@oleary-labs/signet-sdk 0.1.0 → 0.3.0

package/dist/scopedSign.js

@@ -5,18 +5,60 @@
  * structured payload that the node verifies against the key's scope
  * before computing the hash and signing.
  */
-import { signKeygenRequest } from "./request";
-// ---------------------------------------------------------------------------
-// Scope construction
-// ---------------------------------------------------------------------------
+import { hashTypedData, keccak256, stringToBytes } from "viem";
+import { signSignRequest } from "./request";
+import { hexToBytes } from "./session";
+/**
+ * Encode an EIP-712 type per the spec: the primary type's definition
+ * followed by its referenced struct types in alphabetical order, e.g.
+ * `TransferWithAuthorization(address from,address to,uint256 value,...)`.
+ * Matches go-ethereum's `apitypes.TypeHash` encoding used by the node, so
+ * the resulting typeHash byte-matches what the node verifies.
+ */
+function encodeEIP712Type(primaryType, types) {
+    const deps = new Set();
+    const visit = (t) => {
+        const base = t.replace(/(\[\d*\])+$/, ""); // strip array suffixes
+        if (!types[base] || deps.has(base))
+            return;
+        deps.add(base);
+        for (const f of types[base])
+            visit(f.type);
+    };
+    for (const f of types[primaryType] ?? [])
+        visit(f.type);
+    const sorted = [...deps].filter((d) => d !== primaryType).sort();
+    const encodeOne = (t) => `${t}(${types[t].map((f) => `${f.type} ${f.name}`).join(",")})`;
+    return [primaryType, ...sorted].map(encodeOne).join("");
+}
+/**
+ * EIP-712 typeHash: keccak256(encodeType(primaryType)). This is the value a
+ * 0x03 scope binds, and the same value the verifying contract uses — so a
+ * key scoped to one method (e.g. TransferWithAuthorization) cannot sign a
+ * different method on the same contract (e.g. permit).
+ */
+export function eip712TypeHash(primaryType, types) {
+    if (!types[primaryType]) {
+        throw new Error(`primaryType "${primaryType}" not declared in types`);
+    }
+    return keccak256(stringToBytes(encodeEIP712Type(primaryType, types)));
+}
 /**
- * Build an EIP-712 domain scope (scheme 0x03).
+ * Build an EIP-712 domain+type scope (scheme 0x03).
  *
  * Format: 0x03 | chainId (8 bytes, uint64 BE) | verifyingContract (20 bytes)
- * Total: 29 bytes.
+ *         | typeHash (32 bytes). Total: 61 bytes.
+ *
+ * `typeHash` is keccak256(encodeType(primaryType)) — see {@link eip712TypeHash}.
+ * Binding the type (not just the domain) prevents a key authorized for one
+ * typed-data method from signing a different method on the same contract.
  */
-export function buildEIP712Scope(chainId, verifyingContract) {
-    const buf = new Uint8Array(29);
+export function buildEIP712Scope(chainId, verifyingContract, typeHash) {
+    const th = typeHash.startsWith("0x") ? typeHash.slice(2) : typeHash;
+    if (th.length !== 64) {
+        throw new Error(`typeHash must be 32 bytes (64 hex chars), got ${th.length}`);
+    }
+    const buf = new Uint8Array(61);
     buf[0] = 0x03;
     // chainId as 8-byte big-endian
     const view = new DataView(buf.buffer);
@@ -28,8 +70,22 @@ export function buildEIP712Scope(chainId, verifyingContract) {
     for (let i = 0; i < 20; i++) {
         buf[9 + i] = parseInt(addr.slice(i * 2, i * 2 + 2), 16);
     }
+    // typeHash as 32 bytes
+    for (let i = 0; i < 32; i++) {
+        buf[29 + i] = parseInt(th.slice(i * 2, i * 2 + 2), 16);
+    }
     return "0x" + Array.from(buf).map((b) => b.toString(16).padStart(2, "0")).join("");
 }
+/**
+ * Convenience: build a 0x03 scope directly from an EIP-712 typed-data sample,
+ * deriving chainId, verifyingContract, and typeHash from it. Any sample with
+ * the intended domain + primary type works (message values are irrelevant to
+ * the scope). This is the recommended way to scope a key for a given method.
