@enshell/cli 0.1.0-beta.1

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 ENShell
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,73 @@
+# ENShell CLI
+
+[![codecov](https://codecov.io/gh/0xenshell/cli/graph/badge.svg?token=VUCSULQGAG)](https://codecov.io/gh/0xenshell/cli)
+
+Command-line interface for **ENShell**, an on-chain firewall for AI agents. Register agents, submit actions through the firewall, approve or reject queued actions, and manage agent lifecycle. Built with Commander.js and the [@enshell/sdk](https://www.npmjs.com/package/@enshell/sdk).
+
+## Setup
+
+```bash
+npm install
+cp .env.example .env
+# Edit .env with your RPC URL, private key, and contract address
+```
+
+## Configuration
+
+The CLI reads from environment variables (via `.env`):
+
+| Variable | Description |
+|---|---|
+| `ENSHELL_RPC_URL` | Ethereum RPC endpoint |
+| `ENSHELL_PRIVATE_KEY` | Wallet private key (owner of the firewall contract) |
+| `ENSHELL_CONTRACT_ADDRESS` | Deployed AgentFirewall contract address |
+
+## Build
+
+```bash
+npm run build
+```
+
+## Test
+
+```bash
+npm test
+```
+
+## Commands
+
+### Agent Management
+
+```bash
+# Register a new agent (ENS subdomain trader.enshell.eth is computed automatically)
+enshell register --id trader --agent-wallet 0x... --spend-limit 0.1 --targets 0x... 0x...
+
+# List all registered agents
+enshell list
+
+# Inspect an agent
+enshell inspect --id trader
+
+# Deactivate (freeze) an agent
+enshell deactivate --id trader
+
+# Reactivate a frozen agent
+enshell reactivate --id trader
+```
+
+### Action Firewall
+
+```bash
+# Submit an action through the firewall
+enshell submit --id trader --target 0x... --value 0.05 --instruction "Send 0.05 ETH to treasury"
+
+# Approve a queued action (Ledger approval)
+enshell approve --action-id 0
+
+# Reject a queued action
+enshell reject --action-id 0
+```
+
+## License
+
+MIT

package/dist/commands/approve.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const approveCommand: Command;

package/dist/commands/approve.js

@@ -0,0 +1,26 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { ENShell, Network } from "@enshell/sdk";
+import { getSigner } from "../config.js";
+export const approveCommand = new Command("approve")
+    .description("Approve a queued action")
+    .requiredOption("--action-id <id>", "Queued action ID")
+    .action(async (opts) => {
+    const spinner = ora("Approving action...").start();
+    try {
+        const signer = await getSigner();
+        const client = new ENShell({
+            network: Network.SEPOLIA,
+            signer,
+        });
+        const { txHash } = await client.approveAction(BigInt(opts.actionId));
+        spinner.succeed(chalk.green(`Action #${opts.actionId} approved`));
+        console.log(chalk.gray(`  tx: https://sepolia.etherscan.io/tx/${txHash}`));
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Approval failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=approve.js.map

package/dist/commands/approve.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"approve.js","sourceRoot":"","sources":["../../src/commands/approve.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,OAAO,CAAC,SAAS,CAAC;KACjD,WAAW,CAAC,yBAAyB,CAAC;KACtC,cAAc,CAAC,kBAAkB,EAAE,kBAAkB,CAAC;KACtD,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,MAAM,OAAO,GAAG,GAAG,CAAC,qBAAqB,CAAC,CAAC,KAAK,EAAE,CAAC;IAEnD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAC;YACzB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,CAAC;QAEH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;QAErE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,WAAW,IAAI,CAAC,QAAQ,WAAW,CAAC,CAAC,CAAC;QAClE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,EAAE,CAAC,CAAC,CAAC;IAC7E,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,oBAAoB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC3D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/connect.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const connectCommand: Command;

package/dist/commands/connect.js

@@ -0,0 +1,20 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { wcConnect } from "../wallets/walletconnect.js";
+export const connectCommand = new Command("connect")
+    .description("Connect your wallet via WalletConnect")
+    .action(async () => {
+    const spinner = ora("Initializing WalletConnect...").start();
+    try {
+        spinner.stop();
+        const address = await wcConnect();
+        console.log(chalk.green(`\n  Connected: ${address}`));
+        console.log(chalk.gray("  Session saved. You can now run any enshell command.\n"));
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Connection failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=connect.js.map

package/dist/commands/connect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"connect.js","sourceRoot":"","sources":["../../src/commands/connect.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,SAAS,EAAE,MAAM,6BAA6B,CAAC;AAExD,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,OAAO,CAAC,SAAS,CAAC;KACjD,WAAW,CAAC,uCAAuC,CAAC;KACpD,MAAM,CAAC,KAAK,IAAI,EAAE;IACjB,MAAM,OAAO,GAAG,GAAG,CAAC,+BAA+B,CAAC,CAAC,KAAK,EAAE,CAAC;IAE7D,IAAI,CAAC;QACH,OAAO,CAAC,IAAI,EAAE,CAAC;QACf,MAAM,OAAO,GAAG,MAAM,SAAS,EAAE,CAAC;QAClC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,kBAAkB,OAAO,EAAE,CAAC,CAAC,CAAC;QACtD,OAAO,CAAC,GAAG,CACT,KAAK,CAAC,IAAI,CAAC,yDAAyD,CAAC,CACtE,CAAC;IACJ,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,sBAAsB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC7D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/deactivate.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const deactivateCommand: Command;

package/dist/commands/deactivate.js

@@ -0,0 +1,26 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { ENShell, Network } from "@enshell/sdk";
+import { getSigner } from "../config.js";
+export const deactivateCommand = new Command("deactivate")
+    .description("Deactivate (freeze) an agent")
+    .requiredOption("--id <agentId>", "Agent identifier")
+    .action(async (opts) => {
+    const spinner = ora("Deactivating agent...").start();
+    try {
+        const signer = await getSigner();
+        const client = new ENShell({
+            network: Network.SEPOLIA,
+            signer,
+        });
+        const { txHash } = await client.deactivateAgent(opts.id);
+        spinner.succeed(chalk.green(`Agent "${opts.id}" deactivated`));
+        console.log(chalk.gray(`  tx: https://sepolia.etherscan.io/tx/${txHash}`));
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Deactivation failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=deactivate.js.map

