@lawrenceliang-btc/atel-sdk 1.2.14 → 1.2.15

package/README.md

@@ -10,7 +10,7 @@ ATEL provides the cryptographic primitives and protocol building blocks that ena
 - **📋 Policy Enforcement** — Scoped consent tokens, call tracking, deterministic hashing
 - **🔍 Execution Tracing** — Tamper-evident, hash-chained audit logs with auto-checkpoints
 - **✅ Proof Generation** — Merkle-tree proof bundles with multi-check verification
-- **⚓ On-Chain Anchoring** — Multi-chain proof anchoring (Solana/Base/BSC)
+- **⚓ On-Chain Anchoring** — Multi-chain proof anchoring (Base/BSC)
 - **📊 Trust Scoring** — Local trust computation based on execution history
 - **🔔 Notification & Callback Runtime** — Local notify, callback, inbox, and recovery flow
 - **👥 P2P Access Control** — Relationship-based friend system with temporary sessions
@@ -60,7 +60,7 @@ the `paymentTxHash` on Base, the `auditUrl` pointing at the CompletionProof (Int
 ### Trust & Verification
 - Tamper-evident execution traces
 - Merkle-tree proof generation
-- On-chain anchoring (Solana/Base/BSC)
+- On-chain anchoring (Base/BSC)
 - Local trust score computation
 - Callback-driven execution and recovery
 
@@ -359,21 +359,21 @@ const report = ProofVerifier.verify(bundle, { trace });
 ### On-Chain Anchoring
 
 ```typescript
-import { SolanaAnchorProvider } from '@lawrenceliang-btc/atel-sdk';
+import { BaseAnchorProvider } from '@lawrenceliang-btc/atel-sdk';
 
-const solana = new SolanaAnchorProvider({ 
-  rpcUrl: 'https://api.mainnet-beta.solana.com',
-  privateKey: process.env.ATEL_SOLANA_PRIVATE_KEY 
+const base = new BaseAnchorProvider({ 
+  rpcUrl: process.env.ATEL_BASE_RPC_URL || 'https://mainnet.base.org',
+  privateKey: process.env.ATEL_BASE_PRIVATE_KEY 
 });
 
-const result = await solana.anchor(traceRoot, {
+const result = await base.anchor(traceRoot, {
   executorDid: 'did:atel:ed25519:...',
   requesterDid: 'did:atel:ed25519:...',
   taskId: 'task-123'
 });
 // result.txHash, result.blockNumber
 
-const verified = await solana.verify(traceRoot, txHash);
+const verified = await base.verify(traceRoot, txHash);
 // verified.valid, verified.detail
 ```
 
@@ -433,8 +433,6 @@ Friend system data is stored in `.atel/`:
 ## Environment Variables
 
 **On-Chain Anchoring:**
-- `ATEL_SOLANA_PRIVATE_KEY` - Solana wallet private key (base58)
-- `ATEL_SOLANA_RPC_URL` - Solana RPC endpoint
 - `ATEL_BASE_PRIVATE_KEY` - Base chain private key (hex)
 - `ATEL_BASE_RPC_URL` - Base RPC endpoint
 - `ATEL_BSC_PRIVATE_KEY` - BSC private key (hex)

package/bin/atel.mjs

@@ -59,7 +59,7 @@ import crypto from 'node:crypto';
 import {
   AgentIdentity, AgentEndpoint, AgentClient, HandshakeManager,
   createMessage, verifyMessage, parseDID, RegistryClient, ExecutionTrace, ProofGenerator,
-  SolanaAnchorProvider, BaseAnchorProvider, BSCAnchorProvider,
+  BaseAnchorProvider, BSCAnchorProvider,
   autoNetworkSetup, collectCandidates, connectToAgent,
   discoverPublicIP, checkReachable, verifyPortReachable, ContentAuditor, TrustScoreClient,
   RollbackManager, rotateKey, verifyKeyRotation, ToolGateway, PolicyEngine, mintConsentToken, sign,
@@ -107,7 +107,6 @@ function getEnvironmentProfile(url = '') {
     const host = String(parsed.hostname || '').toLowerCase();
     if (host === 'api.atelai.org') return { name: 'production', label: 'production', url: normalized };
     if (host === '127.0.0.1' || host === 'localhost') return { name: 'test', label: 'local-test', url: normalized };
-    if (host === '43.160.230.129' || host === '43.160.211.180') return { name: 'test', label: 'host-test', url: normalized };
     return { name: 'custom', label: host || 'custom', url: normalized };
   } catch {
     return { name: 'custom', label: normalized, url: normalized };
@@ -2162,7 +2161,6 @@ function getChainPrivateKey(chain) {
     return config.chains[chain].privateKey;
   }
   // 2. Fall back to environment variables (backward compatibility)
-  if (chain === 'solana') return process.env.ATEL_SOLANA_PRIVATE_KEY;
   if (chain === 'base') return process.env.ATEL_BASE_PRIVATE_KEY;
   if (chain === 'bsc') return process.env.ATEL_BSC_PRIVATE_KEY;
   return null;
@@ -2173,19 +2171,6 @@ async function getWalletAddresses() {
   const wallets = {};
   const config = loadAnchorConfig();
   
-  // Solana: base58 private key → public key
-  const solKey = getChainPrivateKey('solana');
-  if (solKey) {
-    try {
-      const { Keypair } = await import('@solana/web3.js');
-      const bs58 = (await import('bs58')).default;
-      const kp = Keypair.fromSecretKey(bs58.decode(solKey));
-      wallets.solana = kp.publicKey.toBase58();
-    } catch {}
-  } else if (config?.chains?.solana?.address) {
-    wallets.solana = config.chains.solana.address;
-  }
-  
   // Base: hex private key → address
   const baseKey = getChainPrivateKey('base');
   if (baseKey) {
@@ -2961,16 +2946,23 @@ function riskAllowed(maxRisk, requestedRisk) { return (RISK_ORDER[requestedRisk]
 // Verify anchor_tx list on-chain, return count of valid proofs
 async function verifyAnchorTxList(anchorTxList, targetDid) {
   if (!anchorTxList || anchorTxList.length === 0) return { verified: 0, total: 0, proofs: [] };
-  const rpcUrl = process.env.ATEL_SOLANA_RPC_URL || 'https://api.mainnet-beta.solana.com';
-  const provider = new SolanaAnchorProvider({ rpcUrl });
   let verified = 0;
   const proofs = [];
   for (const tx of anchorTxList) {
     try {
+      const chain = String(tx?.chain || detectPreferredChain() || 'base').toLowerCase();
+      let provider;
+      if (chain === 'base') {
+        provider = new BaseAnchorProvider({ rpcUrl: process.env.ATEL_BASE_RPC_URL || 'https://mainnet.base.org' });
+      } else if (chain === 'bsc') {
+        provider = new BSCAnchorProvider({ rpcUrl: process.env.ATEL_BSC_RPC_URL || 'https://bsc-dataseed.binance.org' });
+      } else {
+        continue;
+      }
       const result = await provider.verify(tx.trace_root || '', tx.txHash || tx.anchor_tx || '');
       if (result.valid) {
         verified++;
-        proofs.push({ proof_id: tx.proof_id || tx.txHash, trace_root: tx.trace_root, verified: true, anchor_tx: tx.txHash || tx.anchor_tx, timestamp: new Date().toISOString() });
+        proofs.push({ proof_id: tx.proof_id || tx.txHash, trace_root: tx.trace_root, verified: true, anchor_tx: tx.txHash || tx.anchor_tx, chain, timestamp: new Date().toISOString() });
       }
     } catch {}
   }
@@ -3041,12 +3033,7 @@ async function anchorOnChain(traceRoot, metadata, preferredChain) {
     if (!key) return null;
     
