@sd-jwt/sd-jwt-vc 0.7.1-next.0 → 0.7.1-next.2

package/dist/index.d.mts

@@ -1,5 +1,13 @@
-import { SdJwtPayload, SDJwtInstance } from '@sd-jwt/core';
 import { SDJWTConfig, DisclosureFrame } from '@sd-jwt/types';
+import { SdJwtPayload, SDJwtInstance } from '@sd-jwt/core';
+
+/**
+ * Configuration for SD-JWT-VC
+ */
+type SDJWTVCConfig = SDJWTConfig & {
+    statusListFetcher?: (uri: string) => Promise<string>;
+    statusValidator?: (status: number) => Promise<void>;
+};
 
 interface SDJWTVCStatusReference {
     status_list: {
@@ -19,14 +27,6 @@ interface SdJwtVcPayload extends SdJwtPayload {
     iat?: number;
 }
 
-/**
- * Configuration for SD-JWT-VC
- */
-type SDJWTVCConfig = SDJWTConfig & {
-    statusListFetcher?: (uri: string) => Promise<string>;
-    statusValidator?: (status: number) => Promise<void>;
-};
-
 declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     /**
      * The type of the SD-JWT-VC set in the header.typ field.
@@ -60,4 +60,4 @@ declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     }>;
 }
 
-export { SDJwtVcInstance };
+export { type SDJWTVCConfig, type SDJWTVCStatusReference, SDJwtVcInstance, type SdJwtVcPayload };

package/dist/index.d.ts

@@ -1,5 +1,13 @@
-import { SdJwtPayload, SDJwtInstance } from '@sd-jwt/core';
 import { SDJWTConfig, DisclosureFrame } from '@sd-jwt/types';
+import { SdJwtPayload, SDJwtInstance } from '@sd-jwt/core';
+
+/**
+ * Configuration for SD-JWT-VC
+ */
+type SDJWTVCConfig = SDJWTConfig & {
+    statusListFetcher?: (uri: string) => Promise<string>;
+    statusValidator?: (status: number) => Promise<void>;
+};
 
 interface SDJWTVCStatusReference {
     status_list: {
@@ -19,14 +27,6 @@ interface SdJwtVcPayload extends SdJwtPayload {
     iat?: number;
 }
 
-/**
- * Configuration for SD-JWT-VC
- */
-type SDJWTVCConfig = SDJWTConfig & {
-    statusListFetcher?: (uri: string) => Promise<string>;
-    statusValidator?: (status: number) => Promise<void>;
-};
-
 declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     /**
      * The type of the SD-JWT-VC set in the header.typ field.
@@ -60,4 +60,4 @@ declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     }>;
 }
 
-export { SDJwtVcInstance };
+export { type SDJWTVCConfig, type SDJWTVCStatusReference, SDJwtVcInstance, type SdJwtVcPayload };

package/dist/index.js

@@ -1,14 +1,10 @@
 "use strict";
-var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
 var __getProtoOf = Object.getPrototypeOf;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __reflectGet = Reflect.get;
-var __commonJS = (cb, mod) => function __require() {
-  return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
-};
 var __export = (target, all) => {
   for (var name in all)
     __defProp(target, name, { get: all[name], enumerable: true });
@@ -21,14 +17,6 @@ var __copyProps = (to, from, except, desc) => {
   }
   return to;
 };
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 var __superGet = (cls, obj, key) => __reflectGet(__getProtoOf(cls), key, obj);
 var __async = (__this, __arguments, generator) => {
@@ -52,401 +40,16 @@ var __async = (__this, __arguments, generator) => {
   });
 };
 
