@siglume/direct-request-payment 0.3.5 → 0.3.6

package/CHANGELOG.md

@@ -1,5 +1,50 @@
 # Changelog
 
+## 0.3.6 - 2026-06-18
+
+Documentation and public-surface cleanup release. No wire-format or API changes;
+challenges and clients from 0.3.x interoperate unchanged.
+
+- Documented the Micro / Nano **settlement schedule** in the README and the
+  pricing guide: Micro settles weekly, Nano settles monthly, with the closing
+  period, timezone, revenue-recognition point, retry / carry-over, and
+  rejected / no-charge behavior spelled out. The exact close time, default
+  timezone, and settlement lag are marked platform-managed — the platform
+  response is the source of truth.
+- Clarified that Micro / Nano provider revenue stays unsettled until the weekly /
+  monthly on-chain settlement succeeds, that failed settlements are retried and
+  may go past due, and that Siglume does not advance, guarantee, or insure unpaid
+  amounts.
+- Reframed the docs as a standalone SDRP payment SDK. Internal implementation
+  language was removed from the public surface: the legacy `external_402` mode
+  value and the `free` Launch-tier key are now isolated in a single
+  "Compatibility Notes" section, and internal batch / ledger terms were dropped.
+- Hardened the examples: they no longer print returned secrets (`setup.env`) and
+  no longer return raw `error.message` to the client.
+- Removed `external-402` from the npm / PyPI keywords; added `sdrp`,
+  `direct-request-payment`, `micropayments`, `metered-billing`, `jpyc`, `usdc`.
+- Hardened `.gitignore` (`.env`, `.env.*`, `.npmrc`, `.pypirc`, `.venv/`,
+  `coverage/`) and removed a developer-specific path from `RELEASING.md`.
+
+## 0.3.5 - 2026-06-18
+
+- Docs: protocol-first README framing for the SDRP Direct Request Payment SDK.
+
+## 0.3.4 - 2026-06-18
+
+- Docs: clarified the SDRP pricing structure — a Standard plan is selected, and
+  Micro / Nano are applied automatically by amount — across the README and
+  pricing guide.
+
+## 0.3.3 - 2026-06-18
+
+- Docs: SDRP direct-payment framing across the README, API reference, merchant
+  quickstart, pricing, and security guides.
+
+## 0.3.2 - 2026-06-18
+
+- Docs: documented the SDRP Micro / Nano amount-band boundaries.
+
 ## 0.3.1 - 2026-06-12
 
 - Docs: scheduled autopay (`cadence: "daily"`) is documented as an approval

package/README.md

@@ -5,24 +5,15 @@
 
 ## Protocol Overview
 
-Siglume Direct Request Payment is an SDRP payment protocol for products that
-want to accept Siglume wallet payments. The merchant fixes the order, amount,
-and currency on its server; the buyer pays with a Siglume wallet; Siglume
-applies the correct pricing and settlement path from the payment amount and
-execution conditions.
-
-During merchant setup, only the **Standard Payment plan** is selected. Micro
-Payment and Nano Payment are not separate choices for the merchant or buyer.
-They are applied automatically by amount.
+Siglume Direct Request Payment (SDRP) is a wallet payment protocol for products
+that want to accept Siglume wallet payments. The merchant fixes the order,
+amount, and currency on its server; the buyer pays with a Siglume wallet;
+Siglume applies the correct pricing and settlement path from the payment amount.
 
 Use this package when an external EC site, booking service, membership service,
 or paid API wants to accept Siglume wallet payments without taking custody of
-customer funds. This SDK is for external merchants integrating Siglume Direct
-Request Payment into their own checkout. It is not the server contract for SDRP
-Micro Payment or Nano Payment.
-
-The current platform payload still uses the internal mode name `external_402`;
-this SDK sets that value for you when creating a payment requirement.
+customer funds. The SDK creates and verifies one-time and recurring wallet
+payments; it does not hold customer funds or wallets.
 
 Payment requirement creation must run in the authenticated buyer's Siglume
 context. Your merchant server must not use a merchant secret or API key to
@@ -34,7 +25,27 @@ token for setup. `DirectRequestPaymentClient` requires the buyer's Siglume
 bearer token for payment requirements. Do not use a Developer Portal `cli_` API
 key with this package.
 
-The canonical HTTP endpoints live under `/v1/sdrp/direct-payments/...`.
+## Amount-Based Pricing and Settlement
+
+Pricing has one structure: you choose a **Standard Payment** plan once during
+setup, and after that the applied fee and the settlement timing follow the
+**payment amount** automatically. There is nothing else to choose.
+
+- **Standard Payment** — most payments. Your selected plan's percentage fee,
+  settled on-chain immediately after each payment confirms.
+- **Micro Payment** — small payments, applied automatically by amount. A flat
+  per-transaction protocol fee, **settled weekly**.
+- **Nano Payment** — very small payments, applied automatically by amount. A
+  flat per-usage protocol fee, **settled monthly**.
+
+Micro Payment and Nano Payment are not separate products you opt into; they are
+amount bands Siglume applies on your behalf. Your integration code is the same
+regardless of which band a payment falls into. The full fee table and the exact
+weekly / monthly settlement schedule are in [docs/pricing.md](./docs/pricing.md).
+Provider revenue in the Micro and Nano bands is not settled revenue until the
+weekly or monthly on-chain settlement succeeds. Siglume keeps outstanding failed
+settlements for retry under the published policy, but does not advance or
+guarantee provider revenue before settlement succeeds.
 
 ## What This SDK Covers
 
@@ -78,15 +89,15 @@ amounts differ.
 
 | Payment amount | Applied automatically | What you select | Fee | Settlement |
 | --- | --- | --- | --- | --- |
-| Over JPY 500 / over USD 3.00, or whenever immediate finality is required | Standard Payment | Select one Standard plan: Launch, Starter, Growth, or Pro | Launch: JPY 0 / USD 0 monthly, 1.8%; Starter: JPY 980 / USD 6 monthly, 1.0%; Growth: JPY 2,980 / USD 18 monthly, 0.7%; Pro: JPY 9,800 / USD 60 monthly, 0.5%. Minimum JPY 30 / USD 0.20 per payment. | Immediate on-chain split through DirectPaymentHub after payment confirmation |
-| JPY 50-500 / about USD 0.30-3.00 | Micro Payment | No selection. Applied automatically by amount. | USD 0.01 / Tx, about JPY 2 | Meter gate before provider execution; weekly delayed settlement |
-| Under JPY 1 to JPY 49 / under USD 0.01 to about USD 0.30 | Nano Payment | No selection. Applied automatically by amount. | USD 0.001 / usage, about JPY 0.2 | Meter gate before provider execution; monthly delayed settlement |
+| Over JPY 500 / over USD 3.00, or whenever immediate finality is required | Standard Payment | Select one Standard plan: Launch, Starter, Growth, or Pro | Launch: JPY 0 / USD 0 monthly, 1.8%; Starter: JPY 980 / USD 6 monthly, 1.0%; Growth: JPY 2,980 / USD 18 monthly, 0.7%; Pro: JPY 9,800 / USD 60 monthly, 0.5%. Minimum JPY 30 / USD 0.20 per payment. | Settled on-chain immediately after the payment confirms |
+| JPY 50-500 / about USD 0.30-3.00 | Micro Payment | Applied automatically by amount | USD 0.01 / Tx, about JPY 2 | Weekly settlement — see [Settlement schedule](./docs/pricing.md#settlement-schedule) |
+| Under JPY 1 to JPY 49 / under USD 0.01 to about USD 0.30 | Nano Payment | Applied automatically by amount | USD 0.001 / usage, about JPY 0.2 | Monthly settlement — see [Settlement schedule](./docs/pricing.md#settlement-schedule) |
 
 A merchant billing mandate is required before accepting payments, even on the
-Launch plan. The API and merchant registry may still expose the internal plan key
-`free` for the Launch tier; treat it as a compatibility key, not a public plan
-name. `fee_bps` returned on a payment requirement is the authoritative fee rate
-for that payment in the merchant's settlement currency.
+Launch plan. `fee_bps` returned on a payment requirement is the authoritative
+fee rate for that payment in the merchant's settlement currency. The full fee
+table and the weekly / monthly settlement schedule live in
+[docs/pricing.md](./docs/pricing.md).
 
 ## Merchant Setup: One SDK Call
 
@@ -110,12 +121,12 @@ const setup = await merchant.setupCheckout({
   max_amount_minor: 100000,
 });
 
-console.log(setup.env);
-// {
-//   SIGLUME_DIRECT_PAYMENT_MERCHANT: "example_merchant",
-//   SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET: "edrp_...",
-//   SIGLUME_WEBHOOK_SECRET: "whsec_..."
-// }
+// setup.env holds the merchant key plus the challenge and webhook secrets:
+//   SIGLUME_DIRECT_PAYMENT_MERCHANT       (not secret)
+//   SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET  (secret)
+//   SIGLUME_WEBHOOK_SECRET                   (secret)
+// Write these to your server-side secret store. Do NOT log the secret values.
+console.log(`Configured merchant: ${setup.env.SIGLUME_DIRECT_PAYMENT_MERCHANT}`);
 ```
 
 ```py
@@ -136,7 +147,9 @@ setup = merchant.setup_checkout(
     max_amount_minor=100000,
 )
 