     let provider;
-    if (chain === 'solana') {
-      provider = new SolanaAnchorProvider({ 
-        rpcUrl: process.env.ATEL_SOLANA_RPC_URL || 'https://api.mainnet-beta.solana.com', 
-        privateKey: key 
-      });
-    } else if (chain === 'base') {
+    if (chain === 'base') {
       provider = new BaseAnchorProvider({
         rpcUrl: process.env.ATEL_BASE_RPC_URL || 'https://mainnet.base.org',
         privateKey: key,
@@ -3161,16 +3148,9 @@ async function configureAnchor() {
   // 3. Validate private key and derive address
   let address;
   try {
-    if (chain === 'solana') {
-      const { Keypair } = await import('@solana/web3.js');
-      const bs58 = (await import('bs58')).default;
-      const kp = Keypair.fromSecretKey(bs58.decode(privateKey));
-      address = kp.publicKey.toBase58();
-    } else {
-      const { ethers } = await import('ethers');
-      const wallet = new ethers.Wallet(privateKey);
-      address = wallet.address;
-    }
+    const { ethers } = await import('ethers');
+    const wallet = new ethers.Wallet(privateKey);
+    address = wallet.address;
   } catch (e) {
     console.error(`❌ Invalid ${chain.toUpperCase()} private key: ${e.message}`);
     process.exit(1);
@@ -3734,14 +3714,6 @@ async function cmdStart(port) {
       if (!txHash || !traceRoot) return { checked: false, verified: false, reason: 'missing_anchor_or_root' };
       const c = (chain || 'base').toLowerCase();
       
-      if (c === 'solana') {
-        const rpcUrl = process.env.ATEL_SOLANA_RPC_URL || 'https://api.mainnet-beta.solana.com';
-        if (process.env.ATEL_DEBUG) console.error('[DEBUG] Solana RPC URL:', rpcUrl);
-        const provider = new SolanaAnchorProvider({ rpcUrl });
-        const r = await provider.verify(traceRoot, txHash);
-        if (process.env.ATEL_DEBUG) console.error('[DEBUG] Solana verify result:', r);
-        return { checked: true, verified: !!r?.valid, chain: 'solana', detail: r?.detail };
-      }
       if (c === 'base') {
         const rpcUrl = process.env.ATEL_BASE_RPC_URL || 'https://mainnet.base.org';
         if (process.env.ATEL_DEBUG) console.error('[DEBUG] Base RPC URL:', rpcUrl);
@@ -4303,6 +4275,15 @@ async function cmdStart(port) {
         'urllib.request.urlopen(req, timeout=10).read()',
         'PY',
       ].join('\n'),
+      executor_milestone: [
+        "python3 - <<'PY'",
+        'import json, urllib.request',
+        `result = """Write the final deliverable here"""`,
+        `body = {"dedupeKey": "${dedupeKey}", "status": "done", "eventType": "${eventType}", "orderId": "${payload?.orderId || ''}", "milestoneIndex": ${Number.isFinite(Number(payload?.currentMilestone)) ? Number(payload.currentMilestone) : Number.isFinite(Number(payload?.milestoneIndex)) ? Number(payload.milestoneIndex) : 0}, "result": result, "summary": result[:120]}`,
+        `req = urllib.request.Request("${callbackUrl}", data=json.dumps(body).encode(), headers={"Content-Type": "application/json"})`,
+        'urllib.request.urlopen(req, timeout=10).read()',
+        'PY',
+      ].join('\n'),
       default: [
         "python3 - <<'PY'",
         'import json, urllib.request',
@@ -4323,7 +4304,11 @@ async function cmdStart(port) {
       'PY',
     ].join('\n');
 
-    const callbackDone = eventType === 'milestone_submitted' ? callbackExamples.milestone_submitted : callbackExamples.default;
+    const callbackDone = eventType === 'milestone_submitted'
+      ? callbackExamples.milestone_submitted
+      : (['milestone_plan_confirmed', 'milestone_verified', 'milestone_rejected'].includes(eventType)
+        ? callbackExamples.executor_milestone
+        : callbackExamples.default);
     const contextFile = join(cwd, 'ORDER_CONTEXT.md');
     const allowRepoAccess = shouldAllowRepoAccess(payload);
     const fileAccessRule = allowRepoAccess
@@ -4371,7 +4356,7 @@ ${callbackFailed}
 `;
   }
 
-  function buildLocalAgentPrompt(eventType, promptText) {
+  function buildLocalAgentPrompt(eventType, promptText, payload = {}) {
     if (eventType === 'milestone_submitted') {
       return `${promptText}
 
@@ -4387,6 +4372,10 @@ For rejection:
     }
 
     if (['milestone_plan_confirmed', 'milestone_verified', 'milestone_rejected'].includes(eventType)) {
+      const expectedIndex = eventType === 'milestone_plan_confirmed'
+        ? (Number.isFinite(Number(payload?.milestoneIndex)) ? Number(payload.milestoneIndex) : 0)
+        : (Number.isFinite(Number(payload?.currentMilestone)) ? Number(payload.currentMilestone) : Number.isFinite(Number(payload?.milestoneIndex)) ? Number(payload.milestoneIndex) : 0);
+      const expectedOrderId = String(payload?.orderId || '').trim();
       return `${promptText}
 
 Important: you are not chatting with the user.
@@ -4400,9 +4389,11 @@ You must prefer factual evidence:
 - what concrete output / state / observation you actually got
 - whether that evidence satisfies the current milestone
 If you could not find evidence, say that explicitly in the JSON result, including what you checked.
+The JSON must include the exact current order and milestone identity.
+If you are not certain, fail closed instead of guessing.
 