-// ../../node_modules/.pnpm/js-base64@3.7.6/node_modules/js-base64/base64.js
-var require_base64 = __commonJS({
-  "../../node_modules/.pnpm/js-base64@3.7.6/node_modules/js-base64/base64.js"(exports2, module2) {
-    "use strict";
-    (function(global2, factory) {
-      typeof exports2 === "object" && typeof module2 !== "undefined" ? module2.exports = factory() : typeof define === "function" && define.amd ? define(factory) : (
-        // cf. https://github.com/dankogai/js-base64/issues/119
-        function() {
-          var _Base64 = global2.Base64;
-          var gBase64 = factory();
-          gBase64.noConflict = function() {
-            global2.Base64 = _Base64;
-            return gBase64;
-          };
-          if (global2.Meteor) {
-            Base64 = gBase64;
-          }
-          global2.Base64 = gBase64;
-        }()
-      );
-    })(typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : typeof global !== "undefined" ? global : exports2, function() {
-      "use strict";
-      var version = "3.7.6";
-      var VERSION = version;
-      var _hasatob = typeof atob === "function";
-      var _hasbtoa = typeof btoa === "function";
-      var _hasBuffer = typeof Buffer === "function";
-      var _TD = typeof TextDecoder === "function" ? new TextDecoder() : void 0;
-      var _TE = typeof TextEncoder === "function" ? new TextEncoder() : void 0;
-      var b64ch = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
-      var b64chs = Array.prototype.slice.call(b64ch);
-      var b64tab = function(a) {
-        var tab = {};
-        a.forEach(function(c, i) {
-          return tab[c] = i;
-        });
-        return tab;
-      }(b64chs);
-      var b64re = /^(?:[A-Za-z\d+\/]{4})*?(?:[A-Za-z\d+\/]{2}(?:==)?|[A-Za-z\d+\/]{3}=?)?$/;
-      var _fromCC = String.fromCharCode.bind(String);
-      var _U8Afrom = typeof Uint8Array.from === "function" ? Uint8Array.from.bind(Uint8Array) : function(it) {
-        return new Uint8Array(Array.prototype.slice.call(it, 0));
-      };
-      var _mkUriSafe = function(src) {
-        return src.replace(/=/g, "").replace(/[+\/]/g, function(m0) {
-          return m0 == "+" ? "-" : "_";
-        });
-      };
-      var _tidyB64 = function(s) {
-        return s.replace(/[^A-Za-z0-9\+\/]/g, "");
-      };
-      var btoaPolyfill = function(bin) {
-        var u32, c0, c1, c2, asc = "";
-        var pad = bin.length % 3;
-        for (var i = 0; i < bin.length; ) {
-          if ((c0 = bin.charCodeAt(i++)) > 255 || (c1 = bin.charCodeAt(i++)) > 255 || (c2 = bin.charCodeAt(i++)) > 255)
-            throw new TypeError("invalid character found");
-          u32 = c0 << 16 | c1 << 8 | c2;
-          asc += b64chs[u32 >> 18 & 63] + b64chs[u32 >> 12 & 63] + b64chs[u32 >> 6 & 63] + b64chs[u32 & 63];
-        }
-        return pad ? asc.slice(0, pad - 3) + "===".substring(pad) : asc;
-      };
-      var _btoa = _hasbtoa ? function(bin) {
-        return btoa(bin);
-      } : _hasBuffer ? function(bin) {
-        return Buffer.from(bin, "binary").toString("base64");
-      } : btoaPolyfill;
-      var _fromUint8Array = _hasBuffer ? function(u8a) {
-        return Buffer.from(u8a).toString("base64");
-      } : function(u8a) {
-        var maxargs = 4096;
-        var strs = [];
-        for (var i = 0, l = u8a.length; i < l; i += maxargs) {
-          strs.push(_fromCC.apply(null, u8a.subarray(i, i + maxargs)));
-        }
-        return _btoa(strs.join(""));
-      };
-      var fromUint8Array = function(u8a, urlsafe) {
-        if (urlsafe === void 0) {
-          urlsafe = false;
-        }
-        return urlsafe ? _mkUriSafe(_fromUint8Array(u8a)) : _fromUint8Array(u8a);
-      };
-      var cb_utob = function(c) {
-        if (c.length < 2) {
-          var cc = c.charCodeAt(0);
-          return cc < 128 ? c : cc < 2048 ? _fromCC(192 | cc >>> 6) + _fromCC(128 | cc & 63) : _fromCC(224 | cc >>> 12 & 15) + _fromCC(128 | cc >>> 6 & 63) + _fromCC(128 | cc & 63);
-        } else {
-          var cc = 65536 + (c.charCodeAt(0) - 55296) * 1024 + (c.charCodeAt(1) - 56320);
-          return _fromCC(240 | cc >>> 18 & 7) + _fromCC(128 | cc >>> 12 & 63) + _fromCC(128 | cc >>> 6 & 63) + _fromCC(128 | cc & 63);
-        }
-      };
-      var re_utob = /[\uD800-\uDBFF][\uDC00-\uDFFFF]|[^\x00-\x7F]/g;
-      var utob = function(u) {
-        return u.replace(re_utob, cb_utob);
-      };
-      var _encode = _hasBuffer ? function(s) {
-        return Buffer.from(s, "utf8").toString("base64");
-      } : _TE ? function(s) {
-        return _fromUint8Array(_TE.encode(s));
-      } : function(s) {
-        return _btoa(utob(s));
-      };
-      var encode = function(src, urlsafe) {
-        if (urlsafe === void 0) {
-          urlsafe = false;
-        }
-        return urlsafe ? _mkUriSafe(_encode(src)) : _encode(src);
-      };
-      var encodeURI = function(src) {
-        return encode(src, true);
-      };
-      var re_btou = /[\xC0-\xDF][\x80-\xBF]|[\xE0-\xEF][\x80-\xBF]{2}|[\xF0-\xF7][\x80-\xBF]{3}/g;
-      var cb_btou = function(cccc) {
-        switch (cccc.length) {
-          case 4:
-            var cp = (7 & cccc.charCodeAt(0)) << 18 | (63 & cccc.charCodeAt(1)) << 12 | (63 & cccc.charCodeAt(2)) << 6 | 63 & cccc.charCodeAt(3), offset = cp - 65536;
-            return _fromCC((offset >>> 10) + 55296) + _fromCC((offset & 1023) + 56320);
-          case 3:
-            return _fromCC((15 & cccc.charCodeAt(0)) << 12 | (63 & cccc.charCodeAt(1)) << 6 | 63 & cccc.charCodeAt(2));
-          default:
-            return _fromCC((31 & cccc.charCodeAt(0)) << 6 | 63 & cccc.charCodeAt(1));
-        }
-      };
-      var btou = function(b) {
-        return b.replace(re_btou, cb_btou);
-      };
-      var atobPolyfill = function(asc) {
-        asc = asc.replace(/\s+/g, "");
-        if (!b64re.test(asc))
-          throw new TypeError("malformed base64.");
-        asc += "==".slice(2 - (asc.length & 3));
-        var u24, bin = "", r1, r2;
-        for (var i = 0; i < asc.length; ) {
-          u24 = b64tab[asc.charAt(i++)] << 18 | b64tab[asc.charAt(i++)] << 12 | (r1 = b64tab[asc.charAt(i++)]) << 6 | (r2 = b64tab[asc.charAt(i++)]);
-          bin += r1 === 64 ? _fromCC(u24 >> 16 & 255) : r2 === 64 ? _fromCC(u24 >> 16 & 255, u24 >> 8 & 255) : _fromCC(u24 >> 16 & 255, u24 >> 8 & 255, u24 & 255);
-        }
-        return bin;
-      };
-      var _atob = _hasatob ? function(asc) {
-        return atob(_tidyB64(asc));
-      } : _hasBuffer ? function(asc) {
-        return Buffer.from(asc, "base64").toString("binary");
-      } : atobPolyfill;
-      var _toUint8Array = _hasBuffer ? function(a) {
-        return _U8Afrom(Buffer.from(a, "base64"));
-      } : function(a) {
-        return _U8Afrom(_atob(a).split("").map(function(c) {
-          return c.charCodeAt(0);
-        }));
-      };
-      var toUint8Array = function(a) {
-        return _toUint8Array(_unURI(a));
-      };
-      var _decode = _hasBuffer ? function(a) {
-        return Buffer.from(a, "base64").toString("utf8");
-      } : _TD ? function(a) {
-        return _TD.decode(_toUint8Array(a));
-      } : function(a) {
-        return btou(_atob(a));
-      };
-      var _unURI = function(a) {
-        return _tidyB64(a.replace(/[-_]/g, function(m0) {
-          return m0 == "-" ? "+" : "/";
-        }));
-      };
-      var decode = function(src) {
-        return _decode(_unURI(src));
-      };
-      var isValid = function(src) {
-        if (typeof src !== "string")
-          return false;
-        var s = src.replace(/\s+/g, "").replace(/={0,2}$/, "");
-        return !/[^\s0-9a-zA-Z\+/]/.test(s) || !/[^\s0-9a-zA-Z\-_]/.test(s);
-      };
-      var _noEnum = function(v) {
-        return {
-          value: v,
-          enumerable: false,
-          writable: true,
-          configurable: true
-        };
-      };
-      var extendString = function() {
-        var _add = function(name, body) {
-          return Object.defineProperty(String.prototype, name, _noEnum(body));
-        };
-        _add("fromBase64", function() {
-          return decode(this);
-        });
-        _add("toBase64", function(urlsafe) {
-          return encode(this, urlsafe);
-        });
-        _add("toBase64URI", function() {
-          return encode(this, true);
-        });
-        _add("toBase64URL", function() {
-          return encode(this, true);
-        });
-        _add("toUint8Array", function() {
