npm - @kynesyslabs/demosdk - Versions diffs - 2.4.26 → 2.5.1 - Mend

@kynesyslabs/demosdk 2.4.26 → 2.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (16) hide show

package/build/encryption/zK/identity/CommitmentService.d.ts +49 -0
package/build/encryption/zK/identity/CommitmentService.js +121 -0
package/build/encryption/zK/identity/CommitmentService.js.map +1 -0
package/build/encryption/zK/identity/ProofGenerator.d.ts +60 -0
package/build/encryption/zK/identity/ProofGenerator.js +167 -0
package/build/encryption/zK/identity/ProofGenerator.js.map +1 -0
package/build/encryption/zK/identity/ZKIdentity.d.ts +141 -0
package/build/encryption/zK/identity/ZKIdentity.js +231 -0
package/build/encryption/zK/identity/ZKIdentity.js.map +1 -0
package/build/encryption/zK/identity/index.d.ts +12 -0
package/build/encryption/zK/identity/index.js +48 -0
package/build/encryption/zK/identity/index.js.map +1 -0
package/build/encryption/zK/index.d.ts +1 -0
package/build/encryption/zK/index.js +3 -1
package/build/encryption/zK/index.js.map +1 -1
package/package.json +3 -1

package/build/encryption/zK/identity/CommitmentService.d.ts ADDED Viewed

@@ -0,0 +1,49 @@
+/**
+ * CommitmentService - Generate identity commitments and nullifiers
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ * REVIEW: Phase 10.1 - Production Implementation (Real Poseidon hash)
+ *
+ * Provides methods for generating cryptographic commitments and nullifiers
+ * for the ZK identity system using Poseidon hash.
+ */
+/**
+ * Generate a Poseidon hash commitment from provider ID and secret
+ *
+ * @param providerId - Provider identifier (e.g., "github:12345")
+ * @param secret - User's secret value (generated client-side)
+ * @returns Commitment hash as string
+ *
+ * @example
+ * ```typescript
+ * const commitment = CommitmentService.generateCommitment("github:12345", "secret123")
+ * // commitment: "1234567890..."
+ * ```
+ */
+export declare function generateCommitment(providerId: string, secret: string): string;
+/**
+ * Generate a nullifier from provider ID and context
+ *
+ * @param providerId - Provider identifier (e.g., "github:12345")
+ * @param context - Context string (e.g., "dao_vote_123")
+ * @returns Nullifier hash as string
+ *
+ * @example
+ * ```typescript
+ * const nullifier = CommitmentService.generateNullifier("github:12345", "dao_vote_123")
+ * // nullifier: "9876543210..."
+ * ```
+ */
+export declare function generateNullifier(providerId: string, context: string): string;
+/**
+ * Generate a cryptographically secure random secret
+ *
+ * @returns Random secret as hex string
+ *
+ * @example
+ * ```typescript
+ * const secret = CommitmentService.generateSecret()
+ * // secret: "a1b2c3d4e5f6..."
+ * ```
+ */
+export declare function generateSecret(): string;

package/build/encryption/zK/identity/CommitmentService.js ADDED Viewed

@@ -0,0 +1,121 @@
+"use strict";
+/**
+ * CommitmentService - Generate identity commitments and nullifiers
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ * REVIEW: Phase 10.1 - Production Implementation (Real Poseidon hash)
+ *
+ * Provides methods for generating cryptographic commitments and nullifiers
+ * for the ZK identity system using Poseidon hash.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateCommitment = generateCommitment;
+exports.generateNullifier = generateNullifier;
+exports.generateSecret = generateSecret;
+// REVIEW: Phase 10.1 - Production cryptographic implementation
+const poseidon_lite_1 = require("poseidon-lite");
+/**
+ * Generate a Poseidon hash commitment from provider ID and secret
+ *
+ * @param providerId - Provider identifier (e.g., "github:12345")
+ * @param secret - User's secret value (generated client-side)
+ * @returns Commitment hash as string
+ *
+ * @example
+ * ```typescript
+ * const commitment = CommitmentService.generateCommitment("github:12345", "secret123")
+ * // commitment: "1234567890..."
+ * ```
+ */
+function generateCommitment(providerId, secret) {
+    // Convert strings to BigInt for Poseidon hashing
+    const providerHash = stringToBigInt(providerId);
+    const secretHash = stringToBigInt(secret);
+    // Use Poseidon hash (ZK-friendly)
+    // NOTE: This will be implemented using poseidon-lite or browser-compatible alternative
+    // For now, using a placeholder that will be replaced with actual Poseidon implementation
+    const commitment = poseidonHash([providerHash, secretHash]);
+    return commitment.toString();
+}
+/**
+ * Generate a nullifier from provider ID and context
+ *
+ * @param providerId - Provider identifier (e.g., "github:12345")
+ * @param context - Context string (e.g., "dao_vote_123")
+ * @returns Nullifier hash as string
+ *
+ * @example
+ * ```typescript
+ * const nullifier = CommitmentService.generateNullifier("github:12345", "dao_vote_123")
+ * // nullifier: "9876543210..."
+ * ```
+ */
+function generateNullifier(providerId, context) {
+    const providerHash = stringToBigInt(providerId);
+    const contextHash = stringToBigInt(context);
+    const nullifier = poseidonHash([providerHash, contextHash]);
+    return nullifier.toString();
+}
+/**
+ * Generate a cryptographically secure random secret
+ *
+ * @returns Random secret as hex string
+ *
+ * @example
+ * ```typescript
+ * const secret = CommitmentService.generateSecret()
+ * // secret: "a1b2c3d4e5f6..."
+ * ```
+ */
+function generateSecret() {
+    // Use Web Crypto API for secure random generation
+    if (typeof window !== 'undefined' && window.crypto) {
+        const array = new Uint8Array(32);
+        window.crypto.getRandomValues(array);
+        return uint8ArrayToHex(array);
+    }
+    // Node.js environment
+    if (typeof require !== 'undefined') {
+        const crypto = require('crypto');
+        return crypto.randomBytes(32).toString('hex');
+    }
+    throw new Error('No secure random number generator available');
+}
+// ============================================================================
+// Helper Functions
+// ============================================================================
+/**
+ * Convert string to BigInt using simple hashing
+ * NOTE: For production, should use more robust hashing
+ */
+function stringToBigInt(str) {
+    // Simple conversion: encode to UTF-8 bytes then to hex
+    const encoder = new TextEncoder();
+    const bytes = encoder.encode(str);
+    const hex = uint8ArrayToHex(bytes);
+    return BigInt('0x' + hex);
+}
+/**
+ * Convert Uint8Array to hex string
+ */
+function uint8ArrayToHex(array) {
+    return Array.from(array)
+        .map(b => b.toString(16).padStart(2, '0'))
+        .join('');
+}
+/**
+ * Poseidon hash implementation using poseidon-lite
+ *
+ * Poseidon is a ZK-friendly hash function optimized for use in
+ * zero-knowledge proof circuits. We use poseidon2 for hashing 2 inputs.
+ *
+ * @param inputs - Array of exactly 2 BigInt values to hash
+ * @returns Poseidon hash output as BigInt
+ */
+function poseidonHash(inputs) {
+    if (inputs.length !== 2) {
+        throw new Error('poseidonHash expects exactly 2 inputs');
+    }
+    return (0, poseidon_lite_1.poseidon2)(inputs);
+}
+//# sourceMappingURL=CommitmentService.js.map

