@q00bs/agent-sdk 1.0.5 → 1.1.0

package/README.md

@@ -107,8 +107,9 @@
 │    └── ERC8004Manager      — ERC-8004 identity & reputation │
 │                                                             │
 │  ── Wallet Mode ───────────────────────────────────────     │
-│  Privy server wallet → HSM custody (REQUIRED)               │
-│  Private keys NEVER leave Privy's secure enclave            │
+│  Trust API → Q00bs' Privy HSM custody                       │
+│  No Privy credentials needed by SDK consumers               │
+│  All wallets appear on Q00bs' Privy dashboard               │
 │                                                             │
 │  ── On-Chain Contracts (Base Mainnet) ─────────────────     │
 │  Q00bFactory       → 0xe611...52b0                          │
@@ -142,29 +143,25 @@ The SDK has a single runtime dependency: [`viem`](https://viem.sh) (^2.21.0).
 
 ## Quick Start
 
-All Q00bs agents use **Privy server wallets**. Private keys are held in Privy's HSM — they never appear in your code, env vars, or agent memory.
+All Q00bs agent wallets are created and managed by **Q00bs' own Privy infrastructure** via the Trust API. You never need Privy credentials — just point the SDK at the Trust API URL and it handles everything.
 
 ```typescript
 import { Q00bsAgent } from '@q00bs/agent-sdk';
 
 const agent = new Q00bsAgent({
-  privy: {
-    appId: process.env.PRIVY_APP_ID!,
-    appSecret: process.env.PRIVY_APP_SECRET!,
-    walletId: process.env.PRIVY_WALLET_ID,  // optional — creates new if omitted
-  },
-  rpcUrl: process.env.BASE_RPC_URL || 'https://mainnet.base.org',
-  registryAddress: '0xF7c8acecdfbBEAf08F596ab1F85f68f7E6568172',
-  escrowAddress: '0xe1139A7BebD89e534d4C459b252BA0963e0A0499',
-  consensusAddress: '0xcB4A36a7c99e42B3F4b1c8EE6EDD0f3A7DDEcC76',
+  trustApiUrl: 'https://q00bs-trust-api.onrender.com',
+  walletId: process.env.Q00BS_WALLET_ID,  // optional — creates new if omitted
   maxTransactionValue: '0.1',  // Max 0.1 ETH per tx
   dailySpendLimit: '1.0',     // Max 1 ETH per day
 });
 
 await agent.initialize();
-// → Privy wallet created/loaded with spending policy
-// → Private key held in Privy's HSM — never in your code
+// → Wallet created under Q00bs' Privy app (appears on Q00bs' Privy dashboard)
+// → Private key held in Q00bs' HSM — never in your code
+// → Store agent.walletId for reuse in next session
+
 console.log(`Agent wallet: ${agent.address}`);
+console.log(`Wallet ID: ${agent.walletId}`);  // Save this!
 console.log(`Agent ID: ${agent.agentId}`);
 ```
 
@@ -251,8 +248,8 @@ import { Q00bsAgent } from '@q00bs/agent-sdk';
 // Create the agent (does NOT connect to blockchain yet)
 const agent = new Q00bsAgent(config: AgentConfig);
 
-// Initialize blockchain connections and sub-modules
-await agent.initialize(walletPolicy?: PrivyWalletPolicy): Promise<void>;
+// Initialize blockchain connections, create/load wallet via Trust API
+await agent.initialize(): Promise<void>;
 ```
 
 **Properties (after initialization):**
@@ -262,9 +259,7 @@ await agent.initialize(walletPolicy?: PrivyWalletPolicy): Promise<void>;
 | `agentId`      | `number \| undefined`     | On-chain agent ID (set after registration)     |
 | `initialized`  | `boolean`                 | Whether `initialize()` has been called         |
 | `address`      | `string`                  | Agent's wallet address                         |
-| `walletMode`   | `'privy'`                 | Wallet mode (always Privy)                     |
-| `isPrivyMode`  | `boolean`                 | Whether using Privy wallet                     |
-| `privyWallet`  | `PrivyWalletManager \| undefined` | Privy manager (Mode 2 only)           |
+| `walletId`     | `string \| undefined`     | Privy wallet ID (save for reuse)               |
 | `erc8004`      | `ERC8004Manager \| undefined`     | ERC-8004 manager instance              |
 
 #### Registration
@@ -392,26 +387,26 @@ const request: ConsensusRecord = await agent.getConsensusRequest(requestId);
 | ≤ 1.00 ETH   | 4 of 6 peers      | No             |
 | > 1.00 ETH    | 4 of 6 peers      | **Yes**        |
 
-#### Privy Wallet Management (Mode 2)
+#### Wallet Management
 
-```typescript
-// Get wallet info
-const walletInfo: PrivyWalletInfo | undefined = agent.getPrivyWalletInfo();
+All wallets are managed via Q00bs' Trust API. No Privy credentials needed.
 
+```typescript
 // Update spending policy dynamically
-await agent.updatePrivyPolicy({
-  name: 'Elevated Limits',
-  rules: [
-    { type: 'max_transaction_value', value: '0.5' },
-    { type: 'daily_spend_limit', value: '5.0' },
-    { type: 'allowed_chains', value: ['8453'] },
-    { type: 'allowed_contracts', value: ['0xRegistry...', '0xEscrow...'] },
-    { type: 'require_human_approval', value: true },
-  ],
+await agent.updateWalletPolicy({
+  maxTransactionValue: '0.5',
+  dailySpendLimit: '5.0',
 });
 
-// Sign a message (works in both modes)
+// Sign a message (routed through Trust API → Q00bs' Privy)
 const signature: string = await agent.signMessage('Hello from Q00bs!');
+
+// Send a transaction (policy-checked before broadcast)
+const txHash: string = await agent.sendTransaction(
+  '0xContract...',   // to
+  '1000000000000',   // value in wei (optional)
+  '0x...',           // encoded calldata (optional)
+);
 ```
 
