@kynesyslabs/demosdk 2.7.0 → 2.7.2

package/build/tlsnotary/TLSNotary.js

@@ -0,0 +1,434 @@
+"use strict";
+/**
+ * TLSNotary - Browser-based HTTPS Attestation
+ *
+ * This module provides TLSNotary attestation capabilities for the Demos SDK.
+ * It runs the TLSNotary Prover in a Web Worker using WASM, communicates with
+ * a Notary server, and produces cryptographic proofs of HTTPS requests.
+ *
+ * NOTE: This module is browser-only. It requires Web Workers and WASM support.
+ *
+ * @example
+ * ```typescript
+ * import { TLSNotary } from '@kynesyslabs/demosdk/tlsnotary';
+ *
+ * // Option 1: Explicit configuration
+ * const tlsn = new TLSNotary({
+ *   notaryUrl: 'wss://node.demos.sh:7047',
+ *   websocketProxyUrl: 'wss://node.demos.sh:55688',
+ * });
+ *
+ * // Option 2: Discovery via Demos instance (preferred)
+ * const demos = new Demos({ rpc: 'https://node.demos.sh' });
+ * const tlsn = await demos.tlsnotary();
+ *
+ * await tlsn.initialize();
+ *
+ * const result = await tlsn.attest({
+ *   url: 'https://api.github.com/users/octocat',
+ *   headers: { 'User-Agent': 'DemosSDK' },
+ * });
+ *
+ * console.log('Verified server:', result.verification.serverName);
+ * console.log('Response:', result.verification.recv);
+ * ```
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TLSNotary = void 0;
+const Comlink = __importStar(require("comlink"));
+const tlsn_js_1 = require("tlsn-js");
+/**
+ * TLSNotary class for browser-based HTTPS attestation
+ *
+ * This class handles:
+ * - Running the Prover (MPC-TLS client) in the browser via WASM
+ * - Communicating with the Demos Node's Notary server
+ * - Attesting HTTPS requests with cryptographic proofs
+ * - Verifying attestations offline
+ */
+class TLSNotary {
+    /**
+     * Create a new TLSNotary instance
+     *
+     * @param config - Configuration with notary and proxy URLs
+     */
+    constructor(config) {
+        this.worker = null;
+        // Using any for Comlink wrapper as types are lost across the worker boundary
+        this.wasm = null;
+        this.initialized = false;
+        this.initializingPromise = null;
+        this.config = {
+            loggingLevel: "Info",
+            ...config,
+        };
+    }
+    /**
+     * Initialize the WASM module
+     *
+     * Must be called before any attestation operations.
+     * Only needs to be called once per page load.
+     *
+     * @throws Error if WASM initialization fails
+     */
+    async initialize() {
+        if (this.initialized)
+            return;
+        if (this.initializingPromise)
+            return this.initializingPromise;
+        this.initializingPromise = (async () => {
+            try {
+                // Create Web Worker for WASM operations
+                // Note: This requires a bundler that supports worker URLs (webpack, vite, etc.)
+                // @ts-expect-error - import.meta.url is browser-only and requires ESNext module
+                this.worker = new Worker(new URL("./worker.ts", import.meta.url), {
+                    type: "module",
+                });
+                this.wasm = Comlink.wrap(this.worker);
+                // Initialize WASM with logging level
+                await this.wasm.init({ loggingLevel: this.config.loggingLevel });
+                this.initialized = true;
+            }
+            catch (e) {
+                // Clean up partially created resources
+                if (this.worker) {
+                    this.worker.terminate();
+                    this.worker = null;
+                }
+                this.wasm = null;
+                this.initialized = false;
+                // Reset promise to allow retries on failure
+                this.initializingPromise = null;
+                throw e;
+            }
+        })();
+        return this.initializingPromise;
+    }
+    /**
+     * Attest an HTTPS request using the step-by-step method
+     *
+     * This provides full control over the attestation process including
+     * custom commit ranges for selective disclosure.
