@shroud-fi/payments 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 ShroudFi contributors
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,61 @@
+# @shroud-fi/payments
+
+> Sender-side stealth payment construction for ShroudFi. ETH + ERC-20 on Base.
+
+[![npm](https://img.shields.io/npm/v/@shroud-fi/payments.svg)](https://www.npmjs.com/package/@shroud-fi/payments)
+[![license: MIT](https://img.shields.io/badge/license-MIT-blue.svg)](./LICENSE)
+
+```bash
+npm i @shroud-fi/payments viem
+```
+
+## What it does
+
+`@shroud-fi/payments` is the sender side of a ShroudFi payment. For each transfer it:
+
+1. Derives a fresh one-time stealth address from the recipient's `(spendPub, scanPub)` meta-address.
+2. Computes the EIP-5564 announcement and broadcasts it on-chain.
+3. Sends ETH or ERC-20 to that one-time address.
+4. Resolves recipient meta-addresses from a plain EVM wallet via the on-chain ERC-6538 registry.
+
+The graph of who-pays-whom never reaches the public ledger — every payment lands at an unlinkable destination only the recipient can spend from.
+
+## Quick start
+
+```ts
+import { sendETHPayment, lookupMetaAddress } from '@shroud-fi/payments';
+import { createTransport } from '@shroud-fi/transport';
+
+const transport = createTransport({ chain: 'base', rpcUrl });
+const meta = await lookupMetaAddress(transport, '0xRecipientWallet');
+
+await sendETHPayment({
+  transport,
+  walletClient,
+  recipientMeta: meta.metaAddressEncoded,
+  amountWei: 10_000_000_000_000n, // 0.00001 ETH
+});
+```
+
+## Exports
+
+| Symbol | Purpose |
+|---|---|
+| `sendETHPayment(args)` | Derive stealth, announce, transfer ETH — one call. |
+| `sendERC20Payment(args)` | Same shape for ERC-20. USDC on Base mainnet is the v1 target. |
+| `sweepETH` · `sweepERC20` | Direct sweep from stealth address to destination. Fee-free, no relayer. |
+| `lookupMetaAddress(transport, wallet)` | Resolve a wallet's registered meta-address via ERC-6538. |
+| `RecipientNotOnboardedError` | Thrown when a wallet has no published meta-address. Structured `.wallet` field for privacy-safe UX. |
+
+Full API reference: [shroudfi.live/sdk#payments](https://shroudfi.live/sdk#payments)
+
+## Threat model notes
+
+- **Amounts are visible.** v1 ShroudFi provides recipient unlinkability, not amount privacy. Amount-fingerprinting is an active mitigation surface.
+- **Address rotation is mandatory.** Sweeping detected payments back to a long-lived wallet collapses the privacy property — use one-shot destinations or batched sweeps.
+
+## License
+
+MIT — see [LICENSE](./LICENSE).
+
+Part of the [ShroudFi](https://shroudfi.live) privacy SDK for AI agents on Base.

package/dist/cjs/amount-privacy.d.ts

@@ -0,0 +1,30 @@
+import type { Address } from 'viem';
+export interface ShieldResult {
+    readonly txHash: string;
+    readonly noteId?: string;
+}
+export interface PrivateTransferResult {
+    readonly txHash: string;
+    readonly recipient: Address;
+}
+export interface UnshieldResult {
+    readonly txHash: string;
+}
+export interface AmountPrivacyProvider {
+    readonly name: string;
+    shield(token: Address, amount: bigint): Promise<ShieldResult>;
+    privateTransfer(to: Address, amount: bigint, token: Address): Promise<PrivateTransferResult>;
+    unshield(amount: bigint, token: Address): Promise<UnshieldResult>;
+    grantViewAccess(viewer: Address): Promise<void>;
+    estimateGas(token: Address, amount: bigint): Promise<bigint>;
+}
+export declare class NullAmountPrivacyProvider implements AmountPrivacyProvider {
+    readonly name = "null";
+    shield(_token?: Address, _amount?: bigint): Promise<ShieldResult>;
+    privateTransfer(_to?: Address, _amount?: bigint, _token?: Address): Promise<PrivateTransferResult>;
+    unshield(_amount?: bigint, _token?: Address): Promise<UnshieldResult>;
+    grantViewAccess(_viewer?: Address): Promise<void>;
+    estimateGas(_token?: Address, _amount?: bigint): Promise<bigint>;
+}
+export declare function assertSupported(provider: AmountPrivacyProvider): void;
+//# sourceMappingURL=amount-privacy.d.ts.map

