@shroud-fi/x402 0.1.0

package/dist/cjs/signing.d.ts

@@ -0,0 +1,93 @@
+/**
+ * EIP-3009 `TransferWithAuthorization` typed-data signing for x402.
+ *
+ * Privacy invariants:
+ *   - The private key never leaves the viem `account` object. We do not
+ *     extract it, log it, or attach it to errors.
+ *   - The signed payload (`signature`, `nonce`, `value`) is never logged,
+ *     stringified into errors, or stored. Caller is responsible for sending
+ *     it directly to the server in the `X-PAYMENT` header.
+ *   - `nonce` is a fresh 32 bytes per call via `crypto.getRandomValues`,
+ *     never reused.
+ */
+import type { Account, Address, Chain, Hex } from 'viem';
+/**
+ * EIP-3009 `TransferWithAuthorization` typed-data types.
+ * Exported for tests; the runtime signer constructs the same object inline.
+ */
+export declare const TransferWithAuthorizationTypes: {
+    readonly TransferWithAuthorization: readonly [{
+        readonly name: "from";
+        readonly type: "address";
+    }, {
+        readonly name: "to";
+        readonly type: "address";
+    }, {
+        readonly name: "value";
+        readonly type: "uint256";
+    }, {
+        readonly name: "validAfter";
+        readonly type: "uint256";
+    }, {
+        readonly name: "validBefore";
+        readonly type: "uint256";
+    }, {
+        readonly name: "nonce";
+        readonly type: "bytes32";
+    }];
+};
+/**
+ * The cleartext authorization fields. Caller passes them in; signer hashes,
+ * signs, and returns both signature + the authorization (so the caller can
+ * forward the unsigned data alongside the signature).
+ */
+export interface TransferWithAuthorizationInput {
+    readonly from: Address;
+    readonly to: Address;
+    readonly value: bigint;
+    readonly validAfter: bigint;
+    readonly validBefore: bigint;
+    readonly nonce: Hex;
+}
+export interface SignedTransferWithAuthorization {
+    readonly signature: Hex;
+    readonly nonce: Hex;
+    readonly from: Address;
+    readonly to: Address;
+    readonly value: bigint;
+    readonly validAfter: bigint;
+    readonly validBefore: bigint;
+}
+/**
+ * Generate a fresh 32-byte nonce for EIP-3009. Uses Web Crypto (available in
+ * Node 20+ and all browsers). Never reuse — each authorization needs a
+ * unique nonce to avoid replay.
+ */
+export declare function generateAuthorizationNonce(): Hex;
+/**
+ * Sign an EIP-3009 `TransferWithAuthorization` over USDC. Returns the
+ * 65-byte signature + the authorization fields the server will replay.
+ *
+ * @throws X402AssetNotSupportedError if USDC is not configured for this chain.
+ */
+export declare function signTransferWithAuthorization(args: {
+    readonly account: Account;
+    readonly chain: Chain;
+    readonly verifyingContract: Address;
+    readonly input: TransferWithAuthorizationInput;
+}): Promise<SignedTransferWithAuthorization>;
+/**
+ * Verify a `TransferWithAuthorization` signature on the server side.
+ * Returns the recovered signer address (`from`) or `null` on failure.
+ *
+ * NOTE: we do NOT throw on failure — caller maps `null` → verify.valid=false
+ * with an error tag. Throwing here would risk leaking signature bytes via
+ * thrown error stacks.
+ */
+export declare function verifyTransferWithAuthorizationSignature(args: {
+    readonly chainId: number;
+    readonly verifyingContract: Address;
+    readonly authorization: TransferWithAuthorizationInput;
+    readonly signature: Hex;
+}): Promise<Address | null>;
+//# sourceMappingURL=signing.d.ts.map

package/dist/cjs/signing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signing.d.ts","sourceRoot":"","sources":["../../src/signing.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,MAAM,MAAM,CAAC;AAIzD;;;GAGG;AACH,eAAO,MAAM,8BAA8B;;;;;;;;;;;;;;;;;;;;CASjC,CAAC;AAEX;;;;GAIG;AACH,MAAM,WAAW,8BAA8B;IAC7C,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC;IACvB,QAAQ,CAAC,EAAE,EAAE,OAAO,CAAC;IACrB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,KAAK,EAAE,GAAG,CAAC;CACrB;AAED,MAAM,WAAW,+BAA+B;IAC9C,QAAQ,CAAC,SAAS,EAAE,GAAG,CAAC;IACxB,QAAQ,CAAC,KAAK,EAAE,GAAG,CAAC;IACpB,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC;IACvB,QAAQ,CAAC,EAAE,EAAE,OAAO,CAAC;IACrB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;CAC9B;AAED;;;;GAIG;AACH,wBAAgB,0BAA0B,IAAI,GAAG,CAUhD;AAED;;;;;GAKG;AACH,wBAAsB,6BAA6B,CAAC,IAAI,EAAE;IACxD,QAAQ,CAAC,OAAO,EAAE,OAAO,CAAC;IAC1B,QAAQ,CAAC,KAAK,EAAE,KAAK,CAAC;IACtB,QAAQ,CAAC,iBAAiB,EAAE,OAAO,CAAC;IACpC,QAAQ,CAAC,KAAK,EAAE,8BAA8B,CAAC;CAChD,GAAG,OAAO,CAAC,+BAA+B,CAAC,CA4C3C;AAED;;;;;;;GAOG;AACH,wBAAsB,wCAAwC,CAAC,IAAI,EAAE;IACnE,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,iBAAiB,EAAE,OAAO,CAAC;IACpC,QAAQ,CAAC,aAAa,EAAE,8BAA8B,CAAC;IACvD,QAAQ,CAAC,SAAS,EAAE,GAAG,CAAC;CACzB,GAAG,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CA6B1B"}

