@inco/js 0.6.8 → 0.6.9

package/dist/types/generated/es/inco/kms/lite/v1/kms_service_pb.d.ts

@@ -43,113 +43,6 @@ export type KeyResponse = Message<"inco.kms.lite.v1.KeyResponse"> & {
  * Use `create(KeyResponseSchema)` to create a new message.
  */
 export declare const KeyResponseSchema: GenMessage<KeyResponse>;
-/**
- * ReencryptRequest is the request type for the KmsService/Reencrypt RPC method.
- *
- * @generated from message inco.kms.lite.v1.ReencryptRequest
- */
-export type ReencryptRequest = Message<"inco.kms.lite.v1.ReencryptRequest"> & {
-    /**
-     * user_address is the Ethereum address of the user who requested the
-     * reencryption, prefixed with 0x.
-     *
-     * @generated from field: string user_address = 1;
-     */
-    userAddress: string;
-    /**
-     * ephemeral_pub_key is the encoding of the user's public ephemeral
-     * encryption key (secp256k1), generated by the user for this reencryption
-     * request. It is encoded in its 33-byte compressed format.
-     *
-     * @generated from field: bytes ephemeral_pub_key = 2;
-     */
-    ephemeralPubKey: Uint8Array;
-    /**
-     * eip712_signature is an EIP-712 signature of the following EIP-712 typed data by
-     * `user_address` (note that we only give a JSON representation for the sake of
-     * readability, but the actual signed data is defined in the EIP-712 spec):
-     *
-     * ```json
-     * {
-     *   "types": {
-     *     "EIP712Domain": [
-     *       { "name": "name", "type": "string" },
-     *       { "name": "version", "type": "string" },
-     *       { "name": "chainId", "type": "uint256" }
-     *     ],
-     *     "ReencryptionRequest": [
-     *       { "name": "publicKey", "type": "bytes" }
-     *     ]
-     *   },
-     *   "primaryType": "ReencryptionRequest",
-     *   "domain": {
-     *     "name": "IncoReencryption",
-     *     "version": "0.1.0",
-     *     "chainId": "<host_chain_id>",
-     *     "verifyingContract": "<acl_address>",
-     *     "salt": "0x0000000000000000000000000000000000000000000000000000000000000000"
-     *   },
-     *   "message": {
-     *     "publicKey": "<ephemeral_pub_key>"
-     *   }
-     * }
-     * ```
-     *
-     * @generated from field: bytes eip712_signature = 3;
-     */
-    eip712Signature: Uint8Array;
-    /**
-     * handles_with_proofs is the list of handles of the ciphertexts to reencrypt,
-     * along with the ACL proof that the user has access to the ciphertext.
-     *
-     * @generated from field: repeated inco.kms.lite.v1.HandleWithProof handles_with_proofs = 4;
-     */
-    handlesWithProofs: HandleWithProof[];
-};
-/**
- * Describes the message inco.kms.lite.v1.ReencryptRequest.
- * Use `create(ReencryptRequestSchema)` to create a new message.
- */
-export declare const ReencryptRequestSchema: GenMessage<ReencryptRequest>;
-/**
- * ReencryptResponse is the response type for the KmsService/Reencrypt RPC method.
- *
- * @generated from message inco.kms.lite.v1.ReencryptResponse
- */
-export type ReencryptResponse = Message<"inco.kms.lite.v1.ReencryptResponse"> & {
-    /**
-     * payload is the reencryption response payload.
-     *
-     * @generated from field: inco.kms.lite.v1.ReencryptionResponsePayload payload = 1;
-     */
-    payload?: ReencryptionResponsePayload;
-};
-/**
- * Describes the message inco.kms.lite.v1.ReencryptResponse.
- * Use `create(ReencryptResponseSchema)` to create a new message.
- */
-export declare const ReencryptResponseSchema: GenMessage<ReencryptResponse>;
-/**
- * ReencryptionResponsePayload is the payload of the ReencryptResponse,
