@oxyhq/core 1.11.11 → 1.11.13

package/src/utils/__tests__/asyncUtils.test.ts

@@ -0,0 +1,187 @@
+import { retryAsync } from '../asyncUtils';
+import { handleHttpError } from '../errorUtils';
+
+/**
+ * Regression coverage for the 1.11.11 retry storm:
+ *
+ * HttpService wraps fetch errors through handleHttpError before rethrowing.
+ * handleHttpError returns a flat ApiError ({ message, code, status }) without
+ * a nested `.response` field. Prior to the fix, retryAsync's default
+ * shouldRetry predicate only inspected `error.response.status`, so every 4xx
+ * response was treated as retryable. That turned ~5ms 404 lookups into 8-10s
+ * stalls because every Mention endpoint hitting Oxy for a missing
+ * user/topic hit the full retry+backoff schedule.
+ *
+ * These tests lock the fix in place: both the nested and flat shapes MUST
+ * short-circuit retries for 4xx, and 5xx/network errors MUST still retry.
+ */
+describe('retryAsync default shouldRetry predicate', () => {
+  it('does not retry on a flat ApiError-shaped 404 (handleHttpError output)', async () => {
+    let attempts = 0;
+    const started = Date.now();
+    const apiError = { message: 'Not found', code: 'NOT_FOUND', status: 404 };
+
+    await expect(
+      retryAsync(async () => {
+        attempts++;
+        throw apiError;
+      }, 3, 50)
+    ).rejects.toBe(apiError);
+
+    expect(attempts).toBe(1);
+    // Sanity: we should NOT have slept through any backoff windows.
+    expect(Date.now() - started).toBeLessThan(100);
+  });
+
+  it('does not retry on an axios-style nested 404 (response.status)', async () => {
+    let attempts = 0;
+    const axiosError = {
+      message: 'Not found',
+      response: { status: 404, statusText: 'Not Found' },
+    };
+
+    await expect(
+      retryAsync(async () => {
+        attempts++;
+        throw axiosError;
+      }, 3, 50)
+    ).rejects.toBe(axiosError);
+
+    expect(attempts).toBe(1);
+  });
+
+  it('does not retry on any 4xx flat-shape (400/401/403/422)', async () => {
+    for (const status of [400, 401, 403, 422]) {
+      let attempts = 0;
+      await expect(
+        retryAsync(async () => {
+          attempts++;
+          throw { message: 'client', code: 'X', status };
+        }, 2, 10)
+      ).rejects.toBeDefined();
+      expect(attempts).toBe(1);
+    }
+  });
+
+  it('retries on flat-shape 500 errors until maxRetries', async () => {
+    let attempts = 0;
+    await expect(
+      retryAsync(async () => {
+        attempts++;
+        throw { message: 'boom', code: 'INTERNAL_ERROR', status: 500 };
+      }, 2, 1)
+    ).rejects.toBeDefined();
+    expect(attempts).toBe(3); // initial + 2 retries
+  });
+
+  it('retries on nested-shape 503 errors until maxRetries', async () => {
+    let attempts = 0;
+    await expect(
+      retryAsync(async () => {
+        attempts++;
+        throw { message: 'unavailable', response: { status: 503 } };
+      }, 2, 1)
+    ).rejects.toBeDefined();
+    expect(attempts).toBe(3);
+  });
+
+  it('retries on network-style errors without any status (TypeError)', async () => {
+    let attempts = 0;
+    await expect(
+      retryAsync(async () => {
+        attempts++;
+        throw new TypeError('Failed to fetch');
+      }, 2, 1)
+    ).rejects.toBeDefined();
+    expect(attempts).toBe(3);
+  });
+
+  it('returns the successful result without extra attempts', async () => {
+    let attempts = 0;
+    const result = await retryAsync(async () => {
+      attempts++;
+      return 'ok' as const;
+    }, 3, 1);
+    expect(result).toBe('ok');
+    expect(attempts).toBe(1);
+  });
+
+  it('recovers after a transient 5xx followed by success', async () => {
+    let attempts = 0;
+    const result = await retryAsync(async () => {
+      attempts++;
+      if (attempts < 2) {
+        throw { message: 'transient', status: 502 };
+      }
+      return 'recovered' as const;
+    }, 3, 1);
+    expect(result).toBe('recovered');
+    expect(attempts).toBe(2);
+  });
+
+  it('honours a custom shouldRetry predicate even when default would retry', async () => {
+    let attempts = 0;
+    await expect(
+      retryAsync(
+        async () => {
+          attempts++;
+          throw { message: 'nope', status: 500 };
+        },
+        5,
+        1,
+        () => false
+      )
+    ).rejects.toBeDefined();
+    expect(attempts).toBe(1);
+  });
+
+  it('ignores non-numeric status fields instead of treating them as 4xx', async () => {
+    let attempts = 0;
+    await expect(
+      retryAsync(async () => {
+        attempts++;
+        throw { message: 'weird', status: 'oops' as unknown as number };
+      }, 2, 1)
+    ).rejects.toBeDefined();
+    // Non-numeric status must NOT be interpreted as 4xx — should retry normally.
+    expect(attempts).toBe(3);
+  });
+});
+
+/**
+ * handleHttpError is the wire between fetch-thrown errors and retryAsync.
+ * Lock in that it exposes the HTTP status at the top level so the retry
+ * predicate above can see it.
+ */
+describe('handleHttpError preserves HTTP status for retry predicates', () => {
+  it('flattens a fetch-style error with .response.status into ApiError.status', () => {
+    const fetchError = Object.assign(new Error('Not found'), {
+      status: 404,
+      response: { status: 404, statusText: 'Not Found' },
+    });
+    const result = handleHttpError(fetchError);
+    expect(result.status).toBe(404);
+    expect(result.code).toBe('NOT_FOUND');
+    expect(result.message).toBe('Not found');
+  });
+
+  it('preserves 401 status from fetch errors', () => {
+    const fetchError = Object.assign(new Error('Unauthorized'), {
+      status: 401,
+      response: { status: 401, statusText: 'Unauthorized' },
+    });
+    const result = handleHttpError(fetchError);
+    expect(result.status).toBe(401);
+    expect(result.code).toBe('UNAUTHORIZED');
+  });
+
+  it('maps 500 to INTERNAL_ERROR with status preserved', () => {
+    const fetchError = Object.assign(new Error('boom'), {
+      status: 500,
+      response: { status: 500, statusText: 'Internal Server Error' },
+    });
+    const result = handleHttpError(fetchError);
+    expect(result.status).toBe(500);
+    expect(result.code).toBe('INTERNAL_ERROR');
+  });
+});

