@dynamic-labs-sdk/client 1.17.1 → 1.18.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (178) hide show
  1. package/dist/core.cjs +7 -5
  2. package/dist/core.cjs.map +1 -1
  3. package/dist/core.esm.js +8 -8
  4. package/dist/core.esm.js.map +1 -1
  5. package/dist/core.native.esm.js +8 -8
  6. package/dist/core.native.esm.js.map +1 -1
  7. package/dist/errors/DeviceRegistrationIdentityMismatchError.d.ts +5 -0
  8. package/dist/errors/DeviceRegistrationIdentityMismatchError.d.ts.map +1 -0
  9. package/dist/errors/UnsafeDeeplinkUrlError.d.ts +17 -0
  10. package/dist/errors/UnsafeDeeplinkUrlError.d.ts.map +1 -0
  11. package/dist/errors/UnsafeNavigationUrlError.d.ts +16 -0
  12. package/dist/errors/UnsafeNavigationUrlError.d.ts.map +1 -0
  13. package/dist/errors/WalletScreeningBlockedError.d.ts +14 -0
  14. package/dist/errors/WalletScreeningBlockedError.d.ts.map +1 -0
  15. package/dist/exports/core.d.ts +4 -0
  16. package/dist/exports/core.d.ts.map +1 -1
  17. package/dist/exports/index.d.ts +5 -0
  18. package/dist/exports/index.d.ts.map +1 -1
  19. package/dist/{getNetworkProviderFromNetworkId-Bfg-NkNJ.native.esm.js → getNetworkProviderFromNetworkId-C6DBO0OX.native.esm.js} +87 -13
  20. package/dist/getNetworkProviderFromNetworkId-C6DBO0OX.native.esm.js.map +1 -0
  21. package/dist/{getNetworkProviderFromNetworkId-pknqqhk1.esm.js → getNetworkProviderFromNetworkId-CEs4SGW4.esm.js} +105 -22
  22. package/dist/getNetworkProviderFromNetworkId-CEs4SGW4.esm.js.map +1 -0
  23. package/dist/{getNetworkProviderFromNetworkId-CS4r9hi7.cjs → getNetworkProviderFromNetworkId-CMIgKqEH.cjs} +119 -18
  24. package/dist/getNetworkProviderFromNetworkId-CMIgKqEH.cjs.map +1 -0
  25. package/dist/{getSignedSessionId-CUw7LJ35.esm.js → getSignedSessionId-CUqILBh8.esm.js} +3 -3
  26. package/dist/{getSignedSessionId-CUw7LJ35.esm.js.map → getSignedSessionId-CUqILBh8.esm.js.map} +1 -1
  27. package/dist/{getSignedSessionId-cMGkmojJ.cjs → getSignedSessionId-De_N_Ofg.cjs} +3 -3
  28. package/dist/{getSignedSessionId-cMGkmojJ.cjs.map → getSignedSessionId-De_N_Ofg.cjs.map} +1 -1
  29. package/dist/{getSignedSessionId-Cl3PEqa8.native.esm.js → getSignedSessionId-Hp1nSbaW.native.esm.js} +3 -3
  30. package/dist/{getSignedSessionId-Cl3PEqa8.native.esm.js.map → getSignedSessionId-Hp1nSbaW.native.esm.js.map} +1 -1
  31. package/dist/{getWalletProviderByKey-lQVfIGFi.esm.js → getWalletProviderByKey-CKORCA8l.esm.js} +2 -2
  32. package/dist/{getWalletProviderByKey-lQVfIGFi.esm.js.map → getWalletProviderByKey-CKORCA8l.esm.js.map} +1 -1
  33. package/dist/{getWalletProviderByKey-CP9Te5Sz.cjs → getWalletProviderByKey-D3e0XMjs.cjs} +2 -2
  34. package/dist/{getWalletProviderByKey-CP9Te5Sz.cjs.map → getWalletProviderByKey-D3e0XMjs.cjs.map} +1 -1
  35. package/dist/{getWalletProviderByKey-24co0tBE.native.esm.js → getWalletProviderByKey-D5M801xH.native.esm.js} +2 -2
  36. package/dist/{getWalletProviderByKey-24co0tBE.native.esm.js.map → getWalletProviderByKey-D5M801xH.native.esm.js.map} +1 -1
  37. package/dist/index.cjs +232 -71
  38. package/dist/index.cjs.map +1 -1
  39. package/dist/index.esm.js +227 -75
  40. package/dist/index.esm.js.map +1 -1
  41. package/dist/index.native.esm.js +227 -75
  42. package/dist/index.native.esm.js.map +1 -1
  43. package/dist/{isDynamicWaasEnabled-BwP1oowd.cjs → isDynamicWaasEnabled-BQuXZne_.cjs} +4 -6
  44. package/dist/isDynamicWaasEnabled-BQuXZne_.cjs.map +1 -0
  45. package/dist/{isDynamicWaasEnabled-BYaqAOml.esm.js → isDynamicWaasEnabled-BaY09iv6.native.esm.js} +3 -5
  46. package/dist/isDynamicWaasEnabled-BaY09iv6.native.esm.js.map +1 -0
  47. package/dist/{isDynamicWaasEnabled-BXe0VyI4.native.esm.js → isDynamicWaasEnabled-BlVIlXMZ.esm.js} +3 -5
  48. package/dist/isDynamicWaasEnabled-BlVIlXMZ.esm.js.map +1 -0
  49. package/dist/{isMfaRequiredForAction-Demz9zlH.native.esm.js → isMfaRequiredForAction-CwOGwiDz.native.esm.js} +3 -5
  50. package/dist/isMfaRequiredForAction-CwOGwiDz.native.esm.js.map +1 -0
  51. package/dist/{isMfaRequiredForAction-Btejc5g3.cjs → isMfaRequiredForAction-Dghiguch.cjs} +4 -6
  52. package/dist/{isMfaRequiredForAction-Btejc5g3.cjs.map → isMfaRequiredForAction-Dghiguch.cjs.map} +1 -1
  53. package/dist/{isMfaRequiredForAction-CqEcCTIe.esm.js → isMfaRequiredForAction-r9aDdmK5.esm.js} +4 -6
  54. package/dist/{isMfaRequiredForAction-CqEcCTIe.esm.js.map → isMfaRequiredForAction-r9aDdmK5.esm.js.map} +1 -1
  55. package/dist/{isUserOnboardingComplete-Cr-YTpcU.native.esm.js → isUserOnboardingComplete-BMNAbXk1.esm.js} +6 -3
  56. package/dist/isUserOnboardingComplete-BMNAbXk1.esm.js.map +1 -0
  57. package/dist/{isUserOnboardingComplete-CBrAH0ZF.esm.js → isUserOnboardingComplete-C-ioFLRR.native.esm.js} +6 -3
  58. package/dist/isUserOnboardingComplete-C-ioFLRR.native.esm.js.map +1 -0
  59. package/dist/{isUserOnboardingComplete-C86NDY7I.cjs → isUserOnboardingComplete-j4b_q9Pf.cjs} +7 -4
  60. package/dist/isUserOnboardingComplete-j4b_q9Pf.cjs.map +1 -0
  61. package/dist/{migrateFromFireblocks-Bbx2wHZD.esm.js → migrateFromFireblocks-D--uqWp5.esm.js} +3 -3
  62. package/dist/{migrateFromFireblocks-Bbx2wHZD.esm.js.map → migrateFromFireblocks-D--uqWp5.esm.js.map} +1 -1
  63. package/dist/{migrateFromFireblocks-D-J6-gRo.native.esm.js → migrateFromFireblocks-D8Y5h0hz.native.esm.js} +3 -3
  64. package/dist/{migrateFromFireblocks-D-J6-gRo.native.esm.js.map → migrateFromFireblocks-D8Y5h0hz.native.esm.js.map} +1 -1
  65. package/dist/{migrateFromFireblocks-B_q8Oawb.cjs → migrateFromFireblocks-D9pJIgt5.cjs} +3 -3
  66. package/dist/{migrateFromFireblocks-B_q8Oawb.cjs.map → migrateFromFireblocks-D9pJIgt5.cjs.map} +1 -1
  67. package/dist/modules/auth/externalAuth/requestExternalAuthElevatedToken/requestExternalAuthElevatedToken.d.ts +0 -1
  68. package/dist/modules/auth/externalAuth/requestExternalAuthElevatedToken/requestExternalAuthElevatedToken.d.ts.map +1 -1
  69. package/dist/modules/auth/externalAuth/signInWithExternalJwt/signInWithExternalJwt.d.ts +0 -1
  70. package/dist/modules/auth/externalAuth/signInWithExternalJwt/signInWithExternalJwt.d.ts.map +1 -1
  71. package/dist/modules/auth/logoutWithReason/logoutWithReason.d.ts.map +1 -1
  72. package/dist/modules/auth/passkeys/registerPasskey/registerPasskey.d.ts +0 -1
  73. package/dist/modules/auth/passkeys/registerPasskey/registerPasskey.d.ts.map +1 -1
  74. package/dist/modules/auth/passkeys/signInWithPasskey/signInWithPasskey.d.ts +0 -1
  75. package/dist/modules/auth/passkeys/signInWithPasskey/signInWithPasskey.d.ts.map +1 -1
  76. package/dist/modules/auth/social/oauth/signInWithSocialRedirect/buildOAuthUrl/getOAuthBaseUrl/getOAuthBaseUrl.d.ts.map +1 -1
  77. package/dist/modules/auth/social/oauth/unlinkSocialAccount/unlinkSocialAccount.d.ts +0 -1
  78. package/dist/modules/auth/social/oauth/unlinkSocialAccount/unlinkSocialAccount.d.ts.map +1 -1
  79. package/dist/modules/auth/updateAuthFromVerifyResponse/updateAuthFromVerifyResponse.d.ts.map +1 -1
  80. package/dist/modules/captcha/getCaptchaSettings/getCaptchaSettings.d.ts +14 -0
  81. package/dist/modules/captcha/getCaptchaSettings/getCaptchaSettings.d.ts.map +1 -0
  82. package/dist/modules/captcha/getCaptchaSettings/index.d.ts +3 -0
  83. package/dist/modules/captcha/getCaptchaSettings/index.d.ts.map +1 -0
  84. package/dist/modules/captcha/isCaptchaRequired/isCaptchaRequired.d.ts.map +1 -1
  85. package/dist/modules/captcha/setCaptchaToken/setCaptchaToken.d.ts +0 -1
  86. package/dist/modules/captcha/setCaptchaToken/setCaptchaToken.d.ts.map +1 -1
  87. package/dist/modules/deviceRegistration/completeDeviceRegistration/completeDeviceRegistration.d.ts.map +1 -1
  88. package/dist/modules/deviceRegistration/isDeviceRegistrationRequired/isDeviceRegistrationRequired.d.ts +1 -0
  89. package/dist/modules/deviceRegistration/isDeviceRegistrationRequired/isDeviceRegistrationRequired.d.ts.map +1 -1
  90. package/dist/modules/flow/attachFlowSource/attachFlowSource.instrumentation.d.ts +9 -0
  91. package/dist/modules/flow/attachFlowSource/attachFlowSource.instrumentation.d.ts.map +1 -0
  92. package/dist/modules/flow/broadcastFlow/broadcastFlow.instrumentation.d.ts +9 -0
  93. package/dist/modules/flow/broadcastFlow/broadcastFlow.instrumentation.d.ts.map +1 -0
  94. package/dist/modules/flow/cancelFlow/cancelFlow.instrumentation.d.ts +8 -0
  95. package/dist/modules/flow/cancelFlow/cancelFlow.instrumentation.d.ts.map +1 -0
  96. package/dist/modules/flow/prepareFlowSigning/prepareFlowSigning.instrumentation.d.ts +9 -0
  97. package/dist/modules/flow/prepareFlowSigning/prepareFlowSigning.instrumentation.d.ts.map +1 -0
  98. package/dist/modules/flow/submitFlowTransaction/submitFlowTransaction.instrumentation.d.ts +9 -0
  99. package/dist/modules/flow/submitFlowTransaction/submitFlowTransaction.instrumentation.d.ts.map +1 -0
  100. package/dist/modules/funding/moonpay/getMoonPayUrl/getMoonPayUrl.d.ts +0 -4
  101. package/dist/modules/funding/moonpay/getMoonPayUrl/getMoonPayUrl.d.ts.map +1 -1
  102. package/dist/modules/mfa/consumeMfaToken/consumeMfaToken.d.ts +0 -1
  103. package/dist/modules/mfa/consumeMfaToken/consumeMfaToken.d.ts.map +1 -1
  104. package/dist/modules/mfa/createNewMfaRecoveryCodes/createNewMfaRecoveryCodes.d.ts +0 -1
  105. package/dist/modules/mfa/createNewMfaRecoveryCodes/createNewMfaRecoveryCodes.d.ts.map +1 -1
  106. package/dist/modules/mfa/isPendingRecoveryCodesAcknowledgment/isPendingRecoveryCodesAcknowledgment.d.ts +1 -0
  107. package/dist/modules/mfa/isPendingRecoveryCodesAcknowledgment/isPendingRecoveryCodesAcknowledgment.d.ts.map +1 -1
  108. package/dist/modules/mfa/isUserMissingMfaAuth/isUserMissingMfaAuth.d.ts +1 -0
  109. package/dist/modules/mfa/isUserMissingMfaAuth/isUserMissingMfaAuth.d.ts.map +1 -1
  110. package/dist/modules/mfa/registerTotpMfaDevice/registerTotpMfaDevice.d.ts +0 -3
  111. package/dist/modules/mfa/registerTotpMfaDevice/registerTotpMfaDevice.d.ts.map +1 -1
  112. package/dist/modules/otp/sendEmailOTP/sendEmailOTP.d.ts +0 -1
  113. package/dist/modules/otp/sendEmailOTP/sendEmailOTP.d.ts.map +1 -1
  114. package/dist/modules/otp/sendSmsOTP/sendSmsOTP.d.ts +0 -1
  115. package/dist/modules/otp/sendSmsOTP/sendSmsOTP.d.ts.map +1 -1
  116. package/dist/modules/otp/verifyOTP/verifyOTP.d.ts +0 -1
  117. package/dist/modules/otp/verifyOTP/verifyOTP.d.ts.map +1 -1
  118. package/dist/modules/user/isUserOnboardingComplete/isUserOnboardingComplete.d.ts +1 -0
  119. package/dist/modules/user/isUserOnboardingComplete/isUserOnboardingComplete.d.ts.map +1 -1
  120. package/dist/modules/user/refreshAuth/refreshAuth.d.ts +0 -1
  121. package/dist/modules/user/refreshAuth/refreshAuth.d.ts.map +1 -1
  122. package/dist/modules/user/updateUser/updateUser.d.ts +0 -1
  123. package/dist/modules/user/updateUser/updateUser.d.ts.map +1 -1
  124. package/dist/modules/wallets/getWalletProviderDataByKey/getWalletProviderDataByKey.d.ts +2 -1
  125. package/dist/modules/wallets/getWalletProviderDataByKey/getWalletProviderDataByKey.d.ts.map +1 -1
  126. package/dist/modules/wallets/verifyMessageSignatureOwnership/verifyMessageSignatureOwnership.d.ts +2 -0
  127. package/dist/modules/wallets/verifyMessageSignatureOwnership/verifyMessageSignatureOwnership.d.ts.map +1 -1
  128. package/dist/services/instrumentation/createInstrumentation/createInstrumentation.d.ts.map +1 -1
  129. package/dist/services/instrumentation/instrumentFunction/instrumentFunction.d.ts +40 -34
  130. package/dist/services/instrumentation/instrumentFunction/instrumentFunction.d.ts.map +1 -1
  131. package/dist/services/instrumentation/instrumentation.types.d.ts +50 -19
  132. package/dist/services/instrumentation/instrumentation.types.d.ts.map +1 -1
  133. package/dist/services/keychain/createKeychainService/createKeychainService.d.ts.map +1 -1
  134. package/dist/services/navigate/createNavigationHandler/createNavigationHandler.d.ts.map +1 -1
  135. package/dist/services/openDeeplink/createWebDeeplinkOpener/createWebDeeplinkOpener.d.ts.map +1 -1
  136. package/dist/tsconfig.lib.tsbuildinfo +1 -1
  137. package/dist/{updateAuthFromVerifyResponse-azIi_3FB.esm.js → updateAuthFromVerifyResponse-BQes11vz.esm.js} +145 -145
  138. package/dist/updateAuthFromVerifyResponse-BQes11vz.esm.js.map +1 -0
  139. package/dist/{updateAuthFromVerifyResponse-CElYpi97.cjs → updateAuthFromVerifyResponse-Deg9em9o.cjs} +151 -145
  140. package/dist/updateAuthFromVerifyResponse-Deg9em9o.cjs.map +1 -0
  141. package/dist/{updateAuthFromVerifyResponse-D1w-Aw9P.native.esm.js → updateAuthFromVerifyResponse-wVY_DoiL.native.esm.js} +145 -145
  142. package/dist/updateAuthFromVerifyResponse-wVY_DoiL.native.esm.js.map +1 -0
  143. package/dist/utils/assertSafeDeeplinkUrl/assertSafeDeeplinkUrl.d.ts +12 -0
  144. package/dist/utils/assertSafeDeeplinkUrl/assertSafeDeeplinkUrl.d.ts.map +1 -0
  145. package/dist/utils/assertSafeDeeplinkUrl/index.d.ts +2 -0
  146. package/dist/utils/assertSafeDeeplinkUrl/index.d.ts.map +1 -0
  147. package/dist/utils/assertSafeNavigationUrl/assertSafeNavigationUrl.d.ts +12 -0
  148. package/dist/utils/assertSafeNavigationUrl/assertSafeNavigationUrl.d.ts.map +1 -0
  149. package/dist/utils/assertSafeNavigationUrl/index.d.ts +2 -0
  150. package/dist/utils/assertSafeNavigationUrl/index.d.ts.map +1 -0
  151. package/dist/utils/getSecureCookieAttribute/getSecureCookieAttribute.d.ts +18 -0
  152. package/dist/utils/getSecureCookieAttribute/getSecureCookieAttribute.d.ts.map +1 -0
  153. package/dist/utils/getSecureCookieAttribute/index.d.ts +2 -0
  154. package/dist/utils/getSecureCookieAttribute/index.d.ts.map +1 -0
  155. package/dist/waas.cjs +5 -5
  156. package/dist/waas.esm.js +4 -4
  157. package/dist/waas.native.esm.js +4 -4
  158. package/dist/waasCore.cjs +6 -6
  159. package/dist/waasCore.esm.js +6 -6
  160. package/dist/waasCore.native.esm.js +6 -6
  161. package/package.json +3 -3
  162. package/dist/getNetworkProviderFromNetworkId-Bfg-NkNJ.native.esm.js.map +0 -1
  163. package/dist/getNetworkProviderFromNetworkId-CS4r9hi7.cjs.map +0 -1
  164. package/dist/getNetworkProviderFromNetworkId-pknqqhk1.esm.js.map +0 -1
  165. package/dist/isDynamicWaasEnabled-BXe0VyI4.native.esm.js.map +0 -1
  166. package/dist/isDynamicWaasEnabled-BYaqAOml.esm.js.map +0 -1
  167. package/dist/isDynamicWaasEnabled-BwP1oowd.cjs.map +0 -1
  168. package/dist/isMfaRequiredForAction-Demz9zlH.native.esm.js.map +0 -1
  169. package/dist/isUserOnboardingComplete-C86NDY7I.cjs.map +0 -1
  170. package/dist/isUserOnboardingComplete-CBrAH0ZF.esm.js.map +0 -1
  171. package/dist/isUserOnboardingComplete-Cr-YTpcU.native.esm.js.map +0 -1
  172. package/dist/services/instrumentation/instrumentFunction/extractParams/extractParams.d.ts +0 -28
  173. package/dist/services/instrumentation/instrumentFunction/extractParams/extractParams.d.ts.map +0 -1
  174. package/dist/services/instrumentation/instrumentFunction/scrubResolvedValue/scrubResolvedValue.d.ts +0 -15
  175. package/dist/services/instrumentation/instrumentFunction/scrubResolvedValue/scrubResolvedValue.d.ts.map +0 -1
  176. package/dist/updateAuthFromVerifyResponse-CElYpi97.cjs.map +0 -1
  177. package/dist/updateAuthFromVerifyResponse-D1w-Aw9P.native.esm.js.map +0 -1
  178. package/dist/updateAuthFromVerifyResponse-azIi_3FB.esm.js.map +0 -1
@@ -1,8 +1,8 @@
1
- import { E as getWalletProviderFromWalletAccount, F as CHAINS_INFO_MAP, K as createApiClient, N as normalizeWalletNameWithChain, _t as getCore, gt as BaseError, h as emitWalletAccountsChangedEvent, j as getWalletAccounts, k as createRuntimeServiceAccessKey, m as checkAndRaiseWalletAccountsChangedEvent, ot as assertDefined, pt as getDefaultClient, v as instrumentFunction } from "./updateAuthFromVerifyResponse-azIi_3FB.esm.js";
1
+ import { E as getWalletProviderFromWalletAccount, F as CHAINS_INFO_MAP, N as normalizeWalletNameWithChain, _t as BaseError, h as emitWalletAccountsChangedEvent, j as getWalletAccounts, k as createRuntimeServiceAccessKey, m as checkAndRaiseWalletAccountsChangedEvent, mt as getDefaultClient, q as createApiClient, st as assertDefined, v as instrumentFunction, vt as getCore } from "./updateAuthFromVerifyResponse-BQes11vz.esm.js";
2
2
  import { AuthModeEnum } from "@dynamic-labs/sdk-api-core";
3
3
  import * as z from "zod/mini";
4
4
  import { Buffer as Buffer$1 } from "buffer";
5
- import EventEmitter, { EventEmitter as EventEmitter$1 } from "eventemitter3";
5
+ import EventEmitter$1, { EventEmitter } from "eventemitter3";
6
6
 
7
7
  //#region src/utils/isEqualShallow/isEqualShallow.ts
8
8
  /**
@@ -246,7 +246,7 @@ const createCrossTabBroadcast = ({ channelName }) => {
246
246
  send: () => {}
247
247
  };
248
248
  const channel = new BroadcastChannel(channelName);
249
- const eventEmitter = new EventEmitter();
249
+ const eventEmitter = new EventEmitter$1();
250
250
  const handleMessage = (messageEvent) => {
251
251
  const parsed = CrossTabBroadcastMessageSchema.safeParse(messageEvent.data);
252
252
  if (!parsed.success) return;
@@ -288,7 +288,7 @@ const defaultConsole = console;
288
288
  * @notInstrumented
289
289
  */
290
290
  const createLogger = (options = {}) => {
291
- const eventEmitter = new EventEmitter$1();
291
+ const eventEmitter = new EventEmitter();
292
292
  const minLevel = options.level ?? "warn";
293
293
  const shouldLog = (level) => {
294
294
  return LOG_LEVELS[level] >= LOG_LEVELS[minLevel];
@@ -311,6 +311,55 @@ const createLogger = (options = {}) => {
311
311
  };
312
312
  };
313
313
 
314
+ //#endregion
315
+ //#region src/errors/UnsafeNavigationUrlError.ts
316
+ /**
317
+ * Thrown when navigation is attempted to a URL whose scheme is not in the
318
+ * allowlist (only `http:` and `https:` are permitted). Guards against DOM XSS
319
+ * (`javascript:` URIs) and other dangerous schemes (`data:`, `blob:`, etc.)
