@incodetech/core 0.0.0-dev-20260512-e44bacb → 0.0.0-dev-20260512-cffbe28

package/dist/index.esm.js

@@ -1,11 +1,11 @@
-import { a as setup, n as isConfigured, r as reset } from "./setup-h75-vL1d.esm.js";
-import "./BaseWasmProvider-C2cw9STp.esm.js";
-import "./WasmUtilProvider-B8VtGgvF.esm.js";
+import { a as setup, n as isConfigured, r as reset } from "./setup-DyspWyTY.esm.js";
+import "./BaseWasmProvider-IiHnsP8E.esm.js";
+import "./WasmUtilProvider-BrEYcdhY.esm.js";
 import "./BrowserTimerProvider-BZGH3sYJ.esm.js";
 import "./api-eqRXuVG-.esm.js";
 import "./events-Bt1azl2B.esm.js";
 import "./endpoints-B3V1U9Dg.esm.js";
-import "./session-DWFMKdX6.esm.js";
+import "./session-DAspZUCj.esm.js";
 import "./IpifyProvider-ByL6JYxg.esm.js";
 import "./browserSimulation-CAH-V_iE.esm.js";
 

package/dist/mandatory-consent.d.ts

@@ -3,7 +3,7 @@ import "./Actor-YjWTo26u.js";
 import "./camera-B6UAKpM1.js";
 import "./types-DJSt3Ovt.js";
 import { a as RegulationTypes } from "./types-BA181GDD.js";
-import * as xstate89 from "xstate";
+import * as xstate254 from "xstate";
 
