@inversealtruism/csd-tx 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 InverseAltruism
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/dist/index.cjs

@@ -0,0 +1,133 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  buildAttest: () => buildAttest,
+  buildPropose: () => buildPropose,
+  buildSend: () => buildSend,
+  selectInputs: () => selectInputs,
+  signTx: () => signTx,
+  txSize: () => txSize,
+  txToNodeJson: () => txToNodeJson
+});
+module.exports = __toCommonJS(index_exports);
+var import_csd_codec = require("@inversealtruism/csd-codec");
+var import_csd_crypto = require("@inversealtruism/csd-crypto");
+function selectInputs(utxos, need) {
+  const seen = /* @__PURE__ */ new Set();
+  const confirmed = utxos.filter((x) => {
+    if (Number(x.confirmations ?? 0) < 1) return false;
+    const v = Number(x.value);
+    if (!Number.isFinite(v) || v <= 0 || !Number.isSafeInteger(v)) return false;
+    const key = `${String(x.txid).toLowerCase()}:${Number(x.vout)}`;
+    if (seen.has(key)) return false;
+    seen.add(key);
+    return true;
+  });
+  const take = (pool) => {
+    const inputs = [];
+    let total = 0;
+    for (const x of [...pool].sort((a, b) => Number(b.value) - Number(a.value))) {
+      const v = Number(x.value);
+      total += v;
+      if (!Number.isSafeInteger(total)) return null;
+      inputs.push({ txid: x.txid, vout: Number(x.vout), value: v });
+      if (inputs.length > import_csd_codec.MAX_TX_INPUTS) return null;
+      if (total >= need) return { inputs, total };
+    }
+    return null;
+  };
+  return take(confirmed.filter((x) => !x.coinbase)) ?? take(confirmed);
+}
+function txSize(tx) {
+  return (0, import_csd_codec.serialize)(tx).length;
+}
+var bytesArr = (hex) => Array.from(hex.startsWith("0x") ? hexToU8(hex.slice(2)) : hexToU8(hex));
+function hexToU8(h) {
+  const o = new Uint8Array(h.length / 2);
+  for (let i = 0; i < o.length; i++) o[i] = parseInt(h.slice(i * 2, i * 2 + 2), 16);
+  return o;
+}
+function appToJson(app) {
+  if (app.type === "None") return "None";
+  if (app.type === "Propose") return { Propose: { domain: app.domain, payload_hash: bytesArr(app.payloadHash), uri: app.uri, expires_epoch: Number(app.expiresEpoch) } };
+  return { Attest: { proposal_id: bytesArr(app.proposalId), score: app.score, confidence: app.confidence } };
+}
+function txToNodeJson(tx) {
+  return {
+    version: tx.version,
+    locktime: tx.locktime,
+    app: appToJson(tx.app),
+    inputs: tx.inputs.map((i) => ({ prevout: { txid: bytesArr(i.prevTxid), vout: i.vout }, script_sig: bytesArr(i.scriptSig) })),
+    outputs: tx.outputs.map((o) => ({ value: Number(o.value), script_pubkey: bytesArr(o.scriptPubkey) }))
+  };
+}
+function signTx(tx, priv) {
+  const sh = (0, import_csd_codec.sighash)(tx);
+  const { sig64, pub33 } = (0, import_csd_crypto.signDigest)(sh, priv);
+  const ss = (0, import_csd_crypto.buildScriptSig)(sig64, pub33);
+  const signed = { ...tx, inputs: tx.inputs.map((i) => ({ ...i, scriptSig: ss })) };
+  return { tx: signed, txid: (0, import_csd_codec.txid)(signed), sighash: sh, nodeJson: txToNodeJson(signed) };
+}
+function selectAndAssemble(utxos, outs, fee, app, priv) {
+  if (!Number.isSafeInteger(fee) || fee < 0) return { ok: false, error: "fee out of range" };
+  let sumOut = 0;
+  for (const o of outs) {
+    if (!(0, import_csd_crypto.isValidAddr)(String(o.scriptPubkey))) return { ok: false, error: "each recipient must be a 0x\u2026 20-byte address" };
+    const v = Number(o.value);
+    if (!(v >= 0) || !Number.isSafeInteger(v)) return { ok: false, error: "each amount must be a non-negative safe integer" };
+    sumOut += v;
+    if (!Number.isSafeInteger(sumOut)) return { ok: false, error: "total outputs exceed safe-integer range" };
+  }
+  const addr = (0, import_csd_crypto.addrFromPriv)(priv);
+  const need = sumOut + fee;
+  const sel = selectInputs(utxos, need);
+  if (!sel) return { ok: false, error: "insufficient confirmed balance for outputs + fee" };
+  const change = sel.total - need;
+  const outputs = [...outs];
+  if (change > 0) outputs.push({ value: change, scriptPubkey: addr });
+  const tx = { version: 1, locktime: 0, app, inputs: sel.inputs.map((i) => ({ prevTxid: i.txid, vout: i.vout, scriptSig: "0x" })), outputs };
+  return { ok: true, ...signTx(tx, priv), change, inTotal: sel.total, fee };
+}
+function buildSend(p) {
+  if (!p.outputs?.length) return { ok: false, error: "at least one output required" };
+  for (const o of p.outputs) if (!(Number(o.value) > 0)) return { ok: false, error: "each send amount must be positive" };
+  const outs = p.outputs.map((o) => ({ value: Number(o.value), scriptPubkey: String(o.to) }));
+  return selectAndAssemble(p.utxos, outs, p.fee, { type: "None" }, p.priv);
+}
+function buildPropose(p) {
+  if (p.fee < import_csd_codec.MIN_FEE_PROPOSE) return { ok: false, error: `propose fee must be \u2265 ${import_csd_codec.MIN_FEE_PROPOSE} (0.25 CSD)` };
+  return selectAndAssemble(p.utxos, [], p.fee, { type: "Propose", domain: p.domain, payloadHash: p.payloadHash, uri: p.uri, expiresEpoch: p.expiresEpoch }, p.priv);
+}
+function buildAttest(p) {
+  if (p.fee < import_csd_codec.MIN_FEE_ATTEST) return { ok: false, error: `attest fee must be \u2265 ${import_csd_codec.MIN_FEE_ATTEST} (0.05 CSD)` };
+  return selectAndAssemble(p.utxos, [], p.fee, { type: "Attest", proposalId: p.proposalId, score: p.score >>> 0, confidence: p.confidence >>> 0 }, p.priv);
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  buildAttest,
+  buildPropose,
+  buildSend,
+  selectInputs,
+  signTx,
+  txSize,
+  txToNodeJson
+});

