@opensea/cli 0.4.2 → 1.0.0

package/dist/index.js

@@ -1,7 +1,7 @@
 // src/client.ts
 var DEFAULT_BASE_URL = "https://api.opensea.io";
 var DEFAULT_TIMEOUT_MS = 3e4;
-var USER_AGENT = `opensea-cli/${"0.4.2"}`;
+var USER_AGENT = `opensea-cli/${"1.0.0"}`;
 var DEFAULT_MAX_RETRIES = 0;
 var DEFAULT_RETRY_BASE_DELAY_MS = 1e3;
 function isRetryableStatus(status, method) {
@@ -144,6 +144,9 @@ var OpenSeaAPIError = class extends Error {
     this.path = path;
     this.name = "OpenSeaAPIError";
   }
+  statusCode;
+  responseBody;
+  path;
 };
 
 // src/health.ts
@@ -555,10 +558,949 @@ function truncateOutput(text, maxLines) {
 ... (${omitted} more line${omitted === 1 ? "" : "s"})`;
 }
 
+// src/wallet/fireblocks.generated.ts
+var CHAIN_TO_FIREBLOCKS_ASSET = {
+  1: "ETH",
+  10: "ETH-OPT",
+  130: "UNICHAIN_ETH",
+  137: "MATIC_POLYGON",
+  360: "SHAPE_ETH",
+  1329: "SEI_EVM",
+  1868: "SONEIUM_ETH",
+  2741: "ABSTRACT_ETH",
+  8453: "BASECHAIN_ETH",
+  33139: "APE_CHAIN",
+  42161: "ETH-AETH",
+  43114: "AVAX",
+  80094: "BERA_CHAIN",
+  81457: "BLAST_ETH",
+  7777777: "ZORA_ETH"
+};
+
+// src/wallet/fireblocks.ts
+var FIREBLOCKS_API_BASE = "https://api.fireblocks.io";
+var FireblocksAdapter = class _FireblocksAdapter {
+  name = "fireblocks";
+  onRequest;
+  onResponse;
+  config;
+  cachedAddress;
+  constructor(config) {
+    this.config = config;
+  }
+  /**
+   * Create a FireblocksAdapter from environment variables.
+   * Throws if any required variable is missing.
+   */
+  static fromEnv() {
+    const apiKey = process.env.FIREBLOCKS_API_KEY;
+    const apiSecret = process.env.FIREBLOCKS_API_SECRET;
+    const vaultId = process.env.FIREBLOCKS_VAULT_ID;
+    if (!apiKey) {
+      throw new Error("FIREBLOCKS_API_KEY environment variable is required");
+    }
+    if (!apiSecret) {
+      throw new Error("FIREBLOCKS_API_SECRET environment variable is required");
+    }
+    if (!vaultId) {
+      throw new Error("FIREBLOCKS_VAULT_ID environment variable is required");
+    }
+    return new _FireblocksAdapter({
+      apiKey,
+      apiSecret,
+      vaultId,
+      assetId: process.env.FIREBLOCKS_ASSET_ID,
+      baseUrl: process.env.FIREBLOCKS_API_BASE_URL
+    });
+  }
+  get baseUrl() {
+    return this.config.baseUrl ?? FIREBLOCKS_API_BASE;
+  }
+  /**
+   * Create a JWT for Fireblocks API authentication.
+   *
+   * Fireblocks uses JWT tokens signed with the API secret (RSA private key).
+   * The JWT contains the API key as `sub`, a URI claim for the endpoint path,
+   * and a body hash for POST requests.
+   *
+   * @see https://developers.fireblocks.com/reference/signing-a-request-jwt-structure
+   */
+  async createJwt(path, bodyHash) {
+    const now = Math.floor(Date.now() / 1e3);
+    const header = { alg: "RS256", typ: "JWT" };
+    const payload = {
+      uri: path,
+      nonce: crypto.randomUUID(),
+      iat: now,
+      exp: now + 30,
+      sub: this.config.apiKey,
+      bodyHash
+    };
+    const b64url = (obj) => Buffer.from(JSON.stringify(obj)).toString("base64url");
+    const unsigned = `${b64url(header)}.${b64url(payload)}`;
+    const key = await crypto.subtle.importKey(
+      "pkcs8",
+      this.pemToBuffer(this.config.apiSecret),
+      { name: "RSASSA-PKCS1-v1_5", hash: "SHA-256" },
+      false,
+      ["sign"]
+    );
+    const sig = await crypto.subtle.sign(
+      "RSASSA-PKCS1-v1_5",
+      key,
+      new TextEncoder().encode(unsigned)
+    );
+    return `${unsigned}.${Buffer.from(sig).toString("base64url")}`;
+  }
+  pemToBuffer(pem) {
+    const lines = pem.replace(/-----BEGIN .*-----/, "").replace(/-----END .*-----/, "").replace(/\s/g, "");
+    const buf = Buffer.from(lines, "base64");
+    return buf.buffer.slice(buf.byteOffset, buf.byteOffset + buf.byteLength);
+  }
+  async hashBody(body) {
+    const hash = await crypto.subtle.digest(
+      "SHA-256",
+      new TextEncoder().encode(body)
+    );
+    return Buffer.from(hash).toString("hex");
+  }
+  resolveAssetId(chainId) {
+    if (this.config.assetId) return this.config.assetId;
+    const asset = CHAIN_TO_FIREBLOCKS_ASSET[chainId];
+    if (!asset) {
+      throw new Error(
+        `No Fireblocks asset ID mapping for chain ${chainId}. Set FIREBLOCKS_ASSET_ID explicitly or use a supported chain: ${Object.keys(CHAIN_TO_FIREBLOCKS_ASSET).join(", ")}`
+      );
+    }
+    return asset;
+  }
+  async getAddress() {
+    if (this.cachedAddress) return this.cachedAddress;
