@openfort/openfort-node 0.7.6 → 0.8.0

package/dist/index.mjs

@@ -374,7 +374,7 @@ function requiresWalletAuth(requestMethod, requestPath) {
 }
 
 // src/version.ts
-var VERSION = "0.7.6";
+var VERSION = "0.8.0";
 var PACKAGE = "@openfort/openfort-node";
 
 // src/openapi-client/openfortApiClient.ts
@@ -759,81 +759,6 @@ var disableAccount = (id, options) => {
     options
   );
 };
-var requestTransferOwnership = (id, transferOwnershipRequest, options) => {
-  return openfortApiClient(
-    {
-      url: `/v1/accounts/${id}/request_transfer_ownership`,
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      data: transferOwnershipRequest
-    },
-    options
-  );
-};
-var cancelTransferOwnership = (id, cancelTransferOwnershipRequest, options) => {
-  return openfortApiClient(
-    {
-      url: `/v1/accounts/${id}/cancel_transfer_ownership`,
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      data: cancelTransferOwnershipRequest
-    },
-    options
-  );
-};
-var signPayload = (id, signPayloadRequest, options) => {
-  return openfortApiClient(
-    {
-      url: `/v1/accounts/${id}/sign_payload`,
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      data: signPayloadRequest
-    },
-    options
-  );
-};
-var syncAccount = (id, options) => {
-  return openfortApiClient(
-    {
-      url: `/v1/accounts/${id}/sync`,
-      method: "POST"
-    },
-    options
-  );
-};
-var deployAccount = (id, deployRequest, options) => {
-  return openfortApiClient(
-    {
-      url: `/v1/accounts/${id}/deploy`,
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      data: deployRequest
-    },
-    options
-  );
-};
-var startRecovery = (id, startRecoveryRequest, options) => {
-  return openfortApiClient(
-    {
-      url: `/v1/accounts/${id}/start_recovery`,
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      data: startRecoveryRequest
-    },
-    options
-  );
-};
-var completeRecovery = (id, completeRecoveryRequest, options) => {
-  return openfortApiClient(
-    {
-      url: `/v1/accounts/${id}/complete_recovery`,
-      method: "POST",
-      headers: { "Content-Type": "application/json" },
-      data: completeRecoveryRequest
-    },
-    options
-  );
-};
 
 // src/openapi-client/generated/accs-v2/accs-v2.ts
 var getAccountsV2 = (params, options) => {
@@ -2268,7 +2193,11 @@ var APITopic = {
   balanceproject: "balance.project",
   balancecontract: "balance.contract",
   balancedev_account: "balance.dev_account",
-  test: "test"
+  test: "test",
+  usercreated: "user.created",
+  userupdated: "user.updated",
+  userdeleted: "user.deleted",
+  accountcreated: "account.created"
 };
 var APITriggerType = {
   webhook: "webhook",
@@ -2429,6 +2358,285 @@ var PregenerateUserRequestV2ChainType = {
   EVM: "EVM",
   SVM: "SVM"
 };
+var PolicyV2Scope = {
+  project: "project",
+  account: "account"
+};
+var PolicyV2Action = {
+  accept: "accept",
+  reject: "reject"
+};
+var EvmCriteriaTypeEVMADDRESS = {
+  evmAddress: "evmAddress"
+};
+var CriteriaOperatorIN = {
+  in: "in"
+};
+var CriteriaOperatorNOTIN = {
+  not_in: "not in"
+};
+var EvmCriteriaType = {
+  evmAddress: "evmAddress",
+  ethValue: "ethValue",
+  evmNetwork: "evmNetwork",
+  evmMessage: "evmMessage",
+  evmData: "evmData",
+  evmTypedDataVerifyingContract: "evmTypedDataVerifyingContract",
+  evmTypedDataField: "evmTypedDataField",
+  netUSDChange: "netUSDChange"
+};
+var SolanaCriteriaType = {
+  solAddress: "solAddress",
+  solValue: "solValue",
+  splAddress: "splAddress",
+  splValue: "splValue",
+  mintAddress: "mintAddress",
+  solData: "solData",
+  programId: "programId",
+  solNetwork: "solNetwork",
+  solMessage: "solMessage"
+};
+var CriteriaType = { ...EvmCriteriaType, ...SolanaCriteriaType };
+var CriteriaOperator = {
+  in: "in",
+  not_in: "not in",
+  "<": "<",
+  "<=": "<=",
+  ">": ">",
+  ">=": ">=",
+  "==": "==",
+  match: "match"
+};
+var EvmAddressCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorNOTIN };
+var EvmCriteriaTypeETHVALUE = {
+  ethValue: "ethValue"
+};
+var CriteriaOperatorLESSTHANOREQUAL = {
+  "<=": "<="
+};
+var CriteriaOperatorGREATERTHANOREQUAL = {
+  ">=": ">="
+};
+var CriteriaOperatorLESSTHAN = {
+  "<": "<"
+};
+var CriteriaOperatorGREATERTHAN = {
+  ">": ">"
+};
+var EthValueCriterionOperator = { ...CriteriaOperatorLESSTHANOREQUAL, ...CriteriaOperatorGREATERTHANOREQUAL, ...CriteriaOperatorLESSTHAN, ...CriteriaOperatorGREATERTHAN };
+var EvmCriteriaTypeEVMNETWORK = {
+  evmNetwork: "evmNetwork"
+};
+var EvmNetworkCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorNOTIN };
+var EvmCriteriaTypeEVMMESSAGE = {
+  evmMessage: "evmMessage"
+};
+var CriteriaOperatorMATCH = {
+  match: "match"
+};
+var EvmCriteriaTypeEVMDATA = {
+  evmData: "evmData"
+};
+var EvmCriteriaTypeEVMTYPEDDATAVERIFYINGCONTRACT = {