 Format:
-{"result":"factual deliverable with concrete evidence and observations only"}`;
+{"orderId":"${expectedOrderId}","milestoneIndex":${expectedIndex},"result":"factual deliverable with concrete evidence and observations only"}`;
     }
 
     return promptText;
@@ -4531,7 +4522,7 @@ Format:
         if (isKnownInvalidLocalAgentStdout(cleaned)) {
           return { ok: false, error: 'invalid_local_agent_stdout_known_failure' };
         }
-        return buildAgentCallbackAction(eventType, payload, { result: cleaned, summary: cleaned });
+        return { ok: false, error: 'invalid_local_agent_stdout_requires_json' };
       }
     }
 
@@ -5301,15 +5292,15 @@ Advance the current milestone strictly based on these approved results. Do not i
         return;
       }
       log({ event: 'agent_session_spawn_error', eventType: hookEvent, dedupeKey: hookKey, error: gatewayResult.error, fallback: 'cli' });
-      spawnArgs[spawnArgs.length - 1] = buildLocalAgentPrompt(hookEvent, promptArg);
+      spawnArgs[spawnArgs.length - 1] = buildLocalAgentPrompt(hookEvent, promptArg, hookPayload);
     } else if (spawnArgs.length > 0) {
       const promptArg = spawnArgs[spawnArgs.length - 1] || '';
-      spawnArgs[spawnArgs.length - 1] = buildLocalAgentPrompt(hookEvent, promptArg);
+      spawnArgs[spawnArgs.length - 1] = buildLocalAgentPrompt(hookEvent, promptArg, hookPayload);
     }
 
     const MAX_ATTEMPTS = 5;
     const isMilestoneHook = ['milestone_plan_confirmed', 'milestone_verified', 'milestone_rejected', 'milestone_submitted'].includes(hookEvent);
-    const localHookTimeoutMs = isMilestoneHook ? 90000 : 600000;
+    const localHookTimeoutMs = isMilestoneHook ? 240000 : 600000;
     const preparedInvocation = prepareHookInvocation(spawnCmd, spawnArgs, hookKey, Math.ceil(localHookTimeoutMs / 1000));
     const runHook = (attempt, invocation = preparedInvocation) => {
       const hookStartedAt = Date.now();
@@ -5607,7 +5598,7 @@ Advance the current milestone strictly based on these approved results. Do not i
 
     // ── Anchoring Warning ──
     if (!anchor) {
-      log({ event: 'anchor_missing', taskId, warning: 'Proof not anchored on-chain. Set ATEL_SOLANA_PRIVATE_KEY for verifiable trust.', timestamp: new Date().toISOString() });
+      log({ event: 'anchor_missing', taskId, warning: 'Proof not anchored on-chain. Set a supported anchor key for verifiable trust.', timestamp: new Date().toISOString() });
     }
 
 
@@ -7193,22 +7184,32 @@ async function cmdVerifyProof(anchorTx, traceRoot) {
 
   console.log(JSON.stringify({ event: 'verifying_proof', anchor_tx: anchorTx, trace_root: traceRoot }));
 
-  const rpcUrl = process.env.ATEL_SOLANA_RPC_URL || 'https://api.mainnet-beta.solana.com';
-  try {
-    const provider = new SolanaAnchorProvider({ rpcUrl });
-    const result = await provider.verify(traceRoot, anchorTx);
-    console.log(JSON.stringify({
-      verified: result.valid,
-      chain: 'solana',
-      anchor_tx: anchorTx,
-      trace_root: traceRoot,
-      detail: result.detail || (result.valid ? 'Memo matches trace_root' : 'Memo does not match'),
-      block: result.blockNumber,
-      timestamp: result.timestamp,
-    }, null, 2));
-  } catch (e) {
-    console.log(JSON.stringify({ verified: false, error: e.message }));
+  const providers = [
+    { chain: 'base', provider: new BaseAnchorProvider({ rpcUrl: process.env.ATEL_BASE_RPC_URL || 'https://mainnet.base.org' }) },
+    { chain: 'bsc', provider: new BSCAnchorProvider({ rpcUrl: process.env.ATEL_BSC_RPC_URL || 'https://bsc-dataseed.binance.org' }) },
+  ];
+  const attempts = [];
+  for (const entry of providers) {
+    try {
+      const result = await entry.provider.verify(traceRoot, anchorTx);
+      attempts.push({ chain: entry.chain, result });
+      if (result.valid) {
+        console.log(JSON.stringify({
+          verified: true,
+          chain: entry.chain,
+          anchor_tx: anchorTx,
+          trace_root: traceRoot,
+          detail: result.detail || 'Anchor matches trace_root',
+          block: result.blockNumber,
+          timestamp: result.timestamp,
+        }, null, 2));
+        return;
+      }
+    } catch (e) {
+      attempts.push({ chain: entry.chain, error: e.message });
+    }
   }
+  console.log(JSON.stringify({ verified: false, anchor_tx: anchorTx, trace_root: traceRoot, attempts }, null, 2));
 }
 
 async function cmdAudit(targetDidOrUrl, taskId) {
@@ -7320,13 +7321,16 @@ async function cmdRotate() {
 
   // Anchor rotation on-chain if possible
   let anchor = null;
-  const key = process.env.ATEL_SOLANA_PRIVATE_KEY;
+  const chain = detectPreferredChain() || 'base';
+  const key = getChainPrivateKey(chain);
   if (key) {
     try {
-      const s = new SolanaAnchorProvider({ rpcUrl: process.env.ATEL_SOLANA_RPC_URL || 'https://api.mainnet-beta.solana.com', privateKey: key });
+      const provider = chain === 'bsc'
+        ? new BSCAnchorProvider({ rpcUrl: process.env.ATEL_BSC_RPC_URL || 'https://bsc-dataseed.binance.org', privateKey: key })
+        : new BaseAnchorProvider({ rpcUrl: process.env.ATEL_BASE_RPC_URL || 'https://mainnet.base.org', privateKey: key, anchorRegistryAddress: process.env.ATEL_ANCHOR_REGISTRY_ADDRESS || undefined });
       const { createHash } = await import('node:crypto');
       const rotationHash = createHash('sha256').update(JSON.stringify(proof)).digest('hex');
-      anchor = await s.anchor(`rotation:${rotationHash}`, { oldDid, newDid: newIdentity.did, type: 'key_rotation' });
+      anchor = await provider.anchor(`rotation:${rotationHash}`, { oldDid, newDid: newIdentity.did, type: 'key_rotation' });
     } catch (e) { console.log(JSON.stringify({ warning: 'On-chain anchor failed', error: e.message })); }
   }
 
@@ -7524,6 +7528,10 @@ async function cmdWithdraw(amount, address, chain) {
   }
   // Smart wallet withdrawal (new flow)
   chain = chain || 'base';
+  if (chain !== 'base' && chain !== 'bsc') {
+    console.error('Unsupported withdrawal chain. Supported chains: base, bsc.');
+    process.exit(1);
+  }
 
