 32, 110, 104, 116, 144, 151])
+});
+var OTS_SESSION_REGISTER_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REGISTER_V1"), 0);
+  return buf;
+})();
+var OTS_SESSION_REVOKE_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REVOKE_V1"), 0);
+  return buf;
+})();
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  DEXTER_VAULT_PROGRAM_ID,
+  DISCRIMINATORS,
+  ED25519_PROGRAM_ID,
+  INSTRUCTIONS_SYSVAR_ID,
+  OTS_SESSION_REGISTER_V1_DOMAIN,
+  OTS_SESSION_REVOKE_V1_DOMAIN,
+  SECP256R1_PROGRAM_ID,
+  SWIG_PROGRAM_ID,
+  USDC_DEVNET,
+  USDC_MAINNET,
+  VAULT_SEED_PREFIX
+});

package/dist/constants/index.d.cts

@@ -0,0 +1,34 @@
+import { PublicKey } from '@solana/web3.js';
+
+/**
+ * Canonical on-chain constants. Every program ID, every discriminator.
+ * If a value here changes, exactly one test snapshot in tests/byte-parity.test.ts
+ * needs to update — that's the gate.
+ */
+
+declare const DEXTER_VAULT_PROGRAM_ID: PublicKey;
+declare const SWIG_PROGRAM_ID: PublicKey;
+declare const SECP256R1_PROGRAM_ID: PublicKey;
+declare const ED25519_PROGRAM_ID: PublicKey;
+declare const INSTRUCTIONS_SYSVAR_ID: PublicKey;
+declare const USDC_MAINNET = "EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v";
+declare const USDC_DEVNET = "4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU";
+declare const VAULT_SEED_PREFIX: Buffer<ArrayBuffer>;
+declare const DISCRIMINATORS: Readonly<{
+    initialize_vault: Uint8Array<ArrayBuffer>;
+    set_swig: Uint8Array<ArrayBuffer>;
+    settle_voucher: Uint8Array<ArrayBuffer>;
+    request_withdrawal: Uint8Array<ArrayBuffer>;
+    finalize_withdrawal: Uint8Array<ArrayBuffer>;
+    force_release: Uint8Array<ArrayBuffer>;
+    rotate_passkey: Uint8Array<ArrayBuffer>;
+    rotate_dexter_authority: Uint8Array<ArrayBuffer>;
+    prove_passkey: Uint8Array<ArrayBuffer>;
+    settle_tab_voucher: Uint8Array<ArrayBuffer>;
+    register_session_key: Uint8Array<ArrayBuffer>;
+    revoke_session_key: Uint8Array<ArrayBuffer>;
+}>;
+declare const OTS_SESSION_REGISTER_V1_DOMAIN: Uint8Array;
+declare const OTS_SESSION_REVOKE_V1_DOMAIN: Uint8Array;
+
+export { DEXTER_VAULT_PROGRAM_ID, DISCRIMINATORS, ED25519_PROGRAM_ID, INSTRUCTIONS_SYSVAR_ID, OTS_SESSION_REGISTER_V1_DOMAIN, OTS_SESSION_REVOKE_V1_DOMAIN, SECP256R1_PROGRAM_ID, SWIG_PROGRAM_ID, USDC_DEVNET, USDC_MAINNET, VAULT_SEED_PREFIX };