package/dist/index.d.cts

@@ -0,0 +1,74 @@
+import { Tx } from '@inversealtruism/csd-codec';
+export { App, Tx, TxInput, TxOutput } from '@inversealtruism/csd-codec';
+
+interface Utxo {
+    txid: string;
+    vout: number;
+    value: number;
+    confirmations?: number;
+    coinbase?: boolean;
+}
+interface Selection {
+    inputs: {
+        txid: string;
+        vout: number;
+        value: number;
+    }[];
+    total: number;
+}
+/**
+ * Greedy largest-first coin selection. Prefers mature non-coinbase coins; HARDENED against a
+ * hostile/buggy RPC: missing confirmations → 0 (unspendable), dedupe by (case-normalized)
+ * outpoint, drop non-positive/unsafe values, refuse to exceed the consensus input cap, and
+ * safe-integer-guard the running sum so no mis-signed value can slip in.
+ */
+declare function selectInputs(utxos: Utxo[], need: number): Selection | null;
+/** Exact serialized byte size of a tx (deterministic — no scripts/witness). */
+declare function txSize(tx: Tx): number;
+declare function txToNodeJson(tx: Tx): any;
+interface Signed {
+    tx: Tx;
+    txid: string;
+    sighash: string;
+    nodeJson: any;
+}
+/** Sign an already-constructed tx. One sighash signs all inputs (CSD blanks every input). */
+declare function signTx(tx: Tx, priv: string): Signed;
+interface BuildResult extends Partial<Signed> {
+    ok: boolean;
+    error?: string;
+    change?: number;
+    inTotal?: number;
+    fee?: number;
+}
+/** Build + sign a 1→many transfer (None app). Change → sender. */
+declare function buildSend(p: {
+    outputs: {
+        to: string;
+        value: number;
+    }[];
+    fee: number;
+    utxos: Utxo[];
+    priv: string;
+}): BuildResult;
+/** Build + sign a Propose (fee paid via input−change; no value output beyond change). */
+declare function buildPropose(p: {
+    domain: string;
+    payloadHash: string;
+    uri: string;
+    expiresEpoch: number;
+    fee: number;
+    utxos: Utxo[];
+    priv: string;
+}): BuildResult;
+/** Build + sign an Attest (fee = weight). */
+declare function buildAttest(p: {
+    proposalId: string;
+    score: number;
+    confidence: number;
+    fee: number;
+    utxos: Utxo[];
+    priv: string;
+}): BuildResult;
+
+export { type BuildResult, type Selection, type Signed, type Utxo, buildAttest, buildPropose, buildSend, selectInputs, signTx, txSize, txToNodeJson };

