@mysten/sui 2.6.0 → 2.8.0

package/dist/keypairs/passkey/keypair.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"keypair.d.mts","names":[],"sources":["../../../src/keypairs/passkey/keypair.ts"],"sourcesContent":[],"mappings":";;;;;;;;KAsBK,qBAAA;KAEA,iBAAiB,iCAEP,KAAK,YAAY,EAAE,KANiD,GAQhF,CANE;AAEA,KAMO,8BAAA,GAAiC,IAN7B,CAOf,WAPe,CAOH,kCAPG,CAAA,EAQf,qBARe,CAAA,GAUf,IAVe,CAWd,OAXc,CAWN,kCAXM,CAAA,EAYd,qBAZc,GAAA,kBAAA,GAAA,WAAA,CAAA;AAAM,UAeL,eAAA,CAfK;EAEP,MAAA,EAAA,EAcJ,OAdI,CAcI,sBAdJ,CAAA;EAAiB,GAAA,CAAA,SAAA,EAehB,UAfgB,CAAA,EAeH,OAfG,CAeK,wBAfL,CAAA;;AAAZ,cAmBP,sBAAA,YAAkC,eAnB3B,CAAA;EAEjB,CAAA,OAAA;EAAC,WAAA,CAAA,IAAA,EAAA,MAAA,EAAA,OAAA,EAqBgC,8BArBhC;EAEQ,MAAA,CAAA,CAAA,EAwBK,OAxBL,CAwBa,sBAxBiB,CAAA;EAC7B,GAAA,CAAA,SAAA,EAmDS,UAnDT,CAAA,EAmDsB,OAnDtB,CAmD8B,wBAnD9B,CAAA;;;;;;AAKX,cA6DW,cAAA,SAAuB,MAAA,CA7DlC;EAFD,QAAA,SAAA;EAAI,QAAA,QAAA;EAKY;;;EAED,YAAA,CAAA,CAAA,EA+DC,eA/DD;EAAqB;;;AAIrC;;;;;;;;;AAoDA;;EAyBwB,WAAA,CAAA,SAAA,EAAA,UAAA,EAAA,QAAA,EAAsB,eAAtB;EAAsB;;;;;;;;EAwClB,OAAA,kBAAA,CAAA,QAAA,EA1Be,eA0Bf,CAAA,EA1BiC,OA0BjC,CA1ByC,cA0BzC,CAAA;EA0CC;;;EAAkC,YAAA,CAAA,CAAA,EAlD9C,SAkD8C;EAmDnD;;;;EA9JwB,IAAA,CAAA,IAAA,EAiElB,UAjEkB,CAAA,EAiER,OAjEQ,CAiER,UAjEQ,CAiER,WAjEQ,CAAA,CAAA;EAAM;AA6L1C;;;EAA2E,cAAA,CAAA,KAAA,EAlF9C,UAkF8C,EAAA,MAAA,EAlF1B,WAkF0B,CAAA,EAlFZ,OAkFY,CAlFJ,kBAkFI,CAAA;EAAS;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kCA/BxE,0BACD,aACP,QAAQ;;;;;;;;;;iBA6BI,mBAAA,OAA0B,mBAAmB,cAAc"}
+{"version":3,"file":"keypair.d.mts","names":[],"sources":["../../../src/keypairs/passkey/keypair.ts"],"sourcesContent":[],"mappings":";;;;;;;;KAsBK,qBAAA;KAEA,iBAAiB,iCAEP,KAAK,YAAY,EAAE,KANiD,GAQhF,CANE;AAEA,KAMO,8BAAA,GAAiC,IAN7B,CAOf,WAPe,CAOH,kCAPG,CAAA,EAQf,qBARe,CAAA,GAUf,IAVe,CAWd,OAXc,CAWN,kCAXM,CAAA,EAYd,qBAZc,GAAA,kBAAA,GAAA,WAAA,CAAA;AAAM,UAeL,eAAA,CAfK;EAEP,MAAA,EAAA,EAcJ,OAdI,CAcI,sBAdJ,CAAA;EAAiB,GAAA,CAAA,SAAA,EAehB,UAfgB,EAAA,YAAA,CAAA,EAeW,UAfX,CAAA,EAewB,OAfxB,CAegC,wBAfhC,CAAA;;AAAZ,cAmBP,sBAAA,YAAkC,eAnB3B,CAAA;EAEjB,CAAA,OAAA;EAAC,WAAA,CAAA,IAAA,EAAA,MAAA,EAAA,OAAA,EAqBgC,8BArBhC;EAEQ,MAAA,CAAA,CAAA,EAwBK,OAxBL,CAwBa,sBAxBiB,CAAA;EAC7B,GAAA,CAAA,SAAA,EAmDS,UAnDT,EAAA,YAAA,CAAA,EAmDoC,UAnDpC,CAAA,EAmDiD,OAnDjD,CAmDyD,wBAnDzD,CAAA;;;;;;AAKX,cAgEW,cAAA,SAAuB,MAAA,CAhElC;EAFD,QAAA,SAAA;EAAI,QAAA,QAAA;EAKY,QAAA,YAAe;EACb;;;EACwB,YAAA,CAAA,CAAA,EAmE1B,eAnE0B;EAAqB;;;AAIhE;;;;;;;;;;AAuDA;EAQiB,WAAA,CAAA,SAAA,EAkBO,UAlBP,EAAA,QAAA,EAkB6B,eAlB7B,EAAA,YAAA,CAAA,EAkB6D,UAlB7D;EAkBO;;;;;EAwB6C,eAAA,CAAA,CAAA,EAZjD,UAYiD,GAAA,SAAA;EAAR;;;;;;;;EAoEU,OAAA,kBAAA,CAAA,QAAA,EApE5B,eAoE4B,CAAA,EApEV,OAoEU,CApEF,cAoEE,CAAA;EAAR;;;EAqDnD,YAAA,CAAA,CAAA,EAvGK,SAuGL;EAAR;;;AA6BJ;EAA0C,IAAA,CAAA,IAAA,EA5HxB,UA4HwB,CAAA,EA5Hd,OA4Hc,CA5Hd,UA4Hc,CA5Hd,WA4Hc,CAAA,CAAA;EAAmB;;;;wBAlFhC,oBAAoB,cAAc,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kCAmD3D,0BACD,aACP,QAAQ;;;;;;;;;;iBA6BI,mBAAA,OAA0B,mBAAmB,cAAc"}

package/dist/keypairs/passkey/keypair.mjs

@@ -45,11 +45,15 @@ var BrowserPasskeyProvider = class {
 			}
 		} });
 	}
-	async get(challenge) {
+	async get(challenge, credentialId) {
 		return await navigator.credentials.get({ publicKey: {
 			challenge,
 			userVerification: this.#options.authenticatorSelection?.userVerification || "required",
-			timeout: this.#options.timeout ?? 6e4
+			timeout: this.#options.timeout ?? 6e4,
+			...credentialId && { allowCredentials: [{
+				type: "public-key",
+				id: credentialId
+			}] }
 		} });
 	}
 };
@@ -78,10 +82,19 @@ var PasskeyKeypair = class PasskeyKeypair extends Signer {
 	* If there are existing passkey wallet, use `signAndRecover` to identify the correct
 	* public key and then initialize the instance. See usage in `signAndRecover`.
 	*/
-	constructor(publicKey, provider) {
+	constructor(publicKey, provider, credentialId) {
 		super();
 		this.publicKey = publicKey;
 		this.provider = provider;
+		this.credentialId = credentialId;
+	}
+	/**
+	* Return the credential ID for this passkey, if available.
+	* The credential ID is captured when creating a new passkey via `getPasskeyInstance`
+	* and can be used to constrain which credential the browser selects during signing.
+	*/
+	getCredentialId() {
+		return this.credentialId;
 	}
 	/**
 	* Creates an instance of Passkey signer invoking the passkey from navigator.
@@ -97,7 +110,7 @@ var PasskeyKeypair = class PasskeyKeypair extends Signer {
 		else {
 			const derSPKI = credential.response.getPublicKey();
 			const pubkeyUncompressed = parseDerSPKI(new Uint8Array(derSPKI));
-			return new PasskeyKeypair(p256.Point.fromBytes(pubkeyUncompressed).toBytes(true), provider);
+			return new PasskeyKeypair(p256.Point.fromBytes(pubkeyUncompressed).toBytes(true), provider, new Uint8Array(credential.rawId));
 		}
 	}
 	/**
@@ -111,7 +124,7 @@ var PasskeyKeypair = class PasskeyKeypair extends Signer {
 	* This is sent to passkey as the challenge field.
 	*/
 	async sign(data) {
-		const credential = await this.provider.get(data);
+		const credential = await this.provider.get(data, this.credentialId);
 		const authenticatorData = new Uint8Array(credential.response.authenticatorData);
 		const clientDataJSON = new Uint8Array(credential.response.clientDataJSON);
 		const clientDataJSONString = new TextDecoder().decode(clientDataJSON);
@@ -168,7 +181,7 @@ var PasskeyKeypair = class PasskeyKeypair extends Signer {
 	* const testMessage2 = new TextEncoder().encode('Hello world 2!');
 	* const possiblePks2 = await PasskeyKeypair.signAndRecover(provider, testMessage2);
 	* const commonPk = findCommonPublicKey(possiblePks, possiblePks2);
-	* const signer = new PasskeyKeypair(provider, commonPk.toRawBytes());
+	* const signer = new PasskeyKeypair(commonPk.toRawBytes(), provider);
 	* ```
 	*
 	* @param provider - the passkey provider.