package/dist/constants/index.d.ts

@@ -0,0 +1,34 @@
+import { PublicKey } from '@solana/web3.js';
+
+/**
+ * Canonical on-chain constants. Every program ID, every discriminator.
+ * If a value here changes, exactly one test snapshot in tests/byte-parity.test.ts
+ * needs to update — that's the gate.
+ */
+
+declare const DEXTER_VAULT_PROGRAM_ID: PublicKey;
+declare const SWIG_PROGRAM_ID: PublicKey;
+declare const SECP256R1_PROGRAM_ID: PublicKey;
+declare const ED25519_PROGRAM_ID: PublicKey;
+declare const INSTRUCTIONS_SYSVAR_ID: PublicKey;
+declare const USDC_MAINNET = "EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v";
+declare const USDC_DEVNET = "4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU";
+declare const VAULT_SEED_PREFIX: Buffer<ArrayBuffer>;
+declare const DISCRIMINATORS: Readonly<{
+    initialize_vault: Uint8Array<ArrayBuffer>;
+    set_swig: Uint8Array<ArrayBuffer>;
+    settle_voucher: Uint8Array<ArrayBuffer>;
+    request_withdrawal: Uint8Array<ArrayBuffer>;
+    finalize_withdrawal: Uint8Array<ArrayBuffer>;
+    force_release: Uint8Array<ArrayBuffer>;
+    rotate_passkey: Uint8Array<ArrayBuffer>;
+    rotate_dexter_authority: Uint8Array<ArrayBuffer>;
+    prove_passkey: Uint8Array<ArrayBuffer>;
+    settle_tab_voucher: Uint8Array<ArrayBuffer>;
+    register_session_key: Uint8Array<ArrayBuffer>;
+    revoke_session_key: Uint8Array<ArrayBuffer>;
+}>;
+declare const OTS_SESSION_REGISTER_V1_DOMAIN: Uint8Array;
+declare const OTS_SESSION_REVOKE_V1_DOMAIN: Uint8Array;
+
+export { DEXTER_VAULT_PROGRAM_ID, DISCRIMINATORS, ED25519_PROGRAM_ID, INSTRUCTIONS_SYSVAR_ID, OTS_SESSION_REGISTER_V1_DOMAIN, OTS_SESSION_REVOKE_V1_DOMAIN, SECP256R1_PROGRAM_ID, SWIG_PROGRAM_ID, USDC_DEVNET, USDC_MAINNET, VAULT_SEED_PREFIX };

package/dist/constants/index.js

@@ -0,0 +1,57 @@
+// src/constants/index.ts
+import { PublicKey } from "@solana/web3.js";
+var DEXTER_VAULT_PROGRAM_ID = new PublicKey(
+  "Hg3wRaydFtJhYrdvYrKECacpJYDsC9Px7yKmpncj2fhc"
+);
+var SWIG_PROGRAM_ID = new PublicKey(
+  "swigypWHEksbC64pWKwah1WTeh9JXwx8H1rJHLdbQMB"
+);
+var SECP256R1_PROGRAM_ID = new PublicKey(
+  "Secp256r1SigVerify1111111111111111111111111"
+);
+var ED25519_PROGRAM_ID = new PublicKey(
+  "Ed25519SigVerify111111111111111111111111111"
+);
+var INSTRUCTIONS_SYSVAR_ID = new PublicKey(
+  "Sysvar1nstructions1111111111111111111111111"
+);
+var USDC_MAINNET = "EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v";
+var USDC_DEVNET = "4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU";
+var VAULT_SEED_PREFIX = Buffer.from("vault");
+var DISCRIMINATORS = Object.freeze({
+  initialize_vault: Uint8Array.from([48, 191, 163, 44, 71, 129, 63, 164]),
+  set_swig: Uint8Array.from([253, 229, 89, 206, 192, 118, 137, 165]),
+  settle_voucher: Uint8Array.from([144, 176, 128, 220, 156, 79, 41, 54]),
+  request_withdrawal: Uint8Array.from([251, 85, 121, 205, 56, 201, 12, 177]),
+  finalize_withdrawal: Uint8Array.from([178, 87, 206, 68, 201, 186, 164, 232]),
+  force_release: Uint8Array.from([122, 190, 243, 252, 54, 202, 208, 234]),
+  rotate_passkey: Uint8Array.from([28, 134, 49, 89, 196, 34, 58, 174]),
+  rotate_dexter_authority: Uint8Array.from([145, 60, 4, 119, 180, 205, 236, 134]),
+  prove_passkey: Uint8Array.from([35, 175, 41, 143, 201, 118, 49, 184]),
+  settle_tab_voucher: Uint8Array.from([173, 22, 98, 31, 110, 129, 59, 161]),
+  register_session_key: Uint8Array.from([69, 94, 60, 44, 49, 199, 183, 233]),
+  revoke_session_key: Uint8Array.from([81, 192, 32, 110, 104, 116, 144, 151])
+});
+var OTS_SESSION_REGISTER_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REGISTER_V1"), 0);
+  return buf;
+})();
+var OTS_SESSION_REVOKE_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REVOKE_V1"), 0);
+  return buf;
+})();
+export {
+  DEXTER_VAULT_PROGRAM_ID,
+  DISCRIMINATORS,
+  ED25519_PROGRAM_ID,
+  INSTRUCTIONS_SYSVAR_ID,
+  OTS_SESSION_REGISTER_V1_DOMAIN,
+  OTS_SESSION_REVOKE_V1_DOMAIN,
+  SECP256R1_PROGRAM_ID,
+  SWIG_PROGRAM_ID,
+  USDC_DEVNET,
+  USDC_MAINNET,
+  VAULT_SEED_PREFIX
+};

