@horus-wallet/sdk-react 0.3.0-beta.1 → 0.3.0-beta.2

package/dist/index.cjs

@@ -29,12 +29,16 @@ __export(index_exports, {
   useChain: () => useChain,
   useCreateWallet: () => useCreateWallet,
   useExportWallet: () => useExportWallet,
+  useGenerateMcpKey: () => useGenerateMcpKey,
   useHorusAuth: () => useHorusAuth,
+  useMcpKeys: () => useMcpKeys,
+  useRevokeMcpKey: () => useRevokeMcpKey,
   useSendTransaction: () => useSendTransaction,
   useSignMessage: () => useSignMessage,
   useSignTypedData: () => useSignTypedData,
   useSwitchChain: () => useSwitchChain,
   useTransfer: () => useTransfer,
+  useUpdateMcpKey: () => useUpdateMcpKey,
   useUser: () => useUser,
   useWallets: () => useWallets
 });
@@ -190,10 +194,10 @@ var DEFAULT_API_BASE = "https://api.horuswallet.com";
 var DEFAULT_AUTH_PAGE = "https://auth.horuswallet.com";
 var REFRESH_LEAD_SECONDS = 60;
 var DEFAULT_AUTO_PROVISION = {
-  network: "EVM",
+  network: "ETHEREUM",
   networkType: "MAINNET"
 };
-var DEFAULT_CHAIN = { network: "EVM", networkType: "MAINNET" };
+var DEFAULT_CHAIN = { network: "ETHEREUM", networkType: "MAINNET" };
 var AUTO_PROVISION_STORAGE_KEY = "horus.autoProvisioned.localIds";
 function HorusProvider(props) {
   const {
@@ -218,6 +222,10 @@ function HorusProvider(props) {
   const setChain = (0, import_react2.useCallback)((chain) => {
     setCurrentChain(chain);
   }, []);
+  const [mcpKeysVersion, setMcpKeysVersion] = (0, import_react2.useState)(0);
+  const revalidateMcpKeys = (0, import_react2.useCallback)(() => {
+    setMcpKeysVersion((v) => v + 1);
+  }, []);
   const setTokens = (0, import_react2.useCallback)((tokens) => {
     tokensRef.current = tokens;
     if (tokens) {
@@ -271,6 +279,58 @@ function HorusProvider(props) {
       setState({ status: "unauthenticated" });
     }
   }, []);
+  (0, import_react2.useEffect)(() => {
+    if (typeof window === "undefined") return;
+    const params = new URLSearchParams(window.location.search);
+    const mode = params.get("mode");
+    const oobCode = params.get("oobCode");
+    if (mode !== "signIn" || !oobCode) return;
+    if (consumedMagicLinkCodes.has(oobCode)) return;
+    consumedMagicLinkCodes.add(oobCode);
+    const email = params.get("email") ?? (typeof window.localStorage !== "undefined" ? window.localStorage.getItem("horus.signinEmail") : null) ?? "";
+    if (!email) {
+      console.warn(
+        "@horus-wallet/sdk-react: detected a magic-link return but no email is available. Pass `email` in the continueUrl or set localStorage.horus.signinEmail at send time."
+      );
+      return;
+    }
+    void (async () => {
+      try {
+        const stripUrlParams = () => {
+          const u = new URL(window.location.href);
+          ["mode", "oobCode", "apiKey", "continueUrl", "lang", "email"].forEach(
+            (k) => u.searchParams.delete(k)
+          );
+          window.history.replaceState({}, "", u.toString());
+          if (window.localStorage) {
+            window.localStorage.removeItem("horus.signinEmail");
+          }
+        };
+        const raw = await fetch(joinUrl(apiBase, "/auth/email-link/verify"), {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            "x-horus-key": appId
+          },
+          body: JSON.stringify({ email, oobCode })
+        });
+        if (!raw.ok) {
+          const body = await raw.text();
+          console.warn(
+            `@horus-wallet/sdk-react: magic-link verify failed (HTTP ${raw.status}): ${body}`
+          );
+          stripUrlParams();
+          return;
+        }
+        const json = await raw.json();
+        const stamped = stampExpiry(json);
+        setTokens(stamped);
+        stripUrlParams();
+      } catch (err) {
+        console.warn("@horus-wallet/sdk-react: magic-link verify threw", err);
+      }
+    })();
+  }, [apiBase, appId, setTokens]);
   (0, import_react2.useEffect)(() => {
     if (typeof window === "undefined") return;
     const onStorage = (ev) => {
@@ -305,15 +365,9 @@ function HorusProvider(props) {
     let cancelled = false;
     (async () => {
       try {
-        const existing = await http.get("/getWallet");
-        if (cancelled) return;
-        const hasAny = Object.values(existing?.wallets ?? {}).some(
-          (group) => Array.isArray(group?.wallets) && group.wallets.length > 0
-        );
-        markAutoProvisioned(localId);
-        if (hasAny) return;
         await http.post("/createWallet", autoProvisionWallet);
         if (cancelled) return;
+        markAutoProvisioned(localId);
         revalidateWallets();
       } catch (err) {
         console.warn("@horus-wallet/sdk-react: auto-provision wallet failed", err);
@@ -347,7 +401,9 @@ function HorusProvider(props) {
       walletsVersion,
       revalidateWallets,
       currentChain,
-      setChain
+      setChain,
+      mcpKeysVersion,
+      revalidateMcpKeys
     }),
     [
       state,
@@ -359,7 +415,9 @@ function HorusProvider(props) {
       walletsVersion,
       revalidateWallets,
       currentChain,
-      setChain
+      setChain,
+      mcpKeysVersion,
+      revalidateMcpKeys
     ]
   );
   return /* @__PURE__ */ (0, import_jsx_runtime.jsx)(HorusContext.Provider, { value: ctx, children });
@@ -374,6 +432,7 @@ function userFromTokens(t) {
     providerId: t.providerId
   };
 }
+var consumedMagicLinkCodes = /* @__PURE__ */ new Set();
 var memoryAutoProvisioned = /* @__PURE__ */ new Set();
 function readAutoProvisionedSet() {
   if (typeof window === "undefined" || !window.localStorage) {
@@ -422,6 +481,9 @@ function buildAuthUrl(p, state) {
   url.searchParams.set("appKey", p.appId);
   url.searchParams.set("mode", p.mode);
   if (p.phone) url.searchParams.set("phone", p.phone);
+  if (p.flow === "unified" && p.enabledMethods && p.enabledMethods.length > 0) {
+    url.searchParams.set("methods", p.enabledMethods.join(","));
+  }
   const b = p.branding;
   if (b) {
     if (b.logoUrl) url.searchParams.set("b_logo", b.logoUrl);
@@ -549,6 +611,7 @@ function openPopupFlow(params) {
     }
     const expectedOrigin = new URL(params.baseUrl).origin;
     let settled = false;
+    let lastError = null;
     const cleanup = () => {
       window.removeEventListener("message", onMessage);
       clearInterval(poll);
@@ -579,17 +642,11 @@ function openPopupFlow(params) {
             popup.close();
           } catch {
           }
-          reject(new Error("User cancelled sign-in."));
+          reject(new Error(lastError ?? "User cancelled sign-in."));
           return;
         case "error":
           if (settled) return;
-          settled = true;
-          cleanup();
-          try {
-            popup.close();
-          } catch {
-          }
