@dfm-fi/agent 0.2.0

package/dist/recovery-flow.js

@@ -0,0 +1,123 @@
+import { signBase64Transaction } from './signing.js';
+import { submitSignedTx } from './submit.js';
+const MAX_SLIPPAGE_BPS = 1_000; // MAX_ZAP_SLIPPAGE_BPS — the per-leg on-chain cap.
+/**
+ * Cancel a stalled escrow and return its current holdings to the test wallet.
+ * Reads the live escrow first (for a clean "no escrow" message + to report the
+ * held balances), then prepare → sign → submit.
+ */
+export async function runCancel(config, api, user, vault) {
+    const before = await api.getZapV2Status(vault, user);
+    if (!before) {
+        throw new Error(`No open zap-v2 escrow for vault ${vault.slice(0, 8)}… and this wallet — nothing to cancel.`);
+    }
+    const prepared = await api.prepareZapCancelV2(vault);
+    const signed = signBase64Transaction(config, prepared.transaction);
+    const signature = await submitSignedTx(config, signed, prepared.blockhash, prepared.lastValidBlockHeight);
+    return {
+        ok: true,
+        vault,
+        signature,
+        escrowBefore: {
+            mode: before.mode,
+            state: before.state,
+            legsFilled: before.legsFilled,
+            legsTotal: before.legsTotal,
+            minOuts: before.minOuts,
+            actualOuts: before.actualOuts,
+        },
+        message: `Cancelled escrow on vault ${vault.slice(0, 8)}… (${before.legsFilled}/${before.legsTotal} legs ` +
+            `had filled). Held USDC + basket returned to the test wallet as-is; escrow closed. ` +
+            `${before.mode === 0 ? 'For a deposit, you keep the USDC + any swapped basket dust.' : 'For a redeem, you keep the partially-sold basket + USDC.'}`,
+    };
+}
+/**
+ * Compute SAFE loosened per-leg floors from the live pinned `minOuts` by relaxing
+ * each by `loosenPct` percent (default 5%). Each result is `floor(old * (100 -
+ * pct) / 100)`, clamped to ≥1 (the API rejects non-positive floors) and never
+ * above the old value (on-chain monotonic-loosening rule). Returns the new floor
+ * array in basket order.
+ */
+export function computeLoosenedMinOuts(oldMinOuts, loosenPct) {
+    if (loosenPct < 0 || loosenPct > 50) {
+        throw new Error(`loosenPct must be 0..50; got ${loosenPct}.`);
+    }
+    const num = BigInt(Math.round(100 - loosenPct));
+    return oldMinOuts.map((s) => {
+        const old = BigInt(s);
+        if (old <= 0n)
+            return '1'; // already a sentinel — keep it positive for the API.
+        let relaxed = (old * num) / 100n;
+        if (relaxed < 1n)
+            relaxed = 1n; // floor at 1 raw unit (API rejects 0).
+        if (relaxed > old)
+            relaxed = old; // never tighten.
+        return relaxed.toString();
+    });
+}
+/**
+ * Loosen a stalled escrow's pinned floors so the orchestrator can finish. The
+ * new floors are DERIVED from the live escrow (`minOuts` relaxed by `loosenPct`),
+ * never hand-supplied — the only knobs an operator turns are HOW MUCH to relax
+ * (`loosenPct`), the new slippage, and an optional expiry extension.
+ *
+ * `newSlippageBps` is clamped to ≥ the current pinned slippage (the on-chain rule
+ * forbids tightening) and ≤ the 1000-bps cap.
+ */
+export async function runUpdateEnvelope(config, api, user, vault, opts) {
+    const live = await api.getZapV2Status(vault, user);
+    if (!live) {
+        throw new Error(`No open zap-v2 escrow for vault ${vault.slice(0, 8)}… and this wallet — nothing to update.`);
+    }
+    if (live.readyToClose) {
+        throw new Error(`Escrow is already READY to close (${live.legsFilled}/${live.legsTotal} legs filled) — ` +
+            `call the deposit/redeem close path, not update-envelope.`);
+    }
+    const loosenPct = opts.loosenPct ?? 5;
+    const newMinOuts = computeLoosenedMinOuts(live.minOuts, loosenPct);
+    // Slippage may only LOOSEN (≥ current pinned), capped at the on-chain max.
+    const requested = opts.newSlippageBps ?? live.slippageBps;
+    const newSlippageBps = Math.min(MAX_SLIPPAGE_BPS, Math.max(live.slippageBps, requested));
+    // Redeem-only NET-USDC floor: relax it by the same pct (≤ current; ≥0 allowed).
+    let newMinUsdcOut;
+    if (live.mode === 1) {
+        const oldUsdc = BigInt(live.minUsdcOut || '0');
+        if (oldUsdc > 0n) {
+            let relaxed = (oldUsdc * BigInt(Math.round(100 - loosenPct))) / 100n;
+            if (relaxed > oldUsdc)
+                relaxed = oldUsdc;
+            newMinUsdcOut = relaxed.toString();
+        }
+        else {
+            newMinUsdcOut = '0';
+        }
+    }
+    const extendSecs = opts.extendSecs ?? 0;
+    const prepared = await api.prepareUpdateEnvelopeV2(vault, {
+        newMinOuts,
+        newSlippageBps,
+        newMinUsdcOut,
+        extendSecs,
+    });
+    const signed = signBase64Transaction(config, prepared.transaction);
+    const signature = await submitSignedTx(config, signed, prepared.blockhash, prepared.lastValidBlockHeight);
+    return {
+        ok: true,
+        vault,
+        signature,
+        loosening: {
+            oldMinOuts: live.minOuts,
+            newMinOuts,
+            oldSlippageBps: live.slippageBps,
+            newSlippageBps,
+            oldMinUsdcOut: live.mode === 1 ? live.minUsdcOut : undefined,
+            newMinUsdcOut,
+            extendSecs,
+            loosenPct,
+        },
+        message: `Loosened the escrow floors by ${loosenPct}% (slippage ${live.slippageBps}→${newSlippageBps} bps` +
+            `${extendSecs ? `, +${extendSecs}s expiry` : ''}). The orchestrator will retry the stuck legs. ` +
+            `Poll zap_status — if it still won't fill, cancel to recover the holdings.`,
+    };
+}
+//# sourceMappingURL=recovery-flow.js.map