+    const assetId = this.config.assetId ?? "ETH";
+    const path = `/v1/vault/accounts/${this.config.vaultId}/${assetId}/addresses`;
+    const bodyHash = await this.hashBody("");
+    const jwt = await this.createJwt(path, bodyHash);
+    const response = await fetch(`${this.baseUrl}${path}`, {
+      headers: {
+        "X-API-Key": this.config.apiKey,
+        Authorization: `Bearer ${jwt}`
+      }
+    });
+    if (!response.ok) {
+      const body = await response.text();
+      throw new Error(
+        `Fireblocks getAddress failed (${response.status}): ${body}`
+      );
+    }
+    const data = await response.json();
+    if (!data[0]?.address) {
+      throw new Error("Fireblocks returned no addresses for vault");
+    }
+    this.cachedAddress = data[0].address;
+    return data[0].address;
+  }
+  async sendTransaction(tx) {
+    this.onRequest?.("sendTransaction", tx);
+    const startTime = Date.now();
+    const assetId = this.resolveAssetId(tx.chainId);
+    const path = "/v1/transactions";
+    const requestBody = {
+      assetId,
+      operation: "CONTRACT_CALL",
+      source: {
+        type: "VAULT_ACCOUNT",
+        id: this.config.vaultId
+      },
+      destination: {
+        type: "ONE_TIME_ADDRESS",
+        oneTimeAddress: { address: tx.to }
+      },
+      amount: tx.value === "0" ? "0" : tx.value,
+      extraParameters: {
+        contractCallData: tx.data
+      }
+    };
+    const bodyStr = JSON.stringify(requestBody);
+    const bodyHash = await this.hashBody(bodyStr);
+    const jwt = await this.createJwt(path, bodyHash);
+    const response = await fetch(`${this.baseUrl}${path}`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        "X-API-Key": this.config.apiKey,
+        Authorization: `Bearer ${jwt}`
+      },
+      body: bodyStr
+    });
+    if (!response.ok) {
+      const body = await response.text();
+      throw new Error(
+        `Fireblocks sendTransaction failed (${response.status}): ${body}`
+      );
+    }
+    const data = await response.json();
+    if (data.txHash) {
+      const result2 = { hash: data.txHash };
+      this.onResponse?.("sendTransaction", result2, Date.now() - startTime);
+      return result2;
+    }
+    const result = await this.waitForTransaction(data.id);
+    this.onResponse?.("sendTransaction", result, Date.now() - startTime);
+    return result;
+  }
+  /**
+   * Poll a Fireblocks transaction until it reaches a terminal status.
+   * Fireblocks MPC signing + broadcast is asynchronous, so the initial
+   * POST returns a transaction ID that must be polled for the final hash.
+   */
+  async waitForTransaction(txId) {
+    const maxAttempts = process.env.FIREBLOCKS_MAX_POLL_ATTEMPTS ? Number.parseInt(process.env.FIREBLOCKS_MAX_POLL_ATTEMPTS, 10) : 60;
+    const pollIntervalMs = 2e3;
+    for (let i = 0; i < maxAttempts; i++) {
+      const path = `/v1/transactions/${txId}`;
+      const bodyHash = await this.hashBody("");
+      const jwt = await this.createJwt(path, bodyHash);
+      const response = await fetch(`${this.baseUrl}${path}`, {
+        headers: {
+          "X-API-Key": this.config.apiKey,
+          Authorization: `Bearer ${jwt}`
+        }
+      });
+      if (!response.ok) {
+        const body = await response.text();
+        throw new Error(`Fireblocks poll failed (${response.status}): ${body}`);
+      }
+      const data = await response.json();
+      if (data.status === "COMPLETED" && data.txHash) {
+        return { hash: data.txHash };
+      }
+      if (data.status === "FAILED" || data.status === "REJECTED" || data.status === "CANCELLED" || data.status === "BLOCKED") {
+        throw new Error(
+          `Fireblocks transaction ${txId} ended with status: ${data.status}`
+        );
+      }
+      await new Promise((resolve) => setTimeout(resolve, pollIntervalMs));
+    }
+    throw new Error(
+      `Fireblocks transaction ${txId} did not complete within ${maxAttempts * pollIntervalMs / 1e3}s`
+    );
+  }
+};
+
+// src/wallet/private-key.ts
+var HOSTED_RPC_PROVIDERS = [
+  "infura.io",
+  "alchemy.com",
+  "quicknode.com",
+  "ankr.com",
+  "cloudflare-eth.com",
+  "pokt.network",
+  "blastapi.io",
+  "chainnodes.org",
+  "drpc.org"
+];
+var PrivateKeyAdapter = class _PrivateKeyAdapter {
+  name = "private-key";
+  onRequest;
+  onResponse;
+  config;
+  hasWarned = false;
+  constructor(config) {
+    this.config = config;
+  }
+  /**
+   * Create a PrivateKeyAdapter from environment variables.
