@ocap/tx-protocols 1.28.8 → 1.29.0

package/lib/protocols/governance/return-stake.cjs

@@ -0,0 +1,215 @@
+Object.defineProperty(exports, '__esModule', { value: true });
+const require_rolldown_runtime = require('../../_virtual/rolldown_runtime.cjs');
+const require_util = require('../../util.cjs');
+const require_pipes_ensure_cost = require('../../pipes/ensure-cost.cjs');
+const require_pipes_ensure_gas = require('../../pipes/ensure-gas.cjs');
+let _ocap_tx_pipeline = require("@ocap/tx-pipeline");
+let _ocap_util_lib_error = require("@ocap/util/lib/error");
+let _ocap_state = require("@ocap/state");
+let _ocap_util = require("@ocap/util");
+let debug = require("debug");
+debug = require_rolldown_runtime.__toESM(debug);
+let _ocap_util_lib_get_list_field = require("@ocap/util/lib/get-list-field");
+let _arcblock_validator = require("@arcblock/validator");
+let _ocap_util_lib_get_related_addr = require("@ocap/util/lib/get-related-addr");
+let lodash_isEmpty = require("lodash/isEmpty");
+lodash_isEmpty = require_rolldown_runtime.__toESM(lodash_isEmpty);
+
+//#region src/protocols/governance/return-stake.ts
+const debug$1 = (0, debug.default)("@ocap/tx-protocols:return-stake");
+const runner = new _ocap_tx_pipeline.Runner("return_stake");
+runner.use(_ocap_tx_pipeline.pipes.VerifyMultiSig(0));
+const schema = _arcblock_validator.Joi.object({
+	address: _arcblock_validator.Joi.DID().prefix().role("ROLE_STAKE").required(),
+	message: _arcblock_validator.Joi.string().trim().min(1).max(256).required(),
+	outputsList: _arcblock_validator.schemas.multiInput.min(1).required(),
+	data: _arcblock_validator.Joi.any().optional().allow(null)
+}).options({
+	stripUnknown: true,
+	noDefaults: false
+});
+runner.use(({ itx }, next) => {
+	const { error } = schema.validate(itx);
+	return next(error ? new _ocap_util_lib_error.CustomError("INVALID_TX", `Invalid itx: ${error.message}`) : void 0);
+});
+runner.use(_ocap_tx_pipeline.pipes.VerifyTxInput({
+	fieldKey: "itx.outputs",
+	inputsKey: "outputs",
+	sendersKey: "receivers",
+	tokensKey: "tokens",
+	assetsKey: "assets"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([{
+	error: "INSUFFICIENT_DATA",
+	message: "Can not return stake without any output",
+	fn: (ctx) => {
+		const context = ctx;
+		return !((0, lodash_isEmpty.default)(context.tokens) && (0, lodash_isEmpty.default)(context.assets));
+	}
+}]));
+runner.use(_ocap_tx_pipeline.pipes.VerifyListSize({ listKey: [
+	"outputs",
+	"receivers",
+	"tokens",
+	"assets"
+] }));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "tx.from",
+	to: "senderState",
+	status: "INVALID_SENDER_STATE",
+	table: "account"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "receivers",
+	to: "receiverStates",
+	status: "INVALID_RECEIVER_STATE",
+	table: "account"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyBlocked({ stateKeys: ["receiverStates"] }));
+runner.use(_ocap_tx_pipeline.pipes.VerifyAccountMigration({
+	stateKey: "senderState",
+	addressKey: "tx.from"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "itx.address",
+	to: "stakeState",
+	status: "INVALID_STAKE_STATE",
+	table: "stake"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([
+	{
+		error: "INVALID_TX",
+		message: "Can only return from none-self staking",
+		fn: (ctx) => {
+			const context = ctx;
+			return context.stakeState.sender !== context.stakeState.receiver;
+		}
+	},
+	{
+		error: "INVALID_TX",
+		message: "Can only return stake from receiver",
+		fn: (ctx) => {
+			const context = ctx;
+			return (0, _ocap_util_lib_get_related_addr.getRelatedAddresses)(context.senderState).includes(context.stakeState.receiver);
+		}
+	},
+	{
+		error: "INVALID_TX",
+		message: "Can only return stake to sender",
+		fn: (ctx) => {
+			const context = ctx;