+ */
+export function buildEIP712ScopeForTypedData(typedData) {
+    const typeHash = eip712TypeHash(typedData.primaryType, typedData.types);
+    return buildEIP712Scope(typedData.domain.chainId, typedData.domain.verifyingContract, typeHash);
+}
 // ---------------------------------------------------------------------------
 // Structured signing
 // ---------------------------------------------------------------------------
@@ -50,13 +106,17 @@ export function buildEIP712Scope(chainId, verifyingContract) {
  * @param identity - For auth key cert sessions
  */
 export async function signTypedData(nodeUrl, proxyEndpoint, groupId, keyId, curve, typedData, sessionKeypair, claims, identity) {
-    // Build session-authenticated request (no message hash — payload is sent separately)
-    // The canonical hash must use the full sub-key ID (identity + suffix).
+    // The canonical request hash must use the full sub-key ID (identity + suffix).
     // Extract suffix from keyId: "oauth:iss:sub:suffix" → suffix is last segment
     // The identity param is "iss:sub", so we need to add the suffix.
     const keyParts = keyId.split(":");
     const keySuffix = keyParts.length > 1 ? keyParts[keyParts.length - 1] : undefined;
-    const signReq = await signKeygenRequest(sessionKeypair, claims, groupId, keySuffix, identity);
+    // Compute the EIP-712 hash locally and bind it into the session request
+    // signature. The nodes recompute hashTypedData from the payload and verify
+    // the request signature against it — without this binding, a malicious
+    // initiator could substitute any payload matching the key's scope.
+    const payloadHash = hexToBytes(hashTypedData(typedData).slice(2));
+    const signReq = await signSignRequest(sessionKeypair, claims, groupId, payloadHash, keySuffix, identity);
     const res = await fetch(proxyEndpoint, {
         method: "POST",
         headers: {

package/dist/scopedSign.js.map

@@ -1 +1 @@
-{"version":3,"file":"scopedSign.js","sourceRoot":"","sources":["../src/scopedSign.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AA0B9C,8EAA8E;AAC9E,qBAAqB;AACrB,8EAA8E;AAE9E;;;;;GAKG;AACH,MAAM,UAAU,gBAAgB,CAAC,OAAe,EAAE,iBAAyB;IACzE,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IAC/B,GAAG,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAEd,+BAA+B;IAC/B,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACtC,IAAI,CAAC,YAAY,CAAC,CAAC,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;IAEtC,gCAAgC;IAChC,MAAM,IAAI,GAAG,iBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC;QAC7C,CAAC,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC;QAC5B,CAAC,CAAC,iBAAiB,CAAC;IACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5B,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAC1D,CAAC;IAED,OAAO,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AACrF,CAAC;AAED,8EAA8E;AAC9E,qBAAqB;AACrB,8EAA8E;AAE9E;;;;;;;;;;;;;;;GAeG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,OAAe,EACf,aAAqB,EACrB,OAAe,EACf,KAAa,EACb,KAAa,EACb,SAA0B,EAC1B,cAA8B,EAC9B,MAAqB,EACrB,QAAiB;IAEjB,qFAAqF;IACrF,uEAAuE;IACvE,6EAA6E;IAC7E,iEAAiE;IACjE,MAAM,QAAQ,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAClC,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAElF,MAAM,OAAO,GAAG,MAAM,iBAAiB,CACrC,cAAc,EACd,MAAM,EACN,OAAO,EACP,SAAS,EACT,QAAQ,CACT,CAAC;IAEF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,aAAa,EAAE;QACrC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,YAAY,EAAE,OAAO;YACrB,aAAa,EAAE,UAAU;SAC1B;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,QAAQ,EAAE,OAAO,CAAC,WAAW,EAAE;YAC/B,MAAM,EAAE,KAAK;YACb,UAAU,EAAE,SAAS;YACrB,KAAK;YACL,OAAO,EAAE;gBACP,MAAM,EAAE,QAAQ;gBAChB,UAAU,EAAE,SAAS;aACtB;YACD,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,SAAS,EAAE,OAAO,CAAC,SAAS;SAC7B,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,CAAC,MAAM,MAAM,IAAI,EAAE,CAAC,CAAC;IACjE,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO;QACL,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,cAAc,EAAE,IAAI,CAAC,eAAe;QACpC,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,KAAK;KAC3B,CAAC;AACJ,CAAC;AAED,8EAA8E;AAC9E,UAAU;AACV,8EAA8E;AAE9E,MAAM,CAAC,MAAM,aAAa,GAAG;IAC3B;QACE,KAAK,EAAE,cAAc;QACrB,OAAO,EAAE,IAAI;QACb,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;IACD;QACE,KAAK,EAAE,sBAAsB;QAC7B,OAAO,EAAE,KAAK;QACd,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;IACD;QACE,KAAK,EAAE,kBAAkB;QACzB,OAAO,EAAE,CAAC;QACV,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;IACD;QACE,KAAK,EAAE,iBAAiB;QACxB,OAAO,EAAE,QAAQ;QACjB,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;CACO,CAAC"}