+   * Validates the private key format and warns if the RPC URL looks
+   * like a hosted provider (which won't support eth_sendTransaction).
+   */
+  static fromEnv() {
+    const privateKey = process.env.PRIVATE_KEY;
+    const rpcUrl = process.env.RPC_URL;
+    const walletAddress = process.env.WALLET_ADDRESS;
+    if (!privateKey) {
+      throw new Error("PRIVATE_KEY environment variable is required");
+    }
+    if (!rpcUrl) {
+      throw new Error(
+        "RPC_URL environment variable is required when using PRIVATE_KEY"
+      );
+    }
+    if (!walletAddress) {
+      throw new Error(
+        "WALLET_ADDRESS environment variable is required when using PRIVATE_KEY"
+      );
+    }
+    const cleanKey = privateKey.startsWith("0x") ? privateKey.slice(2) : privateKey;
+    if (!/^[0-9a-fA-F]{64}$/.test(cleanKey)) {
+      throw new Error(
+        "PRIVATE_KEY must be a 32-byte hex string (64 hex characters, with optional 0x prefix)"
+      );
+    }
+    try {
+      const host = new URL(rpcUrl).hostname;
+      const isHosted = HOSTED_RPC_PROVIDERS.some(
+        (provider) => host.includes(provider)
+      );
+      if (isHosted) {
+        console.warn(
+          `WARNING: RPC_URL (${host}) looks like a hosted provider. The private-key adapter uses eth_sendTransaction which only works with local dev nodes (Hardhat, Anvil, Ganache). Hosted providers will reject this call.`
+        );
+      }
+    } catch {
+    }
+    return new _PrivateKeyAdapter({ privateKey, rpcUrl, walletAddress });
+  }
+  async getAddress() {
+    return this.config.walletAddress;
+  }
+  async sendTransaction(tx) {
+    if (!this.hasWarned) {
+      this.hasWarned = true;
+      console.warn(
+        "WARNING: Using raw PRIVATE_KEY adapter. This is not recommended for production. Use --wallet-provider privy|turnkey|fireblocks for managed wallet security."
+      );
+    }
+    this.onRequest?.("sendTransaction", tx);
+    const startTime = Date.now();
+    const response = await fetch(this.config.rpcUrl, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({
+        jsonrpc: "2.0",
+        id: 1,
+        method: "eth_sendTransaction",
+        params: [
+          {
+            from: this.config.walletAddress,
+            to: tx.to,
+            data: tx.data,
+            value: tx.value === "0" ? "0x0" : `0x${BigInt(tx.value).toString(16)}`,
+            chainId: `0x${tx.chainId.toString(16)}`
+          }
+        ]
+      })
+    });
+    if (!response.ok) {
+      const body = await response.text();
+      throw new Error(
+        `Private key sendTransaction failed (${response.status}): ${body}`
+      );
+    }
+    const data = await response.json();
+    if (data.error) {
+      throw new Error(
+        `Private key sendTransaction RPC error: ${data.error.message}`
+      );
+    }
+    if (!data.result) {
+      throw new Error("Private key sendTransaction returned no tx hash");
+    }
+    const result = { hash: data.result };
+    this.onResponse?.("sendTransaction", result, Date.now() - startTime);
+    return result;
+  }
+};
+
+// src/wallet/privy.ts
+var PRIVY_API_BASE = "https://api.privy.io";
+var PrivyAdapter = class _PrivyAdapter {
+  name = "privy";
+  onRequest;
+  onResponse;
+  config;
+  cachedAddress;
+  constructor(config) {
+    this.config = config;
+  }
+  /**
+   * Create a PrivyAdapter from environment variables.
+   * Throws if any required variable is missing.
+   */
+  static fromEnv() {
+    const appId = process.env.PRIVY_APP_ID;
+    const appSecret = process.env.PRIVY_APP_SECRET;
+    const walletId = process.env.PRIVY_WALLET_ID;
+    if (!appId) {
+      throw new Error("PRIVY_APP_ID environment variable is required");
+    }
+    if (!appSecret) {
+      throw new Error("PRIVY_APP_SECRET environment variable is required");
+    }
+    if (!walletId) {
+      throw new Error("PRIVY_WALLET_ID environment variable is required");
+    }
+    return new _PrivyAdapter({
+      appId,
+      appSecret,
+      walletId,
+      baseUrl: process.env.PRIVY_API_BASE_URL
+    });
+  }
+  get baseUrl() {
+    return this.config.baseUrl ?? PRIVY_API_BASE;
+  }
+  get authHeaders() {
+    const credentials = Buffer.from(
+      `${this.config.appId}:${this.config.appSecret}`
+    ).toString("base64");
+    return {
+      Authorization: `Basic ${credentials}`,
+      "privy-app-id": this.config.appId,
+      "Content-Type": "application/json"
+    };
+  }
+  async getAddress() {
+    if (this.cachedAddress) return this.cachedAddress;
+    const response = await fetch(
+      `${this.baseUrl}/v1/wallets/${this.config.walletId}`,
+      { headers: this.authHeaders }
+    );
+    if (!response.ok) {
+      const body = await response.text();
+      throw new Error(`Privy getAddress failed (${response.status}): ${body}`);
+    }
+    const data = await response.json();
+    this.cachedAddress = data.address;
+    return data.address;
+  }
+  async sendTransaction(tx) {
+    this.onRequest?.("sendTransaction", tx);
+    const startTime = Date.now();
+    const caip2 = `eip155:${tx.chainId}`;
+    const response = await fetch(
+      `${this.baseUrl}/v1/wallets/${this.config.walletId}/rpc`,
+      {
+        method: "POST",
+        headers: this.authHeaders,
+        body: JSON.stringify({
+          method: "eth_sendTransaction",
+          caip2,
+          params: {
+            transaction: {
+              to: tx.to,
+              data: tx.data,
+              value: tx.value
+            }
+          }
+        })
+      }
+    );
+    if (!response.ok) {
+      const body = await response.text();
+      throw new Error(
+        `Privy sendTransaction failed (${response.status}): ${body}`
+      );
+    }
+    const data = await response.json();
+    const result = { hash: data.data.hash };
+    this.onResponse?.("sendTransaction", result, Date.now() - startTime);
+    return result;
+  }
+};
+
+// src/wallet/turnkey.ts
+var TURNKEY_API_BASE = "https://api.turnkey.com";
+var TurnkeyAdapter = class _TurnkeyAdapter {
+  name = "turnkey";
+  onRequest;
+  onResponse;
+  config;
+  constructor(config) {
+    this.config = config;
+  }
+  /**
+   * Create a TurnkeyAdapter from environment variables.
