@ghostspeak/sdk 1.7.1 → 2.0.1

package/dist/feature-flags-3POmoO_Z.d.ts

@@ -0,0 +1,3800 @@
+import { Option, Address, ReadonlyUint8Array, EncodedAccount, MaybeEncodedAccount, fetchEncodedAccount, IInstruction, TransactionSigner } from '@solana/kit';
+import { Address as Address$1 } from '@solana/addresses';
+import { E as ExecutionCondition, G as GovernanceProposal, j as VotingResults, Q as QuorumRequirements, V as VoteChoice, I as IPFSConfig, a as IPFSUploadOptions, c as IPFSOperationResult, f as IPFSUploadResult, g as IPFSRetrievalOptions, h as IPFSRetrievalResult, i as IPFSPinResult, b as IPFSContentMetadata, C as ContentStorageResult } from './ipfs-types-KJcvy9Qk.js';
+import { Rpc, GetAccountInfoApi } from '@solana/rpc';
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type AccessAuditConfig = {
+    auditEnabled: boolean;
+    realTimeMonitoring: boolean;
+    retentionPeriod: bigint;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Access policy definition */
+type AccessPolicy = {
+    /** Policy identifier */
+    policyId: string;
+    /** Policy name */
+    name: string;
+    /** Policy description */
+    description: string;
+    /** Policy type */
+    policyType: PolicyType;
+    /** Policy rules */
+    rules: Array<PolicyRule>;
+    /** Policy scope */
+    scope: PolicyScope;
+    /** Policy priority */
+    priority: number;
+    /** Policy status */
+    status: PolicyStatus;
+    /** Effective date */
+    effectiveDate: bigint;
+    /** Expiration date */
+    expirationDate: Option<bigint>;
+    /** Policy metadata */
+    metadata: PolicyMetadata;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Account lockout policies */
+type AccountLockoutPolicies = {
+    /** Max failed attempts before lockout */
+    maxFailedAttempts: number;
+    /** Lockout duration */
+    lockoutDuration: bigint;
+    /** Progressive lockout enabled */
+    progressiveLockout: boolean;
+    /** Unlock methods */
+    unlockMethods: Array<UnlockMethod>;
+    /** Notification requirements */
+    notificationRequirements: Array<NotificationRequirement>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+interface Action {
+    [key: string]: unknown;
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Role activation requirements */
+type ActivationRequirement = {
+    /** Requirement type */
+    requirementType: ActivationRequirementType;
+    /** Required approvers */
+    approvers: Array<Address>;
+    /** Minimum approvals needed */
+    minApprovals: number;
+    /** Approval timeout */
+    approvalTimeout: bigint;
+    /** Evidence requirements */
+    evidenceRequirements: Array<string>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of role activation requirements */
+declare enum ActivationRequirementType {
+    ManagerApproval = 0,
+    PeerReview = 1,
+    SecurityClearance = 2,
+    BackgroundCheck = 3,
+    TrainingCompletion = 4,
+    CertificationRequired = 5,
+    BusinessJustification = 6,
+    TechnicalAssessment = 7
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Template aging policies */
+type AgingPolicy = {
+    /** Biometric type */
+    biometricType: BiometricType;
+    /** Maximum age */
+    maxAge: bigint;
+    /** Refresh requirements */
+    refreshRequirements: Array<string>;
+    /** Degradation handling */
+    degradationHandling: DegradationHandling;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Authentication levels */
+declare enum AuthenticationLevel {
+    Low = 0,
+    Medium = 1,
+    High = 2,
+    VeryHigh = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Authentication methods */
+declare enum AuthenticationMethod {
+    Password = 0,
+    DigitalSignature = 1,
+    Biometric = 2,
+    Token = 3,
+    Certificate = 4,
+    Sms = 5,
+    Email = 6,
+    App = 7,
+    Hardware = 8
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Authentication policies */
+type AuthenticationPolicies = {
+    /** Multi-factor authentication required */
+    mfaRequired: boolean;
+    /** Supported authentication methods */
+    supportedMethods: Array<AuthenticationMethod>;
+    /** Authentication strength requirements */
+    strengthRequirements: AuthenticationStrength;
+    /** Account lockout policies */
+    lockoutPolicies: AccountLockoutPolicies;
+    /** Biometric policies */
+    biometricPolicies: Option<BiometricPolicies>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Authentication strength requirements */
+type AuthenticationStrength = {
+    /** Minimum authentication level */
+    minimumLevel: AuthenticationLevel;
+    /** Risk-based authentication */
+    riskBased: boolean;
+    /** Adaptive authentication */
+    adaptive: boolean;
+    /** Step-up authentication triggers */
+    stepUpTriggers: Array<StepUpTrigger>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type AuthorizationPolicies = {
+    defaultDeny: boolean;
+    explicitPermissionsRequired: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Biometric authentication policies */
+type BiometricPolicies = {
+    /** Supported biometric types */
+    supportedTypes: Array<BiometricType>;
+    /** Biometric quality requirements */
+    qualityRequirements: BiometricQuality;
+    /** Liveness detection required */
+    livenessDetection: boolean;
+    /** Biometric template protection */
+    templateProtection: BiometricProtection;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Biometric template protection */
+type BiometricProtection = {
+    /** Template encryption required */
+    encryptionRequired: boolean;
+    /** Template storage method */
+    storageMethod: BiometricStorageMethod;
+    /** Template revocation support */
+    revocationSupport: boolean;
+    /** Template aging policies */
+    agingPolicies: Array<AgingPolicy>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+declare enum BiometricQuality {
+    Low = 0,
+    Medium = 1,
+    High = 2
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Biometric template storage methods */
+declare enum BiometricStorageMethod {
+    OnDevice = 0,
+    Encrypted = 1,
+    Hashed = 2,
+    Distributed = 3,
+    None = 4
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of biometric authentication */
+declare enum BiometricType {
+    Fingerprint = 0,
+    FaceRecognition = 1,
+    IrisRecognition = 2,
+    VoiceRecognition = 3,
+    Signature = 4,
+    Gait = 5,
+    Behavioral = 6
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type CompliancePolicies = {
+    frameworks: Array<string>;
+    auditRequirements: Array<string>;
+    reportingRequirements: Array<string>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Constraint condition definition */
+type ConstraintCondition = {
+    /** Attribute name */
+    attribute: string;
+    /** Condition operator */
+    operator: ConstraintOperator;
+    /** Expected value */
+    value: string;
+    /** Value type */
+    valueType: ValueType;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Operators for constraint conditions */
+declare enum ConstraintOperator {
+    Equals = 0,
+    NotEquals = 1,
+    GreaterThan = 2,
+    LessThan = 3,
+    GreaterThanOrEqual = 4,
+    LessThanOrEqual = 5,
+    Contains = 6,
+    NotContains = 7,
+    In = 8,
+    NotIn = 9,
+    Matches = 10,
+    NotMatches = 11
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Data access levels */
+declare enum DataAccessLevel {
+    Public = 0,
+    Internal = 1,
+    Confidential = 2,
+    Restricted = 3,
+    TopSecret = 4
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type DataProtectionPolicies = {
+    encryptionRequired: boolean;
+    classificationRequired: boolean;
+    dlpEnabled: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Handling of template degradation */
+declare enum DegradationHandling {
+    RequireRefresh = 0,
+    GradualDegradation = 1,
+    ImmediateExpiry = 2,
+    AdaptiveThreshold = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type EmergencyAccessConfig = {
+    breakGlassEnabled: boolean;
+    emergencyContacts: Array<Address>;
+    approvalRequired: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Emergency configuration for multisig */
+type EmergencyConfig = {
+    /** Emergency contacts */
+    emergencyContacts: Array<Address>;
+    /** Emergency threshold override */
+    emergencyThreshold: number;
+    /** Emergency timeout (shorter than normal) */
+    emergencyTimeout: bigint;
+    /** Allowed emergency transaction types */
+    emergencyTransactionTypes: Array<TransactionType>;
+    /** Emergency freeze enabled */
+    freezeEnabled: boolean;
+    /** Current freeze status */
+    frozen: boolean;
+    /** Freeze timestamp */
+    frozenAt: Option<bigint>;
+    /** Auto-unfreeze after duration */
+    autoUnfreezeDuration: Option<bigint>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Enforcement levels for constraints */
+declare enum EnforcementLevel {
+    Hard = 0,
+    Soft = 1,
+    Advisory = 2,
+    ExceptionBased = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Geographic region definition */
+type GeographicRegion = {
+    /** Region name */
+    name: string;
+    /** Latitude boundaries */
+    latitudeRange: LatitudeRange;
+    /** Longitude boundaries */
+    longitudeRange: LongitudeRange;
+    /** Radius for circular regions (meters) */
+    radius: Option<number>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Hierarchical boundary definition */
+type HierarchicalBoundary = {
+    /** Boundary level */
+    level: string;
+    /** Boundary value */
+    value: string;
+    /** Include descendants */
+    includeDescendants: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type IncidentResponsePolicies = {
+    responseTeam: Array<Address>;
+    escalationProcedures: Array<string>;
+    notificationRequirements: Array<NotificationRequirement>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Latitude range for geographic constraints */
+type LatitudeRange = {
+    /** Minimum latitude */
+    min: number;
+    /** Maximum latitude */
+    max: number;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Location-based access constraints */
+type LocationConstraints = {
+    /** Allowed countries (ISO codes) */
+    allowedCountries: Array<string>;
+    /** Blocked countries (ISO codes) */
+    blockedCountries: Array<string>;
+    /** Allowed IP address ranges (CIDR) */
+    allowedIpRanges: Array<string>;
+    /** Blocked IP address ranges (CIDR) */
+    blockedIpRanges: Array<string>;
+    /** Geofencing enabled */
+    geofencingEnabled: boolean;
+    /** Allowed geographic regions */
+    allowedRegions: Array<GeographicRegion>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Longitude range for geographic constraints */
+type LongitudeRange = {
+    /** Minimum longitude */
+    min: number;
+    /** Maximum longitude */
+    max: number;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+interface MultisigConfig {
+    requireSequentialSigning: boolean;
+    allowOwnerOffCurve: boolean;
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Individual signature in multisig */
+type MultisigSignature = {
+    /** Signer public key */
+    signer: Address;
+    /** Signature data */
+    signature: ReadonlyUint8Array;
+    /** Signature timestamp */
+    signedAt: bigint;
+    /** Signature method/algorithm */
+    signatureMethod: string;
+    /** Additional verification data */
+    verificationData: Option<ReadonlyUint8Array>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type NetworkSecurityPolicies = {
+    firewallRequired: boolean;
+    intrusionDetection: boolean;
+    trafficMonitoring: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Notification methods */
+declare enum NotificationMethod {
+    OnChain = 0,
+    Email = 1,
+    Sms = 2,
+    Push = 3,
+    InApp = 4,
+    All = 5
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Notification priorities */
+declare enum NotificationPriority {
+    Low = 0,
+    Medium = 1,
+    High = 2,
+    Critical = 3,
+    Emergency = 4
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Notification requirements for security events */
+type NotificationRequirement = {
+    /** Event type */
+    eventType: SecurityEventType;
+    /** Notification targets */
+    targets: Array<NotificationTarget>;
+    /** Notification method */
+    method: NotificationMethod;
+    /** Notification timing */
+    timing: NotificationTiming;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Notification targets */
+type NotificationTarget = {
+    /** Target type */
+    targetType: NotificationTargetType;
+    /** Target identifier */
+    targetId: string;
+    /** Notification priority */
+    priority: NotificationPriority;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of notification targets */
+declare enum NotificationTargetType {
+    User = 0,
+    Administrator = 1,
+    SecurityTeam = 2,
+    ComplianceTeam = 3,
+    Manager = 4,
+    AuditTeam = 5,
+    ExternalSystem = 6
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Notification timing */
+declare enum NotificationTiming {
+    Immediate = 0,
+    Delayed = 1,
+    Batched = 2,
+    Scheduled = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type PasswordPolicies = {
+    minimumLength: number;
+    complexityRequirements: Array<string>;
+    historyCount: number;
+    maxAge: bigint;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Pending transaction in multisig queue */
+type PendingTransaction = {
+    /** Transaction ID */
+    transactionId: bigint;
+    /** Transaction type */
+    transactionType: TransactionType;
+    /** Target program/account */
+    target: Address;
+    /** Transaction data */
+    data: ReadonlyUint8Array;
+    /** Required signatures */
+    requiredSignatures: number;
+    /** Current signatures */
+    signatures: Array<MultisigSignature>;
+    /** Creation timestamp */
+    createdAt: bigint;
+    /** Expiration timestamp */
+    expiresAt: bigint;
+    /** Transaction priority */
+    priority: TransactionPriority;
+    /** Execution conditions */
+    executionConditions: Array<ExecutionCondition>;
+    /** Transaction status */
+    status: TransactionStatus;
+    /** Time lock (if applicable) */
+    timeLock: Option<TimeLock>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Permission definition */
+type Permission = {
+    /** Permission identifier */
+    permissionId: string;
+    /** Permission name */
+    name: string;
+    /** Permission description */
+    description: string;
+    /** Resource type this permission applies to */
+    resourceType: string;
+    /** Actions allowed by this permission */
+    actions: Array<Action>;
+    /** Permission scope */
+    scope: PermissionScope;
+    /** Permission constraints */
+    constraints: Array<PermissionConstraint>;
+    /** Permission metadata */
+    metadata: PermissionMetadata;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Permission constraint */
+type PermissionConstraint = {
+    /** Constraint type */
+    constraintType: PermissionConstraintType;
+    /** Constraint conditions */
+    conditions: Array<ConstraintCondition>;