+{"version":3,"file":"scopedSign.js","sourceRoot":"","sources":["../src/scopedSign.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,aAAa,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,MAAM,CAAC;AAG/D,OAAO,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAgCvC;;;;;;GAMG;AACH,SAAS,gBAAgB,CAAC,WAAmB,EAAE,KAAkB;IAC/D,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAC/B,MAAM,KAAK,GAAG,CAAC,CAAS,EAAE,EAAE;QAC1B,MAAM,IAAI,GAAG,CAAC,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC,CAAC,uBAAuB;QAClE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC;YAAE,OAAO;QAC3C,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACf,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC;YAAE,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IAC7C,CAAC,CAAC;IACF,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,WAAW,CAAC,IAAI,EAAE;QAAE,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IAExD,MAAM,MAAM,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,WAAW,CAAC,CAAC,IAAI,EAAE,CAAC;IACjE,MAAM,SAAS,GAAG,CAAC,CAAS,EAAE,EAAE,CAC9B,GAAG,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;IAClE,OAAO,CAAC,WAAW,EAAE,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AAC1D,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,cAAc,CAAC,WAAmB,EAAE,KAAkB;IACpE,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,gBAAgB,WAAW,yBAAyB,CAAC,CAAC;IACxE,CAAC;IACD,OAAO,SAAS,CAAC,aAAa,CAAC,gBAAgB,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC;AACxE,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,gBAAgB,CAC9B,OAAe,EACf,iBAAyB,EACzB,QAAa;IAEb,MAAM,EAAE,GAAG,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;IACpE,IAAI,EAAE,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,iDAAiD,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC;IAChF,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IAC/B,GAAG,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAEd,+BAA+B;IAC/B,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACtC,IAAI,CAAC,YAAY,CAAC,CAAC,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;IAEtC,gCAAgC;IAChC,MAAM,IAAI,GAAG,iBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC;QAC7C,CAAC,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC;QAC5B,CAAC,CAAC,iBAAiB,CAAC;IACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5B,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAC1D,CAAC;IAED,uBAAuB;IACvB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5B,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,OAAO,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AACrF,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,4BAA4B,CAC1C,SAAoE;IAEpE,MAAM,QAAQ,GAAG,cAAc,CAAC,SAAS,CAAC,WAAW,EAAE,SAAS,CAAC,KAAK,CAAC,CAAC;IACxE,OAAO,gBAAgB,CACrB,SAAS,CAAC,MAAM,CAAC,OAAO,EACxB,SAAS,CAAC,MAAM,CAAC,iBAAiB,EAClC,QAAQ,CACT,CAAC;AACJ,CAAC;AAED,8EAA8E;AAC9E,qBAAqB;AACrB,8EAA8E;AAE9E;;;;;;;;;;;;;;;GAeG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,OAAe,EACf,aAAqB,EACrB,OAAe,EACf,KAAa,EACb,KAAa,EACb,SAA0B,EAC1B,cAA8B,EAC9B,MAAqB,EACrB,QAAiB;IAEjB,+EAA+E;IAC/E,6EAA6E;IAC7E,iEAAiE;IACjE,MAAM,QAAQ,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAClC,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAElF,wEAAwE;IACxE,2EAA2E;IAC3E,uEAAuE;IACvE,mEAAmE;IACnE,MAAM,WAAW,GAAG,UAAU,CAC5B,aAAa,CAAC,SAAgD,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CACzE,CAAC;IAEF,MAAM,OAAO,GAAG,MAAM,eAAe,CACnC,cAAc,EACd,MAAM,EACN,OAAO,EACP,WAAW,EACX,SAAS,EACT,QAAQ,CACT,CAAC;IAEF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,aAAa,EAAE;QACrC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