package/dist/cjs/amount-privacy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"amount-privacy.d.ts","sourceRoot":"","sources":["../../src/amount-privacy.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAGpC,MAAM,WAAW,YAAY;IAC3B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,qBAAqB;IACpC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,SAAS,EAAE,OAAO,CAAC;CAC7B;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,qBAAqB;IACpC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAC9D,eAAe,CAAC,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAC7F,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;IAClE,eAAe,CAAC,MAAM,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAChD,WAAW,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CAC9D;AAED,qBAAa,yBAA0B,YAAW,qBAAqB;IACrE,QAAQ,CAAC,IAAI,UAAU;IAEjB,MAAM,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAIjE,eAAe,CACnB,GAAG,CAAC,EAAE,OAAO,EACb,OAAO,CAAC,EAAE,MAAM,EAChB,MAAM,CAAC,EAAE,OAAO,GACf,OAAO,CAAC,qBAAqB,CAAC;IAI3B,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC;IAIrE,eAAe,CAAC,OAAO,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IAIjD,WAAW,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;CAGvE;AAED,wBAAgB,eAAe,CAAC,QAAQ,EAAE,qBAAqB,GAAG,IAAI,CAIrE"}

package/dist/cjs/amount-privacy.js

@@ -0,0 +1,30 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.NullAmountPrivacyProvider = void 0;
+exports.assertSupported = assertSupported;
+const errors_js_1 = require("./errors.js");
+class NullAmountPrivacyProvider {
+    name = 'null';
+    async shield(_token, _amount) {
+        throw new errors_js_1.AmountPrivacyNotSupportedError('shield');
+    }
+    async privateTransfer(_to, _amount, _token) {
+        throw new errors_js_1.AmountPrivacyNotSupportedError('privateTransfer');
+    }
+    async unshield(_amount, _token) {
+        throw new errors_js_1.AmountPrivacyNotSupportedError('unshield');
+    }
+    async grantViewAccess(_viewer) {
+        throw new errors_js_1.AmountPrivacyNotSupportedError('grantViewAccess');
+    }
+    async estimateGas(_token, _amount) {
+        throw new errors_js_1.AmountPrivacyNotSupportedError('estimateGas');
+    }
+}
+exports.NullAmountPrivacyProvider = NullAmountPrivacyProvider;
+function assertSupported(provider) {
+    if (provider.name === 'null') {
+        throw new errors_js_1.AmountPrivacyNotSupportedError(provider.name);
+    }
+}
+//# sourceMappingURL=amount-privacy.js.map

package/dist/cjs/amount-privacy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"amount-privacy.js","sourceRoot":"","sources":["../../src/amount-privacy.ts"],"names":[],"mappings":";;;AAsDA,0CAIC;AAzDD,2CAA6D;AAyB7D,MAAa,yBAAyB;IAC3B,IAAI,GAAG,MAAM,CAAC;IAEvB,KAAK,CAAC,MAAM,CAAC,MAAgB,EAAE,OAAgB;QAC7C,MAAM,IAAI,0CAA8B,CAAC,QAAQ,CAAC,CAAC;IACrD,CAAC;IAED,KAAK,CAAC,eAAe,CACnB,GAAa,EACb,OAAgB,EAChB,MAAgB;QAEhB,MAAM,IAAI,0CAA8B,CAAC,iBAAiB,CAAC,CAAC;IAC9D,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,OAAgB,EAAE,MAAgB;QAC/C,MAAM,IAAI,0CAA8B,CAAC,UAAU,CAAC,CAAC;IACvD,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,OAAiB;QACrC,MAAM,IAAI,0CAA8B,CAAC,iBAAiB,CAAC,CAAC;IAC9D,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,MAAgB,EAAE,OAAgB;QAClD,MAAM,IAAI,0CAA8B,CAAC,aAAa,CAAC,CAAC;IAC1D,CAAC;CACF;AA1BD,8DA0BC;AAED,SAAgB,eAAe,CAAC,QAA+B;IAC7D,IAAI,QAAQ,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;QAC7B,MAAM,IAAI,0CAA8B,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;IAC1D,CAAC;AACH,CAAC"}

