@kynesyslabs/demosdk 2.7.1 → 2.7.3

package/build/tlsnotary/TLSNotary.js

@@ -0,0 +1,522 @@
+"use strict";
+/**
+ * TLSNotary - Browser-based HTTPS Attestation
+ *
+ * This module provides TLSNotary attestation capabilities for the Demos SDK.
+ * It runs the TLSNotary Prover in a Web Worker using WASM, communicates with
+ * a Notary server, and produces cryptographic proofs of HTTPS requests.
+ *
+ * NOTE: This module is browser-only. It requires Web Workers and WASM support.
+ *
+ * @example
+ * ```typescript
+ * import { TLSNotary } from '@kynesyslabs/demosdk/tlsnotary';
+ *
+ * // Option 1: Explicit configuration
+ * const tlsn = new TLSNotary({
+ *   notaryUrl: 'wss://node.demos.sh:7047',
+ *   websocketProxyUrl: 'wss://node.demos.sh:55688',
+ * });
+ *
+ * // Option 2: Discovery via Demos instance (preferred)
+ * const demos = new Demos({ rpc: 'https://node.demos.sh' });
+ * const tlsn = await demos.tlsnotary();
+ *
+ * await tlsn.initialize();
+ *
+ * const result = await tlsn.attest({
+ *   url: 'https://api.github.com/users/octocat',
+ *   headers: { 'User-Agent': 'DemosSDK' },
+ * });
+ *
+ * console.log('Verified server:', result.verification.serverName);
+ * console.log('Response:', result.verification.recv);
+ * ```
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TLSNotary = void 0;
+const Comlink = __importStar(require("comlink"));
+const tlsn_js_1 = require("tlsn-js");
+const axios_1 = __importDefault(require("axios"));
+/**
+ * TLSNotary class for browser-based HTTPS attestation
+ *
+ * This class handles:
+ * - Running the Prover (MPC-TLS client) in the browser via WASM
+ * - Communicating with the Demos Node's Notary server
+ * - Attesting HTTPS requests with cryptographic proofs
+ * - Verifying attestations offline
+ */
+class TLSNotary {
+    /**
+     * Create a new TLSNotary instance
+     *
+     * @param config - Configuration with notary and proxy URLs
+     */
+    constructor(config) {
+        this.worker = null;
+        // Using any for Comlink wrapper as types are lost across the worker boundary
+        this.wasm = null;
+        this.initialized = false;
+        this.initializingPromise = null;
+        this.config = {
+            loggingLevel: "Info",
+            ...config,
+        };
+    }
+    /**
+     * Initialize the WASM module
+     *
+     * Must be called before any attestation operations.
+     * Only needs to be called once per page load.
+     *
+     * @throws Error if WASM initialization fails
+     */
+    async initialize() {
+        if (this.initialized)
+            return;
+        if (this.initializingPromise)
+            return this.initializingPromise;
+        this.initializingPromise = (async () => {
+            try {
+                // Create Web Worker for WASM operations
+                // Note: This requires a bundler that supports worker URLs (webpack, vite, etc.)
+                // @ts-expect-error - import.meta.url is browser-only and requires ESNext module
+                this.worker = new Worker(new URL("./worker.ts", import.meta.url), {
+                    type: "module",
+                });
+                this.wasm = Comlink.wrap(this.worker);
+                // Initialize WASM with logging level
+                await this.wasm.init({ loggingLevel: this.config.loggingLevel });
+                this.initialized = true;
+            }
+            catch (e) {
+                // Clean up partially created resources
+                if (this.worker) {
+                    this.worker.terminate();
+                    this.worker = null;
+                }
+                this.wasm = null;
+                this.initialized = false;
+                // Reset promise to allow retries on failure
+                this.initializingPromise = null;
+                throw e;
+            }
+        })();
+        return this.initializingPromise;
+    }
+    /**
+     * Request a dynamic WebSocket proxy for a target URL
+     *
+     * This method calls the node's `requestTLSNproxy` endpoint to get a
+     * dynamically allocated proxy for the specific target domain.
+     * Proxies auto-expire after 30 seconds of inactivity.