 //#region src/modules/mandatory-consent/types.d.ts
 type MandatoryConsentConfig = {
@@ -30,7 +30,7 @@ type MandatoryConsentContext = {
 type MandatoryConsentInput = {
   config: MandatoryConsentConfig;
 };
-declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentContext, {
+declare const mandatoryConsentMachine: xstate254.StateMachine<MandatoryConsentContext, {
   type: "LOAD";
 } | {
   type: "TOGGLE";
@@ -43,53 +43,53 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
 } | {
   type: "RESET";
 }, {
-  [x: string]: xstate89.ActorRefFromLogic<xstate89.PromiseActorLogic<FetchMandatoryConsentResponse, {
+  [x: string]: xstate254.ActorRefFromLogic<xstate254.PromiseActorLogic<FetchMandatoryConsentResponse, {
     config: MandatoryConsentConfig;
-  }, xstate89.EventObject>> | xstate89.ActorRefFromLogic<xstate89.PromiseActorLogic<void, {
+  }, xstate254.EventObject>> | xstate254.ActorRefFromLogic<xstate254.PromiseActorLogic<void, {
     consentId: string;
     isSigned: boolean;
-  }, xstate89.EventObject>> | undefined;
-}, xstate89.Values<{
+  }, xstate254.EventObject>> | undefined;
+}, xstate254.Values<{
   fetchConsent: {
     src: "fetchConsent";
-    logic: xstate89.PromiseActorLogic<FetchMandatoryConsentResponse, {
+    logic: xstate254.PromiseActorLogic<FetchMandatoryConsentResponse, {
       config: MandatoryConsentConfig;
-    }, xstate89.EventObject>;
+    }, xstate254.EventObject>;
     id: string | undefined;
   };
   submitConsent: {
     src: "submitConsent";
-    logic: xstate89.PromiseActorLogic<void, {
+    logic: xstate254.PromiseActorLogic<void, {
       consentId: string;
       isSigned: boolean;
-    }, xstate89.EventObject>;
+    }, xstate254.EventObject>;
     id: string | undefined;
   };
-}>, xstate89.Values<{
+}>, xstate254.Values<{
   setConsent: {
     type: "setConsent";
-    params: xstate89.NonReducibleUnknown;
+    params: xstate254.NonReducibleUnknown;
   };
   setError: {
     type: "setError";
-    params: xstate89.NonReducibleUnknown;
-  };
-  toggleSigned: {
-    type: "toggleSigned";
-    params: xstate89.NonReducibleUnknown;
+    params: xstate254.NonReducibleUnknown;
   };
   clearError: {
     type: "clearError";
-    params: xstate89.NonReducibleUnknown;
+    params: xstate254.NonReducibleUnknown;
   };
   resetContext: {
     type: "resetContext";
-    params: xstate89.NonReducibleUnknown;
+    params: xstate254.NonReducibleUnknown;
+  };
+  toggleSigned: {
+    type: "toggleSigned";
+    params: xstate254.NonReducibleUnknown;
   };
 }>, {
   type: "canSubmit";
   params: unknown;
-}, never, "error" | "idle" | "closed" | "finished" | "loading" | "submitting" | "display", string, MandatoryConsentInput, xstate89.NonReducibleUnknown, xstate89.EventObject, xstate89.MetaObject, {
+}, never, "error" | "idle" | "closed" | "finished" | "loading" | "submitting" | "display", string, MandatoryConsentInput, xstate254.NonReducibleUnknown, xstate254.EventObject, xstate254.MetaObject, {
   readonly id: "mandatoryConsent";
   readonly initial: "idle";
   readonly context: ({
@@ -98,70 +98,70 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
     spawn: {
       <TSrc extends "fetchConsent" | "submitConsent">(logic: TSrc, ...[options]: ({
         src: "fetchConsent";
-        logic: xstate89.PromiseActorLogic<FetchMandatoryConsentResponse, {
+        logic: xstate254.PromiseActorLogic<FetchMandatoryConsentResponse, {
           config: MandatoryConsentConfig;
-        }, xstate89.EventObject>;
+        }, xstate254.EventObject>;
         id: string | undefined;
       } extends infer T ? T extends {
         src: "fetchConsent";
-        logic: xstate89.PromiseActorLogic<FetchMandatoryConsentResponse, {
+        logic: xstate254.PromiseActorLogic<FetchMandatoryConsentResponse, {
           config: MandatoryConsentConfig;
-        }, xstate89.EventObject>;
+        }, xstate254.EventObject>;
         id: string | undefined;
       } ? T extends {
         src: TSrc;
-      } ? xstate89.ConditionalRequired<[options?: ({
+      } ? xstate254.ConditionalRequired<[options?: ({
         id?: T["id"] | undefined;
         systemId?: string;
-        input?: xstate89.InputFrom<T["logic"]> | undefined;
+        input?: xstate254.InputFrom<T["logic"]> | undefined;
         syncSnapshot?: boolean;
-      } & { [K in xstate89.RequiredActorOptions<T>]: unknown }) | undefined], xstate89.IsNotNever<xstate89.RequiredActorOptions<T>>> : never : never : never) | ({
+      } & { [K in xstate254.RequiredActorOptions<T>]: unknown }) | undefined], xstate254.IsNotNever<xstate254.RequiredActorOptions<T>>> : never : never : never) | ({
         src: "submitConsent";
-        logic: xstate89.PromiseActorLogic<void, {
+        logic: xstate254.PromiseActorLogic<void, {
           consentId: string;
           isSigned: boolean;
-        }, xstate89.EventObject>;
+        }, xstate254.EventObject>;
         id: string | undefined;
       } extends infer T_1 ? T_1 extends {
         src: "submitConsent";
-        logic: xstate89.PromiseActorLogic<void, {
+        logic: xstate254.PromiseActorLogic<void, {
           consentId: string;
           isSigned: boolean;
-        }, xstate89.EventObject>;
+        }, xstate254.EventObject>;
         id: string | undefined;
       } ? T_1 extends {
         src: TSrc;
-      } ? xstate89.ConditionalRequired<[options?: ({
+      } ? xstate254.ConditionalRequired<[options?: ({