- * separated out because it is signed by the KMS using its signing key.
- *
- * @generated from message inco.kms.lite.v1.ReencryptionResponsePayload
- */
-export type ReencryptionResponsePayload = Message<"inco.kms.lite.v1.ReencryptionResponsePayload"> & {
-    /**
-     * user_ciphertexts is the list of ciphertexts that were reencrypted to the
-     * user's public key. Each ciphertext at index `i` corresponds to the ciphertext
-     * at index `i` in the `ReencryptRequest`.
-     *
-     * @generated from field: repeated inco.fhe.v1.TypedCiphertext user_ciphertexts = 1;
-     */
-    userCiphertexts: TypedCiphertext[];
-};
-/**
- * Describes the message inco.kms.lite.v1.ReencryptionResponsePayload.
- * Use `create(ReencryptionResponsePayloadSchema)` to create a new message.
- */
-export declare const ReencryptionResponsePayloadSchema: GenMessage<ReencryptionResponsePayload>;
 /**
  * AttestedDecryptRequest is the request type for the KmsService/AttestedDecrypt RPC method.
  *
@@ -163,10 +56,21 @@ export type AttestedDecryptRequest = Message<"inco.kms.lite.v1.AttestedDecryptRe
      * @generated from field: string user_address = 1;
      */
     userAddress: string;
+    /**
+     * reencrypt_pub_key is the encoding of the user's public
+     * encryption key (secp256k1) used to reencrypt the result for.
+     * It is encoded in its 33-byte compressed format.
+     * If empty, the KMS will return plaintext decryption instead of reencryption.
+     *
+     * @generated from field: bytes reencrypt_pub_key = 2;
+     */
+    reencryptPubKey: Uint8Array;
     /**
      * eip712_signature is an EIP-712 signature of the following EIP-712 typed data by
      * `user_address` (note that we only give a JSON representation for the sake of
-     * readability, but the actual signed data is defined in the EIP-712 spec):
+     * readability, but the actual signed data is defined in the EIP-712 spec) where:
+     *     handles - list of 0x prefixed handles to decrypt
+     *     publicKey - 0x prefixed reencrypt_pub_key (if any). "0x" otherwise if empty.
      *
      * ```json
      * {
@@ -177,7 +81,8 @@ export type AttestedDecryptRequest = Message<"inco.kms.lite.v1.AttestedDecryptRe
      *       { "name": "chainId", "type": "uint256" }
      *     ],
      *     "AttestedDecryptRequest": [
-     *       { "name": "handles", "type": "bytes32[]" }
+     *       { "name": "handles", "type": "bytes32[]" },
+     *       { "name": "publicKey", "type": "bytes" },
      *     ]
      *   },
      *   "primaryType": "AttestedDecryptRequest",
@@ -187,12 +92,13 @@ export type AttestedDecryptRequest = Message<"inco.kms.lite.v1.AttestedDecryptRe
      *     "chainId": "<host_chain_id>",
      *   },
      *   "message": {
-     *     "handles": ["<handle1>", "<handle2>", ...]
+     *     "handles": ["<handle1>", "<handle2>", ...],
+     *     "publicKey": "0x<reencrypt_pub_key>"
      *   }
      * }
      * ```
      *
-     * @generated from field: bytes eip712_signature = 2;
+     * @generated from field: bytes eip712_signature = 3;
      */
     eip712Signature: Uint8Array;
     /**
@@ -200,7 +106,7 @@ export type AttestedDecryptRequest = Message<"inco.kms.lite.v1.AttestedDecryptRe
      * Either the user_address or sharer must have ACL access to the handles for the attested
      * decryption to succeed.
      *
-     * @generated from field: repeated inco.kms.lite.v1.HandleWithProof handles_with_proofs = 3;
+     * @generated from field: repeated inco.kms.lite.v1.HandleWithProof handles_with_proofs = 4;
      */
     handlesWithProofs: HandleWithProof[];
 };
@@ -367,6 +273,40 @@ export type AttestedComputeResponse = Message<"inco.kms.lite.v1.AttestedComputeR