+			return (context.receiverStates || []).every((x) => (0, _ocap_util_lib_get_related_addr.getRelatedAddresses)(x).includes(context.stakeState.sender));
+		}
+	}
+]));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "tokens",
+	to: "tokenStates",
+	status: "INVALID_TOKEN",
+	table: "token"
+}));
+runner.use((context, next) => {
+	const { stakeState } = context;
+	const outputs = context.outputs || [];
+	const tokens = {};
+	outputs.forEach((output) => {
+		(0, _ocap_util_lib_get_list_field.getListField)(output, "tokens").forEach(({ address, value }) => {
+			if (typeof tokens[address] === "undefined") tokens[address] = new _ocap_util.BN(0);
+			tokens[address] = tokens[address].add(new _ocap_util.BN(value));
+		});
+	});
+	context.lockedState = {
+		address: stakeState.address,
+		tokens: { ...stakeState.tokens || {} },
+		assets: [...stakeState.assets || []]
+	};
+	context.tokenCondition = {
+		owner: stakeState.address,
+		tokens: Object.keys(tokens).map((address) => ({
+			address,
+			value: tokens[address]
+		}))
+	};
+	next();
+});
+runner.use(_ocap_tx_pipeline.pipes.VerifyTokenBalance({
+	ownerKey: "lockedState",
+	conditionKey: "tokenCondition"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([{
+	error: "INVALID_TX",
+	message: "Can not return assets that are not locked in the stake",
+	fn: (ctx) => {
+		const context = ctx;
+		return (context.assets || []).every((x) => (context.lockedState?.assets || []).includes(x));
+	}
+}]));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "assets",
+	to: "assetStates",
+	status: "INVALID_ASSET_STATE",
+	table: "asset"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyTransferrable({ assets: "assetStates" }));
+runner.use(_ocap_tx_pipeline.pipes.VerifyUpdater({
+	assetKey: "assetStates",
+	ownerKey: "stakeState"
+}));
+runner.use(require_pipes_ensure_gas.default((context) => {
+	const result = {
+		create: 0,
+		update: 2,
+		payment: 0
+	};
+	if (context.receiverStates) result.update += context.receiverStates.length;
+	if (context.assetStates) result.update += context.assetStates.length;
+	return result;
+}));
+runner.use(require_pipes_ensure_cost.default({ attachSenderChanges: true }));
+runner.use(_ocap_tx_pipeline.pipes.TakeStateSnapshot());
+runner.use(async (context, next) => {
+	const { tx, itx, outputs = [], statedb, senderState, receiverStates = [], assetStates = [], stakeState, updateVaults, senderChange } = context;
+	const receiverUpdates = {};
+	const assetUpdates = {};
+	const stakeUpdates = {
+		tokens: stakeState.tokens || {},
+		assets: stakeState.assets || []
+	};
+	outputs.forEach((x) => {
+		const { owner } = x;
+		const tokensList = (0, _ocap_util_lib_get_list_field.getListField)(x, "tokens");
+		const assetsList = (0, _ocap_util_lib_get_list_field.getListField)(x, "assets");
+		stakeUpdates.assets = stakeUpdates.assets.filter((a) => assetsList.includes(a) === false);
+		stakeUpdates.tokens = require_util.applyTokenUpdates(tokensList, { tokens: stakeUpdates.tokens }, "sub").tokens;
+		const ownerState = receiverStates.find((s) => (0, _ocap_util_lib_get_related_addr.getRelatedAddresses)(s).includes(owner));
+		receiverUpdates[ownerState.address] = require_util.applyTokenUpdates(tokensList, ownerState, "add");
+		if (senderChange && ownerState.address === senderChange.address) receiverUpdates[ownerState.address] = require_util.applyTokenChange(receiverUpdates[ownerState.address], senderChange);
+		assetsList.forEach((a) => {
+			assetUpdates[a] = { owner: ownerState.address };
+		});
+	});
+	const [newSenderState, newReceiverStates, newStakeState, newAssetStates] = await Promise.all([
+		statedb.account.update(senderState.address, _ocap_state.account.update(senderState, Object.assign({ nonce: tx.nonce }, senderChange ? require_util.applyTokenChange(senderState, senderChange) : {}), context), context),