         id?: T_1["id"] | undefined;
         systemId?: string;
-        input?: xstate89.InputFrom<T_1["logic"]> | undefined;
+        input?: xstate254.InputFrom<T_1["logic"]> | undefined;
         syncSnapshot?: boolean;
-      } & { [K_1 in xstate89.RequiredActorOptions<T_1>]: unknown }) | undefined], xstate89.IsNotNever<xstate89.RequiredActorOptions<T_1>>> : never : never : never)): xstate89.ActorRefFromLogic<xstate89.GetConcreteByKey<xstate89.Values<{
+      } & { [K_1 in xstate254.RequiredActorOptions<T_1>]: unknown }) | undefined], xstate254.IsNotNever<xstate254.RequiredActorOptions<T_1>>> : never : never : never)): xstate254.ActorRefFromLogic<xstate254.GetConcreteByKey<xstate254.Values<{
         fetchConsent: {
           src: "fetchConsent";
-          logic: xstate89.PromiseActorLogic<FetchMandatoryConsentResponse, {
+          logic: xstate254.PromiseActorLogic<FetchMandatoryConsentResponse, {
             config: MandatoryConsentConfig;
-          }, xstate89.EventObject>;
+          }, xstate254.EventObject>;
           id: string | undefined;
         };
         submitConsent: {
           src: "submitConsent";
-          logic: xstate89.PromiseActorLogic<void, {
+          logic: xstate254.PromiseActorLogic<void, {
             consentId: string;
             isSigned: boolean;
-          }, xstate89.EventObject>;
+          }, xstate254.EventObject>;
           id: string | undefined;
         };
       }>, "src", TSrc>["logic"]>;
-      <TLogic extends xstate89.AnyActorLogic>(src: TLogic, ...[options]: xstate89.ConditionalRequired<[options?: ({
+      <TLogic extends xstate254.AnyActorLogic>(src: TLogic, ...[options]: xstate254.ConditionalRequired<[options?: ({
         id?: never;
         systemId?: string;
-        input?: xstate89.InputFrom<TLogic> | undefined;
+        input?: xstate254.InputFrom<TLogic> | undefined;
         syncSnapshot?: boolean;
-      } & { [K in xstate89.RequiredLogicInput<TLogic>]: unknown }) | undefined], xstate89.IsNotNever<xstate89.RequiredLogicInput<TLogic>>>): xstate89.ActorRefFromLogic<TLogic>;
+      } & { [K in xstate254.RequiredLogicInput<TLogic>]: unknown }) | undefined], xstate254.IsNotNever<xstate254.RequiredLogicInput<TLogic>>>): xstate254.ActorRefFromLogic<TLogic>;
     };
     input: MandatoryConsentInput;
-    self: xstate89.ActorRef<xstate89.MachineSnapshot<MandatoryConsentContext, {
+    self: xstate254.ActorRef<xstate254.MachineSnapshot<MandatoryConsentContext, {
       type: "LOAD";
     } | {
       type: "TOGGLE";
@@ -173,7 +173,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
       type: "RETRY";
     } | {
       type: "RESET";
-    }, Record<string, xstate89.AnyActorRef | undefined>, xstate89.StateValue, string, unknown, any, any>, {
+    }, Record<string, xstate254.AnyActorRef | undefined>, xstate254.StateValue, string, unknown, any, any>, {
       type: "LOAD";
     } | {
       type: "TOGGLE";
@@ -185,7 +185,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
       type: "RETRY";
     } | {
       type: "RESET";
-    }, xstate89.AnyEventObject>;
+    }, xstate254.AnyEventObject>;
   }) => {
     config: MandatoryConsentConfig;
     consent: undefined;
@@ -222,7 +222,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
           } | {
             type: "RESET";
           };
-          self: xstate89.ActorRef<xstate89.MachineSnapshot<MandatoryConsentContext, {
+          self: xstate254.ActorRef<xstate254.MachineSnapshot<MandatoryConsentContext, {
             type: "LOAD";
           } | {
             type: "TOGGLE";
@@ -234,7 +234,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
             type: "RETRY";
           } | {
             type: "RESET";
-          }, Record<string, xstate89.AnyActorRef>, xstate89.StateValue, string, unknown, any, any>, {
+          }, Record<string, xstate254.AnyActorRef>, xstate254.StateValue, string, unknown, any, any>, {
             type: "LOAD";
           } | {
             type: "TOGGLE";
@@ -246,7 +246,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
             type: "RETRY";
           } | {
             type: "RESET";
-          }, xstate89.AnyEventObject>;
+          }, xstate254.AnyEventObject>;
         }) => {
           config: MandatoryConsentConfig;
         };
@@ -299,7 +299,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
           } | {
             type: "RESET";
           };
-          self: xstate89.ActorRef<xstate89.MachineSnapshot<MandatoryConsentContext, {
+          self: xstate254.ActorRef<xstate254.MachineSnapshot<MandatoryConsentContext, {
             type: "LOAD";
           } | {
             type: "TOGGLE";
@@ -311,7 +311,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
             type: "RETRY";
           } | {
             type: "RESET";
-          }, Record<string, xstate89.AnyActorRef>, xstate89.StateValue, string, unknown, any, any>, {
+          }, Record<string, xstate254.AnyActorRef>, xstate254.StateValue, string, unknown, any, any>, {
             type: "LOAD";
           } | {
             type: "TOGGLE";
@@ -323,7 +323,7 @@ declare const mandatoryConsentMachine: xstate89.StateMachine<MandatoryConsentCon
             type: "RETRY";
           } | {
             type: "RESET";
-          }, xstate89.AnyEventObject>;
+          }, xstate254.AnyEventObject>;
         }) => {
           consentId: string;
           isSigned: boolean;