 #### ERC-8004 Trustless Agents
@@ -535,39 +530,28 @@ const active = await discovery.isActive(agentId);
 
 #### PrivyWalletManager
 
+> **Note:** This class is used internally by the Q00bs Trust API server. As an SDK consumer, you don't need to use it directly — wallet operations are routed through the Trust API automatically. It is exported for advanced use cases (e.g., running your own Q00bs API node).
+
 ```typescript
 import { PrivyWalletManager } from '@q00bs/agent-sdk';
 
+// Only used by the API server (requires Q00bs' Privy credentials)
 const manager = new PrivyWalletManager(
-  { appId: '...', appSecret: '...' },
+  { appId: PRIVY_APP_ID, appSecret: PRIVY_APP_SECRET },
   logger,
 );
 
-// Wallet lifecycle
 const wallet = await manager.createWallet(policy);
 const existing = await manager.getWallet(walletId);
-const info = await manager.initialize(policy);  // create or load
-
-// Policy management
+const info = await manager.initialize(policy);
 await manager.setPolicy(walletId, policy);
-const defaultPolicy = PrivyWalletManager.buildDefaultPolicy(
-  '0.1',        // maxTxValueEth
-  '1.0',        // dailyLimitEth
-  ['0x...'],    // allowedContracts
-  true,         // requireHumanApproval
-);
 
-// Transactions
 const result = await manager.sendTransaction(walletId, {
   to: '0xContract...',
-  data: '0x...',            // encoded calldata
-  value: '10000000000000',  // wei
+  data: '0x...',
+  value: '10000000000000',
   chainId: 8453,
 });
-
-// Signing
-const sig = await manager.signMessage(walletId, 'message');
-const typedSig = await manager.signTypedData(walletId, typedData);
 ```
 
 #### ERC8004Manager
@@ -616,8 +600,10 @@ Low-level helpers for creating blockchain clients directly:
 import { createPrivyClients, createLogger } from '@q00bs/agent-sdk';
 
 // Create Privy-managed blockchain clients
+// NOTE: This requires Q00bs' Privy credentials — used by the API server internally.
+// As an SDK consumer, use Q00bsAgent with trustApiUrl instead.
 const clients = createPrivyClients({
-  privy: { appId: '...', appSecret: '...' },
+  privy: { appId: PRIVY_APP_ID, appSecret: PRIVY_APP_SECRET },
   rpcUrl: 'https://mainnet.base.org',
 });
 // Returns: { publicClient, privyWalletManager, chain, mode: 'privy' }
@@ -636,9 +622,10 @@ All types are exported from `@q00bs/agent-sdk` and centralized in `src/types.ts`
 
 ```typescript
 interface AgentConfig {
-  privy: PrivyConfig;               // Privy server wallet credentials (REQUIRED)
-  rpcUrl: string;                   // Base mainnet RPC URL
-  registryAddress: string;          // AgentRegistry contract
+  trustApiUrl: string;              // Q00bs Trust API URL (REQUIRED)
+  walletId?: string;                // Existing wallet ID (creates new if omitted)
+  rpcUrl?: string;                  // Base mainnet RPC URL (default: public endpoint)
+  registryAddress?: string;         // AgentRegistry contract (default: SDK constant)
   escrowAddress?: string;           // AgentEscrow contract (optional)
   consensusAddress?: string;        // ConsensusModule contract (optional)
   agentId?: number;                 // Pre-existing on-chain agent ID
@@ -646,6 +633,7 @@ interface AgentConfig {
   maxHops?: number;                 // Max trust-path hops (default: 3)
   maxTransactionValue?: string;     // Max ETH per tx (default: '0.1')
   dailySpendLimit?: string;         // Max ETH per day (default: '1')
+  x402TxHash?: string;             // x402 payment hash for API auth
   erc8004?: ERC8004Config;          // ERC-8004 registry addresses
   logLevel?: 'debug' | 'info' | 'warn' | 'error';
 }
@@ -782,11 +770,13 @@ interface ConsensusResult {
 
 ### Privy Types
 
+> **Note:** These types are used internally by the Q00bs Trust API server. SDK consumers do NOT need to configure Privy directly — wallets are managed through `trustApiUrl`.
+
 ```typescript
 interface PrivyConfig {
-  appId: string;            // Privy App ID
-  appSecret: string;        // Privy App Secret (server-side only)
-  walletId?: string;        // Existing wallet ID (creates new if omitted)
+  appId: string;            // Q00bs Privy App ID (API server only)
+  appSecret: string;        // Q00bs Privy App Secret (API server only)
+  walletId?: string;        // Existing wallet ID
   userId?: string;          // Links wallet to Privy user account
 }
 