package/dist/cjs/constants.d.ts

@@ -0,0 +1,7 @@
+export declare const DEFAULT_GAS_MULTIPLIER = 120n;
+export declare const ETH_SENTINEL: "0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE";
+export declare const ZERO_ADDRESS: "0x0000000000000000000000000000000000000000";
+export declare const SCHEME_ID = 1n;
+export declare const ERC20_TRANSFER_GAS_ESTIMATE = 65000n;
+export declare const ETH_TRANSFER_GAS_ESTIMATE = 21000n;
+//# sourceMappingURL=constants.d.ts.map

package/dist/cjs/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,sBAAsB,OAAO,CAAC;AAE3C,eAAO,MAAM,YAAY,8CAA0E,CAAC;AAEpG,eAAO,MAAM,YAAY,8CAA0E,CAAC;AAEpG,eAAO,MAAM,SAAS,KAAK,CAAC;AAE5B,eAAO,MAAM,2BAA2B,SAAU,CAAC;AACnD,eAAO,MAAM,yBAAyB,SAAU,CAAC"}

package/dist/cjs/constants.js

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ETH_TRANSFER_GAS_ESTIMATE = exports.ERC20_TRANSFER_GAS_ESTIMATE = exports.SCHEME_ID = exports.ZERO_ADDRESS = exports.ETH_SENTINEL = exports.DEFAULT_GAS_MULTIPLIER = void 0;
+exports.DEFAULT_GAS_MULTIPLIER = 120n;
+exports.ETH_SENTINEL = '0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE';
+exports.ZERO_ADDRESS = '0x0000000000000000000000000000000000000000';
+exports.SCHEME_ID = 1n;
+exports.ERC20_TRANSFER_GAS_ESTIMATE = 65000n;
+exports.ETH_TRANSFER_GAS_ESTIMATE = 21000n;
+//# sourceMappingURL=constants.js.map

package/dist/cjs/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":";;;AAEa,QAAA,sBAAsB,GAAG,IAAI,CAAC;AAE9B,QAAA,YAAY,GAAG,4CAAuE,CAAC;AAEvF,QAAA,YAAY,GAAG,4CAAuE,CAAC;AAEvF,QAAA,SAAS,GAAG,EAAE,CAAC;AAEf,QAAA,2BAA2B,GAAG,MAAO,CAAC;AACtC,QAAA,yBAAyB,GAAG,MAAO,CAAC"}

package/dist/cjs/errors.d.ts

@@ -0,0 +1,57 @@
+export declare class PaymentError extends Error {
+    readonly name: string;
+    constructor(message: string);
+}
+export declare class SweepError extends Error {
+    readonly name: string;
+    constructor(message: string);
+}
+export declare class InvalidRecipientError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+export declare class InsufficientBalanceError extends SweepError {
+    readonly name: string;
+    constructor();
+}
+export declare class ZeroAmountError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+export declare class AmountPrivacyNotSupportedError extends Error {
+    readonly name: string;
+    constructor(method: string);
+}
+export declare class MissingWalletClientError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+export declare class StealthPaymentContractNotConfiguredError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+/**
+ * Thrown when a sender tries to pay a wallet that has not yet registered a
+ * stealth meta-address in the canonical ERC-6538 registry. The recipient must
+ * onboard first (publish their (S, B) pubkeys) before stealth payments are
+ * possible.
+ *
+ * Privacy note: the offending wallet address is NOT placed in `.message`. It
+ * is exposed via the `wallet` property so callers can show a useful UI hint
+ * without leaking the address into logs that only capture `.message`.
+ */
+export declare class RecipientNotOnboardedError extends PaymentError {
+    readonly name: string;
+    readonly wallet: `0x${string}`;
+    constructor(wallet: `0x${string}`);
+}
+/**
+ * Thrown when the bytes returned by `stealthMetaAddressOf` are not the
+ * expected 66 raw bytes (33 spending pubkey + 33 viewing pubkey) with valid
+ * compressed-point prefixes. Indicates registry corruption or off-spec usage.
+ */
+export declare class MalformedMetaAddressError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/cjs/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":"AAAA,qBAAa,YAAa,SAAQ,KAAK;IACrC,SAAkB,IAAI,EAAE,MAAM,CAAkB;gBACpC,OAAO,EAAE,MAAM;CAG5B;AAED,qBAAa,UAAW,SAAQ,KAAK;IACnC,SAAkB,IAAI,EAAE,MAAM,CAAgB;gBAClC,OAAO,EAAE,MAAM;CAG5B;AAED,qBAAa,qBAAsB,SAAQ,YAAY;IACrD,SAAkB,IAAI,EAAE,MAAM,CAA2B;;CAI1D;AAED,qBAAa,wBAAyB,SAAQ,UAAU;IACtD,SAAkB,IAAI,EAAE,MAAM,CAA8B;;CAI7D;AAED,qBAAa,eAAgB,SAAQ,YAAY;IAC/C,SAAkB,IAAI,EAAE,MAAM,CAAqB;;CAIpD;AAED,qBAAa,8BAA+B,SAAQ,KAAK;IACvD,SAAkB,IAAI,EAAE,MAAM,CAAoC;gBACtD,MAAM,EAAE,MAAM;CAG3B;AAED,qBAAa,wBAAyB,SAAQ,YAAY;IACxD,SAAkB,IAAI,EAAE,MAAM,CAA8B;;CAI7D;AAED,qBAAa,wCAAyC,SAAQ,YAAY;IACxE,SAAkB,IAAI,EAAE,MAAM,CAA8C;;CAI7E;AAED;;;;;;;;;GASG;AACH,qBAAa,0BAA2B,SAAQ,YAAY;IAC1D,SAAkB,IAAI,EAAE,MAAM,CAAgC;IAC9D,QAAQ,CAAC,MAAM,EAAE,KAAK,MAAM,EAAE,CAAC;gBACnB,MAAM,EAAE,KAAK,MAAM,EAAE;CAIlC;AAED;;;;GAIG;AACH,qBAAa,yBAA0B,SAAQ,YAAY;IACzD,SAAkB,IAAI,EAAE,MAAM,CAA+B;;CAI9D"}