package/src/utils/accountUtils.ts

@@ -3,6 +3,8 @@
  * Used by both @oxyhq/services (React Native) and @oxyhq/auth (Web) account stores.
  */
 
+import { translate } from '../i18n';
+
 export interface QuickAccount {
     sessionId: string;
     userId?: string;
@@ -12,6 +14,83 @@ export interface QuickAccount {
     avatarUrl?: string;
 }
 
+/** Minimal user shape accepted by display-name helpers. Avoids importing the full User type. */
+export interface DisplayNameUserShape {
+    name?: string | { first?: string; last?: string; full?: string; [key: string]: unknown };
+    username?: string;
+    publicKey?: string;
+}
+
+/**
+ * Truncate a long public key for display, e.g. `0x12345678…`.
+ * Falls back to the raw key if it's too short to truncate.
+ */
+export const formatPublicKeyHandle = (publicKey: string): string => {
+    const cleaned = publicKey.startsWith('0x') ? publicKey.slice(2) : publicKey;
+    if (cleaned.length <= 8) return `0x${cleaned}`;
+    return `0x${cleaned.slice(0, 8)}…`;
+};
+
+/**
+ * Resolve a friendly display name for a user.
+ *
+ * Order of preference:
+ *  1. `name.full`, or composed `name.first name.last`
+ *  2. `name` (when stored as a plain string)
+ *  3. `username`
+ *  4. `Account 0x12345678…` (derived from publicKey, when present)
+ *  5. Translated fallback (e.g. "Unnamed")
+ *
+ * The translation key `common.unnamed` is used for the final fallback. If the
+ * caller does not pass a locale, the default English translation is used.
+ */
+export const getAccountDisplayName = (
+    user: DisplayNameUserShape | null | undefined,
+    locale?: string,
+): string => {
+    if (!user) return translate(locale, 'common.unnamed');
+
+    const { name, username, publicKey } = user;
+
+    if (name && typeof name === 'object') {
+        if (typeof name.full === 'string' && name.full.trim()) return name.full.trim();
+        const first = typeof name.first === 'string' ? name.first.trim() : '';
+        const last = typeof name.last === 'string' ? name.last.trim() : '';
+        const composed = [first, last].filter(Boolean).join(' ').trim();
+        if (composed) return composed;
+    } else if (typeof name === 'string' && name.trim()) {
+        return name.trim();
+    }
+
+    if (typeof username === 'string' && username.trim()) return username.trim();
+
+    if (typeof publicKey === 'string' && publicKey.length > 0) {
+        return translate(locale, 'common.accountFallback', {
+            handle: formatPublicKeyHandle(publicKey),
+        });
+    }
+
+    return translate(locale, 'common.unnamed');
+};
+
+/**
+ * Resolve a `@handle` style identifier for a user.
+ *
+ * Returns the bare username when present (without the `@`), otherwise a
+ * truncated public-key handle (`0x12345678…`), or `undefined` when neither is
+ * available — callers can decide whether to hide the line entirely.
+ */
+export const getAccountFallbackHandle = (
+    user: DisplayNameUserShape | null | undefined,
+): string | undefined => {
+    if (!user) return undefined;
+    if (typeof user.username === 'string' && user.username.trim()) return user.username.trim();
+    if (typeof user.publicKey === 'string' && user.publicKey.length > 0) {
+        return formatPublicKeyHandle(user.publicKey);
+    }
+    return undefined;
+};
+
 /**
  * Build an ordered array of QuickAccounts from a map and order list.
  */
@@ -38,8 +117,9 @@ export const buildAccountsArray = (
 export const createQuickAccount = (
     sessionId: string,
     userData: {