package/dist/recovery-flow.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"recovery-flow.js","sourceRoot":"","sources":["../src/recovery-flow.ts"],"names":[],"mappings":"AA2BA,OAAO,EAAE,qBAAqB,EAAE,MAAM,cAAc,CAAC;AACrD,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAE7C,MAAM,gBAAgB,GAAG,KAAK,CAAC,CAAC,mDAAmD;AA6BnF;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,MAAmB,EACnB,GAAiB,EACjB,IAAY,EACZ,KAAa;IAEb,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,cAAc,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;IACrD,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CACb,mCAAmC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,wCAAwC,CAC7F,CAAC;IACJ,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,kBAAkB,CAAC,KAAK,CAAC,CAAC;IACrD,MAAM,MAAM,GAAG,qBAAqB,CAAC,MAAM,EAAE,QAAQ,CAAC,WAAW,CAAC,CAAC;IACnE,MAAM,SAAS,GAAG,MAAM,cAAc,CACpC,MAAM,EACN,MAAM,EACN,QAAQ,CAAC,SAAS,EAClB,QAAQ,CAAC,oBAAoB,CAC9B,CAAC;IAEF,OAAO;QACL,EAAE,EAAE,IAAI;QACR,KAAK;QACL,SAAS;QACT,YAAY,EAAE;YACZ,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,UAAU,EAAE,MAAM,CAAC,UAAU;SAC9B;QACD,OAAO,EACL,6BAA6B,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,MAAM,CAAC,UAAU,IAAI,MAAM,CAAC,SAAS,QAAQ;YACjG,oFAAoF;YACpF,GAAG,MAAM,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,6DAA6D,CAAC,CAAC,CAAC,0DAA0D,EAAE;KACtJ,CAAC;AACJ,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,sBAAsB,CAAC,UAAoB,EAAE,SAAiB;IAC5E,IAAI,SAAS,GAAG,CAAC,IAAI,SAAS,GAAG,EAAE,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,gCAAgC,SAAS,GAAG,CAAC,CAAC;IAChE,CAAC;IACD,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,SAAS,CAAC,CAAC,CAAC;IAChD,OAAO,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QAC1B,MAAM,GAAG,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QACtB,IAAI,GAAG,IAAI,EAAE;YAAE,OAAO,GAAG,CAAC,CAAC,qDAAqD;QAChF,IAAI,OAAO,GAAG,CAAC,GAAG,GAAG,GAAG,CAAC,GAAG,IAAI,CAAC;QACjC,IAAI,OAAO,GAAG,EAAE;YAAE,OAAO,GAAG,EAAE,CAAC,CAAC,uCAAuC;QACvE,IAAI,OAAO,GAAG,GAAG;YAAE,OAAO,GAAG,GAAG,CAAC,CAAC,iBAAiB;QACnD,OAAO,OAAO,CAAC,QAAQ,EAAE,CAAC;IAC5B,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,MAAmB,EACnB,GAAiB,EACjB,IAAY,EACZ,KAAa,EACb,IAA0E;IAE1E,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,cAAc,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;IACnD,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,IAAI,KAAK,CACb,mCAAmC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,wCAAwC,CAC7F,CAAC;IACJ,CAAC;IACD,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CACb,qCAAqC,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,SAAS,kBAAkB;YACtF,0DAA0D,CAC7D,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,CAAC,CAAC;IACtC,MAAM,UAAU,GAAG,sBAAsB,CAAC,IAAI,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;IAEnE,2EAA2E;IAC3E,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC,WAAW,CAAC;IAC1D,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,gBAAgB,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,CAAC;IAEzF,gFAAgF;IAChF,IAAI,aAAiC,CAAC;IACtC,IAAI,IAAI,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;QACpB,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,IAAI,GAAG,CAAC,CAAC;QAC/C,IAAI,OAAO,GAAG,EAAE,EAAE,CAAC;YACjB,IAAI,OAAO,GAAG,CAAC,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,SAAS,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;YACrE,IAAI,OAAO,GAAG,OAAO;gBAAE,OAAO,GAAG,OAAO,CAAC;YACzC,aAAa,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC;QACrC,CAAC;aAAM,CAAC;YACN,aAAa,GAAG,GAAG,CAAC;QACtB,CAAC;IACH,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,IAAI,CAAC,CAAC;IAExC,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,uBAAuB,CAAC,KAAK,EAAE;QACxD,UAAU;QACV,cAAc;QACd,aAAa;QACb,UAAU;KACX,CAAC,CAAC;IACH,MAAM,MAAM,GAAG,qBAAqB,CAAC,MAAM,EAAE,QAAQ,CAAC,WAAW,CAAC,CAAC;IACnE,MAAM,SAAS,GAAG,MAAM,cAAc,CACpC,MAAM,EACN,MAAM,EACN,QAAQ,CAAC,SAAS,EAClB,QAAQ,CAAC,oBAAoB,CAC9B,CAAC;IAEF,OAAO;QACL,EAAE,EAAE,IAAI;QACR,KAAK;QACL,SAAS;QACT,SAAS,EAAE;YACT,UAAU,EAAE,IAAI,CAAC,OAAO;YACxB,UAAU;YACV,cAAc,EAAE,IAAI,CAAC,WAAW;YAChC,cAAc;YACd,aAAa,EAAE,IAAI,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;YAC5D,aAAa;YACb,UAAU;YACV,SAAS;SACV;QACD,OAAO,EACL,iCAAiC,SAAS,eAAe,IAAI,CAAC,WAAW,IAAI,cAAc,MAAM;YACjG,GAAG,UAAU,CAAC,CAAC,CAAC,MAAM,UAAU,UAAU,CAAC,CAAC,CAAC,EAAE,iDAAiD;YAChG,2EAA2E;KAC9E,CAAC;AACJ,CAAC"}

