@parity/product-deploy 0.9.0-rc.6 → 0.10.0-rc.0

package/bin/bulletin-deploy

@@ -69,6 +69,8 @@ for (let i = 0; i < args.length; i++) {
   else if (args[i] === "--unpublish") { flags.unpublish = true; }
   else if (args[i] === "--fail-on-publish-error") { flags.failOnPublishError = true; }
   else if (args[i] === "--suri") { flags.suri = args[++i]; }
+  else if (args[i] === "--no-transfer-to-signedin-user") { flags.noTransferToSignedinUser = true; }
+  else if (args[i] === "--to") { flags.to = args[++i]; }
   else if (args[i] === "--version" || args[i] === "-V") { flags.version = true; }
   else if (args[i] === "--help" || args[i] === "-h") { flags.help = true; }
   else { positional.push(args[i]); }
@@ -134,23 +136,27 @@ if (flags.unpublish) {
   }
 }
 
+// The SSO adapter's polkadot-api client fires a benign `DestroyedError: Client
+// destroyed` on orphaned pending-response promises during WS teardown, AFTER an
+// SSO subcommand has done its work. The deploy path's handlers (below) aren't
+// installed yet here, so SSO subcommands install these guards to swallow that +
+// connection-teardown noise and surface anything else.
+function installSsoTeardownGuards() {
+  const benignTeardown = (e) => {
+    const s = e instanceof Error ? `${e.name ?? ""} ${e.message ?? ""}` : String(e);
+    return isConnectionError(e) || /DestroyedError|Client destroyed/.test(s);
+  };
+  process.on("unhandledRejection", (e) => { if (!benignTeardown(e)) { console.error(e); process.exit(1); } });
+  process.on("uncaughtException", (e) => { if (!benignTeardown(e)) { console.error(e); process.exit(1); } });
+}
+
 // Sign-in subcommands: login / logout / whoami.
 // Lazy-imported from dist so the SSO deps never load in headless/deploy mode.
 {
   const sub = positional[0];
   if (sub === "login" || sub === "logout" || sub === "whoami") {
     const envId = flags.env ?? DEFAULT_ENV_ID;
-    // The SSO adapter's polkadot-api client fires a benign `DestroyedError:
-    // Client destroyed` on orphaned pending-response promises during WS teardown,
-    // AFTER the command has done its work (e.g. logout already disconnected). The
-    // deploy path's handlers (below) aren't installed yet here, so guard the
-    // command path: swallow that + connection-teardown noise, surface anything else.
-    const benignTeardown = (e) => {
-      const s = e instanceof Error ? `${e.name ?? ""} ${e.message ?? ""}` : String(e);
-      return isConnectionError(e) || /DestroyedError|Client destroyed/.test(s);
-    };
-    process.on("unhandledRejection", (e) => { if (!benignTeardown(e)) { console.error(e); process.exit(1); } });
-    process.on("uncaughtException", (e) => { if (!benignTeardown(e)) { console.error(e); process.exit(1); } });
+    installSsoTeardownGuards();
     try {
       const capSub = sub.charAt(0).toUpperCase() + sub.slice(1);
       const mod = await import(`../dist/commands/${sub}.js`);
@@ -164,6 +170,23 @@ if (flags.unpublish) {
   }
 }
 
+// `transfer` subcommand: hand a name you registered to the signed-in account
+// (or --to). Stand-alone handover + recovery for a deploy whose transfer step
+// failed. Uses the SSO stack to resolve the session recipient.
+if (positional[0] === "transfer") {
+  const envId = flags.env ?? DEFAULT_ENV_ID;
+  installSsoTeardownGuards();
+  try {
+    const { runTransfer } = await import("../dist/commands/transfer.js");
+    await runTransfer(envId, { label: positional[1], to: flags.to, mnemonic: flags.mnemonic });
+  } catch (err) {
+    console.error(`Error: ${err?.message ?? err}`);
+    process.exit(1);
+  }
+  await closeTelemetry();
+  process.exit(0);
+}
+
 // `product` subcommand. Only `validate` is wired today. `publish` and `resolve` arrive in later phases.
 if (positional[0] === "product") {
   const verb = positional[1];
@@ -215,6 +238,7 @@ Usage:
   bulletin-deploy login                     Sign in with your Polkadot mobile app
   bulletin-deploy logout                    Sign out and clear the session
   bulletin-deploy whoami                    Show the currently signed-in identity
+  bulletin-deploy transfer <domain.dot>     Hand a name you registered to the signed-in account (or --to)
 