package/dist/commands/deactivate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deactivate.js","sourceRoot":"","sources":["../../src/commands/deactivate.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,MAAM,CAAC,MAAM,iBAAiB,GAAG,IAAI,OAAO,CAAC,YAAY,CAAC;KACvD,WAAW,CAAC,8BAA8B,CAAC;KAC3C,cAAc,CAAC,gBAAgB,EAAE,kBAAkB,CAAC;KACpD,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,MAAM,OAAO,GAAG,GAAG,CAAC,uBAAuB,CAAC,CAAC,KAAK,EAAE,CAAC;IAErD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAC;YACzB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,CAAC;QAEH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEzD,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,UAAU,IAAI,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC;QAC/D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,EAAE,CAAC,CAAC,CAAC;IAC7E,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,wBAAwB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC/D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/disconnect.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const disconnectCommand: Command;

package/dist/commands/disconnect.js

@@ -0,0 +1,19 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import { wcDisconnect } from "../wallets/walletconnect.js";
+export const disconnectCommand = new Command("disconnect")
+    .description("Disconnect wallet and clear saved session")
+    .action(async () => {
+    try {
+        await wcDisconnect();
+        console.log(chalk.green("  Wallet disconnected. Session cleared."));
+    }
+    catch (err) {
+        console.log(chalk.yellow(`  ${err.message}`));
+        // Clear session file anyway
+        const { FileStorage } = await import("../wallets/storage.js");
+        FileStorage.clear();
+        console.log(chalk.green("  Session file cleared."));
+    }
+});
+//# sourceMappingURL=disconnect.js.map

package/dist/commands/disconnect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"disconnect.js","sourceRoot":"","sources":["../../src/commands/disconnect.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,YAAY,EAAE,MAAM,6BAA6B,CAAC;AAE3D,MAAM,CAAC,MAAM,iBAAiB,GAAG,IAAI,OAAO,CAAC,YAAY,CAAC;KACvD,WAAW,CAAC,2CAA2C,CAAC;KACxD,MAAM,CAAC,KAAK,IAAI,EAAE;IACjB,IAAI,CAAC;QACH,MAAM,YAAY,EAAE,CAAC;QACrB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,yCAAyC,CAAC,CAAC,CAAC;IACtE,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC9C,4BAA4B;QAC5B,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,MAAM,CAAC,uBAAuB,CAAC,CAAC;QAC9D,WAAW,CAAC,KAAK,EAAE,CAAC;QACpB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC,CAAC;IACtD,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/inspect.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const inspectCommand: Command;

package/dist/commands/inspect.js

@@ -0,0 +1,32 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { formatEther } from "ethers";
+import { getContract } from "../config.js";
+export const inspectCommand = new Command("inspect")
+    .description("Inspect a registered agent")
+    .requiredOption("--id <agentId>", "Agent identifier")
+    .action(async (opts) => {
+    const spinner = ora("Fetching agent...").start();
+    try {
+        const contract = getContract();
+        const agent = await contract.getAgent(opts.id);
+        spinner.stop();
+        const statusColor = agent.active ? chalk.green("Active") : chalk.red("Frozen");
+        console.log(chalk.bold(`\nAgent: ${opts.id}\n`));
+        console.log(`  Status:          ${statusColor}`);
+        console.log(`  Address:         ${agent.agentAddress}`);
+        console.log(`  ENS Node:        ${agent.ensNode}`);
+        console.log(`  Spend Limit:     ${formatEther(agent.spendLimit)} ETH`);
+        console.log(`  Threat Score:    ${agent.threatScore}`);
+        console.log(`  Strikes:         ${agent.strikes}`);
+        console.log(`  World ID:        ${agent.worldIdVerified ? "Verified" : "Not verified"}`);
+        console.log(`  Registered At:   ${new Date(Number(agent.registeredAt) * 1000).toISOString()}`);
+        console.log();
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Failed to inspect agent: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=inspect.js.map

package/dist/commands/inspect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"inspect.js","sourceRoot":"","sources":["../../src/commands/inspect.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AACrC,OAAO,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAE3C,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,OAAO,CAAC,SAAS,CAAC;KACjD,WAAW,CAAC,4BAA4B,CAAC;KACzC,cAAc,CAAC,gBAAgB,EAAE,kBAAkB,CAAC;KACpD,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,MAAM,OAAO,GAAG,GAAG,CAAC,mBAAmB,CAAC,CAAC,KAAK,EAAE,CAAC;IAEjD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,WAAW,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAE/C,OAAO,CAAC,IAAI,EAAE,CAAC;QAEf,MAAM,WAAW,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAE/E,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC;QACjD,OAAO,CAAC,GAAG,CAAC,sBAAsB,WAAW,EAAE,CAAC,CAAC;QACjD,OAAO,CAAC,GAAG,CAAC,sBAAsB,KAAK,CAAC,YAAY,EAAE,CAAC,CAAC;QACxD,OAAO,CAAC,GAAG,CAAC,sBAAsB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC,sBAAsB,WAAW,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;QACvE,OAAO,CAAC,GAAG,CAAC,sBAAsB,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;QACvD,OAAO,CAAC,GAAG,CAAC,sBAAsB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC,sBAAsB,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,cAAc,EAAE,CAAC,CAAC;QACzF,OAAO,CAAC,GAAG,CAAC,sBAAsB,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;QAC/F,OAAO,CAAC,GAAG,EAAE,CAAC;IAChB,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,4BAA4B,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QACnE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/list.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const listCommand: Command;

package/dist/commands/list.js

@@ -0,0 +1,32 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { getContract } from "../config.js";
+export const listCommand = new Command("list")
+    .description("List all registered agent IDs")
+    .action(async () => {
+    const spinner = ora("Fetching agents...").start();
+    try {
+        const contract = getContract();
+        const count = await contract.getAgentCount();
+        if (count === 0n) {
+            spinner.info("No agents registered.");
+            return;
+        }
+        const ids = [];
+        for (let i = 0n; i < count; i++) {
+            ids.push(await contract.agentIds(i));
+        }
+        spinner.stop();
+        console.log(chalk.bold(`\nRegistered agents (${count}):\n`));
+        for (const id of ids) {
+            console.log(`  - ${id}`);
+        }
+        console.log();
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Failed to list agents: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=list.js.map

