@ghostspeak/sdk 2.0.8 → 2.0.10

package/dist/{chunk-BQDGRTVP.js → chunk-QWQTPTZ4.js}

@@ -49,22 +49,22 @@ async function signAuthorizationMessage(message, agentKeypair) {
   const signature = nacl.sign.detached(messageBuffer, agentKeypair.secretKey);
   return signature;
 }
-async function verifyAuthorizationSignature(authorization2) {
+async function verifyAuthorizationSignature(authorization) {
   try {
     const message = {
-      agentAddress: authorization2.agentAddress,
-      authorizedSource: authorization2.authorizedSource,
-      indexLimit: authorization2.indexLimit,
-      expiresAt: authorization2.expiresAt,
-      network: authorization2.network,
-      nonce: authorization2.nonce
+      agentAddress: authorization.agentAddress,
+      authorizedSource: authorization.authorizedSource,
+      indexLimit: authorization.indexLimit,
+      expiresAt: authorization.expiresAt,
+      network: authorization.network,
+      nonce: authorization.nonce
     };
     const messageBuffer = createAuthorizationMessage(message);
     const nacl = await import('./nacl-fast-W5BJ3KZ2.js');
-    const agentPubkeyBytes = bs58.decode(authorization2.agentAddress);
+    const agentPubkeyBytes = bs58.decode(authorization.agentAddress);
     const isValid = nacl.sign.detached.verify(
       messageBuffer,
-      authorization2.signature,
+      authorization.signature,
       agentPubkeyBytes
     );
     return isValid;
@@ -89,7 +89,7 @@ async function createSignedAuthorization(params, agentKeypair) {
     nonce
   };
   const signature = await signAuthorizationMessage(message, agentKeypair);
-  const authorization2 = {
+  const authorization = {
     agentAddress,
     authorizedSource: params.authorizedSource,
     indexLimit,
@@ -99,41 +99,35 @@ async function createSignedAuthorization(params, agentKeypair) {
     nonce,
     metadata: params.metadata
   };
-  return authorization2;
+  return authorization;
 }
 function generateNonce() {
-  if (globalThis.crypto) {
-    const buffer2 = new Uint8Array(32);
-    globalThis.crypto.getRandomValues(buffer2);
-    return Buffer.from(buffer2).toString("hex");
-  }
-  const nodeCrypto = eval("require")("crypto");
   const buffer = new Uint8Array(32);
-  nodeCrypto.webcrypto.getRandomValues(buffer);
+  globalThis.crypto.getRandomValues(buffer);
   return Buffer.from(buffer).toString("hex");
 }
-function serializeAuthorization(authorization2) {
+function serializeAuthorization(authorization) {
   return {
-    agentAddress: authorization2.agentAddress,
-    authorizedSource: authorization2.authorizedSource,
-    indexLimit: authorization2.indexLimit,
-    expiresAt: authorization2.expiresAt,
-    network: authorization2.network,
-    signature: bs58.encode(authorization2.signature),
-    nonce: authorization2.nonce,
-    metadata: authorization2.metadata
+    agentAddress: authorization.agentAddress,
+    authorizedSource: authorization.authorizedSource,
+    indexLimit: authorization.indexLimit,
+    expiresAt: authorization.expiresAt,
+    network: authorization.network,
+    signature: bs58.encode(authorization.signature),
+    nonce: authorization.nonce,
+    metadata: authorization.metadata
   };
 }
-function deserializeAuthorization(data2) {
+function deserializeAuthorization(data) {
   return {
-    agentAddress: data2.agentAddress,
-    authorizedSource: data2.authorizedSource,
-    indexLimit: data2.indexLimit,
-    expiresAt: data2.expiresAt,
-    network: data2.network,
-    signature: bs58.decode(data2.signature),
-    nonce: data2.nonce,
-    metadata: data2.metadata
+    agentAddress: data.agentAddress,
+    authorizedSource: data.authorizedSource,
+    indexLimit: data.indexLimit,
+    expiresAt: data.expiresAt,
+    network: data.network,
+    signature: bs58.decode(data.signature),
+    nonce: data.nonce,
+    metadata: data.metadata
   };
 }
 async function getAuthorizationId(authorization) {
@@ -141,28 +135,22 @@ async function getAuthorizationId(authorization) {
   const json = JSON.stringify(serialized);
   const encoder = new TextEncoder();
   const data = encoder.encode(json);
-  let crypto;
-  if (globalThis.crypto) {
-    crypto = globalThis.crypto;
-  } else {
-    const nodeCrypto = eval("require")("crypto");
-    crypto = nodeCrypto.webcrypto;
-  }
+  const crypto = globalThis.crypto;
   const hashBuffer = await crypto.subtle.digest("SHA-256", data);
   const hashArray = new Uint8Array(hashBuffer);
   return bs58.encode(hashArray);
 }
-function isAuthorizationExpired(authorization2, currentTime) {
+function isAuthorizationExpired(authorization, currentTime) {
   const now = currentTime || Math.floor(Date.now() / 1e3);
-  return now >= authorization2.expiresAt;
+  return now >= authorization.expiresAt;
 }
-function isAuthorizationExhausted(authorization2, currentIndex) {
-  return currentIndex >= authorization2.indexLimit;
+function isAuthorizationExhausted(authorization, currentIndex) {
+  return currentIndex >= authorization.indexLimit;
 }
-function validateAuthorizationNetwork(authorization2, expectedNetwork) {
-  return authorization2.network === expectedNetwork;
+function validateAuthorizationNetwork(authorization, expectedNetwork) {
+  return authorization.network === expectedNetwork;
 }
 
 export { createAuthorizationMessage, createSignedAuthorization, deserializeAuthorization, generateNonce, getAuthorizationId, isAuthorizationExhausted, isAuthorizationExpired, serializeAuthorization, signAuthorizationMessage, signature_verification_exports, validateAuthorizationNetwork, verifyAuthorizationSignature };
-//# sourceMappingURL=chunk-BQDGRTVP.js.map
-//# sourceMappingURL=chunk-BQDGRTVP.js.map
+//# sourceMappingURL=chunk-QWQTPTZ4.js.map
+//# sourceMappingURL=chunk-QWQTPTZ4.js.map

