npm - @elytro/cli - Versions diffs - 0.5.2 → 0.5.3 - Mend

@elytro/cli 0.5.2 → 0.5.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -1,89 +1,135 @@
 # Elytro CLI
-A command-line interface for ERC-4337 smart account wallets. Built for power users and AI Agents managing smart accounts across multiple chains.
+A command-line interface for ERC-4337 smart account wallets. Built for power users and AI agents managing smart accounts across multiple chains.
+## Installation
+```bash
+npm install -g @elytro/cli
+# or
+bun add -g @elytro/cli
+# or
+pnpm add -g @elytro/cli
+```
 ## Quick Start
 ```bash
 # Initialize wallet (creates vault + EOA)
-bun dev init
+elytro init
-# Create a smart account on Sepolia
-bun dev account create --chain 11155420 --email user@example.com --daily-limit 100
+# Create a smart account on OP Sepolia
+elytro account create --chain 11155420 --email user@example.com --daily-limit 100
 # Send a transaction
-bun dev tx send --tx "to:0xRecipient,value:0.1"
+elytro tx send --tx "to:0xRecipient,value:0.1"
 # Check balance
-bun dev query balance
+elytro query balance
 ```
 ## Key Features
 - **Multi-account management** — Create multiple smart accounts per chain with user-friendly aliases
-- **Zero-interaction security** — macOS: vault key stored in Keychain; non-macOS: injected via `ELYTRO_VAULT_SECRET`
+- **Zero-interaction security** — macOS/Linux/Windows: vault key stored in system keychain via `@napi-rs/keyring`; fallback: inject via `ELYTRO_VAULT_SECRET`
 - **Flexible transaction building** — Single transfers, batch operations, contract calls via unified `--tx` syntax
 - **Transaction simulation** — Preview gas, paymaster sponsorship, and balance impact before sending
-- **Cross-chain support** — Manage accounts across Sepolia, OP Sepolia, Arbitrum, and custom networks
-- **Security intents** — Declare email/spending limits at account creation; deployed atomically on activation
+- **Cross-chain support** — Manage accounts across Ethereum, Optimism, Arbitrum, Base, and testnets
+- **SecurityHook (2FA)** — Install on-chain 2FA with email OTP and daily spending limits
+- **Self-updating** — `elytro update` detects your package manager and upgrades in place
+## Supported Chains
+| Chain            | Chain ID  |
+| ---------------- | --------- |
+| Ethereum         | 1         |
+| Optimism         | 10        |
+| Arbitrum One     | 42161     |
+| Base             | 8453      |
+| Sepolia          | 11155111  |
+| Optimism Sepolia | 11155420  |
+Public RPC and bundler endpoints are used by default. Provide your own Alchemy/Pimlico keys for higher rate limits.
 ## Architecture
 | Component          | Purpose                                          |
 | ------------------ | ------------------------------------------------ |
-| **SecretProvider** | Vault key management (Keychain/env var)          |
+| **SecretProvider** | Vault key management (Keychain / env var)        |
 | **KeyringService** | EOA encryption + decryption (AES-GCM)            |
 | **AccountService** | Smart account lifecycle (CREATE2, multi-account) |
-| **SdkService**     | @elytro/sdk wrapper (UserOp building)            |
+| **SdkService**     | `@elytro/sdk` wrapper (UserOp building)          |
 | **FileStore**      | Persistent state (`~/.elytro/`)                  |
-See [docs/architecture.md](docs/architecture.md) for detailed data flow.
 ## Security Model
-- **No plaintext keys on disk** — vault key stored in macOS Keychain or injected at runtime
+- **No plaintext keys on disk** — vault key stored in system keychain or injected at runtime
 - **AES-GCM encryption** — all private keys encrypted with vault key before storage
 - **Consume-once env var** — `ELYTRO_VAULT_SECRET` deleted from process after load
 - **Memory cleanup** — all key buffers zeroed after use
-See [docs/security.md](docs/security.md) for threat model.