+     *
+     * @param request - Request configuration (URL, method, headers, body)
+     * @param commit - Optional commit ranges for selective disclosure
+     * @param onStatus - Optional status callback for progress updates
+     * @returns Attestation result with proof and verification
+     *
+     * @example
+     * ```typescript
+     * const result = await tlsn.attest({
+     *   url: 'https://api.example.com/user',
+     *   method: 'GET',
+     *   headers: { 'Authorization': 'Bearer token' },
+     * }, {
+     *   // Hide authorization header in the proof
+     *   sent: [{ start: 0, end: 50 }, { start: 100, end: 200 }],
+     *   recv: [{ start: 0, end: 500 }],
+     * });
+     * ```
+     */
+    async attest(request, commit, onStatus) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const status = onStatus || (() => { });
+        // Extract server DNS from URL
+        const url = new URL(request.url);
+        const serverDns = url.hostname;
+        // Step 1: Connect to Notary
+        status("Connecting to Notary server...");
+        const notary = tlsn_js_1.NotaryServer.from(this.config.notaryUrl);
+        // Step 2: Create Prover
+        status("Creating Prover instance...");
+        const prover = (await new this.wasm.Prover({
+            serverDns,
+            maxSentData: request.maxSentData || 16384,
+            maxRecvData: request.maxRecvData || 16384,
+        }));
+        let presentation = null;
+        try {
+            // Step 3: Setup MPC-TLS session
+            status("Setting up MPC-TLS session...");
+            await prover.setup(await notary.sessionUrl());
+            // Step 4: Send the HTTPS request
+            status(`Sending attested request to ${serverDns}...`);
+            const headers = {
+                Accept: "application/json",
+                ...request.headers,
+            };
+            await prover.sendRequest(this.config.websocketProxyUrl, {
+                url: request.url,
+                method: (request.method || "GET"),
+                headers,
+                body: request.body,
+            });
+            // Step 5: Get transcript
+            status("Getting transcript...");
+            const transcript = await prover.transcript();
+            const { sent, recv } = transcript;
+            // Step 6: Create commit ranges (what to reveal)
+            status("Creating attestation commitment...");
+            const commitRanges = commit || {
+                sent: [{ start: 0, end: Math.min(sent.length, 200) }],
+                recv: [{ start: 0, end: Math.min(recv.length, 300) }],
+            };
+            // Step 7: Notarize
+            status("Generating attestation (this may take a moment)...");
+            const notarizationOutputs = await prover.notarize(commitRanges);
+            // Step 8: Create presentation
+            status("Creating presentation...");
+            presentation = (await new this.wasm.Presentation({
+                attestationHex: notarizationOutputs.attestation,
+                secretsHex: notarizationOutputs.secrets,
+                notaryUrl: notarizationOutputs.notaryUrl,
+                websocketProxyUrl: notarizationOutputs.websocketProxyUrl,
+                reveal: { ...commitRanges, server_identity: true },
+            }));
+            const presentationJSON = await presentation.json();
+            // Step 9: Verify the presentation
+            status("Verifying attestation...");
+            const verification = await this.verify(presentationJSON);
+            status("Attestation complete!");
+            return {
+                presentation: presentationJSON,
+                verification,
+            };
+        }
+        finally {
+            // Free WASM memory to prevent leaks
+            if (presentation) {
+                await presentation.free();
+            }
+            if (prover) {
+                await prover.free();
+            }
+        }
+    }
+    /**
+     * Quick attestation using the helper method
+     *
+     * Simpler API with less control over the process.
+     * Good for straightforward use cases.
+     *
+     * @param options - Attestation options including request and commit config
+     * @returns Attestation result with proof and verification
+     *
+     * @example
+     * ```typescript
+     * const result = await tlsn.attestQuick({
+     *   url: 'https://api.coingecko.com/api/v3/simple/price?ids=bitcoin&vs_currencies=usd',
+     * });
+     * ```
+     */
+    async attestQuick(options) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const { onStatus, commit, ...request } = options;
+        const status = onStatus || (() => { });
+        status("Running quick attestation...");
+        const presentationJSON = await this.wasm.Prover.notarize({
+            notaryUrl: this.config.notaryUrl,
+            websocketProxyUrl: this.config.websocketProxyUrl,
+            maxSentData: request.maxSentData || 16384,
+            maxRecvData: request.maxRecvData || 16384,
+            url: request.url,
+            method: (request.method || "GET"),
+            headers: {
+                Accept: "application/json",
+                ...request.headers,
+            },
+            body: request.body,
+            commit: commit || {
+                sent: [{ start: 0, end: 100 }],
+                recv: [{ start: 0, end: 200 }],
+            },
+            serverIdentity: true,
+        });
+        status("Verifying attestation...");
+        const verification = await this.verify(presentationJSON);
+        status("Quick attestation complete!");
+        return {
+            presentation: presentationJSON,
+            verification,
+        };
+    }
+    /**
+     * Verify a presentation/proof
+     *
+     * Can be used to verify proofs from other sources.