  * Use `create(AttestedComputeResponseSchema)` to create a new message.
  */
 export declare const AttestedComputeResponseSchema: GenMessage<AttestedComputeResponse>;
+/**
+ * Plaintext contains the decrypted plaintext value.
+ *
+ * @generated from message inco.kms.lite.v1.Plaintext
+ */
+export type Plaintext = Message<"inco.kms.lite.v1.Plaintext"> & {
+    /**
+     * value is the decrypted plaintext value as a 32-byte word.
+     *
+     * @generated from field: bytes value = 1;
+     */
+    value: Uint8Array;
+};
+/**
+ * Describes the message inco.kms.lite.v1.Plaintext.
+ * Use `create(PlaintextSchema)` to create a new message.
+ */
+export declare const PlaintextSchema: GenMessage<Plaintext>;
+/**
+ * Reencryption contains the reencrypted ciphertext value.
+ *
+ * @generated from message inco.kms.lite.v1.Reencryption
+ */
+export type Reencryption = Message<"inco.kms.lite.v1.Reencryption"> & {
+    /**
+     * @generated from field: inco.fhe.v1.TypedCiphertext user_ciphertext = 1;
+     */
+    userCiphertext?: TypedCiphertext;
+};
+/**
+ * Describes the message inco.kms.lite.v1.Reencryption.
+ * Use `create(ReencryptionSchema)` to create a new message.
+ */
+export declare const ReencryptionSchema: GenMessage<Reencryption>;
 /**
  * DecryptionAttestation contains the attestation for the decryption of a single handle.
  *
@@ -380,11 +320,28 @@ export type DecryptionAttestation = Message<"inco.kms.lite.v1.DecryptionAttestat
      */
     handle: string;
     /**
-     * plaintext is the decrypted plaintext value as a 32-byte word.
-     *
-     * @generated from field: bytes plaintext = 2;
-     */
-    plaintext: Uint8Array;
+     * @generated from oneof inco.kms.lite.v1.DecryptionAttestation.value
+     */
+    value: {
+        /**
+         * Returns plaintext if reencrypt_pub_key was empty in the request
+         *
+         * @generated from field: inco.kms.lite.v1.Plaintext plaintext = 2;
+         */
+        value: Plaintext;
+        case: "plaintext";
+    } | {
+        /**
+         * Returns encrypted ciphertext if reencrypt_pub_key was set in the request
+         *
+         * @generated from field: inco.kms.lite.v1.Reencryption reencryption = 3;
+         */
+        value: Reencryption;
+        case: "reencryption";
+    } | {
+        case: undefined;
+        value?: undefined;
+    };
     /**
      * signature is the attestation from the covalidator for the (handle,plaintext) pair.
      * This signature will be verified on the host chain.
@@ -421,7 +378,7 @@ export type DecryptionAttestation = Message<"inco.kms.lite.v1.DecryptionAttestat
      * }
      * ```
      *
-     * @generated from field: bytes signature = 3;
+     * @generated from field: bytes signature = 4;
      */
     signature: Uint8Array;
 };
@@ -536,20 +493,10 @@ export declare const KmsService: GenService<{
         input: typeof KeyRequestSchema;
         output: typeof KeyResponseSchema;
     };
-    /**
-     * Reencrypt reencrypts a ciphertext using the ephemeral public key of the
-     * user.
-     *
-     * @generated from rpc inco.kms.lite.v1.KmsService.Reencrypt
-     */
-    reencrypt: {
-        methodKind: "unary";
-        input: typeof ReencryptRequestSchema;
-        output: typeof ReencryptResponseSchema;
-    };
     /**
      * AttestedDecrypt decrypts multiple ciphertexts and provides an attestation
      * that the decryption was performed correctly.
+     * Can optionally reencrypt the result of the decryption to a desired public key.
      *
      * @generated from rpc inco.kms.lite.v1.KmsService.AttestedDecrypt
      */