package/build/encryption/zK/identity/CommitmentService.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"CommitmentService.js","sourceRoot":"","sources":["../../../../../src/encryption/zK/identity/CommitmentService.ts"],"names":[],"mappings":";AAAA;;;;;;;;GAQG;;AAkBH,gDAWC;AAeD,8CAOC;AAaD,wCAeC;AA7ED,+DAA+D;AAC/D,iDAAyC;AAEzC;;;;;;;;;;;;GAYG;AACH,SAAgB,kBAAkB,CAAC,UAAkB,EAAE,MAAc;IACjE,iDAAiD;IACjD,MAAM,YAAY,GAAG,cAAc,CAAC,UAAU,CAAC,CAAA;IAC/C,MAAM,UAAU,GAAG,cAAc,CAAC,MAAM,CAAC,CAAA;IAEzC,kCAAkC;IAClC,uFAAuF;IACvF,yFAAyF;IACzF,MAAM,UAAU,GAAG,YAAY,CAAC,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC,CAAA;IAE3D,OAAO,UAAU,CAAC,QAAQ,EAAE,CAAA;AAChC,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,SAAgB,iBAAiB,CAAC,UAAkB,EAAE,OAAe;IACjE,MAAM,YAAY,GAAG,cAAc,CAAC,UAAU,CAAC,CAAA;IAC/C,MAAM,WAAW,GAAG,cAAc,CAAC,OAAO,CAAC,CAAA;IAE3C,MAAM,SAAS,GAAG,YAAY,CAAC,CAAC,YAAY,EAAE,WAAW,CAAC,CAAC,CAAA;IAE3D,OAAO,SAAS,CAAC,QAAQ,EAAE,CAAA;AAC/B,CAAC;AAED;;;;;;;;;;GAUG;AACH,SAAgB,cAAc;IAC1B,kDAAkD;IAClD,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QACjD,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAA;QAChC,MAAM,CAAC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAA;QACpC,OAAO,eAAe,CAAC,KAAK,CAAC,CAAA;IACjC,CAAC;IAED,sBAAsB;IACtB,IAAI,OAAO,OAAO,KAAK,WAAW,EAAE,CAAC;QACjC,MAAM,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAA;QAChC,OAAO,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;IACjD,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;AAClE,CAAC;AAED,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAE/E;;;GAGG;AACH,SAAS,cAAc,CAAC,GAAW;IAC/B,uDAAuD;IACvD,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;IACjC,MAAM,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;IACjC,MAAM,GAAG,GAAG,eAAe,CAAC,KAAK,CAAC,CAAA;IAClC,OAAO,MAAM,CAAC,IAAI,GAAG,GAAG,CAAC,CAAA;AAC7B,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,KAAiB;IACtC,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC;SACnB,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;SACzC,IAAI,CAAC,EAAE,CAAC,CAAA;AACjB,CAAC;AAED;;;;;;;;GAQG;AACH,SAAS,YAAY,CAAC,MAAgB;IAClC,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAA;IAC5D,CAAC;IACD,OAAO,IAAA,yBAAS,EAAC,MAAM,CAAC,CAAA;AAC5B,CAAC"}