package/dist/session.d.ts

@@ -0,0 +1,52 @@
+/**
+ * SIWS session manager — turns the local test keypair into an authenticated
+ * Bearer session against the DFM v2 API.
+ *
+ * AUTH DESIGN (matches api/src/modules/auth):
+ *   1. POST /auth/nonce { wallet }            → { nonce, message }
+ *      The server BUILDS the exact `message` (domain-bound, nonce-embedded). The
+ *      client must sign THAT string verbatim — it must not reconstruct it.
+ *   2. sign `message` locally with the test keypair (Ed25519 → base58 sig)
+ *   3. POST /auth/siws { wallet, signature, message, client: 'native' }
+ *      → { accessToken, refreshToken, wallet, expiresIn }   (Bearer tokens)
+ *      The server ALSO enforces the closed-alpha access gate here: a wallet not
+ *      on the allowlist gets 403 and never receives a token.
+ *   4. Subsequent calls send `Authorization: Bearer <accessToken>`.
+ *   5. On 401 (token expired/rotated), re-run 1–3 once and retry.
+ *
+ * We use the `native` client surface (Bearer tokens in the body) rather than the
+ * `web` surface (httpOnly cookies) because an MCP agent is not a browser and has
+ * no cookie jar — Bearer is the correct programmatic path.
+ *
+ * The session caches the access token in-memory only (process lifetime). It is
+ * never persisted, never logged, never returned through MCP.
+ */
+import type { AgentConfig } from './config.js';
+export declare class SiwsSession {
+    private readonly config;
+    private accessToken;
+    private wallet;
+    /** Epoch ms when the cached access token should be considered stale. */
+    private expiresAtMs;
+    /**
+     * In-flight sign-in promise — dedupes concurrent token requests so a burst of
+     * parallel authed calls (or a StrictMode-style double fire) does NOT trigger
+     * multiple SIWS round-trips (which churn nonces + can trip the /auth/siws
+     * rate limit). The first caller signs in; the rest await the same promise.
+     */
+    private signInPromise;
+    constructor(config: AgentConfig);
+    /** The authenticated wallet (test-wallet pubkey). Loads the keypair on first use. */
+    get walletAddress(): string;
+    /**
+     * Return a valid Bearer access token, signing in (or refreshing) if needed.
+     * `force` re-authenticates even if a cached token looks valid (used after a
+     * 401 from a protected call).
+     */
+    getAccessToken(force?: boolean): Promise<string>;
+    private signIn;
+    private parseExpiryMs;
+    /** POST helper used for the unauthenticated auth endpoints. */
+    private postJson;
+}
+//# sourceMappingURL=session.d.ts.map

