@motebit/verify 0.7.0 → 1.0.0

package/dist/index.js

@@ -1,1513 +1,28 @@
-// ../../node_modules/.pnpm/@noble+ed25519@3.0.0/node_modules/@noble/ed25519/index.js
-var ed25519_CURVE = {
-  p: 0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffedn,
-  n: 0x1000000000000000000000000000000014def9dea2f79cd65812631a5cf5d3edn,
-  h: 8n,
-  a: 0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffecn,
-  d: 0x52036cee2b6ffe738cc740797779e89800700a4d4141d8ab75eb4dca135978a3n,
-  Gx: 0x216936d3cd6e53fec0a4e231fdd6dc5c692cc7609525a7b2c9562d608f25d51an,
-  Gy: 0x6666666666666666666666666666666666666666666666666666666666666658n
-};
-var { p: P, n: N, Gx, Gy, a: _a, d: _d, h } = ed25519_CURVE;
-var L = 32;
-var L2 = 64;
-var captureTrace = (...args) => {
-  if ("captureStackTrace" in Error && typeof Error.captureStackTrace === "function") {
-    Error.captureStackTrace(...args);
-  }
-};
-var err = (message = "") => {
-  const e = new Error(message);
-  captureTrace(e, err);
-  throw e;
-};
-var isBig = (n) => typeof n === "bigint";
-var isStr = (s) => typeof s === "string";
-var isBytes = (a) => a instanceof Uint8Array || ArrayBuffer.isView(a) && a.constructor.name === "Uint8Array";
-var abytes = (value, length, title = "") => {
-  const bytes = isBytes(value);
-  const len = value?.length;
-  const needsLen = length !== void 0;
-  if (!bytes || needsLen && len !== length) {
-    const prefix = title && `"${title}" `;
-    const ofLen = needsLen ? ` of length ${length}` : "";
-    const got = bytes ? `length=${len}` : `type=${typeof value}`;
-    err(prefix + "expected Uint8Array" + ofLen + ", got " + got);
-  }
-  return value;
-};
-var u8n = (len) => new Uint8Array(len);
-var u8fr = (buf) => Uint8Array.from(buf);
-var padh = (n, pad) => n.toString(16).padStart(pad, "0");
-var bytesToHex = (b) => Array.from(abytes(b)).map((e) => padh(e, 2)).join("");
-var C = { _0: 48, _9: 57, A: 65, F: 70, a: 97, f: 102 };
-var _ch = (ch) => {
-  if (ch >= C._0 && ch <= C._9)
-    return ch - C._0;
-  if (ch >= C.A && ch <= C.F)
-    return ch - (C.A - 10);
-  if (ch >= C.a && ch <= C.f)
-    return ch - (C.a - 10);
-  return;
-};
-var hexToBytes = (hex) => {
-  const e = "hex invalid";
-  if (!isStr(hex))
-    return err(e);
-  const hl = hex.length;
-  const al = hl / 2;
-  if (hl % 2)
-    return err(e);
-  const array = u8n(al);
-  for (let ai = 0, hi = 0; ai < al; ai++, hi += 2) {
-    const n1 = _ch(hex.charCodeAt(hi));
-    const n2 = _ch(hex.charCodeAt(hi + 1));
-    if (n1 === void 0 || n2 === void 0)
-      return err(e);
-    array[ai] = n1 * 16 + n2;
-  }
-  return array;
-};
-var cr = () => globalThis?.crypto;
-var subtle = () => cr()?.subtle ?? err("crypto.subtle must be defined, consider polyfill");
-var concatBytes = (...arrs) => {
-  const r = u8n(arrs.reduce((sum, a) => sum + abytes(a).length, 0));
-  let pad = 0;
-  arrs.forEach((a) => {
-    r.set(a, pad);
-    pad += a.length;
-  });
-  return r;
-};
-var big = BigInt;
-var assertRange = (n, min, max, msg = "bad number: out of range") => isBig(n) && min <= n && n < max ? n : err(msg);
-var M = (a, b = P) => {
-  const r = a % b;
-  return r >= 0n ? r : b + r;
-};
-var modN = (a) => M(a, N);
-var invert = (num, md) => {
-  if (num === 0n || md <= 0n)
-    err("no inverse n=" + num + " mod=" + md);
-  let a = M(num, md), b = md, x = 0n, y = 1n, u = 1n, v = 0n;
-  while (a !== 0n) {
-    const q = b / a, r = b % a;
-    const m = x - u * q, n = y - v * q;
-    b = a, a = r, x = u, y = v, u = m, v = n;
-  }
-  return b === 1n ? M(x, md) : err("no inverse");
-};
-var apoint = (p) => p instanceof Point ? p : err("Point expected");
-var B256 = 2n ** 256n;
-var Point = class _Point {
-  static BASE;
-  static ZERO;
-  X;
-  Y;
-  Z;
-  T;
-  constructor(X, Y, Z, T) {
-    const max = B256;
-    this.X = assertRange(X, 0n, max);
-    this.Y = assertRange(Y, 0n, max);
-    this.Z = assertRange(Z, 1n, max);
-    this.T = assertRange(T, 0n, max);
-    Object.freeze(this);
-  }
-  static CURVE() {
-    return ed25519_CURVE;
-  }
-  static fromAffine(p) {
-    return new _Point(p.x, p.y, 1n, M(p.x * p.y));
-  }
-  /** RFC8032 5.1.3: Uint8Array to Point. */
-  static fromBytes(hex, zip215 = false) {
-    const d = _d;
-    const normed = u8fr(abytes(hex, L));
-    const lastByte = hex[31];
-    normed[31] = lastByte & ~128;
-    const y = bytesToNumLE(normed);
-    const max = zip215 ? B256 : P;
-    assertRange(y, 0n, max);
-    const y2 = M(y * y);
-    const u = M(y2 - 1n);
-    const v = M(d * y2 + 1n);
-    let { isValid, value: x } = uvRatio(u, v);
-    if (!isValid)
-      err("bad point: y not sqrt");
-    const isXOdd = (x & 1n) === 1n;
-    const isLastByteOdd = (lastByte & 128) !== 0;
-    if (!zip215 && x === 0n && isLastByteOdd)
-      err("bad point: x==0, isLastByteOdd");
-    if (isLastByteOdd !== isXOdd)
-      x = M(-x);
-    return new _Point(x, y, 1n, M(x * y));
-  }
-  static fromHex(hex, zip215) {
-    return _Point.fromBytes(hexToBytes(hex), zip215);
-  }
-  get x() {
-    return this.toAffine().x;
-  }
-  get y() {
-    return this.toAffine().y;
-  }
-  /** Checks if the point is valid and on-curve. */
-  assertValidity() {
-    const a = _a;
-    const d = _d;
-    const p = this;
-    if (p.is0())
-      return err("bad point: ZERO");
-    const { X, Y, Z, T } = p;
-    const X2 = M(X * X);
-    const Y2 = M(Y * Y);
-    const Z2 = M(Z * Z);
-    const Z4 = M(Z2 * Z2);
-    const aX2 = M(X2 * a);
-    const left = M(Z2 * M(aX2 + Y2));
-    const right = M(Z4 + M(d * M(X2 * Y2)));
-    if (left !== right)
-      return err("bad point: equation left != right (1)");
-    const XY = M(X * Y);
-    const ZT = M(Z * T);
-    if (XY !== ZT)
-      return err("bad point: equation left != right (2)");
-    return this;
-  }
-  /** Equality check: compare points P&Q. */
-  equals(other) {
-    const { X: X1, Y: Y1, Z: Z1 } = this;
-    const { X: X2, Y: Y2, Z: Z2 } = apoint(other);
-    const X1Z2 = M(X1 * Z2);
-    const X2Z1 = M(X2 * Z1);
-    const Y1Z2 = M(Y1 * Z2);
-    const Y2Z1 = M(Y2 * Z1);
-    return X1Z2 === X2Z1 && Y1Z2 === Y2Z1;
-  }
-  is0() {
-    return this.equals(I);
-  }
-  /** Flip point over y coordinate. */
-  negate() {
-    return new _Point(M(-this.X), this.Y, this.Z, M(-this.T));
-  }
-  /** Point doubling. Complete formula. Cost: `4M + 4S + 1*a + 6add + 1*2`. */
-  double() {
-    const { X: X1, Y: Y1, Z: Z1 } = this;
-    const a = _a;
-    const A = M(X1 * X1);
-    const B = M(Y1 * Y1);
-    const C2 = M(2n * M(Z1 * Z1));
-    const D = M(a * A);
-    const x1y1 = X1 + Y1;
-    const E = M(M(x1y1 * x1y1) - A - B);
-    const G2 = D + B;
-    const F = G2 - C2;
-    const H = D - B;
-    const X3 = M(E * F);
-    const Y3 = M(G2 * H);
-    const T3 = M(E * H);
-    const Z3 = M(F * G2);
-    return new _Point(X3, Y3, Z3, T3);
-  }
-  /** Point addition. Complete formula. Cost: `8M + 1*k + 8add + 1*2`. */
-  add(other) {
-    const { X: X1, Y: Y1, Z: Z1, T: T1 } = this;
-    const { X: X2, Y: Y2, Z: Z2, T: T2 } = apoint(other);
-    const a = _a;
-    const d = _d;
-    const A = M(X1 * X2);
-    const B = M(Y1 * Y2);
-    const C2 = M(T1 * d * T2);
-    const D = M(Z1 * Z2);
-    const E = M((X1 + Y1) * (X2 + Y2) - A - B);
-    const F = M(D - C2);
-    const G2 = M(D + C2);
-    const H = M(B - a * A);
-    const X3 = M(E * F);
-    const Y3 = M(G2 * H);
-    const T3 = M(E * H);
-    const Z3 = M(F * G2);
-    return new _Point(X3, Y3, Z3, T3);
-  }
-  subtract(other) {
-    return this.add(apoint(other).negate());
-  }
-  /**
-   * Point-by-scalar multiplication. Scalar must be in range 1 <= n < CURVE.n.
