@layr-labs/ecloud-sdk 0.1.1 → 0.1.2

package/dist/chunk-AOZRDBLK.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/client/common/config/environment.ts","../src/client/common/utils/userapi.ts","../src/client/common/utils/auth.ts","../src/client/common/utils/helpers.ts","../src/client/common/constants.ts","../src/client/common/utils/billing.ts","../src/client/common/telemetry/noop.ts","../src/client/common/telemetry/posthog.ts","../src/client/common/telemetry/metricsContext.ts","../src/client/common/telemetry/index.ts","../src/client/common/telemetry/wrapper.ts","../src/client/common/utils/logger.ts","../src/client/common/utils/dirname.ts"],"sourcesContent":["/**\n * Environment configuration for different networks\n */\n\nimport { BillingEnvironmentConfig, EnvironmentConfig } from \"../types\";\n\n// Chain IDs\nexport const SEPOLIA_CHAIN_ID = 11155111;\nexport const MAINNET_CHAIN_ID = 1;\n\n// Common addresses across all chains\nexport const CommonAddresses: Record<string, string> = {\n  ERC7702Delegator: \"0x63c0c19a282a1b52b07dd5a65b58948a07dae32b\",\n};\n\n// Addresses specific to each chain\nexport const ChainAddresses: Record<number, Record<string, string>> = {\n  [MAINNET_CHAIN_ID]: {\n    PermissionController: \"0x25E5F8B1E7aDf44518d35D5B2271f114e081f0E5\",\n  },\n  [SEPOLIA_CHAIN_ID]: {\n    PermissionController: \"0x44632dfBdCb6D3E21EF613B0ca8A6A0c618F5a37\",\n  },\n};\n\n// Billing environment configurations (separate from chain environments)\nconst BILLING_ENVIRONMENTS: Record<\"dev\" | \"prod\", BillingEnvironmentConfig> = {\n  dev: {\n    billingApiServerURL: \"https://billingapi-dev.eigencloud.xyz\",\n  },\n  prod: {\n    billingApiServerURL: \"https://billingapi.eigencloud.xyz\",\n  },\n};\n\n// Chain environment configurations\nconst ENVIRONMENTS: Record<string, Omit<EnvironmentConfig, \"chainID\">> = {\n  \"sepolia-dev\": {\n    name: \"sepolia\",\n    build: \"dev\",\n    appControllerAddress: \"0xa86DC1C47cb2518327fB4f9A1627F51966c83B92\",\n    permissionControllerAddress: ChainAddresses[SEPOLIA_CHAIN_ID].PermissionController,\n    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,\n    kmsServerURL: \"http://10.128.0.57:8080\",\n    userApiServerURL: \"https://userapi-compute-sepolia-dev.eigencloud.xyz\",\n    defaultRPCURL: \"https://ethereum-sepolia-rpc.publicnode.com\",\n  },\n  sepolia: {\n    name: \"sepolia\",\n    build: \"prod\",\n    appControllerAddress: \"0x0dd810a6ffba6a9820a10d97b659f07d8d23d4E2\",\n    permissionControllerAddress: ChainAddresses[SEPOLIA_CHAIN_ID].PermissionController,\n    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,\n    kmsServerURL: \"http://10.128.15.203:8080\",\n    userApiServerURL: \"https://userapi-compute-sepolia-prod.eigencloud.xyz\",\n    defaultRPCURL: \"https://ethereum-sepolia-rpc.publicnode.com\",\n  },\n  \"mainnet-alpha\": {\n    name: \"mainnet-alpha\",\n    build: \"prod\",\n    appControllerAddress: \"0xc38d35Fc995e75342A21CBd6D770305b142Fbe67\",\n    permissionControllerAddress: ChainAddresses[MAINNET_CHAIN_ID].PermissionController,\n    erc7702DelegatorAddress: CommonAddresses.ERC7702Delegator,\n    kmsServerURL: \"http://10.128.0.2:8080\",\n    userApiServerURL: \"https://userapi-compute.eigencloud.xyz\",\n    defaultRPCURL: \"https://ethereum-rpc.publicnode.com\",\n  },\n};\n\nconst CHAIN_ID_TO_ENVIRONMENT: Record<string, string> = {\n  [SEPOLIA_CHAIN_ID.toString()]: \"sepolia\",\n  [MAINNET_CHAIN_ID.toString()]: \"mainnet-alpha\",\n};\n\n/**\n * Get environment configuration\n */\nexport function getEnvironmentConfig(environment: string, chainID?: bigint): EnvironmentConfig {\n  const env = ENVIRONMENTS[environment];\n  if (!env) {\n    throw new Error(`Unknown environment: ${environment}`);\n  }\n\n  // Check if environment is available in current build\n  if (!isEnvironmentAvailable(environment)) {\n    throw new Error(\n      `Environment ${environment} is not available in this build type. ` +\n        `Available environments: ${getAvailableEnvironments().join(\", \")}`,\n    );\n  }\n\n  // If chainID provided, validate it matches\n  if (chainID) {\n    const expectedEnv = CHAIN_ID_TO_ENVIRONMENT[chainID.toString()];\n    if (expectedEnv && expectedEnv !== environment) {\n      throw new Error(`Environment ${environment} does not match chain ID ${chainID}`);\n    }\n  }\n\n  // Determine chain ID from environment if not provided\n  // Both \"sepolia\" and \"sepolia-dev\" use Sepolia chain ID\n  const resolvedChainID =\n    chainID ||\n    (environment === \"sepolia\" || environment === \"sepolia-dev\"\n      ? SEPOLIA_CHAIN_ID\n      : MAINNET_CHAIN_ID);\n\n  return {\n    ...env,\n    chainID: BigInt(resolvedChainID),\n  };\n}\n\n/**\n * Get billing environment configuration\n * @param build - The build type (\"dev\" or \"prod\")\n */\nexport function getBillingEnvironmentConfig(build: \"dev\" | \"prod\"): {\n  billingApiServerURL: string;\n} {\n  const config = BILLING_ENVIRONMENTS[build];\n  if (!config) {\n    throw new Error(`Unknown billing environment: ${build}`);\n  }\n  return config;\n}\n\n/**\n * Detect environment from chain ID\n */\nexport function detectEnvironmentFromChainID(chainID: bigint): string | undefined {\n  return CHAIN_ID_TO_ENVIRONMENT[chainID.toString()];\n}\n\n/**\n * Get build type from environment variable or build-time constant (defaults to 'prod')\n * BUILD_TYPE_BUILD_TIME is replaced at build time by tsup's define option\n */\n// @ts-ignore - BUILD_TYPE_BUILD_TIME is injected at build time by tsup\ndeclare const BUILD_TYPE_BUILD_TIME: string | undefined;\n\nexport function getBuildType(): \"dev\" | \"prod\" {\n  // First check build-time constant (set by tsup define)\n  // @ts-ignore - BUILD_TYPE_BUILD_TIME is injected at build time\n  const buildTimeType =\n    typeof BUILD_TYPE_BUILD_TIME !== \"undefined\" ? BUILD_TYPE_BUILD_TIME?.toLowerCase() : undefined;\n\n  // Fall back to runtime environment variable\n  const runtimeType = process.env.BUILD_TYPE?.toLowerCase();\n\n  const buildType = buildTimeType || runtimeType;\n\n  if (buildType === \"dev\") {\n    return \"dev\";\n  }\n  return \"prod\";\n}\n\n/**\n * Get available environments based on build type\n * - dev: only \"sepolia-dev\"\n * - prod: \"sepolia\" and \"mainnet-alpha\"\n */\nexport function getAvailableEnvironments(): string[] {\n  const buildType = getBuildType();\n\n  if (buildType === \"dev\") {\n    return [\"sepolia-dev\"];\n  }\n\n  // prod build\n  return [\"sepolia\", \"mainnet-alpha\"];\n}\n\n/**\n * Check if an environment is available in the current build\n */\nexport function isEnvironmentAvailable(environment: string): boolean {\n  return getAvailableEnvironments().includes(environment);\n}\n\n/**\n * Check if environment is mainnet (chain ID 1)\n */\nexport function isMainnet(environmentConfig: EnvironmentConfig): boolean {\n  return environmentConfig.chainID === BigInt(MAINNET_CHAIN_ID);\n}\n","/**\n * UserAPI Client to manage interactions with the coordinator\n */\n\nimport axios, { AxiosResponse } from \"axios\";\nimport FormData from \"form-data\";\nimport { Address, Hex, createPublicClient, http } from \"viem\";\nimport { calculatePermissionSignature } from \"./auth\";\nimport { privateKeyToAccount } from \"viem/accounts\";\nimport { EnvironmentConfig } from \"../types\";\nimport { addHexPrefix, stripHexPrefix, getChainFromID } from \"./helpers\";\n\nexport interface AppProfileInfo {\n  name: string;\n  website?: string;\n  description?: string;\n  xURL?: string;\n  imageURL?: string;\n}\n\nexport interface AppMetrics {\n  cpu_utilization_percent?: number;\n  memory_utilization_percent?: number;\n  memory_used_bytes?: number;\n  memory_total_bytes?: number;\n}\n\nexport interface DerivedAddress {\n  address: string;\n  derivationPath: string;\n}\n\nexport interface AppInfo {\n  address: Address;\n  status: string;\n  ip: string;\n  machineType: string;\n  profile?: AppProfileInfo;\n  metrics?: AppMetrics;\n  evmAddresses: DerivedAddress[];\n  solanaAddresses: DerivedAddress[];\n}\n\nexport interface AppInfoResponse {\n  apps: Array<{\n    addresses: {\n      data: {\n        evmAddresses: DerivedAddress[];\n        solanaAddresses: DerivedAddress[];\n      };\n      signature: string;\n    };\n    app_status: string;\n    ip: string;\n    machine_type: string;\n    profile?: AppProfileInfo;\n    metrics?: AppMetrics;\n  }>;\n}\n\nconst MAX_ADDRESS_COUNT = 5;\n\n// Permission constants\nexport const CanViewAppLogsPermission = \"0x2fd3f2fe\" as Hex;\nexport const CanViewSensitiveAppInfoPermission = \"0x0e67b22f\" as Hex;\nexport const CanUpdateAppProfilePermission = \"0x036fef61\" as Hex;\n\n/**\n * SDK_VERSION_BUILD_TIME is replaced at build time by tsup's define option\n */\n// @ts-ignore - SDK_VERSION_BUILD_TIME is injected at build time by tsup\ndeclare const SDK_VERSION_BUILD_TIME: string | undefined;\n\n/**\n * Get the default client ID using the build-time version\n */\nfunction getDefaultClientId(): string {\n  // @ts-ignore - SDK_VERSION_BUILD_TIME is injected at build time\n  const version = typeof SDK_VERSION_BUILD_TIME !