 Options:
   --env <id>               Target environment from environments.json (default: paseo-next-v2).
@@ -235,6 +259,14 @@ Options:
                            --contract DOTNS_REGISTRY=0x.. --contract DOTNS_CONTENT_RESOLVER=0x..
   --mnemonic "..."         DotNS owner mnemonic (or set MNEMONIC env var)
   --derivation-path "..."  Optional Substrate-style path applied to --mnemonic (e.g. //deploy/3)
+  --no-transfer-to-signedin-user
+                           When signed in, sign every DotNS tx with your mobile
+                           session (today's behavior) instead of the default:
+                           a local worker (Alice, or --mnemonic) registers +
+                           deploys, then hands the name to your signed-in
+                           account with zero mobile signatures. Testnet only.
+  --to <0xH160>            (transfer subcommand) recipient address; defaults to
+                           the signed-in account.
   --rpc wss://...          Override the bulletin RPC for the chosen --env (or set BULLETIN_RPC).
                            Precedence: --rpc > BULLETIN_RPC > --env's bulletin endpoint.
   --pool-size N       Number of pool accounts (default: 10)
@@ -444,6 +476,7 @@ try {
     dumpCar: flags.dumpCar,
     publish: flags.publish,
     failOnPublishError: flags.failOnPublishError,
+    transferToSignedInUser: !flags.noTransferToSignedinUser,
   });
 
   const output = process.env.GITHUB_OUTPUT;

package/dist/auth-config.js

@@ -9,9 +9,9 @@ import {
   getPeopleChainEndpoints,
   hasPersistedSession,
   resolveBulletinEndpoints
-} from "./chunk-HGEYWE2P.js";
-import "./chunk-ZL7KBV52.js";
-import "./chunk-ELX3YZQG.js";
+} from "./chunk-PKQOUCPD.js";
+import "./chunk-2BTYPNYW.js";
+import "./chunk-ZJCTG7HF.js";
 import "./chunk-GL3U7K2B.js";
 import "./chunk-ZOC4GITL.js";
 export {

package/dist/bug-report.js

@@ -9,10 +9,10 @@ import {
   offerBugReport,
   scrubSecrets,
   setDeployContext
-} from "./chunk-NEWDQKA3.js";
-import "./chunk-LIAEGW76.js";
-import "./chunk-ZL7KBV52.js";
-import "./chunk-ELX3YZQG.js";
+} from "./chunk-G676QAN4.js";
+import "./chunk-MI5B3UCM.js";
+import "./chunk-2BTYPNYW.js";
+import "./chunk-ZJCTG7HF.js";
 export {
   buildCliFlagsSummary,
   buildLabels,

package/dist/{chunk-ZL7KBV52.js → chunk-2BTYPNYW.js}

@@ -1,7 +1,7 @@
 import {
   package_default,
   writeRunState
-} from "./chunk-ELX3YZQG.js";
+} from "./chunk-ZJCTG7HF.js";
 
 // src/memory-report.ts
 import * as fs2 from "fs";