+    /** Constraint enforcement */
+    enforcement: EnforcementLevel;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of permission constraints */
+declare enum PermissionConstraintType {
+    Temporal = 0,
+    Contextual = 1,
+    Conditional = 2,
+    ResourceBased = 3,
+    AttributeBased = 4,
+    RiskBased = 5
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Permission metadata */
+type PermissionMetadata = {
+    /** Business justification */
+    businessJustification: string;
+    /** Risk assessment */
+    riskAssessment: RiskAssessment;
+    /** Compliance mapping */
+    complianceMapping: Array<string>;
+    /** Related permissions */
+    relatedPermissions: Array<string>;
+    /** Permission owner */
+    owner: Option<Address>;
+    /** Last review */
+    lastReview: Option<bigint>;
+    /** Review frequency */
+    reviewFrequency: bigint;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Permission scope definition */
+type PermissionScope = {
+    /** Scope type */
+    scopeType: ScopeType;
+    /** Scope boundaries */
+    boundaries: ScopeBoundaries;
+    /** Hierarchical scope */
+    hierarchical: boolean;
+    /** Inherited permissions */
+    inherited: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Policy metadata */
+type PolicyMetadata = {
+    /** Policy author */
+    author: Option<Address>;
+    /** Policy approver */
+    approver: Option<Address>;
+    /** Approval date */
+    approvalDate: Option<bigint>;
+    /** Business justification */
+    businessJustification: string;
+    /** Compliance references */
+    complianceReferences: Array<string>;
+    /** Risk assessment */
+    riskAssessment: Option<string>;
+    /** Review schedule */
+    reviewSchedule: ReviewSchedule;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Policy rule definition */
+type PolicyRule = {
+    /** Rule identifier */
+    ruleId: string;
+    /** Rule conditions */
+    conditions: Array<RuleCondition>;
+    /** Rule effect */
+    effect: RuleEffect;
+    /** Rule priority */
+    priority: number;
+    /** Rule enabled */
+    enabled: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Policy scope */
+type PolicyScope = {
+    /** Applicable subjects */
+    subjects: Array<string>;
+    /** Applicable resources */
+    resources: Array<string>;
+    /** Applicable actions */
+    actions: Array<string>;
+    /** Scope inheritance */
+    inheritance: ScopeInheritance;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Policy status */
+declare enum PolicyStatus {
+    Active = 0,
+    Inactive = 1,
+    Draft = 2,
+    UnderReview = 3,
+    Deprecated = 4,
+    Suspended = 5
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of access policies */
+declare enum PolicyType {
+    Allow = 0,
+    Deny = 1,
+    Conditional = 2,
+    Delegated = 3,
+    Temporary = 4,
+    Emergency = 5
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+interface ResourceConstraints {
+    [key: string]: unknown;
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Review schedule for policies */
+type ReviewSchedule = {
+    /** Review frequency */
+    frequency: bigint;
+    /** Last review date */
+    lastReview: Option<bigint>;
+    /** Next review date */
+    nextReview: bigint;
+    /** Review owners */
+    reviewOwners: Array<Address>;
+    /** Review criteria */
+    reviewCriteria: Array<string>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Risk acceptance status */
+type RiskAcceptance = {
+    /** Risk accepted */
+    accepted: boolean;
+    /** Accepting authority */
+    acceptingAuthority: Option<Address>;
+    /** Acceptance date */
+    acceptanceDate: Option<bigint>;
+    /** Acceptance reasoning */
+    reasoning: Option<string>;
+    /** Review date */
+    reviewDate: Option<bigint>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Risk assessment for permissions */
+type RiskAssessment = {
+    /** Overall risk score */
+    riskScore: number;
+    /** Risk factors */
+    riskFactors: Array<RiskFactor>;
+    /** Mitigation measures */
+    mitigationMeasures: Array<string>;
+    /** Risk acceptance */
+    riskAcceptance: RiskAcceptance;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Risk categories */
+declare enum RiskCategory {
+    Operational = 0,
+    Financial = 1,
+    Compliance = 2,
+    Security = 3,
+    Reputational = 4,
+    Technical = 5,
+    Legal = 6
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Individual risk factor */
+type RiskFactor = {
+    /** Factor name */
+    name: string;
+    /** Factor category */
+    category: RiskCategory;
+    /** Impact score */
+    impact: number;
+    /** Likelihood score */
+    likelihood: number;
+    /** Risk score */
+    riskScore: number;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Risk levels for roles */
+declare enum RiskLevel {
+    Low = 0,
+    Medium = 1,
+    High = 2,
+    Critical = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Role definition with permissions and constraints */
+type Role = {
+    /** Role identifier */
+    roleId: string;
+    /** Role name */
+    name: string;
+    /** Role description */
+    description: string;
+    /** Role type */
+    roleType: RoleType;
+    /** Permission assignments */
+    permissions: Array<string>;
+    /** Role constraints */
+    constraints: RoleConstraints;
+    /** Inheritance relationships */
+    inheritsFrom: Array<string>;
+    /** Role metadata */
+    metadata: RoleMetadata;
+    /** Role status */
+    status: RoleStatus;
+    /** Creation timestamp */
+    createdAt: bigint;
+    /** Last modification timestamp */
+    modifiedAt: bigint;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Constraints applied to roles */
+type RoleConstraints = {
+    /** Time-based constraints */
+    timeConstraints: Option<TimeConstraints>;
+    /** Location-based constraints */
+    locationConstraints: Option<LocationConstraints>;
+    /** Resource-based constraints */
+    resourceConstraints: Option<ResourceConstraints>;
+    /** Session-based constraints */
+    sessionConstraints: Option<SessionConstraints>;
+    /** Segregation of duties constraints */
+    sodConstraints: Array<SodConstraint>;
+    /** Maximum concurrent sessions */
+    maxConcurrentSessions: Option<number>;
+    /** Role activation requirements */
+    activationRequirements: Array<ActivationRequirement>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Role metadata for additional information */
+type RoleMetadata = {
+    /** Business purpose */
+    businessPurpose: string;
+    /** Risk level */
+    riskLevel: RiskLevel;
+    /** Data access level */
+    dataAccessLevel: DataAccessLevel;
+    /** Compliance requirements */
+    complianceRequirements: Array<string>;
+    /** Role owner */
+    roleOwner: Option<Address>;
+    /** Role custodian */
+    roleCustodian: Option<Address>;
+    /** Review frequency */
+    reviewFrequency: bigint;
+    /** Last review timestamp */
+    lastReview: Option<bigint>;
+    /** Next review due */
+    nextReview: Option<bigint>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Role status */
+declare enum RoleStatus {
+    Active = 0,
+    Inactive = 1,
+    Deprecated = 2,
+    UnderReview = 3,
+    Suspended = 4
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of roles in the system */
+declare enum RoleType {
+    Administrative = 0,
+    Operational = 1,
+    ReadOnly = 2,
+    Compliance = 3,
+    Emergency = 4,
+    Custom = 5,
+    Service = 6,
+    Guest = 7
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+interface RuleCondition {
+    [key: string]: unknown;
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Rule effects */
+declare enum RuleEffect {
+    Allow = 0,
+    Deny = 1,
+    AuditOnly = 2,
+    RequireApproval = 3,
+    RequireMfa = 4,
+    RequireJustification = 5
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Scope boundaries definition */
+type ScopeBoundaries = {
+    /** Included resources */
+    includedResources: Array<string>;
+    /** Excluded resources */
+    excludedResources: Array<string>;
+    /** Resource patterns (regex) */
+    resourcePatterns: Array<string>;
+    /** Hierarchical boundaries */
+    hierarchicalBoundaries: Array<HierarchicalBoundary>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Scope inheritance options */
+declare enum ScopeInheritance {
+    None = 0,
+    Hierarchical = 1,
+    Delegated = 2,
+    Inherited = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of permission scopes */
+declare enum ScopeType {
+    Global = 0,
+    Organization = 1,
+    Department = 2,
+    Project = 3,
+    Resource = 4,
+    Individual = 5
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of security events */
+declare enum SecurityEventType {
+    AccountLockout = 0,
+    PasswordChange = 1,
+    PrivilegeEscalation = 2,
+    SuspiciousActivity = 3,
+    PolicyViolation = 4,
+    AccessDenied = 5,
+    DataBreach = 6,
+    SystemCompromise = 7
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Comprehensive security policies configuration */
+type SecurityPolicies = {
+    /** Authentication policies */
+    authentication: AuthenticationPolicies;
+    /** Authorization policies */
+    authorization: AuthorizationPolicies;
+    /** Password policies */
+    password: PasswordPolicies;
+    /** Session policies */
+    session: SessionPolicies;
+    /** Data protection policies */
+    dataProtection: DataProtectionPolicies;
+    /** Network security policies */
+    networkSecurity: NetworkSecurityPolicies;
+    /** Incident response policies */
+    incidentResponse: IncidentResponsePolicies;
+    /** Compliance policies */
+    compliance: CompliancePolicies;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Session-based access constraints */
+type SessionConstraints = {
+    /** Maximum session duration */
+    maxSessionDuration: bigint;
+    /** Idle timeout */
+    idleTimeout: bigint;
+    /** Re-authentication interval */
+    reauthInterval: bigint;
+    /** Multi-factor authentication required */
+    mfaRequired: boolean;
+    /** Device fingerprinting required */
+    deviceFingerprinting: boolean;
+    /** Session encryption required */
+    sessionEncryption: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type SessionPolicies = {
+    maxSessionDuration: bigint;
+    idleTimeout: bigint;
+    concurrentSessions: number;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Segregation of duties constraint */
+type SodConstraint = {
+    /** Constraint name */
+    name: string;
+    /** Conflicting roles */
+    conflictingRoles: Array<string>;
+    /** Constraint type */
+    constraintType: SodConstraintType;
+    /** Enforcement level */
+    enforcementLevel: EnforcementLevel;
+    /** Exception procedures */
+    exceptionProcedures: Array<string>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of segregation of duties constraints */
+declare enum SodConstraintType {
+    Static = 0,
+    Dynamic = 1,
+    Temporal = 2,
+    Contextual = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Triggers for step-up authentication */
+declare enum StepUpTrigger {
+    HighRiskAction = 0,
+    SensitiveData = 1,
+    LargeTransaction = 2,
+    NewDevice = 3,
+    UnusualLocation = 4,
+    TimeBasedRisk = 5,
+    BehaviorAnomaly = 6
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Time-based access constraints */
+type TimeConstraints = {
+    /** Allowed hours (0-23) */
+    allowedHours: ReadonlyUint8Array;
+    /** Allowed days of week (1-7) */
+    allowedDays: ReadonlyUint8Array;
+    /** Timezone for time calculations */
+    timezone: string;
+    /** Maximum session duration (seconds) */
+    maxSessionDuration: Option<bigint>;
+    /** Role expiration timestamp */
+    expiresAt: Option<bigint>;
+    /** Periodic reactivation required */
+    reactivationPeriod: Option<bigint>;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Time lock mechanism for delayed execution */
+type TimeLock = {
+    /** Lock duration in seconds */
+    duration: bigint;
+    /** Lock start timestamp */
+    lockedAt: bigint;
+    /** Unlock timestamp */
+    unlocksAt: bigint;
+    /** Early unlock conditions */
+    earlyUnlockConditions: Array<ExecutionCondition>;
+    /** Lock type */
+    lockType: TimeLockType;
+    /** Can be cancelled before execution */
+    cancellable: boolean;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of time locks */
+declare enum TimeLockType {
+    Standard = 0,
+    Vesting = 1,
+    Emergency = 2,
+    Governance = 3
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Transaction priority levels */
+declare enum TransactionPriority {
+    Low = 0,
+    Normal = 1,
+    High = 2,
+    Critical = 3,
+    Emergency = 4
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Transaction execution status */
+declare enum TransactionStatus {
+    Pending = 0,
+    PartiallyApproved = 1,
+    FullyApproved = 2,
+    Executed = 3,
+    Cancelled = 4,
+    Expired = 5,
+    Failed = 6
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Types of transactions that can be executed */
+declare enum TransactionType {
+    Transfer = 0,
+    Withdrawal = 1,
+    EscrowRelease = 2,
+    ProposalCreation = 3,
+    VoteExecution = 4,
+    ParameterUpdate = 5,
+    SignerAddition = 6,
+    SignerRemoval = 7,
+    ThresholdUpdate = 8,
+    ConfigUpdate = 9,
+    EmergencyFreeze = 10,
+    EmergencyUnfreeze = 11,
+    SecurityPolicyUpdate = 12,
+    ProtocolUpgrade = 13,
+    FeatureToggle = 14,
+    RiskParameterUpdate = 15,
+    CustomInstruction = 16
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Methods to unlock accounts */
+declare enum UnlockMethod {
+    TimeBasedAutoUnlock = 0,
+    AdminUnlock = 1,
+    SelfServiceUnlock = 2,
+    MultiFactorUnlock = 3,
+    SupervisorUnlock = 4
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+/** Value types for constraint conditions */
+declare enum ValueType {
+    String = 0,
+    Number = 1,
+    Boolean = 2,
+    Date = 3,
+    Time = 4,
+    Duration = 5,
+    List = 6,
+    Object = 7
+}
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type Multisig = {
+    discriminator: ReadonlyUint8Array;
+    /** Unique identifier */
+    multisigId: bigint;
+    /** Required number of signatures */
+    threshold: number;
+    /** List of authorized signers */
+    signers: Array<Address>;
+    /** Multisig owner (can modify signers) */
+    owner: Address;
+    /** Creation timestamp */
+    createdAt: bigint;
+    /** Last update timestamp */
+    updatedAt: bigint;
+    /** Current nonce (prevents replay attacks) */
+    nonce: bigint;
+    /** Pending transactions */
+    pendingTransactions: Array<PendingTransaction>;
+    /** Configuration settings */
+    config: MultisigConfig;
+    /** Emergency settings */
+    emergencyConfig: EmergencyConfig;
+    /** Reserved space for future extensions */
+    reserved: ReadonlyUint8Array;
+};
+
+/**
+ * This code was AUTOGENERATED using the codama library.
+ * Please DO NOT EDIT THIS FILE, instead use visitors
+ * to add features, then rerun codama to update it.