-print(setup["env"])
+# setup["env"] holds the merchant key plus the challenge and webhook secrets.
+# Persist them to your server-side secret store; do not log the secret values.
+print("Configured merchant:", setup["env"]["SIGLUME_DIRECT_PAYMENT_MERCHANT"])
 ```
 
 Store returned secrets on the merchant server. `challenge_secret` and
@@ -289,7 +302,8 @@ const recurring = await createDirectRequestPaymentRecurringChallenge({
 //   POST /v1/sdrp/direct-payments/subscriptions
 //   { merchant, amount_minor, currency, cadence: "monthly", challenge }
 // For scheduled autopay, the buyer instead creates a scheduled auto-pay
-// authorization (mode: "external_402") and gives you the schedule_token.
+// authorization and hands you the schedule_token; your scheduler triggers
+// each occurrence with that token.
 ```
 
 ```py
@@ -383,6 +397,16 @@ Read [docs/security.md](./docs/security.md) before going live.
 - Fulfill orders only from verified webhook data, with idempotency.
 - Treat `fee_bps` returned by Siglume as the runtime fee source of truth.
 
+## Compatibility Notes
+
+- The Direct Request Payment HTTP endpoints live under
+  `/v1/sdrp/direct-payments/...`; the SDK targets them for you.
+- For wire compatibility the platform still tags these payments with the legacy
+  mode value `external_402`, and the merchant registry may still expose the
+  legacy billing-plan key `free` for the Launch tier. The SDK sets and reads
+  these values for you — treat them as compatibility identifiers, not public
+  product names.
+
 ## Documentation
 
 - [Merchant quickstart](./docs/merchant-quickstart.md)

package/dist/index.cjs

@@ -125,7 +125,7 @@ var DirectRequestPaymentClient = class {
     this.auth_token = authToken;
     this.base_url = (options.base_url ?? envValue("SIGLUME_API_BASE") ?? DEFAULT_SIGLUME_API_BASE).replace(/\/+$/, "");
     this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15e3));
-    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.5";
+    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.6";
     this.fetch_impl = fetchImpl;
   }
   async createPaymentRequirement(input) {
@@ -230,7 +230,7 @@ var DirectRequestPaymentMerchantClient = class {
     this.auth_token = authToken;
     this.base_url = (options.base_url ?? envValue("SIGLUME_API_BASE") ?? DEFAULT_SIGLUME_API_BASE).replace(/\/+$/, "");
     this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15e3));
-    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.5";
+    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.6";
     this.fetch_impl = fetchImpl;
   }
   async setupMerchant(input) {

package/dist/index.cjs.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/index.ts"],"sourcesContent":["export const DEFAULT_SIGLUME_API_BASE = \"https://siglume.com/v1\";\nexport const DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME = \"siglume-external-402-v1\";\n// Recurring (subscription / scheduled autopay) approval uses a DISTINCT scheme\n// with cadence bound into the HMAC, so a one-time checkout challenge can never\n// be replayed as a recurring authorization and vice versa.\nexport const DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME = \"siglume-external-402-recurring-v1\";\nexport const DIRECT_REQUEST_PAYMENT_MODE = \"external_402\";\nexport const DIRECT_REQUEST_PAYMENT_RECEIPT_KIND = \"sdrp_direct_payment\";\nexport const DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND = \"sdrp_direct_payment_allowance\";\nexport const DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE = \"sdrp_direct_payment_requirement\";\nexport const DEFAULT_WEBHOOK_TOLERANCE_SECONDS = 300;\n\nexport type DirectRequestPaymentCurrency = \"JPY\" | \"USD\";\nexport type DirectRequestPaymentToken = \"JPYC\" | \"USDC\";\n\nexport interface DirectRequestPaymentChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface ParsedDirectRequestPaymentChallenge {\n  scheme: string;\n  nonce: string;\n  signature: string;\n}\n\n/** \"monthly\" authorizes a Siglume-swept subscription; \"daily\" authorizes\n *  merchant-triggered scheduled autopay. It is an approval tag, not a\n *  run-count limiter. */\nexport type DirectRequestPaymentRecurringCadence = \"monthly\" | \"daily\";\n\nexport interface DirectRequestPaymentRecurringChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  cadence: DirectRequestPaymentRecurringCadence | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentRecurringChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  cadence: DirectRequestPaymentRecurringCadence;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface Web3TransactionRequest {\n  network?: string;\n  chain_id?: number;\n  from?: string;\n  to?: string;\n  data?: string;\n  value?: string | number;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectPaymentRequirement {\n  direct_payment_requirement_id: string;\n  requirement_id: string;\n  id: string;\n  mode: string;\n  merchant?: string | null;\n  challenge_hash?: string | null;\n  buyer_user_id: string;\n  agent_id?: string | null;\n  product_listing_id: string;\n  listing_id: string;\n  access_grant_id?: string | null;\n  capability_key: string;\n  requirement_hash: string;\n  request_hash: string;\n  siglume_signature: string;\n  token_symbol: string;\n  currency: string;\n  amount_minor: number;\n  fee_bps: number;\n  status: string;\n  expires_at?: string | null;\n  confirmed_at?: string | null;\n  spent_at?: string | null;\n  chain_receipt_id?: string | null;\n  transaction_request: Web3TransactionRequest;\n  approve_transaction_request?: Web3TransactionRequest | null;\n  buyer_confirmation?: string | null;\n  non_custodial: boolean;\n  metadata_jsonb?: Record<string, unknown>;\n  created_at?: string | null;\n  updated_at?: string | null;\n}\n\nexport interface DirectPaymentRequirementCreateInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n  token_symbol?: DirectRequestPaymentToken | string;\n  allowance_amount_minor?: number;\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectPaymentVerifyInput {\n  receipt_id?: string | null;\n  chain_receipt_id?: string | null;\n  await_finality?: boolean;\n  await_required_status?: string | null;\n  await_timeout_seconds?: number;\n  await_poll_seconds?: number;\n}\n\nexport interface Web3PreparedTransactionExecutePayload {\n  transaction_request: Web3TransactionRequest;\n  receipt_kind: string;\n  reference_type: typeof DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE;\n  reference_id: string;\n  metadata?: Record<string, unknown>;\n  await_finality?: boolean;\n}\n\nexport interface Web3PreparedTransactionExecuteResult {\n  receipt?: Record<string, unknown>;\n  finalization?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentClientOptions {\n  auth_token?: string;\n  base_url?: string;\n  fetch?: typeof fetch;\n  timeout_ms?: number;\n  user_agent?: string;\n}\n\nexport type DirectRequestPaymentBillingPlan = \"launch\" | \"free\" | \"starter\" | \"growth\" | \"pro\";\n\nexport interface DirectRequestPaymentMerchantAccount {\n  merchant_account_id: string;\n  merchant: string;\n  merchant_user_id: string;\n  user_wallet_id?: string | null;\n  billing_mandate_id?: string | null;\n  display_name?: string | null;\n  status?: string | null;\n  billing_status?: string | null;\n  billing_plan?: string | null;\n  billing_currency?: string | null;\n  token_symbol?: string | null;\n  monthly_fee_minor?: number | null;\n  settlement_fee_bps?: number | null;\n  settlement_fee_min_minor?: number | null;\n  included_monthly_payments?: number | null;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentMerchantSetupInput {\n  merchant: string;\n  display_name?: string;\n  billing_plan?: DirectRequestPaymentBillingPlan | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  allowed_currencies?: Record<string, string> | Array<DirectRequestPaymentCurrency | string>;\n  webhook_callback_url?: string;\n  billing_mandate_cap_minor?: number;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantBillingMandateInput {\n  currency?: DirectRequestPaymentCurrency | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantResponse {\n  merchant_account: DirectRequestPaymentMerchantAccount;\n  challenge_secret?: string | null;\n  challenge_secret_created?: boolean;\n  created?: boolean | null;\n  listing_id?: string | null;\n  mandate?: Record<string, unknown> | null;\n  next_steps?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscriptionInput {\n  callback_url: string;\n  description?: string;\n  event_types?: string[];\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscription {\n  webhook_subscription_id?: string;\n  subscription_id?: string;\n  id?: string;\n  callback_url?: string;\n  signing_secret?: string;\n  status?: string;\n  event_types?: string[];\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupInput extends DirectRequestPaymentMerchantSetupInput {\n  create_webhook_subscription?: boolean;\n  prepare_billing_mandate?: boolean;\n  webhook_event_types?: string[];\n  webhook_description?: string;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupResult {\n  merchant: DirectRequestPaymentMerchantResponse;\n  billing_mandate?: DirectRequestPaymentMerchantResponse | null;\n  webhook_subscription?: DirectRequestPaymentWebhookSubscription | null;\n  env: Record<string, string>;\n}\n\nexport interface SiglumeEnvelopeMeta {\n  request_id?: string | null;\n  trace_id?: string | null;\n  [key: string]: unknown;\n}\n\nexport interface WebhookSignatureVerification {\n  timestamp: number;\n  signature: string;\n}\n\nexport interface DirectRequestPaymentWebhookEvent {\n  id: string;\n  type: \"direct_payment.confirmed\" | string;\n  api_version: string;\n  occurred_at: string;\n  data: {\n    mode?: string;\n    merchant?: string;\n    direct_payment_requirement_id?: string;\n    requirement_id?: string;\n    challenge_hash?: string;\n    amount_minor?: number;\n    currency?: string;\n    token_symbol?: string;\n    status?: string;\n    [key: string]: unknown;\n  };\n  [key: string]: unknown;\n}\n\nexport class SiglumeDirectRequestPaymentError extends Error {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeDirectRequestPaymentError\";\n  }\n}\n\nexport class SiglumeApiError extends SiglumeDirectRequestPaymentError {\n  readonly status: number;\n  readonly code: string;\n  readonly data: unknown;\n\n  constructor(message: string, options: { status: number; code?: string; data?: unknown }) {\n    super(message);\n    this.name = \"SiglumeApiError\";\n    this.status = options.status;\n    this.code = options.code ?? \"SIGLUME_API_ERROR\";\n    this.data = options.data;\n  }\n}\n\nexport class SiglumeWebhookSignatureError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookSignatureError\";\n  }\n}\n\nexport class SiglumeWebhookPayloadError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookPayloadError\";\n  }\n}\n\nexport class DirectRequestPaymentClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A buyer Siglume bearer token is required for Direct Request Payment API calls. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.5\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async createPaymentRequirement(input: DirectPaymentRequirementCreateInput): Promise<DirectPaymentRequirement> {\n    const payload: Record<string, unknown> = {\n      mode: DIRECT_REQUEST_PAYMENT_MODE,\n      merchant: normalizeMerchant(input.merchant),\n      amount_minor: positiveInteger(input.amount_minor, \"amount_minor\"),\n      currency: normalizeCurrency(input.currency),\n      challenge: requireNonEmpty(input.challenge, \"challenge\"),\n    };\n    if (input.token_symbol !== undefined) {\n      payload.token_symbol = normalizeToken(input.token_symbol);\n    }\n    if (input.allowance_amount_minor !== undefined) {\n      payload.allowance_amount_minor = positiveInteger(input.allowance_amount_minor, \"allowance_amount_minor\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectPaymentRequirement>(\"POST\", \"/sdrp/direct-payments/requirements\", payload);\n  }\n\n  async getPaymentRequirement(requirement_id: string): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"GET\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}`,\n    );\n  }\n\n  async verifyPaymentRequirement(\n    requirement_id: string,\n    input: DirectPaymentVerifyInput,\n  ): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"POST\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}/verify`,\n      input,\n    );\n  }\n\n  async executePreparedTransaction(\n    payload: Web3PreparedTransactionExecutePayload,\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.request<Web3PreparedTransactionExecuteResult>(\n      \"POST\",\n      \"/market/web3/transactions/execute-prepared\",\n      payload,\n    );\n  }\n\n  async executePaymentTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildPaymentExecutionPayload(requirement, options));\n  }\n\n  async executeAllowanceTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildAllowanceExecutionPayload(requirement, options));\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport class DirectRequestPaymentMerchantClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_MERCHANT_AUTH_TOKEN\") ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A merchant Siglume bearer token is required for Direct Request Payment merchant setup. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.5\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async setupMerchant(input: DirectRequestPaymentMerchantSetupInput): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {\n      merchant: normalizeSelfServiceMerchant(input.merchant),\n      billing_plan: normalizeBillingPlan(input.billing_plan ?? \"launch\"),\n      billing_currency: normalizeCurrency(input.billing_currency ?? \"JPY\"),\n    };\n    if (input.display_name !== undefined) {\n      payload.display_name = requireNonEmpty(input.display_name, \"display_name\");\n    }\n    if (input.allowed_currencies !== undefined) {\n      payload.allowed_currencies = normalizeAllowedCurrencies(input.allowed_currencies);\n    }\n    if (input.webhook_callback_url !== undefined) {\n      payload.webhook_callback_url = requireNonEmpty(input.webhook_callback_url, \"webhook_callback_url\");\n    }\n    if (input.billing_mandate_cap_minor !== undefined) {\n      payload.billing_mandate_cap_minor = positiveInteger(input.billing_mandate_cap_minor, \"billing_mandate_cap_minor\");\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\"POST\", \"/sdrp/direct-payments/merchants\", payload);\n  }\n\n  async getMerchant(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"GET\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}`,\n    );\n  }\n\n  async rotateChallengeSecret(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/challenge-secret/rotate`,\n    );\n  }\n\n  async prepareBillingMandate(\n    merchant: string,\n    input: DirectRequestPaymentMerchantBillingMandateInput = {},\n  ): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {};\n    if (input.currency !== undefined) {\n      payload.currency = normalizeCurrency(input.currency);\n    }\n    if (input.billing_currency !== undefined) {\n      payload.billing_currency = normalizeCurrency(input.billing_currency);\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/billing-mandate`,\n      payload,\n    );\n  }\n\n  async createWebhookSubscription(\n    input: DirectRequestPaymentWebhookSubscriptionInput,\n  ): Promise<DirectRequestPaymentWebhookSubscription> {\n    const payload: Record<string, unknown> = {\n      callback_url: requireNonEmpty(input.callback_url, \"callback_url\"),\n      event_types: input.event_types?.length\n        ? input.event_types.map((eventType) => requireNonEmpty(eventType, \"event_type\"))\n        : [\"direct_payment.confirmed\", \"direct_payment.spent\"],\n    };\n    if (input.description !== undefined) {\n      payload.description = requireNonEmpty(input.description, \"description\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectRequestPaymentWebhookSubscription>(\"POST\", \"/market/webhooks/subscriptions\", payload);\n  }\n\n  async setupCheckout(input: DirectRequestPaymentCheckoutSetupInput): Promise<DirectRequestPaymentCheckoutSetupResult> {\n    const merchant = await this.setupMerchant(input);\n    const merchantKey = merchant.merchant_account.merchant;\n    const billing_mandate = input.prepare_billing_mandate === false\n      ? null\n      : await this.prepareBillingMandate(merchantKey, {\n        billing_currency: merchant.merchant_account.billing_currency ?? input.billing_currency ?? \"JPY\",\n        max_amount_minor: input.max_amount_minor ?? input.billing_mandate_cap_minor,\n      });\n    const shouldCreateWebhook = input.create_webhook_subscription ?? Boolean(input.webhook_callback_url);\n    const webhook_subscription = shouldCreateWebhook && input.webhook_callback_url\n      ? await this.createWebhookSubscription({\n        callback_url: input.webhook_callback_url,\n        description: input.webhook_description ?? `${merchantKey} Direct Request Payment`,\n        event_types: input.webhook_event_types,\n        metadata: { merchant: merchantKey, sdk: \"@siglume/direct-request-payment\" },\n      })\n      : null;\n    const env: Record<string, string> = {\n      SIGLUME_DIRECT_PAYMENT_MERCHANT: merchantKey,\n    };\n    if (merchant.challenge_secret) {\n      env.SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET = merchant.challenge_secret;\n    }\n    const webhookSecret = stringOrNull(webhook_subscription?.signing_secret);\n    if (webhookSecret) {\n      env.SIGLUME_WEBHOOK_SECRET = webhookSecret;\n    }\n    return { merchant, billing_mandate, webhook_subscription, env };\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport async function createDirectRequestPaymentChallenge(\n  input: DirectRequestPaymentChallengeInput,\n): Promise<DirectRequestPaymentChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  const material = `${merchant}:${amount}:${currency}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport function parseDirectRequestPaymentChallenge(challenge: string): ParsedDirectRequestPaymentChallenge {\n  const parts = requireNonEmpty(challenge, \"challenge\").split(\":\");\n  if (parts.length !== 3) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge must be scheme:nonce:signature.\");\n  }\n  const [scheme, nonce, signature] = parts;\n  if (!scheme || !nonce || !signature) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge is incomplete.\");\n  }\n  return { scheme, nonce, signature };\n}\n\n/** Merchant-side, ONE-TIME approval of a recurring authorization: amount +\n *  currency + cadence are bound into the HMAC. Recurring charges afterwards\n *  are deliberately challenge-free; the recurring authorization and the\n *  buyer's mandate/budget caps are the per-charge integrity checks. Cadence\n *  \"monthly\" = subscription, \"daily\" = scheduled autopay approval tag. */\nexport async function createDirectRequestPaymentRecurringChallenge(\n  input: DirectRequestPaymentRecurringChallengeInput,\n): Promise<DirectRequestPaymentRecurringChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentRecurringChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentRecurringChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  // MUST stay byte-identical to the server's\n  // _external_402_recurring_challenge_signature — both sides change together.\n  const material = `${merchant}:${amount}:${currency}:${cadence}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport async function verifyDirectRequestPaymentRecurringChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentRecurringChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    cadence: input.cadence,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function verifyDirectRequestPaymentChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function directRequestPaymentChallengeHash(challenge: string): Promise<string> {\n  return sha256Prefixed(requireNonEmpty(challenge, \"challenge\"));\n}\n\nexport async function directRequestPaymentRequestHash(input: {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n}): Promise<string> {\n  const material = `${normalizeMerchant(input.merchant)}${positiveInteger(input.amount_minor, \"amount_minor\")}${normalizeCurrency(input.currency)}${requireNonEmpty(input.challenge, \"challenge\")}`;\n  return sha256Prefixed(material);\n}\n\nexport function buildPaymentExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  return buildPreparedTransactionExecutionPayload(requirement, requirement.transaction_request, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildAllowanceExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  const approveRequest = requirement.approve_transaction_request;\n  if (!approveRequest || Object.keys(approveRequest).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"This payment requirement does not include an allowance approval transaction.\");\n  }\n  return buildPreparedTransactionExecutionPayload(requirement, approveRequest, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildPreparedTransactionExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  transaction_request: Web3TransactionRequest,\n  options: {\n    receipt_kind: string;\n    await_finality?: boolean;\n    metadata?: Record<string, unknown>;\n  },\n): Web3PreparedTransactionExecutePayload {\n  const metadata = {\n    ...(isRecord(transaction_request.metadata_jsonb) ? transaction_request.metadata_jsonb : {}),\n    ...(options.metadata ?? {}),\n  };\n  return {\n    transaction_request,\n    receipt_kind: requireNonEmpty(options.receipt_kind, \"receipt_kind\"),\n    reference_type: DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE,\n    reference_id: requirement.requirement_id,\n    metadata,\n    await_finality: Boolean(options.await_finality),\n  };\n}\n\nexport async function computeWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp: number },\n): Promise<string> {\n  if (!signing_secret) {\n    throw new SiglumeWebhookSignatureError(\"SIGLUME webhook signing secret is required.\");\n  }\n  const timestamp = Math.trunc(options.timestamp);\n  const bytes = bodyBytes(body);\n  const prefix = new TextEncoder().encode(`${timestamp}.`);\n  const payload = new Uint8Array(prefix.length + bytes.length);\n  payload.set(prefix, 0);\n  payload.set(bytes, prefix.length);\n  return hmacSha256Hex(signing_secret, payload);\n}\n\nexport async function buildWebhookSignatureHeader(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp?: number } = {},\n): Promise<string> {\n  const timestamp = Math.trunc(options.timestamp ?? Date.now() / 1000);\n  const signature = await computeWebhookSignature(signing_secret, body, { timestamp });\n  return `t=${timestamp},v1=${signature}`;\n}\n\nexport async function verifyWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<WebhookSignatureVerification> {\n  const { timestamp, signature } = parseSignatureHeader(signature_header);\n  const toleranceSeconds = Math.max(1, Math.trunc(options.tolerance_seconds ?? DEFAULT_WEBHOOK_TOLERANCE_SECONDS));\n  const nowSeconds = Math.trunc(options.now ?? Date.now() / 1000);\n  if (Math.abs(nowSeconds - timestamp) > toleranceSeconds) {\n    throw new SiglumeWebhookSignatureError(\"Webhook timestamp is outside the allowed tolerance window.\");\n  }\n  const expected = await computeWebhookSignature(signing_secret, body, { timestamp });\n  if (!(await timingSafeEqualHex(expected, signature))) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature did not match.\");\n  }\n  return { timestamp, signature };\n}\n\nexport function parseDirectRequestPaymentWebhookEvent(payload: unknown): DirectRequestPaymentWebhookEvent {\n  const event = requireRecord(payload, \"webhook event\");\n  const data = requireRecord(event.data, \"webhook event data\");\n  const parsed = {\n    ...event,\n    id: requireNonEmpty(stringOrNull(event.id) ?? \"\", \"webhook event id\"),\n    type: requireNonEmpty(stringOrNull(event.type) ?? \"\", \"webhook event type\"),\n    api_version: requireNonEmpty(stringOrNull(event.api_version) ?? \"\", \"webhook api_version\"),\n    occurred_at: requireNonEmpty(stringOrNull(event.occurred_at) ?? \"\", \"webhook occurred_at\"),\n    data: { ...data },\n  } as DirectRequestPaymentWebhookEvent;\n  if (parsed.type === \"direct_payment.confirmed\" && parsed.data.mode !== DIRECT_REQUEST_PAYMENT_MODE) {\n    throw new SiglumeWebhookPayloadError(\"direct_payment.confirmed webhook must carry data.mode='external_402'.\");\n  }\n  return parsed;\n}\n\nexport async function verifyDirectRequestPaymentWebhook(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<{ event: DirectRequestPaymentWebhookEvent; verification: WebhookSignatureVerification }> {\n  const verification = await verifyWebhookSignature(signing_secret, body, signature_header, options);\n  const text = new TextDecoder().decode(bodyBytes(body));\n  let parsed: unknown;\n  try {\n    parsed = JSON.parse(text);\n  } catch (error) {\n    throw new SiglumeWebhookPayloadError(\"Webhook body must contain valid JSON.\");\n  }\n  return { event: parseDirectRequestPaymentWebhookEvent(parsed), verification };\n}\n\nexport const createExternal402Challenge = createDirectRequestPaymentChallenge;\nexport const verifyExternal402Challenge = verifyDirectRequestPaymentChallenge;\nexport const createExternal402RecurringChallenge = createDirectRequestPaymentRecurringChallenge;\nexport const verifyExternal402RecurringChallenge = verifyDirectRequestPaymentRecurringChallenge;\n\nfunction normalizeMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9._-]{0,95}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be a lowercase key using letters, numbers, dot, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeSelfServiceMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9_-]{2,63}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be 3-64 chars using lowercase letters, numbers, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeBillingPlan(value: string): DirectRequestPaymentBillingPlan {\n  const plan = requireNonEmpty(value, \"billing_plan\").toLowerCase();\n  if (plan === \"launch\" || plan === \"free\" || plan === \"starter\" || plan === \"growth\" || plan === \"pro\") {\n    return plan;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"billing_plan must be launch, starter, growth, or pro.\");\n}\n\nfunction normalizeCurrency(value: string): DirectRequestPaymentCurrency {\n  const currency = requireNonEmpty(value, \"currency\").toUpperCase();\n  if (currency !== \"JPY\" && currency !== \"USD\") {\n    throw new SiglumeDirectRequestPaymentError(\"currency must be JPY or USD.\");\n  }\n  return currency;\n}\n\nfunction normalizeToken(value: string): DirectRequestPaymentToken {\n  const token = requireNonEmpty(value, \"token_symbol\").toUpperCase();\n  if (token !== \"JPYC\" && token !== \"USDC\") {\n    throw new SiglumeDirectRequestPaymentError(\"token_symbol must be JPYC or USDC.\");\n  }\n  return token;\n}\n\nfunction normalizeAllowedCurrencies(value: Record<string, string> | Array<DirectRequestPaymentCurrency | string>): Record<string, string> {\n  const normalized: Record<string, string> = {};\n  if (Array.isArray(value)) {\n    for (const item of value) {\n      const currency = normalizeCurrency(item);\n      normalized[currency] = defaultTokenForCurrency(currency);\n    }\n  } else if (isRecord(value)) {\n    for (const [rawCurrency, rawToken] of Object.entries(value)) {\n      normalized[normalizeCurrency(rawCurrency)] = normalizeToken(String(rawToken));\n    }\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must be an array or a currency-to-token object.\");\n  }\n  if (Object.keys(normalized).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must include at least one currency.\");\n  }\n  return normalized;\n}\n\nfunction defaultTokenForCurrency(currency: DirectRequestPaymentCurrency): DirectRequestPaymentToken {\n  return currency === \"JPY\" ? \"JPYC\" : \"USDC\";\n}\n\nfunction positiveInteger(value: number, name: string): number {\n  const parsed = Number(value);\n  if (!Number.isSafeInteger(parsed) || parsed <= 0) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a positive safe integer.`);\n  }\n  return parsed;\n}\n\nfunction requireNonEmpty(value: string, name: string): string {\n  const text = String(value ?? \"\").trim();\n  if (!text) {\n    throw new SiglumeDirectRequestPaymentError(`${name} is required.`);\n  }\n  return text;\n}\n\nfunction normalizeChallengeNonce(value: string): string {\n  const nonce = requireNonEmpty(value, \"nonce\");\n  if (nonce.includes(\":\")) {\n    throw new SiglumeDirectRequestPaymentError(\"nonce must not contain ':'.\");\n  }\n  return nonce;\n}\n\nfunction normalizeRecurringCadence(value: string): DirectRequestPaymentRecurringCadence {\n  const cadence = requireNonEmpty(value, \"cadence\").toLowerCase();\n  if (cadence !== \"monthly\" && cadence !== \"daily\") {\n    throw new SiglumeDirectRequestPaymentError(\n      'cadence must be \"monthly\" (subscription) or \"daily\" (scheduled autopay).',\n    );\n  }\n  return cadence;\n}\n\nfunction cloneJsonObject(value: Record<string, unknown>, name: string): Record<string, unknown> {\n  try {\n    const cloned = JSON.parse(JSON.stringify(value)) as unknown;\n    if (!isRecord(cloned)) {\n      throw new Error(\"not an object\");\n    }\n    return cloned;\n  } catch (error) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a JSON-serializable object.`);\n  }\n}\n\nfunction parseJson(rawText: string): unknown {\n  try {\n    return JSON.parse(rawText);\n  } catch (error) {\n    throw new SiglumeApiError(\"Siglume API returned invalid JSON.\", {\n      status: 502,\n      code: \"INVALID_JSON_RESPONSE\",\n      data: rawText,\n    });\n  }\n}\n\nfunction stringOrNull(value: unknown): string | null {\n  if (typeof value !== \"string\") {\n    return null;\n  }\n  const text = value.trim();\n  return text ? text : null;\n}\n\nfunction isRecord(value: unknown): value is Record<string, unknown> {\n  return typeof value === \"object\" && value !== null && !Array.isArray(value);\n}\n\nfunction requireRecord(value: unknown, name: string): Record<string, unknown> {\n  if (!isRecord(value)) {\n    throw new SiglumeWebhookPayloadError(`${name} must be an object.`);\n  }\n  return value;\n}\n\nfunction envValue(name: string): string | undefined {\n  if (typeof process === \"undefined\") {\n    return undefined;\n  }\n  const value = process.env[name];\n  return value && value.trim() ? value.trim() : undefined;\n}\n\nfunction bodyBytes(body: Uint8Array | ArrayBuffer | string | Record<string, unknown>): Uint8Array {\n  if (body instanceof Uint8Array) {\n    return body;\n  }\n  if (body instanceof ArrayBuffer) {\n    return new Uint8Array(body);\n  }\n  if (typeof body === \"string\") {\n    return new TextEncoder().encode(body);\n  }\n  if (isRecord(body)) {\n    return new TextEncoder().encode(JSON.stringify(body));\n  }\n  throw new SiglumeWebhookPayloadError(\"Webhook body must be raw bytes, a string, or a JSON object.\");\n}\n\nfunction parseSignatureHeader(signatureHeader: string): { timestamp: number; signature: string } {\n  let timestamp: number | null = null;\n  let signature: string | null = null;\n  for (const item of String(signatureHeader ?? \"\").split(\",\")) {\n    const [key, value] = item.trim().split(\"=\", 2);\n    if (key === \"t\") {\n      const parsed = Number.parseInt(value ?? \"\", 10);\n      if (!Number.isFinite(parsed)) {\n        throw new SiglumeWebhookSignatureError(\"Webhook signature timestamp is invalid.\");\n      }\n      timestamp = parsed;\n    }\n    if (key === \"v1\") {\n      signature = String(value ?? \"\").trim();\n    }\n  }\n  if (timestamp === null || !signature) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature header is incomplete.\");\n  }\n  return { timestamp, signature };\n}\n\nasync function randomNonce(): Promise<string> {\n  if (globalThis.crypto?.randomUUID) {\n    return globalThis.crypto.randomUUID();\n  }\n  const bytes = new Uint8Array(16);\n  if (globalThis.crypto?.getRandomValues) {\n    globalThis.crypto.getRandomValues(bytes);\n  } else if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    bytes.set(crypto.randomBytes(16));\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"Crypto random number generation is unavailable in this runtime.\");\n  }\n  return bytesToHex(bytes);\n}\n\nasync function hmacSha256Hex(secret: string, payload: Uint8Array): Promise<string> {\n  if (globalThis.crypto?.subtle) {\n    const stablePayload = new Uint8Array(payload.byteLength);\n    stablePayload.set(payload);\n    const key = await globalThis.crypto.subtle.importKey(\n      \"raw\",\n      new TextEncoder().encode(secret),\n      { name: \"HMAC\", hash: \"SHA-256\" },\n      false,\n      [\"sign\"],\n    );\n    const digest = await globalThis.crypto.subtle.sign(\"HMAC\", key, stablePayload);\n    return bytesToHex(new Uint8Array(digest));\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return crypto.createHmac(\"sha256\", secret).update(Buffer.from(payload)).digest(\"hex\");\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for HMAC-SHA256 in this runtime.\");\n}\n\nasync function sha256Prefixed(material: string): Promise<string> {\n  const bytes = new TextEncoder().encode(material);\n  if (globalThis.crypto?.subtle) {\n    const digest = await globalThis.crypto.subtle.digest(\"SHA-256\", bytes);\n    return `sha256:${bytesToHex(new Uint8Array(digest))}`;\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return `sha256:${crypto.createHash(\"sha256\").update(Buffer.from(bytes)).digest(\"hex\")}`;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for SHA-256 in this runtime.