-   * Uses {@link wNAF} for base point.
-   * Uses fake point to mitigate side-channel leakage.
-   * @param n scalar by which point is multiplied
-   * @param safe safe mode guards against timing attacks; unsafe mode is faster
-   */
-  multiply(n, safe = true) {
-    if (!safe && (n === 0n || this.is0()))
-      return I;
-    assertRange(n, 1n, N);
-    if (n === 1n)
-      return this;
-    if (this.equals(G))
-      return wNAF(n).p;
-    let p = I;
-    let f = G;
-    for (let d = this; n > 0n; d = d.double(), n >>= 1n) {
-      if (n & 1n)
-        p = p.add(d);
-      else if (safe)
-        f = f.add(d);
-    }
-    return p;
-  }
-  multiplyUnsafe(scalar) {
-    return this.multiply(scalar, false);
-  }
-  /** Convert point to 2d xy affine point. (X, Y, Z) ∋ (x=X/Z, y=Y/Z) */
-  toAffine() {
-    const { X, Y, Z } = this;
-    if (this.equals(I))
-      return { x: 0n, y: 1n };
-    const iz = invert(Z, P);
-    if (M(Z * iz) !== 1n)
-      err("invalid inverse");
-    const x = M(X * iz);
-    const y = M(Y * iz);
-    return { x, y };
-  }
-  toBytes() {
-    const { x, y } = this.assertValidity().toAffine();
-    const b = numTo32bLE(y);
-    b[31] |= x & 1n ? 128 : 0;
-    return b;
-  }
-  toHex() {
-    return bytesToHex(this.toBytes());
-  }
-  clearCofactor() {
-    return this.multiply(big(h), false);
-  }
-  isSmallOrder() {
-    return this.clearCofactor().is0();
-  }
-  isTorsionFree() {
-    let p = this.multiply(N / 2n, false).double();
-    if (N % 2n)
-      p = p.add(this);
-    return p.is0();
-  }
-};
-var G = new Point(Gx, Gy, 1n, M(Gx * Gy));
-var I = new Point(0n, 1n, 1n, 0n);
-Point.BASE = G;
-Point.ZERO = I;
-var numTo32bLE = (num) => hexToBytes(padh(assertRange(num, 0n, B256), L2)).reverse();
-var bytesToNumLE = (b) => big("0x" + bytesToHex(u8fr(abytes(b)).reverse()));
-var pow2 = (x, power) => {
-  let r = x;
-  while (power-- > 0n) {
-    r *= r;
-    r %= P;
-  }
-  return r;
-};
-var pow_2_252_3 = (x) => {
-  const x2 = x * x % P;
-  const b2 = x2 * x % P;
-  const b4 = pow2(b2, 2n) * b2 % P;
-  const b5 = pow2(b4, 1n) * x % P;
-  const b10 = pow2(b5, 5n) * b5 % P;
-  const b20 = pow2(b10, 10n) * b10 % P;
-  const b40 = pow2(b20, 20n) * b20 % P;
-  const b80 = pow2(b40, 40n) * b40 % P;
-  const b160 = pow2(b80, 80n) * b80 % P;
-  const b240 = pow2(b160, 80n) * b80 % P;
-  const b250 = pow2(b240, 10n) * b10 % P;
-  const pow_p_5_8 = pow2(b250, 2n) * x % P;
-  return { pow_p_5_8, b2 };
-};
-var RM1 = 0x2b8324804fc1df0b2b4d00993dfbd7a72f431806ad2fe478c4ee1b274a0ea0b0n;
-var uvRatio = (u, v) => {
-  const v3 = M(v * v * v);
-  const v7 = M(v3 * v3 * v);
-  const pow = pow_2_252_3(u * v7).pow_p_5_8;
-  let x = M(u * v3 * pow);
-  const vx2 = M(v * x * x);
-  const root1 = x;
-  const root2 = M(x * RM1);
-  const useRoot1 = vx2 === u;
-  const useRoot2 = vx2 === M(-u);
-  const noRoot = vx2 === M(-u * RM1);
-  if (useRoot1)
-    x = root1;
-  if (useRoot2 || noRoot)
-    x = root2;
-  if ((M(x) & 1n) === 1n)
-    x = M(-x);
-  return { isValid: useRoot1 || useRoot2, value: x };
-};
-var modL_LE = (hash) => modN(bytesToNumLE(hash));
-var sha512a = (...m) => hashes.sha512Async(concatBytes(...m));
-var hashFinishA = (res) => sha512a(res.hashable).then(res.finish);
-var defaultVerifyOpts = { zip215: true };
-var _verify = (sig, msg, pub, opts = defaultVerifyOpts) => {
-  sig = abytes(sig, L2);
-  msg = abytes(msg);
-  pub = abytes(pub, L);
-  const { zip215 } = opts;
-  let A;
-  let R;
-  let s;
-  let SB;
-  let hashable = Uint8Array.of();
-  try {
-    A = Point.fromBytes(pub, zip215);
-    R = Point.fromBytes(sig.slice(0, L), zip215);
-    s = bytesToNumLE(sig.slice(L, L2));
-    SB = G.multiply(s, false);
-    hashable = concatBytes(R.toBytes(), A.toBytes(), msg);
-  } catch (error) {
-  }
-  const finish = (hashed) => {
-    if (SB == null)
-      return false;
-    if (!zip215 && A.isSmallOrder())
-      return false;
-    const k = modL_LE(hashed);
-    const RkA = R.add(A.multiply(k, false));
-    return RkA.add(SB.negate()).clearCofactor().is0();
-  };
-  return { hashable, finish };
-};
-var verifyAsync = async (signature, message, publicKey, opts = defaultVerifyOpts) => hashFinishA(_verify(signature, message, publicKey, opts));
-var hashes = {
-  sha512Async: async (message) => {
-    const s = subtle();
-    const m = concatBytes(message);
-    return u8n(await s.digest("SHA-512", m.buffer));
-  },
-  sha512: void 0
-};
-var W = 8;
-var scalarBits = 256;
-var pwindows = Math.ceil(scalarBits / W) + 1;
-var pwindowSize = 2 ** (W - 1);
-var precompute = () => {
-  const points = [];
-  let p = G;
-  let b = p;
-  for (let w = 0; w < pwindows; w++) {
-    b = p;
-    points.push(b);
-    for (let i = 1; i < pwindowSize; i++) {
-      b = b.add(p);
-      points.push(b);
-    }
-    p = b.double();
-  }
-  return points;
-};
-var Gpows = void 0;
-var ctneg = (cnd, p) => {
-  const n = p.negate();
-  return cnd ? n : p;
-};
-var wNAF = (n) => {
-  const comp = Gpows || (Gpows = precompute());
-  let p = I;
-  let f = G;
-  const pow_2_w = 2 ** W;
-  const maxNum = pow_2_w;
-  const mask = big(pow_2_w - 1);
-  const shiftBy = big(W);
-  for (let w = 0; w < pwindows; w++) {
-    let wbits = Number(n & mask);
-    n >>= shiftBy;
-    if (wbits > pwindowSize) {
-      wbits -= maxNum;
-      n += 1n;
-    }
-    const off = w * pwindowSize;
-    const offF = off;
-    const offP = off + Math.abs(wbits) - 1;
-    const isEven = w % 2 !== 0;
-    const isNeg = wbits < 0;
-    if (wbits === 0) {
-      f = f.add(ctneg(isEven, comp[offF]));
-    } else {
-      p = p.add(ctneg(isNeg, comp[offP]));
-    }
-  }
-  if (n !== 0n)
-    err("invalid wnaf");
-  return { p, f };
-};
-
-// ../../node_modules/.pnpm/@noble+hashes@1.8.0/node_modules/@noble/hashes/esm/utils.js
-function isBytes2(a) {
-  return a instanceof Uint8Array || ArrayBuffer.isView(a) && a.constructor.name === "Uint8Array";
-}
-function abytes2(b, ...lengths) {
-  if (!isBytes2(b))
-    throw new Error("Uint8Array expected");
-  if (lengths.length > 0 && !lengths.includes(b.length))
-    throw new Error("Uint8Array expected of length " + lengths + ", got length=" + b.length);