-          reject(new Error(body.message || "Sign-in failed."));
+          lastError = body.message || "Sign-in failed.";
           return;
       }
     };
@@ -598,7 +655,7 @@ function openPopupFlow(params) {
       if (popup.closed && !settled) {
         settled = true;
         cleanup();
-        reject(new Error("Auth popup was closed before sign-in completed."));
+        reject(new Error(lastError ?? "Auth popup was closed before sign-in completed."));
       }
     }, 400);
   });
@@ -696,13 +753,20 @@ function useCreateWallet() {
 // src/hooks/useSwitchChain.ts
 var import_react6 = require("react");
 var SUPPORTED_CHAINS = [
-  "EVM",
+  // EVM-family chains the backend accepts as `network` selectors.
+  // `EVM` itself is intentionally NOT here — it's a family label, not
+  // a chain, and the API rejects it on /createWallet, /signMessage, etc.
+  // Pick a specific chain when interacting with the API.
   "ETHEREUM",
   "BASE",
   "POLYGON",
   "BSC",
   "ARBITRUM",
   "OPTIMISM",
+  "TELOS",
+  "CHILIZ",
+  "FLARE",
+  // Non-EVM chains.
   "BITCOIN",
   "ICP",
   "CASPER",
@@ -933,6 +997,7 @@ var defaultDialogStyle = {
 function HorusAuthModal(props) {
   const {
     flow,
+    enabledMethods,
     phone,
     open,
     onClose,
@@ -955,11 +1020,12 @@ function HorusAuthModal(props) {
         baseUrl: authPageUrl,
         mode: "iframe",
         branding,
-        phone
+        phone,
+        enabledMethods
       },
       stateRef.current
     );
-  }, [open, flow, appId, authPageUrl, branding, phone]);
+  }, [open, flow, appId, authPageUrl, branding, phone, enabledMethods]);
   const expectedOrigin = (0, import_react12.useMemo)(() => {
     try {
       return new URL(authPageUrl).origin;
@@ -1005,7 +1071,6 @@ function HorusAuthModal(props) {
           return;
         case "error":
           onError?.(new Error(body.message ?? "Sign-in failed."));
-          onClose();
           return;
       }
     };
@@ -1213,6 +1278,131 @@ function useExportWallet() {
   );
   return { reveal, pending, error };
 }
+
+// src/hooks/useMcp.ts
+var import_react15 = require("react");
+function useGenerateMcpKey() {
+  const { http, walletsVersion } = useHorusContext();
+  void walletsVersion;
+  const [pending, setPending] = (0, import_react15.useState)(false);
+  const [error, setError] = (0, import_react15.useState)(void 0);
+  const [lastResult, setLastResult] = (0, import_react15.useState)(null);
+  const generate = (0, import_react15.useCallback)(
+    async (input) => {
+      setPending(true);
+      setError(void 0);
+      try {
+        const response = await http.post("/mcp/keys/generate", {
+          name: input.name,
+          network: input.network,
+          wallet_index: typeof input.walletIndex === "number" ? input.walletIndex : 0,
+          expires_at: input.expiresAt,
+          allowed_ips: input.allowedIps,
+          allowed_tools: input.allowedTools,
+          max_requests_per_minute: input.maxRequestsPerMinute,
+          mcp_password: input.mcpPassword
+        });
+        setLastResult(response);
+        return response;
+      } catch (err) {
+        const e = err instanceof Error ? err : new Error(String(err));
+        setError(e);
+        throw e;
+      } finally {
+        setPending(false);
+      }
+    },
+    [http]
+  );
+  return { generate, pending, error, lastResult, clearLastResult: () => setLastResult(null) };
+}
+function useMcpKeys() {
+  const { http, state, mcpKeysVersion } = useHorusContext();
+  const [keys, setKeys] = (0, import_react15.useState)([]);
+  const [ready, setReady] = (0, import_react15.useState)(false);
+  const [error, setError] = (0, import_react15.useState)(void 0);
+  const load = (0, import_react15.useCallback)(async () => {
+    if (state.status !== "authenticated") {
+      setKeys([]);
+      setReady(true);
+      return;
+    }
+    setReady(false);
+    setError(void 0);
+    try {
+      const response = await http.get("/mcp/keys");
+      setKeys(response?.keys ?? []);
+    } catch (err) {
+      setError(err instanceof Error ? err : new Error(String(err)));
+    } finally {
+      setReady(true);
+    }
+  }, [http, state.status]);
+  (0, import_react15.useEffect)(() => {
+    void load();
+  }, [load, mcpKeysVersion]);
+  return { ready, keys, refresh: load, error };
+}
+function useRevokeMcpKey() {
+  const { http, revalidateMcpKeys } = useHorusContext();
+  const [pending, setPending] = (0, import_react15.useState)(false);
+  const [error, setError] = (0, import_react15.useState)(void 0);
+  const revoke = (0, import_react15.useCallback)(
+    async (prefix) => {
+      if (!prefix) throw new Error("useRevokeMcpKey: prefix is required");
+      setPending(true);
+      setError(void 0);
+      try {
+        const response = await http.del(
+          `/mcp/keys/${encodeURIComponent(prefix)}`
+        );
+        revalidateMcpKeys();
+        return response;
+      } catch (err) {
+        const e = err instanceof Error ? err : new Error(String(err));
+        setError(e);
+        throw e;
+      } finally {
+        setPending(false);
+      }
+    },
+    [http, revalidateMcpKeys]
+  );
+  return { revoke, pending, error };
+}
+function useUpdateMcpKey() {
+  const { http, revalidateMcpKeys } = useHorusContext();
+  const [pending, setPending] = (0, import_react15.useState)(false);
+  const [error, setError] = (0, import_react15.useState)(void 0);
+  const update = (0, import_react15.useCallback)(
+    async (prefix, updates) => {
+      if (!prefix) throw new Error("useUpdateMcpKey: prefix is required");
+      setPending(true);
+      setError(void 0);
+      try {
+        const response = await http.put(
+          `/mcp/keys/${encodeURIComponent(prefix)}`,
+          {
+            expires_at: updates.expiresAt,
+            allowed_ips: updates.allowedIps,
+            allowed_tools: updates.allowedTools,
+            max_requests_per_minute: updates.maxRequestsPerMinute
+          }
+        );
+        revalidateMcpKeys();
+        return response;
+      } catch (err) {
+        const e = err instanceof Error ? err : new Error(String(err));
+        setError(e);
+        throw e;
+      } finally {
+        setPending(false);
+      }
+    },
+    [http, revalidateMcpKeys]
+  );
+  return { update, pending, error };
+}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   HorusAuthModal,
@@ -1224,12 +1414,16 @@ function useExportWallet() {
   useChain,
   useCreateWallet,
   useExportWallet,
+  useGenerateMcpKey,
   useHorusAuth,
+  useMcpKeys,
+  useRevokeMcpKey,
   useSendTransaction,
   useSignMessage,
   useSignTypedData,
   useSwitchChain,
   useTransfer,
+  useUpdateMcpKey,
   useUser,
   useWallets
 });