\");\n}\n\nfunction bytesToHex(bytes: Uint8Array): string {\n  return [...bytes].map((item) => item.toString(16).padStart(2, \"0\")).join(\"\");\n}\n\nfunction hexToBytes(hex: string): Uint8Array {\n  const normalized = String(hex ?? \"\").trim().toLowerCase();\n  if (normalized.length % 2 !== 0 || !/^[0-9a-f]*$/.test(normalized)) {\n    throw new SiglumeWebhookSignatureError(\"Hex digest is invalid.\");\n  }\n  const bytes = new Uint8Array(normalized.length / 2);\n  for (let index = 0; index < normalized.length; index += 2) {\n    bytes[index / 2] = Number.parseInt(normalized.slice(index, index + 2), 16);\n  }\n  return bytes;\n}\n\nasync function timingSafeEqualHex(left: string, right: string): Promise<boolean> {\n  const leftBytes = hexToBytes(left);\n  const rightBytes = hexToBytes(right);\n  if (leftBytes.length !== rightBytes.length) {\n    return false;\n  }\n  let diff = 0;\n  for (let index = 0; index < leftBytes.length; index += 1) {\n    diff |= leftBytes[index]! ^ rightBytes[index]!;\n  }\n  return diff === 0;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAO,IAAM,2BAA2B;AACjC,IAAM,0CAA0C;AAIhD,IAAM,oDAAoD;AAC1D,IAAM,8BAA8B;AACpC,IAAM,sCAAsC;AAC5C,IAAM,gDAAgD;AACtD,IAAM,wCAAwC;AAC9C,IAAM,oCAAoC;AA+P1C,IAAM,mCAAN,cAA+C,MAAM;AAAA,EAC1D,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,kBAAN,cAA8B,iCAAiC;AAAA,EAC3D;AAAA,EACA;AAAA,EACA;AAAA,EAET,YAAY,SAAiB,SAA4D;AACvF,UAAM,OAAO;AACb,SAAK,OAAO;AACZ,SAAK,SAAS,QAAQ;AACtB,SAAK,OAAO,QAAQ,QAAQ;AAC5B,SAAK,OAAO,QAAQ;AAAA,EACtB;AACF;AAEO,IAAM,+BAAN,cAA2C,iCAAiC;AAAA,EACjF,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,cAAyC,iCAAiC;AAAA,EAC/E,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,MAAiC;AAAA,EAC7B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,oBAAoB;AACrE,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,yBAAyB,OAA+E;AAC5G,UAAM,UAAmC;AAAA,MACvC,MAAM;AAAA,MACN,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,WAAW,gBAAgB,MAAM,WAAW,WAAW;AAAA,IACzD;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,eAAe,MAAM,YAAY;AAAA,IAC1D;AACA,QAAI,MAAM,2BAA2B,QAAW;AAC9C,cAAQ,yBAAyB,gBAAgB,MAAM,wBAAwB,wBAAwB;AAAA,IACzG;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAkC,QAAQ,sCAAsC,OAAO;AAAA,EACrG;AAAA,EAEA,MAAM,sBAAsB,gBAA2D;AACrF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,IAC7G;AAAA,EACF;AAAA,EAEA,MAAM,yBACJ,gBACA,OACmC;AACnC,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,MAC3G;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,2BACJ,SAC+C;AAC/C,WAAO,KAAK;AAAA,MACV;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,6BAA6B,aAAa,OAAO,CAAC;AAAA,EAC3F;AAAA,EAEA,MAAM,4BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,+BAA+B,aAAa,OAAO,CAAC;AAAA,EAC7F;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEO,IAAM,qCAAN,MAAyC;AAAA,EACrC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,6BAA6B,KAAK,SAAS,oBAAoB;AAChH,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,cAAc,OAA8F;AAChH,UAAM,UAAmC;AAAA,MACvC,UAAU,6BAA6B,MAAM,QAAQ;AAAA,MACrD,cAAc,qBAAqB,MAAM,gBAAgB,QAAQ;AAAA,MACjE,kBAAkB,kBAAkB,MAAM,oBAAoB,KAAK;AAAA,IACrE;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,gBAAgB,MAAM,cAAc,cAAc;AAAA,IAC3E;AACA,QAAI,MAAM,uBAAuB,QAAW;AAC1C,cAAQ,qBAAqB,2BAA2B,MAAM,kBAAkB;AAAA,IAClF;AACA,QAAI,MAAM,yBAAyB,QAAW;AAC5C,cAAQ,uBAAuB,gBAAgB,MAAM,sBAAsB,sBAAsB;AAAA,IACnG;AACA,QAAI,MAAM,8BAA8B,QAAW;AACjD,cAAQ,4BAA4B,gBAAgB,MAAM,2BAA2B,2BAA2B;AAAA,IAClH;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK,QAA8C,QAAQ,mCAAmC,OAAO;AAAA,EAC9G;AAAA,EAEA,MAAM,YAAY,UAAiE;AACjF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBAAsB,UAAiE;AAC3F,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBACJ,UACA,QAAyD,CAAC,GACX;AAC/C,UAAM,UAAmC,CAAC;AAC1C,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,kBAAkB,MAAM,QAAQ;AAAA,IACrD;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,kBAAkB,MAAM,gBAAgB;AAAA,IACrE;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,MAC7F;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,OACkD;AAClD,UAAM,UAAmC;AAAA,MACvC,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,aAAa,MAAM,aAAa,SAC5B,MAAM,YAAY,IAAI,CAAC,cAAc,gBAAgB,WAAW,YAAY,CAAC,IAC7E,CAAC,4BAA4B,sBAAsB;AAAA,IACzD;AACA,QAAI,MAAM,gBAAgB,QAAW;AACnC,cAAQ,cAAc,gBAAgB,MAAM,aAAa,aAAa;AAAA,IACxE;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAiD,QAAQ,kCAAkC,OAAO;AAAA,EAChH;AAAA,EAEA,MAAM,cAAc,OAAiG;AACnH,UAAM,WAAW,MAAM,KAAK,cAAc,KAAK;AAC/C,UAAM,cAAc,SAAS,iBAAiB;AAC9C,UAAM,kBAAkB,MAAM,4BAA4B,QACtD,OACA,MAAM,KAAK,sBAAsB,aAAa;AAAA,MAC9C,kBAAkB,SAAS,iBAAiB,oBAAoB,MAAM,oBAAoB;AAAA,MAC1F,kBAAkB,MAAM,oBAAoB,MAAM;AAAA,IACpD,CAAC;AACH,UAAM,sBAAsB,MAAM,+BAA+B,QAAQ,MAAM,oBAAoB;AACnG,UAAM,uBAAuB,uBAAuB,MAAM,uBACtD,MAAM,KAAK,0BAA0B;AAAA,MACrC,cAAc,MAAM;AAAA,MACpB,aAAa,MAAM,uBAAuB,GAAG,WAAW;AAAA,MACxD,aAAa,MAAM;AAAA,MACnB,UAAU,EAAE,UAAU,aAAa,KAAK,kCAAkC;AAAA,IAC5E,CAAC,IACC;AACJ,UAAM,MAA8B;AAAA,MAClC,iCAAiC;AAAA,IACnC;AACA,QAAI,SAAS,kBAAkB;AAC7B,UAAI,0CAA0C,SAAS;AAAA,IACzD;AACA,UAAM,gBAAgB,aAAa,sBAAsB,cAAc;AACvE,QAAI,eAAe;AACjB,UAAI,yBAAyB;AAAA,IAC/B;AACA,WAAO,EAAE,UAAU,iBAAiB,sBAAsB,IAAI;AAAA,EAChE;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEA,eAAsB,oCACpB,OACwC;AACxC,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,6CAA6C,MAAM,QAAQ;AAAA,IACjF;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,uCAAuC,IAAI,KAAK,IAAI,SAAS;AAClF,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,6CACpB,QACA,OAMiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AACjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,KAAK;AAC3D,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEO,SAAS,mCAAmC,WAAwD;AACzG,QAAM,QAAQ,gBAAgB,WAAW,WAAW,EAAE,MAAM,GAAG;AAC/D,MAAI,MAAM,WAAW,GAAG;AACtB,UAAM,IAAI,iCAAiC,kEAAkE;AAAA,EAC/G;AACA,QAAM,CAAC,QAAQ,OAAO,SAAS,IAAI;AACnC,MAAI,CAAC,UAAU,CAAC,SAAS,CAAC,WAAW;AACnC,UAAM,IAAI,iCAAiC,iDAAiD;AAAA,EAC9F;AACA,SAAO,EAAE,QAAQ,OAAO,UAAU;AACpC;AAOA,eAAsB,6CACpB,OACiD;AACjD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,sDAAsD,MAAM,QAAQ;AAAA,IAC1F;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,iDAAiD,IAAI,KAAK,IAAI,SAAS;AAC5F,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,sDACpB,QACA,OAOiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AAGjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,OAAO,IAAI,KAAK;AACtE,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEA,eAAsB,6CACpB,QACA,OAOkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,mDAAmD;AACvE,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,sDAAsD,QAAQ;AAAA,IACnF,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,SAAS,MAAM;AAAA,IACf,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,oCACpB,QACA,OAMkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,yCAAyC;AAC7D,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,6CAA6C,QAAQ;AAAA,IAC1E,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,kCAAkC,WAAoC;AAC1F,SAAO,eAAe,gBAAgB,WAAW,WAAW,CAAC;AAC/D;AAEA,eAAsB,gCAAgC,OAKlC;AAClB,QAAM,WAAW,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,cAAc,cAAc,CAAC,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,WAAW,WAAW,CAAC;AAC/L,SAAO,eAAe,QAAQ;AAChC;AAEO,SAAS,6BACd,aACA,UAA4E,CAAC,GACtC;AACvC,SAAO,yCAAyC,aAAa,YAAY,qBAAqB;AAAA,IAC5F,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,+BACd,aACA,UAA4E,CAAC,GACtC;AACvC,QAAM,iBAAiB,YAAY;AACnC,MAAI,CAAC,kBAAkB,OAAO,KAAK,cAAc,EAAE,WAAW,GAAG;AAC/D,UAAM,IAAI,iCAAiC,8EAA8E;AAAA,EAC3H;AACA,SAAO,yCAAyC,aAAa,gBAAgB;AAAA,IAC3E,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,yCACd,aACA,qBACA,SAKuC;AACvC,QAAM,WAAW;AAAA,IACf,GAAI,SAAS,oBAAoB,cAAc,IAAI,oBAAoB,iBAAiB,CAAC;AAAA,IACzF,GAAI,QAAQ,YAAY,CAAC;AAAA,EAC3B;AACA,SAAO;AAAA,IACL;AAAA,IACA,cAAc,gBAAgB,QAAQ,cAAc,cAAc;AAAA,IAClE,gBAAgB;AAAA,IAChB,cAAc,YAAY;AAAA,IAC1B;AAAA,IACA,gBAAgB,QAAQ,QAAQ,cAAc;AAAA,EAChD;AACF;AAEA,eAAsB,wBACpB,gBACA,MACA,SACiB;AACjB,MAAI,CAAC,gBAAgB;AACnB,UAAM,IAAI,6BAA6B,6CAA6C;AAAA,EACtF;AACA,QAAM,YAAY,KAAK,MAAM,QAAQ,SAAS;AAC9C,QAAM,QAAQ,UAAU,IAAI;AAC5B,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG,SAAS,GAAG;AACvD,QAAM,UAAU,IAAI,WAAW,OAAO,SAAS,MAAM,MAAM;AAC3D,UAAQ,IAAI,QAAQ,CAAC;AACrB,UAAQ,IAAI,OAAO,OAAO,MAAM;AAChC,SAAO,cAAc,gBAAgB,OAAO;AAC9C;AAEA,eAAsB,4BACpB,gBACA,MACA,UAAkC,CAAC,GAClB;AACjB,QAAM,YAAY,KAAK,MAAM,QAAQ,aAAa,KAAK,IAAI,IAAI,GAAI;AACnE,QAAM,YAAY,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AACnF,SAAO,KAAK,SAAS,OAAO,SAAS;AACvC;AAEA,eAAsB,uBACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GAClB;AACvC,QAAM,EAAE,WAAW,UAAU,IAAI,qBAAqB,gBAAgB;AACtE,QAAM,mBAAmB,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,qBAAqB,iCAAiC,CAAC;AAC/G,QAAM,aAAa,KAAK,MAAM,QAAQ,OAAO,KAAK,IAAI,IAAI,GAAI;AAC9D,MAAI,KAAK,IAAI,aAAa,SAAS,IAAI,kBAAkB;AACvD,UAAM,IAAI,6BAA6B,4DAA4D;AAAA,EACrG;AACA,QAAM,WAAW,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AAClF,MAAI,CAAE,MAAM,mBAAmB,UAAU,SAAS,GAAI;AACpD,UAAM,IAAI,6BAA6B,kCAAkC;AAAA,EAC3E;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEO,SAAS,sCAAsC,SAAoD;AACxG,QAAM,QAAQ,cAAc,SAAS,eAAe;AACpD,QAAM,OAAO,cAAc,MAAM,MAAM,oBAAoB;AAC3D,QAAM,SAAS;AAAA,IACb,GAAG;AAAA,IACH,IAAI,gBAAgB,aAAa,MAAM,EAAE,KAAK,IAAI,kBAAkB;AAAA,IACpE,MAAM,gBAAgB,aAAa,MAAM,IAAI,KAAK,IAAI,oBAAoB;AAAA,IAC1E,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,MAAM,EAAE,GAAG,KAAK;AAAA,EAClB;AACA,MAAI,OAAO,SAAS,8BAA8B,OAAO,KAAK,SAAS,6BAA6B;AAClG,UAAM,IAAI,2BAA2B,uEAAuE;AAAA,EAC9G;AACA,SAAO;AACT;AAEA,eAAsB,kCACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GACyC;AAClG,QAAM,eAAe,MAAM,uBAAuB,gBAAgB,MAAM,kBAAkB,OAAO;AACjG,QAAM,OAAO,IAAI,YAAY,EAAE,OAAO,UAAU,IAAI,CAAC;AACrD,MAAI;AACJ,MAAI;AACF,aAAS,KAAK,MAAM,IAAI;AAAA,EAC1B,SAAS,OAAO;AACd,UAAM,IAAI,2BAA2B,uCAAuC;AAAA,EAC9E;AACA,SAAO,EAAE,OAAO,sCAAsC,MAAM,GAAG,aAAa;AAC9E;AAEO,IAAM,6BAA6B;AACnC,IAAM,6BAA6B;AACnC,IAAM,sCAAsC;AAC5C,IAAM,sCAAsC;AAEnD,SAAS,kBAAkB,OAAuB;AAChD,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,8BAA8B,KAAK,QAAQ,GAAG;AACjD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,6BAA6B,OAAuB;AAC3D,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,6BAA6B,KAAK,QAAQ,GAAG;AAChD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,qBAAqB,OAAgD;AAC5E,QAAM,OAAO,gBAAgB,OAAO,cAAc,EAAE,YAAY;AAChE,MAAI,SAAS,YAAY,SAAS,UAAU,SAAS,aAAa,SAAS,YAAY,SAAS,OAAO;AACrG,WAAO;AAAA,EACT;AACA,QAAM,IAAI,iCAAiC,uDAAuD;AACpG;AAEA,SAAS,kBAAkB,OAA6C;AACtE,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,aAAa,SAAS,aAAa,OAAO;AAC5C,UAAM,IAAI,iCAAiC,8BAA8B;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,SAAS,eAAe,OAA0C;AAChE,QAAM,QAAQ,gBAAgB,OAAO,cAAc,EAAE,YAAY;AACjE,MAAI,UAAU,UAAU,UAAU,QAAQ;AACxC,UAAM,IAAI,iCAAiC,oCAAoC;AAAA,EACjF;AACA,SAAO;AACT;AAEA,SAAS,2BAA2B,OAAsG;AACxI,QAAM,aAAqC,CAAC;AAC5C,MAAI,MAAM,QAAQ,KAAK,GAAG;AACxB,eAAW,QAAQ,OAAO;AACxB,YAAM,WAAW,kBAAkB,IAAI;AACvC,iBAAW,QAAQ,IAAI,wBAAwB,QAAQ;AAAA,IACzD;AAAA,EACF,WAAW,SAAS,KAAK,GAAG;AAC1B,eAAW,CAAC,aAAa,QAAQ,KAAK,OAAO,QAAQ,KAAK,GAAG;AAC3D,iBAAW,kBAAkB,WAAW,CAAC,IAAI,eAAe,OAAO,QAAQ,CAAC;AAAA,IAC9E;AAAA,EACF,OAAO;AACL,UAAM,IAAI,iCAAiC,oEAAoE;AAAA,EACjH;AACA,MAAI,OAAO,KAAK,UAAU,EAAE,WAAW,GAAG;AACxC,UAAM,IAAI,iCAAiC,wDAAwD;AAAA,EACrG;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,UAAmE;AAClG,SAAO,aAAa,QAAQ,SAAS;AACvC;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,SAAS,OAAO,KAAK;AAC3B,MAAI,CAAC,OAAO,cAAc,MAAM,KAAK,UAAU,GAAG;AAChD,UAAM,IAAI,iCAAiC,GAAG,IAAI,mCAAmC;AAAA,EACvF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,OAAO,OAAO,SAAS,EAAE,EAAE,KAAK;AACtC,MAAI,CAAC,MAAM;AACT,UAAM,IAAI,iCAAiC,GAAG,IAAI,eAAe;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,OAAuB;AACtD,QAAM,QAAQ,gBAAgB,OAAO,OAAO;AAC5C,MAAI,MAAM,SAAS,GAAG,GAAG;AACvB,UAAM,IAAI,iCAAiC,6BAA6B;AAAA,EAC1E;AACA,SAAO;AACT;AAEA,SAAS,0BAA0B,OAAqD;AACtF,QAAM,UAAU,gBAAgB,OAAO,SAAS,EAAE,YAAY;AAC9D,MAAI,YAAY,aAAa,YAAY,SAAS;AAChD,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAgC,MAAuC;AAC9F,MAAI;AACF,UAAM,SAAS,KAAK,MAAM,KAAK,UAAU,KAAK,CAAC;AAC/C,QAAI,CAAC,SAAS,MAAM,GAAG;AACrB,YAAM,IAAI,MAAM,eAAe;AAAA,IACjC;AACA,WAAO;AAAA,EACT,SAAS,OAAO;AACd,UAAM,IAAI,iCAAiC,GAAG,IAAI,sCAAsC;AAAA,EAC1F;AACF;AAEA,SAAS,UAAU,SAA0B;AAC3C,MAAI;AACF,WAAO,KAAK,MAAM,OAAO;AAAA,EAC3B,SAAS,OAAO;AACd,UAAM,IAAI,gBAAgB,sCAAsC;AAAA,MAC9D,QAAQ;AAAA,MACR,MAAM;AAAA,MACN,MAAM;AAAA,IACR,CAAC;AAAA,EACH;AACF;AAEA,SAAS,aAAa,OAA+B;AACnD,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AACA,QAAM,OAAO,MAAM,KAAK;AACxB,SAAO,OAAO,OAAO;AACvB;AAEA,SAAS,SAAS,OAAkD;AAClE,SAAO,OAAO,UAAU,YAAY,UAAU,QAAQ,CAAC,MAAM,QAAQ,KAAK;AAC5E;AAEA,SAAS,cAAc,OAAgB,MAAuC;AAC5E,MAAI,CAAC,SAAS,KAAK,GAAG;AACpB,UAAM,IAAI,2BAA2B,GAAG,IAAI,qBAAqB;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,SAAS,MAAkC;AAClD,MAAI,OAAO,YAAY,aAAa;AAClC,WAAO;AAAA,EACT;AACA,QAAM,QAAQ,QAAQ,IAAI,IAAI;AAC9B,SAAO,SAAS,MAAM,KAAK,IAAI,MAAM,KAAK,IAAI;AAChD;AAEA,SAAS,UAAU,MAA+E;AAChG,MAAI,gBAAgB,YAAY;AAC9B,WAAO;AAAA,EACT;AACA,MAAI,gBAAgB,aAAa;AAC/B,WAAO,IAAI,WAAW,IAAI;AAAA,EAC5B;AACA,MAAI,OAAO,SAAS,UAAU;AAC5B,WAAO,IAAI,YAAY,EAAE,OAAO,IAAI;AAAA,EACtC;AACA,MAAI,SAAS,IAAI,GAAG;AAClB,WAAO,IAAI,YAAY,EAAE,OAAO,KAAK,UAAU,IAAI,CAAC;AAAA,EACtD;AACA,QAAM,IAAI,2BAA2B,6DAA6D;AACpG;AAEA,SAAS,qBAAqB,iBAAmE;AAC/F,MAAI,YAA2B;AAC/B,MAAI,YAA2B;AAC/B,aAAW,QAAQ,OAAO,mBAAmB,EAAE,EAAE,MAAM,GAAG,GAAG;AAC3D,UAAM,CAAC,KAAK,KAAK,IAAI,KAAK,KAAK,EAAE,MAAM,KAAK,CAAC;AAC7C,QAAI,QAAQ,KAAK;AACf,YAAM,SAAS,OAAO,SAAS,SAAS,IAAI,EAAE;AAC9C,UAAI,CAAC,OAAO,SAAS,MAAM,GAAG;AAC5B,cAAM,IAAI,6BAA6B,yCAAyC;AAAA,MAClF;AACA,kBAAY;AAAA,IACd;AACA,QAAI,QAAQ,MAAM;AAChB,kBAAY,OAAO,SAAS,EAAE,EAAE,KAAK;AAAA,IACvC;AAAA,EACF;AACA,MAAI,cAAc,QAAQ,CAAC,WAAW;AACpC,UAAM,IAAI,6BAA6B,yCAAyC;AAAA,EAClF;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEA,eAAe,cAA+B;AAC5C,MAAI,WAAW,QAAQ,YAAY;AACjC,WAAO,WAAW,OAAO,WAAW;AAAA,EACtC;AACA,QAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,MAAI,WAAW,QAAQ,iBAAiB;AACtC,eAAW,OAAO,gBAAgB,KAAK;AAAA,EACzC,WAAW,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AACnE,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,UAAM,IAAI,OAAO,YAAY,EAAE,CAAC;AAAA,EAClC,OAAO;AACL,UAAM,IAAI,iCAAiC,iEAAiE;AAAA,EAC9G;AACA,SAAO,WAAW,KAAK;AACzB;AAEA,eAAe,cAAc,QAAgB,SAAsC;AACjF,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,gBAAgB,IAAI,WAAW,QAAQ,UAAU;AACvD,kBAAc,IAAI,OAAO;AACzB,UAAM,MAAM,MAAM,WAAW,OAAO,OAAO;AAAA,MACzC;AAAA,MACA,IAAI,YAAY,EAAE,OAAO,MAAM;AAAA,MAC/B,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC;AAAA,MACA,CAAC,MAAM;AAAA,IACT;AACA,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,KAAK,QAAQ,KAAK,aAAa;AAC7E,WAAO,WAAW,IAAI,WAAW,MAAM,CAAC;AAAA,EAC1C;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,OAAO,WAAW,UAAU,MAAM,EAAE,OAAO,OAAO,KAAK,OAAO,CAAC,EAAE,OAAO,KAAK;AAAA,EACtF;AACA,QAAM,IAAI,iCAAiC,yDAAyD;AACtG;AAEA,eAAe,eAAe,UAAmC;AAC/D,QAAM,QAAQ,IAAI,YAAY,EAAE,OAAO,QAAQ;AAC/C,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,OAAO,WAAW,KAAK;AACrE,WAAO,UAAU,WAAW,IAAI,WAAW,MAAM,CAAC,CAAC;AAAA,EACrD;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,UAAU,OAAO,WAAW,QAAQ,EAAE,OAAO,OAAO,KAAK,KAAK,CAAC,EAAE,OAAO,KAAK,CAAC;AAAA,EACvF;AACA,QAAM,IAAI,iCAAiC,qDAAqD;AAClG;AAEA,SAAS,WAAW,OAA2B;AAC7C,SAAO,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AAC7E;AAEA,SAAS,WAAW,KAAyB;AAC3C,QAAM,aAAa,OAAO,OAAO,EAAE,EAAE,KAAK,EAAE,YAAY;AACxD,MAAI,WAAW,SAAS,MAAM,KAAK,CAAC,cAAc,KAAK,UAAU,GAAG;AAClE,UAAM,IAAI,6BAA6B,wBAAwB;AAAA,EACjE;AACA,QAAM,QAAQ,IAAI,WAAW,WAAW,SAAS,CAAC;AAClD,WAAS,QAAQ,GAAG,QAAQ,WAAW,QAAQ,SAAS,GAAG;AACzD,UAAM,QAAQ,CAAC,IAAI,OAAO,SAAS,WAAW,MAAM,OAAO,QAAQ,CAAC,GAAG,EAAE;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,eAAe,mBAAmB,MAAc,OAAiC;AAC/E,QAAM,YAAY,WAAW,IAAI;AACjC,QAAM,aAAa,WAAW,KAAK;AACnC,MAAI,UAAU,WAAW,WAAW,QAAQ;AAC1C,WAAO;AAAA,EACT;AACA,MAAI,OAAO;AACX,WAAS,QAAQ,GAAG,QAAQ,UAAU,QAAQ,SAAS,GAAG;AACxD,YAAQ,UAAU,KAAK,IAAK,WAAW,KAAK;AAAA,EAC9C;AACA,SAAO,SAAS;AAClB;","names":[]}
+{"version":3,"sources":["../src/index.ts"],"sourcesContent":["export const DEFAULT_SIGLUME_API_BASE = \"https://siglume.com/v1\";\nexport const DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME = \"siglume-external-402-v1\";\n// Recurring (subscription / scheduled autopay) approval uses a DISTINCT scheme\n// with cadence bound into the HMAC, so a one-time checkout challenge can never\n// be replayed as a recurring authorization and vice versa.\nexport const DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME = \"siglume-external-402-recurring-v1\";\nexport const DIRECT_REQUEST_PAYMENT_MODE = \"external_402\";\nexport const DIRECT_REQUEST_PAYMENT_RECEIPT_KIND = \"sdrp_direct_payment\";\nexport const DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND = \"sdrp_direct_payment_allowance\";\nexport const DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE = \"sdrp_direct_payment_requirement\";\nexport const DEFAULT_WEBHOOK_TOLERANCE_SECONDS = 300;\n\nexport type DirectRequestPaymentCurrency = \"JPY\" | \"USD\";\nexport type DirectRequestPaymentToken = \"JPYC\" | \"USDC\";\n\nexport interface DirectRequestPaymentChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface ParsedDirectRequestPaymentChallenge {\n  scheme: string;\n  nonce: string;\n  signature: string;\n}\n\n/** \"monthly\" authorizes a Siglume-swept subscription; \"daily\" authorizes\n *  merchant-triggered scheduled autopay. It is an approval tag, not a\n *  run-count limiter. */\nexport type DirectRequestPaymentRecurringCadence = \"monthly\" | \"daily\";\n\nexport interface DirectRequestPaymentRecurringChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  cadence: DirectRequestPaymentRecurringCadence | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentRecurringChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  cadence: DirectRequestPaymentRecurringCadence;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface Web3TransactionRequest {\n  network?: string;\n  chain_id?: number;\n  from?: string;\n  to?: string;\n  data?: string;\n  value?: string | number;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectPaymentRequirement {\n  direct_payment_requirement_id: string;\n  requirement_id: string;\n  id: string;\n  mode: string;\n  merchant?: string | null;\n  challenge_hash?: string | null;\n  buyer_user_id: string;\n  agent_id?: string | null;\n  product_listing_id: string;\n  listing_id: string;\n  access_grant_id?: string | null;\n  capability_key: string;\n  requirement_hash: string;\n  request_hash: string;\n  siglume_signature: string;\n  token_symbol: string;\n  currency: string;\n  amount_minor: number;\n  fee_bps: number;\n  status: string;\n  expires_at?: string | null;\n  confirmed_at?: string | null;\n  spent_at?: string | null;\n  chain_receipt_id?: string | null;\n  transaction_request: Web3TransactionRequest;\n  approve_transaction_request?: Web3TransactionRequest | null;\n  buyer_confirmation?: string | null;\n  non_custodial: boolean;\n  metadata_jsonb?: Record<string, unknown>;\n  created_at?: string | null;\n  updated_at?: string | null;\n}\n\nexport interface DirectPaymentRequirementCreateInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n  token_symbol?: DirectRequestPaymentToken | string;\n  allowance_amount_minor?: number;\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectPaymentVerifyInput {\n  receipt_id?: string | null;\n  chain_receipt_id?: string | null;\n  await_finality?: boolean;\n  await_required_status?: string | null;\n  await_timeout_seconds?: number;\n  await_poll_seconds?: number;\n}\n\nexport interface Web3PreparedTransactionExecutePayload {\n  transaction_request: Web3TransactionRequest;\n  receipt_kind: string;\n  reference_type: typeof DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE;\n  reference_id: string;\n  metadata?: Record<string, unknown>;\n  await_finality?: boolean;\n}\n\nexport interface Web3PreparedTransactionExecuteResult {\n  receipt?: Record<string, unknown>;\n  finalization?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentClientOptions {\n  auth_token?: string;\n  base_url?: string;\n  fetch?: typeof fetch;\n  timeout_ms?: number;\n  user_agent?: string;\n}\n\nexport type DirectRequestPaymentBillingPlan = \"launch\" | \"free\" | \"starter\" | \"growth\" | \"pro\";\n\nexport interface DirectRequestPaymentMerchantAccount {\n  merchant_account_id: string;\n  merchant: string;\n  merchant_user_id: string;\n  user_wallet_id?: string | null;\n  billing_mandate_id?: string | null;\n  display_name?: string | null;\n  status?: string | null;\n  billing_status?: string | null;\n  billing_plan?: string | null;\n  billing_currency?: string | null;\n  token_symbol?: string | null;\n  monthly_fee_minor?: number | null;\n  settlement_fee_bps?: number | null;\n  settlement_fee_min_minor?: number | null;\n  included_monthly_payments?: number | null;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentMerchantSetupInput {\n  merchant: string;\n  display_name?: string;\n  billing_plan?: DirectRequestPaymentBillingPlan | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  allowed_currencies?: Record<string, string> | Array<DirectRequestPaymentCurrency | string>;\n  webhook_callback_url?: string;\n  billing_mandate_cap_minor?: number;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantBillingMandateInput {\n  currency?: DirectRequestPaymentCurrency | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantResponse {\n  merchant_account: DirectRequestPaymentMerchantAccount;\n  challenge_secret?: string | null;\n  challenge_secret_created?: boolean;\n  created?: boolean | null;\n  listing_id?: string | null;\n  mandate?: Record<string, unknown> | null;\n  next_steps?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscriptionInput {\n  callback_url: string;\n  description?: string;\n  event_types?: string[];\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscription {\n  webhook_subscription_id?: string;\n  subscription_id?: string;\n  id?: string;\n  callback_url?: string;\n  signing_secret?: string;\n  status?: string;\n  event_types?: string[];\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupInput extends DirectRequestPaymentMerchantSetupInput {\n  create_webhook_subscription?: boolean;\n  prepare_billing_mandate?: boolean;\n  webhook_event_types?: string[];\n  webhook_description?: string;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupResult {\n  merchant: DirectRequestPaymentMerchantResponse;\n  billing_mandate?: DirectRequestPaymentMerchantResponse | null;\n  webhook_subscription?: DirectRequestPaymentWebhookSubscription | null;\n  env: Record<string, string>;\n}\n\nexport interface SiglumeEnvelopeMeta {\n  request_id?: string | null;\n  trace_id?: string | null;\n  [key: string]: unknown;\n}\n\nexport interface WebhookSignatureVerification {\n  timestamp: number;\n  signature: string;\n}\n\nexport interface DirectRequestPaymentWebhookEvent {\n  id: string;\n  type: \"direct_payment.confirmed\" | string;\n  api_version: string;\n  occurred_at: string;\n  data: {\n    mode?: string;\n    merchant?: string;\n    direct_payment_requirement_id?: string;\n    requirement_id?: string;\n    challenge_hash?: string;\n    amount_minor?: number;\n    currency?: string;\n    token_symbol?: string;\n    status?: string;\n    [key: string]: unknown;\n  };\n  [key: string]: unknown;\n}\n\nexport class SiglumeDirectRequestPaymentError extends Error {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeDirectRequestPaymentError\";\n  }\n}\n\nexport class SiglumeApiError extends SiglumeDirectRequestPaymentError {\n  readonly status: number;\n  readonly code: string;\n  readonly data: unknown;\n\n  constructor(message: string, options: { status: number; code?: string; data?: unknown }) {\n    super(message);\n    this.name = \"SiglumeApiError\";\n    this.status = options.status;\n    this.code = options.code ?? \"SIGLUME_API_ERROR\";\n    this.data = options.data;\n  }\n}\n\nexport class SiglumeWebhookSignatureError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookSignatureError\";\n  }\n}\n\nexport class SiglumeWebhookPayloadError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookPayloadError\";\n  }\n}\n\nexport class DirectRequestPaymentClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A buyer Siglume bearer token is required for Direct Request Payment API calls. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.6\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async createPaymentRequirement(input: DirectPaymentRequirementCreateInput): Promise<DirectPaymentRequirement> {\n    const payload: Record<string, unknown> = {\n      mode: DIRECT_REQUEST_PAYMENT_MODE,\n      merchant: normalizeMerchant(input.merchant),\n      amount_minor: positiveInteger(input.amount_minor, \"amount_minor\"),\n      currency: normalizeCurrency(input.currency),\n      challenge: requireNonEmpty(input.challenge, \"challenge\"),\n    };\n    if (input.token_symbol !== undefined) {\n      payload.token_symbol = normalizeToken(input.token_symbol);\n    }\n    if (input.allowance_amount_minor !== undefined) {\n      payload.allowance_amount_minor = positiveInteger(input.allowance_amount_minor, \"allowance_amount_minor\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectPaymentRequirement>(\"POST\", \"/sdrp/direct-payments/requirements\", payload);\n  }\n\n  async getPaymentRequirement(requirement_id: string): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"GET\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}`,\n    );\n  }\n\n  async verifyPaymentRequirement(\n    requirement_id: string,\n    input: DirectPaymentVerifyInput,\n  ): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"POST\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}/verify`,\n      input,\n    );\n  }\n\n  async executePreparedTransaction(\n    payload: Web3PreparedTransactionExecutePayload,\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.request<Web3PreparedTransactionExecuteResult>(\n      \"POST\",\n      \"/market/web3/transactions/execute-prepared\",\n      payload,\n    );\n  }\n\n  async executePaymentTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildPaymentExecutionPayload(requirement, options));\n  }\n\n  async executeAllowanceTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildAllowanceExecutionPayload(requirement, options));\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport class DirectRequestPaymentMerchantClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_MERCHANT_AUTH_TOKEN\") ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A merchant Siglume bearer token is required for Direct Request Payment merchant setup. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.6\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async setupMerchant(input: DirectRequestPaymentMerchantSetupInput): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {\n      merchant: normalizeSelfServiceMerchant(input.merchant),\n      billing_plan: normalizeBillingPlan(input.billing_plan ?? \"launch\"),\n      billing_currency: normalizeCurrency(input.billing_currency ?? \"JPY\"),\n    };\n    if (input.display_name !== undefined) {\n      payload.display_name = requireNonEmpty(input.display_name, \"display_name\");\n    }\n    if (input.allowed_currencies !== undefined) {\n      payload.allowed_currencies = normalizeAllowedCurrencies(input.allowed_currencies);\n    }\n    if (input.webhook_callback_url !== undefined) {\n      payload.webhook_callback_url = requireNonEmpty(input.webhook_callback_url, \"webhook_callback_url\");\n    }\n    if (input.billing_mandate_cap_minor !== undefined) {\n      payload.billing_mandate_cap_minor = positiveInteger(input.billing_mandate_cap_minor, \"billing_mandate_cap_minor\");\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\"POST\", \"/sdrp/direct-payments/merchants\", payload);\n  }\n\n  async getMerchant(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"GET\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}`,\n    );\n  }\n\n  async rotateChallengeSecret(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/challenge-secret/rotate`,\n    );\n  }\n\n  async prepareBillingMandate(\n    merchant: string,\n    input: DirectRequestPaymentMerchantBillingMandateInput = {},\n  ): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {};\n    if (input.currency !== undefined) {\n      payload.currency = normalizeCurrency(input.currency);\n    }\n    if (input.billing_currency !== undefined) {\n      payload.billing_currency = normalizeCurrency(input.billing_currency);\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/billing-mandate`,\n      payload,\n    );\n  }\n\n  async createWebhookSubscription(\n    input: DirectRequestPaymentWebhookSubscriptionInput,\n  ): Promise<DirectRequestPaymentWebhookSubscription> {\n    const payload: Record<string, unknown> = {\n      callback_url: requireNonEmpty(input.callback_url, \"callback_url\"),\n      event_types: input.event_types?.length\n        ? input.event_types.map((eventType) => requireNonEmpty(eventType, \"event_type\"))\n        : [\"direct_payment.confirmed\", \"direct_payment.spent\"],\n    };\n    if (input.description !== undefined) {\n      payload.description = requireNonEmpty(input.description, \"description\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectRequestPaymentWebhookSubscription>(\"POST\", \"/market/webhooks/subscriptions\", payload);\n  }\n\n  async setupCheckout(input: DirectRequestPaymentCheckoutSetupInput): Promise<DirectRequestPaymentCheckoutSetupResult> {\n    const merchant = await this.setupMerchant(input);\n    const merchantKey = merchant.merchant_account.merchant;\n    const billing_mandate = input.prepare_billing_mandate === false\n      ? null\n      : await this.prepareBillingMandate(merchantKey, {\n        billing_currency: merchant.merchant_account.billing_currency ?? input.billing_currency ?? \"JPY\",\n        max_amount_minor: input.max_amount_minor ?? input.billing_mandate_cap_minor,\n      });\n    const shouldCreateWebhook = input.create_webhook_subscription ?? Boolean(input.webhook_callback_url);\n    const webhook_subscription = shouldCreateWebhook && input.webhook_callback_url\n      ? await this.createWebhookSubscription({\n        callback_url: input.webhook_callback_url,\n        description: input.webhook_description ?? `${merchantKey} Direct Request Payment`,\n        event_types: input.webhook_event_types,\n        metadata: { merchant: merchantKey, sdk: \"@siglume/direct-request-payment\" },\n      })\n      : null;\n    const env: Record<string, string> = {\n      SIGLUME_DIRECT_PAYMENT_MERCHANT: merchantKey,\n    };\n    if (merchant.challenge_secret) {\n      env.SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET = merchant.challenge_secret;\n    }\n    const webhookSecret = stringOrNull(webhook_subscription?.signing_secret);\n    if (webhookSecret) {\n      env.SIGLUME_WEBHOOK_SECRET = webhookSecret;\n    }\n    return { merchant, billing_mandate, webhook_subscription, env };\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport async function createDirectRequestPaymentChallenge(\n  input: DirectRequestPaymentChallengeInput,\n): Promise<DirectRequestPaymentChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  const material = `${merchant}:${amount}:${currency}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport function parseDirectRequestPaymentChallenge(challenge: string): ParsedDirectRequestPaymentChallenge {\n  const parts = requireNonEmpty(challenge, \"challenge\").split(\":\");\n  if (parts.length !== 3) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge must be scheme:nonce:signature.\");\n  }\n  const [scheme, nonce, signature] = parts;\n  if (!scheme || !nonce || !signature) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge is incomplete.\");\n  }\n  return { scheme, nonce, signature };\n}\n\n/** Merchant-side, ONE-TIME approval of a recurring authorization: amount +\n *  currency + cadence are bound into the HMAC. Recurring charges afterwards\n *  are deliberately challenge-free; the recurring authorization and the\n *  buyer's mandate/budget caps are the per-charge integrity checks. Cadence\n *  \"monthly\" = subscription, \"daily\" = scheduled autopay approval tag. */\nexport async function createDirectRequestPaymentRecurringChallenge(\n  input: DirectRequestPaymentRecurringChallengeInput,\n): Promise<DirectRequestPaymentRecurringChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentRecurringChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentRecurringChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  // MUST stay byte-identical to the server's\n  // _external_402_recurring_challenge_signature — both sides change together.\n  const material = `${merchant}:${amount}:${currency}:${cadence}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport async function verifyDirectRequestPaymentRecurringChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentRecurringChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    cadence: input.cadence,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function verifyDirectRequestPaymentChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function directRequestPaymentChallengeHash(challenge: string): Promise<string> {\n  return sha256Prefixed(requireNonEmpty(challenge, \"challenge\"));\n}\n\nexport async function directRequestPaymentRequestHash(input: {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n}): Promise<string> {\n  const material = `${normalizeMerchant(input.merchant)}${positiveInteger(input.amount_minor, \"amount_minor\")}${normalizeCurrency(input.currency)}${requireNonEmpty(input.challenge, \"challenge\")}`;\n  return sha256Prefixed(material);\n}\n\nexport function buildPaymentExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  return buildPreparedTransactionExecutionPayload(requirement, requirement.transaction_request, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildAllowanceExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  const approveRequest = requirement.approve_transaction_request;\n  if (!approveRequest || Object.keys(approveRequest).