== \"undefined\" ? SDK_VERSION_BUILD_TIME : \"0.0.0\";\n  return `ecloud-sdk/v${version}`;\n}\n\nexport class UserApiClient {\n  private readonly account?: ReturnType<typeof privateKeyToAccount>;\n  private readonly rpcUrl?: string;\n  private readonly clientId: string;\n\n  constructor(\n    private readonly config: EnvironmentConfig,\n    privateKey?: string | Hex,\n    rpcUrl?: string,\n    clientId?: string,\n  ) {\n    if (privateKey) {\n      const privateKeyHex = addHexPrefix(privateKey);\n      this.account = privateKeyToAccount(privateKeyHex);\n    }\n    this.rpcUrl = rpcUrl;\n    this.clientId = clientId || getDefaultClientId();\n  }\n\n  async getInfos(appIDs: Address[], addressCount = 1): Promise<AppInfo[]> {\n    const count = Math.min(addressCount, MAX_ADDRESS_COUNT);\n\n    const endpoint = `${this.config.userApiServerURL}/info`;\n    const url = `${endpoint}?${new URLSearchParams({ apps: appIDs.join(\",\") })}`;\n\n    const res = await this.makeAuthenticatedRequest(url, CanViewSensitiveAppInfoPermission);\n    const result: AppInfoResponse = await res.json();\n\n    // optional: verify signatures with KMS key\n    // const { signingKey } = getKMSKeysForEnvironment(this.config.name);\n\n    // Truncate without mutating the original object\n    // API returns apps in the same order as the request, so use appIDs[i] as the address\n    return result.apps.map((app, i) => {\n      // TODO: Implement signature verification\n      // const valid = await verifyKMSSignature(appInfo.addresses, signingKey);\n      // if (!valid) {\n      //   throw new Error(`Invalid signature for app ${appIDs[i]}`);\n      // }\n\n      // Slice derived addresses to requested count\n      const evmAddresses = app.addresses?.data?.evmAddresses?.slice(0, count) || [];\n      const solanaAddresses = app.addresses?.data?.solanaAddresses?.slice(0, count) || [];\n\n      return {\n        address: appIDs[i] as Address,\n        status: app.app_status,\n        ip: app.ip,\n        machineType: app.machine_type,\n        profile: app.profile,\n        metrics: app.metrics,\n        evmAddresses,\n        solanaAddresses,\n      };\n    });\n  }\n\n  /**\n   * Get available SKUs (instance types) from UserAPI\n   */\n  async getSKUs(): Promise<{\n    skus: Array<{ sku: string; description: string }>;\n  }> {\n    const endpoint = `${this.config.userApiServerURL}/skus`;\n    const response = await this.makeAuthenticatedRequest(endpoint);\n\n    const result = await response.json();\n\n    // Transform response to match expected format\n    return {\n      skus: result.skus || result.SKUs || [],\n    };\n  }\n\n  /**\n   * Get logs for an app\n   */\n  async getLogs(appID: Address): Promise<string> {\n    const endpoint = `${this.config.userApiServerURL}/logs/${appID}`;\n    const response = await this.makeAuthenticatedRequest(endpoint, CanViewAppLogsPermission);\n    return await response.text();\n  }\n\n  /**\n   * Get statuses for apps\n   */\n  async getStatuses(appIDs: Address[]): Promise<Array<{ address: Address; status: string }>> {\n    const endpoint = `${this.config.userApiServerURL}/status`;\n    const url = `${endpoint}?${new URLSearchParams({ apps: appIDs.join(\",\") })}`;\n    const response = await this.makeAuthenticatedRequest(url);\n    const result = await response.json();\n\n    // Transform response to match expected format\n    // The API returns an array of app statuses\n    const apps = result.apps || result.Apps || [];\n    return apps.map((app: any, i: number) => ({\n      address: (app.address || appIDs[i]) as Address,\n      status: app.status || app.Status || \"\",\n    }));\n  }\n\n  /**\n   * Upload app profile information with optional image\n   */\n  async uploadAppProfile(\n    appAddress: Address,\n    name: string,\n    website?: string,\n    description?: string,\n    xURL?: string,\n    imagePath?: string,\n  ): Promise<{\n    name: string;\n    website?: string;\n    description?: string;\n    xURL?: string;\n    imageURL?: string;\n  }> {\n    const endpoint = `${this.config.userApiServerURL}/apps/${appAddress}/profile`;\n\n    // Build multipart form data using form-data package\n    const formData = new FormData();\n\n    // Add required name field\n    formData.append(\"name\", name);\n\n    // Add optional text fields\n    if (website) {\n      formData.append(\"website\", website);\n    }\n    if (description) {\n      formData.append(\"description\", description);\n    }\n    if (xURL) {\n      formData.append(\"xURL\", xURL);\n    }\n\n    // Add optional image file\n    if (imagePath) {\n      const fs = await import(\"fs\");\n      const path = await import(\"path\");\n      const fileName = path.basename(imagePath);\n\n      // Read file into buffer\n      const fileBuffer = fs.readFileSync(imagePath);\n      formData.append(\"image\", fileBuffer, fileName);\n    }\n\n    // Make authenticated POST request\n    const headers: Record<string, string> = {\n      \"x-client-id\": this.clientId,\n      ...formData.getHeaders(),\n    };\n\n    // Add auth headers (Authorization and X-eigenx-expiry)\n    if (this.account) {\n      const expiry = BigInt(Math.floor(Date.now() / 1000) + 5 * 60); // 5 minutes\n      const authHeaders = await this.generateAuthHeaders(CanUpdateAppProfilePermission, expiry);\n      Object.assign(headers, authHeaders);\n    }\n\n    try {\n      // Use axios to post req\n      const response: AxiosResponse = await axios.post(endpoint, formData, {\n        headers,\n        maxRedirects: 0,\n        validateStatus: () => true, // Don't throw on any status\n        maxContentLength: Infinity, // Allow large file uploads\n        maxBodyLength: Infinity, // Allow large file uploads\n      });\n\n      const status = response.status;\n\n      if (status !== 200 && status !== 201) {\n        const body =\n          typeof response.data === \"string\" ? response.data : JSON.stringify(response.data);\n\n        // Detect Cloudflare challenge page\n        if (status === 403 && body.includes(\"Cloudflare\") && body.includes(\"challenge-platform\")) {\n          throw new Error(\n            `Cloudflare protection is blocking the request. This is likely due to bot detection.\\n` +\n              `Status: ${status}`,\n          );\n        }\n\n        throw new Error(\n          `UserAPI request failed: ${status} ${status >= 200 && status < 300 ? \"OK\" : \"Error\"} - ${body.substring(0, 500)}${body.length > 500 ? \"...