package/dist/qe-signature.d.ts

@@ -1,6 +1,6 @@
 import { t as Manager } from "./Manager-D9pehGyp.js";
 import "./Actor-YjWTo26u.js";
-import { c as ConsentKey, f as QE_CONSENT_KEYS, g as getDefaultConsentChecks, i as electronicSignatureMachine, l as ElectronicSignatureConfig, m as areAllConsented, n as ElectronicSignatureState, s as ConsentChecks, u as ElectronicSignatureDocument } from "./index-CNrrk1gH.js";
+import { c as ConsentKey, f as QE_CONSENT_KEYS, g as getDefaultConsentChecks, i as electronicSignatureMachine, l as ElectronicSignatureConfig, m as areAllConsented, n as ElectronicSignatureState, s as ConsentChecks, u as ElectronicSignatureDocument } from "./index-BRdxM5zm.js";
 
 //#region src/modules/qe-signature/index.d.ts
 

package/dist/{recordingService-BsYjkILQ.esm.js → recordingService-DMaVUhWY.esm.js}

@@ -1,4 +1,4 @@
-import { i as WasmPipelineType, r as mlWasmJSApi_default, t as BaseWasmProvider } from "./BaseWasmProvider-C2cw9STp.esm.js";
+import { a as WasmPipelineType, r as mlWasmJSApi_default, t as BaseWasmProvider } from "./BaseWasmProvider-IiHnsP8E.esm.js";
 import { t as api } from "./api-eqRXuVG-.esm.js";
 import { t as endpoints } from "./endpoints-B3V1U9Dg.esm.js";
 import { n as IncodeCanvas } from "./deepsightService-IxmrmdKl.esm.js";
@@ -620,7 +620,7 @@ async function stopRecording(session) {
 	}
 }
 async function initializeDeepsightSession(options) {
-	const { loadDeepsightSession } = await import("./deepsightLoader-CFNSfs2N.esm.js");
+	const { loadDeepsightSession } = await import("./deepsightLoader-BMeAmiNh.esm.js");
 	return loadDeepsightSession({
 		ds: options.ds,
 		storage: options.storage