   // Validate destination address
   const channel = 'crypto_' + chain;
@@ -7532,11 +7540,6 @@ async function cmdWithdraw(amount, address, chain) {
       console.error('Invalid EVM address. Must be 0x followed by 40 hex characters.');
       process.exit(1);
     }
-  } else if (channel === 'crypto_solana') {
-    if (!address.match(/^[1-9A-HJ-NP-Za-km-z]{32,44}$/)) {
-      console.error('Invalid Solana address.');
-      process.exit(1);
-    }
   }
 
   try {
@@ -8232,9 +8235,9 @@ async function cmdComplete(orderId, taskId) {
     console.error('[complete] Anchoring proof on-chain...');
     anchor = await anchorOnChain(proof.trace_root, { proof_id: proof.proof_id, executorDid: id.did, requesterDid, taskId: effectiveTaskId, action: 'cli-complete' });
     if (anchor) {
-      console.error(`[complete] Anchored on Solana: ${anchor.txHash}`);
+      console.error(`[complete] Anchored on-chain: ${anchor.txHash}`);
     } else {
-      console.error('[complete] WARNING: On-chain anchoring failed. Set ATEL_SOLANA_PRIVATE_KEY for verifiable trust.');
+      console.error('[complete] WARNING: On-chain anchoring failed. Set a supported anchor key for verifiable trust.');
     }
   }
 
@@ -10790,8 +10793,6 @@ Environment:
   ATEL_REGISTRY           Registry URL (default: https://api.atelai.org)
   ATEL_PLATFORM           Platform URL (default: ATEL_REGISTRY value)
   ATEL_EXECUTOR_URL       Local executor HTTP endpoint
-  ATEL_SOLANA_PRIVATE_KEY Solana key for on-chain anchoring
-  ATEL_SOLANA_RPC_URL     Solana RPC (default: mainnet-beta)
   ATEL_BASE_PRIVATE_KEY   Base chain key for on-chain anchoring
   ATEL_BSC_PRIVATE_KEY    BSC chain key for on-chain anchoring
 

package/bin/notification-action-helpers.mjs

@@ -57,11 +57,13 @@ export function shouldSkipAgentHook(eventType, directExecutionSucceeded) {
   return eventType === 'order_accepted' && directExecutionSucceeded;
 }
 
+const EXECUTOR_MILESTONE_EVENTS = new Set(['milestone_plan_confirmed', 'milestone_verified', 'milestone_rejected']);
+
 export function shouldUseGatewaySession(eventType) {
-  // Keep gateway sub-sessions only for explicit P2P task execution.
-  // Milestone automation must not depend on gateway callback health; use the
-  // local structured fallback so order progression cannot stall on subagent I/O.
-  return eventType === 'p2p_task';
+  // Use isolated gateway sub-sessions for milestone executor turns so each
+  // order+milestone attempt runs in a clean room instead of sharing the main
+  // agent runtime context.
+  return eventType === 'p2p_task' || EXECUTOR_MILESTONE_EVENTS.has(eventType);
 }
 
 export function normalizeGatewayBind(bind) {
@@ -81,6 +83,44 @@ function normalizeResult(value) {
   return value.trim();
 }
 
+function normalizeOrderId(value) {
+  return typeof value === 'string' ? value.trim() : '';
+}
+
+function extractForeignOrderId(text, expectedOrderId) {
+  const current = normalizeOrderId(expectedOrderId);
+  if (!current) return '';
+  const found = Array.from(String(text || '').matchAll(/ord-[a-f0-9-]+/g)).map((m) => m[0]);
+  return found.find((item) => item !== current) || '';
+}
+
+function validateExecutorMilestoneBody(eventType, payload, body) {
+  if (!EXECUTOR_MILESTONE_EVENTS.has(eventType)) return { ok: true };
+  const expectedOrderId = normalizeOrderId(payload?.orderId);
+  if (!expectedOrderId) return { ok: false, error: 'missing_order_id' };
+  const actualOrderId = normalizeOrderId(body?.orderId);
+  if (!actualOrderId) return { ok: false, error: 'missing_result_order_id' };
+  if (actualOrderId !== expectedOrderId) return { ok: false, error: 'mismatched_result_order_id' };
+
+  const expectedIndex = eventType === 'milestone_plan_confirmed'
+    ? normalizeIndex(payload?.milestoneIndex, 0)
+    : normalizeIndex(payload?.currentMilestone ?? payload?.milestoneIndex, 0);
+  if (!Number.isFinite(Number(body?.milestoneIndex))) return { ok: false, error: 'missing_result_milestone_index' };
+  const actualIndex = normalizeIndex(body?.milestoneIndex, -1);
+  if (actualIndex !== expectedIndex) return { ok: false, error: 'mismatched_result_milestone_index' };
+
+  const result = normalizeResult(body?.result || body?.summary);
+  if (!result) return { ok: false, error: 'missing_result' };
+  const lowered = result.toLowerCase();
+  if (lowered.includes('invalid_cross_order_reference')) return { ok: false, error: 'invalid_cross_order_reference' };
+  if (lowered.includes('context overflow')) return { ok: false, error: 'context_overflow_output' };
+  if (lowered.includes('plugin register() called') || lowered.includes('plugin registration complete')) return { ok: false, error: 'plugin_noise_output' };
+  if (lowered.includes('session file locked') || lowered.includes('session locked')) return { ok: false, error: 'session_locked_output' };
+  const foreign = extractForeignOrderId(result, expectedOrderId);
+  if (foreign) return { ok: false, error: 'foreign_order_reference_detected' };
+  return { ok: true, result, orderId: expectedOrderId, milestoneIndex: expectedIndex };
+}
+
 export function buildAgentCallbackAction(eventType, payload, body) {
   if (eventType === 'p2p_task') {
     const taskId = payload?.taskId;
@@ -102,44 +142,41 @@ export function buildAgentCallbackAction(eventType, payload, body) {
   if (!orderId) return { ok: false, error: 'missing_order_id' };
 
   if (eventType === 'milestone_plan_confirmed') {
-    const result = normalizeResult(body?.result || body?.summary);
-    if (!result) return { ok: false, error: 'missing_result' };
-    const index = normalizeIndex(payload?.milestoneIndex, 0);
+    const validated = validateExecutorMilestoneBody(eventType, payload, body);
+    if (!validated.ok) return validated;
     return {
       ok: true,
       action: {
         type: 'cli',
         action: 'submit_milestone',
-        command: ['atel', 'milestone-submit', orderId, String(index), '--result', result],
+        command: ['atel', 'milestone-submit', orderId, String(validated.milestoneIndex), '--result', validated.result],
       },
     };
   }
 
   if (eventType === 'milestone_verified') {
     if (payload?.allComplete) return { ok: false, skipped: true, reason: 'all_complete' };
-    const result = normalizeResult(body?.result || body?.summary);
-    if (!result) return { ok: false, error: 'missing_result' };
-    const index = normalizeIndex(payload?.currentMilestone, 0);
+    const validated = validateExecutorMilestoneBody(eventType, payload, body);
+    if (!validated.ok) return validated;
     return {
       ok: true,
       action: {
         type: 'cli',
         action: 'submit_milestone',
-        command: ['atel', 'milestone-submit', orderId, String(index), '--result', result],
+        command: ['atel', 'milestone-submit', orderId, String(validated.milestoneIndex), '--result', validated.result],
       },
     };
   }
 