+		Promise.all(receiverStates.map((x) => statedb.account.update(x.address, _ocap_state.account.update(x, receiverUpdates[x.address], context), context))),
+		statedb.stake.update(stakeState.address, _ocap_state.stake.update(stakeState, stakeUpdates, context), context),
+		Promise.all(assetStates.map((x) => statedb.asset.update(x.address, _ocap_state.asset.update(x, assetUpdates[x.address], context), context)))
+	]);
+	if (updateVaults) await updateVaults();
+	context.senderState = newSenderState;
+	context.receiverStates = newReceiverStates;
+	context.stakeState = newStakeState;
+	context.assetStates = newAssetStates;
+	debug$1("return-stake", {
+		address: itx.address,
+		stakeUpdates,
+		assetUpdates,
+		senderChange,
+		...receiverUpdates
+	});
+	next();
+}, { persistError: true });
+runner.use(_ocap_tx_pipeline.pipes.VerifyStateDiff());
+var return_stake_default = runner;
+
+//#endregion
+exports.default = return_stake_default;

package/lib/protocols/governance/return-stake.d.cts

@@ -0,0 +1,27 @@
+import { BN } from "@ocap/util";
+
+//#region src/protocols/governance/return-stake.d.ts
+/** Token input type */
+interface TokenInput {
+  address: string;
+  value: string;
+}
+/** Multi-input type */
+interface MultiInput {
+  owner: string;
+  tokensList?: TokenInput[];
+  tokens?: TokenInput[];
+  assetsList?: string[];
+  assets?: string[];
+}
+/** Token condition type */
+interface TokenCondition {
+  owner: string;
+  tokens: Array<{
+    address: string;
+    value: BN;
+  }>;
+}
+declare const runner: any;
+//#endregion
+export { MultiInput, TokenCondition, TokenInput, runner as default };

package/lib/protocols/governance/revoke-stake.cjs

@@ -0,0 +1,182 @@
+Object.defineProperty(exports, '__esModule', { value: true });
+const require_rolldown_runtime = require('../../_virtual/rolldown_runtime.cjs');
+const require_util = require('../../util.cjs');
+const require_pipes_ensure_cost = require('../../pipes/ensure-cost.cjs');
+const require_pipes_ensure_gas = require('../../pipes/ensure-gas.cjs');
+let _ocap_tx_pipeline = require("@ocap/tx-pipeline");
+let _ocap_util_lib_error = require("@ocap/util/lib/error");
+let _ocap_state = require("@ocap/state");
+let _ocap_util = require("@ocap/util");
+let debug = require("debug");
+debug = require_rolldown_runtime.__toESM(debug);
+let _ocap_util_lib_get_list_field = require("@ocap/util/lib/get-list-field");
+let _arcblock_validator = require("@arcblock/validator");
+let _ocap_util_lib_get_related_addr = require("@ocap/util/lib/get-related-addr");
+let lodash_isEmpty = require("lodash/isEmpty");
+lodash_isEmpty = require_rolldown_runtime.__toESM(lodash_isEmpty);
+
+//#region src/protocols/governance/revoke-stake.ts
+const debug$1 = (0, debug.default)("@ocap/tx-protocols:revoke-stake");
+const runner = new _ocap_tx_pipeline.Runner("revoke_stake");
+runner.use(_ocap_tx_pipeline.pipes.VerifyMultiSig(0));
+const schema = _arcblock_validator.Joi.object({
+	address: _arcblock_validator.Joi.DID().prefix().role("ROLE_STAKE").required(),
+	outputsList: _arcblock_validator.schemas.multiInput.min(1).required(),
+	data: _arcblock_validator.Joi.any().optional().allow(null)
+}).options({
+	stripUnknown: true,
+	noDefaults: false
+});
+runner.use(({ itx }, next) => {
+	const { error } = schema.validate(itx);
+	return next(error ? new _ocap_util_lib_error.CustomError("INVALID_TX", `Invalid itx: ${error.message}`) : void 0);
+});
+runner.use(_ocap_tx_pipeline.pipes.VerifyTxInput({
+	fieldKey: "itx.outputs",
+	inputsKey: "outputs",
+	sendersKey: "receivers",
+	tokensKey: "tokens",
+	assetsKey: "assets"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([{
+	error: "INSUFFICIENT_DATA",
+	message: "Can not revoke stake without any output",
+	fn: (ctx) => {
+		const context = ctx;