package/dist/selfie.esm.js

@@ -1,5 +1,5 @@
-import "./BaseWasmProvider-C2cw9STp.esm.js";
-import "./WasmUtilProvider-B8VtGgvF.esm.js";
+import "./BaseWasmProvider-IiHnsP8E.esm.js";
+import "./WasmUtilProvider-BrEYcdhY.esm.js";
 import "./api-eqRXuVG-.esm.js";
 import "./events-Bt1azl2B.esm.js";
 import "./endpoints-B3V1U9Dg.esm.js";
@@ -7,7 +7,7 @@ import "./browserSimulation-CAH-V_iE.esm.js";
 import "./xstate.esm-7GmmAwg6.esm.js";
 import "./faceCaptureManagerFactory-ByAGjOLF.esm.js";
 import "./BrowserStorageProvider-CoUfuy0u.esm.js";
-import { l as processFace } from "./recordingService-BsYjkILQ.esm.js";
+import { l as processFace } from "./recordingService-DMaVUhWY.esm.js";
 import "./deepsightService-IxmrmdKl.esm.js";
 import "./camera-Bm3wb89Z.esm.js";
 import "./getBrowser-Y88tNVud.esm.js";
@@ -18,8 +18,8 @@ import "./platform-Dpzd9p3X.esm.js";
 import "./ITimerCapability-2pw-S97e.esm.js";
 import "./backCameraStream-DWZ1cNVA.esm.js";
 import "./getDeviceClass-DmoqR7G2.esm.js";
-import "./faceCaptureSetup-zLRBv0-5.esm.js";
-import { t as selfieMachine } from "./selfieStateMachine-ecwZ7tWK.esm.js";
-import { t as createSelfieManager } from "./selfieManager-ByCKxpZC.esm.js";
+import "./faceCaptureSetup-CUzqUwkP.esm.js";
+import { t as selfieMachine } from "./selfieStateMachine-DvOTE42w.esm.js";
+import { t as createSelfieManager } from "./selfieManager-DC9hKgt7.esm.js";
 
 export { createSelfieManager, processFace, selfieMachine };

package/dist/{selfieManager-ByCKxpZC.esm.js → selfieManager-DC9hKgt7.esm.js}

@@ -1,9 +1,9 @@
-import { t as WasmUtilProvider } from "./WasmUtilProvider-B8VtGgvF.esm.js";
+import { t as WasmUtilProvider } from "./WasmUtilProvider-BrEYcdhY.esm.js";
 import { n as eventModuleNames } from "./events-Bt1azl2B.esm.js";
 import { o as createActor } from "./xstate.esm-7GmmAwg6.esm.js";
 import { t as createFaceCaptureManagerFromActor } from "./faceCaptureManagerFactory-ByAGjOLF.esm.js";
 import { t as BrowserStorageProvider } from "./BrowserStorageProvider-CoUfuy0u.esm.js";
-import { t as selfieMachine } from "./selfieStateMachine-ecwZ7tWK.esm.js";
+import { t as selfieMachine } from "./selfieStateMachine-DvOTE42w.esm.js";
 
 //#region src/modules/selfie/selfieActor.ts
 function createSelfieActor(options) {

package/dist/{selfieStateMachine-ecwZ7tWK.esm.js → selfieStateMachine-DvOTE42w.esm.js}

@@ -1,6 +1,6 @@
 import { a as fromPromise, r as assign } from "./xstate.esm-7GmmAwg6.esm.js";
-import { l as processFace, u as uploadSelfie, v as FACE_ERROR_CODES } from "./recordingService-BsYjkILQ.esm.js";
-import { t as faceCaptureMachine } from "./faceCaptureSetup-zLRBv0-5.esm.js";
+import { l as processFace, u as uploadSelfie, v as FACE_ERROR_CODES } from "./recordingService-DMaVUhWY.esm.js";
+import { t as faceCaptureMachine } from "./faceCaptureSetup-CUzqUwkP.esm.js";
 
 //#region src/modules/selfie/selfieErrorUtils.ts
 const FACE_ERROR_CODE_VALUES = Object.values(FACE_ERROR_CODES);

package/dist/{session-DWFMKdX6.esm.js → session-DAspZUCj.esm.js}

@@ -3036,7 +3036,7 @@ function resetFeatureConfigCache() {
 
 //#endregion
 //#region src/internal/version/sdkVersion.ts
-const SDK_VERSION = "0.0.0-dev-20260512-e44bacb";
+const SDK_VERSION = "0.0.0-dev-20260512-cffbe28";
 