 ## Configuration
-| Variable              | Purpose                       | Required       |
-| --------------------- | ----------------------------- | -------------- |
-| `ELYTRO_VAULT_SECRET` | Base64 vault key (non-macOS)  | Yes, non-macOS |
-| `ELYTRO_ALCHEMY_KEY`  | Alchemy RPC endpoint          | For queries    |
-| `ELYTRO_PIMLICO_KEY`  | Bundler + paymaster           | For tx send    |
-| `ELYTRO_ENV`          | `development` or `production` | Optional       |
+| Variable              | Purpose                                   | Required             |
+| --------------------- | ----------------------------------------- | -------------------- |
+| `ELYTRO_VAULT_SECRET` | Base64 vault key (non-keychain platforms) | Yes, if no keychain  |
+| `ELYTRO_ALCHEMY_KEY`  | Alchemy RPC endpoint                      | Optional (rate limit)|
+| `ELYTRO_PIMLICO_KEY`  | Bundler + paymaster                       | Optional (rate limit)|
+| `ELYTRO_ENV`          | `development` or `production`             | Optional             |
-Persist API keys: `bun dev config set alchemy-key <key>`
+Persist API keys:
+```bash
+elytro config set alchemy-key <key>
+elytro config set pimlico-key <key>
+```
 ## Commands
 ```bash
 # Account Management
-bun dev account create --chain 11155420 [--alias name] [--email addr] [--daily-limit amount]
-bun dev account list [alias|address]
-bun dev account info [alias|address]
-bun dev account switch [alias|address]
-bun dev account activate [alias|address]  # Deploy to chain
+elytro account create --chain <chainId> [--alias name] [--email addr] [--daily-limit amount]
+elytro account list [alias|address]
+elytro account info [alias|address]
+elytro account switch [alias|address]
+elytro account activate [alias|address]   # Deploy to chain
 # Transactions
-bun dev tx send --tx "to:0xAddr,value:0.1" [--tx ...]
-bun dev tx build --tx "to:0xAddr,data:0xab..."
-bun dev tx simulate --tx "to:0xAddr,value:0.1"
+elytro tx send --tx "to:0xAddr,value:0.1" [--tx ...]
+elytro tx build --tx "to:0xAddr,data:0xab..."
+elytro tx simulate --tx "to:0xAddr,value:0.1"
 # Queries
-bun dev query balance [account] [--token erc20Addr]
-bun dev query tokens [account]
-bun dev query tx <hash>
-bun dev query chain
-bun dev query address <address>
+elytro query balance [account] [--token erc20Addr]
+elytro query tokens [account]
+elytro query tx <hash>
+elytro query chain
+elytro query address <address>
+# Security (2FA + spending limits)
+elytro security status
+elytro security 2fa install [--capability 1|2|3]
+elytro security 2fa uninstall
+elytro security 2fa uninstall --force           # Start safety-delay countdown
+elytro security 2fa uninstall --force --execute # Execute after delay
+elytro security email bind <email>
+elytro security email change <email>
+elytro security spending-limit [amount]         # View or set daily USD limit
+# Updates
+elytro update              # Check and upgrade to latest
+elytro update check        # Check without installing
+# Config
+elytro config set <key> <value>
+elytro config get <key>
+elytro config list
 ```
 ## Development
 ```bash
+bun install
+bun dev <command>      # Run from source
+bun run build          # Build to dist/
+bun run test           # Smoke tests
 ```

package/dist/index.js CHANGED Viewed

@@ -2058,15 +2058,17 @@ var SecurityHookService = class {
         if (result.errors && result.errors.length > 0) {
           const ext = result.errors[0].extensions;
           if (ext) {
+            const challengeDetails = typeof ext.challenge === "object" && ext.challenge !== null ? ext.challenge : void 0;
+            const getChallengeValue = (key) => ext[key] ?? (challengeDetails ? challengeDetails[key] : void 0);
             return {
               error: {
                 code: ext.code,
-                challengeId: ext.challengeId,
-                currentSpendUsdCents: ext.currentSpendUsdCents,
-                dailyLimitUsdCents: ext.dailyLimitUsdCents,
-                maskedEmail: ext.maskedEmail,
-                otpExpiresAt: ext.otpExpiresAt,
-                projectedSpendUsdCents: ext.projectedSpendUsdCents,
+                challengeId: getChallengeValue("challengeId"),
+                currentSpendUsdCents: ext.currentSpendUsdCents ?? getChallengeValue("currentSpendUsdCents"),
+                dailyLimitUsdCents: ext.dailyLimitUsdCents ?? getChallengeValue("dailyLimitUsdCents"),
+                maskedEmail: ext.maskedEmail ?? getChallengeValue("maskedEmail"),
+                otpExpiresAt: ext.otpExpiresAt ?? getChallengeValue("otpExpiresAt"),