320
+ * that could originate from a poisoned server response or cached project
321
+ * settings flowing into `window.location.href`.
322
+ */
323
+ var UnsafeNavigationUrlError = class extends BaseError {
324
+ constructor({ scheme }) {
325
+ super({
326
+ cause: null,
327
+ code: "unsafe_navigation_url_error",
328
+ docsUrl: null,
329
+ name: "UnsafeNavigationUrlError",
330
+ shortMessage: `Refusing to navigate to a URL with an unsafe scheme "${scheme}". Only http: and https: URLs are allowed. This may indicate a compromised or misconfigured auth URL.`
331
+ });
332
+ }
333
+ };
334
+
335
+ //#endregion
336
+ //#region src/utils/assertSafeNavigationUrl/assertSafeNavigationUrl.ts
337
+ /**
338
+ * The only URL schemes permitted for navigation. Everything else — most
339
+ * importantly `javascript:` (DOM XSS) as well as `data:`, `blob:`, `file:`,
340
+ * etc. — is rejected.
341
+ */
342
+ const ALLOWED_NAVIGATION_SCHEMES = new Set(["http:", "https:"]);
343
+ /**
344
+ * Asserts that the given URL is safe to navigate to, i.e. its scheme is in the
345
+ * allowlist (`http:`/`https:`). Used as a defense-in-depth guard wherever a
346
+ * server-supplied or cached URL flows into navigation, preventing DOM XSS via
347
+ * `javascript:` URIs and open redirects via other dangerous schemes.
348
+ *
349
+ * @param url - The URL string or parsed URL to validate.
350
+ * @throws {UnsafeNavigationUrlError} If the URL cannot be parsed or its scheme is not allowed.
351
+ * @notInstrumented
352
+ */
353
+ const assertSafeNavigationUrl = (url) => {
354
+ let parsed;
355
+ try {
356
+ parsed = url instanceof URL ? url : new URL(url);
357
+ } catch {
358
+ throw new UnsafeNavigationUrlError({ scheme: "unknown" });
359
+ }
360
+ if (!ALLOWED_NAVIGATION_SCHEMES.has(parsed.protocol)) throw new UnsafeNavigationUrlError({ scheme: parsed.protocol });
361
+ };
362
+
314
363
  //#endregion
315
364
  //#region src/utils/bufferToHex/bufferToHex.ts
316
365
  /**
@@ -414,21 +463,24 @@ const DEFAULT_DB_NAME = "dynamic_keychain";
414
463
  /** @notInstrumented */
415
464
  const createKeychainService = (params) => {
416
465
  const dbName = params?.dbName ?? DEFAULT_DB_NAME;
466
+ const memoryKeys = /* @__PURE__ */ new Map();
417
467
  const generateKey = async (keyName) => {
418
468
  const keyPair = await crypto.subtle.generateKey({
419
469
  name: "ECDSA",
420
470
  namedCurve: "P-256"
421
471
  }, false, ["sign"]);
422
472
  const publicKeyHex = bufferToHex(compressRawPublicKey(await crypto.subtle.exportKey("raw", keyPair.publicKey)));
473
+ const entry = {
474
+ keyName,
475
+ privateKey: keyPair.privateKey,
476
+ publicKeyHex
477
+ };
478
+ memoryKeys.set(keyName, entry);
423
479
  await withDatabase({
424
480
  dbName,
425
481
  operation: (db) => setIndexedDBItem({
426
482
  db,
427
- entry: {
428
- keyName,
429
- privateKey: keyPair.privateKey,
430
- publicKeyHex
431
- }
483
+ entry
432
484
  })
433
485
  });
434
486
  return publicKeyHex;
@@ -449,20 +501,24 @@ const createKeychainService = (params) => {
449
501
  namedCurve: "P-256"
450
502
  }, true, ["verify"]);
451
503
  const publicKeyHex = bufferToHex(compressRawPublicKey(await crypto.subtle.exportKey("raw", publicCryptoKey)));
504
+ const entry = {
505
+ keyName,
506
+ privateKey,
507
+ publicKeyHex
508
+ };
509
+ memoryKeys.set(keyName, entry);
452
510
  await withDatabase({
453
511
  dbName,
454
512
  operation: (db) => setIndexedDBItem({
455
513
  db,
456
- entry: {
457
- keyName,
458
- privateKey,
459
- publicKeyHex
460
- }
514
+ entry
461
515
  })
462
516
  });
463
517
  return publicKeyHex;
464
518
  };
465
519
  const getPublicKey = async (keyName) => {
520
+ const cached = memoryKeys.get(keyName);
521
+ if (cached) return cached.publicKeyHex;
466
522
  return (await withDatabase({
467
523
  dbName,
468
524
  operation: (db) => getIndexedDBItem({
@@ -472,7 +528,7 @@ const createKeychainService = (params) => {
472
528
  }))?.publicKeyHex ?? null;
473
529
  };
474
530
  const sign = async (keyName, message) => {
475
- const entry = await withDatabase({
531
+ const entry = memoryKeys.get(keyName) ?? await withDatabase({
476
532
  dbName,
477
533
  operation: (db) => getIndexedDBItem({
478
534
  db,
@@ -487,6 +543,7 @@ const createKeychainService = (params) => {
487
543
  }, entry.privateKey, data));
488
544
  };
489
545
  const hasKey = async (keyName) => {
546
+ if (memoryKeys.has(keyName)) return true;
490
547
  return await withDatabase({
491
548
  dbName,
492
549
  operation: (db) => getIndexedDBItem({
@@ -496,6 +553,7 @@ const createKeychainService = (params) => {
496
553
  }) !== void 0;
497
554
  };
498
555
  const removeKey = async (keyName) => {
556
+ memoryKeys.delete(keyName);
499
557
  await withDatabase({
500
558
  dbName,
501
559
  operation: (db) => deleteIndexedDBItem({
@@ -576,7 +634,7 @@ const createRealtimeService = () => {
576
634
  subscribe: () => Promise.resolve(),
577
635
  unsubscribe: () => {}
578
636
  };
579
- const eventEmitter = new EventEmitter();
637
+ const eventEmitter = new EventEmitter$1();
580
638
  const channels = /* @__PURE__ */ new Map();
581
639
  const handlerMap = /* @__PURE__ */ new WeakMap();
582
640
  let ablyClient;
@@ -714,13 +772,37 @@ var WalletAlreadyLinkedToAnotherUserError = class extends BaseError {
714
772
  }
715
773
  };
716
774
 
775
+ //#endregion
776
+ //#region src/errors/WalletScreeningBlockedError.ts
777
+ /**
778
+ * Thrown when a wallet is rejected during verification because it failed the
779
+ * project's compliance screening (e.g. it appears on a sanctions list).
780
+ *
781
+ * The screening runs server-side and is enabled per environment in the Dynamic
782
+ * dashboard. This typed error lets consumers detect the blocked-wallet case and
783
+ * render an "access denied" experience without having to inspect the raw API
784
+ * error code themselves.
785
+ */
786
+ var WalletScreeningBlockedError = class extends BaseError {
787
+ constructor({ cause }) {
788
+ super({
789
+ cause,
790
+ code: "wallet_screening_blocked",
791
+ docsUrl: null,
792
+ name: "WalletScreeningBlockedError",
793
+ shortMessage: "This wallet was blocked by compliance screening and cannot be used"
794
+ });
795
+ }
796
+ };
797
+
717
798
  //#endregion
718
799
  //#region src/modules/captcha/isCaptchaRequired/isCaptchaRequired.ts
719
800
  /** @notInstrumented */
720
801
  const isCaptchaRequired = (client = getDefaultClient()) => {
721
802
  const projectSettings = client.projectSettings;
722
803
  assertDefined(projectSettings, "Project settings are not available");
723
- return projectSettings.security.hCaptcha?.enabled ?? false;
804
+ const { security } = projectSettings;
805
+ return security.captcha?.enabled ?? security.hCaptcha?.enabled ?? false;
724
806
  };
725
807
 
726
808
  //#endregion
@@ -759,7 +841,6 @@ var MethodNotImplementedError = class extends BaseError {
759
841
  * @param params.captchaToken - The captcha token to set.
760
842
  * @param [client] - The Dynamic client instance. Only required when using multiple Dynamic clients.
761
843
  * @instrumented
762
- * @redact-params
763
844
  */
764
845
  const setCaptchaToken = ({ captchaToken }, client = getDefaultClient()) => {
765
846
  getCore(client).state.set({ captchaToken });
@@ -774,8 +855,7 @@ const __setCaptchaToken_wrapped = instrumentFunction({
774
855
  } catch {
775
856
  return;
776
857
  }
777
- },
778
- redactAll: true
858
+ }
779
859
  });
780
860
 
781
861
  //#endregion
@@ -998,6 +1078,8 @@ const isErrorWithCode = (error, code) => {
998
1078
  * depending on whether the user is signing in, linking or transferring a wallet.
999
1079
  *
1000
1080
  * Does NOT call updateAuthFromVerifyResponse, it should be called from the return of this function.
1081
+ * @throws WalletAlreadyLinkedToAnotherUserError If the wallet is already linked to another user.
1082
+ * @throws WalletScreeningBlockedError If the wallet was blocked by the project's compliance screening.