@@ -1122,11 +1112,11 @@ The SDK enforces a **3-layer defense-in-depth** model:
 
 **Best practices:**
 
-1. **Always use Privy server wallets** — raw private keys are deprecated
-2. **Never hardcode credentials** — use environment variables
-3. **Set `allowed_contracts`** in Privy policy to whitelist only Q00bs contracts
-4. **Enable `require_human_approval`** for high-value actions
-5. **Use the Trust API** (not direct SDK calls) for untrusted environments
+1. **Use `trustApiUrl`** — wallets are managed by Q00bs' Privy infrastructure; no credentials needed
+2. **Store your `walletId`** — save it after first initialization to reuse the same wallet
+3. **Never hardcode credentials** — use environment variables for API URLs and wallet IDs
+4. **Set spending limits** — configure `maxTransactionValue` and `dailySpendLimit` in AgentConfig
+5. **Pay via x402** — all API calls are authenticated via USDC micropayments on Base
 
 ---
 
@@ -1152,7 +1142,7 @@ curl -H "X-Payment: 0xabc...123" \
 
 | Tier    | Price        | Endpoints                                    |
 |---------|--------------|----------------------------------------------|
-| READ    | $0.001 USDC  | GET — trust scores, agent lookups, status     |
+| READ    | FREE         | GET — trust scores, agent lookups, status (on-chain data is public) |
 | WRITE   | $0.005 USDC  | POST state changes — escrow ops, metadata     |
 | CREATE  | $0.01 USDC   | POST new entities — agent/wallet/identity     |
 
@@ -1165,27 +1155,23 @@ The Trust API also provides indexed, paginated endpoints that perform better tha
 ### Full Agent Lifecycle
 
 ```typescript
-import { Q00bsAgent, AGENT_REGISTRY_ADDRESS, AGENT_ESCROW_ADDRESS } from '@q00bs/agent-sdk';
+import { Q00bsAgent } from '@q00bs/agent-sdk';
 
 async function main() {
-  // 1. Create and initialize agent
+  // 1. Create and initialize agent — no Privy credentials needed
   const agent = new Q00bsAgent({
-    privy: {
-      appId: process.env.PRIVY_APP_ID!,
-      appSecret: process.env.PRIVY_APP_SECRET!,
-    },
-    rpcUrl: 'https://mainnet.base.org',
-    registryAddress: AGENT_REGISTRY_ADDRESS,
-    escrowAddress: AGENT_ESCROW_ADDRESS,
+    trustApiUrl: 'https://q00bs-trust-api.onrender.com',
+    walletId: process.env.Q00BS_WALLET_ID,  // reuse wallet from previous session
     capabilities: ['data_analysis', 'summarization'],
   });
 
   await agent.initialize();
-  console.log(`Agent ready: ${agent.address} (mode: ${agent.walletMode})`);
+  console.log(`Agent ready: ${agent.address}`);
+  console.log(`Wallet ID (save this!): ${agent.walletId}`);
 
   // 2. Check if already registered
   if (!agent.agentId) {
-    console.log('Agent not registered. Use the Trust API to register.');
+    console.log('Agent not registered. Call agent.register() to register on-chain.');
     return;
   }
 
@@ -1347,13 +1333,15 @@ console.log(`Vouched by ${networkTrust.vouchCount} agents`);
 
 ```bash
 # ─── Required ────────────────────────────────────────────
-# Base mainnet RPC (use Alchemy/Infura for production)
-BASE_RPC_URL=https://mainnet.base.org
+# Q00bs Trust API URL (all wallet ops go through here)
+Q00BS_TRUST_API_URL=https://q00bs-trust-api.onrender.com
+
+# ─── Optional ────────────────────────────────────────────
+# Reuse an existing wallet from a previous session
+Q00BS_WALLET_ID=your-wallet-id-from-first-init
 
