npm - @private.me/xbind - Versions diffs - 1.2.0 - Mend

@private.me/xbind 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

package/AGENTS.md +778 -0
package/LICENSE.md +27 -0
package/README.md +400 -0
package/dist-standalone/_deps/crypto/base64.d.ts +29 -0
package/dist-standalone/_deps/crypto/base64.js +97 -0
package/dist-standalone/_deps/crypto/cjs/base64.js +103 -0
package/dist-standalone/_deps/crypto/cjs/errors.js +119 -0
package/dist-standalone/_deps/crypto/cjs/hmac.js +71 -0
package/dist-standalone/_deps/crypto/cjs/index.js +86 -0
package/dist-standalone/_deps/crypto/cjs/padding.js +57 -0
package/dist-standalone/_deps/crypto/cjs/share-header.js +68 -0
package/dist-standalone/_deps/crypto/cjs/shares.js +152 -0
package/dist-standalone/_deps/crypto/cjs/tlv.js +199 -0
package/dist-standalone/_deps/crypto/cjs/uuid.js +61 -0
package/dist-standalone/_deps/crypto/cjs/verify.js +24 -0
package/dist-standalone/_deps/crypto/cjs/xorida.js +221 -0
package/dist-standalone/_deps/crypto/errors.d.ts +51 -0
package/dist-standalone/_deps/crypto/errors.js +109 -0
package/dist-standalone/_deps/crypto/hmac.d.ts +39 -0
package/dist-standalone/_deps/crypto/hmac.js +66 -0
package/dist-standalone/_deps/crypto/index.d.ts +20 -0
package/dist-standalone/_deps/crypto/index.js +45 -0
package/dist-standalone/_deps/crypto/padding.d.ts +19 -0
package/dist-standalone/_deps/crypto/padding.js +53 -0
package/dist-standalone/_deps/crypto/share-header.d.ts +44 -0
package/dist-standalone/_deps/crypto/share-header.js +63 -0
package/dist-standalone/_deps/crypto/shares.d.ts +27 -0
package/dist-standalone/_deps/crypto/shares.js +148 -0
package/dist-standalone/_deps/crypto/tlv.d.ts +26 -0
package/dist-standalone/_deps/crypto/tlv.js +195 -0
package/dist-standalone/_deps/crypto/uuid.d.ts +22 -0
package/dist-standalone/_deps/crypto/uuid.js +56 -0
package/dist-standalone/_deps/crypto/verify.d.ts +15 -0
package/dist-standalone/_deps/crypto/verify.js +15 -0
package/dist-standalone/_deps/crypto/xorida.d.ts +44 -0
package/dist-standalone/_deps/crypto/xorida.js +215 -0
package/dist-standalone/_deps/mldsa-wasm/LICENSE +24 -0
package/dist-standalone/_deps/mldsa-wasm/dist/mldsa.js +1920 -0
package/dist-standalone/_deps/mldsa-wasm/package.json +46 -0
package/dist-standalone/_deps/mldsa-wasm/types/mldsa.d.ts +30 -0
package/dist-standalone/_deps/shared/cjs/errors.js +582 -0
package/dist-standalone/_deps/shared/cjs/index.js +492 -0
package/dist-standalone/_deps/shared/cjs/package.json +1 -0
package/dist-standalone/_deps/shared/cjs/types.js +403 -0
package/dist-standalone/_deps/shared/errors.d.ts +48 -0
package/dist-standalone/_deps/shared/errors.d.ts.map +1 -0
package/dist-standalone/_deps/shared/errors.js +192 -0
package/dist-standalone/_deps/shared/errors.js.map +1 -0
package/dist-standalone/_deps/shared/index.d.ts +4 -0
package/dist-standalone/_deps/shared/index.d.ts.map +1 -0
package/dist-standalone/_deps/shared/index.js +78 -0
package/dist-standalone/_deps/shared/index.js.map +1 -0
package/dist-standalone/_deps/shared/types.d.ts +1097 -0
package/dist-standalone/_deps/shared/types.d.ts.map +1 -0
package/dist-standalone/_deps/shared/types.js +89 -0
package/dist-standalone/_deps/shared/types.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.d.ts +115 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.js +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.d.ts +13 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.js +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/package.json +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.d.ts +39 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.js +83 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.d.ts +99 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.js +143 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.d.ts +32 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.js +119 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.d.ts +109 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.js +8 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/errors.d.ts +115 -0
package/dist-standalone/_deps/ux-helpers/errors.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/errors.js +253 -0
package/dist-standalone/_deps/ux-helpers/errors.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/index.d.ts +13 -0
package/dist-standalone/_deps/ux-helpers/index.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/index.js +16 -0
package/dist-standalone/_deps/ux-helpers/index.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/pagination.d.ts +39 -0
package/dist-standalone/_deps/ux-helpers/pagination.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/pagination.js +79 -0
package/dist-standalone/_deps/ux-helpers/pagination.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/progress.d.ts +99 -0
package/dist-standalone/_deps/ux-helpers/progress.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/progress.js +138 -0
package/dist-standalone/_deps/ux-helpers/progress.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/search.d.ts +32 -0
package/dist-standalone/_deps/ux-helpers/search.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/search.js +116 -0
