@parity/product-deploy 0.10.0-rc.3 → 0.10.0

package/dist/{chunk-4PVJ2JBZ.js → chunk-4IUTMHVB.js}

@@ -34,6 +34,9 @@ function isAuthorizationSufficient(auth, currentBlock) {
   if (Number(auth.expiration ?? 0) <= currentBlock) return false;
   return true;
 }
+function accountsNeedingAuthorization(auths, currentBlock) {
+  return auths.filter((a) => !isAuthorizationSufficient(a, currentBlock));
+}
 function selectAccount(authorizations, random = Math.random, pinnedIndex) {
   if (pinnedIndex != null) {
     const pinned = authorizations.find((a) => a.index === pinnedIndex);
@@ -114,8 +117,16 @@ async function ensureAuthorized(api, address, label) {
     `Bulletin storage account ${who} is not authorized to store. On production the storage account must already carry its own authorization/allowance \u2014 bulletin-deploy cannot grant it.`
   );
 }
-async function bootstrapPool(bulletinRpc, poolSize = 10, mnemonic) {
-  console.log(`Bootstrapping ${poolSize} pool accounts on ${bulletinRpc}...
+function printAuthStatus(a, currentBlock) {
+  if (isAuthorizationSufficient(a, currentBlock)) {
+    const mb = (Number(a.bytes) / 1e6).toFixed(1);
+    console.log(`  [${a.index}] ${a.address}  AUTHORIZED \u2014 ${a.transactions} txs / ${mb}MB remaining, expires @${a.expiration}`);
+  } else {
+    console.log(`  [${a.index}] ${a.address}  NOT AUTHORIZED`);
+  }
+}
+async function bootstrapPool(bulletinRpc, poolSize = 10, mnemonic, opts = {}) {
+  console.log(`Checking ${poolSize} pool accounts on ${bulletinRpc}...
 `);
   await cryptoWaitReady();
   const accounts = derivePoolAccounts(poolSize, mnemonic);
@@ -124,57 +135,78 @@ async function bootstrapPool(bulletinRpc, poolSize = 10, mnemonic) {
     { heartbeatTimeout: WS_HEARTBEAT_TIMEOUT_MS }
   ));
   const api = client.getUnsafeApi();
-  const keyring = new Keyring({ type: "sr25519" });
-  const alice = keyring.addFromUri("//Alice");
-  const aliceSigner = getPolkadotSigner(alice.publicKey, "Sr25519", (data) => alice.sign(data));
-  const aliceAccount = await api.query.System.Account.getValue(alice.address);
-  const aliceBalance = BigInt(aliceAccount.data.free);
-  console.log(`Alice balance: ${formatPasBalance(aliceBalance)} PAS
+  try {
+    const currentBlock = await api.query.System.Number.getValue();
+    const auths = await fetchPoolAuthorizations(api, accounts);
+    console.log("Pool authorization status:");
+    for (const a of auths) {
+      printAuthStatus(a, currentBlock);
+    }
+    console.log("");
+    const needsAuth = accountsNeedingAuthorization(auths, currentBlock);
+    if (needsAuth.length === 0) {
+      console.log("All pool accounts are authorized. Nothing to do.");
+      return;
+    }
+    console.log(`${needsAuth.length} account(s) need authorization.
 `);
-  console.log(`Authorizing accounts (${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB)
+    let authorizerSigner;
+    const keyring = new Keyring({ type: "sr25519" });
+    if (opts.authorizerMnemonic) {
+      const authKey = keyring.addFromUri(opts.authorizerMnemonic);
+      authorizerSigner = getPolkadotSigner(authKey.publicKey, "Sr25519", (data) => authKey.sign(data));
+      console.log(`Using provided authorizer: ${authKey.address}