+   * Throws if any required variable is missing.
+   */
+  static fromEnv() {
+    const apiPublicKey = process.env.TURNKEY_API_PUBLIC_KEY;
+    const apiPrivateKey = process.env.TURNKEY_API_PRIVATE_KEY;
+    const organizationId = process.env.TURNKEY_ORGANIZATION_ID;
+    const walletAddress = process.env.TURNKEY_WALLET_ADDRESS;
+    if (!apiPublicKey) {
+      throw new Error("TURNKEY_API_PUBLIC_KEY environment variable is required");
+    }
+    if (!apiPrivateKey) {
+      throw new Error(
+        "TURNKEY_API_PRIVATE_KEY environment variable is required"
+      );
+    }
+    if (!organizationId) {
+      throw new Error(
+        "TURNKEY_ORGANIZATION_ID environment variable is required"
+      );
+    }
+    if (!walletAddress) {
+      throw new Error("TURNKEY_WALLET_ADDRESS environment variable is required");
+    }
+    const rpcUrl = process.env.TURNKEY_RPC_URL;
+    if (!rpcUrl) {
+      throw new Error(
+        "TURNKEY_RPC_URL environment variable is required. It is used for gas estimation and transaction broadcasting."
+      );
+    }
+    return new _TurnkeyAdapter({
+      apiPublicKey,
+      apiPrivateKey,
+      organizationId,
+      walletAddress,
+      rpcUrl,
+      privateKeyId: process.env.TURNKEY_PRIVATE_KEY_ID,
+      baseUrl: process.env.TURNKEY_API_BASE_URL
+    });
+  }
+  get baseUrl() {
+    return this.config.baseUrl ?? TURNKEY_API_BASE;
+  }
+  /**
+   * Sign a Turnkey API request using the API key pair (P-256 ECDSA).
+   *
+   * Turnkey uses a stamp-based authentication scheme: the request body
+   * is hashed with SHA-256 and signed with the P-256 private key. The
+   * stamp JSON (publicKey + scheme + signature) is then base64url-encoded
+   * and sent in the X-Stamp header.
+   *
+   * @see https://docs.turnkey.com/developer-tools/api-overview/stamps
+   */
+  async stamp(body) {
+    const encoder = new TextEncoder();
+    const bodyHash = await crypto.subtle.digest("SHA-256", encoder.encode(body));
+    const keyData = hexToBytes(this.config.apiPrivateKey);
+    const cryptoKey = await crypto.subtle.importKey(
+      "pkcs8",
+      derEncodeP256PrivateKey(keyData),
+      { name: "ECDSA", namedCurve: "P-256" },
+      false,
+      ["sign"]
+    );
+    const p1363Sig = await crypto.subtle.sign(
+      { name: "ECDSA", hash: "SHA-256" },
+      cryptoKey,
+      bodyHash
+    );
+    const derSig = p1363ToDer(new Uint8Array(p1363Sig));
+    const signatureHex = bytesToHex(derSig);
+    const stampJson = JSON.stringify({
+      publicKey: this.config.apiPublicKey,
+      scheme: "SIGNATURE_SCHEME_TK_API_P256",
+      signature: signatureHex
+    });
+    return Buffer.from(stampJson).toString("base64url");
+  }
+  async signedRequest(path, body) {
+    const bodyStr = JSON.stringify(body);
+    const stampValue = await this.stamp(bodyStr);
+    return fetch(`${this.baseUrl}${path}`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        "X-Stamp": stampValue
+      },
+      body: bodyStr
+    });
+  }
+  async getAddress() {
+    return this.config.walletAddress;
+  }
+  async sendTransaction(tx) {
+    this.onRequest?.("sendTransaction", tx);
+    const startTime = Date.now();
+    const { rpcUrl } = this.config;
+    const gasParams = await this.estimateGasParams(rpcUrl, tx);
+    const rlpHex = rlpEncodeEip1559Tx({
+      chainId: tx.chainId,
+      nonce: gasParams.nonce,
+      maxPriorityFeePerGas: gasParams.maxPriorityFeePerGas,
+      maxFeePerGas: gasParams.maxFeePerGas,
+      gasLimit: gasParams.gasLimit,
+      to: tx.to,
+      data: tx.data,
+      value: tx.value
+    });
+    const signWith = this.config.privateKeyId ?? this.config.walletAddress;
+    const response = await this.signedRequest(
+      "/public/v1/submit/sign_transaction",
+      {
+        type: "ACTIVITY_TYPE_SIGN_TRANSACTION_V2",
+        organizationId: this.config.organizationId,
+        timestampMs: Date.now().toString(),
+        parameters: {
+          signWith,
+          type: "TRANSACTION_TYPE_ETHEREUM",
+          unsignedTransaction: rlpHex
+        }
+      }
+    );
+    if (!response.ok) {
+      const body = await response.text();
+      throw new Error(
+        `Turnkey sendTransaction failed (${response.status}): ${body}`
+      );
+    }
+    const data = await response.json();