package/dist/index.d.ts

@@ -0,0 +1,74 @@
+import { Tx } from '@inversealtruism/csd-codec';
+export { App, Tx, TxInput, TxOutput } from '@inversealtruism/csd-codec';
+
+interface Utxo {
+    txid: string;
+    vout: number;
+    value: number;
+    confirmations?: number;
+    coinbase?: boolean;
+}
+interface Selection {
+    inputs: {
+        txid: string;
+        vout: number;
+        value: number;
+    }[];
+    total: number;
+}
+/**
+ * Greedy largest-first coin selection. Prefers mature non-coinbase coins; HARDENED against a
+ * hostile/buggy RPC: missing confirmations → 0 (unspendable), dedupe by (case-normalized)
+ * outpoint, drop non-positive/unsafe values, refuse to exceed the consensus input cap, and
+ * safe-integer-guard the running sum so no mis-signed value can slip in.
+ */
+declare function selectInputs(utxos: Utxo[], need: number): Selection | null;
+/** Exact serialized byte size of a tx (deterministic — no scripts/witness). */
+declare function txSize(tx: Tx): number;
+declare function txToNodeJson(tx: Tx): any;
+interface Signed {
+    tx: Tx;
+    txid: string;
+    sighash: string;
+    nodeJson: any;
+}
+/** Sign an already-constructed tx. One sighash signs all inputs (CSD blanks every input). */
+declare function signTx(tx: Tx, priv: string): Signed;
+interface BuildResult extends Partial<Signed> {
+    ok: boolean;
+    error?: string;
+    change?: number;
+    inTotal?: number;
+    fee?: number;
+}
+/** Build + sign a 1→many transfer (None app). Change → sender. */
+declare function buildSend(p: {
+    outputs: {
+        to: string;
+        value: number;
+    }[];
+    fee: number;
+    utxos: Utxo[];
+    priv: string;
+}): BuildResult;
+/** Build + sign a Propose (fee paid via input−change; no value output beyond change). */
+declare function buildPropose(p: {
+    domain: string;
+    payloadHash: string;
+    uri: string;
+    expiresEpoch: number;
+    fee: number;
+    utxos: Utxo[];
+    priv: string;
+}): BuildResult;
+/** Build + sign an Attest (fee = weight). */
+declare function buildAttest(p: {
+    proposalId: string;
+    score: number;
+    confidence: number;
+    fee: number;
+    utxos: Utxo[];
+    priv: string;
+}): BuildResult;
+
+export { type BuildResult, type Selection, type Signed, type Utxo, buildAttest, buildPropose, buildSend, selectInputs, signTx, txSize, txToNodeJson };