+  evmTypedDataVerifyingContract: "evmTypedDataVerifyingContract"
+};
+var EvmTypedDataVerifyingContractCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorNOTIN };
+var EvmCriteriaTypeEVMTYPEDDATAFIELD = {
+  evmTypedDataField: "evmTypedDataField"
+};
+var EvmTypedDataFieldCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorLESSTHANOREQUAL, ...CriteriaOperatorMATCH };
+var EvmCriteriaTypeNETUSDCHANGE = {
+  netUSDChange: "netUSDChange"
+};
+var NetUSDChangeCriterionOperator = { ...CriteriaOperatorLESSTHANOREQUAL, ...CriteriaOperatorGREATERTHANOREQUAL };
+var SolanaCriteriaTypeSOLADDRESS = {
+  solAddress: "solAddress"
+};
+var SolAddressCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorNOTIN };
+var SolanaCriteriaTypeSOLVALUE = {
+  solValue: "solValue"
+};
+var SolValueCriterionOperator = { ...CriteriaOperatorLESSTHANOREQUAL, ...CriteriaOperatorGREATERTHANOREQUAL };
+var SolanaCriteriaTypeSPLADDRESS = {
+  splAddress: "splAddress"
+};
+var SplAddressCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorNOTIN };
+var SolanaCriteriaTypeSPLVALUE = {
+  splValue: "splValue"
+};
+var SplValueCriterionOperator = { ...CriteriaOperatorLESSTHANOREQUAL, ...CriteriaOperatorGREATERTHANOREQUAL };
+var SolanaCriteriaTypeMINTADDRESS = {
+  mintAddress: "mintAddress"
+};
+var CriteriaOperatorEQUAL = {
+  "==": "=="
+};
+var MintAddressCriterionOperator = { ...CriteriaOperatorEQUAL, ...CriteriaOperatorIN };
+var SolanaCriteriaTypeSOLDATA = {
+  solData: "solData"
+};
+var SolanaCriteriaTypePROGRAMID = {
+  programId: "programId"
+};
+var ProgramIdCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorNOTIN };
+var SolanaCriteriaTypeSOLNETWORK = {
+  solNetwork: "solNetwork"
+};
+var SolNetworkCriterionOperator = { ...CriteriaOperatorIN, ...CriteriaOperatorNOTIN };
+var SolanaCriteriaTypeSOLMESSAGE = {
+  solMessage: "solMessage"
+};
+var EntityTypePOLICYV2RULE = {
+  policyV2Rule: "policyV2Rule"
+};
+var EntityTypePOLICYV2 = {
+  policyV2: "policyV2"
+};
+var PolicyV2ListQueriesScope = {
+  project: "project",
+  account: "account"
+};
+var EvmAddressCriterionRequestType = {
+  evmAddress: "evmAddress"
+};
+var EvmAddressCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in"
+};
+var EthValueCriterionRequestType = {
+  ethValue: "ethValue"
+};
+var EthValueCriterionRequestOperator = {
+  "<=": "<=",
+  ">=": ">=",
+  "<": "<",
+  ">": ">"
+};
+var EvmNetworkCriterionRequestType = {
+  evmNetwork: "evmNetwork"
+};
+var EvmNetworkCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in"
+};
+var EvmMessageCriterionRequestType = {
+  evmMessage: "evmMessage"
+};
+var EvmMessageCriterionRequestOperator = {
+  match: "match"
+};
+var EvmDataCriterionRequestType = {
+  evmData: "evmData"
+};
+var EvmDataCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in",
+  "<": "<",
+  "<=": "<=",
+  ">": ">",
+  ">=": ">=",
+  "==": "==",
+  match: "match"
+};
+var EvmTypedDataVerifyingContractCriterionRequestType = {
+  evmTypedDataVerifyingContract: "evmTypedDataVerifyingContract"
+};
+var EvmTypedDataVerifyingContractCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in"
+};
+var EvmTypedDataFieldCriterionRequestType = {
+  evmTypedDataField: "evmTypedDataField"
+};
+var EvmTypedDataFieldCriterionRequestOperator = {
+  in: "in",
+  "<=": "<=",
+  match: "match"
+};
+var NetUSDChangeCriterionRequestType = {
+  netUSDChange: "netUSDChange"
+};
+var NetUSDChangeCriterionRequestOperator = {
+  "<=": "<=",
+  ">=": ">="
+};
+var SolAddressCriterionRequestType = {
+  solAddress: "solAddress"
+};
+var SolAddressCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in"
+};
+var SolValueCriterionRequestType = {
+  solValue: "solValue"
+};
+var SolValueCriterionRequestOperator = {
+  "<=": "<=",
+  ">=": ">="
+};
+var SplAddressCriterionRequestType = {
+  splAddress: "splAddress"
+};
+var SplAddressCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in"
+};
+var SplValueCriterionRequestType = {
+  splValue: "splValue"
+};
+var SplValueCriterionRequestOperator = {
+  "<=": "<=",
+  ">=": ">="
+};
+var MintAddressCriterionRequestType = {
+  mintAddress: "mintAddress"
+};
+var MintAddressCriterionRequestOperator = {
+  "==": "==",
+  in: "in"
+};
+var SolDataCriterionRequestType = {
+  solData: "solData"
+};
+var SolDataCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in",
+  "<=": "<=",
+  ">=": ">=",
+  "==": "==",
+  match: "match"
+};
+var ProgramIdCriterionRequestType = {
+  programId: "programId"
+};
+var ProgramIdCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in"
+};
+var SolNetworkCriterionRequestType = {
+  solNetwork: "solNetwork"
+};
+var SolNetworkCriterionRequestOperator = {
+  in: "in",
+  not_in: "not in"
+};
+var SolMessageCriterionRequestType = {
+  solMessage: "solMessage"
+};