+ *
+ * @see https://github.com/codama-idl/codama
+ */
+
+type RbacConfig = {
+    discriminator: ReadonlyUint8Array;
+    /** Authority for RBAC management */
+    authority: Address;
+    /** Creation timestamp */
+    createdAt: bigint;
+    /** Last update timestamp */
+    updatedAt: bigint;
+    /** Version for compatibility */
+    version: number;
+    /** Role definitions */
+    roles: Array<Role>;
+    /** Permission definitions */
+    permissions: Array<Permission>;
+    /** Access policies */
+    accessPolicies: Array<AccessPolicy>;
+    /** Security policies */
+    securityPolicies: SecurityPolicies;
+    /** Audit configuration */
+    auditConfig: AccessAuditConfig;
+    /** Emergency access procedures */
+    emergencyAccess: EmergencyAccessConfig;
+    /** Reserved space */
+    reserved: ReadonlyUint8Array;
+};
+
+/**
+ * Discriminator Validation Utilities
+ *
+ * Handles discriminator validation and provides fallback mechanisms
+ * for accounts with mismatched discriminators
+ */
+
+interface DiscriminatorValidationResult {
+    isValid: boolean;
+    expectedLength: number;
+    actualLength: number;
+    canDecode: boolean;
+    needsMigration: boolean;
+    errorMessage?: string;
+}
+interface AccountInspectionResult {
+    address: string;
+    dataLength: number;
+    discriminator: Uint8Array | null;
+    discriminatorLength: number;
+    isAgentAccount: boolean;
+    needsMigration: boolean;
+    rawData: Uint8Array;
+}
+/**
+ * Validates account discriminator before attempting to decode
+ */
+declare function validateAccountDiscriminator(accountData: Uint8Array, expectedDiscriminator: Uint8Array): DiscriminatorValidationResult;
+/**
+ * Create user-friendly error message for discriminator issues
+ */
+declare function createDiscriminatorErrorMessage(validation: DiscriminatorValidationResult, accountType: string, address: string): string;
+/**
+ * Safe Agent account decoding with discriminator validation
+ * Returns a compatibility result with exists property
+ */
+declare function safeDecodeAgent(encodedAccount: {
+    address: Address$1;
+    data: Uint8Array;
+}): Promise<{
+    exists: boolean;
+    data?: unknown;
+} | null>;
+/**
+ * Inspects account data and extracts useful information about discriminator
+ */
+declare function inspectAccountData(encodedAccount: EncodedAccount | MaybeEncodedAccount, address: string): AccountInspectionResult;
+
+/**
+ * Account Migration Utility
+ *
+ * Handles migration of old Agent accounts that were created with
+ * different discriminator formats to the current format.
+ */
+
+interface MigrationPlan {
+    address: string;
+    currentState: 'valid' | 'needs_migration' | 'invalid' | 'not_exists';
+    migrationType: 'none' | 'recreate' | 'data_conversion' | 'unsupported';
+    issues: string[];
+    recommendations: string[];
+    canAutoMigrate: boolean;
+}
+interface MigrationResult {
+    success: boolean;
+    address: string;
+    action: 'skipped' | 'migrated' | 'failed';
+    error?: string;
+    newAccountData?: Uint8Array;
+}
+interface LegacyAgentData {
+    discriminator: Uint8Array;
+    owner?: string;
+    name?: string;
+}
+/**
+ * Analyzes an account and creates a migration plan
+ */
+declare function createMigrationPlan(encodedAccount: EncodedAccount | MaybeEncodedAccount, address: string): Promise<MigrationPlan>;
+/**
+ * Attempts to extract meaningful data from a legacy account
+ */
+declare function extractLegacyData(encodedAccount: EncodedAccount | MaybeEncodedAccount): LegacyAgentData | null;
+/**
+ * Creates a detailed migration report for multiple accounts
+ */
+declare function createMigrationReport(accounts: {
+    address: string;
+    encodedAccount: EncodedAccount | MaybeEncodedAccount;
+}[]): Promise<{
+    summary: {
+        total: number;
+        valid: number;
+        needsMigration: number;
+        invalid: number;
+        canAutoMigrate: number;
+    };
+    plans: MigrationPlan[];
+    recommendations: string[];
+}>;
+/**
+ * Simulates migration without actually performing it
+ */
+declare function simulateMigration(encodedAccount: EncodedAccount | MaybeEncodedAccount, address: string): Promise<{
+    plan: MigrationPlan;
+    simulation: {
+        wouldSucceed: boolean;
+        estimatedSteps: string[];
+        warnings: string[];
+        requiredActions: string[];
+    };
+}>;
+/**
+ * Provides user-friendly migration instructions
+ */
+declare function getMigrationInstructions(plan: MigrationPlan): string[];
+
+/**
+ * Account Diagnostics Utility
+ *
+ * Comprehensive diagnostic tools for inspecting and debugging
+ * account discriminator issues and data format problems.
+ */
+
+interface DiagnosticReport {
+    address: string;
+    timestamp: string;
+    accountExists: boolean;
+    discriminatorValidation: ReturnType<typeof validateAccountDiscriminator>;
+    inspection: AccountInspectionResult;
+    migrationPlan: Awaited<ReturnType<typeof createMigrationPlan>>;
+    migrationSimulation: Awaited<ReturnType<typeof simulateMigration>>;
+    recommendations: string[];
+    debugInfo: {
+        expectedDiscriminator: number[];
+        actualDiscriminator: number[] | null;
+        dataPreview: number[];
+        programId?: string;
+    };
+}
+interface BatchDiagnosticReport {
+    summary: {
+        total: number;
+        valid: number;
+        invalid: number;
+        needsMigration: number;
+        notExists: number;
+    };
+    reports: DiagnosticReport[];
+    globalRecommendations: string[];
+    timestamp: string;
+}
+/**
+ * Runs comprehensive diagnostics on a single account
+ */
+declare function runAccountDiagnostics(encodedAccount: EncodedAccount | MaybeEncodedAccount, address: string): Promise<DiagnosticReport>;
+/**
+ * Runs diagnostics on multiple accounts
+ */
+declare function runBatchDiagnostics(accounts: {
+    address: string;
+    encodedAccount: EncodedAccount | MaybeEncodedAccount;
+}[]): Promise<BatchDiagnosticReport>;
+/**
+ * Fetches and diagnoses an account directly from the blockchain
+ */
+declare function diagnoseAccountFromChain(rpc: Parameters<typeof fetchEncodedAccount>[0], address: Address, options?: {
+    logToConsole?: boolean;
+}): Promise<DiagnosticReport>;
+/**
+ * Fetches and diagnoses multiple accounts from the blockchain
+ */
+declare function diagnoseBatchFromChain(rpc: Parameters<typeof fetchEncodedAccount>[0], addresses: Address[], options?: {
+    logToConsole?: boolean;
+    maxConcurrent?: number;
+}): Promise<BatchDiagnosticReport>;
+/**
+ * Exports a diagnostic report as JSON
+ */
+declare function exportDiagnosticReport(report: DiagnosticReport | BatchDiagnosticReport, filename?: string): string;
+
+type accountDiagnostics_BatchDiagnosticReport = BatchDiagnosticReport;
+type accountDiagnostics_DiagnosticReport = DiagnosticReport;
+declare const accountDiagnostics_diagnoseAccountFromChain: typeof diagnoseAccountFromChain;
+declare const accountDiagnostics_diagnoseBatchFromChain: typeof diagnoseBatchFromChain;
+declare const accountDiagnostics_exportDiagnosticReport: typeof exportDiagnosticReport;
+declare const accountDiagnostics_runAccountDiagnostics: typeof runAccountDiagnostics;
+declare const accountDiagnostics_runBatchDiagnostics: typeof runBatchDiagnostics;
+declare namespace accountDiagnostics {
+  export { type accountDiagnostics_BatchDiagnosticReport as BatchDiagnosticReport, type accountDiagnostics_DiagnosticReport as DiagnosticReport, accountDiagnostics_diagnoseAccountFromChain as diagnoseAccountFromChain, accountDiagnostics_diagnoseBatchFromChain as diagnoseBatchFromChain, accountDiagnostics_exportDiagnosticReport as exportDiagnosticReport, accountDiagnostics_runAccountDiagnostics as runAccountDiagnostics, accountDiagnostics_runBatchDiagnostics as runBatchDiagnostics };
+}
+
+/**
+ * Utility functions for Program Derived Addresses (PDAs)
+ * Based on generated patterns from Codama
+ */
+/**
+ * Derive agent PDA
+ * Pattern: ['agent', owner, agentId]
+ * NOTE: Uses raw UTF-8 bytes to match smart contract's agent_id.as_bytes()
+ */
+declare function deriveAgentPda(programId: Address$1, owner: Address$1, agentId: string): Promise<Address$1>;
+/**
+ * Derive service listing PDA
+ * Pattern: ['service_listing', creator, listingId]
+ */
+declare function deriveServiceListingPda(programId: Address$1, creator: Address$1, listingId: string): Promise<Address$1>;
+/**
+ * Derive job posting PDA
+ * Pattern: ['job_posting', employer, jobId]
+ */
+declare function deriveJobPostingPda(programId: Address$1, employer: Address$1, jobId: string): Promise<Address$1>;
+/**
+ * Derive job application PDA
+ * Pattern: ['job_application', jobPosting, applicant]
+ */
+declare function deriveJobApplicationPda(programId: Address$1, jobPosting: Address$1, applicant: Address$1): Promise<Address$1>;
+/**
+ * Derive work order PDA (used for escrow functionality)
+ * Pattern: ['work_order', client, orderId] (little-endian bytes)
+ * NOTE: Smart contract expects orderId as little-endian bytes, not U64 encoded
+ */
+declare function deriveWorkOrderPda(programId: Address$1, client: Address$1, orderId: bigint): Promise<Address$1>;
+/**
+ * Derive work delivery PDA
+ * Pattern: ['work_delivery', workOrder, provider]
+ */
+declare function deriveWorkDeliveryPda(programId: Address$1, workOrder: Address$1, provider: Address$1): Promise<Address$1>;
+/**
+ * Derive payment PDA
+ * Pattern: ['payment', workOrder, payer]
+ */
+declare function derivePaymentPda(programId: Address$1, workOrder: Address$1, payer: Address$1): Promise<Address$1>;
+/**
+ * Derive A2A session PDA
+ * Pattern: ['a2a_session', creator]
+ */
+declare function deriveA2ASessionPda(programId: Address$1, creator: Address$1): Promise<Address$1>;
+/**
+ * Derive A2A message PDA
+ * Pattern: ['a2a_message', session, session.created_at]
+ * NOTE: Fixed to match smart contract expectation - uses session.created_at as little-endian bytes
+ */
+declare function deriveA2AMessagePda(programId: Address$1, session: Address$1, sessionCreatedAt: bigint): Promise<Address$1>;
+/**
+ * Derive user registry PDA
+ * Pattern: ['user_registry', signer]
+ * NOTE: Fixed to match smart contract expectations - includes signer address
+ */
+declare function deriveUserRegistryPda(programId: Address$1, signer: Address$1): Promise<Address$1>;
+/**
+ * Derive service purchase PDA
+ * Pattern: ['service_purchase', serviceListing, buyer]
+ */
+declare function deriveServicePurchasePda(programId: Address$1, serviceListing: Address$1, buyer: Address$1): Promise<Address$1>;
+/**
+ * Derive agent verification PDA
+ * Pattern: ['agent_verification', agent, verifier]
+ */
+declare function deriveAgentVerificationPda(programId: Address$1, agent: Address$1, verifier: Address$1): Promise<Address$1>;
+/**
+ * Generic PDA finder for custom use cases
+ * Pattern: seeds array with automatic encoding
+ */
+declare function findProgramDerivedAddress(seeds: (string | Address$1 | Uint8Array)[], programId: Address$1): Promise<[Address$1, number]>;
+
+/**
+ * Enhanced Client Error Utilities
+ *
+ * Provides wrapper functions for SDK operations that automatically enhance
+ * error messages with detailed instruction account information.
+ */
+
+/**
+ * Enhanced error class for SDK operations
+ */
+declare class GhostSpeakSDKError extends Error {
+    readonly originalError: Error;
+    readonly operation: string;
+    readonly instructionName?: string;
+    constructor(operation: string, originalError: Error, instructionName?: string);
+}
+/**
+ * Type for account context
+ */
+type AccountContext = Address$1 | {
+    address: Address$1;
+    name?: string;
+};
+/**
+ * Wrapper for async operations that enhances errors with instruction context
+ */
+declare function withEnhancedErrors<T>(operation: string, instructionName: string | undefined, fn: () => Promise<T>, debugAccounts?: AccountContext[]): Promise<T>;
+/**
+ * Wrapper for synchronous operations that enhances errors with instruction context
+ */
+declare function withEnhancedErrorsSync<T>(operation: string, instructionName: string | undefined, fn: () => T, debugAccounts?: AccountContext[]): T;
+/**
+ * Parse and enhance transaction errors with instruction context
+ */
+declare function enhanceTransactionError(error: Error, instructionName?: string, accounts?: AccountContext[]): Error;
+/**
+ * Helper to log detailed error information for debugging
+ */
+declare function logEnhancedError(error: Error, context?: {
+    operation?: string;
+    instructionName?: string;
+    accounts?: AccountContext[];
+    params?: Record<string, unknown>;
+}): void;
+/**
+ * Error context for operations
+ */
+interface ErrorContext {
+    operation: string;
+    instructionName?: string;
+    accounts?: AccountContext[];
+    params?: Record<string, unknown>;
+}
+/**
+ * Create a detailed error context for operations
+ */
+declare function createErrorContext(operation: string, instructionName?: string, accounts?: AccountContext[], params?: Record<string, unknown>): ErrorContext;
+/**
+ * Validate common preconditions and throw enhanced errors
+ */
+declare function validatePreconditions(checks: {
+    condition: boolean;
+    message: string;
+    instructionName?: string;
+}[]): void;
+/**
+ * Helper to extract instruction name from operation context
+ */
+declare function extractInstructionName(operation: string): string | undefined;
+
+/**
+ * Proof data structure for transfer verification
+ */
+interface TransferProofData {
+    /** The encrypted transfer amount (ElGamal ciphertext) */
+    encryptedTransferAmount: Uint8Array;
+    /** Source account's new encrypted balance commitment */
+    newSourceCommitment: Uint8Array;
+    /** Equality proof for source balance */
+    equalityProof: Uint8Array;
+    /** Validity proof for the transfer */
+    validityProof: Uint8Array;
+    /** Range proof for the transfer amount and remaining balance */
+    rangeProof: Uint8Array;
+}
+
+/**
+ * Token Utilities for SPL Token and Token 2022 (Token Extensions)
+ *
+ * Provides comprehensive token handling utilities including:
+ * - Associated Token Account (ATA) derivation for both SPL Token and Token 2022
+ * - Token 2022 specific features (transfer fees, confidential transfers, etc.)