\" : \"\"}`,\n        );\n      }\n\n      return response.data;\n    } catch (error: any) {\n      if (\n        error.message?.includes(\"fetch failed\") ||\n        error.message?.includes(\"ECONNREFUSED\") ||\n        error.message?.includes(\"ENOTFOUND\") ||\n        error.cause\n      ) {\n        const cause = error.cause?.message || error.cause || error.message;\n        throw new Error(\n          `Failed to connect to UserAPI at ${endpoint}: ${cause}\\n` +\n            `Please check:\\n` +\n            `1. Your internet connection\\n` +\n            `2. The API server is accessible: ${this.config.userApiServerURL}\\n` +\n            `3. Firewall/proxy settings`,\n        );\n      }\n      throw error;\n    }\n  }\n\n  private async makeAuthenticatedRequest(\n    url: string,\n    permission?: Hex,\n  ): Promise<{ json: () => Promise<any>; text: () => Promise<string> }> {\n    const headers: Record<string, string> = {\n      \"x-client-id\": this.clientId,\n    };\n    // Add auth headers if permission is specified\n    if (permission && this.account) {\n      const expiry = BigInt(Math.floor(Date.now() / 1000) + 5 * 60); // 5 minutes\n      const authHeaders = await this.generateAuthHeaders(permission, expiry);\n      Object.assign(headers, authHeaders);\n    }\n\n    try {\n      // Use axios to match\n      const response: AxiosResponse = await axios.get(url, {\n        headers,\n        maxRedirects: 0,\n        validateStatus: () => true, // Don't throw on any status\n      });\n\n      const status = response.status;\n      const statusText = status >= 200 && status < 300 ? \"OK\" : \"Error\";\n\n      if (status < 200 || status >= 300) {\n        const body =\n          typeof response.data === \"string\" ? response.data : JSON.stringify(response.data);\n        throw new Error(`UserAPI request failed: ${status} ${statusText} - ${body}`);\n      }\n\n      // Return Response-like object for compatibility\n      return {\n        json: async () => response.data,\n        text: async () =>\n          typeof response.data === \"string\" ? response.data : JSON.stringify(response.data),\n      };\n    } catch (error: any) {\n      // Handle network errors (fetch failed, connection refused, etc.)\n      if (\n        error.message?.includes(\"fetch failed\") ||\n        error.message?.includes(\"ECONNREFUSED\") ||\n        error.message?.includes(\"ENOTFOUND\") ||\n        error.cause\n      ) {\n        const cause = error.cause?.message || error.cause || error.message;\n        throw new Error(\n          `Failed to connect to UserAPI at ${url}: ${cause}\\n` +\n            `Please check:\\n` +\n            `1. Your internet connection\\n` +\n            `2. The API server is accessible: ${this.config.userApiServerURL}\\n` +\n            `3. Firewall/proxy settings`,\n        );\n      }\n      // Re-throw other errors as-is\n      throw error;\n    }\n  }\n\n  /**\n   * Generate authentication headers for UserAPI requests\n   */\n  private async generateAuthHeaders(\n    permission: Hex,\n    expiry: bigint,\n  ): Promise<Record<string, string>> {\n    if (!this.account) {\n      throw new Error(\"Private key required for authenticated requests\");\n    }\n\n    if (!this.rpcUrl) {\n      throw new Error(\"RPC URL required for authenticated requests\");\n    }\n\n    const chain = getChainFromID(this.config.chainID);\n\n    const publicClient = createPublicClient({\n      chain,\n      transport: http(this.rpcUrl),\n    });\n\n    // Calculate permission signature using shared auth utility\n    const { signature } = await calculatePermissionSignature({\n      permission,\n      expiry,\n      appControllerAddress: this.config.appControllerAddress,\n      publicClient,\n      account: this.account,\n    });\n\n    // Return auth headers\n    return {\n      Authorization: `Bearer ${stripHexPrefix(signature)}`,\n      \"X-eigenx-expiry\": expiry.toString(),\n    };\n  }\n}\n","/**\n * Shared authentication utilities for API clients\n */\n\nimport { Hex, parseAbi, type Address } from \"viem\";\nimport { privateKeyToAccount } from \"viem/accounts\";\nimport { createPublicClient } from \"viem\";\n\n// Minimal AppController ABI for permission calculation\nconst APP_CONTROLLER_ABI = parseAbi([\n  \"function calculateApiPermissionDigestHash(bytes4 permission, uint256 expiry) view returns (bytes32)\",\n]);\n\nexport interface PermissionSignatureOptions {\n  permission: Hex;\n  expiry: bigint;\n  appControllerAddress: Address;\n  publicClient: ReturnType<typeof createPublicClient>;\n  account: ReturnType<typeof privateKeyToAccount>;\n}\n\nexport interface PermissionSignatureResult {\n  signature: string;\n  digest: Hex;\n}\n\n/**\n * Calculate permission digest via AppController contract and sign it with EIP-191\n */\nexport async function calculatePermissionSignature(\n  options: PermissionSignatureOptions,\n): Promise<PermissionSignatureResult> {\n  const { permission, expiry, appControllerAddress, publicClient, account } = options;\n\n  // Calculate permission digest hash using AppController contract\n  const digest = (await publicClient.readContract({\n    address: appControllerAddress,\n    abi: APP_CONTROLLER_ABI,\n    functionName: \"calculateApiPermissionDigestHash\",\n    args: [permission, expiry],\n  })) as Hex;\n\n  // Sign the digest using EIP-191 (signMessage handles prefixing automatically)\n  const signature = await account.signMessage({\n    message: { raw: digest },\n  });\n\n  return { signature, digest };\n}\n\nexport interface BillingAuthSignatureOptions {\n  account: ReturnType<typeof privateKeyToAccount>;\n  product: string;\n  expiry: bigint;\n}\n\nexport interface BillingAuthSignatureResult {\n  signature: Hex;\n  expiry: bigint;\n}\n\n/**\n * Sign billing authentication message using EIP-712 typed data\n */\nexport async function calculateBillingAuthSignature(\n  options: BillingAuthSignatureOptions,\n): Promise<BillingAuthSignatureResult> {\n  const { account, product, expiry } = options;\n\n  // Sign using EIP-712 typed data\n  const signature = await account.signTypedData({\n    domain: {\n      name: \"EigenCloud Billing API\",\n      version: \"1\",\n    },\n    types: {\n      BillingAuth: [\n        { name: \"product\", type: \"string\" },\n        { name: \"expiry\", type: \"uint256\" },\n      ],\n    },\n    primaryType: \"BillingAuth\",\n    message: {\n      product,\n      expiry,\n    },\n  });\n\n  return { signature, expiry };\n}\n","/**\n * General utility helpers\n */\n\nimport { extractChain } from \"viem\";\nimport type { Chain, Hex } from \"viem\";\nimport { sepolia } from \"viem/chains\";\nimport { SUPPORTED_CHAINS } from \"../constants\";\n\n/**\n * Get a viem Chain object from a chain ID.\n * Supports mainnet (1) and sepolia (11155111), defaults to the fallback chain for unknown chains.\n */\nexport function getChainFromID(chainID: bigint, fallback: Chain = sepolia): Chain {\n  const id = Number(chainID) as (typeof SUPPORTED_CHAINS)[number][\"id\"];\n  return extractChain({ chains: SUPPORTED_CHAINS, id }) || fallback;\n}\n\n/**\n * Ensure hex string has 0x prefix\n */\nexport function addHexPrefix(value: string): Hex {\n  return (value.startsWith(\"0x\") ? value : `0x${value}`) as Hex;\n}\n\n/**\n * Remove 0x prefix from hex string if present\n */\nexport function stripHexPrefix(value: string): string {\n  return value.startsWith(\"0x\") ? value.slice(2) : value;\n}\n","/**\n * Constants used throughout the SDK\n */\n\nimport { sepolia, mainnet } from \"viem/chains\";\n\nexport const SUPPORTED_CHAINS = [mainnet, sepolia] as const;\n\nexport const DOCKER_PLATFORM = \"linux/amd64\";\nexport const REGISTRY_PROPAGATION_WAIT_SECONDS = 3;\nexport const LAYERED_DOCKERFILE_NAME = \"Dockerfile.eigencompute\";\nexport const ENV_SOURCE_SCRIPT_NAME = \"compute-source-env.sh\";\nexport const KMS_CLIENT_BINARY_NAME = \"kms-client\";\nexport const KMS_ENCRYPTION_KEY_NAME = \"kms-encryption-public-key.pem\";\nexport const KMS_SIGNING_KEY_NAME = \"kms-signing-public-key.pem\";\nexport const TLS_KEYGEN_BINARY_NAME = \"tls-keygen\";\nexport const CADDYFILE_NAME = \"Caddyfile\";\nexport const TEMP_IMAGE_PREFIX = \"ecloud-temp-\";\nexport const LAYERED_BUILD_DIR_PREFIX = \"ecloud-layered-build\";\nexport const SHA256_PREFIX = \"sha256:\";\nexport const JWT_FILE_PATH = \"/run/container_launcher/attestation_verifier_claims_token\";\n","/**\n * Billing utility functions\n */\n\nimport type { SubscriptionStatus } from \"../types\";\n\n/**\n * Check if subscription status allows deploying apps\n */\nexport function isSubscriptionActive(status: SubscriptionStatus): boolean {\n  return status === \"active\" || status === \"trialing\";\n}\n","/**\n * No-op telemetry client implementation\n */\n\nimport { TelemetryClient, Metric } from \"./types\";\n\n/**\n * NoopClient implements the TelemetryClient interface with no-op methods\n */\nexport class NoopClient implements TelemetryClient {\n  /**\n   * AddMetric implements the TelemetryClient interface\n   */\n  async addMetric(_metric: Metric): Promise<void> {\n    // No-op\n  }\n\n  /**\n   * Close implements the TelemetryClient interface\n   */\n  async close(): Promise<void> {\n    // No-op\n  }\n}\n\n/**\n * Check if a client is a NoopClient\n */\nexport function isNoopClient(client: TelemetryClient): boolean {\n  return client instanceof NoopClient;\n}\n","/**\n * PostHog telemetry client implementation\n *\n * Uses the official posthog-node library\n */\n\nimport { PostHog } from \"posthog-node\";\nimport { TelemetryClient, Metric, AppEnvironment } from \"./types\";\n\n/**\n * PostHogClient implements the TelemetryClient interface using posthog-node\n */\nexport class PostHogClient implements TelemetryClient {\n  private readonly client: PostHog;\n  private readonly namespace: string;\n  private readonly appEnvironment: AppEnvironment;\n\n  constructor(environment: AppEnvironment, namespace: string, apiKey: string, endpoint?: string) {\n    this.namespace = namespace;\n    this.appEnvironment = environment;\n\n    // Initialize PostHog client\n    // posthog-node expects the full URL for the host option\n    const host = endpoint || \"https://us.i.posthog.com\";\n\n    this.client = new PostHog(apiKey, {\n      host: host,\n      flushAt: 1, // Flush immediately for CLI/SDK usage\n      flushInterval: 0, // Disable interval flushing\n    });\n\n    // Identify the user with their UUID\n    this.client.identify({\n      distinctId: environment.userUUID,\n      properties: {\n        os: environment.os,\n        arch: environment.arch,\n        ...