+var SolMessageCriterionRequestOperator = {
+  match: "match"
+};
+var CreatePolicyV2RuleRequestAction = {
+  accept: "accept",
+  reject: "reject"
+};
+var CreatePolicyV2RequestScope = {
+  project: "project",
+  account: "account"
+};
+var EvaluatePolicyV2ResponseObject = {
+  policy_evaluation: "policy_evaluation"
+};
 var CreateEmbeddedRequestAccountType = {
   Externally_Owned_Account: "Externally Owned Account",
   Smart_Account: "Smart Account",
@@ -2710,6 +2918,10 @@ var AuthenticationType = {
 var GetPolicyRulesExpandItem = {
   contract: "contract"
 };
+var ListPoliciesScope = {
+  project: "project",
+  account: "account"
+};
 var ListBackendWalletsChainType = {
   EVM: "EVM",
   SVM: "SVM"
@@ -2965,6 +3177,67 @@ var createPolicyWithdrawal = (id, withdrawalPolicyRequest, options) => {
     options
   );
 };
+var listPolicies = (params, options) => {
+  return openfortApiClient(
+    {
+      url: `/v2/policies`,
+      method: "GET",
+      params
+    },
+    options
+  );
+};
+var createPolicyV2 = (createPolicyV2Request, options) => {
+  return openfortApiClient(
+    {
+      url: `/v2/policies`,
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      data: createPolicyV2Request
+    },
+    options
+  );
+};
+var getPolicyV2 = (policyId, options) => {
+  return openfortApiClient(
+    {
+      url: `/v2/policies/${policyId}`,
+      method: "GET"
+    },
+    options
+  );
+};
+var updatePolicyV2 = (policyId, updatePolicyV2Request, options) => {
+  return openfortApiClient(
+    {
+      url: `/v2/policies/${policyId}`,
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      data: updatePolicyV2Request
+    },
+    options
+  );
+};
+var deletePolicyV2 = (policyId, options) => {
+  return openfortApiClient(
+    {
+      url: `/v2/policies/${policyId}`,
+      method: "DELETE"
+    },
+    options
+  );
+};
+var evaluatePolicyV2 = (evaluatePolicyV2Request, options) => {
+  return openfortApiClient(
+    {
+      url: `/v2/policies/evaluate`,
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      data: evaluatePolicyV2Request
+    },
+    options
+  );
+};
 
 // src/openapi-client/generated/policy-rules/policy-rules.ts
 var getPolicyRules = (params, options) => {
@@ -3475,60 +3748,18 @@ var decryptExportedPrivateKey = (encryptedPrivateKeyBase64, privateKeyPem) => {
   return decrypted.toString("hex");
 };
 
-// src/wallets/evm/actions/signHash.ts
-async function signHash(options) {
-  const { accountId, hash } = options;
-  const response = await sign(accountId, { data: hash });
-  return {
-    signature: response.signature
-  };
-}
-
-// src/wallets/evm/actions/signMessage.ts
-import { hashMessage, toHex } from "viem";
-async function signMessage(options) {
-  const { accountId, message } = options;
-  let messageStr;
-  if (typeof message === "string") {
-    messageStr = message;
-  } else if (message instanceof Uint8Array) {
-    messageStr = toHex(message);
-  } else if ("raw" in message) {
-    messageStr = typeof message.raw === "string" ? message.raw : toHex(message.raw);
-  } else {
-    throw new UserInputValidationError("Invalid message format");
-  }
-  const messageHash = hashMessage(messageStr);
-  const response = await sign(accountId, { data: messageHash });
-  return {
-    signature: response.signature
-  };
-}
-
-// src/wallets/evm/actions/signTransaction.ts
+// src/wallets/evm/accounts/evmAccount.ts
 import {
-  keccak256,
+  getTypesForEIP712Domain,
+  hashMessage,
+  hashTypedData,
   parseSignature,
   serializeTransaction
 } from "viem";
-async function signTransaction(options) {
-  const { accountId, transaction } = options;
-  const serialized = serializeTransaction(transaction);
-  const response = await sign(accountId, { data: serialized });
-  const signature2 = parseSignature(response.signature);
-  const signedTransaction = serializeTransaction(transaction, signature2);
-  const transactionHash = keccak256(signedTransaction);
-  return {
-    signedTransaction,
-    transactionHash
-  };
-}
 
-// src/wallets/evm/actions/signTypedData.ts
-import { hashTypedData } from "viem";
-async function signTypedData(options) {
-  const { accountId, typedData } = options;
-  const hash = hashTypedData(typedData);
+// src/wallets/evm/actions/signHash.ts
+async function signHash(options) {
+  const { accountId, hash } = options;
   const response = await sign(accountId, { data: hash });
   return {
     signature: response.signature
@@ -3550,27 +3781,44 @@ function toEvmAccount(data) {
       return result.signature;
     },
     async signMessage(parameters) {
-      const result = await signMessage({
-        address,
-        accountId: id,
-        message: parameters.message
-      });
+      const { message } = parameters;
+      if (typeof message === "string") {