package/build/encryption/zK/identity/ProofGenerator.d.ts ADDED Viewed

@@ -0,0 +1,60 @@
+/**
+ * ProofGenerator - Client-side ZK-SNARK proof generation
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ * REVIEW: Phase 10.1 - Production Implementation (Real snarkjs proof generation)
+ * REVIEW: Phase 10.4 - CDN Integration (Production-ready with CDN URLs)
+ *
+ * Generates Groth16 ZK-SNARK proofs for identity attestations using snarkjs.
+ * Circuit artifacts (WASM, proving key, verification key) are loaded from CDN.
+ */
+export interface ZKProof {
+    pi_a: string[];
+    pi_b: string[][];
+    pi_c: string[];
+    protocol: string;
+}
+export interface ProofGenerationResult {
+    proof: ZKProof;
+    publicSignals: string[];
+}
+export interface MerkleProof {
+    siblings: string[][];
+    pathIndices: number[];
+    root: string;
+    leaf: string;
+}
+/**
+ * Generate a ZK-SNARK proof for identity attestation
+ *
+ * @param providerId - Provider identifier (e.g., "github:12345")
+ * @param secret - User's secret value
+ * @param context - Context string for this attestation
+ * @param merkleProof - Merkle proof from node RPC
+ * @param merkleRoot - Current Merkle root from node RPC
+ * @returns Proof and public signals
+ *
+ * @example
+ * ```typescript
+ * const result = await ProofGenerator.generateIdentityProof(
+ *     "github:12345",
+ *     "secret123",
+ *     "dao_vote_123",
+ *     merkleProof,
+ *     merkleRoot
+ * )
+ * // result: { proof: {...}, publicSignals: [nullifier, merkleRoot, context] }
+ * ```
+ */
+export declare function generateIdentityProof(providerId: string, secret: string, context: string, merkleProof: MerkleProof, merkleRoot: string): Promise<ProofGenerationResult>;
+/**
+ * Verify a proof locally (optional - mainly for testing)
+ *
+ * @param proof - The proof to verify
+ * @param publicSignals - Public signals for the proof
+ * @returns True if proof is valid
+ *
+ * NOTE: Node RPC will do the actual verification, this is mainly for debugging
+ * REVIEW: Phase 10.4 - Production verification implementation with CDN
+ */
+export declare function verifyProof(proof: ZKProof, publicSignals: string[]): Promise<boolean>;

package/build/encryption/zK/identity/ProofGenerator.js ADDED Viewed

@@ -0,0 +1,167 @@
+"use strict";
+/**
+ * ProofGenerator - Client-side ZK-SNARK proof generation
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ * REVIEW: Phase 10.1 - Production Implementation (Real snarkjs proof generation)
+ * REVIEW: Phase 10.4 - CDN Integration (Production-ready with CDN URLs)
+ *
+ * Generates Groth16 ZK-SNARK proofs for identity attestations using snarkjs.
+ * Circuit artifacts (WASM, proving key, verification key) are loaded from CDN.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateIdentityProof = generateIdentityProof;
+exports.verifyProof = verifyProof;
+// REVIEW: Phase 10.1 - Production cryptographic implementation
+const snarkjs = __importStar(require("snarkjs"));
+/**
+ * Generate a ZK-SNARK proof for identity attestation
+ *
+ * @param providerId - Provider identifier (e.g., "github:12345")
+ * @param secret - User's secret value
+ * @param context - Context string for this attestation
+ * @param merkleProof - Merkle proof from node RPC
+ * @param merkleRoot - Current Merkle root from node RPC
+ * @returns Proof and public signals
+ *
+ * @example
+ * ```typescript
+ * const result = await ProofGenerator.generateIdentityProof(
+ *     "github:12345",
+ *     "secret123",
+ *     "dao_vote_123",
+ *     merkleProof,
+ *     merkleRoot
+ * )
+ * // result: { proof: {...}, publicSignals: [nullifier, merkleRoot, context] }
+ * ```
+ */
+async function generateIdentityProof(providerId, secret, context, merkleProof, merkleRoot) {
+    // Convert inputs to BigInt/field elements
+    const providerIdBigInt = stringToBigInt(providerId);
+    const secretBigInt = stringToBigInt(secret);
+    const contextBigInt = stringToBigInt(context);
+    // Prepare circuit inputs
+    const circuitInputs = {
+        // Private inputs
+        provider_id: providerIdBigInt.toString(),
+        secret: secretBigInt.toString(),
+        pathElements: merkleProof.siblings.map(s => s.map(v => v.toString())),
+        pathIndices: merkleProof.pathIndices,
+        // Public inputs
+        context: contextBigInt.toString(),
+        merkle_root: merkleRoot,
+    };
+    // REVIEW: Phase 10.4 - Production CDN URLs for circuit artifacts
+    const wasmPath = 'https://files.demos.sh/zk-circuits/v1/identity_with_merkle.wasm';
+    const zkeyPath = 'https://files.demos.sh/zk-circuits/v1/identity_with_merkle_0000.zkey';
+    // REVIEW: Phase 10.1 - Production-ready proof generation using snarkjs
+    const { proof, publicSignals } = await snarkjs.groth16.fullProve(circuitInputs, wasmPath, zkeyPath);
+    // Convert proof to our ZKProof format
+    const zkProof = {
+        pi_a: [
+            proof.pi_a[0].toString(),
+            proof.pi_a[1].toString(),
+            proof.pi_a[2].toString(),
+        ],
+        pi_b: [
+            [proof.pi_b[0][0].toString(), proof.pi_b[0][1].toString()],
+            [proof.pi_b[1][0].toString(), proof.pi_b[1][1].toString()],
+            [proof.pi_b[2][0].toString(), proof.pi_b[2][1].toString()],
+        ],
+        pi_c: [
+            proof.pi_c[0].toString(),
+            proof.pi_c[1].toString(),
+            proof.pi_c[2].toString(),
+        ],
+        protocol: 'groth16',
+    };
+    return {
+        proof: zkProof,
+        publicSignals: publicSignals.map((s) => s.toString()),
+    };
+}
+/**
+ * Verify a proof locally (optional - mainly for testing)
+ *
+ * @param proof - The proof to verify
+ * @param publicSignals - Public signals for the proof
+ * @returns True if proof is valid
+ *
+ * NOTE: Node RPC will do the actual verification, this is mainly for debugging
+ * REVIEW: Phase 10.4 - Production verification implementation with CDN
+ */
+async function verifyProof(proof, publicSignals) {
+    // REVIEW: Phase 10.4 - Load verification key from CDN
+    const vkeyUrl = 'https://files.demos.sh/zk-circuits/v1/verification_key_merkle.json';
+    try {
+        const response = await fetch(vkeyUrl);
+        if (!response.ok) {
+            throw new Error(`Failed to load verification key: ${response.status} ${response.statusText}`);
+        }
+        const vkey = await response.json();
+        // REVIEW: Phase 10.1 - Production-ready verification using snarkjs
+        // Convert our ZKProof format to snarkjs format
+        const snarkjsProof = {
+            pi_a: proof.pi_a,
+            pi_b: proof.pi_b,
+            pi_c: proof.pi_c,
+            protocol: proof.protocol,
+        };
+        return await snarkjs.groth16.verify(vkey, publicSignals, snarkjsProof);
+    }
+    catch (error) {
+        throw new Error(`ZK proof verification failed: ${error instanceof Error ? error.message : String(error)}`);
+    }
+}
+// ============================================================================
+// Helper Functions
+// ============================================================================
+/**
+ * Convert string to BigInt using simple hashing
+ *
+ * @param str - Input string to convert
+ * @returns BigInt representation of the string
+ */
+function stringToBigInt(str) {
+    const encoder = new TextEncoder();
+    const bytes = encoder.encode(str);
+    const hex = Array.from(bytes)
+        .map(b => b.toString(16).padStart(2, '0'))
+        .join('');
+    return BigInt('0x' + hex);
+}
+//# sourceMappingURL=ProofGenerator.js.map