(environment.cliVersion ? { cliVersion: environment.cliVersion } : {}),\n      },\n    });\n  }\n\n  /**\n   * AddMetric implements the TelemetryClient interface\n   */\n  async addMetric(metric: Metric): Promise<void> {\n    // Never throw errors from telemetry operations\n    try {\n      // Create properties map starting with base properties\n      const props: Record<string, any> = {\n        name: metric.name,\n        value: metric.value,\n      };\n\n      // Add metric dimensions\n      for (const [k, v] of Object.entries(metric.dimensions)) {\n        props[k] = v;\n      }\n\n      // Capture event using the namespace as the event name\n      // With flushAt: 1, events are automatically flushed after each capture\n      this.client.capture({\n        distinctId: this.appEnvironment.userUUID,\n        event: this.namespace,\n        properties: props,\n      });\n    } catch {\n      // Silently ignore telemetry errors\n    }\n  }\n\n  /**\n   * Close implements the TelemetryClient interface\n   */\n  async close(): Promise<void> {\n    try {\n      // Shutdown PostHog client and flush any pending events\n      // shutdown() is synchronous but internally handles async cleanup\n      this.client.shutdown();\n    } catch {\n      // Silently ignore errors during shutdown\n    }\n  }\n}\n\n/**\n * Embedded PostHog API key (can be exposed in TypeScript)\n * This can be set at build time or overridden via environment variable\n */\n// @ts-ignore - POSTHOG_API_KEY_BUILD_TIME is injected at build time by tsup\ndeclare const POSTHOG_API_KEY_BUILD_TIME: string | undefined;\n\n/**\n * Get PostHog API key from environment variable or build-time constant\n */\nexport function getPostHogAPIKey(): string | undefined {\n  // Priority order:\n  // 1. Environment variable\n  // 2. Build-time constant (set at build time)\n  // Check environment variable first\n  if (process.env.ECLOUD_POSTHOG_KEY) {\n    return process.env.ECLOUD_POSTHOG_KEY;\n  }\n\n  // Return build-time constant if available\n  // @ts-ignore - POSTHOG_API_KEY_BUILD_TIME is injected at build time\n  return typeof POSTHOG_API_KEY_BUILD_TIME !== \"undefined\" ? POSTHOG_API_KEY_BUILD_TIME : undefined;\n}\n\n/**\n * Get PostHog endpoint from environment variable or default\n */\nexport function getPostHogEndpoint(): string {\n  return process.env.ECLOUD_POSTHOG_ENDPOINT || \"https://us.i.posthog.com\";\n}\n","/**\n * MetricsContext management\n */\n\nimport { MetricsContext } from \"./types\";\n\n/**\n * Create a new metrics context\n */\nexport function createMetricsContext(): MetricsContext {\n  return {\n    startTime: new Date(),\n    metrics: [],\n    properties: {},\n  };\n}\n\n/**\n * Add a metric to the context without dimensions\n */\nexport function addMetric(context: MetricsContext, name: string, value: number): void {\n  addMetricWithDimensions(context, name, value, {});\n}\n\n/**\n * Add a metric to the context with dimensions\n */\nexport function addMetricWithDimensions(\n  context: MetricsContext,\n  name: string,\n  value: number,\n  dimensions: Record<string, string>,\n): void {\n  context.metrics.push({\n    name,\n    value,\n    dimensions,\n  });\n}\n","/**\n * Telemetry module for ECloud SDK and CLI\n *\n * Provides telemetry functionality matching the Go implementation.\n * Supports both \"ecloud-cli\" and \"ecloud-sdk\" namespaces.\n */\n\nimport { TelemetryClient, Metric, AppEnvironment } from \"./types\";\nimport { NoopClient, isNoopClient } from \"./noop\";\nimport { PostHogClient, getPostHogAPIKey, getPostHogEndpoint } from \"./posthog\";\nimport * as os from \"os\";\n\nexport * from \"./types\";\nexport * from \"./metricsContext\";\nexport * from \"./noop\";\nexport * from \"./posthog\";\nexport * from \"./wrapper\";\n\n/**\n * Options for creating a telemetry client\n */\nexport interface TelemetryClientOptions {\n  /**\n   * Whether telemetry is enabled (only enabled if explicitly set to true, defaults to disabled)\n   */\n  telemetryEnabled?: boolean;\n  /**\n   * PostHog API key (if not provided, will check environment variables)\n   */\n  apiKey?: string;\n  /**\n   * PostHog endpoint (if not provided, will use default)\n   */\n  endpoint?: string;\n}\n\n/**\n * Create a telemetry client\n *\n * @param environment - Application environment information (must include userUUID)\n * @param namespace - Namespace for telemetry events (\"ecloud-cli\" or \"ecloud-sdk\")\n * @param options - Optional telemetry client options\n * @returns TelemetryClient instance (NoopClient if telemetry is disabled or no API key)\n */\nexport function createTelemetryClient(\n  environment: AppEnvironment,\n  namespace: \"ecloud-cli\" | \"ecloud-sdk\",\n  options?: TelemetryClientOptions,\n): TelemetryClient {\n  // Check if telemetry is enabled\n  // Only enabled if explicitly set to true\n  // If undefined or false, telemetry is disabled\n  const telemetryEnabled = options?.telemetryEnabled === true;\n\n  // If telemetry is disabled, return noop client\n  if (!telemetryEnabled) {\n    return new NoopClient();\n  }\n\n  // Get API key from options, environment variable, or return noop\n  const resolvedApiKey = options?.apiKey || getPostHogAPIKey();\n  if (!resolvedApiKey) {\n    // No API key available, return noop client\n    return new NoopClient();\n  }\n\n  // Get endpoint from options or environment variable\n  const endpoint = options?.endpoint || getPostHogEndpoint();\n\n  try {\n    return new PostHogClient(environment, namespace, resolvedApiKey, endpoint);\n  } catch {\n    // If initialization fails, return noop client\n    return new NoopClient();\n  }\n}\n\n/**\n * Create an AppEnvironment from current system information\n *\n * @param userUUID - User UUID for identification (required - no I/O in SDK)\n * @param cliVersion - Optional CLI version (for CLI usage)\n * @param osOverride - Optional OS override (defaults to current platform)\n * @param archOverride - Optional architecture override (defaults to current architecture)\n * @returns AppEnvironment with user UUID, OS, and architecture\n */\nexport function createAppEnvironment(\n  userUUID: string,\n  cliVersion?: string,\n  osOverride?: string,\n  archOverride?: string,\n): AppEnvironment {\n  return {\n    userUUID,\n    cliVersion,\n    os: osOverride || os.platform(),\n    arch: archOverride || os.arch(),\n  };\n}\n\n/**\n * Emit metrics from a metrics context\n *\n * @param client - Telemetry client to use\n * @param context - Metrics context containing metrics to emit\n * @returns Promise that resolves when all metrics are emitted\n */\nexport async function emitMetrics(\n  client: TelemetryClient,\n  context: {\n    metrics: Metric[];\n    properties: Record<string, string>;\n  },\n): Promise<void> {\n  if (isNoopClient(client)) {\n    return;\n  }\n\n  // Emit each metric with properties merged into dimensions\n  for (const metric of context.metrics) {\n    const dimensions = {\n      ...metric.dimensions,\n      ...context.properties,\n    };\n\n    const metricWithProperties: Metric = {\n      ...metric,\n      dimensions,\n    };\n\n    try {\n      await client.addMetric(metricWithProperties);\n    } catch {\n      // Silently ignore telemetry errors\n    }\n  }\n}\n","/**\n * Telemetry wrapper utilities for SDK functions\n *\n * Provides helpers to wrap SDK function execution with telemetry tracking\n */\n\nimport {\n  createTelemetryClient,\n  createAppEnvironment,\n  createMetricsContext,\n  addMetric,\n  addMetricWithDimensions,\n  emitMetrics,\n} from \"./index\";\nimport { randomUUID } from \"crypto\";\n\n/**\n * Generate a random UUID for telemetry identification\n * Used when userUUID is not provided (SDK usage outside CLI)\n */\nfunction generateRandomUUID(): string {\n  return randomUUID();\n}\n\n/**\n * Options for telemetry wrapper\n */\nexport interface TelemetryWrapperOptions {\n  /**\n   * Function name for telemetry (e.g., \"deploy\", \"upgrade\", \"createApp\")\n   */\n  functionName: string;\n  /**\n   * Skip telemetry if true (used when called from CLI)\n   */\n  skipTelemetry?: boolean;\n  /**\n   * Additional properties to include in telemetry\n   */\n  properties?: Record<string, string>;\n  /**\n   * User UUID for identification (required if skipTelemetry is false)\n   * If not provided and telemetry is enabled, will generate a random UUID for this session\n   */\n  userUUID?: string;\n  /**\n   * Whether telemetry is enabled (defaults to true if not provided)\n   */\n  telemetryEnabled?: boolean;\n  /**\n   * PostHog API key (optional, will check environment variables if not provided)\n   */\n  apiKey?: string;\n  /**\n   * PostHog endpoint (optional, will use default if not provided)\n   */\n  endpoint?: string;\n}\n\n/**\n * Wrap a function execution with telemetry\n *\n * @param options - Telemetry wrapper options\n * @param action - The function to execute\n * @returns The result of the action\n */\nexport async function withSDKTelemetry<T>(\n  options: TelemetryWrapperOptions,\n  action: () => Promise<T>,\n): Promise<T> {\n  // Skip telemetry if requested (e.g., when called from CLI)\n  if (options.skipTelemetry) {\n    return action();\n  }\n\n  // Generate a random UUID if not provided (for SDK usage outside CLI)\n  // This ensures each SDK session has a unique identifier\n  const userUUID = options.userUUID || generateRandomUUID();\n\n  const environment = createAppEnvironment(userUUID);\n  const client = createTelemetryClient(environment, \"ecloud-sdk\", {\n    telemetryEnabled: options.telemetryEnabled,\n    apiKey: options.apiKey,\n    endpoint: options.endpoint,\n  });\n  const metrics = createMetricsContext();\n\n  // Set source to identify SDK usage\n  metrics.properties[\"source\"] = \"ecloud-sdk\";\n\n  // Set function name in properties\n  metrics.properties[\"function\"] = options.functionName;\n\n  // Add any additional properties\n  if (options.properties) {\n    Object.assign(metrics.properties, options.properties);\n  }\n\n  // Add initial count metric\n  addMetric(metrics, \"Count\", 1);\n\n  let actionError: Error | undefined;\n  let result: T;\n\n  try {\n    result = await action();\n    return result;\n  } catch (err) {\n    actionError = err instanceof Error ? err : new Error(String(err));\n    throw err;\n  } finally {\n    // Add result metric\n    const resultValue = actionError ? \"Failure\" : \"Success\";\n    const dimensions: Record<string, string> = {};\n    if (actionError) {\n      dimensions[\"error\"] = actionError.message;\n    }\n    addMetricWithDimensions(metrics, resultValue, 1, dimensions);\n\n    // Add duration metric\n    const duration = Date.now() - metrics.startTime.getTime();\n    addMetric(metrics, \"DurationMilliseconds\", duration);\n\n    // Emit all metrics\n    try {\n      await emitMetrics(client, metrics);\n      await client.close();\n    } catch {\n      // Silently ignore telemetry errors\n    }\n  }\n}\n","/**\n * Default logger\n */\n\nimport { Logger } from \"../types\";\n\nexport const defaultLogger: Logger = {\n  info: (...args) => console.info(...args),\n  warn: (...args) => console.warn(...args),\n  error: (...args) => console.error(...args),\n  debug: (...args) => console.debug(...args),\n};\n\nexport const getLogger: (verbose?: boolean) => Logger = (verbose?: boolean) => ({\n  info: (...args) => console.info(...args),\n  warn: (...args) => console.warn(...args),\n  error: (...args) => console.error(...args),\n  debug: (...args) => verbose && console.debug(...args),\n});\n","/**\n * ESM and CJS compatible getDirname utility\n */\n\nimport * as path from \"path\";\nimport { fileURLToPath } from \"url\";\n\n/**\n * Get __dirname equivalent that works in both ESM and CJS\n * In CJS builds, __dirname is available and will be used\n * In ESM builds, import.meta.url is used\n */\nexport function getDirname(): string {\n  // Check for CJS __dirname first (available in CommonJS)\n  if (typeof __dirname !== \"undefined\") {\n    return __dirname;\n  }\n\n  // For ESM, we need to use import.meta.url\n  // This will be evaluated at build time by tsup for ESM builds\n  // For CJS builds, the above check will catch it, so this won't execute\n  try {\n    const metaUrl = import.meta.url;\n    return path.dirname(fileURLToPath(metaUrl));\n  } catch {\n    // Fallback (shouldn't reach here in normal usage)\n    return process.cwd();\n  }\n}\n"],"mappings":";AAOO,IAAM,mBAAmB;AACzB,IAAM,mBAAmB;AAGzB,IAAM,kBAA0C;AAAA,EACrD,kBAAkB;AACpB;AAGO,IAAM,iBAAyD;AAAA,EACpE,CAAC,gBAAgB,GAAG;AAAA,IAClB,sBAAsB;AAAA,EACxB;AAAA,EACA,CAAC,gBAAgB,GAAG;AAAA,IAClB,sBAAsB;AAAA,EACxB;AACF;AAGA,IAAM,uBAAyE;AAAA,EAC7E,KAAK;AAAA,IACH,qBAAqB;AAAA,EACvB;AAAA,EACA,MAAM;AAAA,IACJ,qBAAqB;AAAA,EACvB;AACF;AAGA,IAAM,eAAmE;AAAA,EACvE,eAAe;AAAA,IACb,MAAM;AAAA,IACN,OAAO;AAAA,IACP,sBAAsB;AAAA,IACtB,6BAA6B,eAAe,gBAAgB,EAAE;AAAA,IAC9D,yBAAyB,gBAAgB;AAAA,IACzC,cAAc;AAAA,IACd,kBAAkB;AAAA,IAClB,eAAe;AAAA,EACjB;AAAA,EACA,SAAS;AAAA,IACP,MAAM;AAAA,IACN,OAAO;AAAA,IACP,sBAAsB;AAAA,IACtB,6BAA6B,eAAe,gBAAgB,EAAE;AAAA,IAC9D,yBAAyB,gBAAgB;AAAA,IACzC,cAAc;AAAA,IACd,kBAAkB;AAAA,IAClB,eAAe;AAAA,EACjB;AAAA,EACA,iBAAiB;AAAA,IACf,MAAM;AAAA,IACN,OAAO;AAAA,IACP,sBAAsB;AAAA,IACtB,6BAA6B,eAAe,gBAAgB,EAAE;AAAA,IAC9D,yBAAyB,gBAAgB;AAAA,IACzC,cAAc;AAAA,IACd,kBAAkB;AAAA,IAClB,eAAe;AAAA,EACjB;AACF;AAEA,IAAM,0BAAkD;AAAA,EACtD,CAAC,iBAAiB,SAAS,CAAC,GAAG;AAAA,EAC/B,CAAC,iBAAiB,SAAS,CAAC,GAAG;AACjC;AAKO,SAAS,qBAAqB,aAAqB,SAAqC;AAC7F,QAAM,MAAM,aAAa,WAAW;AACpC,MAAI,CAAC,KAAK;AACR,UAAM,IAAI,MAAM,wBAAwB,WAAW,EAAE;AAAA,EACvD;AAGA,MAAI,CAAC,uBAAuB,WAAW,GAAG;AACxC,UAAM,IAAI;AAAA,MACR,eAAe,WAAW,iEACG,yBAAyB,EAAE,KAAK,IAAI,CAAC;AAAA,IACpE;AAAA,EACF;AAGA,MAAI,SAAS;AACX,UAAM,cAAc,wBAAwB,QAAQ,SAAS,CAAC;AAC9D,QAAI,eAAe,gBAAgB,aAAa;AAC9C,YAAM,IAAI,MAAM,eAAe,WAAW,4BAA4B,OAAO,EAAE;AAAA,IACjF;AAAA,EACF;AAIA,QAAM,kBACJ,YACC,gBAAgB,aAAa,gBAAgB,gBAC1C,mBACA;AAEN,SAAO;AAAA,IACL,GAAG;AAAA,IACH,SAAS,OAAO,eAAe;AAAA,EACjC;AACF;AAMO,SAAS,4BAA4B,OAE1C;AACA,QAAM,SAAS,qBAAqB,KAAK;AACzC,MAAI,CAAC,QAAQ;AACX,UAAM,IAAI,MAAM,gCAAgC,KAAK,EAAE;AAAA,EACzD;AACA,SAAO;AACT;AAgBO,SAAS,eAA+B;AAG7C,QAAM,gBACJ,OAA+C,QAAuB,YAAY,IAAI;AAGxF,QAAM,cAAc,QAAQ,IAAI,YAAY,YAAY;AAExD,QAAM,YAAY,iBAAiB;AAEnC,MAAI,cAAc,OAAO;AACvB,WAAO;AAAA,EACT;AACA,SAAO;AACT;AAOO,SAAS,2BAAqC;AACnD,QAAM,YAAY,aAAa;AAE/B,MAAI,cAAc,OAAO;AACvB,WAAO,CAAC,aAAa;AAAA,EACvB;AAGA,SAAO,CAAC,WAAW,eAAe;AACpC;AAKO,SAAS,uBAAuB,aAA8B;AACnE,SAAO,yBAAyB,EAAE,SAAS,WAAW;AACxD;AAKO,SAAS,UAAU,mBAA+C;AACvE,SAAO,kBAAkB,YAAY,OAAO,gBAAgB;AAC9D;;;ACtLA,OAAO,WAA8B;AACrC,OAAO,cAAc;AACrB,SAAuB,oBAAoB,YAAY;;;ACFvD,SAAc,gBAA8B;AAK5C,IAAM,qBAAqB,SAAS;AAAA,EAClC;AACF,CAAC;AAkBD,eAAsB,6BACpB,SACoC;AACpC,QAAM,EAAE,YAAY,QAAQ,sBAAsB,cAAc,QAAQ,IAAI;AAG5E,QAAM,SAAU,MAAM,aAAa,aAAa;AAAA,IAC9C,SAAS;AAAA,IACT,KAAK;AAAA,IACL,cAAc;AAAA,IACd,MAAM,CAAC,YAAY,MAAM;AAAA,EAC3B,CAAC;AAGD,QAAM,YAAY,MAAM,QAAQ,YAAY;AAAA,IAC1C,SAAS,EAAE,KAAK,OAAO;AAAA,EACzB,CAAC;AAED,SAAO,EAAE,WAAW,OAAO;AAC7B;AAgBA,eAAsB,8BACpB,SACqC;AACrC,QAAM,EAAE,SAAS,SAAS,OAAO,IAAI;AAGrC,QAAM,YAAY,MAAM,QAAQ,cAAc;AAAA,IAC5C,QAAQ;AAAA,MACN,MAAM;AAAA,MACN,SAAS;AAAA,IACX;AAAA,IACA,OAAO;AAAA,MACL,aAAa;AAAA,QACX,EAAE,MAAM,WAAW,MAAM,SAAS;AAAA,QAClC,EAAE,MAAM,UAAU,MAAM,UAAU;AAAA,MACpC;AAAA,IACF;AAAA,IACA,aAAa;AAAA,IACb,SAAS;AAAA,MACP;AAAA,MACA;AAAA,IACF;AAAA,EACF,CAAC;AAED,SAAO,EAAE,WAAW,OAAO;AAC7B;;;ADjFA,SAAS,2BAA2B;;;AEJpC,SAAS,oBAAoB;AAE7B,SAAS,WAAAA,gBAAe;;;ACFxB,SAAS,SAAS,eAAe;AAE1B,IAAM,mBAAmB,CAAC,SAAS,OAAO;AAE1C,IAAM,kBAAkB;AACxB,IAAM,oCAAoC;AAC1C,IAAM,0BAA0B;AAChC,IAAM,yBAAyB;AAC/B,IAAM,yBAAyB;AAE/B,IAAM,uBAAuB;AAC7B,IAAM,yBAAyB;AAC/B,IAAM,iBAAiB;AAEvB,IAAM,2BAA2B;;;ADLjC,SAAS,eAAe,SAAiB,WAAkBC,UAAgB;AAChF,QAAM,KAAK,OAAO,OAAO;AACzB,SAAO,aAAa,EAAE,QAAQ,kBAAkB,GAAG,CAAC,KAAK;AAC3D;AAKO,SAAS,aAAa,OAAoB;AAC/C,SAAQ,MAAM,WAAW,IAAI,IAAI,QAAQ,KAAK,KAAK;AACrD;AAKO,SAAS,eAAe,OAAuB;AACpD,SAAO,MAAM,WAAW,IAAI,IAAI,MAAM,MAAM,CAAC,IAAI;AACnD;;;AF8BA,IAAM,oBAAoB;AAGnB,IAAM,2BAA2B;AACjC,IAAM,oCAAoC;AAC1C,IAAM,gCAAgC;AAW7C,SAAS,qBAA6B;AAEpC,QAAM,UAAU,OAAgD,UAAyB;AACzF,SAAO,eAAe,OAAO;AAC/B;AAEO,IAAM,gBAAN,MAAoB;AAAA,EAKzB,YACmB,QACjB,YACA,QACA,UACA;AAJiB;AAKjB,QAAI,YAAY;AACd,YAAM,gBAAgB,aAAa,UAAU;AAC7C,WAAK,UAAU,oBAAoB,aAAa;AAAA,IAClD;AACA,SAAK,SAAS;AACd,SAAK,WAAW,YAAY,mBAAmB;AAAA,EACjD;AAAA,EAEA,MAAM,SAAS,QAAmB,eAAe,GAAuB;AACtE,UAAM,QAAQ,KAAK,IAAI,cAAc,iBAAiB;AAEtD,UAAM,WAAW,GAAG,KAAK,OAAO,gBAAgB;AAChD,UAAM,MAAM,GAAG,QAAQ,IAAI,IAAI,gBAAgB,EAAE,MAAM,OAAO,KAAK,GAAG,EAAE,CAAC,CAAC;AAE1E,UAAM,MAAM,MAAM,KAAK,yBAAyB,KAAK,iCAAiC;AACtF,UAAM,SAA0B,MAAM,IAAI,KAAK;AAO/C,WAAO,OAAO,KAAK,IAAI,CAAC,KAAK,MAAM;AAQjC,YAAM,eAAe,IAAI,WAAW,MAAM,cAAc,MAAM,GAAG,KAAK,KAAK,CAAC;AAC5E,YAAM,kBAAkB,IAAI,WAAW,MAAM,iBAAiB,MAAM,GAAG,KAAK,KAAK,CAAC;AAElF,aAAO;AAAA,QACL,SAAS,OAAO,CAAC;AAAA,QACjB,QAAQ,IAAI;AAAA,QACZ,IAAI,IAAI;AAAA,QACR,aAAa,IAAI;AAAA,QACjB,SAAS,IAAI;AAAA,QACb,SAAS,IAAI;AAAA,QACb;AAAA,QACA;AAAA,MACF;AAAA,IACF,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAEH;AACD,UAAM,WAAW,GAAG,KAAK,OAAO,gBAAgB;AAChD,UAAM,WAAW,MAAM,KAAK,yBAAyB,QAAQ;AAE7D,UAAM,SAAS,MAAM,SAAS,KAAK;AAGnC,WAAO;AAAA,MACL,MAAM,OAAO,QAAQ,OAAO,QAAQ,CAAC;AAAA,IACvC;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,OAAiC;AAC7C,UAAM,WAAW,GAAG,KAAK,OAAO,gBAAgB,SAAS,KAAK;AAC9D,UAAM,WAAW,MAAM,KAAK,yBAAyB,UAAU,wBAAwB;AACvF,WAAO,MAAM,SAAS,KAAK;AAAA,EAC7B;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,YAAY,QAAyE;AACzF,UAAM,WAAW,GAAG,KAAK,OAAO,gBAAgB;AAChD,UAAM,MAAM,GAAG,QAAQ,IAAI,IAAI,gBAAgB,EAAE,MAAM,OAAO,KAAK,GAAG,EAAE,CAAC,CAAC;AAC1E,UAAM,WAAW,MAAM,KAAK,yBAAyB,GAAG;AACxD,UAAM,SAAS,MAAM,SAAS,KAAK;AAInC,UAAM,OAAO,OAAO,QAAQ,OAAO,QAAQ,CAAC;AAC5C,WAAO,KAAK,IAAI,CAAC,KAAU,OAAe;AAAA,MACxC,SAAU,IAAI,WAAW,OAAO,CAAC;AAAA,MACjC,QAAQ,IAAI,UAAU,IAAI,UAAU;AAAA,IACtC,EAAE;AAAA,EACJ;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBACJ,YACA,MACA,SACA,aACA,MACA,WAOC;AACD,UAAM,WAAW,GAAG,KAAK,OAAO,gBAAgB,SAAS,UAAU;AAGnE,UAAM,WAAW,IAAI,SAAS;AAG9B,aAAS,OAAO,QAAQ,IAAI;AAG5B,QAAI,SAAS;AACX,eAAS,OAAO,WAAW,OAAO;AAAA,IACpC;AACA,QAAI,aAAa;AACf,eAAS,OAAO,eAAe,WAAW;AAAA,IAC5C;AACA,QAAI,MAAM;AACR,eAAS,OAAO,QAAQ,IAAI;AAAA,IAC9B;AAGA,QAAI,WAAW;AACb,YAAM,KAAK,MAAM,OAAO,IAAI;AAC5B,YAAMC,QAAO,MAAM,OAAO,MAAM;AAChC,YAAM,WAAWA,MAAK,SAAS,SAAS;AAGxC,YAAM,aAAa,GAAG,aAAa,SAAS;AAC5C,eAAS,OAAO,SAAS,YAAY,QAAQ;AAAA,IAC/C;AAGA,UAAM,UAAkC;AAAA,MACtC,eAAe,KAAK;AAAA,MACpB,GAAG,SAAS,WAAW;AAAA,IACzB;AAGA,QAAI,KAAK,SAAS;AAChB,YAAM,SAAS,OAAO,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,IAAI,IAAI,EAAE;AAC5D,YAAM,cAAc,MAAM,KAAK,oBAAoB,+BAA+B,MAAM;AACxF,aAAO,OAAO,SAAS,WAAW;AAAA,IACpC;AAEA,QAAI;AAEF,YAAM,WAA0B,MAAM,MAAM,KAAK,UAAU,UAAU;AAAA,QACnE;AAAA,QACA,cAAc;AAAA,QACd,gBAAgB,MAAM;AAAA;AAAA,QACtB,kBAAkB;AAAA;AAAA,QAClB,eAAe;AAAA;AAAA,MACjB,CAAC;AAED,YAAM,SAAS,SAAS;AAExB,UAAI,WAAW,OAAO,WAAW,KAAK;AACpC,cAAM,OACJ,OAAO,SAAS,SAAS,WAAW,SAAS,OAAO,KAAK,UAAU,SAAS,IAAI;AAGlF,YAAI,WAAW,OAAO,KAAK,SAAS,YAAY,KAAK,KAAK,SAAS,oBAAoB,GAAG;AACxF,gBAAM,IAAI;AAAA,YACR;AAAA,UACa,MAAM;AAAA,UACrB;AAAA,QACF;AAEA,cAAM,IAAI;AAAA,UACR,2BAA2B,MAAM,IAAI,UAAU,OAAO,SAAS,MAAM,OAAO,OAAO,MAAM,KAAK,UAAU,GAAG,GAAG,CAAC,GAAG,KAAK,SAAS,MAAM,QAAQ,EAAE;AAAA,QAClJ;AAAA,MACF;AAEA,aAAO,SAAS;AAAA,IAClB,SAAS,OAAY;AACnB,UACE,MAAM,SAAS,SAAS,cAAc,KACtC,MAAM,SAAS,SAAS,cAAc,KACtC,MAAM,SAAS,SAAS,WAAW,KACnC,MAAM,OACN;AACA,cAAM,QAAQ,MAAM,OAAO,WAAW,MAAM,SAAS,MAAM;AAC3D,cAAM,IAAI;AAAA,UACR,mCAAmC,QAAQ,KAAK,KAAK;AAAA;AAAA;AAAA,mCAGf,KAAK,OAAO,gBAAgB;AAAA;AAAA,QAEpE;AAAA,MACF;AACA,YAAM;AAAA,IACR;AAAA,EACF;AAAA,EAEA,MAAc,yBACZ,KACA,YACoE;AACpE,UAAM,UAAkC;AAAA,MACtC,eAAe,KAAK;AAAA,IACtB;AAEA,QAAI,cAAc,KAAK,SAAS;AAC9B,YAAM,SAAS,OAAO,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,IAAI,IAAI,EAAE;AAC5D,YAAM,cAAc,MAAM,KAAK,oBAAoB,YAAY,MAAM;AACrE,aAAO,OAAO,SAAS,WAAW;AAAA,IACpC;AAEA,QAAI;AAEF,YAAM,WAA0B,MAAM,MAAM,IAAI,KAAK;AAAA,QACnD;AAAA,QACA,cAAc;AAAA,QACd,gBAAgB,MAAM;AAAA;AAAA,MACxB,CAAC;AAED,YAAM,SAAS,SAAS;AACxB,YAAM,aAAa,UAAU,OAAO,SAAS,MAAM,OAAO;AAE1D,UAAI,SAAS,OAAO,UAAU,KAAK;AACjC,cAAM,OACJ,OAAO,SAAS,SAAS,WAAW,SAAS,OAAO,KAAK,UAAU,SAAS,IAAI;AAClF,cAAM,IAAI,MAAM,2BAA2B,MAAM,IAAI,UAAU,MAAM,IAAI,EAAE;AAAA,MAC7E;AAGA,aAAO;AAAA,QACL,MAAM,YAAY,SAAS;AAAA,QAC3B,MAAM,YACJ,OAAO,SAAS,SAAS,WAAW,SAAS,OAAO,KAAK,UAAU,SAAS,IAAI;AAAA,MACpF;AAAA,IACF,SAAS,OAAY;AAEnB,UACE,MAAM,SAAS,SAAS,cAAc,KACtC,MAAM,SAAS,SAAS,cAAc,KACtC,MAAM,SAAS,SAAS,WAAW,KACnC,MAAM,OACN;AACA,cAAM,QAAQ,MAAM,OAAO,WAAW,MAAM,SAAS,MAAM;AAC3D,cAAM,IAAI;AAAA,UACR,mCAAmC,GAAG,KAAK,KAAK;AAAA;AAAA;AAAA,mCAGV,KAAK,OAAO,gBAAgB;AAAA;AAAA,QAEpE;AAAA,MACF;AAEA,YAAM;AAAA,IACR;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,oBACZ,YACA,QACiC;AACjC,QAAI,CAAC,KAAK,SAAS;AACjB,YAAM,IAAI,MAAM,iDAAiD;AAAA,IACnE;AAEA,QAAI,CAAC,KAAK,QAAQ;AAChB,YAAM,IAAI,MAAM,6CAA6C;AAAA,IAC/D;AAEA,UAAM,QAAQ,eAAe,KAAK,OAAO,OAAO;AAEhD,UAAM,eAAe,mBAAmB;AAAA,MACtC;AAAA,MACA,WAAW,KAAK,KAAK,MAAM;AAAA,IAC7B,CAAC;AAGD,UAAM,EAAE,UAAU,IAAI,MAAM,6BAA6B;AAAA,MACvD;AAAA,MACA;AAAA,MACA,sBAAsB,KAAK,OAAO;AAAA,MAClC;AAAA,MACA,SAAS,KAAK;AAAA,IAChB,CAAC;AAGD,WAAO;AAAA,MACL,eAAe,UAAU,eAAe,SAAS,CAAC;AAAA,MAClD,mBAAmB,OAAO,SAAS;AAAA,IACrC;AAAA,EACF;AACF;;;AI5XO,SAAS,qBAAqB,QAAqC;AACxE,SAAO,WAAW,YAAY,WAAW;AAC3C;;;ACFO,IAAM,aAAN,MAA4C;AAAA;AAAA;AAAA;AAAA,EAIjD,MAAM,UAAU,SAAgC;AAAA,EAEhD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAuB;AAAA,EAE7B;AACF;AAKO,SAAS,aAAa,QAAkC;AAC7D,SAAO,kBAAkB;AAC3B;;;ACxBA,SAAS,eAAe;AAMjB,IAAM,gBAAN,MAA+C;AAAA,EAKpD,YAAY,aAA6B,WAAmB,QAAgB,UAAmB;AAC7F,SAAK,YAAY;AACjB,SAAK,iBAAiB;AAItB,UAAM,OAAO,YAAY;AAEzB,SAAK,SAAS,IAAI,QAAQ,QAAQ;AAAA,MAChC;AAAA,MACA,SAAS;AAAA;AAAA,MACT,eAAe;AAAA;AAAA,IACjB,CAAC;AAGD,SAAK,OAAO,SAAS;AAAA,MACnB,YAAY,YAAY;AAAA,MACxB,YAAY;AAAA,QACV,IAAI,YAAY;AAAA,QAChB,MAAM,YAAY;AAAA,QAClB,GAAI,YAAY,aAAa,EAAE,YAAY,YAAY,WAAW,IAAI,CAAC;AAAA,MACzE;AAAA,IACF,CAAC;AAAA,EACH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAU,QAA+B;AAE7C,QAAI;AAEF,YAAM,QAA6B;AAAA,QACjC,MAAM,OAAO;AAAA,QACb,OAAO,OAAO;AAAA,MAChB;AAGA,iBAAW,CAAC,GAAG,CAAC,KAAK,OAAO,QAAQ,OAAO,UAAU,GAAG;AACtD,cAAM,CAAC,IAAI;AAAA,MACb;AAIA,WAAK,OAAO,QAAQ;AAAA,QAClB,YAAY,KAAK,eAAe;AAAA,QAChC,OAAO,KAAK;AAAA,QACZ,YAAY;AAAA,MACd,CAAC;AAAA,IACH,QAAQ;AAAA,IAER;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAuB;AAC3B,QAAI;AAGF,WAAK,OAAO,SAAS;AAAA,IACvB,QAAQ;AAAA,IAER;AAAA,EACF;AACF;AAYO,SAAS,mBAAuC;AAKrD,MAAI,QAAQ,IAAI,oBAAoB;AAClC,WAAO,QAAQ,IAAI;AAAA,EACrB;AAIA,SAAO,OAAoD,oDAA6B;AAC1F;AAKO,SAAS,qBAA6B;AAC3C,SAAO,QAAQ,IAAI,2BAA2B;AAChD;;;ACzGO,SAAS,uBAAuC;AACrD,SAAO;AAAA,IACL,WAAW,oBAAI,KAAK;AAAA,IACpB,SAAS,CAAC;AAAA,IACV,YAAY,CAAC;AAAA,EACf;AACF;AAKO,SAAS,UAAU,SAAyB,MAAc,OAAqB;AACpF,0BAAwB,SAAS,MAAM,OAAO,CAAC,CAAC;AAClD;AAKO,SAAS,wBACd,SACA,MACA,OACA,YACM;AACN,UAAQ,QAAQ,KAAK;AAAA,IACnB;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACH;;;AC5BA,YAAY,QAAQ;;;ACIpB,SAAS,kBAAkB;AAM3B,SAAS,qBAA6B;AACpC,SAAO,WAAW;AACpB;AA4CA,eAAsB,iBACpB,SACA,QACY;AAEZ,MAAI,QAAQ,eAAe;AACzB,WAAO,OAAO;AAAA,EAChB;AAIA,QAAM,WAAW,QAAQ,YAAY,mBAAmB;AAExD,QAAM,cAAc,qBAAqB,QAAQ;AACjD,QAAM,SAAS,sBAAsB,aAAa,cAAc;AAAA,IAC9D,kBAAkB,QAAQ;AAAA,IAC1B,QAAQ,QAAQ;AAAA,IAChB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACD,QAAM,UAAU,qBAAqB;AAGrC,UAAQ,WAAW,QAAQ,IAAI;AAG/B,UAAQ,WAAW,UAAU,IAAI,QAAQ;AAGzC,MAAI,QAAQ,YAAY;AACtB,WAAO,OAAO,QAAQ,YAAY,QAAQ,UAAU;AAAA,EACtD;AAGA,YAAU,SAAS,SAAS,CAAC;AAE7B,MAAI;AACJ,MAAI;AAEJ,MAAI;AACF,aAAS,MAAM,OAAO;AACtB,WAAO;AAAA,EACT,SAAS,KAAK;AACZ,kBAAc,eAAe,QAAQ,MAAM,IAAI,MAAM,OAAO,GAAG,CAAC;AAChE,UAAM;AAAA,EACR,UAAE;AAEA,UAAM,cAAc,cAAc,YAAY;AAC9C,UAAM,aAAqC,CAAC;AAC5C,QAAI,aAAa;AACf,iBAAW,OAAO,IAAI,YAAY;AAAA,IACpC;AACA,4BAAwB,SAAS,aAAa,GAAG,UAAU;AAG3D,UAAM,WAAW,KAAK,IAAI,IAAI,QAAQ,UAAU,QAAQ;AACxD,cAAU,SAAS,wBAAwB,QAAQ;AAGnD,QAAI;AACF,YAAM,YAAY,QAAQ,OAAO;AACjC,YAAM,OAAO,MAAM;AAAA,IACrB,QAAQ;AAAA,IAER;AAAA,EACF;AACF;;;ADvFO,SAAS,sBACd,aACA,WACA,SACiB;AAIjB,QAAM,mBAAmB,SAAS,qBAAqB;AAGvD,MAAI,CAAC,kBAAkB;AACrB,WAAO,IAAI,WAAW;AAAA,EACxB;AAGA,QAAM,iBAAiB,SAAS,UAAU,iBAAiB;AAC3D,MAAI,CAAC,gBAAgB;AAEnB,WAAO,IAAI,WAAW;AAAA,EACxB;AAGA,QAAM,WAAW,SAAS,YAAY,mBAAmB;AAEzD,MAAI;AACF,WAAO,IAAI,cAAc,aAAa,WAAW,gBAAgB,QAAQ;AAAA,EAC3E,QAAQ;AAEN,WAAO,IAAI,WAAW;AAAA,EACxB;AACF;AAWO,SAAS,qBACd,UACA,YACA,YACA,cACgB;AAChB,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA,IAAI,cAAiB,YAAS;AAAA,IAC9B,MAAM,gBAAmB,QAAK;AAAA,EAChC;AACF;AASA,eAAsB,YACpB,QACA,SAIe;AACf,MAAI,aAAa,MAAM,GAAG;AACxB;AAAA,EACF;AAGA,aAAW,UAAU,QAAQ,SAAS;AACpC,UAAM,aAAa;AAAA,MACjB,GAAG,OAAO;AAAA,MACV,GAAG,QAAQ;AAAA,IACb;AAEA,UAAM,uBAA+B;AAAA,MACnC,GAAG;AAAA,MACH;AAAA,IACF;AAEA,QAAI;AACF,YAAM,OAAO,UAAU,oBAAoB;AAAA,IAC7C,QAAQ;AAAA,IAER;AAAA,EACF;AACF;;;AElIO,IAAM,gBAAwB;AAAA,EACnC,MAAM,IAAI,SAAS,QAAQ,KAAK,GAAG,IAAI;AAAA,EACvC,MAAM,IAAI,SAAS,QAAQ,KAAK,GAAG,IAAI;AAAA,EACvC,OAAO,IAAI,SAAS,QAAQ,MAAM,GAAG,IAAI;AAAA,EACzC,OAAO,IAAI,SAAS,QAAQ,MAAM,GAAG,IAAI;AAC3C;AAEO,IAAM,YAA2C,CAAC,aAAuB;AAAA,EAC9E,MAAM,IAAI,SAAS,QAAQ,KAAK,GAAG,IAAI;AAAA,EACvC,MAAM,IAAI,SAAS,QAAQ,KAAK,GAAG,IAAI;AAAA,EACvC,OAAO,IAAI,SAAS,QAAQ,MAAM,GAAG,IAAI;AAAA,EACzC,OAAO,IAAI,SAAS,WAAW,QAAQ,MAAM,GAAG,IAAI;AACtD;;;ACdA,YAAY,UAAU;AACtB,SAAS,qBAAqB;AAOvB,SAAS,aAAqB;AAEnC,MAAI,OAAO,cAAc,aAAa;AACpC,WAAO;AAAA,EACT;AAKA,MAAI;AACF,UAAM,UAAU,YAAY;AAC5B,WAAY,aAAQ,cAAc,OAAO,CAAC;AAAA,EAC5C,QAAQ;AAEN,WAAO,QAAQ,IAAI;AAAA,EACrB;AACF;","names":["sepolia","sepolia","path"]}