package/dist/{chunk-NRDXKYWQ.js → chunk-DY7RVMM5.js}

@@ -1,6 +1,6 @@
 import {
   preflightSssAllowance
-} from "./chunk-6GGRUTTC.js";
+} from "./chunk-GJTVPP7E.js";
 import {
   statementSigningAccount
 } from "./chunk-GRPLHUYC.js";
@@ -34,13 +34,13 @@ import {
   STALE_SESSION_MESSAGE,
   getPeopleChainEndpoints,
   hasPersistedSession
-} from "./chunk-HGEYWE2P.js";
+} from "./chunk-PKQOUCPD.js";
 import {
   setDeployContext
-} from "./chunk-NEWDQKA3.js";
+} from "./chunk-G676QAN4.js";
 import {
   probeChunks
-} from "./chunk-SHQZFLPN.js";
+} from "./chunk-HUT626G6.js";
 import {
   packSection
 } from "./chunk-C2TS5MER.js";
@@ -53,7 +53,7 @@ import {
   parseDomainName,
   popStatusName,
   verifyNonceAdvanced
-} from "./chunk-T4WUEPAS.js";
+} from "./chunk-VR3LF62E.js";
 import {
   derivePoolAccounts,
   detectTestnet,
@@ -75,7 +75,7 @@ import {
   truncateAddress,
   withDeploySpan,
   withSpan
-} from "./chunk-ZL7KBV52.js";
+} from "./chunk-2BTYPNYW.js";
 import {
   DEFAULT_ENV_ID,
   getPopSelfServeConfig,
@@ -1958,25 +1958,36 @@ async function deploy(content, domainName = null, options = {}) {
   });
   let resolvedUserSession = void 0;
   if (signerChoice === "resolve") {
-    const { resolveSigner: resolveSignerFn } = await import("./auth/index.js");
+    const { resolveDeployActors } = await import("./deploy-actors.js");
     const { getAuthClient } = await import("./auth-config.js");
     const authClient = await getAuthClient(envId);
+    const isTestnetEnv = envNetwork === "testnet";
+    const transferEnabled = options.transferToSignedInUser !== false;
     try {
-      const resolved = await resolveSignerFn(authClient, { suri: options.suri });
-      options = { ...options, signer: resolved.signer, signerAddress: resolved.address };
-      sessionCleanup = resolved.destroy.bind(resolved);
-      console.log(`   Using ${resolved.source} signer: ${resolved.address}`);
-      if (resolved.source === "session") resolvedUserSession = resolved;
+      const actors = await resolveDeployActors(authClient, {
+        suri: options.suri,
+        transferEnabled,
+        isTestnet: isTestnetEnv,
+        sessionPresent: hasSession
+      });
+      options = {
+        ...options,
+        signer: actors.worker.signer,
+        signerAddress: actors.worker.address,
+        ...actors.recipientH160 ? { transferTo: actors.recipientH160 } : {}
+      };
+      sessionCleanup = actors.worker.destroy.bind(actors.worker);
+      if (actors.worker.source === "session") resolvedUserSession = actors.worker;
+      if (actors.recipientH160) {
+        console.log(`   Worker: ${actors.worker.source} signer ${actors.worker.address} \u2192 will transfer ${domainName ?? "the name"} to ${actors.recipientH160}`);
+      } else {
+        console.log(`   Using ${actors.worker.source} signer: ${actors.worker.address}`);
+      }
     } catch (e) {
       if (options.suri) throw e;
       if (e?.name === "SignerNotAvailableError") {
-        if (hasSession) {
-          console.error(STALE_SESSION_MESSAGE);
-        } else {
-          console.log(
-            "   Login session unavailable or expired \u2014 falling back to pool. Run `bulletin-deploy login` to use your identity."
-          );
-        }
+        if (hasSession) console.error(STALE_SESSION_MESSAGE);
+        else console.log("   Login session unavailable or expired \u2014 falling back to pool. Run `bulletin-deploy login` to use your identity.");
       } else {
         throw e;
       }
@@ -2040,6 +2051,7 @@ async function deploy(content, domainName = null, options = {}) {
       setDeployAttribute("deploy.subdomain", String(parsed?.isSubdomain ?? false));
       if (envNetwork) setDeployAttribute("deploy.network", envNetwork);
       if (envSource) setDeployAttribute("deploy.environments_source", envSource);
+      setDeployAttribute("deploy.transfer.enabled", options.transferTo ? "true" : "false");
       let cid;
       let ipfsCid;
       let mirrorPromise = Promise.resolve(null);
@@ -2085,7 +2097,7 @@ async function deploy(content, domainName = null, options = {}) {
         } else {
           preflightPublishNeeded = false;
           try {
-            dotnsPreflight = await preflight.preflight(name);
+            dotnsPreflight = await preflight.preflight(name, { transferRecipientH160: options.transferTo });
             previousContenthashCid = await readPreviousContenthashSafe(preflight, name);
             setDeployAttribute("deploy.incremental", previousContenthashCid ? "true" : "false");
             if (options.publish && parsed && !parsed.isSubdomain) {
@@ -2332,7 +2344,12 @@ async function deploy(content, domainName = null, options = {}) {
           const dotns = new DotNS();
           await dotns.connect({
             ...resolveDotnsConnectOptions(options, envAssetHub, envAutoAccountMapping, envContracts, envNativeToEthRatio, envId, envPopSelfServe, envRegisterStorageDeposit),
-            ...options.signer && options.signerAddress ? { onPhoneSigningRequired: (label) => console.log(`
+            // Phone-signing reminders apply only to a genuine session/mobile
+            // signer. In the transfer flow the injected signer is a LOCAL worker
+            // (zero mobile sigs), distinguished by options.transferTo being set —
+            // suppress the reminder there or it falsely tells the user to check
+            // their phone for a tx signed locally.
+            ...options.signer && options.signerAddress && !options.transferTo ? { onPhoneSigningRequired: (label) => console.log(`
    Check your phone \u2192 ${label}`) } : {}
           });
           if (parsed?.isSubdomain) {
@@ -2363,6 +2380,31 @@ async function deploy(content, domainName = null, options = {}) {
               await publish(dotns, parsed, options.failOnPublishError);
             }
           }
+          if (options.transferTo) {
+            const transferTo = options.transferTo;
+            await withSpan("deploy.transfer", `3. transfer ${name}.dot`, { "deploy.transfer.to": transferTo }, async () => {
+              setDeployAttribute("deploy.transfer.worker", truncateAddress(options.signerAddress ?? ""));
+              setDeployAttribute("deploy.transfer.to", transferTo);
+              try {
+                const transferRes = await dotns.transferName(name, transferTo, (s) => console.log(`   ${s}`));
+                setDeployAttribute("deploy.transfer.status", transferRes.status);
+                if (transferRes.feeWei != null) setDeployAttribute("deploy.transfer.fee_wei", transferRes.feeWei.toString());
+                console.log(`   Handed ${name}.dot to ${transferTo} (${transferRes.status}${transferRes.txHash ? `, tx ${transferRes.txHash}` : ""}).`);
+              } catch (e) {
+                setDeployAttribute("deploy.transfer.status", "failed");
+                const recover = `bulletin-deploy transfer ${name} --env ${envId}` + (options.suri ? ` --mnemonic "<your worker key>"` : "");
+                try {
+                  dotns.disconnect();
+                } catch {
+                }
+                throw new NonRetryableError(
+                  `Deploy succeeded but the handover to ${transferTo} failed: ${e.message}
+   The name is owned by the worker with content set. Recover with:
+   ${recover}`
+                );
+              }
+            });
+          }
           dotns.disconnect();
         });
         await withSpan("deploy.p2p-check", "3. p2p-check", { "deploy.domain": name }, async () => {

package/dist/{chunk-NEWDQKA3.js → chunk-G676QAN4.js}

@@ -2,11 +2,11 @@ import {
   classifyErrorArea,
   isInteractive,
   promptYesNo
-} from "./chunk-LIAEGW76.js";
+} from "./chunk-MI5B3UCM.js";
 import {
   VERSION,
   getCurrentSentryTraceId
-} from "./chunk-ZL7KBV52.js";
+} from "./chunk-2BTYPNYW.js";
 