   if (eventType === 'milestone_rejected') {
-    const result = normalizeResult(body?.result || body?.summary);
-    if (!result) return { ok: false, error: 'missing_result' };
-    const index = normalizeIndex(payload?.milestoneIndex, 0);
+    const validated = validateExecutorMilestoneBody(eventType, payload, body);
+    if (!validated.ok) return validated;
     return {
       ok: true,
       action: {
         type: 'cli',
         action: 'resubmit',
-        command: ['atel', 'milestone-submit', orderId, String(index), '--result', result],
+        command: ['atel', 'milestone-submit', orderId, String(validated.milestoneIndex), '--result', validated.result],
       },
     };
   }

package/dist/anchor/index.d.ts

@@ -5,11 +5,11 @@
  * (proof_id, trace_root, etc.) on public blockchains for tamper-evident
  * timestamping and auditability.
  *
- * Supported chains: Base (EVM), BSC (EVM), Solana.
+ * Supported chains: Base (EVM) and BSC (EVM).
  * A MockAnchorProvider is included for testing without real chain access.
  */
 /** Supported chain identifiers */
-export type ChainId = 'base' | 'solana' | 'bsc' | 'mock';
+export type ChainId = 'base' | 'bsc' | 'mock';
 /**
  * A record of a hash anchored on-chain.
  */
@@ -169,5 +169,4 @@ export declare class AnchorManager {
 export { EvmAnchorProvider, type EvmAnchorConfig, type EvmAnchorMemoV2 } from './evm.js';
 export { BaseAnchorProvider } from './base.js';
 export { BSCAnchorProvider } from './bsc.js';
-export { SolanaAnchorProvider, type SolanaAnchorConfig, type AnchorMemoV2 } from './solana.js';
 export { MockAnchorProvider } from './mock.js';

package/dist/anchor/index.js

@@ -5,7 +5,7 @@
  * (proof_id, trace_root, etc.) on public blockchains for tamper-evident
  * timestamping and auditability.
  *
- * Supported chains: Base (EVM), BSC (EVM), Solana.
+ * Supported chains: Base (EVM) and BSC (EVM).
  * A MockAnchorProvider is included for testing without real chain access.
  */
 // ─── AnchorManager ───────────────────────────────────────────────
@@ -161,5 +161,4 @@ export class AnchorManager {
 export { EvmAnchorProvider } from './evm.js';
 export { BaseAnchorProvider } from './base.js';
 export { BSCAnchorProvider } from './bsc.js';
-export { SolanaAnchorProvider } from './solana.js';
 export { MockAnchorProvider } from './mock.js';

package/dist/endpoint/index.d.ts

@@ -55,7 +55,6 @@ export interface EndpointConfig {
     rateLimit?: RateLimitConfig;
     /** Wallet addresses for on-chain trust verification during handshake */
     wallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     };
@@ -124,7 +123,6 @@ export declare class AgentClient {
      * Establishes both identity verification and E2E encryption.
      */
     handshake(remoteEndpoint: string, handshakeManager: HandshakeManager, remoteDid: string, wallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     }): Promise<import('../handshake/index.js').Session>;

package/dist/handshake/index.d.ts

@@ -16,7 +16,6 @@ import { EncryptionManager } from '../crypto/index.js';
 /** Wallet addresses with DID-signed proof of ownership */
 export interface WalletBundle {
     addresses: {
-        solana?: string;
         base?: string;
         bsc?: string;
     };
@@ -32,7 +31,6 @@ export interface HandshakeInitPayload {
     capabilities?: string[];
     /** Wallet addresses for on-chain trust verification */
     wallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     };
@@ -49,7 +47,6 @@ export interface HandshakeAckPayload {
     capabilities?: string[];
     /** Wallet addresses for on-chain trust verification */
     wallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     };
@@ -76,7 +73,6 @@ export interface Session {
     remoteCapabilities?: string[];
     /** Remote agent's wallet addresses (if provided) */
     remoteWallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     };
@@ -103,7 +99,6 @@ export declare class HandshakeError extends Error {
 }
 /** Create a signed wallet bundle proving DID ownership of wallet addresses */
 export declare function createWalletBundle(addresses: {
-    solana?: string;
     base?: string;
     bsc?: string;
 }, secretKey: Uint8Array): WalletBundle;
@@ -131,7 +126,6 @@ export declare class HandshakeManager {
      * Create a handshake_init message (Step 1).
      */
     createInit(remoteDid: string, wallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     }): ATELMessage<HandshakeInitPayload>;
@@ -146,7 +140,6 @@ export declare class HandshakeManager {
      * Process a handshake_init message and create handshake_ack (Step 2).
      */
     processInit(initMessage: ATELMessage<HandshakeInitPayload>, wallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     }): ATELMessage<HandshakeAckPayload>;
@@ -154,7 +147,6 @@ export declare class HandshakeManager {
      * Process a handshake_confirm message (Step 3, responder side).
      */
     processConfirm(confirmMessage: ATELMessage<HandshakeConfirmPayload>, initiatorPublicKey: Uint8Array, initiatorCapabilities?: string[], initiatorWallets?: {
-        solana?: string;
         base?: string;
         bsc?: string;
     }, initiatorWalletBundle?: WalletBundle): Session;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lawrenceliang-btc/atel-sdk",
-  "version": "1.2.14",
+  "version": "1.2.15",
   "description": "ATEL Protocol SDK - Agent Trust & Exchange Layer",
   "repository": {
     "type": "git",
@@ -49,7 +49,6 @@
     "prepublishOnly": "npm run clean && npm run build && npm test"
   },
   "dependencies": {
-    "@solana/web3.js": "^1.98.4",
     "ajv": "^8.17.1",
     "ajv-formats": "^3.0.1",
     "bs58": "^6.0.0",

package/skill/atel-agent/SKILL.md

@@ -523,7 +523,7 @@ atel withdraw 5 crypto_bsc <外部钱包地址>  # 提现到用户的外部钱
 atel transactions                      # 交易记录
 ```
 
-支持的充值渠道：`crypto_solana`、`crypto_base`、`crypto_bsc`、`stripe`、`alipay`、`manual`
+支持的充值渠道：`crypto_base`、`crypto_bsc`、`stripe`、`alipay`、`manual`
 
 ### 提现流程
 

package/skill/references/commercial.md

@@ -33,27 +33,16 @@ Minimum commission: 0.5%. Free orders (price=0) have no commission.
 ## Payment Channels
 
 - `manual` — Transfer and contact admin for confirmation
-- `crypto_solana` — Solana on-chain deposit (auto-verified)
 - `crypto_base` — Base chain deposit (auto-verified)
 - `crypto_bsc` — BSC deposit (auto-verified)
 
-### Solana deposit warning
-
-If guiding the owner to deposit USDC on Solana, explicitly tell them the transfer must use **`transferChecked`**.
-Do not describe plain `transfer` as acceptable for Solana USDC deposits.
-
-Operational rule:
-- when suggesting or explaining Solana USDC deposit steps, explicitly state that `transferChecked` is required
-- if a Solana deposit is pending but not recognized, check whether the user sent USDC with `transfer` instead of `transferChecked`
-- if the owner cannot ensure `transferChecked`, prefer recommending `crypto_base` or `crypto_bsc` instead of giving risky Solana instructions
-
 ### Deposit Info API
 
 Get platform deposit addresses (no auth required):
 