package/dist/index.d.cts

@@ -107,10 +107,16 @@ interface HorusProviderConfig {
     autoRefresh?: boolean;
     /**
      * Auto-create a wallet for the user on first sign-in if they don't
-     * already have one. Defaults to `{ network: 'EVM', networkType: 'MAINNET' }`
+     * already have one. Defaults to `{ network: 'ETHEREUM', networkType: 'MAINNET' }`
      * to match Privy's behavior — new users land in your app with a
      * wallet already provisioned, no extra round-trip required.
      *
+     * `network` must be a specific chain name (ETHEREUM, BASE, POLYGON,
+     * BITCOIN, ICP, CASPER, …) — the API rejects family labels like
+     * `'EVM'`. The wallet is stored by family on the backend, so a
+     * wallet provisioned as ETHEREUM is reachable via BASE / POLYGON /
+     * etc. at sign time (same key, different chain selector).
+     *
      * Set to `false` to opt out (your app must call `useCreateWallet`
      * explicitly to provision wallets).
      *
@@ -125,7 +131,7 @@ interface HorusProviderConfig {
     };
     /**
      * Initial active chain exposed via `useSwitchChain()` / `useChain()`.
-     * Defaults to `{ network: 'EVM', networkType: 'MAINNET' }`.
+     * Defaults to `{ network: 'ETHEREUM', networkType: 'MAINNET' }`.
      *
      * Partners can read the current chain in their UI (e.g., to highlight
      * the active network in a switcher) and pass it explicitly when
@@ -324,7 +330,7 @@ declare function useCreateWallet(): UseCreateWalletResult;
  * as readonly so a partner who pins on a specific value gets a TS
  * error when we drop a chain rather than a silent runtime miss.
  */
-declare const SUPPORTED_CHAINS: readonly ["EVM", "ETHEREUM", "BASE", "POLYGON", "BSC", "ARBITRUM", "OPTIMISM", "BITCOIN", "ICP", "CASPER", "AETERNITY"];
+declare const SUPPORTED_CHAINS: readonly ["ETHEREUM", "BASE", "POLYGON", "BSC", "ARBITRUM", "OPTIMISM", "TELOS", "CHILIZ", "FLARE", "BITCOIN", "ICP", "CASPER", "AETERNITY"];
 type SupportedChain = (typeof SUPPORTED_CHAINS)[number];
 interface UseSwitchChainResult {
     /** Currently-active chain selector. */
@@ -541,7 +547,15 @@ declare function HorusLoginButton({ flow, phone, onAuthenticated, onError, child
  * Not exported to partners; internal-only.
  */
 
-type AuthFlow = 'google' | 'email_link' | 'phone';
+type AuthFlow = 'google' | 'email_link' | 'phone' | 'unified';
+/**
+ * Subset of methods the `unified` chooser may surface. Aligns with the
+ * auth-page's `HorusUnifiedMethod`. Includes `email_password` because
+ * the unified flow exposes it as a button even though direct
+ * `?flow=email_password` from the SDK isn't useful (that path is
+ * already headless via `useHorusAuth().loginWithEmail`).
+ */
+type UnifiedMethod = 'google' | 'email_password' | 'email_link' | 'phone';
 
 /**
  * `<HorusAuthModal>` — inline auth flow.
@@ -577,9 +591,26 @@ type AuthFlow = 'google' | 'email_link' | 'phone';
  */
 
 interface HorusAuthModalProps {
-    /** Which sign-in flow to render in the iframe. */
+    /**
+     * Which sign-in flow to render in the iframe. Use `'unified'` for
+     * the Privy-style "one button → chooser modal" pattern: the iframe
+     * lands on a chooser screen with one button per enabled method,
+     * then transitions to whichever flow the end-user picks.
+     */
     flow: AuthFlow;
-    /** Optional phone-flow pre-fill. */
+    /**
+     * Only applies when `flow === 'unified'`. Comma-joined into the URL
+     * as `&methods=...` so the chooser only shows what you list. Omit
+     * to surface all four (google, email_password, email_link, phone).
+     *
+     *   <HorusAuthModal
+     *     flow="unified"
+     *     enabledMethods={['google', 'email_password']}
+     *     open onClose={...}
+     *   />
+     */
+    enabledMethods?: UnifiedMethod[];
+    /** Optional phone-flow pre-fill (when `flow === 'phone'`). */
     phone?: string;
     /** Controlled open state — partner toggles to show/hide the modal. */
     open: boolean;
@@ -703,6 +734,131 @@ interface UseExportWalletResult {
 }
 declare function useExportWallet(): UseExportWalletResult;
 