+		return !((0, lodash_isEmpty.default)(context.tokens) && (0, lodash_isEmpty.default)(context.assets));
+	}
+}]));
+runner.use(_ocap_tx_pipeline.pipes.VerifyListSize({ listKey: [
+	"outputs",
+	"receivers",
+	"tokens",
+	"assets"
+] }));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "tx.from",
+	to: "senderState",
+	status: "INVALID_SENDER_STATE",
+	table: "account"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "receivers",
+	to: "receiverStates",
+	status: "INVALID_RECEIVER_STATE",
+	table: "account"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyBlocked({ stateKeys: ["receiverStates"] }));
+runner.use(_ocap_tx_pipeline.pipes.VerifyAccountMigration({
+	stateKey: "senderState",
+	addressKey: "tx.from"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "itx.address",
+	to: "stakeState",
+	status: "INVALID_STAKE_STATE",
+	table: "stake"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([
+	{
+		error: "SENDER_NOT_MATCH",
+		message: "You are not allowed to revoke stake from this address",
+		fn: (ctx) => {
+			const context = ctx;
+			return (0, _ocap_util_lib_get_related_addr.getRelatedAddresses)(context.senderState).includes(context.stakeState.sender);
+		}
+	},
+	{
+		error: "STAKE_NOT_REVOCABLE",
+		message: "This stake address is not revocable",
+		fn: (ctx) => {
+			return ctx.stakeState.revocable;
+		}
+	},
+	{
+		error: "INVALID_TX",
+		message: "Can not revoke assets that are not locked in the stake",
+		fn: (ctx) => {
+			const context = ctx;
+			return (context.assets || []).every((x) => (context.stakeState.assets || []).includes(x));
+		}
+	}
+]));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "tokens",
+	to: "tokenStates",
+	status: "INVALID_TOKEN",
+	table: "token"
+}));
+runner.use((context, next) => {
+	const { outputs = [], stakeState } = context;
+	const tokens = {};
+	outputs.forEach((output) => {
+		(0, _ocap_util_lib_get_list_field.getListField)(output, "tokens").forEach(({ address, value }) => {
+			if (typeof tokens[address] === "undefined") tokens[address] = new _ocap_util.BN(0);
+			tokens[address] = tokens[address].add(new _ocap_util.BN(value));
+		});
+	});
+	context.tokenCondition = {
+		owner: stakeState.address,
+		tokens: Object.keys(tokens).map((address) => ({
+			address,
+			value: tokens[address]
+		}))
+	};
+	next();
+});
+runner.use(_ocap_tx_pipeline.pipes.VerifyTokenBalance({
+	ownerKey: "stakeState",
+	conditionKey: "tokenCondition"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "assets",
+	to: "assetStates",
+	status: "OK",
+	table: "asset"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyTransferrable({ assets: "assetStates" }));
+runner.use(_ocap_tx_pipeline.pipes.VerifyUpdater({
+	assetKey: "assetStates",
+	ownerKey: "stakeState"
+}));
+runner.use(require_pipes_ensure_gas.default(() => ({
+	create: 0,
+	update: 2,
+	payment: 0
+})));
+runner.use(require_pipes_ensure_cost.default({ attachSenderChanges: true }));
+runner.use(_ocap_tx_pipeline.pipes.TakeStateSnapshot());
+runner.use(async (context, next) => {
+	const { tx, itx, outputs = [], statedb, senderState, senderUpdates, stakeState, updateVaults } = context;
+	const stakeUpdates = {
+		tokens: stakeState.tokens || {},
+		assets: stakeState.assets || [],
+		revokedTokens: stakeState.revokedTokens || {},
+		revokedAssets: stakeState.revokedAssets || []
+	};
+	outputs.forEach((x) => {
+		const tokensList = (0, _ocap_util_lib_get_list_field.getListField)(x, "tokens");
+		const assetsList = (0, _ocap_util_lib_get_list_field.getListField)(x, "assets");
+		stakeUpdates.tokens = require_util.applyTokenUpdates(tokensList, { tokens: stakeUpdates.tokens }, "sub").tokens;
+		stakeUpdates.assets = stakeUpdates.assets.filter((a) => assetsList.includes(a) === false);