package/dist/types/generated/lightning.d.ts

@@ -13,8 +13,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 2;
         readonly shortSalt: "725458969";
     };
-    readonly decryptSigner: "0x4736F8CE685760017eEc130AC3FFc6187f5A1F95";
-    readonly eciesPublicKey: "0x038a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1";
     readonly blockNumber: 32124925;
     readonly deployDate: "2025-10-09T13:55:42.997Z";
     readonly commit: "v0.5.3-10-ga4f2312d";
@@ -34,8 +32,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 2;
         readonly shortSalt: "904635675";
     };
-    readonly decryptSigner: "0x138AcbDC1FA02b955949d8Da09E546Ea7748710f";
-    readonly eciesPublicKey: "0x038a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1";
     readonly blockNumber: 3696905;
     readonly deployDate: "2025-10-03T13:24:44.682Z";
     readonly commit: "v0.5.3-6-g8db0f27f-dirty";
@@ -55,8 +51,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 0;
         readonly shortSalt: "904635675";
     };
-    readonly decryptSigner: "0x138AcbDC1FA02b955949d8Da09E546Ea7748710f";
-    readonly eciesPublicKey: "0x038a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1";
     readonly blockNumber: 3344310;
     readonly deployDate: "2025-09-29T11:14:02.599Z";
     readonly commit: "v0.5.1-5-g4135c790-dirty";
@@ -76,8 +70,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 0;
         readonly shortSalt: "183408998";
     };
-    readonly decryptSigner: "0xA8822DE8910f66D3d03F1eAfe2C0141dBc327Ee0";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 26296576;
     readonly deployDate: "2025-05-27T15:57:24.175Z";
     readonly commit: "v5-3-gec8b6aae-dirty";
@@ -97,8 +89,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 29;
         readonly shortSalt: "183408998";
     };
-    readonly decryptSigner: "0xA8822DE8910f66D3d03F1eAfe2C0141dBc327Ee0";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 13464615;
     readonly deployDate: "2025-04-22T16:01:14.380Z";
     readonly commit: "v3-28-g93c05a49-dirty";
@@ -118,8 +108,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 29;
         readonly shortSalt: "183408998";
     };
-    readonly decryptSigner: "0xA8822DE8910f66D3d03F1eAfe2C0141dBc327Ee0";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 24784654;
     readonly deployDate: "2025-04-22T16:00:02.028Z";
     readonly commit: "v3-28-g93c05a49-dirty";
@@ -139,8 +127,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 0;
         readonly shortSalt: "863421733";
     };
-    readonly decryptSigner: "0xA8822DE8910f66D3d03F1eAfe2C0141dBc327Ee0";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 25737175;
     readonly deployDate: "2025-05-14T17:10:44.285Z";
     readonly commit: "v4-11-g4a1f413a-dirty";
@@ -160,8 +146,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 29;
         readonly shortSalt: "863421733";
     };
-    readonly decryptSigner: "0xA8822DE8910f66D3d03F1eAfe2C0141dBc327Ee0";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 25719113;
     readonly deployDate: "2025-05-14T07:08:39.059Z";
     readonly commit: "v4";
@@ -181,8 +165,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 1;
         readonly shortSalt: "297966649";
     };
-    readonly decryptSigner: "0x4736F8CE685760017eEc130AC3FFc6187f5A1F95";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 27543410;
     readonly deployDate: "2025-06-25T12:38:32.856Z";
     readonly commit: "v5-17-ga03e4b32-dirty";
@@ -202,8 +184,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 0;
         readonly shortSalt: "297966649";
     };
-    readonly decryptSigner: "0x4736F8CE685760017eEc130AC3FFc6187f5A1F95";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 26894782;
     readonly deployDate: "2025-06-10T12:17:35.790Z";
     readonly commit: "v5-13-gd6b19c10-dirty";
@@ -223,8 +203,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 1;
         readonly shortSalt: "340846814";
     };
-    readonly decryptSigner: "0x138AcbDC1FA02b955949d8Da09E546Ea7748710f";
-    readonly eciesPublicKey: "0x038a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1";
     readonly blockNumber: 1718868;
     readonly deployDate: "2025-09-10T15:20:25.654Z";
     readonly commit: "v6-7-gf96f358e-dirty";
@@ -244,8 +222,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 1;
         readonly shortSalt: "340846814";
     };
-    readonly decryptSigner: "0x138AcbDC1FA02b955949d8Da09E546Ea7748710f";
-    readonly eciesPublicKey: "0x038a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1";
     readonly blockNumber: 1717229;
     readonly deployDate: "2025-09-10T14:53:07.218Z";
     readonly commit: "v6-7-gf96f358e-dirty";
@@ -265,8 +241,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 1;
         readonly shortSalt: "340846814";
     };
-    readonly decryptSigner: "0x138AcbDC1FA02b955949d8Da09E546Ea7748710f";
-    readonly eciesPublicKey: "0x038a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1";
     readonly blockNumber: 17365942;
     readonly deployDate: "2025-08-15T17:35:15.208Z";
     readonly commit: "v0.2.17-35-g8cca6b4e-dirty";
@@ -286,8 +260,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 0;
         readonly shortSalt: "340846814";
     };
-    readonly decryptSigner: "0x138AcbDC1FA02b955949d8Da09E546Ea7748710f";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 26122863;
     readonly deployDate: "2025-05-23T15:26:57.031Z";
     readonly commit: "v5-2-g8957c16b-dirty";
@@ -307,8 +279,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 29;
         readonly shortSalt: "340846814";
     };
-    readonly decryptSigner: "0xA8822DE8910f66D3d03F1eAfe2C0141dBc327Ee0";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 13464197;
     readonly deployDate: "2025-04-22T15:57:26.862Z";
     readonly commit: "v3-28-g93c05a49-dirty";
@@ -328,8 +298,6 @@ export declare const lightningDeployments: readonly [{
         readonly patch: 29;
         readonly shortSalt: "340846814";
     };
-    readonly decryptSigner: "0xA8822DE8910f66D3d03F1eAfe2C0141dBc327Ee0";
-    readonly eciesPublicKey: "0x048a582d29083c2f3fefe024bf4dd9ab913ab8973716977da5f01106e0b84095b1e647a9e377175fcb66bda05087c93b05e1fd53a704d0914bb23a0b2a69e9f235";
     readonly blockNumber: 24784527;
     readonly deployDate: "2025-04-22T15:55:47.828Z";
     readonly commit: "v3-28-g93c05a49-dirty";