-# ─── Privy Server Wallet (REQUIRED) ─────────────────────
-PRIVY_APP_ID=your-privy-app-id
-PRIVY_APP_SECRET=your-privy-app-secret
-PRIVY_WALLET_ID=optional-existing-wallet-id
+# Base mainnet RPC for direct on-chain reads (defaults to public endpoint)
+BASE_RPC_URL=https://mainnet.base.org
 
 # ─── Contract Addresses (defaults built into SDK) ───────
 # Override only if using custom deployments:
@@ -1362,15 +1350,17 @@ PRIVY_WALLET_ID=optional-existing-wallet-id
 # CONSENSUS_ADDRESS=0xcB4A36a7c99e42B3F4b1c8EE6EDD0f3A7DDEcC76
 ```
 
+> **No Privy credentials needed.** Wallets are created and managed by Q00bs' own Privy infrastructure via the Trust API. All agents appear as users on Q00bs' Privy dashboard.
+
 ---
 
 ## FAQ
 
-**Q: Which wallet mode should I use?**
-Privy server wallets are the only supported wallet mode. Raw private keys are deprecated. Privy holds your key material in a secure enclave — private keys never appear in your code, environment variables, or agent memory.
+**Q: Do I need Privy credentials to use the SDK?**
+No. Wallets are created and managed by Q00bs' own Privy infrastructure via the Trust API. You just need the Trust API URL (`trustApiUrl`). All wallets created through the SDK appear as users on Q00bs' Privy dashboard. Private keys never appear in your code, env vars, or agent memory.
 
 **Q: How much does it cost to use the Trust API?**
-API calls are paid via x402 micropayments in USDC on Base. Read operations cost $0.001, writes cost $0.005, and entity creation costs $0.01. No API keys or signup required.
+All GET (read) requests are **free** — on-chain data is publicly readable. Write operations cost $0.005 and entity creation costs $0.01, paid via x402 micropayments in USDC on Base. No API keys or signup required.
 
 **Q: Can agents operate without their human owner?**
 Yes. Agents can create their own q00b, register themselves, and build trust through vouching — all without human intervention. The human can be invited later to claim the q00b.

package/dist/Q00bsAgent.d.ts

@@ -5,18 +5,18 @@
  * modules (trust, escrow, consensus, discovery) behind a clean interface.
  *
  * WHAT THIS CLASS DOES:
- *   - Initializes blockchain clients via Privy server wallets.
+ *   - Creates a Privy wallet via the Q00bs Trust API (wallets managed by Q00bs).
  *   - Registers the agent on-chain as an ERC-721 on the owner's q00b.
  *   - Provides methods for trust verification, agent discovery, payments, and consensus.
  *   - Enforces spend limits and trust-path checks BEFORE sending transactions.
  *
- * WALLET MODE — Privy Server Wallet (REQUIRED):
- *   Pass `privy` in config (appId + appSecret). The SDK creates a Privy-managed
- *   wallet with spending policies. Private keys never leave Privy's HSM.
- *   See: https://privy.io/blog/securely-equipping-openclaw-agents-with-privy-wallets
+ * WALLET MODE — Q00bs Trust API:
+ *   All wallets are created and managed through the Q00bs Trust API, which
+ *   uses Q00bs' own Privy infrastructure. You NEVER need to supply Privy
+ *   credentials — just point the SDK at the Trust API URL.
  *
  * SECURITY GUARANTEES:
- *   - Private keys are held by Privy's HSM and NEVER appear in your code.
+ *   - Private keys are held by Q00bs' Privy HSM and NEVER appear in your code.
  *   - All state-changing operations go through on-chain contracts.
  *   - Spend limits are enforced at 3 layers: Privy policy → SDK pre-check → on-chain.
  *   - Trust paths are verified on-chain through the q00b graph before communication.
@@ -24,28 +24,24 @@
  * USAGE:
  *   ```ts
  *   const agent = new Q00bsAgent({
- *     privy: {
- *       appId: process.env.PRIVY_APP_ID!,
- *       appSecret: process.env.PRIVY_APP_SECRET!,
- *       walletId: process.env.PRIVY_WALLET_ID, // optional, creates new if omitted
- *     },
- *     rpcUrl: process.env.BASE_RPC_URL!,
- *     registryAddress: '0x...',