package/build/encryption/zK/identity/ProofGenerator.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"ProofGenerator.js","sourceRoot":"","sources":["../../../../../src/encryption/zK/identity/ProofGenerator.ts"],"names":[],"mappings":";AAAA;;;;;;;;;GASG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA8CH,sDA4DC;AAYD,kCA6BC;AAjJD,+DAA+D;AAC/D,iDAAkC;AAqBlC;;;;;;;;;;;;;;;;;;;;;GAqBG;AACI,KAAK,UAAU,qBAAqB,CACvC,UAAkB,EAClB,MAAc,EACd,OAAe,EACf,WAAwB,EACxB,UAAkB;IAElB,0CAA0C;IAC1C,MAAM,gBAAgB,GAAG,cAAc,CAAC,UAAU,CAAC,CAAA;IACnD,MAAM,YAAY,GAAG,cAAc,CAAC,MAAM,CAAC,CAAA;IAC3C,MAAM,aAAa,GAAG,cAAc,CAAC,OAAO,CAAC,CAAA;IAE7C,yBAAyB;IACzB,MAAM,aAAa,GAAG;QAClB,iBAAiB;QACjB,WAAW,EAAE,gBAAgB,CAAC,QAAQ,EAAE;QACxC,MAAM,EAAE,YAAY,CAAC,QAAQ,EAAE;QAC/B,YAAY,EAAE,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;QACrE,WAAW,EAAE,WAAW,CAAC,WAAW;QAEpC,gBAAgB;QAChB,OAAO,EAAE,aAAa,CAAC,QAAQ,EAAE;QACjC,WAAW,EAAE,UAAU;KAC1B,CAAA;IAED,iEAAiE;IACjE,MAAM,QAAQ,GAAG,iEAAiE,CAAA;IAClF,MAAM,QAAQ,GAAG,sEAAsE,CAAA;IAEvF,uEAAuE;IACvE,MAAM,EAAE,KAAK,EAAE,aAAa,EAAE,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,SAAS,CAC5D,aAAa,EACb,QAAQ,EACR,QAAQ,CACX,CAAA;IAED,sCAAsC;IACtC,MAAM,OAAO,GAAY;QACrB,IAAI,EAAE;YACF,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;YACxB,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;YACxB,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;SAC3B;QACD,IAAI,EAAE;YACF,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;YAC1D,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;YAC1D,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;SAC7D;QACD,IAAI,EAAE;YACF,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;YACxB,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;YACxB,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;SAC3B;QACD,QAAQ,EAAE,SAAS;KACtB,CAAA;IAED,OAAO;QACH,KAAK,EAAE,OAAO;QACd,aAAa,EAAE,aAAa,CAAC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC;KAC7D,CAAA;AACL,CAAC;AAED;;;;;;;;;GASG;AACI,KAAK,UAAU,WAAW,CAC7B,KAAc,EACd,aAAuB;IAEvB,sDAAsD;IACtD,MAAM,OAAO,GAAG,oEAAoE,CAAA;IAEpF,IAAI,CAAC;QACD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC,CAAA;QACrC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,oCAAoC,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAA;QACjG,CAAC;QACD,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAA;QAElC,mEAAmE;QACnE,+CAA+C;QAC/C,MAAM,YAAY,GAAG;YACjB,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,QAAQ,EAAE,KAAK,CAAC,QAAQ;SAC3B,CAAA;QAED,OAAO,MAAM,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE,aAAa,EAAE,YAAY,CAAC,CAAA;IAC1E,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CACX,iCAAiC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAC5F,CAAA;IACL,CAAC;AACL,CAAC;AAED,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAE/E;;;;;GAKG;AACH,SAAS,cAAc,CAAC,GAAW;IAC/B,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;IACjC,MAAM,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;IACjC,MAAM,GAAG,GAAG,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC;SACxB,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;SACzC,IAAI,CAAC,EAAE,CAAC,CAAA;IACb,OAAO,MAAM,CAAC,IAAI,GAAG,GAAG,CAAC,CAAA;AAC7B,CAAC"}