1001
1083
  * @notInstrumented
1002
1084
  */
1003
1085
  const verifyMessageSignatureOwnership = async ({ messageToSign, walletAddress, addressesWithTypes, signature, chain, isTransfer = false, walletDisplayName, walletProviderType, networkId, requestedScopes }, client) => {
@@ -1035,6 +1117,7 @@ const verifyMessageSignatureOwnership = async ({ messageToSign, walletAddress, a
1035
1117
  } catch (error) {
1036
1118
  core.logger.error("Failed to verify message signature ownership", error);
1037
1119
  if (isErrorWithCode(error, "reassign_wallet_confirm") || isErrorWithCode(error, "merge_accounts_confirmation")) throw new WalletAlreadyLinkedToAnotherUserError({ cause: error });
1120
+ if (isErrorWithCode(error, "chainalysis_blocked_wallet")) throw new WalletScreeningBlockedError({ cause: error });
1038
1121
  throw error;
1039
1122
  }
1040
1123
  };
@@ -1143,5 +1226,5 @@ const getNetworkProviderFromNetworkId = ({ networkId, chain }, client) => {
1143
1226
  };
1144
1227
 
1145
1228
  //#endregion
1146
- export { GENERATE_SESSION_KEYS_TRACKER_KEY as A, isEqualShallow as B, createKeychainService as C, CannotTrackError as D, CrossTabBroadcastMessageSchema as E, getBuffer as F, createStorage as I, InvalidStorageSet as L, REFRESH_USER_STATE_FROM_COOKIE_TRACKER_KEY as M, REFRESH_USER_STATE_FROM_VALID_TOKEN_TRACKER_KEY as N, createDeferredPromise as O, isServerSideRendering as P, createLocalStorageAdapter as R, createRealtimeService as S, createCrossTabBroadcast as T, consumeCaptchaToken as _, verifyMessageSignatureOwnership as a, NoNetworkProvidersError as b, formatSignInMessage as c, updateWalletProviderKeysForVerifiedCredentials as d, setUnverifiedWalletAccounts as f, MethodNotImplementedError as g, __setCaptchaToken_wrapped as h, getNetworksData as i, INITIALIZE_STORAGE_SYNC_TRACKER_KEY as j, FETCH_PROJECT_SETTINGS_TRACKER_KEY as k, getAppMetadata as l, hasExtension as m, getNetworkProviders as n, removeUnverifiedWalletAccount as o, createVisit as p, getNetworkProviderBuilderRegistry as r, createSignInMessageStatement as s, getNetworkProviderFromNetworkId as t, reconcileWalletAccountsAgainstClient as u, isCaptchaRequired as v, createLogger as w, getKeychainIndexedDBName as x, WalletAlreadyLinkedToAnotherUserError as y, subscribeWithSelector as z };
1147
- //# sourceMappingURL=getNetworkProviderFromNetworkId-pknqqhk1.esm.js.map
1229
+ export { CannotTrackError as A, InvalidStorageSet as B, createRealtimeService as C, createLogger as D, UnsafeNavigationUrlError as E, REFRESH_USER_STATE_FROM_COOKIE_TRACKER_KEY as F, subscribeWithSelector as H, REFRESH_USER_STATE_FROM_VALID_TOKEN_TRACKER_KEY as I, isServerSideRendering as L, FETCH_PROJECT_SETTINGS_TRACKER_KEY as M, GENERATE_SESSION_KEYS_TRACKER_KEY as N, createCrossTabBroadcast as O, INITIALIZE_STORAGE_SYNC_TRACKER_KEY as P, getBuffer as R, getKeychainIndexedDBName as S, assertSafeNavigationUrl as T, isEqualShallow as U, createLocalStorageAdapter as V, consumeCaptchaToken as _, verifyMessageSignatureOwnership as a, WalletAlreadyLinkedToAnotherUserError as b, formatSignInMessage as c, updateWalletProviderKeysForVerifiedCredentials as d, setUnverifiedWalletAccounts as f, MethodNotImplementedError as g, __setCaptchaToken_wrapped as h, getNetworksData as i, createDeferredPromise as j, CrossTabBroadcastMessageSchema as k, getAppMetadata as l, hasExtension as m, getNetworkProviders as n, removeUnverifiedWalletAccount as o, createVisit as p, getNetworkProviderBuilderRegistry as r, createSignInMessageStatement as s, getNetworkProviderFromNetworkId as t, reconcileWalletAccountsAgainstClient as u, isCaptchaRequired as v, createKeychainService as w, NoNetworkProvidersError as x, WalletScreeningBlockedError as y, createStorage as z };
1230
+ //# sourceMappingURL=getNetworkProviderFromNetworkId-CEs4SGW4.esm.js.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"getNetworkProviderFromNetworkId-CEs4SGW4.esm.js","names":["item: StorageFormat<typeof value>","BufferPolyfill","resolve: (value: T) => void","reject: (reason?: unknown) => void","EventEmitter","LOG_LEVELS: Record<LogLevel, number>","eventEmitter: LoggerEventEmitter","minLevel: LogLevel","parsed: URL","createKeychainService: CreateKeychainService","entry: StoredKey","ABLY_STATE_TO_REALTIME_STATE: Record<string, RealtimeConnectionState>","EventEmitter","ablyClient: BaseRealtime | undefined","connectionState: RealtimeConnectionState","connect: RealtimeService['connect']","disconnect: RealtimeService['disconnect']","subscribe: RealtimeService['subscribe']","handler: messageCallback<InboundMessage>","unsubscribe: RealtimeService['unsubscribe']","publish: RealtimeService['publish']","connectRequest: ConnectRequest","filteredUnverifiedWalletAccounts: UnverifiedWalletAccount[]","newWalletAccounts: WalletAccount[]","unverifiedWalletAccountsToUpdate: WalletAccount[]","verifiedCredentialIdToWalletProviderKeyMap: Record<string, string>","reconciledWalletAccounts: WalletAccount[]","suffixFields: string[]","networkProvider"],"sources":["../src/utils/isEqualShallow/isEqualShallow.ts","../src/utils/observable/subscribeWithSelector/subscribeWithSelector.ts","../src/services/storage/createLocalStorageAdapter/createLocalStorageAdapter.ts","../src/errors/InvalidStorageSet.ts","../src/services/storage/createStorage/formatForStorage/isValidDateISOString/isValidDateISOString.ts","../src/services/storage/createStorage/formatForStorage/storageFormat.ts","../src/services/storage/createStorage/createStorage.ts","../src/utils/getBuffer/getBuffer.ts","../src/utils/isServerSideRendering/isServerSideRendering.ts","../src/modules/initializeClient/consts.ts","../src/utils/deferredPromise/createDeferredPromise.ts","../src/errors/CannotTrackError.ts","../src/services/crossTabBroadcast/crossTabBroadcast.schema.ts","../src/services/crossTabBroadcast/createCrossTabBroadcast/createCrossTabBroadcast.ts","../src/services/logger/createLogger/createLogger.ts","../src/errors/UnsafeNavigationUrlError.ts","../src/utils/assertSafeNavigationUrl/assertSafeNavigationUrl.ts","../src/utils/bufferToHex/bufferToHex.ts","../src/utils/compressRawPublicKey/compressRawPublicKey.ts","../src/services/keychain/createKeychainService/KeyNotFoundError.ts","../src/services/keychain/createKeychainService/utils/constants.ts","../src/services/keychain/createKeychainService/utils/deleteIndexedDBItem.ts","../src/services/keychain/createKeychainService/utils/getIndexedDBItem.ts","../src/services/keychain/createKeychainService/utils/setIndexedDBItem.ts","../src/services/keychain/createKeychainService/utils/openDatabase.ts","../src/services/keychain/createKeychainService/utils/withDatabase/withDatabase.ts","../src/services/keychain/createKeychainService/createKeychainService.ts","../src/errors/InvalidRealtimePublishError.ts","../src/errors/RealtimeNotConnectedError.ts","../src/services/realtime/createRealtimeService/createRealtimeService.ts","../src/utils/getKeychainIndexedDBName/getKeychainIndexedDBName.ts","../src/errors/NoNetworkProvidersError.ts","../src/errors/WalletAlreadyLinkedToAnotherUserError.ts","../src/errors/WalletScreeningBlockedError.ts","../src/modules/captcha/isCaptchaRequired/isCaptchaRequired.ts","../src/modules/captcha/consumeCaptchaToken/consumeCaptchaToken.ts","../src/errors/MethodNotImplementedError.ts","../src/modules/captcha/setCaptchaToken/setCaptchaToken.ts","../src/modules/extension/hasExtension/hasExtension.ts","../src/modules/auth/createVisit/createVisit.ts","../src/modules/wallets/unverifiedWalletAccounts/setUnverifiedWalletAccounts/setUnverifiedWalletAccounts.ts","../src/modules/wallets/walletProvider/walletProviderKeyMap/updateWalletProviderKeysForVerifiedCredentials/updateWalletProviderKeysForVerifiedCredentials.ts","../src/modules/wallets/reconcileWalletAccountsAgainstClient/reconcileWalletAccountsAgainstClient.ts","../src/utils/getAppMetadata/getAppMetadata.ts","../src/modules/wallets/utils/formatSignInMessage/formatSignInMessage.ts","../src/modules/wallets/utils/getSignInMessage/createSignInMessageStatement/createSignInMessageStatement.ts","../src/modules/wallets/unverifiedWalletAccounts/removeUnverifiedWalletAccount/removeUnverifiedWalletAccount.ts","../src/utils/isError/isError.ts","../src/utils/isErrorWithCode/isErrorWithCode.ts","../src/modules/wallets/verifyMessageSignatureOwnership/verifyMessageSignatureOwnership.ts","../src/modules/wallets/networks/getSdkChainFromApiChainName/getSdkChainFromApiChainName.ts","../src/modules/wallets/networks/getNetworksData/getNetworksData.ts","../src/modules/wallets/networks/networkProviderBuilderRegistry/createNetworkProviderBuilderRegistry/createNetworkProviderBuilderRegistry.ts","../src/modules/wallets/networks/networkProviderBuilderRegistry/getNetworkProviderBuilderRegistry/getNetworkProviderBuilderRegistry.ts","../src/modules/wallets/networks/getNetworkProviders/getNetworkProviders.ts","../src/modules/wallets/networks/getNetworkProviderFromNetworkId/getNetworkProviderFromNetworkId.ts"],"sourcesContent":["/**\n * Shallow compare two objects.\n *\n * Source: https://github.com/pmndrs/zustand/blob/main/src/vanilla/shallow.ts\n * @notInstrumented\n */\n// eslint-disable-next-line custom-rules/require-single-object-param\nexport const isEqualShallow = <T>(objA: T, objB: T) => {\n if (Object.is(objA, objB)) return true;\n\n if (\n typeof objA !== 'object' ||\n objA === null ||\n typeof objB !== 'object' ||\n objB === null\n ) {\n return objA === objB;\n }\n\n if (objA instanceof Map && objB instanceof Map) {\n if (objA.size !== objB.size) return false;\n\n for (const [key, value] of objA) {\n if (!Object.is(value, objB.get(key))) return false;\n }\n\n return true;\n }\n\n if (objA instanceof Set && objB instanceof Set) {\n if (objA.size !== objB.size) return false;\n\n for (const value of objA) {\n if (!objB.has(value)) return false;\n }\n return true;\n }\n\n const keysA = Object.keys(objA);\n\n if (keysA.length !== Object.keys(objB).length) return false;\n\n for (const keyA of keysA) {\n if (\n !Object.prototype.hasOwnProperty.call(objB, keyA as string) ||\n !Object.is(objA[keyA as keyof T], objB[keyA as keyof T])\n ) {\n return false;\n }\n }\n\n if (objA.constructor !== objB.constructor) return false;\n\n return true;\n};\n","import { isEqualShallow } from '../../isEqualShallow';\nimport type { ObservableState } from '../observable.types';\n\n/**\n * Allows subscribing to a slice of the state.\n * The slice is a computation of the states.\n *\n * The callback will only be called when the slice has changed.\n * Change is determined by shallow comparison.\n *\n * Returns a function to unsubscribe the callback.\n * @notInstrumented\n */\nexport const subscribeWithSelector =\n // eslint-disable-next-line custom-rules/require-single-object-param\n <T extends Record<string, unknown>, Slice>(\n observable: ObservableState<T>,\n selector: (value: T) => Slice\n ) =>\n // eslint-disable-next-line custom-rules/require-single-object-param\n (callback: (slice: Slice) => void) => {\n let lastSlice = selector(observable.get());\n\n return observable.subscribe((value) => {\n const nextSlice = selector(value);\n\n if (isEqualShallow(nextSlice, lastSlice)) return;\n\n lastSlice = nextSlice;\n\n callback(nextSlice);\n });\n };\n","/* eslint-disable no-restricted-globals -- this is the abstraction for localStorage */\nimport type { StorageAdapter } from '../storage.types';\n\n/**\n * Creates a localStorage adapter.\n * @notInstrumented\n */\nexport const createLocalStorageAdapter = (): StorageAdapter => ({\n getItem: async (key) => localStorage.getItem(key),\n removeItem: async (key) => localStorage.removeItem(key),\n setItem: async (key, value) => localStorage.setItem(key, value),\n});\n","import { BaseError } from './base';\n\ntype InvalidStorageSetParams = {\n key: string;\n value: string;\n};\n\nexport class InvalidStorageSet extends BaseError {\n constructor({ key, value }: InvalidStorageSetParams) {\n super({\n cause: null,\n code: 'invalid_storage_set',\n docsUrl: null,\n metaMessages: [`key: ${key}`, value],\n name: 'InvalidStorageSet',\n shortMessage: 'Tried to store a value that does not match the schema',\n });\n }\n}\n","/**\n * Returns whether the given string is a valid ISO date string.\n *\n * Does not support timezone offsets.\n * @notInstrumented\n */\n// eslint-disable-next-line custom-rules/require-single-object-param\nexport const isValidDateISOString = (value: string): boolean => {\n const date = new Date(value);\n\n return !isNaN(date.getTime()) && date.toISOString() === value;\n};\n","/* eslint-disable custom-rules/function-name-matches-filename */\nimport type { StorageFormat } from '../../storage.types';\nimport { isValidDateISOString } from './isValidDateISOString';\n\nconst DATE_PREFIX = '__DATE__';\n\n/** @notInstrumented */\nexport const formatForStorage = (value: unknown) => {\n const item: StorageFormat<typeof value> = { value };\n\n return JSON.stringify(item, (_, entry) => {\n // You might think that entry here would be a Date and one could simply do \"entry instanceof Date\",\n // but actually it will be a string already (no idea why JSON.stringify does this)\n if (isValidDateISOString(entry)) {\n return `${DATE_PREFIX}${entry}`;\n }\n\n return entry;\n });\n};\n\n/** @notInstrumented */\n// eslint-disable-next-line custom-rules/one-function-per-file, custom-rules/require-single-object-param\nexport const parseFromStorage = <T>(value: string): StorageFormat<T> | null => {\n try {\n const parsed = JSON.parse(value, (_, entry) => {\n if (typeof entry === 'string' && entry.startsWith(DATE_PREFIX)) {\n return new Date(entry.slice(DATE_PREFIX.length));\n }\n\n return entry;\n }) as StorageFormat<T>;\n\n return parsed;\n // eslint-disable-next-line @typescript-eslint/no-unused-vars\n } catch (error) {\n return null;\n }\n};\n","import type { Storage, StorageAdapter, StorageAdapterOptions, StorageTier } from '../storage.types';\nimport { InvalidStorageSet } from './../../../errors/InvalidStorageSet';\nimport { formatForStorage } from './formatForStorage';\nimport { parseFromStorage } from './formatForStorage/storageFormat';\n\ntype CreateWebStorageParams = {\n prefix?: string;\n storageAdapter: StorageAdapter;\n};\n\n/**\n * Creates a Storage service to interact with storage adapter.\n * Reads the `storageTier` from each key's config and passes it\n * to the adapter on every operation, defaulting to `'default'`.