+ * - Token program detection and validation
+ * - Account creation and management utilities
+ *
+ * Based on the latest SPL Token 2022 specification and @solana/kit v2.3.0
+ */
+
+/**
+ * Token program variants supported by GhostSpeak
+ */
+declare enum TokenProgram {
+    /** Original SPL Token Program */
+    SPL_TOKEN = "spl-token",
+    /** SPL Token 2022 (Token Extensions) Program */
+    TOKEN_2022 = "token-2022"
+}
+/**
+ * Associated Token Account information
+ */
+interface AssociatedTokenAccount {
+    /** The derived ATA address */
+    address: Address$1;
+    /** The wallet/owner address */
+    owner: Address$1;
+    /** The token mint address */
+    mint: Address$1;
+    /** The token program used (SPL Token or Token 2022) */
+    tokenProgram: Address$1;
+    /** Whether this is a Token 2022 ATA */
+    isToken2022: boolean;
+}
+/**
+ * Token 2022 Extension Types
+ * Based on the latest Token Extensions specification
+ */
+declare enum TokenExtension {
+    /** Uninitialized account */
+    UNINITIALIZED = 0,
+    /** Transfer fee extension */
+    TRANSFER_FEE_CONFIG = 1,
+    /** Transfer fee amount */
+    TRANSFER_FEE_AMOUNT = 2,
+    /** Mint close authority */
+    MINT_CLOSE_AUTHORITY = 3,
+    /** Confidential transfer mint */
+    CONFIDENTIAL_TRANSFER_MINT = 4,
+    /** Confidential transfer account */
+    CONFIDENTIAL_TRANSFER_ACCOUNT = 5,
+    /** Default account state */
+    DEFAULT_ACCOUNT_STATE = 6,
+    /** Immutable owner */
+    IMMUTABLE_OWNER = 7,
+    /** Memo transfer */
+    MEMO_TRANSFER = 8,
+    /** Non-transferable */
+    NON_TRANSFERABLE = 9,
+    /** Interest bearing mint */
+    INTEREST_BEARING_MINT = 10,
+    /** CPI guard */
+    CPI_GUARD = 11,
+    /** Permanent delegate */
+    PERMANENT_DELEGATE = 12,
+    /** Non-transferable account */
+    NON_TRANSFERABLE_ACCOUNT = 13,
+    /** Transfer hook */
+    TRANSFER_HOOK = 14,
+    /** Transfer hook account */
+    TRANSFER_HOOK_ACCOUNT = 15,
+    /** Metadata pointer */
+    METADATA_POINTER = 16,
+    /** Token metadata */
+    TOKEN_METADATA = 17,
+    /** Group pointer */
+    GROUP_POINTER = 18,
+    /** Token group */
+    TOKEN_GROUP = 19,
+    /** Group member pointer */
+    GROUP_MEMBER_POINTER = 20,
+    /** Token group member */
+    TOKEN_GROUP_MEMBER = 21
+}
+/**
+ * Transfer fee configuration for Token 2022
+ */
+interface TransferFeeConfig {
+    /** Transfer fee basis points (0-10000, where 10000 = 100%) */
+    transferFeeBasisPoints: number;
+    /** Maximum transfer fee in token base units */
+    maximumFee: bigint;
+    /** Authority that can modify transfer fee config */
+    transferFeeConfigAuthority: Address$1 | null;
+    /** Authority that can withdraw collected fees */
+    withdrawWithheldAuthority: Address$1 | null;
+    /** Amount of fees currently withheld */
+    withheldAmount: bigint;
+    /** Older transfer fee configuration */
+    olderTransferFee: {
+        epoch: bigint;
+        transferFeeBasisPoints: number;
+        maximumFee: bigint;
+    };
+    /** Newer transfer fee configuration */
+    newerTransferFee: {
+        epoch: bigint;
+        transferFeeBasisPoints: number;
+        maximumFee: bigint;
+    };
+}
+/**
+ * Confidential transfer configuration for Token 2022
+ */
+interface ConfidentialTransferConfig$1 {
+    /** Authority that can configure confidential transfers */
+    authority: Address$1 | null;
+    /** Automatically approve new accounts for confidential transfers */
+    autoApproveNewAccounts: boolean;
+    /** Public key for auditing confidential transfers */
+    auditorElgamalPubkey: Uint8Array | null;
+}
+/**
+ * Interest-bearing token configuration for Token 2022
+ */
+interface InterestBearingConfig {
+    /** Authority that can update the interest rate */
+    rateAuthority: Address$1 | null;
+    /** Current interest rate (basis points per year) */
+    currentRate: number;
+    /** Timestamp when interest bearing was initialized */
+    initializationTimestamp: bigint;
+    /** Timestamp of last rate update */
+    lastUpdateTimestamp: bigint;
+    /** Pre-computed interest rate */
+    preUpdateAverageRate: number;
+}
+/**
+ * Derive Associated Token Account address for any token program
+ *
+ * This is the core ATA derivation function that works with both
+ * SPL Token and Token 2022 programs. The derivation follows the
+ * standard pattern: ['owner', 'token_program', 'mint']
+ *
+ * @param owner - The wallet/owner address
+ * @param mint - The token mint address
+ * @param tokenProgram - The token program address (SPL Token or Token 2022)
+ * @returns Promise<Address> - The derived ATA address
+ */
+declare function deriveAssociatedTokenAddress(owner: Address$1, mint: Address$1, tokenProgram?: Address$1): Promise<Address$1>;
+/**
+ * Derive Associated Token Account for SPL Token (legacy)
+ *
+ * @param owner - The wallet/owner address
+ * @param mint - The token mint address
+ * @returns Promise<Address> - The derived ATA address
+ */
+declare function deriveSplTokenAssociatedTokenAddress(owner: Address$1, mint: Address$1): Promise<Address$1>;
+/**
+ * Derive Associated Token Account for Token 2022
+ *
+ * @param owner - The wallet/owner address
+ * @param mint - The token mint address
+ * @returns Promise<Address> - The derived ATA address
+ */
+declare function deriveToken2022AssociatedTokenAddress(owner: Address$1, mint: Address$1): Promise<Address$1>;
+/**
+ * Get complete ATA information including program detection
+ *
+ * @param owner - The wallet/owner address
+ * @param mint - The token mint address
+ * @param tokenProgram - Optional: specify token program, auto-detect if not provided
+ * @returns Promise<AssociatedTokenAccount> - Complete ATA information
+ */
+declare function getAssociatedTokenAccount(owner: Address$1, mint: Address$1, tokenProgram?: Address$1): Promise<AssociatedTokenAccount>;
+/**
+ * Detect which token program owns a given mint
+ * Note: This requires RPC calls to fetch mint account data
+ *
+ * @param mint - The token mint address
+ * @returns Promise<Address> - The token program address
+ */
+declare function detectTokenProgram(mint: Address$1, rpcEndpoint?: string): Promise<Address$1>;
+/**
+ * Check if a mint is a Token 2022 mint
+ *
+ * @param mint - The token mint address
+ * @returns Promise<boolean> - True if Token 2022, false if SPL Token
+ */
+declare function isToken2022Mint(mint: Address$1): Promise<boolean>;
+/**
+ * Get the appropriate token program for a given mint
+ *
+ * @param mint - The token mint address
+ * @returns Promise<TokenProgram> - The token program enum
+ */
+declare function getTokenProgramType(mint: Address$1): Promise<TokenProgram>;
+/**
+ * Check if a mint has the transfer fee extension
+ *
+ * @param mint - The token mint address
+ * @param rpcEndpoint - Optional RPC endpoint
+ * @returns Promise<boolean> - True if mint has transfer fee extension
+ */
+declare function hasTransferFeeExtension(mint: Address$1, rpcEndpoint?: string): Promise<boolean>;
+/**
+ * Check if a mint has the confidential transfer extension
+ *
+ * @param mint - The token mint address
+ * @param rpcEndpoint - Optional RPC endpoint
+ * @returns Promise<boolean> - True if mint has confidential transfer extension
+ */
+declare function hasConfidentialTransferExtension(mint: Address$1, rpcEndpoint?: string): Promise<boolean>;
+/**
+ * Check if a mint has the interest-bearing extension
+ *
+ * @param mint - The token mint address
+ * @param rpcEndpoint - Optional RPC endpoint
+ * @returns Promise<boolean> - True if mint has interest-bearing extension
+ */
+declare function hasInterestBearingExtension(mint: Address$1, rpcEndpoint?: string): Promise<boolean>;
+/**
+ * Get transfer fee configuration for a Token 2022 mint
+ *
+ * @param mint - The Token 2022 mint address
+ * @returns Promise<TransferFeeConfig | null> - Transfer fee config or null if not configured
+ */
+declare function getTransferFeeConfig(mint: Address$1, rpcEndpoint?: string): Promise<TransferFeeConfig | null>;
+/**
+ * Get confidential transfer configuration for a Token 2022 mint
+ *
+ * @param mint - The Token 2022 mint address
+ * @returns Promise<ConfidentialTransferConfig | null> - Confidential transfer config or null
+ */
+declare function getConfidentialTransferConfig(mint: Address$1, rpcEndpoint?: string): Promise<ConfidentialTransferConfig$1 | null>;
+/**
+ * Get interest-bearing configuration for a Token 2022 mint
+ *
+ * @param mint - The Token 2022 mint address
+ * @returns Promise<InterestBearingConfig | null> - Interest-bearing config or null
+ */
+declare function getInterestBearingConfig(mint: Address$1, rpcEndpoint?: string): Promise<InterestBearingConfig | null>;
+/**
+ * Get all possible ATA addresses for a wallet/mint pair
+ * Returns both SPL Token and Token 2022 ATAs
+ *
+ * @param owner - The wallet/owner address
+ * @param mint - The token mint address
+ * @returns Promise<{ splToken: Address, token2022: Address }> - Both ATA addresses
+ */
+declare function getAllAssociatedTokenAddresses(owner: Address$1, mint: Address$1): Promise<{
+    splToken: Address$1;
+    token2022: Address$1;
+}>;
+/**
+ * Validate if an address could be a valid ATA
+ *
+ * @param address - The address to validate
+ * @param owner - The expected owner
+ * @param mint - The expected mint
+ * @returns Promise<{ isValid: boolean, program?: Address }> - Validation result
+ */
+declare function validateAssociatedTokenAddress(address: Address$1, owner: Address$1, mint: Address$1): Promise<{
+    isValid: boolean;
+    program?: Address$1;
+}>;
+/**
+ * Convert TokenProgram enum to program address
+ *
+ * @param program - The token program enum
+ * @returns Address - The program address
+ */
+declare function getTokenProgramAddress(program: TokenProgram): Address$1;
+/**
+ * Convert program address to TokenProgram enum
+ *
+ * @param address - The program address
+ * @returns TokenProgram - The token program enum
+ */
+declare function getTokenProgramFromAddress(address: Address$1): TokenProgram;
+/**
+ * Format token amount with proper decimals
+ *
+ * @param amount - Raw token amount (in base units)
+ * @param decimals - Number of decimal places for the token
+ * @returns string - Formatted amount
+ */
+declare function formatTokenAmount(amount: bigint, decimals: number): string;
+/**
+ * Parse formatted token amount to raw base units
+ *
+ * @param formatted - Formatted token amount string
+ * @param decimals - Number of decimal places for the token
+ * @returns bigint - Raw token amount
+ */
+declare function parseTokenAmount(formatted: string, decimals: number): bigint;
+
+/**
+ * Complete ElGamal Encryption Module with Full ZK Proof Implementation
+ *
+ * This module provides production-ready ElGamal encryption on Curve25519 with
+ * complete zero-knowledge proof generation for Solana's confidential transfers.