+     *
+     * @param targetUrl - The HTTPS URL to create a proxy for
+     * @returns Proxy response with websocketProxyUrl
+     * @throws Error if RPC URL is not configured or proxy request fails
+     *
+     * @internal This is called automatically by attest/attestQuick methods
+     */
+    async requestProxy(targetUrl) {
+        if (!this.config.rpcUrl) {
+            // Fallback to static proxy if no RPC URL configured (legacy mode)
+            if (this.config.websocketProxyUrl) {
+                const url = new URL(targetUrl);
+                return {
+                    websocketProxyUrl: this.config.websocketProxyUrl,
+                    targetDomain: url.hostname,
+                    expiresIn: 0, // Static proxy doesn't expire
+                    proxyId: "static",
+                };
+            }
+            throw new Error("No RPC URL configured for dynamic proxy requests. " +
+                "Either provide rpcUrl in config or use Demos.tlsnotary() for auto-configuration.");
+        }
+        try {
+            const response = await axios_1.default.post(this.config.rpcUrl, {
+                method: "nodeCall",
+                params: [
+                    {
+                        message: "requestTLSNproxy",
+                        data: { targetUrl },
+                    },
+                ],
+            });
+            const result = response.data;
+            if (result.result !== 200) {
+                const error = result.response;
+                throw new Error(`Failed to request proxy: ${error.message || error.error || "Unknown error"}`);
+            }
+            return result.response;
+        }
+        catch (error) {
+            if (axios_1.default.isAxiosError(error)) {
+                throw new Error(`Proxy request failed: ${error.message}`);
+            }
+            throw error;
+        }
+    }
+    /**
+     * Get the WebSocket proxy URL for a target URL
+     *
+     * Automatically requests a dynamic proxy from the node if rpcUrl is configured,
+     * otherwise falls back to the static websocketProxyUrl.
+     *
+     * @param targetUrl - The target HTTPS URL
+     * @param onStatus - Optional status callback
+     * @returns The websocket proxy URL to use
+     */
+    async getProxyUrl(targetUrl, onStatus) {
+        const status = onStatus || (() => { });
+        // If we have rpcUrl, always request a dynamic proxy
+        if (this.config.rpcUrl) {
+            status("Requesting WebSocket proxy...");
+            const proxyResponse = await this.requestProxy(targetUrl);
+            status(`Proxy allocated for ${proxyResponse.targetDomain}`);
+            return proxyResponse.websocketProxyUrl;
+        }
+        // Fallback to static proxy URL (legacy/explicit config mode)
+        if (this.config.websocketProxyUrl) {
+            return this.config.websocketProxyUrl;
+        }
+        throw new Error("No proxy configuration available. " +
+            "Configure rpcUrl for dynamic proxies or websocketProxyUrl for static proxy.");
+    }
+    /**
+     * Attest an HTTPS request using the step-by-step method
+     *
+     * This provides full control over the attestation process including
+     * custom commit ranges for selective disclosure.
+     *
+     * @param request - Request configuration (URL, method, headers, body)
+     * @param commit - Optional commit ranges for selective disclosure
+     * @param onStatus - Optional status callback for progress updates
+     * @returns Attestation result with proof and verification
+     *
+     * @example
+     * ```typescript
+     * const result = await tlsn.attest({
+     *   url: 'https://api.example.com/user',
+     *   method: 'GET',
+     *   headers: { 'Authorization': 'Bearer token' },
+     * }, {
+     *   // Hide authorization header in the proof
+     *   sent: [{ start: 0, end: 50 }, { start: 100, end: 200 }],
+     *   recv: [{ start: 0, end: 500 }],
+     * });
+     * ```
+     */
+    async attest(request, commit, onStatus) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const status = onStatus || (() => { });
+        // Extract server DNS from URL
+        const url = new URL(request.url);
+        const serverDns = url.hostname;
+        // Step 1: Request dynamic proxy for this target
+        const proxyUrl = await this.getProxyUrl(request.url, status);
+        // Step 2: Connect to Notary
+        status("Connecting to Notary server...");
+        const notary = tlsn_js_1.NotaryServer.from(this.config.notaryUrl);
+        // Step 3: Create Prover
+        status("Creating Prover instance...");
+        const prover = (await new this.wasm.Prover({
+            serverDns,
+            maxSentData: request.maxSentData || 16384,
+            maxRecvData: request.maxRecvData || 16384,
+        }));
+        let presentation = null;
+        try {
+            // Step 4: Setup MPC-TLS session
+            status("Setting up MPC-TLS session...");
+            await prover.setup(await notary.sessionUrl());
+            // Step 5: Send the HTTPS request
+            status(`Sending attested request to ${serverDns}...`);
+            const headers = {
+                Accept: "application/json",
+                ...request.headers,
+            };
+            await prover.sendRequest(proxyUrl, {
+                url: request.url,
+                method: (request.method || "GET"),
+                headers,
+                body: request.body,
+            });
+            // Step 6: Get transcript
+            status("Getting transcript...");
+            const transcript = await prover.transcript();
+            const { sent, recv } = transcript;
+            // Step 7: Create commit ranges (what to reveal)
+            status("Creating attestation commitment...");
+            const commitRanges = commit || {