package/dist/commands/list.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"list.js","sourceRoot":"","sources":["../../src/commands/list.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAE3C,MAAM,CAAC,MAAM,WAAW,GAAG,IAAI,OAAO,CAAC,MAAM,CAAC;KAC3C,WAAW,CAAC,+BAA+B,CAAC;KAC5C,MAAM,CAAC,KAAK,IAAI,EAAE;IACjB,MAAM,OAAO,GAAG,GAAG,CAAC,oBAAoB,CAAC,CAAC,KAAK,EAAE,CAAC;IAElD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,WAAW,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,aAAa,EAAE,CAAC;QAE7C,IAAI,KAAK,KAAK,EAAE,EAAE,CAAC;YACjB,OAAO,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;YACtC,OAAO;QACT,CAAC;QAED,MAAM,GAAG,GAAa,EAAE,CAAC;QACzB,KAAK,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;YAChC,GAAG,CAAC,IAAI,CAAC,MAAM,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;QACvC,CAAC;QAED,OAAO,CAAC,IAAI,EAAE,CAAC;QACf,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,wBAAwB,KAAK,MAAM,CAAC,CAAC,CAAC;QAC7D,KAAK,MAAM,EAAE,IAAI,GAAG,EAAE,CAAC;YACrB,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QAC3B,CAAC;QACD,OAAO,CAAC,GAAG,EAAE,CAAC;IAChB,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,0BAA0B,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QACjE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/protect.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const protectCommand: Command;

package/dist/commands/protect.js

@@ -0,0 +1,54 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { ENShell, Network, ActionDecision } from "@enshell/sdk";
+import { getSigner } from "../config.js";
+export const protectCommand = new Command("protect")
+    .description("Submit an action through the ENShell firewall with encryption and relay")
+    .requiredOption("--id <agentId>", "Agent identifier")
+    .requiredOption("--target <address>", "Target contract address")
+    .requiredOption("--value <eth>", "Value in ETH")
+    .option("--data <hex>", "Calldata (hex)", "0x")
+    .requiredOption("--instruction <text>", "Human-readable instruction")
+    .action(async (opts) => {
+    try {
+        const signer = await getSigner();
+        const client = new ENShell({
+            network: Network.SEPOLIA,
+            signer,
+        });
+        // Step 1: Encrypt + relay + submit
+        const submitSpinner = ora("Encrypting instruction and submitting action...").start();
+        const result = await client.protect(opts.id, {
+            instruction: opts.instruction,
+            tx: {
+                to: opts.target,
+                value: opts.value,
+                data: opts.data,
+            },
+        });
+        submitSpinner.succeed(chalk.green(`Action #${result.actionId} queued (hash: ${result.instructionHash.slice(0, 18)}...)`));
+        console.log(chalk.gray(`  tx: https://sepolia.etherscan.io/tx/${result.txHash}`));
+        // Step 2: Wait for CRE resolution
+        const waitSpinner = ora("Waiting for CRE oracle resolution...").start();
+        const decision = await result.waitForResolution();
+        switch (decision) {
+            case ActionDecision.APPROVED:
+                waitSpinner.succeed(chalk.green("Action approved by CRE oracle"));
+                break;
+            case ActionDecision.ESCALATED:
+                waitSpinner.warn(chalk.yellow("Action escalated - waiting for Ledger approval..."));
+                break;
+            case ActionDecision.BLOCKED:
+                waitSpinner.fail(chalk.red("Action blocked by CRE oracle"));
+                break;
+            default:
+                waitSpinner.info(`Decision: ${decision}`);
+        }
+    }
+    catch (err) {
+        console.error(chalk.red(`\nProtect failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=protect.js.map

package/dist/commands/protect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"protect.js","sourceRoot":"","sources":["../../src/commands/protect.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAChE,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,OAAO,CAAC,SAAS,CAAC;KACjD,WAAW,CAAC,yEAAyE,CAAC;KACtF,cAAc,CAAC,gBAAgB,EAAE,kBAAkB,CAAC;KACpD,cAAc,CAAC,oBAAoB,EAAE,yBAAyB,CAAC;KAC/D,cAAc,CAAC,eAAe,EAAE,cAAc,CAAC;KAC/C,MAAM,CAAC,cAAc,EAAE,gBAAgB,EAAE,IAAI,CAAC;KAC9C,cAAc,CAAC,sBAAsB,EAAE,4BAA4B,CAAC;KACpE,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAC;YACzB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,CAAC;QAEH,mCAAmC;QACnC,MAAM,aAAa,GAAG,GAAG,CAAC,iDAAiD,CAAC,CAAC,KAAK,EAAE,CAAC;QACrF,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,EAAE;YAC3C,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,EAAE,EAAE;gBACF,EAAE,EAAE,IAAI,CAAC,MAAM;gBACf,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,IAAI,EAAE,IAAI,CAAC,IAAI;aAChB;SACF,CAAC,CAAC;QACH,aAAa,CAAC,OAAO,CACnB,KAAK,CAAC,KAAK,CAAC,WAAW,MAAM,CAAC,QAAQ,kBAAkB,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,CACnG,CAAC;QACF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QAElF,kCAAkC;QAClC,MAAM,WAAW,GAAG,GAAG,CAAC,sCAAsC,CAAC,CAAC,KAAK,EAAE,CAAC;QACxE,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,iBAAiB,EAAE,CAAC;QAElD,QAAQ,QAAQ,EAAE,CAAC;YACjB,KAAK,cAAc,CAAC,QAAQ;gBAC1B,WAAW,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,+BAA+B,CAAC,CAAC,CAAC;gBAClE,MAAM;YACR,KAAK,cAAc,CAAC,SAAS;gBAC3B,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,mDAAmD,CAAC,CAAC,CAAC;gBACpF,MAAM;YACR,KAAK,cAAc,CAAC,OAAO;gBACzB,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC,CAAC;gBAC5D,MAAM;YACR;gBACE,WAAW,CAAC,IAAI,CAAC,aAAa,QAAQ,EAAE,CAAC,CAAC;QAC9C,CAAC;IACH,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,qBAAqB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC7D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/reactivate.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const reactivateCommand: Command;

package/dist/commands/reactivate.js

@@ -0,0 +1,26 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { ENShell, Network } from "@enshell/sdk";
+import { getSigner } from "../config.js";
+export const reactivateCommand = new Command("reactivate")
+    .description("Reactivate a frozen agent")
+    .requiredOption("--id <agentId>", "Agent identifier")
+    .action(async (opts) => {
+    const spinner = ora("Reactivating agent...").start();
+    try {
+        const signer = await getSigner();
+        const client = new ENShell({
+            network: Network.SEPOLIA,
+            signer,
+        });
+        const { txHash } = await client.reactivateAgent(opts.id);
+        spinner.succeed(chalk.green(`Agent "${opts.id}" reactivated`));
+        console.log(chalk.gray(`  tx: https://sepolia.etherscan.io/tx/${txHash}`));
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Reactivation failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=reactivate.js.map