package/build/encryption/zK/identity/ZKIdentity.d.ts ADDED Viewed

@@ -0,0 +1,141 @@
+/**
+ * ZKIdentity - User-facing API for ZK identity system
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ *
+ * Provides a simple interface for users to:
+ * 1. Create identity commitments
+ * 2. Generate ZK attestation proofs
+ * 3. Interact with node RPC endpoints
+ */
+import * as ProofGenerator from './ProofGenerator';
+export interface IdentityCommitmentPayload {
+    commitment_hash: string;
+    provider: string;
+    timestamp: number;
+}
+export interface IdentityAttestationPayload {
+    nullifier_hash: string;
+    merkle_root: string;
+    proof: ProofGenerator.ZKProof;
+    public_signals: string[];
+    provider: string;
+}
+/**
+ * ZKIdentity class for privacy-preserving identity attestations
+ *
+ * @example
+ * ```typescript
+ * // Create identity
+ * const identity = new ZKIdentity('github:12345')
+ *
+ * // Get commitment (safe to share publicly)
+ * const commitment = identity.getCommitment()
+ *
+ * // Create commitment transaction
+ * const commitmentTx = await identity.createCommitmentTransaction('http://localhost:3000')
+ *
+ * // Later: Create anonymous attestation
+ * const attestationTx = await identity.createAttestationTransaction(
+ *     'http://localhost:3000',
+ *     'dao_vote_123'
+ * )
+ * ```
+ */
+export declare class ZKIdentity {
+    private providerId;
+    private secret;
+    /**
+     * Create a new ZK identity
+     *
+     * @param providerId - Provider identifier (e.g., "github:12345", "discord:67890")
+     * @param secret - Optional secret (will be generated if not provided)
+     *
+     * WARNING: Keep the secret secure! Store it encrypted in local storage.
+     * If lost, you cannot create attestations for this commitment.
+     */
+    constructor(providerId: string, secret?: string);
+    /**
+     * Get the identity commitment hash
+     *
+     * This is safe to share publicly and will be stored in the Merkle tree.
+     *
+     * @returns Commitment hash as string
+     */
+    getCommitment(): string;
+    /**
+     * Get the provider name from provider ID
+     *
+     * @returns Provider name (e.g., "github", "discord")
+     */
+    getProvider(): string;
+    /**
+     * Get the secret (use with caution!)
+     *
+     * @returns The secret value
+     *
+     * WARNING: Never transmit this over the network!
+     */
+    getSecret(): string;
+    /**
+     * Create a commitment transaction to submit to the node
+     *
+     * This adds your commitment to the global Merkle tree.
+     * You must submit this transaction before you can create attestations.
+     *
+     * @param rpcUrl - Node RPC URL
+     * @returns Commitment transaction payload
+     */
+    createCommitmentTransaction(rpcUrl: string): Promise<IdentityCommitmentPayload>;
+    /**
+     * Create an anonymous attestation transaction
+     *
+     * This proves you have a valid identity commitment in the Merkle tree
+     * without revealing which one. Uses ZK-SNARKs for privacy.
+     *
+     * @param rpcUrl - Node RPC URL
+     * @param context - Context string for this attestation (e.g., "dao_vote_123")
+     * @returns Attestation transaction payload
+     *
+     * NOTE: Each context can only be used once per identity (nullifier prevents reuse)
+     */
+    createAttestationTransaction(rpcUrl: string, context: string): Promise<IdentityAttestationPayload>;
+    /**
+     * Verify an attestation locally (optional - for testing)
+     *
+     * @param attestation - Attestation payload to verify
+     * @returns True if valid
+     *
+     * NOTE: Node will verify proofs server-side, this is mainly for debugging
+     */
+    static verifyAttestation(attestation: IdentityAttestationPayload): Promise<boolean>;
+    /**
+     * Export identity for backup
+     *
+     * @returns Object containing provider ID and secret
+     *
+     * WARNING: Store this securely! Anyone with this data can create
+     * attestations as you.
+     */
+    export(): {
+        providerId: string;
+        secret: string;
+    };
+    /**
+     * Import identity from backup
+     *
+     * @param data - Exported identity data
+     * @returns New ZKIdentity instance
+     */
+    static import(data: {
+        providerId: string;
+        secret: string;
+    }): ZKIdentity;
+    /**
+     * Generate a fresh identity with random secret
+     *
+     * @param providerId - Provider identifier
+     * @returns New ZKIdentity instance
+     */
+    static generate(providerId: string): ZKIdentity;
+}