-          return toUint8Array(this);
-        });
-      };
-      var extendUint8Array = function() {
-        var _add = function(name, body) {
-          return Object.defineProperty(Uint8Array.prototype, name, _noEnum(body));
-        };
-        _add("toBase64", function(urlsafe) {
-          return fromUint8Array(this, urlsafe);
-        });
-        _add("toBase64URI", function() {
-          return fromUint8Array(this, true);
-        });
-        _add("toBase64URL", function() {
-          return fromUint8Array(this, true);
-        });
-      };
-      var extendBuiltins = function() {
-        extendString();
-        extendUint8Array();
-      };
-      var gBase64 = {
-        version,
-        VERSION,
-        atob: _atob,
-        atobPolyfill,
-        btoa: _btoa,
-        btoaPolyfill,
-        fromBase64: decode,
-        toBase64: encode,
-        encode,
-        encodeURI,
-        encodeURL: encodeURI,
-        utob,
-        btou,
-        decode,
-        isValid,
-        fromUint8Array,
-        toUint8Array,
-        extendString,
-        extendUint8Array,
-        extendBuiltins
-      };
-      gBase64.Base64 = {};
-      Object.keys(gBase64).forEach(function(k) {
-        return gBase64.Base64[k] = gBase64[k];
-      });
-      return gBase64;
-    });
-  }
-});
-
-// ../utils/dist/index.js
-var require_dist = __commonJS({
-  "../utils/dist/index.js"(exports2, module2) {
-    "use strict";
-    var __defProp2 = Object.defineProperty;
-    var __getOwnPropDesc2 = Object.getOwnPropertyDescriptor;
-    var __getOwnPropNames2 = Object.getOwnPropertyNames;
-    var __hasOwnProp2 = Object.prototype.hasOwnProperty;
-    var __export2 = (target, all) => {
-      for (var name in all)
-        __defProp2(target, name, { get: all[name], enumerable: true });
-    };
-    var __copyProps2 = (to, from, except, desc) => {
-      if (from && typeof from === "object" || typeof from === "function") {
-        for (let key of __getOwnPropNames2(from))
-          if (!__hasOwnProp2.call(to, key) && key !== except)
-            __defProp2(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc2(from, key)) || desc.enumerable });
-      }
-      return to;
-    };
-    var __toCommonJS2 = (mod) => __copyProps2(__defProp2({}, "__esModule", { value: true }), mod);
-    var __async2 = (__this, __arguments, generator) => {
-      return new Promise((resolve, reject) => {
-        var fulfilled = (value) => {
-          try {
-            step(generator.next(value));
-          } catch (e) {
-            reject(e);
-          }
-        };
-        var rejected = (value) => {
-          try {
-            step(generator.throw(value));
-          } catch (e) {
-            reject(e);
-          }
-        };
-        var step = (x) => x.done ? resolve(x.value) : Promise.resolve(x.value).then(fulfilled, rejected);
-        step((generator = generator.apply(__this, __arguments)).next());
-      });
-    };
-    var src_exports2 = {};
-    __export2(src_exports2, {
-      Disclosure: () => Disclosure,
-      SDJWTException: () => SDJWTException2,
-      base64urlDecode: () => base64urlDecode,
-      base64urlEncode: () => base64urlEncode,
-      uint8ArrayToBase64Url: () => uint8ArrayToBase64Url
-    });
-    module2.exports = __toCommonJS2(src_exports2);
-    var import_js_base64 = require_base64();
-    var base64urlEncode = import_js_base64.Base64.encodeURI;
-    var base64urlDecode = import_js_base64.Base64.decode;
-    var uint8ArrayToBase64Url = (input) => import_js_base64.Base64.fromUint8Array(input, true);
-    var SDJWTException2 = class _SDJWTException extends Error {
-      constructor(message, details) {
-        super(message);
-        Object.setPrototypeOf(this, _SDJWTException.prototype);
-        this.name = "SDJWTException";
-        this.details = details;
-      }
-      getFullMessage() {
-        return `${this.name}: ${this.message} ${this.details ? `- ${JSON.stringify(this.details)}` : ""}`;
-      }
-    };
-    var Disclosure = class _Disclosure {
-      constructor(data, _meta) {
-        this._digest = _meta == null ? void 0 : _meta.digest;
-        this._encoded = _meta == null ? void 0 : _meta.encoded;
-        if (data.length === 2) {
-          this.salt = data[0];
-          this.value = data[1];
-          return;
-        }
-        if (data.length === 3) {
-          this.salt = data[0];
-          this.key = data[1];
-          this.value = data[2];
-          return;
-        }
-        throw new SDJWTException2("Invalid disclosure data");
-      }
-      // We need to digest of the original encoded data.
-      // After decode process, we use JSON.stringify to encode the data.
-      // This can be different from the original encoded data.
-      static fromEncode(s, hash) {
-        return __async2(this, null, function* () {
-          const { hasher, alg } = hash;
-          const digest = yield hasher(s, alg);
-          const digestStr = uint8ArrayToBase64Url(digest);
-          const item = JSON.parse(base64urlDecode(s));
-          return _Disclosure.fromArray(item, { digest: digestStr, encoded: s });
-        });
-      }
-      static fromEncodeSync(s, hash) {
-        const { hasher, alg } = hash;
-        const digest = hasher(s, alg);
-        const digestStr = uint8ArrayToBase64Url(digest);
-        const item = JSON.parse(base64urlDecode(s));
-        return _Disclosure.fromArray(item, { digest: digestStr, encoded: s });
-      }
-      static fromArray(item, _meta) {
-        return new _Disclosure(item, _meta);
-      }
-      encode() {
-        if (!this._encoded) {
-          this._encoded = base64urlEncode(JSON.stringify(this.decode()));
-        }
-        return this._encoded;
-      }
-      decode() {
-        return this.key ? [this.salt, this.key, this.value] : [this.salt, this.value];
-      }
-      digest(hash) {
-        return __async2(this, null, function* () {
-          const { hasher, alg } = hash;
-          if (!this._digest) {
-            const hash2 = yield hasher(this.encode(), alg);
-            this._digest = uint8ArrayToBase64Url(hash2);
-          }
-          return this._digest;
-        });
-      }
-      digestSync(hash) {
-        const { hasher, alg } = hash;
-        if (!this._digest) {
-          const hash2 = hasher(this.encode(), alg);
-          this._digest = uint8ArrayToBase64Url(hash2);
-        }
-        return this._digest;
-      }
-    };
-  }
-});
-
 // src/index.ts
 var src_exports = {};
 __export(src_exports, {
   SDJwtVcInstance: () => SDJwtVcInstance
 });
 module.exports = __toCommonJS(src_exports);
+
+// src/sd-jwt-vc-instance.ts
 var import_core = require("@sd-jwt/core");
-var import_dist = __toESM(require_dist());
+var import_utils = require("@sd-jwt/utils");
 var import_jwt_status_list = require("@sd-jwt/jwt-status-list");
 var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
   constructor(userConfig) {
@@ -469,7 +72,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
       const reservedNames = ["iss", "nbf", "exp", "cnf", "vct", "status"];
       const reservedNamesInDisclosureFrame = disclosureFrame._sd.filter((key) => reservedNames.includes(key));
       if (reservedNamesInDisclosureFrame.length > 0) {
-        throw new import_dist.SDJWTException("Cannot disclose protected field");
+        throw new import_utils.SDJWTException("Cannot disclose protected field");
       }
     }
   }
@@ -503,7 +106,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
   statusValidator(status) {
     return __async(this, null, function* () {
       if (status !== 0)
-        throw new import_dist.SDJWTException("Status is not valid");
+        throw new import_utils.SDJWTException("Status is not valid");
       return Promise.resolve();
     });
   }
@@ -525,7 +128,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
           const slJWT = import_core.Jwt.fromEncode(statusListJWT);
           yield slJWT.verify(this.userConfig.verifier);
           if (((_b = slJWT.payload) == null ? void 0 : _b.exp) && slJWT.payload.exp < Date.now() / 1e3) {
-            throw new import_dist.SDJWTException("Status list is expired");
+            throw new import_utils.SDJWTException("Status list is expired");
           }
           const statusList = (0, import_jwt_status_list.getListFromStatusListJWT)(statusListJWT);
           const status = statusList.getStatus(