\n * @notInstrumented\n */\nexport const createStorage = ({\n prefix = '',\n storageAdapter,\n}: CreateWebStorageParams): Storage => {\n const getPrefixedKey = (key: string) => (prefix ? `${prefix}_${key}` : key);\n\n const getAdapterOptions = (storageTier?: StorageTier): StorageAdapterOptions => ({\n storageTier: storageTier ?? 'default',\n });\n\n return {\n getItem: async (storageKeySchema) => {\n const prefixedKey = getPrefixedKey(storageKeySchema.key);\n const options = getAdapterOptions(storageKeySchema.config?.storageTier);\n\n const rawItem = await storageAdapter.getItem(prefixedKey, options);\n\n const parsedItem = rawItem ? parseFromStorage(rawItem) : null;\n\n /**\n * The item saved to localStorage may be malformed.\n * In this case, we remove it and return null.\n */\n if (parsedItem !== null) {\n const parsed = storageKeySchema.schema.safeParse(parsedItem.value);\n\n if (parsed.success) {\n return parsed.data;\n }\n }\n\n /**\n * The item saved to localStorage may be malformed.\n * In this case, we remove it and return null.\n */\n\n await storageAdapter.removeItem(prefixedKey, options);\n\n return null;\n },\n\n removeItem: async (storageKeySchema) => {\n await storageAdapter.removeItem(\n getPrefixedKey(storageKeySchema.key),\n getAdapterOptions(storageKeySchema.config?.storageTier),\n );\n },\n\n setItem: async (storageKeySchema, value) => {\n const parsed = storageKeySchema.schema.safeParse(value);\n\n if (!parsed.success) {\n throw new InvalidStorageSet({\n key: storageKeySchema.key,\n value: JSON.stringify(value),\n });\n }\n\n const item = formatForStorage(parsed.data);\n\n await storageAdapter.setItem(\n getPrefixedKey(storageKeySchema.key),\n item,\n getAdapterOptions(storageKeySchema.config?.storageTier),\n );\n },\n };\n};\n","/* eslint-disable no-restricted-globals */\nimport { Buffer as BufferPolyfill } from 'buffer';\n\n/** @notInstrumented */\nexport const getBuffer = () =>\n typeof Buffer !== 'undefined' ? Buffer : BufferPolyfill;\n","/**\n * Indicates if the code is running in a server-side environment.\n * @notInstrumented\n */\n// eslint-disable-next-line no-restricted-globals\nexport const isServerSideRendering = () => typeof window === 'undefined';\n","export const REFRESH_USER_STATE_FROM_COOKIE_TRACKER_KEY =\n 'refresh-user-state-from-cookie';\n\nexport const INITIALIZE_STORAGE_SYNC_TRACKER_KEY = 'initialize-storage-sync';\n\nexport const FETCH_PROJECT_SETTINGS_TRACKER_KEY = 'fetch-project-settings';\n\nexport const GENERATE_SESSION_KEYS_TRACKER_KEY = 'generate-session-keys';\n\nexport const REFRESH_USER_STATE_FROM_VALID_TOKEN_TRACKER_KEY =\n 'refresh-user-state-from-valid-token';\n","import type { DeferredPromise } from './deferredPromise.types';\n\n/** @notInstrumented */\nexport const createDeferredPromise = <T>(): DeferredPromise<T> => {\n let resolve: (value: T) => void;\n let reject: (reason?: unknown) => void;\n\n const promise = new Promise<T>((_resolve, _reject) => {\n resolve = _resolve;\n reject = _reject;\n });\n\n return {\n promise,\n reject: (reason?: unknown) => reject?.(reason),\n resolve: (value: T) => resolve?.(value),\n };\n};\n","import { BaseError } from './base';\n\nexport class CannotTrackError extends BaseError {\n constructor() {\n super({\n cause: null,\n code: 'cannot_track_error',\n docsUrl: null,\n name: 'CannotTrackError',\n shortMessage: 'All track calls must be performed in the same node tick',\n });\n }\n}\n","import * as z from 'zod/mini';\n\n/**\n * Schema for validating cross-tab broadcast messages.\n */\nexport const CrossTabBroadcastMessageSchema = z.object({\n args: z.optional(z.unknown()),\n event: z.string(),\n});\n","import EventEmitter from 'eventemitter3';\n\nimport { isServerSideRendering } from '../../../utils/isServerSideRendering';\nimport { CrossTabBroadcastMessageSchema } from '../crossTabBroadcast.schema';\nimport type { CrossTabBroadcast } from '../crossTabBroadcast.types';\n\ntype CreateCrossTabBroadcastParams = {\n channelName: string;\n};\n\n/**\n * Creates a cross-tab broadcast service instance using the BroadcastChannel API.\n *\n * Enables communication between multiple tabs/windows of the same application.\n * Messages are validated against the schema and invalid messages are silently ignored.\n *\n * In SSR or when BroadcastChannel is unavailable, returns a no-op implementation.\n *\n * @param params - Configuration parameters\n * @param params.channelName - The name of the broadcast channel to use\n * @returns A cross-tab broadcast service instance\n * @notInstrumented\n */\nexport const createCrossTabBroadcast = ({\n channelName,\n}: CreateCrossTabBroadcastParams): CrossTabBroadcast => {\n // SSR check - return no-op implementation\n // eslint-disable-next-line no-restricted-globals\n if (isServerSideRendering() || typeof BroadcastChannel === 'undefined') {\n return {\n off: () => {},\n on: () => {},\n send: () => {},\n };\n }\n\n // eslint-disable-next-line no-restricted-globals\n const channel = new BroadcastChannel(channelName);\n const eventEmitter = new EventEmitter();\n\n // Message handler with validation\n const handleMessage = (messageEvent: MessageEvent) => {\n const parsed = CrossTabBroadcastMessageSchema.safeParse(messageEvent.data);\n\n if (!parsed.success) {\n // Silently ignore invalid messages (consistent with storage patterns)\n return;\n }\n\n const { args, event } = parsed.data;\n eventEmitter.emit(event, args);\n };\n\n channel.addEventListener('message', handleMessage);\n\n return {\n off: (event, callback) => {\n eventEmitter.off(event, callback);\n },\n\n on: (event, callback) => {\n eventEmitter.on(event, callback);\n },\n\n send: ({ args, event }) => {\n channel.postMessage({ args, event });\n },\n };\n};\n","import { EventEmitter } from 'eventemitter3';\n\nimport type { LogLevel, Logger, LoggerEventEmitter } from '../logger.types';\n\n/**\n * Configuration options for the logger\n * @notInstrumented\n */\ntype CreateLoggerOptions = {\n level?: LogLevel;\n};\n\n/**\n * Log levels and their corresponding numeric values\n */\nconst LOG_LEVELS: Record<LogLevel, number> = {\n debug: 0,\n error: 3,\n info: 1,\n warn: 2,\n};\n\n// Assign to avoid lint errors\nconst defaultConsole = console;\n\n/**\n * Creates a logger instance with configurable log level and event emission capabilities.\n * @returns A logger instance with debug, info, warn, and error methods\n * @notInstrumented\n */\nexport const createLogger = (options: CreateLoggerOptions = {}): Logger => {\n const eventEmitter: LoggerEventEmitter = new EventEmitter();\n\n // Default to 'debug' if no level is provided\n const minLevel: LogLevel = options.level ?? 'warn';\n\n // Helper to decide if we should log based on current log level\n // eslint-disable-next-line custom-rules/require-single-object-param\n const shouldLog = (level: LogLevel): boolean => {\n return LOG_LEVELS[level] >= LOG_LEVELS[minLevel];\n };\n\n // Helper to format the log message\n // eslint-disable-next-line custom-rules/require-single-object-param\n const formatMessage = (level: LogLevel, message: string): string => {\n const timestamp = new Date().toISOString();\n\n return `[${timestamp}] ${level.toUpperCase()}: ${message}`;\n };\n\n // Unified logger function that checks the level and calls the appropriate console method\n // eslint-disable-next-line custom-rules/require-single-object-param\n const log = (\n level: LogLevel,\n consoleMethod: (...data: unknown[]) => void,\n message: string,\n ...args: unknown[]\n ) => {\n eventEmitter.emit('log', level, message, ...args);\n\n if (!shouldLog(level)) return;\n\n consoleMethod(formatMessage(level, message), ...args);\n };\n\n return {\n debug: (message, ...args) =>\n log('debug', defaultConsole.debug, message, ...args),\n\n error: (message, ...args) =>\n log('error', defaultConsole.error, message, ...args),\n\n info: (message, ...args) =>\n log('info', defaultConsole.info, message, ...args),\n\n off: eventEmitter.off.bind(eventEmitter),\n\n on: eventEmitter.on.bind(eventEmitter),\n warn: (message, ...args) =>\n log('warn', defaultConsole.warn, message, ...args),\n };\n};\n","import { BaseError } from './base';\n\ntype UnsafeNavigationUrlErrorParams = {\n scheme: string;\n};\n\n/**\n * Thrown when navigation is attempted to a URL whose scheme is not in the\n * allowlist (only `http:` and `https:` are permitted). Guards against DOM XSS\n * (`javascript:` URIs) and other dangerous schemes (`data:`, `blob:`, etc.)\n * that could originate from a poisoned server response or cached project\n * settings flowing into `window.location.href`.\n */\nexport class UnsafeNavigationUrlError extends BaseError {\n constructor({ scheme }: UnsafeNavigationUrlErrorParams) {\n super({\n cause: null,\n code: 'unsafe_navigation_url_error',\n docsUrl: null,\n name: 'UnsafeNavigationUrlError',\n shortMessage: `Refusing to navigate to a URL with an unsafe scheme \"${scheme}\". Only http: and https: URLs are allowed. This may indicate a compromised or misconfigured auth URL.`,\n });\n }\n}\n","import { UnsafeNavigationUrlError } from '../../errors/UnsafeNavigationUrlError';\n\n/**\n * The only URL schemes permitted for navigation. Everything else — most\n * importantly `javascript:` (DOM XSS) as well as `data:`, `blob:`, `file:`,\n * etc. — is rejected.\n */\nconst ALLOWED_NAVIGATION_SCHEMES = new Set(['http:', 'https:']);\n\n/**\n * Asserts that the given URL is safe to navigate to, i.e. its scheme is in the\n * allowlist (`http:`/`https:`). Used as a defense-in-depth guard wherever a\n * server-supplied or cached URL flows into navigation, preventing DOM XSS via\n * `javascript:` URIs and open redirects via other dangerous schemes.\n *\n * @param url - The URL string or parsed URL to validate.\n * @throws {UnsafeNavigationUrlError} If the URL cannot be parsed or its scheme is not allowed.\n * @notInstrumented\n */\n// eslint-disable-next-line custom-rules/require-single-object-param\nexport const assertSafeNavigationUrl = (url: string | URL): void => {\n let parsed: URL;\n\n try {\n parsed = url instanceof URL ? url : new URL(url);\n } catch {\n // An unparseable URL is treated as unsafe rather than allowed through.\n throw new UnsafeNavigationUrlError({ scheme: 'unknown' });\n }\n\n if (!ALLOWED_NAVIGATION_SCHEMES.has(parsed.protocol)) {\n throw new UnsafeNavigationUrlError({ scheme: parsed.protocol });\n }\n};\n","/**\n * Converts an ArrayBuffer or Uint8Array to a hex-encoded string\n * @notInstrumented\n */\nexport const bufferToHex = (buffer: ArrayBufferLike | Uint8Array) =>\n [...(buffer instanceof Uint8Array ? buffer : new Uint8Array(buffer))]\n .map((x) => x.toString(16).padStart(2, '0'))\n .join('');\n","/**\n * Accepts a public key array buffer, and returns a buffer with the compressed version of the public key\n * @notInstrumented\n */\nexport const compressRawPublicKey = (rawPublicKey: ArrayBuffer) => {\n const rawPublicKeyBytes = new Uint8Array(rawPublicKey);\n const len = rawPublicKeyBytes.byteLength;\n\n // Drop the y coordinate\n const compressedBytes = rawPublicKeyBytes.slice(0, (1 + len) >>> 1);\n\n // Encode the parity of `y` in first bit\n compressedBytes[0] = 0x2 | (rawPublicKeyBytes[len - 1] & 0x01);\n return compressedBytes.buffer;\n};\n","import { BaseError } from '../../../errors/base';\n\nexport class KeyNotFoundError extends BaseError {\n // eslint-disable-next-line custom-rules/require-single-object-param\n constructor(keyName: string) {\n super({\n cause: null,\n code: 'key_not_found',\n docsUrl: null,\n name: 'KeyNotFoundError',\n shortMessage: `Key \"${keyName}\" not found in keychain`,\n });\n }\n}\n","export const STORE_NAME = 'keys';\n","import { STORE_NAME } from './constants';\n\nexport type DeleteIndexedDBItemOptions = {\n /** The IndexedDB database handle. */\n db: IDBDatabase;\n\n /** The key name to delete. */\n keyName: string;\n};\n\n/** @notInstrumented */\nexport const deleteIndexedDBItem = ({\n db,\n keyName,\n}: DeleteIndexedDBItemOptions): Promise<void> =>\n new Promise((resolve, reject) => {\n const transaction = db.transaction(STORE_NAME, 'readwrite');\n const store = transaction.objectStore(STORE_NAME);\n const request = store.delete(keyName);\n\n request.onsuccess = () => resolve();\n request.onerror = () => reject(request.error as Error);\n });\n","import type { StoredKey } from '../createKeychainService.types';\nimport { STORE_NAME } from './constants';\n\nexport type GetIndexedDBItemOptions = {\n /** The IndexedDB database handle. */\n db: IDBDatabase;\n\n /** The key name to look up. */\n keyName: string;\n};\n\n/** @notInstrumented */\nexport const getIndexedDBItem = ({\n db,\n keyName,\n}: GetIndexedDBItemOptions): Promise<StoredKey | undefined> =>\n new Promise((resolve, reject) => {\n const transaction = db.transaction(STORE_NAME, 'readonly');\n const store = transaction.objectStore(STORE_NAME);\n const request = store.get(keyName);\n\n request.onsuccess = () => resolve(request.result as StoredKey | undefined);\n request.onerror = () => reject(request.error as Error);\n });\n","import type { StoredKey } from '../createKeychainService.types';\nimport { STORE_NAME } from './constants';\n\nexport type SetIndexedDBItemOptions = {\n /** The IndexedDB database handle. */\n db: IDBDatabase;\n\n /** The stored key entry to write. */\n entry: StoredKey;\n};\n\n/** @notInstrumented */\nexport const setIndexedDBItem = ({\n db,\n entry,\n}: SetIndexedDBItemOptions): Promise<void> =>\n new Promise((resolve, reject) => {\n const transaction = db.transaction(STORE_NAME, 'readwrite');\n const store = transaction.objectStore(STORE_NAME);\n const request = store.put(entry);\n\n request.onsuccess = () => resolve();\n request.onerror = () => reject(request.error as Error);\n });\n","import { STORE_NAME } from './constants';\n\n/** @notInstrumented */\nexport const openDatabase = (dbName: string): Promise<IDBDatabase> =>\n new Promise((resolve, reject) => {\n const request = indexedDB.open(dbName, 1);\n\n request.onupgradeneeded = () => {\n const db = request.result;\n\n if (!db.objectStoreNames.contains(STORE_NAME)) {\n db.createObjectStore(STORE_NAME, { keyPath: 'keyName' });\n }\n };\n\n request.onsuccess = () => resolve(request.result);\n request.onerror = () => reject(request.error as Error);\n });\n","import { openDatabase } from '../openDatabase';\n\ntype WithDatabaseParams<T> = {\n dbName: string;\n operation: (db: IDBDatabase) => Promise<T>;\n};\n\n/**\n * Scopes a database connection to the lifetime of a callback.\n * Opens a connection, passes it to the operation, and guarantees\n * the connection is closed when the operation completes or throws.