package/build/encryption/zK/identity/ZKIdentity.js ADDED Viewed

@@ -0,0 +1,231 @@
+"use strict";
+/**
+ * ZKIdentity - User-facing API for ZK identity system
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ *
+ * Provides a simple interface for users to:
+ * 1. Create identity commitments
+ * 2. Generate ZK attestation proofs
+ * 3. Interact with node RPC endpoints
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZKIdentity = void 0;
+const CommitmentService = __importStar(require("./CommitmentService"));
+const ProofGenerator = __importStar(require("./ProofGenerator"));
+/**
+ * ZKIdentity class for privacy-preserving identity attestations
+ *
+ * @example
+ * ```typescript
+ * // Create identity
+ * const identity = new ZKIdentity('github:12345')
+ *
+ * // Get commitment (safe to share publicly)
+ * const commitment = identity.getCommitment()
+ *
+ * // Create commitment transaction
+ * const commitmentTx = await identity.createCommitmentTransaction('http://localhost:3000')
+ *
+ * // Later: Create anonymous attestation
+ * const attestationTx = await identity.createAttestationTransaction(
+ *     'http://localhost:3000',
+ *     'dao_vote_123'
+ * )
+ * ```
+ */
+class ZKIdentity {
+    /**
+     * Create a new ZK identity
+     *
+     * @param providerId - Provider identifier (e.g., "github:12345", "discord:67890")
+     * @param secret - Optional secret (will be generated if not provided)
+     *
+     * WARNING: Keep the secret secure! Store it encrypted in local storage.
+     * If lost, you cannot create attestations for this commitment.
+     */
+    constructor(providerId, secret) {
+        this.providerId = providerId;
+        this.secret = secret || CommitmentService.generateSecret();
+    }
+    /**
+     * Get the identity commitment hash
+     *
+     * This is safe to share publicly and will be stored in the Merkle tree.
+     *
+     * @returns Commitment hash as string
+     */
+    getCommitment() {
+        return CommitmentService.generateCommitment(this.providerId, this.secret);
+    }
+    /**
+     * Get the provider name from provider ID
+     *
+     * @returns Provider name (e.g., "github", "discord")
+     */
+    getProvider() {
+        return this.providerId.split(':')[0];
+    }
+    /**
+     * Get the secret (use with caution!)
+     *
+     * @returns The secret value
+     *
+     * WARNING: Never transmit this over the network!
+     */
+    getSecret() {
+        return this.secret;
+    }
+    /**
+     * Create a commitment transaction to submit to the node
+     *
+     * This adds your commitment to the global Merkle tree.
+     * You must submit this transaction before you can create attestations.
+     *
+     * @param rpcUrl - Node RPC URL
+     * @returns Commitment transaction payload
+     */
+    async createCommitmentTransaction(rpcUrl) {
+        const commitment = this.getCommitment();
+        const payload = {
+            commitment_hash: commitment,
+            provider: this.getProvider(),
+            timestamp: Date.now(),
+        };
+        return payload;
+    }
+    /**
+     * Create an anonymous attestation transaction
+     *
+     * This proves you have a valid identity commitment in the Merkle tree
+     * without revealing which one. Uses ZK-SNARKs for privacy.
+     *
+     * @param rpcUrl - Node RPC URL
+     * @param context - Context string for this attestation (e.g., "dao_vote_123")
+     * @returns Attestation transaction payload
+     *
+     * NOTE: Each context can only be used once per identity (nullifier prevents reuse)
+     */
+    async createAttestationTransaction(rpcUrl, context) {
+        // 1. Check if commitment exists in Merkle tree
+        const commitment = this.getCommitment();
+        // 2. Fetch Merkle proof for our commitment
+        const proofResponse = await fetch(`${rpcUrl}/zk/merkle/proof/${commitment}`);
+        if (!proofResponse.ok) {
+            const error = await proofResponse.json();
+            throw new Error(`Failed to get Merkle proof: ${error.error || 'Unknown error'}`);
+        }
+        const proofData = await proofResponse.json();
+        const merkleProof = {
+            siblings: proofData.proof.siblings,
+            pathIndices: proofData.proof.pathIndices,
+            root: proofData.proof.root,
+            leaf: proofData.proof.leaf || commitment,
+        };
+        // 3. Fetch current Merkle root
+        const rootResponse = await fetch(`${rpcUrl}/zk/merkle-root`);
+        if (!rootResponse.ok) {
+            throw new Error('Failed to get Merkle root');
+        }
+        const rootData = await rootResponse.json();
+        const merkleRoot = rootData.rootHash;
+        // 4. Check if nullifier has been used for this context
+        const nullifier = CommitmentService.generateNullifier(this.providerId, context);
+        const nullifierResponse = await fetch(`${rpcUrl}/zk/nullifier/${nullifier}`);
+        if (nullifierResponse.ok) {
+            const nullifierData = await nullifierResponse.json();
+            if (nullifierData.used) {
+                throw new Error(`Nullifier already used for context "${context}". Each identity can only attest once per context.`);
+            }
+        }
+        // 5. Generate ZK proof
+        const { proof, publicSignals } = await ProofGenerator.generateIdentityProof(this.providerId, this.secret, context, merkleProof, merkleRoot);
+        // 6. Create attestation payload
+        const payload = {
+            nullifier_hash: publicSignals[0],
+            merkle_root: publicSignals[1],
+            proof,
+            public_signals: publicSignals,
+            provider: this.getProvider(),
+        };
+        return payload;
+    }
+    /**
+     * Verify an attestation locally (optional - for testing)
+     *
+     * @param attestation - Attestation payload to verify
+     * @returns True if valid
+     *
+     * NOTE: Node will verify proofs server-side, this is mainly for debugging
+     */
+    static async verifyAttestation(attestation) {
+        return await ProofGenerator.verifyProof(attestation.proof, attestation.public_signals);
+    }
+    /**
+     * Export identity for backup
+     *
+     * @returns Object containing provider ID and secret
+     *
+     * WARNING: Store this securely! Anyone with this data can create
+     * attestations as you.
+     */
+    export() {
+        return {
+            providerId: this.providerId,
+            secret: this.secret,
+        };
+    }
+    /**
+     * Import identity from backup
+     *
+     * @param data - Exported identity data
+     * @returns New ZKIdentity instance
+     */
+    static import(data) {
+        return new ZKIdentity(data.providerId, data.secret);
+    }
+    /**
+     * Generate a fresh identity with random secret
+     *
+     * @param providerId - Provider identifier
+     * @returns New ZKIdentity instance
+     */
+    static generate(providerId) {
+        return new ZKIdentity(providerId);
+    }
+}
+exports.ZKIdentity = ZKIdentity;
+//# sourceMappingURL=ZKIdentity.js.map

