@shroud-fi/payments 0.1.0

package/dist/cjs/sweep.js

@@ -0,0 +1,241 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.sweepETH = sweepETH;
+exports.sweepERC20 = sweepERC20;
+const viem_1 = require("viem");
+const accounts_1 = require("viem/accounts");
+const transport_1 = require("@shroud-fi/transport");
+const errors_js_1 = require("./errors.js");
+const constants_js_1 = require("./constants.js");
+/**
+ * Fetch EIP-1559 fee suggestions with a safe fallback. viem's
+ * `estimateFeesPerGas` returns the recommended {maxFeePerGas, maxPriorityFeePerGas}
+ * given the current base fee; on chains where the method 404s we fall back to
+ * the legacy `getGasPrice` + a small priority tip so the tx remains valid.
+ *
+ * Crucially we DON'T set maxPriorityFeePerGas == maxFeePerGas — Geth-derived
+ * RPCs reject EIP-1559 transactions where the priority cap equals the total
+ * cap and the base fee is non-zero (effective tip becomes 0, but the producer
+ * still gates on `priority < maxFee - baseFee`). Splitting them keeps Base
+ * Sepolia + mainnet RPCs from returning TransactionRejectedRpcError (-32003).
+ */
+async function suggestEip1559Fees(transport, options) {
+    if (options?.maxFeePerGas !== undefined &&
+        options.maxPriorityFeePerGas !== undefined) {
+        return {
+            maxFeePerGas: options.maxFeePerGas,
+            maxPriorityFeePerGas: options.maxPriorityFeePerGas,
+        };
+    }
+    try {
+        const fees = await transport.publicClient.estimateFeesPerGas();
+        return {
+            maxFeePerGas: options?.maxFeePerGas ?? fees.maxFeePerGas,
+            maxPriorityFeePerGas: options?.maxPriorityFeePerGas ?? fees.maxPriorityFeePerGas,
+        };
+    }
+    catch {
+        const legacy = await transport.publicClient.getGasPrice();
+        const priority = options?.maxPriorityFeePerGas ?? legacy / 10n;
+        const fee = options?.maxFeePerGas ?? legacy * 2n;
+        return { maxFeePerGas: fee, maxPriorityFeePerGas: priority };
+    }
+}
+/**
+ * L2 chains (Base, Optimism, etc.) deduct an L1 data-posting fee from the
+ * sender's balance on top of the L2 gas. The sweep formula `balance - L2gas`
+ * doesn't account for it and the RPC rejects the broadcast as underfunded.
+ *
+ * We reserve a small portion of the swept value to cover the L1 fee plus
+ * fluctuation headroom. Magnitude: keep min(balance * 2%, 0.0001 ETH).
+ */
+function l2DataFeeReserve(balance) {
+    const percent = balance / 50n; // 2 %
+    const cap = 100000000000000n; // 0.0001 ETH
+    return percent < cap ? percent : cap;
+}
+/**
+ * Apply gas multiplier (basis-of-100 percent). Default 120n = 120% headroom.
+ * Performs ceil-division to avoid undershooting fees.
+ */
+function applyGasMultiplier(gas, multiplier) {
+    // ceil((gas * multiplier) / 100)
+    return (gas * multiplier + 99n) / 100n;
+}
+/**
+ * Compute the required ETH gas reserve for a transaction.
+ *
+ * No amounts are logged or surfaced in errors — privacy invariant #5.
+ */
+async function resolveGasCost(transport, gasEstimate, options) {
+    const multiplier = options?.gasMultiplier ?? constants_js_1.DEFAULT_GAS_MULTIPLIER;
+    const adjustedGas = applyGasMultiplier(gasEstimate, multiplier);
+    const feePerGas = options?.maxFeePerGas ?? (await transport.publicClient.getGasPrice());
+    return adjustedGas * feePerGas;
+}
+/**
+ * Sweep the entire ETH balance from a stealth address to a destination.
+ *
+ * @param transport - ShroudFi transport (publicClient must reach the target chain)
+ * @param stealthPrivateKey - one-time stealth address private key. Treat as
+ *   sensitive: caller MUST NOT log, persist, or transmit this value. The SDK
+ *   does not retain it after the call returns.
+ * @param destination - final address that receives swept ETH
+ * @param options - optional fee/nonce overrides
+ *
+ * @remarks Phase 1: self-funded sweep. The stealth address pays its own gas in ETH,
+ * which creates a gas-funding correlation vector documented in research (Umbra deanonymization
+ * heuristic H2). This will be addressed in Phase 5 by a gasless relayer flow.
+ *
+ * @remarks Balance/nonce/gas-price are queried separately before signing. Callers running
+ * sweeps concurrently against the same stealth address should pass an explicit `nonce` in
+ * options to avoid races. Stack traces of thrown errors should NOT be logged by callers —
+ * they may contain RPC payload metadata.
+ */
+async function sweepETH(transport, stealthPrivateKey, destination, options) {
+    if (!destination || destination === constants_js_1.ZERO_ADDRESS) {
+        throw new errors_js_1.SweepError('Invalid destination');
+    }
+    const account = (0, accounts_1.privateKeyToAccount)(stealthPrivateKey);
+    const balance = await transport.publicClient.getBalance({
+        address: account.address,
+    });
+    if (balance === 0n) {
+        throw new errors_js_1.InsufficientBalanceError();
+    }
+    const gasCost = await resolveGasCost(transport, constants_js_1.ETH_TRANSFER_GAS_ESTIMATE, options);
+    const l2Reserve = l2DataFeeReserve(balance);
+    if (balance <= gasCost + l2Reserve) {
+        throw new errors_js_1.InsufficientBalanceError();
+    }
+    const valueToSend = balance - gasCost - l2Reserve;
+    const chain = transport.chain;
+    const nonce = options?.nonce ??
+        (await transport.publicClient.getTransactionCount({
+            address: account.address,
+        }));
+    const { maxFeePerGas, maxPriorityFeePerGas } = await suggestEip1559Fees(transport, options);
+    const serializedTransaction = await account.signTransaction({
+        to: destination,
+        value: valueToSend,
+        gas: constants_js_1.ETH_TRANSFER_GAS_ESTIMATE,
+        maxFeePerGas,
+        maxPriorityFeePerGas,
+        nonce,
+        chainId: chain.id,
+        type: 'eip1559',
+    });
+    let txHash;
+    try {
+        txHash = await transport.publicClient.sendRawTransaction({
+            serializedTransaction,
+        });
+    }
+    catch (err) {
+        // Privacy: surface only the error class name + a structured tag; never
+        // include the serialized transaction (which contains the signature) or
+        // the raw RPC error payload (which may quote bytes).
+        const tag = err instanceof Error ? err.name : 'unknown';
+        throw new errors_js_1.SweepError(`sweep broadcast failed (${tag})`);
+    }
+    const receipt = await transport.publicClient.waitForTransactionReceipt({
+        hash: txHash,
+    });
+    const swept = {
+        txHash,
+        destination,
+        token: constants_js_1.ETH_SENTINEL,
+        blockNumber: receipt.blockNumber,
+    };
+    return swept;
+}
+/**
+ * Sweep the entire ERC20 balance from a stealth address to a destination.
+ *
+ * The stealth address must already hold enough ETH to pay gas for the
+ * ERC20 transfer. Funding it from another account links the two — see
+ * privacy notes below.
+ *
+ * @param transport - ShroudFi transport
+ * @param stealthPrivateKey - one-time stealth private key (see sweepETH note)
+ * @param token - ERC20 contract address
+ * @param destination - final address that receives swept tokens
+ * @param options - optional fee/nonce overrides
+ *
+ * @remarks Phase 1: self-funded sweep. The stealth address pays its own gas in ETH,
+ * which creates a gas-funding correlation vector documented in research (Umbra deanonymization
+ * heuristic H2). This will be addressed in Phase 5 by a gasless relayer flow.
+ *
+ * @remarks Balance/nonce/gas-price are queried separately before signing. Callers running
+ * sweeps concurrently against the same stealth address should pass an explicit `nonce` in
+ * options to avoid races. Stack traces of thrown errors should NOT be logged by callers —
+ * they may contain RPC payload metadata.
+ */
+async function sweepERC20(transport, stealthPrivateKey, token, destination, options) {
+    if (!destination || destination === constants_js_1.ZERO_ADDRESS) {
+        throw new errors_js_1.SweepError('Invalid destination');
+    }
+    if (!token || token === constants_js_1.ZERO_ADDRESS) {
+        throw new errors_js_1.SweepError('Invalid token');
+    }
+    const account = (0, accounts_1.privateKeyToAccount)(stealthPrivateKey);
+    const tokenBalance = (await transport.publicClient.readContract({
+        address: token,
+        abi: transport_1.ERC20Abi,
+        functionName: 'balanceOf',
+        args: [account.address],
+    }));
+    if (tokenBalance === 0n) {
+        throw new errors_js_1.InsufficientBalanceError();
+    }
+    const ethBalance = await transport.publicClient.getBalance({
+        address: account.address,
+    });
+    const gasCost = await resolveGasCost(transport, constants_js_1.ERC20_TRANSFER_GAS_ESTIMATE, options);
+    if (ethBalance < gasCost) {
+        throw new errors_js_1.InsufficientBalanceError();
+    }
+    const data = (0, viem_1.encodeFunctionData)({
+        abi: transport_1.ERC20Abi,
+        functionName: 'transfer',
+        args: [destination, tokenBalance],
+    });
+    const chain = transport.chain;
+    const nonce = options?.nonce ??
+        (await transport.publicClient.getTransactionCount({
+            address: account.address,
+        }));
+    const { maxFeePerGas, maxPriorityFeePerGas } = await suggestEip1559Fees(transport, options);
+    const serializedTransaction = await account.signTransaction({
+        to: token,
+        value: 0n,
+        data,
+        gas: constants_js_1.ERC20_TRANSFER_GAS_ESTIMATE,
+        maxFeePerGas,
+        maxPriorityFeePerGas,
+        nonce,
+        chainId: chain.id,
+        type: 'eip1559',
+    });
+    let txHash;
+    try {
+        txHash = await transport.publicClient.sendRawTransaction({
+            serializedTransaction,
+        });
+    }
+    catch (err) {
+        const tag = err instanceof Error ? err.name : 'unknown';
+        throw new errors_js_1.SweepError(`sweep broadcast failed (${tag})`);
+    }
+    const receipt = await transport.publicClient.waitForTransactionReceipt({
+        hash: txHash,
+    });
+    const swept = {
+        txHash,
+        destination,
+        token,
+        blockNumber: receipt.blockNumber,
+    };
+    return swept;
+}
+//# sourceMappingURL=sweep.js.map