 //#endregion
 //#region src/internal/fingerprint/fingerprintService.ts

package/dist/session.esm.js

@@ -1,7 +1,7 @@
 import "./api-eqRXuVG-.esm.js";
 import "./events-Bt1azl2B.esm.js";
 import "./endpoints-B3V1U9Dg.esm.js";
-import { c as QrValidationError, d as refreshQrUrlUuid, f as validateQrUuid, l as bootstrapSession, s as QR_VALIDATION_ERROR_CODES, u as createSession } from "./session-DWFMKdX6.esm.js";
+import { c as QrValidationError, d as refreshQrUrlUuid, f as validateQrUuid, l as bootstrapSession, s as QR_VALIDATION_ERROR_CODES, u as createSession } from "./session-DAspZUCj.esm.js";
 import "./IpifyProvider-ByL6JYxg.esm.js";
 import "./browserSimulation-CAH-V_iE.esm.js";
 import { t as getFinishStatus } from "./flowCompletionService-BuVIVPT_.esm.js";

package/dist/{setup-D3rE3N3K.d.ts → setup-DM301Lyz.d.ts}

@@ -41,6 +41,35 @@ type SetupOptions = {
    * - Object: load WASM with CDN defaults plus any overrides you provide.
    */
   wasm?: WasmConfig | false;
+  /**
+   * Enable end-to-end encryption for SDK traffic. When `true`, the SDK
+   * negotiates an encrypted transport during initialization (RSA-OAEP-SHA256
+   * key transport + AES-GCM payload encryption). Independent of `token` —
+   * encryption can be set up before a session token is known.
+   *
+   * Encryption requires the binary (WASM) transport. If `wasm: false` is set,
+   * `setup` throws. If `wasm` is omitted, the binary transport is provisioned
+   * automatically with CDN defaults.
+   *
+   * **One-way switch.** Once enabled, `encryption` cannot be turned off by
+   * passing `encryption: false` on a subsequent `setup()` call — that throws.
+   * Call `reset()` first if you genuinely need a non-encrypted client.
+   *
+   * **Late enable.** Calling `setup({ encryption: true })` after an initial
+   * non-encrypted `setup({ apiURL })` upgrades the existing connection to
+   * encrypted (the binary transport is provisioned on demand).
+   *
+   * **Failure modes.** `setup()` rejects with a descriptive error if the
+   * encrypted-transport handshake (`GET /e2ee/key/v2` + `POST /e2ee/key`)
+   * cannot complete — typically due to an unreachable `apiURL`, an env that
+   * does not provision E2EE, or a transient network/server error. There is
+   * no built-in retry; catch and re-call `setup()` if your environment is
+   * known-flaky.
+   *
+   * @throws If `wasm: false` is also set, or if the handshake fails, or if
+   *   `encryption: false` is passed after encryption was previously enabled.
+   */
+  encryption?: boolean;
   /** Optional hosting app identifier for fingerprint tracking */
   hostingApp?: string;
 };
@@ -94,7 +123,9 @@ type SetupOptions = {
  *     pipelines: ['selfie'],
  *   },
  * });
- * ```
+ *
+ * // Enable end-to-end encryption at boot
+ * await setup({ apiURL: 'https://api.incode.com', encryption: true });
  */
 declare function setup(options: SetupOptions): Promise<void>;
 /**
@@ -114,14 +145,17 @@ declare function setWasmConfig(config: WasmConfig): void;
  */
 declare function initializeWasmUtil(config?: WasmConfig): Promise<void>;
 /**
- * Replaces the active HTTP client with the WASM-backed one. Used when WASM is
- * loaded lazily (e.g. by the flow component) — `setup()` originally wired the
- * fetch/XHR client because no `wasm` was provided, and this swap upgrades to
- * `createWasmApi` once the WASM module is ready.
+ * Replaces the active HTTP client with the WASM-backed one. Used internally
+ * by lazy-loading UI components (`<incode-flow>`, `<incode-workflow>`) when
+ * WASM finishes warming up.
  *
  * No-op when no apiURL was originally configured, or when the active client is
  * already the WASM one.
  *
+ * @internal NOT a public API. Application code should use
+ *   `setup({ wasm: {...} })` instead — that path is the supported way to opt
+ *   into the WASM HTTP client.
+ *
  * @param config - Optional WASM configuration. Defaults to the config stored via `setWasmConfig`.
  */
 declare function upgradeToWasmHttpClient(config?: WasmConfig): Promise<void>;