-}
-function aexists(instance, checkFinished = true) {
-  if (instance.destroyed)
-    throw new Error("Hash instance has been destroyed");
-  if (checkFinished && instance.finished)
-    throw new Error("Hash#digest() has already been called");
-}
-function aoutput(out, instance) {
-  abytes2(out);
-  const min = instance.outputLen;
-  if (out.length < min) {
-    throw new Error("digestInto() expects output buffer of length at least " + min);
-  }
-}
-function clean(...arrays) {
-  for (let i = 0; i < arrays.length; i++) {
-    arrays[i].fill(0);
-  }
-}
-function createView(arr) {
-  return new DataView(arr.buffer, arr.byteOffset, arr.byteLength);
-}
-function utf8ToBytes(str) {
-  if (typeof str !== "string")
-    throw new Error("string expected");
-  return new Uint8Array(new TextEncoder().encode(str));
-}
-function toBytes(data) {
-  if (typeof data === "string")
-    data = utf8ToBytes(data);
-  abytes2(data);
-  return data;
-}
-var Hash = class {
-};
-function createHasher(hashCons) {
-  const hashC = (msg) => hashCons().update(toBytes(msg)).digest();
-  const tmp = hashCons();
-  hashC.outputLen = tmp.outputLen;
-  hashC.blockLen = tmp.blockLen;
-  hashC.create = () => hashCons();
-  return hashC;
-}
-
-// ../../node_modules/.pnpm/@noble+hashes@1.8.0/node_modules/@noble/hashes/esm/_md.js
-function setBigUint64(view, byteOffset, value, isLE) {
-  if (typeof view.setBigUint64 === "function")
-    return view.setBigUint64(byteOffset, value, isLE);
-  const _32n2 = BigInt(32);
-  const _u32_max = BigInt(4294967295);
-  const wh = Number(value >> _32n2 & _u32_max);
-  const wl = Number(value & _u32_max);
-  const h2 = isLE ? 4 : 0;
-  const l = isLE ? 0 : 4;
-  view.setUint32(byteOffset + h2, wh, isLE);
-  view.setUint32(byteOffset + l, wl, isLE);
-}
-var HashMD = class extends Hash {
-  constructor(blockLen, outputLen, padOffset, isLE) {
-    super();
-    this.finished = false;
-    this.length = 0;
-    this.pos = 0;
-    this.destroyed = false;
-    this.blockLen = blockLen;
-    this.outputLen = outputLen;
-    this.padOffset = padOffset;
-    this.isLE = isLE;
-    this.buffer = new Uint8Array(blockLen);
-    this.view = createView(this.buffer);
-  }
-  update(data) {
-    aexists(this);
-    data = toBytes(data);
-    abytes2(data);
-    const { view, buffer, blockLen } = this;
-    const len = data.length;
-    for (let pos = 0; pos < len; ) {
-      const take = Math.min(blockLen - this.pos, len - pos);
-      if (take === blockLen) {
-        const dataView = createView(data);
-        for (; blockLen <= len - pos; pos += blockLen)
-          this.process(dataView, pos);
-        continue;
-      }
-      buffer.set(data.subarray(pos, pos + take), this.pos);
-      this.pos += take;
-      pos += take;
-      if (this.pos === blockLen) {
-        this.process(view, 0);
-        this.pos = 0;
-      }
-    }
-    this.length += data.length;
-    this.roundClean();
-    return this;
-  }
-  digestInto(out) {
-    aexists(this);
-    aoutput(out, this);
-    this.finished = true;
-    const { buffer, view, blockLen, isLE } = this;
-    let { pos } = this;
-    buffer[pos++] = 128;
-    clean(this.buffer.subarray(pos));
-    if (this.padOffset > blockLen - pos) {
-      this.process(view, 0);
-      pos = 0;
-    }
-    for (let i = pos; i < blockLen; i++)
-      buffer[i] = 0;
-    setBigUint64(view, blockLen - 8, BigInt(this.length * 8), isLE);
-    this.process(view, 0);
-    const oview = createView(out);
-    const len = this.outputLen;
-    if (len % 4)
-      throw new Error("_sha2: outputLen should be aligned to 32bit");
-    const outLen = len / 4;
-    const state = this.get();
-    if (outLen > state.length)
-      throw new Error("_sha2: outputLen bigger than state");
-    for (let i = 0; i < outLen; i++)
-      oview.setUint32(4 * i, state[i], isLE);
-  }
-  digest() {
-    const { buffer, outputLen } = this;
-    this.digestInto(buffer);
-    const res = buffer.slice(0, outputLen);
-    this.destroy();
-    return res;
-  }
-  _cloneInto(to) {
-    to || (to = new this.constructor());
-    to.set(...this.get());
-    const { blockLen, buffer, length, finished, destroyed, pos } = this;
-    to.destroyed = destroyed;
-    to.finished = finished;
-    to.length = length;
-    to.pos = pos;
-    if (length % blockLen)
-      to.buffer.set(buffer);
-    return to;
-  }
-  clone() {
-    return this._cloneInto();
-  }
-};
-var SHA512_IV = /* @__PURE__ */ Uint32Array.from([
-  1779033703,
-  4089235720,
-  3144134277,
-  2227873595,
-  1013904242,
-  4271175723,
-  2773480762,
-  1595750129,
-  1359893119,
-  2917565137,
-  2600822924,
-  725511199,
-  528734635,
-  4215389547,
-  1541459225,
-  327033209
-]);
-
-// ../../node_modules/.pnpm/@noble+hashes@1.8.0/node_modules/@noble/hashes/esm/_u64.js
-var U32_MASK64 = /* @__PURE__ */ BigInt(2 ** 32 - 1);
-var _32n = /* @__PURE__ */ BigInt(32);
-function fromBig(n, le = false) {
-  if (le)
-    return { h: Number(n & U32_MASK64), l: Number(n >> _32n & U32_MASK64) };
-  return { h: Number(n >> _32n & U32_MASK64) | 0, l: Number(n & U32_MASK64) | 0 };
-}
-function split(lst, le = false) {
-  const len = lst.length;
-  let Ah = new Uint32Array(len);
-  let Al = new Uint32Array(len);
-  for (let i = 0; i < len; i++) {
-    const { h: h2, l } = fromBig(lst[i], le);
-    [Ah[i], Al[i]] = [h2, l];
-  }
-  return [Ah, Al];
-}
-var shrSH = (h2, _l, s) => h2 >>> s;
-var shrSL = (h2, l, s) => h2 << 32 - s | l >>> s;
-var rotrSH = (h2, l, s) => h2 >>> s | l << 32 - s;
-var rotrSL = (h2, l, s) => h2 << 32 - s | l >>> s;
-var rotrBH = (h2, l, s) => h2 << 64 - s | l >>> s - 32;
-var rotrBL = (h2, l, s) => h2 >>> s - 32 | l << 64 - s;
-function add(Ah, Al, Bh, Bl) {
-  const l = (Al >>> 0) + (Bl >>> 0);
-  return { h: Ah + Bh + (l / 2 ** 32 | 0) | 0, l: l | 0 };
-}
-var add3L = (Al, Bl, Cl) => (Al >>> 0) + (Bl >>> 0) + (Cl >>> 0);
-var add3H = (low, Ah, Bh, Ch) => Ah + Bh + Ch + (low / 2 ** 32 | 0) | 0;
-var add4L = (Al, Bl, Cl, Dl) => (Al >>> 0) + (Bl >>> 0) + (Cl >>> 0) + (Dl >>> 0);
-var add4H = (low, Ah, Bh, Ch, Dh) => Ah + Bh + Ch + Dh + (low / 2 ** 32 | 0) | 0;