package/dist/chunk-QWQTPTZ4.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/utils/signature-verification.ts"],"names":[],"mappings":";;;;;AAAA,IAAA,8BAAA,GAAA;AAAA,QAAA,CAAA,8BAAA,EAAA;AAAA,EAAA,0BAAA,EAAA,MAAA,0BAAA;AAAA,EAAA,yBAAA,EAAA,MAAA,yBAAA;AAAA,EAAA,wBAAA,EAAA,MAAA,wBAAA;AAAA,EAAA,aAAA,EAAA,MAAA,aAAA;AAAA,EAAA,kBAAA,EAAA,MAAA,kBAAA;AAAA,EAAA,wBAAA,EAAA,MAAA,wBAAA;AAAA,EAAA,sBAAA,EAAA,MAAA,sBAAA;AAAA,EAAA,sBAAA,EAAA,MAAA,sBAAA;AAAA,EAAA,wBAAA,EAAA,MAAA,wBAAA;AAAA,EAAA,4BAAA,EAAA,MAAA,4BAAA;AAAA,EAAA,4BAAA,EAAA,MAAA;AAAA,CAAA,CAAA;AAmCA,IAAM,gBAAA,GAAmB,qCAAA;AAiBlB,SAAS,2BAA2B,OAAA,EAAuC;AAChF,EAAA,MAAM,aAAuB,EAAC;AAG9B,EAAA,UAAA,CAAW,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,gBAAA,EAAkB,MAAM,CAAC,CAAA;AAGrD,EAAA,MAAM,UAAA,GAAa,IAAA,CAAK,MAAA,CAAO,OAAA,CAAQ,YAAY,CAAA;AACnD,EAAA,UAAA,CAAW,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,UAAU,CAAC,CAAA;AAGvC,EAAA,MAAM,WAAA,GAAc,IAAA,CAAK,MAAA,CAAO,OAAA,CAAQ,gBAAgB,CAAA;AACxD,EAAA,UAAA,CAAW,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,WAAW,CAAC,CAAA;AAGxC,EAAA,MAAM,gBAAA,GAAmB,MAAA,CAAO,WAAA,CAAY,CAAC,CAAA;AAC7C,EAAA,gBAAA,CAAiB,gBAAA,CAAiB,MAAA,CAAO,OAAA,CAAQ,UAAU,CAAC,CAAA;AAC5D,EAAA,UAAA,CAAW,KAAK,gBAAgB,CAAA;AAGhC,EAAA,MAAM,eAAA,GAAkB,MAAA,CAAO,WAAA,CAAY,CAAC,CAAA;AAC5C,EAAA,eAAA,CAAgB,gBAAA,CAAiB,MAAA,CAAO,OAAA,CAAQ,SAAS,CAAC,CAAA;AAC1D,EAAA,UAAA,CAAW,KAAK,eAAe,CAAA;AAG/B,EAAA,UAAA,CAAW,KAAK,MAAA,CAAO,IAAA,CAAK,OAAA,CAAQ,OAAA,EAAS,MAAM,CAAC,CAAA;AAGpD,EAAA,IAAI,QAAQ,KAAA,EAAO;AACjB,IAAA,UAAA,CAAW,KAAK,MAAA,CAAO,IAAA,CAAK,OAAA,CAAQ,KAAA,EAAO,MAAM,CAAC,CAAA;AAAA,EACpD;AAEA,EAAA,OAAO,MAAA,CAAO,OAAO,UAAU,CAAA;AACjC;AASA,eAAsB,wBAAA,CACpB,SACA,YAAA,EACqB;AAErB,EAAA,MAAM,cAAA,GAAiB,YAAA,CAAa,SAAA,CAAU,QAAA,EAAS;AACvD,EAAA,IAAI,cAAA,KAAmB,QAAQ,YAAA,EAAc;AAC3C,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,mBAAA,EAAsB,cAAc,CAAA,8BAAA,EAAiC,OAAA,CAAQ,YAAY,CAAA;AAAA,KAC3F;AAAA,EACF;AAGA,EAAA,MAAM,aAAA,GAAgB,2BAA2B,OAAO,CAAA;AAGxD,EAAA,MAAM,IAAA,GAAO,MAAM,OAAO,yBAAW,CAAA;AACrC,EAAA,MAAM,YAAY,IAAA,CAAK,IAAA,CAAK,QAAA,CAAS,aAAA,EAAe,aAAa,SAAS,CAAA;AAE1E,EAAA,OAAO,SAAA;AACT;AAQA,eAAsB,6BACpB,aAAA,EACkB;AAClB,EAAA,IAAI;AAEF,IAAA,MAAM,OAAA,GAAgC;AAAA,MACpC,cAAc,aAAA,CAAc,YAAA;AAAA,MAC5B,kBAAkB,aAAA,CAAc,gBAAA;AAAA,MAChC,YAAY,aAAA,CAAc,UAAA;AAAA,MAC1B,WAAW,aAAA,CAAc,SAAA;AAAA,MACzB,SAAS,aAAA,CAAc,OAAA;AAAA,MACvB,OAAO,aAAA,CAAc;AAAA,KACvB;AAEA,IAAA,MAAM,aAAA,GAAgB,2BAA2B,OAAO,CAAA;AAGxD,IAAA,MAAM,IAAA,GAAO,MAAM,OAAO,yBAAW,CAAA;AACrC,IAAA,MAAM,gBAAA,GAAmB,IAAA,CAAK,MAAA,CAAO,aAAA,CAAc,YAAY,CAAA;AAC/D,IAAA,MAAM,OAAA,GAAU,IAAA,CAAK,IAAA,CAAK,QAAA,CAAS,MAAA;AAAA,MACjC,aAAA;AAAA,MACA,aAAA,CAAc,SAAA;AAAA,MACd;AAAA,KACF;AAEA,IAAA,OAAO,OAAA;AAAA,EACT,SAAS,KAAA,EAAO;AACd,IAAA,OAAA,CAAQ,KAAA,CAAM,yCAAyC,KAAK,CAAA;AAC5D,IAAA,OAAO,KAAA;AAAA,EACT;AACF;AASA,eAAsB,yBAAA,CACpB,QACA,YAAA,EACkC;AAElC,EAAA,MAAM,YAAA,GAAe,OAAA,CAAQ,YAAA,CAAa,SAAA,CAAU,UAAU,CAAA;AAG9D,EAAA,MAAM,MAAM,IAAA,CAAK,KAAA,CAAM,IAAA,CAAK,GAAA,KAAQ,GAAI,CAAA;AACxC,EAAA,MAAM,SAAA,GAAY,OAAO,SAAA,IAAa,GAAA,IAAO,OAAO,SAAA,IAAa,EAAA,GAAK,KAAK,EAAA,GAAK,EAAA,CAAA;AAGhF,EAAA,MAAM,UAAA,GAAa,OAAO,UAAA,IAAc,GAAA;AAGxC,EAAA,MAAM,OAAA,GAAyB,OAAO,OAAA,IAAW,QAAA;AAIjD,EAAA,MAAM,KAAA,GAAQ,MAAA,CAAO,KAAA,KAAU,MAAA,GAAY,OAAO,KAAA,GAAQ,SAAA;AAG1D,EAAA,MAAM,OAAA,GAAgC;AAAA,IACpC,YAAA;AAAA,IACA,kBAAkB,MAAA,CAAO,gBAAA;AAAA,IACzB,UAAA;AAAA,IACA,SAAA;AAAA,IACA,OAAA;AAAA,IACA;AAAA,GACF;AAGA,EAAA,MAAM,SAAA,GAAY,MAAM,wBAAA,CAAyB,OAAA,EAAS,YAAY,CAAA;AAGtE,EAAA,MAAM,aAAA,GAAyC;AAAA,IAC7C,YAAA;AAAA,IACA,kBAAkB,MAAA,CAAO,gBAAA;AAAA,IACzB,UAAA;AAAA,IACA,SAAA;AAAA,IACA,OAAA;AAAA,IACA,SAAA;AAAA,IACA,KAAA;AAAA,IACA,UAAU,MAAA,CAAO;AAAA,GACnB;AAEA,EAAA,OAAO,aAAA;AACT;AAOO,SAAS,aAAA,GAAwB;AAEtC,EAAA,MAAM,MAAA,GAAS,IAAI,UAAA,CAAW,EAAE,CAAA;AAChC,EAAA,UAAA,CAAW,MAAA,CAAO,gBAAgB,MAAM,CAAA;AACxC,EAAA,OAAO,MAAA,CAAO,IAAA,CAAK,MAAM,CAAA,CAAE,SAAS,KAAK,CAAA;AAC3C;AAQO,SAAS,uBAAuB,aAAA,EASrC;AACA,EAAA,OAAO;AAAA,IACL,cAAc,aAAA,CAAc,YAAA;AAAA,IAC5B,kBAAkB,aAAA,CAAc,gBAAA;AAAA,IAChC,YAAY,aAAA,CAAc,UAAA;AAAA,IAC1B,WAAW,aAAA,CAAc,SAAA;AAAA,IACzB,SAAS,aAAA,CAAc,OAAA;AAAA,IACvB,SAAA,EAAW,IAAA,CAAK,MAAA,CAAO,aAAA,CAAc,SAAS,CAAA;AAAA,IAC9C,OAAO,aAAA,CAAc,KAAA;AAAA,IACrB,UAAU,aAAA,CAAc;AAAA,GAC1B;AACF;AAQO,SAAS,yBAAyB,IAAA,EASb;AAC1B,EAAA,OAAO;AAAA,IACL,cAAc,IAAA,CAAK,YAAA;AAAA,IACnB,kBAAkB,IAAA,CAAK,gBAAA;AAAA,IACvB,YAAY,IAAA,CAAK,UAAA;AAAA,IACjB,WAAW,IAAA,CAAK,SAAA;AAAA,IAChB,SAAS,IAAA,CAAK,OAAA;AAAA,IACd,SAAA,EAAW,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,SAAS,CAAA;AAAA,IACrC,OAAO,IAAA,CAAK,KAAA;AAAA,IACZ,UAAU,IAAA,CAAK;AAAA,GACjB;AACF;AAQA,eAAsB,mBAAmB,aAAA,EAAyD;AAChG,EAAA,MAAM,UAAA,GAAa,uBAAuB,aAAa,CAAA;AACvD,EAAA,MAAM,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,UAAU,CAAA;AACtC,EAAA,MAAM,OAAA,GAAU,IAAI,WAAA,EAAY;AAChC,EAAA,MAAM,IAAA,GAAO,OAAA,CAAQ,MAAA,CAAO,IAAI,CAAA;AAGhC,EAAA,MAAM,SAAS,UAAA,CAAW,MAAA;AAG1B,EAAA,MAAM,aAAa,MAAM,MAAA,CAAO,MAAA,CAAO,MAAA,CAAO,WAAW,IAAI,CAAA;AAC7D,EAAA,MAAM,SAAA,GAAY,IAAI,UAAA,CAAW,UAAU,CAAA;AAE3C,EAAA,OAAO,IAAA,CAAK,OAAO,SAAS,CAAA;AAC9B;AASO,SAAS,sBAAA,CACd,eACA,WAAA,EACS;AACT,EAAA,MAAM,MAAM,WAAA,IAAe,IAAA,CAAK,MAAM,IAAA,CAAK,GAAA,KAAQ,GAAI,CAAA;AACvD,EAAA,OAAO,OAAO,aAAA,CAAc,SAAA;AAC9B;AASO,SAAS,wBAAA,CACd,eACA,YAAA,EACS;AACT,EAAA,OAAO,gBAAgB,aAAA,CAAc,UAAA;AACvC;AASO,SAAS,4BAAA,CACd,eACA,eAAA,EACS;AACT,EAAA,OAAO,cAAc,OAAA,KAAY,eAAA;AACnC","file":"chunk-QWQTPTZ4.js","sourcesContent":["/**\n * Agent Authorization Signature Verification\n *\n * Ed25519 signature creation and verification for GhostSpeak's\n * trustless agent pre-authorization system.\n *\n * Enables verifiable delegation of reputation update authority.