package/dist/keypairs/passkey/keypair.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"keypair.mjs","names":["#name","#options","secp256r1"],"sources":["../../../src/keypairs/passkey/keypair.ts"],"sourcesContent":["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\nimport { toBase64 } from '@mysten/bcs';\nimport { p256 as secp256r1 } from '@noble/curves/nist.js';\nimport { blake2b } from '@noble/hashes/blake2.js';\nimport { sha256 } from '@noble/hashes/sha2.js';\nimport { randomBytes } from '@noble/hashes/utils.js';\n\nimport { PasskeyAuthenticator } from '../../bcs/bcs.js';\nimport type { IntentScope, SignatureWithBytes } from '../../cryptography/index.js';\nimport { messageWithIntent, SIGNATURE_SCHEME_TO_FLAG, Signer } from '../../cryptography/index.js';\nimport type { PublicKey } from '../../cryptography/publickey.js';\nimport type { SignatureScheme } from '../../cryptography/signature-scheme.js';\nimport {\n\tparseDerSPKI,\n\tPASSKEY_PUBLIC_KEY_SIZE,\n\tPASSKEY_SIGNATURE_SIZE,\n\tPasskeyPublicKey,\n} from './publickey.js';\nimport type { AuthenticationCredential, RegistrationCredential } from './types.js';\n\ntype DeepPartialConfigKeys = 'rp' | 'user' | 'authenticatorSelection';\n\ntype DeepPartial<T> = T extends object\n\t? {\n\t\t\t[P in keyof T]?: DeepPartial<T[P]>;\n\t\t}\n\t: T;\n\nexport type BrowserPasswordProviderOptions = Pick<\n\tDeepPartial<PublicKeyCredentialCreationOptions>,\n\tDeepPartialConfigKeys\n> &\n\tOmit<\n\t\tPartial<PublicKeyCredentialCreationOptions>,\n\t\tDeepPartialConfigKeys | 'pubKeyCredParams' | 'challenge'\n\t>;\n\nexport interface PasskeyProvider {\n\tcreate(): Promise<RegistrationCredential>;\n\tget(challenge: Uint8Array): Promise<AuthenticationCredential>;\n}\n\n// Default browser implementation\nexport class BrowserPasskeyProvider implements PasskeyProvider {\n\t#name: string;\n\t#options: BrowserPasswordProviderOptions;\n\n\tconstructor(name: string, options: BrowserPasswordProviderOptions) {\n\t\tthis.#name = name;\n\t\tthis.#options = options;\n\t}\n\n\tasync create(): Promise<RegistrationCredential> {\n\t\treturn (await navigator.credentials.create({\n\t\t\tpublicKey: {\n\t\t\t\ttimeout: this.#options.timeout ?? 60000,\n\t\t\t\t...this.#options,\n\t\t\t\trp: {\n\t\t\t\t\tname: this.#name,\n\t\t\t\t\t...this.#options.rp,\n\t\t\t\t},\n\t\t\t\tuser: {\n\t\t\t\t\tname: this.#name,\n\t\t\t\t\tdisplayName: this.#name,\n\t\t\t\t\t...this.#options.user,\n\t\t\t\t\tid: randomBytes(10) as BufferSource,\n\t\t\t\t},\n\t\t\t\tchallenge: new TextEncoder().encode('Create passkey wallet on Sui'),\n\t\t\t\tpubKeyCredParams: [{ alg: -7, type: 'public-key' }],\n\t\t\t\tauthenticatorSelection: {\n\t\t\t\t\tauthenticatorAttachment: 'cross-platform',\n\t\t\t\t\tresidentKey: 'required',\n\t\t\t\t\trequireResidentKey: true,\n\t\t\t\t\tuserVerification: 'required',\n\t\t\t\t\t...this.#options.authenticatorSelection,\n\t\t\t\t},\n\t\t\t},\n\t\t})) as RegistrationCredential;\n\t}\n\n\tasync get(challenge: Uint8Array): Promise<AuthenticationCredential> {\n\t\treturn (await navigator.credentials.get({\n\t\t\tpublicKey: {\n\t\t\t\tchallenge: challenge as BufferSource,\n\t\t\t\tuserVerification: this.#options.authenticatorSelection?.userVerification || 'required',\n\t\t\t\ttimeout: this.#options.timeout ?? 60000,\n\t\t\t},\n\t\t})) as AuthenticationCredential;\n\t}\n}\n\n/**\n * @experimental\n * A passkey signer used for signing transactions. This is a client side implementation for [SIP-9](https://github.com/sui-foundation/sips/blob/main/sips/sip-9.md).\n */\nexport class PasskeyKeypair extends Signer {\n\tprivate publicKey: Uint8Array;\n\tprivate provider: PasskeyProvider;\n\n\t/**\n\t * Get the key scheme of passkey,\n\t */\n\tgetKeyScheme(): SignatureScheme {\n\t\treturn 'Passkey';\n\t}\n\n\t/**\n\t * Creates an instance of Passkey signer. If no passkey wallet had created before,\n\t * use `getPasskeyInstance`. For example:\n\t * ```\n\t * let provider = new BrowserPasskeyProvider('Sui Passkey Example',{\n\t * \t  rpName: 'Sui Passkey Example',\n\t * \t  rpId: window.location.hostname,\n\t * } as BrowserPasswordProviderOptions);\n\t * const signer = await PasskeyKeypair.getPasskeyInstance(provider);\n\t * ```\n\t *\n\t * If there are existing passkey wallet, use `signAndRecover` to identify the correct\n\t * public key and then initialize the instance. See usage in `signAndRecover`.\n\t */\n\tconstructor(publicKey: Uint8Array, provider: PasskeyProvider) {\n\t\tsuper();\n\t\tthis.publicKey = publicKey;\n\t\tthis.provider = provider;\n\t}\n\n\t/**\n\t * Creates an instance of Passkey signer invoking the passkey from navigator.\n\t * Note that this will invoke the passkey device to create a fresh credential.\n\t * Should only be called if passkey wallet is created for the first time.\n\t *\n\t * @param provider - the passkey provider.\n\t * @returns the passkey instance.\n\t */\n\tstatic async getPasskeyInstance(provider: PasskeyProvider): Promise<PasskeyKeypair> {\n\t\t// create a passkey secp256r1 with the provider.\n\t\tconst credential = await provider.create();\n\n\t\tif (!credential.response.getPublicKey()) {\n\t\t\tthrow new Error('Invalid credential create response');\n\t\t} else {\n\t\t\tconst derSPKI = credential.response.getPublicKey()!;\n\t\t\tconst pubkeyUncompressed = parseDerSPKI(new Uint8Array(derSPKI));\n\t\t\tconst pubkey = secp256r1.Point.fromBytes(pubkeyUncompressed);\n\t\t\tconst pubkeyCompressed = pubkey.toBytes(true);\n\t\t\treturn new PasskeyKeypair(pubkeyCompressed, provider);\n\t\t}\n\t}\n\n\t/**\n\t * Return the public key for this passkey.\n\t */\n\tgetPublicKey(): PublicKey {\n\t\treturn new PasskeyPublicKey(this.publicKey);\n\t}\n\n\t/**\n\t * Return the signature for the provided data (i.e. blake2b(intent_message)).\n\t * This is sent to passkey as the challenge field.\n\t */\n\tasync sign(data: Uint8Array) {\n\t\t// asks the passkey to sign over challenge as the data.\n\t\tconst credential = await this.provider.get(data);\n\n\t\t// parse authenticatorData (as bytes), clientDataJSON (decoded as string).\n\t\tconst authenticatorData = new Uint8Array(credential.response.authenticatorData);\n\t\tconst clientDataJSON = new Uint8Array(credential.response.clientDataJSON); // response.clientDataJSON is already UTF-8 encoded JSON\n\t\tconst decoder = new TextDecoder();\n\t\tconst clientDataJSONString: string = decoder.decode(clientDataJSON);\n\n\t\tconst sig = secp256r1.Signature.fromBytes(new Uint8Array(credential.response.signature), 'der');\n\t\tconst normalizedSig = sig.hasHighS()\n\t\t\t? new secp256r1.Signature(sig.r, secp256r1.Point.Fn.neg(sig.s))\n\t\t\t: sig;\n\n\t\tconst normalized = normalizedSig.toBytes('compact');\n\n\t\tif (\n\t\t\tnormalized.length !== PASSKEY_SIGNATURE_SIZE ||\n\t\t\tthis.publicKey.length !== PASSKEY_PUBLIC_KEY_SIZE\n\t\t) {\n\t\t\tthrow new Error('Invalid signature or public key length');\n\t\t}\n\n\t\t// construct userSignature as flag || sig || pubkey for the secp256r1 signature.