-var add5L = (Al, Bl, Cl, Dl, El) => (Al >>> 0) + (Bl >>> 0) + (Cl >>> 0) + (Dl >>> 0) + (El >>> 0);
-var add5H = (low, Ah, Bh, Ch, Dh, Eh) => Ah + Bh + Ch + Dh + Eh + (low / 2 ** 32 | 0) | 0;
-
-// ../../node_modules/.pnpm/@noble+hashes@1.8.0/node_modules/@noble/hashes/esm/sha2.js
-var K512 = /* @__PURE__ */ (() => split([
-  "0x428a2f98d728ae22",
-  "0x7137449123ef65cd",
-  "0xb5c0fbcfec4d3b2f",
-  "0xe9b5dba58189dbbc",
-  "0x3956c25bf348b538",
-  "0x59f111f1b605d019",
-  "0x923f82a4af194f9b",
-  "0xab1c5ed5da6d8118",
-  "0xd807aa98a3030242",
-  "0x12835b0145706fbe",
-  "0x243185be4ee4b28c",
-  "0x550c7dc3d5ffb4e2",
-  "0x72be5d74f27b896f",
-  "0x80deb1fe3b1696b1",
-  "0x9bdc06a725c71235",
-  "0xc19bf174cf692694",
-  "0xe49b69c19ef14ad2",
-  "0xefbe4786384f25e3",
-  "0x0fc19dc68b8cd5b5",
-  "0x240ca1cc77ac9c65",
-  "0x2de92c6f592b0275",
-  "0x4a7484aa6ea6e483",
-  "0x5cb0a9dcbd41fbd4",
-  "0x76f988da831153b5",
-  "0x983e5152ee66dfab",
-  "0xa831c66d2db43210",
-  "0xb00327c898fb213f",
-  "0xbf597fc7beef0ee4",
-  "0xc6e00bf33da88fc2",
-  "0xd5a79147930aa725",
-  "0x06ca6351e003826f",
-  "0x142929670a0e6e70",
-  "0x27b70a8546d22ffc",
-  "0x2e1b21385c26c926",
-  "0x4d2c6dfc5ac42aed",
-  "0x53380d139d95b3df",
-  "0x650a73548baf63de",
-  "0x766a0abb3c77b2a8",
-  "0x81c2c92e47edaee6",
-  "0x92722c851482353b",
-  "0xa2bfe8a14cf10364",
-  "0xa81a664bbc423001",
-  "0xc24b8b70d0f89791",
-  "0xc76c51a30654be30",
-  "0xd192e819d6ef5218",
-  "0xd69906245565a910",
-  "0xf40e35855771202a",
-  "0x106aa07032bbd1b8",
-  "0x19a4c116b8d2d0c8",
-  "0x1e376c085141ab53",
-  "0x2748774cdf8eeb99",
-  "0x34b0bcb5e19b48a8",
-  "0x391c0cb3c5c95a63",
-  "0x4ed8aa4ae3418acb",
-  "0x5b9cca4f7763e373",
-  "0x682e6ff3d6b2b8a3",
-  "0x748f82ee5defb2fc",
-  "0x78a5636f43172f60",
-  "0x84c87814a1f0ab72",
-  "0x8cc702081a6439ec",
-  "0x90befffa23631e28",
-  "0xa4506cebde82bde9",
-  "0xbef9a3f7b2c67915",
-  "0xc67178f2e372532b",
-  "0xca273eceea26619c",
-  "0xd186b8c721c0c207",
-  "0xeada7dd6cde0eb1e",
-  "0xf57d4f7fee6ed178",
-  "0x06f067aa72176fba",
-  "0x0a637dc5a2c898a6",
-  "0x113f9804bef90dae",
-  "0x1b710b35131c471b",
-  "0x28db77f523047d84",
-  "0x32caab7b40c72493",
-  "0x3c9ebe0a15c9bebc",
-  "0x431d67c49c100d4c",
-  "0x4cc5d4becb3e42b6",
-  "0x597f299cfc657e2a",
-  "0x5fcb6fab3ad6faec",
-  "0x6c44198c4a475817"
-].map((n) => BigInt(n))))();
-var SHA512_Kh = /* @__PURE__ */ (() => K512[0])();
-var SHA512_Kl = /* @__PURE__ */ (() => K512[1])();
-var SHA512_W_H = /* @__PURE__ */ new Uint32Array(80);
-var SHA512_W_L = /* @__PURE__ */ new Uint32Array(80);
-var SHA512 = class extends HashMD {
-  constructor(outputLen = 64) {
-    super(128, outputLen, 16, false);
-    this.Ah = SHA512_IV[0] | 0;
-    this.Al = SHA512_IV[1] | 0;
-    this.Bh = SHA512_IV[2] | 0;
-    this.Bl = SHA512_IV[3] | 0;
-    this.Ch = SHA512_IV[4] | 0;
-    this.Cl = SHA512_IV[5] | 0;
-    this.Dh = SHA512_IV[6] | 0;
-    this.Dl = SHA512_IV[7] | 0;
-    this.Eh = SHA512_IV[8] | 0;
-    this.El = SHA512_IV[9] | 0;
-    this.Fh = SHA512_IV[10] | 0;
-    this.Fl = SHA512_IV[11] | 0;
-    this.Gh = SHA512_IV[12] | 0;
-    this.Gl = SHA512_IV[13] | 0;
-    this.Hh = SHA512_IV[14] | 0;
-    this.Hl = SHA512_IV[15] | 0;
-  }
-  // prettier-ignore
-  get() {
-    const { Ah, Al, Bh, Bl, Ch, Cl, Dh, Dl, Eh, El, Fh, Fl, Gh, Gl, Hh, Hl } = this;
-    return [Ah, Al, Bh, Bl, Ch, Cl, Dh, Dl, Eh, El, Fh, Fl, Gh, Gl, Hh, Hl];
-  }
-  // prettier-ignore
-  set(Ah, Al, Bh, Bl, Ch, Cl, Dh, Dl, Eh, El, Fh, Fl, Gh, Gl, Hh, Hl) {
-    this.Ah = Ah | 0;
-    this.Al = Al | 0;
-    this.Bh = Bh | 0;
-    this.Bl = Bl | 0;
-    this.Ch = Ch | 0;
-    this.Cl = Cl | 0;
-    this.Dh = Dh | 0;
-    this.Dl = Dl | 0;
-    this.Eh = Eh | 0;
-    this.El = El | 0;
-    this.Fh = Fh | 0;
-    this.Fl = Fl | 0;
-    this.Gh = Gh | 0;
-    this.Gl = Gl | 0;
-    this.Hh = Hh | 0;
-    this.Hl = Hl | 0;
-  }
-  process(view, offset) {
-    for (let i = 0; i < 16; i++, offset += 4) {
-      SHA512_W_H[i] = view.getUint32(offset);
-      SHA512_W_L[i] = view.getUint32(offset += 4);
-    }
-    for (let i = 16; i < 80; i++) {
-      const W15h = SHA512_W_H[i - 15] | 0;
-      const W15l = SHA512_W_L[i - 15] | 0;
-      const s0h = rotrSH(W15h, W15l, 1) ^ rotrSH(W15h, W15l, 8) ^ shrSH(W15h, W15l, 7);
-      const s0l = rotrSL(W15h, W15l, 1) ^ rotrSL(W15h, W15l, 8) ^ shrSL(W15h, W15l, 7);
-      const W2h = SHA512_W_H[i - 2] | 0;
-      const W2l = SHA512_W_L[i - 2] | 0;
-      const s1h = rotrSH(W2h, W2l, 19) ^ rotrBH(W2h, W2l, 61) ^ shrSH(W2h, W2l, 6);
-      const s1l = rotrSL(W2h, W2l, 19) ^ rotrBL(W2h, W2l, 61) ^ shrSL(W2h, W2l, 6);
-      const SUMl = add4L(s0l, s1l, SHA512_W_L[i - 7], SHA512_W_L[i - 16]);
-      const SUMh = add4H(SUMl, s0h, s1h, SHA512_W_H[i - 7], SHA512_W_H[i - 16]);
-      SHA512_W_H[i] = SUMh | 0;
-      SHA512_W_L[i] = SUMl | 0;
-    }
-    let { Ah, Al, Bh, Bl, Ch, Cl, Dh, Dl, Eh, El, Fh, Fl, Gh, Gl, Hh, Hl } = this;
-    for (let i = 0; i < 80; i++) {
-      const sigma1h = rotrSH(Eh, El, 14) ^ rotrSH(Eh, El, 18) ^ rotrBH(Eh, El, 41);
-      const sigma1l = rotrSL(Eh, El, 14) ^ rotrSL(Eh, El, 18) ^ rotrBL(Eh, El, 41);
-      const CHIh = Eh & Fh ^ ~Eh & Gh;
-      const CHIl = El & Fl ^ ~El & Gl;
-      const T1ll = add5L(Hl, sigma1l, CHIl, SHA512_Kl[i], SHA512_W_L[i]);
-      const T1h = add5H(T1ll, Hh, sigma1h, CHIh, SHA512_Kh[i], SHA512_W_H[i]);
-      const T1l = T1ll | 0;
-      const sigma0h = rotrSH(Ah, Al, 28) ^ rotrBH(Ah, Al, 34) ^ rotrBH(Ah, Al, 39);
-      const sigma0l = rotrSL(Ah, Al, 28) ^ rotrBL(Ah, Al, 34) ^ rotrBL(Ah, Al, 39);
-      const MAJh = Ah & Bh ^ Ah & Ch ^ Bh & Ch;
-      const MAJl = Al & Bl ^ Al & Cl ^ Bl & Cl;
-      Hh = Gh | 0;
-      Hl = Gl | 0;
-      Gh = Fh | 0;
-      Gl = Fl | 0;
-      Fh = Eh | 0;
-      Fl = El | 0;
-      ({ h: Eh, l: El } = add(Dh | 0, Dl | 0, T1h | 0, T1l | 0));
-      Dh = Ch | 0;
-      Dl = Cl | 0;
-      Ch = Bh | 0;
-      Cl = Bl | 0;
-      Bh = Ah | 0;
-      Bl = Al | 0;
-      const All = add3L(T1l, sigma0l, MAJl);
-      Ah = add3H(All, T1h, sigma0h, MAJh);
-      Al = All | 0;
-    }
-    ({ h: Ah, l: Al } = add(this.Ah | 0, this.Al | 0, Ah | 0, Al | 0));