+/**
+ * MCP / agentic key management hooks.
+ *
+ * Mints, lists, revokes, and updates the "agent keys" that an end-user
+ * issues to an MCP runtime (Claude Desktop, custom agent, etc.) so the
+ * agent can act on the user's behalf — sign messages, transfer tokens,
+ * call partner-allowed tools — without the agent ever seeing the
+ * underlying wallet credentials.
+ *
+ * Scope is the wallet-OWNER side: minting + lifecycle. The actual
+ * JSON-RPC tool execution endpoint (`POST /mcp`) is consumed by MCP
+ * runtimes directly with the minted key; partner React code never
+ * calls it.
+ *
+ * Wire shapes mirror the Node SDK's `client.mcp.*` exactly so the
+ * two stay in sync.
+ */
+interface GenerateMcpKeyInput {
+    /** Display name shown in `listKeys` (and in any partner UI). */
+    name: string;
+    /** Wallet network this key signs against. */
+    network: string;
+    walletIndex?: number;
+    /** ISO-8601 expiry. The backend mirrors this to the row's TTL attribute. */
+    expiresAt?: string;
+    /** Optional IP allow-list (exact IPs only — no CIDRs). */
+    allowedIps?: string[];
+    /** Optional whitelist of MCP tool names this key may invoke. */
+    allowedTools?: string[];
+    /** Per-key rate cap. Backend default ~600 RPM. */
+    maxRequestsPerMinute?: number;
+    /**
+     * Wraps the wallet password so the key holder can sign without
+     * re-prompting. Required if the wallet is password-protected.
+     */
+    mcpPassword?: string;
+}
+interface GenerateMcpKeyResponse {
+    /** PLAINTEXT — returned exactly once at creation. Never recoverable. */
+    key: string;
+    name: string;
+    prefix: string;
+    wallet_index: number;
+    network: string;
+    wallet_address?: string;
+    expires_at?: string;
+    allowed_ips: string[];
+    allowed_tools: string[];
+    max_requests_per_minute: number;
+    created_at: string;
+    message: string;
+}
+interface McpKeyMetadata {
+    prefix: string;
+    name: string;
+    wallet_index: number;
+    network: string;
+    expires_at?: string;
+    last_used_at?: string;
+    created_at: string;
+    allowed_ips: string[];
+    allowed_tools: string[];
+    max_requests_per_minute: number;
+}
+interface UpdateMcpKeyInput {
+    expiresAt?: string;
+    allowedIps?: string[];
+    allowedTools?: string[];
+    maxRequestsPerMinute?: number;
+}
+/**
+ * `useGenerateMcpKey()` — mint a new MCP key.
+ *
+ *   const { generate, pending, error, lastResult } = useGenerateMcpKey();
+ *   const result = await generate({ name: 'Claude Desktop', network: 'ETHEREUM' });
+ *   // Show `result.key` to the user immediately — it is never returned again.
+ *
+ * After a successful call, `lastResult` holds the response so partners
+ * can render a one-time secret banner without threading the value
+ * through their own state. It's cleared on the next `generate()`.
+ */
+declare function useGenerateMcpKey(): {
+    generate: (input: GenerateMcpKeyInput) => Promise<GenerateMcpKeyResponse>;
+    pending: boolean;
+    error: Error | undefined;
+    lastResult: GenerateMcpKeyResponse | null;
+    clearLastResult: () => void;
+};
+/**
+ * `useMcpKeys()` — read the current user's MCP key list.
+ *
+ *   const { ready, keys, refresh, error } = useMcpKeys();
+ *
+ * Mutating hooks (`useGenerateMcpKey`, `useRevokeMcpKey`, `useUpdateMcpKey`)
+ * each bump an internal version counter so this hook re-fetches
+ * automatically after every change — no manual `refresh()` needed.
+ */
+declare function useMcpKeys(): {
+    ready: boolean;
+    keys: McpKeyMetadata[];
+    refresh: () => Promise<void>;
+    error: Error | undefined;
+};
+/** `useRevokeMcpKey()` — revoke a key by its prefix. Idempotent on the backend. */
+declare function useRevokeMcpKey(): {
+    revoke: (prefix: string) => Promise<{
+        revoked: boolean;
+        message: string;
+    }>;
+    pending: boolean;
+    error: Error | undefined;
+};
+/**
+ * `useUpdateMcpKey()` — patch a key's policy fields (expiry, allowed
+ * IPs, allowed tools, RPM cap). Returns `{ updated, message }`.
+ */
+declare function useUpdateMcpKey(): {
+    update: (prefix: string, updates: UpdateMcpKeyInput) => Promise<{
+        updated: boolean;
+        message: string;
+    }>;
+    pending: boolean;
+    error: Error | undefined;
+};
+
 /**
  * Fetch wrapper for browser-direct calls to the Horus API.
  *
@@ -729,4 +885,4 @@ declare class HorusHttpError extends Error {
     constructor(status: number, message: string, body: unknown, code?: string);
 }
 
-export { type AuthState, type AuthTokens, type ChainSelector, type CreateWalletInput, type CreateWalletResult, type Eip712TypedData, type ExportWalletInput, type ExportWalletResult, HorusAuthModal, type HorusAuthModalProps, type HorusBranding, HorusHttpError, HorusLoginButton, type HorusLoginButtonProps, HorusProvider, type HorusProviderConfig, type HorusProviderProps, HorusRevealModal, type HorusRevealModalProps, type NativeTransferInput, type NetworkType, SUPPORTED_CHAINS, type SendTransactionInput, type SignMessageInput, type SignTypedDataInput, type SupportedChain, type TokenTransferInput, type UseHorusAuthResult, type User, type WalletDescriptor, useChain, useCreateWallet, useExportWallet, useHorusAuth, useSendTransaction, useSignMessage, useSignTypedData, useSwitchChain, useTransfer, useUser, useWallets };
+export { type AuthState, type AuthTokens, type ChainSelector, type CreateWalletInput, type CreateWalletResult, type Eip712TypedData, type ExportWalletInput, type ExportWalletResult, type GenerateMcpKeyInput, type GenerateMcpKeyResponse, HorusAuthModal, type HorusAuthModalProps, type HorusBranding, HorusHttpError, HorusLoginButton, type HorusLoginButtonProps, HorusProvider, type HorusProviderConfig, type HorusProviderProps, HorusRevealModal, type HorusRevealModalProps, type McpKeyMetadata, type NativeTransferInput, type NetworkType, SUPPORTED_CHAINS, type SendTransactionInput, type SignMessageInput, type SignTypedDataInput, type SupportedChain, type TokenTransferInput, type UnifiedMethod, type UpdateMcpKeyInput, type UseHorusAuthResult, type User, type WalletDescriptor, useChain, useCreateWallet, useExportWallet, useGenerateMcpKey, useHorusAuth, useMcpKeys, useRevokeMcpKey, useSendTransaction, useSignMessage, useSignTypedData, useSwitchChain, useTransfer, useUpdateMcpKey, useUser, useWallets };