\n\t\tconst arr = new Uint8Array(1 + normalized.length + this.publicKey.length);\n\t\tarr.set([SIGNATURE_SCHEME_TO_FLAG['Secp256r1']]);\n\t\tarr.set(normalized, 1);\n\t\tarr.set(this.publicKey, 1 + normalized.length);\n\n\t\t// serialize all fields into a passkey signature according to https://github.com/sui-foundation/sips/blob/main/sips/sip-9.md#signature-encoding\n\t\treturn PasskeyAuthenticator.serialize({\n\t\t\tauthenticatorData: authenticatorData,\n\t\t\tclientDataJson: clientDataJSONString,\n\t\t\tuserSignature: arr,\n\t\t}).toBytes();\n\t}\n\n\t/**\n\t * This overrides the base class implementation that accepts the raw bytes and signs its\n\t * digest of the intent message, then serialize it with the passkey flag.\n\t */\n\tasync signWithIntent(bytes: Uint8Array, intent: IntentScope): Promise<SignatureWithBytes> {\n\t\t// prepend it into an intent message and computes the digest.\n\t\tconst intentMessage = messageWithIntent(intent, bytes);\n\t\tconst digest = blake2b(intentMessage, { dkLen: 32 });\n\n\t\t// sign the digest.\n\t\tconst signature = await this.sign(digest);\n\n\t\t// prepend with the passkey flag.\n\t\tconst serializedSignature = new Uint8Array(1 + signature.length);\n\t\tserializedSignature.set([SIGNATURE_SCHEME_TO_FLAG[this.getKeyScheme()]]);\n\t\tserializedSignature.set(signature, 1);\n\t\treturn {\n\t\t\tsignature: toBase64(serializedSignature),\n\t\t\tbytes: toBase64(bytes),\n\t\t};\n\t}\n\n\t/**\n\t * Given a message, asks the passkey device to sign it and return all (up to 4) possible public keys.\n\t * See: https://bitcoin.stackexchange.com/questions/81232/how-is-public-key-extracted-from-message-digital-signature-address\n\t *\n\t * This is useful if the user previously created passkey wallet with the origin, but the wallet session\n\t * does not have the public key / address. By calling this method twice with two different messages, the\n\t * wallet can compare the returned public keys and uniquely identify the previously created passkey wallet\n\t * using `findCommonPublicKey`.\n\t *\n\t * Alternatively, one call can be made and all possible public keys should be checked onchain to see if\n\t * there is any assets.\n\t *\n\t * Once the correct public key is identified, a passkey instance can then be initialized with this public key.\n\t *\n\t * Example usage to recover wallet with two signing calls:\n\t * ```\n\t * let provider = new BrowserPasskeyProvider('Sui Passkey Example',{\n\t *     rpName: 'Sui Passkey Example',\n\t * \t   rpId: window.location.hostname,\n\t * } as BrowserPasswordProviderOptions);\n\t * const testMessage = new TextEncoder().encode('Hello world!');\n\t * const possiblePks = await PasskeyKeypair.signAndRecover(provider, testMessage);\n\t * const testMessage2 = new TextEncoder().encode('Hello world 2!');\n\t * const possiblePks2 = await PasskeyKeypair.signAndRecover(provider, testMessage2);\n\t * const commonPk = findCommonPublicKey(possiblePks, possiblePks2);\n\t * const signer = new PasskeyKeypair(provider, commonPk.toRawBytes());\n\t * ```\n\t *\n\t * @param provider - the passkey provider.\n\t * @param message - the message to sign.\n\t * @returns all possible public keys.\n\t */\n\tstatic async signAndRecover(\n\t\tprovider: PasskeyProvider,\n\t\tmessage: Uint8Array,\n\t): Promise<PublicKey[]> {\n\t\tconst credential = await provider.get(message);\n\t\tconst fullMessage = messageFromAssertionResponse(credential.response);\n\t\tconst sig = secp256r1.Signature.fromBytes(new Uint8Array(credential.response.signature), 'der');\n\n\t\tconst res = [];\n\t\tconst msgHash = sha256(fullMessage);\n\t\tfor (let i = 0; i < 4; i++) {\n\t\t\tconst s = sig.addRecoveryBit(i);\n\t\t\ttry {\n\t\t\t\tconst pubkey = s.recoverPublicKey(msgHash);\n\t\t\t\tconst pk = new PasskeyPublicKey(pubkey.toBytes(true));\n\t\t\t\tres.push(pk);\n\t\t\t} catch {\n\t\t\t\tcontinue;\n\t\t\t}\n\t\t}\n\t\treturn res;\n\t}\n}\n\n/**\n * Finds the unique public key that exists in both arrays, throws error if the common\n * pubkey does not equal to one.\n *\n * @param arr1 - The first pubkeys array.\n * @param arr2 - The second pubkeys array.\n * @returns The only common pubkey in both arrays.\n */\nexport function findCommonPublicKey(arr1: PublicKey[], arr2: PublicKey[]): PublicKey {\n\tconst matchingPubkeys: PublicKey[] = [];\n\tfor (const pubkey1 of arr1) {\n\t\tfor (const pubkey2 of arr2) {\n\t\t\tif (pubkey1.equals(pubkey2)) {\n\t\t\t\tmatchingPubkeys.push(pubkey1);\n\t\t\t}\n\t\t}\n\t}\n\tif (matchingPubkeys.length !== 1) {\n\t\tthrow new Error('No unique public key found');\n\t}\n\treturn matchingPubkeys[0];\n}\n\n/**\n * Constructs the message that the passkey signature is produced over as authenticatorData || sha256(clientDataJSON).\n */\nfunction messageFromAssertionResponse(response: AuthenticatorAssertionResponse): Uint8Array {\n\tconst authenticatorData = new Uint8Array(response.authenticatorData);\n\tconst clientDataJSON = new Uint8Array(response.clientDataJSON);\n\tconst clientDataJSONDigest = sha256(clientDataJSON);\n\treturn new Uint8Array([...authenticatorData, ...clientDataJSONDigest]);\n}\n"],"mappings":";;;;;;;;;;;;AA6CA,IAAa,yBAAb,MAA+D;CAC9D;CACA;CAEA,YAAY,MAAc,SAAyC;AAClE,QAAKA,OAAQ;AACb,QAAKC,UAAW;;CAGjB,MAAM,SAA0C;AAC/C,SAAQ,MAAM,UAAU,YAAY,OAAO,EAC1C,WAAW;GACV,SAAS,MAAKA,QAAS,WAAW;GAClC,GAAG,MAAKA;GACR,IAAI;IACH,MAAM,MAAKD;IACX,GAAG,MAAKC,QAAS;IACjB;GACD,MAAM;IACL,MAAM,MAAKD;IACX,aAAa,MAAKA;IAClB,GAAG,MAAKC,QAAS;IACjB,IAAI,YAAY,GAAG;IACnB;GACD,WAAW,IAAI,aAAa,CAAC,OAAO,+BAA+B;GACnE,kBAAkB,CAAC;IAAE,KAAK;IAAI,MAAM;IAAc,CAAC;GACnD,wBAAwB;IACvB,yBAAyB;IACzB,aAAa;IACb,oBAAoB;IACpB,kBAAkB;IAClB,GAAG,MAAKA,QAAS;IACjB;GACD,EACD,CAAC;;CAGH,MAAM,IAAI,WAA0D;AACnE,SAAQ,MAAM,UAAU,YAAY,IAAI,EACvC,WAAW;GACC;GACX,kBAAkB,MAAKA,QAAS,wBAAwB,oBAAoB;GAC5E,SAAS,MAAKA,QAAS,WAAW;GAClC,EACD,CAAC;;;;;;;AAQJ,IAAa,iBAAb,MAAa,uBAAuB,OAAO;;;;CAO1C,eAAgC;AAC/B,SAAO;;;;;;;;;;;;;;;;CAiBR,YAAY,WAAuB,UAA2B;AAC7D,SAAO;AACP,OAAK,YAAY;AACjB,OAAK,WAAW;;;;;;;;;;CAWjB,aAAa,mBAAmB,UAAoD;EAEnF,MAAM,aAAa,MAAM,SAAS,QAAQ;AAE1C,MAAI,CAAC,WAAW,SAAS,cAAc,CACtC,OAAM,IAAI,MAAM,qCAAqC;OAC/C;GACN,MAAM,UAAU,WAAW,SAAS,cAAc;GAClD,MAAM,qBAAqB,aAAa,IAAI,WAAW,QAAQ,CAAC;AAGhE,UAAO,IAAI,eAFIC,KAAU,MAAM,UAAU,mBAAmB,CAC5B,QAAQ,KAAK,EACD,SAAS;;;;;;CAOvD,eAA0B;AACzB,SAAO,IAAI,iBAAiB,KAAK,UAAU;;;;;;CAO5C,MAAM,KAAK,MAAkB;EAE5B,MAAM,aAAa,MAAM,KAAK,SAAS,IAAI,KAAK;EAGhD,MAAM,oBAAoB,IAAI,WAAW,WAAW,SAAS,kBAAkB;EAC/E,MAAM,iBAAiB,IAAI,WAAW,WAAW,SAAS,eAAe;EAEzE,MAAM,uBADU,IAAI,aAAa,CACY,OAAO,eAAe;EAEnE,MAAM,MAAMA,KAAU,UAAU,UAAU,IAAI,WAAW,WAAW,SAAS,UAAU,EAAE,MAAM;EAK/F,MAAM,cAJgB,IAAI,UAAU,GACjC,IAAIA,KAAU,UAAU,IAAI,GAAGA,KAAU,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC,GAC7D,KAE8B,QAAQ,UAAU;AAEnD,MACC,WAAW,WAAW,0BACtB,KAAK,UAAU,WAAW,wBAE1B,OAAM,IAAI,MAAM,yCAAyC;EAI1D,MAAM,MAAM,IAAI,WAAW,IAAI,WAAW,SAAS,KAAK,UAAU,OAAO;AACzE,MAAI,IAAI,CAAC,yBAAyB,aAAa,CAAC;AAChD,MAAI,IAAI,YAAY,EAAE;AACtB,MAAI,IAAI,KAAK,WAAW,IAAI,WAAW,OAAO;AAG9C,SAAO,qBAAqB,UAAU;GAClB;GACnB,gBAAgB;GAChB,eAAe;GACf,CAAC,CAAC,SAAS;;;;;;CAOb,MAAM,eAAe,OAAmB,QAAkD;EAGzF,MAAM,SAAS,QADO,kBAAkB,QAAQ,MAAM,EAChB,EAAE,OAAO,IAAI,CAAC;EAGpD,MAAM,YAAY,MAAM,KAAK,KAAK,OAAO;EAGzC,MAAM,sBAAsB,IAAI,WAAW,IAAI,UAAU,OAAO;AAChE,sBAAoB,IAAI,CAAC,yBAAyB,KAAK,cAAc,EAAE,CAAC;AACxE,sBAAoB,IAAI,WAAW,EAAE;AACrC,SAAO;GACN,WAAW,SAAS,oBAAoB;GACxC,OAAO,SAAS,MAAM;GACtB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAmCF,aAAa,eACZ,UACA,SACuB;EACvB,MAAM,aAAa,MAAM,SAAS,IAAI,QAAQ;EAC9C,MAAM,cAAc,6BAA6B,WAAW,SAAS;EACrE,MAAM,MAAMA,KAAU,UAAU,UAAU,IAAI,WAAW,WAAW,SAAS,UAAU,EAAE,MAAM;EAE/F,MAAM,MAAM,EAAE;EACd,MAAM,UAAU,OAAO,YAAY;AACnC,OAAK,IAAI,IAAI,GAAG,IAAI,GAAG,KAAK;GAC3B,MAAM,IAAI,IAAI,eAAe,EAAE;AAC/B,OAAI;IAEH,MAAM,KAAK,IAAI,iBADA,EAAE,iBAAiB,QAAQ,CACH,QAAQ,KAAK,CAAC;AACrD,QAAI,KAAK,GAAG;WACL;AACP;;;AAGF,SAAO;;;;;;;;;;;AAYT,SAAgB,oBAAoB,MAAmB,MAA8B;CACpF,MAAM,kBAA+B,EAAE;AACvC,MAAK,MAAM,WAAW,KACrB,MAAK,MAAM,WAAW,KACrB,KAAI,QAAQ,OAAO,QAAQ,CAC1B,iBAAgB,KAAK,QAAQ;AAIhC,KAAI,gBAAgB,WAAW,EAC9B,OAAM,IAAI,MAAM,6BAA6B;AAE9C,QAAO,gBAAgB;;;;;AAMxB,SAAS,6BAA6B,UAAsD;CAC3F,MAAM,oBAAoB,IAAI,WAAW,SAAS,kBAAkB;CAEpE,MAAM,uBAAuB,OADN,IAAI,WAAW,SAAS,eAAe,CACX;AACnD,QAAO,IAAI,WAAW,CAAC,GAAG,mBAAmB,GAAG,qBAAqB,CAAC"}
+{"version":3,"file":"keypair.mjs","names":["#name","#options","secp256r1"],"sources":["../../../src/keypairs/passkey/keypair.ts"],"sourcesContent":["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\nimport { toBase64 } from '@mysten/bcs';\nimport { p256 as secp256r1 } from '@noble/curves/nist.js';\nimport { blake2b } from '@noble/hashes/blake2.js';\nimport { sha256 } from '@noble/hashes/sha2.js';\nimport { randomBytes } from '@noble/hashes/utils.js';\n\nimport { PasskeyAuthenticator } from '../../bcs/bcs.js';\nimport type { IntentScope, SignatureWithBytes } from '../../cryptography/index.js';\nimport { messageWithIntent, SIGNATURE_SCHEME_TO_FLAG, Signer } from '../../cryptography/index.js';\nimport type { PublicKey } from '../../cryptography/publickey.js';\nimport type { SignatureScheme } from '../../cryptography/signature-scheme.js';\nimport {\n\tparseDerSPKI,\n\tPASSKEY_PUBLIC_KEY_SIZE,\n\tPASSKEY_SIGNATURE_SIZE,\n\tPasskeyPublicKey,\n} from './publickey.js';\nimport type { AuthenticationCredential, RegistrationCredential } from './types.js';\n\ntype DeepPartialConfigKeys = 'rp' | 'user' | 'authenticatorSelection';\n\ntype DeepPartial<T> = T extends object\n\t? {\n\t\t\t[P in keyof T]?: DeepPartial<T[P]>;\n\t\t}\n\t: T;\n\nexport type BrowserPasswordProviderOptions = Pick<\n\tDeepPartial<PublicKeyCredentialCreationOptions>,\n\tDeepPartialConfigKeys\n> &\n\tOmit<\n\t\tPartial<PublicKeyCredentialCreationOptions>,\n\t\tDeepPartialConfigKeys | 'pubKeyCredParams' | 'challenge'\n\t>;\n\nexport interface PasskeyProvider {\n\tcreate(): Promise<RegistrationCredential>;\n\tget(challenge: Uint8Array, credentialId?: Uint8Array): Promise<AuthenticationCredential>;\n}\n\n// Default browser implementation\nexport class BrowserPasskeyProvider implements PasskeyProvider {\n\t#name: string;\n\t#options: BrowserPasswordProviderOptions;\n\n\tconstructor(name: string, options: BrowserPasswordProviderOptions) {\n\t\tthis.#name = name;\n\t\tthis.#options = options;\n\t}\n\n\tasync create(): Promise<RegistrationCredential> {\n\t\treturn (await navigator.credentials.create({\n\t\t\tpublicKey: {\n\t\t\t\ttimeout: this.#options.timeout ?? 60000,\n\t\t\t\t...this.#options,\n\t\t\t\trp: {\n\t\t\t\t\tname: this.#name,\n\t\t\t\t\t...this.#options.rp,\n\t\t\t\t},\n\t\t\t\tuser: {\n\t\t\t\t\tname: this.#name,\n\t\t\t\t\tdisplayName: this.#name,\n\t\t\t\t\t...this.#options.user,\n\t\t\t\t\tid: randomBytes(10) as BufferSource,\n\t\t\t\t},\n\t\t\t\tchallenge: new TextEncoder().encode('Create passkey wallet on Sui'),\n\t\t\t\tpubKeyCredParams: [{ alg: -7, type: 'public-key' }],\n\t\t\t\tauthenticatorSelection: {\n\t\t\t\t\tauthenticatorAttachment: 'cross-platform',\n\t\t\t\t\tresidentKey: 'required',\n\t\t\t\t\trequireResidentKey: true,\n\t\t\t\t\tuserVerification: 'required',\n\t\t\t\t\t...this.#options.authenticatorSelection,\n\t\t\t\t},\n\t\t\t},\n\t\t})) as RegistrationCredential;\n\t}\n\n\tasync get(challenge: Uint8Array, credentialId?: Uint8Array): Promise<AuthenticationCredential> {\n\t\treturn (await navigator.credentials.get({\n\t\t\tpublicKey: {\n\t\t\t\tchallenge: challenge as BufferSource,\n\t\t\t\tuserVerification: this.#options.authenticatorSelection?.userVerification || 'required',\n\t\t\t\ttimeout: this.#options.timeout ?? 60000,\n\t\t\t\t...(credentialId && {\n\t\t\t\t\tallowCredentials: [{ type: 'public-key' as const, id: credentialId as BufferSource }],\n\t\t\t\t}),\n\t\t\t},\n\t\t})) as AuthenticationCredential;\n\t}\n}\n\n/**\n * @experimental\n * A passkey signer used for signing transactions. This is a client side implementation for [SIP-9](https://github.com/sui-foundation/sips/blob/main/sips/sip-9.md).\n */\nexport class PasskeyKeypair extends Signer {\n\tprivate publicKey: Uint8Array;\n\tprivate provider: PasskeyProvider;\n\tprivate credentialId?: Uint8Array;\n\n\t/**\n\t * Get the key scheme of passkey,\n\t */\n\tgetKeyScheme(): SignatureScheme {\n\t\treturn 'Passkey';\n\t}\n\n\t/**\n\t * Creates an instance of Passkey signer. If no passkey wallet had created before,\n\t * use `getPasskeyInstance`. For example:\n\t * ```\n\t * let provider = new BrowserPasskeyProvider('Sui Passkey Example',{\n\t * \t  rpName: 'Sui Passkey Example',\n\t * \t  rpId: window.location.hostname,\n\t * } as BrowserPasswordProviderOptions);\n\t * const signer = await PasskeyKeypair.getPasskeyInstance(provider);\n\t * ```\n\t *\n\t * If there are existing passkey wallet, use `signAndRecover` to identify the correct\n\t * public key and then initialize the instance. See usage in `signAndRecover`.\n\t */\n\tconstructor(publicKey: Uint8Array, provider: PasskeyProvider, credentialId?: Uint8Array) {\n\t\tsuper();\n\t\tthis.publicKey = publicKey;\n\t\tthis.provider = provider;\n\t\tthis.credentialId = credentialId;\n\t}\n\n\t/**\n\t * Return the credential ID for this passkey, if available.\n\t * The credential ID is captured when creating a new passkey via `getPasskeyInstance`\n\t * and can be used to constrain which credential the browser selects during signing.\n\t */\n\tgetCredentialId(): Uint8Array | undefined {\n\t\treturn this.credentialId;\n\t}\n\n\t/**\n\t * Creates an instance of Passkey signer invoking the passkey from navigator.\n\t * Note that this will invoke the passkey device to create a fresh credential.\n\t * Should only be called if passkey wallet is created for the first time.\n\t *\n\t * @param provider - the passkey provider.\n\t * @returns the passkey instance.\n\t */\n\tstatic async getPasskeyInstance(provider: PasskeyProvider): Promise<PasskeyKeypair> {\n\t\t// create a passkey secp256r1 with the provider.\n\t\tconst credential = await provider.create();\n\n\t\tif (!credential.response.getPublicKey()) {\n\t\t\tthrow new Error('Invalid credential create response');\n\t\t} else {\n\t\t\tconst derSPKI = credential.response.getPublicKey()!;\n\t\t\tconst pubkeyUncompressed = parseDerSPKI(new Uint8Array(derSPKI));\n\t\t\tconst pubkey = secp256r1.Point.fromBytes(pubkeyUncompressed);\n\t\t\tconst pubkeyCompressed = pubkey.toBytes(true);\n\t\t\treturn new PasskeyKeypair(pubkeyCompressed, provider, new Uint8Array(credential.rawId));\n\t\t}\n\t}\n\n\t/**\n\t * Return the public key for this passkey.