package/dist/index.mjs

@@ -1,29 +1,5 @@
-var __create = Object.create;
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
-var __getOwnPropNames = Object.getOwnPropertyNames;
 var __getProtoOf = Object.getPrototypeOf;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __reflectGet = Reflect.get;
-var __commonJS = (cb, mod) => function __require() {
-  return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
-  // If the importer is in node compatibility mode or this is not an ESM
-  // file that has been converted to a CommonJS file using a Babel-
-  // compatible transform (i.e. "__esModule" has not been set), then set
-  // "default" to the CommonJS "module.exports" for node compatibility.
-  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
-  mod
-));
 var __superGet = (cls, obj, key) => __reflectGet(__getProtoOf(cls), key, obj);
 var __async = (__this, __arguments, generator) => {
   return new Promise((resolve, reject) => {
@@ -46,396 +22,9 @@ var __async = (__this, __arguments, generator) => {
   });
 };
 
-// ../../node_modules/.pnpm/js-base64@3.7.6/node_modules/js-base64/base64.js
-var require_base64 = __commonJS({
-  "../../node_modules/.pnpm/js-base64@3.7.6/node_modules/js-base64/base64.js"(exports, module) {
-    "use strict";
-    (function(global2, factory) {
-      typeof exports === "object" && typeof module !== "undefined" ? module.exports = factory() : typeof define === "function" && define.amd ? define(factory) : (
-        // cf. https://github.com/dankogai/js-base64/issues/119
-        function() {
-          var _Base64 = global2.Base64;
-          var gBase64 = factory();
-          gBase64.noConflict = function() {
-            global2.Base64 = _Base64;
-            return gBase64;
-          };
-          if (global2.Meteor) {
-            Base64 = gBase64;
-          }
-          global2.Base64 = gBase64;
-        }()
-      );
-    })(typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : typeof global !== "undefined" ? global : exports, function() {
-      "use strict";
-      var version = "3.7.6";
-      var VERSION = version;
-      var _hasatob = typeof atob === "function";
-      var _hasbtoa = typeof btoa === "function";
-      var _hasBuffer = typeof Buffer === "function";
-      var _TD = typeof TextDecoder === "function" ? new TextDecoder() : void 0;
-      var _TE = typeof TextEncoder === "function" ? new TextEncoder() : void 0;
-      var b64ch = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
-      var b64chs = Array.prototype.slice.call(b64ch);
-      var b64tab = function(a) {
-        var tab = {};
-        a.forEach(function(c, i) {
-          return tab[c] = i;
-        });
-        return tab;
-      }(b64chs);
-      var b64re = /^(?:[A-Za-z\d+\/]{4})*?(?:[A-Za-z\d+\/]{2}(?:==)?|[A-Za-z\d+\/]{3}=?)?$/;
-      var _fromCC = String.fromCharCode.bind(String);
-      var _U8Afrom = typeof Uint8Array.from === "function" ? Uint8Array.from.bind(Uint8Array) : function(it) {
-        return new Uint8Array(Array.prototype.slice.call(it, 0));
-      };
-      var _mkUriSafe = function(src) {
-        return src.replace(/=/g, "").replace(/[+\/]/g, function(m0) {
-          return m0 == "+" ? "-" : "_";
-        });
-      };
-      var _tidyB64 = function(s) {
-        return s.replace(/[^A-Za-z0-9\+\/]/g, "");
-      };
-      var btoaPolyfill = function(bin) {
-        var u32, c0, c1, c2, asc = "";
-        var pad = bin.length % 3;
-        for (var i = 0; i < bin.length; ) {
-          if ((c0 = bin.charCodeAt(i++)) > 255 || (c1 = bin.charCodeAt(i++)) > 255 || (c2 = bin.charCodeAt(i++)) > 255)
-            throw new TypeError("invalid character found");
-          u32 = c0 << 16 | c1 << 8 | c2;
-          asc += b64chs[u32 >> 18 & 63] + b64chs[u32 >> 12 & 63] + b64chs[u32 >> 6 & 63] + b64chs[u32 & 63];
-        }
-        return pad ? asc.slice(0, pad - 3) + "===".substring(pad) : asc;
-      };
-      var _btoa = _hasbtoa ? function(bin) {
-        return btoa(bin);
-      } : _hasBuffer ? function(bin) {
-        return Buffer.from(bin, "binary").toString("base64");
-      } : btoaPolyfill;
-      var _fromUint8Array = _hasBuffer ? function(u8a) {
-        return Buffer.from(u8a).toString("base64");
-      } : function(u8a) {
-        var maxargs = 4096;
-        var strs = [];
-        for (var i = 0, l = u8a.length; i < l; i += maxargs) {
-          strs.push(_fromCC.apply(null, u8a.subarray(i, i + maxargs)));
-        }
-        return _btoa(strs.join(""));
-      };
-      var fromUint8Array = function(u8a, urlsafe) {
-        if (urlsafe === void 0) {
-          urlsafe = false;
-        }
-        return urlsafe ? _mkUriSafe(_fromUint8Array(u8a)) : _fromUint8Array(u8a);
-      };
-      var cb_utob = function(c) {
-        if (c.length < 2) {
-          var cc = c.charCodeAt(0);
-          return cc < 128 ? c : cc < 2048 ? _fromCC(192 | cc >>> 6) + _fromCC(128 | cc & 63) : _fromCC(224 | cc >>> 12 & 15) + _fromCC(128 | cc >>> 6 & 63) + _fromCC(128 | cc & 63);
-        } else {
-          var cc = 65536 + (c.charCodeAt(0) - 55296) * 1024 + (c.charCodeAt(1) - 56320);
-          return _fromCC(240 | cc >>> 18 & 7) + _fromCC(128 | cc >>> 12 & 63) + _fromCC(128 | cc >>> 6 & 63) + _fromCC(128 | cc & 63);
-        }
-      };
-      var re_utob = /[\uD800-\uDBFF][\uDC00-\uDFFFF]|[^\x00-\x7F]/g;
-      var utob = function(u) {
-        return u.replace(re_utob, cb_utob);
-      };
-      var _encode = _hasBuffer ? function(s) {
-        return Buffer.from(s, "utf8").toString("base64");
-      } : _TE ? function(s) {
-        return _fromUint8Array(_TE.encode(s));
-      } : function(s) {
-        return _btoa(utob(s));
-      };
-      var encode = function(src, urlsafe) {
-        if (urlsafe === void 0) {
-          urlsafe = false;
-        }
-        return urlsafe ? _mkUriSafe(_encode(src)) : _encode(src);
-      };
-      var encodeURI = function(src) {
-        return encode(src, true);
-      };
-      var re_btou = /[\xC0-\xDF][\x80-\xBF]|[\xE0-\xEF][\x80-\xBF]{2}|[\xF0-\xF7][\x80-\xBF]{3}/g;
-      var cb_btou = function(cccc) {
-        switch (cccc.length) {
-          case 4:
-            var cp = (7 & cccc.charCodeAt(0)) << 18 | (63 & cccc.charCodeAt(1)) << 12 | (63 & cccc.charCodeAt(2)) << 6 | 63 & cccc.charCodeAt(3), offset = cp - 65536;
-            return _fromCC((offset >>> 10) + 55296) + _fromCC((offset & 1023) + 56320);
-          case 3:
-            return _fromCC((15 & cccc.charCodeAt(0)) << 12 | (63 & cccc.charCodeAt(1)) << 6 | 63 & cccc.charCodeAt(2));
-          default:
-            return _fromCC((31 & cccc.charCodeAt(0)) << 6 | 63 & cccc.charCodeAt(1));
-        }
-      };
-      var btou = function(b) {
-        return b.replace(re_btou, cb_btou);
-      };
-      var atobPolyfill = function(asc) {
-        asc = asc.replace(/\s+/g, "");
-        if (!b64re.test(asc))
-          throw new TypeError("malformed base64.");
-        asc += "==".slice(2 - (asc.length & 3));
-        var u24, bin = "", r1, r2;
-        for (var i = 0; i < asc.length; ) {
-          u24 = b64tab[asc.charAt(i++)] << 18 | b64tab[asc.charAt(i++)] << 12 | (r1 = b64tab[asc.charAt(i++)]) << 6 | (r2 = b64tab[asc.charAt(i++)]);
-          bin += r1 === 64 ? _fromCC(u24 >> 16 & 255) : r2 === 64 ? _fromCC(u24 >> 16 & 255, u24 >> 8 & 255) : _fromCC(u24 >> 16 & 255, u24 >> 8 & 255, u24 & 255);
-        }
-        return bin;
-      };
-      var _atob = _hasatob ? function(asc) {
-        return atob(_tidyB64(asc));
-      } : _hasBuffer ? function(asc) {
-        return Buffer.from(asc, "base64").toString("binary");
-      } : atobPolyfill;
-      var _toUint8Array = _hasBuffer ? function(a) {
-        return _U8Afrom(Buffer.from(a, "base64"));
-      } : function(a) {
-        return _U8Afrom(_atob(a).split("").map(function(c) {
-          return c.charCodeAt(0);
-        }));
-      };
-      var toUint8Array = function(a) {
-        return _toUint8Array(_unURI(a));
-      };
-      var _decode = _hasBuffer ? function(a) {
-        return Buffer.from(a, "base64").toString("utf8");
-      } : _TD ? function(a) {
-        return _TD.decode(_toUint8Array(a));
-      } : function(a) {
-        return btou(_atob(a));
-      };
-      var _unURI = function(a) {
-        return _tidyB64(a.replace(/[-_]/g, function(m0) {
-          return m0 == "-" ? "+" : "/";
-        }));
-      };
-      var decode = function(src) {
-        return _decode(_unURI(src));
-      };
-      var isValid = function(src) {
-        if (typeof src !== "string")
-          return false;
-        var s = src.replace(/\s+/g, "").replace(/={0,2}$/, "");
-        return !/[^\s0-9a-zA-Z\+/]/.test(s) || !/[^\s0-9a-zA-Z\-_]/.test(s);
-      };
-      var _noEnum = function(v) {
-        return {
-          value: v,
-          enumerable: false,