package/build/encryption/zK/identity/ZKIdentity.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"ZKIdentity.js","sourceRoot":"","sources":["../../../../../src/encryption/zK/identity/ZKIdentity.ts"],"names":[],"mappings":";AAAA;;;;;;;;;GASG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,uEAAwD;AACxD,iEAAkD;AAgBlD;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,MAAa,UAAU;IAInB;;;;;;;;OAQG;IACH,YAAY,UAAkB,EAAE,MAAe;QAC3C,IAAI,CAAC,UAAU,GAAG,UAAU,CAAA;QAC5B,IAAI,CAAC,MAAM,GAAG,MAAM,IAAI,iBAAiB,CAAC,cAAc,EAAE,CAAA;IAC9D,CAAC;IAED;;;;;;OAMG;IACH,aAAa;QACT,OAAO,iBAAiB,CAAC,kBAAkB,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;IAC7E,CAAC;IAED;;;;OAIG;IACH,WAAW;QACP,OAAO,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAA;IACxC,CAAC;IAED;;;;;;OAMG;IACH,SAAS;QACL,OAAO,IAAI,CAAC,MAAM,CAAA;IACtB,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,2BAA2B,CAC7B,MAAc;QAEd,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,EAAE,CAAA;QAEvC,MAAM,OAAO,GAA8B;YACvC,eAAe,EAAE,UAAU;YAC3B,QAAQ,EAAE,IAAI,CAAC,WAAW,EAAE;YAC5B,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;SACxB,CAAA;QAED,OAAO,OAAO,CAAA;IAClB,CAAC;IAED;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,4BAA4B,CAC9B,MAAc,EACd,OAAe;QAEf,+CAA+C;QAC/C,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,EAAE,CAAA;QAEvC,2CAA2C;QAC3C,MAAM,aAAa,GAAG,MAAM,KAAK,CAAC,GAAG,MAAM,oBAAoB,UAAU,EAAE,CAAC,CAAA;QAE5E,IAAI,CAAC,aAAa,CAAC,EAAE,EAAE,CAAC;YACpB,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,IAAI,EAAE,CAAA;YACxC,MAAM,IAAI,KAAK,CACX,+BAA+B,KAAK,CAAC,KAAK,IAAI,eAAe,EAAE,CAClE,CAAA;QACL,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,aAAa,CAAC,IAAI,EAAE,CAAA;QAC5C,MAAM,WAAW,GAA+B;YAC5C,QAAQ,EAAE,SAAS,CAAC,KAAK,CAAC,QAAQ;YAClC,WAAW,EAAE,SAAS,CAAC,KAAK,CAAC,WAAW;YACxC,IAAI,EAAE,SAAS,CAAC,KAAK,CAAC,IAAI;YAC1B,IAAI,EAAE,SAAS,CAAC,KAAK,CAAC,IAAI,IAAI,UAAU;SAC3C,CAAA;QAED,+BAA+B;QAC/B,MAAM,YAAY,GAAG,MAAM,KAAK,CAAC,GAAG,MAAM,iBAAiB,CAAC,CAAA;QAE5D,IAAI,CAAC,YAAY,CAAC,EAAE,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAA;QAChD,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,IAAI,EAAE,CAAA;QAC1C,MAAM,UAAU,GAAG,QAAQ,CAAC,QAAQ,CAAA;QAEpC,uDAAuD;QACvD,MAAM,SAAS,GAAG,iBAAiB,CAAC,iBAAiB,CACjD,IAAI,CAAC,UAAU,EACf,OAAO,CACV,CAAA;QACD,MAAM,iBAAiB,GAAG,MAAM,KAAK,CAAC,GAAG,MAAM,iBAAiB,SAAS,EAAE,CAAC,CAAA;QAE5E,IAAI,iBAAiB,CAAC,EAAE,EAAE,CAAC;YACvB,MAAM,aAAa,GAAG,MAAM,iBAAiB,CAAC,IAAI,EAAE,CAAA;YACpD,IAAI,aAAa,CAAC,IAAI,EAAE,CAAC;gBACrB,MAAM,IAAI,KAAK,CACX,uCAAuC,OAAO,oDAAoD,CACrG,CAAA;YACL,CAAC;QACL,CAAC;QAED,uBAAuB;QACvB,MAAM,EAAE,KAAK,EAAE,aAAa,EAAE,GAC1B,MAAM,cAAc,CAAC,qBAAqB,CACtC,IAAI,CAAC,UAAU,EACf,IAAI,CAAC,MAAM,EACX,OAAO,EACP,WAAW,EACX,UAAU,CACb,CAAA;QAEL,gCAAgC;QAChC,MAAM,OAAO,GAA+B;YACxC,cAAc,EAAE,aAAa,CAAC,CAAC,CAAC;YAChC,WAAW,EAAE,aAAa,CAAC,CAAC,CAAC;YAC7B,KAAK;YACL,cAAc,EAAE,aAAa;YAC7B,QAAQ,EAAE,IAAI,CAAC,WAAW,EAAE;SAC/B,CAAA;QAED,OAAO,OAAO,CAAA;IAClB,CAAC;IAED;;;;;;;OAOG;IACH,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAC1B,WAAuC;QAEvC,OAAO,MAAM,cAAc,CAAC,WAAW,CACnC,WAAW,CAAC,KAAK,EACjB,WAAW,CAAC,cAAc,CAC7B,CAAA;IACL,CAAC;IAED;;;;;;;OAOG;IACH,MAAM;QACF,OAAO;YACH,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,MAAM,EAAE,IAAI,CAAC,MAAM;SACtB,CAAA;IACL,CAAC;IAED;;;;;OAKG;IACH,MAAM,CAAC,MAAM,CAAC,IAA4C;QACtD,OAAO,IAAI,UAAU,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,MAAM,CAAC,CAAA;IACvD,CAAC;IAED;;;;;OAKG;IACH,MAAM,CAAC,QAAQ,CAAC,UAAkB;QAC9B,OAAO,IAAI,UAAU,CAAC,UAAU,CAAC,CAAA;IACrC,CAAC;CACJ;AAhND,gCAgNC"}