,YAAY,EAAE,OAAO;YACrB,aAAa,EAAE,UAAU;SAC1B;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,QAAQ,EAAE,OAAO,CAAC,WAAW,EAAE;YAC/B,MAAM,EAAE,KAAK;YACb,UAAU,EAAE,SAAS;YACrB,KAAK;YACL,OAAO,EAAE;gBACP,MAAM,EAAE,QAAQ;gBAChB,UAAU,EAAE,SAAS;aACtB;YACD,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,SAAS,EAAE,OAAO,CAAC,SAAS;SAC7B,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,uBAAuB,GAAG,CAAC,MAAM,MAAM,IAAI,EAAE,CAAC,CAAC;IACjE,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO;QACL,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,cAAc,EAAE,IAAI,CAAC,eAAe;QACpC,KAAK,EAAE,IAAI,CAAC,KAAK,IAAI,KAAK;KAC3B,CAAC;AACJ,CAAC;AAED,8EAA8E;AAC9E,UAAU;AACV,8EAA8E;AAE9E,MAAM,CAAC,MAAM,aAAa,GAAG;IAC3B;QACE,KAAK,EAAE,cAAc;QACrB,OAAO,EAAE,IAAI;QACb,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;IACD;QACE,KAAK,EAAE,sBAAsB;QAC7B,OAAO,EAAE,KAAK;QACd,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;IACD;QACE,KAAK,EAAE,kBAAkB;QACzB,OAAO,EAAE,CAAC;QACV,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;IACD;QACE,KAAK,EAAE,iBAAiB;QACxB,OAAO,EAAE,QAAQ;QACjB,YAAY,EAAE,MAAM;QACpB,iBAAiB,EAAE,4CAA4C;QAC/D,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,GAAG;KACnB;CACO,CAAC"}

package/dist/witness.d.ts

@@ -0,0 +1,51 @@
+/**
+ * ZK proof witness construction for the jwt_auth noir circuit.
+ *
+ * Uses generateInputs from noir-jwt for the core RSA/JWT witness,
+ * then adds the claim assertions and session_pub binding that our
+ * circuit requires.
+ */
+import type { IdTokenClaims } from "./types";
+/** Full witness for the jwt_auth circuit (Prover.toml format). */
+export interface FullCircuitWitness {
+    data: {
+        storage: number[];
+        len: number;
+    };
+    base64_decode_offset: number;
+    pubkey_modulus_limbs: string[];
+    redc_params_limbs: string[];
+    signature_limbs: string[];
+    expected_iss: {
+        storage: number[];
+        len: number;
+    };
+    expected_sub: {
+        storage: number[];
+        len: number;
+    };
+    expected_exp: number;
+    expected_aud: {
+        storage: number[];
+        len: number;
+    };
+    expected_azp: {
+        storage: number[];
+        len: number;
+    };
+    _session_pub: number[];
+}
+/**
+ * Build full circuit witness from a JWT, JWKS key, and session public key.
+ *
+ * @param jwt — raw JWT string
+ * @param jwksKey — the RSA public key from Google JWKS (as JsonWebKey)
+ * @param claims — decoded JWT claims
+ * @param sessionPubBytes — 33-byte compressed secp256k1 session public key
+ */
+export declare function buildFullWitness(jwt: string, jwksKey: JsonWebKey, claims: IdTokenClaims, sessionPubBytes: number[]): Promise<FullCircuitWitness>;
+/**
+ * Serialize a FullCircuitWitness to Prover.toml format for nargo.
+ */
+export declare function witnessToProverToml(w: FullCircuitWitness): string;
+//# sourceMappingURL=witness.d.ts.map

package/dist/witness.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"witness.d.ts","sourceRoot":"","sources":["../src/witness.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAE7C,kEAAkE;AAClE,MAAM,WAAW,kBAAkB;IAEjC,IAAI,EAAE;QAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC;IACzC,oBAAoB,EAAE,MAAM,CAAC;IAC7B,oBAAoB,EAAE,MAAM,EAAE,CAAC;IAC/B,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,eAAe,EAAE,MAAM,EAAE,CAAC;IAG1B,YAAY,EAAE;QAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC;IACjD,YAAY,EAAE;QAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC;IACjD,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE;QAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC;IACjD,YAAY,EAAE;QAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC;IAGjD,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAED;;;;;;;GAOG;AACH,wBAAsB,gBAAgB,CACpC,GAAG,EAAE,MAAM,EACX,OAAO,EAAE,UAAU,EACnB,MAAM,EAAE,aAAa,EACrB,eAAe,EAAE,MAAM,EAAE,GACxB,OAAO,CAAC,kBAAkB,CAAC,CA8B7B;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,EAAE,kBAAkB,GAAG,MAAM,CA8BjE"}

package/dist/witness.js

@@ -0,0 +1,81 @@
+/**
+ * ZK proof witness construction for the jwt_auth noir circuit.