-        name?: { full?: string; first?: string };
+        name?: string | { full?: string; first?: string; last?: string };
         username?: string;
+        publicKey?: string;
         id?: string;
         _id?: { toString(): string } | string;
         avatar?: string;
@@ -47,7 +127,7 @@ export const createQuickAccount = (
     existingAccount?: QuickAccount,
     getFileDownloadUrl?: (fileId: string, variant: string) => string
 ): QuickAccount => {
-    const displayName = userData.name?.full || userData.name?.first || userData.username || 'Account';
+    const displayName = getAccountDisplayName(userData);
     const userId = userData.id || (typeof userData._id === 'string' ? userData._id : userData._id?.toString());
 
     // Preserve existing avatarUrl if avatar hasn't changed (prevents image reload)

package/src/utils/asyncUtils.ts

@@ -47,11 +47,38 @@ export async function parallelWithErrorHandling<T>(
   );
 }
 
+/**
+ * Extract an HTTP status code from an error value, tolerating both the
+ * axios-style nested shape (`error.response.status`) and the flat shape
+ * produced by {@link handleHttpError} / fetch-based clients (`error.status`).
+ *
+ * Centralising this lookup prevents retry predicates from silently falling
+ * through when one of the two shapes is missing, which previously caused
+ * @oxyhq/core to retry 4xx responses and turn sub-10ms failures into
+ * multi-second stalls for every missing-resource lookup.
+ */
+function extractHttpStatus(error: unknown): number | undefined {
+  if (!error || typeof error !== 'object') return undefined;
+  const candidate = error as {
+    status?: unknown;
+    response?: { status?: unknown } | null;
+  };
+  const flat = candidate.status;
+  if (typeof flat === 'number' && Number.isFinite(flat)) return flat;
+  const nested = candidate.response?.status;
+  if (typeof nested === 'number' && Number.isFinite(nested)) return nested;
+  return undefined;
+}
+
 /**
  * Retry an async operation with exponential backoff
- * 
- * By default, does not retry on 4xx errors (client errors).
- * Use shouldRetry callback to customize retry behavior.
+ *
+ * By default, does not retry on 4xx errors (client errors). The default
+ * predicate accepts both the axios-style `error.response.status` and the
+ * flat `error.status` shape produced by {@link handleHttpError}, so callers
+ * never accidentally retry a deterministic client failure.
+ *
+ * Use the `shouldRetry` callback to customize retry behavior.
  */
 export async function retryAsync<T>(
   operation: () => Promise<T>,
@@ -60,16 +87,19 @@ export async function retryAsync<T>(
   shouldRetry?: (error: any) => boolean
 ): Promise<T> {
   let lastError: any;
-  
-  // Default shouldRetry: don't retry on 4xx errors
-  const defaultShouldRetry = (error: any): boolean => {
-    // Don't retry on 4xx errors (client errors)
-    if (error?.response?.status >= 400 && error?.response?.status < 500) {
+
+  // Default shouldRetry: don't retry on 4xx errors (client errors).
+  // Checks BOTH `error.status` (flat shape from handleHttpError / fetch
+  // clients) AND `error.response.status` (axios-style shape) so neither
+  // representation can leak a client error into the retry loop.
+  const defaultShouldRetry = (error: unknown): boolean => {
+    const status = extractHttpStatus(error);
+    if (status !== undefined && status >= 400 && status < 500) {
       return false;
     }
     return true;
   };
-  
+
   const retryCheck = shouldRetry || defaultShouldRetry;
   