 // src/bug-report.ts
 import { execSync, execFileSync } from "child_process";

package/dist/{chunk-6GGRUTTC.js → chunk-GJTVPP7E.js}

@@ -3,7 +3,7 @@ import {
 } from "./chunk-GRPLHUYC.js";
 import {
   DOT_DAPP_ID
-} from "./chunk-HGEYWE2P.js";
+} from "./chunk-PKQOUCPD.js";
 
 // src/sss-allowance-cache.ts
 import { mkdir, readFile, writeFile, unlink } from "fs/promises";

package/dist/{chunk-SHQZFLPN.js → chunk-HUT626G6.js}

@@ -1,6 +1,6 @@
 import {
   captureWarning
-} from "./chunk-ZL7KBV52.js";
+} from "./chunk-2BTYPNYW.js";
 
 // src/chunk-probe.ts
 import { Twox128, Blake2128Concat, decAnyMetadata, unifyMetadata } from "@polkadot-api/substrate-bindings";

package/dist/{chunk-LIAEGW76.js → chunk-MI5B3UCM.js}

@@ -1,6 +1,6 @@
 import {
   VERSION
-} from "./chunk-ZL7KBV52.js";
+} from "./chunk-2BTYPNYW.js";
 
 // src/version-check.ts
 import { execSync, execFileSync } from "child_process";

package/dist/{chunk-HGEYWE2P.js → chunk-PKQOUCPD.js}

@@ -1,6 +1,6 @@
 import {
   VERSION
-} from "./chunk-ZL7KBV52.js";
+} from "./chunk-2BTYPNYW.js";
 import {
   loadEnvironments
 } from "./chunk-GL3U7K2B.js";

package/dist/{chunk-2XBLLNDK.js → chunk-Q3RIJ7PU.js}

@@ -6,10 +6,10 @@ import {
   resolveDotnsConnectOptions,
   storeDirectory,
   storeFile
-} from "./chunk-NRDXKYWQ.js";
+} from "./chunk-DY7RVMM5.js";
 import {
   DotNS
-} from "./chunk-T4WUEPAS.js";
+} from "./chunk-VR3LF62E.js";
 import {
   getPopSelfServeConfig,
   loadEnvironments,