package/dist/cjs/errors.js

@@ -0,0 +1,91 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MalformedMetaAddressError = exports.RecipientNotOnboardedError = exports.StealthPaymentContractNotConfiguredError = exports.MissingWalletClientError = exports.AmountPrivacyNotSupportedError = exports.ZeroAmountError = exports.InsufficientBalanceError = exports.InvalidRecipientError = exports.SweepError = exports.PaymentError = void 0;
+class PaymentError extends Error {
+    name = 'PaymentError';
+    constructor(message) {
+        super(message);
+    }
+}
+exports.PaymentError = PaymentError;
+class SweepError extends Error {
+    name = 'SweepError';
+    constructor(message) {
+        super(message);
+    }
+}
+exports.SweepError = SweepError;
+class InvalidRecipientError extends PaymentError {
+    name = 'InvalidRecipientError';
+    constructor() {
+        super('Invalid recipient meta-address');
+    }
+}
+exports.InvalidRecipientError = InvalidRecipientError;
+class InsufficientBalanceError extends SweepError {
+    name = 'InsufficientBalanceError';
+    constructor() {
+        super('Insufficient balance to cover gas');
+    }
+}
+exports.InsufficientBalanceError = InsufficientBalanceError;
+class ZeroAmountError extends PaymentError {
+    name = 'ZeroAmountError';
+    constructor() {
+        super('Amount must be greater than zero');
+    }
+}
+exports.ZeroAmountError = ZeroAmountError;
+class AmountPrivacyNotSupportedError extends Error {
+    name = 'AmountPrivacyNotSupportedError';
+    constructor(method) {
+        super(`Amount privacy not supported: ${method}`);
+    }
+}
+exports.AmountPrivacyNotSupportedError = AmountPrivacyNotSupportedError;
+class MissingWalletClientError extends PaymentError {
+    name = 'MissingWalletClientError';
+    constructor() {
+        super('Transport has no walletClient configured');
+    }
+}
+exports.MissingWalletClientError = MissingWalletClientError;
+class StealthPaymentContractNotConfiguredError extends PaymentError {
+    name = 'StealthPaymentContractNotConfiguredError';
+    constructor() {
+        super('ShroudFiStealth contract address not configured');
+    }
+}
+exports.StealthPaymentContractNotConfiguredError = StealthPaymentContractNotConfiguredError;
+/**
+ * Thrown when a sender tries to pay a wallet that has not yet registered a
+ * stealth meta-address in the canonical ERC-6538 registry. The recipient must
+ * onboard first (publish their (S, B) pubkeys) before stealth payments are
+ * possible.
+ *
+ * Privacy note: the offending wallet address is NOT placed in `.message`. It
+ * is exposed via the `wallet` property so callers can show a useful UI hint
+ * without leaking the address into logs that only capture `.message`.
+ */
+class RecipientNotOnboardedError extends PaymentError {
+    name = 'RecipientNotOnboardedError';
+    wallet;
+    constructor(wallet) {
+        super('Recipient wallet has not registered a stealth meta-address');
+        this.wallet = wallet;
+    }
+}
+exports.RecipientNotOnboardedError = RecipientNotOnboardedError;
+/**
+ * Thrown when the bytes returned by `stealthMetaAddressOf` are not the
+ * expected 66 raw bytes (33 spending pubkey + 33 viewing pubkey) with valid
+ * compressed-point prefixes. Indicates registry corruption or off-spec usage.
+ */
+class MalformedMetaAddressError extends PaymentError {
+    name = 'MalformedMetaAddressError';
+    constructor() {
+        super('Registry returned a malformed stealth meta-address');
+    }
+}
+exports.MalformedMetaAddressError = MalformedMetaAddressError;
+//# sourceMappingURL=errors.js.map