package/dist/cjs/sweep.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sweep.js","sourceRoot":"","sources":["../../src/sweep.ts"],"names":[],"mappings":";;AAoHA,4BAgFC;AAwBD,gCA4FC;AAvTD,+BAA0C;AAC1C,4CAAoD;AACpD,oDAAgD;AAGhD,2CAAmE;AACnE,iDAMwB;AAExB;;;;;;;;;;;GAWG;AACH,KAAK,UAAU,kBAAkB,CAC/B,SAA4B,EAC5B,OAAgC;IAEhC,IACE,OAAO,EAAE,YAAY,KAAK,SAAS;QACnC,OAAO,CAAC,oBAAoB,KAAK,SAAS,EAC1C,CAAC;QACD,OAAO;YACL,YAAY,EAAE,OAAO,CAAC,YAAY;YAClC,oBAAoB,EAAE,OAAO,CAAC,oBAAoB;SACnD,CAAC;IACJ,CAAC;IACD,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,kBAAkB,EAAE,CAAC;QAC/D,OAAO;YACL,YAAY,EAAE,OAAO,EAAE,YAAY,IAAI,IAAI,CAAC,YAAY;YACxD,oBAAoB,EAClB,OAAO,EAAE,oBAAoB,IAAI,IAAI,CAAC,oBAAoB;SAC7D,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;QAC1D,MAAM,QAAQ,GAAG,OAAO,EAAE,oBAAoB,IAAI,MAAM,GAAG,GAAG,CAAC;QAC/D,MAAM,GAAG,GAAG,OAAO,EAAE,YAAY,IAAI,MAAM,GAAG,EAAE,CAAC;QACjD,OAAO,EAAE,YAAY,EAAE,GAAG,EAAE,oBAAoB,EAAE,QAAQ,EAAE,CAAC;IAC/D,CAAC;AACH,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,gBAAgB,CAAC,OAAe;IACvC,MAAM,OAAO,GAAG,OAAO,GAAG,GAAG,CAAC,CAAU,MAAM;IAC9C,MAAM,GAAG,GAAG,gBAAoB,CAAC,CAAQ,aAAa;IACtD,OAAO,OAAO,GAAG,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC;AACvC,CAAC;AAED;;;GAGG;AACH,SAAS,kBAAkB,CAAC,GAAW,EAAE,UAAkB;IACzD,iCAAiC;IACjC,OAAO,CAAC,GAAG,GAAG,UAAU,GAAG,GAAG,CAAC,GAAG,IAAI,CAAC;AACzC,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,cAAc,CAC3B,SAA4B,EAC5B,WAAmB,EACnB,OAAgC;IAEhC,MAAM,UAAU,GAAG,OAAO,EAAE,aAAa,IAAI,qCAAsB,CAAC;IACpE,MAAM,WAAW,GAAG,kBAAkB,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC;IAEhE,MAAM,SAAS,GACb,OAAO,EAAE,YAAY,IAAI,CAAC,MAAM,SAAS,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC,CAAC;IAExE,OAAO,WAAW,GAAG,SAAS,CAAC;AACjC,CAAC;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACI,KAAK,UAAU,QAAQ,CAC5B,SAA4B,EAC5B,iBAAsB,EACtB,WAAoB,EACpB,OAAqB;IAErB,IAAI,CAAC,WAAW,IAAI,WAAW,KAAK,2BAAY,EAAE,CAAC;QACjD,MAAM,IAAI,sBAAU,CAAC,qBAAqB,CAAC,CAAC;IAC9C,CAAC;IAED,MAAM,OAAO,GAAG,IAAA,8BAAmB,EAAC,iBAAiB,CAAC,CAAC;IAEvD,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,UAAU,CAAC;QACtD,OAAO,EAAE,OAAO,CAAC,OAAO;KACzB,CAAC,CAAC;IACH,IAAI,OAAO,KAAK,EAAE,EAAE,CAAC;QACnB,MAAM,IAAI,oCAAwB,EAAE,CAAC;IACvC,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,cAAc,CAClC,SAAS,EACT,wCAAyB,EACzB,OAAO,CACR,CAAC;IAEF,MAAM,SAAS,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAAC;IAE5C,IAAI,OAAO,IAAI,OAAO,GAAG,SAAS,EAAE,CAAC;QACnC,MAAM,IAAI,oCAAwB,EAAE,CAAC;IACvC,CAAC;IAED,MAAM,WAAW,GAAG,OAAO,GAAG,OAAO,GAAG,SAAS,CAAC;IAElD,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC;IAC9B,MAAM,KAAK,GACT,OAAO,EAAE,KAAK;QACd,CAAC,MAAM,SAAS,CAAC,YAAY,CAAC,mBAAmB,CAAC;YAChD,OAAO,EAAE,OAAO,CAAC,OAAO;SACzB,CAAC,CAAC,CAAC;IAEN,MAAM,EAAE,YAAY,EAAE,oBAAoB,EAAE,GAAG,MAAM,kBAAkB,CACrE,SAAS,EACT,OAAO,CACR,CAAC;IAEF,MAAM,qBAAqB,GAAG,MAAM,OAAO,CAAC,eAAe,CAAC;QAC1D,EAAE,EAAE,WAAW;QACf,KAAK,EAAE,WAAW;QAClB,GAAG,EAAE,wCAAyB;QAC9B,YAAY;QACZ,oBAAoB;QACpB,KAAK;QACL,OAAO,EAAE,KAAK,CAAC,EAAE;QACjB,IAAI,EAAE,SAAS;KAChB,CAAC,CAAC;IAEH,IAAI,MAAW,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,kBAAkB,CAAC;YACvD,qBAAqB;SACtB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,uEAAuE;QACvE,uEAAuE;QACvE,qDAAqD;QACrD,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;QACxD,MAAM,IAAI,sBAAU,CAAC,2BAA2B,GAAG,GAAG,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,yBAAyB,CAAC;QACrE,IAAI,EAAE,MAAM;KACb,CAAC,CAAC;IAEH,MAAM,KAAK,GAAiB;QAC1B,MAAM;QACN,WAAW;QACX,KAAK,EAAE,2BAAY;QACnB,WAAW,EAAE,OAAO,CAAC,WAAW;KACjC,CAAC;IACF,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACI,KAAK,UAAU,UAAU,CAC9B,SAA4B,EAC5B,iBAAsB,EACtB,KAAc,EACd,WAAoB,EACpB,OAAqB;IAErB,IAAI,CAAC,WAAW,IAAI,WAAW,KAAK,2BAAY,EAAE,CAAC;QACjD,MAAM,IAAI,sBAAU,CAAC,qBAAqB,CAAC,CAAC;IAC9C,CAAC;IACD,IAAI,CAAC,KAAK,IAAI,KAAK,KAAK,2BAAY,EAAE,CAAC;QACrC,MAAM,IAAI,sBAAU,CAAC,eAAe,CAAC,CAAC;IACxC,CAAC;IAED,MAAM,OAAO,GAAG,IAAA,8BAAmB,EAAC,iBAAiB,CAAC,CAAC;IAEvD,MAAM,YAAY,GAAG,CAAC,MAAM,SAAS,CAAC,YAAY,CAAC,YAAY,CAAC;QAC9D,OAAO,EAAE,KAAK;QACd,GAAG,EAAE,oBAAQ;QACb,YAAY,EAAE,WAAW;QACzB,IAAI,EAAE,CAAC,OAAO,CAAC,OAAO,CAAC;KACxB,CAAC,CAAW,CAAC;IAEd,IAAI,YAAY,KAAK,EAAE,EAAE,CAAC;QACxB,MAAM,IAAI,oCAAwB,EAAE,CAAC;IACvC,CAAC;IAED,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,UAAU,CAAC;QACzD,OAAO,EAAE,OAAO,CAAC,OAAO;KACzB,CAAC,CAAC;IAEH,MAAM,OAAO,GAAG,MAAM,cAAc,CAClC,SAAS,EACT,0CAA2B,EAC3B,OAAO,CACR,CAAC;IAEF,IAAI,UAAU,GAAG,OAAO,EAAE,CAAC;QACzB,MAAM,IAAI,oCAAwB,EAAE,CAAC;IACvC,CAAC;IAED,MAAM,IAAI,GAAG,IAAA,yBAAkB,EAAC;QAC9B,GAAG,EAAE,oBAAQ;QACb,YAAY,EAAE,UAAU;QACxB,IAAI,EAAE,CAAC,WAAW,EAAE,YAAY,CAAC;KAClC,CAAC,CAAC;IAEH,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC;IAC9B,MAAM,KAAK,GACT,OAAO,EAAE,KAAK;QACd,CAAC,MAAM,SAAS,CAAC,YAAY,CAAC,mBAAmB,CAAC;YAChD,OAAO,EAAE,OAAO,CAAC,OAAO;SACzB,CAAC,CAAC,CAAC;IAEN,MAAM,EAAE,YAAY,EAAE,oBAAoB,EAAE,GAAG,MAAM,kBAAkB,CACrE,SAAS,EACT,OAAO,CACR,CAAC;IAEF,MAAM,qBAAqB,GAAG,MAAM,OAAO,CAAC,eAAe,CAAC;QAC1D,EAAE,EAAE,KAAK;QACT,KAAK,EAAE,EAAE;QACT,IAAI;QACJ,GAAG,EAAE,0CAA2B;QAChC,YAAY;QACZ,oBAAoB;QACpB,KAAK;QACL,OAAO,EAAE,KAAK,CAAC,EAAE;QACjB,IAAI,EAAE,SAAS;KAChB,CAAC,CAAC;IAEH,IAAI,MAAW,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,kBAAkB,CAAC;YACvD,qBAAqB;SACtB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC;QACxD,MAAM,IAAI,sBAAU,CAAC,2BAA2B,GAAG,GAAG,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,YAAY,CAAC,yBAAyB,CAAC;QACrE,IAAI,EAAE,MAAM;KACb,CAAC,CAAC;IAEH,MAAM,KAAK,GAAiB;QAC1B,MAAM;QACN,WAAW;QACX,KAAK;QACL,WAAW,EAAE,OAAO,CAAC,WAAW;KACjC,CAAC;IACF,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/cjs/types.d.ts