+     * This operation can be done offline.
+     *
+     * @param presentationJSON - The presentation to verify
+     * @returns Verification result with extracted data
+     *
+     * @example
+     * ```typescript
+     * // Load a saved proof
+     * const savedProof = JSON.parse(localStorage.getItem('proof'));
+     * const result = await tlsn.verify(savedProof);
+     *
+     * console.log('Server:', result.serverName);
+     * console.log('Time:', new Date(result.time * 1000));
+     * console.log('Response:', result.recv);
+     * ```
+     */
+    async verify(presentationJSON) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const proof = (await new this.wasm.Presentation(presentationJSON.data));
+        try {
+            const verifierOutput = await proof.verify();
+            const transcript = new tlsn_js_1.Transcript({
+                sent: verifierOutput.transcript?.sent || [],
+                recv: verifierOutput.transcript?.recv || [],
+            });
+            const vk = await proof.verifyingKey();
+            // Try to get notary key if available
+            let notaryKey = "N/A";
+            try {
+                if (this.config.notaryPublicKey) {
+                    notaryKey = this.config.notaryPublicKey;
+                }
+                else {
+                    const notary = tlsn_js_1.NotaryServer.from(this.config.notaryUrl);
+                    notaryKey = await notary.publicKey("hex");
+                }
+            }
+            catch (error) {
+                // Notary might not be running for offline verification
+                console.warn("[TLSNotary] Could not fetch notary public key:", error instanceof Error ? error.message : error);
+            }
+            return {
+                time: verifierOutput.connection_info.time,
+                serverName: verifierOutput.server_name,
+                sent: transcript.sent(),
+                recv: transcript.recv(),
+                notaryKey,
+                verifyingKey: Buffer.from(vk.data).toString("hex"),
+            };
+        }
+        finally {
+            // Free WASM memory to prevent leaks
+            if (proof) {
+                await proof.free();
+            }
+        }
+    }
+    /**
+     * Get the transcript from an attestation for inspection
+     *
+     * Useful for determining commit ranges for selective disclosure.
+     *
+     * @param request - Request to send (without creating attestation)
+     * @returns Transcript with sent and received bytes
+     */
+    async getTranscript(request) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const url = new URL(request.url);
+        const serverDns = url.hostname;
+        const notary = tlsn_js_1.NotaryServer.from(this.config.notaryUrl);
+        const prover = (await new this.wasm.Prover({
+            serverDns,
+            maxSentData: request.maxSentData || 16384,
+            maxRecvData: request.maxRecvData || 16384,
+        }));
+        try {
+            await prover.setup(await notary.sessionUrl());
+            await prover.sendRequest(this.config.websocketProxyUrl, {
+                url: request.url,
+                method: (request.method || "GET"),
+                headers: {
+                    Accept: "application/json",
+                    ...request.headers,
+                },
+                body: request.body,
+            });
+            const transcript = await prover.transcript();
+            return {
+                sent: transcript.sent,
+                recv: transcript.recv,
+            };
+        }
+        finally {
+            // Free WASM memory to prevent leaks
+            if (prover) {
+                await prover.free();
+            }
+        }
+    }
+    /**
+     * Cleanup resources
+     *
+     * Call when done with TLSNotary to release the Web Worker.