+ *     trustApiUrl: 'https://q00bs-trust-api.onrender.com',
+ *     walletId: process.env.Q00BS_WALLET_ID, // optional — creates new if omitted
  *   });
  *   await agent.initialize();
+ *   // → Wallet created under Q00bs' Privy app
+ *   // → Store agent.walletId for next session
  *   ```
  */
-import { PrivyWalletManager } from './privy';
 import { ERC8004Manager } from './erc8004';
-import type { AgentConfig, AgentRecord, TrustPath, AgentQuery, DiscoveredAgent, CreateEscrowParams, EscrowRecord, ConsensusParams, ConsensusResult, ConsensusRecord, PrivyWalletPolicy, PrivyWalletInfo, ERC8004Identity, ERC8004ReputationSummary, ERC8004Feedback, GiveFeedbackParams } from './types';
+import type { AgentConfig, AgentRecord, TrustPath, AgentQuery, DiscoveredAgent, CreateEscrowParams, EscrowRecord, ConsensusParams, ConsensusResult, ConsensusRecord, ERC8004Identity, ERC8004ReputationSummary, ERC8004Feedback, GiveFeedbackParams } from './types';
 export declare class Q00bsAgent {
     private config;
     private logger;
     private publicClient;
     private walletClient?;
     private walletAddress;
+    private _walletId?;
     private privyManager?;
-    private _walletMode;
     private trustResolver;
     private escrowManager?;
     private consensusManager?;
@@ -57,47 +53,65 @@ export declare class Q00bsAgent {
     get agentId(): number | undefined;
     /** Whether initialize() has been called. */
     get initialized(): boolean;
-    /** The agent's wallet address (derived from private key or Privy). */
+    /** The agent's wallet address (created by Q00bs' Privy infrastructure). */
     get address(): string;
-    /** Which wallet mode is active: 'privateKey' (Mode 1) or 'privy' (Mode 2). */
-    get walletMode(): 'privateKey' | 'privy';
-    /** Whether this agent uses a Privy-managed wallet (Mode 2). */
-    get isPrivyMode(): boolean;
-    /** The Privy wallet manager (only available in Mode 2). */
-    get privyWallet(): PrivyWalletManager | undefined;
+    /** The wallet ID for this agent. Store this to reuse the wallet across sessions. */
+    get walletId(): string | undefined;
     /** The ERC-8004 manager (available if erc8004 config is set or after initialize). */
     get erc8004(): ERC8004Manager | undefined;
     /**
      * Create a new Q00bsAgent.
      *
-     * @param config - Agent configuration. Must include `privy` configuration.
+     * @param config - Agent configuration. Must include `trustApiUrl`.
      *
      * NOTE: This does NOT connect to the blockchain yet. Call initialize() next.
      */
     constructor(config: AgentConfig);
+    private _x402TxHashQueue;
+    /**
+     * Add one or more x402 payment tx hashes to the queue.
+     * Each paid API call (write/create tier) consumes one hash.
+     * Free endpoints (reads, bootstrap routes) don't consume hashes.
+     *
+     * @param hashes - One or more Base mainnet USDC tx hashes.
+     */
+    addPaymentHashes(...hashes: string[]): void;
+    /** Number of unused payment hashes remaining. */
+    get paymentHashesRemaining(): number;
+    private static readonly FREE_PATHS;
+    /**
+     * Make an authenticated request to the Q00bs Trust API.
+     *
+     * Payment handling:
+     *   - GET requests and FREE_PATHS never send a payment header.
+     *   - Paid POST/PUT/DELETE requests consume one hash from the queue.
+     *   - If no hash is available for a paid endpoint, the request still
+     *     goes through — the server will return 402 with instructions.
+     *
+     * @internal
+     */
+    private apiCall;
     /**
      * Initialize blockchain connections and sub-modules.
      * Must be called before any other method.
      *
-     * Creates/loads a Privy-managed wallet with spending policies and
-     * initializes all sub-modules (trust, escrow, consensus, discovery, ERC-8004).
+     * If no walletId is set, creates a new wallet via the Q00bs Trust API.