package/dist/commands/reactivate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"reactivate.js","sourceRoot":"","sources":["../../src/commands/reactivate.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,MAAM,CAAC,MAAM,iBAAiB,GAAG,IAAI,OAAO,CAAC,YAAY,CAAC;KACvD,WAAW,CAAC,2BAA2B,CAAC;KACxC,cAAc,CAAC,gBAAgB,EAAE,kBAAkB,CAAC;KACpD,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,MAAM,OAAO,GAAG,GAAG,CAAC,uBAAuB,CAAC,CAAC,KAAK,EAAE,CAAC;IAErD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAC;YACzB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,CAAC;QAEH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEzD,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,UAAU,IAAI,CAAC,EAAE,eAAe,CAAC,CAAC,CAAC;QAC/D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,EAAE,CAAC,CAAC,CAAC;IAC7E,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,wBAAwB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC/D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/register.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const registerCommand: Command;

package/dist/commands/register.js

@@ -0,0 +1,33 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { ENShell, Network } from "@enshell/sdk";
+import { getSigner } from "../config.js";
+export const registerCommand = new Command("register")
+    .description("Register a new AI agent on the firewall")
+    .requiredOption("--id <agentId>", "Unique agent identifier (becomes <id>.enshell.eth)")
+    .requiredOption("--agent-wallet <address>", "Agent's wallet address")
+    .requiredOption("--spend-limit <limit>", "Spend limit in ETH")
+    .option("--targets <addresses...>", "Allowed target addresses")
+    .action(async (opts) => {
+    try {
+        const signer = await getSigner();
+        const client = new ENShell({
+            network: Network.SEPOLIA,
+            signer,
+        });
+        const spinner = ora(`Registering agent "${opts.id}" (creates ${opts.id}.enshell.eth)...`).start();
+        const result = await client.registerAgent(opts.id, {
+            agentAddress: opts.agentWallet,
+            spendLimit: opts.spendLimit,
+            allowedTargets: opts.targets,
+        });
+        spinner.succeed(chalk.green(`Agent "${opts.id}" registered as ${opts.id}.enshell.eth`));
+        console.log(chalk.gray(`  tx: https://sepolia.etherscan.io/tx/${result.txHash}`));
+    }
+    catch (err) {
+        console.error(chalk.red(`\nRegistration failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=register.js.map

package/dist/commands/register.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"register.js","sourceRoot":"","sources":["../../src/commands/register.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,OAAO,CAAC,UAAU,CAAC;KACnD,WAAW,CAAC,yCAAyC,CAAC;KACtD,cAAc,CAAC,gBAAgB,EAAE,oDAAoD,CAAC;KACtF,cAAc,CAAC,0BAA0B,EAAE,wBAAwB,CAAC;KACpE,cAAc,CAAC,uBAAuB,EAAE,oBAAoB,CAAC;KAC7D,MAAM,CAAC,0BAA0B,EAAE,0BAA0B,CAAC;KAC9D,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAC;YACzB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,CAAC;QAEH,MAAM,OAAO,GAAG,GAAG,CAAC,sBAAsB,IAAI,CAAC,EAAE,cAAc,IAAI,CAAC,EAAE,kBAAkB,CAAC,CAAC,KAAK,EAAE,CAAC;QAClG,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,EAAE,EAAE;YACjD,YAAY,EAAE,IAAI,CAAC,WAAW;YAC9B,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,cAAc,EAAE,IAAI,CAAC,OAAO;SAC7B,CAAC,CAAC;QACH,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,UAAU,IAAI,CAAC,EAAE,mBAAmB,IAAI,CAAC,EAAE,cAAc,CAAC,CAAC,CAAC;QACxF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;IACpF,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,0BAA0B,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAClE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/reject.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const rejectCommand: Command;

package/dist/commands/reject.js

@@ -0,0 +1,26 @@
+import { Command } from "commander";
+import chalk from "chalk";
+import ora from "ora";
+import { ENShell, Network } from "@enshell/sdk";
+import { getSigner } from "../config.js";
+export const rejectCommand = new Command("reject")
+    .description("Reject a queued action")
+    .requiredOption("--action-id <id>", "Queued action ID")
+    .action(async (opts) => {
+    const spinner = ora("Rejecting action...").start();
+    try {
+        const signer = await getSigner();
+        const client = new ENShell({
+            network: Network.SEPOLIA,
+            signer,
+        });
+        const { txHash } = await client.rejectAction(BigInt(opts.actionId));
+        spinner.succeed(chalk.green(`Action #${opts.actionId} rejected`));
+        console.log(chalk.gray(`  tx: https://sepolia.etherscan.io/tx/${txHash}`));
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Rejection failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=reject.js.map

package/dist/commands/reject.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"reject.js","sourceRoot":"","sources":["../../src/commands/reject.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,MAAM,CAAC,MAAM,aAAa,GAAG,IAAI,OAAO,CAAC,QAAQ,CAAC;KAC/C,WAAW,CAAC,wBAAwB,CAAC;KACrC,cAAc,CAAC,kBAAkB,EAAE,kBAAkB,CAAC;KACtD,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,MAAM,OAAO,GAAG,GAAG,CAAC,qBAAqB,CAAC,CAAC,KAAK,EAAE,CAAC;IAEnD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAC;YACzB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,CAAC;QAEH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;QAEpE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,WAAW,IAAI,CAAC,QAAQ,WAAW,CAAC,CAAC,CAAC;QAClE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,EAAE,CAAC,CAAC,CAAC;IAC7E,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,qBAAqB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC5D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/commands/submit.d.ts