package/dist/index.js

@@ -0,0 +1,102 @@
+// src/index.ts
+import { serialize, txid, sighash, MAX_TX_INPUTS, MIN_FEE_PROPOSE, MIN_FEE_ATTEST } from "@inversealtruism/csd-codec";
+import { addrFromPriv, signDigest, buildScriptSig, isValidAddr } from "@inversealtruism/csd-crypto";
+function selectInputs(utxos, need) {
+  const seen = /* @__PURE__ */ new Set();
+  const confirmed = utxos.filter((x) => {
+    if (Number(x.confirmations ?? 0) < 1) return false;
+    const v = Number(x.value);
+    if (!Number.isFinite(v) || v <= 0 || !Number.isSafeInteger(v)) return false;
+    const key = `${String(x.txid).toLowerCase()}:${Number(x.vout)}`;
+    if (seen.has(key)) return false;
+    seen.add(key);
+    return true;
+  });
+  const take = (pool) => {
+    const inputs = [];
+    let total = 0;
+    for (const x of [...pool].sort((a, b) => Number(b.value) - Number(a.value))) {
+      const v = Number(x.value);
+      total += v;
+      if (!Number.isSafeInteger(total)) return null;
+      inputs.push({ txid: x.txid, vout: Number(x.vout), value: v });
+      if (inputs.length > MAX_TX_INPUTS) return null;
+      if (total >= need) return { inputs, total };
+    }
+    return null;
+  };
+  return take(confirmed.filter((x) => !x.coinbase)) ?? take(confirmed);
+}
+function txSize(tx) {
+  return serialize(tx).length;
+}
+var bytesArr = (hex) => Array.from(hex.startsWith("0x") ? hexToU8(hex.slice(2)) : hexToU8(hex));
+function hexToU8(h) {
+  const o = new Uint8Array(h.length / 2);
+  for (let i = 0; i < o.length; i++) o[i] = parseInt(h.slice(i * 2, i * 2 + 2), 16);
+  return o;
+}
+function appToJson(app) {
+  if (app.type === "None") return "None";
+  if (app.type === "Propose") return { Propose: { domain: app.domain, payload_hash: bytesArr(app.payloadHash), uri: app.uri, expires_epoch: Number(app.expiresEpoch) } };
+  return { Attest: { proposal_id: bytesArr(app.proposalId), score: app.score, confidence: app.confidence } };
+}
+function txToNodeJson(tx) {
+  return {
+    version: tx.version,
+    locktime: tx.locktime,
+    app: appToJson(tx.app),
+    inputs: tx.inputs.map((i) => ({ prevout: { txid: bytesArr(i.prevTxid), vout: i.vout }, script_sig: bytesArr(i.scriptSig) })),
+    outputs: tx.outputs.map((o) => ({ value: Number(o.value), script_pubkey: bytesArr(o.scriptPubkey) }))
+  };
+}
+function signTx(tx, priv) {
+  const sh = sighash(tx);
+  const { sig64, pub33 } = signDigest(sh, priv);
+  const ss = buildScriptSig(sig64, pub33);
+  const signed = { ...tx, inputs: tx.inputs.map((i) => ({ ...i, scriptSig: ss })) };
+  return { tx: signed, txid: txid(signed), sighash: sh, nodeJson: txToNodeJson(signed) };
+}
+function selectAndAssemble(utxos, outs, fee, app, priv) {
+  if (!Number.isSafeInteger(fee) || fee < 0) return { ok: false, error: "fee out of range" };
+  let sumOut = 0;
+  for (const o of outs) {
+    if (!isValidAddr(String(o.scriptPubkey))) return { ok: false, error: "each recipient must be a 0x\u2026 20-byte address" };
+    const v = Number(o.value);
+    if (!(v >= 0) || !Number.isSafeInteger(v)) return { ok: false, error: "each amount must be a non-negative safe integer" };
+    sumOut += v;
+    if (!Number.isSafeInteger(sumOut)) return { ok: false, error: "total outputs exceed safe-integer range" };
+  }
+  const addr = addrFromPriv(priv);
+  const need = sumOut + fee;
+  const sel = selectInputs(utxos, need);
+  if (!sel) return { ok: false, error: "insufficient confirmed balance for outputs + fee" };
+  const change = sel.total - need;
+  const outputs = [...outs];
+  if (change > 0) outputs.push({ value: change, scriptPubkey: addr });
+  const tx = { version: 1, locktime: 0, app, inputs: sel.inputs.map((i) => ({ prevTxid: i.txid, vout: i.vout, scriptSig: "0x" })), outputs };
+  return { ok: true, ...signTx(tx, priv), change, inTotal: sel.total, fee };
+}
+function buildSend(p) {
+  if (!p.outputs?.length) return { ok: false, error: "at least one output required" };
+  for (const o of p.outputs) if (!(Number(o.value) > 0)) return { ok: false, error: "each send amount must be positive" };
+  const outs = p.outputs.map((o) => ({ value: Number(o.value), scriptPubkey: String(o.to) }));
+  return selectAndAssemble(p.utxos, outs, p.fee, { type: "None" }, p.priv);
+}
+function buildPropose(p) {
+  if (p.fee < MIN_FEE_PROPOSE) return { ok: false, error: `propose fee must be \u2265 ${MIN_FEE_PROPOSE} (0.25 CSD)` };
+  return selectAndAssemble(p.utxos, [], p.fee, { type: "Propose", domain: p.domain, payloadHash: p.payloadHash, uri: p.uri, expiresEpoch: p.expiresEpoch }, p.priv);
+}
+function buildAttest(p) {
+  if (p.fee < MIN_FEE_ATTEST) return { ok: false, error: `attest fee must be \u2265 ${MIN_FEE_ATTEST} (0.05 CSD)` };
+  return selectAndAssemble(p.utxos, [], p.fee, { type: "Attest", proposalId: p.proposalId, score: p.score >>> 0, confidence: p.confidence >>> 0 }, p.priv);
+}
+export {
+  buildAttest,
+  buildPropose,
+  buildSend,
+  selectInputs,
+  signTx,
+  txSize,
+  txToNodeJson
+};

package/package.json

@@ -0,0 +1,42 @@
+{
+  "name": "@inversealtruism/csd-tx",
+  "version": "0.1.0",
+  "description": "Compute Substrate transaction builder — coin selection, fee sizing, buildSend/Propose/Attest, signTx, node-submit JSON. p2pkh-only, SafeInteger-guarded.",
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.cjs"
+    }
+  },
+  "files": [
+    "dist",
+    "LICENSE"
+  ],
+  "dependencies": {
+    "@inversealtruism/csd-codec": "0.1.0",
+    "@inversealtruism/csd-crypto": "0.1.0"
+  },
+  "devDependencies": {
+    "@inversealtruism/csd-vectors": "0.1.0"
+  },
+  "license": "MIT",
+  "sideEffects": false,
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/InverseAltruism/csd-sdk.git",
+    "directory": "packages/tx"
+  },
+  "homepage": "https://cairn-substrate.com",
+  "scripts": {
+    "build": "tsup src/index.ts --format esm,cjs --dts --clean",
+    "test": "tsx test/tx.test.ts"
+  }
+}