package/dist-standalone/_deps/ux-helpers/search.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/types.d.ts +109 -0
package/dist-standalone/_deps/ux-helpers/types.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/types.js +7 -0
package/dist-standalone/_deps/ux-helpers/types.js.map +1 -0
package/dist-standalone/_deps/xchange/auto-accept.d.ts +127 -0
package/dist-standalone/_deps/xchange/auto-accept.js +1 -0
package/dist-standalone/_deps/xchange/cjs/auto-accept.js +1 -0
package/dist-standalone/_deps/xchange/cjs/errors.js +1 -0
package/dist-standalone/_deps/xchange/cjs/index.js +1 -0
package/dist-standalone/_deps/xchange/cjs/invite-client.js +1 -0
package/dist-standalone/_deps/xchange/cjs/lazy-init.js +1 -0
package/dist-standalone/_deps/xchange/cjs/package.json +1 -0
package/dist-standalone/_deps/xchange/cjs/trust-integration.js +1 -0
package/dist-standalone/_deps/xchange/cjs/xchange.js +1 -0
package/dist-standalone/_deps/xchange/errors.d.ts +69 -0
package/dist-standalone/_deps/xchange/errors.js +1 -0
package/dist-standalone/_deps/xchange/index.d.ts +15 -0
package/dist-standalone/_deps/xchange/index.js +1 -0
package/dist-standalone/_deps/xchange/invite-client.d.ts +178 -0
package/dist-standalone/_deps/xchange/invite-client.js +1 -0
package/dist-standalone/_deps/xchange/lazy-init.d.ts +176 -0
package/dist-standalone/_deps/xchange/lazy-init.js +1 -0
package/dist-standalone/_deps/xchange/trust-integration.d.ts +102 -0
package/dist-standalone/_deps/xchange/trust-integration.js +1 -0
package/dist-standalone/_deps/xchange/xchange.d.ts +60 -0
package/dist-standalone/_deps/xchange/xchange.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/discovery.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/errors.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/index.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/package.json +1 -0
package/dist-standalone/_deps/xregistry/cjs/registry.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/schema.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/types.js +1 -0
package/dist-standalone/_deps/xregistry/discovery.d.ts +126 -0
package/dist-standalone/_deps/xregistry/discovery.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/discovery.js +1 -0
package/dist-standalone/_deps/xregistry/discovery.js.map +1 -0
package/dist-standalone/_deps/xregistry/errors.d.ts +41 -0
package/dist-standalone/_deps/xregistry/errors.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/errors.js +1 -0
package/dist-standalone/_deps/xregistry/errors.js.map +1 -0
package/dist-standalone/_deps/xregistry/index.d.ts +8 -0
package/dist-standalone/_deps/xregistry/index.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/index.js +1 -0
package/dist-standalone/_deps/xregistry/index.js.map +1 -0
package/dist-standalone/_deps/xregistry/registry.d.ts +85 -0
package/dist-standalone/_deps/xregistry/registry.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/registry.js +1 -0
package/dist-standalone/_deps/xregistry/registry.js.map +1 -0
package/dist-standalone/_deps/xregistry/schema.d.ts +81 -0
package/dist-standalone/_deps/xregistry/schema.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/schema.js +1 -0
package/dist-standalone/_deps/xregistry/schema.js.map +1 -0
package/dist-standalone/_deps/xregistry/types.d.ts +95 -0
package/dist-standalone/_deps/xregistry/types.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/types.js +1 -0
package/dist-standalone/_deps/xregistry/types.js.map +1 -0
package/dist-standalone/agent-call.d.ts +286 -0
package/dist-standalone/agent-call.js +642 -0
package/dist-standalone/agent-sdk.d.ts +207 -0
package/dist-standalone/agent-sdk.js +328 -0
package/dist-standalone/agent.d.ts +670 -0
package/dist-standalone/agent.js +1529 -0
package/dist-standalone/approval.d.ts +145 -0
package/dist-standalone/approval.js +193 -0
package/dist-standalone/auth.d.ts +75 -0
package/dist-standalone/auth.js +219 -0
package/dist-standalone/auto-accept.d.ts +102 -0
package/dist-standalone/auto-accept.js +229 -0
package/dist-standalone/backup-config.d.ts +150 -0
package/dist-standalone/backup-config.js +201 -0
package/dist-standalone/checkpoint.d.ts +125 -0
package/dist-standalone/checkpoint.js +186 -0
package/dist-standalone/cjs/agent-call.js +651 -0
package/dist-standalone/cjs/agent-sdk.js +332 -0
package/dist-standalone/cjs/agent.js +1566 -0
package/dist-standalone/cjs/approval.js +199 -0
package/dist-standalone/cjs/auth.js +225 -0
package/dist-standalone/cjs/auto-accept.js +233 -0
package/dist-standalone/cjs/backup-config.js +207 -0
package/dist-standalone/cjs/checkpoint.js +193 -0
package/dist-standalone/cjs/cli/init.js +487 -0
package/dist-standalone/cjs/connect.js +312 -0
package/dist-standalone/cjs/did-document.js +101 -0
package/dist-standalone/cjs/did-privateme.js +130 -0
package/dist-standalone/cjs/did-web.js +201 -0
package/dist-standalone/cjs/discovery.js +462 -0
package/dist-standalone/cjs/dual-mode.js +251 -0
package/dist-standalone/cjs/email-templates.js +313 -0
package/dist-standalone/cjs/email-transport.js +239 -0