package/dist/cjs/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":";;;AAAA,MAAa,YAAa,SAAQ,KAAK;IACnB,IAAI,GAAW,cAAc,CAAC;IAChD,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;IACjB,CAAC;CACF;AALD,oCAKC;AAED,MAAa,UAAW,SAAQ,KAAK;IACjB,IAAI,GAAW,YAAY,CAAC;IAC9C,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;IACjB,CAAC;CACF;AALD,gCAKC;AAED,MAAa,qBAAsB,SAAQ,YAAY;IACnC,IAAI,GAAW,uBAAuB,CAAC;IACzD;QACE,KAAK,CAAC,gCAAgC,CAAC,CAAC;IAC1C,CAAC;CACF;AALD,sDAKC;AAED,MAAa,wBAAyB,SAAQ,UAAU;IACpC,IAAI,GAAW,0BAA0B,CAAC;IAC5D;QACE,KAAK,CAAC,mCAAmC,CAAC,CAAC;IAC7C,CAAC;CACF;AALD,4DAKC;AAED,MAAa,eAAgB,SAAQ,YAAY;IAC7B,IAAI,GAAW,iBAAiB,CAAC;IACnD;QACE,KAAK,CAAC,kCAAkC,CAAC,CAAC;IAC5C,CAAC;CACF;AALD,0CAKC;AAED,MAAa,8BAA+B,SAAQ,KAAK;IACrC,IAAI,GAAW,gCAAgC,CAAC;IAClE,YAAY,MAAc;QACxB,KAAK,CAAC,iCAAiC,MAAM,EAAE,CAAC,CAAC;IACnD,CAAC;CACF;AALD,wEAKC;AAED,MAAa,wBAAyB,SAAQ,YAAY;IACtC,IAAI,GAAW,0BAA0B,CAAC;IAC5D;QACE,KAAK,CAAC,0CAA0C,CAAC,CAAC;IACpD,CAAC;CACF;AALD,4DAKC;AAED,MAAa,wCAAyC,SAAQ,YAAY;IACtD,IAAI,GAAW,0CAA0C,CAAC;IAC5E;QACE,KAAK,CAAC,iDAAiD,CAAC,CAAC;IAC3D,CAAC;CACF;AALD,4FAKC;AAED;;;;;;;;;GASG;AACH,MAAa,0BAA2B,SAAQ,YAAY;IACxC,IAAI,GAAW,4BAA4B,CAAC;IACrD,MAAM,CAAgB;IAC/B,YAAY,MAAqB;QAC/B,KAAK,CAAC,4DAA4D,CAAC,CAAC;QACpE,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;CACF;AAPD,gEAOC;AAED;;;;GAIG;AACH,MAAa,yBAA0B,SAAQ,YAAY;IACvC,IAAI,GAAW,2BAA2B,CAAC;IAC7D;QACE,KAAK,CAAC,oDAAoD,CAAC,CAAC;IAC9D,CAAC;CACF;AALD,8DAKC"}