package/dist/session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAI/C,qBAAa,WAAW;IAaV,OAAO,CAAC,QAAQ,CAAC,MAAM;IAZnC,OAAO,CAAC,WAAW,CAAuB;IAC1C,OAAO,CAAC,MAAM,CAAuB;IACrC,wEAAwE;IACxE,OAAO,CAAC,WAAW,CAAK;IACxB;;;;;OAKG;IACH,OAAO,CAAC,aAAa,CAAgC;gBAExB,MAAM,EAAE,WAAW;IAEhD,qFAAqF;IACrF,IAAI,aAAa,IAAI,MAAM,CAK1B;IAED;;;;OAIG;IACG,cAAc,CAAC,KAAK,UAAQ,GAAG,OAAO,CAAC,MAAM,CAAC;YAatC,MAAM;IA2CpB,OAAO,CAAC,aAAa;IAarB,+DAA+D;YACjD,QAAQ;CAYvB"}

package/dist/session.js

@@ -0,0 +1,107 @@
+import { getTestWalletPubkey, signSiwsMessage } from './signing.js';
+export class SiwsSession {
+    config;
+    accessToken = null;
+    wallet = null;
+    /** Epoch ms when the cached access token should be considered stale. */
+    expiresAtMs = 0;
+    /**
+     * In-flight sign-in promise — dedupes concurrent token requests so a burst of
+     * parallel authed calls (or a StrictMode-style double fire) does NOT trigger
+     * multiple SIWS round-trips (which churn nonces + can trip the /auth/siws
+     * rate limit). The first caller signs in; the rest await the same promise.
+     */
+    signInPromise = null;
+    constructor(config) {
+        this.config = config;
+    }
+    /** The authenticated wallet (test-wallet pubkey). Loads the keypair on first use. */
+    get walletAddress() {
+        if (!this.wallet) {
+            this.wallet = getTestWalletPubkey(this.config);
+        }
+        return this.wallet;
+    }
+    /**
+     * Return a valid Bearer access token, signing in (or refreshing) if needed.
+     * `force` re-authenticates even if a cached token looks valid (used after a
+     * 401 from a protected call).
+     */
+    async getAccessToken(force = false) {
+        const now = Date.now();
+        if (!force && this.accessToken && now < this.expiresAtMs) {
+            return this.accessToken;
+        }
+        // Coalesce concurrent sign-ins onto a single in-flight promise.
+        if (this.signInPromise)
+            return this.signInPromise;
+        this.signInPromise = this.signIn().finally(() => {
+            this.signInPromise = null;
+        });
+        return this.signInPromise;
+    }
+    async signIn() {
+        const wallet = this.walletAddress;
+        // Step 1 — nonce + server-built message.
+        const nonceRes = await this.postJson('/auth/nonce', { wallet });
+        if (!nonceRes?.message) {
+            throw new Error('SIWS nonce response missing `message` — cannot sign in.');
+        }
+        // Step 2 — sign the EXACT message locally.
+        const signature = signSiwsMessage(this.config, nonceRes.message);
+        // Step 3 — exchange for Bearer tokens (native client surface).
+        let tokens;
+        try {
+            tokens = await this.postJson('/auth/siws', {
+                wallet,
+                signature,
+                message: nonceRes.message,
+                client: 'native',
+            });
+        }
+        catch (e) {
+            const msg = e.message;
+            // The closed-alpha gate denies non-allowlisted wallets at sign-in.
+            if (/403/.test(msg) || /access list/i.test(msg)) {
+                throw new Error(`Sign-in rejected for test wallet ${wallet.slice(0, 8)}… — it is not on the ` +
+                    `closed-alpha access allowlist. An admin must add it via the /ops Access ` +
+                    `panel (POST /access/allowlist). Original: ${msg}`);
+            }
+            throw e;
+        }
+        if (!tokens?.accessToken) {
+            throw new Error('SIWS sign-in succeeded but returned no accessToken.');
+        }
+        this.accessToken = tokens.accessToken;
+        // Parse `expiresIn` (e.g. "1h") conservatively; default to a 5-min skew floor.
+        this.expiresAtMs = Date.now() + this.parseExpiryMs(tokens.expiresIn) - 60_000;
+        return this.accessToken;
+    }
+    parseExpiryMs(expiresIn) {
+        if (!expiresIn)
+            return 60 * 60 * 1000; // default 1h
+        const m = /^(\d+)\s*([smhd])$/.exec(expiresIn.trim());
+        if (!m) {
+            const n = Number(expiresIn);
+            return Number.isFinite(n) ? n * 1000 : 60 * 60 * 1000; // bare seconds, else 1h
+        }
+        const value = Number(m[1]);
+        const unit = m[2];
+        const mult = unit === 's' ? 1000 : unit === 'm' ? 60_000 : unit === 'h' ? 3_600_000 : 86_400_000;
+        return value * mult;
+    }
+    /** POST helper used for the unauthenticated auth endpoints. */
+    async postJson(path, body) {
+        const res = await fetch(`${this.config.apiUrl}${path}`, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify(body),
+        });
+        if (!res.ok) {
+            const text = await res.text().catch(() => '');
+            throw new Error(`POST ${path} → ${res.status}: ${text.slice(0, 300)}`);
+        }
+        return (await res.json());
+    }
+}
+//# sourceMappingURL=session.js.map