-    ({ h: Bh, l: Bl } = add(this.Bh | 0, this.Bl | 0, Bh | 0, Bl | 0));
-    ({ h: Ch, l: Cl } = add(this.Ch | 0, this.Cl | 0, Ch | 0, Cl | 0));
-    ({ h: Dh, l: Dl } = add(this.Dh | 0, this.Dl | 0, Dh | 0, Dl | 0));
-    ({ h: Eh, l: El } = add(this.Eh | 0, this.El | 0, Eh | 0, El | 0));
-    ({ h: Fh, l: Fl } = add(this.Fh | 0, this.Fl | 0, Fh | 0, Fl | 0));
-    ({ h: Gh, l: Gl } = add(this.Gh | 0, this.Gl | 0, Gh | 0, Gl | 0));
-    ({ h: Hh, l: Hl } = add(this.Hh | 0, this.Hl | 0, Hh | 0, Hl | 0));
-    this.set(Ah, Al, Bh, Bl, Ch, Cl, Dh, Dl, Eh, El, Fh, Fl, Gh, Gl, Hh, Hl);
-  }
-  roundClean() {
-    clean(SHA512_W_H, SHA512_W_L);
-  }
-  destroy() {
-    clean(this.buffer);
-    this.set(0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0);
-  }
-};
-var sha512 = /* @__PURE__ */ createHasher(() => new SHA512());
-
-// ../../node_modules/.pnpm/@noble+hashes@1.8.0/node_modules/@noble/hashes/esm/sha512.js
-var sha5122 = sha512;
-
-// src/index.ts
-if (!hashes.sha512) {
-  hashes.sha512 = (msg) => sha5122(msg);
-}
-function parseYamlValue(raw) {
-  const trimmed = raw.trim();
-  if (trimmed === "null") return null;
-  if (trimmed === "true") return true;
-  if (trimmed === "false") return false;
-  if (trimmed === "[]") return [];
-  if (trimmed === "{}") return {};
-  if (trimmed.startsWith('"') && trimmed.endsWith('"') || trimmed.startsWith("'") && trimmed.endsWith("'")) {
-    return JSON.parse(trimmed);
-  }
-  const num = Number(trimmed);
-  if (trimmed !== "" && !isNaN(num) && isFinite(num)) return num;
-  return trimmed;
-}
-function parseYaml(text) {
-  const lines = text.split("\n");
-  const root = {};
-  const stack = [
-    { obj: root, indent: -1 }
-  ];
-  let currentArray = null;
-  let currentArrayIndent = -1;
-  for (let i = 0; i < lines.length; i++) {
-    const line = lines[i];
-    if (line.trim() === "" || line.trim().startsWith("#")) continue;
-    const lineIndent = line.length - line.trimStart().length;
-    const trimmed = line.trimStart();
-    if (trimmed.startsWith("- ")) {
-      const itemContent = trimmed.slice(2);
-      const colonIdx2 = itemContent.indexOf(": ");
-      if (colonIdx2 !== -1) {
-        const obj = {};
-        const key = itemContent.slice(0, colonIdx2);
-        const val = itemContent.slice(colonIdx2 + 2);
-        obj[key] = parseYamlValue(val);
-        for (let j = i + 1; j < lines.length; j++) {
-          const nextLine = lines[j];
-          if (nextLine.trim() === "") continue;
-          const nextIndent = nextLine.length - nextLine.trimStart().length;
-          const nextTrimmed = nextLine.trimStart();
-          if (nextIndent > lineIndent && !nextTrimmed.startsWith("- ")) {
-            const nextColonIdx = nextTrimmed.indexOf(": ");
-            if (nextColonIdx !== -1) {
-              const nk = nextTrimmed.slice(0, nextColonIdx);
-              const nv = nextTrimmed.slice(nextColonIdx + 2);
-              obj[nk] = parseYamlValue(nv);
-              i = j;
-            }
-          } else {
-            break;
-          }
-        }
-        if (currentArray) currentArray.push(obj);
-      } else {
-        if (currentArray) currentArray.push(parseYamlValue(itemContent));
-      }
-      continue;
-    }
-    const colonIdx = trimmed.indexOf(": ");
-    const endsWithColon = trimmed.endsWith(":") && colonIdx === -1;
-    if (endsWithColon) {
-      const key = trimmed.slice(0, -1);
-      if (currentArray && lineIndent <= currentArrayIndent) {
-        currentArray = null;
-        currentArrayIndent = -1;
-      }
-      while (stack.length > 1 && stack[stack.length - 1].indent >= lineIndent) {
-        stack.pop();
-      }
-      const parent = stack[stack.length - 1].obj;
-      let nextIdx = i + 1;
-      while (nextIdx < lines.length && lines[nextIdx].trim() === "") nextIdx++;
-      if (nextIdx < lines.length && lines[nextIdx].trimStart().startsWith("- ")) {
-        const arr = [];
-        parent[key] = arr;
-        currentArray = arr;
-        currentArrayIndent = lineIndent;
-      } else {
-        const nested = {};
-        parent[key] = nested;
-        stack.push({ obj: nested, indent: lineIndent });
-      }
-      continue;
-    }
-    if (colonIdx !== -1) {
-      if (currentArray && lineIndent <= currentArrayIndent) {
-        currentArray = null;
-        currentArrayIndent = -1;
-      }
-      while (stack.length > 1 && stack[stack.length - 1].indent >= lineIndent) {
-        stack.pop();
-      }
-      const key = trimmed.slice(0, colonIdx);
-      const val = trimmed.slice(colonIdx + 2);
-      const parent = stack[stack.length - 1].obj;
-      parent[key] = parseYamlValue(val);
-    }
-  }
-  return root;
-}
-function hexToBytes2(hex) {
-  const bytes = new Uint8Array(hex.length / 2);
-  for (let i = 0; i < hex.length; i += 2) {
-    bytes[i / 2] = parseInt(hex.slice(i, i + 2), 16);
-  }
-  return bytes;
-}
-function fromBase64Url(str) {
-  let base64 = str.replace(/-/g, "+").replace(/_/g, "/");
-  const pad = base64.length % 4;
-  if (pad === 2) base64 += "==";
-  else if (pad === 3) base64 += "=";
-  const binary = atob(base64);
-  const bytes = new Uint8Array(binary.length);
-  for (let i = 0; i < binary.length; i++) {
-    bytes[i] = binary.charCodeAt(i);
-  }
-  return bytes;
-}
-function canonicalJson(obj) {
-  if (obj === null || obj === void 0) return JSON.stringify(obj);
-  if (typeof obj !== "object") return JSON.stringify(obj);
-  if (Array.isArray(obj)) {
-    return "[" + obj.map((item) => canonicalJson(item)).join(",") + "]";
-  }
-  const sorted = Object.keys(obj).sort();
-  const entries = [];
-  for (const key of sorted) {
-    const val = obj[key];
-    if (val === void 0) continue;
-    entries.push(JSON.stringify(key) + ":" + canonicalJson(val));
-  }
-  return "{" + entries.join(",") + "}";
-}
-var BASE58_ALPHABET = "123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz";
-function base58btcEncode(bytes) {
-  let zeros = 0;
-  while (zeros < bytes.length && bytes[zeros] === 0) zeros++;
-  let value = 0n;
-  for (let i = 0; i < bytes.length; i++) {