@@ -0,0 +1,27 @@
+import type { Address, Hash, Hex } from 'viem';
+export interface SendOptions {
+    readonly gasMultiplier?: bigint;
+    readonly maxFeePerGas?: bigint;
+    readonly maxPriorityFeePerGas?: bigint;
+    readonly nonce?: number;
+}
+export interface PaymentReceipt {
+    readonly txHash: Hash;
+    readonly stealthAddress: Address;
+    readonly ephemeralPubKey: Hex;
+    readonly viewTag: number;
+    readonly blockNumber: bigint;
+    readonly token: Address;
+}
+export interface SweepReceipt {
+    readonly txHash: Hash;
+    readonly destination: Address;
+    readonly token: Address;
+    readonly blockNumber: bigint;
+}
+export interface PreparedStealthPayment {
+    readonly stealthAddress: Address;
+    readonly ephemeralPubKey: Hex;
+    readonly viewTag: number;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/cjs/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,MAAM,MAAM,CAAC;AAE/C,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,aAAa,CAAC,EAAE,MAAM,CAAC;IAChC,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IACvC,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,MAAM,EAAE,IAAI,CAAC;IACtB,QAAQ,CAAC,cAAc,EAAE,OAAO,CAAC;IACjC,QAAQ,CAAC,eAAe,EAAE,GAAG,CAAC;IAC9B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;CACzB;AAED,MAAM,WAAW,YAAY;IAC3B,QAAQ,CAAC,MAAM,EAAE,IAAI,CAAC;IACtB,QAAQ,CAAC,WAAW,EAAE,OAAO,CAAC;IAC9B,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;IACxB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;CAC9B;AAED,MAAM,WAAW,sBAAsB;IACrC,QAAQ,CAAC,cAAc,EAAE,OAAO,CAAC;IACjC,QAAQ,CAAC,eAAe,EAAE,GAAG,CAAC;IAC9B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;CAC1B"}