package/dist/session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.js","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAyBA,OAAO,EAAE,mBAAmB,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAEpE,MAAM,OAAO,WAAW;IAaO;IAZrB,WAAW,GAAkB,IAAI,CAAC;IAClC,MAAM,GAAkB,IAAI,CAAC;IACrC,wEAAwE;IAChE,WAAW,GAAG,CAAC,CAAC;IACxB;;;;;OAKG;IACK,aAAa,GAA2B,IAAI,CAAC;IAErD,YAA6B,MAAmB;QAAnB,WAAM,GAAN,MAAM,CAAa;IAAG,CAAC;IAEpD,qFAAqF;IACrF,IAAI,aAAa;QACf,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACjB,IAAI,CAAC,MAAM,GAAG,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjD,CAAC;QACD,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,cAAc,CAAC,KAAK,GAAG,KAAK;QAChC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,WAAW,IAAI,GAAG,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;YACzD,OAAO,IAAI,CAAC,WAAW,CAAC;QAC1B,CAAC;QACD,gEAAgE;QAChE,IAAI,IAAI,CAAC,aAAa;YAAE,OAAO,IAAI,CAAC,aAAa,CAAC;QAClD,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE;YAC9C,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;QAC5B,CAAC,CAAC,CAAC;QACH,OAAO,IAAI,CAAC,aAAa,CAAC;IAC5B,CAAC;IAEO,KAAK,CAAC,MAAM;QAClB,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC;QAElC,yCAAyC;QACzC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAgB,aAAa,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;QAC/E,IAAI,CAAC,QAAQ,EAAE,OAAO,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;QAC7E,CAAC;QAED,2CAA2C;QAC3C,MAAM,SAAS,GAAG,eAAe,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;QAEjE,+DAA+D;QAC/D,IAAI,MAAwB,CAAC;QAC7B,IAAI,CAAC;YACH,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAmB,YAAY,EAAE;gBAC3D,MAAM;gBACN,SAAS;gBACT,OAAO,EAAE,QAAQ,CAAC,OAAO;gBACzB,MAAM,EAAE,QAAQ;aACjB,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,mEAAmE;YACnE,IAAI,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;gBAChD,MAAM,IAAI,KAAK,CACb,oCAAoC,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,uBAAuB;oBAC3E,0EAA0E;oBAC1E,6CAA6C,GAAG,EAAE,CACrD,CAAC;YACJ,CAAC;YACD,MAAM,CAAC,CAAC;QACV,CAAC;QAED,IAAI,CAAC,MAAM,EAAE,WAAW,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;QACzE,CAAC;QACD,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,WAAW,CAAC;QACtC,+EAA+E;QAC/E,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,MAAM,CAAC;QAC9E,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAEO,aAAa,CAAC,SAA6B;QACjD,IAAI,CAAC,SAAS;YAAE,OAAO,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,aAAa;QACpD,MAAM,CAAC,GAAG,oBAAoB,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC,CAAC;QACtD,IAAI,CAAC,CAAC,EAAE,CAAC;YACP,MAAM,CAAC,GAAG,MAAM,CAAC,SAAS,CAAC,CAAC;YAC5B,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,wBAAwB;QACjF,CAAC;QACD,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3B,MAAM,IAAI,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAClB,MAAM,IAAI,GAAG,IAAI,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,KAAK,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,KAAK,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,CAAC;QACjG,OAAO,KAAK,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,+DAA+D;IACvD,KAAK,CAAC,QAAQ,CAAI,IAAY,EAAE,IAAa;QACnD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,IAAI,EAAE,EAAE;YACtD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC;SAC3B,CAAC,CAAC;QACH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;YAC9C,MAAM,IAAI,KAAK,CAAC,QAAQ,IAAI,MAAM,GAAG,CAAC,MAAM,KAAK,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;QACzE,CAAC;QACD,OAAO,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAM,CAAC;IACjC,CAAC;CACF"}

package/dist/signing.d.ts

@@ -0,0 +1,30 @@
+import { Keypair } from '@solana/web3.js';
+import type { AgentConfig } from './config.js';
+/**
+ * Load (and cache) the operator's local test keypair. Throws a clear,
+ * key-material-free error if no source is configured or the material is invalid.
+ * Caller MUST have already verified `config.writeEnabled` — this function does
+ * not gate on the write flag (separation of concerns), but it is only reachable
+ * from the write path.
+ */
+export declare function loadTestKeypair(config: AgentConfig): Keypair;
+/** The agent's test-wallet PUBLIC key (base58). Safe to surface + log. */
+export declare function getTestWalletPubkey(config: AgentConfig): string;
+/**
+ * Sign a UTF-8 SIWS message with the test keypair, returning a base58-encoded
+ * Ed25519 signature — exactly what `POST /auth/siws` expects in `signature`.
+ * The message MUST be the verbatim string the API returned from `POST
+ * /auth/nonce` (the server re-derives the domain + nonce and verifies the
+ * signature over that exact text).
+ */
+export declare function signSiwsMessage(config: AgentConfig, message: string): string;
+/**
+ * Sign one base64-encoded v0 VersionedTransaction with the test keypair and
+ * return it re-serialized to base64, ready to submit. Used by the zap-v2 write
+ * path: every tx the `/prepare` endpoints return is signed locally here.
+ *
+ * The tx already carries the API's recent blockhash + fee-payer (the user/test
+ * wallet); we only attach the test wallet's signature.
+ */
+export declare function signBase64Transaction(config: AgentConfig, base64Tx: string): string;
+//# sourceMappingURL=signing.d.ts.map