\n\t */\n\tgetPublicKey(): PublicKey {\n\t\treturn new PasskeyPublicKey(this.publicKey);\n\t}\n\n\t/**\n\t * Return the signature for the provided data (i.e. blake2b(intent_message)).\n\t * This is sent to passkey as the challenge field.\n\t */\n\tasync sign(data: Uint8Array) {\n\t\t// asks the passkey to sign over challenge as the data.\n\t\tconst credential = await this.provider.get(data, this.credentialId);\n\n\t\t// parse authenticatorData (as bytes), clientDataJSON (decoded as string).\n\t\tconst authenticatorData = new Uint8Array(credential.response.authenticatorData);\n\t\tconst clientDataJSON = new Uint8Array(credential.response.clientDataJSON); // response.clientDataJSON is already UTF-8 encoded JSON\n\t\tconst decoder = new TextDecoder();\n\t\tconst clientDataJSONString: string = decoder.decode(clientDataJSON);\n\n\t\tconst sig = secp256r1.Signature.fromBytes(new Uint8Array(credential.response.signature), 'der');\n\t\tconst normalizedSig = sig.hasHighS()\n\t\t\t? new secp256r1.Signature(sig.r, secp256r1.Point.Fn.neg(sig.s))\n\t\t\t: sig;\n\n\t\tconst normalized = normalizedSig.toBytes('compact');\n\n\t\tif (\n\t\t\tnormalized.length !== PASSKEY_SIGNATURE_SIZE ||\n\t\t\tthis.publicKey.length !== PASSKEY_PUBLIC_KEY_SIZE\n\t\t) {\n\t\t\tthrow new Error('Invalid signature or public key length');\n\t\t}\n\n\t\t// construct userSignature as flag || sig || pubkey for the secp256r1 signature.\n\t\tconst arr = new Uint8Array(1 + normalized.length + this.publicKey.length);\n\t\tarr.set([SIGNATURE_SCHEME_TO_FLAG['Secp256r1']]);\n\t\tarr.set(normalized, 1);\n\t\tarr.set(this.publicKey, 1 + normalized.length);\n\n\t\t// serialize all fields into a passkey signature according to https://github.com/sui-foundation/sips/blob/main/sips/sip-9.md#signature-encoding\n\t\treturn PasskeyAuthenticator.serialize({\n\t\t\tauthenticatorData: authenticatorData,\n\t\t\tclientDataJson: clientDataJSONString,\n\t\t\tuserSignature: arr,\n\t\t}).toBytes();\n\t}\n\n\t/**\n\t * This overrides the base class implementation that accepts the raw bytes and signs its\n\t * digest of the intent message, then serialize it with the passkey flag.\n\t */\n\tasync signWithIntent(bytes: Uint8Array, intent: IntentScope): Promise<SignatureWithBytes> {\n\t\t// prepend it into an intent message and computes the digest.\n\t\tconst intentMessage = messageWithIntent(intent, bytes);\n\t\tconst digest = blake2b(intentMessage, { dkLen: 32 });\n\n\t\t// sign the digest.\n\t\tconst signature = await this.sign(digest);\n\n\t\t// prepend with the passkey flag.\n\t\tconst serializedSignature = new Uint8Array(1 + signature.length);\n\t\tserializedSignature.set([SIGNATURE_SCHEME_TO_FLAG[this.getKeyScheme()]]);\n\t\tserializedSignature.set(signature, 1);\n\t\treturn {\n\t\t\tsignature: toBase64(serializedSignature),\n\t\t\tbytes: toBase64(bytes),\n\t\t};\n\t}\n\n\t/**\n\t * Given a message, asks the passkey device to sign it and return all (up to 4) possible public keys.\n\t * See: https://bitcoin.stackexchange.com/questions/81232/how-is-public-key-extracted-from-message-digital-signature-address\n\t *\n\t * This is useful if the user previously created passkey wallet with the origin, but the wallet session\n\t * does not have the public key / address. By calling this method twice with two different messages, the\n\t * wallet can compare the returned public keys and uniquely identify the previously created passkey wallet\n\t * using `findCommonPublicKey`.\n\t *\n\t * Alternatively, one call can be made and all possible public keys should be checked onchain to see if\n\t * there is any assets.\n\t *\n\t * Once the correct public key is identified, a passkey instance can then be initialized with this public key.\n\t *\n\t * Example usage to recover wallet with two signing calls:\n\t * ```\n\t * let provider = new BrowserPasskeyProvider('Sui Passkey Example',{\n\t *     rpName: 'Sui Passkey Example',\n\t * \t   rpId: window.location.hostname,\n\t * } as BrowserPasswordProviderOptions);\n\t * const testMessage = new TextEncoder().encode('Hello world!');\n\t * const possiblePks = await PasskeyKeypair.signAndRecover(provider, testMessage);\n\t * const testMessage2 = new TextEncoder().encode('Hello world 2!');\n\t * const possiblePks2 = await PasskeyKeypair.signAndRecover(provider, testMessage2);\n\t * const commonPk = findCommonPublicKey(possiblePks, possiblePks2);\n\t * const signer = new PasskeyKeypair(commonPk.toRawBytes(), provider);\n\t * ```\n\t *\n\t * @param provider - the passkey provider.\n\t * @param message - the message to sign.\n\t * @returns all possible public keys.\n\t */\n\tstatic async signAndRecover(\n\t\tprovider: PasskeyProvider,\n\t\tmessage: Uint8Array,\n\t): Promise<PublicKey[]> {\n\t\tconst credential = await provider.get(message);\n\t\tconst fullMessage = messageFromAssertionResponse(credential.response);\n\t\tconst sig = secp256r1.Signature.fromBytes(new Uint8Array(credential.response.signature), 'der');\n\n\t\tconst res = [];\n\t\tconst msgHash = sha256(fullMessage);\n\t\tfor (let i = 0; i < 4; i++) {\n\t\t\tconst s = sig.addRecoveryBit(i);\n\t\t\ttry {\n\t\t\t\tconst pubkey = s.recoverPublicKey(msgHash);\n\t\t\t\tconst pk = new PasskeyPublicKey(pubkey.toBytes(true));\n\t\t\t\tres.push(pk);\n\t\t\t} catch {\n\t\t\t\tcontinue;\n\t\t\t}\n\t\t}\n\t\treturn res;\n\t}\n}\n\n/**\n * Finds the unique public key that exists in both arrays, throws error if the common\n * pubkey does not equal to one.\n *\n * @param arr1 - The first pubkeys array.\n * @param arr2 - The second pubkeys array.\n * @returns The only common pubkey in both arrays.\n */\nexport function findCommonPublicKey(arr1: PublicKey[], arr2: PublicKey[]): PublicKey {\n\tconst matchingPubkeys: PublicKey[] = [];\n\tfor (const pubkey1 of arr1) {\n\t\tfor (const pubkey2 of arr2) {\n\t\t\tif (pubkey1.equals(pubkey2)) {\n\t\t\t\tmatchingPubkeys.push(pubkey1);\n\t\t\t}\n\t\t}\n\t}\n\tif (matchingPubkeys.length !== 1) {\n\t\tthrow new Error('No unique public key found');\n\t}\n\treturn matchingPubkeys[0];\n}\n\n/**\n * Constructs the message that the passkey signature is produced over as authenticatorData || sha256(clientDataJSON).