package/dist-standalone/cjs/envelope.js +510 -0
package/dist-standalone/cjs/errors.js +562 -0
package/dist-standalone/cjs/gateway-state.js +55 -0
package/dist-standalone/cjs/gateway-transport.js +120 -0
package/dist-standalone/cjs/guardrails.js +223 -0
package/dist-standalone/cjs/http-compat.js +272 -0
package/dist-standalone/cjs/identity.js +541 -0
package/dist-standalone/cjs/index.js +224 -0
package/dist-standalone/cjs/invitation.js +421 -0
package/dist-standalone/cjs/invite.js +328 -0
package/dist-standalone/cjs/key-agreement.js +246 -0
package/dist-standalone/cjs/lazy-init.js +300 -0
package/dist-standalone/cjs/mdns-discovery.js +202 -0
package/dist-standalone/cjs/nonce-store.js +66 -0
package/dist-standalone/cjs/package.json +3 -0
package/dist-standalone/cjs/pairing-manager.js +223 -0
package/dist-standalone/cjs/policy.js +320 -0
package/dist-standalone/cjs/redis-nonce-store.js +76 -0
package/dist-standalone/cjs/registry-middleware.js +50 -0
package/dist-standalone/cjs/retry-transport.js +102 -0
package/dist-standalone/cjs/security-policy.js +204 -0
package/dist-standalone/cjs/split-channel.js +177 -0
package/dist-standalone/cjs/subscription-proof.js +230 -0
package/dist-standalone/cjs/succession.js +148 -0
package/dist-standalone/cjs/transport.js +63 -0
package/dist-standalone/cjs/trust-registry.js +742 -0
package/dist-standalone/cjs/verify.js +25 -0
package/dist-standalone/cjs/xfetch.js +252 -0
package/dist-standalone/cli/init.d.ts +63 -0
package/dist-standalone/cli/init.js +450 -0
package/dist-standalone/connect.d.ts +143 -0
package/dist-standalone/connect.js +274 -0
package/dist-standalone/did-document.d.ts +65 -0
package/dist-standalone/did-document.js +96 -0
package/dist-standalone/did-privateme.d.ts +70 -0
package/dist-standalone/did-privateme.js +121 -0
package/dist-standalone/did-web.d.ts +73 -0
package/dist-standalone/did-web.js +196 -0
package/dist-standalone/discovery.d.ts +176 -0
package/dist-standalone/discovery.js +458 -0
package/dist-standalone/dual-mode.d.ts +145 -0
package/dist-standalone/dual-mode.js +247 -0
package/dist-standalone/email-templates.d.ts +41 -0
package/dist-standalone/email-templates.js +309 -0
package/dist-standalone/email-transport.d.ts +139 -0
package/dist-standalone/email-transport.js +232 -0
package/dist-standalone/envelope.d.ts +288 -0
package/dist-standalone/envelope.js +497 -0
package/dist-standalone/errors.d.ts +74 -0
package/dist-standalone/errors.js +548 -0
package/dist-standalone/gateway-state.d.ts +32 -0
package/dist-standalone/gateway-state.js +51 -0
package/dist-standalone/gateway-transport.d.ts +59 -0
package/dist-standalone/gateway-transport.js +116 -0
package/dist-standalone/guardrails.d.ts +136 -0
package/dist-standalone/guardrails.js +216 -0
package/dist-standalone/http-compat.d.ts +150 -0
package/dist-standalone/http-compat.js +267 -0
package/dist-standalone/identity.d.ts +176 -0
package/dist-standalone/identity.js +516 -0
package/dist-standalone/index.d.ts +83 -0
package/dist-standalone/index.js +51 -0
package/dist-standalone/invitation.d.ts +211 -0
package/dist-standalone/invitation.js +415 -0
package/dist-standalone/invite.d.ts +192 -0
package/dist-standalone/invite.js +324 -0
package/dist-standalone/key-agreement.d.ts +122 -0
package/dist-standalone/key-agreement.js +236 -0
package/dist-standalone/lazy-init.d.ts +167 -0
package/dist-standalone/lazy-init.js +295 -0
package/dist-standalone/mdns-discovery.d.ts +117 -0
package/dist-standalone/mdns-discovery.js +195 -0
package/dist-standalone/nonce-store.d.ts +39 -0
package/dist-standalone/nonce-store.js +62 -0
package/dist-standalone/package.json +11 -0
package/dist-standalone/pairing-manager.d.ts +147 -0
package/dist-standalone/pairing-manager.js +219 -0
package/dist-standalone/policy.d.ts +150 -0
package/dist-standalone/policy.js +315 -0
package/dist-standalone/redis-nonce-store.d.ts +93 -0
package/dist-standalone/redis-nonce-store.js +72 -0
package/dist-standalone/registry-middleware.d.ts +38 -0
package/dist-standalone/registry-middleware.js +47 -0
package/dist-standalone/retry-transport.d.ts +76 -0
package/dist-standalone/retry-transport.js +98 -0
package/dist-standalone/security-policy.d.ts +146 -0
package/dist-standalone/security-policy.js +198 -0
package/dist-standalone/split-channel.d.ts +69 -0
package/dist-standalone/split-channel.js +171 -0
package/dist-standalone/subscription-proof.d.ts +103 -0
package/dist-standalone/subscription-proof.js +224 -0
package/dist-standalone/succession.d.ts +57 -0
package/dist-standalone/succession.js +142 -0
package/dist-standalone/transport.d.ts +50 -0
package/dist-standalone/transport.js +59 -0
package/dist-standalone/trust-registry.d.ts +286 -0
package/dist-standalone/trust-registry.js +702 -0
package/dist-standalone/verify.d.ts +16 -0
package/dist-standalone/verify.js +16 -0
package/dist-standalone/xfetch.d.ts +129 -0
package/dist-standalone/xfetch.js +247 -0
package/llms.txt +800 -0
package/package.json +79 -0
package/share1.dat +0 -0

package/dist-standalone/email-transport.d.ts ADDED Viewed

@@ -0,0 +1,139 @@
+/**
+ * @module email-transport
+ * Email-based transport adapter for xBind agent invitations.