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"This payment requirement does not include an allowance approval transaction.\");\n  }\n  return buildPreparedTransactionExecutionPayload(requirement, approveRequest, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildPreparedTransactionExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  transaction_request: Web3TransactionRequest,\n  options: {\n    receipt_kind: string;\n    await_finality?: boolean;\n    metadata?: Record<string, unknown>;\n  },\n): Web3PreparedTransactionExecutePayload {\n  const metadata = {\n    ...(isRecord(transaction_request.metadata_jsonb) ? transaction_request.metadata_jsonb : {}),\n    ...(options.metadata ?? {}),\n  };\n  return {\n    transaction_request,\n    receipt_kind: requireNonEmpty(options.receipt_kind, \"receipt_kind\"),\n    reference_type: DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE,\n    reference_id: requirement.requirement_id,\n    metadata,\n    await_finality: Boolean(options.await_finality),\n  };\n}\n\nexport async function computeWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp: number },\n): Promise<string> {\n  if (!signing_secret) {\n    throw new SiglumeWebhookSignatureError(\"SIGLUME webhook signing secret is required.\");\n  }\n  const timestamp = Math.trunc(options.timestamp);\n  const bytes = bodyBytes(body);\n  const prefix = new TextEncoder().encode(`${timestamp}.`);\n  const payload = new Uint8Array(prefix.length + bytes.length);\n  payload.set(prefix, 0);\n  payload.set(bytes, prefix.length);\n  return hmacSha256Hex(signing_secret, payload);\n}\n\nexport async function buildWebhookSignatureHeader(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp?: number } = {},\n): Promise<string> {\n  const timestamp = Math.trunc(options.timestamp ?? Date.now() / 1000);\n  const signature = await computeWebhookSignature(signing_secret, body, { timestamp });\n  return `t=${timestamp},v1=${signature}`;\n}\n\nexport async function verifyWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<WebhookSignatureVerification> {\n  const { timestamp, signature } = parseSignatureHeader(signature_header);\n  const toleranceSeconds = Math.max(1, Math.trunc(options.tolerance_seconds ?? DEFAULT_WEBHOOK_TOLERANCE_SECONDS));\n  const nowSeconds = Math.trunc(options.now ?? Date.now() / 1000);\n  if (Math.abs(nowSeconds - timestamp) > toleranceSeconds) {\n    throw new SiglumeWebhookSignatureError(\"Webhook timestamp is outside the allowed tolerance window.\");\n  }\n  const expected = await computeWebhookSignature(signing_secret, body, { timestamp });\n  if (!(await timingSafeEqualHex(expected, signature))) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature did not match.\");\n  }\n  return { timestamp, signature };\n}\n\nexport function parseDirectRequestPaymentWebhookEvent(payload: unknown): DirectRequestPaymentWebhookEvent {\n  const event = requireRecord(payload, \"webhook event\");\n  const data = requireRecord(event.data, \"webhook event data\");\n  const parsed = {\n    ...event,\n    id: requireNonEmpty(stringOrNull(event.id) ?? \"\", \"webhook event id\"),\n    type: requireNonEmpty(stringOrNull(event.type) ?? \"\", \"webhook event type\"),\n    api_version: requireNonEmpty(stringOrNull(event.api_version) ?? \"\", \"webhook api_version\"),\n    occurred_at: requireNonEmpty(stringOrNull(event.occurred_at) ?? \"\", \"webhook occurred_at\"),\n    data: { ...data },\n  } as DirectRequestPaymentWebhookEvent;\n  if (parsed.type === \"direct_payment.confirmed\" && parsed.data.mode !== DIRECT_REQUEST_PAYMENT_MODE) {\n    throw new SiglumeWebhookPayloadError(\"direct_payment.confirmed webhook must carry data.mode='external_402'.\");\n  }\n  return parsed;\n}\n\nexport async function verifyDirectRequestPaymentWebhook(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<{ event: DirectRequestPaymentWebhookEvent; verification: WebhookSignatureVerification }> {\n  const verification = await verifyWebhookSignature(signing_secret, body, signature_header, options);\n  const text = new TextDecoder().decode(bodyBytes(body));\n  let parsed: unknown;\n  try {\n    parsed = JSON.parse(text);\n  } catch (error) {\n    throw new SiglumeWebhookPayloadError(\"Webhook body must contain valid JSON.\");\n  }\n  return { event: parseDirectRequestPaymentWebhookEvent(parsed), verification };\n}\n\nexport const createExternal402Challenge = createDirectRequestPaymentChallenge;\nexport const verifyExternal402Challenge = verifyDirectRequestPaymentChallenge;\nexport const createExternal402RecurringChallenge = createDirectRequestPaymentRecurringChallenge;\nexport const verifyExternal402RecurringChallenge = verifyDirectRequestPaymentRecurringChallenge;\n\nfunction normalizeMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9._-]{0,95}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be a lowercase key using letters, numbers, dot, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeSelfServiceMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9_-]{2,63}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be 3-64 chars using lowercase letters, numbers, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeBillingPlan(value: string): DirectRequestPaymentBillingPlan {\n  const plan = requireNonEmpty(value, \"billing_plan\").toLowerCase();\n  if (plan === \"launch\" || plan === \"free\" || plan === \"starter\" || plan === \"growth\" || plan === \"pro\") {\n    return plan;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"billing_plan must be launch, starter, growth, or pro.\");\n}\n\nfunction normalizeCurrency(value: string): DirectRequestPaymentCurrency {\n  const currency = requireNonEmpty(value, \"currency\").toUpperCase();\n  if (currency !== \"JPY\" && currency !== \"USD\") {\n    throw new SiglumeDirectRequestPaymentError(\"currency must be JPY or USD.\");\n  }\n  return currency;\n}\n\nfunction normalizeToken(value: string): DirectRequestPaymentToken {\n  const token = requireNonEmpty(value, \"token_symbol\").toUpperCase();\n  if (token !== \"JPYC\" && token !== \"USDC\") {\n    throw new SiglumeDirectRequestPaymentError(\"token_symbol must be JPYC or USDC.\");\n  }\n  return token;\n}\n\nfunction normalizeAllowedCurrencies(value: Record<string, string> | Array<DirectRequestPaymentCurrency | string>): Record<string, string> {\n  const normalized: Record<string, string> = {};\n  if (Array.isArray(value)) {\n    for (const item of value) {\n      const currency = normalizeCurrency(item);\n      normalized[currency] = defaultTokenForCurrency(currency);\n    }\n  } else if (isRecord(value)) {\n    for (const [rawCurrency, rawToken] of Object.entries(value)) {\n      normalized[normalizeCurrency(rawCurrency)] = normalizeToken(String(rawToken));\n    }\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must be an array or a currency-to-token object.\");\n  }\n  if (Object.keys(normalized).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must include at least one currency.\");\n  }\n  return normalized;\n}\n\nfunction defaultTokenForCurrency(currency: DirectRequestPaymentCurrency): DirectRequestPaymentToken {\n  return currency === \"JPY\" ? \"JPYC\" : \"USDC\";\n}\n\nfunction positiveInteger(value: number, name: string): number {\n  const parsed = Number(value);\n  if (!Number.isSafeInteger(parsed) || parsed <= 0) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a positive safe integer.`);\n  }\n  return parsed;\n}\n\nfunction requireNonEmpty(value: string, name: string): string {\n  const text = String(value ?? \"\").trim();\n  if (!text) {\n    throw new SiglumeDirectRequestPaymentError(`${name} is required.`);\n  }\n  return text;\n}\n\nfunction normalizeChallengeNonce(value: string): string {\n  const nonce = requireNonEmpty(value, \"nonce\");\n  if (nonce.includes(\":\")) {\n    throw new SiglumeDirectRequestPaymentError(\"nonce must not contain ':'.\");\n  }\n  return nonce;\n}\n\nfunction normalizeRecurringCadence(value: string): DirectRequestPaymentRecurringCadence {\n  const cadence = requireNonEmpty(value, \"cadence\").toLowerCase();\n  if (cadence !== \"monthly\" && cadence !== \"daily\") {\n    throw new SiglumeDirectRequestPaymentError(\n      'cadence must be \"monthly\" (subscription) or \"daily\" (scheduled autopay).',\n    );\n  }\n  return cadence;\n}\n\nfunction cloneJsonObject(value: Record<string, unknown>, name: string): Record<string, unknown> {\n  try {\n    const cloned = JSON.parse(JSON.stringify(value)) as unknown;\n    if (!isRecord(cloned)) {\n      throw new Error(\"not an object\");\n    }\n    return cloned;\n  } catch (error) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a JSON-serializable object.`);\n  }\n}\n\nfunction parseJson(rawText: string): unknown {\n  try {\n    return JSON.parse(rawText);\n  } catch (error) {\n    throw new SiglumeApiError(\"Siglume API returned invalid JSON.\", {\n      status: 502,\n      code: \"INVALID_JSON_RESPONSE\",\n      data: rawText,\n    });\n  }\n}\n\nfunction stringOrNull(value: unknown): string | null {\n  if (typeof value !== \"string\") {\n    return null;\n  }\n  const text = value.trim();\n  return text ? text : null;\n}\n\nfunction isRecord(value: unknown): value is Record<string, unknown> {\n  return typeof value === \"object\" && value !== null && !Array.isArray(value);\n}\n\nfunction requireRecord(value: unknown, name: string): Record<string, unknown> {\n  if (!isRecord(value)) {\n    throw new SiglumeWebhookPayloadError(`${name} must be an object.`);\n  }\n  return value;\n}\n\nfunction envValue(name: string): string | undefined {\n  if (typeof process === \"undefined\") {\n    return undefined;\n  }\n  const value = process.env[name];\n  return value && value.trim() ? value.trim() : undefined;\n}\n\nfunction bodyBytes(body: Uint8Array | ArrayBuffer | string | Record<string, unknown>): Uint8Array {\n  if (body instanceof Uint8Array) {\n    return body;\n  }\n  if (body instanceof ArrayBuffer) {\n    return new Uint8Array(body);\n  }\n  if (typeof body === \"string\") {\n    return new TextEncoder().encode(body);\n  }\n  if (isRecord(body)) {\n    return new TextEncoder().encode(JSON.stringify(body));\n  }\n  throw new SiglumeWebhookPayloadError(\"Webhook body must be raw bytes, a string, or a JSON object.\");\n}\n\nfunction parseSignatureHeader(signatureHeader: string): { timestamp: number; signature: string } {\n  let timestamp: number | null = null;\n  let signature: string | null = null;\n  for (const item of String(signatureHeader ?? \"\").split(\",\")) {\n    const [key, value] = item.trim().split(\"=\", 2);\n    if (key === \"t\") {\n      const parsed = Number.parseInt(value ?? \"\", 10);\n      if (!Number.isFinite(parsed)) {\n        throw new SiglumeWebhookSignatureError(\"Webhook signature timestamp is invalid.\");\n      }\n      timestamp = parsed;\n    }\n    if (key === \"v1\") {\n      signature = String(value ?? \"\").trim();\n    }\n  }\n  if (timestamp === null || !signature) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature header is incomplete.\");\n  }\n  return { timestamp, signature };\n}\n\nasync function randomNonce(): Promise<string> {\n  if (globalThis.crypto?.randomUUID) {\n    return globalThis.crypto.randomUUID();\n  }\n  const bytes = new Uint8Array(16);\n  if (globalThis.crypto?.getRandomValues) {\n    globalThis.crypto.getRandomValues(bytes);\n  } else if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    bytes.set(crypto.randomBytes(16));\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"Crypto random number generation is unavailable in this runtime.\");\n  }\n  return bytesToHex(bytes);\n}\n\nasync function hmacSha256Hex(secret: string, payload: Uint8Array): Promise<string> {\n  if (globalThis.crypto?.subtle) {\n    const stablePayload = new Uint8Array(payload.byteLength);\n    stablePayload.set(payload);\n    const key = await globalThis.crypto.subtle.importKey(\n      \"raw\",\n      new TextEncoder().encode(secret),\n      { name: \"HMAC\", hash: \"SHA-256\" },\n      false,\n      [\"sign\"],\n    );\n    const digest = await globalThis.crypto.subtle.sign(\"HMAC\", key, stablePayload);\n    return bytesToHex(new Uint8Array(digest));\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return crypto.createHmac(\"sha256\", secret).update(Buffer.from(payload)).digest(\"hex\");\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for HMAC-SHA256 in this runtime.\");\n}\n\nasync function sha256Prefixed(material: string): Promise<string> {\n  const bytes = new TextEncoder().encode(material);\n  if (globalThis.crypto?.subtle) {\n    const digest = await globalThis.crypto.subtle.digest(\"SHA-256\", bytes);\n    return `sha256:${bytesToHex(new Uint8Array(digest))}`;\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return `sha256:${crypto.createHash(\"sha256\").update(Buffer.from(bytes)).digest(\"hex\")}`;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for SHA-256 in this runtime.\");\n}\n\nfunction bytesToHex(bytes: Uint8Array): string {\n  return [...bytes].map((item) => item.toString(16).padStart(2, \"0\")).join(\"\");\n}\n\nfunction hexToBytes(hex: string): Uint8Array {\n  const normalized = String(hex ?? \"\").trim().toLowerCase();\n  if (normalized.length % 2 !== 0 || !/^[0-9a-f]*$/.test(normalized)) {\n    throw new SiglumeWebhookSignatureError(\"Hex digest is invalid.\");\n  }\n  const bytes = new Uint8Array(normalized.length / 2);\n  for (let index = 0; index < normalized.length; index += 2) {\n    bytes[index / 2] = Number.parseInt(normalized.slice(index, index + 2), 16);\n  }\n  return bytes;\n}\n\nasync function timingSafeEqualHex(left: string, right: string): Promise<boolean> {\n  const leftBytes = hexToBytes(left);\n  const rightBytes = hexToBytes(right);\n  if (leftBytes.length !== rightBytes.length) {\n    return false;\n  }\n  let diff = 0;\n  for (let index = 0; index < leftBytes.length; index += 1) {\n    diff |= leftBytes[index]! ^ rightBytes[index]!;\n  }\n  return diff === 0;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAO,IAAM,2BAA2B;AACjC,IAAM,0CAA0C;AAIhD,IAAM,oDAAoD;AAC1D,IAAM,8BAA8B;AACpC,IAAM,sCAAsC;AAC5C,IAAM,gDAAgD;AACtD,IAAM,wCAAwC;AAC9C,IAAM,oCAAoC;AA+P1C,IAAM,mCAAN,cAA+C,MAAM;AAAA,EAC1D,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,kBAAN,cAA8B,iCAAiC;AAAA,EAC3D;AAAA,EACA;AAAA,EACA;AAAA,EAET,YAAY,SAAiB,SAA4D;AACvF,UAAM,OAAO;AACb,SAAK,OAAO;AACZ,SAAK,SAAS,QAAQ;AACtB,SAAK,OAAO,QAAQ,QAAQ;AAC5B,SAAK,OAAO,QAAQ;AAAA,EACtB;AACF;AAEO,IAAM,+BAAN,cAA2C,iCAAiC;AAAA,EACjF,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,cAAyC,iCAAiC;AAAA,EAC/E,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,MAAiC;AAAA,EAC7B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,oBAAoB;AACrE,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,yBAAyB,OAA+E;AAC5G,UAAM,UAAmC;AAAA,MACvC,MAAM;AAAA,MACN,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,WAAW,gBAAgB,MAAM,WAAW,WAAW;AAAA,IACzD;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,eAAe,MAAM,YAAY;AAAA,IAC1D;AACA,QAAI,MAAM,2BAA2B,QAAW;AAC9C,cAAQ,yBAAyB,gBAAgB,MAAM,wBAAwB,wBAAwB;AAAA,IACzG;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAkC,QAAQ,sCAAsC,OAAO;AAAA,EACrG;AAAA,EAEA,MAAM,sBAAsB,gBAA2D;AACrF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,IAC7G;AAAA,EACF;AAAA,EAEA,MAAM,yBACJ,gBACA,OACmC;AACnC,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,MAC3G;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,2BACJ,SAC+C;AAC/C,WAAO,KAAK;AAAA,MACV;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,6BAA6B,aAAa,OAAO,CAAC;AAAA,EAC3F;AAAA,EAEA,MAAM,4BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,+BAA+B,aAAa,OAAO,CAAC;AAAA,EAC7F;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEO,IAAM,qCAAN,MAAyC;AAAA,EACrC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,6BAA6B,KAAK,SAAS,oBAAoB;AAChH,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,cAAc,OAA8F;AAChH,UAAM,UAAmC;AAAA,MACvC,UAAU,6BAA6B,MAAM,QAAQ;AAAA,MACrD,cAAc,qBAAqB,MAAM,gBAAgB,QAAQ;AAAA,MACjE,kBAAkB,kBAAkB,MAAM,oBAAoB,KAAK;AAAA,IACrE;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,gBAAgB,MAAM,cAAc,cAAc;AAAA,IAC3E;AACA,QAAI,MAAM,uBAAuB,QAAW;AAC1C,cAAQ,qBAAqB,2BAA2B,MAAM,kBAAkB;AAAA,IAClF;AACA,QAAI,MAAM,yBAAyB,QAAW;AAC5C,cAAQ,uBAAuB,gBAAgB,MAAM,sBAAsB,sBAAsB;AAAA,IACnG;AACA,QAAI,MAAM,8BAA8B,QAAW;AACjD,cAAQ,4BAA4B,gBAAgB,MAAM,2BAA2B,2BAA2B;AAAA,IAClH;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK,QAA8C,QAAQ,mCAAmC,OAAO;AAAA,EAC9G;AAAA,EAEA,MAAM,YAAY,UAAiE;AACjF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBAAsB,UAAiE;AAC3F,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBACJ,UACA,QAAyD,CAAC,GACX;AAC/C,UAAM,UAAmC,CAAC;AAC1C,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,kBAAkB,MAAM,QAAQ;AAAA,IACrD;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,kBAAkB,MAAM,gBAAgB;AAAA,IACrE;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,MAC7F;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,OACkD;AAClD,UAAM,UAAmC;AAAA,MACvC,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,aAAa,MAAM,aAAa,SAC5B,MAAM,YAAY,IAAI,CAAC,cAAc,gBAAgB,WAAW,YAAY,CAAC,IAC7E,CAAC,4BAA4B,sBAAsB;AAAA,IACzD;AACA,QAAI,MAAM,gBAAgB,QAAW;AACnC,cAAQ,cAAc,gBAAgB,MAAM,aAAa,aAAa;AAAA,IACxE;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAiD,QAAQ,kCAAkC,OAAO;AAAA,EAChH;AAAA,EAEA,MAAM,cAAc,OAAiG;AACnH,UAAM,WAAW,MAAM,KAAK,cAAc,KAAK;AAC/C,UAAM,cAAc,SAAS,iBAAiB;AAC9C,UAAM,kBAAkB,MAAM,4BAA4B,QACtD,OACA,MAAM,KAAK,sBAAsB,aAAa;AAAA,MAC9C,kBAAkB,SAAS,iBAAiB,oBAAoB,MAAM,oBAAoB;AAAA,MAC1F,kBAAkB,MAAM,oBAAoB,MAAM;AAAA,IACpD,CAAC;AACH,UAAM,sBAAsB,MAAM,+BAA+B,QAAQ,MAAM,oBAAoB;AACnG,UAAM,uBAAuB,uBAAuB,MAAM,uBACtD,MAAM,KAAK,0BAA0B;AAAA,MACrC,cAAc,MAAM;AAAA,MACpB,aAAa,MAAM,uBAAuB,GAAG,WAAW;AAAA,MACxD,aAAa,MAAM;AAAA,MACnB,UAAU,EAAE,UAAU,aAAa,KAAK,kCAAkC;AAAA,IAC5E,CAAC,IACC;AACJ,UAAM,MAA8B;AAAA,MAClC,iCAAiC;AAAA,IACnC;AACA,QAAI,SAAS,kBAAkB;AAC7B,UAAI,0CAA0C,SAAS;AAAA,IACzD;AACA,UAAM,gBAAgB,aAAa,sBAAsB,cAAc;AACvE,QAAI,eAAe;AACjB,UAAI,yBAAyB;AAAA,IAC/B;AACA,WAAO,EAAE,UAAU,iBAAiB,sBAAsB,IAAI;AAAA,EAChE;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEA,eAAsB,oCACpB,OACwC;AACxC,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,6CAA6C,MAAM,QAAQ;AAAA,IACjF;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,uCAAuC,IAAI,KAAK,IAAI,SAAS;AAClF,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,6CACpB,QACA,OAMiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AACjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,KAAK;AAC3D,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEO,SAAS,mCAAmC,WAAwD;AACzG,QAAM,QAAQ,gBAAgB,WAAW,WAAW,EAAE,MAAM,GAAG;AAC/D,MAAI,MAAM,WAAW,GAAG;AACtB,UAAM,IAAI,iCAAiC,kEAAkE;AAAA,EAC/G;AACA,QAAM,CAAC,QAAQ,OAAO,SAAS,IAAI;AACnC,MAAI,CAAC,UAAU,CAAC,SAAS,CAAC,WAAW;AACnC,UAAM,IAAI,iCAAiC,iDAAiD;AAAA,EAC9F;AACA,SAAO,EAAE,QAAQ,OAAO,UAAU;AACpC;AAOA,eAAsB,6CACpB,OACiD;AACjD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,sDAAsD,MAAM,QAAQ;AAAA,IAC1F;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,iDAAiD,IAAI,KAAK,IAAI,SAAS;AAC5F,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,sDACpB,QACA,OAOiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AAGjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,OAAO,IAAI,KAAK;AACtE,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEA,eAAsB,6CACpB,QACA,OAOkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,mDAAmD;AACvE,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,sDAAsD,QAAQ;AAAA,IACnF,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,SAAS,MAAM;AAAA,IACf,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,oCACpB,QACA,OAMkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,yCAAyC;AAC7D,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,6CAA6C,QAAQ;AAAA,IAC1E,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,kCAAkC,WAAoC;AAC1F,SAAO,eAAe,gBAAgB,WAAW,WAAW,CAAC;AAC/D;AAEA,eAAsB,gCAAgC,OAKlC;AAClB,QAAM,WAAW,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,cAAc,cAAc,CAAC,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,WAAW,WAAW,CAAC;AAC/L,SAAO,eAAe,QAAQ;AAChC;AAEO,SAAS,6BACd,aACA,UAA4E,CAAC,GACtC;AACvC,SAAO,yCAAyC,aAAa,YAAY,qBAAqB;AAAA,IAC5F,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,+BACd,aACA,UAA4E,CAAC,GACtC;AACvC,QAAM,iBAAiB,YAAY;AACnC,MAAI,CAAC,kBAAkB,OAAO,KAAK,cAAc,EAAE,WAAW,GAAG;AAC/D,UAAM,IAAI,iCAAiC,8EAA8E;AAAA,EAC3H;AACA,SAAO,yCAAyC,aAAa,gBAAgB;AAAA,IAC3E,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,yCACd,aACA,qBACA,SAKuC;AACvC,QAAM,WAAW;AAAA,IACf,GAAI,SAAS,oBAAoB,cAAc,IAAI,oBAAoB,iBAAiB,CAAC;AAAA,IACzF,GAAI,QAAQ,YAAY,CAAC;AAAA,EAC3B;AACA,SAAO;AAAA,IACL;AAAA,IACA,cAAc,gBAAgB,QAAQ,cAAc,cAAc;AAAA,IAClE,gBAAgB;AAAA,IAChB,cAAc,YAAY;AAAA,IAC1B;AAAA,IACA,gBAAgB,QAAQ,QAAQ,cAAc;AAAA,EAChD;AACF;AAEA,eAAsB,wBACpB,gBACA,MACA,SACiB;AACjB,MAAI,CAAC,gBAAgB;AACnB,UAAM,IAAI,6BAA6B,6CAA6C;AAAA,EACtF;AACA,QAAM,YAAY,KAAK,MAAM,QAAQ,SAAS;AAC9C,QAAM,QAAQ,UAAU,IAAI;AAC5B,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG,SAAS,GAAG;AACvD,QAAM,UAAU,IAAI,WAAW,OAAO,SAAS,MAAM,MAAM;AAC3D,UAAQ,IAAI,QAAQ,CAAC;AACrB,UAAQ,IAAI,OAAO,OAAO,MAAM;AAChC,SAAO,cAAc,gBAAgB,OAAO;AAC9C;AAEA,eAAsB,4BACpB,gBACA,MACA,UAAkC,CAAC,GAClB;AACjB,QAAM,YAAY,KAAK,MAAM,QAAQ,aAAa,KAAK,IAAI,IAAI,GAAI;AACnE,QAAM,YAAY,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AACnF,SAAO,KAAK,SAAS,OAAO,SAAS;AACvC;AAEA,eAAsB,uBACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GAClB;AACvC,QAAM,EAAE,WAAW,UAAU,IAAI,qBAAqB,gBAAgB;AACtE,QAAM,mBAAmB,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,qBAAqB,iCAAiC,CAAC;AAC/G,QAAM,aAAa,KAAK,MAAM,QAAQ,OAAO,KAAK,IAAI,IAAI,GAAI;AAC9D,MAAI,KAAK,IAAI,aAAa,SAAS,IAAI,kBAAkB;AACvD,UAAM,IAAI,6BAA6B,4DAA4D;AAAA,EACrG;AACA,QAAM,WAAW,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AAClF,MAAI,CAAE,MAAM,mBAAmB,UAAU,SAAS,GAAI;AACpD,UAAM,IAAI,6BAA6B,kCAAkC;AAAA,EAC3E;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEO,SAAS,sCAAsC,SAAoD;AACxG,QAAM,QAAQ,cAAc,SAAS,eAAe;AACpD,QAAM,OAAO,cAAc,MAAM,MAAM,oBAAoB;AAC3D,QAAM,SAAS;AAAA,IACb,GAAG;AAAA,IACH,IAAI,gBAAgB,aAAa,MAAM,EAAE,KAAK,IAAI,kBAAkB;AAAA,IACpE,MAAM,gBAAgB,aAAa,MAAM,IAAI,KAAK,IAAI,oBAAoB;AAAA,IAC1E,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,MAAM,EAAE,GAAG,KAAK;AAAA,EAClB;AACA,MAAI,OAAO,SAAS,8BAA8B,OAAO,KAAK,SAAS,6BAA6B;AAClG,UAAM,IAAI,2BAA2B,uEAAuE;AAAA,EAC9G;AACA,SAAO;AACT;AAEA,eAAsB,kCACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GACyC;AAClG,QAAM,eAAe,MAAM,uBAAuB,gBAAgB,MAAM,kBAAkB,OAAO;AACjG,QAAM,OAAO,IAAI,YAAY,EAAE,OAAO,UAAU,IAAI,CAAC;AACrD,MAAI;AACJ,MAAI;AACF,aAAS,KAAK,MAAM,IAAI;AAAA,EAC1B,SAAS,OAAO;AACd,UAAM,IAAI,2BAA2B,uCAAuC;AAAA,EAC9E;AACA,SAAO,EAAE,OAAO,sCAAsC,MAAM,GAAG,aAAa;AAC9E;AAEO,IAAM,6BAA6B;AACnC,IAAM,6BAA6B;AACnC,IAAM,sCAAsC;AAC5C,IAAM,sCAAsC;AAEnD,SAAS,kBAAkB,OAAuB;AAChD,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,8BAA8B,KAAK,QAAQ,GAAG;AACjD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,6BAA6B,OAAuB;AAC3D,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,6BAA6B,KAAK,QAAQ,GAAG;AAChD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,qBAAqB,OAAgD;AAC5E,QAAM,OAAO,gBAAgB,OAAO,cAAc,EAAE,YAAY;AAChE,MAAI,SAAS,YAAY,SAAS,UAAU,SAAS,aAAa,SAAS,YAAY,SAAS,OAAO;AACrG,WAAO;AAAA,EACT;AACA,QAAM,IAAI,iCAAiC,uDAAuD;AACpG;AAEA,SAAS,kBAAkB,OAA6C;AACtE,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,aAAa,SAAS,aAAa,OAAO;AAC5C,UAAM,IAAI,iCAAiC,8BAA8B;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,SAAS,eAAe,OAA0C;AAChE,QAAM,QAAQ,gBAAgB,OAAO,cAAc,EAAE,YAAY;AACjE,MAAI,UAAU,UAAU,UAAU,QAAQ;AACxC,UAAM,IAAI,iCAAiC,oCAAoC;AAAA,EACjF;AACA,SAAO;AACT;AAEA,SAAS,2BAA2B,OAAsG;AACxI,QAAM,aAAqC,CAAC;AAC5C,MAAI,MAAM,QAAQ,KAAK,GAAG;AACxB,eAAW,QAAQ,OAAO;AACxB,YAAM,WAAW,kBAAkB,IAAI;AACvC,iBAAW,QAAQ,IAAI,wBAAwB,QAAQ;AAAA,IACzD;AAAA,EACF,WAAW,SAAS,KAAK,GAAG;AAC1B,eAAW,CAAC,aAAa,QAAQ,KAAK,OAAO,QAAQ,KAAK,GAAG;AAC3D,iBAAW,kBAAkB,WAAW,CAAC,IAAI,eAAe,OAAO,QAAQ,CAAC;AAAA,IAC9E;AAAA,EACF,OAAO;AACL,UAAM,IAAI,iCAAiC,oEAAoE;AAAA,EACjH;AACA,MAAI,OAAO,KAAK,UAAU,EAAE,WAAW,GAAG;AACxC,UAAM,IAAI,iCAAiC,wDAAwD;AAAA,EACrG;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,UAAmE;AAClG,SAAO,aAAa,QAAQ,SAAS;AACvC;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,SAAS,OAAO,KAAK;AAC3B,MAAI,CAAC,OAAO,cAAc,MAAM,KAAK,UAAU,GAAG;AAChD,UAAM,IAAI,iCAAiC,GAAG,IAAI,mCAAmC;AAAA,EACvF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,OAAO,OAAO,SAAS,EAAE,EAAE,KAAK;AACtC,MAAI,CAAC,MAAM;AACT,UAAM,IAAI,iCAAiC,GAAG,IAAI,eAAe;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,OAAuB;AACtD,QAAM,QAAQ,gBAAgB,OAAO,OAAO;AAC5C,MAAI,MAAM,SAAS,GAAG,GAAG;AACvB,UAAM,IAAI,iCAAiC,6BAA6B;AAAA,EAC1E;AACA,SAAO;AACT;AAEA,SAAS,0BAA0B,OAAqD;AACtF,QAAM,UAAU,gBAAgB,OAAO,SAAS,EAAE,YAAY;AAC9D,MAAI,YAAY,aAAa,YAAY,SAAS;AAChD,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAgC,MAAuC;AAC9F,MAAI;AACF,UAAM,SAAS,KAAK,MAAM,KAAK,UAAU,KAAK,CAAC;AAC/C,QAAI,CAAC,SAAS,MAAM,GAAG;AACrB,YAAM,IAAI,MAAM,eAAe;AAAA,IACjC;AACA,WAAO;AAAA,EACT,SAAS,OAAO;AACd,UAAM,IAAI,iCAAiC,GAAG,IAAI,sCAAsC;AAAA,EAC1F;AACF;AAEA,SAAS,UAAU,SAA0B;AAC3C,MAAI;AACF,WAAO,KAAK,MAAM,OAAO;AAAA,EAC3B,SAAS,OAAO;AACd,UAAM,IAAI,gBAAgB,sCAAsC;AAAA,MAC9D,QAAQ;AAAA,MACR,MAAM;AAAA,MACN,MAAM;AAAA,IACR,CAAC;AAAA,EACH;AACF;AAEA,SAAS,aAAa,OAA+B;AACnD,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AACA,QAAM,OAAO,MAAM,KAAK;AACxB,SAAO,OAAO,OAAO;AACvB;AAEA,SAAS,SAAS,OAAkD;AAClE,SAAO,OAAO,UAAU,YAAY,UAAU,QAAQ,CAAC,MAAM,QAAQ,KAAK;AAC5E;AAEA,SAAS,cAAc,OAAgB,MAAuC;AAC5E,MAAI,CAAC,SAAS,KAAK,GAAG;AACpB,UAAM,IAAI,2BAA2B,GAAG,IAAI,qBAAqB;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,SAAS,MAAkC;AAClD,MAAI,OAAO,YAAY,aAAa;AAClC,WAAO;AAAA,EACT;AACA,QAAM,QAAQ,QAAQ,IAAI,IAAI;AAC9B,SAAO,SAAS,MAAM,KAAK,IAAI,MAAM,KAAK,IAAI;AAChD;AAEA,SAAS,UAAU,MAA+E;AAChG,MAAI,gBAAgB,YAAY;AAC9B,WAAO;AAAA,EACT;AACA,MAAI,gBAAgB,aAAa;AAC/B,WAAO,IAAI,WAAW,IAAI;AAAA,EAC5B;AACA,MAAI,OAAO,SAAS,UAAU;AAC5B,WAAO,IAAI,YAAY,EAAE,OAAO,IAAI;AAAA,EACtC;AACA,MAAI,SAAS,IAAI,GAAG;AAClB,WAAO,IAAI,YAAY,EAAE,OAAO,KAAK,UAAU,IAAI,CAAC;AAAA,EACtD;AACA,QAAM,IAAI,2BAA2B,6DAA6D;AACpG;AAEA,SAAS,qBAAqB,iBAAmE;AAC/F,MAAI,YAA2B;AAC/B,MAAI,YAA2B;AAC/B,aAAW,QAAQ,OAAO,mBAAmB,EAAE,EAAE,MAAM,GAAG,GAAG;AAC3D,UAAM,CAAC,KAAK,KAAK,IAAI,KAAK,KAAK,EAAE,MAAM,KAAK,CAAC;AAC7C,QAAI,QAAQ,KAAK;AACf,YAAM,SAAS,OAAO,SAAS,SAAS,IAAI,EAAE;AAC9C,UAAI,CAAC,OAAO,SAAS,MAAM,GAAG;AAC5B,cAAM,IAAI,6BAA6B,yCAAyC;AAAA,MAClF;AACA,kBAAY;AAAA,IACd;AACA,QAAI,QAAQ,MAAM;AAChB,kBAAY,OAAO,SAAS,EAAE,EAAE,KAAK;AAAA,IACvC;AAAA,EACF;AACA,MAAI,cAAc,QAAQ,CAAC,WAAW;AACpC,UAAM,IAAI,6BAA6B,yCAAyC;AAAA,EAClF;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEA,eAAe,cAA+B;AAC5C,MAAI,WAAW,QAAQ,YAAY;AACjC,WAAO,WAAW,OAAO,WAAW;AAAA,EACtC;AACA,QAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,MAAI,WAAW,QAAQ,iBAAiB;AACtC,eAAW,OAAO,gBAAgB,KAAK;AAAA,EACzC,WAAW,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AACnE,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,UAAM,IAAI,OAAO,YAAY,EAAE,CAAC;AAAA,EAClC,OAAO;AACL,UAAM,IAAI,iCAAiC,iEAAiE;AAAA,EAC9G;AACA,SAAO,WAAW,KAAK;AACzB;AAEA,eAAe,cAAc,QAAgB,SAAsC;AACjF,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,gBAAgB,IAAI,WAAW,QAAQ,UAAU;AACvD,kBAAc,IAAI,OAAO;AACzB,UAAM,MAAM,MAAM,WAAW,OAAO,OAAO;AAAA,MACzC;AAAA,MACA,IAAI,YAAY,EAAE,OAAO,MAAM;AAAA,MAC/B,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC;AAAA,MACA,CAAC,MAAM;AAAA,IACT;AACA,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,KAAK,QAAQ,KAAK,aAAa;AAC7E,WAAO,WAAW,IAAI,WAAW,MAAM,CAAC;AAAA,EAC1C;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,OAAO,WAAW,UAAU,MAAM,EAAE,OAAO,OAAO,KAAK,OAAO,CAAC,EAAE,OAAO,KAAK;AAAA,EACtF;AACA,QAAM,IAAI,iCAAiC,yDAAyD;AACtG;AAEA,eAAe,eAAe,UAAmC;AAC/D,QAAM,QAAQ,IAAI,YAAY,EAAE,OAAO,QAAQ;AAC/C,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,OAAO,WAAW,KAAK;AACrE,WAAO,UAAU,WAAW,IAAI,WAAW,MAAM,CAAC,CAAC;AAAA,EACrD;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,UAAU,OAAO,WAAW,QAAQ,EAAE,OAAO,OAAO,KAAK,KAAK,CAAC,EAAE,OAAO,KAAK,CAAC;AAAA,EACvF;AACA,QAAM,IAAI,iCAAiC,qDAAqD;AAClG;AAEA,SAAS,WAAW,OAA2B;AAC7C,SAAO,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AAC7E;AAEA,SAAS,WAAW,KAAyB;AAC3C,QAAM,aAAa,OAAO,OAAO,EAAE,EAAE,KAAK,EAAE,YAAY;AACxD,MAAI,WAAW,SAAS,MAAM,KAAK,CAAC,cAAc,KAAK,UAAU,GAAG;AAClE,UAAM,IAAI,6BAA6B,wBAAwB;AAAA,EACjE;AACA,QAAM,QAAQ,IAAI,WAAW,WAAW,SAAS,CAAC;AAClD,WAAS,QAAQ,GAAG,QAAQ,WAAW,QAAQ,SAAS,GAAG;AACzD,UAAM,QAAQ,CAAC,IAAI,OAAO,SAAS,WAAW,MAAM,OAAO,QAAQ,CAAC,GAAG,EAAE;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,eAAe,mBAAmB,MAAc,OAAiC;AAC/E,QAAM,YAAY,WAAW,IAAI;AACjC,QAAM,aAAa,WAAW,KAAK;AACnC,MAAI,UAAU,WAAW,WAAW,QAAQ;AAC1C,WAAO;AAAA,EACT;AACA,MAAI,OAAO;AACX,WAAS,QAAQ,GAAG,QAAQ,UAAU,QAAQ,SAAS,GAAG;AACxD,YAAQ,UAAU,KAAK,IAAK,WAAW,KAAK;AAAA,EAC9C;AACA,SAAO,SAAS;AAClB;","names":[]}

package/dist/index.js

@@ -57,7 +57,7 @@ var DirectRequestPaymentClient = class {
     this.auth_token = authToken;
     this.base_url = (options.base_url ?? envValue("SIGLUME_API_BASE") ?? DEFAULT_SIGLUME_API_BASE).replace(/\/+$/, "");
     this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15e3));
-    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.5";
+    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.6";
     this.fetch_impl = fetchImpl;
   }
   async createPaymentRequirement(input) {
@@ -162,7 +162,7 @@ var DirectRequestPaymentMerchantClient = class {
     this.auth_token = authToken;
     this.base_url = (options.base_url ?? envValue("SIGLUME_API_BASE") ?? DEFAULT_SIGLUME_API_BASE).replace(/\/+$/, "");
     this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15e3));
-    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.5";
+    this.user_agent = options.user_agent ?? "@siglume/direct-request-payment/0.3.6";
     this.fetch_impl = fetchImpl;
   }
   async setupMerchant(input) {