+                sent: [{ start: 0, end: Math.min(sent.length, 200) }],
+                recv: [{ start: 0, end: Math.min(recv.length, 300) }],
+            };
+            // Step 8: Notarize
+            status("Generating attestation (this may take a moment)...");
+            const notarizationOutputs = await prover.notarize(commitRanges);
+            // Step 9: Create presentation
+            status("Creating presentation...");
+            presentation = (await new this.wasm.Presentation({
+                attestationHex: notarizationOutputs.attestation,
+                secretsHex: notarizationOutputs.secrets,
+                notaryUrl: notarizationOutputs.notaryUrl,
+                websocketProxyUrl: notarizationOutputs.websocketProxyUrl,
+                reveal: { ...commitRanges, server_identity: true },
+            }));
+            const presentationJSON = await presentation.json();
+            // Step 10: Verify the presentation
+            status("Verifying attestation...");
+            const verification = await this.verify(presentationJSON);
+            status("Attestation complete!");
+            return {
+                presentation: presentationJSON,
+                verification,
+            };
+        }
+        finally {
+            // Free WASM memory to prevent leaks
+            if (presentation) {
+                await presentation.free();
+            }
+            if (prover) {
+                await prover.free();
+            }
+        }
+    }
+    /**
+     * Quick attestation using the helper method
+     *
+     * Simpler API with less control over the process.
+     * Good for straightforward use cases.
+     *
+     * @param options - Attestation options including request and commit config
+     * @returns Attestation result with proof and verification
+     *
+     * @example
+     * ```typescript
+     * const result = await tlsn.attestQuick({
+     *   url: 'https://api.coingecko.com/api/v3/simple/price?ids=bitcoin&vs_currencies=usd',
+     * });
+     * ```
+     */
+    async attestQuick(options) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const { onStatus, commit, ...request } = options;
+        const status = onStatus || (() => { });
+        // Request dynamic proxy for this target
+        const proxyUrl = await this.getProxyUrl(request.url, status);
+        status("Running quick attestation...");
+        const presentationJSON = await this.wasm.Prover.notarize({
+            notaryUrl: this.config.notaryUrl,
+            websocketProxyUrl: proxyUrl,
+            maxSentData: request.maxSentData || 16384,
+            maxRecvData: request.maxRecvData || 16384,
+            url: request.url,
+            method: (request.method || "GET"),
+            headers: {
+                Accept: "application/json",
+                ...request.headers,
+            },
+            body: request.body,
+            commit: commit || {
+                sent: [{ start: 0, end: 100 }],
+                recv: [{ start: 0, end: 200 }],
+            },
+            serverIdentity: true,
+        });
+        status("Verifying attestation...");
+        const verification = await this.verify(presentationJSON);
+        status("Quick attestation complete!");
+        return {
+            presentation: presentationJSON,
+            verification,
+        };
+    }
+    /**
+     * Verify a presentation/proof
+     *
+     * Can be used to verify proofs from other sources.
+     * This operation can be done offline.
+     *
+     * @param presentationJSON - The presentation to verify
+     * @returns Verification result with extracted data
+     *
+     * @example
+     * ```typescript
+     * // Load a saved proof
+     * const savedProof = JSON.parse(localStorage.getItem('proof'));
+     * const result = await tlsn.verify(savedProof);
+     *
+     * console.log('Server:', result.serverName);
+     * console.log('Time:', new Date(result.time * 1000));
+     * console.log('Response:', result.recv);
+     * ```
+     */
+    async verify(presentationJSON) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const proof = (await new this.wasm.Presentation(presentationJSON.data));
+        try {
+            const verifierOutput = await proof.verify();
+            const transcript = new tlsn_js_1.Transcript({
+                sent: verifierOutput.transcript?.sent || [],
+                recv: verifierOutput.transcript?.recv || [],
+            });
+            const vk = await proof.verifyingKey();
+            // Try to get notary key if available
+            let notaryKey = "N/A";
+            try {
+                if (this.config.notaryPublicKey) {
+                    notaryKey = this.config.notaryPublicKey;
+                }
+                else {
+                    const notary = tlsn_js_1.NotaryServer.from(this.config.notaryUrl);
+                    notaryKey = await notary.publicKey("hex");
+                }
+            }
+            catch (error) {
+                // Notary might not be running for offline verification
+                console.warn("[TLSNotary] Could not fetch notary public key:", error instanceof Error ? error.message : error);
+            }
+            return {
+                time: verifierOutput.connection_info.time,
+                serverName: verifierOutput.server_name,
+                sent: transcript.sent(),
+                recv: transcript.recv(),
+                notaryKey,
+                verifyingKey: Buffer.from(vk.data).toString("hex"),
+            };
+        }
+        finally {
+            // Free WASM memory to prevent leaks
+            if (proof) {
+                await proof.free();
+            }
+        }
+    }
+    /**
+     * Get the transcript from an attestation for inspection
+     *
+     * Useful for determining commit ranges for selective disclosure.