+ *
+ * Enables viral growth through email-based connection discovery:
+ * - Agent A sends email invite to Agent B
+ * - Email contains one-click acceptance link
+ * - Agent B clicks link, connection established
+ * - No manual DID exchange required
+ *
+ * @example
+ * ```ts
+ * import { EmailTransport } from '@private.me/xbind/email-transport';
+ *
+ * const transport = new EmailTransport({
+ *   smtpHost: process.env.SMTP_HOST,
+ *   smtpPort: 587,
+ *   smtpUser: process.env.SMTP_USER,
+ *   smtpPass: process.env.SMTP_PASS,
+ *   fromEmail: 'noreply@private.me',
+ *   acceptBaseUrl: 'https://private.me/xbind/accept'
+ * });
+ *
+ * const agent = await Agent.create({
+ *   name: 'payment-processor',
+ *   transport
+ * });
+ *
+ * await agent.invite({
+ *   to: 'fulfillment@acme.com',
+ *   message: 'Connect our systems'
+ * });
+ * ```
+ */
+import { Result } from '@private.me/shared';
+import type { XailTransportAdapter, TransportError, EnvelopeHandler } from './transport.js';
+/**
+ * Email transport configuration.
+ */
+export interface EmailTransportConfig {
+    /** SMTP server hostname */
+    smtpHost: string;
+    /** SMTP server port (typically 587 for TLS) */
+    smtpPort: number;
+    /** SMTP authentication username */
+    smtpUser: string;
+    /** SMTP authentication password */
+    smtpPass: string;
+    /** Sender email address (e.g., noreply@private.me) */
+    fromEmail: string;
+    /** Sender display name (e.g., Private.Me) */
+    fromName: string;
+    /** Base URL for acceptance links (e.g., https://private.me/xbind/accept) */
+    acceptBaseUrl: string;
+    /** Rate limit: max invites per hour per agent (default: 10) */
+    rateLimit?: number;
+    /** Token expiration in hours (default: 48) */
+    tokenExpiryHours?: number;
+}
+/**
+ * Email-based transport adapter for xBind invitations.
+ *
+ * Sends invitation emails with branded templates and one-click acceptance links.
+ * Enforces rate limiting and token expiration for security.
+ *
+ * Note: Email transport is one-way (sending only). onReceive() is not supported.
+ */
+export declare class EmailTransport implements XailTransportAdapter {
+    private config;
+    private transporter;
+    private rateLimits;
+    /**
+     * Create email transport adapter.
+     *
+     * @param config - SMTP and email configuration
+     */
+    constructor(config: EmailTransportConfig);
+    /**
+     * Send invitation email.
+     *
+     * @param envelope - Transport envelope
+     * @param recipientDid - Recipient DID (email address for email transport)
+     * @returns Result with void on success
+     */
+    send(envelope: any, recipientDid: string): Promise<Result<void, TransportError>>;
+    /**
+     * Validate email address format.
+     *
+     * @param email - Email address to validate
+     * @returns True if valid
+     */
+    private isValidEmail;
+    /**
+     * Check if agent has exceeded rate limit.
+     *
+     * @param agentDid - Agent DID
+     * @returns Result indicating if rate limit is OK
+     */
+    private checkRateLimit;
+    /**
+     * Increment rate limit counter for agent.
+     *
+     * @param agentDid - Agent DID
+     */
+    private incrementRateLimit;
+    /**
+     * Generate secure invitation token.
+     *
+     * Token contains: sender DID, sender public key, timestamp, expiry.
+     * Encoded as base64url for URL safety.
+     *
+     * @param envelope - Message envelope
+     * @returns Invitation token
+     */
+    private generateInviteToken;
+    /**
+     * Verify connection to SMTP server.
+     *
+     * @returns Result indicating if SMTP connection is OK
+     */
+    verify(): Promise<Result<void, TransportError>>;
+    /**
+     * Close SMTP connection.
+     */
+    close(): Promise<void>;
+    /**
+     * Register handler for incoming envelopes.
+     *
+     * Note: Email transport is one-way (sending only).
+     * This method exists for interface compliance but is a no-op.
+     *
+     * @param handler - Envelope handler (unused)
+     */
+    onReceive(handler: EnvelopeHandler): void;
+    /**
+     * Shut down the transport (close SMTP connection).
+     */
+    dispose(): void;
+}

package/dist-standalone/email-transport.js ADDED Viewed

@@ -0,0 +1,232 @@
+/**
+ * @module email-transport
+ * Email-based transport adapter for xBind agent invitations.