@@ -0,0 +1,2 @@
+import { Command } from "commander";
+export declare const submitCommand: Command;

package/dist/commands/submit.js

@@ -0,0 +1,32 @@
+import { Command } from "commander";
+import { keccak256, toUtf8Bytes } from "ethers";
+import chalk from "chalk";
+import ora from "ora";
+import { ENShell, Network } from "@enshell/sdk";
+import { getSigner } from "../config.js";
+export const submitCommand = new Command("submit")
+    .description("Submit an action through the firewall (queued for CRE analysis)")
+    .requiredOption("--id <agentId>", "Agent identifier")
+    .requiredOption("--target <address>", "Target contract address")
+    .requiredOption("--value <eth>", "Value in ETH")
+    .option("--data <hex>", "Calldata (hex)", "0x")
+    .requiredOption("--instruction <text>", "Human-readable instruction")
+    .action(async (opts) => {
+    const spinner = ora("Submitting action...").start();
+    try {
+        const signer = await getSigner();
+        const client = new ENShell({
+            network: Network.SEPOLIA,
+            signer,
+        });
+        const instructionHash = keccak256(toUtf8Bytes(opts.instruction));
+        const result = await client.submitAction(opts.id, opts.target, opts.value, opts.data, instructionHash);
+        spinner.succeed(chalk.green(`Action #${result.actionId} queued for CRE analysis`));
+        console.log(chalk.gray(`  tx: https://sepolia.etherscan.io/tx/${result.txHash}`));
+    }
+    catch (err) {
+        spinner.fail(chalk.red(`Submission failed: ${err.message}`));
+        process.exit(1);
+    }
+});
+//# sourceMappingURL=submit.js.map

package/dist/commands/submit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"submit.js","sourceRoot":"","sources":["../../src/commands/submit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAChD,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,MAAM,CAAC,MAAM,aAAa,GAAG,IAAI,OAAO,CAAC,QAAQ,CAAC;KAC/C,WAAW,CAAC,iEAAiE,CAAC;KAC9E,cAAc,CAAC,gBAAgB,EAAE,kBAAkB,CAAC;KACpD,cAAc,CAAC,oBAAoB,EAAE,yBAAyB,CAAC;KAC/D,cAAc,CAAC,eAAe,EAAE,cAAc,CAAC;KAC/C,MAAM,CAAC,cAAc,EAAE,gBAAgB,EAAE,IAAI,CAAC;KAC9C,cAAc,CAAC,sBAAsB,EAAE,4BAA4B,CAAC;KACpE,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;IACrB,MAAM,OAAO,GAAG,GAAG,CAAC,sBAAsB,CAAC,CAAC,KAAK,EAAE,CAAC;IAEpD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,IAAI,OAAO,CAAC;YACzB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM;SACP,CAAC,CAAC;QAEH,MAAM,eAAe,GAAG,SAAS,CAAC,WAAW,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC;QAEjE,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,YAAY,CACtC,IAAI,CAAC,EAAE,EACP,IAAI,CAAC,MAAM,EACX,IAAI,CAAC,KAAK,EACV,IAAI,CAAC,IAAI,EACT,eAAe,CAChB,CAAC;QAEF,OAAO,CAAC,OAAO,CACb,KAAK,CAAC,KAAK,CAAC,WAAW,MAAM,CAAC,QAAQ,0BAA0B,CAAC,CAClE,CAAC;QACF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;IACpF,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,sBAAsB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC7D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/config.d.ts

@@ -0,0 +1,10 @@
+import "dotenv/config";
+import { JsonRpcProvider, Signer } from "ethers";
+import { WalletMode } from "./wallets/index.js";
+export declare function setWalletMode(mode: WalletMode): void;
+export declare function getWalletMode(): WalletMode;
+export declare function getProvider(): JsonRpcProvider;
+export declare function getSigner(): Promise<Signer>;
+export declare function getContractAddress(): string;
+/** Read-only contract instance (no signer needed). */
+export declare function getContract(): import("ethers").Contract;

package/dist/config.js

@@ -0,0 +1,30 @@
+import "dotenv/config";
+import { JsonRpcProvider } from "ethers";
+import { getFirewallContract } from "@enshell/sdk";
+import { resolveSigner } from "./wallets/index.js";
+/** Global wallet mode — set by --wallet flag in index.ts */
+let _walletMode = "walletconnect";
+export function setWalletMode(mode) {
+    _walletMode = mode;
+}
+export function getWalletMode() {
+    return _walletMode;
+}
+export function getProvider() {
+    const rpcUrl = process.env.ENSHELL_RPC_URL || "https://rpc.sepolia.org";
+    return new JsonRpcProvider(rpcUrl);
+}
+export async function getSigner() {
+    return resolveSigner(_walletMode);
+}
+export function getContractAddress() {
+    const addr = process.env.ENSHELL_CONTRACT_ADDRESS;
+    if (!addr)
+        return "0xeb91387Ea4B7ADF8fA4901B22B2B72d7c54cbF13"; // Sepolia default
+    return addr;
+}
+/** Read-only contract instance (no signer needed). */
+export function getContract() {
+    return getFirewallContract(getContractAddress(), getProvider());
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA,OAAO,eAAe,CAAC;AACvB,OAAO,EAAE,eAAe,EAAU,MAAM,QAAQ,CAAC;AACjD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,aAAa,EAAc,MAAM,oBAAoB,CAAC;AAE/D,4DAA4D;AAC5D,IAAI,WAAW,GAAe,eAAe,CAAC;AAE9C,MAAM,UAAU,aAAa,CAAC,IAAgB;IAC5C,WAAW,GAAG,IAAI,CAAC;AACrB,CAAC;AAED,MAAM,UAAU,aAAa;IAC3B,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,MAAM,UAAU,WAAW;IACzB,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,yBAAyB,CAAC;IACxE,OAAO,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;AACrC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,SAAS;IAC7B,OAAO,aAAa,CAAC,WAAW,CAAC,CAAC;AACpC,CAAC;AAED,MAAM,UAAU,kBAAkB;IAChC,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC;IAClD,IAAI,CAAC,IAAI;QACP,OAAO,4CAA4C,CAAC,CAAC,kBAAkB;IACzE,OAAO,IAAI,CAAC;AACd,CAAC;AAED,sDAAsD;AACtD,MAAM,UAAU,WAAW;IACzB,OAAO,mBAAmB,CAAC,kBAAkB,EAAE,EAAE,WAAW,EAAE,CAAC,CAAC;AAClE,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+export {};