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/index.ts"],"sourcesContent":["export const DEFAULT_SIGLUME_API_BASE = \"https://siglume.com/v1\";\nexport const DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME = \"siglume-external-402-v1\";\n// Recurring (subscription / scheduled autopay) approval uses a DISTINCT scheme\n// with cadence bound into the HMAC, so a one-time checkout challenge can never\n// be replayed as a recurring authorization and vice versa.\nexport const DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME = \"siglume-external-402-recurring-v1\";\nexport const DIRECT_REQUEST_PAYMENT_MODE = \"external_402\";\nexport const DIRECT_REQUEST_PAYMENT_RECEIPT_KIND = \"sdrp_direct_payment\";\nexport const DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND = \"sdrp_direct_payment_allowance\";\nexport const DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE = \"sdrp_direct_payment_requirement\";\nexport const DEFAULT_WEBHOOK_TOLERANCE_SECONDS = 300;\n\nexport type DirectRequestPaymentCurrency = \"JPY\" | \"USD\";\nexport type DirectRequestPaymentToken = \"JPYC\" | \"USDC\";\n\nexport interface DirectRequestPaymentChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface ParsedDirectRequestPaymentChallenge {\n  scheme: string;\n  nonce: string;\n  signature: string;\n}\n\n/** \"monthly\" authorizes a Siglume-swept subscription; \"daily\" authorizes\n *  merchant-triggered scheduled autopay. It is an approval tag, not a\n *  run-count limiter. */\nexport type DirectRequestPaymentRecurringCadence = \"monthly\" | \"daily\";\n\nexport interface DirectRequestPaymentRecurringChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  cadence: DirectRequestPaymentRecurringCadence | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentRecurringChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  cadence: DirectRequestPaymentRecurringCadence;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface Web3TransactionRequest {\n  network?: string;\n  chain_id?: number;\n  from?: string;\n  to?: string;\n  data?: string;\n  value?: string | number;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectPaymentRequirement {\n  direct_payment_requirement_id: string;\n  requirement_id: string;\n  id: string;\n  mode: string;\n  merchant?: string | null;\n  challenge_hash?: string | null;\n  buyer_user_id: string;\n  agent_id?: string | null;\n  product_listing_id: string;\n  listing_id: string;\n  access_grant_id?: string | null;\n  capability_key: string;\n  requirement_hash: string;\n  request_hash: string;\n  siglume_signature: string;\n  token_symbol: string;\n  currency: string;\n  amount_minor: number;\n  fee_bps: number;\n  status: string;\n  expires_at?: string | null;\n  confirmed_at?: string | null;\n  spent_at?: string | null;\n  chain_receipt_id?: string | null;\n  transaction_request: Web3TransactionRequest;\n  approve_transaction_request?: Web3TransactionRequest | null;\n  buyer_confirmation?: string | null;\n  non_custodial: boolean;\n  metadata_jsonb?: Record<string, unknown>;\n  created_at?: string | null;\n  updated_at?: string | null;\n}\n\nexport interface DirectPaymentRequirementCreateInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n  token_symbol?: DirectRequestPaymentToken | string;\n  allowance_amount_minor?: number;\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectPaymentVerifyInput {\n  receipt_id?: string | null;\n  chain_receipt_id?: string | null;\n  await_finality?: boolean;\n  await_required_status?: string | null;\n  await_timeout_seconds?: number;\n  await_poll_seconds?: number;\n}\n\nexport interface Web3PreparedTransactionExecutePayload {\n  transaction_request: Web3TransactionRequest;\n  receipt_kind: string;\n  reference_type: typeof DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE;\n  reference_id: string;\n  metadata?: Record<string, unknown>;\n  await_finality?: boolean;\n}\n\nexport interface Web3PreparedTransactionExecuteResult {\n  receipt?: Record<string, unknown>;\n  finalization?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentClientOptions {\n  auth_token?: string;\n  base_url?: string;\n  fetch?: typeof fetch;\n  timeout_ms?: number;\n  user_agent?: string;\n}\n\nexport type DirectRequestPaymentBillingPlan = \"launch\" | \"free\" | \"starter\" | \"growth\" | \"pro\";\n\nexport interface DirectRequestPaymentMerchantAccount {\n  merchant_account_id: string;\n  merchant: string;\n  merchant_user_id: string;\n  user_wallet_id?: string | null;\n  billing_mandate_id?: string | null;\n  display_name?: string | null;\n  status?: string | null;\n  billing_status?: string | null;\n  billing_plan?: string | null;\n  billing_currency?: string | null;\n  token_symbol?: string | null;\n  monthly_fee_minor?: number | null;\n  settlement_fee_bps?: number | null;\n  settlement_fee_min_minor?: number | null;\n  included_monthly_payments?: number | null;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentMerchantSetupInput {\n  merchant: string;\n  display_name?: string;\n  billing_plan?: DirectRequestPaymentBillingPlan | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  allowed_currencies?: Record<string, string> | Array<DirectRequestPaymentCurrency | string>;\n  webhook_callback_url?: string;\n  billing_mandate_cap_minor?: number;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantBillingMandateInput {\n  currency?: DirectRequestPaymentCurrency | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantResponse {\n  merchant_account: DirectRequestPaymentMerchantAccount;\n  challenge_secret?: string | null;\n  challenge_secret_created?: boolean;\n  created?: boolean | null;\n  listing_id?: string | null;\n  mandate?: Record<string, unknown> | null;\n  next_steps?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscriptionInput {\n  callback_url: string;\n  description?: string;\n  event_types?: string[];\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscription {\n  webhook_subscription_id?: string;\n  subscription_id?: string;\n  id?: string;\n  callback_url?: string;\n  signing_secret?: string;\n  status?: string;\n  event_types?: string[];\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupInput extends DirectRequestPaymentMerchantSetupInput {\n  create_webhook_subscription?: boolean;\n  prepare_billing_mandate?: boolean;\n  webhook_event_types?: string[];\n  webhook_description?: string;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupResult {\n  merchant: DirectRequestPaymentMerchantResponse;\n  billing_mandate?: DirectRequestPaymentMerchantResponse | null;\n  webhook_subscription?: DirectRequestPaymentWebhookSubscription | null;\n  env: Record<string, string>;\n}\n\nexport interface SiglumeEnvelopeMeta {\n  request_id?: string | null;\n  trace_id?: string | null;\n  [key: string]: unknown;\n}\n\nexport interface WebhookSignatureVerification {\n  timestamp: number;\n  signature: string;\n}\n\nexport interface DirectRequestPaymentWebhookEvent {\n  id: string;\n  type: \"direct_payment.confirmed\" | string;\n  api_version: string;\n  occurred_at: string;\n  data: {\n    mode?: string;\n    merchant?: string;\n    direct_payment_requirement_id?: string;\n    requirement_id?: string;\n    challenge_hash?: string;\n    amount_minor?: number;\n    currency?: string;\n    token_symbol?: string;\n    status?: string;\n    [key: string]: unknown;\n  };\n  [key: string]: unknown;\n}\n\nexport class SiglumeDirectRequestPaymentError extends Error {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeDirectRequestPaymentError\";\n  }\n}\n\nexport class SiglumeApiError extends SiglumeDirectRequestPaymentError {\n  readonly status: number;\n  readonly code: string;\n  readonly data: unknown;\n\n  constructor(message: string, options: { status: number; code?: string; data?: unknown }) {\n    super(message);\n    this.name = \"SiglumeApiError\";\n    this.status = options.status;\n    this.code = options.code ?? \"SIGLUME_API_ERROR\";\n    this.data = options.data;\n  }\n}\n\nexport class SiglumeWebhookSignatureError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookSignatureError\";\n  }\n}\n\nexport class SiglumeWebhookPayloadError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookPayloadError\";\n  }\n}\n\nexport class DirectRequestPaymentClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A buyer Siglume bearer token is required for Direct Request Payment API calls. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.5\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async createPaymentRequirement(input: DirectPaymentRequirementCreateInput): Promise<DirectPaymentRequirement> {\n    const payload: Record<string, unknown> = {\n      mode: DIRECT_REQUEST_PAYMENT_MODE,\n      merchant: normalizeMerchant(input.merchant),\n      amount_minor: positiveInteger(input.amount_minor, \"amount_minor\"),\n      currency: normalizeCurrency(input.currency),\n      challenge: requireNonEmpty(input.challenge, \"challenge\"),\n    };\n    if (input.token_symbol !== undefined) {\n      payload.token_symbol = normalizeToken(input.token_symbol);\n    }\n    if (input.allowance_amount_minor !== undefined) {\n      payload.allowance_amount_minor = positiveInteger(input.allowance_amount_minor, \"allowance_amount_minor\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectPaymentRequirement>(\"POST\", \"/sdrp/direct-payments/requirements\", payload);\n  }\n\n  async getPaymentRequirement(requirement_id: string): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"GET\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}`,\n    );\n  }\n\n  async verifyPaymentRequirement(\n    requirement_id: string,\n    input: DirectPaymentVerifyInput,\n  ): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"POST\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}/verify`,\n      input,\n    );\n  }\n\n  async executePreparedTransaction(\n    payload: Web3PreparedTransactionExecutePayload,\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.request<Web3PreparedTransactionExecuteResult>(\n      \"POST\",\n      \"/market/web3/transactions/execute-prepared\",\n      payload,\n    );\n  }\n\n  async executePaymentTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildPaymentExecutionPayload(requirement, options));\n  }\n\n  async executeAllowanceTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildAllowanceExecutionPayload(requirement, options));\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport class DirectRequestPaymentMerchantClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_MERCHANT_AUTH_TOKEN\") ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A merchant Siglume bearer token is required for Direct Request Payment merchant setup. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.5\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async setupMerchant(input: DirectRequestPaymentMerchantSetupInput): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {\n      merchant: normalizeSelfServiceMerchant(input.merchant),\n      billing_plan: normalizeBillingPlan(input.billing_plan ?? \"launch\"),\n      billing_currency: normalizeCurrency(input.billing_currency ?? \"JPY\"),\n    };\n    if (input.display_name !== undefined) {\n      payload.display_name = requireNonEmpty(input.display_name, \"display_name\");\n    }\n    if (input.allowed_currencies !== undefined) {\n      payload.allowed_currencies = normalizeAllowedCurrencies(input.allowed_currencies);\n    }\n    if (input.webhook_callback_url !== undefined) {\n      payload.webhook_callback_url = requireNonEmpty(input.webhook_callback_url, \"webhook_callback_url\");\n    }\n    if (input.billing_mandate_cap_minor !== undefined) {\n      payload.billing_mandate_cap_minor = positiveInteger(input.billing_mandate_cap_minor, \"billing_mandate_cap_minor\");\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\"POST\", \"/sdrp/direct-payments/merchants\", payload);\n  }\n\n  async getMerchant(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"GET\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}`,\n    );\n  }\n\n  async rotateChallengeSecret(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/challenge-secret/rotate`,\n    );\n  }\n\n  async prepareBillingMandate(\n    merchant: string,\n    input: DirectRequestPaymentMerchantBillingMandateInput = {},\n  ): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {};\n    if (input.currency !== undefined) {\n      payload.currency = normalizeCurrency(input.currency);\n    }\n    if (input.billing_currency !== undefined) {\n      payload.billing_currency = normalizeCurrency(input.billing_currency);\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/billing-mandate`,\n      payload,\n    );\n  }\n\n  async createWebhookSubscription(\n    input: DirectRequestPaymentWebhookSubscriptionInput,\n  ): Promise<DirectRequestPaymentWebhookSubscription> {\n    const payload: Record<string, unknown> = {\n      callback_url: requireNonEmpty(input.callback_url, \"callback_url\"),\n      event_types: input.event_types?.length\n        ? input.event_types.map((eventType) => requireNonEmpty(eventType, \"event_type\"))\n        : [\"direct_payment.confirmed\", \"direct_payment.spent\"],\n    };\n    if (input.description !== undefined) {\n      payload.description = requireNonEmpty(input.description, \"description\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectRequestPaymentWebhookSubscription>(\"POST\", \"/market/webhooks/subscriptions\", payload);\n  }\n\n  async setupCheckout(input: DirectRequestPaymentCheckoutSetupInput): Promise<DirectRequestPaymentCheckoutSetupResult> {\n    const merchant = await this.setupMerchant(input);\n    const merchantKey = merchant.merchant_account.merchant;\n    const billing_mandate = input.prepare_billing_mandate === false\n      ? null\n      : await this.prepareBillingMandate(merchantKey, {\n        billing_currency: merchant.merchant_account.billing_currency ?? input.billing_currency ?? \"JPY\",\n        max_amount_minor: input.max_amount_minor ?? input.billing_mandate_cap_minor,\n      });\n    const shouldCreateWebhook = input.create_webhook_subscription ?? Boolean(input.webhook_callback_url);\n    const webhook_subscription = shouldCreateWebhook && input.webhook_callback_url\n      ? await this.createWebhookSubscription({\n        callback_url: input.webhook_callback_url,\n        description: input.webhook_description ?? `${merchantKey} Direct Request Payment`,\n        event_types: input.webhook_event_types,\n        metadata: { merchant: merchantKey, sdk: \"@siglume/direct-request-payment\" },\n      })\n      : null;\n    const env: Record<string, string> = {\n      SIGLUME_DIRECT_PAYMENT_MERCHANT: merchantKey,\n    };\n    if (merchant.challenge_secret) {\n      env.SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET = merchant.challenge_secret;\n    }\n    const webhookSecret = stringOrNull(webhook_subscription?.signing_secret);\n    if (webhookSecret) {\n      env.SIGLUME_WEBHOOK_SECRET = webhookSecret;\n    }\n    return { merchant, billing_mandate, webhook_subscription, env };\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport async function createDirectRequestPaymentChallenge(\n  input: DirectRequestPaymentChallengeInput,\n): Promise<DirectRequestPaymentChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  const material = `${merchant}:${amount}:${currency}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport function parseDirectRequestPaymentChallenge(challenge: string): ParsedDirectRequestPaymentChallenge {\n  const parts = requireNonEmpty(challenge, \"challenge\").split(\":\");\n  if (parts.length !== 3) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge must be scheme:nonce:signature.\");\n  }\n  const [scheme, nonce, signature] = parts;\n  if (!scheme || !nonce || !signature) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge is incomplete.\");\n  }\n  return { scheme, nonce, signature };\n}\n\n/** Merchant-side, ONE-TIME approval of a recurring authorization: amount +\n *  currency + cadence are bound into the HMAC. Recurring charges afterwards\n *  are deliberately challenge-free; the recurring authorization and the\n *  buyer's mandate/budget caps are the per-charge integrity checks. Cadence\n *  \"monthly\" = subscription, \"daily\" = scheduled autopay approval tag. */\nexport async function createDirectRequestPaymentRecurringChallenge(\n  input: DirectRequestPaymentRecurringChallengeInput,\n): Promise<DirectRequestPaymentRecurringChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentRecurringChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentRecurringChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  // MUST stay byte-identical to the server's\n  // _external_402_recurring_challenge_signature — both sides change together.\n  const material = `${merchant}:${amount}:${currency}:${cadence}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport async function verifyDirectRequestPaymentRecurringChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentRecurringChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    cadence: input.cadence,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function verifyDirectRequestPaymentChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function directRequestPaymentChallengeHash(challenge: string): Promise<string> {\n  return sha256Prefixed(requireNonEmpty(challenge, \"challenge\"));\n}\n\nexport async function directRequestPaymentRequestHash(input: {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n}): Promise<string> {\n  const material = `${normalizeMerchant(input.merchant)}${positiveInteger(input.amount_minor, \"amount_minor\")}${normalizeCurrency(input.currency)}${requireNonEmpty(input.challenge, \"challenge\")}`;\n  return sha256Prefixed(material);\n}\n\nexport function buildPaymentExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  return buildPreparedTransactionExecutionPayload(requirement, requirement.transaction_request, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildAllowanceExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  const approveRequest = requirement.approve_transaction_request;\n  if (!approveRequest || Object.keys(approveRequest).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"This payment requirement does not include an allowance approval transaction.\");\n  }\n  return buildPreparedTransactionExecutionPayload(requirement, approveRequest, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildPreparedTransactionExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  transaction_request: Web3TransactionRequest,\n  options: {\n    receipt_kind: string;\n    await_finality?: boolean;\n    metadata?: Record<string, unknown>;\n  },\n): Web3PreparedTransactionExecutePayload {\n  const metadata = {\n    ...(isRecord(transaction_request.metadata_jsonb) ? transaction_request.metadata_jsonb : {}),\n    ...(options.metadata ?? {}),\n  };\n  return {\n    transaction_request,\n    receipt_kind: requireNonEmpty(options.receipt_kind, \"receipt_kind\"),\n    reference_type: DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE,\n    reference_id: requirement.requirement_id,\n    metadata,\n    await_finality: Boolean(options.await_finality),\n  };\n}\n\nexport async function computeWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp: number },\n): Promise<string> {\n  if (!signing_secret) {\n    throw new SiglumeWebhookSignatureError(\"SIGLUME webhook signing secret is required.\");\n  }\n  const timestamp = Math.trunc(options.timestamp);\n  const bytes = bodyBytes(body);\n  const prefix = new TextEncoder().encode(`${timestamp}.`);\n  const payload = new Uint8Array(prefix.length + bytes.length);\n  payload.set(prefix, 0);\n  payload.set(bytes, prefix.length);\n  return hmacSha256Hex(signing_secret, payload);\n}\n\nexport async function buildWebhookSignatureHeader(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp?: number } = {},\n): Promise<string> {\n  const timestamp = Math.trunc(options.timestamp ?? Date.now() / 1000);\n  const signature = await computeWebhookSignature(signing_secret, body, { timestamp });\n  return `t=${timestamp},v1=${signature}`;\n}\n\nexport async function verifyWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<WebhookSignatureVerification> {\n  const { timestamp, signature } = parseSignatureHeader(signature_header);\n  const toleranceSeconds = Math.max(1, Math.trunc(options.tolerance_seconds ?? DEFAULT_WEBHOOK_TOLERANCE_SECONDS));\n  const nowSeconds = Math.trunc(options.now ?? Date.now() / 1000);\n  if (Math.abs(nowSeconds - timestamp) > toleranceSeconds) {\n    throw new SiglumeWebhookSignatureError(\"Webhook timestamp is outside the allowed tolerance window.\");\n  }\n  const expected = await computeWebhookSignature(signing_secret, body, { timestamp });\n  if (!(await timingSafeEqualHex(expected, signature))) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature did not match.\");\n  }\n  return { timestamp, signature };\n}\n\nexport function parseDirectRequestPaymentWebhookEvent(payload: unknown): DirectRequestPaymentWebhookEvent {\n  const event = requireRecord(payload, \"webhook event\");\n  const data = requireRecord(event.data, \"webhook event data\");\n  const parsed = {\n    ...event,\n    id: requireNonEmpty(stringOrNull(event.id) ?? \"\", \"webhook event id\"),\n    type: requireNonEmpty(stringOrNull(event.type) ?? \"\", \"webhook event type\"),\n    api_version: requireNonEmpty(stringOrNull(event.api_version) ?? \"\", \"webhook api_version\"),\n    occurred_at: requireNonEmpty(stringOrNull(event.occurred_at) ?? \"\", \"webhook occurred_at\"),\n    data: { ...data },\n  } as DirectRequestPaymentWebhookEvent;\n  if (parsed.type === \"direct_payment.confirmed\" && parsed.data.mode !== DIRECT_REQUEST_PAYMENT_MODE) {\n    throw new SiglumeWebhookPayloadError(\"direct_payment.confirmed webhook must carry data.mode='external_402'.\");\n  }\n  return parsed;\n}\n\nexport async function verifyDirectRequestPaymentWebhook(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<{ event: DirectRequestPaymentWebhookEvent; verification: WebhookSignatureVerification }> {\n  const verification = await verifyWebhookSignature(signing_secret, body, signature_header, options);\n  const text = new TextDecoder().decode(bodyBytes(body));\n  let parsed: unknown;\n  try {\n    parsed = JSON.parse(text);\n  } catch (error) {\n    throw new SiglumeWebhookPayloadError(\"Webhook body must contain valid JSON.\");\n  }\n  return { event: parseDirectRequestPaymentWebhookEvent(parsed), verification };\n}\n\nexport const createExternal402Challenge = createDirectRequestPaymentChallenge;\nexport const verifyExternal402Challenge = verifyDirectRequestPaymentChallenge;\nexport const createExternal402RecurringChallenge = createDirectRequestPaymentRecurringChallenge;\nexport const verifyExternal402RecurringChallenge = verifyDirectRequestPaymentRecurringChallenge;\n\nfunction normalizeMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9._-]{0,95}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be a lowercase key using letters, numbers, dot, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeSelfServiceMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9_-]{2,63}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be 3-64 chars using lowercase letters, numbers, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeBillingPlan(value: string): DirectRequestPaymentBillingPlan {\n  const plan = requireNonEmpty(value, \"billing_plan\").toLowerCase();\n  if (plan === \"launch\" || plan === \"free\" || plan === \"starter\" || plan === \"growth\" || plan === \"pro\") {\n    return plan;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"billing_plan must be launch, starter, growth, or pro.\");\n}\n\nfunction normalizeCurrency(value: string): DirectRequestPaymentCurrency {\n  const currency = requireNonEmpty(value, \"currency\").toUpperCase();\n  if (currency !== \"JPY\" && currency !== \"USD\") {\n    throw new SiglumeDirectRequestPaymentError(\"currency must be JPY or USD.\");\n  }\n  return currency;\n}\n\nfunction normalizeToken(value: string): DirectRequestPaymentToken {\n  const token = requireNonEmpty(value, \"token_symbol\").toUpperCase();\n  if (token !== \"JPYC\" && token !== \"USDC\") {\n    throw new SiglumeDirectRequestPaymentError(\"token_symbol must be JPYC or USDC.\");\n  }\n  return token;\n}\n\nfunction normalizeAllowedCurrencies(value: Record<string, string> | Array<DirectRequestPaymentCurrency | string>): Record<string, string> {\n  const normalized: Record<string, string> = {};\n  if (Array.isArray(value)) {\n    for (const item of value) {\n      const currency = normalizeCurrency(item);\n      normalized[currency] = defaultTokenForCurrency(currency);\n    }\n  } else if (isRecord(value)) {\n    for (const [rawCurrency, rawToken] of Object.entries(value)) {\n      normalized[normalizeCurrency(rawCurrency)] = normalizeToken(String(rawToken));\n    }\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must be an array or a currency-to-token object.\");\n  }\n  if (Object.keys(normalized).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must include at least one currency.\");\n  }\n  return normalized;\n}\n\nfunction defaultTokenForCurrency(currency: DirectRequestPaymentCurrency): DirectRequestPaymentToken {\n  return currency === \"JPY\" ? \"JPYC\" : \"USDC\";\n}\n\nfunction positiveInteger(value: number, name: string): number {\n  const parsed = Number(value);\n  if (!Number.isSafeInteger(parsed) || parsed <= 0) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a positive safe integer.`);\n  }\n  return parsed;\n}\n\nfunction requireNonEmpty(value: string, name: string): string {\n  const text = String(value ?? \"\").trim();\n  if (!text) {\n    throw new SiglumeDirectRequestPaymentError(`${name} is required.`);\n  }\n  return text;\n}\n\nfunction normalizeChallengeNonce(value: string): string {\n  const nonce = requireNonEmpty(value, \"nonce\");\n  if (nonce.includes(\":\")) {\n    throw new SiglumeDirectRequestPaymentError(\"nonce must not contain ':'.\");\n  }\n  return nonce;\n}\n\nfunction normalizeRecurringCadence(value: string): DirectRequestPaymentRecurringCadence {\n  const cadence = requireNonEmpty(value, \"cadence\").toLowerCase();\n  if (cadence !== \"monthly\" && cadence !== \"daily\") {\n    throw new SiglumeDirectRequestPaymentError(\n      'cadence must be \"monthly\" (subscription) or \"daily\" (scheduled autopay).',\n    );\n  }\n  return cadence;\n}\n\nfunction cloneJsonObject(value: Record<string, unknown>, name: string): Record<string, unknown> {\n  try {\n    const cloned = JSON.parse(JSON.stringify(value)) as unknown;\n    if (!isRecord(cloned)) {\n      throw new Error(\"not an object\");\n    }\n    return cloned;\n  } catch (error) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a JSON-serializable object.`);\n  }\n}\n\nfunction parseJson(rawText: string): unknown {\n  try {\n    return JSON.parse(rawText);\n  } catch (error) {\n    throw new SiglumeApiError(\"Siglume API returned invalid JSON.\", {\n      status: 502,\n      code: \"INVALID_JSON_RESPONSE\",\n      data: rawText,\n    });\n  }\n}\n\nfunction stringOrNull(value: unknown): string | null {\n  if (typeof value !== \"string\") {\n    return null;\n  }\n  const text = value.trim();\n  return text ? text : null;\n}\n\nfunction isRecord(value: unknown): value is Record<string, unknown> {\n  return typeof value === \"object\" && value !== null && !Array.isArray(value);\n}\n\nfunction requireRecord(value: unknown, name: string): Record<string, unknown> {\n  if (!isRecord(value)) {\n    throw new SiglumeWebhookPayloadError(`${name} must be an object.`);\n  }\n  return value;\n}\n\nfunction envValue(name: string): string | undefined {\n  if (typeof process === \"undefined\") {\n    return undefined;\n  }\n  const value = process.env[name];\n  return value && value.trim() ? value.trim() : undefined;\n}\n\nfunction bodyBytes(body: Uint8Array | ArrayBuffer | string | Record<string, unknown>): Uint8Array {\n  if (body instanceof Uint8Array) {\n    return body;\n  }\n  if (body instanceof ArrayBuffer) {\n    return new Uint8Array(body);\n  }\n  if (typeof body === \"string\") {\n    return new TextEncoder().encode(body);\n  }\n  if (isRecord(body)) {\n    return new TextEncoder().encode(JSON.stringify(body));\n  }\n  throw new SiglumeWebhookPayloadError(\"Webhook body must be raw bytes, a string, or a JSON object.\");\n}\n\nfunction parseSignatureHeader(signatureHeader: string): { timestamp: number; signature: string } {\n  let timestamp: number | null = null;\n  let signature: string | null = null;\n  for (const item of String(signatureHeader ?? \"\").split(\",\")) {\n    const [key, value] = item.trim().split(\"=\", 2);\n    if (key === \"t\") {\n      const parsed = Number.parseInt(value ?? \"\", 10);\n      if (!Number.isFinite(parsed)) {\n        throw new SiglumeWebhookSignatureError(\"Webhook signature timestamp is invalid.\");\n      }\n      timestamp = parsed;\n    }\n    if (key === \"v1\") {\n      signature = String(value ?? \"\").trim();\n    }\n  }\n  if (timestamp === null || !signature) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature header is incomplete.\");\n  }\n  return { timestamp, signature };\n}\n\nasync function randomNonce(): Promise<string> {\n  if (globalThis.crypto?.randomUUID) {\n    return globalThis.crypto.randomUUID();\n  }\n  const bytes = new Uint8Array(16);\n  if (globalThis.crypto?.getRandomValues) {\n    globalThis.crypto.getRandomValues(bytes);\n  } else if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    bytes.set(crypto.randomBytes(16));\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"Crypto random number generation is unavailable in this runtime.\");\n  }\n  return bytesToHex(bytes);\n}\n\nasync function hmacSha256Hex(secret: string, payload: Uint8Array): Promise<string> {\n  if (globalThis.crypto?.subtle) {\n    const stablePayload = new Uint8Array(payload.byteLength);\n    stablePayload.set(payload);\n    const key = await globalThis.crypto.subtle.importKey(\n      \"raw\",\n      new TextEncoder().encode(secret),\n      { name: \"HMAC\", hash: \"SHA-256\" },\n      false,\n      [\"sign\"],\n    );\n    const digest = await globalThis.crypto.subtle.sign(\"HMAC\", key, stablePayload);\n    return bytesToHex(new Uint8Array(digest));\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return crypto.createHmac(\"sha256\", secret).update(Buffer.from(payload)).digest(\"hex\");\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for HMAC-SHA256 in this runtime.\");\n}\n\nasync function sha256Prefixed(material: string): Promise<string> {\n  const bytes = new TextEncoder().encode(material);\n  if (globalThis.crypto?.subtle) {\n    const digest = await globalThis.crypto.subtle.digest(\"SHA-256\", bytes);\n    return `sha256:${bytesToHex(new Uint8Array(digest))}`;\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return `sha256:${crypto.createHash(\"sha256\").update(Buffer.from(bytes)).digest(\"hex\")}`;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for SHA-256 in this runtime.\");\n}\n\nfunction bytesToHex(bytes: Uint8Array): string {\n  return [...bytes].map((item) => item.toString(16).padStart(2, \"0\")).join(\"\");\n}\n\nfunction hexToBytes(hex: string): Uint8Array {\n  const normalized = String(hex ?? \"\").trim().toLowerCase();\n  if (normalized.length % 2 !== 0 || !/^[0-9a-f]*$/.test(normalized)) {\n    throw new SiglumeWebhookSignatureError(\"Hex digest is invalid.\");\n  }\n  const bytes = new Uint8Array(normalized.length / 2);\n  for (let index = 0; index < normalized.length; index += 2) {\n    bytes[index / 2] = Number.parseInt(normalized.slice(index, index + 2), 16);\n  }\n  return bytes;\n}\n\nasync function timingSafeEqualHex(left: string, right: string): Promise<boolean> {\n  const leftBytes = hexToBytes(left);\n  const rightBytes = hexToBytes(right);\n  if (leftBytes.length !== rightBytes.length) {\n    return false;\n  }\n  let diff = 0;\n  for (let index = 0; index < leftBytes.length; index += 1) {\n    diff |= leftBytes[index]! ^ rightBytes[index]!;\n  }\n  return diff === 0;\n}\n"],"mappings":";AAAO,IAAM,2BAA2B;AACjC,IAAM,0CAA0C;AAIhD,IAAM,oDAAoD;AAC1D,IAAM,8BAA8B;AACpC,IAAM,sCAAsC;AAC5C,IAAM,gDAAgD;AACtD,IAAM,wCAAwC;AAC9C,IAAM,oCAAoC;AA+P1C,IAAM,mCAAN,cAA+C,MAAM;AAAA,EAC1D,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,kBAAN,cAA8B,iCAAiC;AAAA,EAC3D;AAAA,EACA;AAAA,EACA;AAAA,EAET,YAAY,SAAiB,SAA4D;AACvF,UAAM,OAAO;AACb,SAAK,OAAO;AACZ,SAAK,SAAS,QAAQ;AACtB,SAAK,OAAO,QAAQ,QAAQ;AAC5B,SAAK,OAAO,QAAQ;AAAA,EACtB;AACF;AAEO,IAAM,+BAAN,cAA2C,iCAAiC;AAAA,EACjF,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,cAAyC,iCAAiC;AAAA,EAC/E,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,MAAiC;AAAA,EAC7B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,oBAAoB;AACrE,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,yBAAyB,OAA+E;AAC5G,UAAM,UAAmC;AAAA,MACvC,MAAM;AAAA,MACN,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,WAAW,gBAAgB,MAAM,WAAW,WAAW;AAAA,IACzD;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,eAAe,MAAM,YAAY;AAAA,IAC1D;AACA,QAAI,MAAM,2BAA2B,QAAW;AAC9C,cAAQ,yBAAyB,gBAAgB,MAAM,wBAAwB,wBAAwB;AAAA,IACzG;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAkC,QAAQ,sCAAsC,OAAO;AAAA,EACrG;AAAA,EAEA,MAAM,sBAAsB,gBAA2D;AACrF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,IAC7G;AAAA,EACF;AAAA,EAEA,MAAM,yBACJ,gBACA,OACmC;AACnC,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,MAC3G;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,2BACJ,SAC+C;AAC/C,WAAO,KAAK;AAAA,MACV;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,6BAA6B,aAAa,OAAO,CAAC;AAAA,EAC3F;AAAA,EAEA,MAAM,4BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,+BAA+B,aAAa,OAAO,CAAC;AAAA,EAC7F;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEO,IAAM,qCAAN,MAAyC;AAAA,EACrC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,6BAA6B,KAAK,SAAS,oBAAoB;AAChH,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,cAAc,OAA8F;AAChH,UAAM,UAAmC;AAAA,MACvC,UAAU,6BAA6B,MAAM,QAAQ;AAAA,MACrD,cAAc,qBAAqB,MAAM,gBAAgB,QAAQ;AAAA,MACjE,kBAAkB,kBAAkB,MAAM,oBAAoB,KAAK;AAAA,IACrE;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,gBAAgB,MAAM,cAAc,cAAc;AAAA,IAC3E;AACA,QAAI,MAAM,uBAAuB,QAAW;AAC1C,cAAQ,qBAAqB,2BAA2B,MAAM,kBAAkB;AAAA,IAClF;AACA,QAAI,MAAM,yBAAyB,QAAW;AAC5C,cAAQ,uBAAuB,gBAAgB,MAAM,sBAAsB,sBAAsB;AAAA,IACnG;AACA,QAAI,MAAM,8BAA8B,QAAW;AACjD,cAAQ,4BAA4B,gBAAgB,MAAM,2BAA2B,2BAA2B;AAAA,IAClH;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK,QAA8C,QAAQ,mCAAmC,OAAO;AAAA,EAC9G;AAAA,EAEA,MAAM,YAAY,UAAiE;AACjF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBAAsB,UAAiE;AAC3F,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBACJ,UACA,QAAyD,CAAC,GACX;AAC/C,UAAM,UAAmC,CAAC;AAC1C,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,kBAAkB,MAAM,QAAQ;AAAA,IACrD;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,kBAAkB,MAAM,gBAAgB;AAAA,IACrE;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,MAC7F;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,OACkD;AAClD,UAAM,UAAmC;AAAA,MACvC,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,aAAa,MAAM,aAAa,SAC5B,MAAM,YAAY,IAAI,CAAC,cAAc,gBAAgB,WAAW,YAAY,CAAC,IAC7E,CAAC,4BAA4B,sBAAsB;AAAA,IACzD;AACA,QAAI,MAAM,gBAAgB,QAAW;AACnC,cAAQ,cAAc,gBAAgB,MAAM,aAAa,aAAa;AAAA,IACxE;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAiD,QAAQ,kCAAkC,OAAO;AAAA,EAChH;AAAA,EAEA,MAAM,cAAc,OAAiG;AACnH,UAAM,WAAW,MAAM,KAAK,cAAc,KAAK;AAC/C,UAAM,cAAc,SAAS,iBAAiB;AAC9C,UAAM,kBAAkB,MAAM,4BAA4B,QACtD,OACA,MAAM,KAAK,sBAAsB,aAAa;AAAA,MAC9C,kBAAkB,SAAS,iBAAiB,oBAAoB,MAAM,oBAAoB;AAAA,MAC1F,kBAAkB,MAAM,oBAAoB,MAAM;AAAA,IACpD,CAAC;AACH,UAAM,sBAAsB,MAAM,+BAA+B,QAAQ,MAAM,oBAAoB;AACnG,UAAM,uBAAuB,uBAAuB,MAAM,uBACtD,MAAM,KAAK,0BAA0B;AAAA,MACrC,cAAc,MAAM;AAAA,MACpB,aAAa,MAAM,uBAAuB,GAAG,WAAW;AAAA,MACxD,aAAa,MAAM;AAAA,MACnB,UAAU,EAAE,UAAU,aAAa,KAAK,kCAAkC;AAAA,IAC5E,CAAC,IACC;AACJ,UAAM,MAA8B;AAAA,MAClC,iCAAiC;AAAA,IACnC;AACA,QAAI,SAAS,kBAAkB;AAC7B,UAAI,0CAA0C,SAAS;AAAA,IACzD;AACA,UAAM,gBAAgB,aAAa,sBAAsB,cAAc;AACvE,QAAI,eAAe;AACjB,UAAI,yBAAyB;AAAA,IAC/B;AACA,WAAO,EAAE,UAAU,iBAAiB,sBAAsB,IAAI;AAAA,EAChE;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEA,eAAsB,oCACpB,OACwC;AACxC,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,6CAA6C,MAAM,QAAQ;AAAA,IACjF;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,uCAAuC,IAAI,KAAK,IAAI,SAAS;AAClF,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,6CACpB,QACA,OAMiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AACjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,KAAK;AAC3D,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEO,SAAS,mCAAmC,WAAwD;AACzG,QAAM,QAAQ,gBAAgB,WAAW,WAAW,EAAE,MAAM,GAAG;AAC/D,MAAI,MAAM,WAAW,GAAG;AACtB,UAAM,IAAI,iCAAiC,kEAAkE;AAAA,EAC/G;AACA,QAAM,CAAC,QAAQ,OAAO,SAAS,IAAI;AACnC,MAAI,CAAC,UAAU,CAAC,SAAS,CAAC,WAAW;AACnC,UAAM,IAAI,iCAAiC,iDAAiD;AAAA,EAC9F;AACA,SAAO,EAAE,QAAQ,OAAO,UAAU;AACpC;AAOA,eAAsB,6CACpB,OACiD;AACjD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,sDAAsD,MAAM,QAAQ;AAAA,IAC1F;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,iDAAiD,IAAI,KAAK,IAAI,SAAS;AAC5F,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,sDACpB,QACA,OAOiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AAGjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,OAAO,IAAI,KAAK;AACtE,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEA,eAAsB,6CACpB,QACA,OAOkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,mDAAmD;AACvE,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,sDAAsD,QAAQ;AAAA,IACnF,