\n */\n\nimport { address } from '@solana/addresses'\nimport type { Address } from '@solana/addresses'\nimport type {\n  ReputationAuthorization,\n  AuthorizationMessage,\n  CreateAuthorizationParams,\n  SolanaNetwork,\n} from '../types/authorization/authorization-types'\nimport bs58 from 'bs58'\n\n/**\n * Keypair interface for Ed25519 signing operations\n * Compatible with both legacy and modern Solana key formats\n */\nexport interface SigningKeypair {\n  publicKey: {\n    toBase58(): string\n    toBytes(): Uint8Array\n  }\n  secretKey: Uint8Array\n}\n\n/**\n * Authorization message domain separator\n * Prevents signature reuse across different protocols\n */\nconst DOMAIN_SEPARATOR = 'GhostSpeak Reputation Authorization'\n\n/**\n * Create authorization message for signing\n *\n * Message format:\n * - Domain separator (prevents cross-protocol replay)\n * - Agent address (32 bytes)\n * - Authorized source (32 bytes)\n * - Index limit (8 bytes, u64 big-endian)\n * - Expiration timestamp (8 bytes, u64 big-endian)\n * - Network string (variable length)\n * - Nonce (optional, 32 bytes if present)\n *\n * @param message - Authorization message parameters\n * @returns Buffer ready for signing\n */\nexport function createAuthorizationMessage(message: AuthorizationMessage): Buffer {\n  const components: Buffer[] = []\n\n  // 1. Domain separator\n  components.push(Buffer.from(DOMAIN_SEPARATOR, 'utf8'))\n\n  // 2. Agent address (32 bytes)\n  const agentBytes = bs58.decode(message.agentAddress)\n  components.push(Buffer.from(agentBytes))\n\n  // 3. Authorized source (32 bytes)\n  const sourceBytes = bs58.decode(message.authorizedSource)\n  components.push(Buffer.from(sourceBytes))\n\n  // 4. Index limit (8 bytes, u64 big-endian)\n  const indexLimitBuffer = Buffer.allocUnsafe(8)\n  indexLimitBuffer.writeBigUInt64BE(BigInt(message.indexLimit))\n  components.push(indexLimitBuffer)\n\n  // 5. Expiration timestamp (8 bytes, u64 big-endian)\n  const expiresAtBuffer = Buffer.allocUnsafe(8)\n  expiresAtBuffer.writeBigUInt64BE(BigInt(message.expiresAt))\n  components.push(expiresAtBuffer)\n\n  // 6. Network string\n  components.push(Buffer.from(message.network, 'utf8'))\n\n  // 7. Nonce (optional, 32 bytes)\n  if (message.nonce) {\n    components.push(Buffer.from(message.nonce, 'utf8'))\n  }\n\n  return Buffer.concat(components)\n}\n\n/**\n * Sign authorization message with agent's private key\n *\n * @param message - Authorization message to sign\n * @param agentKeypair - Agent's keypair (must match message.agentAddress)\n * @returns Ed25519 signature (64 bytes)\n */\nexport async function signAuthorizationMessage(\n  message: AuthorizationMessage,\n  agentKeypair: SigningKeypair\n): Promise<Uint8Array> {\n  // Verify keypair matches agent address\n  const keypairAddress = agentKeypair.publicKey.toBase58()\n  if (keypairAddress !== message.agentAddress) {\n    throw new Error(\n      `Keypair public key ${keypairAddress} does not match agent address ${message.agentAddress}`\n    )\n  }\n\n  // Create message buffer\n  const messageBuffer = createAuthorizationMessage(message)\n\n  // Sign with Ed25519\n  const nacl = await import('tweetnacl')\n  const signature = nacl.sign.detached(messageBuffer, agentKeypair.secretKey)\n\n  return signature\n}\n\n/**\n * Verify authorization signature\n *\n * @param authorization - Authorization to verify\n * @returns True if signature is valid\n */\nexport async function verifyAuthorizationSignature(\n  authorization: ReputationAuthorization\n): Promise<boolean> {\n  try {\n    // Reconstruct message\n    const message: AuthorizationMessage = {\n      agentAddress: authorization.agentAddress,\n      authorizedSource: authorization.authorizedSource,\n      indexLimit: authorization.indexLimit,\n      expiresAt: authorization.expiresAt,\n      network: authorization.network,\n      nonce: authorization.nonce,\n    }\n\n    const messageBuffer = createAuthorizationMessage(message)\n\n    // Verify signature\n    const nacl = await import('tweetnacl')\n    const agentPubkeyBytes = bs58.decode(authorization.agentAddress)\n    const isValid = nacl.sign.detached.verify(\n      messageBuffer,\n      authorization.signature,\n      agentPubkeyBytes\n    )\n\n    return isValid\n  } catch (error) {\n    console.error('[Auth Signature] Verification failed:', error)\n    return false\n  }\n}\n\n/**\n * Create a complete authorization with signature\n *\n * @param params - Authorization parameters\n * @param agentKeypair - Agent's keypair for signing\n * @returns Complete signed authorization\n */\nexport async function createSignedAuthorization(\n  params: CreateAuthorizationParams,\n  agentKeypair: SigningKeypair\n): Promise<ReputationAuthorization> {\n  // Get agent address from keypair\n  const agentAddress = address(agentKeypair.publicKey.toBase58())\n\n  // Calculate expiration\n  const now = Math.floor(Date.now() / 1000)\n  const expiresAt = params.expiresAt || now + (params.expiresIn || 30 * 24 * 60 * 60) // Default 30 days\n\n  // Default index limit\n  const indexLimit = params.indexLimit || 1000\n\n  // Default network (would need to be passed or detected from cluster)\n  const network: SolanaNetwork = params.network || 'devnet'\n\n  // Use \"default\" nonce if not provided to avoid PDA seed length issues (64-char hex exceeds 32-byte limit)\n  // Note: This matches Rust's unwrap_or(&String::from(\"default\")) behavior\n  const nonce = params.nonce !