\n */\nfunction messageFromAssertionResponse(response: AuthenticatorAssertionResponse): Uint8Array {\n\tconst authenticatorData = new Uint8Array(response.authenticatorData);\n\tconst clientDataJSON = new Uint8Array(response.clientDataJSON);\n\tconst clientDataJSONDigest = sha256(clientDataJSON);\n\treturn new Uint8Array([...authenticatorData, ...clientDataJSONDigest]);\n}\n"],"mappings":";;;;;;;;;;;;AA6CA,IAAa,yBAAb,MAA+D;CAC9D;CACA;CAEA,YAAY,MAAc,SAAyC;AAClE,QAAKA,OAAQ;AACb,QAAKC,UAAW;;CAGjB,MAAM,SAA0C;AAC/C,SAAQ,MAAM,UAAU,YAAY,OAAO,EAC1C,WAAW;GACV,SAAS,MAAKA,QAAS,WAAW;GAClC,GAAG,MAAKA;GACR,IAAI;IACH,MAAM,MAAKD;IACX,GAAG,MAAKC,QAAS;IACjB;GACD,MAAM;IACL,MAAM,MAAKD;IACX,aAAa,MAAKA;IAClB,GAAG,MAAKC,QAAS;IACjB,IAAI,YAAY,GAAG;IACnB;GACD,WAAW,IAAI,aAAa,CAAC,OAAO,+BAA+B;GACnE,kBAAkB,CAAC;IAAE,KAAK;IAAI,MAAM;IAAc,CAAC;GACnD,wBAAwB;IACvB,yBAAyB;IACzB,aAAa;IACb,oBAAoB;IACpB,kBAAkB;IAClB,GAAG,MAAKA,QAAS;IACjB;GACD,EACD,CAAC;;CAGH,MAAM,IAAI,WAAuB,cAA8D;AAC9F,SAAQ,MAAM,UAAU,YAAY,IAAI,EACvC,WAAW;GACC;GACX,kBAAkB,MAAKA,QAAS,wBAAwB,oBAAoB;GAC5E,SAAS,MAAKA,QAAS,WAAW;GAClC,GAAI,gBAAgB,EACnB,kBAAkB,CAAC;IAAE,MAAM;IAAuB,IAAI;IAA8B,CAAC,EACrF;GACD,EACD,CAAC;;;;;;;AAQJ,IAAa,iBAAb,MAAa,uBAAuB,OAAO;;;;CAQ1C,eAAgC;AAC/B,SAAO;;;;;;;;;;;;;;;;CAiBR,YAAY,WAAuB,UAA2B,cAA2B;AACxF,SAAO;AACP,OAAK,YAAY;AACjB,OAAK,WAAW;AAChB,OAAK,eAAe;;;;;;;CAQrB,kBAA0C;AACzC,SAAO,KAAK;;;;;;;;;;CAWb,aAAa,mBAAmB,UAAoD;EAEnF,MAAM,aAAa,MAAM,SAAS,QAAQ;AAE1C,MAAI,CAAC,WAAW,SAAS,cAAc,CACtC,OAAM,IAAI,MAAM,qCAAqC;OAC/C;GACN,MAAM,UAAU,WAAW,SAAS,cAAc;GAClD,MAAM,qBAAqB,aAAa,IAAI,WAAW,QAAQ,CAAC;AAGhE,UAAO,IAAI,eAFIC,KAAU,MAAM,UAAU,mBAAmB,CAC5B,QAAQ,KAAK,EACD,UAAU,IAAI,WAAW,WAAW,MAAM,CAAC;;;;;;CAOzF,eAA0B;AACzB,SAAO,IAAI,iBAAiB,KAAK,UAAU;;;;;;CAO5C,MAAM,KAAK,MAAkB;EAE5B,MAAM,aAAa,MAAM,KAAK,SAAS,IAAI,MAAM,KAAK,aAAa;EAGnE,MAAM,oBAAoB,IAAI,WAAW,WAAW,SAAS,kBAAkB;EAC/E,MAAM,iBAAiB,IAAI,WAAW,WAAW,SAAS,eAAe;EAEzE,MAAM,uBADU,IAAI,aAAa,CACY,OAAO,eAAe;EAEnE,MAAM,MAAMA,KAAU,UAAU,UAAU,IAAI,WAAW,WAAW,SAAS,UAAU,EAAE,MAAM;EAK/F,MAAM,cAJgB,IAAI,UAAU,GACjC,IAAIA,KAAU,UAAU,IAAI,GAAGA,KAAU,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC,GAC7D,KAE8B,QAAQ,UAAU;AAEnD,MACC,WAAW,WAAW,0BACtB,KAAK,UAAU,WAAW,wBAE1B,OAAM,IAAI,MAAM,yCAAyC;EAI1D,MAAM,MAAM,IAAI,WAAW,IAAI,WAAW,SAAS,KAAK,UAAU,OAAO;AACzE,MAAI,IAAI,CAAC,yBAAyB,aAAa,CAAC;AAChD,MAAI,IAAI,YAAY,EAAE;AACtB,MAAI,IAAI,KAAK,WAAW,IAAI,WAAW,OAAO;AAG9C,SAAO,qBAAqB,UAAU;GAClB;GACnB,gBAAgB;GAChB,eAAe;GACf,CAAC,CAAC,SAAS;;;;;;CAOb,MAAM,eAAe,OAAmB,QAAkD;EAGzF,MAAM,SAAS,QADO,kBAAkB,QAAQ,MAAM,EAChB,EAAE,OAAO,IAAI,CAAC;EAGpD,MAAM,YAAY,MAAM,KAAK,KAAK,OAAO;EAGzC,MAAM,sBAAsB,IAAI,WAAW,IAAI,UAAU,OAAO;AAChE,sBAAoB,IAAI,CAAC,yBAAyB,KAAK,cAAc,EAAE,CAAC;AACxE,sBAAoB,IAAI,WAAW,EAAE;AACrC,SAAO;GACN,WAAW,SAAS,oBAAoB;GACxC,OAAO,SAAS,MAAM;GACtB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAmCF,aAAa,eACZ,UACA,SACuB;EACvB,MAAM,aAAa,MAAM,SAAS,IAAI,QAAQ;EAC9C,MAAM,cAAc,6BAA6B,WAAW,SAAS;EACrE,MAAM,MAAMA,KAAU,UAAU,UAAU,IAAI,WAAW,WAAW,SAAS,UAAU,EAAE,MAAM;EAE/F,MAAM,MAAM,EAAE;EACd,MAAM,UAAU,OAAO,YAAY;AACnC,OAAK,IAAI,IAAI,GAAG,IAAI,GAAG,KAAK;GAC3B,MAAM,IAAI,IAAI,eAAe,EAAE;AAC/B,OAAI;IAEH,MAAM,KAAK,IAAI,iBADA,EAAE,iBAAiB,QAAQ,CACH,QAAQ,KAAK,CAAC;AACrD,QAAI,KAAK,GAAG;WACL;AACP;;;AAGF,SAAO;;;;;;;;;;;AAYT,SAAgB,oBAAoB,MAAmB,MAA8B;CACpF,MAAM,kBAA+B,EAAE;AACvC,MAAK,MAAM,WAAW,KACrB,MAAK,MAAM,WAAW,KACrB,KAAI,QAAQ,OAAO,QAAQ,CAC1B,iBAAgB,KAAK,QAAQ;AAIhC,KAAI,gBAAgB,WAAW,EAC9B,OAAM,IAAI,MAAM,6BAA6B;AAE9C,QAAO,gBAAgB;;;;;AAMxB,SAAS,6BAA6B,UAAsD;CAC3F,MAAM,oBAAoB,IAAI,WAAW,SAAS,kBAAkB;CAEpE,MAAM,uBAAuB,OADN,IAAI,WAAW,SAAS,eAAe,CACX;AACnD,QAAO,IAAI,WAAW,CAAC,GAAG,mBAAmB,GAAG,qBAAqB,CAAC"}

package/dist/transactions/Transaction.d.mts

@@ -8,7 +8,7 @@ import { createPure } from "./pure.mjs";
 import { SignatureWithBytes, Signer } from "../cryptography/keypair.mjs";
 import "../cryptography/index.mjs";
 import { ClientWithCoreApi } from "../client/core.mjs";
-import * as _mysten_bcs1124 from "@mysten/bcs";
+import * as _mysten_bcs810 from "@mysten/bcs";
 import { SerializedBcs } from "@mysten/bcs";
 import { InferInput } from "valibot";
 
@@ -77,7 +77,7 @@ declare class Transaction {
   getData(): {
     version: 2;
     sender?: string | null | undefined;
-    expiration?: _mysten_bcs1124.EnumOutputShapeWithKeys<{
+    expiration?: _mysten_bcs810.EnumOutputShapeWithKeys<{
       None: true;
       Epoch: string | number;
       ValidDuring: {
@@ -88,7 +88,7 @@ declare class Transaction {
         chain: string;
         nonce: number;
       };
-    }, "None" | "Epoch" | "ValidDuring"> | null | undefined;
+    }, "Epoch" | "None" | "ValidDuring"> | null | undefined;
     gasData: {
       budget: string | number | null;
       price: string | number | null;
@@ -99,8 +99,8 @@ declare class Transaction {
         digest: string;
       }[] | null;
     };
-    inputs: _mysten_bcs1124.EnumOutputShapeWithKeys<{
-      Object: _mysten_bcs1124.EnumOutputShapeWithKeys<{
+    inputs: _mysten_bcs810.EnumOutputShapeWithKeys<{
+      Object: _mysten_bcs810.EnumOutputShapeWithKeys<{
         ImmOrOwnedObject: {
           objectId: string;
           version: string | number;
@@ -116,7 +116,7 @@ declare class Transaction {
           version: string | number;
           digest: string;
         };
-      }, "ImmOrOwnedObject" | "SharedObject" | "Receiving">;
+      }, "Receiving" | "ImmOrOwnedObject" | "SharedObject">;
       Pure: {
         bytes: string;
       };
@@ -139,13 +139,13 @@ declare class Transaction {
           Balance: string;
           $kind: "Balance";
         };
-        withdrawFrom: _mysten_bcs1124.EnumOutputShapeWithKeys<{
+        withdrawFrom: _mysten_bcs810.EnumOutputShapeWithKeys<{
           Sender: true;
           Sponsor: true;
         }, "Sender" | "Sponsor">;
       };
-    }, "Pure" | "Object" | "FundsWithdrawal" | "UnresolvedPure" | "UnresolvedObject">[];
-    commands: _mysten_bcs1124.EnumOutputShapeWithKeys<{
+    }, "Object" | "Pure" | "FundsWithdrawal" | "UnresolvedPure" | "UnresolvedObject">[];
+    commands: _mysten_bcs810.EnumOutputShapeWithKeys<{
       MoveCall: {
         package: string;
         module: string;

package/dist/transactions/Transaction.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"Transaction.d.mts","names":[],"sources":["../../src/transactions/Transaction.ts"],"sourcesContent":[],"mappings":";;;;;;;;;;;;;;;KAoCY,yBAAA,GACT,QAAQ,kBAAkB;;;WAEtB,gBACC,QAAQ,kBAAkB;EAJtB,KAAA,EAAA,OAAA;EACiB,IAAA,CAAA,EAAA,MAAA;CAAlB,CAAA,CAAA,GAIR,qBAJQ,CAIc,yBAJd,CAAA;AAAR,KAMS,iBAAA,GAAoB,OAN7B,CAMqC,QANrC,EAAA;EAEI,MAAA,EAAA,OAAA;CAC2B,CAAA,GAIjC,OAJiC,CAIzB,QAJyB,EAAA;EAAlB,YAAA,EAAA,OAAA;CAAR,CAAA,EAAA;AACiB,KAKb,yBAAA,GACT,OANsB,CAMd,QANc,EAAA;EAAtB,MAAA,EAAA,OAAA;CAAqB,CAAA,GAAA,SAOZ,OAPY,CAOJ,QAPI,EAAA;EAEZ,YAAA,EAAA,OAAiB;CAAW,CAAA,EAAA;AAAR,KAOpB,qBAPoB,CAAA,UAQrB,yBARqB,GAAA,IAAA,GAQc,yBARd,GAAA,IAAA,CAAA,GAAA,CAAA,EAAA,EASvB,WATuB,EAAA,GASP,OATO,CASC,CATD,GAAA,IAAA,CAAA;cA0E1B,iBAzEG,EAAA,KAAA;UA2EC,WAAA,SAAoB,uBA3E7B,CAAA;EAAO,MAAA,EA4EC,MA5ED;AAER;AACW,iBA4EK,aAAA,CA5EL,GAAA,EAAA,OAAA,CAAA,EAAA,GAAA,IA4EyC,eA5EzC;AAAR,KAgFS,sBAAA,GAhFT,MAAA,GAgF2C,OAhF3C,GAgFqD,yBAhFrD;KAqFE,eAAA,GApFe;EAAR,OAAA,EAAA,EAAA,OAAA;CAAO;AAEnB;;;AAES,cAuFI,WAAA,CAvFJ;EAAwB,CAAA,OAAA;EAAR,CAqNnB,iBAAA,CArNmB,EAAA,OAAA;EAAO;AAAW;AAiEyB;AAMpE;EAIY,OAAA,QAAA,CAAA,UAAsB,EAAA,MAAA,GA0BI,UA1BkB,CAAA,EA0BR,WA1BQ;EAKnD;AAOL;;;;;EAkCgD,OAAA,IAAA,CAAA,WAAA,EAAA,MAAA,GAAb,UAAa,GAAA,eAAA,CAAA,EAAe,WAAf;EAAe,sBAAA,CAAA,IAAA,EAgCjC,iBAhCiC,CAAA,EAAA,IAAA;EAgCjC,cAAA,CAAA,IAAA,EAIR,iBAJQ,CAAA,EAAA,IAAA;EAIR,iBAAA,CAAA,MAAA,EAAA,MAAA,EAAA,QAAA,EAIuB,iBAJvB,CAAA,EAAA,IAAA;EAIuB,SAAA,CAAA,MAAA,EAAA,MAAA,CAAA,EAAA,IAAA;EAoBC;;;;;6BAAlB,kBAAkB;;;;EAqCJ,WAAA,CAAA,KAAA,EAAA,MAAA