package/dist/{chunk-T4WUEPAS.js → chunk-VR3LF62E.js}

@@ -8,7 +8,7 @@ import {
   setDeploySentryTag,
   truncateAddress,
   withSpan
-} from "./chunk-ZL7KBV52.js";
+} from "./chunk-2BTYPNYW.js";
 import {
   validateContractAddresses
 } from "./chunk-GL3U7K2B.js";
@@ -60,9 +60,16 @@ var FEE_FLOOR_REGISTER = ONE_PAS / 10n;
 var TOP_UP_TARGET = ONE_PAS / 2n;
 var SOURCE_BUFFER = ONE_PAS;
 var MINIMUM_REGISTER_STORAGE_DEPOSIT = 2000000000000n;
-var REGISTER_RENT_PRICE_WEI = 10n * 10n ** 18n;
-function bufferedRentNative(nativeToEthRatio) {
-  return REGISTER_RENT_PRICE_WEI * 110n / (100n * nativeToEthRatio);
+function registerDepositWei(userStatus, startingPriceWei) {
+  return userStatus === ProofOfPersonhoodStatus.NoStatus ? startingPriceWei : 0n;
+}
+function bufferedWeiToNative(weiValue, nativeToEthRatio) {
+  return weiToNative(weiValue * 110n / 100n, nativeToEthRatio);
+}
+function weiToNative(feeWei, nativeToEthRatio) {
+  if (feeWei === 0n) return 0n;
+  const native = feeWei / nativeToEthRatio;
+  return feeWei % nativeToEthRatio === 0n ? native : native + 1n;
 }
 var REPROVE_FEE_ESTIMATE = ONE_PAS / 100n;
 var REPROVE_FEE_SAFETY_MARGIN_PCT = 110n;
@@ -78,13 +85,13 @@ function resolveNativeTokenSymbol(envId) {
   if (envId.includes("rococo")) return "ROC";
   return "PAS";
 }
-function feeFloorFor(plannedAction, storageDeposit = MINIMUM_REGISTER_STORAGE_DEPOSIT, rentPriceNative = 0n) {
-  if (plannedAction === "already-owned-by-us") return FEE_FLOOR_OWNED;
-  return FEE_FLOOR_REGISTER + storageDeposit + rentPriceNative;
+function feeFloorFor(plannedAction, storageDeposit = MINIMUM_REGISTER_STORAGE_DEPOSIT, rentPriceNative = 0n, transferFeeNative = 0n) {
+  if (plannedAction === "already-owned-by-us") return FEE_FLOOR_OWNED + transferFeeNative;
+  return FEE_FLOOR_REGISTER + storageDeposit + rentPriceNative + transferFeeNative;
 }
-function topUpTargetFor(plannedAction, storageDeposit = MINIMUM_REGISTER_STORAGE_DEPOSIT, rentPriceNative = 0n) {
-  if (plannedAction === "already-owned-by-us") return TOP_UP_TARGET;
-  return TOP_UP_TARGET + storageDeposit + rentPriceNative;
+function topUpTargetFor(plannedAction, storageDeposit = MINIMUM_REGISTER_STORAGE_DEPOSIT, rentPriceNative = 0n, transferFeeNative = 0n) {
+  if (plannedAction === "already-owned-by-us") return TOP_UP_TARGET + transferFeeNative;
+  return TOP_UP_TARGET + storageDeposit + rentPriceNative + transferFeeNative;
 }
 var RPC_ENDPOINTS = [
   "wss://asset-hub-paseo.dotters.network",
@@ -130,6 +137,9 @@ function dotnsRetryBackoffMs(attempt, rand = Math.random) {
   const ceil = Math.min(DOTNS_RETRY_BASE_MS * 2 ** (attempt - 1), DOTNS_RETRY_MAX_MS);
   return Math.round(ceil * (0.5 + rand() * 0.5));
 }
+function shouldRetryTxAttempt(attempt, maxAttempts, decision) {
+  return decision === "retry" && attempt < maxAttempts;
+}
 function makeRetryStatusFilter(sink) {
   let buffered = false;
   return {
@@ -211,12 +221,18 @@ var DOTNS_REGISTRAR_CONTROLLER_ABI = [
 var DOTNS_REGISTRAR_ABI = [
   { inputs: [{ name: "tokenId", type: "uint256" }], name: "ownerOf", outputs: [{ name: "", type: "address" }], stateMutability: "view", type: "function" }
 ];
+var DOTNS_REGISTRAR_TRANSFER_ABI = [
+  ...DOTNS_REGISTRAR_ABI,
+  { inputs: [{ name: "from", type: "address" }, { name: "to", type: "address" }, { name: "tokenId", type: "uint256" }], name: "transferFrom", outputs: [], stateMutability: "payable", type: "function" }
+];
 var POP_RULES_ABI = [
   { inputs: [{ name: "name", type: "string" }], name: "classifyName", outputs: [{ name: "requirement", type: "uint8" }, { name: "message", type: "string" }], stateMutability: "pure", type: "function" },
   { inputs: [{ name: "name", type: "string" }], name: "price", outputs: [{ name: "", type: "uint256" }], stateMutability: "view", type: "function" },
   { inputs: [{ name: "name", type: "string" }, { name: "userAddress", type: "address" }], name: "priceWithCheck", outputs: [{ name: "metadata", type: "tuple", components: [{ name: "price", type: "uint256" }, { name: "status", type: "uint8" }, { name: "userStatus", type: "uint8" }, { name: "message", type: "string" }] }], stateMutability: "view", type: "function" },
   { inputs: [{ name: "name", type: "string" }, { name: "userAddress", type: "address" }], name: "priceWithoutCheck", outputs: [{ name: "metadata", type: "tuple", components: [{ name: "price", type: "uint256" }, { name: "status", type: "uint8" }, { name: "userStatus", type: "uint8" }, { name: "message", type: "string" }] }], stateMutability: "view", type: "function" },