package/dist/counterfactual.cjs

@@ -0,0 +1,138 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/counterfactual.ts
+var counterfactual_exports = {};
+__export(counterfactual_exports, {
+  deriveCounterfactualAddresses: () => deriveCounterfactualAddresses
+});
+module.exports = __toCommonJS(counterfactual_exports);
+var import_lib2 = require("@swig-wallet/lib");
+
+// src/instructions/swigBundle.ts
+var import_node_crypto = require("crypto");
+var import_kit = require("@swig-wallet/kit");
+var import_lib = require("@swig-wallet/lib");
+var import_bs58 = __toESM(require("bs58"), 1);
+var import_web32 = require("@solana/web3.js");
+
+// src/constants/index.ts
+var import_web3 = require("@solana/web3.js");
+var DEXTER_VAULT_PROGRAM_ID = new import_web3.PublicKey(
+  "Hg3wRaydFtJhYrdvYrKECacpJYDsC9Px7yKmpncj2fhc"
+);
+var SWIG_PROGRAM_ID = new import_web3.PublicKey(
+  "swigypWHEksbC64pWKwah1WTeh9JXwx8H1rJHLdbQMB"
+);
+var SECP256R1_PROGRAM_ID = new import_web3.PublicKey(
+  "Secp256r1SigVerify1111111111111111111111111"
+);
+var ED25519_PROGRAM_ID = new import_web3.PublicKey(
+  "Ed25519SigVerify111111111111111111111111111"
+);
+var INSTRUCTIONS_SYSVAR_ID = new import_web3.PublicKey(
+  "Sysvar1nstructions1111111111111111111111111"
+);
+var VAULT_SEED_PREFIX = Buffer.from("vault");
+var DISCRIMINATORS = Object.freeze({
+  initialize_vault: Uint8Array.from([48, 191, 163, 44, 71, 129, 63, 164]),
+  set_swig: Uint8Array.from([253, 229, 89, 206, 192, 118, 137, 165]),
+  settle_voucher: Uint8Array.from([144, 176, 128, 220, 156, 79, 41, 54]),
+  request_withdrawal: Uint8Array.from([251, 85, 121, 205, 56, 201, 12, 177]),
+  finalize_withdrawal: Uint8Array.from([178, 87, 206, 68, 201, 186, 164, 232]),
+  force_release: Uint8Array.from([122, 190, 243, 252, 54, 202, 208, 234]),
+  rotate_passkey: Uint8Array.from([28, 134, 49, 89, 196, 34, 58, 174]),
+  rotate_dexter_authority: Uint8Array.from([145, 60, 4, 119, 180, 205, 236, 134]),
+  prove_passkey: Uint8Array.from([35, 175, 41, 143, 201, 118, 49, 184]),
+  settle_tab_voucher: Uint8Array.from([173, 22, 98, 31, 110, 129, 59, 161]),
+  register_session_key: Uint8Array.from([69, 94, 60, 44, 49, 199, 183, 233]),
+  revoke_session_key: Uint8Array.from([81, 192, 32, 110, 104, 116, 144, 151])
+});
+var OTS_SESSION_REGISTER_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REGISTER_V1"), 0);
+  return buf;
+})();
+var OTS_SESSION_REVOKE_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REVOKE_V1"), 0);
+  return buf;
+})();
+
+// src/instructions/swigBundle.ts
+var SWIG_ID_DOMAIN = "dexter-swig-id:v1:";
+var DEFAULT_SESSION_TTL_SECONDS = BigInt(30 * 24 * 60 * 60);
+var DEFAULT_SPEND_LIMIT_ATOMIC = BigInt(1e9);
+var SWIG_PROGRAM_EXEC_PREFIX = new Uint8Array([
+  178,
+  87,
+  206,
+  68,
+  201,
+  186,
+  164,
+  232
+]);
+var SWIG_PROGRAM_EXEC_PREFIX_SETTLE_TAB = new Uint8Array([
+  173,
+  22,
+  98,
+  31,
+  110,
+  129,
+  59,
+  161
+]);
+function deriveSwigId(identitySeed, hmacKey) {
+  if (hmacKey.length !== 32) {
+    throw new Error(`hmacKey must be 32 bytes, got ${hmacKey.length}`);
+  }
+  return (0, import_node_crypto.createHmac)("sha256", Buffer.from(hmacKey)).update(SWIG_ID_DOMAIN).update(Buffer.from(identitySeed)).digest();
+}
+async function expectedSwigAddressFor(identitySeed, hmacKey) {
+  const swigId = deriveSwigId(identitySeed, hmacKey);
+  return String(await (0, import_kit.findSwigPda)(swigId));
+}
+
+// src/counterfactual.ts
+async function deriveCounterfactualAddresses(args) {
+  if (args.identitySeed.length === 0) {
+    throw new Error("identitySeed must be non-empty");
+  }
+  const swigStateAddress = await expectedSwigAddressFor(args.identitySeed, args.hmacKey);
+  const [walletPda] = await (0, import_lib2.findSwigSystemAddressPdaRaw)(swigStateAddress);
+  return {
+    swigStateAddress,
+    swigWalletAddress: walletPda.toBase58()
+  };
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  deriveCounterfactualAddresses
+});