== undefined ? params.nonce : \"default\"\n\n  // Create message\n  const message: AuthorizationMessage = {\n    agentAddress,\n    authorizedSource: params.authorizedSource,\n    indexLimit,\n    expiresAt,\n    network,\n    nonce,\n  }\n\n  // Sign message\n  const signature = await signAuthorizationMessage(message, agentKeypair)\n\n  // Return complete authorization\n  const authorization: ReputationAuthorization = {\n    agentAddress,\n    authorizedSource: params.authorizedSource,\n    indexLimit,\n    expiresAt,\n    network,\n    signature,\n    nonce,\n    metadata: params.metadata,\n  }\n\n  return authorization\n}\n\n/**\n * Generate a random nonce for replay protection\n *\n * @returns 32-byte random nonce as hex string\n */\nexport function generateNonce(): string {\n  // Node 24+ always has globalThis.crypto\n  const buffer = new Uint8Array(32)\n  globalThis.crypto.getRandomValues(buffer)\n  return Buffer.from(buffer).toString('hex')\n}\n\n/**\n * Serialize authorization to JSON-safe format\n *\n * @param authorization - Authorization to serialize\n * @returns JSON-safe object (signature as base58)\n */\nexport function serializeAuthorization(authorization: ReputationAuthorization): {\n  agentAddress: string\n  authorizedSource: string\n  indexLimit: number\n  expiresAt: number\n  network: SolanaNetwork\n  signature: string\n  nonce?: string\n  metadata?: any\n} {\n  return {\n    agentAddress: authorization.agentAddress,\n    authorizedSource: authorization.authorizedSource,\n    indexLimit: authorization.indexLimit,\n    expiresAt: authorization.expiresAt,\n    network: authorization.network,\n    signature: bs58.encode(authorization.signature),\n    nonce: authorization.nonce,\n    metadata: authorization.metadata,\n  }\n}\n\n/**\n * Deserialize authorization from JSON format\n *\n * @param data - Serialized authorization data\n * @returns ReputationAuthorization with Uint8Array signature\n */\nexport function deserializeAuthorization(data: {\n  agentAddress: string\n  authorizedSource: string\n  indexLimit: number\n  expiresAt: number\n  network: SolanaNetwork\n  signature: string\n  nonce?: string\n  metadata?: any\n}): ReputationAuthorization {\n  return {\n    agentAddress: data.agentAddress as Address,\n    authorizedSource: data.authorizedSource as Address,\n    indexLimit: data.indexLimit,\n    expiresAt: data.expiresAt,\n    network: data.network,\n    signature: bs58.decode(data.signature),\n    nonce: data.nonce,\n    metadata: data.metadata,\n  }\n}\n\n/**\n * Get authorization ID (deterministic hash)\n *\n * @param authorization - Authorization to hash\n * @returns Base58-encoded SHA-256 hash\n */\nexport async function getAuthorizationId(authorization: ReputationAuthorization): Promise<string> {\n  const serialized = serializeAuthorization(authorization)\n  const json = JSON.stringify(serialized)\n  const encoder = new TextEncoder()\n  const data = encoder.encode(json)\n\n  // Node 24+ always has globalThis.crypto\n  const crypto = globalThis.crypto\n\n  // SHA-256 hash\n  const hashBuffer = await crypto.subtle.digest('SHA-256', data)\n  const hashArray = new Uint8Array(hashBuffer)\n\n  return bs58.encode(hashArray)\n}\n\n/**\n * Check if authorization is expired\n *\n * @param authorization - Authorization to check\n * @param currentTime - Current Unix timestamp (defaults to now)\n * @returns True if expired\n */\nexport function isAuthorizationExpired(\n  authorization: ReputationAuthorization,\n  currentTime?: number\n): boolean {\n  const now = currentTime || Math.floor(Date.now() / 1000)\n  return now >= authorization.expiresAt\n}\n\n/**\n * Check if authorization has exceeded index limit\n *\n * @param authorization - Authorization to check\n * @param currentIndex - Current usage count\n * @returns True if exhausted\n */\nexport function isAuthorizationExhausted(\n  authorization: ReputationAuthorization,\n  currentIndex: number\n): boolean {\n  return currentIndex >= authorization.indexLimit\n}\n\n/**\n * Validate authorization network matches expected\n *\n * @param authorization - Authorization to check\n * @param expectedNetwork - Expected network\n * @returns True if networks match\n */\nexport function validateAuthorizationNetwork(\n  authorization: ReputationAuthorization,\n  expectedNetwork: SolanaNetwork\n): boolean {\n  return authorization.network === expectedNetwork\n}\n"]}

package/dist/client.d.ts

@@ -1,8 +1,8 @@
 import '@solana/kit';
 import './reputation-types-Yebf0Rm_.js';
 import '@solana/addresses';
-import './StakingModule-DunDShLq.js';
-export { G as GhostSpeakClient, G as default, l as lamportsToSol, s as sol } from './GhostSpeakClient-bnXwUPHI.js';
+import './StakingModule-CPhp_ZY0.js';
+export { G as GhostSpeakClient, G as default, l as lamportsToSol, s as sol } from './GhostSpeakClient-qdLGyuDp.js';
 import './types.js';
 import './credentials.js';
-import './signature-verification-DGxR4aYQ.js';
+import './signature-verification-BDzoR1MG.js';

package/dist/client.js

@@ -1,7 +1,7 @@
-export { GhostSpeakClient, GhostSpeakClient_default as default, lamportsToSol, sol } from './chunk-6XCCMJ6M.js';
-import './chunk-JYXSOXCP.js';
-import './chunk-BQDGRTVP.js';
-import './chunk-OXA7MECJ.js';
+export { GhostSpeakClient, GhostSpeakClient_default as default, lamportsToSol, sol } from './chunk-5SS3OL4B.js';
+import './chunk-63A7F2YP.js';
+import './chunk-QWQTPTZ4.js';
+import './chunk-HIDBANFS.js';
 import './chunk-IQM5RASO.js';
 import './chunk-5QZVFUXB.js';
 import './chunk-46QWY3MG.js';

package/dist/index.d.ts

@@ -1,14 +1,16 @@
-import { P as PrivacyMode, R as ReputationTier, S as ScoreRange, a as PrivacySettings, M as MetricVisibility, V as VisibleReputation } from './GhostSpeakClient-bnXwUPHI.js';
-export { j as ApplyPresetParams, A as AuthorizationModule, G as GhostSpeakClient, h as GrantAccessParams, I as InitializePrivacyParams, n as IssuedCredentialResult, e as PRIVACY_CONSTANTS, b as PrivacyModule, f as PrivacyPreset, d as PrivacyPresets, i as RevokeAccessParams, g as SetMetricVisibilityParams, m as UnifiedCredentialConfig, k as UnifiedCredentialService, U as UpdatePrivacyModeParams, c as VisibilityLevel, G as default, l as lamportsToSol, s as sol } from './GhostSpeakClient-bnXwUPHI.js';