package/dist/cjs/index.d.ts

@@ -0,0 +1,10 @@
+export { sendETHPayment, sendERC20Payment, prepareStealthPayment, } from './payments.js';
+export { sweepETH, sweepERC20, } from './sweep.js';
+export { sendToWallet, lookupMetaAddress, } from './send-to-wallet.js';
+export { NullAmountPrivacyProvider, assertSupported, } from './amount-privacy.js';
+export type { SendOptions, PaymentReceipt, SweepReceipt, PreparedStealthPayment, } from './types.js';
+export type { SendToWalletAsset } from './send-to-wallet.js';
+export type { AmountPrivacyProvider, ShieldResult, PrivateTransferResult, UnshieldResult, } from './amount-privacy.js';
+export { DEFAULT_GAS_MULTIPLIER, ETH_SENTINEL, ZERO_ADDRESS, SCHEME_ID, ETH_TRANSFER_GAS_ESTIMATE, ERC20_TRANSFER_GAS_ESTIMATE, } from './constants.js';
+export { PaymentError, SweepError, InvalidRecipientError, InsufficientBalanceError, ZeroAmountError, AmountPrivacyNotSupportedError, MissingWalletClientError, StealthPaymentContractNotConfiguredError, RecipientNotOnboardedError, MalformedMetaAddressError, } from './errors.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/cjs/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAMA,OAAO,EACL,cAAc,EACd,gBAAgB,EAChB,qBAAqB,GACtB,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,QAAQ,EACR,UAAU,GACX,MAAM,YAAY,CAAC;AACpB,OAAO,EACL,YAAY,EACZ,iBAAiB,GAClB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EACL,yBAAyB,EACzB,eAAe,GAChB,MAAM,qBAAqB,CAAC;AAG7B,YAAY,EACV,WAAW,EACX,cAAc,EACd,YAAY,EACZ,sBAAsB,GACvB,MAAM,YAAY,CAAC;AACpB,YAAY,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAC7D,YAAY,EACV,qBAAqB,EACrB,YAAY,EACZ,qBAAqB,EACrB,cAAc,GACf,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,sBAAsB,EACtB,YAAY,EACZ,YAAY,EACZ,SAAS,EACT,yBAAyB,EACzB,2BAA2B,GAC5B,MAAM,gBAAgB,CAAC;AAGxB,OAAO,EACL,YAAY,EACZ,UAAU,EACV,qBAAqB,EACrB,wBAAwB,EACxB,eAAe,EACf,8BAA8B,EAC9B,wBAAwB,EACxB,wCAAwC,EACxC,0BAA0B,EAC1B,yBAAyB,GAC1B,MAAM,aAAa,CAAC"}