package/dist/cjs/types.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/cjs/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/types.ts"],"names":[],"mappings":""}

package/dist/esm/amount-privacy.d.ts

@@ -0,0 +1,30 @@
+import type { Address } from 'viem';
+export interface ShieldResult {
+    readonly txHash: string;
+    readonly noteId?: string;
+}
+export interface PrivateTransferResult {
+    readonly txHash: string;
+    readonly recipient: Address;
+}
+export interface UnshieldResult {
+    readonly txHash: string;
+}
+export interface AmountPrivacyProvider {
+    readonly name: string;
+    shield(token: Address, amount: bigint): Promise<ShieldResult>;
+    privateTransfer(to: Address, amount: bigint, token: Address): Promise<PrivateTransferResult>;
+    unshield(amount: bigint, token: Address): Promise<UnshieldResult>;
+    grantViewAccess(viewer: Address): Promise<void>;
+    estimateGas(token: Address, amount: bigint): Promise<bigint>;
+}
+export declare class NullAmountPrivacyProvider implements AmountPrivacyProvider {
+    readonly name = "null";
+    shield(_token?: Address, _amount?: bigint): Promise<ShieldResult>;
+    privateTransfer(_to?: Address, _amount?: bigint, _token?: Address): Promise<PrivateTransferResult>;
+    unshield(_amount?: bigint, _token?: Address): Promise<UnshieldResult>;
+    grantViewAccess(_viewer?: Address): Promise<void>;
+    estimateGas(_token?: Address, _amount?: bigint): Promise<bigint>;
+}
+export declare function assertSupported(provider: AmountPrivacyProvider): void;
+//# sourceMappingURL=amount-privacy.d.ts.map