+		stakeUpdates.revokedTokens = require_util.applyTokenUpdates(tokensList, { tokens: stakeUpdates.revokedTokens }, "add").tokens;
+		stakeUpdates.revokedAssets = stakeUpdates.revokedAssets.concat(...assetsList);
+	});
+	const [newSenderState, newStakeState] = await Promise.all([statedb.account.update(senderState.address, _ocap_state.account.update(senderState, {
+		nonce: tx.nonce,
+		...senderUpdates
+	}, context), context), statedb.stake.update(stakeState.address, _ocap_state.stake.update(stakeState, stakeUpdates, context), context)]);
+	if (updateVaults) await updateVaults();
+	context.senderState = newSenderState;
+	context.stakeState = newStakeState;
+	debug$1("revoke-stake", {
+		address: itx.address,
+		stakeUpdates
+	});
+	next();
+}, { persistError: true });
+runner.use(_ocap_tx_pipeline.pipes.VerifyStateDiff());
+var revoke_stake_default = runner;
+
+//#endregion
+exports.default = revoke_stake_default;

package/lib/protocols/governance/revoke-stake.d.cts

@@ -0,0 +1,27 @@
+import { BN } from "@ocap/util";
+
+//#region src/protocols/governance/revoke-stake.d.ts
+/** Token input type */
+interface TokenInput {
+  address: string;
+  value: string;
+}
+/** Multi-input type - uses List suffix in proto but runtime has both */
+interface MultiOutput {
+  owner: string;
+  tokensList?: TokenInput[];
+  tokens?: TokenInput[];
+  assetsList?: string[];
+  assets?: string[];
+}
+/** Token condition type for VerifyTokenBalance */
+interface TokenCondition {
+  owner: string;
+  tokens: Array<{
+    address: string;
+    value: BN;
+  }>;
+}
+declare const runner: any;
+//#endregion
+export { MultiOutput, TokenCondition, TokenInput, runner as default };

package/lib/protocols/governance/slash-stake.cjs

@@ -0,0 +1,217 @@
+Object.defineProperty(exports, '__esModule', { value: true });
+const require_rolldown_runtime = require('../../_virtual/rolldown_runtime.cjs');
+const require_util = require('../../util.cjs');
+const require_pipes_ensure_cost = require('../../pipes/ensure-cost.cjs');
+const require_pipes_ensure_gas = require('../../pipes/ensure-gas.cjs');
+let _ocap_tx_pipeline = require("@ocap/tx-pipeline");
+let _ocap_util_lib_error = require("@ocap/util/lib/error");
+let _ocap_state = require("@ocap/state");
+let _ocap_util = require("@ocap/util");
+let debug = require("debug");
+debug = require_rolldown_runtime.__toESM(debug);
+let _ocap_util_lib_get_list_field = require("@ocap/util/lib/get-list-field");
+let _arcblock_validator = require("@arcblock/validator");
+let _ocap_util_lib_get_related_addr = require("@ocap/util/lib/get-related-addr");
+let lodash_isEmpty = require("lodash/isEmpty");
+lodash_isEmpty = require_rolldown_runtime.__toESM(lodash_isEmpty);
+
+//#region src/protocols/governance/slash-stake.ts
+const debug$1 = (0, debug.default)("@ocap/tx-protocols:slash-stake");
+const runner = new _ocap_tx_pipeline.Runner("slash_stake");
+runner.use(_ocap_tx_pipeline.pipes.VerifyMultiSig(0));
+const schema = _arcblock_validator.Joi.object({
+	address: _arcblock_validator.Joi.DID().prefix().role("ROLE_STAKE").required(),
+	message: _arcblock_validator.Joi.string().trim().min(1).max(256).required(),
+	outputsList: _arcblock_validator.schemas.multiInput.min(1).required(),
+	data: _arcblock_validator.Joi.any().optional().allow(null)
+}).options({
+	stripUnknown: true,
+	noDefaults: false
+});
+runner.use(({ itx }, next) => {
+	const { error } = schema.validate(itx);
+	return next(error ? new _ocap_util_lib_error.CustomError("INVALID_TX", `Invalid itx: ${error.message}`) : void 0);
+});
+runner.use(_ocap_tx_pipeline.pipes.VerifyTxInput({
+	fieldKey: "itx.outputs",
+	inputsKey: "outputs",
+	sendersKey: "receivers",
+	tokensKey: "tokens",
+	assetsKey: "assets"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([{
+	error: "INSUFFICIENT_DATA",
+	message: "Can not slash stake without any output",