 `);
-  for (const account of accounts) {
-    console.log(`Account ${account.index}: ${account.address}`);
-    try {
-      const tx = api.tx.TransactionStorage.authorize_account({
-        who: account.address,
-        transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
-        bytes: TOPUP_BYTES
-      });
-      const result = await tx.signAndSubmit(aliceSigner);
-      if (!result.ok) throw new Error("dispatch failed");
-      console.log(`  Authorized: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
-    } catch (e) {
-      console.log(`  Authorization failed: ${e.message?.slice(0, 80)}`);
+    } else {
+      const isTestnet = await detectTestnet(api);
+      if (isTestnet) {
+        const alice = keyring.addFromUri("//Alice");
+        authorizerSigner = getPolkadotSigner(alice.publicKey, "Sr25519", (data) => alice.sign(data));
+        console.log(`Testnet detected \u2014 defaulting to //Alice as authorizer (${alice.address})
+`);
+      } else {
+        console.log(
+          'Authorization is needed but no authorizer key was provided.\nRe-run with --authorizer "<seed>" to grant authorization.'
+        );
+        return;
+      }
     }
-    try {
-      const transfer = api.tx.Balances.transfer_allow_death({
-        dest: Enum("Id", account.address),
-        value: 100000000000n
-        // 0.1 PAS
-      });
-      const result = await transfer.signAndSubmit(aliceSigner);
-      if (!result.ok) throw new Error("dispatch failed");
-      console.log(`  Transferred 0.1 PAS`);
-    } catch (e) {
-      console.log(`  Transfer failed: ${e.message?.slice(0, 80)}`);
+    console.log(`Authorizing ${needsAuth.length} account(s) (${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB each):
+`);
+    for (const account of needsAuth) {
+      console.log(`  [${account.index}] ${account.address}`);
+      try {
+        const tx = api.tx.TransactionStorage.authorize_account({
+          who: account.address,
+          transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
+          bytes: TOPUP_BYTES
+        });
+        const result = await tx.signAndSubmit(authorizerSigner);
+        if (!result.ok) throw new Error("dispatch failed");
+        console.log(`    granted: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
+      } catch (e) {
+        console.log(`    could not grant \u2014 is this key the chain's authorizer? (${e.message?.slice(0, 80)})`);
+      }
     }
     console.log("");
+    console.log("=".repeat(60));
+    console.log("Final pool authorization status:");
+    console.log("=".repeat(60));
+    const finalBlock = await api.query.System.Number.getValue();
+    const finalAuths = await fetchPoolAuthorizations(api, accounts);
+    for (const a of finalAuths) {
+      printAuthStatus(a, finalBlock);
+    }
+  } finally {
+    client.destroy();
   }
-  console.log("=".repeat(60));
-  console.log("Pool Summary");
-  console.log("=".repeat(60));
-  const auths = await fetchPoolAuthorizations(api, accounts);
-  for (const a of auths) {
-    console.log(`  ${a.index}: ${a.address} | txs: ${a.transactions} | bytes: ${Number(a.bytes) / 1e6}MB`);
-  }
-  client.destroy();
 }
 