package/dist/cjs/signing.js

@@ -0,0 +1,170 @@
+"use strict";
+/**
+ * EIP-3009 `TransferWithAuthorization` typed-data signing for x402.
+ *
+ * Privacy invariants:
+ *   - The private key never leaves the viem `account` object. We do not
+ *     extract it, log it, or attach it to errors.
+ *   - The signed payload (`signature`, `nonce`, `value`) is never logged,
+ *     stringified into errors, or stored. Caller is responsible for sending
+ *     it directly to the server in the `X-PAYMENT` header.
+ *   - `nonce` is a fresh 32 bytes per call via `crypto.getRandomValues`,
+ *     never reused.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TransferWithAuthorizationTypes = void 0;
+exports.generateAuthorizationNonce = generateAuthorizationNonce;
+exports.signTransferWithAuthorization = signTransferWithAuthorization;
+exports.verifyTransferWithAuthorizationSignature = verifyTransferWithAuthorizationSignature;
+const transport_1 = require("@shroud-fi/transport");
+const errors_js_1 = require("./errors.js");
+/**
+ * EIP-3009 `TransferWithAuthorization` typed-data types.
+ * Exported for tests; the runtime signer constructs the same object inline.
+ */
+exports.TransferWithAuthorizationTypes = {
+    TransferWithAuthorization: [
+        { name: 'from', type: 'address' },
+        { name: 'to', type: 'address' },
+        { name: 'value', type: 'uint256' },
+        { name: 'validAfter', type: 'uint256' },
+        { name: 'validBefore', type: 'uint256' },
+        { name: 'nonce', type: 'bytes32' },
+    ],
+};
+/**
+ * Generate a fresh 32-byte nonce for EIP-3009. Uses Web Crypto (available in
+ * Node 20+ and all browsers). Never reuse — each authorization needs a
+ * unique nonce to avoid replay.
+ */
+function generateAuthorizationNonce() {
+    const bytes = new Uint8Array(32);
+    // Web Crypto is globally available on Node 20+; deliberately not using
+    // `node:crypto.randomBytes` so the module stays runtime-agnostic.
+    globalThis.crypto.getRandomValues(bytes);
+    let hex = '0x';
+    for (const b of bytes) {
+        hex += b.toString(16).padStart(2, '0');
+    }
+    return hex;
+}
+/**
+ * Sign an EIP-3009 `TransferWithAuthorization` over USDC. Returns the
+ * 65-byte signature + the authorization fields the server will replay.
+ *
+ * @throws X402AssetNotSupportedError if USDC is not configured for this chain.
+ */
+async function signTransferWithAuthorization(args) {
+    const { account, chain, verifyingContract, input } = args;
+    const usdcDomain = (0, transport_1.getUSDCDomain)(chain.id);
+    if (usdcDomain === undefined) {
+        throw new errors_js_1.X402AssetNotSupportedError();
+    }
+    const domain = {
+        name: usdcDomain.name,
+        version: usdcDomain.version,
+        chainId: chain.id,
+        verifyingContract,
+    };
+    if (account.signTypedData === undefined) {
+        // Local account; viem provides .signTypedData for privateKeyToAccount.
+        // For JSON-RPC accounts the caller must provide a wrapper. Treat as
+        // unsupported configuration rather than leaking the underlying error.
+        throw new errors_js_1.X402AssetNotSupportedError();
+    }
+    const signature = await account.signTypedData({
+        domain,
+        types: exports.TransferWithAuthorizationTypes,
+        primaryType: 'TransferWithAuthorization',
+        message: {
+            from: input.from,
+            to: input.to,
+            value: input.value,
+            validAfter: input.validAfter,
+            validBefore: input.validBefore,
+            nonce: input.nonce,
+        },
+    });
+    return {
+        signature,
+        nonce: input.nonce,
+        from: input.from,
+        to: input.to,
+        value: input.value,
+        validAfter: input.validAfter,
+        validBefore: input.validBefore,
+    };
+}
+/**
+ * Verify a `TransferWithAuthorization` signature on the server side.
+ * Returns the recovered signer address (`from`) or `null` on failure.
+ *
+ * NOTE: we do NOT throw on failure — caller maps `null` → verify.valid=false
+ * with an error tag. Throwing here would risk leaking signature bytes via
+ * thrown error stacks.
+ */
+async function verifyTransferWithAuthorizationSignature(args) {
+    const { chainId, verifyingContract, authorization, signature } = args;
+    const usdcDomain = (0, transport_1.getUSDCDomain)(chainId);
+    if (usdcDomain === undefined)
+        return null;
+    const { recoverTypedDataAddress } = await Promise.resolve().then(() => __importStar(require('viem')));
+    try {
+        return await recoverTypedDataAddress({
+            domain: {
+                name: usdcDomain.name,
+                version: usdcDomain.version,
+                chainId,
+                verifyingContract,
+            },
+            types: exports.TransferWithAuthorizationTypes,
+            primaryType: 'TransferWithAuthorization',
+            message: {
+                from: authorization.from,
+                to: authorization.to,
+                value: authorization.value,
+                validAfter: authorization.validAfter,
+                validBefore: authorization.validBefore,
+                nonce: authorization.nonce,
+            },
+            signature,
+        });
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=signing.js.map