+        const hash2 = hashMessage(message);
+        const result2 = await sign(id, { data: hash2 });
+        return result2.signature;
+      }
+      const hash = hashMessage(message);
+      const result = await sign(id, { data: hash });
       return result.signature;
     },
     async signTransaction(transaction) {
-      const result = await signTransaction({
-        address,
-        accountId: id,
-        transaction
-      });
-      return result.signedTransaction;
+      const serialized = serializeTransaction(transaction);
+      const response = await sign(id, { data: serialized });
+      const signature2 = parseSignature(response.signature);
+      const signedTransaction = serializeTransaction(
+        transaction,
+        signature2
+      );
+      return signedTransaction;
     },
     async signTypedData(parameters) {
-      const result = await signTypedData({
-        address,
-        accountId: id,
-        typedData: parameters
-      });
+      const {
+        domain = {},
+        message,
+        primaryType
+      } = parameters;
+      const types = {
+        EIP712Domain: getTypesForEIP712Domain({ domain }),
+        ...parameters.types
+      };
+      const openApiMessage = {
+        domain,
+        types,
+        primaryType,
+        message
+      };
+      const hash = hashTypedData(openApiMessage);
+      const result = await sign(id, { data: hash });
       return result.signature;
     }
   };
@@ -3794,7 +4042,7 @@ EvmClient.type = "evmWallet";
 import bs58 from "bs58";
 
 // src/wallets/solana/actions/signMessage.ts
-async function signMessage2(options) {
+async function signMessage(options) {
   const { accountId, message } = options;
   const messageBytes = Buffer.from(message, "utf-8");
   const messageHex = `0x${messageBytes.toString("hex")}`;
@@ -3805,7 +4053,7 @@ async function signMessage2(options) {
 }
 
 // src/wallets/solana/actions/signTransaction.ts
-async function signTransaction2(options) {
+async function signTransaction(options) {
   const { accountId, transaction } = options;
   const txBytes = Buffer.from(transaction, "base64");
   const txHex = `0x${txBytes.toString("hex")}`;
@@ -3823,14 +4071,14 @@ function toSolanaAccount(data) {
     address,
     custody: "Developer",
     async signMessage(parameters) {
-      const result = await signMessage2({
+      const result = await signMessage({
         accountId: id,
         message: parameters.message
       });
       return result.signature;
     },
     async signTransaction(parameters) {
-      const result = await signTransaction2({
+      const result = await signTransaction({
         accountId: id,
         transaction: parameters.transaction
       });
@@ -4068,6 +4316,294 @@ SolanaClient.type = "solanaWallet";
 
 // src/index.ts
 import { ShieldAuthProvider as ShieldAuthProvider2 } from "@openfort/shield-js";
+
+// src/policies/evmSchema.ts
+import { z } from "zod";
+var EthValueOperatorEnum = z.enum(["<=", ">=", "<", ">"]);
+var EvmAddressOperatorEnum = z.enum(["in", "not in"]);
+var EvmNetworkOperatorEnum = z.enum(["in", "not in"]);
+var EvmDataOperatorEnum = z.enum([
+  "in",
+  "not in",
+  "<",
+  "<=",
+  ">",
+  ">=",
+  "==",
+  "match"
+]);
+var EvmTypedDataVerifyingContractOperatorEnum = z.enum([
+  "in",
+  "not in"
+]);
+var EvmTypedDataFieldOperatorEnum = z.enum(["in", "<=", "match"]);
+var ActionEnum = z.enum(["reject", "accept"]);
+var EthValueCriterionSchema = z.object({
+  type: z.literal("ethValue"),
+  operator: EthValueOperatorEnum,
+  /** Value in wei as a string. */
+  ethValue: z.string().regex(/^[0-9]+$/)
+});
+var EvmAddressCriterionSchema = z.object({
+  type: z.literal("evmAddress"),
+  operator: EvmAddressOperatorEnum,
+  /** List of EVM addresses (hex format with 0x prefix). */
+  addresses: z.array(z.string().regex(/^0x[0-9a-fA-F]{40}$/))
+});
+var EvmNetworkCriterionSchema = z.object({
+  type: z.literal("evmNetwork"),
+  operator: EvmNetworkOperatorEnum,
+  /** List of chain IDs. */
+  chainIds: z.array(z.number().int().positive())
+});
+var EvmMessageCriterionSchema = z.object({
+  type: z.literal("evmMessage"),
+  operator: z.literal("match"),
+  /** RE2 regex pattern to match against the message. */
+  pattern: z.string().min(1)
+});
+var EvmDataCriterionSchema = z.object({
+  type: z.literal("evmData"),
+  operator: EvmDataOperatorEnum,
+  /** Contract ABI as JSON string. */
+  abi: z.string().min(1),
+  /** Function name to match. */
+  functionName: z.string().min(1),
+  /** Argument constraints. */
+  args: z.record(z.unknown()).optional()
+});
+var EvmTypedDataVerifyingContractCriterionSchema = z.object({
+  type: z.literal("evmTypedDataVerifyingContract"),
+  operator: EvmTypedDataVerifyingContractOperatorEnum,
+  /** List of verifying contract addresses. */