package/dist/signing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signing.d.ts","sourceRoot":"","sources":["../src/signing.ts"],"names":[],"mappings":"AAuBA,OAAO,EAAE,OAAO,EAAwB,MAAM,iBAAiB,CAAC;AAGhE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAoC/C;;;;;;GAMG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE,WAAW,GAAG,OAAO,CAuC5D;AAED,0EAA0E;AAC1E,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,WAAW,GAAG,MAAM,CAE/D;AAED;;;;;;GAMG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,MAAM,GAAG,MAAM,CAK5E;AAED;;;;;;;GAOG;AACH,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,CAKnF"}

package/dist/signing.js

@@ -0,0 +1,129 @@
+/**
+ * LOCAL signing — the security boundary of the agent.
+ *
+ * ──────────────────────────────────────────────────────────────────────────
+ *  SECURITY INVARIANTS (do not weaken):
+ *   1. The test-wallet secret key is loaded ONLY here, ONLY from a local source
+ *      the operator controls: a file path (`DFM_AGENT_KEYPAIR_PATH`) or an
+ *      env-injected JSON array (`DFM_AGENT_KEYPAIR_JSON`).
+ *   2. The secret key NEVER crosses the MCP boundary: it is never a tool
+ *      argument, never part of a tool result, and never logged. Only the PUBLIC
+ *      key (base58) is ever surfaced.
+ *   3. Any error thrown from here is scrubbed of key material (we only ever
+ *      include the public key or a generic reason).
+ *   4. This module refuses to load the protocol wallet by accident is NOT
+ *      something we can detect by pubkey alone — so the operator guidance is to
+ *      use a dedicated throwaway test wallet. We DO hard-block the well-known
+ *      protocol pubkey as a defense-in-depth tripwire (see PROTOCOL_WALLET).
+ *  ──────────────────────────────────────────────────────────────────────────
+ *
+ * The keypair is loaded lazily (first WRITE call), so the read-only tools and
+ * `npx tsx` smoke runs never touch key material.
+ */
+import { readFileSync } from 'node:fs';
+import { Keypair, VersionedTransaction } from '@solana/web3.js';
+import nacl from 'tweetnacl';
+import bs58 from 'bs58';
+/**
+ * The single hot Protocol Wallet (DIEGO_2) — `factory.admin` + fee recipient +
+ * upgrade authority + backend signer. The agent must NEVER sign with this. If a
+ * loaded keypair resolves to this pubkey we refuse immediately: a test agent
+ * holding the protocol key is a critical misconfiguration.
+ */
+const PROTOCOL_WALLET = '9GjEBsZ1Cos2J6inmgwhBKv9pXGNtLSJ7xQ9xZb29bET';
+let cachedKeypair = null;
+/** Parse a Solana 64-byte secret-key JSON array into a Keypair. */
+function keypairFromJsonArray(json, source) {
+    let arr;
+    try {
+        arr = JSON.parse(json);
+    }
+    catch {
+        // Do NOT echo the content — it may BE the secret.
+        throw new Error(`Test keypair from ${source} is not valid JSON (expected a 64-number array).`);
+    }
+    if (!Array.isArray(arr) || (arr.length !== 64 && arr.length !== 32)) {
+        throw new Error(`Test keypair from ${source} must be a JSON array of 64 (full secret) or 32 (seed) bytes; got length ${Array.isArray(arr) ? arr.length : 'non-array'}.`);
+    }
+    const bytes = Uint8Array.from(arr);
+    try {
+        return bytes.length === 32 ? Keypair.fromSeed(bytes) : Keypair.fromSecretKey(bytes);
+    }
+    catch {
+        throw new Error(`Test keypair from ${source} is not a valid Ed25519 secret key.`);
+    }
+}
+/**
+ * Load (and cache) the operator's local test keypair. Throws a clear,
+ * key-material-free error if no source is configured or the material is invalid.
+ * Caller MUST have already verified `config.writeEnabled` — this function does
+ * not gate on the write flag (separation of concerns), but it is only reachable
+ * from the write path.
+ */
+export function loadTestKeypair(config) {
+    if (cachedKeypair)
+        return cachedKeypair;
+    let kp;
+    if (config.keypairPath) {
+        let raw;
+        try {
+            raw = readFileSync(config.keypairPath, 'utf8');
+        }
+        catch (e) {
+            const code = e.code ?? 'read error';
+            throw new Error(`Could not read test keypair file at DFM_AGENT_KEYPAIR_PATH (${code}). ` +
+                `Set it to a Solana secret-key JSON file the operator controls locally.`);
+        }
+        kp = keypairFromJsonArray(raw, 'DFM_AGENT_KEYPAIR_PATH');
+    }
+    else if (config.keypairJsonEnvPresent) {
+        // Read straight from the env at use-time (not cached as a string anywhere).
+        kp = keypairFromJsonArray(process.env.DFM_AGENT_KEYPAIR_JSON, 'DFM_AGENT_KEYPAIR_JSON');
+    }
+    else {
+        throw new Error('No test keypair configured. Set DFM_AGENT_KEYPAIR_PATH (path to a Solana ' +
+            'secret-key JSON file) or DFM_AGENT_KEYPAIR_JSON (the JSON array inline). ' +
+            'Use a DEDICATED throwaway test wallet — never the protocol wallet.');
+    }
+    const pubkey = kp.publicKey.toBase58();
+    if (pubkey === PROTOCOL_WALLET) {
+        // Wipe and refuse.
+        kp.secretKey.fill(0);
+        throw new Error('REFUSING to load the protocol wallet as the agent test keypair. The agent ' +
+            'must sign with a dedicated throwaway test wallet, never the protocol hot wallet.');
+    }
+    cachedKeypair = kp;
+    return kp;
+}
+/** The agent's test-wallet PUBLIC key (base58). Safe to surface + log. */
+export function getTestWalletPubkey(config) {
+    return loadTestKeypair(config).publicKey.toBase58();
+}
+/**
+ * Sign a UTF-8 SIWS message with the test keypair, returning a base58-encoded
+ * Ed25519 signature — exactly what `POST /auth/siws` expects in `signature`.
+ * The message MUST be the verbatim string the API returned from `POST
+ * /auth/nonce` (the server re-derives the domain + nonce and verifies the
+ * signature over that exact text).
+ */
+export function signSiwsMessage(config, message) {
+    const kp = loadTestKeypair(config);
+    const messageBytes = new TextEncoder().encode(message);
+    const sig = nacl.sign.detached(messageBytes, kp.secretKey);
+    return bs58.encode(sig);
+}
+/**
+ * Sign one base64-encoded v0 VersionedTransaction with the test keypair and
+ * return it re-serialized to base64, ready to submit. Used by the zap-v2 write
+ * path: every tx the `/prepare` endpoints return is signed locally here.
+ *
+ * The tx already carries the API's recent blockhash + fee-payer (the user/test
+ * wallet); we only attach the test wallet's signature.
+ */
+export function signBase64Transaction(config, base64Tx) {
+    const kp = loadTestKeypair(config);
+    const tx = VersionedTransaction.deserialize(Buffer.from(base64Tx, 'base64'));
+    tx.sign([kp]);
+    return Buffer.from(tx.serialize()).toString('base64');
+}
+//# sourceMappingURL=signing.js.map