package/dist/types/generated/local-node.d.ts

@@ -1,7 +1,6 @@
 export declare const localNodeLightningConfig: {
     readonly testnet: {
         readonly executorAddress: "0x63D8135aF4D393B1dB43B649010c8D3EE19FC9fd";
-        readonly eciesPublicKey: "0x0235692e009a07315b5505fbfb44144553b2b163e0d9eddc705a1c49ba4d0dcb91";
         readonly chainId: 31337;
         readonly covalidatorUrl: "http://localhost:50055";
         readonly hostChainRpcUrl: "http://localhost:8545";
@@ -9,7 +8,6 @@ export declare const localNodeLightningConfig: {
     };
     readonly devnet: {
         readonly executorAddress: "0x3473820DcAa71Af8157b93C7f2bf1c676A2A39A6";
-        readonly eciesPublicKey: "0x0232aae7e5deffacd4e682821a95f4200d4327b7ac1e288d147cfa343f751e3f61";
         readonly chainId: 31337;
         readonly covalidatorUrl: "http://localhost:50055";
         readonly hostChainRpcUrl: "http://localhost:8545";
@@ -17,15 +15,13 @@ export declare const localNodeLightningConfig: {
     };
     readonly alphanet: {
         readonly executorAddress: "0x28676Cd3b10b03b2FDF105Ba280425b45a674F2A";
-        readonly eciesPublicKey: "0x034bc20c48ff1b8e86563dff8dd2ec3936bdea0ab570986780971cdc4c3871fe09";
         readonly chainId: 31337;
         readonly covalidatorUrl: "http://localhost:50055";
         readonly hostChainRpcUrl: "http://localhost:8545";
-        readonly senderPrivateKey: "0xa0b9f1fb7c6803e5692b73bd08ccc5c468b15eebe7df4398d048e9a58f785706";
+        readonly senderPrivateKey: "0x59c6995e998f97a5a0044966f0945389dc9e86dae88c7a8412f4603b6b78690d";
     };
     readonly scratch: {
         readonly executorAddress: "0x195ec7fDf68fD835b9F78d6eb13E280cC2e25fdD";
-        readonly eciesPublicKey: "0x02516bda9e68a1c3dce74dc1b6ed7d91a91d51c1e1933947f06331cef59631e9eb";
         readonly chainId: 31337;
         readonly covalidatorUrl: "http://localhost:50055";
         readonly hostChainRpcUrl: "http://127.0.0.1:8567";