package/dist/index.d.ts

@@ -107,10 +107,16 @@ interface HorusProviderConfig {
     autoRefresh?: boolean;
     /**
      * Auto-create a wallet for the user on first sign-in if they don't
-     * already have one. Defaults to `{ network: 'EVM', networkType: 'MAINNET' }`
+     * already have one. Defaults to `{ network: 'ETHEREUM', networkType: 'MAINNET' }`
      * to match Privy's behavior — new users land in your app with a
      * wallet already provisioned, no extra round-trip required.
      *
+     * `network` must be a specific chain name (ETHEREUM, BASE, POLYGON,
+     * BITCOIN, ICP, CASPER, …) — the API rejects family labels like
+     * `'EVM'`. The wallet is stored by family on the backend, so a
+     * wallet provisioned as ETHEREUM is reachable via BASE / POLYGON /
+     * etc. at sign time (same key, different chain selector).
+     *
      * Set to `false` to opt out (your app must call `useCreateWallet`
      * explicitly to provision wallets).
      *
@@ -125,7 +131,7 @@ interface HorusProviderConfig {
     };
     /**
      * Initial active chain exposed via `useSwitchChain()` / `useChain()`.
-     * Defaults to `{ network: 'EVM', networkType: 'MAINNET' }`.
+     * Defaults to `{ network: 'ETHEREUM', networkType: 'MAINNET' }`.
      *
      * Partners can read the current chain in their UI (e.g., to highlight
      * the active network in a switcher) and pass it explicitly when
@@ -324,7 +330,7 @@ declare function useCreateWallet(): UseCreateWalletResult;
  * as readonly so a partner who pins on a specific value gets a TS
  * error when we drop a chain rather than a silent runtime miss.
  */
-declare const SUPPORTED_CHAINS: readonly ["EVM", "ETHEREUM", "BASE", "POLYGON", "BSC", "ARBITRUM", "OPTIMISM", "BITCOIN", "ICP", "CASPER", "AETERNITY"];
+declare const SUPPORTED_CHAINS: readonly ["ETHEREUM", "BASE", "POLYGON", "BSC", "ARBITRUM", "OPTIMISM", "TELOS", "CHILIZ", "FLARE", "BITCOIN", "ICP", "CASPER", "AETERNITY"];
 type SupportedChain = (typeof SUPPORTED_CHAINS)[number];
 interface UseSwitchChainResult {
     /** Currently-active chain selector. */
@@ -541,7 +547,15 @@ declare function HorusLoginButton({ flow, phone, onAuthenticated, onError, child
  * Not exported to partners; internal-only.
  */
 
-type AuthFlow = 'google' | 'email_link' | 'phone';
+type AuthFlow = 'google' | 'email_link' | 'phone' | 'unified';
+/**
+ * Subset of methods the `unified` chooser may surface. Aligns with the
+ * auth-page's `HorusUnifiedMethod`. Includes `email_password` because
+ * the unified flow exposes it as a button even though direct
+ * `?flow=email_password` from the SDK isn't useful (that path is
+ * already headless via `useHorusAuth().loginWithEmail`).
+ */
+type UnifiedMethod = 'google' | 'email_password' | 'email_link' | 'phone';
 
 /**
  * `<HorusAuthModal>` — inline auth flow.
@@ -577,9 +591,26 @@ type AuthFlow = 'google' | 'email_link' | 'phone';
  */
 
 interface HorusAuthModalProps {
-    /** Which sign-in flow to render in the iframe. */
+    /**
+     * Which sign-in flow to render in the iframe. Use `'unified'` for
+     * the Privy-style "one button → chooser modal" pattern: the iframe
+     * lands on a chooser screen with one button per enabled method,
+     * then transitions to whichever flow the end-user picks.
+     */
     flow: AuthFlow;
-    /** Optional phone-flow pre-fill. */
+    /**
+     * Only applies when `flow === 'unified'`. Comma-joined into the URL
+     * as `&methods=...` so the chooser only shows what you list. Omit
+     * to surface all four (google, email_password, email_link, phone).
+     *
+     *   <HorusAuthModal
+     *     flow="unified"
+     *     enabledMethods={['google', 'email_password']}
+     *     open onClose={...}
+     *   />
+     */
+    enabledMethods?: UnifiedMethod[];
+    /** Optional phone-flow pre-fill (when `flow === 'phone'`). */
     phone?: string;
     /** Controlled open state — partner toggles to show/hide the modal. */
     open: boolean;
@@ -703,6 +734,131 @@ interface UseExportWalletResult {
 }
 declare function useExportWallet(): UseExportWalletResult;
 