package/dist/signing.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signing.js","sourceRoot":"","sources":["../src/signing.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,OAAO,EAAE,oBAAoB,EAAE,MAAM,iBAAiB,CAAC;AAChE,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,IAAI,MAAM,MAAM,CAAC;AAGxB;;;;;GAKG;AACH,MAAM,eAAe,GAAG,8CAA8C,CAAC;AAEvE,IAAI,aAAa,GAAmB,IAAI,CAAC;AAEzC,mEAAmE;AACnE,SAAS,oBAAoB,CAAC,IAAY,EAAE,MAAc;IACxD,IAAI,GAAY,CAAC;IACjB,IAAI,CAAC;QACH,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACzB,CAAC;IAAC,MAAM,CAAC;QACP,kDAAkD;QAClD,MAAM,IAAI,KAAK,CAAC,qBAAqB,MAAM,kDAAkD,CAAC,CAAC;IACjG,CAAC;IACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,KAAK,EAAE,IAAI,GAAG,CAAC,MAAM,KAAK,EAAE,CAAC,EAAE,CAAC;QACpE,MAAM,IAAI,KAAK,CACb,qBAAqB,MAAM,4EACzB,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,WACpC,GAAG,CACJ,CAAC;IACJ,CAAC;IACD,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,GAAe,CAAC,CAAC;IAC/C,IAAI,CAAC;QACH,OAAO,KAAK,CAAC,MAAM,KAAK,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;IACtF,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,qBAAqB,MAAM,qCAAqC,CAAC,CAAC;IACpF,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,eAAe,CAAC,MAAmB;IACjD,IAAI,aAAa;QAAE,OAAO,aAAa,CAAC;IAExC,IAAI,EAAW,CAAC;IAChB,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvB,IAAI,GAAW,CAAC;QAChB,IAAI,CAAC;YACH,GAAG,GAAG,YAAY,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QACjD,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,IAAI,GAAI,CAA2B,CAAC,IAAI,IAAI,YAAY,CAAC;YAC/D,MAAM,IAAI,KAAK,CACb,+DAA+D,IAAI,KAAK;gBACtE,wEAAwE,CAC3E,CAAC;QACJ,CAAC;QACD,EAAE,GAAG,oBAAoB,CAAC,GAAG,EAAE,wBAAwB,CAAC,CAAC;IAC3D,CAAC;SAAM,IAAI,MAAM,CAAC,qBAAqB,EAAE,CAAC;QACxC,4EAA4E;QAC5E,EAAE,GAAG,oBAAoB,CAAC,OAAO,CAAC,GAAG,CAAC,sBAAgC,EAAE,wBAAwB,CAAC,CAAC;IACpG,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,KAAK,CACb,2EAA2E;YACzE,2EAA2E;YAC3E,oEAAoE,CACvE,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,CAAC;IACvC,IAAI,MAAM,KAAK,eAAe,EAAE,CAAC;QAC/B,mBAAmB;QACnB,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACrB,MAAM,IAAI,KAAK,CACb,4EAA4E;YAC1E,kFAAkF,CACrF,CAAC;IACJ,CAAC;IAED,aAAa,GAAG,EAAE,CAAC;IACnB,OAAO,EAAE,CAAC;AACZ,CAAC;AAED,0EAA0E;AAC1E,MAAM,UAAU,mBAAmB,CAAC,MAAmB;IACrD,OAAO,eAAe,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,QAAQ,EAAE,CAAC;AACtD,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,eAAe,CAAC,MAAmB,EAAE,OAAe;IAClE,MAAM,EAAE,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACnC,MAAM,YAAY,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACvD,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,YAAY,EAAE,EAAE,CAAC,SAAS,CAAC,CAAC;IAC3D,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;AAC1B,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,qBAAqB,CAAC,MAAmB,EAAE,QAAgB;IACzE,MAAM,EAAE,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACnC,MAAM,EAAE,GAAG,oBAAoB,CAAC,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC;IAC7E,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACd,OAAO,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,SAAS,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;AACxD,CAAC"}