package/dist/types/lite/deployments.d.ts

@@ -1,6 +1,24 @@
 import { Chainish } from '../chain.js';
-import { lightningDeployments } from '../generated/lightning.js';
 export type Address = `0x${string}`;
-export type IncoLiteDeployment = (typeof lightningDeployments)[number];
+export type IncoLiteDeployment = {
+    active: boolean;
+    blockNumber: number;
+    chainId: number;
+    chainName: string;
+    commit: string;
+    deployDate: string;
+    deployer: string;
+    executorAddress: string;
+    majorVersion: number;
+    name: string;
+    pepper: string;
+    salt: string;
+    version: {
+        major: number;
+        minor: number;
+        patch: number;
+        shortSalt: string;
+    };
+};
 export declare function getActiveLightningDeployment(chain: Chainish): IncoLiteDeployment;
 export declare function getLightningDeployments(chainId: Chainish): readonly IncoLiteDeployment[];

package/dist/types/lite/index.d.ts

@@ -1,5 +1,5 @@
 export * from '../generated/abis/lightning.js';
-export type { AttestedComputeRequest, AttestedDecryptRequest, KmsService, ReencryptRequest, } from '../generated/es/inco/kms/lite/v1/kms_service_pb.js';
+export type { AttestedComputeRequest, AttestedDecryptRequest, KmsService, } from '../generated/es/inco/kms/lite/v1/kms_service_pb.js';
 export type { HandleWithProof } from '../generated/es/inco/kms/lite/v1/types_pb.js';
 export * from './attested-compute.js';
 export * from './attested-decrypt.js';