 ```bash
 curl https://api.atelai.org/account/v1/deposit-info
-# Returns: { "chains": [{ "chain": "solana", "address": "...", "minAmount": 5 }, ...] }
+# Returns: { "chains": [{ "chain": "base", "address": "...", "minAmount": 5 }, ...] }
 ```
 
 ## Marketplace
@@ -139,8 +128,8 @@ Agents can withdraw funds from their platform balance:
 # Withdraw to Base wallet (instant on-chain transfer)
 atel withdraw 50 crypto_base 0xYOUR_WALLET_ADDRESS
 
-# Withdraw to Solana wallet (instant on-chain transfer)
-atel withdraw 50 crypto_solana YOUR_SOLANA_ADDRESS
+# Withdraw to Base wallet (instant on-chain transfer)
+atel withdraw 50 crypto_base YOUR_BASE_ADDRESS
 
 # Withdraw to BSC wallet (instant on-chain transfer)
 atel withdraw 50 crypto_bsc YOUR_BSC_ADDRESS

package/skill/references/executor.md

@@ -355,7 +355,7 @@ and pay gas). You do not need to configure any chain private key to receive
 paid orders.
 
 Legacy V1 behaviour (opt-in only, not recommended): if `atel anchor config` was
-run, the SDK will also detect `ATEL_SOLANA_PRIVATE_KEY`, `ATEL_BASE_PRIVATE_KEY`,
+run, the SDK will also detect `ATEL_BASE_PRIVATE_KEY`,
 `ATEL_BSC_PRIVATE_KEY` environment variables and set `preferredChain` in the
 registry metadata as a marketplace hint. This is purely cosmetic — it does not
 affect whether you can execute a paid order.

package/skill/references/onchain.md

@@ -5,9 +5,13 @@ Every completed task generates a cryptographic proof (ExecutionTrace → Merkle
 ## Setup
 
 ```bash
-# Solana (primary, ~$0.001/tx)
-export ATEL_SOLANA_PRIVATE_KEY=<base58-private-key>
-export ATEL_SOLANA_RPC_URL=https://api.mainnet-beta.solana.com
+# Base (primary)
+export ATEL_BASE_PRIVATE_KEY=<hex-private-key>
+export ATEL_BASE_RPC_URL=https://mainnet.base.org
+
+# BSC (secondary)
+export ATEL_BSC_PRIVATE_KEY=<hex-private-key>
+export ATEL_BSC_RPC_URL=https://bsc-dataseed.binance.org
 
 # Base (optional)
 export ATEL_BASE_PRIVATE_KEY=<hex-key-with-0x>

package/skill/references/quickstart.md

@@ -61,7 +61,7 @@ Always ask before deciding any of the following:
 anchors on behalf of agents using its own registered executor wallets and pays
 gas. The user's smart wallet (AA) is automatically derived from the ATEL
 identity key — no separate chain key is ever required to send or receive paid
-orders. Any prompt asking for a "Base / BSC / Solana private key" is a legacy
+orders. Any prompt asking for a "Base / BSC private key" is a legacy
 V1 flow and should be declined.
 
 Rules:
@@ -92,10 +92,6 @@ If the owner's preferred language is known, use the owner's language instead.
 
 Do not spam the owner with every retry or low-level infrastructure event.
 
-## Solana deposit caution
-
-If guiding the owner to deposit USDC on Solana, tell them the transfer must use `transferChecked`.
-Do not describe plain `transfer` as acceptable for Solana USDC deposits.
 
 ## Verify after upgrade
 

package/skill/references/security.md

@@ -80,7 +80,7 @@ Agents below the threshold for a given risk level are rejected. Chain-verified p
 # Local-only (default, uses .atel/trust-history.json)
 atel check <did> medium
 