package/dist/cjs/signing.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signing.js","sourceRoot":"","sources":["../../src/signing.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;GAWG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAkDH,gEAUC;AAQD,sEAiDC;AAUD,4FAkCC;AA9JD,oDAAqD;AACrD,2CAAyD;AAEzD;;;GAGG;AACU,QAAA,8BAA8B,GAAG;IAC5C,yBAAyB,EAAE;QACzB,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE;QACjC,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE;QAC/B,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE;QAClC,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,SAAS,EAAE;QACvC,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,SAAS,EAAE;QACxC,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE;KACnC;CACO,CAAC;AA0BX;;;;GAIG;AACH,SAAgB,0BAA0B;IACxC,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IACjC,uEAAuE;IACvE,kEAAkE;IAClE,UAAU,CAAC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;IACzC,IAAI,GAAG,GAAG,IAAI,CAAC;IACf,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,GAAG,IAAI,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;IACzC,CAAC;IACD,OAAO,GAAU,CAAC;AACpB,CAAC;AAED;;;;;GAKG;AACI,KAAK,UAAU,6BAA6B,CAAC,IAKnD;IACC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,iBAAiB,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC;IAC1D,MAAM,UAAU,GAAG,IAAA,yBAAa,EAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAC3C,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;QAC7B,MAAM,IAAI,sCAA0B,EAAE,CAAC;IACzC,CAAC;IAED,MAAM,MAAM,GAAG;QACb,IAAI,EAAE,UAAU,CAAC,IAAI;QACrB,OAAO,EAAE,UAAU,CAAC,OAAO;QAC3B,OAAO,EAAE,KAAK,CAAC,EAAE;QACjB,iBAAiB;KACT,CAAC;IAEX,IAAI,OAAO,CAAC,aAAa,KAAK,SAAS,EAAE,CAAC;QACxC,uEAAuE;QACvE,oEAAoE;QACpE,sEAAsE;QACtE,MAAM,IAAI,sCAA0B,EAAE,CAAC;IACzC,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,aAAa,CAAC;QAC5C,MAAM;QACN,KAAK,EAAE,sCAA8B;QACrC,WAAW,EAAE,2BAA2B;QACxC,OAAO,EAAE;YACP,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,EAAE,EAAE,KAAK,CAAC,EAAE;YACZ,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,UAAU,EAAE,KAAK,CAAC,UAAU;YAC5B,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,KAAK,EAAE,KAAK,CAAC,KAAK;SACnB;KACF,CAAC,CAAC;IAEH,OAAO;QACL,SAAS;QACT,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,EAAE,EAAE,KAAK,CAAC,EAAE;QACZ,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,UAAU,EAAE,KAAK,CAAC,UAAU;QAC5B,WAAW,EAAE,KAAK,CAAC,WAAW;KAC/B,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACI,KAAK,UAAU,wCAAwC,CAAC,IAK9D;IACC,MAAM,EAAE,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,SAAS,EAAE,GAAG,IAAI,CAAC;IACtE,MAAM,UAAU,GAAG,IAAA,yBAAa,EAAC,OAAO,CAAC,CAAC;IAC1C,IAAI,UAAU,KAAK,SAAS;QAAE,OAAO,IAAI,CAAC;IAE1C,MAAM,EAAE,uBAAuB,EAAE,GAAG,wDAAa,MAAM,GAAC,CAAC;IACzD,IAAI,CAAC;QACH,OAAO,MAAM,uBAAuB,CAAC;YACnC,MAAM,EAAE;gBACN,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,OAAO,EAAE,UAAU,CAAC,OAAO;gBAC3B,OAAO;gBACP,iBAAiB;aAClB;YACD,KAAK,EAAE,sCAA8B;YACrC,WAAW,EAAE,2BAA2B;YACxC,OAAO,EAAE;gBACP,IAAI,EAAE,aAAa,CAAC,IAAI;gBACxB,EAAE,EAAE,aAAa,CAAC,EAAE;gBACpB,KAAK,EAAE,aAAa,CAAC,KAAK;gBAC1B,UAAU,EAAE,aAAa,CAAC,UAAU;gBACpC,WAAW,EAAE,aAAa,CAAC,WAAW;gBACtC,KAAK,EAAE,aAAa,CAAC,KAAK;aAC3B;YACD,SAAS;SACV,CAAC,CAAC;IACL,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/cjs/types.d.ts