package/dist/types/lite/lightning.d.ts

@@ -1,9 +1,9 @@
-import { Account, Chain, Transport, WalletClient } from 'viem';
+import { Account, Chain, PublicClient, Transport, WalletClient } from 'viem';
 import { AllowanceVoucherWithSig } from '../advancedacl/types.js';
 import { AttestedComputeOP } from '../attestedcompute/types.js';
 import { DecryptionAttestation } from '../attesteddecrypt/index.js';
 import { Address, HexString } from '../binary.js';
-import { EciesScheme, PlaintextOf, SupportedFheType } from '../encryption/index.js';
+import { EciesScheme, Encryptor, PlaintextOf, SupportedFheType } from '../encryption/index.js';
 import { lightningDeployments } from '../generated/lightning.js';
 import { localNodeLightningConfig } from '../generated/local-node.js';
 import { LocalNodeEnv } from '../local/index.js';
@@ -26,12 +26,10 @@ export type EncryptionContext = {
 };
 export type DeploymentSlice = {
     executorAddress: string;
-    eciesPublicKey: string;
     chainId: number;
 };
 export type CustomConfig = {
     executorAddress: string;
-    eciesPublicKey: string;
     chainId: number;
     covalidatorUrl: string;
     hostChainRpcUrl?: string;
@@ -46,16 +44,14 @@ export declare class Lightning<T extends DeploymentSlice = DeploymentSlice> {
     private readonly _deployment;
     readonly covalidatorUrl: string;
     readonly executorAddress: Address;
-    readonly eciesPublicKey: HexString;
     readonly chainId: bigint;
-    private readonly encryptor;
     private readonly ephemeralKeypair;
     private readonly kmsClient;
     private constructor();
     /**
      * Get a Lightning instance bound to the latest Lightning deployment for the Base Sepolia testnet.
      */
-    static baseSepoliaTestnet(): Lightning<Deployment>;
+    static baseSepoliaTestnet(): Promise<Lightning<Deployment>>;
     /**
      * Get a Lightning instance bound to our canonical Anvil-based test node and test Covalidator node
      *
@@ -71,7 +67,7 @@ export declare class Lightning<T extends DeploymentSlice = DeploymentSlice> {
      * corresponding Pepper.
      *
      */
-    static localNode(env?: LocalNodeEnv | LocalNodePepper): Lightning<CustomDeployment>;
+    static localNode(env?: LocalNodeEnv | LocalNodePepper): Promise<Lightning<CustomDeployment>>;
     /**
      * Get a Lightning instance bound to a local node from a file containing a LocalNodeEnv environment .
      *
@@ -83,14 +79,15 @@ export declare class Lightning<T extends DeploymentSlice = DeploymentSlice> {
      *
      * @param id this is an object containing either the pair of name and chainId or the executorAddress and chainId
      */
-    static at(id: DeploymentId): Lightning<Deployment>;
+    static at(id: DeploymentId): Promise<Lightning<Deployment>>;
     /**
      * Get a Lightning deployment for a local or custom node
      *
      * @param config this is an object containing the executorAddress, eciesPublicKey, chainId and covalidatorUrl.
      *    additional fields past will be made available as part of the `deployment` property.
      */
-    static custom<T extends CustomConfig>(config: T): Lightning<DeploymentSlice & T>;
+    static custom<T extends CustomConfig>(config: T): Promise<Lightning<DeploymentSlice & T>>;
+    static getEciesPublicKey(client: PublicClient, executorAddress: Address): Promise<HexString>;
     /**
      * Get the latest deployment for a given pepper, which usually denotes a family of deployments distinct from their
      * version such as 'devnet', 'testnet', 'mainnet', etc.
@@ -107,7 +104,7 @@ export declare class Lightning<T extends DeploymentSlice = DeploymentSlice> {
      * @param pepper the pepper to use to filter the deployments
      * @param chainId the chainId to use to filter the deployments
      */
-    static latest<P extends Pepper>(pepper: P, chainId: ChainId): Lightning<Deployment>;
+    static latest<P extends Pepper>(pepper: P, chainId: ChainId): Promise<Lightning<Deployment>>;
     get deployment(): T;
     /**
      * Encrypt a value using the public ECIES key of the Lightning deployment.
@@ -116,7 +113,7 @@ export declare class Lightning<T extends DeploymentSlice = DeploymentSlice> {
      * @param accountAddress the address of the account interacting with the dapp contract, normally an Externally Owned Account (EOA)
      * @param dappAddress the address of the dapp contract that interacts with the Inco Lightning contract or library
      */
-    encrypt<T extends SupportedNativeType>(value: T, { accountAddress, dappAddress }: EncryptionContext): Promise<HexString>;
+    encrypt<T extends SupportedNativeType>(value: T, { accountAddress, dappAddress }: EncryptionContext, encryptor: Encryptor<EciesScheme>): Promise<HexString>;
     /**
      * Obtain a reencryptor for a particular Externally Owned Account (EOA) to request decrypted values.
      * The account associated with the walletClient must have permissions to decrypt the handle or ciphertext passed
@@ -125,6 +122,7 @@ export declare class Lightning<T extends DeploymentSlice = DeploymentSlice> {
      * @param walletClient the wallet client to use for signing the reencrypt request.
      */
     getReencryptor(walletClient: WalletClient<Transport, Chain, Account>): Promise<Reencryptor<EciesScheme>>;
+    getEncryptor(eciesPubkey: HexString): Encryptor<EciesScheme>;
     /**
      * Grants a session key allowance voucher for secure reencryption operations.
      *
@@ -245,6 +243,20 @@ export declare class Lightning<T extends DeploymentSlice = DeploymentSlice> {
      * @returns A promise that resolves to a compute attestation.
      */
     attestedCompute(ephemeralKeypair: Secp256k1Keypair, lhsHandle: HexString, op: AttestedComputeOP, rhsPlaintext: bigint | boolean, allowanceVoucherWithSig: AllowanceVoucherWithSig, backoffConfig?: Partial<BackoffConfig>): Promise<DecryptionAttestation<EciesScheme, SupportedFheType>>;
+    /**
+     * Get an decryption of publicly revealed handles.
+     *
+     * @param handles - The handles to decrypt
+     * @param backoffConfig - The backoff configuration for the attested decrypt request
+     * @returns The decryption attestations
+     *
+     * @example
+     * ```typescript
+     * const response = await lightning.attestedReveal([handle1, handle2]);
+     * const { plaintext, covalidatorSignature } = response[0];
+     * ```
+     */
+    attestedReveal(handles: HexString[], backoffConfig?: Partial<BackoffConfig>): Promise<Array<DecryptionAttestation<EciesScheme, SupportedFheType>>>;
     /**
      * Get the GRPC endpoint for the covalidator that services this deployment.
      */