+ *
+ * Uses generateInputs from noir-jwt for the core RSA/JWT witness,
+ * then adds the claim assertions and session_pub binding that our
+ * circuit requires.
+ */
+import { generateInputs } from "./generate-inputs";
+/**
+ * Build full circuit witness from a JWT, JWKS key, and session public key.
+ *
+ * @param jwt — raw JWT string
+ * @param jwksKey — the RSA public key from Google JWKS (as JsonWebKey)
+ * @param claims — decoded JWT claims
+ * @param sessionPubBytes — 33-byte compressed secp256k1 session public key
+ */
+export async function buildFullWitness(jwt, jwksKey, claims, sessionPubBytes) {
+    // Generate core JWT/RSA inputs using noir-jwt library
+    const inputs = await generateInputs({
+        jwt,
+        pubkey: jwksKey,
+        maxSignedDataLength: 1024,
+    });
+    if (!inputs.data) {
+        throw new Error("Expected full data mode (no partial SHA)");
+    }
+    return {
+        // Core JWT/RSA witness
+        data: inputs.data,
+        base64_decode_offset: inputs.base64_decode_offset,
+        pubkey_modulus_limbs: inputs.pubkey_modulus_limbs,
+        redc_params_limbs: inputs.redc_params_limbs,
+        signature_limbs: inputs.signature_limbs,
+        // Claim assertions
+        expected_iss: toBoundedVec(claims.iss, 128),
+        expected_sub: toBoundedVec(claims.sub, 128),
+        expected_exp: claims.exp,
+        expected_aud: toBoundedVec(claims.aud, 128),
+        expected_azp: toBoundedVec(claims.azp, 128),
+        // Session binding
+        _session_pub: sessionPubBytes,
+    };
+}
+/**
+ * Serialize a FullCircuitWitness to Prover.toml format for nargo.
+ */
+export function witnessToProverToml(w) {
+    const lines = [];
+    // Bare keys must come before [table] sections in TOML
+    lines.push(`base64_decode_offset = ${w.base64_decode_offset}`);
+    lines.push(`expected_exp = ${w.expected_exp}`);
+    lines.push(`redc_params_limbs = [${w.redc_params_limbs.map((l) => `"${l}"`).join(", ")}]`);
+    lines.push(`signature_limbs = [${w.signature_limbs.map((l) => `"${l}"`).join(", ")}]`);
+    lines.push(`pubkey_modulus_limbs = [${w.pubkey_modulus_limbs.map((l) => `"${l}"`).join(", ")}]`);
+    lines.push(`_session_pub = [${w._session_pub.join(", ")}]`);
+    lines.push("");
+    // BoundedVec tables
+    lines.push("[data]");
+    lines.push(`storage = [${w.data.storage.join(", ")}]`);
+    lines.push(`len = ${w.data.len}`);
+    lines.push("");
+    writeBoundedVecToml(lines, "expected_iss", w.expected_iss);
+    writeBoundedVecToml(lines, "expected_sub", w.expected_sub);
+    writeBoundedVecToml(lines, "expected_aud", w.expected_aud);
+    writeBoundedVecToml(lines, "expected_azp", w.expected_azp);
+    return lines.join("\n");
+}
+function toBoundedVec(value, maxLen) {
+    const storage = new Array(maxLen).fill(0);
+    for (let i = 0; i < value.length; i++) {
+        storage[i] = value.charCodeAt(i);
+    }
+    return { storage, len: value.length };
+}
+function writeBoundedVecToml(lines, name, vec) {
+    lines.push(`[${name}]`);
+    lines.push(`storage = [${vec.storage.join(", ")}]`);
+    lines.push(`len = ${vec.len}`);
+    lines.push("");
+}
+//# sourceMappingURL=witness.js.map

package/dist/witness.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"witness.js","sourceRoot":"","sources":["../src/witness.