-  { inputs: [{ name: "name", type: "string" }], name: "isBaseNameReserved", outputs: [{ name: "isReserved", type: "bool" }, { name: "reservationOwner", type: "address" }, { name: "expiryTimestamp", type: "uint64" }], stateMutability: "view", type: "function" }
+  { inputs: [{ name: "name", type: "string" }], name: "isBaseNameReserved", outputs: [{ name: "isReserved", type: "bool" }, { name: "reservationOwner", type: "address" }, { name: "expiryTimestamp", type: "uint64" }], stateMutability: "view", type: "function" },
+  { inputs: [{ name: "name", type: "string" }, { name: "from", type: "address" }, { name: "to", type: "address" }], name: "transferFloor", outputs: [{ name: "", type: "uint256" }], stateMutability: "view", type: "function" },
+  { inputs: [], name: "startingPrice", outputs: [{ name: "", type: "uint256" }], stateMutability: "view", type: "function" }
 ];
 var PERSONHOOD_ABI = [
   {
@@ -757,9 +773,13 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
       } catch (e) {
         lastError = e;
         const decision = classifyTxRetryDecision(e);
-        if (decision === "abort" || attempt === DOTNS_TX_MAX_ATTEMPTS) break;
-        const ms = dotnsRetryBackoffMs(attempt);
         const msg = e?.message ?? String(e);
+        if (!shouldRetryTxAttempt(attempt, DOTNS_TX_MAX_ATTEMPTS, decision)) {
+          const reason = decision === "abort" ? "not retryable" : "out of attempts";
+          console.log(`   ${label}: attempt ${attempt}/${DOTNS_TX_MAX_ATTEMPTS} failed (${msg}) \u2014 giving up (${reason})`);
+          break;
+        }
+        const ms = dotnsRetryBackoffMs(attempt);
         console.log(`   ${label}: attempt ${attempt}/${DOTNS_TX_MAX_ATTEMPTS} failed (${msg}), retrying in ${ms}ms\u2026`);
         await new Promise((r) => setTimeout(r, ms));
       }
@@ -1453,6 +1473,49 @@ var DotNS = class {
       return { owned: false, owner: null };
     }
   }
+  /** Live transfer-fee quote. transferFloor is a pure PopRules view — it
+   *  classifies the label and reads both tiers, so it works BEFORE the name is
+   *  registered (unlike quoteTransferFee, which reverts on an unregistered token). */
+  async quoteTransferFloorNative(label, fromH160, toH160) {
+    this.ensureConnected();
+    const feeWei = await withTimeout(
+      this.contractCall(this._contracts.POP_RULES, POP_RULES_ABI, "transferFloor", [validateDomainLabel(label), fromH160, toH160]),
+      3e4,
+      "transferFloor"
+    );
+    return { feeWei, feeNative: weiToNative(feeWei, this._nativeToEthRatio) };
+  }
+  /** Hand `label`.dot from the connected signer (the worker, current owner) to
+   *  `toH160`, paying the transferFloor friction fee. Idempotent: a no-op if the
+   *  recipient already owns it; errors if a third party does. */
+  async transferName(label, toH160, statusCallback = () => {
+  }) {
+    this.ensureConnected();
+    const validated = validateDomainLabel(label);
+    const tokenId = computeDomainTokenId(validated);
+    const owner = await withTimeout(this.contractCall(this._contracts.DOTNS_REGISTRAR, DOTNS_REGISTRAR_TRANSFER_ABI, "ownerOf", [tokenId]), 3e4, "ownerOf");
+    if (owner.toLowerCase() === toH160.toLowerCase()) {
+      statusCallback("already owned by recipient");
+      return { status: "skipped-already-owned" };
+    }
+    if (owner.toLowerCase() !== this.evmAddress.toLowerCase()) {
+      throw new Error(`Cannot transfer ${validated}.dot: it is owned by ${owner}, not the worker ${this.evmAddress}.`);
+    }
+    const { feeWei, feeNative } = await this.quoteTransferFloorNative(validated, this.evmAddress, toH160);
+    const txRes = await this.contractTransaction(
+      this._contracts.DOTNS_REGISTRAR,
+      feeNative,
+      DOTNS_REGISTRAR_TRANSFER_ABI,
+      "transferFrom",
+      [this.evmAddress, toH160, tokenId],
+      statusCallback
+    );
+    const after = await withTimeout(this.contractCall(this._contracts.DOTNS_REGISTRAR, DOTNS_REGISTRAR_TRANSFER_ABI, "ownerOf", [tokenId]), 3e4, "ownerOf");
+    if (after.toLowerCase() !== toH160.toLowerCase()) {
+      throw new Error(`Transfer of ${validated}.dot did not land: owner is ${after}, expected ${toH160}.`);
+    }
+    return { status: "ok", txHash: txRes.kind === TX_KIND_HASH ? txRes.hash : void 0, feeWei };
+  }
   async getUserPopStatus(ownerAddress = null) {
     if (this._userPopStatusOverrideForTest !== null) {
       const result = this._userPopStatusOverrideForTest;
@@ -2161,10 +2224,10 @@ var DotNS = class {
   // View-only readiness check. Runs every chain read needed to predict whether
   // `register(label)` will succeed, so the caller can fail-fast BEFORE the
   // Bulletin chunk upload. Never writes to chain. See issue #100.
-  async preflight(label) {