 export {
   formatPasBalance,
   derivePoolAccounts,
   isAuthorizationSufficient,
+  accountsNeedingAuthorization,
   selectAccount,
   fetchPoolAuthorizations,
   isTestnetSpecName,

package/dist/{chunk-5OKB3TEB.js → chunk-5FLTDWWP.js}

@@ -1,3 +1,6 @@
+import {
+  CLI_NAME
+} from "./chunk-TSPERKUS.js";
 import {
   NonRetryableError
 } from "./chunk-ZOC4GITL.js";
@@ -66,7 +69,7 @@ function createSessionSigner(session, ref) {
           clearPoll = setInterval(() => {
             if (noAllowanceMsg) {
               reject(new NonRetryableError(
-                "Session signing allowance has expired (~2-3 days after login). Run `bulletin-deploy login` to renew."
+                `Session signing allowance has expired (~2-3 days after login). Run \`${CLI_NAME} login\` to renew.`
               ));
             }
           }, 200);

package/dist/{chunk-UBLIZRYW.js → chunk-7HQL3TPT.js}

@@ -1,6 +1,6 @@
 import {
   captureWarning
-} from "./chunk-DFRIBV6O.js";
+} from "./chunk-ORIB2S5P.js";
 
 // src/chunk-probe.ts
 import { Twox128, Blake2128Concat, decAnyMetadata, unifyMetadata } from "@polkadot-api/substrate-bindings";

package/dist/{chunk-FAB6BWDB.js → chunk-ARPBPQZQ.js}

@@ -3,7 +3,7 @@ import {
 } from "./chunk-SI2ZUOYD.js";
 import {
   isTestnetSpecName
-} from "./chunk-4PVJ2JBZ.js";
+} from "./chunk-4IUTMHVB.js";
 import {
   captureWarning,
   markCodePath,
@@ -11,7 +11,7 @@ import {
   setDeploySentryTag,
   truncateAddress,
   withSpan
-} from "./chunk-DFRIBV6O.js";
+} from "./chunk-ORIB2S5P.js";
 import {
   validateContractAddresses
 } from "./chunk-QRKI6MMK.js";

package/dist/{chunk-7OOKA4BJ.js → chunk-F2SDBU57.js}

@@ -1,6 +1,9 @@
+import {
+  CLI_NAME
+} from "./chunk-TSPERKUS.js";
 import {
   VERSION
-} from "./chunk-DFRIBV6O.js";
+} from "./chunk-ORIB2S5P.js";
 import {
   loadEnvironments
 } from "./chunk-QRKI6MMK.js";
@@ -13,7 +16,7 @@ var DOT_DAPP_ID = "polkadot-app-deploy";
 var DOT_PRODUCT_ID = DOT_DAPP_ID;
 var DOT_DERIVATION_INDEX = 0;
 var DOT_HOST_NAME = "polkadot-app-deploy";
-var STALE_SESSION_MESSAGE = 'Stored login session could not be read \u2014 it may have been written by an older version. Run "bulletin-deploy logout", then "bulletin-deploy login" to pair again.';
+var STALE_SESSION_MESSAGE = `Stored login session could not be read \u2014 it may have been written by an older version. Run "${CLI_NAME} logout", then "${CLI_NAME} login" to pair again.`;
 function hasPersistedSession() {
   const dir = join(homedir(), ".polkadot-apps");
   if (!existsSync(dir)) return false;

package/dist/{chunk-D2WW2CIA.js → chunk-OR7LUTET.js}

@@ -2,11 +2,11 @@ import {
   classifyErrorArea,
   isInteractive,
   promptYesNo
-} from "./chunk-ZG56UL3V.js";
+} from "./chunk-ZC43ORKF.js";
 import {
   VERSION,
   getCurrentSentryTraceId
-} from "./chunk-DFRIBV6O.js";
+} from "./chunk-ORIB2S5P.js";
 
 // src/bug-report.ts
 import { execSync, execFileSync } from "child_process";

package/dist/{chunk-DFRIBV6O.js → chunk-ORIB2S5P.js}

@@ -1,7 +1,7 @@
 import {
   package_default,
   writeRunState
-} from "./chunk-KY3CRS66.js";
+} from "./chunk-V4RTUMBT.js";
 
 // src/memory-report.ts
 import * as fs2 from "fs";

package/dist/{chunk-EJ5QLQU4.js → chunk-QR6HCDY2.js}

@@ -1,15 +1,16 @@
 import {
   pessimisticSizePreflight
-} from "./chunk-RI3ZLNPN.js";
+} from "./chunk-WIMRJK32.js";
 import {
+  BLAKE2B_256_MULTIHASH_CODE,
   encodeContenthash,
   resolveDotnsConnectOptions,
   storeDirectory,
   storeFile
-} from "./chunk-GKG2EQKM.js";
+} from "./chunk-32THWODT.js";
 import {
   DotNS
-} from "./chunk-FAB6BWDB.js";
+} from "./chunk-ARPBPQZQ.js";
 import {
   getPopSelfServeConfig,
   loadEnvironments,
@@ -43,7 +44,7 @@ async function publishManifest(opts) {
 Manifest publish \u2014 ${config.domain}`);
   console.log(`  Loaded config: ${sourcePath}`);
   console.log(`  Uploading icon (${iconBytes.length} B)\u2026`);
-  const iconCid = await storeFile(iconBytes);
+  const iconCid = await storeFile(iconBytes, { hashCode: BLAKE2B_256_MULTIHASH_CODE });
   console.log(`  Icon CID: ${iconCid}`);
   const executableCids = {};
   for (const exec of config.executables) {

package/dist/{chunk-IF6BNIKT.js → chunk-SNDIOANW.js}

@@ -3,7 +3,7 @@ import {
 } from "./chunk-GRPLHUYC.js";
 import {
   DOT_DAPP_ID
-} from "./chunk-7OOKA4BJ.js";
+} from "./chunk-F2SDBU57.js";
 
