@lit-protocol/vincent-ability-relay-link 1.0.0

package/dist/src/lib/helpers/safe.js

@@ -0,0 +1,98 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.transactionsToSafeUserOp = transactionsToSafeUserOp;
+exports.sendPermittedSafeUserOperation = sendPermittedSafeUserOperation;
+const viem_1 = require("viem");
+const accounts_1 = require("viem/accounts");
+const account_abstraction_1 = require("viem/account-abstraction");
+const permissionless_1 = require("permissionless");
+const accounts_2 = require("permissionless/accounts");
+const pimlico_1 = require("permissionless/clients/pimlico");
+const safeVersion = '1.4.1';
+const entryPoint = {
+    address: account_abstraction_1.entryPoint07Address,
+    version: '0.7',
+};
+/**
+ * Create a dummy account for the PKP address.
+ * Returns dummy signatures for estimation/building.
+ */
+function addressToAccount(address) {
+    return (0, accounts_1.toAccount)({
+        address,
+        async signMessage() {
+            return `0x${'00'.repeat(65)}`;
+        },
+        async signTypedData() {
+            return `0x${'00'.repeat(65)}`;
+        },
+        async signTransaction() {
+            return `0x${'00'.repeat(65)}`;
+        },
+    });
+}
+/**
+ * Create a Safe UserOp from transactions.
+ * Returns the unsigned UserOp that needs to be signed by the Vincent ability.
+ */
+async function transactionsToSafeUserOp({ safeAddress, permittedAddress, transactions, chain, safeRpcUrl, pimlicoRpcUrl, }) {
+    const safeTransport = (0, viem_1.http)(safeRpcUrl);
+    const pimlicoTransport = (0, viem_1.http)(pimlicoRpcUrl);
+    const publicClient = (0, viem_1.createPublicClient)({
+        chain,
+        transport: safeTransport,
+    });
+    const pimlicoClient = (0, pimlico_1.createPimlicoClient)({
+        entryPoint,
+        transport: pimlicoTransport,
+    });
+    // Create a dummy signer for the PKP address
+    const dummySigner = addressToAccount(permittedAddress);
+    // We re-instantiate the account using the Safe address and the dummy PKP as the signer
+    const safeAccount = await (0, accounts_2.toSafeSmartAccount)({
+        entryPoint,
+        address: safeAddress,
+        client: publicClient,
+        owners: [dummySigner],
+        version: safeVersion,
+    });
+    const safeClient = (0, permissionless_1.createSmartAccountClient)({
+        chain,
+        account: safeAccount,
+        bundlerTransport: pimlicoTransport,
+        client: publicClient,
+        paymaster: pimlicoClient,
+    });
+    const calls = transactions.map((tx) => ({
+        data: tx.data,
+        to: tx.to,
+        value: tx.value,
+    }));
+    const userOp = await safeClient.prepareUserOperation({
+        calls,
+        account: safeAccount,
+    });
+    console.log('[transactionsToSafeUserOp] Prepared unsigned userOp');
+    return userOp;
+}
+/**
+ * Send a signed Safe UserOp to the bundler.
+ * Returns the transaction hash.
+ */
+async function sendPermittedSafeUserOperation({ signedUserOp, chain, pimlicoRpcUrl, }) {
+    const pimlicoTransport = (0, viem_1.http)(pimlicoRpcUrl);
+    const bundlerClient = (0, account_abstraction_1.createBundlerClient)({
+        chain,
+        transport: pimlicoTransport,
+    });
+    console.log('[sendPermittedSafeUserOperation] Broadcasting user op to the network...');
+    const userOpHash = await bundlerClient.sendUserOperation(signedUserOp);
+    console.log('[sendPermittedSafeUserOperation] UserOp hash:', userOpHash);
+    const receipt = await bundlerClient.waitForUserOperationReceipt({
+        hash: userOpHash,
+    });
+    const txHash = receipt.receipt.transactionHash;
+    console.log('[sendPermittedSafeUserOperation] Transaction hash:', txHash);
+    return txHash;
+}
+//# sourceMappingURL=safe.js.map