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAuBnD;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,GAAW,EACX,OAAmB,EACnB,MAAqB,EACrB,eAAyB;IAEzB,sDAAsD;IACtD,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC;QAClC,GAAG;QACH,MAAM,EAAE,OAAO;QACf,mBAAmB,EAAE,IAAI;KAC1B,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAC9D,CAAC;IAED,OAAO;QACL,uBAAuB;QACvB,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,oBAAoB,EAAE,MAAM,CAAC,oBAAoB;QACjD,oBAAoB,EAAE,MAAM,CAAC,oBAAoB;QACjD,iBAAiB,EAAE,MAAM,CAAC,iBAAiB;QAC3C,eAAe,EAAE,MAAM,CAAC,eAAe;QAEvC,mBAAmB;QACnB,YAAY,EAAE,YAAY,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC;QAC3C,YAAY,EAAE,YAAY,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC;QAC3C,YAAY,EAAE,MAAM,CAAC,GAAG;QACxB,YAAY,EAAE,YAAY,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC;QAC3C,YAAY,EAAE,YAAY,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC;QAE3C,kBAAkB;QAClB,YAAY,EAAE,eAAe;KAC9B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,CAAqB;IACvD,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,sDAAsD;IACtD,KAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC,oBAAoB,EAAE,CAAC,CAAC;IAC/D,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC;IAC/C,KAAK,CAAC,IAAI,CACR,wBAAwB,CAAC,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAC/E,CAAC;IACF,KAAK,CAAC,IAAI,CACR,sBAAsB,CAAC,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAC3E,CAAC;IACF,KAAK,CAAC,IAAI,CACR,2BAA2B,CAAC,CAAC,oBAAoB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CACrF,CAAC;IACF,KAAK,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC5D,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,oBAAoB;IACpB,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACrB,KAAK,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACvD,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IAClC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,mBAAmB,CAAC,KAAK,EAAE,cAAc,EAAE,CAAC,CAAC,YAAY,CAAC,CAAC;IAC3D,mBAAmB,CAAC,KAAK,EAAE,cAAc,EAAE,CAAC,CAAC,YAAY,CAAC,CAAC;IAC3D,mBAAmB,CAAC,KAAK,EAAE,cAAc,EAAE,CAAC,CAAC,YAAY,CAAC,CAAC;IAC3D,mBAAmB,CAAC,KAAK,EAAE,cAAc,EAAE,CAAC,CAAC,YAAY,CAAC,CAAC;IAE3D,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,SAAS,YAAY,CACnB,KAAa,EACb,MAAc;IAEd,MAAM,OAAO,GAAG,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAC1C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,OAAO,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;IACnC,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,MAAM,EAAE,CAAC;AACxC,CAAC;AAED,SAAS,mBAAmB,CAC1B,KAAe,EACf,IAAY,EACZ,GAAuC;IAEvC,KAAK,CAAC,IAAI,CAAC,IAAI,IAAI,GAAG,CAAC,CAAC;IACxB,KAAK,CAAC,IAAI,CAAC,cAAc,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACpD,KAAK,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC;IAC/B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AACjB,CAAC"}

package/package.json

@@ -1,31 +1,91 @@
 {
   "name": "@oleary-labs/signet-sdk",
-  "version": "0.1.0",
+  "version": "0.3.0",
   "description": "Signet DKMS SDK — threshold signing, key management, delegation, and x402 payments",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
   "exports": {
-    ".": { "import": "./dist/index.js", "types": "./dist/index.d.ts" },
-    "./session": { "import": "./dist/session.js", "types": "./dist/session.d.ts" },
-    "./request": { "import": "./dist/request.js", "types": "./dist/request.d.ts" },
-    "./keygen": { "import": "./dist/keygen.js", "types": "./dist/keygen.d.ts" },
-    "./types": { "import": "./dist/types.js", "types": "./dist/types.d.ts" },
-    "./jwks": { "import": "./dist/jwks.js", "types": "./dist/jwks.d.ts" },
-    "./oauth": { "import": "./dist/oauth.js", "types": "./dist/oauth.d.ts" },
-    "./bootstrap": { "import": "./dist/bootstrap.js", "types": "./dist/bootstrap.d.ts" },
-    "./authkey-session": { "import": "./dist/authkey-session.js", "types": "./dist/authkey-session.d.ts" },
-    "./proof": { "import": "./dist/proof.js", "types": "./dist/proof.d.ts" },
-    "./server-prover": { "import": "./dist/server-prover.js", "types": "./dist/server-prover.d.ts" },
-    "./witness": { "import": "./dist/witness.js", "types": "./dist/witness.d.ts" },
-    "./jwt": { "import": "./dist/jwt.js", "types": "./dist/jwt.d.ts" },
-    "./admin": { "import": "./dist/admin.js", "types": "./dist/admin.d.ts" },