-# Chain-verified (queries Solana/Base/BSC RPC)
+# Chain-verified (queries Base/BSC RPC)
 atel check <did> medium --chain
 ```
 

package/skill/references/workflows.md

@@ -13,7 +13,7 @@ This includes:
 **Do NOT ask the owner for any on-chain private key.** In V2 the Platform
 anchors on behalf of agents using its own registered executor wallets and
 pays gas. The user's smart wallet (AA) is automatically derived from the
-ATEL identity key — no separate Base/BSC/Solana key is ever required to
+ATEL identity key — no separate Base/BSC key is ever required to
 send or receive paid orders. Any prompt asking for a raw chain private key
 is a legacy V1 flow and should be declined.
 

package/dist/anchor/solana.d.ts

@@ -1,95 +0,0 @@
-/**
- * Solana Anchor Provider.
- *
- * Anchors hashes on Solana using the official Memo Program
- * (`MemoSq4gqABAXKb96qnH8TysNcWxMyWCqXgDLGmfcHr`).
- *
- * The memo content is formatted as `ATEL_ANCHOR:<hash>` so anchored
- * transactions are easily identifiable.
- *
- * @remarks
- * ⚠️ SECURITY: The `privateKey` (Base58-encoded) is used to sign
- * transactions. Never hard-code it — use environment variables or a vault.
- */
-import type { AnchorProvider, AnchorRecord, AnchorVerification } from './index.js';
-/** Configuration for the Solana anchor provider */
-export interface SolanaAnchorConfig {
-    /** Solana JSON-RPC endpoint URL */
-    rpcUrl: string;
-    /**
-     * Base58-encoded private key for signing transactions.
-     * Optional — if omitted the provider can only verify / lookup.
-     *
-     * ⚠️ SECURITY: Keep this value secret.
-     */
-    privateKey?: string;
-}
-/** Structured anchor metadata for v2 memo */
-export interface AnchorMemoV2 {
-    version: 1;
-    executorDid: string;
-    requesterDid: string;
-    taskId: string;
-    traceRoot: string;
-}
-/**
- * Anchor provider for the Solana blockchain.
- */
-export declare class SolanaAnchorProvider implements AnchorProvider {
-    readonly name = "Solana";
-    readonly chain = "solana";
-    /** Solana RPC connection */
-    private readonly connection;
-    /** Keypair for signing (undefined when no private key is supplied) */
-    private readonly keypair?;
-    /** Default Solana mainnet-beta RPC URL */
-    static readonly DEFAULT_RPC_URL = "https://api.mainnet-beta.solana.com";
-    /**
-     * @param config - RPC URL and optional private key.
-     *   If `rpcUrl` is omitted, the Solana mainnet-beta default is used.
-     */
-    constructor(config?: Partial<SolanaAnchorConfig>);
-    /**
-     * Encode a hash into the memo data buffer (v2 structured format).
-     * Falls back to legacy format if no metadata provided.
-     */
-    static encodeMemo(hash: string, meta?: {
-        executorDid?: string;
-        requesterDid?: string;
-        taskId?: string;
-    }): Buffer;
-    /**
-     * Decode a hash from memo data. Supports both v2 structured and legacy format.
-     *
-     * @returns The decoded hash, or `null` if the data doesn't match.
-     */
-    static decodeMemo(data: Buffer | Uint8Array | string): string | null;
-    /**
-     * Decode full structured memo (v2 only).
-     * Returns null for legacy format memos.
-     */
-    static decodeMemoV2(data: Buffer | Uint8Array | string): AnchorMemoV2 | null;
-    /** @inheritdoc */
-    anchor(hash: string, metadata?: Record<string, unknown>): Promise<AnchorRecord>;
-    /** @inheritdoc */
-    verify(hash: string, txHash: string): Promise<AnchorVerification>;
-    /** @inheritdoc */
-    lookup(hash: string): Promise<AnchorRecord[]>;
-    /** @inheritdoc */
-    isAvailable(): Promise<boolean>;
-    /**
-     * Query all ATEL anchor transactions for a given wallet address.
-     * Parses v2 structured memos to extract DID and task info.
-     *
-     * @param walletAddress - Solana wallet public key (base58)
-     * @param options - limit (default 100), filterDid (only return records involving this DID)
-     * @returns Array of parsed anchor memos with tx info
-     */
-    queryByWallet(walletAddress: string, options?: {
-        limit?: number;
-        filterDid?: string;
-    }): Promise<Array<AnchorMemoV2 & {
-        txHash: string;
-        blockTime?: number;
-    }>>;
-}

package/dist/anchor/solana.js

@@ -1,298 +0,0 @@
-/**
- * Solana Anchor Provider.
- *
- * Anchors hashes on Solana using the official Memo Program
- * (`MemoSq4gqABAXKb96qnH8TysNcWxMyWCqXgDLGmfcHr`).
- *
- * The memo content is formatted as `ATEL_ANCHOR:<hash>` so anchored
- * transactions are easily identifiable.
- *
- * @remarks
- * ⚠️ SECURITY: The `privateKey` (Base58-encoded) is used to sign
- * transactions. Never hard-code it — use environment variables or a vault.
- */
-import { Connection, Keypair, PublicKey, Transaction, TransactionInstruction, sendAndConfirmTransaction, } from '@solana/web3.js';
-import bs58 from 'bs58';
-/** Solana Memo Program address */
-const MEMO_PROGRAM_ID = new PublicKey('MemoSq4gqABAXKb96qnH8TysNcWxMyWCqXgDLGmfcHr');
-/** Prefix prepended to the hash in the memo (legacy format) */
-const ANCHOR_PREFIX = 'ATEL_ANCHOR:';
-/** V2 structured memo format: ATEL:1:<executorDID>:<requesterDID>:<taskId>:<trace_root> */
-const ANCHOR_V2_PREFIX = 'ATEL:1:';
-/**
- * Anchor provider for the Solana blockchain.
- */
-export class SolanaAnchorProvider {
-    name = 'Solana';
-    chain = 'solana';
-    /** Solana RPC connection */
-    connection;
-    /** Keypair for signing (undefined when no private key is supplied) */
-    keypair;
-    /** Default Solana mainnet-beta RPC URL */
-    static DEFAULT_RPC_URL = 'https://api.mainnet-beta.solana.com';
-    /**
-     * @param config - RPC URL and optional private key.
-     *   If `rpcUrl` is omitted, the Solana mainnet-beta default is used.
-     */
-    constructor(config) {
-        this.connection = new Connection(config?.rpcUrl ?? SolanaAnchorProvider.DEFAULT_RPC_URL, 'confirmed');
-        if (config?.privateKey) {
-            // ⚠️ SECURITY: The keypair holds the private key in memory.
-            const secretKey = bs58.decode(config.privateKey);
-            this.keypair = Keypair.fromSecretKey(secretKey);
-        }
-    }
-    /**
-     * Encode a hash into the memo data buffer (v2 structured format).
-     * Falls back to legacy format if no metadata provided.
-     */
-    static encodeMemo(hash, meta) {
-        if (meta?.executorDid && meta?.requesterDid && meta?.taskId) {
-            return Buffer.from(`${ANCHOR_V2_PREFIX}${meta.executorDid}:${meta.requesterDid}:${meta.taskId}:${hash}`, 'utf-8');
-        }
-        return Buffer.from(`${ANCHOR_PREFIX}${hash}`, 'utf-8');
-    }
-    /**
-     * Decode a hash from memo data. Supports both v2 structured and legacy format.
-     *
-     * @returns The decoded hash, or `null` if the data doesn't match.
-     */
-    static decodeMemo(data) {
-        const text = typeof data === 'string' ? data : Buffer.from(data).toString('utf-8');
-        // V2 structured format
-        if (text.startsWith(ANCHOR_V2_PREFIX)) {
-            const parts = text.slice(ANCHOR_V2_PREFIX.length).split(':');
-            if (parts.length >= 4)
-                return parts[parts.length - 1]; // last part is trace_root
-        }
-        // Legacy format
-        if (text.startsWith(ANCHOR_PREFIX)) {
-            return text.slice(ANCHOR_PREFIX.length);
-        }
-        return null;
-    }
-    /**
-     * Decode full structured memo (v2 only).
-     * Returns null for legacy format memos.
-     */
-    static decodeMemoV2(data) {
-        const text = typeof data === 'string' ? data : Buffer.from(data).toString('utf-8');
-        if (!text.startsWith(ANCHOR_V2_PREFIX))
-            return null;
-        const rest = text.slice(ANCHOR_V2_PREFIX.length);
-        // Format: executorDID:requesterDID:taskId:traceRoot
-        // DIDs contain colons (did:atel:ed25519:xxx), so we need smart parsing
-        // Split by ':' and reconstruct DIDs
-        const parts = rest.split(':');
-        // Minimum: did:atel:ed25519:key : did:atel:ed25519:key : taskId : traceRoot = 4+4+1+1 = 10 parts
-        if (parts.length < 10)
-            return null;
-        // Each DID is 4 parts: did:atel:ed25519:base58
-        const executorDid = parts.slice(0, 4).join(':');
-        const requesterDid = parts.slice(4, 8).join(':');
-        const taskId = parts[8];
-        const traceRoot = parts.slice(9).join(':');
-        if (!executorDid.startsWith('did:atel:') || !requesterDid.startsWith('did:atel:'))