package/dist/src/lib/helpers/safe.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"safe.js","sourceRoot":"","sources":["../../../../src/lib/helpers/safe.ts"],"names":[],"mappings":";;AA6DA,4DAuDC;AAMD,wEAyBC;AAlJD,+BAAgD;AAChD,4CAA0C;AAC1C,kEAAoF;AACpF,mDAA0D;AAC1D,sDAA6D;AAC7D,4DAAqE;AA0BrE,MAAM,WAAW,GAAG,OAAO,CAAC;AAC5B,MAAM,UAAU,GAAG;IACjB,OAAO,EAAE,yCAAmB;IAC5B,OAAO,EAAE,KAAK;CACN,CAAC;AAEX;;;GAGG;AACH,SAAS,gBAAgB,CAAC,OAAgB;IACxC,OAAO,IAAA,oBAAS,EAAC;QACf,OAAO;QACP,KAAK,CAAC,WAAW;YACf,OAAO,KAAK,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,EAAS,CAAC;QACvC,CAAC;QACD,KAAK,CAAC,aAAa;YACjB,OAAO,KAAK,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,EAAS,CAAC;QACvC,CAAC;QACD,KAAK,CAAC,eAAe;YACnB,OAAO,KAAK,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,EAAS,CAAC;QACvC,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,wBAAwB,CAAC,EAC7C,WAAW,EACX,gBAAgB,EAChB,YAAY,EACZ,KAAK,EACL,UAAU,EACV,aAAa,GACkB;IAC/B,MAAM,aAAa,GAAG,IAAA,WAAI,EAAC,UAAU,CAAC,CAAC;IACvC,MAAM,gBAAgB,GAAG,IAAA,WAAI,EAAC,aAAa,CAAC,CAAC;IAE7C,MAAM,YAAY,GAAG,IAAA,yBAAkB,EAAC;QACtC,KAAK;QACL,SAAS,EAAE,aAAa;KACzB,CAAC,CAAC;IAEH,MAAM,aAAa,GAAG,IAAA,6BAAmB,EAAC;QACxC,UAAU;QACV,SAAS,EAAE,gBAAgB;KAC5B,CAAC,CAAC;IAEH,4CAA4C;IAC5C,MAAM,WAAW,GAAG,gBAAgB,CAAC,gBAAgB,CAAC,CAAC;IAEvD,uFAAuF;IACvF,MAAM,WAAW,GAAG,MAAM,IAAA,6BAAkB,EAAC;QAC3C,UAAU;QACV,OAAO,EAAE,WAAW;QACpB,MAAM,EAAE,YAAY;QACpB,MAAM,EAAE,CAAC,WAAW,CAAC;QACrB,OAAO,EAAE,WAAW;KACrB,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,IAAA,yCAAwB,EAAC;QAC1C,KAAK;QACL,OAAO,EAAE,WAAW;QACpB,gBAAgB,EAAE,gBAAgB;QAClC,MAAM,EAAE,YAAY;QACpB,SAAS,EAAE,aAAa;KACzB,CAAC,CAAC;IAEH,MAAM,KAAK,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACtC,IAAI,EAAE,EAAE,CAAC,IAAI;QACb,EAAE,EAAE,EAAE,CAAC,EAAE;QACT,KAAK,EAAE,EAAE,CAAC,KAAK;KAChB,CAAC,CAAC,CAAC;IAEJ,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,oBAAoB,CAAC;QACnD,KAAK;QACL,OAAO,EAAE,WAAW;KACrB,CAAC,CAAC;IAEH,OAAO,CAAC,GAAG,CAAC,qDAAqD,CAAC,CAAC;IAEnE,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,8BAA8B,CAAC,EACnD,YAAY,EACZ,KAAK,EACL,aAAa,GACwB;IACrC,MAAM,gBAAgB,GAAG,IAAA,WAAI,EAAC,aAAa,CAAC,CAAC;IAE7C,MAAM,aAAa,GAAG,IAAA,yCAAmB,EAAC;QACxC,KAAK;QACL,SAAS,EAAE,gBAAgB;KAC5B,CAAC,CAAC;IAEH,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;IAEvF,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,iBAAiB,CAAC,YAAmB,CAAC,CAAC;IAC9E,OAAO,CAAC,GAAG,CAAC,+CAA+C,EAAE,UAAU,CAAC,CAAC;IAEzE,MAAM,OAAO,GAAG,MAAM,aAAa,CAAC,2BAA2B,CAAC;QAC9D,IAAI,EAAE,UAAU;KACjB,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC;IAC/C,OAAO,CAAC,GAAG,CAAC,oDAAoD,EAAE,MAAM,CAAC,CAAC;IAE1E,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/src/lib/helpers/transactionKind.d.ts

@@ -0,0 +1,5 @@
+export declare enum TransactionKind {
+    RELAY_LINK = "relay-link",
+    ERC20 = "erc20"
+}
+//# sourceMappingURL=transactionKind.d.ts.map

package/dist/src/lib/helpers/transactionKind.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"transactionKind.d.ts","sourceRoot":"","sources":["../../../../src/lib/helpers/transactionKind.ts"],"names":[],"mappings":"AAAA,oBAAY,eAAe;IACzB,UAAU,eAAe;IACzB,KAAK,UAAU;CAChB"}

package/dist/src/lib/helpers/transactionKind.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TransactionKind = void 0;
+var TransactionKind;
+(function (TransactionKind) {
+    TransactionKind["RELAY_LINK"] = "relay-link";
+    TransactionKind["ERC20"] = "erc20";
+})(TransactionKind || (exports.TransactionKind = TransactionKind = {}));
+//# sourceMappingURL=transactionKind.js.map

package/dist/src/lib/helpers/transactionKind.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"transactionKind.js","sourceRoot":"","sources":["../../../../src/lib/helpers/transactionKind.ts"],"names":[],"mappings":";;;AAAA,IAAY,eAGX;AAHD,WAAY,eAAe;IACzB,4CAAyB,CAAA;IACzB,kCAAe,CAAA;AACjB,CAAC,EAHW,eAAe,+BAAf,eAAe,QAG1B"}

package/dist/src/lib/helpers/zerodev.d.ts

@@ -0,0 +1,58 @@
+import type { Chain, Hex } from 'viem';
+export interface ZerodevTransaction {
+    to: `0x${string}`;
+    data: `0x${string}`;
+    value: string;
+}
+export interface RelayTransactionToUserOpParams {
+    permittedAddress: `0x${string}`;
+    serializedPermissionAccount: string;
+    transaction: {
+        to: `0x${string}`;
+        data: `0x${string}`;
+        value: string;
+        chainId: number;
+        from: `0x${string}`;
+    };
+    chain: Chain;
+    zerodevRpcUrl: string;
+}
+export interface TransactionsToZerodevUserOpParams {
+    permittedAddress: `0x${string}`;
+    serializedPermissionAccount: string;
+    transactions: ZerodevTransaction[];
+    chain: Chain;
+    zerodevRpcUrl: string;
+}
+export interface SubmitSignedUserOpParams {
+    permittedAddress: `0x${string}`;
+    serializedPermissionAccount: string;
+    userOpSignature: Hex;
+    userOp: Record<string, unknown>;
+    chain: Chain;
+    zerodevRpcUrl: string;
+}
+/**
+ * Convert multiple transactions to a single batched UserOperation for smart account execution.
+ * This is useful for operations that require multiple steps (e.g., ERC20 approve + swap).
+ */
+export declare function transactionsToZerodevUserOp(params: TransactionsToZerodevUserOpParams): Promise<Record<string, unknown>>;
+/**
+ * Convert a Relay.link transaction to a UserOperation for smart account execution.
+ * This is a convenience wrapper around transactionsToZerodevUserOp for single transactions.
+ */
+export declare function relayTransactionToUserOp(params: RelayTransactionToUserOpParams): Promise<Record<string, unknown>>;
+/**
+ * Submit a signed UserOperation to the ZeroDev bundler.
+ *
+ * This follows the Kernel v3 signature format:
+ * - The signature is prefixed with 0xff to indicate "raw signature mode"
+ * - This tells the Kernel account to use the signature as-is without additional processing
+ *
+ * Returns both the UserOp hash and the transaction hash once mined.
+ */
+export declare function submitSignedUserOp(params: SubmitSignedUserOpParams): Promise<{
+    userOpHash: Hex;
+    transactionHash: Hex;
+}>;
+//# sourceMappingURL=zerodev.d.ts.map