+ *
+ * Features:
+ * - ElGamal encryption/decryption on ed25519
+ * - Bulletproof range proofs for amounts (0 to 2^64)
+ * - Validity proofs for well-formed ciphertexts
+ * - Equality proofs for value conservation
+ * - Transfer proofs combining all necessary proofs
+ * - Full integration with Solana's ZK ElGamal Proof Program
+ */
+
+interface ElGamalKeypair$1 {
+    publicKey: Uint8Array;
+    secretKey: Uint8Array;
+}
+
+/**
+ * Token 2022 Extensions Implementation
+ *
+ * Implements advanced Token 2022 features including:
+ * - Transfer fees with withdrawal mechanisms
+ * - Confidential transfers using ElGamal encryption
+ * - Interest-bearing tokens with rate calculations
+ * - Transfer hooks and metadata pointers
+ * - Account state management and CPI guards
+ *
+ * Based on the SPL Token 2022 specification and Solana Web3.js v2.3.0
+ */
+
+/**
+ * Transfer fee calculation result
+ */
+interface TransferFeeCalculation {
+    /** Original transfer amount */
+    transferAmount: bigint;
+    /** Calculated fee amount */
+    feeAmount: bigint;
+    /** Amount after fee deduction */
+    netAmount: bigint;
+    /** Fee percentage (basis points) */
+    feeBasisPoints: number;
+    /** Whether fee was capped at maximum */
+    wasFeeCapped: boolean;
+}
+/**
+ * Calculate transfer fee for a Token 2022 transfer
+ *
+ * @param transferAmount - Amount being transferred (in token base units)
+ * @param feeConfig - Transfer fee configuration
+ * @returns TransferFeeCalculation - Detailed fee calculation
+ */
+declare function calculateTransferFee(transferAmount: bigint, feeConfig: TransferFeeConfig): TransferFeeCalculation;
+/**
+ * Calculate the total amount needed for a desired net transfer
+ * (reverse calculation when you want to send a specific net amount)
+ *
+ * @param desiredNetAmount - The amount you want the recipient to receive
+ * @param feeConfig - Transfer fee configuration
+ * @returns TransferFeeCalculation - Required total amount and fee breakdown
+ */
+declare function calculateRequiredAmountForNetTransfer(desiredNetAmount: bigint, feeConfig: TransferFeeConfig): TransferFeeCalculation;
+/**
+ * Estimate accumulated fees for multiple transfers
+ *
+ * @param transfers - Array of transfer amounts
+ * @param feeConfig - Transfer fee configuration
+ * @returns { totalFees: bigint, feeBreakdown: TransferFeeCalculation[] }
+ */
+declare function estimateAccumulatedFees(transfers: bigint[], feeConfig: TransferFeeConfig): {
+    totalFees: bigint;
+    feeBreakdown: TransferFeeCalculation[];
+};
+/**
+ * Confidential transfer proof data
+ * Note: This is a simplified structure - actual implementation would include
+ * complex zero-knowledge proof data structures
+ */
+interface ConfidentialTransferProof {
+    /** Encrypted transfer amount (ElGamal ciphertext) */
+    encryptedAmount: Uint8Array;
+    /** Range proof for the transfer amount */
+    rangeProof: Uint8Array;
+    /** Validity proof for the transfer */
+    validityProof: Uint8Array;
+    /** Auditor proof (if auditing is enabled) */
+    auditorProof?: Uint8Array;
+}
+/**
+ * Confidential account state
+ */
+interface ConfidentialAccountState {
+    /** Whether the account is approved for confidential transfers */
+    approved: boolean;
+    /** Encrypted balance (ElGamal ciphertext) */
+    encryptedBalance: Uint8Array;
+    /** Pending balance encryption from incoming transfers */
+    pendingBalanceCredits: Uint8Array;
+    /** Number of pending credits */
+    pendingBalanceCreditsCounter: number;
+    /** Expected pending balance decryption */
+    expectedPendingBalanceCredits: bigint;
+    /** Actual pending balance decryption */
+    actualPendingBalanceCredits: bigint;
+}
+/**
+ * Generate confidential transfer proof
+ *
+ * Uses twisted ElGamal encryption to create confidential transfer proofs
+ * compatible with Solana's ZK ElGamal Proof Program
+ *
+ * @param amount - Transfer amount (in token base units)
+ * @param senderKeypair - Sender's ElGamal keypair
+ * @param recipientPubkey - Recipient's ElGamal public key
+ * @param auditorPubkey - Optional auditor public key
+ * @returns Promise<ConfidentialTransferProof>
+ */
+declare function generateConfidentialTransferProof(amount: bigint, senderKeypair: ElGamalKeypair$1, recipientPubkey: Uint8Array, auditorPubkey?: Uint8Array): Promise<ConfidentialTransferProof>;
+/**
+ * Verify confidential transfer proof
+ *
+ * Note: In practice, proof verification happens on-chain via the
+ * ZK ElGamal Proof Program. This is a client-side validation helper.
+ *
+ * @param proof - The proof to verify
+ * @param publicInputs - Public inputs for verification
+ * @returns Promise<boolean> - True if proof is valid
+ */
+declare function verifyConfidentialTransferProof(proof: ConfidentialTransferProof, publicInputs: {
+    senderPubkey: Uint8Array;
+    recipientPubkey: Uint8Array;
+    auditorPubkey?: Uint8Array;
+}): Promise<boolean>;
+/**
+ * Interest calculation result
+ */
+interface InterestCalculation {
+    /** Principal amount */
+    principal: bigint;
+    /** Interest rate (basis points per year) */
+    annualRateBasisPoints: number;
+    /** Time period for calculation (seconds) */
+    timePeriodSeconds: bigint;
+    /** Calculated interest amount */
+    interestAmount: bigint;
+    /** New total balance */
+    newAmount: bigint;
+    /** Effective annual rate */
+    effectiveAnnualRate: number;
+}
+/**
+ * Calculate interest for an interest-bearing token
+ *
+ * @param principal - Current token balance
+ * @param config - Interest-bearing configuration
+ * @param currentTimestamp - Current timestamp (seconds)
+ * @returns InterestCalculation - Detailed interest calculation
+ */
+declare function calculateInterest(principal: bigint, config: InterestBearingConfig, currentTimestamp: bigint): InterestCalculation;
+/**
+ * Calculate compound interest with custom compounding periods
+ *
+ * @param principal - Initial amount
+ * @param annualRateBasisPoints - Annual interest rate (basis points)
+ * @param compoundingPeriodsPerYear - Number of compounding periods per year (e.g., 12 for monthly)
+ * @param years - Time period in years (can be fractional)
+ * @returns InterestCalculation - Detailed compound interest calculation
+ */
+declare function calculateCompoundInterest(principal: bigint, annualRateBasisPoints: number, compoundingPeriodsPerYear: number, years: number): InterestCalculation;
+/**
+ * Transfer hook instruction data
+ */
+interface TransferHookInstruction {
+    /** Program ID of the hook */
+    programId: Address$1;
+    /** Instruction data to pass to the hook */
+    instructionData: Uint8Array;
+    /** Additional accounts required by the hook */
+    additionalAccounts: Address$1[];
+}
+/**
+ * Transfer hook context passed to hook programs
+ */
+interface TransferHookContext {
+    /** Source account */
+    source: Address$1;
+    /** Destination account */
+    destination: Address$1;
+    /** Authority performing the transfer */
+    authority: Address$1;
+    /** Transfer amount */
+    amount: bigint;
+    /** Token mint */
+    mint: Address$1;
+    /** Additional context data */
+    contextData: Uint8Array;
+}
+/**
+ * Validate transfer hook instruction format
+ *
+ * @param instruction - The hook instruction to validate
+ * @returns boolean - True if instruction format is valid
+ */
+declare function validateTransferHookInstruction(instruction: TransferHookInstruction): boolean;
+/**
+ * Create transfer hook instruction data
+ *
+ * @param hookProgramId - Program ID of the transfer hook
+ * @param context - Transfer context data
+ * @returns TransferHookInstruction - Formatted instruction
+ */
+declare function createTransferHookInstruction(hookProgramId: Address$1, context: TransferHookContext): TransferHookInstruction;
+/**
+ * Token metadata structure (simplified)
+ */
+interface TokenMetadata {
+    /** Token name */
+    name: string;
+    /** Token symbol */
+    symbol: string;
+    /** Token description */
+    description: string;
+    /** Token image URI */
+    image?: string;
+    /** External URI for additional metadata */
+    externalUri?: string;
+    /** Additional attributes */
+    attributes?: {
+        trait_type: string;
+        value: string;
+    }[];
+}
+/**
+ * Metadata pointer configuration
+ */
+interface MetadataPointerConfig {
+    /** Authority that can update metadata pointer */
+    authority: Address$1 | null;
+    /** Address where metadata is stored */
+    metadataAddress: Address$1 | null;
+}
+/**
+ * Serialize token metadata for on-chain storage
+ *
+ * @param metadata - Token metadata object
+ * @returns Uint8Array - Serialized metadata
+ */
+declare function serializeTokenMetadata(metadata: TokenMetadata): Uint8Array;
+/**
+ * Deserialize token metadata from on-chain storage
+ *
+ * @param data - Serialized metadata bytes
+ * @returns TokenMetadata - Parsed metadata object
+ */
+declare function deserializeTokenMetadata(data: Uint8Array): TokenMetadata;
+/**
+ * Token account state options for Token 2022
+ */
+declare enum TokenAccountState {
+    /** Account is uninitialized */
+    UNINITIALIZED = 0,
+    /** Account is initialized and usable */
+    INITIALIZED = 1,
+    /** Account is frozen (transfers disabled) */
+    FROZEN = 2
+}
+/**
+ * CPI Guard configuration
+ */
+interface CpiGuardConfig {
+    /** Whether CPI guard is enabled */
+    enabled: boolean;
+    /** Authority that can toggle CPI guard */
+    authority: Address$1 | null;
+}
+/**
+ * Non-transferable token configuration
+ */
+interface NonTransferableConfig {
+    /** Whether the token is non-transferable */
+    nonTransferable: boolean;
+}
+/**
+ * Immutable owner configuration
+ */
+interface ImmutableOwnerConfig {
+    /** Whether the account has immutable owner */
+    immutable: boolean;
+}
+/**
+ * Check if account state allows transfers
+ *
+ * @param state - Current account state
+ * @param isNonTransferable - Whether token is non-transferable
+ * @param isFrozen - Whether account is frozen
+ * @returns boolean - True if transfers are allowed
+ */
+declare function canTransfer(state: TokenAccountState, isNonTransferable?: boolean, isFrozen?: boolean): boolean;
+/**
+ * Get required extensions for account creation
+ *
+ * @param extensions - Desired extensions
+ * @returns TokenExtension[] - Required extensions in dependency order
+ */
+declare function getRequiredExtensions(extensions: TokenExtension[]): TokenExtension[];
+/**
+ * Convert basis points to percentage
+ *
+ * @param basisPoints - Basis points (10000 = 100%)
+ * @returns number - Percentage as decimal (1.0 = 100%)
+ */
+declare function basisPointsToPercentage(basisPoints: number): number;
+/**
+ * Convert percentage to basis points
+ *
+ * @param percentage - Percentage as decimal (1.0 = 100%)
+ * @returns number - Basis points
+ */
+declare function percentageToBasisPoints(percentage: number): number;
+/**
+ * Format basis points as readable percentage
+ *
+ * @param basisPoints - Basis points
+ * @returns string - Formatted percentage (e.g., "2.50%")
+ */
+declare function formatBasisPoints(basisPoints: number): string;
+/**
+ * Estimate gas costs for Token 2022 operations
+ *
+ * @param operation - Type of operation
+ * @param extensions - Extensions involved
+ * @returns bigint - Estimated compute units
+ */
+declare function estimateComputeUnits(operation: 'transfer' | 'create_account' | 'mint' | 'burn', extensions?: TokenExtension[]): bigint;
+/**
+ * Create transfer fee configuration with validation
+ */
+declare function createTransferFeeConfig(params: {
+    transferFeeBasisPoints: number;
+    maximumFee: bigint;
+    transferFeeConfigAuthority: Address$1 | null;
+    withdrawWithheldAuthority: Address$1 | null;
+}): TransferFeeConfig;
+/**
+ * Create interest bearing configuration with validation
+ */
+declare function createInterestBearingConfig(params: {
+    rateAuthority: Address$1 | null;
+    currentRate: number;
+}): InterestBearingConfig;
+/**
+ * Parse token extension data from raw bytes
+ */
+declare function parseTokenExtension(extensionType: 'TransferFeeConfig' | 'InterestBearingConfig' | string, data: Uint8Array): TransferFeeConfig | InterestBearingConfig;
+
+type token2022Extensions_ConfidentialAccountState = ConfidentialAccountState;
+type token2022Extensions_ConfidentialTransferProof = ConfidentialTransferProof;
+type token2022Extensions_CpiGuardConfig = CpiGuardConfig;
+type token2022Extensions_ImmutableOwnerConfig = ImmutableOwnerConfig;
+type token2022Extensions_InterestCalculation = InterestCalculation;
+type token2022Extensions_MetadataPointerConfig = MetadataPointerConfig;
+type token2022Extensions_NonTransferableConfig = NonTransferableConfig;
+type token2022Extensions_TokenAccountState = TokenAccountState;
+declare const token2022Extensions_TokenAccountState: typeof TokenAccountState;
+type token2022Extensions_TokenMetadata = TokenMetadata;
+type token2022Extensions_TransferFeeCalculation = TransferFeeCalculation;
+type token2022Extensions_TransferFeeConfig = TransferFeeConfig;
+type token2022Extensions_TransferHookContext = TransferHookContext;
+type token2022Extensions_TransferHookInstruction = TransferHookInstruction;
+declare const token2022Extensions_basisPointsToPercentage: typeof basisPointsToPercentage;
+declare const token2022Extensions_calculateCompoundInterest: typeof calculateCompoundInterest;
+declare const token2022Extensions_calculateInterest: typeof calculateInterest;
+declare const token2022Extensions_calculateRequiredAmountForNetTransfer: typeof calculateRequiredAmountForNetTransfer;
+declare const token2022Extensions_calculateTransferFee: typeof calculateTransferFee;
+declare const token2022Extensions_canTransfer: typeof canTransfer;
+declare const token2022Extensions_createInterestBearingConfig: typeof createInterestBearingConfig;
+declare const token2022Extensions_createTransferFeeConfig: typeof createTransferFeeConfig;
+declare const token2022Extensions_createTransferHookInstruction: typeof createTransferHookInstruction;
+declare const token2022Extensions_deserializeTokenMetadata: typeof deserializeTokenMetadata;
+declare const token2022Extensions_estimateAccumulatedFees: typeof estimateAccumulatedFees;
+declare const token2022Extensions_estimateComputeUnits: typeof estimateComputeUnits;
+declare const token2022Extensions_formatBasisPoints: typeof formatBasisPoints;
+declare const token2022Extensions_generateConfidentialTransferProof: typeof generateConfidentialTransferProof;
+declare const token2022Extensions_getRequiredExtensions: typeof getRequiredExtensions;
+declare const token2022Extensions_parseTokenExtension: typeof parseTokenExtension;
+declare const token2022Extensions_percentageToBasisPoints: typeof percentageToBasisPoints;
+declare const token2022Extensions_serializeTokenMetadata: typeof serializeTokenMetadata;
+declare const token2022Extensions_validateTransferHookInstruction: typeof validateTransferHookInstruction;
+declare const token2022Extensions_verifyConfidentialTransferProof: typeof verifyConfidentialTransferProof;
+declare namespace token2022Extensions {
+  export { type token2022Extensions_ConfidentialAccountState as ConfidentialAccountState, type token2022Extensions_ConfidentialTransferProof as ConfidentialTransferProof, type token2022Extensions_CpiGuardConfig as CpiGuardConfig, type token2022Extensions_ImmutableOwnerConfig as ImmutableOwnerConfig, type token2022Extensions_InterestCalculation as InterestCalculation, type token2022Extensions_MetadataPointerConfig as MetadataPointerConfig, type token2022Extensions_NonTransferableConfig as NonTransferableConfig, token2022Extensions_TokenAccountState as TokenAccountState, type token2022Extensions_TokenMetadata as TokenMetadata, type token2022Extensions_TransferFeeCalculation as TransferFeeCalculation, type token2022Extensions_TransferFeeConfig as TransferFeeConfig, type token2022Extensions_TransferHookContext as TransferHookContext, type token2022Extensions_TransferHookInstruction as TransferHookInstruction, token2022Extensions_basisPointsToPercentage as basisPointsToPercentage, token2022Extensions_calculateCompoundInterest as calculateCompoundInterest, token2022Extensions_calculateInterest as calculateInterest, token2022Extensions_calculateRequiredAmountForNetTransfer as calculateRequiredAmountForNetTransfer, token2022Extensions_calculateTransferFee as calculateTransferFee, token2022Extensions_canTransfer as canTransfer, token2022Extensions_createInterestBearingConfig as createInterestBearingConfig, token2022Extensions_createTransferFeeConfig as createTransferFeeConfig, token2022Extensions_createTransferHookInstruction as createTransferHookInstruction, token2022Extensions_deserializeTokenMetadata as deserializeTokenMetadata, token2022Extensions_estimateAccumulatedFees as estimateAccumulatedFees, token2022Extensions_estimateComputeUnits as estimateComputeUnits, token2022Extensions_formatBasisPoints as formatBasisPoints, token2022Extensions_generateConfidentialTransferProof as generateConfidentialTransferProof, token2022Extensions_getRequiredExtensions as getRequiredExtensions, token2022Extensions_parseTokenExtension as parseTokenExtension, token2022Extensions_percentageToBasisPoints as percentageToBasisPoints, token2022Extensions_serializeTokenMetadata as serializeTokenMetadata, token2022Extensions_validateTransferHookInstruction as validateTransferHookInstruction, token2022Extensions_verifyConfidentialTransferProof as verifyConfidentialTransferProof };
+}
+
+/**
+ * Governance Helper Utilities
+ *
+ * Comprehensive utilities for RBAC management, multi-signature wallets,
+ * proposal lifecycle, and voting mechanisms.