 // src/sss-allowance-cache.ts
 import { mkdir, readFile, writeFile, unlink } from "fs/promises";

package/dist/chunk-TSPERKUS.js

@@ -0,0 +1,6 @@
+// src/cli-name.ts
+var CLI_NAME = "bulletin-deploy";
+
+export {
+  CLI_NAME
+};

package/dist/{chunk-KY3CRS66.js → chunk-V4RTUMBT.js}

@@ -6,7 +6,7 @@ import * as path from "path";
 // package.json
 var package_default = {
   name: "@parity/product-deploy",
-  version: "0.10.0-rc.3",
+  version: "0.10.0",
   private: false,
   repository: {
     type: "git",

package/dist/{chunk-RI3ZLNPN.js → chunk-WIMRJK32.js}

@@ -1,6 +1,6 @@
 // src/manifest/byte-budget.ts
 var DEFAULT_TEXT_RECORD_BUDGET_BYTES = 1024;
-var PLACEHOLDER_CID = "bafkreigh2akiscaildc7zh3vznzaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa";
+var PLACEHOLDER_CID = "bafk2bzacecjiwibwnfb6fl6rd26a5lrokoutx4lxut6pgw6mmtkqg4comxrae";
 function getTextRecordBudgetBytes() {
   const raw = process.env.BULLETIN_TEXT_BUDGET;
   if (raw === void 0 || raw === "") return DEFAULT_TEXT_RECORD_BUDGET_BYTES;

package/dist/{chunk-ZG56UL3V.js → chunk-ZC43ORKF.js}

@@ -1,6 +1,6 @@
 import {
   VERSION
-} from "./chunk-DFRIBV6O.js";
+} from "./chunk-ORIB2S5P.js";
 
 // src/version-check.ts
 import { execSync, execFileSync } from "child_process";

package/dist/chunk-probe.js

@@ -5,9 +5,9 @@ import {
   _decodeStorageValue,
   _resetProbeSession,
   probeChunks
-} from "./chunk-UBLIZRYW.js";
-import "./chunk-DFRIBV6O.js";
-import "./chunk-KY3CRS66.js";
+} from "./chunk-7HQL3TPT.js";
+import "./chunk-ORIB2S5P.js";
+import "./chunk-V4RTUMBT.js";
 export {
   ChainProbeCrossValidationError,
   ChainProbeMetadataError,