package/dist/src/lib/helpers/zerodev.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"zerodev.d.ts","sourceRoot":"","sources":["../../../../src/lib/helpers/zerodev.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,KAAK,EAAE,GAAG,EAAE,MAAM,MAAM,CAAC;AAUvC,MAAM,WAAW,kBAAkB;IACjC,EAAE,EAAE,KAAK,MAAM,EAAE,CAAC;IAClB,IAAI,EAAE,KAAK,MAAM,EAAE,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,8BAA8B;IAC7C,gBAAgB,EAAE,KAAK,MAAM,EAAE,CAAC;IAChC,2BAA2B,EAAE,MAAM,CAAC;IACpC,WAAW,EAAE;QACX,EAAE,EAAE,KAAK,MAAM,EAAE,CAAC;QAClB,IAAI,EAAE,KAAK,MAAM,EAAE,CAAC;QACpB,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,EAAE,KAAK,MAAM,EAAE,CAAC;KACrB,CAAC;IACF,KAAK,EAAE,KAAK,CAAC;IACb,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,iCAAiC;IAChD,gBAAgB,EAAE,KAAK,MAAM,EAAE,CAAC;IAChC,2BAA2B,EAAE,MAAM,CAAC;IACpC,YAAY,EAAE,kBAAkB,EAAE,CAAC;IACnC,KAAK,EAAE,KAAK,CAAC;IACb,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,wBAAwB;IACvC,gBAAgB,EAAE,KAAK,MAAM,EAAE,CAAC;IAChC,2BAA2B,EAAE,MAAM,CAAC;IACpC,eAAe,EAAE,GAAG,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,KAAK,EAAE,KAAK,CAAC;IACb,aAAa,EAAE,MAAM,CAAC;CACvB;AAaD;;;GAGG;AACH,wBAAsB,2BAA2B,CAC/C,MAAM,EAAE,iCAAiC,GACxC,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CA6ClC;AAED;;;GAGG;AACH,wBAAsB,wBAAwB,CAC5C,MAAM,EAAE,8BAA8B,GACrC,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAiBlC;AAED;;;;;;;;GAQG;AACH,wBAAsB,kBAAkB,CACtC,MAAM,EAAE,wBAAwB,GAC/B,OAAO,CAAC;IAAE,UAAU,EAAE,GAAG,CAAC;IAAC,eAAe,EAAE,GAAG,CAAA;CAAE,CAAC,CA+DpD"}

package/dist/src/lib/helpers/zerodev.js

@@ -0,0 +1,127 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.transactionsToZerodevUserOp = transactionsToZerodevUserOp;
+exports.relayTransactionToUserOp = relayTransactionToUserOp;
+exports.submitSignedUserOp = submitSignedUserOp;
+const viem_1 = require("viem");
+const permissions_1 = require("@zerodev/permissions");
+const signers_1 = require("@zerodev/permissions/signers");
+const sdk_1 = require("@zerodev/sdk");
+const constants_1 = require("@zerodev/sdk/constants");
+const kernelVersion = constants_1.KERNEL_V3_3;
+const entryPoint = (0, constants_1.getEntryPoint)('0.7');
+/**
+ * Creates the modular signer for deserializing permission accounts.
+ * This matches how the permission account was created during setup.
+ */
+async function createPermittedSigner(permittedAddress) {
+    const permittedEmptyAccount = (0, sdk_1.addressToEmptyAccount)(permittedAddress);
+    return await (0, signers_1.toECDSASigner)({
+        signer: permittedEmptyAccount,
+    });
+}
+/**
+ * Convert multiple transactions to a single batched UserOperation for smart account execution.
+ * This is useful for operations that require multiple steps (e.g., ERC20 approve + swap).
+ */
+async function transactionsToZerodevUserOp(params) {
+    const { permittedAddress, serializedPermissionAccount, transactions, chain, zerodevRpcUrl } = params;
+    // Create ZeroDev transport
+    const zerodevTransport = (0, viem_1.http)(zerodevRpcUrl);
+    // Create public client
+    const publicClient = (0, viem_1.createPublicClient)({
+        chain,
+        transport: zerodevTransport,
+    });
+    // Create the signer that matches how the permission account was serialized
+    const permittedSigner = await createPermittedSigner(permittedAddress);
+    // Deserialize the permission account with the signer
+    const permissionAccount = await (0, permissions_1.deserializePermissionAccount)(publicClient, entryPoint, kernelVersion, serializedPermissionAccount, permittedSigner);
+    // Create kernel client with the permission account
+    const kernelClient = (0, sdk_1.createKernelAccountClient)({
+        chain,
+        account: permissionAccount,
+        bundlerTransport: zerodevTransport,
+        client: publicClient,
+    });
+    // Prepare the UserOp with batched calls
+    const userOp = await kernelClient.prepareUserOperation({
+        callData: await permissionAccount.encodeCalls(transactions.map((tx) => ({
+            to: tx.to,
+            value: BigInt(tx.value || '0'),
+            data: tx.data,
+        }))),
+    });
+    return userOp;
+}
+/**
+ * Convert a Relay.link transaction to a UserOperation for smart account execution.
+ * This is a convenience wrapper around transactionsToZerodevUserOp for single transactions.
+ */
+async function relayTransactionToUserOp(params) {
+    const { permittedAddress, serializedPermissionAccount, transaction, chain, zerodevRpcUrl } = params;
+    return transactionsToZerodevUserOp({
+        permittedAddress,
+        serializedPermissionAccount,
+        transactions: [
+            {
+                to: transaction.to,
+                data: transaction.data,
+                value: transaction.value,
+            },
+        ],
+        chain,
+        zerodevRpcUrl,
+    });
+}
+/**
+ * Submit a signed UserOperation to the ZeroDev bundler.
+ *
+ * This follows the Kernel v3 signature format:
+ * - The signature is prefixed with 0xff to indicate "raw signature mode"
+ * - This tells the Kernel account to use the signature as-is without additional processing
+ *
+ * Returns both the UserOp hash and the transaction hash once mined.
+ */
+async function submitSignedUserOp(params) {
+    const { permittedAddress, serializedPermissionAccount, userOpSignature, userOp, chain, zerodevRpcUrl, } = params;
+    // Create ZeroDev transport for bundler
+    const zerodevTransport = (0, viem_1.http)(zerodevRpcUrl);
+    // Create public client
+    const publicClient = (0, viem_1.createPublicClient)({
+        chain,
+        transport: zerodevTransport,
+    });
+    // Create the signer that matches how the permission account was serialized
+    const permittedSigner = await createPermittedSigner(permittedAddress);
+    // Deserialize the permission account with the signer
+    const permissionAccount = await (0, permissions_1.deserializePermissionAccount)(publicClient, entryPoint, kernelVersion, serializedPermissionAccount, permittedSigner);
+    // Create kernel client with ZeroDev bundler
+    // No paymaster - smart account will pay for gas using its own balance
+    const kernelClient = (0, sdk_1.createKernelAccountClient)({
+        chain,
+        account: permissionAccount,
+        bundlerTransport: zerodevTransport,
+        client: publicClient,
+    });
+    // Add signature to UserOp with 0xff prefix per Kernel v3 validation
+    // The 0xff prefix indicates "raw signature mode" - use signature as-is
+    const signedUserOp = {
+        ...userOp,
+        signature: (0, viem_1.concat)(['0xff', userOpSignature]),
+    };
+    console.log('[submitSignedUserOp] Broadcasting UserOp to ZeroDev bundler...');
+    const userOpHash = await kernelClient.sendUserOperation(signedUserOp);
+    console.log(`[submitSignedUserOp] UserOp hash: ${userOpHash}`);
+    console.log('[submitSignedUserOp] Waiting for UserOp to be included in a block...');
+    const receipt = await kernelClient.waitForUserOperationReceipt({
+        hash: userOpHash,
+    });
+    console.log('[submitSignedUserOp] ✅ UserOp executed successfully!');
+    console.log(`[submitSignedUserOp] Transaction hash: ${receipt.receipt.transactionHash}`);
+    return {
+        userOpHash,
+        transactionHash: receipt.receipt.transactionHash,
+    };
+}
+//# sourceMappingURL=zerodev.js.map