,CAAA,EAAA,IAAA;EAAX,aAAA,CAAA,QAAA,EAlBN,SAkBM,EAAA,CAAA,EAAA,IAAA;EAAlB;EA2CJ,OAAA,CAAA,CAAA,EAAA;IADA,OAAA,EAAA,CAAA;IA4C8B,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA,GAAA,SAAA;IAAnB,UAAA,CAAA,EAxGc,eAAA,CAAA,uBAwGd,CAAA;MAQsB,IAAA,EAAA,IAAA;MAAnB,KAAA,EAAA,MAAA,GAAA,MAAA;MAQsB,WAAA,EAAA;QAAnB,QAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QAsBX,QAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QAAkB,YAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QAAI,YAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QACf,KAAA,EAAA,MAAA;QAA4B,KAAA,EAAA,MAAA;MAAsB,CAAA;IAC1D,CAAA,EAAA,MAAA,GAAA,OAAA,GAAA,aAAA,CAAA,GAAA,IAAA,GAAA,SAAA;IAAgB,OAAA,EAAA;MAC1B,MAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;MACW,KAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;MACgC,KAAA,EAAA,MAAA,GAAA,IAAA;MAAtB,OAAA,EAAA;QACrB,QAAA,EAAA,MAAA;QAwGqB,OAAA,EAAA,MAAA,GAAA,MAAA;QAAsB,MAAA,EAAA,MAAA;MACtC,CAAA,EAAA,GAAA,IAAA;IAA6C,CAAA;IAWnD,MAAA,yCAAA,CAAA;MADiF,MAAA,yCAAA,CAAA;QAIrE,gBAAA,EAAA;UAAkB,QAAA,EAAA,MAAA;UAAR,OAAA,EAAA,MAAA,GAAA,MAAA;UAIV,MAAA,EAAA,MAAA;QACH,CAAA;QAAqC,YAAA,EAAA;UAStC,QAAA,EAAA,MAAA;UAAS,oBAAA,EAAA,MAAA,GAAA,MAAA;UAA0E,OAAA,EAAA,OAAA;QAS5F,CAAA;QACA,SAAA,EAAA;UACS,QAAA,EAAA,MAAA;UACT,OAAA,EAAA,MAAA,GAAA,MAAA;UAKQ,MAAA,EAAA,MAAA;QACR,CAAA;MAWW,CAAA,EAAA,kBAAA,GAAA,cAAA,GAAA,WAAA,CAAA;MAOI,IAAA,EAAA;QAAsB,KAAA,EAAA,MAAA;MAKtB,CAAA;MAAsB,cAAA,EAAA;QAElC,KAAA,EAAA,OAAA;MASO,CAAA;MACD,gBAAA,EAAA;QAAsB,QAAA,EAAA,MAAA;QAA2B,OAAA,CAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA,GAAA,SAAA;QAY1D,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA,GAAA,SAAA;QACA,oBAAA,CAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA,GAAA,SAAA;QAEW,OAAA,CAAA,EAAA,OAAA,GAAA,IAAA,GAAA,SAAA;MAEX,CAAA;MAgBY,eAAA,EAAA;QAAQ,WAAA,EAAA;UA8BC,YAAA,EAAA,MAAA,GAAA,MAAA;UAAmC,KAAA,EAAA,cAAA;QAmBrC,CAAA;QAAsB,OAAA,EAAA;UAAR,OAAA,EAAA,MAAA;UA2Db,KAAA,EAAA,SAAA;QAAkD,CAAA;QAAX,YAAA,yCAAA,CAAA;UAAR,MAAA,EAAA,IAAA;UAWzC,OAAA,EAAA,IAAA;QAER,CAAA,EAAA,QAAA,GAAA,SAAA,CAAA;MAsJoC,CAAA;IAA2B,CAAA,EAAA,MAAA,GAAA,QAAA,GAAA,iBAAA,GAAA,gBAAA,GAAA,kBAAA,CAAA,EAAA;IAAA,QAAA,yCAAA,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cA5mBtD,kBAAkB,WAAW;;;;;;;;;;UA0CjC,kBACA;;;;;;;;;qBA2CW,mBAAmB;;;;;;;;;wBAQhB,mBAAmB;;;;;;;;;2BAQhB,mBAAmB;;;;;;gBAsB9B,kBAAkB,IAAI;uBACf,4BAA4B,sBAAsB,qBAC1D,gBAAgB,IAC1B;gBACW,yDACU,sBAAsB,KAC3C;oCAwGqB,sBAAsB,wDACtC,6CAA6C,UAU8B,QACjF;;qBAGY,UAAU,QAAQ;;;0BAIlB,8CACH,wCAAqC;;;;;;;MAS6C;;;;aAWnF;;;;;;YAMD;MACR;;eAWW;;;;;;iBAOI,sBAAsB;;;;iBAKtB,sBAAsB;;MAElC;4BASO,gDACD,sBAAsB,8BAA2B;;;;;eAe/C;;MAEX;;;;;;;;;;;;;;;;;;;;;;;;mBA8CqB,8BAAmC;;gBAmBrC,cAAc,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;kBA2DrB,0BAA+B,QAAQ,WAAW;;;aAW5D;MAER;mCAsJoC,8BAA2B"}
+{"version":3,"file":"Transaction.d.mts","names":[],"sources":["../../src/transactions/Transaction.ts"],"sourcesContent":[],"mappings":";;;;;;;;;;;;;;;KAoCY,yBAAA,GACT,QAAQ,kBAAkB;;;WAEtB,gBACC,QAAQ,kBAAkB;EAJtB,KAAA,EAAA,OAAA;EACiB,IAAA,CAAA,EAAA,MAAA;CAAlB,CAAA,CAAA,GAIR,qBAJQ,CAIc,yBAJd,CAAA;AAAR,KAMS,iBAAA,GAAoB,OAN7B,CAMqC,QANrC,EAAA;EAEI,MAAA,EAAA,OAAA;CAC2B,CAAA,GAIjC,OAJiC,CAIzB,QAJyB,EAAA;EAAlB,YAAA,EAAA,OAAA;CAAR,CAAA,EAAA;AACiB,KAKb,yBAAA,GACT,OANsB,CAMd,QANc,EAAA;EAAtB,MAAA,EAAA,OAAA;CAAqB,CAAA,GAAA,SAOZ,OAPY,CAOJ,QAPI,EAAA;EAEZ,YAAA,EAAA,OAAiB;CAAW,CAAA,EAAA;AAAR,KAOpB,qBAPoB,CAAA,UAQrB,yBARqB,GAAA,IAAA,GAQc,yBARd,GAAA,IAAA,CAAA,GAAA,CAAA,EAAA,EASvB,WATuB,EAAA,GASP,OATO,CASC,CATD,GAAA,IAAA,CAAA;cA0E1B,iBAzEG,EAAA,KAAA;UA2EC,WAAA,SAAoB,uBA3E7B,CAAA;EAAO,MAAA,EA4EC,MA5ED;AAER;AACW,iBA4EK,aAAA,CA5EL,GAAA,EAAA,OAAA,CAAA,EAAA,GAAA,IA4EyC,eA5EzC;AAAR,KAgFS,sBAAA,GAhFT,MAAA,GAgF2C,OAhF3C,GAgFqD,yBAhFrD;KAqFE,eAAA,GApFe;EAAR,OAAA,EAAA,EAAA,OAAA;CAAO;AAEnB;;;AAES,cAuFI,WAAA,CAvFJ;EAAwB,CAAA,OAAA;EAAR,CAqNnB,iBAAA,CArNmB,EAAA,OAAA;EAAO;AAAW;AAiEyB;AAMpE;EAIY,OAAA,QAAA,CAAA,UAAsB,EAAA,MAAA,GA0BI,UA1BkB,CAAA,EA0BR,WA1BQ;EAKnD;AAOL;;;;;EAkCgD,OAAA,IAAA,CAAA,WAAA,EAAA,MAAA,GAAb,UAAa,GAAA,eAAA,CAAA,EAAe,WAAf;EAAe,sBAAA,CAAA,IAAA,EAgCjC,iBAhCiC,CAAA,EAAA,IAAA;EAgCjC,cAAA,CAAA,IAAA,EAIR,iBAJQ,CAAA,EAAA,IAAA;EAIR,iBAAA,CAAA,MAAA,EAAA,MAAA,EAAA,QAAA,EAIuB,iBAJvB,CAAA,EAAA,IAAA;EAIuB,SAAA,CAAA,MAAA,EAAA,MAAA,CAAA,EAAA,IAAA;EAoBC;;;;;6BAAlB,kBAAkB;;;;EAqCJ,WAAA,CAAA,KAAA,EAAA,MAAA,CAAA,EAAA,IAAA;EAAX,aAAA,CAAA,QAAA,EAlBN,SAkBM,EAAA,CAAA,EAAA,IAAA;EAAlB;EA2CJ,OAAA,CAAA,CAAA,EAAA;IADA,OAAA,EAAA,CAAA;IA4C8B,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA,GAAA,SAAA;IAAnB,UAAA,CAAA,EAxGc,cAAA,CAAA,uBAwGd,CAAA;MAQsB,IAAA,EAAA,IAAA;MAAnB,KAAA,EAAA,MAAA,GAAA,MAAA;MAQsB,WAAA,EAAA;QAAnB,QAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QAsBX,QAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QAAkB,YAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QAAI,YAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;QACf,KAAA,EAAA,MAAA;QAA4B,KAAA,EAAA,MAAA;MAAsB,CAAA;IAC1D,CAAA,EAAA,OAAA,GAAA,MAAA,GAAA,aAAA,CAAA,GAAA,IAAA,GAAA,SAAA;IAAgB,OAAA,EAAA;MAC1B,MAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;MACW,KAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA;MACgC,KAAA,EAAA,MAAA,GAAA,IAAA;MAAtB,OAAA,EAAA;QACrB,QAAA,EAAA,MAAA;QAwGqB,OAAA,EAAA,MAAA,GAAA,MAAA;QAAsB,MAAA,EAAA,MAAA;MACtC,CAAA,EAAA,GAAA,IAAA;IAA6C,CAAA;IAWnD,MAAA,wCAAA,CAAA;MADiF,MAAA,wCAAA,CAAA;QAIrE,gBAAA,EAAA;UAAkB,QAAA,EAAA,MAAA;UAAR,OAAA,EAAA,MAAA,GAAA,MAAA;UAIV,MAAA,EAAA,MAAA;QACH,CAAA;QAAqC,YAAA,EAAA;UAStC,QAAA,EAAA,MAAA;UAAS,oBAAA,EAAA,MAAA,GAAA,MAAA;UAA0E,OAAA,EAAA,OAAA;QAS5F,CAAA;QACA,SAAA,EAAA;UACS,QAAA,EAAA,MAAA;UACT,OAAA,EAAA,MAAA,GAAA,MAAA;UAKQ,MAAA,EAAA,MAAA;QACR,CAAA;MAWW,CAAA,EAAA,WAAA,GAAA,kBAAA,GAAA,cAAA,CAAA;MAOI,IAAA,EAAA;QAAsB,KAAA,EAAA,MAAA;MAKtB,CAAA;MAAsB,cAAA,EAAA;QAElC,KAAA,EAAA,OAAA;MASO,CAAA;MACD,gBAAA,EAAA;QAAsB,QAAA,EAAA,MAAA;QAA2B,OAAA,CAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA,GAAA,SAAA;QAY1D,MAAA,CAAA,EAAA,MAAA,GAAA,IAAA,GAAA,SAAA;QACA,oBAAA,CAAA,EAAA,MAAA,GAAA,MAAA,GAAA,IAAA,GAAA,SAAA;QAEW,OAAA,CAAA,EAAA,OAAA,GAAA,IAAA,GAAA,SAAA;MAEX,CAAA;MAgBY,eAAA,EAAA;QAAQ,WAAA,EAAA;UA8BC,YAAA,EAAA,MAAA,GAAA,MAAA;UAAmC,KAAA,EAAA,cAAA;QAmBrC,CAAA;QAAsB,OAAA,EAAA;UAAR,OAAA,EAAA,MAAA;UA2Db,KAAA,EAAA,SAAA;QAAkD,CAAA;QAAX,YAAA,wCAAA,CAAA;UAAR,MAAA,EAAA,IAAA;UAWzC,OAAA,EAAA,IAAA;QAER,CAAA,EAAA,QAAA,GAAA,SAAA,CAAA;MAsJoC,CAAA;IAA2B,CAAA,EAAA,QAAA,GAAA,MAAA,GAAA,iBAAA,GAAA,gBAAA,GAAA,kBAAA,CAAA,EAAA;IAAA,QAAA,wCAAA,CAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cA5mBtD,kBAAkB,WAAW;;;;;;;;;;UA0CjC,kBACA;;;;;;;;;qBA2CW,mBAAmB;;;;;;;;;wBAQhB,mBAAmB;;;;;;;;;2BAQhB,mBAAmB;;;;;;gBAsB9B,kBAAkB,IAAI;uBACf,4BAA4B,sBAAsB,qBAC1D,gBAAgB,IAC1B;gBACW,yDACU,sBAAsB,KAC3C;oCAwGqB,sBAAsB,wDACtC,6CAA6C,UAU8B,QACjF;;qBAGY,UAAU,QAAQ;;;0BAIlB,8CACH,wCAAqC;;;;;;;MAS6C;;;;aAWnF;;;;;;YAMD;MACR;;eAWW;;;;;;iBAOI,sBAAsB;;;;iBAKtB,sBAAsB;;MAElC;4BASO,gDACD,sBAAsB,8BAA2B;;;;;eAe/C;;MAEX;;;;;;;;;;;;;;;;;;;;;;;;mBA8CqB,8BAAmC;;gBAmBrC,cAAc,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;kBA2DrB,0BAA+B,QAAQ,WAAW;;;aAW5D;MAER;mCAsJoC,8BAA2B"}

package/dist/version.mjs

@@ -1,6 +1,6 @@
 //#region src/version.ts
-const PACKAGE_VERSION = "2.6.0";