package/dist/{chunk-LUFEUEOG.js → chunk-MQ2NGP4C.js}

@@ -17,7 +17,7 @@ import {
   getLogger,
   stripHexPrefix,
   withSDKTelemetry
-} from "./chunk-73YDSHDG.js";
+} from "./chunk-AOZRDBLK.js";
 
 // src/client/common/contract/eip7702.ts
 import {
@@ -2756,20 +2756,20 @@ async function prepareDeployBatch(options, logger) {
     environmentConfig
   };
 }
-async function executeDeployBatch(prepared, gas, logger) {
+async function executeDeployBatch(data, context, gas, logger) {
   const pendingMessage = "Deploying new app...";
   const txHash = await executeBatch(
     {
-      walletClient: prepared.walletClient,
-      publicClient: prepared.publicClient,
-      environmentConfig: prepared.environmentConfig,
-      executions: prepared.executions,
+      walletClient: context.walletClient,
+      publicClient: context.publicClient,
+      environmentConfig: context.environmentConfig,
+      executions: data.executions,
       pendingMessage,
       gas
     },
     logger
   );
-  return { appId: prepared.appId, txHash };
+  return { appId: data.appId, txHash };
 }
 async function deployApp(options, logger) {
   const prepared = await prepareDeployBatch(
@@ -2783,7 +2783,17 @@ async function deployApp(options, logger) {
     },
     logger
   );
-  return executeDeployBatch(prepared, options.gas, logger);
+  const data = {
+    appId: prepared.appId,
+    salt: prepared.salt,
+    executions: prepared.executions
+  };
+  const context = {
+    walletClient: prepared.walletClient,
+    publicClient: prepared.publicClient,
+    environmentConfig: prepared.environmentConfig
+  };
+  return executeDeployBatch(data, context, options.gas, logger);
 }
 async function prepareUpgradeBatch(options) {
   const {
@@ -2879,14 +2889,14 @@ async function prepareUpgradeBatch(options) {
     environmentConfig
   };
 }
-async function executeUpgradeBatch(prepared, gas, logger) {
-  const pendingMessage = `Upgrading app ${prepared.appId}...`;
+async function executeUpgradeBatch(data, context, gas, logger) {
+  const pendingMessage = `Upgrading app ${data.appId}...`;
   const txHash = await executeBatch(
     {
-      walletClient: prepared.walletClient,
-      publicClient: prepared.publicClient,
-      environmentConfig: prepared.environmentConfig,
-      executions: prepared.executions,
+      walletClient: context.walletClient,
+      publicClient: context.publicClient,
+      environmentConfig: context.environmentConfig,
+      executions: data.executions,
       pendingMessage,
       gas
     },
@@ -2904,7 +2914,16 @@ async function upgradeApp(options, logger) {
     publicLogs: options.publicLogs,
     needsPermissionChange: options.needsPermissionChange
   });
-  return executeUpgradeBatch(prepared, options.gas, logger);
+  const data = {
+    appId: prepared.appId,
+    executions: prepared.executions
+  };
+  const context = {
+    walletClient: prepared.walletClient,
+    publicClient: prepared.publicClient,
+    environmentConfig: prepared.environmentConfig
+  };
+  return executeUpgradeBatch(data, context, options.gas, logger);
 }
 async function sendAndWaitForTransaction(options, logger) {
   const {
@@ -3643,6 +3662,7 @@ async function buildDockerImage(buildContext, dockerfilePath, tag, logger) {
     tag,
     "-f",
     dockerfilePath,
+    "--load",
     "--progress=plain",
     buildContext
   ];
@@ -3766,9 +3786,9 @@ async function pullDockerImage(docker, imageTag, platform = "linux/amd64", logge
 
 // src/client/common/docker/push.ts
 import * as child_process2 from "child_process";
-import { exec as exec3 } from "child_process";
+import { execFile } from "child_process";
 import { promisify as promisify2 } from "util";
-var execAsync = promisify2(exec3);
+var execFileAsync = promisify2(execFile);
 async function pushDockerImage(docker, imageRef, logger) {
   logger?.info?.(`Pushing image ${imageRef}...`);
   return new Promise((resolve2, reject) => {
@@ -3835,7 +3855,7 @@ async function verifyImageExists(imageRef, logger) {
   let retries = 5;
   while (retries > 0) {
     try {
-      await execAsync(`docker manifest inspect ${imageRef}`, {
+      await execFileAsync("docker", ["manifest", "inspect", imageRef], {
         maxBuffer: 10 * 1024 * 1024,
         timeout: 1e4
         // 10 second timeout
@@ -4293,10 +4313,10 @@ async function setupLayeredBuildDirectory(environmentConfig, layeredDockerfileCo
 // src/client/common/registry/digest.ts
 import * as child_process3 from "child_process";
 import { promisify as promisify3 } from "util";
-var execFileAsync = promisify3(child_process3.execFile);
+var execFileAsync2 = promisify3(child_process3.execFile);
 async function getImageDigestAndName(imageRef) {
   try {
-    const { stdout } = await execFileAsync(
+    const { stdout } = await execFileAsync2(
       "docker",
       ["manifest", "inspect", imageRef],
       { maxBuffer: 10 * 1024 * 1024 }
@@ -4336,7 +4356,7 @@ function extractDigestFromMultiPlatform(manifest, imageRef) {
 }
 async function extractDigestFromSinglePlatform(manifest, imageRef) {
   try {
-    const { stdout } = await execFileAsync("docker", ["inspect", imageRef], {
+    const { stdout } = await execFileAsync2("docker", ["inspect", imageRef], {
       maxBuffer: 10 * 1024 * 1024
     });
     const inspectData = JSON.parse(stdout);
@@ -5038,23 +5058,24 @@ async function prepareDeploy(options, logger = defaultLogger) {
         environmentConfig: batch.environmentConfig,
         executions: batch.executions
       });
+      const data = {
+        appId: batch.appId,
+        salt: batch.salt,
+        executions: batch.executions
+      };
       return {
         prepared: {
-          batch,
+          data,
           appName,
-          imageRef: finalImageRef,
-          preflightCtx: {
-            privateKey: preflightCtx.privateKey,
-            rpcUrl: preflightCtx.rpcUrl,
-            environmentConfig: preflightCtx.environmentConfig
-          }
+          imageRef: finalImageRef
         },
         gasEstimate
       };
     }
   );
 }
-async function executeDeploy(prepared, gas, logger = defaultLogger, skipTelemetry) {
+async function executeDeploy(options) {
+  const { prepared, context, gas, logger = defaultLogger, skipTelemetry } = options;
   return withSDKTelemetry(
     {
       functionName: "executeDeploy",
@@ -5062,7 +5083,7 @@ async function executeDeploy(prepared, gas, logger = defaultLogger, skipTelemetr
     },
     async () => {
       logger.info("Deploying on-chain...");
-      const { appId, txHash } = await executeDeployBatch(prepared.batch, gas, logger);
+      const { appId, txHash } = await executeDeployBatch(prepared.data, context, gas, logger);
       return {
         appId,
         txHash,
@@ -5289,23 +5310,23 @@ async function prepareUpgrade(options, logger = defaultLogger) {
         environmentConfig: batch.environmentConfig,
         executions: batch.executions
       });
+      const data = {
+        appId: batch.appId,
+        executions: batch.executions
+      };
       return {
         prepared: {
-          batch,
+          data,
           appId: appID,
-          imageRef: finalImageRef,
-          preflightCtx: {
-            privateKey: preflightCtx.privateKey,