package/dist/esm/amount-privacy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"amount-privacy.d.ts","sourceRoot":"","sources":["../../src/amount-privacy.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAGpC,MAAM,WAAW,YAAY;IAC3B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,qBAAqB;IACpC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,SAAS,EAAE,OAAO,CAAC;CAC7B;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,qBAAqB;IACpC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAC9D,eAAe,CAAC,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAC7F,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;IAClE,eAAe,CAAC,MAAM,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAChD,WAAW,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CAC9D;AAED,qBAAa,yBAA0B,YAAW,qBAAqB;IACrE,QAAQ,CAAC,IAAI,UAAU;IAEjB,MAAM,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAIjE,eAAe,CACnB,GAAG,CAAC,EAAE,OAAO,EACb,OAAO,CAAC,EAAE,MAAM,EAChB,MAAM,CAAC,EAAE,OAAO,GACf,OAAO,CAAC,qBAAqB,CAAC;IAI3B,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,cAAc,CAAC;IAIrE,eAAe,CAAC,OAAO,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IAIjD,WAAW,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;CAGvE;AAED,wBAAgB,eAAe,CAAC,QAAQ,EAAE,qBAAqB,GAAG,IAAI,CAIrE"}

package/dist/esm/amount-privacy.js

@@ -0,0 +1,25 @@
+import { AmountPrivacyNotSupportedError } from './errors.js';
+export class NullAmountPrivacyProvider {
+    name = 'null';
+    async shield(_token, _amount) {
+        throw new AmountPrivacyNotSupportedError('shield');
+    }
+    async privateTransfer(_to, _amount, _token) {
+        throw new AmountPrivacyNotSupportedError('privateTransfer');
+    }
+    async unshield(_amount, _token) {
+        throw new AmountPrivacyNotSupportedError('unshield');
+    }
+    async grantViewAccess(_viewer) {
+        throw new AmountPrivacyNotSupportedError('grantViewAccess');
+    }
+    async estimateGas(_token, _amount) {
+        throw new AmountPrivacyNotSupportedError('estimateGas');
+    }
+}
+export function assertSupported(provider) {
+    if (provider.name === 'null') {
+        throw new AmountPrivacyNotSupportedError(provider.name);
+    }
+}
+//# sourceMappingURL=amount-privacy.js.map

package/dist/esm/amount-privacy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"amount-privacy.js","sourceRoot":"","sources":["../../src/amount-privacy.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,8BAA8B,EAAE,MAAM,aAAa,CAAC;AAyB7D,MAAM,OAAO,yBAAyB;IAC3B,IAAI,GAAG,MAAM,CAAC;IAEvB,KAAK,CAAC,MAAM,CAAC,MAAgB,EAAE,OAAgB;QAC7C,MAAM,IAAI,8BAA8B,CAAC,QAAQ,CAAC,CAAC;IACrD,CAAC;IAED,KAAK,CAAC,eAAe,CACnB,GAAa,EACb,OAAgB,EAChB,MAAgB;QAEhB,MAAM,IAAI,8BAA8B,CAAC,iBAAiB,CAAC,CAAC;IAC9D,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,OAAgB,EAAE,MAAgB;QAC/C,MAAM,IAAI,8BAA8B,CAAC,UAAU,CAAC,CAAC;IACvD,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,OAAiB;QACrC,MAAM,IAAI,8BAA8B,CAAC,iBAAiB,CAAC,CAAC;IAC9D,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,MAAgB,EAAE,OAAgB;QAClD,MAAM,IAAI,8BAA8B,CAAC,aAAa,CAAC,CAAC;IAC1D,CAAC;CACF;AAED,MAAM,UAAU,eAAe,CAAC,QAA+B;IAC7D,IAAI,QAAQ,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;QAC7B,MAAM,IAAI,8BAA8B,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;IAC1D,CAAC;AACH,CAAC"}

package/dist/esm/constants.d.ts

@@ -0,0 +1,7 @@
+export declare const DEFAULT_GAS_MULTIPLIER = 120n;
+export declare const ETH_SENTINEL: "0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE";
+export declare const ZERO_ADDRESS: "0x0000000000000000000000000000000000000000";
+export declare const SCHEME_ID = 1n;
+export declare const ERC20_TRANSFER_GAS_ESTIMATE = 65000n;
+export declare const ETH_TRANSFER_GAS_ESTIMATE = 21000n;
+//# sourceMappingURL=constants.d.ts.map

package/dist/esm/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,sBAAsB,OAAO,CAAC;AAE3C,eAAO,MAAM,YAAY,8CAA0E,CAAC;AAEpG,eAAO,MAAM,YAAY,8CAA0E,CAAC;AAEpG,eAAO,MAAM,SAAS,KAAK,CAAC;AAE5B,eAAO,MAAM,2BAA2B,SAAU,CAAC;AACnD,eAAO,MAAM,yBAAyB,SAAU,CAAC"}

package/dist/esm/constants.js

@@ -0,0 +1,7 @@
+export const DEFAULT_GAS_MULTIPLIER = 120n;
+export const ETH_SENTINEL = '0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE';
+export const ZERO_ADDRESS = '0x0000000000000000000000000000000000000000';
+export const SCHEME_ID = 1n;
+export const ERC20_TRANSFER_GAS_ESTIMATE = 65000n;
+export const ETH_TRANSFER_GAS_ESTIMATE = 21000n;
+//# sourceMappingURL=constants.js.map

package/dist/esm/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,sBAAsB,GAAG,IAAI,CAAC;AAE3C,MAAM,CAAC,MAAM,YAAY,GAAG,4CAAuE,CAAC;AAEpG,MAAM,CAAC,MAAM,YAAY,GAAG,4CAAuE,CAAC;AAEpG,MAAM,CAAC,MAAM,SAAS,GAAG,EAAE,CAAC;AAE5B,MAAM,CAAC,MAAM,2BAA2B,GAAG,MAAO,CAAC;AACnD,MAAM,CAAC,MAAM,yBAAyB,GAAG,MAAO,CAAC"}