+ *
+ * Enables viral growth through email-based connection discovery:
+ * - Agent A sends email invite to Agent B
+ * - Email contains one-click acceptance link
+ * - Agent B clicks link, connection established
+ * - No manual DID exchange required
+ *
+ * @example
+ * ```ts
+ * import { EmailTransport } from '@private.me/xbind/email-transport';
+ *
+ * const transport = new EmailTransport({
+ *   smtpHost: process.env.SMTP_HOST,
+ *   smtpPort: 587,
+ *   smtpUser: process.env.SMTP_USER,
+ *   smtpPass: process.env.SMTP_PASS,
+ *   fromEmail: 'noreply@private.me',
+ *   acceptBaseUrl: 'https://private.me/xbind/accept'
+ * });
+ *
+ * const agent = await Agent.create({
+ *   name: 'payment-processor',
+ *   transport
+ * });
+ *
+ * await agent.invite({
+ *   to: 'fulfillment@acme.com',
+ *   message: 'Connect our systems'
+ * });
+ * ```
+ */
+import { ok, err } from"./_deps/shared/index.js";
+import { renderInviteEmail } from './email-templates.js';
+import nodemailer from 'nodemailer';
+/**
+ * Email-based transport adapter for xBind invitations.
+ *
+ * Sends invitation emails with branded templates and one-click acceptance links.
+ * Enforces rate limiting and token expiration for security.
+ *
+ * Note: Email transport is one-way (sending only). onReceive() is not supported.
+ */
+export class EmailTransport {
+    config;
+    transporter;
+    rateLimits;
+    /**
+     * Create email transport adapter.
+     *
+     * @param config - SMTP and email configuration
+     */
+    constructor(config) {
+        this.config = {
+            ...config,
+            rateLimit: config.rateLimit ?? 10,
+            tokenExpiryHours: config.tokenExpiryHours ?? 48,
+        };
+        // Create nodemailer transporter
+        this.transporter = nodemailer.createTransport({
+            host: this.config.smtpHost,
+            port: this.config.smtpPort,
+            secure: false, // TLS on port 587
+            auth: {
+                user: this.config.smtpUser,
+                pass: this.config.smtpPass,
+            },
+        });
+        this.rateLimits = new Map();
+    }
+    /**
+     * Send invitation email.
+     *
+     * @param envelope - Transport envelope
+     * @param recipientDid - Recipient DID (email address for email transport)
+     * @returns Result with void on success
+     */
+    async send(envelope, recipientDid) {
+        // Extract invitation data from envelope
+        const { from, to, payload } = envelope;
+        // Validate email address
+        if (!this.isValidEmail(to)) {
+            return err('SEND_FAILED');
+        }
+        // Check rate limit
+        const rateLimitCheck = this.checkRateLimit(from);
+        if (!rateLimitCheck.ok) {
+            return err('SEND_FAILED');
+        }
+        try {
+            // Generate secure invitation token
+            const token = await this.generateInviteToken(envelope);
+            // Construct acceptance URL
+            const acceptUrl = `${this.config.acceptBaseUrl}/${token}`;
+            // Render branded email template
+            const html = renderInviteEmail({
+                agentName: payload.agentName || from,
+                did: from,
+                acceptUrl,
+                message: payload.message,
+            });
+            // Send email via SMTP
+            await this.transporter.sendMail({
+                from: `"${this.config.fromName}" <${this.config.fromEmail}>`,
+                to,
+                subject: `${payload.agentName || 'Agent'} wants to connect`,
+                html,
+            });
+            // Update rate limit counter
+            this.incrementRateLimit(from);
+            return ok(undefined);
+        }
+        catch (error) {
+            return err('NETWORK_ERROR');
+        }
+    }
+    /**
+     * Validate email address format.
+     *
+     * @param email - Email address to validate
+     * @returns True if valid
+     */
+    isValidEmail(email) {
+        const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+        return emailRegex.test(email);
+    }
+    /**
+     * Check if agent has exceeded rate limit.
+     *
+     * @param agentDid - Agent DID
+     * @returns Result indicating if rate limit is OK
+     */
+    checkRateLimit(agentDid) {
+        const now = Date.now();
+        const entry = this.rateLimits.get(agentDid);
+        if (!entry) {
+            return ok(undefined);
+        }
+        // Reset if hour has passed
+        if (now >= entry.resetAt) {
+            this.rateLimits.delete(agentDid);
+            return ok(undefined);
+        }
+        // Check if limit exceeded
+        if (entry.count >= this.config.rateLimit) {
+            return err(undefined);
+        }
+        return ok(undefined);
+    }
+    /**
+     * Increment rate limit counter for agent.
+     *
+     * @param agentDid - Agent DID
+     */
+    incrementRateLimit(agentDid) {
+        const now = Date.now();
+        const entry = this.rateLimits.get(agentDid);
+        if (!entry) {
+            this.rateLimits.set(agentDid, {
+                count: 1,
+                resetAt: now + (60 * 60 * 1000), // 1 hour
+            });
+        }
+        else {
+            entry.count += 1;
+        }
+    }
+    /**
+     * Generate secure invitation token.
+     *
+     * Token contains: sender DID, sender public key, timestamp, expiry.
+     * Encoded as base64url for URL safety.