-            rpcUrl: preflightCtx.rpcUrl,
-            environmentConfig: preflightCtx.environmentConfig
-          }
+          imageRef: finalImageRef
         },
         gasEstimate
       };
     }
   );
 }
-async function executeUpgrade(prepared, gas, logger = defaultLogger, skipTelemetry) {
+async function executeUpgrade(options) {
+  const { prepared, context, gas, logger = defaultLogger, skipTelemetry } = options;
   return withSDKTelemetry(
     {
       functionName: "executeUpgrade",
@@ -5313,7 +5334,7 @@ async function executeUpgrade(prepared, gas, logger = defaultLogger, skipTelemet
     },
     async () => {
       logger.info("Upgrading on-chain...");
-      const txHash = await executeUpgradeBatch(prepared.batch, gas, logger);
+      const txHash = await executeUpgradeBatch(prepared.data, context, gas, logger);
       return {
         appId: prepared.appId,
         imageRef: prepared.imageRef,
@@ -5442,10 +5463,10 @@ import * as path6 from "path";
 import * as fs5 from "fs";
 import * as path4 from "path";
 import * as os2 from "os";
-import { exec as exec4, execFile as execFile2 } from "child_process";
+import { exec as exec3, execFile as execFile3 } from "child_process";
 import { promisify as promisify4 } from "util";
-var execAsync2 = promisify4(exec4);
-var execFileAsync2 = promisify4(execFile2);
+var execAsync = promisify4(exec3);
+var execFileAsync3 = promisify4(execFile3);
 async function fetchTemplate(repoURL, ref, targetDir, config, logger) {
   if (!repoURL) {
     throw new Error("repoURL is required");
@@ -5454,13 +5475,13 @@ async function fetchTemplate(repoURL, ref, targetDir, config, logger) {
 Cloning repo: ${repoURL} \u2192 ${targetDir}
 `);
   try {
-    await execAsync2(`git clone --no-checkout --progress ${repoURL} ${targetDir}`, {
+    await execAsync(`git clone --no-checkout --progress ${repoURL} ${targetDir}`, {
       maxBuffer: 10 * 1024 * 1024
     });
-    await execFileAsync2("git", ["-C", targetDir, "checkout", "--quiet", ref], {
+    await execFileAsync3("git", ["-C", targetDir, "checkout", "--quiet", ref], {
       maxBuffer: 10 * 1024 * 1024
     });
-    await execFileAsync2(
+    await execFileAsync3(
       "git",
       ["-C", targetDir, "submodule", "update", "--init", "--recursive", "--progress"],
       { maxBuffer: 10 * 1024 * 1024 }
@@ -5505,14 +5526,14 @@ Cloning template: ${repoURL} \u2192 extracting ${subPath}
 }
 async function cloneSparse(repoURL, ref, subPath, tempDir) {
   try {
-    await execFileAsync2("git", ["init", tempDir]);
-    await execFileAsync2("git", ["-C", tempDir, "remote", "add", "origin", repoURL]);
-    await execFileAsync2("git", ["-C", tempDir, "config", "core.sparseCheckout", "true"]);
+    await execFileAsync3("git", ["init", tempDir]);
+    await execFileAsync3("git", ["-C", tempDir, "remote", "add", "origin", repoURL]);
+    await execFileAsync3("git", ["-C", tempDir, "config", "core.sparseCheckout", "true"]);
     const sparseCheckoutPath = path4.join(tempDir, ".git/info/sparse-checkout");
     fs5.writeFileSync(sparseCheckoutPath, `${subPath}
 `);
-    await execFileAsync2("git", ["-C", tempDir, "fetch", "origin", ref]);
-    await execFileAsync2("git", ["-C", tempDir, "checkout", ref]);
+    await execFileAsync3("git", ["-C", tempDir, "fetch", "origin", ref]);
+    await execFileAsync3("git", ["-C", tempDir, "checkout", ref]);
   } catch (error) {
     throw new Error(`Failed to clone sparse repository: ${error.message}`);
   }
@@ -6005,7 +6026,14 @@ async function logs(options, logger = defaultLogger, skipTelemetry = false) {
 }
 
 // src/client/modules/compute/app/index.ts
-import { parseAbi, encodeFunctionData as encodeFunctionData3 } from "viem";
+import {
+  parseAbi,
+  encodeFunctionData as encodeFunctionData3,
+  createWalletClient as createWalletClient2,
+  createPublicClient as createPublicClient4,
+  http as http4
+} from "viem";
+import { privateKeyToAccount as privateKeyToAccount3 } from "viem/accounts";
 var CONTROLLER_ABI = parseAbi([
   "function startApp(address appId)",
   "function stopApp(address appId)",
@@ -6088,6 +6116,151 @@ function createAppModule(ctx) {
         imageRef: result.imageRef
       };
     },
+    // Granular deploy control
+    async prepareDeploy(opts) {
+      return prepareDeploy(
+        {
+          privateKey,
+          rpcUrl: ctx.rpcUrl,
+          environment: ctx.environment,
+          appName: opts.name,
+          instanceType: opts.instanceType,
+          dockerfilePath: opts.dockerfile,
+          envFilePath: opts.envFile,
+          imageRef: opts.imageRef,
+          logVisibility: opts.logVisibility,
+          resourceUsageMonitoring: opts.resourceUsageMonitoring,
+          skipTelemetry
+        },
+        logger
+      );
+    },
+    async executeDeploy(prepared, gas) {
+      const account = privateKeyToAccount3(privateKey);
+      const chain = getChainFromID(environment.chainID);
+      const publicClient = createPublicClient4({
+        chain,
+        transport: http4(ctx.rpcUrl)
+      });
+      const walletClient = createWalletClient2({
+        account,
+        chain,
+        transport: http4(ctx.rpcUrl)
+      });
+      const result = await executeDeploy({
+        prepared,
+        context: {
+          walletClient,
+          publicClient,
+          environmentConfig: environment
+        },
+        gas,
+        logger,
+        skipTelemetry
+      });
+      return {
+        appId: result.appId,
+        txHash: result.txHash,
+        appName: result.appName,
+        imageRef: result.imageRef
+      };
+    },
+    async watchDeployment(appId) {
+      return watchDeployment(
+        appId,
+        privateKey,
+        ctx.rpcUrl,
+        ctx.environment,
+        logger,
+        ctx.clientId,
+        skipTelemetry
+      );
+    },
+    // Granular upgrade control
+    async prepareUpgrade(appId, opts) {
+      return prepareUpgrade(
+        {
+          appId,
+          privateKey,
+          rpcUrl: ctx.rpcUrl,
+          environment: ctx.environment,
+          instanceType: opts.instanceType,
+          dockerfilePath: opts.dockerfile,
+          envFilePath: opts.envFile,
+          imageRef: opts.imageRef,
+          logVisibility: opts.logVisibility,
+          resourceUsageMonitoring: opts.resourceUsageMonitoring,
+          skipTelemetry
+        },
+        logger
+      );
+    },
+    async executeUpgrade(prepared, gas) {
+      const account = privateKeyToAccount3(privateKey);
+      const chain = getChainFromID(environment.chainID);
+      const publicClient = createPublicClient4({
+        chain,
+        transport: http4(ctx.rpcUrl)
+      });
+      const walletClient = createWalletClient2({
+        account,
+        chain,
+        transport: http4(ctx.rpcUrl)
+      });
+      const result = await executeUpgrade({
+        prepared,
+        context: {
+          walletClient,
+          publicClient,
+          environmentConfig: environment
+        },
+        gas,
+        logger,
+        skipTelemetry
+      });
+      return {
+        appId: result.appId,
+        txHash: result.txHash,
+        imageRef: result.imageRef
+      };
+    },
+    async watchUpgrade(appId) {
+      return watchUpgrade(
+        appId,
+        privateKey,
+        ctx.rpcUrl,
+        ctx.environment,
+        logger,
+        ctx.clientId,
+        skipTelemetry
+      );
+    },
+    // Profile management
+    async setProfile(appId, profile) {
+      return withSDKTelemetry(
+        {
+          functionName: "setProfile",
+          skipTelemetry,
+          properties: { environment: ctx.environment }
+        },
+        async () => {
+          const userApiClient = new UserApiClient(
+            environment,
+            privateKey,
+            ctx.rpcUrl,
+            ctx.clientId
+          );
+          return userApiClient.uploadAppProfile(
+            appId,
+            profile.name,
+            profile.website,
+            profile.description,
+            profile.xURL,
+            profile.imagePath
+          );
+        }
+      );
+    },
     async logs(opts) {
       return logs(
         {
@@ -6286,4 +6459,4 @@ export {
   createAppModule,
   createComputeModule
 };
-//# sourceMappingURL=chunk-LUFEUEOG.js.map
+//# sourceMappingURL=chunk-MQ2NGP4C.js.map