+ */
+
+/**
+ * Derive multisig account PDA
+ */
+declare function deriveMultisigPda(programId: Address, authority: Address, multisigId: bigint): Promise<Address>;
+/**
+ * Derive proposal account PDA
+ */
+declare function deriveProposalPda(programId: Address, multisig: Address, proposalId: bigint): Promise<Address>;
+/**
+ * Derive RBAC account PDA
+ */
+declare function deriveRbacPda(programId: Address, admin: Address): Promise<Address>;
+declare class MultisigUtils {
+    /**
+     * Calculate if a multisig action has reached threshold
+     */
+    static hasReachedThreshold(multisig: Multisig, approvalCount: number): boolean;
+    /**
+     * Check if an address is a signer on the multisig
+     */
+    static isSigner(multisig: Multisig, address: Address): boolean;
+    /**
+     * Calculate remaining signatures needed
+     */
+    static remainingSignatures(multisig: Multisig, currentApprovals: number): number;
+    /**
+     * Validate multisig configuration
+     */
+    static validateConfiguration(signers: Address[], threshold: number): {
+        valid: boolean;
+        error?: string;
+    };
+    /**
+     * Generate multisig configuration summary
+     */
+    static generateSummary(multisig: Multisig): string;
+}
+declare class ProposalUtils {
+    /**
+     * Check if proposal is in voting period
+     */
+    static isVotingOpen(proposal: GovernanceProposal): boolean;
+    /**
+     * Check if proposal has expired
+     */
+    static hasExpired(proposal: GovernanceProposal): boolean;
+    /**
+     * Calculate time remaining for voting
+     */
+    static timeRemaining(proposal: GovernanceProposal): bigint;
+    /**
+     * Format time remaining as human-readable string
+     */
+    static formatTimeRemaining(proposal: GovernanceProposal): string;
+    /**
+     * Calculate if proposal has reached quorum
+     */
+    static hasReachedQuorum(votingResults: VotingResults, quorumRequirements: QuorumRequirements, totalEligibleVoters: number): boolean;
+    /**
+     * Calculate voting results summary
+     */
+    static calculateResults(votingResults: VotingResults): {
+        total: number;
+        forPercentage: number;
+        againstPercentage: number;
+        abstainPercentage: number;
+        passed: boolean;
+    };
+    /**
+     * Validate proposal
+     */
+    static validateProposal(proposal: GovernanceProposal): {
+        valid: boolean;
+        error?: string;
+    };
+}
+declare class RbacUtils {
+    /**
+     * Check if a user has a specific permission
+     */
+    static hasPermission(rbac: RbacConfig, user: Address, permission: string): boolean;
+    /**
+     * Get user's role
+     */
+    static getUserRole(rbac: RbacConfig, user: Address): Role | null;
+    /**
+     * Check if permission string is valid
+     */
+    static isValidPermission(permission: string): boolean;
+    /**
+     * Validate role configuration
+     */
+    static validateRole(role: Role): {
+        valid: boolean;
+        error?: string;
+    };
+    /**
+     * Generate permission summary
+     */
+    static generatePermissionSummary(permissions: Permission[]): string;
+}
+declare class VotingUtils {
+    /**
+     * Calculate vote weight based on token holdings or other factors
+     */
+    static calculateVoteWeight(baseWeight: number, tokenBalance?: bigint, stakeDuration?: bigint): number;
+    /**
+     * Format vote choice as string
+     */
+    static formatVoteChoice(voteChoice: VoteChoice): string;
+    /**
+     * Calculate if simple majority is reached
+     */
+    static hasSimpleMajority(votingResults: VotingResults): boolean;
+    /**
+     * Calculate if supermajority is reached (2/3)
+     */
+    static hasSupermajority(votingResults: VotingResults): boolean;
+}
+declare const PERMISSION_TEMPLATES: {
+    ADMIN: {
+        CREATE_PROPOSAL: {
+            action: string;
+            resource: string;
+        };
+        EXECUTE_PROPOSAL: {
+            action: string;
+            resource: string;
+        };
+        MANAGE_ROLES: {
+            action: string;
+            resource: string;
+        };
+        MANAGE_TREASURY: {
+            action: string;
+            resource: string;
+        };
+    };
+    MEMBER: {
+        VOTE: {
+            action: string;
+            resource: string;
+        };
+        VIEW: {
+            action: string;
+            resource: string;
+        };
+        COMMENT: {
+            action: string;
+            resource: string;
+        };
+    };
+    MODERATOR: {
+        CANCEL_PROPOSAL: {
+            action: string;
+            resource: string;
+        };
+        MODERATE_COMMENTS: {
+            action: string;
+            resource: string;
+        };
+        VIEW_REPORTS: {
+            action: string;
+            resource: string;
+        };
+    };
+};
+declare const ROLE_TEMPLATES: {
+    ADMIN: {
+        name: string;
+        description: string;
+        permissions: ({
+            action: string;
+            resource: string;
+        } | {
+            action: string;
+            resource: string;
+        } | {
+            action: string;
+            resource: string;
+        } | {
+            action: string;
+            resource: string;
+        })[];
+    };
+    MEMBER: {
+        name: string;
+        description: string;
+        permissions: ({
+            action: string;
+            resource: string;
+        } | {
+            action: string;
+            resource: string;
+        } | {
+            action: string;
+            resource: string;
+        })[];
+    };
+    MODERATOR: {
+        name: string;
+        description: string;
+        permissions: {
+            action: string;
+            resource: string;
+        }[];
+    };
+};
+interface GovernanceAnalytics {
+    totalProposals: number;
+    activeProposals: number;
+    passedProposals: number;
+    failedProposals: number;
+    averageVoterTurnout: number;
+    topVoters: {
+        address: Address;
+        voteCount: number;
+    }[];
+    proposalCategories: {
+        category: string;
+        count: number;
+    }[];
+}
+declare class GovernanceAnalyticsUtils {
+    /**
+     * Calculate governance health score (0-100)
+     */
+    static calculateHealthScore(analytics: GovernanceAnalytics): number;
+    /**
+     * Generate governance summary report
+     */
+    static generateSummaryReport(analytics: GovernanceAnalytics): string;
+}
+
+type governanceHelpers_GovernanceAnalytics = GovernanceAnalytics;
+type governanceHelpers_GovernanceAnalyticsUtils = GovernanceAnalyticsUtils;
+declare const governanceHelpers_GovernanceAnalyticsUtils: typeof GovernanceAnalyticsUtils;
+type governanceHelpers_MultisigUtils = MultisigUtils;
+declare const governanceHelpers_MultisigUtils: typeof MultisigUtils;
+declare const governanceHelpers_PERMISSION_TEMPLATES: typeof PERMISSION_TEMPLATES;
+type governanceHelpers_ProposalUtils = ProposalUtils;
+declare const governanceHelpers_ProposalUtils: typeof ProposalUtils;
+declare const governanceHelpers_ROLE_TEMPLATES: typeof ROLE_TEMPLATES;
+type governanceHelpers_RbacUtils = RbacUtils;
+declare const governanceHelpers_RbacUtils: typeof RbacUtils;
+type governanceHelpers_VotingUtils = VotingUtils;
+declare const governanceHelpers_VotingUtils: typeof VotingUtils;
+declare const governanceHelpers_deriveMultisigPda: typeof deriveMultisigPda;
+declare const governanceHelpers_deriveProposalPda: typeof deriveProposalPda;
+declare const governanceHelpers_deriveRbacPda: typeof deriveRbacPda;
+declare namespace governanceHelpers {
+  export { type governanceHelpers_GovernanceAnalytics as GovernanceAnalytics, governanceHelpers_GovernanceAnalyticsUtils as GovernanceAnalyticsUtils, governanceHelpers_MultisigUtils as MultisigUtils, governanceHelpers_PERMISSION_TEMPLATES as PERMISSION_TEMPLATES, governanceHelpers_ProposalUtils as ProposalUtils, governanceHelpers_ROLE_TEMPLATES as ROLE_TEMPLATES, governanceHelpers_RbacUtils as RbacUtils, governanceHelpers_VotingUtils as VotingUtils, governanceHelpers_deriveMultisigPda as deriveMultisigPda, governanceHelpers_deriveProposalPda as deriveProposalPda, governanceHelpers_deriveRbacPda as deriveRbacPda };
+}
+
+/**
+ * IPFS client implementation with multiple provider support
+ */
+
+/**
+ * Main IPFS client with multiple provider support and fallback
+ */
+declare class IPFSClient {
+    private config;
+    private providers;
+    private cache;
+    constructor(config: IPFSConfig);
+    private initializeProviders;
+    private createProvider;
+    /**
+     * Upload content to IPFS with automatic fallback
+     */
+    upload(content: string | Uint8Array, options?: IPFSUploadOptions): Promise<IPFSOperationResult<IPFSUploadResult>>;
+    /**
+     * Retrieve content from IPFS with caching and fallback
+     */
+    retrieve(hash: string, options?: IPFSRetrievalOptions): Promise<IPFSOperationResult<IPFSRetrievalResult>>;
+    /**
+     * Pin content on IPFS
+     */
+    pin(hash: string): Promise<IPFSOperationResult<IPFSPinResult>>;
+    /**
+     * Store content with automatic IPFS decision based on size
+     */
+    storeContent(content: string, type: IPFSContentMetadata['type'], options?: IPFSUploadOptions & {
+        forceIpfs?: boolean;
+    }): Promise<ContentStorageResult>;
+    /**
+     * Retrieve content that may be stored inline or on IPFS
+     */
+    retrieveContent(uri: string): Promise<string>;
+    /**
+     * Retry wrapper for operations
+     */
+    private withRetry;
+    /**
+     * Calculate checksum for content integrity
+     */
+    private calculateChecksum;
+    /**
+     * Clear cache
+     */
+    clearCache(): void;
+    /**
+     * Get cache stats
+     */
+    getCacheStats(): {
+        size: number;
+        keys: string[];
+    };
+}
+
+type ipfsClient_IPFSClient = IPFSClient;
+declare const ipfsClient_IPFSClient: typeof IPFSClient;
+declare namespace ipfsClient {
+  export { ipfsClient_IPFSClient as IPFSClient };
+}
+
+/**
+ * ElGamal Encryption Implementation for Token-2022 Confidential Transfers
+ *
+ * Implements twisted ElGamal encryption over curve25519 as specified
+ * by Solana's confidential transfer extension.
+ *
+ * Key features:
+ * - Twisted ElGamal with Pedersen commitments
+ * - Homomorphic addition/subtraction of ciphertexts
+ * - Efficient decryption for small values (up to 32 bits)
+ * - Compatible with Solana's ZK ElGamal Proof Program
+ */
+
+/**
+ * ElGamal public key (32 bytes)
+ */
+type ElGamalPubkey = Uint8Array;
+/**
+ * ElGamal secret key (32 bytes)
+ */
+type ElGamalSecretKey = Uint8Array;
+/**
+ * ElGamal keypair
+ */
+interface ElGamalKeypair {
+    publicKey: ElGamalPubkey;
+    secretKey: ElGamalSecretKey;
+}
+/**
+ * Pedersen commitment (curve point)
+ */
+interface PedersenCommitment {
+    /** Commitment to the value */
+    commitment: Uint8Array;
+}
+/**
+ * Decrypt handle for ElGamal ciphertext
+ */
+interface DecryptHandle {
+    /** Encrypted randomness */
+    handle: Uint8Array;
+}
+/**
+ * Twisted ElGamal ciphertext
+ * Split into Pedersen commitment and decrypt handle
+ */
+interface ElGamalCiphertext {
+    /** Pedersen commitment (independent of pubkey) */
+    commitment: PedersenCommitment;
+    /** Decrypt handle (encodes randomness) */
+    handle: DecryptHandle;
+}
+/**
+ * Generate a new ElGamal keypair
+ *
+ * @param seed - Optional seed for deterministic generation
+ * @returns ElGamalKeypair
+ */
+declare function generateElGamalKeypair(seed?: Uint8Array): ElGamalKeypair;
+
+/**
+ * Client-Side Encryption Service
+ *
+ * Provides client-side encryption for privacy features while the
+ * ZK ElGamal Proof Program is disabled. This is a temporary solution
+ * that will be replaced/enhanced when ZK proofs are re-enabled.