package/dist/src/lib/helpers/zerodev.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zerodev.js","sourceRoot":"","sources":["../../../../src/lib/helpers/zerodev.ts"],"names":[],"mappings":";;AA8DA,kEA+CC;AAMD,4DAmBC;AAWD,gDAiEC;AAjND,+BAAwD;AACxD,sDAAoE;AACpE,0DAA6D;AAC7D,sCAAgF;AAChF,sDAAoE;AAEpE,MAAM,aAAa,GAAG,uBAAW,CAAC;AAClC,MAAM,UAAU,GAAG,IAAA,yBAAa,EAAC,KAAK,CAAC,CAAC;AAuCxC;;;GAGG;AACH,KAAK,UAAU,qBAAqB,CAAC,gBAA+B;IAClE,MAAM,qBAAqB,GAAG,IAAA,2BAAqB,EAAC,gBAAgB,CAAC,CAAC;IACtE,OAAO,MAAM,IAAA,uBAAa,EAAC;QACzB,MAAM,EAAE,qBAAqB;KAC9B,CAAC,CAAC;AACL,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,2BAA2B,CAC/C,MAAyC;IAEzC,MAAM,EAAE,gBAAgB,EAAE,2BAA2B,EAAE,YAAY,EAAE,KAAK,EAAE,aAAa,EAAE,GACzF,MAAM,CAAC;IAET,2BAA2B;IAC3B,MAAM,gBAAgB,GAAG,IAAA,WAAI,EAAC,aAAa,CAAC,CAAC;IAE7C,uBAAuB;IACvB,MAAM,YAAY,GAAG,IAAA,yBAAkB,EAAC;QACtC,KAAK;QACL,SAAS,EAAE,gBAAgB;KAC5B,CAAC,CAAC;IAEH,2EAA2E;IAC3E,MAAM,eAAe,GAAG,MAAM,qBAAqB,CAAC,gBAAgB,CAAC,CAAC;IAEtE,qDAAqD;IACrD,MAAM,iBAAiB,GAAG,MAAM,IAAA,0CAA4B,EAC1D,YAAY,EACZ,UAAU,EACV,aAAa,EACb,2BAA2B,EAC3B,eAAe,CAChB,CAAC;IAEF,mDAAmD;IACnD,MAAM,YAAY,GAAG,IAAA,+BAAyB,EAAC;QAC7C,KAAK;QACL,OAAO,EAAE,iBAAiB;QAC1B,gBAAgB,EAAE,gBAAgB;QAClC,MAAM,EAAE,YAAY;KACrB,CAAC,CAAC;IAEH,wCAAwC;IACxC,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,oBAAoB,CAAC;QACrD,QAAQ,EAAE,MAAM,iBAAiB,CAAC,WAAW,CAC3C,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;YACxB,EAAE,EAAE,EAAE,CAAC,EAAE;YACT,KAAK,EAAE,MAAM,CAAC,EAAE,CAAC,KAAK,IAAI,GAAG,CAAC;YAC9B,IAAI,EAAE,EAAE,CAAC,IAAI;SACd,CAAC,CAAC,CACJ;KACF,CAAC,CAAC;IAEH,OAAO,MAA4C,CAAC;AACtD,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,wBAAwB,CAC5C,MAAsC;IAEtC,MAAM,EAAE,gBAAgB,EAAE,2BAA2B,EAAE,WAAW,EAAE,KAAK,EAAE,aAAa,EAAE,GACxF,MAAM,CAAC;IAET,OAAO,2BAA2B,CAAC;QACjC,gBAAgB;QAChB,2BAA2B;QAC3B,YAAY,EAAE;YACZ;gBACE,EAAE,EAAE,WAAW,CAAC,EAAE;gBAClB,IAAI,EAAE,WAAW,CAAC,IAAI;gBACtB,KAAK,EAAE,WAAW,CAAC,KAAK;aACzB;SACF;QACD,KAAK;QACL,aAAa;KACd,CAAC,CAAC;AACL,CAAC;AAED;;;;;;;;GAQG;AACI,KAAK,UAAU,kBAAkB,CACtC,MAAgC;IAEhC,MAAM,EACJ,gBAAgB,EAChB,2BAA2B,EAC3B,eAAe,EACf,MAAM,EACN,KAAK,EACL,aAAa,GACd,GAAG,MAAM,CAAC;IAEX,uCAAuC;IACvC,MAAM,gBAAgB,GAAG,IAAA,WAAI,EAAC,aAAa,CAAC,CAAC;IAE7C,uBAAuB;IACvB,MAAM,YAAY,GAAG,IAAA,yBAAkB,EAAC;QACtC,KAAK;QACL,SAAS,EAAE,gBAAgB;KAC5B,CAAC,CAAC;IAEH,2EAA2E;IAC3E,MAAM,eAAe,GAAG,MAAM,qBAAqB,CAAC,gBAAgB,CAAC,CAAC;IAEtE,qDAAqD;IACrD,MAAM,iBAAiB,GAAG,MAAM,IAAA,0CAA4B,EAC1D,YAAY,EACZ,UAAU,EACV,aAAa,EACb,2BAA2B,EAC3B,eAAe,CAChB,CAAC;IAEF,4CAA4C;IAC5C,sEAAsE;IACtE,MAAM,YAAY,GAAG,IAAA,+BAAyB,EAAC;QAC7C,KAAK;QACL,OAAO,EAAE,iBAAiB;QAC1B,gBAAgB,EAAE,gBAAgB;QAClC,MAAM,EAAE,YAAY;KACrB,CAAC,CAAC;IAEH,oEAAoE;IACpE,uEAAuE;IACvE,MAAM,YAAY,GAAG;QACnB,GAAG,MAAM;QACT,SAAS,EAAE,IAAA,aAAM,EAAC,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;KAC7C,CAAC;IAEF,OAAO,CAAC,GAAG,CAAC,gEAAgE,CAAC,CAAC;IAC9E,MAAM,UAAU,GAAG,MAAM,YAAY,CAAC,iBAAiB,CAAC,YAAmB,CAAC,CAAC;IAC7E,OAAO,CAAC,GAAG,CAAC,qCAAqC,UAAU,EAAE,CAAC,CAAC;IAE/D,OAAO,CAAC,GAAG,CAAC,sEAAsE,CAAC,CAAC;IACpF,MAAM,OAAO,GAAG,MAAM,YAAY,CAAC,2BAA2B,CAAC;QAC7D,IAAI,EAAE,UAAU;KACjB,CAAC,CAAC;IAEH,OAAO,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,0CAA0C,OAAO,CAAC,OAAO,CAAC,eAAe,EAAE,CAAC,CAAC;IAEzF,OAAO;QACL,UAAU;QACV,eAAe,EAAE,OAAO,CAAC,OAAO,CAAC,eAAe;KACjD,CAAC;AACJ,CAAC"}