+     * All wallets are managed by Q00bs' Privy infrastructure — you never
+     * need Privy credentials.
      *
-     * @param walletPolicy - Policy to apply when creating a new Privy wallet.
-     * @throws If configuration is invalid.
+     * @throws If configuration is invalid or API is unreachable.
      */
-    initialize(walletPolicy?: PrivyWalletPolicy): Promise<void>;
+    initialize(): Promise<void>;
     /**
      * Register this agent on-chain on one side of the owner's q00b.
      *
+     * Routes through the Q00bs Trust API, which handles the on-chain transaction
+     * using Q00bs' Privy infrastructure. No Privy credentials needed.
+     *
      * @param ownerQ00bAddress - The q00b contract address owned by this agent's human.
      * @param sidePosition - Which side of the q00b (0-5) to occupy.
      * @returns The new agent's on-chain ID.
      *
-     * IMPORTANT: The transaction sender must be the q00b OWNER (not the agent wallet).
-     * In practice, the owner calls registerAgent() from their wallet, passing
-     * the agent's wallet address. This method is for convenience when the owner's
-     * private key is used.
-     *
      * @example
      * ```ts
      * const agentId = await agent.register('0xMyQ00bAddress', 0);
@@ -182,43 +196,38 @@ export declare class Q00bsAgent {
      */
     getConsensusRequest(requestId: number): Promise<ConsensusRecord>;
     /**
-     * Get this agent's Privy wallet info (Mode 2 only).
+     * Update the spending policy on this agent's wallet.
      *
-     * @returns The Privy wallet info, or undefined if not in Privy mode.
-     */
-    getPrivyWalletInfo(): PrivyWalletInfo | undefined;
-    /**
-     * Update the spending policy on this agent's Privy wallet (Mode 2 only).
-     *
-     * Use this to dynamically adjust limits — for example, after the agent
-     * gains more trust or is granted higher permissions by its owner.
-     *
-     * @param policy - The new wallet policy to apply.
-     * @throws PrivyWalletError if not in Privy mode or update fails.
+     * Routes through the Q00bs Trust API. Use this to dynamically adjust
+     * limits — for example, after the agent gains more trust.
      *
-     * @example
-     * ```ts
-     * await agent.updatePrivyPolicy({
-     *   name: 'Elevated Limits',
-     *   rules: [
-     *     { type: 'max_transaction_value', value: '0.5' },
-     *     { type: 'daily_spend_limit', value: '5.0' },
-     *   ],
-     * });
-     * ```
+     * @param policy - Policy parameters to update.
+     * @throws If wallet is not initialized or API call fails.
      */
-    updatePrivyPolicy(policy: PrivyWalletPolicy): Promise<void>;
+    updateWalletPolicy(policy: {
+        maxTransactionValue?: string;
+        dailySpendLimit?: string;
+    }): Promise<void>;
     /**
      * Sign a message with this agent's wallet.
      *
-     * Works in both modes:
-     *   - Mode 1: Uses viem walletClient.signMessage()
-     *   - Mode 2: Uses Privy's signMessage API
+     * Routes through the Q00bs Trust API for signing. The private key
+     * never leaves Q00bs' Privy infrastructure.
      *
      * @param message - The message to sign.
      * @returns The signature hex string.
      */
     signMessage(message: string): Promise<string>;
+    /**
+     * Send a transaction through the Q00bs Trust API.
+     * All transactions are policy-checked before broadcast.
+     *
+     * @param to - Destination address.
+     * @param value - ETH value in wei (optional).
+     * @param data - Encoded calldata (optional).
+     * @returns Transaction hash.
+     */
+    sendTransaction(to: string, value?: string, data?: string): Promise<string>;
     /**
      * Register this agent's ERC-8004 identity in the IdentityRegistry.
      *