-          writable: true,
-          configurable: true
-        };
-      };
-      var extendString = function() {
-        var _add = function(name, body) {
-          return Object.defineProperty(String.prototype, name, _noEnum(body));
-        };
-        _add("fromBase64", function() {
-          return decode(this);
-        });
-        _add("toBase64", function(urlsafe) {
-          return encode(this, urlsafe);
-        });
-        _add("toBase64URI", function() {
-          return encode(this, true);
-        });
-        _add("toBase64URL", function() {
-          return encode(this, true);
-        });
-        _add("toUint8Array", function() {
-          return toUint8Array(this);
-        });
-      };
-      var extendUint8Array = function() {
-        var _add = function(name, body) {
-          return Object.defineProperty(Uint8Array.prototype, name, _noEnum(body));
-        };
-        _add("toBase64", function(urlsafe) {
-          return fromUint8Array(this, urlsafe);
-        });
-        _add("toBase64URI", function() {
-          return fromUint8Array(this, true);
-        });
-        _add("toBase64URL", function() {
-          return fromUint8Array(this, true);
-        });
-      };
-      var extendBuiltins = function() {
-        extendString();
-        extendUint8Array();
-      };
-      var gBase64 = {
-        version,
-        VERSION,
-        atob: _atob,
-        atobPolyfill,
-        btoa: _btoa,
-        btoaPolyfill,
-        fromBase64: decode,
-        toBase64: encode,
-        encode,
-        encodeURI,
-        encodeURL: encodeURI,
-        utob,
-        btou,
-        decode,
-        isValid,
-        fromUint8Array,
-        toUint8Array,
-        extendString,
-        extendUint8Array,
-        extendBuiltins
-      };
-      gBase64.Base64 = {};
-      Object.keys(gBase64).forEach(function(k) {
-        return gBase64.Base64[k] = gBase64[k];
-      });
-      return gBase64;
-    });
-  }
-});
-
-// ../utils/dist/index.js
-var require_dist = __commonJS({
-  "../utils/dist/index.js"(exports, module) {
-    "use strict";
-    var __defProp2 = Object.defineProperty;
-    var __getOwnPropDesc2 = Object.getOwnPropertyDescriptor;
-    var __getOwnPropNames2 = Object.getOwnPropertyNames;
-    var __hasOwnProp2 = Object.prototype.hasOwnProperty;
-    var __export = (target, all) => {
-      for (var name in all)
-        __defProp2(target, name, { get: all[name], enumerable: true });
-    };
-    var __copyProps2 = (to, from, except, desc) => {
-      if (from && typeof from === "object" || typeof from === "function") {
-        for (let key of __getOwnPropNames2(from))
-          if (!__hasOwnProp2.call(to, key) && key !== except)
-            __defProp2(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc2(from, key)) || desc.enumerable });
-      }
-      return to;
-    };
-    var __toCommonJS = (mod) => __copyProps2(__defProp2({}, "__esModule", { value: true }), mod);
-    var __async2 = (__this, __arguments, generator) => {
-      return new Promise((resolve, reject) => {
-        var fulfilled = (value) => {
-          try {
-            step(generator.next(value));
-          } catch (e) {
-            reject(e);
-          }
-        };
-        var rejected = (value) => {
-          try {
-            step(generator.throw(value));
-          } catch (e) {
-            reject(e);
-          }
-        };
-        var step = (x) => x.done ? resolve(x.value) : Promise.resolve(x.value).then(fulfilled, rejected);
-        step((generator = generator.apply(__this, __arguments)).next());
-      });
-    };
-    var src_exports = {};
-    __export(src_exports, {
-      Disclosure: () => Disclosure,
-      SDJWTException: () => SDJWTException2,
-      base64urlDecode: () => base64urlDecode,
-      base64urlEncode: () => base64urlEncode,
-      uint8ArrayToBase64Url: () => uint8ArrayToBase64Url
-    });
-    module.exports = __toCommonJS(src_exports);
-    var import_js_base64 = require_base64();
-    var base64urlEncode = import_js_base64.Base64.encodeURI;
-    var base64urlDecode = import_js_base64.Base64.decode;
-    var uint8ArrayToBase64Url = (input) => import_js_base64.Base64.fromUint8Array(input, true);
-    var SDJWTException2 = class _SDJWTException extends Error {
-      constructor(message, details) {
-        super(message);
-        Object.setPrototypeOf(this, _SDJWTException.prototype);
-        this.name = "SDJWTException";
-        this.details = details;
-      }
-      getFullMessage() {
-        return `${this.name}: ${this.message} ${this.details ? `- ${JSON.stringify(this.details)}` : ""}`;
-      }
-    };
-    var Disclosure = class _Disclosure {
-      constructor(data, _meta) {
-        this._digest = _meta == null ? void 0 : _meta.digest;
-        this._encoded = _meta == null ? void 0 : _meta.encoded;
-        if (data.length === 2) {
-          this.salt = data[0];
-          this.value = data[1];
-          return;
-        }
-        if (data.length === 3) {
-          this.salt = data[0];
-          this.key = data[1];
-          this.value = data[2];
-          return;
-        }
-        throw new SDJWTException2("Invalid disclosure data");
-      }
-      // We need to digest of the original encoded data.
-      // After decode process, we use JSON.stringify to encode the data.
-      // This can be different from the original encoded data.
-      static fromEncode(s, hash) {
-        return __async2(this, null, function* () {
-          const { hasher, alg } = hash;
-          const digest = yield hasher(s, alg);
-          const digestStr = uint8ArrayToBase64Url(digest);
-          const item = JSON.parse(base64urlDecode(s));
-          return _Disclosure.fromArray(item, { digest: digestStr, encoded: s });
-        });
-      }
-      static fromEncodeSync(s, hash) {
-        const { hasher, alg } = hash;
-        const digest = hasher(s, alg);
-        const digestStr = uint8ArrayToBase64Url(digest);
-        const item = JSON.parse(base64urlDecode(s));
-        return _Disclosure.fromArray(item, { digest: digestStr, encoded: s });
-      }
-      static fromArray(item, _meta) {
-        return new _Disclosure(item, _meta);
-      }
-      encode() {
-        if (!this._encoded) {
-          this._encoded = base64urlEncode(JSON.stringify(this.decode()));
-        }
-        return this._encoded;
-      }
-      decode() {
-        return this.key ? [this.salt, this.key, this.value] : [this.salt, this.value];
-      }
-      digest(hash) {
-        return __async2(this, null, function* () {
-          const { hasher, alg } = hash;
-          if (!this._digest) {
-            const hash2 = yield hasher(this.encode(), alg);
-            this._digest = uint8ArrayToBase64Url(hash2);
-          }
-          return this._digest;
-        });
-      }
-      digestSync(hash) {
-        const { hasher, alg } = hash;
-        if (!this._digest) {
-          const hash2 = hasher(this.encode(), alg);
-          this._digest = uint8ArrayToBase64Url(hash2);
-        }
-        return this._digest;
-      }
-    };
-  }
-});
-
-// src/index.ts
-var import_dist = __toESM(require_dist());
+// src/sd-jwt-vc-instance.ts
 import { Jwt, SDJwtInstance } from "@sd-jwt/core";
+import { SDJWTException } from "@sd-jwt/utils";
 import {
   getListFromStatusListJWT
 } from "@sd-jwt/jwt-status-list";
@@ -460,7 +49,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends SDJwtInstance {
       const reservedNames = ["iss", "nbf", "exp", "cnf", "vct", "status"];
       const reservedNamesInDisclosureFrame = disclosureFrame._sd.filter((key) => reservedNames.includes(key));
       if (reservedNamesInDisclosureFrame.length > 0) {
-        throw new import_dist.SDJWTException("Cannot disclose protected field");
+        throw new SDJWTException("Cannot disclose protected field");
       }
     }
   }
@@ -494,7 +83,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends SDJwtInstance {
   statusValidator(status) {
     return __async(this, null, function* () {
       if (status !== 0)
-        throw new import_dist.SDJWTException("Status is not valid");
+        throw new SDJWTException("Status is not valid");
       return Promise.resolve();
     });
   }
@@ -516,7 +105,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends SDJwtInstance {
           const slJWT = Jwt.fromEncode(statusListJWT);
           yield slJWT.verify(this.userConfig.verifier);
           if (((_b = slJWT.payload) == null ? void 0 : _b.exp) && slJWT.payload.exp < Date.now() / 1e3) {
-            throw new import_dist.SDJWTException("Status list is expired");
+            throw new SDJWTException("Status list is expired");
           }
           const statusList = getListFromStatusListJWT(statusListJWT);
           const status = statusList.getStatus(