package/dist/src/lib/lit-action.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=lit-action.d.ts.map

package/dist/src/lib/lit-action.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"lit-action.d.ts","sourceRoot":"","sources":["../../../src/lib/lit-action.ts"],"names":[],"mappings":""}

package/dist/src/lib/lit-action.js

@@ -0,0 +1,15 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const vincent_ability_sdk_1 = require("@lit-protocol/vincent-ability-sdk");
+const vincent_ability_1 = require("src/lib/vincent-ability");
+(async () => {
+    const func = (0, vincent_ability_sdk_1.vincentAbilityHandler)({
+        vincentAbility: vincent_ability_1.vincentAbility,
+        context: {
+            delegatorPkpEthAddress: context.delegatorPkpEthAddress,
+        },
+        abilityParams,
+    });
+    await func();
+})();
+//# sourceMappingURL=lit-action.js.map

package/dist/src/lib/lit-action.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"lit-action.js","sourceRoot":"","sources":["../../../src/lib/lit-action.ts"],"names":[],"mappings":";;AAEA,2EAA0E;AAE1E,6DAAyD;AASzD,CAAC,KAAK,IAAI,EAAE;IACV,MAAM,IAAI,GAAG,IAAA,2CAAqB,EAAC;QACjC,cAAc,EAAE,gCAAc;QAC9B,OAAO,EAAE;YACP,sBAAsB,EAAE,OAAO,CAAC,sBAAsB;SACvD;QACD,aAAa;KACd,CAAC,CAAC;IACH,MAAM,IAAI,EAAE,CAAC;AACf,CAAC,CAAC,EAAE,CAAC"}

package/dist/src/lib/validateSimulation.d.ts

@@ -0,0 +1,3 @@
+import type { ValidateSimulationParams } from '@lit-protocol/vincent-ability-sdk/gatedSigner';
+export declare const validateSimulation: (params: ValidateSimulationParams) => Promise<void>;
+//# sourceMappingURL=validateSimulation.d.ts.map

package/dist/src/lib/validateSimulation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validateSimulation.d.ts","sourceRoot":"","sources":["../../../src/lib/validateSimulation.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,wBAAwB,EAEzB,MAAM,+CAA+C,CAAC;AAevD,eAAO,MAAM,kBAAkB,GAAU,QAAQ,wBAAwB,kBAkIxE,CAAC"}