+	fn: (ctx) => {
+		const context = ctx;
+		return !((0, lodash_isEmpty.default)(context.tokens || []) && (0, lodash_isEmpty.default)(context.assets || []));
+	}
+}]));
+runner.use(_ocap_tx_pipeline.pipes.VerifyListSize({ listKey: [
+	"outputs",
+	"receivers",
+	"tokens",
+	"assets"
+] }));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "tx.from",
+	to: "senderState",
+	status: "INVALID_SENDER_STATE",
+	table: "account"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "receivers",
+	to: "receiverStates",
+	status: "INVALID_RECEIVER_STATE",
+	table: "account"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyBlocked({ stateKeys: ["receiverStates"] }));
+runner.use(_ocap_tx_pipeline.pipes.VerifyAccountMigration({
+	stateKey: "senderState",
+	addressKey: "tx.from"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "itx.address",
+	to: "stakeState",
+	status: "INVALID_STAKE_STATE",
+	table: "stake"
+}));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "stakeState.slashers",
+	to: "slasherStates",
+	status: "INVALID_SLASH_STATE",
+	table: "account"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([{
+	error: "INVALID_TX",
+	message: "You are not allowed to slash from this stake",
+	fn: (ctx) => {
+		const context = ctx;
+		const slasherStates = context.slasherStates || [];
+		return ((0, lodash_isEmpty.default)(slasherStates) ? [context.stakeState.receiver] : slasherStates.map((x) => x.address)).includes(context.senderState.address);
+	}
+}, {
+	error: "INVALID_TX",
+	message: "Can only send slashed token/assets to vault or specified slasher",
+	fn: (ctx) => {
+		const context = ctx;
+		const slasherStates = context.slasherStates || [];
+		return (context.receivers || []).every((x) => x === context.config.vaults.slashedStake || slasherStates.some((s) => s.address === x));
+	}
+}]));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "tokens",
+	to: "tokenStates",
+	status: "INVALID_TOKEN",
+	table: "token"
+}));
+runner.use((context, next) => {
+	const { outputs = [], stakeState } = context;
+	const tokens = {};
+	outputs.forEach((output) => {
+		(0, _ocap_util_lib_get_list_field.getListField)(output, "tokens").forEach(({ address, value }) => {
+			if (typeof tokens[address] === "undefined") tokens[address] = new _ocap_util.BN(0);
+			tokens[address] = tokens[address].add(new _ocap_util.BN(value));
+		});
+	});
+	const lockedState = {
+		address: stakeState.address,
+		tokens: { ...stakeState.tokens },
+		assets: [...stakeState.assets || [], ...stakeState.revokedAssets || []]
+	};
+	Object.keys(stakeState.revokedTokens || {}).forEach((address) => {
+		lockedState.tokens[address] = new _ocap_util.BN(stakeState.revokedTokens[address] || "0").add(new _ocap_util.BN(stakeState.tokens[address] || "0")).toString(10);
+	});
+	context.lockedState = lockedState;
+	context.tokenCondition = {
+		owner: stakeState.address,
+		tokens: Object.keys(tokens).map((address) => ({
+			address,
+			value: tokens[address]
+		}))
+	};
+	next();
+});
+runner.use(_ocap_tx_pipeline.pipes.VerifyTokenBalance({
+	ownerKey: "lockedState",
+	conditionKey: "tokenCondition"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyInfo([{
+	error: "INVALID_TX",
+	message: "Can not slash assets that are not locked in the stake",
+	fn: (ctx) => {
+		const context = ctx;
+		return (context.assets || []).every((x) => (context.lockedState?.assets || []).includes(x));
+	}
+}]));
+runner.use(_ocap_tx_pipeline.pipes.ExtractState({
+	from: "assets",
+	to: "assetStates",
+	status: "INVALID_ASSET_STATE",
+	table: "asset"
+}));
+runner.use(_ocap_tx_pipeline.pipes.VerifyTransferrable({ assets: "assetStates" }));
+runner.use(_ocap_tx_pipeline.pipes.VerifyUpdater({
+	assetKey: "assetStates",
+	ownerKey: "stakeState"
+}));
+runner.use(require_pipes_ensure_gas.default((context) => {