package/dist/counterfactual.d.cts

@@ -0,0 +1,17 @@
+/**
+ * Counterfactual Swig address derivation — derive both Swig PDAs
+ * (state + wallet-address) without an RPC call and without deploying.
+ *
+ * Used by enrollment flows that show a user a deposit address before the
+ * Swig is on chain.
+ */
+interface CounterfactualAddresses {
+    swigStateAddress: string;
+    swigWalletAddress: string;
+}
+declare function deriveCounterfactualAddresses(args: {
+    identitySeed: Uint8Array;
+    hmacKey: Uint8Array;
+}): Promise<CounterfactualAddresses>;
+
+export { type CounterfactualAddresses, deriveCounterfactualAddresses };

package/dist/counterfactual.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Counterfactual Swig address derivation — derive both Swig PDAs
+ * (state + wallet-address) without an RPC call and without deploying.
+ *
+ * Used by enrollment flows that show a user a deposit address before the
+ * Swig is on chain.
+ */
+interface CounterfactualAddresses {
+    swigStateAddress: string;
+    swigWalletAddress: string;
+}
+declare function deriveCounterfactualAddresses(args: {
+    identitySeed: Uint8Array;
+    hmacKey: Uint8Array;
+}): Promise<CounterfactualAddresses>;
+
+export { type CounterfactualAddresses, deriveCounterfactualAddresses };