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sd-jwt/sd-jwt-vc",
-  "version": "0.7.1-next.0+721d788",
+  "version": "0.7.1-next.2+0329a6b",
   "description": "sd-jwt draft 7 implementation in typescript",
   "main": "dist/index.js",
   "module": "dist/index.mjs",
@@ -39,12 +39,13 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@sd-jwt/core": "0.7.1-next.0+721d788",
-    "@sd-jwt/jwt-status-list": "0.7.1-next.0+721d788"
+    "@sd-jwt/core": "0.7.1-next.2+0329a6b",
+    "@sd-jwt/jwt-status-list": "0.7.1-next.2+0329a6b",
+    "@sd-jwt/utils": "0.7.1-next.2+0329a6b"
   },
   "devDependencies": {
-    "@sd-jwt/crypto-nodejs": "0.7.1-next.0+721d788",
-    "@sd-jwt/types": "0.7.1-next.0+721d788",
+    "@sd-jwt/crypto-nodejs": "0.7.1-next.2+0329a6b",
+    "@sd-jwt/types": "0.7.1-next.2+0329a6b",
     "jose": "^5.2.2"
   },
   "publishConfig": {
@@ -63,5 +64,5 @@
       "esm"
     ]
   },
-  "gitHead": "721d788f0bb59cd0274747ccb778619dcee05051"
+  "gitHead": "0329a6b4e8ba11d2fd727c41606c17acbb68e3c5"
 }