+	const result = {
+		create: 0,
+		update: 2,
+		payment: 0
+	};
+	if (context.receiverStates) result.update += context.receiverStates.length;
+	if (context.assetStates) result.update += context.assetStates.length;
+	return result;
+}));
+runner.use(require_pipes_ensure_cost.default({ attachSenderChanges: true }));
+runner.use(_ocap_tx_pipeline.pipes.TakeStateSnapshot());
+runner.use(async (context, next) => {
+	const { tx, itx, outputs = [], statedb, senderState, receiverStates = [], assetStates = [], stakeState, updateVaults, senderChange } = context;
+	const receiverUpdates = {};
+	const assetUpdates = {};
+	const stakeUpdates = {
+		tokens: stakeState.tokens || {},
+		assets: stakeState.assets || [],
+		revokedTokens: stakeState.revokedTokens || {},
+		revokedAssets: stakeState.revokedAssets || []
+	};
+	outputs.forEach((x) => {
+		const { owner } = x;
+		const tokensList = (0, _ocap_util_lib_get_list_field.getListField)(x, "tokens");
+		const assetsList = (0, _ocap_util_lib_get_list_field.getListField)(x, "assets");
+		stakeUpdates.assets = stakeUpdates.assets.filter((a) => assetsList.includes(a) === false);
+		stakeUpdates.revokedAssets = stakeUpdates.revokedAssets.filter((a) => assetsList.includes(a) === false);
+		const [newTokens, newRevoked] = require_util.applyTokenUpdates(tokensList, [{ tokens: stakeUpdates.tokens }, { tokens: stakeUpdates.revokedTokens }], "sub");
+		stakeUpdates.tokens = newTokens.tokens;
+		stakeUpdates.revokedTokens = newRevoked.tokens;
+		const ownerState = receiverStates.find((s) => (0, _ocap_util_lib_get_related_addr.getRelatedAddresses)(s).includes(owner));
+		receiverUpdates[ownerState.address] = require_util.applyTokenUpdates(tokensList, ownerState, "add");
+		if (senderChange && ownerState.address === senderChange.address) receiverUpdates[ownerState.address] = require_util.applyTokenChange(receiverUpdates[ownerState.address], senderChange);
+		assetsList.forEach((a) => {
+			assetUpdates[a] = { owner: ownerState.address };
+		});
+	});
+	const [newSenderState, newReceiverStates, newStakeState, newAssetStates] = await Promise.all([
+		statedb.account.update(senderState.address, _ocap_state.account.update(senderState, Object.assign({ nonce: tx.nonce }, receiverUpdates[senderState.address] || (senderChange ? require_util.applyTokenChange(senderState, senderChange) : {})), context), context),
+		Promise.all(receiverStates.filter((x) => x.address !== senderState.address).map((x) => statedb.account.update(x.address, _ocap_state.account.update(x, receiverUpdates[x.address], context), context))),
+		statedb.stake.update(stakeState.address, _ocap_state.stake.update(stakeState, stakeUpdates, context), context),
+		Promise.all(assetStates.map((x) => statedb.asset.update(x.address, _ocap_state.asset.update(x, assetUpdates[x.address], context), context)))
+	]);
+	if (updateVaults) await updateVaults();
+	context.senderState = newSenderState;
+	context.receiverStates = newReceiverStates;
+	context.stakeState = newStakeState;
+	context.assetStates = newAssetStates;
+	debug$1("slash-stake", {
+		address: itx.address,
+		stakeUpdates
+	});
+	next();
+}, { persistError: true });
+runner.use(_ocap_tx_pipeline.pipes.VerifyStateDiff());
+var slash_stake_default = runner;
+
+//#endregion
+exports.default = slash_stake_default;

package/lib/protocols/governance/slash-stake.d.cts

@@ -0,0 +1,17 @@
+//#region src/protocols/governance/slash-stake.d.ts
+/** Token input type */
+interface TokenInput {
+  address: string;
+  value: string;
+}
+/** Multi-output type */
+interface MultiOutput {
+  owner: string;
+  tokensList?: TokenInput[];
+  tokens?: TokenInput[];
+  assetsList?: string[];
+  assets?: string[];
+}
+declare const runner: any;
+//#endregion
+export { MultiOutput, TokenInput, runner as default };