package/dist/counterfactual.js

@@ -0,0 +1,113 @@
+// src/counterfactual.ts
+import { findSwigSystemAddressPdaRaw } from "@swig-wallet/lib";
+
+// src/instructions/swigBundle.ts
+import { createHmac } from "crypto";
+import {
+  getInstructionsFromContext,
+  findSwigPda,
+  fetchNullableSwig
+} from "@swig-wallet/kit";
+import {
+  Actions,
+  createProgramExecAuthorityInfo,
+  createEd25519AuthorityInfo,
+  createEd25519SessionAuthorityInfo,
+  getCreateSwigWithMultipleAuthoritiesInstructionContextBuilder
+} from "@swig-wallet/lib";
+import bs58 from "bs58";
+import { PublicKey as PublicKey2 } from "@solana/web3.js";
+
+// src/constants/index.ts
+import { PublicKey } from "@solana/web3.js";
+var DEXTER_VAULT_PROGRAM_ID = new PublicKey(
+  "Hg3wRaydFtJhYrdvYrKECacpJYDsC9Px7yKmpncj2fhc"
+);
+var SWIG_PROGRAM_ID = new PublicKey(
+  "swigypWHEksbC64pWKwah1WTeh9JXwx8H1rJHLdbQMB"
+);
+var SECP256R1_PROGRAM_ID = new PublicKey(
+  "Secp256r1SigVerify1111111111111111111111111"
+);
+var ED25519_PROGRAM_ID = new PublicKey(
+  "Ed25519SigVerify111111111111111111111111111"
+);
+var INSTRUCTIONS_SYSVAR_ID = new PublicKey(
+  "Sysvar1nstructions1111111111111111111111111"
+);
+var VAULT_SEED_PREFIX = Buffer.from("vault");
+var DISCRIMINATORS = Object.freeze({
+  initialize_vault: Uint8Array.from([48, 191, 163, 44, 71, 129, 63, 164]),
+  set_swig: Uint8Array.from([253, 229, 89, 206, 192, 118, 137, 165]),
+  settle_voucher: Uint8Array.from([144, 176, 128, 220, 156, 79, 41, 54]),
+  request_withdrawal: Uint8Array.from([251, 85, 121, 205, 56, 201, 12, 177]),
+  finalize_withdrawal: Uint8Array.from([178, 87, 206, 68, 201, 186, 164, 232]),
+  force_release: Uint8Array.from([122, 190, 243, 252, 54, 202, 208, 234]),
+  rotate_passkey: Uint8Array.from([28, 134, 49, 89, 196, 34, 58, 174]),
+  rotate_dexter_authority: Uint8Array.from([145, 60, 4, 119, 180, 205, 236, 134]),
+  prove_passkey: Uint8Array.from([35, 175, 41, 143, 201, 118, 49, 184]),
+  settle_tab_voucher: Uint8Array.from([173, 22, 98, 31, 110, 129, 59, 161]),
+  register_session_key: Uint8Array.from([69, 94, 60, 44, 49, 199, 183, 233]),
+  revoke_session_key: Uint8Array.from([81, 192, 32, 110, 104, 116, 144, 151])
+});
+var OTS_SESSION_REGISTER_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REGISTER_V1"), 0);
+  return buf;
+})();
+var OTS_SESSION_REVOKE_V1_DOMAIN = (() => {
+  const buf = new Uint8Array(32);
+  buf.set(new TextEncoder().encode("OTS_SESSION_REVOKE_V1"), 0);
+  return buf;
+})();
+
+// src/instructions/swigBundle.ts
+var SWIG_ID_DOMAIN = "dexter-swig-id:v1:";
+var DEFAULT_SESSION_TTL_SECONDS = BigInt(30 * 24 * 60 * 60);
+var DEFAULT_SPEND_LIMIT_ATOMIC = BigInt(1e9);
+var SWIG_PROGRAM_EXEC_PREFIX = new Uint8Array([
+  178,
+  87,
+  206,
+  68,
+  201,
+  186,
+  164,
+  232
+]);
+var SWIG_PROGRAM_EXEC_PREFIX_SETTLE_TAB = new Uint8Array([
+  173,
+  22,
+  98,
+  31,
+  110,
+  129,
+  59,
+  161
+]);
+function deriveSwigId(identitySeed, hmacKey) {
+  if (hmacKey.length !== 32) {
+    throw new Error(`hmacKey must be 32 bytes, got ${hmacKey.length}`);
+  }
+  return createHmac("sha256", Buffer.from(hmacKey)).update(SWIG_ID_DOMAIN).update(Buffer.from(identitySeed)).digest();
+}
+async function expectedSwigAddressFor(identitySeed, hmacKey) {
+  const swigId = deriveSwigId(identitySeed, hmacKey);
+  return String(await findSwigPda(swigId));
+}
+
+// src/counterfactual.ts
+async function deriveCounterfactualAddresses(args) {
+  if (args.identitySeed.length === 0) {
+    throw new Error("identitySeed must be non-empty");
+  }
+  const swigStateAddress = await expectedSwigAddressFor(args.identitySeed, args.hmacKey);
+  const [walletPda] = await findSwigSystemAddressPdaRaw(swigStateAddress);
+  return {
+    swigStateAddress,
+    swigWalletAddress: walletPda.toBase58()
+  };
+}
+export {
+  deriveCounterfactualAddresses
+};