package/build/encryption/zK/identity/index.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+/**
+ * ZK Identity Module
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ *
+ * Provides privacy-preserving identity attestations using ZK-SNARKs.
+ */
+export * as CommitmentService from './CommitmentService';
+export * as ProofGenerator from './ProofGenerator';
+export { ZKIdentity } from './ZKIdentity';
+export type { ZKProof, ProofGenerationResult, MerkleProof, } from './ProofGenerator';
+export type { IdentityCommitmentPayload, IdentityAttestationPayload, } from './ZKIdentity';

package/build/encryption/zK/identity/index.js ADDED Viewed

@@ -0,0 +1,48 @@
+"use strict";
+/**
+ * ZK Identity Module
+ *
+ * REVIEW: Phase 9 - SDK Integration
+ *
+ * Provides privacy-preserving identity attestations using ZK-SNARKs.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ZKIdentity = exports.ProofGenerator = exports.CommitmentService = void 0;
+exports.CommitmentService = __importStar(require("./CommitmentService"));
+exports.ProofGenerator = __importStar(require("./ProofGenerator"));
+var ZKIdentity_1 = require("./ZKIdentity");
+Object.defineProperty(exports, "ZKIdentity", { enumerable: true, get: function () { return ZKIdentity_1.ZKIdentity; } });
+//# sourceMappingURL=index.js.map

package/build/encryption/zK/identity/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../src/encryption/zK/identity/index.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,yEAAwD;AACxD,mEAAkD;AAClD,2CAAyC;AAAhC,wGAAA,UAAU,OAAA"}

package/build/encryption/zK/index.d.ts CHANGED Viewed

	@@ -1 +1,2 @@
1 1	export * as interactive from './interactive';
2	+ export * as identity from './identity';

package/build/encryption/zK/index.js CHANGED Viewed

@@ -33,6 +33,8 @@ var __importStar = (this && this.__importStar) || (function () {
     };
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.interactive = void 0;
+exports.identity = exports.interactive = void 0;
 exports.interactive = __importStar(require("./interactive")); // interactive.Prover and interactive.Verifier
+// REVIEW: Phase 9 - SDK Integration - ZK Identity attestations
+exports.identity = __importStar(require("./identity"));
 //# sourceMappingURL=index.js.map

package/build/encryption/zK/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/encryption/zK/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6DAA4C,CAAC,8CAA8C"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/encryption/zK/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6DAA4C,CAAC,8CAA8C;AAC3F,+DAA+D;AAC/D,uDAAsC"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
     "name": "@kynesyslabs/demosdk",
-    "version": "2.4.26",
+    "version": "2.5.1",
     "description": "Demosdk is a JavaScript/TypeScript SDK that provides a unified interface for interacting with Demos network",
     "main": "build/index.js",
     "types": "build/index.d.ts",
@@ -109,8 +109,10 @@
         "node-forge": "^1.3.1",
         "node-seal": "^5.1.7",
         "ntru": "^4.0.4",
+        "poseidon-lite": "^0.3.0",
         "pqcrypto": "^1.0.1",
         "protobufjs": "^7.5.4",
+        "snarkjs": "^0.7.5",
         "ripple-keypairs": "^2.0.0",
         "rubic-sdk": "^5.57.4",
         "simple-peer": "^9.11.1",