+     *
+     * @param envelope - Message envelope
+     * @returns Invitation token
+     */
+    async generateInviteToken(envelope) {
+        const tokenData = {
+            from: envelope.from,
+            publicKey: envelope.payload.publicKey,
+            endpoint: envelope.payload.endpoint,
+            timestamp: Date.now(),
+            expiresAt: Date.now() + (this.config.tokenExpiryHours * 60 * 60 * 1000),
+        };
+        // Encode as base64url
+        const json = JSON.stringify(tokenData);
+        const base64 = Buffer.from(json).toString('base64')
+            .replace(/\+/g, '-')
+            .replace(/\//g, '_')
+            .replace(/=/g, '');
+        return base64;
+    }
+    /**
+     * Verify connection to SMTP server.
+     *
+     * @returns Result indicating if SMTP connection is OK
+     */
+    async verify() {
+        try {
+            await this.transporter.verify();
+            return ok(undefined);
+        }
+        catch (error) {
+            return err('NETWORK_ERROR');
+        }
+    }
+    /**
+     * Close SMTP connection.
+     */
+    async close() {
+        this.transporter.close();
+    }
+    /**
+     * Register handler for incoming envelopes.
+     *
+     * Note: Email transport is one-way (sending only).
+     * This method exists for interface compliance but is a no-op.
+     *
+     * @param handler - Envelope handler (unused)
+     */
+    onReceive(handler) {
+        // Email transport is one-way - no incoming messages
+    }
+    /**
+     * Shut down the transport (close SMTP connection).
+     */
+    dispose() {
+        this.transporter.close();
+    }
+}

package/dist-standalone/envelope.d.ts ADDED Viewed

@@ -0,0 +1,288 @@
+import type { Result } from '@private.me/shared';
+/** Envelope v1 format matching xail.io/sdk specification. */
+export interface TransportEnvelope {
+    readonly v: 1;
+    readonly alg: 'Ed25519';
+    readonly sender: string;
+    readonly recipient: string;
+    readonly timestamp: number;
+    readonly nonce: string;
+    readonly scope: string;
+    readonly payload: string;
+    readonly signature: string;
+    /** Base64-encoded ephemeral X25519 public key for forward secrecy. */
+    readonly ephemeralPub?: string;
+    /** Share index for split-channel delivery (0-based). */
+    readonly shareIndex?: number;
+    /** Total shares for split-channel delivery. */
+    readonly shareTotal?: number;
+    /** Threshold for split-channel reconstruction. */
+    readonly shareThreshold?: number;
+    /** UUID linking all shares of a split-channel message. */
+    readonly shareGroupId?: string;
+    /** Base64-encoded HMAC key for split-channel integrity. */
+    readonly shareHmacKey?: string;
+    /** Base64-encoded HMAC signature for split-channel integrity. */
+    readonly shareHmacSig?: string;
+    /** Protocol identifier for viral exposure: "PRIVATE.ME/xBind/v3" */
+    readonly protocol?: string;
+    /** Documentation URL for the protocol */
+    readonly documentationUrl?: string;
+}
+/** Envelope v2 format with hybrid post-quantum KEM. */
+export interface TransportEnvelopeV2 {
+    readonly v: 2;
+    readonly alg: 'Ed25519';
+    readonly kem: 'X25519-MLKEM768';
+    readonly sender: string;
+    readonly recipient: string;
+    readonly timestamp: number;
+    readonly nonce: string;
+    readonly scope: string;
+    readonly payload: string;
+    readonly signature: string;
+    /** Base64-encoded ephemeral X25519 public key (32B). */
+    readonly ephemeralPub: string;
+    /** Base64-encoded ML-KEM-768 ciphertext (1088B). */
+    readonly kemCiphertext: string;
+    /** Share index for split-channel delivery (0-based). */
+    readonly shareIndex?: number;
+    /** Total shares for split-channel delivery. */
+    readonly shareTotal?: number;
+    /** Threshold for split-channel reconstruction. */
+    readonly shareThreshold?: number;
+    /** UUID linking all shares of a split-channel message. */
+    readonly shareGroupId?: string;
+    /** Base64-encoded HMAC key for split-channel integrity. */
+    readonly shareHmacKey?: string;
+    /** Base64-encoded HMAC signature for split-channel integrity. */
+    readonly shareHmacSig?: string;
+    /** Protocol identifier for viral exposure: "PRIVATE.ME/xBind/v3" */
+    readonly protocol?: string;
+    /** Documentation URL for the protocol */
+    readonly documentationUrl?: string;
+}
+/** Envelope v3 format with hybrid KEM + dual PQ signatures. */
+export interface TransportEnvelopeV3 {
+    readonly v: 3;
+    readonly alg: 'Ed25519';
+    /** Signature scheme: dual Ed25519 + ML-DSA-65. */
+    readonly sig: 'Ed25519+MLDSA65';
+    readonly kem: 'X25519-MLKEM768';
+    readonly sender: string;
+    readonly recipient: string;
+    readonly timestamp: number;
+    readonly nonce: string;
+    readonly scope: string;
+    readonly payload: string;
+    /** Base64-encoded Ed25519 signature (64B). */
+    readonly signature: string;
+    /** Base64-encoded ML-DSA-65 signature (3309B). */
+    readonly pqSignature: string;
+    /** Base64-encoded ephemeral X25519 public key (32B). */
+    readonly ephemeralPub: string;
+    /** Base64-encoded ML-KEM-768 ciphertext (1088B). */
+    readonly kemCiphertext: string;
+    /** Share index for split-channel delivery (0-based). */
+    readonly shareIndex?: number;
+    /** Total shares for split-channel delivery. */
+    readonly shareTotal?: number;
+    /** Threshold for split-channel reconstruction. */
+    readonly shareThreshold?: number;
+    /** UUID linking all shares of a split-channel message. */
+    readonly shareGroupId?: string;
+    /** Base64-encoded HMAC key for split-channel integrity. */
+    readonly shareHmacKey?: string;
+    /** Base64-encoded HMAC signature for split-channel integrity. */
+    readonly shareHmacSig?: string;
+    /** Protocol identifier for viral exposure: "PRIVATE.ME/xBind/v3" */
+    readonly protocol?: string;
+    /** Documentation URL for the protocol */
+    readonly documentationUrl?: string;
+}
+/**
+ * Xchange mode envelope (wire format v:4).