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,SAAS,MAAM;AAAA,IACf,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,oCACpB,QACA,OAMkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,yCAAyC;AAC7D,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,6CAA6C,QAAQ;AAAA,IAC1E,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,kCAAkC,WAAoC;AAC1F,SAAO,eAAe,gBAAgB,WAAW,WAAW,CAAC;AAC/D;AAEA,eAAsB,gCAAgC,OAKlC;AAClB,QAAM,WAAW,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,cAAc,cAAc,CAAC,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,WAAW,WAAW,CAAC;AAC/L,SAAO,eAAe,QAAQ;AAChC;AAEO,SAAS,6BACd,aACA,UAA4E,CAAC,GACtC;AACvC,SAAO,yCAAyC,aAAa,YAAY,qBAAqB;AAAA,IAC5F,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,+BACd,aACA,UAA4E,CAAC,GACtC;AACvC,QAAM,iBAAiB,YAAY;AACnC,MAAI,CAAC,kBAAkB,OAAO,KAAK,cAAc,EAAE,WAAW,GAAG;AAC/D,UAAM,IAAI,iCAAiC,8EAA8E;AAAA,EAC3H;AACA,SAAO,yCAAyC,aAAa,gBAAgB;AAAA,IAC3E,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,yCACd,aACA,qBACA,SAKuC;AACvC,QAAM,WAAW;AAAA,IACf,GAAI,SAAS,oBAAoB,cAAc,IAAI,oBAAoB,iBAAiB,CAAC;AAAA,IACzF,GAAI,QAAQ,YAAY,CAAC;AAAA,EAC3B;AACA,SAAO;AAAA,IACL;AAAA,IACA,cAAc,gBAAgB,QAAQ,cAAc,cAAc;AAAA,IAClE,gBAAgB;AAAA,IAChB,cAAc,YAAY;AAAA,IAC1B;AAAA,IACA,gBAAgB,QAAQ,QAAQ,cAAc;AAAA,EAChD;AACF;AAEA,eAAsB,wBACpB,gBACA,MACA,SACiB;AACjB,MAAI,CAAC,gBAAgB;AACnB,UAAM,IAAI,6BAA6B,6CAA6C;AAAA,EACtF;AACA,QAAM,YAAY,KAAK,MAAM,QAAQ,SAAS;AAC9C,QAAM,QAAQ,UAAU,IAAI;AAC5B,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG,SAAS,GAAG;AACvD,QAAM,UAAU,IAAI,WAAW,OAAO,SAAS,MAAM,MAAM;AAC3D,UAAQ,IAAI,QAAQ,CAAC;AACrB,UAAQ,IAAI,OAAO,OAAO,MAAM;AAChC,SAAO,cAAc,gBAAgB,OAAO;AAC9C;AAEA,eAAsB,4BACpB,gBACA,MACA,UAAkC,CAAC,GAClB;AACjB,QAAM,YAAY,KAAK,MAAM,QAAQ,aAAa,KAAK,IAAI,IAAI,GAAI;AACnE,QAAM,YAAY,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AACnF,SAAO,KAAK,SAAS,OAAO,SAAS;AACvC;AAEA,eAAsB,uBACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GAClB;AACvC,QAAM,EAAE,WAAW,UAAU,IAAI,qBAAqB,gBAAgB;AACtE,QAAM,mBAAmB,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,qBAAqB,iCAAiC,CAAC;AAC/G,QAAM,aAAa,KAAK,MAAM,QAAQ,OAAO,KAAK,IAAI,IAAI,GAAI;AAC9D,MAAI,KAAK,IAAI,aAAa,SAAS,IAAI,kBAAkB;AACvD,UAAM,IAAI,6BAA6B,4DAA4D;AAAA,EACrG;AACA,QAAM,WAAW,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AAClF,MAAI,CAAE,MAAM,mBAAmB,UAAU,SAAS,GAAI;AACpD,UAAM,IAAI,6BAA6B,kCAAkC;AAAA,EAC3E;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEO,SAAS,sCAAsC,SAAoD;AACxG,QAAM,QAAQ,cAAc,SAAS,eAAe;AACpD,QAAM,OAAO,cAAc,MAAM,MAAM,oBAAoB;AAC3D,QAAM,SAAS;AAAA,IACb,GAAG;AAAA,IACH,IAAI,gBAAgB,aAAa,MAAM,EAAE,KAAK,IAAI,kBAAkB;AAAA,IACpE,MAAM,gBAAgB,aAAa,MAAM,IAAI,KAAK,IAAI,oBAAoB;AAAA,IAC1E,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,MAAM,EAAE,GAAG,KAAK;AAAA,EAClB;AACA,MAAI,OAAO,SAAS,8BAA8B,OAAO,KAAK,SAAS,6BAA6B;AAClG,UAAM,IAAI,2BAA2B,uEAAuE;AAAA,EAC9G;AACA,SAAO;AACT;AAEA,eAAsB,kCACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GACyC;AAClG,QAAM,eAAe,MAAM,uBAAuB,gBAAgB,MAAM,kBAAkB,OAAO;AACjG,QAAM,OAAO,IAAI,YAAY,EAAE,OAAO,UAAU,IAAI,CAAC;AACrD,MAAI;AACJ,MAAI;AACF,aAAS,KAAK,MAAM,IAAI;AAAA,EAC1B,SAAS,OAAO;AACd,UAAM,IAAI,2BAA2B,uCAAuC;AAAA,EAC9E;AACA,SAAO,EAAE,OAAO,sCAAsC,MAAM,GAAG,aAAa;AAC9E;AAEO,IAAM,6BAA6B;AACnC,IAAM,6BAA6B;AACnC,IAAM,sCAAsC;AAC5C,IAAM,sCAAsC;AAEnD,SAAS,kBAAkB,OAAuB;AAChD,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,8BAA8B,KAAK,QAAQ,GAAG;AACjD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,6BAA6B,OAAuB;AAC3D,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,6BAA6B,KAAK,QAAQ,GAAG;AAChD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,qBAAqB,OAAgD;AAC5E,QAAM,OAAO,gBAAgB,OAAO,cAAc,EAAE,YAAY;AAChE,MAAI,SAAS,YAAY,SAAS,UAAU,SAAS,aAAa,SAAS,YAAY,SAAS,OAAO;AACrG,WAAO;AAAA,EACT;AACA,QAAM,IAAI,iCAAiC,uDAAuD;AACpG;AAEA,SAAS,kBAAkB,OAA6C;AACtE,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,aAAa,SAAS,aAAa,OAAO;AAC5C,UAAM,IAAI,iCAAiC,8BAA8B;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,SAAS,eAAe,OAA0C;AAChE,QAAM,QAAQ,gBAAgB,OAAO,cAAc,EAAE,YAAY;AACjE,MAAI,UAAU,UAAU,UAAU,QAAQ;AACxC,UAAM,IAAI,iCAAiC,oCAAoC;AAAA,EACjF;AACA,SAAO;AACT;AAEA,SAAS,2BAA2B,OAAsG;AACxI,QAAM,aAAqC,CAAC;AAC5C,MAAI,MAAM,QAAQ,KAAK,GAAG;AACxB,eAAW,QAAQ,OAAO;AACxB,YAAM,WAAW,kBAAkB,IAAI;AACvC,iBAAW,QAAQ,IAAI,wBAAwB,QAAQ;AAAA,IACzD;AAAA,EACF,WAAW,SAAS,KAAK,GAAG;AAC1B,eAAW,CAAC,aAAa,QAAQ,KAAK,OAAO,QAAQ,KAAK,GAAG;AAC3D,iBAAW,kBAAkB,WAAW,CAAC,IAAI,eAAe,OAAO,QAAQ,CAAC;AAAA,IAC9E;AAAA,EACF,OAAO;AACL,UAAM,IAAI,iCAAiC,oEAAoE;AAAA,EACjH;AACA,MAAI,OAAO,KAAK,UAAU,EAAE,WAAW,GAAG;AACxC,UAAM,IAAI,iCAAiC,wDAAwD;AAAA,EACrG;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,UAAmE;AAClG,SAAO,aAAa,QAAQ,SAAS;AACvC;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,SAAS,OAAO,KAAK;AAC3B,MAAI,CAAC,OAAO,cAAc,MAAM,KAAK,UAAU,GAAG;AAChD,UAAM,IAAI,iCAAiC,GAAG,IAAI,mCAAmC;AAAA,EACvF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,OAAO,OAAO,SAAS,EAAE,EAAE,KAAK;AACtC,MAAI,CAAC,MAAM;AACT,UAAM,IAAI,iCAAiC,GAAG,IAAI,eAAe;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,OAAuB;AACtD,QAAM,QAAQ,gBAAgB,OAAO,OAAO;AAC5C,MAAI,MAAM,SAAS,GAAG,GAAG;AACvB,UAAM,IAAI,iCAAiC,6BAA6B;AAAA,EAC1E;AACA,SAAO;AACT;AAEA,SAAS,0BAA0B,OAAqD;AACtF,QAAM,UAAU,gBAAgB,OAAO,SAAS,EAAE,YAAY;AAC9D,MAAI,YAAY,aAAa,YAAY,SAAS;AAChD,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAgC,MAAuC;AAC9F,MAAI;AACF,UAAM,SAAS,KAAK,MAAM,KAAK,UAAU,KAAK,CAAC;AAC/C,QAAI,CAAC,SAAS,MAAM,GAAG;AACrB,YAAM,IAAI,MAAM,eAAe;AAAA,IACjC;AACA,WAAO;AAAA,EACT,SAAS,OAAO;AACd,UAAM,IAAI,iCAAiC,GAAG,IAAI,sCAAsC;AAAA,EAC1F;AACF;AAEA,SAAS,UAAU,SAA0B;AAC3C,MAAI;AACF,WAAO,KAAK,MAAM,OAAO;AAAA,EAC3B,SAAS,OAAO;AACd,UAAM,IAAI,gBAAgB,sCAAsC;AAAA,MAC9D,QAAQ;AAAA,MACR,MAAM;AAAA,MACN,MAAM;AAAA,IACR,CAAC;AAAA,EACH;AACF;AAEA,SAAS,aAAa,OAA+B;AACnD,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AACA,QAAM,OAAO,MAAM,KAAK;AACxB,SAAO,OAAO,OAAO;AACvB;AAEA,SAAS,SAAS,OAAkD;AAClE,SAAO,OAAO,UAAU,YAAY,UAAU,QAAQ,CAAC,MAAM,QAAQ,KAAK;AAC5E;AAEA,SAAS,cAAc,OAAgB,MAAuC;AAC5E,MAAI,CAAC,SAAS,KAAK,GAAG;AACpB,UAAM,IAAI,2BAA2B,GAAG,IAAI,qBAAqB;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,SAAS,MAAkC;AAClD,MAAI,OAAO,YAAY,aAAa;AAClC,WAAO;AAAA,EACT;AACA,QAAM,QAAQ,QAAQ,IAAI,IAAI;AAC9B,SAAO,SAAS,MAAM,KAAK,IAAI,MAAM,KAAK,IAAI;AAChD;AAEA,SAAS,UAAU,MAA+E;AAChG,MAAI,gBAAgB,YAAY;AAC9B,WAAO;AAAA,EACT;AACA,MAAI,gBAAgB,aAAa;AAC/B,WAAO,IAAI,WAAW,IAAI;AAAA,EAC5B;AACA,MAAI,OAAO,SAAS,UAAU;AAC5B,WAAO,IAAI,YAAY,EAAE,OAAO,IAAI;AAAA,EACtC;AACA,MAAI,SAAS,IAAI,GAAG;AAClB,WAAO,IAAI,YAAY,EAAE,OAAO,KAAK,UAAU,IAAI,CAAC;AAAA,EACtD;AACA,QAAM,IAAI,2BAA2B,6DAA6D;AACpG;AAEA,SAAS,qBAAqB,iBAAmE;AAC/F,MAAI,YAA2B;AAC/B,MAAI,YAA2B;AAC/B,aAAW,QAAQ,OAAO,mBAAmB,EAAE,EAAE,MAAM,GAAG,GAAG;AAC3D,UAAM,CAAC,KAAK,KAAK,IAAI,KAAK,KAAK,EAAE,MAAM,KAAK,CAAC;AAC7C,QAAI,QAAQ,KAAK;AACf,YAAM,SAAS,OAAO,SAAS,SAAS,IAAI,EAAE;AAC9C,UAAI,CAAC,OAAO,SAAS,MAAM,GAAG;AAC5B,cAAM,IAAI,6BAA6B,yCAAyC;AAAA,MAClF;AACA,kBAAY;AAAA,IACd;AACA,QAAI,QAAQ,MAAM;AAChB,kBAAY,OAAO,SAAS,EAAE,EAAE,KAAK;AAAA,IACvC;AAAA,EACF;AACA,MAAI,cAAc,QAAQ,CAAC,WAAW;AACpC,UAAM,IAAI,6BAA6B,yCAAyC;AAAA,EAClF;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEA,eAAe,cAA+B;AAC5C,MAAI,WAAW,QAAQ,YAAY;AACjC,WAAO,WAAW,OAAO,WAAW;AAAA,EACtC;AACA,QAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,MAAI,WAAW,QAAQ,iBAAiB;AACtC,eAAW,OAAO,gBAAgB,KAAK;AAAA,EACzC,WAAW,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AACnE,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,UAAM,IAAI,OAAO,YAAY,EAAE,CAAC;AAAA,EAClC,OAAO;AACL,UAAM,IAAI,iCAAiC,iEAAiE;AAAA,EAC9G;AACA,SAAO,WAAW,KAAK;AACzB;AAEA,eAAe,cAAc,QAAgB,SAAsC;AACjF,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,gBAAgB,IAAI,WAAW,QAAQ,UAAU;AACvD,kBAAc,IAAI,OAAO;AACzB,UAAM,MAAM,MAAM,WAAW,OAAO,OAAO;AAAA,MACzC;AAAA,MACA,IAAI,YAAY,EAAE,OAAO,MAAM;AAAA,MAC/B,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC;AAAA,MACA,CAAC,MAAM;AAAA,IACT;AACA,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,KAAK,QAAQ,KAAK,aAAa;AAC7E,WAAO,WAAW,IAAI,WAAW,MAAM,CAAC;AAAA,EAC1C;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,OAAO,WAAW,UAAU,MAAM,EAAE,OAAO,OAAO,KAAK,OAAO,CAAC,EAAE,OAAO,KAAK;AAAA,EACtF;AACA,QAAM,IAAI,iCAAiC,yDAAyD;AACtG;AAEA,eAAe,eAAe,UAAmC;AAC/D,QAAM,QAAQ,IAAI,YAAY,EAAE,OAAO,QAAQ;AAC/C,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,OAAO,WAAW,KAAK;AACrE,WAAO,UAAU,WAAW,IAAI,WAAW,MAAM,CAAC,CAAC;AAAA,EACrD;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,UAAU,OAAO,WAAW,QAAQ,EAAE,OAAO,OAAO,KAAK,KAAK,CAAC,EAAE,OAAO,KAAK,CAAC;AAAA,EACvF;AACA,QAAM,IAAI,iCAAiC,qDAAqD;AAClG;AAEA,SAAS,WAAW,OAA2B;AAC7C,SAAO,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AAC7E;AAEA,SAAS,WAAW,KAAyB;AAC3C,QAAM,aAAa,OAAO,OAAO,EAAE,EAAE,KAAK,EAAE,YAAY;AACxD,MAAI,WAAW,SAAS,MAAM,KAAK,CAAC,cAAc,KAAK,UAAU,GAAG;AAClE,UAAM,IAAI,6BAA6B,wBAAwB;AAAA,EACjE;AACA,QAAM,QAAQ,IAAI,WAAW,WAAW,SAAS,CAAC;AAClD,WAAS,QAAQ,GAAG,QAAQ,WAAW,QAAQ,SAAS,GAAG;AACzD,UAAM,QAAQ,CAAC,IAAI,OAAO,SAAS,WAAW,MAAM,OAAO,QAAQ,CAAC,GAAG,EAAE;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,eAAe,mBAAmB,MAAc,OAAiC;AAC/E,QAAM,YAAY,WAAW,IAAI;AACjC,QAAM,aAAa,WAAW,KAAK;AACnC,MAAI,UAAU,WAAW,WAAW,QAAQ;AAC1C,WAAO;AAAA,EACT;AACA,MAAI,OAAO;AACX,WAAS,QAAQ,GAAG,QAAQ,UAAU,QAAQ,SAAS,GAAG;AACxD,YAAQ,UAAU,KAAK,IAAK,WAAW,KAAK;AAAA,EAC9C;AACA,SAAO,SAAS;AAClB;","names":[]}
+{"version":3,"sources":["../src/index.ts"],"sourcesContent":["export const DEFAULT_SIGLUME_API_BASE = \"https://siglume.com/v1\";\nexport const DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME = \"siglume-external-402-v1\";\n// Recurring (subscription / scheduled autopay) approval uses a DISTINCT scheme\n// with cadence bound into the HMAC, so a one-time checkout challenge can never\n// be replayed as a recurring authorization and vice versa.\nexport const DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME = \"siglume-external-402-recurring-v1\";\nexport const DIRECT_REQUEST_PAYMENT_MODE = \"external_402\";\nexport const DIRECT_REQUEST_PAYMENT_RECEIPT_KIND = \"sdrp_direct_payment\";\nexport const DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND = \"sdrp_direct_payment_allowance\";\nexport const DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE = \"sdrp_direct_payment_requirement\";\nexport const DEFAULT_WEBHOOK_TOLERANCE_SECONDS = 300;\n\nexport type DirectRequestPaymentCurrency = \"JPY\" | \"USD\";\nexport type DirectRequestPaymentToken = \"JPYC\" | \"USDC\";\n\nexport interface DirectRequestPaymentChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface ParsedDirectRequestPaymentChallenge {\n  scheme: string;\n  nonce: string;\n  signature: string;\n}\n\n/** \"monthly\" authorizes a Siglume-swept subscription; \"daily\" authorizes\n *  merchant-triggered scheduled autopay. It is an approval tag, not a\n *  run-count limiter. */\nexport type DirectRequestPaymentRecurringCadence = \"monthly\" | \"daily\";\n\nexport interface DirectRequestPaymentRecurringChallengeInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  cadence: DirectRequestPaymentRecurringCadence | string;\n  secret: string;\n  nonce?: string;\n}\n\nexport interface DirectRequestPaymentRecurringChallenge {\n  scheme: typeof DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME;\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency;\n  cadence: DirectRequestPaymentRecurringCadence;\n  nonce: string;\n  signature: string;\n  challenge: string;\n  challenge_hash: string;\n}\n\nexport interface Web3TransactionRequest {\n  network?: string;\n  chain_id?: number;\n  from?: string;\n  to?: string;\n  data?: string;\n  value?: string | number;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectPaymentRequirement {\n  direct_payment_requirement_id: string;\n  requirement_id: string;\n  id: string;\n  mode: string;\n  merchant?: string | null;\n  challenge_hash?: string | null;\n  buyer_user_id: string;\n  agent_id?: string | null;\n  product_listing_id: string;\n  listing_id: string;\n  access_grant_id?: string | null;\n  capability_key: string;\n  requirement_hash: string;\n  request_hash: string;\n  siglume_signature: string;\n  token_symbol: string;\n  currency: string;\n  amount_minor: number;\n  fee_bps: number;\n  status: string;\n  expires_at?: string | null;\n  confirmed_at?: string | null;\n  spent_at?: string | null;\n  chain_receipt_id?: string | null;\n  transaction_request: Web3TransactionRequest;\n  approve_transaction_request?: Web3TransactionRequest | null;\n  buyer_confirmation?: string | null;\n  non_custodial: boolean;\n  metadata_jsonb?: Record<string, unknown>;\n  created_at?: string | null;\n  updated_at?: string | null;\n}\n\nexport interface DirectPaymentRequirementCreateInput {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n  token_symbol?: DirectRequestPaymentToken | string;\n  allowance_amount_minor?: number;\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectPaymentVerifyInput {\n  receipt_id?: string | null;\n  chain_receipt_id?: string | null;\n  await_finality?: boolean;\n  await_required_status?: string | null;\n  await_timeout_seconds?: number;\n  await_poll_seconds?: number;\n}\n\nexport interface Web3PreparedTransactionExecutePayload {\n  transaction_request: Web3TransactionRequest;\n  receipt_kind: string;\n  reference_type: typeof DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE;\n  reference_id: string;\n  metadata?: Record<string, unknown>;\n  await_finality?: boolean;\n}\n\nexport interface Web3PreparedTransactionExecuteResult {\n  receipt?: Record<string, unknown>;\n  finalization?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentClientOptions {\n  auth_token?: string;\n  base_url?: string;\n  fetch?: typeof fetch;\n  timeout_ms?: number;\n  user_agent?: string;\n}\n\nexport type DirectRequestPaymentBillingPlan = \"launch\" | \"free\" | \"starter\" | \"growth\" | \"pro\";\n\nexport interface DirectRequestPaymentMerchantAccount {\n  merchant_account_id: string;\n  merchant: string;\n  merchant_user_id: string;\n  user_wallet_id?: string | null;\n  billing_mandate_id?: string | null;\n  display_name?: string | null;\n  status?: string | null;\n  billing_status?: string | null;\n  billing_plan?: string | null;\n  billing_currency?: string | null;\n  token_symbol?: string | null;\n  monthly_fee_minor?: number | null;\n  settlement_fee_bps?: number | null;\n  settlement_fee_min_minor?: number | null;\n  included_monthly_payments?: number | null;\n  metadata_jsonb?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentMerchantSetupInput {\n  merchant: string;\n  display_name?: string;\n  billing_plan?: DirectRequestPaymentBillingPlan | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  allowed_currencies?: Record<string, string> | Array<DirectRequestPaymentCurrency | string>;\n  webhook_callback_url?: string;\n  billing_mandate_cap_minor?: number;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantBillingMandateInput {\n  currency?: DirectRequestPaymentCurrency | string;\n  billing_currency?: DirectRequestPaymentCurrency | string;\n  max_amount_minor?: number;\n}\n\nexport interface DirectRequestPaymentMerchantResponse {\n  merchant_account: DirectRequestPaymentMerchantAccount;\n  challenge_secret?: string | null;\n  challenge_secret_created?: boolean;\n  created?: boolean | null;\n  listing_id?: string | null;\n  mandate?: Record<string, unknown> | null;\n  next_steps?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscriptionInput {\n  callback_url: string;\n  description?: string;\n  event_types?: string[];\n  metadata?: Record<string, unknown>;\n}\n\nexport interface DirectRequestPaymentWebhookSubscription {\n  webhook_subscription_id?: string;\n  subscription_id?: string;\n  id?: string;\n  callback_url?: string;\n  signing_secret?: string;\n  status?: string;\n  event_types?: string[];\n  [key: string]: unknown;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupInput extends DirectRequestPaymentMerchantSetupInput {\n  create_webhook_subscription?: boolean;\n  prepare_billing_mandate?: boolean;\n  webhook_event_types?: string[];\n  webhook_description?: string;\n}\n\nexport interface DirectRequestPaymentCheckoutSetupResult {\n  merchant: DirectRequestPaymentMerchantResponse;\n  billing_mandate?: DirectRequestPaymentMerchantResponse | null;\n  webhook_subscription?: DirectRequestPaymentWebhookSubscription | null;\n  env: Record<string, string>;\n}\n\nexport interface SiglumeEnvelopeMeta {\n  request_id?: string | null;\n  trace_id?: string | null;\n  [key: string]: unknown;\n}\n\nexport interface WebhookSignatureVerification {\n  timestamp: number;\n  signature: string;\n}\n\nexport interface DirectRequestPaymentWebhookEvent {\n  id: string;\n  type: \"direct_payment.confirmed\" | string;\n  api_version: string;\n  occurred_at: string;\n  data: {\n    mode?: string;\n    merchant?: string;\n    direct_payment_requirement_id?: string;\n    requirement_id?: string;\n    challenge_hash?: string;\n    amount_minor?: number;\n    currency?: string;\n    token_symbol?: string;\n    status?: string;\n    [key: string]: unknown;\n  };\n  [key: string]: unknown;\n}\n\nexport class SiglumeDirectRequestPaymentError extends Error {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeDirectRequestPaymentError\";\n  }\n}\n\nexport class SiglumeApiError extends SiglumeDirectRequestPaymentError {\n  readonly status: number;\n  readonly code: string;\n  readonly data: unknown;\n\n  constructor(message: string, options: { status: number; code?: string; data?: unknown }) {\n    super(message);\n    this.name = \"SiglumeApiError\";\n    this.status = options.status;\n    this.code = options.code ?? \"SIGLUME_API_ERROR\";\n    this.data = options.data;\n  }\n}\n\nexport class SiglumeWebhookSignatureError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookSignatureError\";\n  }\n}\n\nexport class SiglumeWebhookPayloadError extends SiglumeDirectRequestPaymentError {\n  constructor(message: string) {\n    super(message);\n    this.name = \"SiglumeWebhookPayloadError\";\n  }\n}\n\nexport class DirectRequestPaymentClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A buyer Siglume bearer token is required for Direct Request Payment API calls. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.6\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async createPaymentRequirement(input: DirectPaymentRequirementCreateInput): Promise<DirectPaymentRequirement> {\n    const payload: Record<string, unknown> = {\n      mode: DIRECT_REQUEST_PAYMENT_MODE,\n      merchant: normalizeMerchant(input.merchant),\n      amount_minor: positiveInteger(input.amount_minor, \"amount_minor\"),\n      currency: normalizeCurrency(input.currency),\n      challenge: requireNonEmpty(input.challenge, \"challenge\"),\n    };\n    if (input.token_symbol !== undefined) {\n      payload.token_symbol = normalizeToken(input.token_symbol);\n    }\n    if (input.allowance_amount_minor !== undefined) {\n      payload.allowance_amount_minor = positiveInteger(input.allowance_amount_minor, \"allowance_amount_minor\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectPaymentRequirement>(\"POST\", \"/sdrp/direct-payments/requirements\", payload);\n  }\n\n  async getPaymentRequirement(requirement_id: string): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"GET\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}`,\n    );\n  }\n\n  async verifyPaymentRequirement(\n    requirement_id: string,\n    input: DirectPaymentVerifyInput,\n  ): Promise<DirectPaymentRequirement> {\n    return this.request<DirectPaymentRequirement>(\n      \"POST\",\n      `/sdrp/direct-payments/requirements/${encodeURIComponent(requireNonEmpty(requirement_id, \"requirement_id\"))}/verify`,\n      input,\n    );\n  }\n\n  async executePreparedTransaction(\n    payload: Web3PreparedTransactionExecutePayload,\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.request<Web3PreparedTransactionExecuteResult>(\n      \"POST\",\n      \"/market/web3/transactions/execute-prepared\",\n      payload,\n    );\n  }\n\n  async executePaymentTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildPaymentExecutionPayload(requirement, options));\n  }\n\n  async executeAllowanceTransaction(\n    requirement: DirectPaymentRequirement,\n    options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n  ): Promise<Web3PreparedTransactionExecuteResult> {\n    return this.executePreparedTransaction(buildAllowanceExecutionPayload(requirement, options));\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport class DirectRequestPaymentMerchantClient {\n  readonly auth_token: string;\n  readonly base_url: string;\n  readonly timeout_ms: number;\n  readonly user_agent: string;\n  private readonly fetch_impl: typeof fetch;\n\n  constructor(options: DirectRequestPaymentClientOptions = {}) {\n    const authToken = options.auth_token ?? envValue(\"SIGLUME_MERCHANT_AUTH_TOKEN\") ?? envValue(\"SIGLUME_AUTH_TOKEN\");\n    if (!authToken) {\n      throw new SiglumeDirectRequestPaymentError(\n        \"A merchant Siglume bearer token is required for Direct Request Payment merchant setup. Developer Portal API keys are not accepted.\",\n      );\n    }\n    const fetchImpl = options.fetch ?? globalThis.fetch;\n    if (!fetchImpl) {\n      throw new SiglumeDirectRequestPaymentError(\"A fetch implementation is required in this runtime.\");\n    }\n    this.auth_token = authToken;\n    this.base_url = (options.base_url ?? envValue(\"SIGLUME_API_BASE\") ?? DEFAULT_SIGLUME_API_BASE).replace(/\\/+$/, \"\");\n    this.timeout_ms = Math.max(1, Math.trunc(options.timeout_ms ?? 15000));\n    this.user_agent = options.user_agent ?? \"@siglume/direct-request-payment/0.3.6\";\n    this.fetch_impl = fetchImpl;\n  }\n\n  async setupMerchant(input: DirectRequestPaymentMerchantSetupInput): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {\n      merchant: normalizeSelfServiceMerchant(input.merchant),\n      billing_plan: normalizeBillingPlan(input.billing_plan ?? \"launch\"),\n      billing_currency: normalizeCurrency(input.billing_currency ?? \"JPY\"),\n    };\n    if (input.display_name !== undefined) {\n      payload.display_name = requireNonEmpty(input.display_name, \"display_name\");\n    }\n    if (input.allowed_currencies !== undefined) {\n      payload.allowed_currencies = normalizeAllowedCurrencies(input.allowed_currencies);\n    }\n    if (input.webhook_callback_url !== undefined) {\n      payload.webhook_callback_url = requireNonEmpty(input.webhook_callback_url, \"webhook_callback_url\");\n    }\n    if (input.billing_mandate_cap_minor !== undefined) {\n      payload.billing_mandate_cap_minor = positiveInteger(input.billing_mandate_cap_minor, \"billing_mandate_cap_minor\");\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\"POST\", \"/sdrp/direct-payments/merchants\", payload);\n  }\n\n  async getMerchant(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"GET\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}`,\n    );\n  }\n\n  async rotateChallengeSecret(merchant: string): Promise<DirectRequestPaymentMerchantResponse> {\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/challenge-secret/rotate`,\n    );\n  }\n\n  async prepareBillingMandate(\n    merchant: string,\n    input: DirectRequestPaymentMerchantBillingMandateInput = {},\n  ): Promise<DirectRequestPaymentMerchantResponse> {\n    const payload: Record<string, unknown> = {};\n    if (input.currency !== undefined) {\n      payload.currency = normalizeCurrency(input.currency);\n    }\n    if (input.billing_currency !== undefined) {\n      payload.billing_currency = normalizeCurrency(input.billing_currency);\n    }\n    if (input.max_amount_minor !== undefined) {\n      payload.max_amount_minor = positiveInteger(input.max_amount_minor, \"max_amount_minor\");\n    }\n    return this.request<DirectRequestPaymentMerchantResponse>(\n      \"POST\",\n      `/sdrp/direct-payments/merchants/${encodeURIComponent(normalizeSelfServiceMerchant(merchant))}/billing-mandate`,\n      payload,\n    );\n  }\n\n  async createWebhookSubscription(\n    input: DirectRequestPaymentWebhookSubscriptionInput,\n  ): Promise<DirectRequestPaymentWebhookSubscription> {\n    const payload: Record<string, unknown> = {\n      callback_url: requireNonEmpty(input.callback_url, \"callback_url\"),\n      event_types: input.event_types?.length\n        ? input.event_types.map((eventType) => requireNonEmpty(eventType, \"event_type\"))\n        : [\"direct_payment.confirmed\", \"direct_payment.spent\"],\n    };\n    if (input.description !== undefined) {\n      payload.description = requireNonEmpty(input.description, \"description\");\n    }\n    if (input.metadata !== undefined) {\n      payload.metadata = cloneJsonObject(input.metadata, \"metadata\");\n    }\n    return this.request<DirectRequestPaymentWebhookSubscription>(\"POST\", \"/market/webhooks/subscriptions\", payload);\n  }\n\n  async setupCheckout(input: DirectRequestPaymentCheckoutSetupInput): Promise<DirectRequestPaymentCheckoutSetupResult> {\n    const merchant = await this.setupMerchant(input);\n    const merchantKey = merchant.merchant_account.merchant;\n    const billing_mandate = input.prepare_billing_mandate === false\n      ? null\n      : await this.prepareBillingMandate(merchantKey, {\n        billing_currency: merchant.merchant_account.billing_currency ?? input.billing_currency ?? \"JPY\",\n        max_amount_minor: input.max_amount_minor ?? input.billing_mandate_cap_minor,\n      });\n    const shouldCreateWebhook = input.create_webhook_subscription ?? Boolean(input.webhook_callback_url);\n    const webhook_subscription = shouldCreateWebhook && input.webhook_callback_url\n      ? await this.createWebhookSubscription({\n        callback_url: input.webhook_callback_url,\n        description: input.webhook_description ?? `${merchantKey} Direct Request Payment`,\n        event_types: input.webhook_event_types,\n        metadata: { merchant: merchantKey, sdk: \"@siglume/direct-request-payment\" },\n      })\n      : null;\n    const env: Record<string, string> = {\n      SIGLUME_DIRECT_PAYMENT_MERCHANT: merchantKey,\n    };\n    if (merchant.challenge_secret) {\n      env.SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET = merchant.challenge_secret;\n    }\n    const webhookSecret = stringOrNull(webhook_subscription?.signing_secret);\n    if (webhookSecret) {\n      env.SIGLUME_WEBHOOK_SECRET = webhookSecret;\n    }\n    return { merchant, billing_mandate, webhook_subscription, env };\n  }\n\n  async request<T>(method: string, path: string, json_body?: unknown): Promise<T> {\n    const controller = new AbortController();\n    const timeout = setTimeout(() => controller.abort(), this.timeout_ms);\n    try {\n      const headers: Record<string, string> = {\n        \"Accept\": \"application/json\",\n        \"Authorization\": `Bearer ${this.auth_token}`,\n        \"User-Agent\": this.user_agent,\n      };\n      let body: string | undefined;\n      if (json_body !== undefined) {\n        headers[\"Content-Type\"] = \"application/json\";\n        body = JSON.stringify(json_body);\n      }\n      const response = await this.fetch_impl(`${this.base_url}${path}`, {\n        method,\n        headers,\n        body,\n        signal: controller.signal,\n      });\n      const rawText = await response.text();\n      const parsed = rawText ? parseJson(rawText) : {};\n      if (!response.ok) {\n        const error = isRecord(parsed) && isRecord(parsed.error) ? parsed.error : {};\n        const code = stringOrNull(error.code) ?? stringOrNull((parsed as Record<string, unknown>).code) ?? `HTTP_${response.status}`;\n        const message = stringOrNull(error.message) ?? stringOrNull((parsed as Record<string, unknown>).message) ?? response.statusText;\n        throw new SiglumeApiError(message, { status: response.status, code, data: parsed });\n      }\n      if (isRecord(parsed) && \"data\" in parsed) {\n        return parsed.data as T;\n      }\n      return parsed as T;\n    } finally {\n      clearTimeout(timeout);\n    }\n  }\n}\n\nexport async function createDirectRequestPaymentChallenge(\n  input: DirectRequestPaymentChallengeInput,\n): Promise<DirectRequestPaymentChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  const material = `${merchant}:${amount}:${currency}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport function parseDirectRequestPaymentChallenge(challenge: string): ParsedDirectRequestPaymentChallenge {\n  const parts = requireNonEmpty(challenge, \"challenge\").split(\":\");\n  if (parts.length !== 3) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge must be scheme:nonce:signature.\");\n  }\n  const [scheme, nonce, signature] = parts;\n  if (!scheme || !nonce || !signature) {\n    throw new SiglumeDirectRequestPaymentError(\"Direct Request Payment challenge is incomplete.\");\n  }\n  return { scheme, nonce, signature };\n}\n\n/** Merchant-side, ONE-TIME approval of a recurring authorization: amount +\n *  currency + cadence are bound into the HMAC. Recurring charges afterwards\n *  are deliberately challenge-free; the recurring authorization and the\n *  buyer's mandate/budget caps are the per-charge integrity checks. Cadence\n *  \"monthly\" = subscription, \"daily\" = scheduled autopay approval tag. */\nexport async function createDirectRequestPaymentRecurringChallenge(\n  input: DirectRequestPaymentRecurringChallengeInput,\n): Promise<DirectRequestPaymentRecurringChallenge> {\n  const merchant = normalizeMerchant(input.merchant);\n  const amount_minor = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = input.nonce ? normalizeChallengeNonce(input.nonce) : await randomNonce();\n  const signature = await createDirectRequestPaymentRecurringChallengeSignature(input.secret, {\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n  });\n  const challenge = `${DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME}:${nonce}:${signature}`;\n  return {\n    scheme: DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME,\n    merchant,\n    amount_minor,\n    currency,\n    cadence,\n    nonce,\n    signature,\n    challenge,\n    challenge_hash: await sha256Prefixed(challenge),\n  };\n}\n\nexport async function createDirectRequestPaymentRecurringChallengeSignature(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    nonce: string;\n  },\n): Promise<string> {\n  const normalizedSecret = requireNonEmpty(secret, \"secret\");\n  const merchant = normalizeMerchant(input.merchant);\n  const amount = positiveInteger(input.amount_minor, \"amount_minor\");\n  const currency = normalizeCurrency(input.currency);\n  const cadence = normalizeRecurringCadence(input.cadence);\n  const nonce = normalizeChallengeNonce(input.nonce);\n  // MUST stay byte-identical to the server's\n  // _external_402_recurring_challenge_signature — both sides change together.\n  const material = `${merchant}:${amount}:${currency}:${cadence}:${nonce}`;\n  return hmacSha256Hex(normalizedSecret, new TextEncoder().encode(material));\n}\n\nexport async function verifyDirectRequestPaymentRecurringChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    cadence: DirectRequestPaymentRecurringCadence | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_RECURRING_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentRecurringChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    cadence: input.cadence,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function verifyDirectRequestPaymentChallenge(\n  secret: string,\n  input: {\n    merchant: string;\n    amount_minor: number;\n    currency: DirectRequestPaymentCurrency | string;\n    challenge: string;\n  },\n): Promise<boolean> {\n  const parsed = parseDirectRequestPaymentChallenge(input.challenge);\n  if (parsed.scheme !== DIRECT_REQUEST_PAYMENT_CHALLENGE_SCHEME) {\n    return false;\n  }\n  const expected = await createDirectRequestPaymentChallengeSignature(secret, {\n    merchant: input.merchant,\n    amount_minor: input.amount_minor,\n    currency: input.currency,\n    nonce: parsed.nonce,\n  });\n  return timingSafeEqualHex(expected, parsed.signature);\n}\n\nexport async function directRequestPaymentChallengeHash(challenge: string): Promise<string> {\n  return sha256Prefixed(requireNonEmpty(challenge, \"challenge\"));\n}\n\nexport async function directRequestPaymentRequestHash(input: {\n  merchant: string;\n  amount_minor: number;\n  currency: DirectRequestPaymentCurrency | string;\n  challenge: string;\n}): Promise<string> {\n  const material = `${normalizeMerchant(input.merchant)}${positiveInteger(input.amount_minor, \"amount_minor\")}${normalizeCurrency(input.currency)}${requireNonEmpty(input.challenge, \"challenge\")}`;\n  return sha256Prefixed(material);\n}\n\nexport function buildPaymentExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  return buildPreparedTransactionExecutionPayload(requirement, requirement.transaction_request, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildAllowanceExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  options: { await_finality?: boolean; metadata?: Record<string, unknown> } = {},\n): Web3PreparedTransactionExecutePayload {\n  const approveRequest = requirement.approve_transaction_request;\n  if (!approveRequest || Object.keys(approveRequest).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"This payment requirement does not include an allowance approval transaction.\");\n  }\n  return buildPreparedTransactionExecutionPayload(requirement, approveRequest, {\n    receipt_kind: DIRECT_REQUEST_PAYMENT_ALLOWANCE_RECEIPT_KIND,\n    await_finality: options.await_finality,\n    metadata: options.metadata,\n  });\n}\n\nexport function buildPreparedTransactionExecutionPayload(\n  requirement: DirectPaymentRequirement,\n  transaction_request: Web3TransactionRequest,\n  options: {\n    receipt_kind: string;\n    await_finality?: boolean;\n    metadata?: Record<string, unknown>;\n  },\n): Web3PreparedTransactionExecutePayload {\n  const metadata = {\n    ...