+     */
+    destroy() {
+        if (this.worker) {
+            this.worker.terminate();
+            this.worker = null;
+        }
+        this.wasm = null;
+        this.initialized = false;
+    }
+    /**
+     * Check if WASM is initialized
+     */
+    isInitialized() {
+        return this.initialized;
+    }
+    /**
+     * Get current configuration
+     */
+    getConfig() {
+        return { ...this.config };
+    }
+    /**
+     * Update configuration
+     *
+     * Note: Changes take effect on next attestation.
+     * If changing notary URL, you may want to re-initialize.
+     */
+    updateConfig(config) {
+        this.config = { ...this.config, ...config };
+    }
+}
+exports.TLSNotary = TLSNotary;
+exports.default = TLSNotary;
+//# sourceMappingURL=TLSNotary.js.map

package/build/tlsnotary/TLSNotary.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TLSNotary.js","sourceRoot":"","sources":["../../../src/tlsnotary/TLSNotary.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,iDAAkC;AAClC,qCAOgB;AAchB;;;;;;;;GAQG;AACH,MAAa,SAAS;IAQlB;;;;OAIG;IACH,YAAY,MAAuB;QAX3B,WAAM,GAAkB,IAAI,CAAA;QACpC,6EAA6E;QACrE,SAAI,GAAQ,IAAI,CAAA;QAChB,gBAAW,GAAG,KAAK,CAAA;QACnB,wBAAmB,GAAyB,IAAI,CAAA;QAQpD,IAAI,CAAC,MAAM,GAAG;YACV,YAAY,EAAE,MAAM;YACpB,GAAG,MAAM;SACZ,CAAA;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,UAAU;QACZ,IAAI,IAAI,CAAC,WAAW;YAAE,OAAM;QAC5B,IAAI,IAAI,CAAC,mBAAmB;YAAE,OAAO,IAAI,CAAC,mBAAmB,CAAA;QAE7D,IAAI,CAAC,mBAAmB,GAAG,CAAC,KAAK,IAAI,EAAE;YACnC,IAAI,CAAC;gBACD,wCAAwC;gBACxC,gFAAgF;gBAChF,gFAAgF;gBAChF,IAAI,CAAC,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC,aAAa,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;oBAC9D,IAAI,EAAE,QAAQ;iBACjB,CAAC,CAAA;gBAEF,IAAI,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;gBAErC,qCAAqC;gBACrC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC,CAAA;gBAChE,IAAI,CAAC,WAAW,GAAG,IAAI,CAAA;YAC3B,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACT,uCAAuC;gBACvC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;oBACd,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAA;oBACvB,IAAI,CAAC,MAAM,GAAG,IAAI,CAAA;gBACtB,CAAC;gBACD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;gBAChB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAA;gBACxB,4CAA4C;gBAC5C,IAAI,CAAC,mBAAmB,GAAG,IAAI,CAAA;gBAC/B,MAAM,CAAC,CAAA;YACX,CAAC;QACL,CAAC,CAAC,EAAE,CAAA;QAEJ,OAAO,IAAI,CAAC,mBAAmB,CAAA;IACnC,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACH,KAAK,CAAC,MAAM,CACR,OAAsB,EACtB,MAAqB,EACrB,QAAyB;QAEzB,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,MAAM,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAErC,8BAA8B;QAC9B,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;QAChC,MAAM,SAAS,GAAG,GAAG,CAAC,QAAQ,CAAA;QAE9B,4BAA4B;QAC5B,MAAM,CAAC,gCAAgC,CAAC,CAAA;QACxC,MAAM,MAAM,GAAG,sBAAY,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QAEvD,wBAAwB;QACxB,MAAM,CAAC,6BAA6B,CAAC,CAAA;QACrC,MAAM,MAAM,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;YACvC,SAAS;YACT,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;SAC5C,CAAC,CAAY,CAAA;QAEd,IAAI,YAAY,GAAyB,IAAI,CAAA;QAE7C,IAAI,CAAC;YACD,gCAAgC;YAChC,MAAM,CAAC,+BAA+B,CAAC,CAAA;YACvC,MAAM,MAAM,CAAC,KAAK,CAAC,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC,CAAA;YAE7C,iCAAiC;YACjC,MAAM,CAAC,+BAA+B,SAAS,KAAK,CAAC,CAAA;YACrD,MAAM,OAAO,GAA2B;gBACpC,MAAM,EAAE,kBAAkB;gBAC1B,GAAG,OAAO,CAAC,OAAO;aACrB,CAAA;YAED,MAAM,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE;gBACpD,GAAG,EAAE,OAAO,CAAC,GAAG;gBAChB,MAAM,EAAE,CAAC,OAAO,CAAC,MAAM,IAAI,KAAK,CAAW;gBAC3C,OAAO;gBACP,IAAI,EAAE,OAAO,CAAC,IAAI;aACrB,CAAC,CAAA;YAEF,yBAAyB;YACzB,MAAM,CAAC,uBAAuB,CAAC,CAAA;YAC/B,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAA;YAC5C,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,UAAU,CAAA;YAEjC,gDAAgD;YAChD,MAAM,CAAC,oCAAoC,CAAC,CAAA;YAC5C,MAAM,YAAY,GAAW,MAAM,IAAI;gBACnC,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,CAAC;gBACrD,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,CAAC;aACxD,CAAA;YAED,mBAAmB;YACnB,MAAM,CAAC,oDAAoD,CAAC,CAAA;YAC5D,MAAM,mBAAmB,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;YAE/D,8BAA8B;YAC9B,MAAM,CAAC,0BAA0B,CAAC,CAAA;YAClC,YAAY,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC;gBAC7C,cAAc,EAAE,mBAAmB,CAAC,WAAW;gBAC/C,UAAU,EAAE,mBAAmB,CAAC,OAAO;gBACvC,SAAS,EAAE,mBAAmB,CAAC,SAAS;gBACxC,iBAAiB,EAAE,mBAAmB,CAAC,iBAAiB;gBACxD,MAAM,EAAE,EAAE,GAAG,YAAY,EAAE,eAAe,EAAE,IAAI,EAAE;aACrD,CAAC,CAAkB,CAAA;YAEpB,MAAM,gBAAgB,GAAG,MAAM,YAAY,CAAC,IAAI,EAAE,CAAA;YAElD,kCAAkC;YAClC,MAAM,CAAC,0BAA0B,CAAC,CAAA;YAClC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAA;YAExD,MAAM,CAAC,uBAAuB,CAAC,CAAA;YAE/B,OAAO;gBACH,YAAY,EAAE,gBAAgB;gBAC9B,YAAY;aACf,CAAA;QACL,CAAC;gBAAS,CAAC;YACP,oCAAoC;YACpC,IAAI,YAAY,EAAE,CAAC;gBACf,MAAM,YAAY,CAAC,IAAI,EAAE,CAAA;YAC7B,CAAC;YACD,IAAI,MAAM,EAAE,CAAC;gBACT,MAAM,MAAM,CAAC,IAAI,EAAE,CAAA;YACvB,CAAC;QACL,CAAC;IACL,CAAC;IAED;;;;;;;;;;;;;;;OAeG;IACH,KAAK,CAAC,WAAW,CAAC,OAAsB;QACpC,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,OAAO,EAAE,GAAG,OAAO,CAAA;QAChD,MAAM,MAAM,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAErC,MAAM,CAAC,8BAA8B,CAAC,CAAA;QAEtC,MAAM,gBAAgB,GAAG,MACrB,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,QACpB,CAAC;YACE,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS;YAChC,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,iBAAiB;YAChD,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,GAAG,EAAE,OAAO,CAAC,GAAG;YAChB,MAAM,EAAE,CAAC,OAAO,CAAC,MAAM,IAAI,KAAK,CAAW;YAC3C,OAAO,EAAE;gBACL,MAAM,EAAE,kBAAkB;gBAC1B,GAAG,OAAO,CAAC,OAAO;aACrB;YACD,IAAI,EAAE,OAAO,CAAC,IAAI;YAClB,MAAM,EAAE,MAAM,IAAI;gBACd,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;gBAC9B,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;aACjC;YACD,cAAc,EAAE,IAAI;SACvB,CAAC,CAAA;QAEF,MAAM,CAAC,0BAA0B,CAAC,CAAA;QAClC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAA;QAExD,MAAM,CAAC,6BAA6B,CAAC,CAAA;QAErC,OAAO;YACH,YAAY,EAAE,gBAAgB;YAC9B,YAAY;SACf,CAAA;IACL,CAAC;IAED;;;;;;;;;;;;;;;;;;;OAmBG;IACH,KAAK,CAAC,MAAM,CAAC,gBAAkC;QAC3C,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,KAAK,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,YAAY,CAC3C,gBAAgB,CAAC,