+/**
+ * MCP / agentic key management hooks.
+ *
+ * Mints, lists, revokes, and updates the "agent keys" that an end-user
+ * issues to an MCP runtime (Claude Desktop, custom agent, etc.) so the
+ * agent can act on the user's behalf — sign messages, transfer tokens,
+ * call partner-allowed tools — without the agent ever seeing the
+ * underlying wallet credentials.
+ *
+ * Scope is the wallet-OWNER side: minting + lifecycle. The actual
+ * JSON-RPC tool execution endpoint (`POST /mcp`) is consumed by MCP
+ * runtimes directly with the minted key; partner React code never
+ * calls it.
+ *
+ * Wire shapes mirror the Node SDK's `client.mcp.*` exactly so the
+ * two stay in sync.
+ */
+interface GenerateMcpKeyInput {
+    /** Display name shown in `listKeys` (and in any partner UI). */
+    name: string;
+    /** Wallet network this key signs against. */
+    network: string;
+    walletIndex?: number;
+    /** ISO-8601 expiry. The backend mirrors this to the row's TTL attribute. */
+    expiresAt?: string;
+    /** Optional IP allow-list (exact IPs only — no CIDRs). */
+    allowedIps?: string[];
+    /** Optional whitelist of MCP tool names this key may invoke. */
+    allowedTools?: string[];
+    /** Per-key rate cap. Backend default ~600 RPM. */
+    maxRequestsPerMinute?: number;
+    /**
+     * Wraps the wallet password so the key holder can sign without
+     * re-prompting. Required if the wallet is password-protected.
+     */
+    mcpPassword?: string;
+}
+interface GenerateMcpKeyResponse {
+    /** PLAINTEXT — returned exactly once at creation. Never recoverable. */
+    key: string;
+    name: string;
+    prefix: string;
+    wallet_index: number;
+    network: string;
+    wallet_address?: string;
+    expires_at?: string;
+    allowed_ips: string[];
+    allowed_tools: string[];
+    max_requests_per_minute: number;
+    created_at: string;
+    message: string;
+}
+interface McpKeyMetadata {
+    prefix: string;
+    name: string;
+    wallet_index: number;
+    network: string;
+    expires_at?: string;
+    last_used_at?: string;
+    created_at: string;
+    allowed_ips: string[];
+    allowed_tools: string[];
+    max_requests_per_minute: number;
+}
+interface UpdateMcpKeyInput {
+    expiresAt?: string;
+    allowedIps?: string[];
+    allowedTools?: string[];
+    maxRequestsPerMinute?: number;
+}
+/**
+ * `useGenerateMcpKey()` — mint a new MCP key.
+ *
+ *   const { generate, pending, error, lastResult } = useGenerateMcpKey();
+ *   const result = await generate({ name: 'Claude Desktop', network: 'ETHEREUM' });
+ *   // Show `result.key` to the user immediately — it is never returned again.
+ *
+ * After a successful call, `lastResult` holds the response so partners
+ * can render a one-time secret banner without threading the value
+ * through their own state. It's cleared on the next `generate()`.
+ */
+declare function useGenerateMcpKey(): {
+    generate: (input: GenerateMcpKeyInput) => Promise<GenerateMcpKeyResponse>;
+    pending: boolean;
+    error: Error | undefined;
+    lastResult: GenerateMcpKeyResponse | null;
+    clearLastResult: () => void;
+};
+/**
+ * `useMcpKeys()` — read the current user's MCP key list.
+ *
+ *   const { ready, keys, refresh, error } = useMcpKeys();
+ *
+ * Mutating hooks (`useGenerateMcpKey`, `useRevokeMcpKey`, `useUpdateMcpKey`)
+ * each bump an internal version counter so this hook re-fetches
+ * automatically after every change — no manual `refresh()` needed.
+ */
+declare function useMcpKeys(): {
+    ready: boolean;
+    keys: McpKeyMetadata[];
+    refresh: () => Promise<void>;
+    error: Error | undefined;
+};
+/** `useRevokeMcpKey()` — revoke a key by its prefix. Idempotent on the backend. */
+declare function useRevokeMcpKey(): {
+    revoke: (prefix: string) => Promise<{
+        revoked: boolean;
+        message: string;
+    }>;
+    pending: boolean;
+    error: Error | undefined;
+};
+/**
+ * `useUpdateMcpKey()` — patch a key's policy fields (expiry, allowed
+ * IPs, allowed tools, RPM cap). Returns `{ updated, message }`.
+ */
+declare function useUpdateMcpKey(): {
+    update: (prefix: string, updates: UpdateMcpKeyInput) => Promise<{
+        updated: boolean;
+        message: string;
+    }>;
+    pending: boolean;
+    error: Error | undefined;
+};
+
 /**
  * Fetch wrapper for browser-direct calls to the Horus API.
  *
@@ -729,4 +885,4 @@ declare class HorusHttpError extends Error {
     constructor(status: number, message: string, body: unknown, code?: string);
 }
 
-export { type AuthState, type AuthTokens, type ChainSelector, type CreateWalletInput, type CreateWalletResult, type Eip712TypedData, type ExportWalletInput, type ExportWalletResult, HorusAuthModal, type HorusAuthModalProps, type HorusBranding, HorusHttpError, HorusLoginButton, type HorusLoginButtonProps, HorusProvider, type HorusProviderConfig, type HorusProviderProps, HorusRevealModal, type HorusRevealModalProps, type NativeTransferInput, type NetworkType, SUPPORTED_CHAINS, type SendTransactionInput, type SignMessageInput, type SignTypedDataInput, type SupportedChain, type TokenTransferInput, type UseHorusAuthResult, type User, type WalletDescriptor, useChain, useCreateWallet, useExportWallet, useHorusAuth, useSendTransaction, useSignMessage, useSignTypedData, useSwitchChain, useTransfer, useUser, useWallets };
+export { type AuthState, type AuthTokens, type ChainSelector, type CreateWalletInput, type CreateWalletResult, type Eip712TypedData, type ExportWalletInput, type ExportWalletResult, type GenerateMcpKeyInput, type GenerateMcpKeyResponse, HorusAuthModal, type HorusAuthModalProps, type HorusBranding, HorusHttpError, HorusLoginButton, type HorusLoginButtonProps, HorusProvider, type HorusProviderConfig, type HorusProviderProps, HorusRevealModal, type HorusRevealModalProps, type McpKeyMetadata, type NativeTransferInput, type NetworkType, SUPPORTED_CHAINS, type SendTransactionInput, type SignMessageInput, type SignTypedDataInput, type SupportedChain, type TokenTransferInput, type UnifiedMethod, type UpdateMcpKeyInput, type UseHorusAuthResult, type User, type WalletDescriptor, useChain, useCreateWallet, useExportWallet, useGenerateMcpKey, useHorusAuth, useMcpKeys, useRevokeMcpKey, useSendTransaction, useSignMessage, useSignTypedData, useSwitchChain, useTransfer, useUpdateMcpKey, useUser, useWallets };