+ *
+ * Opt-in performance mode activated via `xchange: true`. Single security
+ * layer (information-theoretic XorIDA split) + Ed25519 authentication.
+ * ~180x faster than V3 split-channel. No per-share encryption, no KEM.
+ */
+export interface TransportEnvelopeV4 {
+    readonly v: 4;
+    readonly alg: 'Ed25519';
+    /** Key transport method: Xchange (random key bundled + split). */
+    readonly kem: 'Xchange';
+    readonly sender: string;
+    readonly recipient: string;
+    readonly timestamp: number;
+    readonly nonce: string;
+    readonly scope: string;
+    /** Base64-encoded XorIDA share (NOT encrypted — the split IS the security). */
+    readonly payload: string;
+    /** Base64-encoded Ed25519 signature (64B) — sender auth only. */
+    readonly signature: string;
+    /** Share index for split-channel delivery (0-based). */
+    readonly shareIndex: number;
+    /** Total shares for split-channel delivery. */
+    readonly shareTotal: number;
+    /** Threshold for split-channel reconstruction. */
+    readonly shareThreshold: number;
+    /** UUID linking all shares of a split-channel message. */
+    readonly shareGroupId: string;
+    /** Base64-encoded HMAC key for split-channel integrity. */
+    readonly shareHmacKey: string;
+    /** Base64-encoded HMAC signature for split-channel integrity. */
+    readonly shareHmacSig: string;
+    /** Protocol identifier for viral exposure: "PRIVATE.ME/xBind/v3" */
+    readonly protocol?: string;
+    /** Documentation URL for the protocol */
+    readonly documentationUrl?: string;
+}
+/** Union of all supported envelope versions. */
+export type AnyTransportEnvelope = TransportEnvelope | TransportEnvelopeV2 | TransportEnvelopeV3 | TransportEnvelopeV4;
+/** Options for creating an envelope. */
+export interface CreateEnvelopeOptions {
+    readonly senderDid: string;
+    readonly recipientDid: string;
+    readonly scope: string;
+    readonly plaintext: Uint8Array;
+    readonly privateKey: CryptoKey;
+    readonly sharedKey: CryptoKey;
+    /** Raw ephemeral X25519 public key to include for forward secrecy. */
+    readonly ephemeralPublicKey?: Uint8Array;
+    /** Split-channel share metadata. */
+    readonly shareIndex?: number;
+    readonly shareTotal?: number;
+    readonly shareThreshold?: number;
+    readonly shareGroupId?: string;
+    readonly shareHmacKey?: string;
+    readonly shareHmacSig?: string;
+}
+/** Options for creating a v2 hybrid-KEM envelope. */
+export interface CreateEnvelopeV2Options {
+    readonly senderDid: string;
+    readonly recipientDid: string;
+    readonly scope: string;
+    readonly plaintext: Uint8Array;
+    readonly privateKey: CryptoKey;
+    readonly sharedKey: CryptoKey;
+    /** Raw ephemeral X25519 public key (32B). */
+    readonly ephemeralPublicKey: Uint8Array;
+    /** ML-KEM-768 ciphertext (1088B). */
+    readonly kemCiphertext: Uint8Array;
+    /** Split-channel share metadata. */
+    readonly shareIndex?: number;
+    readonly shareTotal?: number;
+    readonly shareThreshold?: number;
+    readonly shareGroupId?: string;
+    readonly shareHmacKey?: string;
+    readonly shareHmacSig?: string;
+}
+/** Options for creating a v3 hybrid-KEM + dual-sig envelope. */
+export interface CreateEnvelopeV3Options {
+    readonly senderDid: string;
+    readonly recipientDid: string;
+    readonly scope: string;
+    readonly plaintext: Uint8Array;
+    readonly privateKey: CryptoKey;
+    readonly sharedKey: CryptoKey;
+    /** Raw ephemeral X25519 public key (32B). */
+    readonly ephemeralPublicKey: Uint8Array;
+    /** ML-KEM-768 ciphertext (1088B). */
+    readonly kemCiphertext: Uint8Array;
+    /** ML-DSA-65 secret key (4032B) for post-quantum signature. */
+    readonly mlDsaSecretKey: Uint8Array;
+    /** Split-channel share metadata. */
+    readonly shareIndex?: number;
+    readonly shareTotal?: number;
+    readonly shareThreshold?: number;
+    readonly shareGroupId?: string;
+    readonly shareHmacKey?: string;
+    readonly shareHmacSig?: string;
+}
+/** Options for creating a Xchange mode envelope (no encryption — share IS the payload). */
+export interface CreateEnvelopeV4Options {
+    readonly senderDid: string;