+  addresses: z.array(z.string().regex(/^0x[0-9a-fA-F]{40}$/))
+});
+var EvmTypedDataFieldCriterionSchema = z.object({
+  type: z.literal("evmTypedDataField"),
+  operator: EvmTypedDataFieldOperatorEnum,
+  /** Dot-notation path to the field (e.g. "order.buyer"). */
+  fieldPath: z.string().min(1),
+  /** Values for "in" operator. */
+  values: z.array(z.string()).optional(),
+  /** Value for "<=" or "match" operators. */
+  value: z.string().optional()
+});
+var SignEvmTransactionCriteriaSchema = z.array(
+  z.discriminatedUnion("type", [
+    EthValueCriterionSchema,
+    EvmAddressCriterionSchema,
+    EvmDataCriterionSchema
+  ])
+).max(10);
+var SendEvmTransactionCriteriaSchema = z.array(
+  z.discriminatedUnion("type", [
+    EthValueCriterionSchema,
+    EvmAddressCriterionSchema,
+    EvmNetworkCriterionSchema,
+    EvmDataCriterionSchema
+  ])
+).max(10);
+var SignEvmMessageCriteriaSchema = z.array(z.discriminatedUnion("type", [EvmMessageCriterionSchema])).max(10);
+var SignEvmTypedDataCriteriaSchema = z.array(
+  z.discriminatedUnion("type", [
+    EvmTypedDataFieldCriterionSchema,
+    EvmTypedDataVerifyingContractCriterionSchema
+  ])
+).max(10);
+var SignEvmTransactionRuleSchema = z.object({
+  action: ActionEnum,
+  operation: z.literal("signEvmTransaction"),
+  criteria: SignEvmTransactionCriteriaSchema
+});
+var SendEvmTransactionRuleSchema = z.object({
+  action: ActionEnum,
+  operation: z.literal("sendEvmTransaction"),
+  criteria: SendEvmTransactionCriteriaSchema
+});
+var SignEvmMessageRuleSchema = z.object({
+  action: ActionEnum,
+  operation: z.literal("signEvmMessage"),
+  criteria: SignEvmMessageCriteriaSchema
+});
+var SignEvmTypedDataRuleSchema = z.object({
+  action: ActionEnum,
+  operation: z.literal("signEvmTypedData"),
+  criteria: SignEvmTypedDataCriteriaSchema
+});
+var SignEvmHashRuleSchema = z.object({
+  action: ActionEnum,
+  operation: z.literal("signEvmHash")
+});
+
+// src/policies/solanaSchema.ts
+import { z as z2 } from "zod";
+var SolAddressOperatorEnum = z2.enum(["in", "not in"]);
+var SolValueOperatorEnum = z2.enum(["<=", ">="]);
+var SplAddressOperatorEnum = z2.enum(["in", "not in"]);
+var SplValueOperatorEnum = z2.enum(["<=", ">="]);
+var MintAddressOperatorEnum = z2.enum(["==", "in"]);
+var SolDataOperatorEnum = z2.enum([
+  "in",
+  "not in",
+  "<=",
+  ">=",
+  "==",
+  "match"
+]);
+var ProgramIdOperatorEnum = z2.enum(["in", "not in"]);
+var SolNetworkOperatorEnum = z2.enum(["in", "not in"]);
+var SolNetworkEnum = z2.enum(["mainnet-beta", "devnet", "testnet"]);
+var base58Address = z2.string().regex(/^[1-9A-HJ-NP-Za-km-z]{32,44}$/);
+var SolAddressCriterionSchema = z2.object({
+  type: z2.literal("solAddress"),
+  operator: SolAddressOperatorEnum,
+  /** List of Solana addresses (Base58). */
+  addresses: z2.array(base58Address)
+});
+var SolValueCriterionSchema = z2.object({
+  type: z2.literal("solValue"),
+  operator: SolValueOperatorEnum,
+  /** Value in lamports as string. */
+  value: z2.string().regex(/^[0-9]+$/)
+});
+var SplAddressCriterionSchema = z2.object({
+  type: z2.literal("splAddress"),
+  operator: SplAddressOperatorEnum,
+  /** List of recipient addresses (Base58). */
+  addresses: z2.array(base58Address)
+});
+var SplValueCriterionSchema = z2.object({
+  type: z2.literal("splValue"),
+  operator: SplValueOperatorEnum,
+  /** Token amount as string. */
+  value: z2.string().regex(/^[0-9]+$/)
+});
+var MintAddressCriterionSchema = z2.object({
+  type: z2.literal("mintAddress"),
+  operator: MintAddressOperatorEnum,
+  /** List of mint addresses (Base58). */
+  addresses: z2.array(base58Address)
+});
+var SolDataCriterionSchema = z2.object({
+  type: z2.literal("solData"),
+  operator: SolDataOperatorEnum,
+  /** Anchor IDL JSON (v0.30+). */
+  idl: z2.string().min(1),
+  /** Instruction name. */
+  instructionName: z2.string().min(1),
+  /** Argument constraints. */
+  args: z2.record(z2.unknown()).optional()
+});
+var ProgramIdCriterionSchema = z2.object({
+  type: z2.literal("programId"),
+  operator: ProgramIdOperatorEnum,
+  /** List of program IDs (Base58). */
+  programIds: z2.array(base58Address)
+});
+var SolNetworkCriterionSchema = z2.object({
+  type: z2.literal("solNetwork"),
+  operator: SolNetworkOperatorEnum,
+  /** List of networks: "mainnet-beta", "devnet", "testnet". */
+  networks: z2.array(SolNetworkEnum)
+});
+var SolMessageCriterionSchema = z2.object({
+  type: z2.literal("solMessage"),
+  operator: z2.literal("match"),
+  /** RE2 regex pattern. */
+  pattern: z2.string().min(1)
+});
+var SignSolTransactionCriteriaSchema = z2.array(
+  z2.discriminatedUnion("type", [
+    SolAddressCriterionSchema,
+    SolValueCriterionSchema,
+    SplAddressCriterionSchema,
+    SplValueCriterionSchema,
+    MintAddressCriterionSchema,
+    SolDataCriterionSchema,