-    return this._preflightInternal(label, false);
+  async preflight(label, opts = {}) {
+    return this._preflightInternal(label, false, opts.transferRecipientH160);
   }
-  async _preflightInternal(label, reproveAttempted) {
+  async _preflightInternal(label, reproveAttempted, transferRecipientH160) {
     return withSpan("deploy.dotns.preflight", `preflight ${label}.dot`, {}, async () => {
       setDeployAttribute("deploy.dotns.reprove.auto", "false");
       this.ensureConnected();
@@ -2223,6 +2286,13 @@ var DotNS = class {
           signerFreeBalance
         };
       }
+      let transferFeeNative = 0n;
+      if (transferRecipientH160) {
+        try {
+          ({ feeNative: transferFeeNative } = await this.quoteTransferFloorNative(validated, this.evmAddress, transferRecipientH160));
+        } catch {
+        }
+      }
       if (existingOwner !== null && existingOwner === selfAddress) {
         return await this.gateOnFeeBalance({
           label: validated,
@@ -2238,7 +2308,7 @@ var DotNS = class {
           canProceed: true,
           plannedAction: "already-owned-by-us",
           needsPopUpgrade: false
-        }, signerFreeBalance, isTestnet);
+        }, signerFreeBalance, isTestnet, transferFeeNative);
       }
       if (isReserved && reservationOwner !== selfAddress) {
         return {
@@ -2307,7 +2377,7 @@ var DotNS = class {
             }
             if (reproveSucceeded) {
               console.log(`   Continuing with registration of ${validated}.dot.`);
-              return this._preflightInternal(label, true);
+              return this._preflightInternal(label, true, transferRecipientH160);
             }
           }
           const remediationMessage = formatPersonhoodRemediation(aliasState, this._popSelfServe, this._environmentId);
@@ -2377,7 +2447,7 @@ var DotNS = class {
         plannedAction: "register",
         needsPopUpgrade: false,
         targetPopStatus
-      }, signerFreeBalance, isTestnet);
+      }, signerFreeBalance, isTestnet, transferFeeNative);
     });
   }
   // Final preflight stage: check the DotNS signer can pay tx fees on the
@@ -2386,15 +2456,23 @@ var DotNS = class {
   // phrase's Alice or Bob if the signer is short. Replaces the original
   // canProceed:true result with an actionable canProceed:false when even the
   // top-up can't get the signer above the threshold.
-  async gateOnFeeBalance(candidate, signerFreeBalance, isTestnet) {
-    const rentPriceNative = candidate.plannedAction === "register" ? bufferedRentNative(this._nativeToEthRatio) : 0n;
-    const feeFloor = feeFloorFor(candidate.plannedAction, this._registerStorageDeposit, rentPriceNative);
+  async gateOnFeeBalance(candidate, signerFreeBalance, isTestnet, transferFeeNative = 0n) {
+    let rentPriceNative = 0n;
+    if (candidate.plannedAction === "register" && candidate.userStatus === ProofOfPersonhoodStatus.NoStatus) {
+      const startingPriceWei = await withTimeout(
+        this.contractCall(this._contracts.POP_RULES, POP_RULES_ABI, "startingPrice", []),
+        3e4,
+        "startingPrice"
+      );
+      rentPriceNative = bufferedWeiToNative(startingPriceWei, this._nativeToEthRatio);
+    }
+    const feeFloor = feeFloorFor(candidate.plannedAction, this._registerStorageDeposit, rentPriceNative, transferFeeNative);
     let effectiveBalance = signerFreeBalance;
     let toppedUp;
     if (effectiveBalance < feeFloor && isTestnet) {
       setDeployAttribute("deploy.dotns.signer_below_floor", "true");
       console.log(`   DotNS signer ${this.substrateAddress?.slice(0, 8)}... balance ${fmtPas(effectiveBalance)} PAS < ${fmtPas(feeFloor)} PAS floor \u2014 attempting testnet auto top-up...`);
-      const result = await this.attemptTestnetTopUp(this.substrateAddress, topUpTargetFor(candidate.plannedAction, this._registerStorageDeposit, rentPriceNative));
+      const result = await this.attemptTestnetTopUp(this.substrateAddress, topUpTargetFor(candidate.plannedAction, this._registerStorageDeposit, rentPriceNative, transferFeeNative));
       if (result) {
         console.log(`   Topped up ${fmtPas(result.transferred)} PAS from ${result.source}`);
         effectiveBalance += result.transferred;
@@ -2565,6 +2643,9 @@ export {
   TX_KIND_NONCE_ADVANCED,
   ATTR_TX_RESOLUTION_KIND,
   MINIMUM_REGISTER_STORAGE_DEPOSIT,
+  registerDepositWei,
+  bufferedWeiToNative,
+  weiToNative,
   fmtPas,
   feeFloorFor,
   RPC_ENDPOINTS,
@@ -2581,6 +2662,7 @@ export {
   DOTNS_TX_MAX_ATTEMPTS,
   classifyTxRetryDecision,
   dotnsRetryBackoffMs,
+  shouldRetryTxAttempt,
   makeRetryStatusFilter,
   DEFAULT_MNEMONIC,
   fetchNonce,