@@ -0,0 +1,93 @@
+/**
+ * Shared types used by both server and client.
+ */
+import type { Address, Hex } from 'viem';
+import type { X402FacilitatorConfig, X402PaymentRequirements } from './protocol.js';
+/**
+ * Hint object returned alongside a freshly generated challenge.
+ *
+ * The server uses these values to emit an ERC-5564 Announcement event AFTER
+ * the payment settles (out-of-scope for this milestone — operator wires the
+ * on-chain emit). Carrying it on the challenge object lets the server
+ * correlate "this challenge → this announcement" without re-derivation.
+ *
+ * Privacy: contains only the ephemeral public key + view tag + the freshly
+ * derived stealth address. None of these leak the recipient's main wallet.
+ */
+export interface X402StealthAnnouncementHint {
+    readonly ephemeralPubKey: Hex;
+    readonly viewTag: number;
+    readonly stealthAddress: Address;
+}
+/**
+ * The full server-side challenge object. Comes out of `x402.challenge(...)`.
+ *
+ * `status` + `headers` + `body` are wire-shaped — operator's HTTP framework
+ * adapter simply spreads them onto its response. `announcement` is internal
+ * metadata for the operator's scanner integration.
+ */
+export interface X402Challenge {
+    readonly status: 402;
+    readonly headers: Readonly<Record<string, string>>;
+    readonly body: {
+        readonly x402Version: 2;
+        readonly error: string;
+        readonly accepts: readonly X402PaymentRequirements[];
+    };
+    readonly announcement: X402StealthAnnouncementHint;
+}
+/**
+ * Result of `x402.verify(...)`.
+ *
+ * Privacy: no amount, no signature, no nonce. `error` is a short tag string
+ * only ('signature_invalid', 'amount_mismatch', 'expired', etc) — never the
+ * full underlying error or any bytes.
+ */
+export interface X402PaymentVerification {
+    readonly valid: boolean;
+    readonly settledTxHash?: Hex;
+    readonly error?: string;
+}
+/**
+ * `createX402Server` config.
+ *
+ * Privacy: the `recipientMetaAddress` is the server agent's PUBLIC meta-address
+ * (`st:base:0x...`). No private keys ever appear in this config.
+ */
+export interface X402ServerConfig {
+    /** Transport for reads + chain id lookups. */
+    readonly transport: import('@shroud-fi/transport').ShroudFiTransport;
+    /** ERC-6538 meta-address string (`st:base:0x...`) for the receiving agent. */
+    readonly recipientMetaAddress: string;
+    /** ERC-20 asset address (must be the canonical USDC for the chain). */
+    readonly asset: Address;
+    /** EVM chain id (must match the asset's deployment). */
+    readonly chainId: number;
+    /** Default price in token base units (uint256). */
+    readonly defaultPriceAtomic: bigint;
+    /** Optional facilitator override; defaults to PayAI free-tier. */
+    readonly facilitator?: X402FacilitatorConfig;
+}
+/**
+ * `createX402Client` config.
+ *
+ * Privacy: the client uses the transport's `walletClient.account` for
+ * signing. The private key never appears here directly — it lives inside
+ * the viem account, scoped to the transport's lifetime.
+ */
+export interface X402ClientConfig {
+    /** Transport with a configured `walletClient` (account required). */
+    readonly transport: import('@shroud-fi/transport').ShroudFiTransport;
+    /** Optional facilitator override; defaults to PayAI free-tier. */
+    readonly facilitator?: X402FacilitatorConfig;
+}
+/**
+ * What a client `.fetch(...)` call surfaces beyond the standard Response.
+ * Non-standard `x402Settlement` property is attached when the server returned
+ * `X-PAYMENT-RESPONSE`. Optional — present only on successful auto-pay.
+ */
+export interface X402PaymentResult {
+    readonly txHash: Hex;
+    readonly settledAt: number;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/cjs/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,MAAM,CAAC;AACzC,OAAO,KAAK,EACV,qBAAqB,EACrB,uBAAuB,EACxB,MAAM,eAAe,CAAC;AAEvB;;;;;;;;;;GAUG;AACH,MAAM,WAAW,2BAA2B;IAC1C,QAAQ,CAAC,eAAe,EAAE,GAAG,CAAC;IAC9B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,cAAc,EAAE,OAAO,CAAC;CAClC;AAED;;;;;;GAMG;AACH,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,MAAM,EAAE,GAAG,CAAC;IACrB,QAAQ,CAAC,OAAO,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;IACnD,QAAQ,CAAC,IAAI,EAAE;QACb,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;QACxB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;QACvB,QAAQ,CAAC,OAAO,EAAE,SAAS,uBAAuB,EAAE,CAAC;KACtD,CAAC;IACF,QAAQ,CAAC,YAAY,EAAE,2BAA2B,CAAC;CACpD;AAED;;;;;;GAMG;AACH,MAAM,WAAW,uBAAuB;IACtC,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;IACxB,QAAQ,CAAC,aAAa,CAAC,EAAE,GAAG,CAAC;IAC7B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;;;;GAKG;AACH,MAAM,WAAW,gBAAgB;IAC/B,8CAA8C;IAC9C,QAAQ,CAAC,SAAS,EAAE,OAAO,sBAAsB,EAAE,iBAAiB,CAAC;IACrE,8EAA8E;IAC9E,QAAQ,CAAC,oBAAoB,EAAE,MAAM,CAAC;IACtC,uEAAuE;IACvE,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;IACxB,wDAAwD;IACxD,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,mDAAmD;IACnD,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAC;IACpC,kEAAkE;IAClE,QAAQ,CAAC,WAAW,CAAC,EAAE,qBAAqB,CAAC;CAC9C;AAED;;;;;;GAMG;AACH,MAAM,WAAW,gBAAgB;IAC/B,qEAAqE;IACrE,QAAQ,CAAC,SAAS,EAAE,OAAO,sBAAsB,EAAE,iBAAiB,CAAC;IACrE,kEAAkE;IAClE,QAAQ,CAAC,WAAW,CAAC,EAAE,qBAAqB,CAAC;CAC9C;AAED;;;;GAIG;AACH,MAAM,WAAW,iBAAiB;IAChC,QAAQ,CAAC,MAAM,EAAE,GAAG,CAAC;IACrB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;CAC5B"}