package/dist/commands/login.js

@@ -8,16 +8,16 @@ import {
   createSlotAccountSigner,
   requestResourceAllocation,
   summarizeOutcomes
-} from "../chunk-5OKB3TEB.js";
+} from "../chunk-5FLTDWWP.js";
 import {
   renderLoginStatus
 } from "../chunk-RIRDBSBG.js";
 import {
   waitForBulletinAuthorization
-} from "../chunk-GKG2EQKM.js";
+} from "../chunk-32THWODT.js";
 import {
   preflightSssAllowance
-} from "../chunk-IF6BNIKT.js";
+} from "../chunk-SNDIOANW.js";
 import {
   statementSigningAccount
 } from "../chunk-GRPLHUYC.js";
@@ -31,16 +31,19 @@ import {
   getAuthClient,
   getPeopleChainEndpoints,
   resolveBulletinEndpoints
-} from "../chunk-7OOKA4BJ.js";
-import "../chunk-D2WW2CIA.js";
-import "../chunk-ZG56UL3V.js";
-import "../chunk-UBLIZRYW.js";
+} from "../chunk-F2SDBU57.js";
+import "../chunk-OR7LUTET.js";
+import "../chunk-ZC43ORKF.js";
+import "../chunk-7HQL3TPT.js";
 import "../chunk-C2TS5MER.js";
-import "../chunk-FAB6BWDB.js";
+import {
+  CLI_NAME
+} from "../chunk-TSPERKUS.js";
+import "../chunk-ARPBPQZQ.js";
 import "../chunk-SI2ZUOYD.js";
-import "../chunk-4PVJ2JBZ.js";
-import "../chunk-DFRIBV6O.js";
-import "../chunk-KY3CRS66.js";
+import "../chunk-4IUTMHVB.js";
+import "../chunk-ORIB2S5P.js";
+import "../chunk-V4RTUMBT.js";
 import {
   loadEnvironments
 } from "../chunk-QRKI6MMK.js";
@@ -56,7 +59,11 @@ function allocationErrorMessage(reason) {
     case "Rejected":
       return "Bulletin storage access was declined on your phone. Approve the request to enable storage signing.";
     case "NotAvailable":
-      return "Bulletin storage is not available for this product on your phone.\n   This may mean the wallet paired under a different product ID.\n   Run: bulletin-deploy logout\n   Then: bulletin-deploy login\n   to re-pair and establish the allocation.";
+      return `Bulletin storage is not available for this product on your phone.
+   This may mean the wallet paired under a different product ID.
+   Run: ${CLI_NAME} logout
+   Then: ${CLI_NAME} login
+   to re-pair and establish the allocation.`;
     case "UnexpectedResponse":
       return "Unexpected response from the mobile wallet during storage allocation. Try again.";
     default:
@@ -67,7 +74,7 @@ function allocationFailedMessage(reason) {
   return `Allowance pre-warm failed: ${reason}
    Likely cause: personhood or alias not yet established for this account.
    Storage will fall back to the pool for now.
-   Run: bulletin-deploy logout, then bulletin-deploy login,
+   Run: ${CLI_NAME} logout, then ${CLI_NAME} login,
    to retry once your wallet's personhood/alias is in place.`;
 }
 function formatAllocationSummary(summary) {
@@ -137,8 +144,8 @@ async function runLogin(envId, _opts = {}) {
           console.error(
             `
 Statement Store allowance has expired for ${result.address}.
-Run: bulletin-deploy logout
-Then: bulletin-deploy login
+Run: ${CLI_NAME} logout
+Then: ${CLI_NAME} login
 to re-pair and renew (allowance lasts ~2-3 days).`
           );
           tearingDown = true;
@@ -154,7 +161,7 @@ to re-pair and renew (allowance lasts ~2-3 days).`
                 console.warn(
                   `
 Bulletin storage slot allowance not available \u2014 storage will fall back to pool.
-Run: bulletin-deploy logout && bulletin-deploy login
+Run: ${CLI_NAME} logout && ${CLI_NAME} login
 to re-establish your allowance.`
                 );
               }
@@ -197,7 +204,8 @@ to re-establish your allowance.`
     if (summaryText) console.log(summaryText);
     if (summary.rejected.length > 0 || summary.unavailable.length > 0) {
       console.warn(
-        "   Some allowances were not granted \u2014 Bulletin storage falls back to a pool account;\n   PGAS/contract gaps surface at deploy time. Run: bulletin-deploy logout && bulletin-deploy login  to retry."
+        `   Some allowances were not granted \u2014 Bulletin storage falls back to a pool account;
+   PGAS/contract gaps surface at deploy time. Run: ${CLI_NAME} logout && ${CLI_NAME} login  to retry.`
       );
     }
     let slotSigner = await createSlotAccountSigner(handle.adapter, BULLETIN_RESOURCE);
@@ -245,7 +253,8 @@ to re-establish your allowance.`
     } else {
       console.log("\n" + summarizeLogin(handle.address, null));
       console.warn(
-        "   Bulletin storage slot not available \u2014 storage will fall back to a pool account.\n   Run: bulletin-deploy logout && bulletin-deploy login  to retry."
+        `   Bulletin storage slot not available \u2014 storage will fall back to a pool account.
+   Run: ${CLI_NAME} logout && ${CLI_NAME} login  to retry.`
       );
     }
   } catch (err) {

package/dist/commands/logout.js

@@ -1,17 +1,18 @@
 import "../chunk-JQKKMUCT.js";
-import "../chunk-5OKB3TEB.js";
+import "../chunk-5FLTDWWP.js";
 import {
   renderLogoutStatus
 } from "../chunk-RIRDBSBG.js";
 import {
   clearSssAllowanceCache
-} from "../chunk-IF6BNIKT.js";
+} from "../chunk-SNDIOANW.js";
 import "../chunk-GRPLHUYC.js";
 import {
   getAuthClient
-} from "../chunk-7OOKA4BJ.js";
-import "../chunk-DFRIBV6O.js";
-import "../chunk-KY3CRS66.js";
+} from "../chunk-F2SDBU57.js";
+import "../chunk-TSPERKUS.js";
+import "../chunk-ORIB2S5P.js";
+import "../chunk-V4RTUMBT.js";
 import "../chunk-QRKI6MMK.js";
 import "../chunk-ZOC4GITL.js";
 