package/dist/esm/errors.d.ts

@@ -0,0 +1,57 @@
+export declare class PaymentError extends Error {
+    readonly name: string;
+    constructor(message: string);
+}
+export declare class SweepError extends Error {
+    readonly name: string;
+    constructor(message: string);
+}
+export declare class InvalidRecipientError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+export declare class InsufficientBalanceError extends SweepError {
+    readonly name: string;
+    constructor();
+}
+export declare class ZeroAmountError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+export declare class AmountPrivacyNotSupportedError extends Error {
+    readonly name: string;
+    constructor(method: string);
+}
+export declare class MissingWalletClientError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+export declare class StealthPaymentContractNotConfiguredError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+/**
+ * Thrown when a sender tries to pay a wallet that has not yet registered a
+ * stealth meta-address in the canonical ERC-6538 registry. The recipient must
+ * onboard first (publish their (S, B) pubkeys) before stealth payments are
+ * possible.
+ *
+ * Privacy note: the offending wallet address is NOT placed in `.message`. It
+ * is exposed via the `wallet` property so callers can show a useful UI hint
+ * without leaking the address into logs that only capture `.message`.
+ */
+export declare class RecipientNotOnboardedError extends PaymentError {
+    readonly name: string;
+    readonly wallet: `0x${string}`;
+    constructor(wallet: `0x${string}`);
+}
+/**
+ * Thrown when the bytes returned by `stealthMetaAddressOf` are not the
+ * expected 66 raw bytes (33 spending pubkey + 33 viewing pubkey) with valid
+ * compressed-point prefixes. Indicates registry corruption or off-spec usage.
+ */
+export declare class MalformedMetaAddressError extends PaymentError {
+    readonly name: string;
+    constructor();
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/esm/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":"AAAA,qBAAa,YAAa,SAAQ,KAAK;IACrC,SAAkB,IAAI,EAAE,MAAM,CAAkB;gBACpC,OAAO,EAAE,MAAM;CAG5B;AAED,qBAAa,UAAW,SAAQ,KAAK;IACnC,SAAkB,IAAI,EAAE,MAAM,CAAgB;gBAClC,OAAO,EAAE,MAAM;CAG5B;AAED,qBAAa,qBAAsB,SAAQ,YAAY;IACrD,SAAkB,IAAI,EAAE,MAAM,CAA2B;;CAI1D;AAED,qBAAa,wBAAyB,SAAQ,UAAU;IACtD,SAAkB,IAAI,EAAE,MAAM,CAA8B;;CAI7D;AAED,qBAAa,eAAgB,SAAQ,YAAY;IAC/C,SAAkB,IAAI,EAAE,MAAM,CAAqB;;CAIpD;AAED,qBAAa,8BAA+B,SAAQ,KAAK;IACvD,SAAkB,IAAI,EAAE,MAAM,CAAoC;gBACtD,MAAM,EAAE,MAAM;CAG3B;AAED,qBAAa,wBAAyB,SAAQ,YAAY;IACxD,SAAkB,IAAI,EAAE,MAAM,CAA8B;;CAI7D;AAED,qBAAa,wCAAyC,SAAQ,YAAY;IACxE,SAAkB,IAAI,EAAE,MAAM,CAA8C;;CAI7E;AAED;;;;;;;;;GASG;AACH,qBAAa,0BAA2B,SAAQ,YAAY;IAC1D,SAAkB,IAAI,EAAE,MAAM,CAAgC;IAC9D,QAAQ,CAAC,MAAM,EAAE,KAAK,MAAM,EAAE,CAAC;gBACnB,MAAM,EAAE,KAAK,MAAM,EAAE;CAIlC;AAED;;;;GAIG;AACH,qBAAa,yBAA0B,SAAQ,YAAY;IACzD,SAAkB,IAAI,EAAE,MAAM,CAA+B;;CAI9D"}

package/dist/esm/errors.js

@@ -0,0 +1,78 @@
+export class PaymentError extends Error {
+    name = 'PaymentError';
+    constructor(message) {
+        super(message);
+    }
+}
+export class SweepError extends Error {
+    name = 'SweepError';
+    constructor(message) {
+        super(message);
+    }
+}
+export class InvalidRecipientError extends PaymentError {
+    name = 'InvalidRecipientError';
+    constructor() {
+        super('Invalid recipient meta-address');
+    }
+}
+export class InsufficientBalanceError extends SweepError {
+    name = 'InsufficientBalanceError';
+    constructor() {
+        super('Insufficient balance to cover gas');
+    }
+}
+export class ZeroAmountError extends PaymentError {
+    name = 'ZeroAmountError';
+    constructor() {
+        super('Amount must be greater than zero');
+    }
+}
+export class AmountPrivacyNotSupportedError extends Error {
+    name = 'AmountPrivacyNotSupportedError';
+    constructor(method) {
+        super(`Amount privacy not supported: ${method}`);
+    }
+}
+export class MissingWalletClientError extends PaymentError {
+    name = 'MissingWalletClientError';
+    constructor() {
+        super('Transport has no walletClient configured');
+    }
+}
+export class StealthPaymentContractNotConfiguredError extends PaymentError {
+    name = 'StealthPaymentContractNotConfiguredError';
+    constructor() {
+        super('ShroudFiStealth contract address not configured');
+    }
+}
+/**
+ * Thrown when a sender tries to pay a wallet that has not yet registered a
+ * stealth meta-address in the canonical ERC-6538 registry. The recipient must
+ * onboard first (publish their (S, B) pubkeys) before stealth payments are
+ * possible.
+ *
+ * Privacy note: the offending wallet address is NOT placed in `.message`. It
+ * is exposed via the `wallet` property so callers can show a useful UI hint
+ * without leaking the address into logs that only capture `.message`.
+ */
+export class RecipientNotOnboardedError extends PaymentError {
+    name = 'RecipientNotOnboardedError';
+    wallet;
+    constructor(wallet) {
+        super('Recipient wallet has not registered a stealth meta-address');
+        this.wallet = wallet;
+    }
+}
+/**
+ * Thrown when the bytes returned by `stealthMetaAddressOf` are not the
+ * expected 66 raw bytes (33 spending pubkey + 33 viewing pubkey) with valid
+ * compressed-point prefixes. Indicates registry corruption or off-spec usage.
+ */
+export class MalformedMetaAddressError extends PaymentError {
+    name = 'MalformedMetaAddressError';
+    constructor() {
+        super('Registry returned a malformed stealth meta-address');
+    }
+}
+//# sourceMappingURL=errors.js.map