package/dist/cjs/types.js

@@ -0,0 +1,6 @@
+"use strict";
+/**
+ * Shared types used by both server and client.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/cjs/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/types.ts"],"names":[],"mappings":";AAAA;;GAEG"}

package/dist/esm/client.d.ts

@@ -0,0 +1,43 @@
+/**
+ * x402 client — fetch wrapper that auto-handles 402 challenges.
+ *
+ * Flow:
+ *   1. Issue initial fetch.
+ *   2. If status !== 402, return as-is.
+ *   3. Parse X-PAYMENT-REQUIRED, validate scheme + asset + safety cap.
+ *   4. Sign EIP-3009 TransferWithAuthorization for USDC.
+ *   5. Re-issue request with `X-PAYMENT: base64(JSON(payload))`.
+ *   6. On 2xx, surface `x402Settlement` on the returned Response if the
+ *      server attached X-PAYMENT-RESPONSE.
+ *
+ * Privacy invariants:
+ *   - The signed payload is constructed in memory and forwarded directly to
+ *     the server. We never log or serialize the signature, nonce, or value.
+ *   - The client wallet address is unavoidably visible (it IS the `from`).
+ *     This is the agent's stealth-payer EOA, not a persistent identity if
+ *     used by ShroudAgent.
+ *   - Errors carry no amount, no signature, no nonce bytes.
+ */
+import type { X402ClientConfig, X402PaymentResult } from './types.js';
+/**
+ * The augmented Response surface. We can't subclass `Response` in a portable
+ * way, so we attach `x402Settlement` as a non-standard own-property.
+ */
+export interface X402Response extends Response {
+    x402Settlement?: X402PaymentResult;
+}
+export interface X402Client {
+    /**
+     * Wrap `fetch` with 402 auto-pay. The returned Response is augmented with
+     * `x402Settlement` when a payment was made.
+     *
+     * @param maxPriceAtomic — safety cap. If the server demands more, the
+     *   client throws X402AmountMismatchError without signing anything.
+     */
+    fetch(input: string | URL | Request, init?: RequestInit & {
+        maxPriceAtomic?: bigint;
+    }): Promise<X402Response>;
+}
+export declare function createX402Client(config: X402ClientConfig): X402Client;
+export type { X402ClientConfig, X402PaymentResult } from './types.js';
+//# sourceMappingURL=client.d.ts.map

package/dist/esm/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAkBH,OAAO,KAAK,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAMtE;;;GAGG;AACH,MAAM,WAAW,YAAa,SAAQ,QAAQ;IAC5C,cAAc,CAAC,EAAE,iBAAiB,CAAC;CACpC;AAED,MAAM,WAAW,UAAU;IACzB;;;;;;OAMG;IACH,KAAK,CACH,KAAK,EAAE,MAAM,GAAG,GAAG,GAAG,OAAO,EAC7B,IAAI,CAAC,EAAE,WAAW,GAAG;QAAE,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE,GAC/C,OAAO,CAAC,YAAY,CAAC,CAAC;CAC1B;AAyED,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,gBAAgB,GAAG,UAAU,CA6HrE;AAED,YAAY,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC"}