package/dist/index.js

@@ -0,0 +1,39 @@
+#!/usr/bin/env node
+import { Command } from "commander";
+import { setWalletMode } from "./config.js";
+import { registerCommand } from "./commands/register.js";
+import { listCommand } from "./commands/list.js";
+import { inspectCommand } from "./commands/inspect.js";
+import { submitCommand } from "./commands/submit.js";
+import { approveCommand } from "./commands/approve.js";
+import { rejectCommand } from "./commands/reject.js";
+import { deactivateCommand } from "./commands/deactivate.js";
+import { reactivateCommand } from "./commands/reactivate.js";
+import { protectCommand } from "./commands/protect.js";
+import { connectCommand } from "./commands/connect.js";
+import { disconnectCommand } from "./commands/disconnect.js";
+const program = new Command();
+program
+    .name("enshell")
+    .description("CLI for ENShell on-chain AI agent firewall")
+    .version("0.1.0")
+    .option("--wallet <mode>", "Wallet mode: env (private key) or ledger (USB)")
+    .hook("preAction", (thisCommand) => {
+    const opts = thisCommand.opts();
+    if (opts.wallet) {
+        setWalletMode(opts.wallet);
+    }
+});
+program.addCommand(connectCommand);
+program.addCommand(disconnectCommand);
+program.addCommand(registerCommand);
+program.addCommand(listCommand);
+program.addCommand(inspectCommand);
+program.addCommand(submitCommand);
+program.addCommand(approveCommand);
+program.addCommand(rejectCommand);
+program.addCommand(deactivateCommand);
+program.addCommand(reactivateCommand);
+program.addCommand(protectCommand);
+program.parseAsync().then(() => process.exit(0));
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AACA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAE5C,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAC7D,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAE7D,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;AAE9B,OAAO;KACJ,IAAI,CAAC,SAAS,CAAC;KACf,WAAW,CAAC,4CAA4C,CAAC;KACzD,OAAO,CAAC,OAAO,CAAC;KAChB,MAAM,CACL,iBAAiB,EACjB,gDAAgD,CACjD;KACA,IAAI,CAAC,WAAW,EAAE,CAAC,WAAW,EAAE,EAAE;IACjC,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,EAAE,CAAC;IAChC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;QAChB,aAAa,CAAC,IAAI,CAAC,MAAoB,CAAC,CAAC;IAC3C,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;AACnC,OAAO,CAAC,UAAU,CAAC,iBAAiB,CAAC,CAAC;AACtC,OAAO,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC;AACpC,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;AAChC,OAAO,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;AACnC,OAAO,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC;AAClC,OAAO,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;AACnC,OAAO,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC;AAClC,OAAO,CAAC,UAAU,CAAC,iBAAiB,CAAC,CAAC;AACtC,OAAO,CAAC,UAAU,CAAC,iBAAiB,CAAC,CAAC;AACtC,OAAO,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;AAEnC,OAAO,CAAC,UAAU,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC"}

package/dist/wallets/env.d.ts

@@ -0,0 +1,7 @@
+import "dotenv/config";
+import { Wallet } from "ethers";
+/**
+ * Create an ethers Wallet signer from environment variables.
+ * Requires ENSHELL_PRIVATE_KEY and ENSHELL_RPC_URL in .env.
+ */
+export declare function envGetSigner(): Wallet;

package/dist/wallets/env.js

@@ -0,0 +1,17 @@
+import "dotenv/config";
+import { Wallet, JsonRpcProvider } from "ethers";
+/**
+ * Create an ethers Wallet signer from environment variables.
+ * Requires ENSHELL_PRIVATE_KEY and ENSHELL_RPC_URL in .env.
+ */
+export function envGetSigner() {
+    const rpcUrl = process.env.ENSHELL_RPC_URL;
+    if (!rpcUrl)
+        throw new Error("ENSHELL_RPC_URL not set in environment");
+    const pk = process.env.ENSHELL_PRIVATE_KEY;
+    if (!pk)
+        throw new Error("ENSHELL_PRIVATE_KEY not set in environment");
+    const provider = new JsonRpcProvider(rpcUrl);
+    return new Wallet(pk, provider);
+}
+//# sourceMappingURL=env.js.map

package/dist/wallets/env.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.js","sourceRoot":"","sources":["../../src/wallets/env.ts"],"names":[],"mappings":"AAAA,OAAO,eAAe,CAAC;AACvB,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAEjD;;;GAGG;AACH,MAAM,UAAU,YAAY;IAC1B,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAC3C,IAAI,CAAC,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;IAEvE,MAAM,EAAE,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;IAC3C,IAAI,CAAC,EAAE;QAAE,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAEvE,MAAM,QAAQ,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;IAC7C,OAAO,IAAI,MAAM,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;AAClC,CAAC"}

package/dist/wallets/index.d.ts

@@ -0,0 +1,10 @@
+import { Signer } from "ethers";
+export type WalletMode = "walletconnect" | "env" | "ledger";
+/**
+ * Resolve an ethers Signer based on the selected wallet mode.
+ *
+ * Default (no --wallet flag): WalletConnect (requires prior "enshell connect")
+ * --wallet env: Private key from .env
+ * --wallet ledger: Ledger USB (not yet implemented)
+ */
+export declare function resolveSigner(mode: WalletMode): Promise<Signer>;

package/dist/wallets/index.js

@@ -0,0 +1,22 @@
+import { envGetSigner } from "./env.js";
+import { wcGetSigner } from "./walletconnect.js";
+/**
+ * Resolve an ethers Signer based on the selected wallet mode.
+ *
+ * Default (no --wallet flag): WalletConnect (requires prior "enshell connect")
+ * --wallet env: Private key from .env
+ * --wallet ledger: Ledger USB (not yet implemented)
+ */
+export async function resolveSigner(mode) {
+    switch (mode) {
+        case "env":
+            return envGetSigner();
+        case "walletconnect":
+            return wcGetSigner();
+        case "ledger":
+            throw new Error("Ledger USB mode is not yet implemented. Use WalletConnect or --wallet env.");
+        default:
+            throw new Error(`Unknown wallet mode: ${mode}`);
+    }
+}
+//# sourceMappingURL=index.js.map

package/dist/wallets/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/wallets/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAIjD;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,IAAgB;IAClD,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,KAAK;YACR,OAAO,YAAY,EAAE,CAAC;QAExB,KAAK,eAAe;YAClB,OAAO,WAAW,EAAE,CAAC;QAEvB,KAAK,QAAQ;YACX,MAAM,IAAI,KAAK,CACb,4EAA4E,CAC7E,CAAC;QAEJ;YACE,MAAM,IAAI,KAAK,CAAC,wBAAwB,IAAI,EAAE,CAAC,CAAC;IACpD,CAAC;AACH,CAAC"}

package/dist/wallets/storage.d.ts

@@ -0,0 +1,19 @@
+/**
+ * File-based key-value storage for WalletConnect session persistence.
+ * Stores data in ~/.enshell/wc-session.json.
+ * Implements the KeyValueStorage interface expected by WalletConnect.
+ */
+export declare class FileStorage {
+    private data;
+    constructor();
+    private save;
+    getItem<T = unknown>(key: string): Promise<T | undefined>;
+    setItem<T = unknown>(key: string, value: T): Promise<void>;
+    removeItem(key: string): Promise<void>;
+    getKeys(): Promise<string[]>;
+    getEntries<T = unknown>(): Promise<Array<[string, T]>>;
+    /**
+     * Delete the entire session file.
+     */
+    static clear(): void;
+}