package/dist/index.js

@@ -148,10 +148,10 @@ var DEFAULT_API_BASE = "https://api.horuswallet.com";
 var DEFAULT_AUTH_PAGE = "https://auth.horuswallet.com";
 var REFRESH_LEAD_SECONDS = 60;
 var DEFAULT_AUTO_PROVISION = {
-  network: "EVM",
+  network: "ETHEREUM",
   networkType: "MAINNET"
 };
-var DEFAULT_CHAIN = { network: "EVM", networkType: "MAINNET" };
+var DEFAULT_CHAIN = { network: "ETHEREUM", networkType: "MAINNET" };
 var AUTO_PROVISION_STORAGE_KEY = "horus.autoProvisioned.localIds";
 function HorusProvider(props) {
   const {
@@ -176,6 +176,10 @@ function HorusProvider(props) {
   const setChain = useCallback((chain) => {
     setCurrentChain(chain);
   }, []);
+  const [mcpKeysVersion, setMcpKeysVersion] = useState(0);
+  const revalidateMcpKeys = useCallback(() => {
+    setMcpKeysVersion((v) => v + 1);
+  }, []);
   const setTokens = useCallback((tokens) => {
     tokensRef.current = tokens;
     if (tokens) {
@@ -229,6 +233,58 @@ function HorusProvider(props) {
       setState({ status: "unauthenticated" });
     }
   }, []);
+  useEffect(() => {
+    if (typeof window === "undefined") return;
+    const params = new URLSearchParams(window.location.search);
+    const mode = params.get("mode");
+    const oobCode = params.get("oobCode");
+    if (mode !== "signIn" || !oobCode) return;
+    if (consumedMagicLinkCodes.has(oobCode)) return;
+    consumedMagicLinkCodes.add(oobCode);
+    const email = params.get("email") ?? (typeof window.localStorage !== "undefined" ? window.localStorage.getItem("horus.signinEmail") : null) ?? "";
+    if (!email) {
+      console.warn(
+        "@horus-wallet/sdk-react: detected a magic-link return but no email is available. Pass `email` in the continueUrl or set localStorage.horus.signinEmail at send time."
+      );
+      return;
+    }
+    void (async () => {
+      try {
+        const stripUrlParams = () => {
+          const u = new URL(window.location.href);
+          ["mode", "oobCode", "apiKey", "continueUrl", "lang", "email"].forEach(
+            (k) => u.searchParams.delete(k)
+          );
+          window.history.replaceState({}, "", u.toString());
+          if (window.localStorage) {
+            window.localStorage.removeItem("horus.signinEmail");
+          }
+        };
+        const raw = await fetch(joinUrl(apiBase, "/auth/email-link/verify"), {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            "x-horus-key": appId
+          },
+          body: JSON.stringify({ email, oobCode })
+        });
+        if (!raw.ok) {
+          const body = await raw.text();
+          console.warn(
+            `@horus-wallet/sdk-react: magic-link verify failed (HTTP ${raw.status}): ${body}`
+          );
+          stripUrlParams();
+          return;
+        }
+        const json = await raw.json();
+        const stamped = stampExpiry(json);
+        setTokens(stamped);
+        stripUrlParams();
+      } catch (err) {
+        console.warn("@horus-wallet/sdk-react: magic-link verify threw", err);
+      }
+    })();
+  }, [apiBase, appId, setTokens]);
   useEffect(() => {
     if (typeof window === "undefined") return;
     const onStorage = (ev) => {
@@ -263,15 +319,9 @@ function HorusProvider(props) {
     let cancelled = false;
     (async () => {
       try {
-        const existing = await http.get("/getWallet");
-        if (cancelled) return;
-        const hasAny = Object.values(existing?.wallets ?? {}).some(
-          (group) => Array.isArray(group?.wallets) && group.wallets.length > 0
-        );
-        markAutoProvisioned(localId);
-        if (hasAny) return;
         await http.post("/createWallet", autoProvisionWallet);
         if (cancelled) return;
+        markAutoProvisioned(localId);
         revalidateWallets();
       } catch (err) {
         console.warn("@horus-wallet/sdk-react: auto-provision wallet failed", err);
@@ -305,7 +355,9 @@ function HorusProvider(props) {
       walletsVersion,
       revalidateWallets,
       currentChain,
-      setChain
+      setChain,
+      mcpKeysVersion,
+      revalidateMcpKeys
     }),
     [
       state,
@@ -317,7 +369,9 @@ function HorusProvider(props) {
       walletsVersion,
       revalidateWallets,
       currentChain,
-      setChain
+      setChain,
+      mcpKeysVersion,
+      revalidateMcpKeys
     ]
   );
   return /* @__PURE__ */ jsx(HorusContext.Provider, { value: ctx, children });
@@ -332,6 +386,7 @@ function userFromTokens(t) {
     providerId: t.providerId
   };
 }
+var consumedMagicLinkCodes = /* @__PURE__ */ new Set();
 var memoryAutoProvisioned = /* @__PURE__ */ new Set();
 function readAutoProvisionedSet() {
   if (typeof window === "undefined" || !window.localStorage) {
@@ -380,6 +435,9 @@ function buildAuthUrl(p, state) {
   url.searchParams.set("appKey", p.appId);
   url.searchParams.set("mode", p.mode);
   if (p.phone) url.searchParams.set("phone", p.phone);
+  if (p.flow === "unified" && p.enabledMethods && p.enabledMethods.length > 0) {
+    url.searchParams.set("methods", p.enabledMethods.join(","));
+  }
   const b = p.branding;
   if (b) {
     if (b.logoUrl) url.searchParams.set("b_logo", b.logoUrl);
@@ -507,6 +565,7 @@ function openPopupFlow(params) {
     }
     const expectedOrigin = new URL(params.baseUrl).origin;
     let settled = false;
+    let lastError = null;
     const cleanup = () => {
       window.removeEventListener("message", onMessage);
       clearInterval(poll);
@@ -537,17 +596,11 @@ function openPopupFlow(params) {
             popup.close();
           } catch {
           }
-          reject(new Error("User cancelled sign-in."));
+          reject(new Error(lastError ?? "User cancelled sign-in."));
           return;
         case "error":
           if (settled) return;
-          settled = true;
-          cleanup();
-          try {
-            popup.close();
-          } catch {
-          }
-          reject(new Error(body.message || "Sign-in failed."));
+          lastError = body.message || "Sign-in failed.";
           return;
       }
     };
@@ -556,7 +609,7 @@ function openPopupFlow(params) {
       if (popup.closed && !settled) {
         settled = true;
         cleanup();
-        reject(new Error("Auth popup was closed before sign-in completed."));
+        reject(new Error(lastError ?? "Auth popup was closed before sign-in completed."));
       }