+     *
+     * @param request - Request to send (without creating attestation)
+     * @returns Transcript with sent and received bytes
+     */
+    async getTranscript(request) {
+        if (!this.initialized || !this.wasm) {
+            throw new Error("TLSNotary not initialized. Call initialize() first.");
+        }
+        const url = new URL(request.url);
+        const serverDns = url.hostname;
+        // Request dynamic proxy for this target
+        const proxyUrl = await this.getProxyUrl(request.url);
+        const notary = tlsn_js_1.NotaryServer.from(this.config.notaryUrl);
+        const prover = (await new this.wasm.Prover({
+            serverDns,
+            maxSentData: request.maxSentData || 16384,
+            maxRecvData: request.maxRecvData || 16384,
+        }));
+        try {
+            await prover.setup(await notary.sessionUrl());
+            await prover.sendRequest(proxyUrl, {
+                url: request.url,
+                method: (request.method || "GET"),
+                headers: {
+                    Accept: "application/json",
+                    ...request.headers,
+                },
+                body: request.body,
+            });
+            const transcript = await prover.transcript();
+            return {
+                sent: transcript.sent,
+                recv: transcript.recv,
+            };
+        }
+        finally {
+            // Free WASM memory to prevent leaks
+            if (prover) {
+                await prover.free();
+            }
+        }
+    }
+    /**
+     * Cleanup resources
+     *
+     * Call when done with TLSNotary to release the Web Worker.
+     */
+    destroy() {
+        if (this.worker) {
+            this.worker.terminate();
+            this.worker = null;
+        }
+        this.wasm = null;
+        this.initialized = false;
+    }
+    /**
+     * Check if WASM is initialized
+     */
+    isInitialized() {
+        return this.initialized;
+    }
+    /**
+     * Get current configuration
+     */
+    getConfig() {
+        return { ...this.config };
+    }
+    /**
+     * Update configuration
+     *
+     * Note: Changes take effect on next attestation.
+     * If changing notary URL, you may want to re-initialize.
+     */
+    updateConfig(config) {
+        this.config = { ...this.config, ...config };
+    }
+}
+exports.TLSNotary = TLSNotary;
+exports.default = TLSNotary;
+//# sourceMappingURL=TLSNotary.js.map

package/build/tlsnotary/TLSNotary.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TLSNotary.js","sourceRoot":"","sources":["../../../src/tlsnotary/TLSNotary.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,iDAAkC;AAClC,qCAOgB;AAehB,kDAAyB;AAEzB;;;;;;;;GAQG;AACH,MAAa,SAAS;IAQlB;;;;OAIG;IACH,YAAY,MAAuB;QAX3B,WAAM,GAAkB,IAAI,CAAA;QACpC,6EAA6E;QACrE,SAAI,GAAQ,IAAI,CAAA;QAChB,gBAAW,GAAG,KAAK,CAAA;QACnB,wBAAmB,GAAyB,IAAI,CAAA;QAQpD,IAAI,CAAC,MAAM,GAAG;YACV,YAAY,EAAE,MAAM;YACpB,GAAG,MAAM;SACZ,CAAA;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,UAAU;QACZ,IAAI,IAAI,CAAC,WAAW;YAAE,OAAM;QAC5B,IAAI,IAAI,CAAC,mBAAmB;YAAE,OAAO,IAAI,CAAC,mBAAmB,CAAA;QAE7D,IAAI,CAAC,mBAAmB,GAAG,CAAC,KAAK,IAAI,EAAE;YACnC,IAAI,CAAC;gBACD,wCAAwC;gBACxC,gFAAgF;gBAChF,gFAAgF;gBAChF,IAAI,CAAC,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC,aAAa,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;oBAC9D,IAAI,EAAE,QAAQ;iBACjB,CAAC,CAAA;gBAEF,IAAI,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;gBAErC,qCAAqC;gBACrC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC,CAAA;gBAChE,IAAI,CAAC,WAAW,GAAG,IAAI,CAAA;YAC3B,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACT,uCAAuC;gBACvC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;oBACd,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAA;oBACvB,IAAI,CAAC,MAAM,GAAG,IAAI,CAAA;gBACtB,CAAC;gBACD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;gBAChB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAA;gBACxB,4CAA4C;gBAC5C,IAAI,CAAC,mBAAmB,GAAG,IAAI,CAAA;gBAC/B,MAAM,CAAC,CAAA;YACX,CAAC;QACL,CAAC,CAAC,EAAE,CAAA;QAEJ,OAAO,IAAI,CAAC,mBAAmB,CAAA;IACnC,CAAC;IAED;;;;;;;;;;;;OAYG;IACK,KAAK,CAAC,YAAY,CAAC,SAAiB;QACxC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;YACtB,kEAAkE;YAClE,IAAI,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE,CAAC;gBAChC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,CAAA;gBAC9B,OAAO;oBACH,iBAAiB,EAAE,IAAI,CAAC,MAAM,CAAC,iBAAiB;oBAChD,YAAY,EAAE,GAAG,CAAC,QAAQ;oBAC1B,SAAS,EAAE,CAAC,EAAE,8BAA8B;oBAC5C,OAAO,EAAE,QAAQ;iBACpB,CAAA;YACL,CAAC;YACD,MAAM,IAAI,KAAK,CACX,oDAAoD;gBAChD,kFAAkF,CACzF,CAAA;QACL,CAAC;QAED,IAAI,CAAC;YACD,MAAM,QAAQ,GAAG,MAAM,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE;gBAClD,MAAM,EAAE,UAAU;gBAClB,MAAM,EAAE;oBACJ;wBACI,OAAO,EAAE,kBAAkB;wBAC3B,IAAI,EAAE,EAAE,SAAS,EAAE;qBACtB;iBACJ;aACJ,CAAC,CAAA;YAEF,MAAM,MAAM,GAAG,QAAQ,CAAC,IAAI,CAAA;YAE5B,IAAI,MAAM,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBACxB,MAAM,KAAK,GAAG,MAAM,CAAC,QAA6B,CAAA;gBAClD,MAAM,IAAI,KAAK,CACX,4BAA4B,KAAK,CAAC,OAAO,IAAI,KAAK,CAAC,KAAK,IAAI,eAAe,EAAE,CAChF,CAAA;YACL,CAAC;YAED,OAAO,MAAM,CAAC,QAAgC,CAAA;QAClD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,IAAI,eAAK,CAAC,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC5B,MAAM,IAAI,KAAK,CAAC,yBAAyB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAA;YAC7D,CAAC;YACD,MAAM,KAAK,CAAA;QACf,CAAC;IACL,CAAC;IAED;;;;;;;;;OASG;IACK,KAAK,CAAC,WAAW,CACrB,SAAiB,EACjB,QAAyB;QAEzB,MAAM,MAAM,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAErC,oDAAoD;QACpD,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;YACrB,MAAM,CAAC,+BAA+B,CAAC,CAAA;YACvC,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,CAAC,CAAA;YACxD,MAAM,CAAC,uBAAuB,aAAa,CAAC,YAAY,EAAE,CAAC,CAAA;YAC3D,OAAO,aAAa,CAAC,iBAAiB,CAAA;QAC1C,CAAC;QAED,6DAA6D;QAC7D,IAAI,IAAI,CAAC,MAAM,CAAC,iBAAiB,EAAE,CAAC;YAChC,OAAO,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAA;QACxC,CAAC;QAED,MAAM,IAAI,KAAK,CACX,oCAAoC;YAChC,6EAA6E,CACpF,CAAA;IACL,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;OAuBG;IACH,KAAK,CAAC,MAAM,CACR,OAAsB,EACtB,MAAqB,EACrB,QAAyB;QAEzB,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,MAAM,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAErC,8BAA8B;QAC9B,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;QAChC,MAAM,SAAS,GAAG,GAAG,CAAC,QAAQ,CAAA;QAE9B,gDAAgD;QAChD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;QAE5D,4BAA4B;QAC5B,MAAM,CAAC,gCAAgC,CAAC,CAAA;QACxC,MAAM,MAAM,GAAG,sBAAY,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QAEvD,wBAAwB;QACxB,MAAM,CAAC,6BAA6B,CAAC,CAAA;QACrC,MAAM,MAAM,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;YACvC,SAAS;YACT,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;SAC5C,CAAC,CAAY,CAAA;QAEd,IAAI,YAAY,GAAyB,IAAI,CAAA;QAE7C,IAAI,CAAC;YACD,gCAAgC;YAChC,MAAM,CAAC,+BAA+B,CAAC,CAAA;YACvC,MAAM,MAAM,CAAC,KAAK,CAAC,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC,CAAA;YAE7C,iCAAiC;YACjC,MAAM,CAAC,+BAA+B,SAAS,KAAK,CAAC,CAAA;YACrD,MAAM,OAAO,GAA2B;gBACpC,MAAM,EAAE,kBAAkB;gBAC1B,GAAG,OAAO,CAAC,OAAO;aACrB,CAAA;YAED,MAAM,MAAM,CAAC,WAAW,CAAC,QAAQ,EAAE;gBAC/B,GAAG,EAAE,OAAO,CAAC,GAAG;gBAChB,MAAM,EAAE,CAAC,OAAO,CAAC,MAAM,IAAI,KAAK,CAAW;gBAC3C,OAAO;gBACP,IAAI,EAAE,OAAO,CAAC,IAAI;aACrB,CAAC,CAAA;YAEF,yBAAyB;YACzB,MAAM,CAAC,uBAAuB,CAAC,CAAA;YAC/B,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAA;YAC5C,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,UAAU,CAAA;YAEjC,gDAAgD;YAChD,MAAM,CAAC,oCAAoC,CAAC,CAAA;YAC5C,MAAM,YAAY,GAAW,MAAM,IAAI;gBACnC,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,CAAC;gBACrD,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,CAAC;aACxD,CAAA;YAED,mBAAmB;YACnB,MAAM,CAAC,oDAAoD,CAAC,CAAA;YAC5D,MAAM,mBAAmB,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;YAE/D,8BAA8B;YAC9B,MAAM,CAAC,0BAA0B,CAAC,CAAA;YAClC,YAAY,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC;gBAC7C,cAAc,EAAE,mBAAmB,CAAC,WAAW;gBAC/C,UAAU,EAAE,mBAAmB,CAAC,OAAO;gBACvC,SAAS,EAAE,mBAAmB,CAAC,SAAS;gBACxC,iBAAiB,EAAE,mBAAmB,CAAC,iBAAiB;gBACxD,MAAM,EAAE,EAAE,GAAG,YAAY,EAAE,eAAe,EAAE,IAAI,EAAE;aACrD,CAAC,CAAkB,CAAA;YAEpB,MAAM,gBAAgB,GAAG,MAAM,YAAY,CAAC,IAAI,EAAE,CAAA;YAElD,mCAAmC;YACnC,MAAM,CAAC,0BAA0B,CAAC,CAAA;YAClC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAA;YAExD,MAAM,CAAC,uBAAuB,CAAC,CAAA;YAE/B,OAAO;gBACH,YAAY,EAAE,gBAAgB;gBAC9B,YAAY;aACf,CAAA;QACL,CAAC;gBAAS,CAAC;YACP,oCAAoC;YACpC,IAAI,YAAY,EAAE,CAAC;gBACf,MAAM,YAAY,CAAC,IAAI,EAAE,CAAA;YAC7B,CAAC;YACD,IAAI,MAAM,EAAE,CAAC;gBACT,MAAM,MAAM,CAAC,IAAI,EAAE,CAAA;YACvB,CAAC;QACL,CAAC;IACL,CAAC;IAED;;;;;;;;;;;;;;;OAeG;IACH,KAAK,CAAC,WAAW,CAAC,OAAsB;QACpC,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,GAAG,OAAO,EAAE,GAAG,OAAO,CAAA;QAChD,MAAM,MAAM,GAAG,QAAQ,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAErC,wCAAwC;QACxC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,CAAC,CAAA;QAE5D,MAAM,CAAC,8BAA8B,CAAC,CAAA;QAEtC,MAAM,gBAAgB,GAAG,MACrB,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,QACpB,CAAC;YACE,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS;YAChC,iBAAiB,EAAE,QAAQ;YAC3B,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,GAAG,EAAE,OAAO,CAAC,GAAG;YAChB,MAAM,EAAE,CAAC,OAAO,CAAC,MAAM,IAAI,KAAK,CAAW;YAC3C,OAAO,EAAE;gBACL,MAAM,EAAE,kBAAkB;gBAC1B,GAAG,OAAO,CAAC,OAAO;aACrB;YACD,IAAI,EAAE,OAAO,CAAC,IAAI;YAClB,MAAM,EAAE,MAAM,IAAI;gBACd,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;gBAC9B,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;aACjC;YACD,cAAc,EAAE,IAAI;SACvB,CAAC,CAAA;QAEF,MAAM,CAAC,0BAA0B,CAAC,CAAA;QAClC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAA;QAExD,MAAM,CAAC,6BAA6B,CAAC,CAAA;QAErC,OAAO;YACH,YAAY,EAAE,gBAAgB;YAC9B,YAAY;SACf,CAAA;IACL,CAAC;IAED;;;;;;;;;;;;;;;;;;;OAmBG;IACH,KAAK,CAAC,MAAM,CAAC,gBAAkC;QAC3C,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,KAAK,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,YAAY,CAC3C,gBAAgB,CAAC,IAAI,CACxB,CAAkB,CAAA;QAEnB,IAAI,CAAC;YACD,MAAM,cAAc,GAAG,MAAM,KAAK,CAAC,MAAM,EAAE,CAAA;YAE3C,MAAM,UAAU,GAAG,IAAI,oBAAU,CAAC;gBAC9B,IAAI,EAAE,cAAc,CAAC,UAAU,EAAE,IAAI,IAAI,EAAE;gBAC3C,IAAI,EAAE,cAAc,CAAC,UAAU,EAAE,IAAI,IAAI,EAAE;aAC9C,CAAC,CAAA;YAEF,MAAM,EAAE,GAAG,MAAM,KAAK,CAAC,YAAY,EAAE,CAAA;YAErC,qCAAqC;YACrC,IAAI,SAAS,GAAG,KAAK,CAAA;YACrB,IAAI,CAAC;gBACD,IAAI,IAAI,CAAC,MAAM,CAAC,eAAe,EAAE,CAAC;oBAC9B,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,eAAe,CAAA;gBAC3C,CAAC;qBAAM,CAAC;oBACJ,MAAM,MAAM,GAAG,sBAAY,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;oBACvD,SAAS,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,KAAK,CAAC,CAAA;gBAC7C,CAAC;YACL,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACb,uDAAuD;gBACvD,OAAO,CAAC,IAAI,CACR,gDAAgD,EAChD,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,CACjD,CAAA;YACL,CAAC;YAED,OAAO;gBACH,IAAI,EAAE,cAAc,CAAC,eAAe,CAAC,IAAI;gBACzC,UAAU,EAAE,cAAc,CAAC,WAAW;gBACtC,IAAI,EAAE,UAAU,CAAC,IAAI,EAAE;gBACvB,IAAI,EAAE,UAAU,CAAC,IAAI,EAAE;gBACvB,SAAS;gBACT,YAAY,EAAE,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;aACrD,CAAA;QACL,CAAC;gBAAS,CAAC;YACP,oCAAoC;YACpC,IAAI,KAAK,EAAE,CAAC;gBACR,MAAM,KAAK,CAAC,IAAI,EAAE,CAAA;YACtB,CAAC;QACL,CAAC;IACL,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,aAAa,CAAC,OAAsB;QACtC,IAAI,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAA;QAC1E,CAAC;QAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;QAChC,MAAM,SAAS,GAAG,GAAG,CAAC,QAAQ,CAAA;QAE9B,wCAAwC;QACxC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;QAEpD,MAAM,MAAM,GAAG,sBAAY,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QAEvD,MAAM,MAAM,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC;YACvC,SAAS;YACT,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;YACzC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,KAAK;SAC5C,CAAC,CAAY,CAAA;QAEd,IAAI,CAAC;YACD,MAAM,MAAM,CAAC,KAAK,CAAC,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC,CAAA;YAE7C,MAAM,MAAM,CAAC,WAAW,CAAC,QAAQ,EAAE;gBAC/B,GAAG,EAAE,OAAO,CAAC,GAAG;gBAChB,MAAM,EAAE,CAAC,OAAO,CAAC,MAAM,IAAI,KAAK,CAAW;gBAC3C,OAAO,EAAE;oBACL,MAAM,EAAE,kBAAkB;oBAC1B,GAAG,OAAO,CAAC,OAAO;iBACrB;gBACD,IAAI,EAAE,OAAO,CAAC,IAAI;aACrB,CAAC,CAAA;YAEF,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAA;YAE5C,OAAO;gBACH,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,IAAI,EAAE,UAAU,CAAC,IAAI;aACxB,CAAA;QACL,CAAC;gBAAS,CAAC;YACP,oCAAoC;YACpC,IAAI,MAAM,EAAE,CAAC;gBACT,MAAM,MAAM,CAAC,IAAI,EAAE,CAAA;YACvB,CAAC;QACL,CAAC;IACL,CAAC;IAED;;;;OAIG;IACH,OAAO;QACH,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YACd,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAA;YACvB,IAAI,CAAC,MAAM,GAAG,IAAI,CAAA;QACtB,CAAC;QACD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAA;QAChB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAA;IAC5B,CAAC;IAED;;OAEG;IACH,aAAa;QACT,OAAO,IAAI,CAAC,WAAW,CAAA;IAC3B,CAAC;IAED;;OAEG;IACH,SAAS;QACL,OAAO,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,CAAA;IAC7B,CAAC;IAED;;;;;OAKG;IACH,YAAY,CAAC,MAAgC;QACzC,IAAI,CAAC,MAAM,GAAG,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,MAAM,EAAE,CAAA;IAC/C,CAAC;CACJ;AA1fD,8BA0fC;AAED,kBAAe,SAAS,CAAA"}

package/build/tlsnotary/index.d.ts

@@ -0,0 +1,35 @@
+/**
+ * TLSNotary SDK Module
+ *
+ * Browser-based HTTPS attestation using MPC-TLS.