package/dist/wallets/storage.js

@@ -0,0 +1,62 @@
+import { readFileSync, writeFileSync, mkdirSync, existsSync } from "fs";
+import { join } from "path";
+import { homedir } from "os";
+const ENSHELL_DIR = join(homedir(), ".enshell");
+const SESSION_FILE = join(ENSHELL_DIR, "wc-session.json");
+function ensureDir() {
+    if (!existsSync(ENSHELL_DIR)) {
+        mkdirSync(ENSHELL_DIR, { recursive: true });
+    }
+}
+/**
+ * File-based key-value storage for WalletConnect session persistence.
+ * Stores data in ~/.enshell/wc-session.json.
+ * Implements the KeyValueStorage interface expected by WalletConnect.
+ */
+export class FileStorage {
+    data;
+    constructor() {
+        ensureDir();
+        if (existsSync(SESSION_FILE)) {
+            try {
+                this.data = JSON.parse(readFileSync(SESSION_FILE, "utf-8"));
+            }
+            catch {
+                this.data = {};
+            }
+        }
+        else {
+            this.data = {};
+        }
+    }
+    save() {
+        ensureDir();
+        writeFileSync(SESSION_FILE, JSON.stringify(this.data, null, 2));
+    }
+    async getItem(key) {
+        return this.data[key];
+    }
+    async setItem(key, value) {
+        this.data[key] = value;
+        this.save();
+    }
+    async removeItem(key) {
+        delete this.data[key];
+        this.save();
+    }
+    async getKeys() {
+        return Object.keys(this.data);
+    }
+    async getEntries() {
+        return Object.entries(this.data);
+    }
+    /**
+     * Delete the entire session file.
+     */
+    static clear() {
+        if (existsSync(SESSION_FILE)) {
+            writeFileSync(SESSION_FILE, "{}");
+        }
+    }
+}
+//# sourceMappingURL=storage.js.map

package/dist/wallets/storage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"storage.js","sourceRoot":"","sources":["../../src/wallets/storage.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAE7B,MAAM,WAAW,GAAG,IAAI,CAAC,OAAO,EAAE,EAAE,UAAU,CAAC,CAAC;AAChD,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,EAAE,iBAAiB,CAAC,CAAC;AAE1D,SAAS,SAAS;IAChB,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAC7B,SAAS,CAAC,WAAW,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9C,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,OAAO,WAAW;IACd,IAAI,CAA0B;IAEtC;QACE,SAAS,EAAE,CAAC;QACZ,IAAI,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC7B,IAAI,CAAC;gBACH,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC,CAAC;YAC9D,CAAC;YAAC,MAAM,CAAC;gBACP,IAAI,CAAC,IAAI,GAAG,EAAE,CAAC;YACjB,CAAC;QACH,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,IAAI,GAAG,EAAE,CAAC;QACjB,CAAC;IACH,CAAC;IAEO,IAAI;QACV,SAAS,EAAE,CAAC;QACZ,aAAa,CAAC,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,KAAK,CAAC,OAAO,CAAc,GAAW;QACpC,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,CAAkB,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,OAAO,CAAc,GAAW,EAAE,KAAQ;QAC9C,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACvB,IAAI,CAAC,IAAI,EAAE,CAAC;IACd,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,GAAW;QAC1B,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACtB,IAAI,CAAC,IAAI,EAAE,CAAC;IACd,CAAC;IAED,KAAK,CAAC,OAAO;QACX,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,UAAU;QACd,OAAO,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAuB,CAAC;IACzD,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,KAAK;QACV,IAAI,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC7B,aAAa,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;CACF"}

package/dist/wallets/walletconnect.d.ts

@@ -0,0 +1,17 @@
+import { JsonRpcSigner } from "ethers";
+/**
+ * Start a new WalletConnect session. Shows QR code in terminal.
+ * Saves session to ~/.enshell/wc-session.json for reuse.
+ * Returns the connected address.
+ */
+export declare function wcConnect(): Promise<string>;
+/**
+ * Resume an existing WalletConnect session.
+ * Returns an ethers JsonRpcSigner if a valid session exists.
+ * Throws if no session is found.
+ */
+export declare function wcGetSigner(): Promise<JsonRpcSigner>;
+/**
+ * Disconnect the WalletConnect session and clear stored session.
+ */
+export declare function wcDisconnect(): Promise<void>;

package/dist/wallets/walletconnect.js

@@ -0,0 +1,94 @@
+import { EthereumProvider } from "@walletconnect/ethereum-provider";
+import { BrowserProvider } from "ethers";
+import qrcode from "qrcode-terminal";
+import chalk from "chalk";
+import { FileStorage } from "./storage.js";
+const PROJECT_ID = "7c42ddbb278eb49df82a8340fae31e95";
+const SEPOLIA_CHAIN_ID = 11155111;
+async function initProvider() {
+    const storage = new FileStorage();
+    const provider = await EthereumProvider.init({
+        projectId: PROJECT_ID,
+        metadata: {
+            name: "ENShell CLI",
+            description: "On-chain firewall for AI agents",
+            url: "https://enshell.xyz",
+            icons: ["https://enshell.xyz/assets/images/enshell-icon.png"],
+        },
+        showQrModal: false,
+        optionalChains: [SEPOLIA_CHAIN_ID],
+        optionalMethods: [
+            "eth_sendTransaction",
+            "personal_sign",
+            "eth_signTypedData_v4",
+            "eth_accounts",
+            "eth_requestAccounts",
+            "eth_call",
+            "eth_getBalance",
+            "eth_signTransaction",
+        ],
+        optionalEvents: ["chainChanged", "accountsChanged"],
+        storage,
+        rpcMap: {
+            [SEPOLIA_CHAIN_ID]: process.env.ENSHELL_RPC_URL || "https://rpc.sepolia.org",
+        },
+    });
+    return provider;
+}
+/**
+ * Start a new WalletConnect session. Shows QR code in terminal.
+ * Saves session to ~/.enshell/wc-session.json for reuse.
+ * Returns the connected address.
+ */
+export async function wcConnect() {
+    const provider = await initProvider();
+    // Check if there's already an active session
+    if (provider.session) {
+        const address = provider.accounts[0];
+        if (address) {
+            return address;
+        }
+    }
+    // No existing session — show QR code
+    return new Promise((resolve, reject) => {
+        provider.on("display_uri", (uri) => {
+            console.log(chalk.cyan("\n  Scan this QR code with your wallet (MetaMask, Rainbow, etc.)\n"));
+            qrcode.generate(uri, { small: true });
+            console.log(chalk.gray("\n  Or paste this URI in your wallet:"));
+            console.log(chalk.gray(`  ${uri}\n`));
+            console.log(chalk.gray("  Waiting for approval..."));
+        });
+        provider
+            .connect()
+            .then(() => {
+            const address = provider.accounts[0];
+            resolve(address);
+        })
+            .catch(reject);
+    });
+}
+/**
+ * Resume an existing WalletConnect session.
+ * Returns an ethers JsonRpcSigner if a valid session exists.
+ * Throws if no session is found.
+ */
+export async function wcGetSigner() {
+    const provider = await initProvider();
+    if (!provider.session || !provider.accounts[0]) {
+        throw new Error('No wallet connected. Run "enshell connect" first.\n' +
+            "  Alternatively, use --wallet env (.env private key).");
+    }
+    const ethersProvider = new BrowserProvider(provider);
+    return ethersProvider.getSigner();
+}
+/**
+ * Disconnect the WalletConnect session and clear stored session.
+ */
+export async function wcDisconnect() {
+    const provider = await initProvider();
+    if (provider.session) {
+        await provider.disconnect();
+    }
+    FileStorage.clear();
+}
+//# sourceMappingURL=walletconnect.js.map