+import { P as PrivacyMode, R as ReputationTier, S as ScoreRange, a as PrivacySettings, M as MetricVisibility, V as VisibleReputation } from './GhostSpeakClient-qdLGyuDp.js';
+export { j as ApplyPresetParams, A as AuthorizationModule, G as GhostSpeakClient, h as GrantAccessParams, I as InitializePrivacyParams, n as IssuedCredentialResult, e as PRIVACY_CONSTANTS, b as PrivacyModule, f as PrivacyPreset, d as PrivacyPresets, i as RevokeAccessParams, g as SetMetricVisibilityParams, m as UnifiedCredentialConfig, k as UnifiedCredentialService, U as UpdatePrivacyModeParams, c as VisibilityLevel, G as default, l as lamportsToSol, s as sol } from './GhostSpeakClient-qdLGyuDp.js';
 import { Address, ReadonlyUint8Array, Option, Decoder, TransactionSigner, AccountMeta, Instruction, InstructionWithData, InstructionWithAccounts, WritableAccount, ReadonlySignerAccount, AccountSignerMeta, ReadonlyAccount, OptionOrNullable, WritableSignerAccount, Slot, Lamports, Epoch, Base58EncodedBytes, Base64EncodedBytes, TransactionError, Base64EncodedWireTransaction, Signature, TransactionMessageBytesBase64, Commitment as Commitment$1, KeyPairSigner } from '@solana/kit';
 export { TransactionSigner, address, createKeyPairSignerFromBytes, createSolanaRpc, generateKeyPairSigner } from '@solana/kit';
 export { AddressOf, Agent, AgentCreationParams, AgentEvent, AgentMetadata, AgentType, Attachment, Channel, ChannelCreationParams, ChannelEvent, ChannelType, CommunicationMessage, CommunicationSession, ConfidentialBalance, ConfidentialTransfer, CreateCommunicationSessionParams, DeepPartial, ErrorCode, Escrow, EscrowCreationParams, EscrowEvent, Event, FilterOptions, Message, MessageType, Milestone, PaginationOptions, ParticipantStatus, ParticipantType, QueryResult, Rating, Reaction, Reputation, Result, SDKError, SendCommunicationMessageParams, SimulationResult, Transaction, TransferProof, UpdateParticipantStatusParams, WithAddress, isError, isSuccess, unwrap } from './types.js';
 export { AccountNotFoundError, ErrorFactory, ErrorHandler, InsufficientBalanceError, InvalidInputError, NetworkError, SimulationFailedError, TimeoutError, TransactionFailedError, ValidationError } from './errors.js';
-import { c as AccessTier, d as GHOSTSPEAK_MARKETPLACE_PROGRAM_ADDRESS, P as PricingModelArgs, E as ExtendedRpcApi } from './StakingModule-DunDShLq.js';
-export { a5 as AgentAccount, A as AgentModule, a4 as AgentRegistrationData, a3 as AgentWithAddress, B as BaseModule, e as CacheConfig, C as CacheManager, f as ClaimGhostParams, aj as Commitment, Z as CreateDidDocumentParams, h as CreateProposalParams, n as Credential, l as CredentialKind, k as CredentialModule, m as CredentialStatus, o as CredentialTemplate, $ as DeactivateDidDocumentParams, Q as DidDocument, r as DidError, s as DidErrorClass, D as DidModule, X as DidResolutionMetadata, ai as EmergencyConfig, j as ExecutionParams, a as GhostModule, G as GhostSpeakConfig, a7 as GhostSpeakError, b as GovernanceModule, I as InstructionBuilder, M as MultisigModule, N as Network, a2 as PayAIReputationRecordInput, g as PreparedClaimResult, a6 as PricingModel, i as ProposalType, a8 as RegisterAgentParams, a1 as ReputationData, R as ReputationModule, a0 as ResolveDidDocumentParams, ak as RetryConfig, aa as RpcAccountInfo, ad as RpcAccountInfoResponse, al as RpcApi, ae as RpcMultipleAccountsResponse, ab as RpcProgramAccount, ac as RpcProgramAccountsResponse, a9 as RpcResponse, am as RpcSubscriptionApi, U as ServiceEndpoint, q as ServiceEndpointType, ag as SimulatedTransactionResponse, ah as SolanaRpcClient, an as StakingAccount, ao as StakingConfig, af as TransactionResponse, _ as UpdateDidDocumentParams, T as VerificationMethod, V as VerificationMethodType, p as VerificationRelationship, Y as W3CDidDocument, W as W3CVerifiableCredential, J as canPerformAction, y as createEd25519VerificationMethod, z as createServiceEndpoint, aq as decodeAgent, t as deriveDidDocumentPda, K as didDocumentToJson, x as exportAsW3CDidDocument, ar as fetchAgent, as as fetchMaybeAgent, u as generateDidString, ap as getAgentDecoder, O as getIdentifierFromDid, H as getMethodsForRelationship, L as getNetworkFromDid, at as getStakingAccountDecoder, au as getStakingConfigDecoder, F as isDidActive, w as parseDidString, v as validateDidString } from './StakingModule-DunDShLq.js';
+import { c as AccessTier, d as GHOSTSPEAK_MARKETPLACE_PROGRAM_ADDRESS, P as PricingModelArgs, E as ExtendedRpcApi, B as BaseModule } from './StakingModule-CPhp_ZY0.js';
+export { a8 as AgentAccount, A as AgentModule, a7 as AgentRegistrationData, a6 as AgentWithAddress, e as CacheConfig, C as CacheManager, f as ClaimGhostParams, am as Commitment, a0 as CreateDidDocumentParams, j as CreateProposalParams, p as Credential, n as CredentialKind, m as CredentialModule, o as CredentialStatus, q as CredentialTemplate, a2 as DeactivateDidDocumentParams, X as DidDocument, t as DidError, u as DidErrorClass, D as DidModule, _ as DidResolutionMetadata, al as EmergencyConfig, l as ExecutionParams, a as GhostModule, G as GhostSpeakConfig, aa as GhostSpeakError, b as GovernanceModule, i as InitializeStakingConfigParams, I as InstructionBuilder, M as MultisigModule, N as Network, a5 as PayAIReputationRecordInput, g as PreparedClaimResult, a9 as PricingModel, k as ProposalType, ab as RegisterAgentParams, a4 as ReputationData, R as ReputationModule, a3 as ResolveDidDocumentParams, an as RetryConfig, ad as RpcAccountInfo, ag as RpcAccountInfoResponse, ao as RpcApi, ah as RpcMultipleAccountsResponse, ae as RpcProgramAccount, af as RpcProgramAccountsResponse, ac as RpcResponse, ap as RpcSubscriptionApi, Z as ServiceEndpoint, s as ServiceEndpointType, aj as SimulatedTransactionResponse, ak as SolanaRpcClient, h as StakeParams, aq as StakingAccount, ar as StakingConfig, S as StakingModule, ai as TransactionResponse, U as UnstakeParams, a1 as UpdateDidDocumentParams, Y as VerificationMethod, V as VerificationMethodType, r as VerificationRelationship, $ as W3CDidDocument, W as W3CVerifiableCredential, L as canPerformAction, F as createEd25519VerificationMethod, H as createServiceEndpoint, at as decodeAgent, v as deriveDidDocumentPda, O as didDocumentToJson, z as exportAsW3CDidDocument, au as fetchAgent, av as fetchMaybeAgent, w as generateDidString, as as getAgentDecoder, T as getIdentifierFromDid, K as getMethodsForRelationship, Q as getNetworkFromDid, aw as getStakingAccountDecoder, ax as getStakingConfigDecoder, J as isDidActive, y as parseDidString, x as validateDidString } from './StakingModule-CPhp_ZY0.js';