   for (let attempt = 0; attempt <= maxRetries; attempt++) {

package/src/utils/deviceManager.ts

@@ -1,3 +1,5 @@
+import { loadAsyncStorage } from './platformCrypto';
+
 export interface DeviceFingerprint {
   userAgent: string;
   platform: string;
@@ -42,10 +44,11 @@ export class DeviceManager {
   }> {
     if (this.isReactNative()) {
       try {
-        // Variable indirection prevents bundlers (Vite, webpack) from statically resolving this
-        const moduleName = '@react-native-async-storage/async-storage';
-        const asyncStorageModule = await import(moduleName);
-        const storage = asyncStorageModule.default as unknown as { getItem: (key: string) => Promise<string | null>; setItem: (key: string, value: string) => Promise<void>; removeItem: (key: string) => Promise<void> };
+        // `loadAsyncStorage` is per-platform: the RN variant statically imports
+        // @react-native-async-storage/async-storage, the default variant throws
+        // (never called outside RN because of the `isReactNative()` gate above).
+        const asyncStorageModule = await loadAsyncStorage();
+        const storage = asyncStorageModule.default;
         return {
           getItem: storage.getItem.bind(storage),
           setItem: storage.setItem.bind(storage),

package/src/utils/platformCrypto.native.ts

@@ -0,0 +1,101 @@
+/**
+ * Platform Crypto / Storage — React Native Variant
+ *
+ * Companion to `./platformCrypto.ts`. See the doc-comment at the top of that
+ * file for the full design.
+ *
+ * Metro auto-selects this file in any non-web build (`preferNativePlatform`
+ * is `true` for iOS / Android, so `*.native.js` shadows `*.js` during
+ * source-extension resolution inside `node_modules/@oxyhq/core/dist/`). On
+ * iOS / Android `<base>.ios.js` / `<base>.android.js` would shadow this file
+ * if they existed, but they don't — `.native.js` is the shared RN variant.
+ *
+ *   - The default variant references Node's `'crypto'` and would crash Metro
+ *     if bundled into an RN app.
+ *   - This variant references the RN-only modules (`expo-crypto`,
+ *     `expo-secure-store`, `@react-native-async-storage/async-storage`)
+ *     as static imports, so Metro and Hermes both resolve and parse them
+ *     cleanly.
+ *
+ * Both variants expose the same surface; importers don't care which one
+ * they got.
+ *
+ * # Why static imports?
+ *
+ * Every RN consumer of `@oxyhq/core` already lists or transitively pulls
+ * in `expo-crypto`, `expo-secure-store`, and
+ * `@react-native-async-storage/async-storage` (they're stable Expo modules
+ * present in `services`, `accounts`, `inbox`, and `test-app`). A static
+ * import is what Metro wants to see anyway, and Hermes parses it like any
+ * other ES module — no `Function`-constructor parser exotic-mode involved.
+ *
+ * This is also clearer to debug: Metro fails up-front with a normal
+ * unresolved-module error if a consumer is missing a peer dep, instead of
+ * a confusing runtime throw the first time a code path that needs the
+ * module is exercised.
+ */
+
+import * as ExpoCrypto from 'expo-crypto';
+import * as SecureStore from 'expo-secure-store';
+import AsyncStorage from '@react-native-async-storage/async-storage';
+
+// ---------------------------------------------------------------------------
+// Node `crypto` — never available in RN.
+// ---------------------------------------------------------------------------
+
+export async function loadNodeCrypto(): Promise<typeof import('crypto')> {
+  // Unreachable in practice: every caller gates with `isNodeJS()` before
+  // invoking this. If it somehow does fire, throw immediately with a clear
+  // diagnostic rather than letting Metro / Hermes attempt to find a
+  // non-existent module at runtime.
+  throw new Error(
+    "[oxy.platformCrypto] Node's built-in 'crypto' module is not available " +
+      'in a React Native runtime. Use the RN-specific helpers ' +
+      '(loadExpoCrypto, getRandomBytesRN) or the Web Crypto API (`globalThis.crypto`).',
+  );
+}
+
+// ---------------------------------------------------------------------------
+// expo-crypto — RN cryptographic primitives.
+// ---------------------------------------------------------------------------
+
+export async function loadExpoCrypto(): Promise<typeof import('expo-crypto')> {
+  return ExpoCrypto;
+}
+
+// ---------------------------------------------------------------------------
+// expo-secure-store — RN keychain / keystore.
+// ---------------------------------------------------------------------------
+
+export async function loadSecureStore(): Promise<typeof import('expo-secure-store')> {
+  return SecureStore;
+}
+
+// ---------------------------------------------------------------------------
+// @react-native-async-storage/async-storage — RN persistent KV storage.
+// ---------------------------------------------------------------------------
+
+type AsyncStorageLike = {
+  getItem: (key: string) => Promise<string | null>;
+  setItem: (key: string, value: string) => Promise<void>;
+  removeItem: (key: string) => Promise<void>;
+};
+
+export async function loadAsyncStorage(): Promise<{ default: AsyncStorageLike }> {
+  // Mirror the shape callers historically used (`module.default.<method>`)
+  // so the call sites don't have to know whether the underlying module
+  // ships ESM or CJS-with-default.
+  const storage = AsyncStorage as unknown as AsyncStorageLike;
+  return {
+    default: storage,
+  };
+}
+
+/**
+ * Synchronous random-bytes via `expo-crypto.getRandomBytes`. Available
+ * synchronously because `expo-crypto` is statically imported by this file
+ * — no async initialization race.
+ */
+export function getRandomBytesRN(byteCount: number): Uint8Array {
+  return ExpoCrypto.getRandomBytes(byteCount);
+}