-    value = value * 256n + BigInt(bytes[i]);
-  }
-  let result = "";
-  while (value > 0n) {
-    const remainder = Number(value % 58n);
-    value = value / 58n;
-    result = BASE58_ALPHABET[remainder] + result;
-  }
-  return BASE58_ALPHABET[0].repeat(zeros) + result;
-}
-function base58btcDecode(str) {
-  let zeros = 0;
-  while (zeros < str.length && str[zeros] === BASE58_ALPHABET[0]) zeros++;
-  let value = 0n;
-  for (let i = 0; i < str.length; i++) {
-    const idx = BASE58_ALPHABET.indexOf(str[i]);
-    if (idx === -1) throw new Error(`Invalid base58 character: ${str[i]}`);
-    value = value * 58n + BigInt(idx);
-  }
-  const hex = [];
-  while (value > 0n) {
-    const byte = Number(value & 0xffn);
-    hex.unshift(byte.toString(16).padStart(2, "0"));
-    value >>= 8n;
-  }
-  const dataBytes = hex.length > 0 ? new Uint8Array(hex.map((h2) => parseInt(h2, 16))) : new Uint8Array(0);
-  const result = new Uint8Array(zeros + dataBytes.length);
-  result.set(dataBytes, zeros);
-  return result;
-}
-function publicKeyToDidKey(pubKey) {
-  const prefixed = new Uint8Array(34);
-  prefixed[0] = 237;
-  prefixed[1] = 1;
-  prefixed.set(pubKey, 2);
-  return `did:key:z${base58btcEncode(prefixed)}`;
-}
-function didKeyToPublicKey(did) {
-  if (!did.startsWith("did:key:z")) {
-    throw new Error("Invalid did:key URI: must start with did:key:z");
-  }
-  const encoded = did.slice("did:key:z".length);
-  const decoded = base58btcDecode(encoded);
-  if (decoded.length !== 34) {
-    throw new Error(
-      `Invalid did:key: expected 34 bytes (2 prefix + 32 key), got ${decoded.length}`
-    );
-  }
-  if (decoded[0] !== 237 || decoded[1] !== 1) {
-    throw new Error("Invalid did:key: multicodec prefix is not ed25519-pub (0xed01)");
-  }
-  return decoded.slice(2);
-}
-async function sha256(data) {
-  const buf = await crypto.subtle.digest("SHA-256", data);
-  return new Uint8Array(buf);
-}
-var SIG_PREFIX = "<!-- motebit:sig:Ed25519:";
-var SIG_SUFFIX = " -->";
-function detectArtifactType(artifact) {
-  if (typeof artifact === "string") {
-    if (artifact.includes("---")) {
-      return "identity";
-    }
-    try {
-      const parsed = JSON.parse(artifact);
-      return detectArtifactType(parsed);
-    } catch {
-      return null;
-    }
-  }
-  if (typeof artifact !== "object" || artifact === null) return null;
-  const obj = artifact;
-  if ("holder" in obj && "verifiableCredential" in obj && "proof" in obj) {
-    return "presentation";
-  }
-  if ("credentialSubject" in obj && "issuer" in obj && "proof" in obj) {
-    return "credential";
-  }
-  if ("task_id" in obj && "motebit_id" in obj && "signature" in obj && "prompt_hash" in obj) {
-    return "receipt";
-  }
-  return null;
-}
-function parse(content) {
-  const firstDash = content.indexOf("---\n");
-  if (firstDash === -1) throw new Error("Missing frontmatter opening ---");
-  const bodyStart = firstDash + 4;
-  const secondDash = content.indexOf("\n---", bodyStart);
-  if (secondDash === -1) throw new Error("Missing frontmatter closing ---");
-  const rawFrontmatter = content.slice(bodyStart, secondDash);
-  const frontmatter = parseYaml(rawFrontmatter);
-  const sigStart = content.indexOf(SIG_PREFIX);
-  if (sigStart === -1) throw new Error("Missing signature");
-  const sigValueStart = sigStart + SIG_PREFIX.length;
-  const sigEnd = content.indexOf(SIG_SUFFIX, sigValueStart);
-  if (sigEnd === -1) throw new Error("Malformed signature");
-  const signature = content.slice(sigValueStart, sigEnd);
-  return { frontmatter, signature, rawFrontmatter };
-}
-function identityError(msg) {
-  return { type: "identity", valid: false, identity: null, error: msg, errors: [{ message: msg }] };
-}
-async function verifyIdentity(content) {
-  let parsed;
-  try {
-    parsed = parse(content);
-  } catch (err2) {
-    const msg = err2 instanceof Error ? err2.message : String(err2);
-    return identityError(msg);
-  }
-  const pubKeyHex = parsed.frontmatter.identity?.public_key;
-  if (!pubKeyHex) {
-    return identityError("No public key in frontmatter");
-  }
-  let pubKey;
-  try {
-    pubKey = hexToBytes2(pubKeyHex);
-  } catch {
-    return identityError("Invalid public key hex");
-  }
-  if (pubKey.length !== 32) {
-    return identityError("Public key must be 32 bytes");
-  }
-  let sigBytes;
-  try {
-    sigBytes = fromBase64Url(parsed.signature);
-  } catch {
-    return identityError("Invalid signature encoding");
-  }
-  if (sigBytes.length !== 64) {
-    return identityError("Signature must be 64 bytes");
-  }
-  const frontmatterBytes = new TextEncoder().encode(parsed.rawFrontmatter);
-  let valid;
-  try {
-    valid = await verifyAsync(sigBytes, frontmatterBytes, pubKey);
-  } catch {
-    valid = false;
-  }
-  if (!valid) {
-    return identityError("Signature verification failed");
-  }
-  const chain = parsed.frontmatter.succession;
-  let successionResult;
-  if (chain && chain.length > 0) {
-    const guardianPubKeyHex = parsed.frontmatter.guardian?.public_key;
-    successionResult = await verifySuccessionChain(chain, pubKeyHex, guardianPubKeyHex);
-  }
-  return {
-    type: "identity",
-    valid: true,
-    identity: parsed.frontmatter,
-    did: publicKeyToDidKey(pubKey),
-    ...successionResult ? { succession: successionResult } : {}
-  };
-}
-async function verifySuccessionChain(chain, currentPublicKeyHex, guardianPublicKeyHex) {
-  try {
-    for (let i = 0; i < chain.length; i++) {
-      const record = chain[i];
-      const payloadObj = {
-        old_public_key: record.old_public_key,
-        new_public_key: record.new_public_key,
-        timestamp: record.timestamp
-      };
-      if (record.reason !== void 0) {
-        payloadObj.reason = record.reason;
-      }
-      if (record.recovery) {
-        payloadObj.recovery = true;
-      }
-      const payload = canonicalJson(payloadObj);
-      const message = new TextEncoder().encode(payload);
-      const newPubKey = hexToBytes2(record.new_public_key);
-      const newSig = hexToBytes2(record.new_key_signature);
-      const newValid = await verifyAsync(newSig, message, newPubKey);
-      if (!newValid) {