+import * as gill from 'gill';
+import { SolanaClient } from 'gill';
 import { Address as Address$1 } from '@solana/addresses';
-export { l as AuthorizationFilter, p as AuthorizationInvalidReason, q as AuthorizationMessage, n as AuthorizationMetadata, o as AuthorizationProof, u as AuthorizationRevocation, A as AuthorizationStatus, t as AuthorizationUsage, k as AuthorizationWithStatus, B as BatchAuthorizationVerification, C as CreateAuthorizationParams, R as ReputationAuthorization, m as SolanaNetwork, V as VerificationDetails, r as VerifyAuthorizationParams, c as createAuthorizationMessage, b as createSignedAuthorization, e as deserializeAuthorization, g as generateNonce, f as getAuthorizationId, h as isAuthorizationExhausted, i as isAuthorizationExpired, d as serializeAuthorization, a as signAuthorizationMessage, j as validateAuthorizationNetwork, v as verifyAuthorizationSignature } from './signature-verification-DGxR4aYQ.js';
-export { h as ASSOCIATED_TOKEN_PROGRAM_ADDRESS, A as ATTESTATION_SEED, d as AttestationPDAResult, C as CREDENTIAL_SEED, e as CreateAttestationConfig, f as GHOSTSPEAK_PROGRAM_ID, c as GhostOwnershipAttestationData, G as GhostSpeakCredentialConfig, N as NATIVE_MINT_ADDRESS, S as SASAttestationHelper, a as SAS_PROGRAM_ID, b as SCHEMA_SEED, g as TOKEN_2022_PROGRAM_ADDRESS, T as TOKEN_PROGRAM_ADDRESS } from './browser-CI5_6Gzk.js';
+export { l as AuthorizationFilter, p as AuthorizationInvalidReason, q as AuthorizationMessage, n as AuthorizationMetadata, o as AuthorizationProof, u as AuthorizationRevocation, A as AuthorizationStatus, t as AuthorizationUsage, k as AuthorizationWithStatus, B as BatchAuthorizationVerification, C as CreateAuthorizationParams, R as ReputationAuthorization, m as SolanaNetwork, V as VerificationDetails, r as VerifyAuthorizationParams, c as createAuthorizationMessage, b as createSignedAuthorization, e as deserializeAuthorization, g as generateNonce, f as getAuthorizationId, h as isAuthorizationExhausted, i as isAuthorizationExpired, d as serializeAuthorization, a as signAuthorizationMessage, j as validateAuthorizationNetwork, v as verifyAuthorizationSignature } from './signature-verification-BDzoR1MG.js';
+export { h as ASSOCIATED_TOKEN_PROGRAM_ADDRESS, A as ATTESTATION_SEED, d as AttestationPDAResult, C as CREDENTIAL_SEED, e as CreateAttestationConfig, f as GHOSTSPEAK_PROGRAM_ID, c as GhostOwnershipAttestationData, G as GhostSpeakCredentialConfig, N as NATIVE_MINT_ADDRESS, S as SASAttestationHelper, a as SAS_PROGRAM_ID, b as SCHEMA_SEED, g as TOKEN_2022_PROGRAM_ADDRESS, T as TOKEN_PROGRAM_ADDRESS } from './browser-D1TpjbjZ.js';
 import { I as IPFSClient, C as ClientEncryptionService } from './feature-flags-B1g0DCPe.js';
 export { A as AccountInspectionResult, a5 as AssociatedTokenAccount, K as BatchDiagnosticReport, af as ClientEncryptionOptions, a7 as ConfidentialTransferConfig, J as DiagnosticReport, D as DiscriminatorValidationResult, ad as EncryptedData, ai as FeatureFlagManager, aj as FeatureFlags, G as GhostSpeakSDKError, a8 as InterestBearingConfig, L as LegacyAgentData, M as MigrationPlan, x as MigrationResult, ae as PrivateMetadata, R as ReputationTagEngine, _ as TokenExtension, T as TokenProgram, a6 as TransferFeeConfig, m as createDiscriminatorErrorMessage, c as createErrorContext, o as createMigrationPlan, q as createMigrationReport, d as deriveAssociatedTokenAddress, a9 as deriveMultisigPda, aa as deriveProposalPda, S as deriveSplTokenAssociatedTokenAddress, U as deriveToken2022AssociatedTokenAddress, a as detectTokenProgram, B as diagnoseAccountFromChain, F as diagnoseBatchFromChain, e as enhanceTransactionError, H as exportDiagnosticReport, Q as extractInstructionName, u as extractLegacyData, f as formatTokenAmount, ab as generateLocalPrivacyProof, W as getAllAssociatedTokenAddresses, V as getAssociatedTokenAccount, a3 as getConfidentialTransferConfig, ag as getFeatureFlags, a4 as getInterestBearingConfig, t as getMigrationInstructions, Y as getTokenProgramAddress, Z as getTokenProgramFromAddress, g as getTokenProgramType, a2 as getTransferFeeConfig, a0 as hasConfidentialTransferExtension, a1 as hasInterestBearingExtension, $ as hasTransferFeeExtension, n as inspectAccountData, ah as isFeatureEnabled, i as isToken2022Mint, O as logEnhancedError, p as parseTokenAmount, y as runAccountDiagnostics, z as runBatchDiagnostics, s as safeDecodeAgent, r as simulateMigration, v as validateAccountDiscriminator, X as validateAssociatedTokenAddress, P as validatePreconditions, ac as verifyLocalPrivacyProof, w as withEnhancedErrors, N as withEnhancedErrorsSync } from './feature-flags-B1g0DCPe.js';
 import { Rpc, GetSignaturesForAddressApi, GetTransactionApi, GetAccountInfoApi } from '@solana/rpc';
@@ -1203,16 +1205,23 @@ interface RpcClientConfig {
 /**
  * Unified RPC client with all features consolidated from multiple implementations.
  * This is the single source of truth for all RPC operations.
+ *
+ * Now powered by Gill for simplified client management while maintaining
+ * full backward compatibility with the existing API.