package/dist/wallets/walletconnect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"walletconnect.js","sourceRoot":"","sources":["../../src/wallets/walletconnect.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,kCAAkC,CAAC;AACpE,OAAO,EAAE,eAAe,EAAiB,MAAM,QAAQ,CAAC;AACxD,OAAO,MAAM,MAAM,iBAAiB,CAAC;AACrC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAE3C,MAAM,UAAU,GAAG,kCAAkC,CAAC;AACtD,MAAM,gBAAgB,GAAG,QAAQ,CAAC;AAElC,KAAK,UAAU,YAAY;IACzB,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAElC,MAAM,QAAQ,GAAG,MAAM,gBAAgB,CAAC,IAAI,CAAC;QAC3C,SAAS,EAAE,UAAU;QACrB,QAAQ,EAAE;YACR,IAAI,EAAE,aAAa;YACnB,WAAW,EAAE,iCAAiC;YAC9C,GAAG,EAAE,qBAAqB;YAC1B,KAAK,EAAE,CAAC,oDAAoD,CAAC;SAC9D;QACD,WAAW,EAAE,KAAK;QAClB,cAAc,EAAE,CAAC,gBAAgB,CAAC;QAClC,eAAe,EAAE;YACf,qBAAqB;YACrB,eAAe;YACf,sBAAsB;YACtB,cAAc;YACd,qBAAqB;YACrB,UAAU;YACV,gBAAgB;YAChB,qBAAqB;SACtB;QACD,cAAc,EAAE,CAAC,cAAc,EAAE,iBAAiB,CAAC;QACnD,OAAO;QACP,MAAM,EAAE;YACN,CAAC,gBAAgB,CAAC,EAChB,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,yBAAyB;SAC3D;KACF,CAAC,CAAC;IAEH,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS;IAC7B,MAAM,QAAQ,GAAG,MAAM,YAAY,EAAE,CAAC;IAEtC,6CAA6C;IAC7C,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;QACrB,MAAM,OAAO,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QACrC,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;IAED,qCAAqC;IACrC,OAAO,IAAI,OAAO,CAAS,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QAC7C,QAAQ,CAAC,EAAE,CAAC,aAAa,EAAE,CAAC,GAAW,EAAE,EAAE;YACzC,OAAO,CAAC,GAAG,CACT,KAAK,CAAC,IAAI,CACR,oEAAoE,CACrE,CACF,CAAC;YACF,MAAM,CAAC,QAAQ,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YACtC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC;YACtC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC,CAAC;QACvD,CAAC,CAAC,CAAC;QAEH,QAAQ;aACL,OAAO,EAAE;aACT,IAAI,CAAC,GAAG,EAAE;YACT,MAAM,OAAO,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;YACrC,OAAO,CAAC,OAAO,CAAC,CAAC;QACnB,CAAC,CAAC;aACD,KAAK,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW;IAC/B,MAAM,QAAQ,GAAG,MAAM,YAAY,EAAE,CAAC;IAEtC,IAAI,CAAC,QAAQ,CAAC,OAAO,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;QAC/C,MAAM,IAAI,KAAK,CACb,qDAAqD;YACnD,uDAAuD,CAC1D,CAAC;IACJ,CAAC;IAED,MAAM,cAAc,GAAG,IAAI,eAAe,CAAC,QAAQ,CAAC,CAAC;IACrD,OAAO,cAAc,CAAC,SAAS,EAAE,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY;IAChC,MAAM,QAAQ,GAAG,MAAM,YAAY,EAAE,CAAC;IAEtC,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;QACrB,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAC;IAC9B,CAAC;IAED,WAAW,CAAC,KAAK,EAAE,CAAC;AACtB,CAAC"}

package/package.json

@@ -0,0 +1,38 @@
+{
+  "name": "@enshell/cli",
+  "version": "0.1.0-beta.1",
+  "type": "module",
+  "bin": {
+    "enshell": "dist/index.js"
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "dev": "node --loader ts-node/esm src/index.ts",
+    "test": "vitest run",
+    "test:coverage": "vitest run --coverage",
+    "clean": "rm -rf dist",
+    "prepublishOnly": "npm run build"
+  },
+  "dependencies": {
+    "@enshell/sdk": "^0.1.0-beta.9",
+    "@walletconnect/ethereum-provider": "^2.23.9",
+    "chalk": "^5.4.1",
+    "commander": "^14.0.0",
+    "dotenv": "^16.5.0",
+    "ethers": "^6.15.0",
+    "ora": "^8.2.0",
+    "qrcode-terminal": "^0.12.0"
+  },
+  "devDependencies": {
+    "@types/node": "^22.18.11",
+    "@vitest/coverage-v8": "^4.1.2",
+    "typescript": "~5.8.0",
+    "vitest": "^4.1.2"
+  },
+  "publishConfig": {
+    "access": "public"
+  }
+}