-            return null;
-        return { version: 1, executorDid, requesterDid, taskId, traceRoot };
-    }
-    /** @inheritdoc */
-    async anchor(hash, metadata) {
-        if (!this.keypair) {
-            throw new Error('Solana: Cannot anchor without a private key');
-        }
-        const memoData = SolanaAnchorProvider.encodeMemo(hash, metadata);
-        const instruction = new TransactionInstruction({
-            keys: [{ pubkey: this.keypair.publicKey, isSigner: true, isWritable: true }],
-            programId: MEMO_PROGRAM_ID,
-            data: memoData,
-        });
-        const transaction = new Transaction().add(instruction);
-        try {
-            const signature = await sendAndConfirmTransaction(this.connection, transaction, [this.keypair], { commitment: 'confirmed' });
-            // Fetch the confirmed transaction to get slot/block info
-            let blockNumber;
-            try {
-                const txInfo = await this.connection.getTransaction(signature, {
-                    commitment: 'confirmed',
-                    maxSupportedTransactionVersion: 0,
-                });
-                blockNumber = txInfo?.slot;
-            }
-            catch {
-                // Non-critical
-            }
-            return {
-                hash,
-                txHash: signature,
-                chain: 'solana',
-                timestamp: Date.now(),
-                blockNumber,
-                metadata,
-            };
-        }
-        catch (err) {
-            const message = err instanceof Error ? err.message : String(err);
-            throw new Error(`Solana anchor failed: ${message}`);
-        }
-    }
-    /** @inheritdoc */
-    async verify(hash, txHash) {
-        try {
-            const txInfo = await this.connection.getTransaction(txHash, {
-                commitment: 'confirmed',
-                maxSupportedTransactionVersion: 0,
-            });
-            if (!txInfo) {
-                return {
-                    valid: false,
-                    hash,
-                    txHash,
-                    chain: this.chain,
-                    detail: 'Transaction not found',
-                };
-            }
-            // Search through instructions for a memo matching our hash
-            const message = txInfo.transaction.message;
-            let foundHash = null;
-            for (let i = 0; i < message.compiledInstructions.length; i++) {
-                const ix = message.compiledInstructions[i];
-                const keys = message.getAccountKeys();
-                const programId = keys.get(ix.programIdIndex);
-                if (programId?.equals(MEMO_PROGRAM_ID)) {
-                    foundHash = SolanaAnchorProvider.decodeMemo(Buffer.from(ix.data));
-                    if (foundHash)
-                        break;
-                }
-            }
-            // Fallback: check log messages for memo content
-            if (!foundHash && txInfo.meta?.logMessages) {
-                for (const log of txInfo.meta.logMessages) {
-                    if (log.includes(ANCHOR_PREFIX)) {
-                        const idx = log.indexOf(ANCHOR_PREFIX);
-                        foundHash = log.slice(idx + ANCHOR_PREFIX.length);
-                        break;
-                    }
-                }
-            }
-            if (foundHash === null) {
-                return {
-                    valid: false,
-                    hash,
-                    txHash,
-                    chain: this.chain,
-                    detail: 'No anchor memo found in transaction',
-                };
-            }
-            const valid = foundHash === hash;
-            const blockTimestamp = txInfo.blockTime ? txInfo.blockTime * 1000 : undefined;
-            return {
-                valid,
-                hash,
-                txHash,
-                chain: this.chain,
-                blockTimestamp,
-                detail: valid
-                    ? 'Hash matches on-chain memo'
-                    : `Hash mismatch: expected "${hash}", found "${foundHash}"`,
-            };
-        }
-        catch (err) {
-            const message = err instanceof Error ? err.message : String(err);
-            return {
-                valid: false,
-                hash,
-                txHash,
-                chain: this.chain,
-                detail: `Verification error: ${message}`,
-            };
-        }
-    }
-    /** @inheritdoc */
-    async lookup(hash) {
-        // On-chain lookup without an indexer is not feasible for Solana.
-        // In production, integrate with a Solana indexer or Helius API.
-        return [];
-    }
-    /** @inheritdoc */
-    async isAvailable() {
-        try {
-            await this.connection.getSlot();
-            return true;
-        }
-        catch {
-            return false;
-        }
-    }
-    /**
-     * Query all ATEL anchor transactions for a given wallet address.
-     * Parses v2 structured memos to extract DID and task info.
-     *
-     * @param walletAddress - Solana wallet public key (base58)
-     * @param options - limit (default 100), filterDid (only return records involving this DID)
-     * @returns Array of parsed anchor memos with tx info
-     */
-    async queryByWallet(walletAddress, options) {
-        const limit = options?.limit ?? 100;
-        const pubkey = new PublicKey(walletAddress);
-        const results = [];
-        try {
-            const signatures = await this.connection.getSignaturesForAddress(pubkey, { limit });
-            for (const sig of signatures) {
-                try {
-                    const txInfo = await this.connection.getTransaction(sig.signature, {
-                        commitment: 'confirmed',
-                        maxSupportedTransactionVersion: 0,
-                    });
-                    if (!txInfo)
-                        continue;
-                    // Search for ATEL memo in instructions
-                    const message = txInfo.transaction.message;
-                    for (let i = 0; i < message.compiledInstructions.length; i++) {
-                        const ix = message.compiledInstructions[i];
-                        const keys = message.getAccountKeys();
-                        const programId = keys.get(ix.programIdIndex);
-                        if (!programId?.equals(MEMO_PROGRAM_ID))
-                            continue;
-                        const memoText = Buffer.from(ix.data).toString('utf-8');
-                        const parsed = SolanaAnchorProvider.decodeMemoV2(memoText);
-                        if (!parsed)
-                            continue;
-                        // Filter by DID if requested
-                        if (options?.filterDid && parsed.executorDid !== options.filterDid && parsed.requesterDid !== options.filterDid)
-                            continue;
-                        results.push({
-                            ...parsed,
-                            txHash: sig.signature,
-                            blockTime: txInfo.blockTime ? txInfo.blockTime * 1000 : undefined,
-                        });
-                    }
-                    // Fallback: check log messages
-                    if (txInfo.meta?.logMessages) {
-                        for (const log of txInfo.meta.logMessages) {
-                            if (!log.includes(ANCHOR_V2_PREFIX))
-                                continue;
-                            const idx = log.indexOf(ANCHOR_V2_PREFIX);
-                            const parsed = SolanaAnchorProvider.decodeMemoV2(log.slice(idx));
-                            if (!parsed)
-                                continue;
-                            if (options?.filterDid && parsed.executorDid !== options.filterDid && parsed.requesterDid !== options.filterDid)
-                                continue;
-                            if (!results.some(r => r.txHash === sig.signature)) {
-                                results.push({ ...parsed, txHash: sig.signature, blockTime: txInfo.blockTime ? txInfo.blockTime * 1000 : undefined });
-                            }
-                        }
-                    }
-                }
-                catch {
-                    // Skip individual tx failures
-                }
-            }
-        }
-        catch {
-            // Query failed — return empty
-        }
-        return results;
-    }
-}