package/dist/esm/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../src/errors.ts"],"names":[],"mappings":"AAAA,MAAM,OAAO,YAAa,SAAQ,KAAK;IACnB,IAAI,GAAW,cAAc,CAAC;IAChD,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;IACjB,CAAC;CACF;AAED,MAAM,OAAO,UAAW,SAAQ,KAAK;IACjB,IAAI,GAAW,YAAY,CAAC;IAC9C,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;IACjB,CAAC;CACF;AAED,MAAM,OAAO,qBAAsB,SAAQ,YAAY;IACnC,IAAI,GAAW,uBAAuB,CAAC;IACzD;QACE,KAAK,CAAC,gCAAgC,CAAC,CAAC;IAC1C,CAAC;CACF;AAED,MAAM,OAAO,wBAAyB,SAAQ,UAAU;IACpC,IAAI,GAAW,0BAA0B,CAAC;IAC5D;QACE,KAAK,CAAC,mCAAmC,CAAC,CAAC;IAC7C,CAAC;CACF;AAED,MAAM,OAAO,eAAgB,SAAQ,YAAY;IAC7B,IAAI,GAAW,iBAAiB,CAAC;IACnD;QACE,KAAK,CAAC,kCAAkC,CAAC,CAAC;IAC5C,CAAC;CACF;AAED,MAAM,OAAO,8BAA+B,SAAQ,KAAK;IACrC,IAAI,GAAW,gCAAgC,CAAC;IAClE,YAAY,MAAc;QACxB,KAAK,CAAC,iCAAiC,MAAM,EAAE,CAAC,CAAC;IACnD,CAAC;CACF;AAED,MAAM,OAAO,wBAAyB,SAAQ,YAAY;IACtC,IAAI,GAAW,0BAA0B,CAAC;IAC5D;QACE,KAAK,CAAC,0CAA0C,CAAC,CAAC;IACpD,CAAC;CACF;AAED,MAAM,OAAO,wCAAyC,SAAQ,YAAY;IACtD,IAAI,GAAW,0CAA0C,CAAC;IAC5E;QACE,KAAK,CAAC,iDAAiD,CAAC,CAAC;IAC3D,CAAC;CACF;AAED;;;;;;;;;GASG;AACH,MAAM,OAAO,0BAA2B,SAAQ,YAAY;IACxC,IAAI,GAAW,4BAA4B,CAAC;IACrD,MAAM,CAAgB;IAC/B,YAAY,MAAqB;QAC/B,KAAK,CAAC,4DAA4D,CAAC,CAAC;QACpE,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;CACF;AAED;;;;GAIG;AACH,MAAM,OAAO,yBAA0B,SAAQ,YAAY;IACvC,IAAI,GAAW,2BAA2B,CAAC;IAC7D;QACE,KAAK,CAAC,oDAAoD,CAAC,CAAC;IAC9D,CAAC;CACF"}

package/dist/esm/index.d.ts

@@ -0,0 +1,10 @@
+export { sendETHPayment, sendERC20Payment, prepareStealthPayment, } from './payments.js';
+export { sweepETH, sweepERC20, } from './sweep.js';
+export { sendToWallet, lookupMetaAddress, } from './send-to-wallet.js';
+export { NullAmountPrivacyProvider, assertSupported, } from './amount-privacy.js';
+export type { SendOptions, PaymentReceipt, SweepReceipt, PreparedStealthPayment, } from './types.js';
+export type { SendToWalletAsset } from './send-to-wallet.js';
+export type { AmountPrivacyProvider, ShieldResult, PrivateTransferResult, UnshieldResult, } from './amount-privacy.js';
+export { DEFAULT_GAS_MULTIPLIER, ETH_SENTINEL, ZERO_ADDRESS, SCHEME_ID, ETH_TRANSFER_GAS_ESTIMATE, ERC20_TRANSFER_GAS_ESTIMATE, } from './constants.js';
+export { PaymentError, SweepError, InvalidRecipientError, InsufficientBalanceError, ZeroAmountError, AmountPrivacyNotSupportedError, MissingWalletClientError, StealthPaymentContractNotConfiguredError, RecipientNotOnboardedError, MalformedMetaAddressError, } from './errors.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/esm/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAMA,OAAO,EACL,cAAc,EACd,gBAAgB,EAChB,qBAAqB,GACtB,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,QAAQ,EACR,UAAU,GACX,MAAM,YAAY,CAAC;AACpB,OAAO,EACL,YAAY,EACZ,iBAAiB,GAClB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EACL,yBAAyB,EACzB,eAAe,GAChB,MAAM,qBAAqB,CAAC;AAG7B,YAAY,EACV,WAAW,EACX,cAAc,EACd,YAAY,EACZ,sBAAsB,GACvB,MAAM,YAAY,CAAC;AACpB,YAAY,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAC7D,YAAY,EACV,qBAAqB,EACrB,YAAY,EACZ,qBAAqB,EACrB,cAAc,GACf,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,sBAAsB,EACtB,YAAY,EACZ,YAAY,EACZ,SAAS,EACT,yBAAyB,EACzB,2BAA2B,GAC5B,MAAM,gBAAgB,CAAC;AAGxB,OAAO,EACL,YAAY,EACZ,UAAU,EACV,qBAAqB,EACrB,wBAAwB,EACxB,eAAe,EACf,8BAA8B,EAC9B,wBAAwB,EACxB,wCAAwC,EACxC,0BAA0B,EAC1B,yBAAyB,GAC1B,MAAM,aAAa,CAAC"}