+    ProgramIdCriterionSchema
+  ])
+).max(10);
+var SendSolTransactionCriteriaSchema = z2.array(
+  z2.discriminatedUnion("type", [
+    SolAddressCriterionSchema,
+    SolValueCriterionSchema,
+    SplAddressCriterionSchema,
+    SplValueCriterionSchema,
+    MintAddressCriterionSchema,
+    SolDataCriterionSchema,
+    ProgramIdCriterionSchema,
+    SolNetworkCriterionSchema
+  ])
+).max(10);
+var SignSolMessageCriteriaSchema = z2.array(SolMessageCriterionSchema).max(10);
+var SignSolTransactionRuleSchema = z2.object({
+  action: ActionEnum,
+  operation: z2.literal("signSolTransaction"),
+  criteria: SignSolTransactionCriteriaSchema
+});
+var SendSolTransactionRuleSchema = z2.object({
+  action: ActionEnum,
+  operation: z2.literal("sendSolTransaction"),
+  criteria: SendSolTransactionCriteriaSchema
+});
+var SignSolMessageRuleSchema = z2.object({
+  action: ActionEnum,
+  operation: z2.literal("signSolMessage"),
+  criteria: SignSolMessageCriteriaSchema
+});
+
+// src/policies/types.ts
+import { z as z3 } from "zod";
+var PolicyScopeEnum = z3.enum(["project", "account"]);
+var RuleSchema = z3.discriminatedUnion("operation", [
+  SignEvmTransactionRuleSchema,
+  SendEvmTransactionRuleSchema,
+  SignEvmMessageRuleSchema,
+  SignEvmTypedDataRuleSchema,
+  SignEvmHashRuleSchema,
+  SignSolTransactionRuleSchema,
+  SendSolTransactionRuleSchema,
+  SignSolMessageRuleSchema
+]);
+var CreatePolicyBodySchema = z3.object({
+  /** The scope of the policy. 'project' applies to all accounts, 'account' applies to a specific account. */
+  scope: PolicyScopeEnum,
+  /** A description of what this policy does. */
+  description: z3.string().optional(),
+  /** The account ID for account-scoped policies (starts with acc_). Required when scope is 'account'. */
+  accountId: z3.string().optional(),
+  /** Whether the policy is enabled. */
+  enabled: z3.boolean().optional(),
+  /** Priority of the policy. Higher priority policies are evaluated first. */
+  priority: z3.number().int().optional(),
+  /** The rules that make up this policy. Maximum 10 rules per policy. */
+  rules: z3.array(RuleSchema).min(1).max(10)
+});
+var UpdatePolicyBodySchema = z3.object({
+  /** A description of what this policy does. */
+  description: z3.string().optional(),
+  /** Whether the policy is enabled. */
+  enabled: z3.boolean().optional(),
+  /** Priority of the policy. Higher priority policies are evaluated first. */
+  priority: z3.number().int().optional(),
+  /** The rules that make up this policy. If provided, replaces all existing rules. Maximum 10 rules. */
+  rules: z3.array(RuleSchema).min(1).max(10).optional()
+});
+
+// src/wallets/evm/actions/signMessage.ts
+import { hashMessage as hashMessage2, toHex } from "viem";
+
+// src/wallets/evm/actions/signTransaction.ts
+import {
+  keccak256,
+  parseSignature as parseSignature2,
+  serializeTransaction as serializeTransaction2
+} from "viem";
+
+// src/wallets/evm/actions/signTypedData.ts
+import { hashTypedData as hashTypedData2 } from "viem";
+
+// src/index.ts
 function isValidSecretKey(key) {
   return key.startsWith("sk_test_") || key.startsWith("sk_live_");
 }
@@ -4203,14 +4739,7 @@ var Openfort = class {
       v1: {
         list: getAccounts,
         create: createAccount,
-        get: getAccount,
-        requestTransferOwnership,
-        cancelTransferOwnership,
-        signPayload,
-        sync: syncAccount,
-        deploy: deployAccount,
-        startRecovery,
-        completeRecovery
+        get: getAccount
       }
     };
   }
@@ -4219,6 +4748,7 @@ var Openfort = class {
   // ============================================
   /**
    * Player management endpoints
+   * @deprecated
    */
   get players() {
     return {
@@ -4258,41 +4788,77 @@ var Openfort = class {
   // Policies API
   // ============================================
   /**
-   * Policy management endpoints
+   * Policy management endpoints for controlling account operations.
+   *
+   * Policies define rules that govern what operations accounts can perform,
+   * including transaction signing, message signing, and more.
+   *
+   * @example
+   * ```typescript
+   * // List all policies
+   * const all = await openfort.policies.list();
+   *
+   * // Create a policy
+   * const policy = await openfort.policies.create({
+   *   scope: 'project',
+   *   rules: [{ action: 'reject', operation: 'signEvmHash' }],
+   * });
+   *
+   * // Evaluate whether an operation would be allowed
+   * const result = await openfort.policies.evaluate({ operation: 'signEvmTransaction', accountId: 'acc_...' });
+   * ```
    */
   get policies() {
     return {
       /** List policies */
-      list: getPolicies,
+      list: listPolicies,
       /** Create a policy */
-      create: createPolicy,