package/dist/cjs/index.js

@@ -0,0 +1,42 @@
+"use strict";
+// Public surface — @shroud-fi/payments
+// Phase 1: stealth payment construction + sweep (self-funded).
+// Sweep timing (log-normal delay, destination rotation) lives in @shroud-fi/scanning (P3).
+// Relayer-funded sweep + EIP-2612 permit lives in the relayer service (P5).
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MalformedMetaAddressError = exports.RecipientNotOnboardedError = exports.StealthPaymentContractNotConfiguredError = exports.MissingWalletClientError = exports.AmountPrivacyNotSupportedError = exports.ZeroAmountError = exports.InsufficientBalanceError = exports.InvalidRecipientError = exports.SweepError = exports.PaymentError = exports.ERC20_TRANSFER_GAS_ESTIMATE = exports.ETH_TRANSFER_GAS_ESTIMATE = exports.SCHEME_ID = exports.ZERO_ADDRESS = exports.ETH_SENTINEL = exports.DEFAULT_GAS_MULTIPLIER = exports.assertSupported = exports.NullAmountPrivacyProvider = exports.lookupMetaAddress = exports.sendToWallet = exports.sweepERC20 = exports.sweepETH = exports.prepareStealthPayment = exports.sendERC20Payment = exports.sendETHPayment = void 0;
+// Functions
+var payments_js_1 = require("./payments.js");
+Object.defineProperty(exports, "sendETHPayment", { enumerable: true, get: function () { return payments_js_1.sendETHPayment; } });
+Object.defineProperty(exports, "sendERC20Payment", { enumerable: true, get: function () { return payments_js_1.sendERC20Payment; } });
+Object.defineProperty(exports, "prepareStealthPayment", { enumerable: true, get: function () { return payments_js_1.prepareStealthPayment; } });
+var sweep_js_1 = require("./sweep.js");
+Object.defineProperty(exports, "sweepETH", { enumerable: true, get: function () { return sweep_js_1.sweepETH; } });
+Object.defineProperty(exports, "sweepERC20", { enumerable: true, get: function () { return sweep_js_1.sweepERC20; } });
+var send_to_wallet_js_1 = require("./send-to-wallet.js");
+Object.defineProperty(exports, "sendToWallet", { enumerable: true, get: function () { return send_to_wallet_js_1.sendToWallet; } });
+Object.defineProperty(exports, "lookupMetaAddress", { enumerable: true, get: function () { return send_to_wallet_js_1.lookupMetaAddress; } });
+var amount_privacy_js_1 = require("./amount-privacy.js");
+Object.defineProperty(exports, "NullAmountPrivacyProvider", { enumerable: true, get: function () { return amount_privacy_js_1.NullAmountPrivacyProvider; } });
+Object.defineProperty(exports, "assertSupported", { enumerable: true, get: function () { return amount_privacy_js_1.assertSupported; } });
+// Constants
+var constants_js_1 = require("./constants.js");
+Object.defineProperty(exports, "DEFAULT_GAS_MULTIPLIER", { enumerable: true, get: function () { return constants_js_1.DEFAULT_GAS_MULTIPLIER; } });
+Object.defineProperty(exports, "ETH_SENTINEL", { enumerable: true, get: function () { return constants_js_1.ETH_SENTINEL; } });
+Object.defineProperty(exports, "ZERO_ADDRESS", { enumerable: true, get: function () { return constants_js_1.ZERO_ADDRESS; } });
+Object.defineProperty(exports, "SCHEME_ID", { enumerable: true, get: function () { return constants_js_1.SCHEME_ID; } });
+Object.defineProperty(exports, "ETH_TRANSFER_GAS_ESTIMATE", { enumerable: true, get: function () { return constants_js_1.ETH_TRANSFER_GAS_ESTIMATE; } });
+Object.defineProperty(exports, "ERC20_TRANSFER_GAS_ESTIMATE", { enumerable: true, get: function () { return constants_js_1.ERC20_TRANSFER_GAS_ESTIMATE; } });
+// Errors
+var errors_js_1 = require("./errors.js");
+Object.defineProperty(exports, "PaymentError", { enumerable: true, get: function () { return errors_js_1.PaymentError; } });
+Object.defineProperty(exports, "SweepError", { enumerable: true, get: function () { return errors_js_1.SweepError; } });
+Object.defineProperty(exports, "InvalidRecipientError", { enumerable: true, get: function () { return errors_js_1.InvalidRecipientError; } });
+Object.defineProperty(exports, "InsufficientBalanceError", { enumerable: true, get: function () { return errors_js_1.InsufficientBalanceError; } });
+Object.defineProperty(exports, "ZeroAmountError", { enumerable: true, get: function () { return errors_js_1.ZeroAmountError; } });
+Object.defineProperty(exports, "AmountPrivacyNotSupportedError", { enumerable: true, get: function () { return errors_js_1.AmountPrivacyNotSupportedError; } });
+Object.defineProperty(exports, "MissingWalletClientError", { enumerable: true, get: function () { return errors_js_1.MissingWalletClientError; } });
+Object.defineProperty(exports, "StealthPaymentContractNotConfiguredError", { enumerable: true, get: function () { return errors_js_1.StealthPaymentContractNotConfiguredError; } });
+Object.defineProperty(exports, "RecipientNotOnboardedError", { enumerable: true, get: function () { return errors_js_1.RecipientNotOnboardedError; } });
+Object.defineProperty(exports, "MalformedMetaAddressError", { enumerable: true, get: function () { return errors_js_1.MalformedMetaAddressError; } });
+//# sourceMappingURL=index.js.map

package/dist/cjs/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";AAAA,uCAAuC;AACvC,+DAA+D;AAC/D,2FAA2F;AAC3F,4EAA4E;;;AAE5E,YAAY;AACZ,6CAIuB;AAHrB,6GAAA,cAAc,OAAA;AACd,+GAAA,gBAAgB,OAAA;AAChB,oHAAA,qBAAqB,OAAA;AAEvB,uCAGoB;AAFlB,oGAAA,QAAQ,OAAA;AACR,sGAAA,UAAU,OAAA;AAEZ,yDAG6B;AAF3B,iHAAA,YAAY,OAAA;AACZ,sHAAA,iBAAiB,OAAA;AAEnB,yDAG6B;AAF3B,8HAAA,yBAAyB,OAAA;AACzB,oHAAA,eAAe,OAAA;AAkBjB,YAAY;AACZ,+CAOwB;AANtB,sHAAA,sBAAsB,OAAA;AACtB,4GAAA,YAAY,OAAA;AACZ,4GAAA,YAAY,OAAA;AACZ,yGAAA,SAAS,OAAA;AACT,yHAAA,yBAAyB,OAAA;AACzB,2HAAA,2BAA2B,OAAA;AAG7B,SAAS;AACT,yCAWqB;AAVnB,yGAAA,YAAY,OAAA;AACZ,uGAAA,UAAU,OAAA;AACV,kHAAA,qBAAqB,OAAA;AACrB,qHAAA,wBAAwB,OAAA;AACxB,4GAAA,eAAe,OAAA;AACf,2HAAA,8BAA8B,OAAA;AAC9B,qHAAA,wBAAwB,OAAA;AACxB,qIAAA,wCAAwC,OAAA;AACxC,uHAAA,0BAA0B,OAAA;AAC1B,sHAAA,yBAAyB,OAAA"}