     }, 400);
   });
@@ -654,13 +707,20 @@ function useCreateWallet() {
 // src/hooks/useSwitchChain.ts
 import { useCallback as useCallback5 } from "react";
 var SUPPORTED_CHAINS = [
-  "EVM",
+  // EVM-family chains the backend accepts as `network` selectors.
+  // `EVM` itself is intentionally NOT here — it's a family label, not
+  // a chain, and the API rejects it on /createWallet, /signMessage, etc.
+  // Pick a specific chain when interacting with the API.
   "ETHEREUM",
   "BASE",
   "POLYGON",
   "BSC",
   "ARBITRUM",
   "OPTIMISM",
+  "TELOS",
+  "CHILIZ",
+  "FLARE",
+  // Non-EVM chains.
   "BITCOIN",
   "ICP",
   "CASPER",
@@ -891,6 +951,7 @@ var defaultDialogStyle = {
 function HorusAuthModal(props) {
   const {
     flow,
+    enabledMethods,
     phone,
     open,
     onClose,
@@ -913,11 +974,12 @@ function HorusAuthModal(props) {
         baseUrl: authPageUrl,
         mode: "iframe",
         branding,
-        phone
+        phone,
+        enabledMethods
       },
       stateRef.current
     );
-  }, [open, flow, appId, authPageUrl, branding, phone]);
+  }, [open, flow, appId, authPageUrl, branding, phone, enabledMethods]);
   const expectedOrigin = useMemo2(() => {
     try {
       return new URL(authPageUrl).origin;
@@ -963,7 +1025,6 @@ function HorusAuthModal(props) {
           return;
         case "error":
           onError?.(new Error(body.message ?? "Sign-in failed."));
-          onClose();
           return;
       }
     };
@@ -1171,6 +1232,131 @@ function useExportWallet() {
   );
   return { reveal, pending, error };
 }
+
+// src/hooks/useMcp.ts
+import { useCallback as useCallback13, useEffect as useEffect5, useState as useState10 } from "react";
+function useGenerateMcpKey() {
+  const { http, walletsVersion } = useHorusContext();
+  void walletsVersion;
+  const [pending, setPending] = useState10(false);
+  const [error, setError] = useState10(void 0);
+  const [lastResult, setLastResult] = useState10(null);
+  const generate = useCallback13(
+    async (input) => {
+      setPending(true);
+      setError(void 0);
+      try {
+        const response = await http.post("/mcp/keys/generate", {
+          name: input.name,
+          network: input.network,
+          wallet_index: typeof input.walletIndex === "number" ? input.walletIndex : 0,
+          expires_at: input.expiresAt,
+          allowed_ips: input.allowedIps,
+          allowed_tools: input.allowedTools,
+          max_requests_per_minute: input.maxRequestsPerMinute,
+          mcp_password: input.mcpPassword
+        });
+        setLastResult(response);
+        return response;
+      } catch (err) {
+        const e = err instanceof Error ? err : new Error(String(err));
+        setError(e);
+        throw e;
+      } finally {
+        setPending(false);
+      }
+    },
+    [http]
+  );
+  return { generate, pending, error, lastResult, clearLastResult: () => setLastResult(null) };
+}
+function useMcpKeys() {
+  const { http, state, mcpKeysVersion } = useHorusContext();
+  const [keys, setKeys] = useState10([]);
+  const [ready, setReady] = useState10(false);
+  const [error, setError] = useState10(void 0);
+  const load = useCallback13(async () => {
+    if (state.status !== "authenticated") {
+      setKeys([]);
+      setReady(true);
+      return;
+    }
+    setReady(false);
+    setError(void 0);
+    try {
+      const response = await http.get("/mcp/keys");
+      setKeys(response?.keys ?? []);
+    } catch (err) {
+      setError(err instanceof Error ? err : new Error(String(err)));
+    } finally {
+      setReady(true);
+    }
+  }, [http, state.status]);
+  useEffect5(() => {
+    void load();
+  }, [load, mcpKeysVersion]);
+  return { ready, keys, refresh: load, error };
+}
+function useRevokeMcpKey() {
+  const { http, revalidateMcpKeys } = useHorusContext();
+  const [pending, setPending] = useState10(false);
+  const [error, setError] = useState10(void 0);
+  const revoke = useCallback13(
+    async (prefix) => {
+      if (!prefix) throw new Error("useRevokeMcpKey: prefix is required");
+      setPending(true);
+      setError(void 0);
+      try {
+        const response = await http.del(
+          `/mcp/keys/${encodeURIComponent(prefix)}`
+        );
+        revalidateMcpKeys();
+        return response;
+      } catch (err) {
+        const e = err instanceof Error ? err : new Error(String(err));
+        setError(e);
+        throw e;
+      } finally {
+        setPending(false);
+      }
+    },
+    [http, revalidateMcpKeys]
+  );
+  return { revoke, pending, error };
+}
+function useUpdateMcpKey() {
+  const { http, revalidateMcpKeys } = useHorusContext();
+  const [pending, setPending] = useState10(false);
+  const [error, setError] = useState10(void 0);
+  const update = useCallback13(
+    async (prefix, updates) => {
+      if (!prefix) throw new Error("useUpdateMcpKey: prefix is required");
+      setPending(true);
+      setError(void 0);
+      try {
+        const response = await http.put(
+          `/mcp/keys/${encodeURIComponent(prefix)}`,
+          {
+            expires_at: updates.expiresAt,
+            allowed_ips: updates.allowedIps,
+            allowed_tools: updates.allowedTools,
+            max_requests_per_minute: updates.maxRequestsPerMinute
+          }
+        );
+        revalidateMcpKeys();
+        return response;
+      } catch (err) {
+        const e = err instanceof Error ? err : new Error(String(err));
+        setError(e);
+        throw e;
+      } finally {
+        setPending(false);
+      }
+    },
+    [http, revalidateMcpKeys]
+  );
+  return { update, pending, error };
+}
 export {
   HorusAuthModal,
   HorusHttpError,
@@ -1181,12 +1367,16 @@ export {
   useChain,
   useCreateWallet,
   useExportWallet,
+  useGenerateMcpKey,
   useHorusAuth,
+  useMcpKeys,
+  useRevokeMcpKey,
   useSendTransaction,
   useSignMessage,
   useSignTypedData,
   useSwitchChain,
   useTransfer,
+  useUpdateMcpKey,
   useUser,
   useWallets
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@horus-wallet/sdk-react",
-  "version": "0.3.0-beta.1",
+  "version": "0.3.0-beta.2",
   "description": "React bindings for the Horus embedded-wallet SDK — provider + hooks + drop-in components for partners to ship wallet UX in minutes.",
   "license": "MIT",
   "author": "Horus Wallet <info@horuswallet.com>",