package/dist/src/lib/validateSimulation.js

@@ -0,0 +1,116 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.validateSimulation = void 0;
+const viem_1 = require("viem");
+const relay_link_1 = require("./helpers/relay-link");
+// Fixed Relay Solver address for EVM chains
+// See: https://docs.relay.link/references/solver-addresses
+const RELAY_SOLVER_ADDRESS = '0xf70da97812cb96acdf810712aa562db8dfa3dbef';
+// Fee range in basis points (1 bps = 0.01%)
+const MIN_FEE_BPS = 0n; // 0%
+const MAX_FEE_BPS = 100n; // 1%
+const validateSimulation = async (params) => {
+    const { chainId, sender: _sender, simulation } = params;
+    if (simulation.error) {
+        const { message, revertReason } = simulation.error;
+        throw new Error(`Simulation failed - Reason: ${revertReason} - Message: ${message}`);
+    }
+    // Fetch Relay contract addresses from the API
+    const relayAddresses = await (0, relay_link_1.fetchRelayLinkAddresses)(chainId);
+    const sender = (0, viem_1.getAddress)(_sender, chainId);
+    // Build set of allowed addresses: sender, zero address, and all Relay.link contracts
+    const relayAddressesNormalized = relayAddresses.map((a) => (0, viem_1.getAddress)(a, chainId));
+    const allowed = new Set([viem_1.zeroAddress, sender, ...relayAddressesNormalized]);
+    // Normalize the solver address for comparison
+    const solverAddress = (0, viem_1.getAddress)(RELAY_SOLVER_ADDRESS, chainId);
+    // Track input amounts per token (ERC20 transfers FROM sender)
+    const inputByToken = new Map();
+    // Track fee amounts per token (ERC20 transfers TO the Relay Solver)
+    const feesByToken = new Map();
+    simulation.changes.forEach((c, idx) => {
+        const assetType = c.assetType;
+        const changeType = c.changeType;
+        const from = (0, viem_1.getAddress)(c.from, chainId);
+        const to = (0, viem_1.getAddress)(c.to, chainId);
+        // Helper for throwing with context
+        const fail = (reason) => {
+            throw new Error(`Invalid simulation change at index ${idx}: ${reason} [assetType=${assetType}, changeType=${changeType}, from=${from}, to=${to}]`);
+        };
+        if (assetType === 'NATIVE') {
+            if (changeType !== 'TRANSFER') {
+                fail('Only TRANSFER is allowed for NATIVE');
+            }
+            // Track native input (from sender) - use zeroAddress as the "token" for native ETH
+            if (from === sender && c.rawAmount) {
+                inputByToken.set(viem_1.zeroAddress, (inputByToken.get(viem_1.zeroAddress) || 0n) + BigInt(c.rawAmount));
+            }
+            // Track native fee (to solver)
+            if (to === solverAddress && c.rawAmount) {
+                feesByToken.set(viem_1.zeroAddress, (feesByToken.get(viem_1.zeroAddress) || 0n) + BigInt(c.rawAmount));
+            }
+            return;
+        }
+        if (assetType === 'ERC20') {
+            if (changeType === 'APPROVE') {
+                // We only validate approvals FROM the sender to ensure user tokens aren't
+                // approved to malicious contracts. Intermediate approvals (from DEX aggregators,
+                // routers, or other contracts in the swap route) are orchestrated by Relay.link
+                // and don't affect the user's tokens directly.
+                if (from === sender) {
+                    // Sender's approvals must go to known Relay.link contracts
+                    const isToRelay = relayAddressesNormalized.some((addr) => addr === to);
+                    if (!isToRelay) {
+                        fail('ERC20 APPROVE from sender must go to a Relay.link contract');
+                    }
+                }
+                // Approvals from other addresses (intermediate contracts) are allowed
+                // as they're part of Relay.link's swap orchestration
+                return;
+            }
+            if (changeType === 'TRANSFER') {
+                // For transfers FROM sender, ensure they go to allowed addresses (Relay contracts)
+                // For transfers TO sender, they're always allowed (receiving funds)
+                // Intermediate transfers (between aggregator contracts) are allowed since Relay orchestrates them
+                if (from === sender && !allowed.has(to)) {
+                    fail('ERC20 TRANSFER from sender must go to a Relay.link contract');
+                }
+                // Track input amounts (transfers FROM sender)
+                if (from === sender && c.contractAddress && c.rawAmount) {
+                    const token = (0, viem_1.getAddress)(c.contractAddress, chainId);
+                    const amount = BigInt(c.rawAmount);
+                    inputByToken.set(token, (inputByToken.get(token) || 0n) + amount);
+                }
+                // Track fee amounts (transfers TO the Relay Solver)
+                if (to === solverAddress && c.contractAddress && c.rawAmount) {
+                    const token = (0, viem_1.getAddress)(c.contractAddress, chainId);
+                    const amount = BigInt(c.rawAmount);
+                    feesByToken.set(token, (feesByToken.get(token) || 0n) + amount);
+                }
+                // Transfers to sender are always allowed (receiving swap output)
+                // Intermediate transfers (neither from nor to sender) are allowed as Relay uses aggregators
+                return;
+            }
+            // Unknown change type for ERC20
+            fail('Unsupported ERC20 change type');
+        }
+        // Any other asset types are not permitted
+        fail('Unsupported asset type');
+    });
+    // Validate fee percentages for tokens where we detected both input and fees
+    for (const [token, feeAmount] of feesByToken) {
+        const inputAmount = inputByToken.get(token);
+        // Only validate if we have input for this token (otherwise we can't calculate a percentage)
+        if (inputAmount && inputAmount > 0n) {
+            // Calculate fee in basis points: (fee / input) * 10000
+            const feeBps = (feeAmount * 10000n) / inputAmount;
+            if (feeBps < MIN_FEE_BPS) {
+                throw new Error(`Fee too low: ${feeBps} bps for token ${token}. Minimum allowed: ${MIN_FEE_BPS} bps`);
+            }
+            if (feeBps > MAX_FEE_BPS) {
+                throw new Error(`Fee too high: ${feeBps} bps for token ${token}. Maximum allowed: ${MAX_FEE_BPS} bps`);
+            }
+        }
+    }
+};
+exports.validateSimulation = validateSimulation;
+//# sourceMappingURL=validateSimulation.js.map