package/dist/esm/client.js

@@ -0,0 +1,196 @@
+/**
+ * x402 client — fetch wrapper that auto-handles 402 challenges.
+ *
+ * Flow:
+ *   1. Issue initial fetch.
+ *   2. If status !== 402, return as-is.
+ *   3. Parse X-PAYMENT-REQUIRED, validate scheme + asset + safety cap.
+ *   4. Sign EIP-3009 TransferWithAuthorization for USDC.
+ *   5. Re-issue request with `X-PAYMENT: base64(JSON(payload))`.
+ *   6. On 2xx, surface `x402Settlement` on the returned Response if the
+ *      server attached X-PAYMENT-RESPONSE.
+ *
+ * Privacy invariants:
+ *   - The signed payload is constructed in memory and forwarded directly to
+ *     the server. We never log or serialize the signature, nonce, or value.
+ *   - The client wallet address is unavoidably visible (it IS the `from`).
+ *     This is the agent's stealth-payer EOA, not a persistent identity if
+ *     used by ShroudAgent.
+ *   - Errors carry no amount, no signature, no nonce bytes.
+ */
+import { getUSDC } from '@shroud-fi/transport';
+import { X402_PAYMENT_REQUIRED_HEADER, X402_PAYMENT_RESPONSE_HEADER, X402_PAYMENT_SIGNATURE_HEADER, X402_SCHEME_EXACT, } from './protocol.js';
+import { X402_VERSION, DEFAULT_AUTHORIZATION_TTL_SECS } from './constants.js';
+import { X402AmountMismatchError, X402AssetNotSupportedError, X402InvalidChallengeError, } from './errors.js';
+import { generateAuthorizationNonce, signTransferWithAuthorization, } from './signing.js';
+/** Decode a 402 challenge body from the response. Tries header, then body. */
+async function readChallenge(res) {
+    // Header path (spec-canonical) first.
+    const header = res.headers.get(X402_PAYMENT_REQUIRED_HEADER);
+    if (header !== null && header.length > 0) {
+        try {
+            const parsed = JSON.parse(header);
+            if (Array.isArray(parsed.accepts) && parsed.accepts.length > 0) {
+                return parsed;
+            }
+        }
+        catch {
+            // fall through to body parse
+        }
+    }
+    // Body fallback — some servers put the envelope in the body only.
+    try {
+        const text = await res.clone().text();
+        const parsed = JSON.parse(text);
+        if (Array.isArray(parsed.accepts) && parsed.accepts.length > 0) {
+            return parsed;
+        }
+    }
+    catch {
+        // fall through
+    }
+    throw new X402InvalidChallengeError();
+}
+/** Decode the X-PAYMENT-RESPONSE header into a settlement record. */
+function readSettlement(res) {
+    const header = res.headers.get(X402_PAYMENT_RESPONSE_HEADER);
+    if (header === null || header.length === 0)
+        return undefined;
+    try {
+        // Header is base64-encoded JSON per the spec.
+        const decoded = Buffer.from(header, 'base64').toString('utf-8');
+        const parsed = JSON.parse(decoded);
+        const txHash = (parsed.transaction ?? parsed.txHash);
+        if (txHash === undefined)
+            return undefined;
+        return {
+            txHash,
+            settledAt: typeof parsed.settledAt === 'number'
+                ? parsed.settledAt
+                : Math.floor(Date.now() / 1000),
+        };
+    }
+    catch {
+        return undefined;
+    }
+}
+/** Convert a value into a bigint safely. */
+function safeBigInt(v) {
+    try {
+        if (typeof v === 'bigint')
+            return v;
+        if (typeof v === 'string' || typeof v === 'number')
+            return BigInt(v);
+        return null;
+    }
+    catch {
+        return null;
+    }
+}
+export function createX402Client(config) {
+    const transport = config.transport;
+    const walletClient = transport.walletClient;
+    if (walletClient === undefined || walletClient.account === undefined) {
+        // We deliberately throw at construction time so a misconfigured client
+        // can't ship to production without a wallet.
+        throw new X402AssetNotSupportedError();
+    }
+    const account = walletClient.account;
+    const chain = transport.chain;
+    return {
+        async fetch(input, init) {
+            const fetchImpl = globalThis.fetch;
+            const maxPriceAtomic = init?.maxPriceAtomic;
+            // Strip our non-standard option before passing init to fetch.
+            const passThroughInit = { ...(init ?? {}) };
+            delete passThroughInit.maxPriceAtomic;
+            // 1. First attempt.
+            const first = (await fetchImpl(input, passThroughInit));
+            if (first.status !== 402) {
+                return first;
+            }
+            // 2. Decode challenge.
+            const challenge = await readChallenge(first);
+            const requirements = challenge.accepts[0];
+            if (requirements === undefined) {
+                throw new X402InvalidChallengeError();
+            }
+            // 3. Scheme + network + asset checks.
+            if (requirements.scheme !== X402_SCHEME_EXACT) {
+                throw new X402InvalidChallengeError();
+            }
+            const canonicalUsdc = getUSDC(chain.id);
+            if (canonicalUsdc === undefined) {
+                throw new X402AssetNotSupportedError();
+            }
+            if (requirements.asset.toLowerCase() !==
+                canonicalUsdc.toLowerCase()) {
+                throw new X402AssetNotSupportedError();
+            }
+            const expectedNetwork = `eip155:${chain.id}`;
+            if (requirements.network !== expectedNetwork) {
+                throw new X402AssetNotSupportedError();
+            }
+            // 4. Safety cap.
+            const required = safeBigInt(requirements.maxAmountRequired);
+            if (required === null) {
+                throw new X402InvalidChallengeError();
+            }
+            if (maxPriceAtomic !== undefined && required > maxPriceAtomic) {
+                throw new X402AmountMismatchError();
+            }
+            // 5. Build authorization. validAfter=0n, validBefore=now+ttl.
+            const nowSecs = BigInt(Math.floor(Date.now() / 1000));
+            const ttl = BigInt(Math.min(requirements.maxTimeoutSeconds || DEFAULT_AUTHORIZATION_TTL_SECS, DEFAULT_AUTHORIZATION_TTL_SECS));
+            const validBefore = nowSecs + ttl;
+            const nonce = generateAuthorizationNonce();
+            const signed = await signTransferWithAuthorization({
+                account,
+                chain,
+                verifyingContract: requirements.asset,
+                input: {
+                    from: account.address,
+                    to: requirements.payTo,
+                    value: required,
+                    validAfter: 0n,
+                    validBefore,
+                    nonce,
+                },
+            });
+            // 6. Build the PaymentPayload + base64 the header.
+            const payload = {
+                x402Version: X402_VERSION,
+                scheme: X402_SCHEME_EXACT,
+                network: requirements.network,
+                payload: {
+                    signature: signed.signature,
+                    authorization: {
+                        from: signed.from,
+                        to: signed.to,
+                        value: signed.value.toString(),
+                        validAfter: signed.validAfter.toString(),
+                        validBefore: signed.validBefore.toString(),
+                        nonce: signed.nonce,
+                    },
+                },
+            };
+            const encoded = Buffer.from(JSON.stringify(payload), 'utf-8').toString('base64');
+            // 7. Re-issue. Mutating the headers via a new object so the caller's
+            // original init stays untouched.
+            const retryHeaders = new Headers(passThroughInit.headers ?? undefined);
+            retryHeaders.set(X402_PAYMENT_SIGNATURE_HEADER, encoded);
+            const retryInit = {
+                ...passThroughInit,
+                headers: retryHeaders,
+            };
+            const second = (await fetchImpl(input, retryInit));
+            const settlement = readSettlement(second);
+            if (settlement !== undefined) {
+                // Attach as a non-standard own-property.
+                second.x402Settlement = settlement;
+            }
+            return second;
+        },
+    };
+}
+//# sourceMappingURL=client.js.map