-        return {
-          valid: false,
-          rotations: chain.length,
-          error: `Succession record ${i}: new_key_signature verification failed`
-        };
-      }
-      if (record.recovery) {
-        if (!guardianPublicKeyHex) {
-          return {
-            valid: false,
-            rotations: chain.length,
-            error: `Succession record ${i}: guardian recovery but no guardian public key in identity`
-          };
-        }
-        if (!record.guardian_signature) {
-          return {
-            valid: false,
-            rotations: chain.length,
-            error: `Succession record ${i}: guardian recovery but no guardian_signature`
-          };
-        }
-        const guardianPubKey = hexToBytes2(guardianPublicKeyHex);
-        const guardianSig = hexToBytes2(record.guardian_signature);
-        const guardianValid = await verifyAsync(guardianSig, message, guardianPubKey);
-        if (!guardianValid) {
-          return {
-            valid: false,
-            rotations: chain.length,
-            error: `Succession record ${i}: guardian_signature verification failed`
-          };
-        }
-      } else {
-        if (!record.old_key_signature) {
-          return {
-            valid: false,
-            rotations: chain.length,
-            error: `Succession record ${i}: normal rotation but no old_key_signature`
-          };
-        }
-        const oldPubKey = hexToBytes2(record.old_public_key);
-        const oldSig = hexToBytes2(record.old_key_signature);
-        const oldValid = await verifyAsync(oldSig, message, oldPubKey);
-        if (!oldValid) {
-          return {
-            valid: false,
-            rotations: chain.length,
-            error: `Succession record ${i}: old_key_signature verification failed`
-          };
-        }
-      }
-      if (i < chain.length - 1) {
-        const next = chain[i + 1];
-        if (record.new_public_key !== next.old_public_key) {
-          return {
-            valid: false,
-            rotations: chain.length,
-            error: `Succession chain broken at record ${i}: new_public_key does not match next record's old_public_key`
-          };
-        }
-      }
-      if (i < chain.length - 1) {
-        const next = chain[i + 1];
-        if (record.timestamp >= next.timestamp) {
-          return {
-            valid: false,
-            rotations: chain.length,
-            error: `Succession chain temporal ordering violated at record ${i}`
-          };
-        }
-      }
-    }
-    const lastRecord = chain[chain.length - 1];
-    if (lastRecord.new_public_key !== currentPublicKeyHex) {
-      return {
-        valid: false,
-        rotations: chain.length,
-        error: "Succession chain terminal: last new_public_key does not match identity public_key"
-      };
-    }
-    return {
-      valid: true,
-      genesis_public_key: chain[0].old_public_key,
-      rotations: chain.length
-    };
-  } catch (err2) {
-    const msg = err2 instanceof Error ? err2.message : String(err2);
-    return {
-      valid: false,
-      rotations: 0,
-      error: `Succession verification error: ${msg}`
-    };
-  }
-}
-async function verifyReceiptSignature(receipt, publicKey) {
-  const { signature, ...body } = receipt;
-  if (!signature || signature.trim() === "") {
-    return { valid: false, error: "Receipt signature is empty" };
-  }
-  let sig;
-  try {
-    sig = fromBase64Url(signature);
-  } catch {
-    return { valid: false, error: "Receipt signature is not valid base64url" };
-  }
-  if (sig.length !== 64) {
-    return { valid: false, error: `Receipt signature must be 64 bytes, got ${sig.length}` };
-  }
-  const canonical = canonicalJson(body);
-  const message = new TextEncoder().encode(canonical);
-  try {
-    const valid = await verifyAsync(sig, message, publicKey);
-    return { valid };
-  } catch {
-    return { valid: false, error: "Ed25519 verification threw" };
-  }
-}
-async function verifyReceipt(receipt) {
-  let publicKey = null;
-  let signerDid;
-  if (receipt.public_key) {
-    try {
-      publicKey = hexToBytes2(receipt.public_key);
-      if (publicKey.length === 32) {
-        signerDid = publicKeyToDidKey(publicKey);
-      } else {
-        publicKey = null;
-      }
-    } catch {
-      publicKey = null;
-    }
-  }
-  if (!publicKey) {
-    const delegations2 = await verifyReceiptDelegations(receipt);
-    return {
-      type: "receipt",
-      valid: false,
-      receipt,
-      errors: [{ message: "No embedded public_key \u2014 cannot verify without known keys" }],
-      ...delegations2.length > 0 ? { delegations: delegations2 } : {}
-    };
-  }
-  const sigResult = await verifyReceiptSignature(receipt, publicKey);
-  const errors = [];
-  if (!sigResult.valid) {
-    errors.push({ message: sigResult.error ?? "Receipt signature verification failed" });
-  }
-  const delegations = await verifyReceiptDelegations(receipt);
-  const delegationErrors = delegations.filter((d) => !d.valid);
-  for (const d of delegationErrors) {
-    errors.push({
-      message: `Delegation ${d.receipt?.task_id ?? "unknown"}: verification failed`,
-      path: `delegation_receipts`
-    });
-  }
-  return {
-    type: "receipt",
-    valid: sigResult.valid && delegationErrors.length === 0,
-    receipt,
-    signer: signerDid,
-    ...delegations.length > 0 ? { delegations } : {},
-    ...errors.length > 0 ? { errors } : {}
-  };
-}
-async function verifyReceiptDelegations(receipt) {
-  if (!receipt.delegation_receipts || receipt.delegation_receipts.length === 0) {
-    return [];
-  }
-  return Promise.all(receipt.delegation_receipts.map((dr) => verifyReceipt(dr)));
-}
-async function verifyDataIntegrity(document, proof) {
-  if (proof.type !== "DataIntegrityProof" || proof.cryptosuite !== "eddsa-jcs-2022") {
-    return false;
-  }
-  const did = proof.verificationMethod.split("#")[0];
-  let publicKey;
-  try {
-    publicKey = didKeyToPublicKey(did);
-  } catch {
-    return false;
-  }
-  const { proofValue, ...proofOptions } = proof;
-  const encoder = new TextEncoder();