package/src/index.ts

@@ -1,138 +1,4 @@
-import { Jwt, SDJwtInstance } from '@sd-jwt/core';
-import type { DisclosureFrame, Verifier } from '@sd-jwt/types';
-import { SDJWTException } from '../../utils/dist';
-import type { SdJwtVcPayload } from './sd-jwt-vc-payload';
-import type { SDJWTVCConfig } from './sd-jwt-vc-config';
-import {
-  type StatusListJWTHeaderParameters,
-  type StatusListJWTPayload,
-  getListFromStatusListJWT,
-} from '@sd-jwt/jwt-status-list';
-export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
-  /**
-   * The type of the SD-JWT-VC set in the header.typ field.
-   */
-  protected type = 'vc+sd-jwt';
-
-  protected userConfig: SDJWTVCConfig = {};
-
-  constructor(userConfig?: SDJWTVCConfig) {
-    super(userConfig);
-    if (userConfig) {
-      this.userConfig = userConfig;
-    }
-  }
-
-  /**
-   * Validates if the disclosureFrame contains any reserved fields. If so it will throw an error.
-   * @param disclosureFrame
-   */
-  protected validateReservedFields(
-    disclosureFrame: DisclosureFrame<SdJwtVcPayload>,
-  ): void {
-    //validate disclosureFrame according to https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-03.html#section-3.2.2.2
-    if (
-      disclosureFrame?._sd &&
-      Array.isArray(disclosureFrame._sd) &&
-      disclosureFrame._sd.length > 0
-    ) {
-      const reservedNames = ['iss', 'nbf', 'exp', 'cnf', 'vct', 'status'];
-      // check if there is any reserved names in the disclosureFrame._sd array
-      const reservedNamesInDisclosureFrame = (
-        disclosureFrame._sd as string[]
-      ).filter((key) => reservedNames.includes(key));
-      if (reservedNamesInDisclosureFrame.length > 0) {
-        throw new SDJWTException('Cannot disclose protected field');
-      }
-    }
-  }
-
-  /**
-   * Fetches the status list from the uri with a timeout of 10 seconds.
-   * @param uri The URI to fetch from.
-   * @returns A promise that resolves to a compact JWT.
-   */
-  private async statusListFetcher(uri: string): Promise<string> {
-    const controller = new AbortController();
-    const timeoutId = setTimeout(() => controller.abort(), 10000);
-
-    try {
-      const response = await fetch(uri, { signal: controller.signal });
-      if (!response.ok) {
-        throw new Error(
-          `Error fetching status list: ${
-            response.status
-          } ${await response.text()}`,
-        );
-      }
-
-      return response.text();
-    } finally {
-      clearTimeout(timeoutId);
-    }
-  }
-
-  /**
-   * Validates the status, throws an error if the status is not 0.
-   * @param status
-   * @returns
-   */
-  private async statusValidator(status: number): Promise<void> {
-    if (status !== 0) throw new SDJWTException('Status is not valid');
-    return Promise.resolve();
-  }
-
-  /**
-   * Verifies the SD-JWT-VC.
-   */
-  async verify(
-    encodedSDJwt: string,
-    requiredClaimKeys?: string[],
-    requireKeyBindings?: boolean,
-  ) {
-    // Call the parent class's verify method
-    const result = await super
-      .verify(encodedSDJwt, requiredClaimKeys, requireKeyBindings)
-      .then((res) => {
-        return { payload: res.payload as SdJwtVcPayload, header: res.header };
-      });
-
-    if (result.payload.status) {
-      //checks if a status field is present in the payload based on https://www.ietf.org/archive/id/draft-ietf-oauth-status-list-02.html
-      if (result.payload.status.status_list) {
-        // fetch the status list from the uri
-        const fetcher =
-          this.userConfig.statusListFetcher ?? this.statusListFetcher;
-        // fetch the status list from the uri
-        const statusListJWT = await fetcher(
-          result.payload.status.status_list.uri,
-        );
-
-        const slJWT = Jwt.fromEncode<
-          StatusListJWTHeaderParameters,
-          StatusListJWTPayload
-        >(statusListJWT);
-        // check if the status list has a valid signature. The presence of the verifier is checked in the parent class.
-        await slJWT.verify(this.userConfig.verifier as Verifier);
-
-        //check if the status list is expired
-        if (slJWT.payload?.exp && slJWT.payload.exp < Date.now() / 1000) {
-          throw new SDJWTException('Status list is expired');
-        }
-
-        // get the status list from the status list JWT
-        const statusList = getListFromStatusListJWT(statusListJWT);
-        const status = statusList.getStatus(
-          result.payload.status.status_list.idx,
-        );
-
-        // validate the status
-        const statusValidator =
-          this.userConfig.statusValidator ?? this.statusValidator;
-        await statusValidator(status);
-      }
-    }
-
-    return result;
-  }
-}
+export * from './sd-jwt-vc-config';
+export * from './sd-jwt-vc-instance';
+export * from './sd-jwt-vc-payload';
+export * from './sd-jwt-vc-status-reference';