IAAI,CACxB,CAAkB,CAAA;QAEnB,IAAI,CAAC;YACD,MAAM,cAAc,GAAG,MAAM,KAAK,CAAC,MAAM,EAAE,CAAA;YAE3C,MAAM,UAAU,GAAG,IAAI,oBAAU,CAAC;gBAC9B,IAAI,EAAE,cAAc,CAAC,UAAU,EAAE,IAAI,IAAI,EAAE;gBAC3C,IAAI,EAAE,cAAc,CAAC,UAAU,EAAE,IAAI,IAAI,EAAE;aAC9C,CAAC,CAAA;YAEF,MAAM,EAAE,GAAG,MAAM,KAAK,CAAC,YAAY,EAAE,CAAA;YAErC,qCAAqC;YACrC,IAAI,SAAS,GAAG,KAAK,CAAA;YACrB,IAAI,CAAC;gBACD,IAAI,IAAI,CAAC,MAAM,CAAC,eAAe,EAAE,CAAC;oBAC9B,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,eAAe,CAAA;gBAC3C,CAAC;qBAAM,CAAC;oBACJ,MAAM,MAAM,GAAG,sBAAY,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;oBACvD,SAAS,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,KAAK,CAAC,CAAA;gBAC7C,CAAC;YACL,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACb,uDAAuD;gBACvD,OAAO,CAAC,IAAI,CACR,gDAAgD,EAChD,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,CACjD,CAAA;YACL,CAAC;YAED,OAAO;gBACH,IAAI,EAAE,cAAc,CAAC,eAAe,CAAC,IAAI;gBACzC,UAAU,EAAE,cAAc,CAAC,WAAW;gBACtC,IAAI,EAAE,UAAU,CAAC,IAAI,EAAE;gBACvB,IAAI,EAAE,UAAU,CAAC,IAAI,EAAE;gBACvB,SAAS;gBACT,YAAY,EAAE,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;aACrD,CAAA;QACL,CAAC;gBAAS,CAAC;YACP,oCAAoC;YACpC,IAAI,KAAK,EAAE,CAAC;gBACR,MAAM,KAAK,CAAC,IAAI,EAAE,CAAA;YACtB,CAAC;QACL,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,aAAa,CAAC,OAAsB;QACtC,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;QAChC,MAAM,SAAS,GAAG,GAAG,CAAC,QAAQ,CAAA;QAE9B,MAAM,MAAM,GAAG,sBAAY,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QAEvD,MAAM,MAAM,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;YACvC,SAAS;YACT,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;SAC5C,CAAC,CAAY,CAAA;QAEd,IAAI,CAAC;YACD,MAAM,MAAM,CAAC,KAAK,CAAC,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC,CAAA;YAE7C,MAAM,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE;gBACpD,GAAG,EAAE,OAAO,CAAC,GAAG;gBAChB,MAAM,EAAE,CAAC,OAAO,CAAC,MAAM,IAAI,KAAK,CAAW;gBAC3C,OAAO,EAAE;oBACL,MAAM,EAAE,kBAAkB;oBAC1B,GAAG,OAAO,CAAC,OAAO;iBACrB;gBACD,IAAI,EAAE,OAAO,CAAC,IAAI;aACrB,CAAC,CAAA;YAEF,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAA;YAE5C,OAAO;gBACH,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,IAAI,EAAE,UAAU,CAAC,IAAI;aACxB,CAAA;QACL,CAAC;gBAAS,CAAC;YACP,oCAAoC;YACpC,IAAI,MAAM,EAAE,CAAC;gBACT,MAAM,MAAM,CAAC,IAAI,EAAE,CAAA;YACvB,CAAC;QACL,CAAC;IACL,CAAC;IAED;;;;OAIG;IACH,OAAO;QACH,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YACd,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAA;YACvB,IAAI,CAAC,MAAM,GAAG,IAAI,CAAA;QACtB,CAAC;QACD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAChB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAA;IAC5B,CAAC;IAED;;OAEG;IACH,aAAa;QACT,OAAO,IAAI,CAAC,WAAW,CAAA;IAC3B,CAAC;IAED;;OAEG;IACH,SAAS;QACL,OAAO,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,CAAA;IAC7B,CAAC;IAED;;;;;OAKG;IACH,YAAY,CAAC,MAAgC;QACzC,IAAI,CAAC,MAAM,GAAG,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,MAAM,EAAE,CAAA;IAC/C,CAAC;CACJ;AAlZD,8BAkZC;AAED,kBAAe,SAAS,CAAA"}

package/build/tlsnotary/index.d.ts

@@ -0,0 +1,29 @@
+/**
+ * TLSNotary SDK Module
+ *
+ * Browser-based HTTPS attestation using MPC-TLS.