package/dist/Q00bsAgent.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Q00bsAgent.d.ts","sourceRoot":"","sources":["../src/Q00bsAgent.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoCG;AASH,OAAO,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAC7C,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAQ3C,OAAO,KAAK,EACV,WAAW,EACX,WAAW,EAEX,SAAS,EACT,UAAU,EACV,eAAe,EACf,kBAAkB,EAClB,YAAY,EACZ,eAAe,EACf,eAAe,EACf,eAAe,EAGf,iBAAiB,EACjB,eAAe,EACf,eAAe,EACf,wBAAwB,EACxB,eAAe,EACf,kBAAkB,EACnB,MAAM,SAAS,CAAC;AAMjB,qBAAa,UAAU;IAErB,OAAO,CAAC,MAAM,CAAc;IAC5B,OAAO,CAAC,MAAM,CAAS;IAGvB,OAAO,CAAC,YAAY,CAAkC;IACtD,OAAO,CAAC,YAAY,CAAC,CAA0C;IAC/D,OAAO,CAAC,aAAa,CAAU;IAG/B,OAAO,CAAC,YAAY,CAAC,CAAqB;IAC1C,OAAO,CAAC,WAAW,CAAwC;IAG3D,OAAO,CAAC,aAAa,CAAiB;IACtC,OAAO,CAAC,aAAa,CAAC,CAAgB;IACtC,OAAO,CAAC,gBAAgB,CAAC,CAAmB;IAC5C,OAAO,CAAC,cAAc,CAAkB;IACxC,OAAO,CAAC,eAAe,CAAC,CAAiB;IAGzC,OAAO,CAAC,QAAQ,CAAC,CAAS;IAC1B,OAAO,CAAC,YAAY,CAAS;IAE7B,qEAAqE;IACrE,IAAI,OAAO,IAAI,MAAM,GAAG,SAAS,CAEhC;IAED,4CAA4C;IAC5C,IAAI,WAAW,IAAI,OAAO,CAEzB;IAED,sEAAsE;IACtE,IAAI,OAAO,IAAI,MAAM,CAEpB;IAED,8EAA8E;IAC9E,IAAI,UAAU,IAAI,YAAY,GAAG,OAAO,CAEvC;IAED,+DAA+D;IAC/D,IAAI,WAAW,IAAI,OAAO,CAEzB;IAED,2DAA2D;IAC3D,IAAI,WAAW,IAAI,kBAAkB,GAAG,SAAS,CAEhD;IAED,qFAAqF;IACrF,IAAI,OAAO,IAAI,cAAc,GAAG,SAAS,CAExC;IAMD;;;;;;OAMG;gBACS,MAAM,EAAE,WAAW;IAmC/B;;;;;;;;;OASG;IACG,UAAU,CAAC,YAAY,CAAC,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC;IAiIjE;;;;;;;;;;;;;;;;;OAiBG;IACG,QAAQ,CAAC,gBAAgB,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA+D/E;;;;;OAKG;IACG,UAAU,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,CAAC;IAK3D;;OAEG;IACG,WAAW,IAAI,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IAShD;;;;;OAKG;IACG,cAAc,CAAC,KAAK,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IAKpE;;OAEG;IACG,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IAK5D;;OAEG;IACG,gBAAgB,CACpB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,WAAW,CAAA;KAAE,GAAG,IAAI,CAAC;IASrD;;;;;;OAMG;IACG,YAAY,CAAC,MAAM,EAAE,kBAAkB,GAAG,OAAO,CAAC,MAAM,CAAC;IAM/D;;OAEG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMrD;;OAEG;IACG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,sBAAsB,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMvF;;OAEG;IACG,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMtD;;OAEG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMrD;;OAEG;IACG,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAUxD;;;;;OAKG;IACG,gBAAgB,CAAC,MAAM,EAAE,eAAe,GAAG,OAAO,CAAC,MAAM,CAAC;IAMhE;;OAEG;IACG,eAAe,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC;IAM3E;;OAEG;IACG,gBAAgB,CACpB,SAAS,EAAE,MAAM,EACjB,cAAc,CAAC,EAAE,MAAM,EACvB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,eAAe,CAAC;IAM3B;;OAEG;IACG,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAUtE;;;;OAIG;IACH,kBAAkB,IAAI,eAAe,GAAG,SAAS;IAIjD;;;;;;;;;;;;;;;;;;;OAmBG;IACG,iBAAiB,CAAC,MAAM,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC;IAgBjE;;;;;;;;;OASG;IACG,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA8BnD;;;;;;;;;;;;;;;OAeG;IACG,uBAAuB,CAAC,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAO9E;;;;;OAKG;IACG,kBAAkB,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IAM1E;;;;;;;;OAQG;IACG,kBAAkB,CAAC,cAAc,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAM5E;;;;;;;OAOG;IACG,kBAAkB,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAgB/D;;;;;;;;;;;;;;;;;;;OAmBG;IACG,mBAAmB,CACvB,MAAM,EAAE,kBAAkB,EAC1B,kBAAkB,EAAE,MAAM,GACzB,OAAO,CAAC,MAAM,CAAC;IAMlB;;;;;OAKG;IACG,oBAAoB,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,CAAC;IAMrF;;;;;OAKG;IACG,kBAAkB,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IAU5E;;;OAGG;IACH,cAAc,CAAC,cAAc,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM;IAI5D;;OAEG;IACH,eAAe,IAAI,IAAI;IAQvB,OAAO,CAAC,iBAAiB;IAMzB,OAAO,CAAC,gBAAgB;IAOxB,OAAO,CAAC,YAAY;IAiBpB,OAAO,CAAC,eAAe;IAgBvB,OAAO,CAAC,aAAa;CAKtB"}