package/dist/commands/transfer.js

@@ -1,11 +1,14 @@
+import {
+  CLI_NAME
+} from "../chunk-TSPERKUS.js";
 import {
   DEFAULT_MNEMONIC,
   DotNS
-} from "../chunk-FAB6BWDB.js";
+} from "../chunk-ARPBPQZQ.js";
 import "../chunk-SI2ZUOYD.js";
-import "../chunk-4PVJ2JBZ.js";
-import "../chunk-DFRIBV6O.js";
-import "../chunk-KY3CRS66.js";
+import "../chunk-4IUTMHVB.js";
+import "../chunk-ORIB2S5P.js";
+import "../chunk-V4RTUMBT.js";
 import {
   getPopSelfServeConfig,
   loadEnvironments,
@@ -23,7 +26,7 @@ async function resolveTransferRecipient(to, ctx) {
 async function runTransfer(envId, opts) {
   const label = (opts.label ?? "").replace(/\.dot$/, "");
   if (!label) {
-    throw new Error("Usage: bulletin-deploy transfer <label> [--to <0xH160>] [--mnemonic <key>]");
+    throw new Error(`Usage: ${CLI_NAME} transfer <label> [--to <0xH160>] [--mnemonic <key>]`);
   }
   let sessionH160;
   if (!opts.to) {

package/dist/commands/whoami.js

@@ -2,16 +2,19 @@ import {
   STALE_SESSION_MESSAGE,
   getAuthClient,
   hasPersistedSession
-} from "../chunk-7OOKA4BJ.js";
-import "../chunk-DFRIBV6O.js";
-import "../chunk-KY3CRS66.js";
+} from "../chunk-F2SDBU57.js";
+import {
+  CLI_NAME
+} from "../chunk-TSPERKUS.js";
+import "../chunk-ORIB2S5P.js";
+import "../chunk-V4RTUMBT.js";
 import "../chunk-QRKI6MMK.js";
 import "../chunk-ZOC4GITL.js";
 
 // src/commands/whoami.ts
 function formatWhoami(addresses) {
   if (!addresses) {
-    return "Not logged in. Run `bulletin-deploy login` to sign in.";
+    return `Not logged in. Run \`${CLI_NAME} login\` to sign in.`;
   }
   return [
     `Logged in:`,

package/dist/deploy-actors.js

@@ -1,15 +1,16 @@
 import "./chunk-JQKKMUCT.js";
 import {
   resolveSigner
-} from "./chunk-5OKB3TEB.js";
+} from "./chunk-5FLTDWWP.js";
 import "./chunk-RIRDBSBG.js";
+import "./chunk-TSPERKUS.js";
 import {
   DEFAULT_MNEMONIC
-} from "./chunk-FAB6BWDB.js";
+} from "./chunk-ARPBPQZQ.js";
 import "./chunk-SI2ZUOYD.js";
-import "./chunk-4PVJ2JBZ.js";
-import "./chunk-DFRIBV6O.js";
-import "./chunk-KY3CRS66.js";
+import "./chunk-4IUTMHVB.js";
+import "./chunk-ORIB2S5P.js";
+import "./chunk-V4RTUMBT.js";
 import "./chunk-QRKI6MMK.js";
 import "./chunk-ZOC4GITL.js";
 

package/dist/deploy.d.ts

@@ -80,6 +80,8 @@ declare function isConnectionError(error: any): boolean;
  * even when its message differs.
  */
 declare function isBenignTeardownError(error: any): boolean;
+declare const SHA256_MULTIHASH_CODE = 18;
+declare const BLAKE2B_256_MULTIHASH_CODE = 45600;
 declare function deriveRootSigner(mnemonic: string, path?: string): {
     signer: PolkadotSigner;
     ss58: string;
@@ -118,13 +120,28 @@ declare function chooseSignerInput(opts: {
     hasSession?: boolean;
 }): "mnemonic" | "injected" | "resolve" | "pool";
 declare function isPhoneSignerActive(options: Pick<DeployOptions, "signer" | "signerAddress" | "transferTo">): boolean;
+/**
+ * Decide whether to hand the name over to the signed-in user after a deploy.
+ * The handover only fires when the worker FRESHLY REGISTERED the name in this
+ * run (#928): updating the content of a name that already exists must never
+ * change its ownership. Without this, re-deploying any pre-existing name in
+ * transfer mode silently transferred it to whatever session was on disk —
+ * which captured shared E2E fixture labels for a local developer's account.
+ * Exported for unit testing.
+ */
+declare function shouldHandoverName(opts: {
+    transferTo?: string;
+    registeredFresh: boolean;
+}): boolean;
 /**
  * Produce the one-line storage-signer status printed at resolution time. Exported for unit testing.
  *   Success: "   Storage signer: allowance slot <ss58>"
  *   Fallback: "   Storage signer: pool fallback (<reason>)"
  */
 declare function formatStorageSignerLine(slotAddress: string | null, failReason?: string): string;
-declare function storeFile(contentBytes: Uint8Array, { client: existingClient, unsafeApi: existingApi, signer: existingSigner }?: ExistingProvider): Promise<string>;
+declare function storeFile(contentBytes: Uint8Array, { client: existingClient, unsafeApi: existingApi, signer: existingSigner, hashCode, }?: ExistingProvider & {
+    hashCode?: number;
+}): Promise<string>;
 /**
  * Pre-compute dense nonces for chunks that need submission.
  * Chunks where stored[i] !== null are already on chain (skipped via skipCids or
@@ -413,4 +430,4 @@ declare function computePhoneSigningSteps(dotnsPreflight: {
     needsPopUpgrade: boolean;
 } | null, publishNeeded: boolean): string[];
 