+                projectedSpendUsdCents: ext.projectedSpendUsdCents ?? getChallengeValue("projectedSpendUsdCents"),
                 message: result.errors[0].message
               }
             };
@@ -2078,15 +2080,17 @@ var SecurityHookService = class {
         if (err instanceof GraphQLClientError && err.errors?.length) {
           const ext = err.errors[0].extensions;
           if (ext?.code) {
+            const challengeDetails = typeof ext.challenge === "object" && ext.challenge !== null ? ext.challenge : void 0;
+            const getChallengeValue = (key) => ext[key] ?? (challengeDetails ? challengeDetails[key] : void 0);
             return {
               error: {
                 code: ext.code,
-                challengeId: ext.challengeId,
-                currentSpendUsdCents: ext.currentSpendUsdCents,
-                dailyLimitUsdCents: ext.dailyLimitUsdCents,
-                maskedEmail: ext.maskedEmail,
-                otpExpiresAt: ext.otpExpiresAt,
-                projectedSpendUsdCents: ext.projectedSpendUsdCents,
+                challengeId: getChallengeValue("challengeId"),
+                currentSpendUsdCents: ext.currentSpendUsdCents ?? getChallengeValue("currentSpendUsdCents"),
+                dailyLimitUsdCents: ext.dailyLimitUsdCents ?? getChallengeValue("dailyLimitUsdCents"),
+                maskedEmail: ext.maskedEmail ?? getChallengeValue("maskedEmail"),
+                otpExpiresAt: ext.otpExpiresAt ?? getChallengeValue("otpExpiresAt"),
+                projectedSpendUsdCents: ext.projectedSpendUsdCents ?? getChallengeValue("projectedSpendUsdCents"),
                 message: err.errors[0].message
               }
             };
@@ -3227,10 +3231,38 @@ function registerTxCommand(program2, ctx) {
                 spinner.stop();
                 const errCode = hookResult.error.code;
                 if (errCode === "OTP_REQUIRED" || errCode === "SPENDING_LIMIT_EXCEEDED") {
+                  if (!hookResult.error.challengeId) {
+                    const otpRequestSpinner = ora3("Requesting OTP challenge...").start();
+                    try {
+                      const otpChallenge = await hookService.requestSecurityOtp(
+                        accountInfo.address,
+                        accountInfo.chainId,
+                        ctx.sdk.entryPoint,
+                        userOp
+                      );
+                      hookResult.error.challengeId = otpChallenge.challengeId;
+                      hookResult.error.maskedEmail ??= otpChallenge.maskedEmail;
+                      hookResult.error.otpExpiresAt ??= otpChallenge.otpExpiresAt;
+                      otpRequestSpinner.stop();
+                    } catch (otpErr) {
+                      otpRequestSpinner.fail("Failed to request OTP challenge.");
+                      throw new TxError(
+                        ERR_SEND_FAILED2,
+                        `Unable to request OTP challenge: ${otpErr.message}`
+                      );
+                    }
+                  }
+                  if (!hookResult.error.challengeId) {
+                    throw new TxError(
+                      ERR_SEND_FAILED2,
+                      "OTP challenge ID was not provided by Elytro API. Please try again."
+                    );
+                  }
                   console.error(JSON.stringify({
                     challenge: errCode,
                     message: hookResult.error.message ?? `Verification required (${errCode}).`,
                     ...hookResult.error.maskedEmail ? { maskedEmail: hookResult.error.maskedEmail } : {},
+                    ...hookResult.error.otpExpiresAt ? { otpExpiresAt: hookResult.error.otpExpiresAt } : {},
                     ...errCode === "SPENDING_LIMIT_EXCEEDED" && hookResult.error.projectedSpendUsdCents !== void 0 ? { projectedSpendUsd: (hookResult.error.projectedSpendUsdCents / 100).toFixed(2), dailyLimitUsd: ((hookResult.error.dailyLimitUsdCents ?? 0) / 100).toFixed(2) } : {}
                   }, null, 2));
                   const otpCode = await askInput("Enter the 6-digit OTP code:");
@@ -4398,7 +4430,7 @@ import { execSync } from "child_process";
 import { createRequire } from "module";
 function resolveVersion() {
   if (true) {
-    return "0.5.2";
+    return "0.5.3";
   }
   try {
     const require2 = createRequire(import.meta.url);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@elytro/cli",
-  "version": "0.5.2",
+  "version": "0.5.3",
   "description": "Elytro ERC-4337 Smart Account Wallet CLI",
   "type": "module",
   "bin": {