+{"version":3,"file":"Q00bsAgent.d.ts","sourceRoot":"","sources":["../src/Q00bsAgent.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;AAWH,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAc3C,OAAO,KAAK,EACV,WAAW,EACX,WAAW,EAEX,SAAS,EACT,UAAU,EACV,eAAe,EACf,kBAAkB,EAClB,YAAY,EACZ,eAAe,EACf,eAAe,EACf,eAAe,EAKf,eAAe,EACf,wBAAwB,EACxB,eAAe,EACf,kBAAkB,EACnB,MAAM,SAAS,CAAC;AAMjB,qBAAa,UAAU;IAErB,OAAO,CAAC,MAAM,CAAc;IAC5B,OAAO,CAAC,MAAM,CAAS;IAGvB,OAAO,CAAC,YAAY,CAAkC;IACtD,OAAO,CAAC,YAAY,CAAC,CAA0C;IAC/D,OAAO,CAAC,aAAa,CAAU;IAC/B,OAAO,CAAC,SAAS,CAAC,CAAS;IAG3B,OAAO,CAAC,YAAY,CAAC,CAAqB;IAG1C,OAAO,CAAC,aAAa,CAAiB;IACtC,OAAO,CAAC,aAAa,CAAC,CAAgB;IACtC,OAAO,CAAC,gBAAgB,CAAC,CAAmB;IAC5C,OAAO,CAAC,cAAc,CAAkB;IACxC,OAAO,CAAC,eAAe,CAAC,CAAiB;IAGzC,OAAO,CAAC,QAAQ,CAAC,CAAS;IAC1B,OAAO,CAAC,YAAY,CAAS;IAE7B,qEAAqE;IACrE,IAAI,OAAO,IAAI,MAAM,GAAG,SAAS,CAEhC;IAED,4CAA4C;IAC5C,IAAI,WAAW,IAAI,OAAO,CAEzB;IAED,2EAA2E;IAC3E,IAAI,OAAO,IAAI,MAAM,CAEpB;IAED,oFAAoF;IACpF,IAAI,QAAQ,IAAI,MAAM,GAAG,SAAS,CAEjC;IAED,qFAAqF;IACrF,IAAI,OAAO,IAAI,cAAc,GAAG,SAAS,CAExC;IAMD;;;;;;OAMG;gBACS,MAAM,EAAE,WAAW;IA4B/B,OAAO,CAAC,gBAAgB,CAAgB;IAExC;;;;;;OAMG;IACH,gBAAgB,CAAC,GAAG,MAAM,EAAE,MAAM,EAAE,GAAG,IAAI;IAK3C,iDAAiD;IACjD,IAAI,sBAAsB,IAAI,MAAM,CAEnC;IAKD,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,UAAU,CAK/B;IAEH;;;;;;;;;;OAUG;YACW,OAAO;IAyDrB;;;;;;;;;OASG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAsIjC;;;;;;;;;;;;;;;OAeG;IACG,QAAQ,CAAC,gBAAgB,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA8E/E;;;;;OAKG;IACG,UAAU,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,CAAC;IAK3D;;OAEG;IACG,WAAW,IAAI,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IAShD;;;;;OAKG;IACG,cAAc,CAAC,KAAK,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IAKpE;;OAEG;IACG,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IAK5D;;OAEG;IACG,gBAAgB,CACpB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,WAAW,CAAA;KAAE,GAAG,IAAI,CAAC;IASrD;;;;;;OAMG;IACG,YAAY,CAAC,MAAM,EAAE,kBAAkB,GAAG,OAAO,CAAC,MAAM,CAAC;IAM/D;;OAEG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMrD;;OAEG;IACG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,sBAAsB,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMvF;;OAEG;IACG,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMtD;;OAEG;IACG,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAMrD;;OAEG;IACG,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAUxD;;;;;OAKG;IACG,gBAAgB,CAAC,MAAM,EAAE,eAAe,GAAG,OAAO,CAAC,MAAM,CAAC;IAMhE;;OAEG;IACG,eAAe,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC;IAM3E;;OAEG;IACG,gBAAgB,CACpB,SAAS,EAAE,MAAM,EACjB,cAAc,CAAC,EAAE,MAAM,EACvB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,eAAe,CAAC;IAM3B;;OAEG;IACG,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAUtE;;;;;;;;OAQG;IACG,kBAAkB,CAAC,MAAM,EAAE;QAC/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;QAC7B,eAAe,CAAC,EAAE,MAAM,CAAC;KAC1B,GAAG,OAAO,CAAC,IAAI,CAAC;IAiCjB;;;;;;;;OAQG;IACG,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA4BnD;;;;;;;;OAQG;IACG,eAAe,CAAC,EAAE,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA0BjF;;;;;;;;;;;;;;;OAeG;IACG,uBAAuB,CAAC,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAO9E;;;;;OAKG;IACG,kBAAkB,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC;IAM1E;;;;;;;;OAQG;IACG,kBAAkB,CAAC,cAAc,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAM5E;;;;;;;OAOG;IACG,kBAAkB,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAgB/D;;;;;;;;;;;;;;;;;;;OAmBG;IACG,mBAAmB,CACvB,MAAM,EAAE,kBAAkB,EAC1B,kBAAkB,EAAE,MAAM,GACzB,OAAO,CAAC,MAAM,CAAC;IAMlB;;;;;OAKG;IACG,oBAAoB,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,wBAAwB,CAAC;IAMrF;;;;;OAKG;IACG,kBAAkB,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IAU5E;;;OAGG;IACH,cAAc,CAAC,cAAc,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM;IAI5D;;OAEG;IACH,eAAe,IAAI,IAAI;IAQvB,OAAO,CAAC,iBAAiB;IAMzB,OAAO,CAAC,gBAAgB;IAOxB,OAAO,CAAC,YAAY;IAUpB,OAAO,CAAC,eAAe;IAUvB,OAAO,CAAC,aAAa;CAKtB"}