package/src/sd-jwt-vc-instance.ts

@@ -0,0 +1,141 @@
+import { Jwt, SDJwtInstance } from '@sd-jwt/core';
+import type { DisclosureFrame, Verifier } from '@sd-jwt/types';
+import { SDJWTException } from '@sd-jwt/utils';
+import type { SdJwtVcPayload } from './sd-jwt-vc-payload';
+import type { SDJWTVCConfig } from './sd-jwt-vc-config';
+import {
+  type StatusListJWTPayload,
+  getListFromStatusListJWT,
+} from '@sd-jwt/jwt-status-list';
+import type { StatusListJWTHeaderParameters } from '@sd-jwt/jwt-status-list';
+export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
+  /**
+   * The type of the SD-JWT-VC set in the header.typ field.
+   */
+  protected type = 'vc+sd-jwt';
+
+  protected userConfig: SDJWTVCConfig = {};
+
+  constructor(userConfig?: SDJWTVCConfig) {
+    super(userConfig);
+    if (userConfig) {
+      this.userConfig = userConfig;
+    }
+  }
+
+  /**
+   * Validates if the disclosureFrame contains any reserved fields. If so it will throw an error.
+   * @param disclosureFrame
+   */
+  protected validateReservedFields(
+    disclosureFrame: DisclosureFrame<SdJwtVcPayload>,
+  ): void {
+    //validate disclosureFrame according to https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-03.html#section-3.2.2.2
+    if (
+      disclosureFrame?._sd &&
+      Array.isArray(disclosureFrame._sd) &&
+      disclosureFrame._sd.length > 0
+    ) {
+      const reservedNames = ['iss', 'nbf', 'exp', 'cnf', 'vct', 'status'];
+      // check if there is any reserved names in the disclosureFrame._sd array
+      const reservedNamesInDisclosureFrame = (
+        disclosureFrame._sd as string[]
+      ).filter((key) => reservedNames.includes(key));
+      if (reservedNamesInDisclosureFrame.length > 0) {
+        throw new SDJWTException('Cannot disclose protected field');
+      }
+    }
+  }
+
+  /**
+   * Fetches the status list from the uri with a timeout of 10 seconds.
+   * @param uri The URI to fetch from.
+   * @returns A promise that resolves to a compact JWT.
+   */
+  private async statusListFetcher(uri: string): Promise<string> {
+    const controller = new AbortController();
+    const timeoutId = setTimeout(() => controller.abort(), 10000);
+
+    try {
+      const response = await fetch(uri, { signal: controller.signal });
+      if (!response.ok) {
+        throw new Error(
+          `Error fetching status list: ${
+            response.status
+          } ${await response.text()}`,
+        );
+      }
+
+      return response.text();
+    } finally {
+      clearTimeout(timeoutId);
+    }
+  }
+
+  /**
+   * Validates the status, throws an error if the status is not 0.
+   * @param status
+   * @returns
+   */
+  private async statusValidator(status: number): Promise<void> {
+    if (status !== 0) throw new SDJWTException('Status is not valid');
+    return Promise.resolve();
+  }
+
+  /**
+   * Verifies the SD-JWT-VC.
+   */
+  async verify(
+    encodedSDJwt: string,
+    requiredClaimKeys?: string[],
+    requireKeyBindings?: boolean,
+  ) {
+    // Call the parent class's verify method
+    const result = await super
+      .verify(encodedSDJwt, requiredClaimKeys, requireKeyBindings)
+      .then((res) => {
+        return { payload: res.payload as SdJwtVcPayload, header: res.header };
+      });
+
+    if (result.payload.status) {
+      //checks if a status field is present in the payload based on https://www.ietf.org/archive/id/draft-ietf-oauth-status-list-02.html
+      if (result.payload.status.status_list) {
+        // fetch the status list from the uri
+        const fetcher =
+          this.userConfig.statusListFetcher ?? this.statusListFetcher;
+        // fetch the status list from the uri
+        const statusListJWT = await fetcher(
+          result.payload.status.status_list.uri,
+        );
+
+        const slJWT = Jwt.fromEncode<
+          StatusListJWTHeaderParameters,
+          StatusListJWTPayload
+        >(statusListJWT);
+        // check if the status list has a valid signature. The presence of the verifier is checked in the parent class.
+        await slJWT.verify(this.userConfig.verifier as Verifier);
+
+        //check if the status list is expired
+        if (
+          slJWT.payload?.exp &&
+          (slJWT.payload.exp as number) < Date.now() / 1000
+        ) {
+          throw new SDJWTException('Status list is expired');
+        }
+
+        // get the status list from the status list JWT
+        const statusList = getListFromStatusListJWT(statusListJWT);
+        const status = statusList.getStatus(
+          result.payload.status.status_list.idx,
+        );
+
+        // validate the status
+        const statusValidator =
+          this.userConfig.statusValidator ?? this.statusValidator;
+        await statusValidator(status);
+      }
+    }
+
+    return result;
+  }
+}