+    const signedTx = data.activity.result?.signTransactionResult?.signedTransaction;
+    if (!signedTx) {
+      throw new Error(
+        `Turnkey sign transaction did not return a signed payload (activity status: ${data.activity.status})`
+      );
+    }
+    const rpcResponse = await fetch(rpcUrl, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({
+        jsonrpc: "2.0",
+        id: 1,
+        method: "eth_sendRawTransaction",
+        params: [signedTx]
+      })
+    });
+    if (!rpcResponse.ok) {
+      const rpcBody = await rpcResponse.text();
+      throw new Error(
+        `Turnkey broadcast failed (${rpcResponse.status}): ${rpcBody}`
+      );
+    }
+    const rpcData = await rpcResponse.json();
+    if (rpcData.error) {
+      throw new Error(`Turnkey broadcast RPC error: ${rpcData.error.message}`);
+    }
+    if (!rpcData.result) {
+      throw new Error("Turnkey broadcast returned no tx hash");
+    }
+    const result = { hash: rpcData.result };
+    this.onResponse?.("sendTransaction", result, Date.now() - startTime);
+    return result;
+  }
+  /**
+   * Populate gas parameters via JSON-RPC calls to the target chain.
+   * Mirrors what ethers.js provider.populateTransaction() does internally.
+   *
+   * Makes three parallel RPC calls:
+   *   - eth_getTransactionCount (nonce)
+   *   - eth_estimateGas (gasLimit)
+   *   - eth_maxPriorityFeePerGas + eth_getBlockByNumber (fee data)
+   */
+  async estimateGasParams(rpcUrl, tx) {
+    const from = this.config.walletAddress;
+    const txValue = tx.value === "0" ? "0x0" : `0x${BigInt(tx.value).toString(16)}`;
+    const [nonceResult, gasEstimateResult, feeDataResult] = await Promise.all([
+      this.rpcCall(rpcUrl, "eth_getTransactionCount", [from, "pending"]),
+      this.rpcCall(rpcUrl, "eth_estimateGas", [
+        {
+          from,
+          to: tx.to,
+          data: tx.data || "0x",
+          value: txValue
+        }
+      ]),
+      this.rpcCall(rpcUrl, "eth_feeHistory", [1, "latest", [50]])
+    ]);
+    const nonce = BigInt(nonceResult);
+    const rawGasLimit = BigInt(gasEstimateResult);
+    const gasLimit = rawGasLimit * 120n / 100n;
+    const feeHistory = feeDataResult;
+    const latestBaseFee = BigInt(
+      feeHistory.baseFeePerGas[1] ?? feeHistory.baseFeePerGas[0]
+    );
+    const maxPriorityFeePerGas = feeHistory.reward?.[0]?.[0] ? BigInt(feeHistory.reward[0][0]) : 1500000000n;
+    const maxFeePerGas = latestBaseFee * 2n + maxPriorityFeePerGas;
+    return { nonce, gasLimit, maxFeePerGas, maxPriorityFeePerGas };
+  }
+  /** Make a single JSON-RPC call */
+  async rpcCall(rpcUrl, method, params) {
+    const response = await fetch(rpcUrl, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({
+        jsonrpc: "2.0",
+        id: 1,
+        method,
+        params
+      })
+    });
+    if (!response.ok) {
+      const body = await response.text();
+      throw new Error(
+        `Turnkey RPC ${method} failed (${response.status}): ${body}`
+      );
+    }
+    const data = await response.json();
+    if (data.error) {
+      throw new Error(`Turnkey RPC ${method} error: ${data.error.message}`);
+    }
+    return data.result;
+  }
+};
+function rlpEncodeEip1559Tx(tx) {
+  const chainIdBytes = bigIntToBytes(BigInt(tx.chainId));
+  const nonce = bigIntToBytes(tx.nonce);
+  const maxPriorityFeePerGas = bigIntToBytes(tx.maxPriorityFeePerGas);
+  const maxFeePerGas = bigIntToBytes(tx.maxFeePerGas);
+  const gasLimit = bigIntToBytes(tx.gasLimit);
+  const toBytes = hexToBytes(tx.to);
+  const valueBytes = tx.value === "0" ? new Uint8Array(0) : bigIntToBytes(BigInt(tx.value));
+  const dataBytes = tx.data ? hexToBytes(tx.data) : new Uint8Array(0);
+  const fields = [
+    rlpEncodeBytes(chainIdBytes),
+    rlpEncodeBytes(nonce),
+    rlpEncodeBytes(maxPriorityFeePerGas),
+    rlpEncodeBytes(maxFeePerGas),
+    rlpEncodeBytes(gasLimit),
+    rlpEncodeBytes(toBytes),
+    rlpEncodeBytes(valueBytes),
+    rlpEncodeBytes(dataBytes),
+    rlpEncodeList([])
+    // empty access list
+  ];
+  const rlpList = rlpEncodeList(fields);
+  const result = new Uint8Array(1 + rlpList.length);
+  result[0] = 2;
+  result.set(rlpList, 1);
+  return bytesToHex(result);
+}
+function rlpEncodeBytes(bytes) {
+  if (bytes.length === 1 && bytes[0] < 128) {
+    return bytes;
+  }
+  if (bytes.length === 0) {