package/dist/src/lib/validateSimulation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validateSimulation.js","sourceRoot":"","sources":["../../../src/lib/validateSimulation.ts"],"names":[],"mappings":";;;AAIA,+BAA6D;AAE7D,qDAA+D;AAI/D,4CAA4C;AAC5C,2DAA2D;AAC3D,MAAM,oBAAoB,GAAG,4CAAuD,CAAC;AAErF,4CAA4C;AAC5C,MAAM,WAAW,GAAG,EAAE,CAAC,CAAC,KAAK;AAC7B,MAAM,WAAW,GAAG,IAAI,CAAC,CAAC,KAAK;AAExB,MAAM,kBAAkB,GAAG,KAAK,EAAE,MAAgC,EAAE,EAAE;IAC3E,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,GAAG,MAAM,CAAC;IAExD,IAAI,UAAU,CAAC,KAAK,EAAE,CAAC;QACrB,MAAM,EAAE,OAAO,EAAE,YAAY,EAAE,GAAG,UAAU,CAAC,KAAK,CAAC;QACnD,MAAM,IAAI,KAAK,CAAC,+BAA+B,YAAY,eAAe,OAAO,EAAE,CAAC,CAAC;IACvF,CAAC;IAED,8CAA8C;IAC9C,MAAM,cAAc,GAAG,MAAM,IAAA,oCAAuB,EAAC,OAAO,CAAC,CAAC;IAC9D,MAAM,MAAM,GAAG,IAAA,iBAAU,EAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAE5C,qFAAqF;IACrF,MAAM,wBAAwB,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAA,iBAAU,EAAC,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;IACnF,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,CAAC,kBAAW,EAAE,MAAM,EAAE,GAAG,wBAAwB,CAAC,CAAC,CAAC;IAE5E,8CAA8C;IAC9C,MAAM,aAAa,GAAG,IAAA,iBAAU,EAAC,oBAAoB,EAAE,OAAO,CAAC,CAAC;IAEhE,8DAA8D;IAC9D,MAAM,YAAY,GAAG,IAAI,GAAG,EAAmB,CAAC;IAChD,oEAAoE;IACpE,MAAM,WAAW,GAAG,IAAI,GAAG,EAAmB,CAAC;IAE/C,UAAU,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAsB,EAAE,GAAW,EAAE,EAAE;QACjE,MAAM,SAAS,GAAG,CAAC,CAAC,SAAS,CAAC;QAC9B,MAAM,UAAU,GAAG,CAAC,CAAC,UAAU,CAAC;QAChC,MAAM,IAAI,GAAG,IAAA,iBAAU,EAAC,CAAC,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QACzC,MAAM,EAAE,GAAG,IAAA,iBAAU,EAAC,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QAErC,mCAAmC;QACnC,MAAM,IAAI,GAAG,CAAC,MAAc,EAAE,EAAE;YAC9B,MAAM,IAAI,KAAK,CACb,sCAAsC,GAAG,KAAK,MAAM,eAAe,SAAS,gBAAgB,UAAU,UAAU,IAAI,QAAQ,EAAE,GAAG,CAClI,CAAC;QACJ,CAAC,CAAC;QAEF,IAAI,SAAS,KAAK,QAAQ,EAAE,CAAC;YAC3B,IAAI,UAAU,KAAK,UAAU,EAAE,CAAC;gBAC9B,IAAI,CAAC,qCAAqC,CAAC,CAAC;YAC9C,CAAC;YAED,mFAAmF;YACnF,IAAI,IAAI,KAAK,MAAM,IAAI,CAAC,CAAC,SAAS,EAAE,CAAC;gBACnC,YAAY,CAAC,GAAG,CAAC,kBAAW,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,kBAAW,CAAC,IAAI,EAAE,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC;YAC7F,CAAC;YAED,+BAA+B;YAC/B,IAAI,EAAE,KAAK,aAAa,IAAI,CAAC,CAAC,SAAS,EAAE,CAAC;gBACxC,WAAW,CAAC,GAAG,CAAC,kBAAW,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,kBAAW,CAAC,IAAI,EAAE,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC;YAC3F,CAAC;YAED,OAAO;QACT,CAAC;QAED,IAAI,SAAS,KAAK,OAAO,EAAE,CAAC;YAC1B,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;gBAC7B,0EAA0E;gBAC1E,iFAAiF;gBACjF,gFAAgF;gBAChF,+CAA+C;gBAC/C,IAAI,IAAI,KAAK,MAAM,EAAE,CAAC;oBACpB,2DAA2D;oBAC3D,MAAM,SAAS,GAAG,wBAAwB,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,KAAK,EAAE,CAAC,CAAC;oBACvE,IAAI,CAAC,SAAS,EAAE,CAAC;wBACf,IAAI,CAAC,4DAA4D,CAAC,CAAC;oBACrE,CAAC;gBACH,CAAC;gBACD,sEAAsE;gBACtE,qDAAqD;gBACrD,OAAO;YACT,CAAC;YAED,IAAI,UAAU,KAAK,UAAU,EAAE,CAAC;gBAC9B,mFAAmF;gBACnF,oEAAoE;gBACpE,kGAAkG;gBAClG,IAAI,IAAI,KAAK,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;oBACxC,IAAI,CAAC,6DAA6D,CAAC,CAAC;gBACtE,CAAC;gBAED,8CAA8C;gBAC9C,IAAI,IAAI,KAAK,MAAM,IAAI,CAAC,CAAC,eAAe,IAAI,CAAC,CAAC,SAAS,EAAE,CAAC;oBACxD,MAAM,KAAK,GAAG,IAAA,iBAAU,EAAC,CAAC,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC;oBACrD,MAAM,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;oBACnC,YAAY,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,GAAG,MAAM,CAAC,CAAC;gBACpE,CAAC;gBAED,oDAAoD;gBACpD,IAAI,EAAE,KAAK,aAAa,IAAI,CAAC,CAAC,eAAe,IAAI,CAAC,CAAC,SAAS,EAAE,CAAC;oBAC7D,MAAM,KAAK,GAAG,IAAA,iBAAU,EAAC,CAAC,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC;oBACrD,MAAM,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;oBACnC,WAAW,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,GAAG,MAAM,CAAC,CAAC;gBAClE,CAAC;gBAED,iEAAiE;gBACjE,4FAA4F;gBAC5F,OAAO;YACT,CAAC;YAED,gCAAgC;YAChC,IAAI,CAAC,+BAA+B,CAAC,CAAC;QACxC,CAAC;QAED,0CAA0C;QAC1C,IAAI,CAAC,wBAAwB,CAAC,CAAC;IACjC,CAAC,CAAC,CAAC;IAEH,4EAA4E;IAC5E,KAAK,MAAM,CAAC,KAAK,EAAE,SAAS,CAAC,IAAI,WAAW,EAAE,CAAC;QAC7C,MAAM,WAAW,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAE5C,4FAA4F;QAC5F,IAAI,WAAW,IAAI,WAAW,GAAG,EAAE,EAAE,CAAC;YACpC,uDAAuD;YACvD,MAAM,MAAM,GAAG,CAAC,SAAS,GAAG,MAAM,CAAC,GAAG,WAAW,CAAC;YAElD,IAAI,MAAM,GAAG,WAAW,EAAE,CAAC;gBACzB,MAAM,IAAI,KAAK,CACb,gBAAgB,MAAM,kBAAkB,KAAK,sBAAsB,WAAW,MAAM,CACrF,CAAC;YACJ,CAAC;YAED,IAAI,MAAM,GAAG,WAAW,EAAE,CAAC;gBACzB,MAAM,IAAI,KAAK,CACb,iBAAiB,MAAM,kBAAkB,KAAK,sBAAsB,WAAW,MAAM,CACtF,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAlIW,QAAA,kBAAkB,sBAkI7B"}