+ *
+ * @packageDocumentation
+ * @module tlsnotary
+ *
+ * @example
+ * ```typescript
+ * import { TLSNotary } from '@kynesyslabs/demosdk/tlsnotary';
+ *
+ * const tlsn = new TLSNotary({
+ *   notaryUrl: 'wss://node.demos.sh:7047',
+ *   websocketProxyUrl: 'wss://node.demos.sh:55688',
+ * });
+ *
+ * await tlsn.initialize();
+ *
+ * const result = await tlsn.attest({
+ *   url: 'https://api.github.com/users/octocat',
+ * });
+ *
+ * console.log('Verified:', result.verification.serverName);
+ * ```
+ */
+export { TLSNotary } from "./TLSNotary";
+export type { TLSNotaryConfig, TLSNotaryDiscoveryInfo, AttestRequest, AttestResult, AttestOptions, CommitRanges, Range, PresentationJSON, VerificationResult, TranscriptInfo, StatusCallback, } from "./types";
+export { default } from "./TLSNotary";

package/build/tlsnotary/index.js

@@ -0,0 +1,38 @@
+"use strict";
+/**
+ * TLSNotary SDK Module
+ *
+ * Browser-based HTTPS attestation using MPC-TLS.
+ *
+ * @packageDocumentation
+ * @module tlsnotary
+ *
+ * @example
+ * ```typescript
+ * import { TLSNotary } from '@kynesyslabs/demosdk/tlsnotary';
+ *
+ * const tlsn = new TLSNotary({
+ *   notaryUrl: 'wss://node.demos.sh:7047',
+ *   websocketProxyUrl: 'wss://node.demos.sh:55688',
+ * });
+ *
+ * await tlsn.initialize();
+ *
+ * const result = await tlsn.attest({
+ *   url: 'https://api.github.com/users/octocat',
+ * });
+ *
+ * console.log('Verified:', result.verification.serverName);
+ * ```
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.default = exports.TLSNotary = void 0;
+var TLSNotary_1 = require("./TLSNotary");
+Object.defineProperty(exports, "TLSNotary", { enumerable: true, get: function () { return TLSNotary_1.TLSNotary; } });
+// Re-export default
+var TLSNotary_2 = require("./TLSNotary");
+Object.defineProperty(exports, "default", { enumerable: true, get: function () { return __importDefault(TLSNotary_2).default; } });
+//# sourceMappingURL=index.js.map

package/build/tlsnotary/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/tlsnotary/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;;;;;;AAEH,yCAAuC;AAA9B,sGAAA,SAAS,OAAA;AAelB,oBAAoB;AACpB,yCAAqC;AAA5B,qHAAA,OAAO,OAAA"}

package/build/tlsnotary/types.d.ts

@@ -0,0 +1,116 @@
+/**
+ * TLSNotary Types
+ *
+ * TypeScript interfaces for the TLSNotary SDK module.