  */
 declare class RpcClient {
-    private rpc;
-    private rpcSubscriptions?;
+    private client;
     private commitment;
     private endpoint;
     private maxRetries;
     private retryDelay;
     private timeout;
     constructor(config: RpcClientConfig);
+    /**
+     * Get the underlying RPC client for direct access
+     * This provides access to Gill's rpc object for advanced operations
+     */
+    get rpc(): gill.Rpc<(gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi) | (gill.RequestAirdropApi & gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi)> | gill.RpcDevnet<(gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi) | (gill.RequestAirdropApi & gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi)> | gill.RpcTestnet<(gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi) | (gill.RequestAirdropApi & gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi)> | gill.RpcMainnet<(gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi) | (gill.RequestAirdropApi & gill.GetAccountInfoApi & gill.GetBalanceApi & gill.GetBlockApi & gill.GetBlockCommitmentApi & gill.GetBlockHeightApi & gill.GetBlockProductionApi & gill.GetBlocksApi & gill.GetBlocksWithLimitApi & gill.GetBlockTimeApi & gill.GetClusterNodesApi & gill.GetEpochInfoApi & gill.GetEpochScheduleApi & gill.GetFeeForMessageApi & gill.GetFirstAvailableBlockApi & gill.GetGenesisHashApi & gill.GetHealthApi & gill.GetHighestSnapshotSlotApi & gill.GetIdentityApi & gill.GetInflationGovernorApi & gill.GetInflationRateApi & gill.GetInflationRewardApi & gill.GetLargestAccountsApi & gill.GetLatestBlockhashApi & gill.GetLeaderScheduleApi & gill.GetMaxRetransmitSlotApi & gill.GetMaxShredInsertSlotApi & gill.GetMinimumBalanceForRentExemptionApi & gill.GetMultipleAccountsApi & gill.GetProgramAccountsApi & gill.GetRecentPerformanceSamplesApi & gill.GetRecentPrioritizationFeesApi & gill.GetSignaturesForAddressApi & gill.GetSignatureStatusesApi & gill.GetSlotApi & gill.GetSlotLeaderApi & gill.GetSlotLeadersApi & gill.GetStakeMinimumDelegationApi & gill.GetSupplyApi & gill.GetTokenAccountBalanceApi & gill.GetTokenAccountsByDelegateApi & gill.GetTokenAccountsByOwnerApi & gill.GetTokenLargestAccountsApi & gill.GetTokenSupplyApi & gill.GetTransactionApi & gill.GetTransactionCountApi & gill.GetVersionApi & gill.GetVoteAccountsApi & gill.IsBlockhashValidApi & gill.MinimumLedgerSlotApi & gill.SendTransactionApi & gill.SimulateTransactionApi)>;
     /**
      * Get account information with automatic retries
      */
@@ -1268,9 +1277,19 @@ declare class RpcClient {
     }>;
     /**
      * Subscribe to account changes (WebSocket)
-     * Note: This is a placeholder implementation. In production, you would use the actual subscription API
+     *
+     * Note: This is a polling-based implementation for backward compatibility.
+     * For production use with real-time subscriptions, access the rpcSubscriptions
+     * directly via client.rpcSubscriptions from Gill.
      */
     subscribeToAccount(address: Address$1, callback: (accountInfo: AccountInfo$2 | null) => void): Promise<() => void>;
+    /**
+     * Get the underlying Gill client for advanced operations
+     * This provides direct access to Gill's SolanaClient for features like:
+     * - rpcSubscriptions for WebSocket subscriptions
+     * - sendAndConfirmTransaction for transaction handling
+     */
+    getGillClient(): SolanaClient<any>;
     private withRetry;
     private parseAccountInfo;
 }
@@ -1514,6 +1533,115 @@ declare class ExternalIdResolver {
     }>;
 }
 
+interface CreateEscrowParams {
+    /** Agent providing the service */
+    agent: Address$1;
+    /** Client's token account for payment */
+    clientTokenAccount: Address$1;
+    /** Vault to hold escrowed funds */
+    escrowVault: Address$1;
+    /** Token mint (e.g., USDC, GHOST) */
+    tokenMint: Address$1;
+    /** Client who is paying */
+    client: TransactionSigner;
+    /** Unique escrow identifier */
+    escrowId: bigint;
+    /** Amount to escrow */
+    amount: bigint;
+    /** Description of the job/service */
+    jobDescription: string;
+    /** Deadline timestamp (unix seconds) */
+    deadline: bigint;
+}
+interface SubmitDeliveryParams {
+    /** Escrow account */
+    escrow: Address$1;
+    /** Agent account address */
+    agent: Address$1;
+    /** Agent owner signer */
+    agentOwner: TransactionSigner;
+    /** Proof of work (IPFS hash, URL, etc.) */
+    deliveryProof: string;
+}
+interface ApproveDeliveryParams {
+    /** Escrow account */
+    escrow: Address$1;
+    /** Vault holding escrowed funds */
+    escrowVault: Address$1;
+    /** Agent's token account to receive payment */
+    agentTokenAccount: Address$1;
+    /** Client approving the delivery */
+    client: TransactionSigner;
+}
+interface FileDisputeParams {
+    /** Escrow account */
+    escrow: Address$1;
+    /** Client filing the dispute */
+    client: TransactionSigner;
+    /** Reason for dispute */
+    reason: string;
+}
+interface ArbitrateDisputeParams {
+    /** Escrow account */
+    escrow: Address$1;
+    /** Vault holding escrowed funds */
+    escrowVault: Address$1;
+    /** Client's token account (for refund) */
+    clientTokenAccount: Address$1;
+    /** Agent's token account (for payment) */
+    agentTokenAccount: Address$1;
+    /** Agent's staking account (for potential slashing) */
+    agentStaking: Address$1;
+    /** Arbitrator making the decision */
+    arbitrator: TransactionSigner;
+    /** Decision: FavorClient, FavorAgent, Split, or Invalid */
+    decision: ArbitratorDecision;
+}
+declare class EscrowModule extends BaseModule {
+    /**
+     * Create a new escrow for a service agreement
+     *
+     * @param params - Escrow creation parameters
+     * @returns Transaction signature
+     */
+    createEscrow(params: CreateEscrowParams): Promise<string>;
+    /**
+     * Submit proof of delivery for an escrow
+     *
+     * @param params - Delivery submission parameters
+     * @returns Transaction signature
+     */
+    submitDelivery(params: SubmitDeliveryParams): Promise<string>;
+    /**
+     * Approve delivery and release funds to agent
+     *
+     * @param params - Approval parameters
+     * @returns Transaction signature
+     */
+    approveDelivery(params: ApproveDeliveryParams): Promise<string>;
+    /**
+     * File a dispute for an escrow
+     *
+     * @param params - Dispute filing parameters
+     * @returns Transaction signature
+     */
+    fileDispute(params: FileDisputeParams): Promise<string>;
+    /**
+     * Arbitrate a disputed escrow
+     *
+     * @param params - Arbitration parameters
+     * @returns Transaction signature
+     */
+    arbitrateDispute(params: ArbitrateDisputeParams): Promise<string>;
+    /**
+     * Get escrow account data
+     *
+     * @param escrowAddress - The escrow account address
+     * @returns Escrow data or null if not found