-const TARGETED_RPC_VERSION = "1.68.0";
+const PACKAGE_VERSION = "2.8.0";
+const TARGETED_RPC_VERSION = "1.69.0";
 
 //#endregion
 export { PACKAGE_VERSION, TARGETED_RPC_VERSION };

package/dist/version.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"version.mjs","names":[],"sources":["../src/version.ts"],"sourcesContent":["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\n// This file is generated by genversion.mjs. Do not edit it directly.\n\nexport const PACKAGE_VERSION = '2.6.0';\nexport const TARGETED_RPC_VERSION = '1.68.0';\n"],"mappings":";AAKA,MAAa,kBAAkB;AAC/B,MAAa,uBAAuB"}
+{"version":3,"file":"version.mjs","names":[],"sources":["../src/version.ts"],"sourcesContent":["// Copyright (c) Mysten Labs, Inc.\n// SPDX-License-Identifier: Apache-2.0\n\n// This file is generated by genversion.mjs. Do not edit it directly.\n\nexport const PACKAGE_VERSION = '2.8.0';\nexport const TARGETED_RPC_VERSION = '1.69.0';\n"],"mappings":";AAKA,MAAa,kBAAkB;AAC/B,MAAa,uBAAuB"}

package/dist/zklogin/bcs.d.mts

@@ -1,31 +1,31 @@
-import * as _mysten_bcs810 from "@mysten/bcs";
+import * as _mysten_bcs817 from "@mysten/bcs";
 import { InferBcsInput } from "@mysten/bcs";
 
 //#region src/zklogin/bcs.d.ts
-declare const zkLoginSignature: _mysten_bcs810.BcsStruct<{
-  inputs: _mysten_bcs810.BcsStruct<{
-    proofPoints: _mysten_bcs810.BcsStruct<{
-      a: _mysten_bcs810.BcsType<string[], Iterable<string> & {
+declare const zkLoginSignature: _mysten_bcs817.BcsStruct<{
+  inputs: _mysten_bcs817.BcsStruct<{
+    proofPoints: _mysten_bcs817.BcsStruct<{
+      a: _mysten_bcs817.BcsType<string[], Iterable<string> & {
         length: number;
       }, string>;
-      b: _mysten_bcs810.BcsType<string[][], Iterable<Iterable<string> & {
+      b: _mysten_bcs817.BcsType<string[][], Iterable<Iterable<string> & {
         length: number;
       }> & {
         length: number;
       }, string>;
-      c: _mysten_bcs810.BcsType<string[], Iterable<string> & {
+      c: _mysten_bcs817.BcsType<string[], Iterable<string> & {
         length: number;
       }, string>;
     }, string>;
-    issBase64Details: _mysten_bcs810.BcsStruct<{
-      value: _mysten_bcs810.BcsType<string, string, "string">;
-      indexMod4: _mysten_bcs810.BcsType<number, number, "u8">;
+    issBase64Details: _mysten_bcs817.BcsStruct<{
+      value: _mysten_bcs817.BcsType<string, string, "string">;
+      indexMod4: _mysten_bcs817.BcsType<number, number, "u8">;
     }, string>;
-    headerBase64: _mysten_bcs810.BcsType<string, string, "string">;
-    addressSeed: _mysten_bcs810.BcsType<string, string, "string">;
+    headerBase64: _mysten_bcs817.BcsType<string, string, "string">;
+    addressSeed: _mysten_bcs817.BcsType<string, string, "string">;
   }, string>;
-  maxEpoch: _mysten_bcs810.BcsType<string, string | number | bigint, "u64">;
-  userSignature: _mysten_bcs810.BcsType<Uint8Array<ArrayBufferLike>, Iterable<number>, "vector<u8>">;
+  maxEpoch: _mysten_bcs817.BcsType<string, string | number | bigint, "u64">;
+  userSignature: _mysten_bcs817.BcsType<Uint8Array<ArrayBufferLike>, Iterable<number>, "vector<u8>">;
 }, string>;
 type ZkLoginSignature = InferBcsInput<typeof zkLoginSignature>;
 type ZkLoginSignatureInputs = ZkLoginSignature['inputs'];

package/docs/bcs.md

@@ -0,0 +1,131 @@
+# BCS
+
+> Binary Canonical Serialization for encoding Sui Move types
+
+The `@mysten/sui/bcs` package extends `@mysten/bcs` with Sui specific scheme definitions.
+
+To learn more about using BCS see the [BCS documentation](/bcs).
+
+the `bcs` export of `@mysten/sui/bcs` contains all the same exports as `bcs` from `@mysten/bcs` plus
+the following pre-defined schemes:
+
+- `U8`
+- `U16`
+- `U32`
+- `U64`
+- `U128`
+- `U256`
+- `ULEB128`
+- `Bool`
+- `String`
+- `Address`
+- `Argument`
+- `CallArg`
+- `CompressedSignature`
+- `GasData`
+- `MultiSig`
+- `MultiSigPkMap`
+- `MultiSigPublicKey`
+- `ObjectArg`
+- `ObjectDigest`
+- `ProgrammableMoveCall`
+- `ProgrammableTransaction`
+- `PublicKey`
+- `SenderSignedData`
+- `SharedObjectRef`
+- `StructTag`
+- `SuiObjectRef`
+- `Transaction`
+- `TransactionData`
+- `TransactionDataV1`
+- `TransactionExpiration`
+- `TransactionKind`
+- `TypeTag`
+- `Object` - Complete object with data, owner, previousTransaction, and storageRebate
+- `TransactionEffects` - Transaction execution effects (supports both V1 and V2)
+- `TransactionEffectsV1` - Legacy transaction effects format
+- `TransactionEffectsV2` - Current transaction effects format with detailed object changes
+
+All the upper-cased values are `BcsType` instances, and can be used directly to parse and serialize
+data.
+
+```typescript
+bcs.U8.serialize(1);
+bcs.Address.serialize('0x1');
+bcs.TypeTag.serialize({
+	vector: {
+		u8: true,
+	},
+});
+```
+
+## Working with Objects
+
+To parse on-chain objects, fetch them with `include: { content: true }` and pass `object.content` to
+a generated BCS type or a manual struct definition. The `content` field contains only the inner Move
+struct bytes:
+
+```typescript
+const { object } = await client.core.getObject({
+	objectId: '0x123...',
+	include: { content: true },
+});
+
+const parsed = MyStruct.parse(object.content);
+```
+
+### `bcs.Object` — Full object envelope
+
+The `bcs.Object` schema represents the complete on-chain object, including metadata (type, owner,
+version, previous transaction, storage rebate) wrapping the inner struct bytes. This is what the
+`objectBcs` include option returns. Most of this metadata is already available as fields on the
+object response, so you typically only need `content`.
+
+```typescript
+
+// Parse a full object envelope (from objectBcs include option)
+const envelope = bcs.Object.parse(object.objectBcs);
+console.log('Owner:', envelope.owner);
+console.log('Inner struct bytes:', envelope.data.Move.contents);
+
+// Serialize a full object envelope
+const serialized = bcs.Object.serialize({
+	data: {
+		Move: {
+			type: { GasCoin: null },
+			hasPublicTransfer: true,
+			version: '1',
+			contents: new Uint8Array([...]),
+		},
+	},
+	owner: { AddressOwner: '0x...' },
+	previousTransaction: '...',
+	storageRebate: '1000',
+});
+```
+
+> **Warning:** Do not pass `objectBcs` bytes to a Move struct parser — it contains wrapping metadata
+> that will cause parsing to fail. Use `content` for parsing Move struct fields. See the
+> [Core API docs](/sui/clients/core#objectbcs) for details.
+
+## Working with Transaction Effects
+
+The `bcs.TransactionEffects` schema can be used to parse transaction effects:
+
+```typescript
+// Parse transaction effects
+const effects = bcs.TransactionEffects.parse(effectsBytes);
+
+// Check execution status
+if (effects.V2.status.$kind === 'Success') {
+	console.log('Transaction succeeded');
+} else {
+	console.log('Transaction failed:', effects.V2.status.Failure.error);
+}
+
+// Access changed objects
+for (const [objectId, change] of effects.V2.changedObjects) {
+	console.log('Object:', objectId);
+	console.log('Output state:', change.outputState.$kind);
+}
+```