package/dist/esm/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAGH,OAAO,EAAE,OAAO,EAAE,MAAM,sBAAsB,CAAC;AAC/C,OAAO,EACL,4BAA4B,EAC5B,4BAA4B,EAC5B,6BAA6B,EAC7B,iBAAiB,GAGlB,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,YAAY,EAAE,8BAA8B,EAAE,MAAM,gBAAgB,CAAC;AAC9E,OAAO,EACL,uBAAuB,EACvB,0BAA0B,EAC1B,yBAAyB,GAC1B,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,0BAA0B,EAC1B,6BAA6B,GAC9B,MAAM,cAAc,CAAC;AAwBtB,8EAA8E;AAC9E,KAAK,UAAU,aAAa,CAC1B,GAAa;IAEb,sCAAsC;IACtC,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;IAC7D,IAAI,MAAM,KAAK,IAAI,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAE/B,CAAC;YACF,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC/D,OAAO,MAAM,CAAC;YAChB,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,6BAA6B;QAC/B,CAAC;IACH,CAAC;IACD,kEAAkE;IAClE,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,KAAK,EAAE,CAAC,IAAI,EAAE,CAAC;QACtC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAE7B,CAAC;QACF,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/D,OAAO,MAAM,CAAC;QAChB,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,eAAe;IACjB,CAAC;IACD,MAAM,IAAI,yBAAyB,EAAE,CAAC;AACxC,CAAC;AAED,qEAAqE;AACrE,SAAS,cAAc,CAAC,GAAa;IACnC,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;IAC7D,IAAI,MAAM,KAAK,IAAI,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,SAAS,CAAC;IAC7D,IAAI,CAAC;QACH,8CAA8C;QAC9C,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QAChE,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAIhC,CAAC;QACF,MAAM,MAAM,GACV,CAAC,MAAM,CAAC,WAAW,IAAI,MAAM,CAAC,MAAM,CAAoB,CAAC;QAC3D,IAAI,MAAM,KAAK,SAAS;YAAE,OAAO,SAAS,CAAC;QAC3C,OAAO;YACL,MAAM;YACN,SAAS,EACP,OAAO,MAAM,CAAC,SAAS,KAAK,QAAQ;gBAClC,CAAC,CAAC,MAAM,CAAC,SAAS;gBAClB,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;SACpC,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,4CAA4C;AAC5C,SAAS,UAAU,CAAC,CAAU;IAC5B,IAAI,CAAC;QACH,IAAI,OAAO,CAAC,KAAK,QAAQ;YAAE,OAAO,CAAC,CAAC;QACpC,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,OAAO,CAAC,KAAK,QAAQ;YAAE,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;QACrE,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,MAAwB;IACvD,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC;IACnC,MAAM,YAAY,GAAG,SAAS,CAAC,YAAY,CAAC;IAC5C,IAAI,YAAY,KAAK,SAAS,IAAI,YAAY,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;QACrE,uEAAuE;QACvE,6CAA6C;QAC7C,MAAM,IAAI,0BAA0B,EAAE,CAAC;IACzC,CAAC;IACD,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,CAAC;IACrC,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC;IAE9B,OAAO;QACL,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,IAAI;YACrB,MAAM,SAAS,GAAG,UAAU,CAAC,KAAK,CAAC;YACnC,MAAM,cAAc,GAAG,IAAI,EAAE,cAAc,CAAC;YAE5C,8DAA8D;YAC9D,MAAM,eAAe,GAAgB,EAAE,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,EAAE,CAAC;YACzD,OAAQ,eAA+C,CAAC,cAAc,CAAC;YAEvE,oBAAoB;YACpB,MAAM,KAAK,GAAG,CAAC,MAAM,SAAS,CAAC,KAAK,EAAE,eAAe,CAAC,CAAiB,CAAC;YACxE,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBACzB,OAAO,KAAK,CAAC;YACf,CAAC;YAED,uBAAuB;YACvB,MAAM,SAAS,GAAG,MAAM,aAAa,CAAC,KAAK,CAAC,CAAC;YAC7C,MAAM,YAAY,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAC1C,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;gBAC/B,MAAM,IAAI,yBAAyB,EAAE,CAAC;YACxC,CAAC;YAED,sCAAsC;YACtC,IAAI,YAAY,CAAC,MAAM,KAAK,iBAAiB,EAAE,CAAC;gBAC9C,MAAM,IAAI,yBAAyB,EAAE,CAAC;YACxC,CAAC;YACD,MAAM,aAAa,GAAG,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACxC,IAAI,aAAa,KAAK,SAAS,EAAE,CAAC;gBAChC,MAAM,IAAI,0BAA0B,EAAE,CAAC;YACzC,CAAC;YACD,IACE,YAAY,CAAC,KAAK,CAAC,WAAW,EAAE;gBAC/B,aAAyB,CAAC,WAAW,EAAE,EACxC,CAAC;gBACD,MAAM,IAAI,0BAA0B,EAAE,CAAC;YACzC,CAAC;YACD,MAAM,eAAe,GAAG,UAAU,KAAK,CAAC,EAAE,EAAE,CAAC;YAC7C,IAAI,YAAY,CAAC,OAAO,KAAK,eAAe,EAAE,CAAC;gBAC7C,MAAM,IAAI,0BAA0B,EAAE,CAAC;YACzC,CAAC;YAED,iBAAiB;YACjB,MAAM,QAAQ,GAAG,UAAU,CAAC,YAAY,CAAC,iBAAiB,CAAC,CAAC;YAC5D,IAAI,QAAQ,KAAK,IAAI,EAAE,CAAC;gBACtB,MAAM,IAAI,yBAAyB,EAAE,CAAC;YACxC,CAAC;YACD,IAAI,cAAc,KAAK,SAAS,IAAI,QAAQ,GAAG,cAAc,EAAE,CAAC;gBAC9D,MAAM,IAAI,uBAAuB,EAAE,CAAC;YACtC,CAAC;YAED,8DAA8D;YAC9D,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;YACtD,MAAM,GAAG,GAAG,MAAM,CAChB,IAAI,CAAC,GAAG,CACN,YAAY,CAAC,iBAAiB,IAAI,8BAA8B,EAChE,8BAA8B,CAC/B,CACF,CAAC;YACF,MAAM,WAAW,GAAG,OAAO,GAAG,GAAG,CAAC;YAClC,MAAM,KAAK,GAAG,0BAA0B,EAAE,CAAC;YAE3C,MAAM,MAAM,GAAG,MAAM,6BAA6B,CAAC;gBACjD,OAAO;gBACP,KAAK;gBACL,iBAAiB,EAAE,YAAY,CAAC,KAAK;gBACrC,KAAK,EAAE;oBACL,IAAI,EAAE,OAAO,CAAC,OAAO;oBACrB,EAAE,EAAE,YAAY,CAAC,KAAK;oBACtB,KAAK,EAAE,QAAQ;oBACf,UAAU,EAAE,EAAE;oBACd,WAAW;oBACX,KAAK;iBACN;aACF,CAAC,CAAC;YAEH,mDAAmD;YACnD,MAAM,OAAO,GAAuB;gBAClC,WAAW,EAAE,YAAY;gBACzB,MAAM,EAAE,iBAAiB;gBACzB,OAAO,EAAE,YAAY,CAAC,OAAO;gBAC7B,OAAO,EAAE;oBACP,SAAS,EAAE,MAAM,CAAC,SAAS;oBAC3B,aAAa,EAAE;wBACb,IAAI,EAAE,MAAM,CAAC,IAAI;wBACjB,EAAE,EAAE,MAAM,CAAC,EAAE;wBACb,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE;wBAC9B,UAAU,EAAE,MAAM,CAAC,UAAU,CAAC,QAAQ,EAAE;wBACxC,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,QAAQ,EAAE;wBAC1C,KAAK,EAAE,MAAM,CAAC,KAAK;qBACpB;iBACF;aACF,CAAC;YACF,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,EAAE,OAAO,CAAC,CAAC,QAAQ,CACpE,QAAQ,CACT,CAAC;YAEF,qEAAqE;YACrE,iCAAiC;YACjC,MAAM,YAAY,GAAG,IAAI,OAAO,CAAC,eAAe,CAAC,OAAO,IAAI,SAAS,CAAC,CAAC;YACvE,YAAY,CAAC,GAAG,CAAC,6BAA6B,EAAE,OAAO,CAAC,CAAC;YACzD,MAAM,SAAS,GAAgB;gBAC7B,GAAG,eAAe;gBAClB,OAAO,EAAE,YAAY;aACtB,CAAC;YAEF,MAAM,MAAM,GAAG,CAAC,MAAM,SAAS,CAAC,KAAK,EAAE,SAAS,CAAC,CAAiB,CAAC;YACnE,MAAM,UAAU,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;YAC1C,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;gBAC7B,yCAAyC;gBACzC,MAAM,CAAC,cAAc,GAAG,UAAU,CAAC;YACrC,CAAC;YACD,OAAO,MAAM,CAAC;QAChB,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/esm/constants.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Defaults for the @shroud-fi/x402 package.
+ *
+ * Tight defaults reduce blast radius if a signed payload leaks:
+ *   - 5-minute validity window matches Coinbase CDP recommendation and the
+ *     PayAI free tier facilitator's default maxTimeoutSeconds (300).
+ *   - x402Version pinned to 2 (current shipping spec). We deliberately do NOT
+ *     implement v1 backward-compat per LOCKED-DECISIONS (whitepaper field
+ *     names are deprecated).
+ */
+export declare const X402_VERSION: 2;
+/** Default EIP-3009 authorization validity window (seconds). */
+export declare const DEFAULT_AUTHORIZATION_TTL_SECS = 300;
+/** Default facilitator `maxTimeoutSeconds` echoed back in PaymentRequired. */
+export declare const DEFAULT_MAX_TIMEOUT_SECS = 300;
+//# sourceMappingURL=constants.d.ts.map

package/dist/esm/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/constants.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,eAAO,MAAM,YAAY,EAAG,CAAU,CAAC;AAEvC,gEAAgE;AAChE,eAAO,MAAM,8BAA8B,MAAM,CAAC;AAElD,8EAA8E;AAC9E,eAAO,MAAM,wBAAwB,MAAM,CAAC"}