package/dist/esm/index.js

@@ -0,0 +1,14 @@
+// Public surface — @shroud-fi/payments
+// Phase 1: stealth payment construction + sweep (self-funded).
+// Sweep timing (log-normal delay, destination rotation) lives in @shroud-fi/scanning (P3).
+// Relayer-funded sweep + EIP-2612 permit lives in the relayer service (P5).
+// Functions
+export { sendETHPayment, sendERC20Payment, prepareStealthPayment, } from './payments.js';
+export { sweepETH, sweepERC20, } from './sweep.js';
+export { sendToWallet, lookupMetaAddress, } from './send-to-wallet.js';
+export { NullAmountPrivacyProvider, assertSupported, } from './amount-privacy.js';
+// Constants
+export { DEFAULT_GAS_MULTIPLIER, ETH_SENTINEL, ZERO_ADDRESS, SCHEME_ID, ETH_TRANSFER_GAS_ESTIMATE, ERC20_TRANSFER_GAS_ESTIMATE, } from './constants.js';
+// Errors
+export { PaymentError, SweepError, InvalidRecipientError, InsufficientBalanceError, ZeroAmountError, AmountPrivacyNotSupportedError, MissingWalletClientError, StealthPaymentContractNotConfiguredError, RecipientNotOnboardedError, MalformedMetaAddressError, } from './errors.js';
+//# sourceMappingURL=index.js.map

package/dist/esm/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,uCAAuC;AACvC,+DAA+D;AAC/D,2FAA2F;AAC3F,4EAA4E;AAE5E,YAAY;AACZ,OAAO,EACL,cAAc,EACd,gBAAgB,EAChB,qBAAqB,GACtB,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,QAAQ,EACR,UAAU,GACX,MAAM,YAAY,CAAC;AACpB,OAAO,EACL,YAAY,EACZ,iBAAiB,GAClB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EACL,yBAAyB,EACzB,eAAe,GAChB,MAAM,qBAAqB,CAAC;AAiB7B,YAAY;AACZ,OAAO,EACL,sBAAsB,EACtB,YAAY,EACZ,YAAY,EACZ,SAAS,EACT,yBAAyB,EACzB,2BAA2B,GAC5B,MAAM,gBAAgB,CAAC;AAExB,SAAS;AACT,OAAO,EACL,YAAY,EACZ,UAAU,EACV,qBAAqB,EACrB,wBAAwB,EACxB,eAAe,EACf,8BAA8B,EAC9B,wBAAwB,EACxB,wCAAwC,EACxC,0BAA0B,EAC1B,yBAAyB,GAC1B,MAAM,aAAa,CAAC"}

package/dist/esm/payments.d.ts

@@ -0,0 +1,49 @@
+/**
+ * ShroudFi Payments - Stealth Payment Construction
+ *
+ * Builds and submits stealth payments through the ShroudFiStealth contract.
+ * Uses generateStealthAddress from @shroud-fi/core for derivation.
+ *
+ * Privacy invariants enforced:
+ *   - No private key material in any error message
+ *   - No plaintext amounts in any error message
+ *   - No console.log/warn/error anywhere
+ *   - Non-custodial: only constructs transactions, never holds funds
+ */
+import type { Address } from 'viem';
+import type { StealthMetaAddress } from '@shroud-fi/core';
+import type { ShroudFiTransport } from '@shroud-fi/transport';
+import type { PaymentReceipt, PreparedStealthPayment, SendOptions } from './types.js';
+/**
+ * Prepare stealth payment material from a recipient meta-address.
+ * Pure helper - does not submit any transaction.
+ *
+ * @throws InvalidRecipientError if the meta-address is malformed or invalid.
+ */
+export declare function prepareStealthPayment(metaAddress: StealthMetaAddress): PreparedStealthPayment;
+/**
+ * Send native ETH to a stealth address derived from `metaAddress`.
+ *
+ * Privacy notes:
+ *   - The contract emits a StealthPayment event with the stealth address.
+ *   - The amount is on-chain by necessity (no native ETH amount privacy).
+ *   - Caller pays gas - relayer abstraction is a separate concern.
+ *
+ * @throws MissingWalletClientError if transport has no walletClient configured.
+ * @throws ZeroAmountError if valueWei is 0n.
+ * @throws InvalidRecipientError if the meta-address is invalid.
+ */
+export declare function sendETHPayment(transport: ShroudFiTransport, contractAddress: Address, metaAddress: StealthMetaAddress, valueWei: bigint, options?: SendOptions): Promise<PaymentReceipt>;
+/**
+ * Send an ERC-20 token to a stealth address derived from `metaAddress`.
+ *
+ * **Pre-approval required:** the caller MUST have already approved
+ * `contractAddress` to spend at least `amount` of `token` from the sender's
+ * account. v1 does not include an approve flow.
+ *
+ * @throws MissingWalletClientError if transport has no walletClient configured.
+ * @throws ZeroAmountError if amount is 0n.
+ * @throws InvalidRecipientError if the meta-address is invalid.
+ */
+export declare function sendERC20Payment(transport: ShroudFiTransport, contractAddress: Address, metaAddress: StealthMetaAddress, token: Address, amount: bigint, options?: SendOptions): Promise<PaymentReceipt>;
+//# sourceMappingURL=payments.d.ts.map

package/dist/esm/payments.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"payments.d.ts","sourceRoot":"","sources":["../../src/payments.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,OAAO,EAA+C,MAAM,MAAM,CAAC;AAGjF,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAC;AAE1D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAC9D,OAAO,KAAK,EACV,cAAc,EACd,sBAAsB,EACtB,WAAW,EACZ,MAAM,YAAY,CAAC;AA4BpB;;;;;GAKG;AACH,wBAAgB,qBAAqB,CACnC,WAAW,EAAE,kBAAkB,GAC9B,sBAAsB,CAaxB;AAoDD;;;;;;;;;;;GAWG;AACH,wBAAsB,cAAc,CAClC,SAAS,EAAE,iBAAiB,EAC5B,eAAe,EAAE,OAAO,EACxB,WAAW,EAAE,kBAAkB,EAC/B,QAAQ,EAAE,MAAM,EAChB,OAAO,CAAC,EAAE,WAAW,GACpB,OAAO,CAAC,cAAc,CAAC,CA2EzB;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,gBAAgB,CACpC,SAAS,EAAE,iBAAiB,EAC5B,eAAe,EAAE,OAAO,EACxB,WAAW,EAAE,kBAAkB,EAC/B,KAAK,EAAE,OAAO,EACd,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE,WAAW,GACpB,OAAO,CAAC,cAAc,CAAC,CAiFzB"}