+    return new Uint8Array([128]);
+  }
+  if (bytes.length <= 55) {
+    const result2 = new Uint8Array(1 + bytes.length);
+    result2[0] = 128 + bytes.length;
+    result2.set(bytes, 1);
+    return result2;
+  }
+  const lenBytes = bigIntToBytes(BigInt(bytes.length));
+  const result = new Uint8Array(1 + lenBytes.length + bytes.length);
+  result[0] = 183 + lenBytes.length;
+  result.set(lenBytes, 1);
+  result.set(bytes, 1 + lenBytes.length);
+  return result;
+}
+function rlpEncodeList(items) {
+  let totalLen = 0;
+  for (const item of items) totalLen += item.length;
+  if (totalLen <= 55) {
+    const result2 = new Uint8Array(1 + totalLen);
+    result2[0] = 192 + totalLen;
+    let offset2 = 1;
+    for (const item of items) {
+      result2.set(item, offset2);
+      offset2 += item.length;
+    }
+    return result2;
+  }
+  const lenBytes = bigIntToBytes(BigInt(totalLen));
+  const result = new Uint8Array(1 + lenBytes.length + totalLen);
+  result[0] = 247 + lenBytes.length;
+  result.set(lenBytes, 1);
+  let offset = 1 + lenBytes.length;
+  for (const item of items) {
+    result.set(item, offset);
+    offset += item.length;
+  }
+  return result;
+}
+function bigIntToBytes(value) {
+  if (value === 0n) return new Uint8Array(0);
+  const hex = value.toString(16);
+  const padded = hex.length % 2 === 0 ? hex : `0${hex}`;
+  return hexToBytes(padded);
+}
+function hexToBytes(hex) {
+  const clean = hex.startsWith("0x") ? hex.slice(2) : hex;
+  const bytes = new Uint8Array(clean.length / 2);
+  for (let i = 0; i < clean.length; i += 2) {
+    bytes[i / 2] = Number.parseInt(clean.slice(i, i + 2), 16);
+  }
+  return bytes;
+}
+function bytesToHex(bytes) {
+  return Array.from(bytes).map((b) => b.toString(16).padStart(2, "0")).join("");
+}
+function p1363ToDer(p1363) {
+  const r = p1363.subarray(0, 32);
+  const s = p1363.subarray(32, 64);
+  const rDer = integerToDer(r);
+  const sDer = integerToDer(s);
+  const seqLen = rDer.length + sDer.length;
+  const result = new Uint8Array(2 + seqLen);
+  result[0] = 48;
+  result[1] = seqLen;
+  result.set(rDer, 2);
+  result.set(sDer, 2 + rDer.length);
+  return result;
+}
+function integerToDer(bytes) {
+  let start = 0;
+  while (start < bytes.length - 1 && bytes[start] === 0) start++;
+  const stripped = bytes.subarray(start);
+  const needsPad = stripped[0] >= 128;
+  const len = stripped.length + (needsPad ? 1 : 0);
+  const result = new Uint8Array(2 + len);
+  result[0] = 2;
+  result[1] = len;
+  if (needsPad) {
+    result[2] = 0;
+    result.set(stripped, 3);
+  } else {
+    result.set(stripped, 2);
+  }
+  return result;
+}
+function derEncodeP256PrivateKey(rawKey) {
+  const header = new Uint8Array([
+    48,
+    65,
+    // SEQUENCE (65 bytes)
+    2,
+    1,
+    0,
+    // INTEGER 0 (version)
+    48,
+    19,
+    // SEQUENCE (19 bytes) - AlgorithmIdentifier
+    6,
+    7,
+    // OID (7 bytes) - id-ecPublicKey
+    42,
+    134,
+    72,
+    206,
+    61,
+    2,
+    1,
+    6,
+    8,
+    // OID (8 bytes) - secp256r1
+    42,
+    134,
+    72,
+    206,
+    61,
+    3,
+    1,
+    7,
+    4,
+    39,
+    // OCTET STRING (39 bytes)
+    48,
+    37,
+    // SEQUENCE (37 bytes)
+    2,
+    1,
+    1,
+    // INTEGER 1 (version)
+    4,
+    32
+    // OCTET STRING (32 bytes) - private key
+  ]);
+  const result = new Uint8Array(header.length + rawKey.length);
+  result.set(header);
+  result.set(rawKey, header.length);
+  return result.buffer;
+}
+
+// src/wallet/chains.generated.ts
+var CHAIN_IDS = {
+  ethereum: 1,
+  mainnet: 1,
+  optimism: 10,
+  unichain: 130,
+  polygon: 137,
+  matic: 137,
+  monad: 143,
+  shape: 360,
+  flow: 747,
+  hyperevm: 999,
+  sei: 1329,
+  soneium: 1868,
+  ronin: 2020,
+  abstract: 2741,
+  megaeth: 4326,
+  somnia: 5031,
+  b3: 8333,
+  base: 8453,
+  ape_chain: 33139,
+  apechain: 33139,
+  arbitrum: 42161,
+  avalanche: 43114,
+  gunzilla: 43419,
+  ink: 57073,
+  animechain: 69e3,
+  bera_chain: 80094,
+  berachain: 80094,
+  blast: 81457,
+  zora: 7777777
+};
+function resolveChainId(chain) {
+  if (typeof chain === "number") return chain;
+  const asNum = Number(chain);
+  if (!Number.isNaN(asNum) && Number.isInteger(asNum)) return asNum;
+  const id = CHAIN_IDS[chain];
+  if (id === void 0) {
+    throw new Error(