-  const proofHash = await sha256(encoder.encode(canonicalJson(proofOptions)));
-  const { proof: _proof, ...docWithoutProof } = document;
-  const docHash = await sha256(encoder.encode(canonicalJson(docWithoutProof)));
-  const combined = new Uint8Array(proofHash.length + docHash.length);
-  combined.set(proofHash);
-  combined.set(docHash, proofHash.length);
-  if (!proofValue.startsWith("z")) return false;
-  let signature;
-  try {
-    signature = base58btcDecode(proofValue.slice(1));
-  } catch {
-    return false;
-  }
-  try {
-    return await verifyAsync(signature, combined, publicKey);
-  } catch {
-    return false;
-  }
-}
-var DEFAULT_CLOCK_SKEW_SECONDS = 60;
-async function verifyCredential(vc, clockSkewSeconds = DEFAULT_CLOCK_SKEW_SECONDS) {
-  const errors = [];
-  let expired = false;
-  if (vc.validUntil) {
-    const expiresAt = new Date(vc.validUntil).getTime();
-    const skewMs = clockSkewSeconds * 1e3;
-    if (Date.now() > expiresAt + skewMs) {
-      expired = true;
-      errors.push({ message: "Credential has expired", path: "validUntil" });
-    }
-  }
-  const proofValid = await verifyDataIntegrity(vc, vc.proof);
-  if (!proofValid) {
-    errors.push({ message: "Credential proof verification failed", path: "proof" });
-  }
-  const issuerDid = typeof vc.issuer === "string" ? vc.issuer : void 0;
-  const subjectId = vc.credentialSubject?.id;
-  return {
-    type: "credential",
-    valid: proofValid && !expired,
-    credential: vc,
-    issuer: issuerDid,
-    subject: subjectId,
-    expired,
-    ...errors.length > 0 ? { errors } : {}
-  };
-}
-async function verifyPresentation(vp, clockSkewSeconds = DEFAULT_CLOCK_SKEW_SECONDS) {
-  const errors = [];
-  const envelopeValid = await verifyDataIntegrity(
-    vp,
-    vp.proof
-  );
-  if (!envelopeValid) {
-    errors.push({ message: "Presentation proof verification failed", path: "proof" });
-  }
-  const credentialResults = [];
-  for (let i = 0; i < vp.verifiableCredential.length; i++) {
-    const vc = vp.verifiableCredential[i];
-    const vcResult = await verifyCredential(vc, clockSkewSeconds);
-    credentialResults.push(vcResult);
-    if (!vcResult.valid) {
-      errors.push({
-        message: `Credential ${i} verification failed`,
-        path: `verifiableCredential[${i}]`
-      });
-    }
-  }
-  const allValid = envelopeValid && credentialResults.every((c) => c.valid);
-  return {
-    type: "presentation",
-    valid: allValid,
-    presentation: vp,
-    holder: vp.holder,
-    credentials: credentialResults,
-    ...errors.length > 0 ? { errors } : {}
-  };
-}
-async function verify(artifact, options) {
-  const detected = detectArtifactType(artifact);
-  if (detected === null) {
-    const fallbackType = options?.expectedType ?? "identity";
-    return {
-      type: fallbackType,
-      valid: false,
-      ...fallbackType === "identity" ? { identity: null } : {},
-      ...fallbackType === "receipt" ? { receipt: null } : {},
-      ...fallbackType === "credential" ? { credential: null } : {},
-      ...fallbackType === "presentation" ? { presentation: null } : {},
-      errors: [{ message: "Unrecognized artifact format" }]
-    };
-  }
-  if (options?.expectedType && options.expectedType !== detected) {
-    return {
-      type: detected,
-      valid: false,
-      ...detected === "identity" ? { identity: null } : {},
-      ...detected === "receipt" ? { receipt: null } : {},
-      ...detected === "credential" ? { credential: null } : {},
-      ...detected === "presentation" ? { presentation: null } : {},
-      errors: [{ message: `Expected type "${options.expectedType}" but detected "${detected}"` }]
-    };
-  }
-  let resolved = artifact;
-  if (typeof artifact === "string" && detected !== "identity") {
-    try {
-      resolved = JSON.parse(artifact);
-    } catch {
-      return {
-        type: detected,
-        valid: false,
-        ...detected === "receipt" ? { receipt: null } : {},
-        ...detected === "credential" ? { credential: null } : {},
-        ...detected === "presentation" ? { presentation: null } : {},
-        errors: [{ message: "Failed to parse JSON" }]
-      };
-    }
-  }
-  switch (detected) {
-    case "identity":
-      return verifyIdentity(resolved);
-    case "receipt":
-      return verifyReceipt(resolved);
-    case "credential":
-      return verifyCredential(resolved, options?.clockSkewSeconds);
-    case "presentation":
-      return verifyPresentation(resolved, options?.clockSkewSeconds);
-  }
-}
-async function verifyIdentityFile(content) {
-  const result = await verifyIdentity(content);
-  return {
-    valid: result.valid,
-    identity: result.identity,
-    did: result.did,
-    error: result.errors?.[0]?.message,
-    succession: result.succession
-  };
-}
-export {
-  parse,
-  verify,
-  verifyIdentityFile
-};
-/*! Bundled license information:
-
-@noble/ed25519/index.js:
-  (*! noble-ed25519 - MIT License (c) 2019 Paul Miller (paulmillr.com) *)
-
-@noble/hashes/esm/utils.js:
-  (*! noble-hashes - MIT License (c) 2022 Paul Miller (paulmillr.com) *)
-*/
+/**
+ * @motebit/verify — hardware-attestation-aware companion to
+ * `@motebit/verifier`.
+ *
+ * Bundles the four Apache-2.0 permissive-floor platform verifier leaves
+ * into a single `HardwareAttestationVerifiers` record + a CLI
+ * `motebit-verify` that hands them to `@motebit/verifier::verifyFile`.
+ * A credential with `hardware_attestation: { platform: "device_check" |
+ * "tpm" | "play_integrity" | "webauthn", ... }` verifies end-to-end
+ * through this package instead of returning the permissive-floor
+ * verifier's `adapter not yet shipped` sentinel.
+ *
+ * Programmatic use:
+ *
+ * ```ts
+ * import { verifyFile } from "@motebit/verifier";
+ * import { buildHardwareVerifiers } from "@motebit/verify";
+ *
+ * const result = await verifyFile("cred.json", {
+ *   hardwareAttestation: buildHardwareVerifiers(),
+ * });
+ * ```
+ *
+ * CLI use: `motebit-verify <file>` — same args as `motebit-verify`,
+ * plus hardware-attestation verification. See `cli.ts`.
+ */
+export { buildHardwareVerifiers } from "./adapters.js";
+//# sourceMappingURL=index.js.map