\n * @notInstrumented\n */\nexport const withDatabase = async <T>({\n dbName,\n operation,\n}: WithDatabaseParams<T>): Promise<T> => {\n const db = await openDatabase(dbName);\n try {\n const result = await operation(db);\n\n return result;\n } finally {\n db.close();\n }\n};\n","import { bufferToHex } from '../../../utils/bufferToHex';\nimport { compressRawPublicKey } from '../../../utils/compressRawPublicKey';\nimport type {\n CreateKeychainService,\n StoredKey,\n} from './createKeychainService.types';\nimport { KeyNotFoundError } from './KeyNotFoundError';\nimport { deleteIndexedDBItem } from './utils/deleteIndexedDBItem';\nimport { getIndexedDBItem } from './utils/getIndexedDBItem';\nimport { setIndexedDBItem } from './utils/setIndexedDBItem';\nimport { withDatabase } from './utils/withDatabase';\n\nconst DEFAULT_DB_NAME = 'dynamic_keychain';\n\n/** @notInstrumented */\nexport const createKeychainService: CreateKeychainService = (params) => {\n const dbName = params?.dbName ?? DEFAULT_DB_NAME;\n\n // In-memory key cache, keyed by keyName. sign() prefers this over IndexedDB\n // so that a cross-tab key rotation in the shared IndexedDB does not silently\n // swap the signing key out from under the current session.\n const memoryKeys = new Map<string, StoredKey>();\n\n // eslint-disable-next-line custom-rules/require-single-object-param\n const generateKey = async (keyName: string): Promise<string> => {\n const keyPair = await crypto.subtle.generateKey(\n { name: 'ECDSA', namedCurve: 'P-256' },\n false,\n ['sign']\n );\n\n const rawPublicKey = await crypto.subtle.exportKey(\n 'raw',\n keyPair.publicKey\n );\n\n const compressedPublicKey = compressRawPublicKey(rawPublicKey);\n const publicKeyHex = bufferToHex(compressedPublicKey);\n\n const entry: StoredKey = {\n keyName,\n privateKey: keyPair.privateKey,\n publicKeyHex,\n };\n\n memoryKeys.set(keyName, entry);\n\n await withDatabase({\n dbName,\n operation: (db) => setIndexedDBItem({ db, entry }),\n });\n\n return publicKeyHex;\n };\n\n // eslint-disable-next-line custom-rules/require-single-object-param\n const importKey = async (\n keyName: string,\n jwk: JsonWebKey\n ): Promise<string> => {\n const privateKey = await crypto.subtle.importKey(\n 'jwk',\n jwk,\n { name: 'ECDSA', namedCurve: 'P-256' },\n false,\n ['sign']\n );\n\n const publicJwk = { crv: jwk.crv, kty: jwk.kty, x: jwk.x, y: jwk.y };\n\n const publicCryptoKey = await crypto.subtle.importKey(\n 'jwk',\n publicJwk,\n { name: 'ECDSA', namedCurve: 'P-256' },\n true,\n ['verify']\n );\n\n const rawPublicKey = await crypto.subtle.exportKey('raw', publicCryptoKey);\n const compressedPublicKey = compressRawPublicKey(rawPublicKey);\n const publicKeyHex = bufferToHex(compressedPublicKey);\n\n const entry: StoredKey = { keyName, privateKey, publicKeyHex };\n\n memoryKeys.set(keyName, entry);\n\n await withDatabase({\n dbName,\n operation: (db) => setIndexedDBItem({ db, entry }),\n });\n\n return publicKeyHex;\n };\n\n // eslint-disable-next-line custom-rules/require-single-object-param\n const getPublicKey = async (keyName: string): Promise<string | null> => {\n const cached = memoryKeys.get(keyName);\n if (cached) {\n return cached.publicKeyHex;\n }\n\n const entry = await withDatabase({\n dbName,\n operation: (db) => getIndexedDBItem({ db, keyName }),\n });\n\n return entry?.publicKeyHex ?? null;\n };\n\n // eslint-disable-next-line custom-rules/require-single-object-param\n const sign = async (keyName: string, message: string): Promise<string> => {\n // Prefer the in-memory key so that a cross-tab IndexedDB key rotation\n // does not cause this tab to sign with a foreign private key.\n const entry =\n memoryKeys.get(keyName) ??\n (await withDatabase({\n dbName,\n operation: (db) => getIndexedDBItem({ db, keyName }),\n }));\n\n if (!entry) {\n throw new KeyNotFoundError(keyName);\n }\n\n const encoder = new TextEncoder();\n const data = encoder.encode(message);\n\n const signature = await crypto.subtle.sign(\n { hash: { name: 'SHA-256' }, name: 'ECDSA' },\n entry.privateKey,\n data\n );\n\n return bufferToHex(signature);\n };\n\n // eslint-disable-next-line custom-rules/require-single-object-param\n const hasKey = async (keyName: string): Promise<boolean> => {\n if (memoryKeys.has(keyName)) {\n return true;\n }\n\n const entry = await withDatabase({\n dbName,\n operation: (db) => getIndexedDBItem({ db, keyName }),\n });\n\n return entry !== undefined;\n };\n\n // eslint-disable-next-line custom-rules/require-single-object-param\n const removeKey = async (keyName: string): Promise<void> => {\n memoryKeys.delete(keyName);\n\n await withDatabase({\n dbName,\n operation: (db) => deleteIndexedDBItem({ db, keyName }),\n });\n };\n\n return {\n generateKey,\n getPublicKey,\n hasKey,\n importKey,\n removeKey,\n sign,\n };\n};\n","import { BaseError } from './base';\n\ntype InvalidRealtimePublishParams = {\n channel: string;\n};\n\nexport class InvalidRealtimePublishError extends BaseError {\n constructor({ channel }: InvalidRealtimePublishParams) {\n super({\n cause: null,\n code: 'invalid_realtime_publish',\n docsUrl: null,\n metaMessages: [`channel: ${channel}`],\n name: 'InvalidRealtimePublishError',\n shortMessage:\n 'Tried to publish data that does not match the channel schema',\n });\n }\n}\n","import { BaseError } from './base';\n\nexport class RealtimeNotConnectedError extends BaseError {\n constructor() {\n super({\n cause: null,\n code: 'realtime_not_connected_error',\n docsUrl: null,\n name: 'RealtimeNotConnectedError',\n shortMessage:\n 'Realtime service is not connected. Call connect() before subscribing or publishing.',\n });\n }\n}\n","import type { InboundMessage, RealtimeChannel, messageCallback } from 'ably';\nimport type { BaseRealtime } from 'ably/modular';\nimport EventEmitter from 'eventemitter3';\n\nimport { getCore } from '../../../client/core/getCore';\nimport { InvalidRealtimePublishError } from '../../../errors/InvalidRealtimePublishError';\nimport { RealtimeNotConnectedError } from '../../../errors/RealtimeNotConnectedError';\nimport { createApiClient } from '../../../modules/apiClient';\nimport { isServerSideRendering } from '../../../utils/isServerSideRendering';\nimport type {\n RealtimeChannelSchema,\n RealtimeConnectionState,\n RealtimeEventMap,\n RealtimeService,\n} from '../realtime.types';\n\nconst ABLY_STATE_TO_REALTIME_STATE: Record<string, RealtimeConnectionState> = {\n closed: 'closed',\n closing: 'closing',\n connected: 'connected',\n connecting: 'connecting',\n disconnected: 'disconnected',\n failed: 'failed',\n initialized: 'idle',\n suspended: 'suspended',\n};\n\nconst mapAblyState = (ablyState: string): RealtimeConnectionState =>\n ABLY_STATE_TO_REALTIME_STATE[ablyState] ?? 'idle';\n\n/**\n * Creates a realtime pub/sub service backed by Ably.\n *\n * The service starts idle. Call `connect({ client })` to establish\n * a connection, passing the DynamicClient explicitly.\n *\n * SSR environments receive a no-op implementation.\n * @notInstrumented\n */\n \nexport const createRealtimeService = (): RealtimeService => {\n if (isServerSideRendering()) {\n return {\n connect: () => Promise.resolve(),\n disconnect: () => {},\n getConnectionState: () => 'idle',\n off: () => {},\n on: () => {},\n publish: () => Promise.resolve(),\n subscribe: () => Promise.resolve(),\n unsubscribe: () => {},\n };\n }\n\n const eventEmitter = new EventEmitter<RealtimeEventMap>();\n const channels = new Map<string, RealtimeChannel>();\n // eslint-disable-next-line @typescript-eslint/no-explicit-any\n const handlerMap = new WeakMap<(message: { data: any }) => void, messageCallback<InboundMessage>>();\n\n let ablyClient: BaseRealtime | undefined;\n let connectionState: RealtimeConnectionState = 'idle';\n let isConnecting = false;\n\n const setConnectionState = (state: RealtimeConnectionState) => {\n connectionState = state;\n eventEmitter.emit('connectionStateChange', state);\n };\n\n // eslint-disable-next-line custom-rules/require-single-object-param\n const getOrCreateChannel = (channelName: string): RealtimeChannel => {\n const existing = channels.get(channelName);\n\n if (existing) {\n return existing;\n }\n\n if (!ablyClient) {\n throw new RealtimeNotConnectedError();\n }\n\n const channel = ablyClient.channels.get(channelName);\n channels.set(channelName, channel);\n\n return channel;\n };\n\n const connect: RealtimeService['connect'] = async ({ client, headers }) => {\n if (isConnecting) {\n return;\n }\n\n isConnecting = true;\n\n try {\n const core = getCore(client);\n\n if (ablyClient) {\n ablyClient.close();\n channels.clear();\n }\n\n // Dynamic import to keep the module tree-shakeable\n // and avoid loading Ably in SSR environments\n const {\n BaseRealtime: AblyBaseRealtime,\n FetchRequest,\n WebSocketTransport,\n } = await import('ably/modular');\n\n ablyClient = new AblyBaseRealtime({\n // authCallback must return void (not Promise<void>), so we use\n // .then().catch() instead of async/await to avoid returning a Promise\n // to Ably's callback-style auth handler.\n authCallback: (_tokenParams, callback) => {\n const apiClient = createApiClient({ headers }, client);\n\n apiClient\n .getRealtimeAuthToken({ environmentId: core.environmentId })\n .then((response) => {\n callback(null, response.token);\n })\n .catch((err: unknown) => {\n const message = err instanceof Error ? err.message : String(err);\n callback(message, null);\n });\n },\n autoConnect: false,\n plugins: { FetchRequest, WebSocketTransport },\n });\n\n ablyClient.connection.on((stateChange) => {\n setConnectionState(mapAblyState(stateChange.current));\n });\n\n ablyClient.connect();\n } finally {\n isConnecting = false;\n }\n };\n\n const disconnect: RealtimeService['disconnect'] = () => {\n if (!ablyClient) {\n return;\n }\n\n for (const channel of channels.values()) {\n channel.detach().catch(() => {});\n }\n\n channels.clear();\n ablyClient.close();\n ablyClient = undefined;\n };\n\n const subscribe: RealtimeService['subscribe'] = async <T>({\n channelSchema,\n callback,\n }: {\n callback: (message: { data: T }) => void;\n channelSchema: RealtimeChannelSchema<T>;\n }) => {\n const channel = getOrCreateChannel(channelSchema.channel);\n\n const handler: messageCallback<InboundMessage> = (message) => {\n const parsed = channelSchema.schema.safeParse(message.data);\n\n if (!parsed.success) {\n return;\n }\n\n callback({ data: parsed.data });\n };\n\n handlerMap.set(callback, handler);\n\n await channel.subscribe(handler);\n };\n\n const unsubscribe: RealtimeService['unsubscribe'] = <T>({\n channelSchema,\n callback,\n }: {\n callback: (message: { data: T }) => void;\n channelSchema: RealtimeChannelSchema<T>;\n }) => {\n const channel = channels.get(channelSchema.channel);\n\n if (!channel) {\n return;\n }\n\n const handler = handlerMap.get(callback);\n\n if (handler) {\n channel.unsubscribe(handler);\n handlerMap.delete(callback);\n }\n };\n\n const publish: RealtimeService['publish'] = async <T>({\n channelSchema,\n data,\n }: {\n channelSchema: RealtimeChannelSchema<T>;\n data: T;\n }) => {\n const parsed = channelSchema.schema.safeParse(data);\n\n if (!parsed.success) {\n throw new InvalidRealtimePublishError({ channel: channelSchema.channel });\n }\n\n const channel = getOrCreateChannel(channelSchema.channel);\n await channel.publish('message', parsed.data);\n };\n\n return {\n connect,\n disconnect,\n getConnectionState: () => connectionState,\n off: (event, callback) => {\n eventEmitter.off(event, callback);\n },\n on: (event, callback) => {\n eventEmitter.on(event, callback);\n },\n publish,\n subscribe,\n unsubscribe,\n };\n};\n","type GetKeychainIndexedDBNameParams = {\n environmentId: string;\n};\n\n/**\n * Builds the IndexedDB database name used by the keychain service for a given\n * environment. Centralizing this avoids drift between the SDK and any\n * extension code that needs to read or migrate the same database.\n *\n * @param params.environmentId - The Dynamic environment id.\n * @returns The IndexedDB database name for the keychain.\n * @notInstrumented\n */\nexport const getKeychainIndexedDBName = ({\n environmentId,\n}: GetKeychainIndexedDBNameParams): string =>\n `dynamic_${environmentId}_keychain`;\n","import { BaseError } from './base';\n\nexport class NoNetworkProvidersError extends BaseError {\n constructor() {\n super({\n cause: null,\n code: 'no_network_providers',\n docsUrl: null,\n name: 'NoNetworkProvidersError',\n shortMessage: 'No networks were registered in the client',\n });\n }\n}\n","import { BaseError, type BaseErrorParameters } from './base';\n\nexport class WalletAlreadyLinkedToAnotherUserError extends BaseError {\n constructor({ cause }: Pick<BaseErrorParameters, 'cause'>) {\n super({\n cause,\n code: 'wallet_already_linked_to_another_user_error',\n docsUrl: null,\n name: 'WalletAlreadyLinkedToAnotherUserError',\n shortMessage: 'This wallet is already linked to another user',\n });\n }\n}\n","import { BaseError, type BaseErrorParameters } from './base';\n\n/**\n * Thrown when a wallet is rejected during verification because it failed the\n * project's compliance screening (e.g. it appears on a sanctions list).\n *\n * The screening runs server-side and is enabled per environment in the Dynamic\n * dashboard. This typed error lets consumers detect the blocked-wallet case and\n * render an \"access denied\" experience without having to inspect the raw API\n * error code themselves.\n */\nexport class WalletScreeningBlockedError extends BaseError {\n constructor({ cause }: Pick<BaseErrorParameters, 'cause'>) {\n super({\n cause,\n code: 'wallet_screening_blocked',\n docsUrl: null,\n name: 'WalletScreeningBlockedError',\n shortMessage:\n 'This wallet was blocked by compliance screening and cannot be used',\n });\n }\n}\n","import { getDefaultClient } from '../../../client/defaultClient';\nimport { assertDefined } from '../../../utils/assertDefined';\n\n/** @notInstrumented */\nexport const isCaptchaRequired = (client = getDefaultClient()) => {\n const projectSettings = client.projectSettings;\n\n assertDefined(projectSettings, 'Project settings are not available');\n\n const { security } = projectSettings;\n\n // Prefer the provider-agnostic captcha field; fall back to the legacy hCaptcha field.\n return security.captcha?.enabled ?? security.hCaptcha?.enabled ?? false;\n};\n","import { getCore } from '../../../client/core/getCore';\nimport type { DynamicClient } from '../../../client/types';\nimport { assertDefined } from '../../../utils/assertDefined';\nimport { isCaptchaRequired } from '../isCaptchaRequired';\n\n/**\n * Retrieves the current captcha token from the client state and sets it to null.