+ */
+
+interface EncryptedData {
+    /** Encrypted payload */
+    ciphertext: ElGamalCiphertext;
+    /** Public key used for encryption */
+    publicKey: ElGamalPubkey;
+    /** Commitment to the plaintext (for verification) */
+    commitment: Uint8Array;
+    /** Timestamp of encryption */
+    timestamp: number;
+    /** Version for future compatibility */
+    version: number;
+}
+interface PrivateMetadata {
+    /** Encrypted data */
+    encrypted: EncryptedData;
+    /** Public metadata (not encrypted) */
+    public: Record<string, unknown>;
+    /** IPFS hash if stored off-chain */
+    ipfsHash?: string;
+    /** On-chain storage hash */
+    storageHash: Uint8Array;
+}
+interface ClientEncryptionOptions {
+    /** Whether to generate range proofs locally */
+    generateLocalProofs?: boolean;
+    /** Whether to store on IPFS */
+    useIpfsStorage?: boolean;
+    /** Custom encryption keypair (uses ephemeral if not provided) */
+    encryptionKeypair?: ElGamalKeypair;
+}
+declare class ClientEncryptionService {
+    private keypair;
+    private featureFlags;
+    constructor(options?: ClientEncryptionOptions);
+    /**
+     * Encrypt an amount for a recipient
+     */
+    encryptAmountForRecipient(amount: bigint, recipientPubkey: ElGamalPubkey): Promise<EncryptedData>;
+    /**
+     * Decrypt an amount (requires private key)
+     */
+    decryptAmount(encrypted: EncryptedData, secretKey: Uint8Array): Promise<bigint>;
+    /**
+     * Encrypt arbitrary data
+     */
+    encryptData(data: Uint8Array, recipientPubkey: ElGamalPubkey): Promise<EncryptedData>;
+    /**
+     * Create private metadata with mixed public/private data
+     */
+    createPrivateMetadata(privateData: Record<string, unknown>, publicData: Record<string, unknown>, recipientPubkey: ElGamalPubkey): Promise<PrivateMetadata>;
+    /**
+     * Verify encrypted data integrity
+     */
+    verifyCommitment(encrypted: EncryptedData): Promise<boolean>;
+    /**
+     * Create a commitment to an amount
+     */
+    private createCommitment;
+    /**
+     * Create a commitment to arbitrary data
+     */
+    private createDataCommitment;
+    /**
+     * Create storage hash for on-chain reference
+     */
+    private createStorageHash;
+    /**
+     * Combine multiple ciphertext chunks
+     */
+    private combineChunks;
+}
+/**
+ * Generate a local privacy proof (not verified on-chain)
+ * This is a placeholder for when ZK proofs are unavailable
+ */
+declare function generateLocalPrivacyProof(encrypted: EncryptedData, statement: string): Promise<{
+    proof: Uint8Array;
+    publicInputs: Uint8Array;
+    timestamp: number;
+}>;
+/**
+ * Verify a local privacy proof
+ */
+declare function verifyLocalPrivacyProof(proof: Uint8Array, publicInputs: Uint8Array, encrypted: EncryptedData): Promise<boolean>;
+/**
+ * Prepare encrypted data for future ZK proof migration
+ */
+interface ZkMigrationData {
+    /** Current encrypted data */
+    clientEncrypted: EncryptedData;
+    /** Metadata for ZK proof generation */
+    zkMetadata: {
+        amount?: bigint;
+        randomness?: Uint8Array;
+        publicKey: ElGamalPubkey;
+    };
+    /** Migration version */
+    migrationVersion: number;
+}
+/**
+ * Prepare data for future ZK proof migration
+ */
+declare function prepareForZkMigration(encrypted: EncryptedData, amount?: bigint, randomness?: Uint8Array): ZkMigrationData;
+
+type clientEncryption_ClientEncryptionOptions = ClientEncryptionOptions;
+type clientEncryption_ClientEncryptionService = ClientEncryptionService;
+declare const clientEncryption_ClientEncryptionService: typeof ClientEncryptionService;
+type clientEncryption_ElGamalCiphertext = ElGamalCiphertext;
+type clientEncryption_ElGamalKeypair = ElGamalKeypair;
+type clientEncryption_ElGamalPubkey = ElGamalPubkey;
+type clientEncryption_EncryptedData = EncryptedData;
+type clientEncryption_PrivateMetadata = PrivateMetadata;
+type clientEncryption_ZkMigrationData = ZkMigrationData;
+declare const clientEncryption_generateElGamalKeypair: typeof generateElGamalKeypair;
+declare const clientEncryption_generateLocalPrivacyProof: typeof generateLocalPrivacyProof;
+declare const clientEncryption_prepareForZkMigration: typeof prepareForZkMigration;
+declare const clientEncryption_verifyLocalPrivacyProof: typeof verifyLocalPrivacyProof;
+declare namespace clientEncryption {
+  export { type clientEncryption_ClientEncryptionOptions as ClientEncryptionOptions, clientEncryption_ClientEncryptionService as ClientEncryptionService, type clientEncryption_ElGamalCiphertext as ElGamalCiphertext, type clientEncryption_ElGamalKeypair as ElGamalKeypair, type clientEncryption_ElGamalPubkey as ElGamalPubkey, type clientEncryption_EncryptedData as EncryptedData, type clientEncryption_PrivateMetadata as PrivateMetadata, type clientEncryption_ZkMigrationData as ZkMigrationData, clientEncryption_generateElGamalKeypair as generateElGamalKeypair, clientEncryption_generateLocalPrivacyProof as generateLocalPrivacyProof, clientEncryption_prepareForZkMigration as prepareForZkMigration, clientEncryption_verifyLocalPrivacyProof as verifyLocalPrivacyProof };
+}
+
+/**
+ * Private Metadata Storage
+ *
+ * Handles off-chain storage of encrypted data with on-chain references.
+ * Supports IPFS and other storage backends for private data while
+ * maintaining on-chain integrity verification.
+ */
+
+interface StorageProvider {
+    store(data: Uint8Array): Promise<string>;
+    retrieve(hash: string): Promise<Uint8Array>;
+    delete(hash: string): Promise<boolean>;
+}
+interface StoredPrivateData {
+    /** On-chain reference hash */
+    onChainHash: Uint8Array;
+    /** Storage provider identifier */
+    storageProvider: 'ipfs' | 'arweave' | 'custom';
+    /** Storage location (IPFS hash, Arweave ID, etc) */
+    storageLocation: string;
+    /** Encryption metadata */
+    encryptionMetadata: {
+        version: number;
+        publicKey: Uint8Array;
+        timestamp: number;
+    };
+    /** Size of stored data */
+    size: number;
+    /** Content type hint */
+    contentType?: string;
+}
+interface PrivateDataReference {
+    /** Account storing the reference */
+    account: Address;
+    /** Storage details */
+    storage: StoredPrivateData;
+    /** Access control */
+    accessControl: {
+        owner: Address;
+        allowedReaders: Address[];
+        expiresAt?: number;
+    };
+}
+/**
+ * Mock IPFS storage provider (for testing)
+ * In production, this would use actual IPFS
+ */
+declare class MockIPFSProvider implements StorageProvider {
+    private storage;
+    store(data: Uint8Array): Promise<string>;
+    retrieve(hash: string): Promise<Uint8Array>;
+    delete(hash: string): Promise<boolean>;
+}
+/**
+ * Local storage provider (for development)
+ */
+declare class LocalStorageProvider implements StorageProvider {
+    private prefix;
+    store(data: Uint8Array): Promise<string>;
+    retrieve(hash: string): Promise<Uint8Array>;
+    delete(hash: string): Promise<boolean>;
+}
+declare class PrivateMetadataStorage {
+    private encryptionService;
+    private storageProvider;
+    private featureFlags;
+    constructor(storageProvider?: StorageProvider, encryptionService?: ClientEncryptionService);
+    /**
+     * Store private data off-chain with on-chain reference
+     */
+    storePrivateData(data: Record<string, unknown>, publicMetadata: Record<string, unknown>, recipientPubkey: Uint8Array): Promise<StoredPrivateData>;
+    /**
+     * Retrieve private data from off-chain storage
+     */
+    retrievePrivateData(reference: StoredPrivateData, secretKey: Uint8Array): Promise<{
+        privateData: Record<string, unknown>;
+        publicData: Record<string, unknown>;
+    }>;
+    /**
+     * Create a verifiable link between on-chain and off-chain data
+     */
+    createVerifiableLink(onChainData: Record<string, unknown>, offChainReference: StoredPrivateData): Uint8Array;
+    /**
+     * Batch store multiple private data items
+     */
+    batchStore(items: {
+        data: Record<string, unknown>;
+        publicMetadata: Record<string, unknown>;
+        recipientPubkey: Uint8Array;
+    }[]): Promise<StoredPrivateData[]>;
+    private serializePrivateMetadata;
+    private deserializePrivateMetadata;
+    private createOnChainHash;
+    private decryptPrivateData;
+}
+/**
+ * Query builder for private data
+ */
+declare class PrivateDataQuery {
+    private conditions;
+    where(field: string, operator: 'eq' | 'gt' | 'lt' | 'contains', value: unknown): this;
+    whereEncrypted(field: string, commitment: Uint8Array): this;
+    /**
+     * Execute query against encrypted data
+     * Note: This is limited compared to on-chain queries
+     */
+    execute(storage: PrivateMetadataStorage, references: StoredPrivateData[]): Promise<StoredPrivateData[]>;
+}
+/**
+ * Calculate storage cost estimate
+ */
+declare function estimateStorageCost(dataSize: number, provider: 'ipfs' | 'arweave'): {
+    cost: bigint;
+    currency: string;
+};
+/**
+ * Create a privacy manifest for transparency
+ */
+interface PrivacyManifest {
+    dataTypes: string[];
+    encryptionMethod: 'elgamal' | 'aes256';
+    storageLocation: 'ipfs' | 'arweave' | 'on-chain';
+    retentionPeriod?: number;
+    accessControl: 'owner-only' | 'public-read' | 'permissioned';
+}
+declare function createPrivacyManifest(dataTypes: string[], options?: Partial<PrivacyManifest>): PrivacyManifest;
+
+interface ProofGenerationResult {
+    proof: Uint8Array;
+    commitment?: Uint8Array;
+    instruction?: IInstruction;
+    requiresZkProgram: boolean;
+}
+declare enum ProofMode {
+    /** Use ZK program if available, error if not */
+    ZK_PROGRAM_ONLY = "zk_program_only",
+    /** Use ZK program if available, fallback to local if not */
+    ZK_PROGRAM_WITH_FALLBACK = "zk_program_with_fallback",
+    /** Always use local verification (for testing) */
+    LOCAL_ONLY = "local_only",
+    /** Automatically detect based on network status */
+    AUTO_DETECT = "auto_detect"
+}
+interface ProofGenerationOptions {
+    mode?: ProofMode;
+    connection?: Rpc<GetAccountInfoApi>;
+}
+/**
+ * Generate a range proof with proper commitment handling
+ *
+ * This creates a Pedersen commitment and bulletproof that can be
+ * verified either by the ZK program or locally.
+ */
+declare function generateRangeProofWithCommitment(amount: bigint, randomness: Uint8Array, options?: ProofGenerationOptions): Promise<ProofGenerationResult>;
+/**
+ * Generate a complete transfer proof with all components
+ */
+declare function generateTransferProofWithInstruction(sourceBalance: ElGamalCiphertext, transferAmount: bigint, sourcePubkey: ElGamalPubkey, destPubkey: ElGamalPubkey, sourceRandomness: Uint8Array, options?: ProofGenerationOptions): Promise<{
+    transferProof: TransferProofData;
+    newSourceBalance: ElGamalCiphertext;
+    destCiphertext: ElGamalCiphertext;
+    instruction?: IInstruction;
+    requiresZkProgram: boolean;
+}>;
+/**
+ * Check if ZK program is available
+ */
+declare function isZkProgramAvailable(connection?: Rpc<GetAccountInfoApi>): Promise<boolean>;
+/**
+ * Get ZK program status message
+ */
+declare function getZkProgramStatus(connection?: Rpc<GetAccountInfoApi>): Promise<string>;
+
+/**
+ * Confidential Transfer Manager
+ *
+ * High-level interface for managing confidential transfers with Token-2022.
+ * Handles proof generation, account configuration, and transfer operations
+ * with proper fallback behavior while the ZK program is disabled.