+    readonly recipientDid: string;
+    readonly scope: string;
+    /** Raw share data (already an XorIDA share — NOT encrypted). */
+    readonly shareData: Uint8Array;
+    readonly privateKey: CryptoKey;
+    /** Split-channel share metadata (all REQUIRED for v4). */
+    readonly shareIndex: number;
+    readonly shareTotal: number;
+    readonly shareThreshold: number;
+    readonly shareGroupId: string;
+    readonly shareHmacKey: string;
+    readonly shareHmacSig: string;
+}
+/** Options for creating a signed (unencrypted) envelope. */
+export interface CreateSignedEnvelopeOptions {
+    readonly senderDid: string;
+    readonly recipientDid: string;
+    readonly scope: string;
+    readonly plaintext: Uint8Array;
+    readonly privateKey: CryptoKey;
+}
+/** Envelope error codes. */
+export type EnvelopeError = 'INVALID_VERSION' | 'INVALID_ALG' | 'INVALID_KEM' | 'INVALID_DID' | 'INVALID_NONCE' | 'INVALID_FIELDS' | 'ENCRYPT_FAILED' | 'DECRYPT_FAILED' | 'SIGN_FAILED' | 'PQ_SIGN_FAILED' | 'VERIFY_FAILED' | 'PARSE_FAILED';
+/**
+ * Create a signed, encrypted TransportEnvelope.
+ *
+ * Encrypt-then-sign: AES-256-GCM encrypts payload, Ed25519 signs ciphertext.
+ */
+export declare function createEnvelope(opts: CreateEnvelopeOptions): Promise<Result<TransportEnvelope, EnvelopeError>>;
+/**
+ * Create a signed, encrypted TransportEnvelopeV2 with hybrid KEM.
+ *
+ * Same encrypt-then-sign as v1, but includes ML-KEM-768 ciphertext.
+ */
+export declare function createEnvelopeV2(opts: CreateEnvelopeV2Options): Promise<Result<TransportEnvelopeV2, EnvelopeError>>;
+/**
+ * Create a signed, encrypted TransportEnvelopeV3 with hybrid KEM + dual signatures.
+ *
+ * Encrypt-then-sign: AES-256-GCM encrypts payload, Ed25519 AND ML-DSA-65 sign ciphertext.
+ * Both signatures must verify for the envelope to be accepted.
+ */
+export declare function createEnvelopeV3(opts: CreateEnvelopeV3Options): Promise<Result<TransportEnvelopeV3, EnvelopeError>>;
+/**
+ * Create a signed Xchange mode envelope (v4 wire format).
+ *
+ * Opt-in performance mode. No encryption — the share IS the payload.
+ * Ed25519 signs the raw share data for sender authentication.
+ * The XorIDA split provides confidentiality (information-theoretic).
+ */
+export declare function createEnvelopeV4(opts: CreateEnvelopeV4Options): Promise<Result<TransportEnvelopeV4, EnvelopeError>>;
+/**
+ * Decrypt the payload from a v1, v2, or v3 TransportEnvelope.
+ * Caller must verify signature before calling this.
+ */
+export declare function decryptPayload(envelope: AnyTransportEnvelope, sharedKey: CryptoKey): Promise<Result<Uint8Array, EnvelopeError>>;
+/** Serialize envelope to UTF-8 bytes. */
+export declare function serializeEnvelope(envelope: AnyTransportEnvelope): Uint8Array;
+/** Deserialize bytes to a validated v1 or v2 TransportEnvelope. */
+export declare function deserializeEnvelope(bytes: Uint8Array): Result<AnyTransportEnvelope, EnvelopeError>;
+/** Validate a parsed object is a valid v1 or v2 TransportEnvelope. */
+export declare function validateEnvelope(obj: unknown): Result<AnyTransportEnvelope, EnvelopeError>;
+/** Generate an AES-256-GCM key for envelope encryption. */
+export declare function generateSharedKey(): Promise<CryptoKey>;
+/**
+ * Create a signed but unencrypted TransportEnvelope.
+ *
+ * Payload is base64-encoded plaintext (NOT encrypted).
+ * Signature covers the raw plaintext bytes.
+ * Use for public announcements, audit logs, or telemetry where
+ * confidentiality is not required but integrity is.
+ *
+ * @param opts - Sender, recipient, scope, plaintext, and signing key.
+ * @returns Signed envelope or error.
+ */
+export declare function createSignedEnvelope(opts: CreateSignedEnvelopeOptions): Promise<Result<TransportEnvelope, EnvelopeError>>;
+/**
+ * Verify signature on a signed (unencrypted) envelope and return plaintext.
+ *
+ * @param envelope - The signed envelope to verify.
+ * @param senderPublicKey - The sender's Ed25519 public key.
+ * @returns Plaintext bytes if signature is valid, error otherwise.
+ */
+export declare function openSignedEnvelope(envelope: TransportEnvelope, senderPublicKey: CryptoKey): Promise<Result<Uint8Array, EnvelopeError>>;