-export { BULLETIN_ENDPOINTS, type BitswapErrorVariant, type BitswapProbeResult, CHUNK_MORTALITY_PERIOD, DEFAULT_BULLETIN_RPC, DEFAULT_POOL_SIZE, type DeployContent, type DeployOptions, type DeployResult, ENCRYPT_KEY_LEN, ENCRYPT_MAGIC, ENCRYPT_NONCE_LEN, ENCRYPT_PBKDF2_ITERATIONS, ENCRYPT_SALT_LEN, ENCRYPT_TAG_LEN, type SizeDecision, type StoreDirectoryOptions, WS_HEARTBEAT_TIMEOUT_MS, __assignDenseNoncesForTest, __selectStorageProviderModeForTest, applyManifestFetchAttributes, assertSubdomainOwnerMatchesSigner, browserUrlFor, buildFilesMap, checkDeploySize, chooseSignerInput, chunk, computePhoneSigningSteps, computeStorageCid, createCID, deploy, deriveRootSigner, detectFramework, encodeContenthash, encryptContent, estimateUploadBytes, formatStorageSignerLine, friendlyChainError, hasIPFS, interpretBitswapResult, isBenignTeardownError, isConnectionError, isPhoneSignerActive, makeBulletinStatusHandler, merkleize, probeP2pRetrieval, resolveDotnsConnectOptions, resolveReproducibleTimestamp, retryBudgetExhausted, setWsHaltCallback, storeChunkedContent, storeDirectory, storeDirectoryV2, storeFile, unpublish };
+export { BLAKE2B_256_MULTIHASH_CODE, BULLETIN_ENDPOINTS, type BitswapErrorVariant, type BitswapProbeResult, CHUNK_MORTALITY_PERIOD, DEFAULT_BULLETIN_RPC, DEFAULT_POOL_SIZE, type DeployContent, type DeployOptions, type DeployResult, ENCRYPT_KEY_LEN, ENCRYPT_MAGIC, ENCRYPT_NONCE_LEN, ENCRYPT_PBKDF2_ITERATIONS, ENCRYPT_SALT_LEN, ENCRYPT_TAG_LEN, SHA256_MULTIHASH_CODE, type SizeDecision, type StoreDirectoryOptions, WS_HEARTBEAT_TIMEOUT_MS, __assignDenseNoncesForTest, __selectStorageProviderModeForTest, applyManifestFetchAttributes, assertSubdomainOwnerMatchesSigner, browserUrlFor, buildFilesMap, checkDeploySize, chooseSignerInput, chunk, computePhoneSigningSteps, computeStorageCid, createCID, deploy, deriveRootSigner, detectFramework, encodeContenthash, encryptContent, estimateUploadBytes, formatStorageSignerLine, friendlyChainError, hasIPFS, interpretBitswapResult, isBenignTeardownError, isConnectionError, isPhoneSignerActive, makeBulletinStatusHandler, merkleize, probeP2pRetrieval, resolveDotnsConnectOptions, resolveReproducibleTimestamp, retryBudgetExhausted, setWsHaltCallback, shouldHandoverName, storeChunkedContent, storeDirectory, storeDirectoryV2, storeFile, unpublish };