package/dist/src/lib/validateTransaction.d.ts

@@ -0,0 +1,3 @@
+import type { ValidateTransactionParams } from '@lit-protocol/vincent-ability-sdk/gatedSigner';
+export declare const validateTransaction: (params: ValidateTransactionParams) => Promise<void>;
+//# sourceMappingURL=validateTransaction.d.ts.map

package/dist/src/lib/validateTransaction.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validateTransaction.d.ts","sourceRoot":"","sources":["../../../src/lib/validateTransaction.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAGV,yBAAyB,EAC1B,MAAM,+CAA+C,CAAC;AAQvD,eAAO,MAAM,mBAAmB,GAAU,QAAQ,yBAAyB,kBAuD1E,CAAC"}

package/dist/src/lib/validateTransaction.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.validateTransaction = void 0;
+const viem_1 = require("viem");
+const relay_link_1 = require("./helpers/relay-link");
+const transactionKind_1 = require("./helpers/transactionKind");
+const validateTransaction = async (params) => {
+    const { chainId, decodedTransaction } = params;
+    if (decodedTransaction.kind === 'error') {
+        const decodedTransactionError = decodedTransaction;
+        throw new Error(`Transaction failed to decode: ${decodedTransactionError.message}`);
+    }
+    const decodedTransactionSuccess = decodedTransaction;
+    // Fetch Relay.link addresses for this chain from the API
+    const relayAddresses = await (0, relay_link_1.fetchRelayLinkAddresses)(chainId);
+    // Validate ERC20 transactions (approvals for Relay.link contracts)
+    if (decodedTransaction.kind === transactionKind_1.TransactionKind.ERC20) {
+        if (['approve', 'increaseAllowance'].includes(decodedTransactionSuccess.fn)) {
+            const [spender, amount] = decodedTransactionSuccess.args;
+            // Only allow approvals to Relay.link contracts
+            const isRelaySpender = relayAddresses.some((addr) => (0, viem_1.isAddressEqual)(spender, addr));
+            if (!isRelaySpender) {
+                throw new Error(`ERC20 approval to non-Relay.link spender ${spender}. Allowed: ${relayAddresses.join(', ')}`);
+            }
+            // Block infinite approvals for safety
+            if (amount === 2n ** 256n - 1n) {
+                throw new Error('Infinite approval not allowed');
+            }
+            return;
+        }
+        throw new Error(`ERC20 function ${decodedTransactionSuccess.fn} not allowed`);
+    }
+    // Validate Relay.link transactions
+    if (decodedTransaction.kind === transactionKind_1.TransactionKind.RELAY_LINK) {
+        const isValidTarget = relayAddresses.some((addr) => (0, viem_1.isAddressEqual)(decodedTransactionSuccess.to, addr));
+        if (!isValidTarget) {
+            throw new Error(`Transaction target ${decodedTransactionSuccess.to} is not a known Relay.link contract. Allowed: ${relayAddresses.join(', ')}`);
+        }
+        return;
+    }
+    throw new Error(`Unknown transaction kind: ${decodedTransaction.kind}. Only ERC20 approvals and Relay.link transactions are allowed.`);
+};
+exports.validateTransaction = validateTransaction;
+//# sourceMappingURL=validateTransaction.js.map

package/dist/src/lib/validateTransaction.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validateTransaction.js","sourceRoot":"","sources":["../../../src/lib/validateTransaction.ts"],"names":[],"mappings":";;;AAOA,+BAAsC;AAEtC,qDAA+D;AAC/D,+DAA4D;AAErD,MAAM,mBAAmB,GAAG,KAAK,EAAE,MAAiC,EAAE,EAAE;IAC7E,MAAM,EAAE,OAAO,EAAE,kBAAkB,EAAE,GAAG,MAAM,CAAC;IAE/C,IAAI,kBAAkB,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;QACxC,MAAM,uBAAuB,GAAG,kBAA6C,CAAC;QAC9E,MAAM,IAAI,KAAK,CAAC,iCAAiC,uBAAuB,CAAC,OAAO,EAAE,CAAC,CAAC;IACtF,CAAC;IAED,MAAM,yBAAyB,GAAG,kBAA+C,CAAC;IAElF,yDAAyD;IACzD,MAAM,cAAc,GAAG,MAAM,IAAA,oCAAuB,EAAC,OAAO,CAAC,CAAC;IAE9D,mEAAmE;IACnE,IAAI,kBAAkB,CAAC,IAAI,KAAK,iCAAe,CAAC,KAAK,EAAE,CAAC;QACtD,IAAI,CAAC,SAAS,EAAE,mBAAmB,CAAC,CAAC,QAAQ,CAAC,yBAAyB,CAAC,EAAE,CAAC,EAAE,CAAC;YAC5E,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,GAAG,yBAAyB,CAAC,IAAyB,CAAC;YAE9E,+CAA+C;YAC/C,MAAM,cAAc,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAA,qBAAc,EAAC,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC;YACpF,IAAI,CAAC,cAAc,EAAE,CAAC;gBACpB,MAAM,IAAI,KAAK,CACb,4CAA4C,OAAO,cAAc,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAC7F,CAAC;YACJ,CAAC;YAED,sCAAsC;YACtC,IAAI,MAAM,KAAK,EAAE,IAAI,IAAI,GAAG,EAAE,EAAE,CAAC;gBAC/B,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;YACnD,CAAC;YAED,OAAO;QACT,CAAC;QAED,MAAM,IAAI,KAAK,CAAC,kBAAkB,yBAAyB,CAAC,EAAE,cAAc,CAAC,CAAC;IAChF,CAAC;IAED,mCAAmC;IACnC,IAAI,kBAAkB,CAAC,IAAI,KAAK,iCAAe,CAAC,UAAU,EAAE,CAAC;QAC3D,MAAM,aAAa,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CACjD,IAAA,qBAAc,EAAC,yBAAyB,CAAC,EAAa,EAAE,IAAI,CAAC,CAC9D,CAAC;QAEF,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CACb,sBAAsB,yBAAyB,CAAC,EAAE,iDAAiD,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAC/H,CAAC;QACJ,CAAC;QAED,OAAO;IACT,CAAC;IAED,MAAM,IAAI,KAAK,CACb,6BAA6B,kBAAkB,CAAC,IAAI,iEAAiE,CACtH,CAAC;AACJ,CAAC,CAAC;AAvDW,QAAA,mBAAmB,uBAuD9B"}