\n * @notInstrumented\n */\nexport const consumeCaptchaToken = (\n client: DynamicClient\n): string | undefined => {\n const core = getCore(client);\n\n const captchaToken = core.state.get().captchaToken;\n\n if (isCaptchaRequired(client)) {\n assertDefined(captchaToken, 'Captcha token is required');\n }\n\n core.state.set({\n captchaToken: null,\n });\n\n return captchaToken ?? undefined;\n};\n","import { BaseError } from './base';\n\nexport class MethodNotImplementedError extends BaseError {\n // eslint-disable-next-line custom-rules/require-single-object-param\n constructor(methodName: string) {\n super({\n cause: null,\n code: 'method_not_implemented_error',\n docsUrl: null,\n name: 'MethodNotImplementedError',\n shortMessage: `This method is not implemented: ${methodName}`,\n });\n }\n}\n","import { getCore } from '../../../client/core/getCore';\nimport { getDefaultClient } from '../../../client/defaultClient';\n\ntype SetCaptchaTokenProps = {\n captchaToken: string;\n};\n\n/**\n * Sets the given captcha token in the client state.\n *\n * @param params.captchaToken - The captcha token to set.\n * @param [client] - The Dynamic client instance. Only required when using multiple Dynamic clients.\n * @instrumented\n */\nexport const setCaptchaToken = (\n { captchaToken }: SetCaptchaTokenProps,\n client = getDefaultClient()\n) => {\n const core = getCore(client);\n\n core.state.set({\n captchaToken,\n });\n};\n","import { getCore } from '../../../client/core/getCore';\nimport { getDefaultClient } from '../../../client/defaultClient';\n\ntype HasExtensionParams = {\n extensionKey: string;\n};\n\n/**\n * Checks if a specific extension has been applied to the Dynamic client.\n *\n * Extensions add optional features to the Dynamic SDK,\n * such as EVM, Solana, or other chain support.\n *\n * @param params.extensionKey - The unique key identifying the extension to check for.\n * @param [client] - The Dynamic client instance. Only required when using multiple Dynamic clients.\n * @returns True if the extension is applied, false otherwise.\n * @notInstrumented\n */\nexport const hasExtension = (\n { extensionKey }: HasExtensionParams,\n client = getDefaultClient()\n) => {\n const core = getCore(client);\n\n return core.extensions.has(extensionKey);\n};\n","import {\n AuthModeEnum,\n type ChainEnum,\n type ConnectRequest,\n} from '@dynamic-labs/sdk-api-core';\n\nimport { getCore } from '../../../client/core/getCore';\nimport type { DynamicClient } from '../../../client/types';\nimport { createApiClient } from '../../apiClient';\nimport { getWalletProviderFromWalletAccount } from '../../wallets/utils/getWalletProviderFromWalletAccount';\nimport { normalizeWalletNameWithChain } from '../../wallets/utils/normalizeWalletNameWithChain';\nimport type { WalletAccount } from '../../wallets/walletAccount';\n\ntype CreateVisitParams = {\n authMode?: AuthModeEnum;\n walletAccount: WalletAccount;\n};\n\n/* \n In older SDK versions we used to have the concept of \"connect-only\" vs \"connect-and-sign\". \n The only difference in backend is it stores some extra data for connect-only, \n so we can just default to using it.\n*/\n/** @notInstrumented */\nexport const createVisit = async (\n { walletAccount, authMode = AuthModeEnum.Only }: CreateVisitParams,\n client: DynamicClient\n) => {\n const core = getCore(client);\n const apiClient = createApiClient({}, client);\n\n const walletProvider = getWalletProviderFromWalletAccount(\n { walletAccount },\n client\n );\n\n try {\n const walletName = normalizeWalletNameWithChain({\n chain: walletProvider.chain,\n displayName: walletProvider.metadata.displayName,\n });\n\n const connectRequest: ConnectRequest = {\n address: walletAccount.address,\n authMode,\n // eslint-disable-next-line custom-rules/ban-chain-enum\n chain: walletProvider.chain as ChainEnum,\n provider: walletProvider.walletProviderType,\n walletName,\n };\n\n await apiClient.createVisit({\n connectRequest,\n environmentId: core.environmentId,\n });\n } catch (error) {\n core.logger.error('Error creating visit', { error });\n }\n};\n","import { getCore } from '../../../../client/core/getCore';\nimport type { DynamicClient } from '../../../../client/types';\nimport type { UnverifiedWalletAccount } from '../unverifiedWalletAccounts.types';\n\ntype SetUnverifiedWalletAccountsParams = {\n unverifiedWalletAccountsToUpdate: UnverifiedWalletAccount[];\n};\n\n/**\n * Updates the unverified wallet account in the client state.\n * This will add new wallet accounts and override those with matching ids,\n * but will leave other preexisting wallet accounts unchanged.\n * @notInstrumented\n */\nexport const setUnverifiedWalletAccounts = (\n { unverifiedWalletAccountsToUpdate }: SetUnverifiedWalletAccountsParams,\n client: DynamicClient\n): void => {\n if (unverifiedWalletAccountsToUpdate.length === 0) {\n return;\n }\n\n const core = getCore(client);\n\n const unverifiedWalletAccountsToUpdateIds =\n unverifiedWalletAccountsToUpdate.map(({ id }) => id);\n\n const filteredUnverifiedWalletAccounts: UnverifiedWalletAccount[] = core.state\n .get()\n .unverifiedWalletAccounts.filter(\n (unverifiedWalletAccount) =>\n !unverifiedWalletAccountsToUpdateIds.includes(\n unverifiedWalletAccount.id\n )\n );\n\n core.state.set({\n unverifiedWalletAccounts: [\n ...filteredUnverifiedWalletAccounts,\n ...unverifiedWalletAccountsToUpdate,\n ],\n });\n};\n","import { getCore } from '../../../../../client/core/getCore';\nimport type { DynamicClient } from '../../../../../client/types';\n\ntype updateWalletProviderKeysForVerifiedCredentialsParams = {\n keysToUpdate: Record<string, string>;\n};\n\n/** @notInstrumented */\nexport const updateWalletProviderKeysForVerifiedCredentials = (\n { keysToUpdate }: updateWalletProviderKeysForVerifiedCredentialsParams,\n client: DynamicClient\n) => {\n const core = getCore(client);\n\n core.state.set({\n walletProviderKeyMap: {\n ...core.state.get().walletProviderKeyMap,\n ...keysToUpdate,\n },\n });\n};\n","import type { DynamicClient } from '../../../client/types';\nimport { createVisit } from '../../auth/createVisit';\nimport { emitWalletAccountsChangedEvent } from '../emitWalletAccountsChangedEvent';\nimport { getWalletAccounts } from '../getWalletAccounts';\nimport { setUnverifiedWalletAccounts } from '../unverifiedWalletAccounts/setUnverifiedWalletAccounts';\nimport type { WalletAccount } from '../walletAccount';\nimport { updateWalletProviderKeysForVerifiedCredentials } from '../walletProvider/walletProviderKeyMap/updateWalletProviderKeysForVerifiedCredentials';\n\ntype ReconcileWalletAccountsAgainstClientParams = {\n /** Whether to write new or updated unverified accounts to client state. Defaults to `true`. */\n addToDynamicWalletAccounts?: boolean;\n /** Freshly-connected wallet account candidates to reconcile. */\n walletAccounts: WalletAccount[];\n /** Wallet provider key these candidates were connected through. */\n walletProviderKey: string;\n};\n\n/**\n * Reconciles freshly-connected wallet accounts against the client state. For\n * each candidate it classifies as new, a re-connect of an existing unverified\n * account, or a re-connect of an already-verified account, then runs the\n * appropriate state mutation (`setUnverifiedWalletAccounts`,\n * `updateWalletProviderKeysForVerifiedCredentials`, `createVisit` for truly-new\n * entries) and emits a single `walletAccountsChanged` event if anything\n * actually changed. Returns the candidates with `verifiedCredentialId`\n * populated when the address already corresponded to a verified credential.\n *\n * @notInstrumented\n */\nexport const reconcileWalletAccountsAgainstClient = (\n {\n addToDynamicWalletAccounts = true,\n walletAccounts,\n walletProviderKey,\n }: ReconcileWalletAccountsAgainstClientParams,\n client: DynamicClient\n): WalletAccount[] => {\n if (walletAccounts.length === 0) {\n return [];\n }\n\n const existingWalletAccounts = getWalletAccounts(client);\n\n const newWalletAccounts: WalletAccount[] = [];\n const unverifiedWalletAccountsToUpdate: WalletAccount[] = [];\n const verifiedCredentialIdToWalletProviderKeyMap: Record<string, string> = {};\n\n const reconciledWalletAccounts: WalletAccount[] = walletAccounts.map(\n (candidate) => {\n const matchingExistingWalletAccount = existingWalletAccounts.find(\n (existingWalletAccount) => existingWalletAccount.id === candidate.id\n );\n\n if (!matchingExistingWalletAccount) {\n newWalletAccounts.push(candidate);\n return candidate;\n }\n\n const isWalletProviderKeyChanged =\n matchingExistingWalletAccount.walletProviderKey !== walletProviderKey;\n\n if (matchingExistingWalletAccount.verifiedCredentialId) {\n if (isWalletProviderKeyChanged) {\n verifiedCredentialIdToWalletProviderKeyMap[\n matchingExistingWalletAccount.verifiedCredentialId\n ] = walletProviderKey;\n }\n\n return {\n ...candidate,\n verifiedCredentialId:\n matchingExistingWalletAccount.verifiedCredentialId,\n };\n }\n\n if (isWalletProviderKeyChanged) {\n unverifiedWalletAccountsToUpdate.push(candidate);\n }\n\n return candidate;\n }\n );\n\n let walletAccountsChanged = false;\n\n if (Object.keys(verifiedCredentialIdToWalletProviderKeyMap).length > 0) {\n updateWalletProviderKeysForVerifiedCredentials(\n { keysToUpdate: verifiedCredentialIdToWalletProviderKeyMap },\n client\n );\n\n walletAccountsChanged = true;\n }\n\n if (addToDynamicWalletAccounts) {\n const accountsToWrite = [\n ...unverifiedWalletAccountsToUpdate,\n ...newWalletAccounts,\n ];\n\n if (accountsToWrite.length > 0) {\n setUnverifiedWalletAccounts(\n { unverifiedWalletAccountsToUpdate: accountsToWrite },\n client\n );\n\n walletAccountsChanged = true;\n\n for (const newWalletAccount of newWalletAccounts) {\n void createVisit({ walletAccount: newWalletAccount }, client);\n }\n }\n }\n\n if (walletAccountsChanged) {\n emitWalletAccountsChangedEvent(client);\n }\n\n return reconciledWalletAccounts;\n};\n","import { getCore } from '../../client/core/getCore';\nimport type { DynamicClient } from '../../client/types';\n\nexport type AppMetadata = {\n appLogoUrl: string | undefined;\n appName: string;\n appNativeLink?: string;\n appUniversalLink?: string;\n};\n\n/**\n * Reads the customer-supplied app name, logo, native link, and universal link.\n * — preferring `core.metadata` (set on the client) over project-settings fallbacks.\n *\n * @param client - The Dynamic client whose configuration drives the result.\n * @notInstrumented\n */\nexport const getAppMetadata = (client: DynamicClient): AppMetadata => {\n const core = getCore(client);\n const generalSettings = client.projectSettings?.general;\n\n return {\n appLogoUrl: core.metadata?.iconUrl ?? generalSettings?.appLogo ?? undefined,\n appName: core.metadata?.name ?? generalSettings?.displayName ?? '',\n appNativeLink: core.metadata?.nativeLink,\n appUniversalLink: core.metadata?.universalLink,\n };\n};\n","type FormatSignInMessageParams = {\n address: string;\n blockchainName: string;\n chainId?: string;\n domain: string;\n issuedAt?: string;\n nonce: string;\n requestId?: string;\n resources?: string[];\n statement?: string;\n uri: string;\n};\n\n/**\n * Formats a sign in message to prove ownership of an address.\n * @notInstrumented\n */\nexport const formatSignInMessage = async ({\n domain,\n blockchainName,\n address,\n uri,\n chainId,\n nonce,\n issuedAt,\n requestId,\n statement,\n resources,\n}: FormatSignInMessageParams) => {\n // This format follows the sign-in with ethereum (SIWE) standard,\n // but we are using it also for non-ethereum wallets for now (eg. Solana)\n // for more context on format and fields, please see:\n // https://docs.login.xyz/general-information/siwe-overview/eip-4361\n const header = `${domain} wants you to sign in with your ${blockchainName} account:`;\n const prefix = [header, address].join('\\n');\n\n // If there is a statement, we want to add a gap between the prefix and the statement\n // two times '\\n', first to move statement to next line and second to add a gap between prefix and statement\n const prefixWithStatementGap = statement ? '\\n\\n' : '\\n';\n const prefixWithStatement = `${[prefix, statement].join(\n prefixWithStatementGap\n )}\\n`;\n\n const suffixFields: string[] = [];\n suffixFields.push(`URI: ${uri}`);\n suffixFields.push('Version: 1');\n if (chainId) {\n suffixFields.push(`Chain ID: ${chainId}`);\n }\n\n suffixFields.push(`Nonce: ${nonce}`);\n\n if (issuedAt) {\n suffixFields.push(`Issued At: ${issuedAt}`);\n }\n\n if (requestId) {\n suffixFields.push(`Request ID: ${requestId}`);\n }\n\n if (resources?.length) {\n suffixFields.push(\n `Resources:${resources.map((resource) => '\\n- ' + resource).join()}`\n );\n }\n\n const suffix = suffixFields.join('\\n');\n\n return [prefixWithStatement, suffix].join('\\n');\n};\n","import type { DynamicClient } from '../../../../../client/types';\nimport { getAppMetadata } from '../../../../../utils/getAppMetadata';\n\n/** @notInstrumented */\nexport const createSignInMessageStatement = (client: DynamicClient) => {\n const { appName } = getAppMetadata(client);\n\n return `Welcome to ${appName}. Signing is the only way we can truly know that you are the owner of the wallet you are connecting. Signing is a safe, gas-less transaction that does not in any way give ${appName} permission to perform any transactions with your wallet.`;\n};\n","import { getCore } from '../../../../client/core/getCore';\nimport type { DynamicClient } from '../../../../client/types';\nimport { checkAndRaiseWalletAccountsChangedEvent } from '../../../auth/updateAuthFromVerifyResponse/checkAndRaiseWalletAccountsChangedEvent';\nimport type { UnverifiedWalletAccount } from '../unverifiedWalletAccounts.types';\n\ntype RemoveUnverifiedWalletAccountParams = {\n unverifiedWalletAccount: UnverifiedWalletAccount;\n};\n\n/**\n * Removes an unverified wallet account from the client's state.\n * @notInstrumented\n */\nexport const removeUnverifiedWalletAccount = (\n { unverifiedWalletAccount }: RemoveUnverifiedWalletAccountParams,\n client: DynamicClient\n) => {\n const core = getCore(client);\n\n const previousState = core.state.get();\n\n const { unverifiedWalletAccounts } = core.state.get();\n\n const filteredUnverifiedWalletAccounts = unverifiedWalletAccounts.filter(\n (account) => account.id !