package/dist/cjs/package.json

@@ -0,0 +1 @@
+{"type":"commonjs"}

package/dist/cjs/payments.d.ts

@@ -0,0 +1,49 @@
+/**
+ * ShroudFi Payments - Stealth Payment Construction
+ *
+ * Builds and submits stealth payments through the ShroudFiStealth contract.
+ * Uses generateStealthAddress from @shroud-fi/core for derivation.
+ *
+ * Privacy invariants enforced:
+ *   - No private key material in any error message
+ *   - No plaintext amounts in any error message
+ *   - No console.log/warn/error anywhere
+ *   - Non-custodial: only constructs transactions, never holds funds
+ */
+import type { Address } from 'viem';
+import type { StealthMetaAddress } from '@shroud-fi/core';
+import type { ShroudFiTransport } from '@shroud-fi/transport';
+import type { PaymentReceipt, PreparedStealthPayment, SendOptions } from './types.js';
+/**
+ * Prepare stealth payment material from a recipient meta-address.
+ * Pure helper - does not submit any transaction.
+ *
+ * @throws InvalidRecipientError if the meta-address is malformed or invalid.
+ */
+export declare function prepareStealthPayment(metaAddress: StealthMetaAddress): PreparedStealthPayment;
+/**
+ * Send native ETH to a stealth address derived from `metaAddress`.
+ *
+ * Privacy notes:
+ *   - The contract emits a StealthPayment event with the stealth address.
+ *   - The amount is on-chain by necessity (no native ETH amount privacy).
+ *   - Caller pays gas - relayer abstraction is a separate concern.
+ *
+ * @throws MissingWalletClientError if transport has no walletClient configured.
+ * @throws ZeroAmountError if valueWei is 0n.
+ * @throws InvalidRecipientError if the meta-address is invalid.
+ */
+export declare function sendETHPayment(transport: ShroudFiTransport, contractAddress: Address, metaAddress: StealthMetaAddress, valueWei: bigint, options?: SendOptions): Promise<PaymentReceipt>;
+/**
+ * Send an ERC-20 token to a stealth address derived from `metaAddress`.
+ *
+ * **Pre-approval required:** the caller MUST have already approved
+ * `contractAddress` to spend at least `amount` of `token` from the sender's
+ * account. v1 does not include an approve flow.
+ *
+ * @throws MissingWalletClientError if transport has no walletClient configured.
+ * @throws ZeroAmountError if amount is 0n.
+ * @throws InvalidRecipientError if the meta-address is invalid.
+ */
+export declare function sendERC20Payment(transport: ShroudFiTransport, contractAddress: Address, metaAddress: StealthMetaAddress, token: Address, amount: bigint, options?: SendOptions): Promise<PaymentReceipt>;
+//# sourceMappingURL=payments.d.ts.map

package/dist/cjs/payments.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"payments.d.ts","sourceRoot":"","sources":["../../src/payments.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,OAAO,EAA+C,MAAM,MAAM,CAAC;AAGjF,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAC;AAE1D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAC9D,OAAO,KAAK,EACV,cAAc,EACd,sBAAsB,EACtB,WAAW,EACZ,MAAM,YAAY,CAAC;AA4BpB;;;;;GAKG;AACH,wBAAgB,qBAAqB,CACnC,WAAW,EAAE,kBAAkB,GAC9B,sBAAsB,CAaxB;AAoDD;;;;;;;;;;;GAWG;AACH,wBAAsB,cAAc,CAClC,SAAS,EAAE,iBAAiB,EAC5B,eAAe,EAAE,OAAO,EACxB,WAAW,EAAE,kBAAkB,EAC/B,QAAQ,EAAE,MAAM,EAChB,OAAO,CAAC,EAAE,WAAW,GACpB,OAAO,CAAC,cAAc,CAAC,CA2EzB;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,gBAAgB,CACpC,SAAS,EAAE,iBAAiB,EAC5B,eAAe,EAAE,OAAO,EACxB,WAAW,EAAE,kBAAkB,EAC/B,KAAK,EAAE,OAAO,EACd,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE,WAAW,GACpB,OAAO,CAAC,cAAc,CAAC,CAiFzB"}