+ *
+ * @packageDocumentation
+ * @module tlsnotary
+ *
+ * @example
+ * ```typescript
+ * import { TLSNotary } from '@kynesyslabs/demosdk/tlsnotary';
+ *
+ * // Option 1: Via Demos instance (recommended - auto-configures dynamic proxies)
+ * const demos = new Demos();
+ * await demos.connect('https://node.demos.sh');
+ * const tlsn = await demos.tlsnotary();
+ *
+ * // Option 2: Manual configuration with dynamic proxies
+ * const tlsn = new TLSNotary({
+ *   notaryUrl: 'wss://node.demos.sh:7047',
+ *   rpcUrl: 'https://node.demos.sh', // For dynamic proxy allocation
+ * });
+ *
+ * await tlsn.initialize();
+ *
+ * const result = await tlsn.attest({
+ *   url: 'https://api.github.com/users/octocat',
+ * });
+ *
+ * console.log('Verified:', result.verification.serverName);
+ * ```
+ */
+export { TLSNotary } from "./TLSNotary";
+export type { TLSNotaryConfig, TLSNotaryDiscoveryInfo, AttestRequest, AttestResult, AttestOptions, CommitRanges, Range, PresentationJSON, VerificationResult, TranscriptInfo, StatusCallback, ProxyRequestResponse, ProxyRequestError, } from "./types";
+export { default } from "./TLSNotary";

package/build/tlsnotary/index.js

@@ -0,0 +1,44 @@
+"use strict";
+/**
+ * TLSNotary SDK Module
+ *
+ * Browser-based HTTPS attestation using MPC-TLS.
+ *
+ * @packageDocumentation
+ * @module tlsnotary
+ *
+ * @example
+ * ```typescript
+ * import { TLSNotary } from '@kynesyslabs/demosdk/tlsnotary';
+ *
+ * // Option 1: Via Demos instance (recommended - auto-configures dynamic proxies)
+ * const demos = new Demos();
+ * await demos.connect('https://node.demos.sh');
+ * const tlsn = await demos.tlsnotary();
+ *
+ * // Option 2: Manual configuration with dynamic proxies
+ * const tlsn = new TLSNotary({
+ *   notaryUrl: 'wss://node.demos.sh:7047',
+ *   rpcUrl: 'https://node.demos.sh', // For dynamic proxy allocation
+ * });
+ *
+ * await tlsn.initialize();
+ *
+ * const result = await tlsn.attest({
+ *   url: 'https://api.github.com/users/octocat',
+ * });
+ *
+ * console.log('Verified:', result.verification.serverName);
+ * ```
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.default = exports.TLSNotary = void 0;
+var TLSNotary_1 = require("./TLSNotary");
+Object.defineProperty(exports, "TLSNotary", { enumerable: true, get: function () { return TLSNotary_1.TLSNotary; } });
+// Re-export default
+var TLSNotary_2 = require("./TLSNotary");
+Object.defineProperty(exports, "default", { enumerable: true, get: function () { return __importDefault(TLSNotary_2).default; } });
+//# sourceMappingURL=index.js.map

package/build/tlsnotary/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/tlsnotary/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;;;;;;AAEH,yCAAuC;AAA9B,sGAAA,SAAS,OAAA;AAiBlB,oBAAoB;AACpB,yCAAqC;AAA5B,qHAAA,OAAO,OAAA"}