+      create: createPolicyV2,
       /** Get a policy by ID */
-      get: getPolicy,
+      get: getPolicyV2,
       /** Update a policy */
-      update: updatePolicy,
+      update: updatePolicyV2,
       /** Delete a policy */
-      delete: deletePolicy,
-      /** Disable a policy */
-      disable: disablePolicy,
-      /** Enable a policy */
-      enable: enablePolicy,
-      /** Get policy total gas usage */
-      getTotalGasUsage: getPolicyTotalGasUsage
+      delete: deletePolicyV2,
+      /** Evaluate an operation against policies */
+      evaluate: evaluatePolicyV2
     };
   }
+  // ============================================
+  // Fee Sponsorship API
+  // ============================================
   /**
-   * Policy rules management endpoints
+   * Fee sponsorship (gas policy) management endpoints
    */
-  get policyRules() {
+  get feeSponsorship() {
     return {
-      /** List policy rules */
-      list: getPolicyRules,
-      /** Create a policy rule */
-      create: createPolicyRule,
-      /** Update a policy rule */
-      update: updatePolicyRule,
-      /** Delete a policy rule */
-      delete: deletePolicyRule
+      /** List fee sponsorship policies */
+      list: getPolicies,
+      /** Create a fee sponsorship policy */
+      create: createPolicy,
+      /** Get a fee sponsorship policy by ID */
+      get: getPolicy,
+      /** Update a fee sponsorship policy */
+      update: updatePolicy,
+      /** Delete a fee sponsorship policy */
+      delete: deletePolicy,
+      /** Disable a fee sponsorship policy */
+      disable: disablePolicy,
+      /** Enable a fee sponsorship policy */
+      enable: enablePolicy,
+      /** Get fee sponsorship policy total gas usage */
+      getTotalGasUsage: getPolicyTotalGasUsage,
+      /** Fee sponsorship policy rules */
+      rules: {
+        /** List policy rules */
+        list: getPolicyRules,
+        /** Create a policy rule */
+        create: createPolicyRule,
+        /** Update a policy rule */
+        update: updatePolicyRule,
+        /** Delete a policy rule */
+        delete: deletePolicyRule
+      }
     };
   }
   // ============================================
@@ -4340,6 +4906,7 @@ var Openfort = class {
   // ============================================
   /**
    * Settings / Developer account management endpoints
+   * @deprecated
    */
   get settings() {
     return {
@@ -4681,6 +5248,19 @@ export {
   CreateBackendWalletResponseObject,
   CreateEmbeddedRequestAccountType,
   CreateEmbeddedRequestChainType,
+  CreatePolicyBodySchema,
+  CreatePolicyV2RequestScope,
+  CreatePolicyV2RuleRequestAction,
+  CriteriaOperator,
+  CriteriaOperatorEQUAL,
+  CriteriaOperatorGREATERTHAN,
+  CriteriaOperatorGREATERTHANOREQUAL,
+  CriteriaOperatorIN,
+  CriteriaOperatorLESSTHAN,
+  CriteriaOperatorLESSTHANOREQUAL,
+  CriteriaOperatorMATCH,
+  CriteriaOperatorNOTIN,
+  CriteriaType,
   Currency,
   DeleteBackendWalletResponseObject,
   DeveloperAccountResponseExpandable,
@@ -4700,6 +5280,8 @@ export {
   EntityTypePLAYER,
   EntityTypePOLICY,
   EntityTypePOLICYRULE,
+  EntityTypePOLICYV2,
+  EntityTypePOLICYV2RULE,
   EntityTypePROJECT,
   EntityTypeREADCONTRACT,
   EntityTypeSESSION,
@@ -4711,7 +5293,43 @@ export {
   EntityTypeUSER,
   EntityTypeWALLET,
   ErrorTypeINVALIDREQUESTERROR,
+  EthValueCriterionOperator,
+  EthValueCriterionRequestOperator,
+  EthValueCriterionRequestType,
+  EthValueCriterionSchema,
+  EvaluatePolicyV2ResponseObject,
+  EvmAddressCriterionOperator,
+  EvmAddressCriterionRequestOperator,
+  EvmAddressCriterionRequestType,
+  EvmAddressCriterionSchema,
   EvmClient,
+  EvmCriteriaType,
+  EvmCriteriaTypeETHVALUE,
+  EvmCriteriaTypeEVMADDRESS,
+  EvmCriteriaTypeEVMDATA,
+  EvmCriteriaTypeEVMMESSAGE,
+  EvmCriteriaTypeEVMNETWORK,
+  EvmCriteriaTypeEVMTYPEDDATAFIELD,
+  EvmCriteriaTypeEVMTYPEDDATAVERIFYINGCONTRACT,
+  EvmCriteriaTypeNETUSDCHANGE,
+  EvmDataCriterionRequestOperator,
+  EvmDataCriterionRequestType,
+  EvmDataCriterionSchema,
+  EvmMessageCriterionRequestOperator,
+  EvmMessageCriterionRequestType,
+  EvmMessageCriterionSchema,
+  EvmNetworkCriterionOperator,
+  EvmNetworkCriterionRequestOperator,
+  EvmNetworkCriterionRequestType,
+  EvmNetworkCriterionSchema,
+  EvmTypedDataFieldCriterionOperator,
+  EvmTypedDataFieldCriterionRequestOperator,
+  EvmTypedDataFieldCriterionRequestType,
+  EvmTypedDataFieldCriterionSchema,
+  EvmTypedDataVerifyingContractCriterionOperator,
+  EvmTypedDataVerifyingContractCriterionRequestOperator,
+  EvmTypedDataVerifyingContractCriterionRequestType,
+  EvmTypedDataVerifyingContractCriterionSchema,
   ExportPrivateKeyResponseObject,
   GetAccountsV2AccountType,
   GetAccountsV2ChainType,
@@ -4728,9 +5346,17 @@ export {
   JsonRpcRequestJsonrpc,