+      `Unknown chain "${chain}". Pass a numeric chain ID or use a known name: ${Object.keys(CHAIN_IDS).join(", ")}`
+    );
+  }
+  return id;
+}
+
+// src/wallet/index.ts
+var WALLET_PROVIDERS = [
+  "privy",
+  "turnkey",
+  "fireblocks",
+  "private-key"
+];
+function createWalletFromEnv(provider) {
+  if (provider) {
+    return createAdapter(provider);
+  }
+  const hasTurnkey = !!process.env.TURNKEY_API_PUBLIC_KEY && !!process.env.TURNKEY_ORGANIZATION_ID;
+  const hasFireblocks = !!process.env.FIREBLOCKS_API_KEY && !!process.env.FIREBLOCKS_VAULT_ID;
+  const hasPrivateKey = !!process.env.PRIVATE_KEY && !!process.env.RPC_URL;
+  const hasPrivy = !!process.env.PRIVY_APP_ID && !!process.env.PRIVY_APP_SECRET;
+  const detected = [
+    hasTurnkey && "turnkey",
+    hasFireblocks && "fireblocks",
+    hasPrivateKey && "private-key",
+    hasPrivy && "privy"
+  ].filter(Boolean);
+  if (detected.length > 1) {
+    console.warn(
+      `WARNING: Multiple wallet providers detected: ${detected.join(", ")}. Using ${detected[0]}. Set --wallet-provider explicitly to avoid ambiguity.`
+    );
+  }
+  if (hasTurnkey) return TurnkeyAdapter.fromEnv();
+  if (hasFireblocks) return FireblocksAdapter.fromEnv();
+  if (hasPrivateKey) return PrivateKeyAdapter.fromEnv();
+  return PrivyAdapter.fromEnv();
+}
+function createAdapter(provider) {
+  switch (provider) {
+    case "privy":
+      return PrivyAdapter.fromEnv();
+    case "turnkey":
+      return TurnkeyAdapter.fromEnv();
+    case "fireblocks":
+      return FireblocksAdapter.fromEnv();
+    case "private-key":
+      return PrivateKeyAdapter.fromEnv();
+    default:
+      throw new Error(
+        `Unknown wallet provider "${provider}". Valid providers: ${WALLET_PROVIDERS.join(", ")}`
+      );
+  }
+}
+
 // src/sdk.ts
 var OpenSeaCLI = class {
   client;
+  chains;
   collections;
+  drops;
   nfts;
   listings;
   offers;
@@ -570,7 +1512,9 @@ var OpenSeaCLI = class {
   health;
   constructor(config) {
     this.client = new OpenSeaClient(config);
+    this.chains = new ChainsAPI(this.client);
     this.collections = new CollectionsAPI(this.client);
+    this.drops = new DropsAPI(this.client);
     this.nfts = new NFTsAPI(this.client);
     this.listings = new ListingsAPI(this.client);
     this.offers = new OffersAPI(this.client);
@@ -582,10 +1526,20 @@ var OpenSeaCLI = class {
     this.health = new HealthAPI(this.client);
   }
 };
+var ChainsAPI = class {
+  constructor(client) {
+    this.client = client;
+  }
+  client;
+  async list() {
+    return this.client.get("/api/v2/chains");
+  }
+};
 var CollectionsAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async get(slug) {
     return this.client.get(`/api/v2/collections/${slug}`);
   }
@@ -605,11 +1559,53 @@ var CollectionsAPI = class {
   async traits(slug) {
     return this.client.get(`/api/v2/traits/${slug}`);
   }
+  async trending(options) {
+    return this.client.get("/api/v2/collections/trending", {
+      timeframe: options?.timeframe,
+      chains: options?.chains?.join(","),
+      category: options?.category,
+      limit: options?.limit,
+      cursor: options?.next
+    });
+  }
+  async top(options) {
+    return this.client.get("/api/v2/collections/top", {
+      sort_by: options?.sortBy,
+      chains: options?.chains?.join(","),
+      category: options?.category,
+      limit: options?.limit,
+      cursor: options?.next
+    });
+  }
+};
+var DropsAPI = class {
+  constructor(client) {
+    this.client = client;
+  }
+  client;
+  async list(options) {
+    return this.client.get("/api/v2/drops", {
+      type: options?.type,
+      chains: options?.chains?.join(","),
+      limit: options?.limit,
+      cursor: options?.next
+    });
+  }
+  async get(slug) {
+    return this.client.get(`/api/v2/drops/${slug}`);
+  }
+  async mint(slug, options) {
+    return this.client.post(`/api/v2/drops/${slug}/mint`, {
+      minter: options.minter,
+      quantity: options.quantity ?? 1
+    });
+  }
 };
 var NFTsAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async get(chain, address, identifier) {
     return this.client.get(
       `/api/v2/chain/${chain}/contract/${address}/nfts/${identifier}`
@@ -641,11 +1637,23 @@ var NFTsAPI = class {
   async getContract(chain, address) {
     return this.client.get(`/api/v2/chain/${chain}/contract/${address}`);
   }