(isRecord(transaction_request.metadata_jsonb) ? transaction_request.metadata_jsonb : {}),\n    ...(options.metadata ?? {}),\n  };\n  return {\n    transaction_request,\n    receipt_kind: requireNonEmpty(options.receipt_kind, \"receipt_kind\"),\n    reference_type: DIRECT_REQUEST_PAYMENT_REFERENCE_TYPE,\n    reference_id: requirement.requirement_id,\n    metadata,\n    await_finality: Boolean(options.await_finality),\n  };\n}\n\nexport async function computeWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp: number },\n): Promise<string> {\n  if (!signing_secret) {\n    throw new SiglumeWebhookSignatureError(\"SIGLUME webhook signing secret is required.\");\n  }\n  const timestamp = Math.trunc(options.timestamp);\n  const bytes = bodyBytes(body);\n  const prefix = new TextEncoder().encode(`${timestamp}.`);\n  const payload = new Uint8Array(prefix.length + bytes.length);\n  payload.set(prefix, 0);\n  payload.set(bytes, prefix.length);\n  return hmacSha256Hex(signing_secret, payload);\n}\n\nexport async function buildWebhookSignatureHeader(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  options: { timestamp?: number } = {},\n): Promise<string> {\n  const timestamp = Math.trunc(options.timestamp ?? Date.now() / 1000);\n  const signature = await computeWebhookSignature(signing_secret, body, { timestamp });\n  return `t=${timestamp},v1=${signature}`;\n}\n\nexport async function verifyWebhookSignature(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<WebhookSignatureVerification> {\n  const { timestamp, signature } = parseSignatureHeader(signature_header);\n  const toleranceSeconds = Math.max(1, Math.trunc(options.tolerance_seconds ?? DEFAULT_WEBHOOK_TOLERANCE_SECONDS));\n  const nowSeconds = Math.trunc(options.now ?? Date.now() / 1000);\n  if (Math.abs(nowSeconds - timestamp) > toleranceSeconds) {\n    throw new SiglumeWebhookSignatureError(\"Webhook timestamp is outside the allowed tolerance window.\");\n  }\n  const expected = await computeWebhookSignature(signing_secret, body, { timestamp });\n  if (!(await timingSafeEqualHex(expected, signature))) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature did not match.\");\n  }\n  return { timestamp, signature };\n}\n\nexport function parseDirectRequestPaymentWebhookEvent(payload: unknown): DirectRequestPaymentWebhookEvent {\n  const event = requireRecord(payload, \"webhook event\");\n  const data = requireRecord(event.data, \"webhook event data\");\n  const parsed = {\n    ...event,\n    id: requireNonEmpty(stringOrNull(event.id) ?? \"\", \"webhook event id\"),\n    type: requireNonEmpty(stringOrNull(event.type) ?? \"\", \"webhook event type\"),\n    api_version: requireNonEmpty(stringOrNull(event.api_version) ?? \"\", \"webhook api_version\"),\n    occurred_at: requireNonEmpty(stringOrNull(event.occurred_at) ?? \"\", \"webhook occurred_at\"),\n    data: { ...data },\n  } as DirectRequestPaymentWebhookEvent;\n  if (parsed.type === \"direct_payment.confirmed\" && parsed.data.mode !== DIRECT_REQUEST_PAYMENT_MODE) {\n    throw new SiglumeWebhookPayloadError(\"direct_payment.confirmed webhook must carry data.mode='external_402'.\");\n  }\n  return parsed;\n}\n\nexport async function verifyDirectRequestPaymentWebhook(\n  signing_secret: string,\n  body: Uint8Array | ArrayBuffer | string | Record<string, unknown>,\n  signature_header: string,\n  options: { tolerance_seconds?: number; now?: number } = {},\n): Promise<{ event: DirectRequestPaymentWebhookEvent; verification: WebhookSignatureVerification }> {\n  const verification = await verifyWebhookSignature(signing_secret, body, signature_header, options);\n  const text = new TextDecoder().decode(bodyBytes(body));\n  let parsed: unknown;\n  try {\n    parsed = JSON.parse(text);\n  } catch (error) {\n    throw new SiglumeWebhookPayloadError(\"Webhook body must contain valid JSON.\");\n  }\n  return { event: parseDirectRequestPaymentWebhookEvent(parsed), verification };\n}\n\nexport const createExternal402Challenge = createDirectRequestPaymentChallenge;\nexport const verifyExternal402Challenge = verifyDirectRequestPaymentChallenge;\nexport const createExternal402RecurringChallenge = createDirectRequestPaymentRecurringChallenge;\nexport const verifyExternal402RecurringChallenge = verifyDirectRequestPaymentRecurringChallenge;\n\nfunction normalizeMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9._-]{0,95}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be a lowercase key using letters, numbers, dot, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeSelfServiceMerchant(value: string): string {\n  const merchant = requireNonEmpty(value, \"merchant\").toLowerCase();\n  if (!/^[a-z0-9][a-z0-9_-]{2,63}$/.test(merchant)) {\n    throw new SiglumeDirectRequestPaymentError(\"merchant must be 3-64 chars using lowercase letters, numbers, underscore, or hyphen.\");\n  }\n  return merchant;\n}\n\nfunction normalizeBillingPlan(value: string): DirectRequestPaymentBillingPlan {\n  const plan = requireNonEmpty(value, \"billing_plan\").toLowerCase();\n  if (plan === \"launch\" || plan === \"free\" || plan === \"starter\" || plan === \"growth\" || plan === \"pro\") {\n    return plan;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"billing_plan must be launch, starter, growth, or pro.\");\n}\n\nfunction normalizeCurrency(value: string): DirectRequestPaymentCurrency {\n  const currency = requireNonEmpty(value, \"currency\").toUpperCase();\n  if (currency !== \"JPY\" && currency !== \"USD\") {\n    throw new SiglumeDirectRequestPaymentError(\"currency must be JPY or USD.\");\n  }\n  return currency;\n}\n\nfunction normalizeToken(value: string): DirectRequestPaymentToken {\n  const token = requireNonEmpty(value, \"token_symbol\").toUpperCase();\n  if (token !== \"JPYC\" && token !== \"USDC\") {\n    throw new SiglumeDirectRequestPaymentError(\"token_symbol must be JPYC or USDC.\");\n  }\n  return token;\n}\n\nfunction normalizeAllowedCurrencies(value: Record<string, string> | Array<DirectRequestPaymentCurrency | string>): Record<string, string> {\n  const normalized: Record<string, string> = {};\n  if (Array.isArray(value)) {\n    for (const item of value) {\n      const currency = normalizeCurrency(item);\n      normalized[currency] = defaultTokenForCurrency(currency);\n    }\n  } else if (isRecord(value)) {\n    for (const [rawCurrency, rawToken] of Object.entries(value)) {\n      normalized[normalizeCurrency(rawCurrency)] = normalizeToken(String(rawToken));\n    }\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must be an array or a currency-to-token object.\");\n  }\n  if (Object.keys(normalized).length === 0) {\n    throw new SiglumeDirectRequestPaymentError(\"allowed_currencies must include at least one currency.\");\n  }\n  return normalized;\n}\n\nfunction defaultTokenForCurrency(currency: DirectRequestPaymentCurrency): DirectRequestPaymentToken {\n  return currency === \"JPY\" ? \"JPYC\" : \"USDC\";\n}\n\nfunction positiveInteger(value: number, name: string): number {\n  const parsed = Number(value);\n  if (!Number.isSafeInteger(parsed) || parsed <= 0) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a positive safe integer.`);\n  }\n  return parsed;\n}\n\nfunction requireNonEmpty(value: string, name: string): string {\n  const text = String(value ?? \"\").trim();\n  if (!text) {\n    throw new SiglumeDirectRequestPaymentError(`${name} is required.`);\n  }\n  return text;\n}\n\nfunction normalizeChallengeNonce(value: string): string {\n  const nonce = requireNonEmpty(value, \"nonce\");\n  if (nonce.includes(\":\")) {\n    throw new SiglumeDirectRequestPaymentError(\"nonce must not contain ':'.\");\n  }\n  return nonce;\n}\n\nfunction normalizeRecurringCadence(value: string): DirectRequestPaymentRecurringCadence {\n  const cadence = requireNonEmpty(value, \"cadence\").toLowerCase();\n  if (cadence !== \"monthly\" && cadence !== \"daily\") {\n    throw new SiglumeDirectRequestPaymentError(\n      'cadence must be \"monthly\" (subscription) or \"daily\" (scheduled autopay).',\n    );\n  }\n  return cadence;\n}\n\nfunction cloneJsonObject(value: Record<string, unknown>, name: string): Record<string, unknown> {\n  try {\n    const cloned = JSON.parse(JSON.stringify(value)) as unknown;\n    if (!isRecord(cloned)) {\n      throw new Error(\"not an object\");\n    }\n    return cloned;\n  } catch (error) {\n    throw new SiglumeDirectRequestPaymentError(`${name} must be a JSON-serializable object.`);\n  }\n}\n\nfunction parseJson(rawText: string): unknown {\n  try {\n    return JSON.parse(rawText);\n  } catch (error) {\n    throw new SiglumeApiError(\"Siglume API returned invalid JSON.\", {\n      status: 502,\n      code: \"INVALID_JSON_RESPONSE\",\n      data: rawText,\n    });\n  }\n}\n\nfunction stringOrNull(value: unknown): string | null {\n  if (typeof value !== \"string\") {\n    return null;\n  }\n  const text = value.trim();\n  return text ? text : null;\n}\n\nfunction isRecord(value: unknown): value is Record<string, unknown> {\n  return typeof value === \"object\" && value !== null && !Array.isArray(value);\n}\n\nfunction requireRecord(value: unknown, name: string): Record<string, unknown> {\n  if (!isRecord(value)) {\n    throw new SiglumeWebhookPayloadError(`${name} must be an object.`);\n  }\n  return value;\n}\n\nfunction envValue(name: string): string | undefined {\n  if (typeof process === \"undefined\") {\n    return undefined;\n  }\n  const value = process.env[name];\n  return value && value.trim() ? value.trim() : undefined;\n}\n\nfunction bodyBytes(body: Uint8Array | ArrayBuffer | string | Record<string, unknown>): Uint8Array {\n  if (body instanceof Uint8Array) {\n    return body;\n  }\n  if (body instanceof ArrayBuffer) {\n    return new Uint8Array(body);\n  }\n  if (typeof body === \"string\") {\n    return new TextEncoder().encode(body);\n  }\n  if (isRecord(body)) {\n    return new TextEncoder().encode(JSON.stringify(body));\n  }\n  throw new SiglumeWebhookPayloadError(\"Webhook body must be raw bytes, a string, or a JSON object.\");\n}\n\nfunction parseSignatureHeader(signatureHeader: string): { timestamp: number; signature: string } {\n  let timestamp: number | null = null;\n  let signature: string | null = null;\n  for (const item of String(signatureHeader ?? \"\").split(\",\")) {\n    const [key, value] = item.trim().split(\"=\", 2);\n    if (key === \"t\") {\n      const parsed = Number.parseInt(value ?? \"\", 10);\n      if (!Number.isFinite(parsed)) {\n        throw new SiglumeWebhookSignatureError(\"Webhook signature timestamp is invalid.\");\n      }\n      timestamp = parsed;\n    }\n    if (key === \"v1\") {\n      signature = String(value ?? \"\").trim();\n    }\n  }\n  if (timestamp === null || !signature) {\n    throw new SiglumeWebhookSignatureError(\"Webhook signature header is incomplete.\");\n  }\n  return { timestamp, signature };\n}\n\nasync function randomNonce(): Promise<string> {\n  if (globalThis.crypto?.randomUUID) {\n    return globalThis.crypto.randomUUID();\n  }\n  const bytes = new Uint8Array(16);\n  if (globalThis.crypto?.getRandomValues) {\n    globalThis.crypto.getRandomValues(bytes);\n  } else if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    bytes.set(crypto.randomBytes(16));\n  } else {\n    throw new SiglumeDirectRequestPaymentError(\"Crypto random number generation is unavailable in this runtime.\");\n  }\n  return bytesToHex(bytes);\n}\n\nasync function hmacSha256Hex(secret: string, payload: Uint8Array): Promise<string> {\n  if (globalThis.crypto?.subtle) {\n    const stablePayload = new Uint8Array(payload.byteLength);\n    stablePayload.set(payload);\n    const key = await globalThis.crypto.subtle.importKey(\n      \"raw\",\n      new TextEncoder().encode(secret),\n      { name: \"HMAC\", hash: \"SHA-256\" },\n      false,\n      [\"sign\"],\n    );\n    const digest = await globalThis.crypto.subtle.sign(\"HMAC\", key, stablePayload);\n    return bytesToHex(new Uint8Array(digest));\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return crypto.createHmac(\"sha256\", secret).update(Buffer.from(payload)).digest(\"hex\");\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for HMAC-SHA256 in this runtime.\");\n}\n\nasync function sha256Prefixed(material: string): Promise<string> {\n  const bytes = new TextEncoder().encode(material);\n  if (globalThis.crypto?.subtle) {\n    const digest = await globalThis.crypto.subtle.digest(\"SHA-256\", bytes);\n    return `sha256:${bytesToHex(new Uint8Array(digest))}`;\n  }\n  if (typeof process !== \"undefined\" && process.versions?.node) {\n    const crypto = await import(\"node:crypto\");\n    return `sha256:${crypto.createHash(\"sha256\").update(Buffer.from(bytes)).digest(\"hex\")}`;\n  }\n  throw new SiglumeDirectRequestPaymentError(\"Web Crypto is required for SHA-256 in this runtime.\");\n}\n\nfunction bytesToHex(bytes: Uint8Array): string {\n  return [...bytes].map((item) => item.toString(16).padStart(2, \"0\")).join(\"\");\n}\n\nfunction hexToBytes(hex: string): Uint8Array {\n  const normalized = String(hex ?? \"\").trim().toLowerCase();\n  if (normalized.length % 2 !== 0 || !/^[0-9a-f]*$/.test(normalized)) {\n    throw new SiglumeWebhookSignatureError(\"Hex digest is invalid.\");\n  }\n  const bytes = new Uint8Array(normalized.length / 2);\n  for (let index = 0; index < normalized.length; index += 2) {\n    bytes[index / 2] = Number.parseInt(normalized.slice(index, index + 2), 16);\n  }\n  return bytes;\n}\n\nasync function timingSafeEqualHex(left: string, right: string): Promise<boolean> {\n  const leftBytes = hexToBytes(left);\n  const rightBytes = hexToBytes(right);\n  if (leftBytes.length !== rightBytes.length) {\n    return false;\n  }\n  let diff = 0;\n  for (let index = 0; index < leftBytes.length; index += 1) {\n    diff |= leftBytes[index]! ^ rightBytes[index]!;\n  }\n  return diff === 0;\n}\n"],"mappings":";AAAO,IAAM,2BAA2B;AACjC,IAAM,0CAA0C;AAIhD,IAAM,oDAAoD;AAC1D,IAAM,8BAA8B;AACpC,IAAM,sCAAsC;AAC5C,IAAM,gDAAgD;AACtD,IAAM,wCAAwC;AAC9C,IAAM,oCAAoC;AA+P1C,IAAM,mCAAN,cAA+C,MAAM;AAAA,EAC1D,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,kBAAN,cAA8B,iCAAiC;AAAA,EAC3D;AAAA,EACA;AAAA,EACA;AAAA,EAET,YAAY,SAAiB,SAA4D;AACvF,UAAM,OAAO;AACb,SAAK,OAAO;AACZ,SAAK,SAAS,QAAQ;AACtB,SAAK,OAAO,QAAQ,QAAQ;AAC5B,SAAK,OAAO,QAAQ;AAAA,EACtB;AACF;AAEO,IAAM,+BAAN,cAA2C,iCAAiC;AAAA,EACjF,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,cAAyC,iCAAiC;AAAA,EAC/E,YAAY,SAAiB;AAC3B,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,6BAAN,MAAiC;AAAA,EAC7B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,oBAAoB;AACrE,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,yBAAyB,OAA+E;AAC5G,UAAM,UAAmC;AAAA,MACvC,MAAM;AAAA,MACN,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,UAAU,kBAAkB,MAAM,QAAQ;AAAA,MAC1C,WAAW,gBAAgB,MAAM,WAAW,WAAW;AAAA,IACzD;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,eAAe,MAAM,YAAY;AAAA,IAC1D;AACA,QAAI,MAAM,2BAA2B,QAAW;AAC9C,cAAQ,yBAAyB,gBAAgB,MAAM,wBAAwB,wBAAwB;AAAA,IACzG;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAkC,QAAQ,sCAAsC,OAAO;AAAA,EACrG;AAAA,EAEA,MAAM,sBAAsB,gBAA2D;AACrF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,IAC7G;AAAA,EACF;AAAA,EAEA,MAAM,yBACJ,gBACA,OACmC;AACnC,WAAO,KAAK;AAAA,MACV;AAAA,MACA,sCAAsC,mBAAmB,gBAAgB,gBAAgB,gBAAgB,CAAC,CAAC;AAAA,MAC3G;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,2BACJ,SAC+C;AAC/C,WAAO,KAAK;AAAA,MACV;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,6BAA6B,aAAa,OAAO,CAAC;AAAA,EAC3F;AAAA,EAEA,MAAM,4BACJ,aACA,UAA4E,CAAC,GAC9B;AAC/C,WAAO,KAAK,2BAA2B,+BAA+B,aAAa,OAAO,CAAC;AAAA,EAC7F;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEO,IAAM,qCAAN,MAAyC;AAAA,EACrC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACQ;AAAA,EAEjB,YAAY,UAA6C,CAAC,GAAG;AAC3D,UAAM,YAAY,QAAQ,cAAc,SAAS,6BAA6B,KAAK,SAAS,oBAAoB;AAChH,QAAI,CAAC,WAAW;AACd,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AACA,UAAM,YAAY,QAAQ,SAAS,WAAW;AAC9C,QAAI,CAAC,WAAW;AACd,YAAM,IAAI,iCAAiC,qDAAqD;AAAA,IAClG;AACA,SAAK,aAAa;AAClB,SAAK,YAAY,QAAQ,YAAY,SAAS,kBAAkB,KAAK,0BAA0B,QAAQ,QAAQ,EAAE;AACjH,SAAK,aAAa,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,cAAc,IAAK,CAAC;AACrE,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,cAAc,OAA8F;AAChH,UAAM,UAAmC;AAAA,MACvC,UAAU,6BAA6B,MAAM,QAAQ;AAAA,MACrD,cAAc,qBAAqB,MAAM,gBAAgB,QAAQ;AAAA,MACjE,kBAAkB,kBAAkB,MAAM,oBAAoB,KAAK;AAAA,IACrE;AACA,QAAI,MAAM,iBAAiB,QAAW;AACpC,cAAQ,eAAe,gBAAgB,MAAM,cAAc,cAAc;AAAA,IAC3E;AACA,QAAI,MAAM,uBAAuB,QAAW;AAC1C,cAAQ,qBAAqB,2BAA2B,MAAM,kBAAkB;AAAA,IAClF;AACA,QAAI,MAAM,yBAAyB,QAAW;AAC5C,cAAQ,uBAAuB,gBAAgB,MAAM,sBAAsB,sBAAsB;AAAA,IACnG;AACA,QAAI,MAAM,8BAA8B,QAAW;AACjD,cAAQ,4BAA4B,gBAAgB,MAAM,2BAA2B,2BAA2B;AAAA,IAClH;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK,QAA8C,QAAQ,mCAAmC,OAAO;AAAA,EAC9G;AAAA,EAEA,MAAM,YAAY,UAAiE;AACjF,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBAAsB,UAAiE;AAC3F,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,IAC/F;AAAA,EACF;AAAA,EAEA,MAAM,sBACJ,UACA,QAAyD,CAAC,GACX;AAC/C,UAAM,UAAmC,CAAC;AAC1C,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,kBAAkB,MAAM,QAAQ;AAAA,IACrD;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,kBAAkB,MAAM,gBAAgB;AAAA,IACrE;AACA,QAAI,MAAM,qBAAqB,QAAW;AACxC,cAAQ,mBAAmB,gBAAgB,MAAM,kBAAkB,kBAAkB;AAAA,IACvF;AACA,WAAO,KAAK;AAAA,MACV;AAAA,MACA,mCAAmC,mBAAmB,6BAA6B,QAAQ,CAAC,CAAC;AAAA,MAC7F;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAM,0BACJ,OACkD;AAClD,UAAM,UAAmC;AAAA,MACvC,cAAc,gBAAgB,MAAM,cAAc,cAAc;AAAA,MAChE,aAAa,MAAM,aAAa,SAC5B,MAAM,YAAY,IAAI,CAAC,cAAc,gBAAgB,WAAW,YAAY,CAAC,IAC7E,CAAC,4BAA4B,sBAAsB;AAAA,IACzD;AACA,QAAI,MAAM,gBAAgB,QAAW;AACnC,cAAQ,cAAc,gBAAgB,MAAM,aAAa,aAAa;AAAA,IACxE;AACA,QAAI,MAAM,aAAa,QAAW;AAChC,cAAQ,WAAW,gBAAgB,MAAM,UAAU,UAAU;AAAA,IAC/D;AACA,WAAO,KAAK,QAAiD,QAAQ,kCAAkC,OAAO;AAAA,EAChH;AAAA,EAEA,MAAM,cAAc,OAAiG;AACnH,UAAM,WAAW,MAAM,KAAK,cAAc,KAAK;AAC/C,UAAM,cAAc,SAAS,iBAAiB;AAC9C,UAAM,kBAAkB,MAAM,4BAA4B,QACtD,OACA,MAAM,KAAK,sBAAsB,aAAa;AAAA,MAC9C,kBAAkB,SAAS,iBAAiB,oBAAoB,MAAM,oBAAoB;AAAA,MAC1F,kBAAkB,MAAM,oBAAoB,MAAM;AAAA,IACpD,CAAC;AACH,UAAM,sBAAsB,MAAM,+BAA+B,QAAQ,MAAM,oBAAoB;AACnG,UAAM,uBAAuB,uBAAuB,MAAM,uBACtD,MAAM,KAAK,0BAA0B;AAAA,MACrC,cAAc,MAAM;AAAA,MACpB,aAAa,MAAM,uBAAuB,GAAG,WAAW;AAAA,MACxD,aAAa,MAAM;AAAA,MACnB,UAAU,EAAE,UAAU,aAAa,KAAK,kCAAkC;AAAA,IAC5E,CAAC,IACC;AACJ,UAAM,MAA8B;AAAA,MAClC,iCAAiC;AAAA,IACnC;AACA,QAAI,SAAS,kBAAkB;AAC7B,UAAI,0CAA0C,SAAS;AAAA,IACzD;AACA,UAAM,gBAAgB,aAAa,sBAAsB,cAAc;AACvE,QAAI,eAAe;AACjB,UAAI,yBAAyB;AAAA,IAC/B;AACA,WAAO,EAAE,UAAU,iBAAiB,sBAAsB,IAAI;AAAA,EAChE;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,WAAiC;AAC9E,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,UAAU,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,UAAU;AACpE,QAAI;AACF,YAAM,UAAkC;AAAA,QACtC,UAAU;AAAA,QACV,iBAAiB,UAAU,KAAK,UAAU;AAAA,QAC1C,cAAc,KAAK;AAAA,MACrB;AACA,UAAI;AACJ,UAAI,cAAc,QAAW;AAC3B,gBAAQ,cAAc,IAAI;AAC1B,eAAO,KAAK,UAAU,SAAS;AAAA,MACjC;AACA,YAAM,WAAW,MAAM,KAAK,WAAW,GAAG,KAAK,QAAQ,GAAG,IAAI,IAAI;AAAA,QAChE;AAAA,QACA;AAAA,QACA;AAAA,QACA,QAAQ,WAAW;AAAA,MACrB,CAAC;AACD,YAAM,UAAU,MAAM,SAAS,KAAK;AACpC,YAAM,SAAS,UAAU,UAAU,OAAO,IAAI,CAAC;AAC/C,UAAI,CAAC,SAAS,IAAI;AAChB,cAAM,QAAQ,SAAS,MAAM,KAAK,SAAS,OAAO,KAAK,IAAI,OAAO,QAAQ,CAAC;AAC3E,cAAM,OAAO,aAAa,MAAM,IAAI,KAAK,aAAc,OAAmC,IAAI,KAAK,QAAQ,SAAS,MAAM;AAC1H,cAAM,UAAU,aAAa,MAAM,OAAO,KAAK,aAAc,OAAmC,OAAO,KAAK,SAAS;AACrH,cAAM,IAAI,gBAAgB,SAAS,EAAE,QAAQ,SAAS,QAAQ,MAAM,MAAM,OAAO,CAAC;AAAA,MACpF;AACA,UAAI,SAAS,MAAM,KAAK,UAAU,QAAQ;AACxC,eAAO,OAAO;AAAA,MAChB;AACA,aAAO;AAAA,IACT,UAAE;AACA,mBAAa,OAAO;AAAA,IACtB;AAAA,EACF;AACF;AAEA,eAAsB,oCACpB,OACwC;AACxC,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,6CAA6C,MAAM,QAAQ;AAAA,IACjF;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,uCAAuC,IAAI,KAAK,IAAI,SAAS;AAClF,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,6CACpB,QACA,OAMiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AACjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,KAAK;AAC3D,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEO,SAAS,mCAAmC,WAAwD;AACzG,QAAM,QAAQ,gBAAgB,WAAW,WAAW,EAAE,MAAM,GAAG;AAC/D,MAAI,MAAM,WAAW,GAAG;AACtB,UAAM,IAAI,iCAAiC,kEAAkE;AAAA,EAC/G;AACA,QAAM,CAAC,QAAQ,OAAO,SAAS,IAAI;AACnC,MAAI,CAAC,UAAU,CAAC,SAAS,CAAC,WAAW;AACnC,UAAM,IAAI,iCAAiC,iDAAiD;AAAA,EAC9F;AACA,SAAO,EAAE,QAAQ,OAAO,UAAU;AACpC;AAOA,eAAsB,6CACpB,OACiD;AACjD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,eAAe,gBAAgB,MAAM,cAAc,cAAc;AACvE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,MAAM,QAAQ,wBAAwB,MAAM,KAAK,IAAI,MAAM,YAAY;AACrF,QAAM,YAAY,MAAM,sDAAsD,MAAM,QAAQ;AAAA,IAC1F;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACD,QAAM,YAAY,GAAG,iDAAiD,IAAI,KAAK,IAAI,SAAS;AAC5F,SAAO;AAAA,IACL,QAAQ;AAAA,IACR;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,gBAAgB,MAAM,eAAe,SAAS;AAAA,EAChD;AACF;AAEA,eAAsB,sDACpB,QACA,OAOiB;AACjB,QAAM,mBAAmB,gBAAgB,QAAQ,QAAQ;AACzD,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,SAAS,gBAAgB,MAAM,cAAc,cAAc;AACjE,QAAM,WAAW,kBAAkB,MAAM,QAAQ;AACjD,QAAM,UAAU,0BAA0B,MAAM,OAAO;AACvD,QAAM,QAAQ,wBAAwB,MAAM,KAAK;AAGjD,QAAM,WAAW,GAAG,QAAQ,IAAI,MAAM,IAAI,QAAQ,IAAI,OAAO,IAAI,KAAK;AACtE,SAAO,cAAc,kBAAkB,IAAI,YAAY,EAAE,OAAO,QAAQ,CAAC;AAC3E;AAEA,eAAsB,6CACpB,QACA,OAOkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,mDAAmD;AACvE,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,sDAAsD,QAAQ;AAAA,IACnF,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,SAAS,MAAM;AAAA,IACf,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,oCACpB,QACA,OAMkB;AAClB,QAAM,SAAS,mCAAmC,MAAM,SAAS;AACjE,MAAI,OAAO,WAAW,yCAAyC;AAC7D,WAAO;AAAA,EACT;AACA,QAAM,WAAW,MAAM,6CAA6C,QAAQ;AAAA,IAC1E,UAAU,MAAM;AAAA,IAChB,cAAc,MAAM;AAAA,IACpB,UAAU,MAAM;AAAA,IAChB,OAAO,OAAO;AAAA,EAChB,CAAC;AACD,SAAO,mBAAmB,UAAU,OAAO,SAAS;AACtD;AAEA,eAAsB,kCAAkC,WAAoC;AAC1F,SAAO,eAAe,gBAAgB,WAAW,WAAW,CAAC;AAC/D;AAEA,eAAsB,gCAAgC,OAKlC;AAClB,QAAM,WAAW,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,cAAc,cAAc,CAAC,GAAG,kBAAkB,MAAM,QAAQ,CAAC,GAAG,gBAAgB,MAAM,WAAW,WAAW,CAAC;AAC/L,SAAO,eAAe,QAAQ;AAChC;AAEO,SAAS,6BACd,aACA,UAA4E,CAAC,GACtC;AACvC,SAAO,yCAAyC,aAAa,YAAY,qBAAqB;AAAA,IAC5F,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,+BACd,aACA,UAA4E,CAAC,GACtC;AACvC,QAAM,iBAAiB,YAAY;AACnC,MAAI,CAAC,kBAAkB,OAAO,KAAK,cAAc,EAAE,WAAW,GAAG;AAC/D,UAAM,IAAI,iCAAiC,8EAA8E;AAAA,EAC3H;AACA,SAAO,yCAAyC,aAAa,gBAAgB;AAAA,IAC3E,cAAc;AAAA,IACd,gBAAgB,QAAQ;AAAA,IACxB,UAAU,QAAQ;AAAA,EACpB,CAAC;AACH;AAEO,SAAS,yCACd,aACA,qBACA,SAKuC;AACvC,QAAM,WAAW;AAAA,IACf,GAAI,SAAS,oBAAoB,cAAc,IAAI,oBAAoB,iBAAiB,CAAC;AAAA,IACzF,GAAI,QAAQ,YAAY,CAAC;AAAA,EAC3B;AACA,SAAO;AAAA,IACL;AAAA,IACA,cAAc,gBAAgB,QAAQ,cAAc,cAAc;AAAA,IAClE,gBAAgB;AAAA,IAChB,cAAc,YAAY;AAAA,IAC1B;AAAA,IACA,gBAAgB,QAAQ,QAAQ,cAAc;AAAA,EAChD;AACF;AAEA,eAAsB,wBACpB,gBACA,MACA,SACiB;AACjB,MAAI,CAAC,gBAAgB;AACnB,UAAM,IAAI,6BAA6B,6CAA6C;AAAA,EACtF;AACA,QAAM,YAAY,KAAK,MAAM,QAAQ,SAAS;AAC9C,QAAM,QAAQ,UAAU,IAAI;AAC5B,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG,SAAS,GAAG;AACvD,QAAM,UAAU,IAAI,WAAW,OAAO,SAAS,MAAM,MAAM;AAC3D,UAAQ,IAAI,QAAQ,CAAC;AACrB,UAAQ,IAAI,OAAO,OAAO,MAAM;AAChC,SAAO,cAAc,gBAAgB,OAAO;AAC9C;AAEA,eAAsB,4BACpB,gBACA,MACA,UAAkC,CAAC,GAClB;AACjB,QAAM,YAAY,KAAK,MAAM,QAAQ,aAAa,KAAK,IAAI,IAAI,GAAI;AACnE,QAAM,YAAY,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AACnF,SAAO,KAAK,SAAS,OAAO,SAAS;AACvC;AAEA,eAAsB,uBACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GAClB;AACvC,QAAM,EAAE,WAAW,UAAU,IAAI,qBAAqB,gBAAgB;AACtE,QAAM,mBAAmB,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,qBAAqB,iCAAiC,CAAC;AAC/G,QAAM,aAAa,KAAK,MAAM,QAAQ,OAAO,KAAK,IAAI,IAAI,GAAI;AAC9D,MAAI,KAAK,IAAI,aAAa,SAAS,IAAI,kBAAkB;AACvD,UAAM,IAAI,6BAA6B,4DAA4D;AAAA,EACrG;AACA,QAAM,WAAW,MAAM,wBAAwB,gBAAgB,MAAM,EAAE,UAAU,CAAC;AAClF,MAAI,CAAE,MAAM,mBAAmB,UAAU,SAAS,GAAI;AACpD,UAAM,IAAI,6BAA6B,kCAAkC;AAAA,EAC3E;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEO,SAAS,sCAAsC,SAAoD;AACxG,QAAM,QAAQ,cAAc,SAAS,eAAe;AACpD,QAAM,OAAO,cAAc,MAAM,MAAM,oBAAoB;AAC3D,QAAM,SAAS;AAAA,IACb,GAAG;AAAA,IACH,IAAI,gBAAgB,aAAa,MAAM,EAAE,KAAK,IAAI,kBAAkB;AAAA,IACpE,MAAM,gBAAgB,aAAa,MAAM,IAAI,KAAK,IAAI,oBAAoB;AAAA,IAC1E,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,aAAa,gBAAgB,aAAa,MAAM,WAAW,KAAK,IAAI,qBAAqB;AAAA,IACzF,MAAM,EAAE,GAAG,KAAK;AAAA,EAClB;AACA,MAAI,OAAO,SAAS,8BAA8B,OAAO,KAAK,SAAS,6BAA6B;AAClG,UAAM,IAAI,2BAA2B,uEAAuE;AAAA,EAC9G;AACA,SAAO;AACT;AAEA,eAAsB,kCACpB,gBACA,MACA,kBACA,UAAwD,CAAC,GACyC;AAClG,QAAM,eAAe,MAAM,uBAAuB,gBAAgB,MAAM,kBAAkB,OAAO;AACjG,QAAM,OAAO,IAAI,YAAY,EAAE,OAAO,UAAU,IAAI,CAAC;AACrD,MAAI;AACJ,MAAI;AACF,aAAS,KAAK,MAAM,IAAI;AAAA,EAC1B,SAAS,OAAO;AACd,UAAM,IAAI,2BAA2B,uCAAuC;AAAA,EAC9E;AACA,SAAO,EAAE,OAAO,sCAAsC,MAAM,GAAG,aAAa;AAC9E;AAEO,IAAM,6BAA6B;AACnC,IAAM,6BAA6B;AACnC,IAAM,sCAAsC;AAC5C,IAAM,sCAAsC;AAEnD,SAAS,kBAAkB,OAAuB;AAChD,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,8BAA8B,KAAK,QAAQ,GAAG;AACjD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,6BAA6B,OAAuB;AAC3D,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,CAAC,6BAA6B,KAAK,QAAQ,GAAG;AAChD,UAAM,IAAI,iCAAiC,sFAAsF;AAAA,EACnI;AACA,SAAO;AACT;AAEA,SAAS,qBAAqB,OAAgD;AAC5E,QAAM,OAAO,gBAAgB,OAAO,cAAc,EAAE,YAAY;AAChE,MAAI,SAAS,YAAY,SAAS,UAAU,SAAS,aAAa,SAAS,YAAY,SAAS,OAAO;AACrG,WAAO;AAAA,EACT;AACA,QAAM,IAAI,iCAAiC,uDAAuD;AACpG;AAEA,SAAS,kBAAkB,OAA6C;AACtE,QAAM,WAAW,gBAAgB,OAAO,UAAU,EAAE,YAAY;AAChE,MAAI,aAAa,SAAS,aAAa,OAAO;AAC5C,UAAM,IAAI,iCAAiC,8BAA8B;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,SAAS,eAAe,OAA0C;AAChE,QAAM,QAAQ,gBAAgB,OAAO,cAAc,EAAE,YAAY;AACjE,MAAI,UAAU,UAAU,UAAU,QAAQ;AACxC,UAAM,IAAI,iCAAiC,oCAAoC;AAAA,EACjF;AACA,SAAO;AACT;AAEA,SAAS,2BAA2B,OAAsG;AACxI,QAAM,aAAqC,CAAC;AAC5C,MAAI,MAAM,QAAQ,KAAK,GAAG;AACxB,eAAW,QAAQ,OAAO;AACxB,YAAM,WAAW,kBAAkB,IAAI;AACvC,iBAAW,QAAQ,IAAI,wBAAwB,QAAQ;AAAA,IACzD;AAAA,EACF,WAAW,SAAS,KAAK,GAAG;AAC1B,eAAW,CAAC,aAAa,QAAQ,KAAK,OAAO,QAAQ,KAAK,GAAG;AAC3D,iBAAW,kBAAkB,WAAW,CAAC,IAAI,eAAe,OAAO,QAAQ,CAAC;AAAA,IAC9E;AAAA,EACF,OAAO;AACL,UAAM,IAAI,iCAAiC,oEAAoE;AAAA,EACjH;AACA,MAAI,OAAO,KAAK,UAAU,EAAE,WAAW,GAAG;AACxC,UAAM,IAAI,iCAAiC,wDAAwD;AAAA,EACrG;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,UAAmE;AAClG,SAAO,aAAa,QAAQ,SAAS;AACvC;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,SAAS,OAAO,KAAK;AAC3B,MAAI,CAAC,OAAO,cAAc,MAAM,KAAK,UAAU,GAAG;AAChD,UAAM,IAAI,iCAAiC,GAAG,IAAI,mCAAmC;AAAA,EACvF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAe,MAAsB;AAC5D,QAAM,OAAO,OAAO,SAAS,EAAE,EAAE,KAAK;AACtC,MAAI,CAAC,MAAM;AACT,UAAM,IAAI,iCAAiC,GAAG,IAAI,eAAe;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,wBAAwB,OAAuB;AACtD,QAAM,QAAQ,gBAAgB,OAAO,OAAO;AAC5C,MAAI,MAAM,SAAS,GAAG,GAAG;AACvB,UAAM,IAAI,iCAAiC,6BAA6B;AAAA,EAC1E;AACA,SAAO;AACT;AAEA,SAAS,0BAA0B,OAAqD;AACtF,QAAM,UAAU,gBAAgB,OAAO,SAAS,EAAE,YAAY;AAC9D,MAAI,YAAY,aAAa,YAAY,SAAS;AAChD,UAAM,IAAI;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACA,SAAO;AACT;AAEA,SAAS,gBAAgB,OAAgC,MAAuC;AAC9F,MAAI;AACF,UAAM,SAAS,KAAK,MAAM,KAAK,UAAU,KAAK,CAAC;AAC/C,QAAI,CAAC,SAAS,MAAM,GAAG;AACrB,YAAM,IAAI,MAAM,eAAe;AAAA,IACjC;AACA,WAAO;AAAA,EACT,SAAS,OAAO;AACd,UAAM,IAAI,iCAAiC,GAAG,IAAI,sCAAsC;AAAA,EAC1F;AACF;AAEA,SAAS,UAAU,SAA0B;AAC3C,MAAI;AACF,WAAO,KAAK,MAAM,OAAO;AAAA,EAC3B,SAAS,OAAO;AACd,UAAM,IAAI,gBAAgB,sCAAsC;AAAA,MAC9D,QAAQ;AAAA,MACR,MAAM;AAAA,MACN,MAAM;AAAA,IACR,CAAC;AAAA,EACH;AACF;AAEA,SAAS,aAAa,OAA+B;AACnD,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AACA,QAAM,OAAO,MAAM,KAAK;AACxB,SAAO,OAAO,OAAO;AACvB;AAEA,SAAS,SAAS,OAAkD;AAClE,SAAO,OAAO,UAAU,YAAY,UAAU,QAAQ,CAAC,MAAM,QAAQ,KAAK;AAC5E;AAEA,SAAS,cAAc,OAAgB,MAAuC;AAC5E,MAAI,CAAC,SAAS,KAAK,GAAG;AACpB,UAAM,IAAI,2BAA2B,GAAG,IAAI,qBAAqB;AAAA,EACnE;AACA,SAAO;AACT;AAEA,SAAS,SAAS,MAAkC;AAClD,MAAI,OAAO,YAAY,aAAa;AAClC,WAAO;AAAA,EACT;AACA,QAAM,QAAQ,QAAQ,IAAI,IAAI;AAC9B,SAAO,SAAS,MAAM,KAAK,IAAI,MAAM,KAAK,IAAI;AAChD;AAEA,SAAS,UAAU,MAA+E;AAChG,MAAI,gBAAgB,YAAY;AAC9B,WAAO;AAAA,EACT;AACA,MAAI,gBAAgB,aAAa;AAC/B,WAAO,IAAI,WAAW,IAAI;AAAA,EAC5B;AACA,MAAI,OAAO,SAAS,UAAU;AAC5B,WAAO,IAAI,YAAY,EAAE,OAAO,IAAI;AAAA,EACtC;AACA,MAAI,SAAS,IAAI,GAAG;AAClB,WAAO,IAAI,YAAY,EAAE,OAAO,KAAK,UAAU,IAAI,CAAC;AAAA,EACtD;AACA,QAAM,IAAI,2BAA2B,6DAA6D;AACpG;AAEA,SAAS,qBAAqB,iBAAmE;AAC/F,MAAI,YAA2B;AAC/B,MAAI,YAA2B;AAC/B,aAAW,QAAQ,OAAO,mBAAmB,EAAE,EAAE,MAAM,GAAG,GAAG;AAC3D,UAAM,CAAC,KAAK,KAAK,IAAI,KAAK,KAAK,EAAE,MAAM,KAAK,CAAC;AAC7C,QAAI,QAAQ,KAAK;AACf,YAAM,SAAS,OAAO,SAAS,SAAS,IAAI,EAAE;AAC9C,UAAI,CAAC,OAAO,SAAS,MAAM,GAAG;AAC5B,cAAM,IAAI,6BAA6B,yCAAyC;AAAA,MAClF;AACA,kBAAY;AAAA,IACd;AACA,QAAI,QAAQ,MAAM;AAChB,kBAAY,OAAO,SAAS,EAAE,EAAE,KAAK;AAAA,IACvC;AAAA,EACF;AACA,MAAI,cAAc,QAAQ,CAAC,WAAW;AACpC,UAAM,IAAI,6BAA6B,yCAAyC;AAAA,EAClF;AACA,SAAO,EAAE,WAAW,UAAU;AAChC;AAEA,eAAe,cAA+B;AAC5C,MAAI,WAAW,QAAQ,YAAY;AACjC,WAAO,WAAW,OAAO,WAAW;AAAA,EACtC;AACA,QAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,MAAI,WAAW,QAAQ,iBAAiB;AACtC,eAAW,OAAO,gBAAgB,KAAK;AAAA,EACzC,WAAW,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AACnE,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,UAAM,IAAI,OAAO,YAAY,EAAE,CAAC;AAAA,EAClC,OAAO;AACL,UAAM,IAAI,iCAAiC,iEAAiE;AAAA,EAC9G;AACA,SAAO,WAAW,KAAK;AACzB;AAEA,eAAe,cAAc,QAAgB,SAAsC;AACjF,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,gBAAgB,IAAI,WAAW,QAAQ,UAAU;AACvD,kBAAc,IAAI,OAAO;AACzB,UAAM,MAAM,MAAM,WAAW,OAAO,OAAO;AAAA,MACzC;AAAA,MACA,IAAI,YAAY,EAAE,OAAO,MAAM;AAAA,MAC/B,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,MAChC;AAAA,MACA,CAAC,MAAM;AAAA,IACT;AACA,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,KAAK,QAAQ,KAAK,aAAa;AAC7E,WAAO,WAAW,IAAI,WAAW,MAAM,CAAC;AAAA,EAC1C;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,OAAO,WAAW,UAAU,MAAM,EAAE,OAAO,OAAO,KAAK,OAAO,CAAC,EAAE,OAAO,KAAK;AAAA,EACtF;AACA,QAAM,IAAI,iCAAiC,yDAAyD;AACtG;AAEA,eAAe,eAAe,UAAmC;AAC/D,QAAM,QAAQ,IAAI,YAAY,EAAE,OAAO,QAAQ;AAC/C,MAAI,WAAW,QAAQ,QAAQ;AAC7B,UAAM,SAAS,MAAM,WAAW,OAAO,OAAO,OAAO,WAAW,KAAK;AACrE,WAAO,UAAU,WAAW,IAAI,WAAW,MAAM,CAAC,CAAC;AAAA,EACrD;AACA,MAAI,OAAO,YAAY,eAAe,QAAQ,UAAU,MAAM;AAC5D,UAAM,SAAS,MAAM,OAAO,QAAa;AACzC,WAAO,UAAU,OAAO,WAAW,QAAQ,EAAE,OAAO,OAAO,KAAK,KAAK,CAAC,EAAE,OAAO,KAAK,CAAC;AAAA,EACvF;AACA,QAAM,IAAI,iCAAiC,qDAAqD;AAClG;AAEA,SAAS,WAAW,OAA2B;AAC7C,SAAO,CAAC,GAAG,KAAK,EAAE,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AAC7E;AAEA,SAAS,WAAW,KAAyB;AAC3C,QAAM,aAAa,OAAO,OAAO,EAAE,EAAE,KAAK,EAAE,YAAY;AACxD,MAAI,WAAW,SAAS,MAAM,KAAK,CAAC,cAAc,KAAK,UAAU,GAAG;AAClE,UAAM,IAAI,6BAA6B,wBAAwB;AAAA,EACjE;AACA,QAAM,QAAQ,IAAI,WAAW,WAAW,SAAS,CAAC;AAClD,WAAS,QAAQ,GAAG,QAAQ,WAAW,QAAQ,SAAS,GAAG;AACzD,UAAM,QAAQ,CAAC,IAAI,OAAO,SAAS,WAAW,MAAM,OAAO,QAAQ,CAAC,GAAG,EAAE;AAAA,EAC3E;AACA,SAAO;AACT;AAEA,eAAe,mBAAmB,MAAc,OAAiC;AAC/E,QAAM,YAAY,WAAW,IAAI;AACjC,QAAM,aAAa,WAAW,KAAK;AACnC,MAAI,UAAU,WAAW,WAAW,QAAQ;AAC1C,WAAO;AAAA,EACT;AACA,MAAI,OAAO;AACX,WAAS,QAAQ,GAAG,QAAQ,UAAU,QAAQ,SAAS,GAAG;AACxD,YAAQ,UAAU,KAAK,IAAK,WAAW,KAAK;AAAA,EAC9C;AACA,SAAO,SAAS;AAClB;","names":[]}

package/docs/announcement-ja.md

@@ -31,11 +31,30 @@ Siglume Direct Request Payment は、merchantが注文・金額・通貨をサ
 
 | 決済金額 | 自動適用 | 選択するもの | 料金 | 精算 |
 | --- | --- | --- | --- | --- |
-| JPY 500超 / USD 3.00超、または即時finalityが必要 | Standard Payment / 通常決済 | Launch / Starter / Growth / Pro から1つ | Launch 1.8%、Starter 1.0%、Growth 0.7%、Pro 0.5%。最低 JPY 30 / USD 0.20 | DirectPaymentHubで即時オンチェーン分配 |
-| JPY 50-500 / 約USD 0.30-3.00 | Micro Payment / マイクロペイメント | 選択不要。金額で自動適用 | USD 0.01 / Tx、約JPY 2 | meter gate後、週次後精算 |
-| JPY 1未満-49 / USD 0.01未満-約USD 0.30 | Nano Payment / ナノペイメント | 選択不要。金額で自動適用 | USD 0.001 / usage、約JPY 0.2 | meter gate後、月次後精算 |
+| JPY 500超 / USD 3.00超、または即時finalityが必要 | Standard Payment / 通常決済 | Launch / Starter / Growth / Pro から1つ | Launch 1.8%、Starter 1.0%、Growth 0.7%、Pro 0.5%。最低 JPY 30 / USD 0.20 | 決済確定後すぐにオンチェーンで精算 |
+| JPY 50-500 / 約USD 0.30-3.00 | Micro Payment / マイクロペイメント | 選択不要。金額で自動適用 | USD 0.01 / Tx、約JPY 2 | **週次**でまとめて精算（[精算スケジュール](#精算スケジュール)参照） |
+| JPY 1未満-49 / USD 0.01未満-約USD 0.30 | Nano Payment / ナノペイメント | 選択不要。金額で自動適用 | USD 0.001 / usage、約JPY 0.2 | **月次**でまとめて精算（[精算スケジュール](#精算スケジュール)参照） |
 
-Micro / Nano ではAPI実行前にSDRPのmeter gateを通し、予算やscopeに失敗した場合は `rejected_no_charge` として記録され、provider APIは呼ばれません。
+Standard Payment は1決済ごとに精算します。Micro / Nano は金額帯で自動適用され、週次 / 月次でまとめて精算されます。締め・支払いタイミングは下の「精算スケジュール」を参照してください。なお、少額の支払いは実行前に購入者ウォレットの予算が確認され、予算・scope・金額帯のいずれかが満たされない場合はその場で拒否され、課金は発生しません（リクエストは実行されません）。
+
+## 精算スケジュール
+
+3つの帯は「確定した決済がいつ精算ウォレットに着金するか」が異なります。
+
+| 帯 | 周期 | 締め期間 | 着金タイミング |
+| --- | --- | --- | --- |
+| Standard Payment | 都度 | — | 各決済の確定直後にオンチェーン精算 |
+| Micro Payment | 週次 | カレンダー週（現状は月曜 00:00 〜 翌週月曜 00:00） | 週が締まった後、受取先・出品ごとに集約してオンチェーン精算（1件以上） |
+| Nano Payment | 月次 | カレンダー月（現状は1日 00:00 〜 翌月1日 00:00） | 月が締まった後、受取先・出品ごとに集約してオンチェーン精算（1件以上） |
+
+- **締め期間**: Micro は1カレンダー週（月曜始まり）、Nano は1カレンダー月（1日始まり）でまとめます。正確な締め時刻はプラットフォーム管理で変更されうるため、下記「確定事項と可変事項」を参照してください。
+- **タイムゾーン**: 締めの境界は購入者が設定した精算タイムゾーン（現状の既定は UTC）で判定され、購入者ごとに境界が少しずれることがあります。既定タイムゾーンはプラットフォーム管理で変更されることがあります。
+- **精算バッチ／支払い実行**: 期間が締まった後、その期間分を受取先・出品・トークンごとに集約し（1件以上）、次の精算パスで自動的にオンチェーン送金します。締めと送金の間には短い（プラットフォーム管理の）遅延があります。
+- **売上として確認できる時点**: Micro/Nano の支払いはオンチェーン精算が確定して初めて確定売上になります。それまでは「未精算」です。プラットフォームの精算ステータス／Webhook を正本としてください。
+- **休日・失敗・再試行・繰越**: オンチェーン精算のため銀行休業日の影響はなく、曜日に関係なくカレンダー境界で締まります。精算が失敗した場合（例: 精算時に購入者ウォレットの予算が不足／無効）は自動で再試行され、その購入者の同一トークンの Micro/Nano は未解決の精算が片付くまで一時停止します。未精算額が消えることはなく、失敗した精算に紐づいたまま、再試行成功時に支払われます。
+- **rejected / 課金なし**: 購入者ウォレットの予算は **グロス額**（料金＋プロトコルフィー）で消費され、受理時から精算確定まで確保されます。予算・scope・金額帯が満たされない場合は **課金なしで拒否**され、リクエストは実行されず、精算にも計上されません。
+
+**確定事項と可変事項**: 周期は固定です（**Micro は週次、Nano は月次**。確定はオンチェーン精算後）。正確な締め時刻、既定タイムゾーン、締めから送金までの遅延、再試行間隔はプラットフォーム側で管理され変更されうるため、暦をハードコードせずプラットフォームの精算ステータスと `fee_bps` を正本としてください。
 
 ## 最短導入
 
@@ -55,10 +74,12 @@ const setup = await merchant.setupCheckout({
   max_amount_minor: 100000,
 });
 
-console.log(setup.env);
+// setup.env には merchant key と challenge / webhook secret が入ります。
+// secret はサーバー側の secret store に保存し、値はログ出力しないでください。
+console.log(`Configured merchant: ${setup.env.SIGLUME_DIRECT_PAYMENT_MERCHANT}`);
 ```
 