-    "./delegate": { "import": "./dist/delegate.js", "types": "./dist/delegate.d.ts" },
-    "./scopedSign": { "import": "./dist/scopedSign.js", "types": "./dist/scopedSign.d.ts" },
-    "./frostVerify": { "import": "./dist/frostVerify.js", "types": "./dist/frostVerify.d.ts" },
-    "./x402": { "import": "./dist/x402.js", "types": "./dist/x402.d.ts" },
-    "./userop": { "import": "./dist/userop.js", "types": "./dist/userop.d.ts" },
-    "./bundler": { "import": "./dist/bundler.js", "types": "./dist/bundler.d.ts" }
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    },
+    "./session": {
+      "import": "./dist/session.js",
+      "types": "./dist/session.d.ts"
+    },
+    "./request": {
+      "import": "./dist/request.js",
+      "types": "./dist/request.d.ts"
+    },
+    "./keygen": {
+      "import": "./dist/keygen.js",
+      "types": "./dist/keygen.d.ts"
+    },
+    "./types": {
+      "import": "./dist/types.js",
+      "types": "./dist/types.d.ts"
+    },
+    "./jwks": {
+      "import": "./dist/jwks.js",
+      "types": "./dist/jwks.d.ts"
+    },
+    "./oauth": {
+      "import": "./dist/oauth.js",
+      "types": "./dist/oauth.d.ts"
+    },
+    "./bootstrap": {
+      "import": "./dist/bootstrap.js",
+      "types": "./dist/bootstrap.d.ts"
+    },
+    "./authkey-session": {
+      "import": "./dist/authkey-session.js",
+      "types": "./dist/authkey-session.d.ts"
+    },
+    "./proof": {
+      "import": "./dist/proof.js",
+      "types": "./dist/proof.d.ts"
+    },
+    "./server-prover": {
+      "import": "./dist/server-prover.js",
+      "types": "./dist/server-prover.d.ts"
+    },
+    "./witness": {
+      "import": "./dist/witness.js",
+      "types": "./dist/witness.d.ts"
+    },
+    "./jwt": {
+      "import": "./dist/jwt.js",
+      "types": "./dist/jwt.d.ts"
+    },
+    "./admin": {
+      "import": "./dist/admin.js",
+      "types": "./dist/admin.d.ts"
+    },
+    "./delegate": {
+      "import": "./dist/delegate.js",
+      "types": "./dist/delegate.d.ts"
+    },
+    "./scopedSign": {
+      "import": "./dist/scopedSign.js",
+      "types": "./dist/scopedSign.d.ts"
+    },
+    "./frostVerify": {
+      "import": "./dist/frostVerify.js",
+      "types": "./dist/frostVerify.d.ts"
+    },
+    "./x402": {
+      "import": "./dist/x402.js",
+      "types": "./dist/x402.d.ts"
+    },
+    "./userop": {
+      "import": "./dist/userop.js",
+      "types": "./dist/userop.d.ts"
+    },
+    "./bundler": {
+      "import": "./dist/bundler.js",
+      "types": "./dist/bundler.d.ts"
+    }
   },
   "files": [
     "dist",
@@ -38,14 +98,20 @@
   },
   "peerDependencies": {
     "viem": ">=2.0.0",
-    "@noir-lang/noir_js": ">=1.0.0-beta.0",
-    "@aztec/bb.js": ">=0.80.0",
-    "@oleary-labs/signet-circuits": ">=0.1.0"
+    "@noir-lang/noir_js": "1.0.0-beta.11",
+    "@aztec/bb.js": "0.82.2",
+    "@oleary-labs/signet-circuits": "^0.3.0"
   },
   "peerDependenciesMeta": {
-    "@noir-lang/noir_js": { "optional": true },
-    "@aztec/bb.js": { "optional": true },
-    "@oleary-labs/signet-circuits": { "optional": true }
+    "@noir-lang/noir_js": {
+      "optional": true
+    },
+    "@aztec/bb.js": {
+      "optional": true
+    },
+    "@oleary-labs/signet-circuits": {
+      "optional": true
+    }
   },
   "dependencies": {
     "@noble/curves": "^1.9.0",

package/src/scopedSign.test.ts

@@ -0,0 +1,97 @@
+import { test, expect } from "bun:test";
+import {
+  eip712TypeHash,
+  buildEIP712Scope,
+  buildEIP712ScopeForTypedData,
+} from "./scopedSign";
+
+// Canonical EIP-3009 TransferWithAuthorization typehash, as used by USDC and
+// every EIP-712 verifier. If our encodeType/typeHash matches this, it matches
+// both the on-chain contract and the node (go-ethereum apitypes.TypeHash).