   JsonRpcSuccessResponseAnyJsonrpc,
   ListBackendWalletsChainType,
+  ListPoliciesScope,
+  MintAddressCriterionOperator,
+  MintAddressCriterionRequestOperator,
+  MintAddressCriterionRequestType,
+  MintAddressCriterionSchema,
   MissingAPIKeyError,
   MissingPublishableKeyError,
   MissingWalletSecretError,
+  NetUSDChangeCriterionOperator,
+  NetUSDChangeCriterionRequestOperator,
+  NetUSDChangeCriterionRequestType,
   NetworkError,
   NextActionType,
   OAuthProvider,
@@ -4755,25 +5381,77 @@ export {
   PolicyRuleTypeACCOUNT,
   PolicyRuleTypeCONTRACT,
   PolicyRuleTypeRATELIMIT,
+  PolicyV2Action,
+  PolicyV2ListQueriesScope,
+  PolicyV2Scope,
   PregenerateAccountResponseCustody,
   PregenerateUserRequestV2AccountType,
   PregenerateUserRequestV2ChainType,
   PrismaSortOrder,
   PrivateKeyPolicy,
+  ProgramIdCriterionOperator,
+  ProgramIdCriterionRequestOperator,
+  ProgramIdCriterionRequestType,
+  ProgramIdCriterionSchema,
   ProjectStatsRequestTimeFrame,
   RegisterWalletSecretResponseObject,
   ResponseTypeLIST,
   RevokeWalletSecretResponseObject,
   RotateWalletSecretResponseObject,
+  RuleSchema,
+  SendEvmTransactionRuleSchema,
+  SendSolTransactionRuleSchema,
   SessionResponseExpandable,
   ShieldAuthProvider2 as ShieldAuthProvider,
+  SignEvmHashRuleSchema,
+  SignEvmMessageRuleSchema,
+  SignEvmTransactionRuleSchema,
+  SignEvmTypedDataRuleSchema,
   SignResponseObject,
+  SignSolMessageRuleSchema,
+  SignSolTransactionRuleSchema,
   SmsProviderMESSAGEBIRD,
   SmsProviderSMSAPI,
   SmsProviderTWILIO,
   SmsProviderTXTLOCAL,
   SmsProviderVONAGE,
+  SolAddressCriterionOperator,
+  SolAddressCriterionRequestOperator,
+  SolAddressCriterionRequestType,
+  SolAddressCriterionSchema,
+  SolDataCriterionRequestOperator,
+  SolDataCriterionRequestType,
+  SolDataCriterionSchema,
+  SolMessageCriterionRequestOperator,
+  SolMessageCriterionRequestType,
+  SolMessageCriterionSchema,
+  SolNetworkCriterionOperator,
+  SolNetworkCriterionRequestOperator,
+  SolNetworkCriterionRequestType,
+  SolNetworkCriterionSchema,
+  SolValueCriterionOperator,
+  SolValueCriterionRequestOperator,
+  SolValueCriterionRequestType,
+  SolValueCriterionSchema,
   SolanaClient,
+  SolanaCriteriaType,
+  SolanaCriteriaTypeMINTADDRESS,
+  SolanaCriteriaTypePROGRAMID,
+  SolanaCriteriaTypeSOLADDRESS,
+  SolanaCriteriaTypeSOLDATA,
+  SolanaCriteriaTypeSOLMESSAGE,
+  SolanaCriteriaTypeSOLNETWORK,
+  SolanaCriteriaTypeSOLVALUE,
+  SolanaCriteriaTypeSPLADDRESS,
+  SolanaCriteriaTypeSPLVALUE,
+  SplAddressCriterionOperator,
+  SplAddressCriterionRequestOperator,
+  SplAddressCriterionRequestType,
+  SplAddressCriterionSchema,
+  SplValueCriterionOperator,
+  SplValueCriterionRequestOperator,
+  SplValueCriterionRequestType,
+  SplValueCriterionSchema,
   SponsorSchema,
   SponsorSchemaCHARGECUSTOMTOKENS,
   SponsorSchemaFIXEDRATE,
@@ -4795,6 +5473,7 @@ export {
   TransactionIntentResponseExpandable,
   TransactionStatus,
   UnknownError,
+  UpdatePolicyBodySchema,
   UserInputValidationError,
   UserProjectCreateRequestRole,
   UserProjectRole,
@@ -4808,8 +5487,6 @@ export {
   authorize,
   callbackOAuth,
   cancelTransferAccountOwnership,
-  cancelTransferOwnership,
-  completeRecovery,
   configure,
   create,
   createAccount,
@@ -4826,6 +5503,7 @@ export {
   createPlayer,
   createPolicy,
   createPolicyRule,
+  createPolicyV2,
   createPolicyWithdrawal,
   createSession,
   createSubscription,
@@ -4844,16 +5522,17 @@ export {
   deletePlayer,
   deletePolicy,
   deletePolicyRule,
+  deletePolicyV2,
   deleteSubscription,
   deleteTrigger,
   deleteUser,
-  deployAccount,
   deprecatedCallbackOAuth,
   disableAccount,
   disablePolicy,
   enablePolicy,
   encryptForImport,
   estimateTransactionIntentCost,
+  evaluatePolicyV2,
   exportPrivateKey,
   generateRSAKeyPair,
   getAccount,
@@ -4886,6 +5565,7 @@ export {
   getPolicyReportTransactionIntents,
   getPolicyRules,
   getPolicyTotalGasUsage,
+  getPolicyV2,
   getProjectLogs,
   getSession,
   getSignerIdByAddress,
@@ -4915,6 +5595,7 @@ export {
   listForwarderContracts,
   listOAuthConfig,
   listPaymasters,
+  listPolicies,
   listSubscriptionLogs,
   loginEmailPassword,
   loginOIDC,
@@ -4933,20 +5614,16 @@ export {
   requestEmailVerification,
   requestResetPassword,
   requestTransferAccountOwnership,
-  requestTransferOwnership,
   resetPassword,
   revokeSession,
   revokeWalletSecret,
   rotateWalletSecret,
   sign,
-  signPayload,
   signPayloadDeveloperAccount,
   signature,
   signatureSession,
   signupEmailPassword,
-  startRecovery,
   switchChainV2,
-  syncAccount,
   testTrigger,
   thirdParty,
   thirdPartyV2,
@@ -4962,6 +5639,7 @@ export {
   updatePlayer,
   updatePolicy,
   updatePolicyRule,
+  updatePolicyV2,
   verifyAuthToken,
   verifyEmail,
   verifyOAuthToken