package/dist/{chunk-ELX3YZQG.js → chunk-ZJCTG7HF.js}

@@ -6,7 +6,7 @@ import * as path from "path";
 // package.json
 var package_default = {
   name: "@parity/product-deploy",
-  version: "0.9.0-rc.6",
+  version: "0.10.0-rc.0",
   private: false,
   repository: {
     type: "git",
@@ -50,11 +50,11 @@ var package_default = {
     "tools/release-retry-wrapper.mjs"
   ],
   scripts: {
-    build: "tsup src/index.ts src/deploy.ts src/dotns.ts src/pool.ts src/telemetry.ts src/memory-report.ts src/merkle.ts src/gh-pages-mirror.ts src/version-check.ts src/bug-report.ts src/run-state.ts src/environments.ts src/errors.ts src/manifest.ts src/chunk-probe.ts src/manifest-embed.ts src/manifest-fetch.ts src/manifest-roundtrip.ts src/incremental-stats.ts src/chunker.ts src/personhood/encoding.ts src/personhood/hashing.ts src/personhood/constants.ts src/personhood/member-key.ts src/personhood/people-client.ts src/personhood/proof-validity.ts src/personhood/reprove.ts src/personhood/bind-personal-id.ts src/personhood/claim-pgas.ts src/personhood/bind-paid-alias.ts src/personhood/bootstrap.ts src/personhood/chain-prereqs.ts src/manifest/types.ts src/manifest/schema.ts src/manifest/byte-budget.ts src/manifest/config-load.ts src/manifest/publish.ts src/auth/index.ts src/auth/vendor/index.ts src/auth/vendor/ui/index.ts src/auth-config.ts src/commands/login.ts src/commands/logout.ts src/commands/whoami.ts src/storage-signer.ts src/spinner.ts src/sss-allowance.ts src/sss-allowance-cache.ts --format esm --dts --clean --target node22",
+    build: "tsup src/index.ts src/deploy.ts src/dotns.ts src/pool.ts src/telemetry.ts src/memory-report.ts src/merkle.ts src/gh-pages-mirror.ts src/version-check.ts src/bug-report.ts src/run-state.ts src/environments.ts src/errors.ts src/manifest.ts src/chunk-probe.ts src/manifest-embed.ts src/manifest-fetch.ts src/manifest-roundtrip.ts src/incremental-stats.ts src/chunker.ts src/personhood/encoding.ts src/personhood/hashing.ts src/personhood/constants.ts src/personhood/member-key.ts src/personhood/people-client.ts src/personhood/proof-validity.ts src/personhood/reprove.ts src/personhood/bind-personal-id.ts src/personhood/claim-pgas.ts src/personhood/bind-paid-alias.ts src/personhood/bootstrap.ts src/personhood/chain-prereqs.ts src/manifest/types.ts src/manifest/schema.ts src/manifest/byte-budget.ts src/manifest/config-load.ts src/manifest/publish.ts src/auth/index.ts src/auth/vendor/index.ts src/auth/vendor/ui/index.ts src/auth-config.ts src/commands/login.ts src/commands/logout.ts src/commands/whoami.ts src/commands/transfer.ts src/storage-signer.ts src/spinner.ts src/sss-allowance.ts src/sss-allowance-cache.ts src/deploy-actors.ts --format esm --dts --clean --target node22",
     "refresh-environments": "node scripts/refresh-environments.mjs",
     postinstall: "patch-package || true",
     prepare: "npm run build",
-    test: "npm run build && node --test test/test.js test/cli-help.test.js test/helpers/e2e-helpers.test.js test/environments.test.js test/refresh-environments.test.js test/chunk-sharing-report.test.js test/product-manifest.test.js test/cache-savings-totals.test.js test/error-pattern-signature.test.js test/exit-codes.test.js test/probe-env-health.test.js test/e2e-chain-calls.test.js test/auth-config.test.js test/whoami.test.js test/login.test.js test/logout.test.js test/auth-resolve.test.js test/storage-signer.test.js test/spinner.test.js test/sss-allowance.test.js test/sss-allowance-cache.test.js && npm run test:vendor",
+    test: "npm run build && node --test test/test.js test/cli-help.test.js test/helpers/e2e-helpers.test.js test/environments.test.js test/refresh-environments.test.js test/chunk-sharing-report.test.js test/product-manifest.test.js test/cache-savings-totals.test.js test/error-pattern-signature.test.js test/exit-codes.test.js test/probe-env-health.test.js test/e2e-chain-calls.test.js test/auth-config.test.js test/whoami.test.js test/login.test.js test/logout.test.js test/auth-resolve.test.js test/storage-signer.test.js test/spinner.test.js test/sss-allowance.test.js test/sss-allowance-cache.test.js test/dotns-transfer.test.js test/deploy-actors.test.js test/transfer-command.test.js test/dotns-register-fee.test.js && npm run test:vendor",
     "test:e2e": "npm run build && node --test test/e2e.test.js",
     "test:e2e:smoke": "bash scripts/e2e-pass.sh smoke",
     "test:e2e:pr": "bash scripts/e2e-pass.sh pr",

package/dist/chunk-probe.js

@@ -5,9 +5,9 @@ import {
   _decodeStorageValue,
   _resetProbeSession,
   probeChunks
-} from "./chunk-SHQZFLPN.js";
-import "./chunk-ZL7KBV52.js";
-import "./chunk-ELX3YZQG.js";
+} from "./chunk-HUT626G6.js";
+import "./chunk-2BTYPNYW.js";
+import "./chunk-ZJCTG7HF.js";
 export {
   ChainProbeCrossValidationError,
   ChainProbeMetadataError,