package/dist/submit.d.ts

@@ -0,0 +1,31 @@
+import type { AgentConfig } from './config.js';
+/** Thrown when a tx could not confirm before its blockhash expired. */
+export declare class BlockhashExpiredError extends Error {
+    constructor(message: string);
+}
+/** Thrown when a tx landed but the program reverted. Carries decoded logs. */
+export declare class OnChainRevertError extends Error {
+    readonly signature: string;
+    readonly logs: string[] | null;
+    constructor(message: string, signature: string, logs: string[] | null);
+}
+/**
+ * Submit ONE locally-signed base64 v0 transaction and wait for `confirmed`.
+ * Returns the signature. Rebroadcasts while the blockhash is valid (durable
+ * against dropped txs), then:
+ *   - throws {@link BlockhashExpiredError} if the window closed un-confirmed,
+ *   - throws {@link OnChainRevertError} (with logs) if the program reverted.
+ *
+ * `blockhash` + `lastValidBlockHeight` come from the `/prepare` response.
+ */
+export declare function submitSignedTx(config: AgentConfig, signedBase64: string, blockhash: string, lastValidBlockHeight: number): Promise<string>;
+/**
+ * Submit a batch of signed base64 txs IN ORDER, confirming each before the next.
+ * The zap-v2 open/close `/prepare` endpoints can return more than one tx (large
+ * baskets / split-VAA); they share one blockhash and MUST land sequentially.
+ *
+ * Propagates {@link BlockhashExpiredError} / {@link OnChainRevertError} from the
+ * first failing tx with the index annotated.
+ */
+export declare function submitSignedTxsSequential(config: AgentConfig, signedBase64Txs: string[], blockhash: string, lastValidBlockHeight: number): Promise<string[]>;
+//# sourceMappingURL=submit.d.ts.map

package/dist/submit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"submit.d.ts","sourceRoot":"","sources":["../src/submit.ts"],"names":[],"mappings":"AAuBA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAI/C,uEAAuE;AACvE,qBAAa,qBAAsB,SAAQ,KAAK;gBAClC,OAAO,EAAE,MAAM;CAI5B;AAED,8EAA8E;AAC9E,qBAAa,kBAAmB,SAAQ,KAAK;IAGzC,QAAQ,CAAC,SAAS,EAAE,MAAM;IAC1B,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI;gBAF9B,OAAO,EAAE,MAAM,EACN,SAAS,EAAE,MAAM,EACjB,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI;CAKjC;AAmBD;;;;;;;;GAQG;AACH,wBAAsB,cAAc,CAClC,MAAM,EAAE,WAAW,EACnB,YAAY,EAAE,MAAM,EACpB,SAAS,EAAE,MAAM,EACjB,oBAAoB,EAAE,MAAM,GAC3B,OAAO,CAAC,MAAM,CAAC,CA8DjB;AAED;;;;;;;GAOG;AACH,wBAAsB,yBAAyB,CAC7C,MAAM,EAAE,WAAW,EACnB,eAAe,EAAE,MAAM,EAAE,EACzB,SAAS,EAAE,MAAM,EACjB,oBAAoB,EAAE,MAAM,GAC3B,OAAO,CAAC,MAAM,EAAE,CAAC,CAYnB"}