+  async validateMetadata(chain, address, identifier, options) {
+    const params = {};
+    if (options?.ignoreCachedItemUrls) {
+      params.ignoreCachedItemUrls = true;
+    }
+    return this.client.post(
+      `/api/v2/chain/${chain}/contract/${address}/nfts/${identifier}/validate-metadata`,
+      void 0,
+      params
+    );
+  }
 };
 var ListingsAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async all(collectionSlug, options) {
     return this.client.get(
       `/api/v2/listings/collection/${collectionSlug}/all`,
@@ -668,6 +1676,7 @@ var OffersAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async all(collectionSlug, options) {
     return this.client.get(`/api/v2/offers/collection/${collectionSlug}/all`, {
       limit: options?.limit,
@@ -701,6 +1710,7 @@ var EventsAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async list(options) {
     return this.client.get("/api/v2/events", {
       event_type: options?.eventType,
@@ -741,14 +1751,29 @@ var AccountsAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async get(address) {
     return this.client.get(`/api/v2/accounts/${address}`);
   }
+  async tokens(address, options) {
+    return this.client.get(`/api/v2/account/${address}/tokens`, {
+      chains: options?.chains?.join(","),
+      limit: options?.limit,
+      sort_by: options?.sortBy,
+      sort_direction: options?.sortDirection,
+      disable_spam_filtering: options?.disableSpamFiltering,
+      cursor: options?.next
+    });
+  }
+  async resolve(identifier) {
+    return this.client.get(`/api/v2/accounts/resolve/${identifier}`);
+  }
 };
 var TokensAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async trending(options) {
     return this.client.get("/api/v2/tokens/trending", {
       limit: options?.limit,
@@ -771,6 +1796,7 @@ var SearchAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async query(query, options) {
     return this.client.get("/api/v2/search", {
       query,
@@ -784,6 +1810,7 @@ var SwapsAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async quote(options) {
     return this.client.get("/api/v2/swap/quote", {
       from_chain: options.fromChain,
@@ -796,21 +1823,74 @@ var SwapsAPI = class {
       recipient: options.recipient
     });
   }
+  /**
+   * Get a swap quote and execute all transactions using the provided wallet adapter.
+   * Returns an array of transaction results (one per transaction in the quote).
+   *
+   * @param options - Swap parameters (chains, addresses, quantity, etc.)
+   * @param wallet - Wallet adapter to sign and send transactions
+   * @param callbacks - Optional callbacks for progress reporting and skipped txs
+   */
+  async execute(options, wallet, callbacks) {
+    const address = options.address ?? await wallet.getAddress();
+    const quote = await this.quote({ ...options, address });
+    callbacks?.onQuote?.(quote);
+    if (!quote.transactions || quote.transactions.length === 0) {
+      throw new Error(
+        "Swap quote returned zero transactions \u2014 the swap may not be available for these tokens/chains."
+      );
+    }
+    const results = [];
+    for (const tx of quote.transactions) {
+      if (!tx.to) {
+        callbacks?.onSkipped?.({
+          chain: tx.chain,
+          reason: "missing 'to' address"
+        });
+        continue;
+      }
+      const chainId = resolveChainId(tx.chain);
+      callbacks?.onSending?.({ to: tx.to, chain: tx.chain, chainId });
+      const result = await wallet.sendTransaction({
+        to: tx.to,
+        data: tx.data,
+        value: tx.value ?? "0",
+        chainId
+      });
+      results.push(result);
+    }
+    if (results.length === 0) {
+      throw new Error(
+        "All swap transactions were skipped (no valid 'to' addresses). The quote may be malformed."
+      );
+    }
+    return results;
+  }
 };
 var HealthAPI = class {
   constructor(client) {
     this.client = client;
   }
+  client;
   async check() {
     return checkHealth(this.client);
   }
 };
 export {
+  CHAIN_IDS,
+  FireblocksAdapter,
   OpenSeaAPIError,
   OpenSeaCLI,
   OpenSeaClient,
+  PrivateKeyAdapter,
+  PrivyAdapter,
+  SwapsAPI,
+  TurnkeyAdapter,
+  WALLET_PROVIDERS,
   checkHealth,
+  createWalletFromEnv,
   formatOutput,
-  formatToon
+  formatToon,
+  resolveChainId
 };
 //# sourceMappingURL=index.js.map