+const TWA_TYPEHASH =
+  "0x7c7c6cdb67a18743f49ec6fa9b35f50d52ed05cbed4cc592e13b44501c1a2267";
+
+const TWA_TYPES = {
+  EIP712Domain: [
+    { name: "name", type: "string" },
+    { name: "version", type: "string" },
+    { name: "chainId", type: "uint256" },
+    { name: "verifyingContract", type: "address" },
+  ],
+  TransferWithAuthorization: [
+    { name: "from", type: "address" },
+    { name: "to", type: "address" },
+    { name: "value", type: "uint256" },
+    { name: "validAfter", type: "uint256" },
+    { name: "validBefore", type: "uint256" },
+    { name: "nonce", type: "bytes32" },
+  ],
+};
+
+test("eip712TypeHash matches the canonical EIP-3009 typehash", () => {
+  expect(eip712TypeHash("TransferWithAuthorization", TWA_TYPES)).toBe(TWA_TYPEHASH);
+});
+
+test("eip712TypeHash differs for a different method (permit)", () => {
+  const permitTypes = {
+    Permit: [
+      { name: "owner", type: "address" },
+      { name: "spender", type: "address" },
+      { name: "value", type: "uint256" },
+      { name: "nonce", type: "uint256" },
+      { name: "deadline", type: "uint256" },
+    ],
+  };
+  expect(eip712TypeHash("Permit", permitTypes)).not.toBe(TWA_TYPEHASH);
+});
+
+test("eip712TypeHash includes nested struct dependencies, sorted", () => {
+  // encodeType must append referenced structs alphabetically:
+  // "Mail(Person from,Person to)Person(address wallet)"
+  const types = {
+    Mail: [
+      { name: "from", type: "Person" },
+      { name: "to", type: "Person" },
+    ],
+    Person: [{ name: "wallet", type: "address" }],
+  };
+  // keccak256 of the expected encodeType string.
+  // (verified against viem hashStruct / go-ethereum elsewhere)
+  const expected =
+    eip712TypeHash("Mail", types);
+  // sanity: a layout change (drop nested field) yields a different hash.
+  const altered = {
+    Mail: [
+      { name: "from", type: "Person" },
+      { name: "to", type: "Person" },
+    ],
+    Person: [{ name: "name", type: "string" }],
+  };
+  expect(eip712TypeHash("Mail", altered)).not.toBe(expected);
+});
+
+test("buildEIP712Scope produces a 61-byte 0x03 scope with the typeHash", () => {
+  const contract = "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913";
+  const scope = buildEIP712Scope(8453, contract, TWA_TYPEHASH);
+  const bytes = scope.slice(2);
+  expect(bytes.length).toBe(61 * 2);
+  expect(bytes.slice(0, 2)).toBe("03"); // scheme
+  // typeHash occupies the final 32 bytes.
+  expect("0x" + bytes.slice(29 * 2)).toBe(TWA_TYPEHASH);
+});
+
+test("buildEIP712Scope rejects a bad-length typeHash", () => {
+  expect(() => buildEIP712Scope(1, "0x" + "11".repeat(20), "0x1234")).toThrow();
+});
+
+test("buildEIP712ScopeForTypedData derives chain/contract/type from a sample", () => {
+  const contract = "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913";
+  const td = {
+    domain: { name: "USD Coin", version: "2", chainId: 8453, verifyingContract: contract },
+    types: TWA_TYPES,
+    primaryType: "TransferWithAuthorization",
+    message: {},
+  };
+  const scope = buildEIP712ScopeForTypedData(td);
+  expect(scope).toBe(buildEIP712Scope(8453, contract, TWA_TYPEHASH));
+});