== unverifiedWalletAccount.id\n );\n\n core.state.set({\n unverifiedWalletAccounts: filteredUnverifiedWalletAccounts,\n });\n\n /**\n * We check before raising because the wallet account we are removing might still\n * be present in wallet accounts due to having been moved to verified credentials.\n */\n checkAndRaiseWalletAccountsChangedEvent({ previousState }, client);\n};\n","/**\n * Check if the given value is an Error object\n * @notInstrumented\n */\nexport const isError = (error: unknown): error is Error =>\n error instanceof Error;\n","import { isError } from '../isError';\n\n/**\n * Check if the given value is an Error object with a specific code\n * @notInstrumented\n */\n// eslint-disable-next-line custom-rules/require-single-object-param\nexport const isErrorWithCode = <T extends string>(\n error: unknown,\n code: T\n): error is Error & { code: T } => {\n if (!isError(error)) return false;\n\n return 'code' in error && error.code === code;\n};\n","import type {\n ChainEnum,\n TokenScope,\n VerifyResponse,\n WalletAddressType,\n WalletProviderEnum,\n} from '@dynamic-labs/sdk-api-core';\n\nimport { getCore } from '../../../client/core/getCore';\nimport type { DynamicClient } from '../../../client/types';\nimport { isErrorWithCode } from '../../../utils/isErrorWithCode';\nimport { createApiClient } from '../../apiClient';\nimport { consumeCaptchaToken } from '../../captcha/consumeCaptchaToken';\nimport type { Chain } from '../../chain';\nimport { normalizeWalletNameWithChain } from '../utils/normalizeWalletNameWithChain';\nimport type { WalletAddressWithType } from '../walletAccount/walletAccount.types';\nimport { WalletAlreadyLinkedToAnotherUserError } from './../../../errors/WalletAlreadyLinkedToAnotherUserError';\nimport { WalletScreeningBlockedError } from './../../../errors/WalletScreeningBlockedError';\n\ntype VerifyMessageSignatureOwnershipParams = {\n addressesWithTypes?: WalletAddressWithType[];\n chain: Chain;\n isTransfer?: boolean;\n messageToSign: string;\n networkId?: string;\n requestedScopes?: TokenScope[];\n signature: string;\n walletAddress: string;\n walletDisplayName: string;\n walletProviderType: WalletProviderEnum;\n};\n\n/**\n * Verifies a signed message by calling either the verifyLink, verifyTransfer or verify API function,\n * depending on whether the user is signing in, linking or transferring a wallet.\n *\n * Does NOT call updateAuthFromVerifyResponse, it should be called from the return of this function.\n * @throws WalletAlreadyLinkedToAnotherUserError If the wallet is already linked to another user.\n * @throws WalletScreeningBlockedError If the wallet was blocked by the project's compliance screening.\n * @notInstrumented\n */\nexport const verifyMessageSignatureOwnership = async (\n {\n messageToSign,\n walletAddress,\n addressesWithTypes,\n signature,\n chain,\n isTransfer = false,\n walletDisplayName,\n walletProviderType,\n networkId,\n requestedScopes,\n }: VerifyMessageSignatureOwnershipParams,\n client: DynamicClient\n): Promise<VerifyResponse> => {\n const core = getCore(client);\n const apiClient = createApiClient({}, client);\n\n const walletName = normalizeWalletNameWithChain({\n chain,\n displayName: walletDisplayName,\n });\n\n let verifyApiFunction;\n\n if (!client.user) {\n // If the user is not authenticated, call the walletsSignin API function to sign in\n verifyApiFunction = apiClient.walletsSignin.bind(apiClient);\n } else if (isTransfer) {\n // If the user is authenticated and is transferring a wallet, call the verifyTransfer API function\n verifyApiFunction = apiClient.verifyTransfer.bind(apiClient);\n } else if (client.user && requestedScopes) {\n // Scopes = step-up auth: user requests permission for a sensitive op (e.g. wallet export).\n // We grant it only if they prove they own an existing credential (walletsVerify).\n // Must use walletsVerify: user is already logged in (not signin) and credential exists (not transfer/link).\n // If the user is authenticated and requested scopes are provided, call the walletsVerify API function\n verifyApiFunction = apiClient.walletsVerify.bind(apiClient);\n } else {\n // If the user is authenticated and is signing in, call the verifyLink API function\n verifyApiFunction = apiClient.verifyLink.bind(apiClient);\n }\n\n try {\n return await verifyApiFunction({\n environmentId: core.environmentId,\n verifyRequest: {\n // mapping to handle typecasting for address type\n additionalWalletAddresses: addressesWithTypes?.map((address) => ({\n address: address.address,\n publicKey: address.publicKey,\n type: address.type as WalletAddressType,\n })),\n captchaToken: consumeCaptchaToken(client),\n // eslint-disable-next-line custom-rules/ban-chain-enum\n chain: chain as ChainEnum,\n messageToSign,\n network: networkId,\n publicWalletAddress: walletAddress,\n requestedScopes,\n signedMessage: signature,\n walletName,\n walletProvider: walletProviderType,\n },\n });\n } catch (error) {\n core.logger.error('Failed to verify message signature ownership', error);\n\n if (\n isErrorWithCode(error, 'reassign_wallet_confirm') ||\n isErrorWithCode(error, 'merge_accounts_confirmation')\n ) {\n throw new WalletAlreadyLinkedToAnotherUserError({\n cause: error,\n });\n }\n\n if (isErrorWithCode(error, 'chainalysis_blocked_wallet')) {\n throw new WalletScreeningBlockedError({\n cause: error,\n });\n }\n\n throw error;\n }\n};\n","import type { Chain } from '../../../chain';\nimport { CHAINS_INFO_MAP } from '../../constants';\n\n/**\n * Maps the chain name from the API to the SDK chain name\n * @notInstrumented\n */\n// eslint-disable-next-line custom-rules/require-single-object-param\nexport const getSdkChainFromApiChainName = (\n chainName: string\n): Chain | null => {\n const chains = Object.keys(CHAINS_INFO_MAP) as Chain[];\n\n const chain = chains.find(\n (chain) => CHAINS_INFO_MAP[chain].apiChainName === chainName\n );\n\n return chain || null;\n};\n","import { getCore } from '../../../../client/core/getCore';\nimport { getDefaultClient } from '../../../../client/defaultClient';\nimport { assertDefined } from '../../../../utils/assertDefined';\nimport { getSdkChainFromApiChainName } from '../getSdkChainFromApiChainName';\nimport type { NetworkData } from '../networkProvider/networkProvider.types';\n\n/**\n * Retrieves all available network configurations from project settings.\n *\n * This function returns detailed configuration data for all networks enabled\n * in your Dynamic project, including RPC URLs, native currencies, and metadata.\n *\n * If a `transformers.networkData` callback was provided in the client configuration,\n * it will be applied to each network before returning the data. This allows you to\n * customize network properties (such as RPC URLs) in a centralized way.\n *\n * @param [client] - The Dynamic client instance. Only required when using multiple Dynamic clients.\n * @returns An array of network configuration data for all enabled networks.\n * @notInstrumented\n */\nexport const getNetworksData = (client = getDefaultClient()): NetworkData[] => {\n const core = getCore(client);\n const { state, transformers } = core;\n\n const networkDataTransformer =\n transformers?.networkData ?? ((networkData) => networkData);\n\n const { projectSettings } = state.get();\n\n assertDefined(projectSettings, 'projectSettings not found');\n\n const networks = projectSettings.networks;\n\n if (!networks) {\n return [];\n }\n\n const networksData = networks\n .map((network) => {\n if (!network.chainName) return [];\n\n const chain = getSdkChainFromApiChainName(network.chainName);\n\n if (!network?.networks?.length || !chain) return [];\n\n return network.networks.map((networkConfiguration) => {\n const networkData: NetworkData = {\n blockExplorerUrls: networkConfiguration.blockExplorerUrls,\n chain,\n cluster: networkConfiguration.cluster,\n displayName:\n networkConfiguration.vanityName || networkConfiguration.name,\n genesisHash: networkConfiguration.genesisHash,\n iconUrl: networkConfiguration.iconUrls[0],\n name: networkConfiguration.name,\n nativeCurrency: {\n decimals: networkConfiguration.nativeCurrency.decimals,\n iconUrl: networkConfiguration.nativeCurrency.iconUrl,\n name: networkConfiguration.nativeCurrency.name,\n symbol: networkConfiguration.nativeCurrency.symbol,\n },\n networkId: networkConfiguration.networkId,\n rpcUrls: {\n http: [\n ...(networkConfiguration.privateCustomerRpcUrls ?? []),\n ...(networkConfiguration.rpcUrls ?? []),\n ],\n },\n testnet: networkConfiguration.isTestnet ?? false,\n };\n\n return networkDataTransformer(networkData);\n });\n })\n .flat();\n\n return networksData;\n};\n","import type { Chain } from '../../../../chain';\nimport type {\n NetworkProviderBuilder,\n NetworkProviderBuilderRegistry,\n} from '../networkProviderBuilderRegistry.types';\n\n/** @notInstrumented */\nexport const createNetworkProviderBuilderRegistry =\n (): NetworkProviderBuilderRegistry => {\n const registry = new Map<Chain, NetworkProviderBuilder>();\n\n return {\n get: () => registry,\n register: (networkProviderBuilder) => {\n registry.set(networkProviderBuilder.chain, networkProviderBuilder);\n },\n };\n };\n","import { createRuntimeServiceAccessKey } from '../../../../../services/runtimeServices';\nimport { createNetworkProviderBuilderRegistry } from '../createNetworkProviderBuilderRegistry';\n\nexport const getNetworkProviderBuilderRegistry = createRuntimeServiceAccessKey(\n 'networkProviderBuilderRegistry',\n createNetworkProviderBuilderRegistry\n);\n","import type { DynamicClient } from '../../../../client/types';\nimport { getNetworksData } from '../getNetworksData';\nimport type { NetworkProvider } from '../networkProvider';\nimport { getNetworkProviderBuilderRegistry } from '../networkProviderBuilderRegistry';\n\n/**\n * Retrieves all registered network providers for enabled chains.\n * @notInstrumented\n */\nexport const getNetworkProviders = (\n client: DynamicClient\n): NetworkProvider[] => {\n const networkProviderBuilderRegistry =\n getNetworkProviderBuilderRegistry(client);\n\n const registeredNetworkProviderBuilders = Array.from(\n networkProviderBuilderRegistry.get().values()\n );\n\n const networksData = getNetworksData(client);\n\n const networkProviders = registeredNetworkProviderBuilders.map(\n ({ builder, chain }) => {\n const networksDataForChain = networksData.filter(\n (networkData) => networkData.chain === chain\n );\n\n return networksDataForChain.map(builder);\n }\n );\n\n return networkProviders.flat();\n};\n","import type { DynamicClient } from '../../../../client/types';\nimport { NoNetworkProvidersError } from '../../../../errors/NoNetworkProvidersError';\nimport { assertDefined } from '../../../../utils/assertDefined';\nimport type { Chain } from '../../../chain';\nimport { getNetworkProviders } from '../getNetworkProviders';\nimport type { NetworkProvider } from '../networkProvider/networkProvider.types';\n\ntype GetNetworkProviderFromNetworkIdProps = {\n chain: Chain;\n networkId: string;\n};\n\n/** @notInstrumented */\nexport const getNetworkProviderFromNetworkId = (\n { networkId, chain }: GetNetworkProviderFromNetworkIdProps,\n client: DynamicClient\n): NetworkProvider => {\n const networkProviders = getNetworkProviders(client);\n\n if (networkProviders.length === 0) {\n throw new NoNetworkProvidersError();\n }\n\n const networkProvider = networkProviders.find(\n (networkProvider) =>\n networkProvider.networkId === networkId && networkProvider.chain === chain\n );\n\n assertDefined(\n networkProvider,\n `No network provider found for chain ${chain} with network id ${networkId}`\n );\n\n return networkProvider;\n};\n"],"mappings":";;;;;;;;;;;;;AAOA,MAAa,kBAAqB,MAAS,SAAY;AACrD,KAAI,OAAO,GAAG,MAAM,KAAK,CAAE,QAAO;AAElC,KACE,OAAO,SAAS,YAChB,SAAS,QACT,OAAO,SAAS,YAChB,SAAS,KAET,QAAO,SAAS;AAGlB,KAAI,gBAAgB,OAAO,gBAAgB,KAAK;AAC9C,MAAI,KAAK,SAAS,KAAK,KAAM,QAAO;AAEpC,OAAK,MAAM,CAAC,KAAK,UAAU,KACzB,KAAI,CAAC,OAAO,GAAG,OAAO,KAAK,IAAI,IAAI,CAAC,CAAE,QAAO;AAG/C,SAAO;;AAGT,KAAI,gBAAgB,OAAO,gBAAgB,KAAK;AAC9C,MAAI,KAAK,SAAS,KAAK,KAAM,QAAO;AAEpC,OAAK,MAAM,SAAS,KAClB,KAAI,CAAC,KAAK,IAAI,MAAM,CAAE,QAAO;AAE/B,SAAO;;CAGT,MAAM,QAAQ,OAAO,KAAK,KAAK;AAE/B,KAAI,MAAM,WAAW,OAAO,KAAK,KAAK,CAAC,OAAQ,QAAO;AAEtD,MAAK,MAAM,QAAQ,MACjB,KACE,CAAC,OAAO,UAAU,eAAe,KAAK,MAAM,KAAe,IAC3D,CAAC,OAAO,GAAG,KAAK,OAAkB,KAAK,MAAiB,CAExD,QAAO;AAIX,KAAI,KAAK,gBAAgB,KAAK,YAAa,QAAO;AAElD,QAAO;;;;;;;;;;;;;;;ACxCT,MAAa,yBAGT,YACA,cAGD,aAAqC;CACpC,IAAI,YAAY,SAAS,WAAW,KAAK,CAAC;AAE1C,QAAO,WAAW,WAAW,UAAU;EACrC,MAAM,YAAY,SAAS,MAAM;AAEjC,MAAI,eAAe,WAAW,UAAU,CAAE;AAE1C,cAAY;AAEZ,WAAS,UAAU;GACnB;;;;;;;;;ACxBN,MAAa,mCAAmD;CAC9D,SAAS,OAAO,QAAQ,aAAa,QAAQ,IAAI;CACjD,YAAY,OAAO,QAAQ,aAAa,WAAW,IAAI;CACvD,SAAS,OAAO,KAAK,UAAU,aAAa,QAAQ,KAAK,MAAM;CAChE;;;;ACJD,IAAa,oBAAb,cAAuC,UAAU;CAC/C,YAAY,EAAE,KAAK,SAAkC;AACnD,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,cAAc,CAAC,QAAQ,OAAO,MAAM;GACpC,MAAM;GACN,cAAc;GACf,CAAC;;;;;;;;;;;;ACTN,MAAa,wBAAwB,UAA2B;CAC9D,MAAM,OAAO,IAAI,KAAK,MAAM;AAE5B,QAAO,CAAC,MAAM,KAAK,SAAS,CAAC,IAAI,KAAK,aAAa,KAAK;;;;;ACN1D,MAAM,cAAc;;AAGpB,MAAa,oBAAoB,UAAmB;CAClD,MAAMA,OAAoC,EAAE,OAAO;AAEnD,QAAO,KAAK,UAAU,OAAO,GAAG,UAAU;AAGxC,MAAI,qBAAqB,MAAM,CAC7B,QAAO,GAAG,cAAc;AAG1B,SAAO;GACP;;;AAKJ,MAAa,oBAAuB,UAA2C;AAC7E,KAAI;AASF,SARe,KAAK,MAAM,QAAQ,GAAG,UAAU;AAC7C,OAAI,OAAO,UAAU,YAAY,MAAM,WAAW,YAAY,CAC5D,QAAO,IAAI,KAAK,MAAM,MAAM,EAAmB,CAAC;AAGlD,UAAO;IACP;UAIK,OAAO;AACd,SAAO;;;;;;;;;;;;ACpBX,MAAa,iBAAiB,EAC5B,SAAS,IACT,qBACqC;CACrC,MAAM,kBAAkB,QAAiB,SAAS,GAAG,OAAO,GAAG,QAAQ;CAEvE,MAAM,qBAAqB,iBAAsD,EAC/E,aAAa,eAAe,WAC7B;AAED,QAAO;EACL,SAAS,OAAO,qBAAqB;GACnC,MAAM,cAAc,eAAe,iBAAiB,IAAI;GACxD,MAAM,UAAU,kBAAkB,iBAAiB,QAAQ,YAAY;GAEvE,MAAM,UAAU,MAAM,eAAe,QAAQ,aAAa,QAAQ;GAElE,MAAM,aAAa,UAAU,iBAAiB,QAAQ,GAAG;;;;;AAMzD,OAAI,eAAe,MAAM;IACvB,MAAM,SAAS,iBAAiB,OAAO,UAAU,WAAW,MAAM;AAElE,QAAI,OAAO,QACT,QAAO,OAAO;;;;;;AASlB,SAAM,eAAe,WAAW,aAAa,QAAQ;AAErD,UAAO;;EAGT,YAAY,OAAO,qBAAqB;AACtC,SAAM,eAAe,WACnB,eAAe,iBAAiB,IAAI,EACpC,kBAAkB,iBAAiB,QAAQ,YAAY,CACxD;;EAGH,SAAS,OAAO,kBAAkB,UAAU;GAC1C,MAAM,SAAS,iBAAiB,OAAO,UAAU,MAAM;AAEvD,OAAI,CAAC,OAAO,QACV,OAAM,IAAI,kBAAkB;IAC1B,KAAK,iBAAiB;IACtB,OAAO,KAAK,UAAU,MAAM;IAC7B,CAAC;GAGJ,MAAM,OAAO,iBAAiB,OAAO,KAAK;AAE1C,SAAM,eAAe,QACnB,eAAe,iBAAiB,IAAI,EACpC,MACA,kBAAkB,iBAAiB,QAAQ,YAAY,CACxD;;EAEJ;;;;;;AC9EH,MAAa,kBACX,OAAO,WAAW,cAAc,SAASC;;;;;;;;ACA3C,MAAa,8BAA8B,OAAO,WAAW;;;;ACL7D,MAAa,6CACX;AAEF,MAAa,sCAAsC;AAEnD,MAAa,qCAAqC;AAElD,MAAa,oCAAoC;AAEjD,MAAa,kDACX;;;;;ACPF,MAAa,8BAAqD;CAChE,IAAIC;CACJ,IAAIC;AAOJ,QAAO;EACL,SANc,IAAI,SAAY,UAAU,YAAY;AACpD,aAAU;AACV,YAAS;IACT;EAIA,SAAS,WAAqB,SAAS,OAAO;EAC9C,UAAU,UAAa,UAAU,MAAM;EACxC;;;;;ACdH,IAAa,mBAAb,cAAsC,UAAU;CAC9C,cAAc