package/src/utils/platformCrypto.ts

@@ -0,0 +1,145 @@
+/**
+ * Platform Crypto / Storage — Default Variant (Node.js, Browser, generic bundlers)
+ *
+ * Provides lazy access to platform-specific crypto and storage modules.
+ *
+ * # Variants
+ *
+ * This module ships in two physical variants on disk, selected per consumer
+ * by the bundler / runtime:
+ *
+ * - `platformCrypto.js`           — this file. Used by Node.js, Vite, webpack,
+ *                                   Rollup, esbuild, and anything that does
+ *                                   not match Metro's `*.native.js`
+ *                                   source-extension preference.
+ * - `platformCrypto.native.js`    — sibling file. Picked up automatically by
+ *                                   Metro's resolver (which prefers
+ *                                   `*.<platform>.js` and `*.native.js` over
+ *                                   plain `*.js` when `preferNativePlatform`
+ *                                   is true — Expo sets this for all non-web
+ *                                   builds).
+ *
+ * The `package.json#exports` map also declares a `"react-native"` condition
+ * pointing at the same `dist/esm/index.js` entry — that entry transitively
+ * imports `./platformCrypto`, and Metro's per-file source-extension lookup
+ * substitutes the `.native.js` sibling automatically inside `dist/`. This
+ * means consumers never have to add resolver shims; Metro Just Works.
+ *
+ * Both variants expose the EXACT same public API; importers don't need to know
+ * which one they got. The variant difference is purely about which underlying
+ * native modules each one references:
+ *
+ *   ┌──────────────────┬───────────────────────┬───────────────────────────────┐
+ *   │ Function         │ Default variant       │ React Native variant          │
+ *   ├──────────────────┼───────────────────────┼───────────────────────────────┤
+ *   │ loadNodeCrypto   │ `await import('crypto')` (Node built-in)              │
+ *   │                  │                       │ throws — Node crypto is not   │
+ *   │                  │                       │ available on Hermes/RN        │
+ *   ├──────────────────┼───────────────────────┼───────────────────────────────┤
+ *   │ loadExpoCrypto   │ throws — expo-crypto  │ static `import 'expo-crypto'` │
+ *   │                  │ is not part of a      │                               │
+ *   │                  │ Node/Vite bundle      │                               │
+ *   ├──────────────────┼───────────────────────┼───────────────────────────────┤
+ *   │ loadSecureStore  │ throws (web/Node have │ static `import 'expo-secure-` │
+ *   │                  │ their own storage)    │ store'                        │
+ *   ├──────────────────┼───────────────────────┼───────────────────────────────┤
+ *   │ loadAsyncStorage │ throws (web/Node have │ static `import '@react-       │
+ *   │                  │ their own storage)    │ native-async-storage/...'     │
+ *   ├──────────────────┼───────────────────────┼───────────────────────────────┤
+ *   │ getRandomBytesRN │ throws (RN-only)      │ direct call into expo-crypto  │
+ *   └──────────────────┴───────────────────────┴───────────────────────────────┘
+ *
+ * Crucially, the default variant references ONLY Node's `'crypto'`. It never
+ * mentions `expo-*` or `@react-native-async-storage/*` — so Vite, webpack,
+ * esbuild, Rollup, and Node itself can bundle / require it without ever
+ * attempting to resolve those RN-only packages.
+ *
+ * The React Native variant references ONLY the RN packages. It never
+ * mentions `'crypto'` — so Metro and Hermes have nothing to choke on.
+ *
+ * # Why not a single file with dynamic import?
+ *