+ */
+
+interface ConfidentialAccount {
+    /** The account address */
+    address: Address;
+    /** The mint address */
+    mint: Address;
+    /** ElGamal public key for this account */
+    elgamalPubkey: ElGamalPubkey;
+    /** Current encrypted balance */
+    encryptedBalance: ElGamalCiphertext;
+    /** Decryptable available balance */
+    decryptableAvailableBalance: bigint;
+    /** Maximum pending balance credit counter */
+    maxPendingBalanceCredits: bigint;
+    /** Whether the account is configured for confidential transfers */
+    configured: boolean;
+}
+interface ConfidentialTransferConfig {
+    /** The mint to configure */
+    mint: Address;
+    /** Authority for confidential transfers */
+    authority: TransactionSigner;
+    /** Whether to auto-approve new accounts */
+    autoApproveNewAccounts: boolean;
+    /** Optional auditor ElGamal public key */
+    auditorElgamalPubkey?: ElGamalPubkey;
+}
+interface ConfigureAccountParams {
+    /** The token account to configure */
+    account: Address;
+    /** The mint address */
+    mint: Address;
+    /** The account's ElGamal keypair */
+    elgamalKeypair: ElGamalKeypair;
+    /** Initial decryptable balance (usually 0) */
+    decryptableZeroBalance: bigint;
+    /** Maximum pending balance credit counter */
+    maxPendingBalanceCredits: bigint;
+    /** Account owner/authority */
+    authority: TransactionSigner;
+    /** Proof mode */
+    proofMode?: ProofMode;
+}
+interface DepositParams {
+    /** The account to deposit to */
+    account: Address;
+    /** The mint address */
+    mint: Address;
+    /** Amount to deposit (in token units) */
+    amount: bigint;
+    /** Token decimals */
+    decimals: number;
+    /** Account authority */
+    authority: TransactionSigner;
+    /** Proof mode */
+    proofMode?: ProofMode;
+}
+interface WithdrawParams {
+    /** The account to withdraw from */
+    account: Address;
+    /** The mint address */
+    mint: Address;
+    /** Amount to withdraw (in token units) */
+    amount: bigint;
+    /** Token decimals */
+    decimals: number;
+    /** ElGamal secret key for decryption */
+    elgamalSecretKey: Uint8Array;
+    /** New decryptable available balance after withdrawal */
+    newDecryptableBalance: bigint;
+    /** Account authority */
+    authority: TransactionSigner;
+    /** Proof mode */
+    proofMode?: ProofMode;
+}
+interface TransferParams {
+    /** Source account */
+    source: Address;
+    /** Destination account */
+    destination: Address;
+    /** The mint address */
+    mint: Address;
+    /** Transfer amount */
+    amount: bigint;
+    /** Source ElGamal keypair */
+    sourceKeypair: ElGamalKeypair;
+    /** Destination ElGamal public key */
+    destElgamalPubkey: ElGamalPubkey;
+    /** New source decryptable balance */
+    newSourceDecryptableBalance: bigint;
+    /** Transfer authority */
+    authority: TransactionSigner;
+    /** Proof mode */
+    proofMode?: ProofMode;
+}
+declare class ConfidentialTransferManager {
+    private rpc;
+    private defaultProofMode;
+    private clientEncryption;
+    private metadataStorage;
+    private featureFlags;
+    constructor(rpc: Rpc<GetAccountInfoApi>, defaultProofMode?: ProofMode);
+    /**
+     * Get the current privacy mode status
+     */
+    getPrivacyStatus(): Promise<{
+        mode: 'zk-proofs' | 'client-encryption' | 'disabled';
+        available: boolean;
+        message: string;
+    }>;
+    /**
+     * Get the current status of the ZK program
+     */
+    getZkProgramStatus(): Promise<string>;
+    /**
+     * Check if ZK program is available
+     */
+    isZkProgramAvailable(): Promise<boolean>;
+    /**
+     * Generate a new ElGamal keypair for an account
+     */
+    generateKeypair(): ElGamalKeypair;
+    /**
+     * Configure a mint for confidential transfers
+     */
+    createConfigureMintInstruction(config: ConfidentialTransferConfig): IInstruction;
+    /**
+     * Configure an account for confidential transfers
+     */
+    createConfigureAccountInstructions(params: ConfigureAccountParams): Promise<{
+        instructions: IInstruction[];
+        proofInstructions: IInstruction[];
+        warnings: string[];
+    }>;
+    /**
+     * Create deposit instructions with dual-mode support
+     */
+    createDepositInstructions(params: DepositParams): Promise<{
+        instructions: IInstruction[];
+        proofInstructions: IInstruction[];
+        encryptedAmount: ElGamalCiphertext;
+        warnings: string[];
+        metadata?: StoredPrivateData;
+    }>;
+    /**
+     * Create transfer instructions with dual-mode support
+     */
+    createTransferInstructions(params: TransferParams): Promise<{
+        instructions: IInstruction[];
+        proofInstructions: IInstruction[];
+        newSourceBalance: ElGamalCiphertext;
+        destCiphertext: ElGamalCiphertext;
+        warnings: string[];
+        metadata?: StoredPrivateData;
+    }>;
+    /**
+     * Generate a zero-balance proof for account configuration
+     */
+    private generateZeroBalanceProof;
+    /**
+     * Get account's ElGamal public key from account data
+     */
+    private getAccountElGamalPubkey;
+    /**
+     * Get encrypted balance from account data
+     */
+    private getEncryptedBalance;
+    /**
+     * Create a transfer hash for metadata reference
+     */
+    private createTransferHash;
+    /**
+     * Monitor ZK program status and switch modes when available
+     */
+    monitorZkProgramAvailability(callback: (status: {
+        enabled: boolean;
+        message: string;
+    }) => void): Promise<() => void>;
+    /**
+     * Create a privacy-preserving work order
+     */
+    createPrivateWorkOrder(params: {
+        title: string;
+        encryptedDetails: EncryptedData;
+        publicMetadata: Record<string, unknown>;
+        recipientPubkey: ElGamalPubkey;
+    }): Promise<{
+        workOrderHash: Uint8Array;
+        metadata: StoredPrivateData;
+        warnings: string[];
+    }>;
+    /**
+     * Serialize ciphertext for instruction data
+     */
+    private serializeCiphertext;
+}
+
+type confidentialTransferManager_ConfidentialAccount = ConfidentialAccount;
+type confidentialTransferManager_ConfidentialTransferConfig = ConfidentialTransferConfig;
+type confidentialTransferManager_ConfidentialTransferManager = ConfidentialTransferManager;
+declare const confidentialTransferManager_ConfidentialTransferManager: typeof ConfidentialTransferManager;
+type confidentialTransferManager_ConfigureAccountParams = ConfigureAccountParams;
+type confidentialTransferManager_DepositParams = DepositParams;
+type confidentialTransferManager_TransferParams = TransferParams;
+type confidentialTransferManager_WithdrawParams = WithdrawParams;
+declare namespace confidentialTransferManager {
+  export { type confidentialTransferManager_ConfidentialAccount as ConfidentialAccount, type confidentialTransferManager_ConfidentialTransferConfig as ConfidentialTransferConfig, confidentialTransferManager_ConfidentialTransferManager as ConfidentialTransferManager, type confidentialTransferManager_ConfigureAccountParams as ConfigureAccountParams, type confidentialTransferManager_DepositParams as DepositParams, type confidentialTransferManager_TransferParams as TransferParams, type confidentialTransferManager_WithdrawParams as WithdrawParams };
+}
+
+/**
+ * Feature Flags for GhostSpeak Protocol
+ *
+ * Centralized feature flag management for enabling/disabling features
+ * based on network conditions and protocol status.
+ */
+interface FeatureFlags {
+    /** Enable confidential transfers (currently in beta) */
+    CONFIDENTIAL_TRANSFERS_ENABLED: boolean;
+    /** Use ZK proofs for verification (disabled until ZK program re-enabled) */
+    USE_ZK_PROOFS: boolean;
+    /** Use client-side encryption as fallback */
+    USE_CLIENT_ENCRYPTION: boolean;
+    /** Enable IPFS integration for private metadata */
+    ENABLE_IPFS_STORAGE: boolean;
+    /** Enable compressed NFTs for agents */
+    ENABLE_COMPRESSED_AGENTS: boolean;
+    /** Enable governance features */
+    ENABLE_GOVERNANCE: boolean;
+    /** Enable analytics collection */
+    ENABLE_ANALYTICS: boolean;
+    /** Show beta/experimental features in UI */
+    SHOW_EXPERIMENTAL_FEATURES: boolean;
+}
+/**
+ * Default feature flags for production
+ */
+declare const DEFAULT_FLAGS: FeatureFlags;
+/**
+ * Development feature flags (all features enabled)
+ */
+declare const DEV_FLAGS: FeatureFlags;
+/**
+ * Feature flag manager
+ */
+declare class FeatureFlagManager {
+    private flags;
+    private overrides;
+    constructor(environment?: 'production' | 'development');
+    /**
+     * Load flag overrides from environment variables
+     */
+    private loadOverridesFromEnv;
+    /**
+     * Get current feature flags
+     */
+    getFlags(): FeatureFlags;
+    /**
+     * Check if a specific feature is enabled
+     */
+    isEnabled(feature: keyof FeatureFlags): boolean;
+    /**
+     * Set a feature flag (runtime override)
+     */
+    setFlag(feature: keyof FeatureFlags, enabled: boolean): void;
+    /**
+     * Reset all overrides
+     */
+    resetOverrides(): void;
+    /**
+     * Get privacy feature status
+     */
+    getPrivacyStatus(): {
+        mode: 'zk-proofs' | 'client-encryption' | 'disabled';
+        beta: boolean;
+        message: string;
+    };
+    /**
+     * Check if we should use ZK proofs or client encryption
+     */
+    shouldUseZkProofs(): boolean;
+    /**
+     * Check if we should use client encryption
+     */
+    shouldUseClientEncryption(): boolean;
+}
+/**
+ * Get or create the global feature flag manager
+ */
+declare function getFeatureFlags(environment?: 'production' | 'development'): FeatureFlagManager;
+/**
+ * Quick helper to check if a feature is enabled
+ */
+declare function isFeatureEnabled(feature: keyof FeatureFlags): boolean;
+/**
+ * Quick helper to get privacy status
+ */
+declare function getPrivacyStatus(): {
+    mode: "zk-proofs" | "client-encryption" | "disabled";
+    beta: boolean;
+    message: string;
+};
+
+declare const featureFlags_DEFAULT_FLAGS: typeof DEFAULT_FLAGS;
+declare const featureFlags_DEV_FLAGS: typeof DEV_FLAGS;
+type featureFlags_FeatureFlagManager = FeatureFlagManager;
+declare const featureFlags_FeatureFlagManager: typeof FeatureFlagManager;
+type featureFlags_FeatureFlags = FeatureFlags;
+declare const featureFlags_getFeatureFlags: typeof getFeatureFlags;
+declare const featureFlags_getPrivacyStatus: typeof getPrivacyStatus;
+declare const featureFlags_isFeatureEnabled: typeof isFeatureEnabled;
+declare namespace featureFlags {
+  export { featureFlags_DEFAULT_FLAGS as DEFAULT_FLAGS, featureFlags_DEV_FLAGS as DEV_FLAGS, featureFlags_FeatureFlagManager as FeatureFlagManager, type featureFlags_FeatureFlags as FeatureFlags, featureFlags_getFeatureFlags as getFeatureFlags, featureFlags_getPrivacyStatus as getPrivacyStatus, featureFlags_isFeatureEnabled as isFeatureEnabled };
+}
+
+export { deriveJobApplicationPda as $, type AccountInspectionResult as A, createMigrationReport as B, simulateMigration as C, type DiscriminatorValidationResult as D, type ErrorContext as E, getMigrationInstructions as F, GhostSpeakSDKError as G, extractLegacyData as H, IPFSClient as I, type MigrationResult as J, runAccountDiagnostics as K, type LegacyAgentData as L, type MigrationPlan as M, runBatchDiagnostics as N, diagnoseAccountFromChain as O, PrivateMetadataStorage as P, diagnoseBatchFromChain as Q, exportDiagnosticReport as R, type DiagnosticReport as S, TokenProgram as T, type BatchDiagnosticReport as U, deriveA2AMessagePda as V, deriveA2ASessionPda as W, deriveUserRegistryPda as X, deriveWorkOrderPda as Y, type ZkMigrationData as Z, deriveJobPostingPda as _, deriveServiceListingPda as a, LocalStorageProvider as a$, deriveWorkDeliveryPda as a0, derivePaymentPda as a1, deriveServicePurchasePda as a2, deriveAgentVerificationPda as a3, withEnhancedErrorsSync as a4, logEnhancedError as a5, validatePreconditions as a6, extractInstructionName as a7, deriveSplTokenAssociatedTokenAddress as a8, deriveToken2022AssociatedTokenAddress as a9, deserializeTokenMetadata as aA, canTransfer as aB, getRequiredExtensions as aC, basisPointsToPercentage as aD, percentageToBasisPoints as aE, formatBasisPoints as aF, estimateComputeUnits as aG, TokenAccountState as aH, type TransferFeeCalculation as aI, type ConfidentialTransferProof as aJ, type InterestCalculation as aK, type TransferHookInstruction as aL, type TransferHookContext as aM, type TokenMetadata as aN, type MetadataPointerConfig as aO, type CpiGuardConfig as aP, type NonTransferableConfig as aQ, type ImmutableOwnerConfig as aR, deriveMultisigPda as aS, deriveProposalPda as aT, ClientEncryptionService as aU, generateLocalPrivacyProof as aV, verifyLocalPrivacyProof as aW, prepareForZkMigration as aX, type PrivateMetadata as aY, type ClientEncryptionOptions as aZ, MockIPFSProvider as a_, getAssociatedTokenAccount as aa, getAllAssociatedTokenAddresses as ab, validateAssociatedTokenAddress as ac, getTokenProgramAddress as ad, getTokenProgramFromAddress as ae, TokenExtension as af, hasTransferFeeExtension as ag, hasConfidentialTransferExtension as ah, hasInterestBearingExtension as ai, getTransferFeeConfig as aj, getConfidentialTransferConfig as ak, getInterestBearingConfig as al, type AssociatedTokenAccount as am, type TransferFeeConfig as an, type ConfidentialTransferConfig$1 as ao, type InterestBearingConfig as ap, calculateTransferFee as aq, calculateRequiredAmountForNetTransfer as ar, estimateAccumulatedFees as as, generateConfidentialTransferProof as at, verifyConfidentialTransferProof as au, calculateInterest as av, calculateCompoundInterest as aw, validateTransferHookInstruction as ax, createTransferHookInstruction as ay, serializeTokenMetadata as az, deriveAssociatedTokenAddress as b, PrivateDataQuery as b0, estimateStorageCost as b1, createPrivacyManifest as b2, type StorageProvider as b3, type StoredPrivateData as b4, type PrivateDataReference as b5, type PrivacyManifest as b6, ConfidentialTransferManager as b7, type ConfidentialAccount as b8, type ConfigureAccountParams as b9, type DepositParams as ba, type WithdrawParams as bb, type TransferParams as bc, getFeatureFlags as bd, isFeatureEnabled as be, FeatureFlagManager as bf, type FeatureFlags as bg, generateRangeProofWithCommitment as bh, generateTransferProofWithInstruction as bi, isZkProgramAvailable as bj, getZkProgramStatus as bk, ProofMode as bl, type ProofGenerationOptions as bm, type ProofGenerationResult as bn, detectTokenProgram as c, deriveAgentPda as d, formatTokenAmount as e, findProgramDerivedAddress as f, getTokenProgramType as g, enhanceTransactionError as h, isToken2022Mint as i, createErrorContext as j, ipfsClient as k, clientEncryption as l, confidentialTransferManager as m, accountDiagnostics as n, governanceHelpers as o, parseTokenAmount as p, featureFlags as q, type EncryptedData as r, type ElGamalCiphertext as s, token2022Extensions as t, safeDecodeAgent as u, validateAccountDiscriminator as v, withEnhancedErrors as w, createDiscriminatorErrorMessage as x, inspectAccountData as y, createMigrationPlan as z };