+ */
+/**
+ * Configuration for TLSNotary instance
+ */
+export interface TLSNotaryConfig {
+    /** Notary server URL (e.g., 'wss://node.demos.sh:7047') */
+    notaryUrl: string;
+    /** WebSocket proxy URL for TCP tunneling (e.g., 'wss://node.demos.sh:55688') */
+    websocketProxyUrl: string;
+    /** Notary's public key (hex string) for verification */
+    notaryPublicKey?: string;
+    /** Logging level: 'Debug' | 'Info' | 'Warn' | 'Error' */
+    loggingLevel?: "Debug" | "Info" | "Warn" | "Error";
+}
+/**
+ * Discovery response from node's nodeCall
+ */
+export interface TLSNotaryDiscoveryInfo {
+    /** Notary WebSocket URL */
+    notaryUrl: string;
+    /** WebSocket proxy URL */
+    proxyUrl: string;
+    /** Notary's public key (hex) */
+    publicKey: string;
+    /** TLSNotary version */
+    version: string;
+}
+/**
+ * Request configuration for attestation
+ */
+export interface AttestRequest {
+    /** Target HTTPS URL to attest */
+    url: string;
+    /** HTTP method (default: 'GET') */
+    method?: "GET" | "POST" | "PUT" | "DELETE" | "PATCH";
+    /** Request headers */
+    headers?: Record<string, string>;
+    /** Request body (for POST/PUT/PATCH) */
+    body?: string | object;
+    /** Max bytes to send (default: 16384) */
+    maxSentData?: number;
+    /** Max bytes to receive (default: 16384) */
+    maxRecvData?: number;
+}
+/**
+ * Byte range for selective disclosure
+ */
+export interface Range {
+    /** Start byte offset (inclusive) */
+    start: number;
+    /** End byte offset (exclusive) */
+    end: number;
+}
+/**
+ * Commit ranges for selective disclosure
+ */
+export interface CommitRanges {
+    /** Byte ranges of sent data to reveal */
+    sent: Range[];
+    /** Byte ranges of received data to reveal */
+    recv: Range[];
+}
+import type { PresentationJSON } from "tlsn-js/build/types";
+export type { PresentationJSON };
+/**
+ * Transcript information from the TLS session
+ */
+export interface TranscriptInfo {
+    /** Raw bytes sent (as number array from WASM) */
+    sent: number[];
+    /** Raw bytes received (as number array from WASM) */
+    recv: number[];
+}
+/**
+ * Result of attestation verification
+ */
+export interface VerificationResult {
+    /** Unix timestamp of the TLS session */
+    time: number;
+    /** Verified server name (e.g., 'api.github.com') */
+    serverName: string;
+    /** Revealed sent data as string */
+    sent: string;
+    /** Revealed received data as string */
+    recv: string;
+    /** Notary's public key (hex) */
+    notaryKey: string;
+    /** Verifying key from the proof (hex) */
+    verifyingKey: string;
+}
+/**
+ * Complete attestation result
+ */
+export interface AttestResult {
+    /** Presentation JSON (the proof) */
+    presentation: PresentationJSON;
+    /** Verification result */
+    verification: VerificationResult;
+}
+/**
+ * Status callback for progress updates during attestation
+ */
+export type StatusCallback = (status: string) => void;
+/**
+ * Options for attestation with additional controls
+ */
+export interface AttestOptions extends AttestRequest {
+    /** Custom commit ranges for selective disclosure */
+    commit?: CommitRanges;
+    /** Status callback for progress updates */
+    onStatus?: StatusCallback;
+}

package/build/tlsnotary/types.js

@@ -0,0 +1,8 @@
+"use strict";
+/**
+ * TLSNotary Types
+ *
+ * TypeScript interfaces for the TLSNotary SDK module.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/build/tlsnotary/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/tlsnotary/types.ts"],"names":[],"mappings":";AAAA;;;;GAIG"}

package/build/tlsnotary/worker.d.ts

@@ -0,0 +1,20 @@
+import init, { Prover, Presentation } from "tlsn-js";
+/**
+ * Worker API exposed via Comlink
+ */
+declare const workerApi: {
+    /**
+     * Initialize the WASM module
+     */
+    init: typeof init;
+    /**
+     * Prover class for creating attestations
+     */
+    Prover: typeof Prover;
+    /**
+     * Presentation class for verifying attestations
+     */
+    Presentation: typeof Presentation;
+};
+export type WorkerApi = typeof workerApi;
+export {};