;AACZ,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,MAAM;GACN,cAAc;GACf,CAAC;;;;;;;;;ACLN,MAAa,iCAAiC,EAAE,OAAO;CACrD,MAAM,EAAE,SAAS,EAAE,SAAS,CAAC;CAC7B,OAAO,EAAE,QAAQ;CAClB,CAAC;;;;;;;;;;;;;;;;;ACeF,MAAa,2BAA2B,EACtC,kBACsD;AAGtD,KAAI,uBAAuB,IAAI,OAAO,qBAAqB,YACzD,QAAO;EACL,WAAW;EACX,UAAU;EACV,YAAY;EACb;CAIH,MAAM,UAAU,IAAI,iBAAiB,YAAY;CACjD,MAAM,eAAe,IAAIC,gBAAc;CAGvC,MAAM,iBAAiB,iBAA+B;EACpD,MAAM,SAAS,+BAA+B,UAAU,aAAa,KAAK;AAE1E,MAAI,CAAC,OAAO,QAEV;EAGF,MAAM,EAAE,MAAM,UAAU,OAAO;AAC/B,eAAa,KAAK,OAAO,KAAK;;AAGhC,SAAQ,iBAAiB,WAAW,cAAc;AAElD,QAAO;EACL,MAAM,OAAO,aAAa;AACxB,gBAAa,IAAI,OAAO,SAAS;;EAGnC,KAAK,OAAO,aAAa;AACvB,gBAAa,GAAG,OAAO,SAAS;;EAGlC,OAAO,EAAE,MAAM,YAAY;AACzB,WAAQ,YAAY;IAAE;IAAM;IAAO,CAAC;;EAEvC;;;;;;;;ACpDH,MAAMC,aAAuC;CAC3C,OAAO;CACP,OAAO;CACP,MAAM;CACN,MAAM;CACP;AAGD,MAAM,iBAAiB;;;;;;AAOvB,MAAa,gBAAgB,UAA+B,EAAE,KAAa;CACzE,MAAMC,eAAmC,IAAI,cAAc;CAG3D,MAAMC,WAAqB,QAAQ,SAAS;CAI5C,MAAM,aAAa,UAA6B;AAC9C,SAAO,WAAW,UAAU,WAAW;;CAKzC,MAAM,iBAAiB,OAAiB,YAA4B;AAGlE,SAAO,qBAFW,IAAI,MAAM,EAAC,aAAa,CAErB,IAAI,MAAM,aAAa,CAAC,IAAI;;CAKnD,MAAM,OACJ,OACA,eACA,SACA,GAAG,SACA;AACH,eAAa,KAAK,OAAO,OAAO,SAAS,GAAG,KAAK;AAEjD,MAAI,CAAC,UAAU,MAAM,CAAE;AAEvB,gBAAc,cAAc,OAAO,QAAQ,EAAE,GAAG,KAAK;;AAGvD,QAAO;EACL,QAAQ,SAAS,GAAG,SAClB,IAAI,SAAS,eAAe,OAAO,SAAS,GAAG,KAAK;EAEtD,QAAQ,SAAS,GAAG,SAClB,IAAI,SAAS,eAAe,OAAO,SAAS,GAAG,KAAK;EAEtD,OAAO,SAAS,GAAG,SACjB,IAAI,QAAQ,eAAe,MAAM,SAAS,GAAG,KAAK;EAEpD,KAAK,aAAa,IAAI,KAAK,aAAa;EAExC,IAAI,aAAa,GAAG,KAAK,aAAa;EACtC,OAAO,SAAS,GAAG,SACjB,IAAI,QAAQ,eAAe,MAAM,SAAS,GAAG,KAAK;EACrD;;;;;;;;;;;;ACnEH,IAAa,2BAAb,cAA8C,UAAU;CACtD,YAAY,EAAE,UAA0C;AACtD,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,MAAM;GACN,cAAc,wDAAwD,OAAO;GAC9E,CAAC;;;;;;;;;;;ACdN,MAAM,6BAA6B,IAAI,IAAI,CAAC,SAAS,SAAS,CAAC;;;;;;;;;;;AAa/D,MAAa,2BAA2B,QAA4B;CAClE,IAAIC;AAEJ,KAAI;AACF,WAAS,eAAe,MAAM,MAAM,IAAI,IAAI,IAAI;SAC1C;AAEN,QAAM,IAAI,yBAAyB,EAAE,QAAQ,WAAW,CAAC;;AAG3D,KAAI,CAAC,2BAA2B,IAAI,OAAO,SAAS,CAClD,OAAM,IAAI,yBAAyB,EAAE,QAAQ,OAAO,UAAU,CAAC;;;;;;;;;AC3BnE,MAAa,eAAe,WAC1B,CAAC,GAAI,kBAAkB,aAAa,SAAS,IAAI,WAAW,OAAO,CAAE,CAClE,KAAK,MAAM,EAAE,SAAS,GAAG,CAAC,SAAS,GAAG,IAAI,CAAC,CAC3C,KAAK,GAAG;;;;;;;;ACHb,MAAa,wBAAwB,iBAA8B;CACjE,MAAM,oBAAoB,IAAI,WAAW,aAAa;CACtD,MAAM,MAAM,kBAAkB;CAG9B,MAAM,kBAAkB,kBAAkB,MAAM,GAAI,IAAI,QAAS,EAAE;AAGnE,iBAAgB,KAAK,IAAO,kBAAkB,MAAM,KAAK;AACzD,QAAO,gBAAgB;;;;;ACXzB,IAAa,mBAAb,cAAsC,UAAU;CAE9C,YAAY,SAAiB;AAC3B,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,MAAM;GACN,cAAc,QAAQ,QAAQ;GAC/B,CAAC;;;;;;ACXN,MAAa,aAAa;;;;;ACW1B,MAAa,uBAAuB,EAClC,IACA,cAEA,IAAI,SAAS,SAAS,WAAW;CAG/B,MAAM,UAFc,GAAG,YAAY,YAAY,YAAY,CACjC,YAAY,WAAW,CAC3B,OAAO,QAAQ;AAErC,SAAQ,kBAAkB,SAAS;AACnC,SAAQ,gBAAgB,OAAO,QAAQ,MAAe;EACtD;;;;;ACVJ,MAAa,oBAAoB,EAC/B,IACA,cAEA,IAAI,SAAS,SAAS,WAAW;CAG/B,MAAM,UAFc,GAAG,YAAY,YAAY,WAAW,CAChC,YAAY,WAAW,CAC3B,IAAI,QAAQ;AAElC,SAAQ,kBAAkB,QAAQ,QAAQ,OAAgC;AAC1E,SAAQ,gBAAgB,OAAO,QAAQ,MAAe;EACtD;;;;;ACXJ,MAAa,oBAAoB,EAC/B,IACA,YAEA,IAAI,SAAS,SAAS,WAAW;CAG/B,MAAM,UAFc,GAAG,YAAY,YAAY,YAAY,CACjC,YAAY,WAAW,CAC3B,IAAI,MAAM;AAEhC,SAAQ,kBAAkB,SAAS;AACnC,SAAQ,gBAAgB,OAAO,QAAQ,MAAe;EACtD;;;;;ACpBJ,MAAa,gBAAgB,WAC3B,IAAI,SAAS,SAAS,WAAW;CAC/B,MAAM,UAAU,UAAU,KAAK,QAAQ,EAAE;AAEzC,SAAQ,wBAAwB;EAC9B,MAAM,KAAK,QAAQ;AAEnB,MAAI,CAAC,GAAG,iBAAiB,SAAS,WAAW,CAC3C,IAAG,kBAAkB,YAAY,EAAE,SAAS,WAAW,CAAC;;AAI5D,SAAQ,kBAAkB,QAAQ,QAAQ,OAAO;AACjD,SAAQ,gBAAgB,OAAO,QAAQ,MAAe;EACtD;;;;;;;;;;ACJJ,MAAa,eAAe,OAAU,EACpC,QACA,gBACuC;CACvC,MAAM,KAAK,MAAM,aAAa,OAAO;AACrC,KAAI;AAGF,SAFe,MAAM,UAAU,GAAG;WAG1B;AACR,KAAG,OAAO;;;;;;ACXd,MAAM,kBAAkB;;AAGxB,MAAaC,yBAAgD,WAAW;CACtE,MAAM,SAAS,QAAQ,UAAU;CAKjC,MAAM,6BAAa,IAAI,KAAwB;CAG/C,MAAM,cAAc,OAAO,YAAqC;EAC9D,MAAM,UAAU,MAAM,OAAO,OAAO,YAClC;GAAE,MAAM;GAAS,YAAY;GAAS,EACtC,OACA,CAAC,OAAO,CACT;EAQD,MAAM,eAAe,YADO,qBALP,MAAM,OAAO,OAAO,UACvC,OACA,QAAQ,UACT,CAE6D,CACT;EAErD,MAAMC,QAAmB;GACvB;GACA,YAAY,QAAQ;GACpB;GACD;AAED,aAAW,IAAI,SAAS,MAAM;AAE9B,QAAM,aAAa;GACjB;GACA,YAAY,OAAO,iBAAiB;IAAE;IAAI;IAAO,CAAC;GACnD,CAAC;AAEF,SAAO;;CAIT,MAAM,YAAY,OAChB,SACA,QACoB;EACpB,MAAM,aAAa,MAAM,OAAO,OAAO,UACrC,OACA,KACA;GAAE,MAAM;GAAS,YAAY;GAAS,EACtC,OACA,CAAC,OAAO,CACT;EAED,MAAM,YAAY;GAAE,KAAK,IAAI;GAAK,KAAK,IAAI;GAAK,GAAG,IAAI;GAAG,GAAG,IAAI;GAAG;EAEpE,MAAM,kBAAkB,MAAM,OAAO,OAAO,UAC1C,OACA,WACA;GAAE,MAAM;GAAS,YAAY;GAAS,EACtC,MACA,CAAC,SAAS,CACX;EAID,MAAM,eAAe,YADO,qBADP,MAAM,OAAO,OAAO,UAAU,OAAO,gBAAgB,CACZ,CACT;EAErD,MAAMA,QAAmB;GAAE;GAAS;GAAY;GAAc;AAE9D,aAAW,IAAI,SAAS,MAAM;AAE9B,QAAM,aAAa;GACjB;GACA,YAAY,OAAO,iBAAiB;IAAE;IAAI;IAAO,CAAC;GACnD,CAAC;AAEF,SAAO;;CAIT,MAAM,eAAe,OAAO,YAA4C;EACtE,MAAM,SAAS,WAAW,IAAI,QAAQ;AACtC,MAAI,OACF,QAAO,OAAO;AAQhB,UALc,MAAM,aAAa;GAC/B;GACA,YAAY,OAAO,iBAAiB;IAAE;IAAI;IAAS,CAAC;GACrD,CAAC,GAEY,gBAAgB;;CAIhC,MAAM,OAAO,OAAO,SAAiB,YAAqC;EAGxE,MAAM,QACJ,WAAW,IAAI,QAAQ,IACtB,MAAM,aAAa;GAClB;GACA,YAAY,OAAO,iBAAiB;IAAE;IAAI;IAAS,CAAC;GACrD,CAAC;AAEJ,MAAI,CAAC,MACH,OAAM,IAAI,iBAAiB,QAAQ;EAIrC,MAAM,OADU,IAAI,aAAa,CACZ,OAAO,QAAQ;AAQpC,SAAO,YANW,MAAM,OAAO,OAAO,KACpC;GAAE,MAAM,EAAE,MAAM,WAAW;GAAE,MAAM;GAAS,EAC5C,MAAM,YACN,KACD,CAE4B;;CAI/B,MAAM,SAAS,OAAO,YAAsC;AAC1D,MAAI,WAAW,IAAI,QAAQ,CACzB,QAAO;AAQT,SALc,MAAM,aAAa;GAC/B;GACA,YAAY,OAAO,iBAAiB;IAAE;IAAI;IAAS,CAAC;GACrD,CAAC,KAEe;;CAInB,MAAM,YAAY,OAAO,YAAmC;AAC1D,aAAW,OAAO,QAAQ;AAE1B,QAAM,aAAa;GACjB;GACA,YAAY,OAAO,oBAAoB;IAAE;IAAI;IAAS,CAAC;GACxD,CAAC;;AAGJ,QAAO;EACL;EACA;EACA;EACA;EACA;EACA;EACD;;;;;ACjKH,IAAa,8BAAb,cAAiD,UAAU;CACzD,YAAY,EAAE,WAAyC;AACrD,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,cAAc,CAAC,YAAY,UAAU;GACrC,MAAM;GACN,cACE;GACH,CAAC;;;;;;ACdN,IAAa,4BAAb,cAA+C,UAAU;CACvD,cAAc;AACZ,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,MAAM;GACN,cACE;GACH,CAAC;;;;;;ACKN,MAAMC,+BAAwE;CAC5E,QAAQ;CACR,SAAS;CACT,WAAW;CACX,YAAY;CACZ,cAAc;CACd,QAAQ;CACR,aAAa;CACb,WAAW;CACZ;AAED,MAAM,gBAAgB,cACpB,6BAA6B,cAAc;;;;;;;;;;AAY7C,MAAa,8BAA+C;AAC1D,KAAI,uBAAuB,CACzB,QAAO;EACL,eAAe,QAAQ,SAAS;EAChC,kBAAkB;EAClB,0BAA0B;EAC1B,WAAW;EACX,UAAU;EACV,eAAe,QAAQ,SAAS;EAChC,iBAAiB,QAAQ,SAAS;EAClC,mBAAmB;EACpB;CAGH,MAAM,eAAe,IAAIC,gBAAgC;CACzD,MAAM,2BAAW,IAAI,KAA8B;CAEnD,MAAM,6BAAa,IAAI,SAA4E;CAEnG,IAAIC;CACJ,IAAIC,kBAA2C;CAC/C,IAAI,eAAe;CAEnB,MAAM,sBAAsB,UAAmC;AAC7D,oBAAkB;AAClB,eAAa,KAAK,yBAAyB,MAAM;;CAInD,MAAM,sBAAsB,gBAAyC;EACnE,MAAM,WAAW,SAAS,IAAI,YAAY;AAE1C,MAAI,SACF,QAAO;AAGT,MAAI,CAAC,WACH,OAAM,IAAI,2BAA2B;EAGvC,MAAM,UAAU,WAAW,SAAS,IAAI,YAAY;AACpD,WAAS,IAAI,aAAa,QAAQ;AAElC,SAAO;;CAGT,MAAMC,UAAsC,OAAO,EAAE,QAAQ,cAAc;AACzE,MAAI,aACF;AAGF,iBAAe;AAEf,MAAI;GACF,MAAM,OAAO,QAAQ,OAAO;AAE5B,OAAI,YAAY;AACd,eAAW,OAAO;AAClB,aAAS,OAAO;;GAKlB,MAAM,EACJ,cAAc,kBACd,cACA,uBACE,MAAM,OAAO;AAEjB,gBAAa,IAAI,iBAAiB;IAIhC,eAAe,cAAc,aAAa;AAGxC,KAFkB,gBAAgB,EAAE,SAAS,EAAE,OAAO,CAGnD,qBAAqB,EAAE,eAAe,KAAK,eAAe,CAAC,CAC3D,MAAM,aAAa;AAClB,eAAS,MAAM,SAAS,MAAM;OAC9B,CACD,OAAO,QAAiB;AAEvB,eADgB,eAAe,QAAQ,IAAI,UAAU,OAAO,IAAI,EAC9C,KAAK;OACvB;;IAEN,aAAa;IACb,SAAS;KAAE;KAAc;KAAoB;IAC9C,CAAC;AAEF,cAAW,WAAW,IAAI,gBAAgB;AACxC,uBAAmB,aAAa,YAAY,QAAQ,CAAC;KACrD;AAEF,cAAW,SAAS;YACZ;AACR,kBAAe;;;CAInB,MAAMC,mBAAkD;AACtD,MAAI,CAAC,WACH;AAGF,OAAK,MAAM,WAAW,SAAS,QAAQ,CACrC,SAAQ,QAAQ,CAAC,YAAY,GAAG;AAGlC,WAAS,OAAO;AAChB,aAAW,OAAO;AAClB,eAAa;;CAGf,MAAMC,YAA0C,OAAU,EACxD,eACA,eAII;EACJ,MAAM,UAAU,mBAAmB,cAAc,QAAQ;EAEzD,MAAMC,WAA4C,YAAY;GAC5D,MAAM,SAAS,cAAc,OAAO,UAAU,QAAQ,KAAK;AAE3D,OAAI,CAAC,OAAO,QACV;AAGF,YAAS,EAAE,MAAM,OAAO,MAAM,CAAC;;AAGjC,aAAW,IAAI,UAAU,QAAQ;AAEjC,QAAM,QAAQ,UAAU,QAAQ;;CAGlC,MAAMC,eAAkD,EACtD,eACA,eAII;EACJ,MAAM,UAAU,SAAS,IAAI,cAAc,QAAQ;AAEnD,MAAI,CAAC,QACH;EAGF,MAAM,UAAU,WAAW,IAAI,SAAS;AAExC,MAAI,SAAS;AACX,WAAQ,YAAY,QAAQ;AAC5B,cAAW,OAAO,SAAS;;;CAI/B,MAAMC,UAAsC,OAAU,EACpD,eACA,WAII;EACJ,MAAM,SAAS,cAAc,OAAO,UAAU,KAAK;AAEnD,MAAI,CAAC,OAAO,QACV,OAAM,IAAI,4BAA4B,EAAE,SAAS,cAAc,SAAS,CAAC;AAI3E,QADgB,mBAAmB,cAAc,QAAQ,CAC3C,QAAQ,WAAW,OAAO,KAAK;;AAG/C,QAAO;EACL;EACA;EACA,0BAA0B;EAC1B,MAAM,OAAO,aAAa;AACxB,gBAAa,IAAI,OAAO,SAAS;;EAEnC,KAAK,OAAO,aAAa;AACvB,gBAAa,GAAG,OAAO,SAAS;;EAElC;EACA;EACA;EACD;;;;;;;;;;;;;;ACxNH,MAAa,4BAA4B,EACvC,oBAEA,WAAW,cAAc;;;;ACd3B,IAAa,0BAAb,cAA6C,UAAU;CACrD,cAAc;AACZ,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,MAAM;GACN,cAAc;GACf,CAAC;;;;;;ACRN,IAAa,wCAAb,cAA2D,UAAU;CACnE,YAAY,EAAE,SAA6C;AACzD,QAAM;GACJ;GACA,MAAM;GACN,SAAS;GACT,MAAM;GACN,cAAc;GACf,CAAC;;;;;;;;;;;;;;;ACCN,IAAa,8BAAb,cAAiD,UAAU;CACzD,YAAY,EAAE,SAA6C;AACzD,QAAM;GACJ;GACA,MAAM;GACN,SAAS;GACT,MAAM;GACN,cACE;GACH,CAAC;;;;;;;AChBN,MAAa,qBAAqB,SAAS,kBAAkB,KAAK;CAChE,MAAM,kBAAkB,OAAO;AAE/B,eAAc,iBAAiB,qCAAqC;CAEpE,MAAM,EAAE,aAAa;AAGrB,QAAO,SAAS,SAAS,WAAW,SAAS,UAAU,WAAW;;;;;;;;;ACHpE,MAAa,uBACX,WACuB;CACvB,MAAM,OAAO,QAAQ,OAAO;CAE5B,MAAM,eAAe,KAAK,MAAM,KAAK,CAAC;AAEtC,KAAI,kBAAkB,OAAO,CAC3B,eAAc,cAAc,4BAA4B;AAG1D,MAAK,MAAM,IAAI,EACb,cAAc,MACf,CAAC;AAEF,QAAO,gBAAgB;;;;;ACtBzB,IAAa,4BAAb,cAA+C,UAAU;CAEvD,YAAY,YAAoB;AAC9B,QAAM;GACJ,OAAO;GACP,MAAM;GACN,SAAS;GACT,MAAM;GACN,cAAc,mCAAmC;GAClD,CAAC;;;;;;;;;;;;;ACMN,MAAK,mBACH,EAAA,gDAEA;AAGD,CAFG,QAAY,OAAA,CAEf,MAAA,IAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;ACLD,MAAa,gBACX,EAAE,gBACF,SAAS,kBAAkB,KACxB;AAGH,QAFa,QAAQ,OAAO,CAEhB,WAAW,IAAI,aAAa;;;;;;ACA1C,MAAa,cAAc,OACzB,EAAE,eAAe,WAAW,aAAa,QACzC,WACG;CACH,MAAM,OAAO,QAAQ,OAAO;CAC5B,MAAM,YAAY,gBAAgB,EAAE,EAAE,OAAO;CAE7C,MAAM,iBAAiB,mCACrB,EAAE,eAAe,EACjB,OACD;AAED,KAAI;EACF,MAAM,aAAa,6BAA6B;GAC9C,OAAO,eAAe;GACtB,aAAa,eAAe,SAAS;GACtC,CAAC;EAEF,MAAMC,iBAAiC;GACrC,SAAS,cAAc;GACvB;GAEA,OAAO,eAAe;GACtB,UAAU,eAAe;GACzB;GACD;AAED,QAAM,UAAU,YAAY;GAC1B;GACA,eAAe,KAAK;GACrB,CAAC;UACK,OAAO;AACd,OAAK,OAAO,MAAM,wBAAwB,EAAE,OAAO,CAAC;;;;;;;;;;;;AC1CxD,MAAa,+BACX,EAAE,oCACF,WACS;AACT,KAAI,iCAAiC,WAAW,EAC9C;CAGF,MAAM,OAAO,QAAQ,OAAO;CAE5B,MAAM,sCACJ,iCAAiC,KAAK,EAAE,SAAS,GAAG;CAEtD,MAAMC,mCAA8D,KAAK,MACtE,KAAK,CACL,yBAAyB,QACvB,4BACC,CAAC,oCAAoC,SACnC,wBAAwB,GACzB,CACJ;AAEH,MAAK,MAAM,IAAI,EACb,0BAA0B,CACxB,GAAG,kCACH,GAAG,iCACJ,EACF,CAAC;;;;;;ACjCJ,MAAa,kDACX,EAAE,gBACF,WACG;CACH,MAAM,OAAO,QAAQ,OAAO;AAE5B,MAAK,MAAM,IAAI,EACb,sBAAsB;EACpB,GAAG,KAAK,MAAM,KAAK,CAAC;EACpB,GAAG;EACJ,EACF,CAAC;;;;;;;;;;;;;;;;;ACUJ,MAAa,wCACX,EACE,6BAA6B,MAC7B,gBACA,qBAEF,WACoB;AACpB,KAAI,eAAe,WAAW,EAC5B,QAAO,EAAE;CAGX,MAAM,yBAAyB,kBAAkB,OAAO;CAExD,MAAMC,oBAAqC,EAAE;CAC7C,MAAMC,mCAAoD,EAAE;CAC5D,MAAMC,6CAAqE,EAAE;CAE7E,MAAMC,2BAA4C,eAAe,KAC9D,cAAc;EACb,MAAM,gCAAgC,uBAAuB,MAC1D,0BAA0B,sBAAsB,OAAO,UAAU,GACnE;AAED,MAAI,CAAC,+BAA+B;AAClC,qBAAkB,KAAK,UAAU;AACjC,UAAO;;EAGT,MAAM,6BACJ,8BAA8B,sBAAsB;AAEtD,MAAI,8BAA8B,sBAAsB;AACtD,OAAI,2BACF,4CACE,8BAA8B,wBAC5B;AAGN,UAAO;IACL,GAAG;IACH,sBACE,8BAA8B;IACjC;;AAGH,MAAI,2BACF,kCAAiC,KAAK,UAAU;AAGlD,SAAO;GAEV;CAED,IAAI,wBAAwB;AAE5B,KAAI,OAAO,KAAK,2CAA2C,CAAC,SAAS,GAAG;AACtE,iDACE,EAAE,cAAc,4CAA4C,EAC5D,OACD;AAED,0BAAwB;;AAG1B,KAAI,4BAA4B;EAC9B,MAAM,kBAAkB,CACtB,GAAG,kCACH,GAAG,kBACJ;AAED,MAAI,gBAAgB,SAAS,GAAG;AAC9B,+BACE,EAAE,kCAAkC,iBAAiB,EACrD,OACD;AAED,2BAAwB;AAExB,QAAK,MAAM,oBAAoB,kBAC7B,CAAK,YAAY,EAAE,eAAe,kBAAkB,EAAE,OAAO;;;AAKnE,KAAI,sBACF,gCAA+B,OAAO;AAGxC,QAAO;;;;;;;;;;;;ACrGT,MAAa,kBAAkB,WAAuC;CACpE,MAAM,OAAO,QAAQ,OAAO;CAC5B,MAAM,kBAAkB,OAAO,iBAAiB;AAEhD,QAAO;EACL,YAAY,KAAK,UAAU,WAAW,iBAAiB,WAAW;EAClE,SAAS,KAAK,UAAU,QAAQ,iBAAiB,eAAe;EAChE,eAAe,KAAK,UAAU;EAC9B,kBAAkB,KAAK,UAAU;EAClC;;;;;;;;;ACTH,MAAa,sBAAsB,OAAO,EACxC,QACA,gBACA,SACA,KACA,SACA,OACA,UACA,WACA,WACA,gBAC+B;CAM/B,MAAM,SAAS,CADA,GAAG,OAAO,kCAAkC,eAAe,YAClD,QAAQ,CAAC,KAAK,KAAK;CAI3C,MAAM,yBAAyB,YAAY,SAAS;CACpD,MAAM,sBAAsB,GAAG,CAAC,QAAQ,UAAU,CAAC,KACjD,uBACD,CAAC;CAEF,MAAMC,eAAyB,EAAE;AACjC,cAAa,KAAK,QAAQ,MAAM;AAChC,cAAa,KAAK,aAAa;AAC/B,KAAI,QACF,cAAa,KAAK,aAAa,UAAU;AAG3C,cAAa,KAAK,UAAU,QAAQ;AAEpC,KAAI,SACF,cAAa,KAAK,cAAc,WAAW;AAG7C,KAAI,UACF,cAAa,KAAK,eAAe,YAAY;AAG/C,KAAI,WAAW,OACb,cAAa,KACX,aAAa,UAAU,KAAK,aAAa,SAAS,SAAS,CAAC,MAAM,GACnE;AAKH,QAAO,CAAC,qBAFO,aAAa,KAAK,KAAK,CAEF,CAAC,KAAK,KAAK;;;;;;AChEjD,MAAa,gCAAgC,WAA0B;CACrE,MAAM,EAAE,YAAY,eAAe,OAAO;AAE1C,QAAO,cAAc,QAAQ,6KAA6K,QAAQ;;;;;;;;;ACMpN,MAAa,iCACX,EAAE,2BACF,WACG;CACH,MAAM,OAAO,QAAQ,OAAO;CAE5B,MAAM,gBAAgB,KAAK,MAAM,KAAK;CAEtC,MAAM,EAAE,6BAA6B,KAAK,MAAM,KAAK;CAErD,MAAM,mCAAmC,yBAAyB,QAC/D,YAAY,QAAQ,OAAO,wBAAwB,GACrD;AAED,MAAK,MAAM,IAAI,EACb,0BAA0B,kCAC3B,CAAC;;;;;AAMF,yCAAwC,EAAE,eAAe,EAAE,OAAO;;;;;;;;;AC/BpE,MAAa,WAAW,UACtB,iBAAiB;;;;;;;;ACEnB,MAAa,mBACX,OACA,SACiC;AACjC,KAAI,CAAC,QAAQ,MAAM,CAAE,QAAO;AAE5B,QAAO,UAAU,SAAS,MAAM,SAAS;;;;;;;;;;;;;;AC4B3C,MAAa,kCAAkC,OAC7C,EACE,eACA,eACA,oBACA,WACA,OACA,aAAa,OACb,mBACA,oBACA,WACA,mBAEF,WAC4B;CAC5B,MAAM,OAAO,QAAQ,OAAO;CAC5B,MAAM,YAAY,gBAAgB,EAAE,EAAE,OAAO;CAE7C,MAAM,aAAa,6BAA6B;EAC9C;EACA,aAAa;EACd,CAAC;CAEF,IAAI;AAEJ,KAAI,CAAC,OAAO,KAEV,qBAAoB,UAAU,cAAc,KAAK,UAAU;UAClD,WAET,qBAAoB,UAAU,eAAe,KAAK,UAAU;UACnD,OAAO,QAAQ,gBAKxB,qBAAoB,UAAU,cAAc,KAAK,UAAU;KAG3D,qBAAoB,UAAU,WAAW,KAAK,UAAU;AAG1D,KAAI;AACF,SAAO,MAAM,kBAAkB;GAC7B,eAAe,KAAK;GACpB,eAAe;IAEb,2BAA2B,oBAAoB,KAAK,aAAa;KAC/D,SAAS,QAAQ;KACjB,WAAW,QAAQ;KACnB,MAAM,QAAQ;KACf,EAAE;IACH,cAAc,oBAAoB,OAAO;IAElC;IACP;IACA,SAAS;IACT,qBAAqB;IACrB;IACA,eAAe;IACf;IACA,gBAAgB;IACjB;GACF,CAAC;UACK,OAAO;AACd,OAAK,OAAO,MAAM,gDAAgD,MAAM;AAExE,MACE,gBAAgB,OAAO,0BAA0B,IACjD,gBAAgB,OAAO,8BAA8B,CAErD,OAAM,IAAI,sCAAsC,EAC9C,OAAO,OACR,CAAC;AAGJ,MAAI,gBAAgB,OAAO,6BAA6B,CACtD,OAAM,IAAI,4BAA4B,EACpC,OAAO,OACR,CAAC;AAGJ,QAAM;;;;;;;;;;ACnHV,MAAa,+BACX,cACiB;AAOjB,QANe,OAAO,KAAK,gBAAgB,CAEtB,MAClB,UAAU,gBAAgB,OAAO,iBAAiB,UACpD,IAEe;;;;;;;;;;;;;;;;;;;ACGlB,MAAa,mBAAmB,SAAS,kBAAkB,KAAoB;CAE7E,MAAM,EAAE,OAAO,iBADF,QAAQ,OAAO;CAG5B,MAAM,yBACJ,cAAc,iBAAiB,gBAAgB;CAEjD,MAAM,EAAE,oBAAoB,MAAM,KAAK;AAEvC,eAAc,iBAAiB,4BAA4B;CAE3D,MAAM,WAAW,gBAAgB;AAEjC,KAAI,CAAC,SACH,QAAO,EAAE;AA0CX,QAvCqB,SAClB,KAAK,YAAY;AAChB,MAAI,CAAC,QAAQ,UAAW,QAAO,EAAE;EAEjC,MAAM,QAAQ,4BAA4B,QAAQ,UAAU;AAE5D,MAAI,CAAC,SAAS,UAAU,UAAU,CAAC,MAAO,QAAO,EAAE;AAEnD,SAAO,QAAQ,SAAS,KAAK,yBAAyB;AA0BpD,UAAO,uBAzB0B;IAC/B,mBAAmB,qBAAqB;IACxC;IACA,SAAS,qBAAqB;IAC9B,aACE,qBAAqB,cAAc,qBAAqB;IAC1D,aAAa,qBAAqB;IAClC,SAAS,qBAAqB,SAAS;IACvC,MAAM,qBAAqB;IAC3B,gBAAgB;KACd,UAAU,qBAAqB,eAAe;KAC9C,SAAS,qBAAqB,eAAe;KAC7C,MAAM,qBAAqB,eAAe;KAC1C,QAAQ,qBAAqB,eAAe;KAC7C;IACD,WAAW,qBAAqB;IAChC,SAAS,EACP,MAAM,CACJ,GAAI,qBAAqB,0BAA0B,EAAE,EACrD,GAAI,qBAAqB,WAAW,EAAE,CACvC,EACF;IACD,SAAS,qBAAqB,aAAa;IAC5C,CAEyC;IAC1C;GACF,CACD,MAAM;;;;;;ACnEX,MAAa,6CAC2B;CACpC,MAAM,2BAAW,IAAI,KAAoC;AAEzD,QAAO;EACL,WAAW;EACX,WAAW,2BAA2B;AACpC,YAAS,IAAI,uBAAuB,OAAO,uBAAuB;;EAErE;;;;;ACbL,MAAa,oCAAoC,8BAC/C,kCACA,qCACD;;;;;;;;ACGD,MAAa,uBACX,WACsB;CACtB,MAAM,iCACJ,kCAAkC,OAAO;CAE3C,MAAM,oCAAoC,MAAM,KAC9C,+BAA+B,KAAK,CAAC,QAAQ,CAC9C;CAED,MAAM,eAAe,gBAAgB,OAAO;AAY5C,QAVyB,kCAAkC,KACxD,EAAE,SAAS,YAAY;AAKtB,SAJ6B,aAAa,QACvC,gBAAgB,YAAY,UAAU,MACxC,CAE2B,IAAI,QAAQ;GAE3C,CAEuB,MAAM;;;;;;AClBhC,MAAa,mCACX,EAAE,WAAW,SACb,WACoB;CACpB,MAAM,mBAAmB,oBAAoB,OAAO;AAEpD,KAAI,iBAAiB,WAAW,EAC9B,OAAM,IAAI,yBAAyB;CAGrC,MAAM,kBAAkB,iBAAiB,MACtC,sBACCC,kBAAgB,cAAc,aAAaA,kBAAgB,UAAU,MACxE;AAED,eACE,iBACA,uCAAuC,MAAM,mBAAmB,YACjE;AAED,QAAO"}