+     */
+    getEscrow(escrowAddress: Address$1): Promise<GhostProtectEscrow | null>;
+}
+
 /**
  * X402 Transaction Indexer
  *
@@ -1618,9 +1746,12 @@ declare class X402TransactionIndexer {
      * Check if transaction is an x402 payment
      *
      * x402 payments are characterized by:
-     * - SPL token transfer (TokenProgram or Token2022Program)
+     * - SPL token transfer (TokenProgram or Token2022Program) for USDC
+     * - Native SOL transfer (System Program)
      * - Transfer TO the facilitator address
      * - Optional memo instruction with payment metadata
+     *
+     * Supports both devnet and mainnet for all payment types
      */
     private isX402Payment;
     /**
@@ -2583,4 +2714,4 @@ declare function checkFeatureGate(rpc: Rpc<GetAccountInfoApi>, featureGate: Addr
  */
 declare function clearFeatureGateCache(): void;
 
-export { type AggregatedReputation, type ApiResolverConfig, type ArbitratorDecision, BaseReputationAdapter, type BatchFetchConfig, type BatchProgressCallback, CircuitBreaker, ClientEncryptionService, ContentStorageResult, DEFAULT_IPFS_CONFIG, DEFAULT_RETRY_CONFIG, type DeliverySubmittedEvent, type DisputeFiledEvent, type DisputeResolvedEvent, type EscrowCompletedEvent, type EscrowCreatedEvent, EscrowStatus, ExtendedRpcApi, ExternalIdResolver, FEATURE_GATES, FallbackHandler, type FeatureStatus, type FundingResult, type FundingStrategyOptions, GHOSTSPEAK_MARKETPLACE_PROGRAM_ADDRESS, type GhostProtectEscrow, type GhostSlashedEvent, type GhostStakedEvent, type GhostUnstakedEvent, INSTRUCTION_MAPPINGS, IPFSClient, IPFSConfig, IPFSContentMetadata, IPFSError, IPFSErrorHandler, IPFSOperationError, IPFSOperationResult, IPFSProvider, IPFSUploadOptions, IPFSUtils, InstructionValidationError, LocalStorageProvider, MetricVisibility, MultiSourceAggregator, type PrivacyManifest, PrivacyMode, PrivacySettings, PrivateDataQuery, type PrivateDataReference, PrivateMetadataStorage, ReputationSource, type ReputationSourceAdapter, type ReputationSourceConfig, type ReputationTagsUpdatedEvent, RetryHandler, RpcClient, ScoreRange, type SignatureInfo, SlashReason, type SourceReputationData, type SourceScoreBreakdown, type StorageProvider, type StoredPrivateData, TEST_IPFS_CONFIG, type TagDecayAppliedEvent, type TagScore, VisibleReputation, WalletFundingService, type X402IndexerConfig, type X402PaymentData, X402TransactionIndexer, batchGetAccounts, batchGetAccountsWithRetry, batchGetAndMap, batchGetExistingAccounts, calculateVisibleScore, canViewerAccess, checkFeatureGate, clearFeatureGateCache, createAccountMismatchError, createBatchFetcher, createIPFSErrorHandler, createIPFSUtils, createMetadataUri, createPrivacyManifest, createTestIPFSConfig, debugInstructionCall, defaultFundingService, determineStorageMethod, enhanceErrorMessage, ensureMinimumBalance, estimateStorageCost, filterMetricsByVisibility, fundWallet, generateAccountValidationError, getAccountRequirements, getApproveDeliveryInstruction, getArbitrateDisputeInstruction, getClaimGhostInstruction, getCreateDidDocumentInstructionAsync, getCreateEscrowInstructionAsync, getDeactivateDidDocumentInstructionAsync, getDefaultMetricVisibility, getFileDisputeInstruction, getGhostProtectEscrowDecoder, getInitializeStakingConfigInstructionAsync, getInstructionMapping, getPDAAccounts, getRangeDisplayString, getRegisterAgentInstructionAsync, getReputationTier, getRequiredSigners, getResolveDidDocumentInstructionAsync, getScoreRange, getSlashStakeInstructionAsync, getStakeGhostInstructionAsync, getSubmitDeliveryInstruction, getTierDisplayName, getUnstakeGhostInstructionAsync, getUpdateDidDocumentInstructionAsync, getUpdateReputationTagsInstructionAsync, getWritableAccounts, isIPFSError, isKnownInstruction, validateInstructionAccounts, validatePrivacySettings, withIPFSErrorHandling };
+export { type AggregatedReputation, type ApiResolverConfig, type ApproveDeliveryParams, type ArbitrateDisputeParams, type ArbitratorDecision, BaseModule, BaseReputationAdapter, type BatchFetchConfig, type BatchProgressCallback, CircuitBreaker, ClientEncryptionService, ContentStorageResult, type CreateEscrowParams, DEFAULT_IPFS_CONFIG, DEFAULT_RETRY_CONFIG, type DeliverySubmittedEvent, type DisputeFiledEvent, type DisputeResolvedEvent, type EscrowCompletedEvent, type EscrowCreatedEvent, EscrowModule, EscrowStatus, ExtendedRpcApi, ExternalIdResolver, FEATURE_GATES, FallbackHandler, type FeatureStatus, type FileDisputeParams, type FundingResult, type FundingStrategyOptions, GHOSTSPEAK_MARKETPLACE_PROGRAM_ADDRESS, type GhostProtectEscrow, type GhostSlashedEvent, type GhostStakedEvent, type GhostUnstakedEvent, INSTRUCTION_MAPPINGS, IPFSClient, IPFSConfig, IPFSContentMetadata, IPFSError, IPFSErrorHandler, IPFSOperationError, IPFSOperationResult, IPFSProvider, IPFSUploadOptions, IPFSUtils, InstructionValidationError, LocalStorageProvider, MetricVisibility, MultiSourceAggregator, type PrivacyManifest, PrivacyMode, PrivacySettings, PrivateDataQuery, type PrivateDataReference, PrivateMetadataStorage, ReputationSource, type ReputationSourceAdapter, type ReputationSourceConfig, type ReputationTagsUpdatedEvent, RetryHandler, RpcClient, ScoreRange, type SignatureInfo, SlashReason, type SourceReputationData, type SourceScoreBreakdown, type StorageProvider, type StoredPrivateData, type SubmitDeliveryParams, TEST_IPFS_CONFIG, type TagDecayAppliedEvent, type TagScore, VisibleReputation, WalletFundingService, type X402IndexerConfig, type X402PaymentData, X402TransactionIndexer, batchGetAccounts, batchGetAccountsWithRetry, batchGetAndMap, batchGetExistingAccounts, calculateVisibleScore, canViewerAccess, checkFeatureGate, clearFeatureGateCache, createAccountMismatchError, createBatchFetcher, createIPFSErrorHandler, createIPFSUtils, createMetadataUri, createPrivacyManifest, createTestIPFSConfig, debugInstructionCall, defaultFundingService, determineStorageMethod, enhanceErrorMessage, ensureMinimumBalance, estimateStorageCost, filterMetricsByVisibility, fundWallet, generateAccountValidationError, getAccountRequirements, getApproveDeliveryInstruction, getArbitrateDisputeInstruction, getClaimGhostInstruction, getCreateDidDocumentInstructionAsync, getCreateEscrowInstructionAsync, getDeactivateDidDocumentInstructionAsync, getDefaultMetricVisibility, getFileDisputeInstruction, getGhostProtectEscrowDecoder, getInitializeStakingConfigInstructionAsync, getInstructionMapping, getPDAAccounts, getRangeDisplayString, getRegisterAgentInstructionAsync, getReputationTier, getRequiredSigners, getResolveDidDocumentInstructionAsync, getScoreRange, getSlashStakeInstructionAsync, getStakeGhostInstructionAsync, getSubmitDeliveryInstruction, getTierDisplayName, getUnstakeGhostInstructionAsync, getUpdateDidDocumentInstructionAsync, getUpdateReputationTagsInstructionAsync, getWritableAccounts, isIPFSError, isKnownInstruction, validateInstructionAccounts, validatePrivacySettings, withIPFSErrorHandling };