+ * A previous iteration used a "bundler-opaque" `new Function('s', 'return
+ * import(s)')` trick so a single file could service every platform. It
+ * bundled cleanly on Metro but Hermes refused to PARSE the resulting
+ * `import()` expression inside a Function-constructor body
+ * (`SyntaxError: Invalid expression encountered` at the `(` of `import(`).
+ * The platform-extension split is the only approach that lets each runtime
+ * see a file containing only specifiers it can understand — no tricks, no
+ * runtime parsing risks.
+ */
+
+import { isReactNative } from './platform';
+
+// ---------------------------------------------------------------------------
+// Node `crypto` — Node built-in
+//
+// `await import('crypto')` here is a real, static-from-tsc's-perspective
+// dynamic import. Node ESM, Vite, webpack, and esbuild all resolve it fine.
+// Metro never sees this file because the `.react-native.js` sibling shadows
+// it, so Metro never tries to resolve `'crypto'`.
+// ---------------------------------------------------------------------------
+
+let cachedNodeCrypto: typeof import('crypto') | null = null;
+
+export async function loadNodeCrypto(): Promise<typeof import('crypto')> {
+  if (cachedNodeCrypto) {
+    return cachedNodeCrypto;
+  }
+  cachedNodeCrypto = await import('node:crypto');
+  return cachedNodeCrypto;
+}
+
+// ---------------------------------------------------------------------------
+// RN-only modules — never called from this variant.
+//
+// These throw a clear error if anything ever reaches them outside RN. In
+// practice every caller gates with `isReactNative()` before calling, so
+// these are belt-and-braces.
+// ---------------------------------------------------------------------------
+
+function notReactNativeError(module: string): Error {
+  return new Error(
+    `[oxy.platformCrypto] Tried to load '${module}' outside React Native. This module is only available in a React Native runtime; bundling routed this consumer to the default (Node/web) variant. This indicates a missing platform gate (\`isReactNative()\`) in the calling code.`,
+  );
+}
+
+export async function loadExpoCrypto(): Promise<typeof import('expo-crypto')> {
+  if (isReactNative()) {
+    // Should be unreachable: when running on RN, Metro / the `react-native`
+    // exports condition serves the sibling variant. If we got here, the
+    // package-exports map is misconfigured for this host. Throw with a
+    // helpful diagnostic rather than fall back to a broken dynamic import.
+    throw new Error(
+      '[oxy.platformCrypto] React Native runtime resolved the default ' +
+        '(non-RN) variant of @oxyhq/core/utils/platformCrypto. Check the ' +
+        "consumer's bundler resolution — Metro should pick the sibling " +
+        '.react-native.js file via package exports.',
+    );
+  }
+  throw notReactNativeError('expo-crypto');
+}
+
+export async function loadSecureStore(): Promise<typeof import('expo-secure-store')> {
+  throw notReactNativeError('expo-secure-store');
+}
+
+export async function loadAsyncStorage(): Promise<{
+  default: {
+    getItem: (key: string) => Promise<string | null>;
+    setItem: (key: string, value: string) => Promise<void>;
+    removeItem: (key: string) => Promise<void>;
+  };
+}> {
+  throw notReactNativeError('@react-native-async-storage/async-storage');
+}
+
+/**
+ * Synchronous random-bytes via `expo-crypto.getRandomBytes`. Only available
+ * in the React Native variant. The default variant throws because Node and
+ * browsers have their own native CSPRNGs (`crypto.randomBytes` and
+ * `crypto.getRandomValues` respectively) — callers should use those.
+ */
+export function getRandomBytesRN(_byteCount: number): Uint8Array {
+  throw notReactNativeError('expo-crypto.getRandomBytes (sync)');
+}