package/dist/types/lite/reencrypt.d.ts

@@ -1,10 +1,9 @@
 import { Client } from '@connectrpc/connect';
-import { Account, Chain, Hex, Transport, WalletClient } from 'viem';
+import { Account, Chain, Transport, WalletClient } from 'viem';
 import { SupportedChain } from '../chain.js';
 import { EciesScheme, PlaintextOf, SupportedFheType } from '../encryption/encryption.js';
-import { KmsService, ReencryptResponse } from '../generated/es/inco/kms/lite/v1/kms_service_pb.js';
+import { AttestedDecryptResponse, DecryptionAttestation as DecryptionAttestationProto, KmsService } from '../generated/es/inco/kms/lite/v1/kms_service_pb.js';
 import { Handle } from '../handle.js';
-import type { EIP712 } from '../reencryption/eip712.js';
 import type { Reencryptor, ReencryptorArgs } from '../reencryption/types.js';
 import { Secp256k1Keypair } from './ecies.js';
 export interface IncoLiteReencryptorArgs extends ReencryptorArgs {
@@ -12,12 +11,11 @@ export interface IncoLiteReencryptorArgs extends ReencryptorArgs {
     kmsConnectRpcEndpointOrClient?: string | Client<typeof KmsService>;
     ephemeralKeypair?: Secp256k1Keypair;
 }
-export declare function reencryptEIP712(chainId: bigint, ephemeralPubKey: Uint8Array): EIP712<{
-    publicKey: Hex;
-}>;
 export declare function incoLiteReencryptor({ kmsConnectRpcEndpointOrClient, chainId, walletClient, ephemeralKeypair, }: IncoLiteReencryptorArgs): Promise<Reencryptor<EciesScheme>>;
 export declare function getKmsClient(kmsConnectRpcEndpointOrClient: string | Client<typeof KmsService>): Client<typeof KmsService>;
-export declare function decryptGrpcResponse<T extends SupportedFheType>(response: ReencryptResponse, ephemeralKeypair: Secp256k1Keypair, handle: Handle): Promise<PlaintextOf<1, T>>;
+export declare function decryptGrpcResponse<T extends SupportedFheType>(response: AttestedDecryptResponse, ephemeralKeypair: Secp256k1Keypair, handle: Handle): Promise<PlaintextOf<1, T>>;
+export declare function decryptGrpcDecryptionAttestation(attestation: DecryptionAttestationProto, reencryptKeypair: Secp256k1Keypair): Promise<DecryptionAttestationProto>;
+export declare function decryptGrpcDecryptResponse(response: AttestedDecryptResponse, reencryptKeypair: Secp256k1Keypair): Promise<AttestedDecryptResponse>;
 export declare function defaultCovalidatorGrpc(chain: SupportedChain): string;
 export declare function lightningDevnetCovalidatorGrpc(chain: SupportedChain): string;
 export declare function lightningTestnetCovalidatorGrpc(chain: SupportedChain): string;

package/dist/types/test/mocks.d.ts

@@ -0,0 +1,12 @@
+import { Account, Chain, Transport, WalletClient } from 'viem';
+import { vi } from 'vitest';
+import { KmsClient } from '../kms/client.js';
+interface MinimalKmsClient {
+    attestedCompute: ReturnType<typeof vi.fn>;
+    attestedDecrypt: ReturnType<typeof vi.fn>;
+    key: ReturnType<typeof vi.fn>;
+    reencrypt: ReturnType<typeof vi.fn>;
+}
+export declare function createMockKmsClient(): MinimalKmsClient & KmsClient;
+export declare function createTestWalletClient(): WalletClient<Transport, Chain, Account>;
+export {};

package/dist/types/viem.d.ts

@@ -30,7 +30,7 @@ export declare const chains: {
         experimental_preconfirmationTime?: number | undefined | undefined;
         rpcUrls: {
             readonly default: {
-                readonly http: readonly ["https://sepolia.drpc.org"];
+                readonly http: readonly ["https://11155111.rpc.thirdweb.com"];
             };
         };
         sourceId?: number | undefined | undefined;