-`setup.env` に、サーバー側で保存すべき `SIGLUME_DIRECT_PAYMENT_MERCHANT`、`SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET`、`SIGLUME_WEBHOOK_SECRET` が返ります。
+`setup.env` に、サーバー側で保存すべき `SIGLUME_DIRECT_PAYMENT_MERCHANT`、`SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET`、`SIGLUME_WEBHOOK_SECRET` が返ります。secret 値はログに出さず、secret store に保存してください。
 
 ## 料金
 

package/docs/api-reference.md

@@ -229,8 +229,9 @@ Use it with the authenticated buyer's Siglume bearer token. Developer Portal
 `cli_` API keys are not accepted by these buyer-authenticated routes.
 
 This client creates SDRP Standard Payment requirements for external merchant
-checkout flows. Micro Payment and Nano Payment use the SDRP meter gate and are
-not created through this merchant checkout client.
+checkout flows. Micro Payment and Nano Payment are applied automatically by
+amount and settled on a weekly / monthly cadence; they are not created explicitly
+through this client.
 
 Payment requirements include `fee_bps` from the Siglume platform. The SDK does
 not calculate merchant plan fees locally; see [Pricing](./pricing.md).
@@ -257,7 +258,9 @@ Calls:
 POST /v1/sdrp/direct-payments/requirements
 ```
 
-The SDK sends `mode="external_402"` internally.
+The SDK sets the platform-required mode value for you; you do not pass it. (For
+wire compatibility this is still the legacy `external_402` value — see the
+README "Compatibility Notes".)
 
 Input:
 

package/docs/merchant-quickstart.md

@@ -7,7 +7,7 @@ external merchant.
 
 - Merchant server: owns the order, amount, currency, challenge secret, webhook
   endpoint, and order fulfillment.
-- Buyer: owns the Siglume wallet that pays the DirectPaymentHub transaction.
+- Buyer: owns the Siglume wallet that pays the on-chain payment transaction.
 - Siglume: creates the payment requirement, prepares the wallet transaction,
   verifies the receipt, and emits signed webhooks.
 
@@ -15,9 +15,10 @@ The merchant server must not create charges with a customer wallet. It signs the
 order challenge; the buyer-facing Siglume payment flow pays it.
 
 This quickstart is for SDRP Standard Payment in an external merchant product.
-Micro Payment and Nano Payment use the SDRP metered-payment server flow instead.
-Micro/Nano run a server-side meter gate before provider execution and settle
-later; they are not browser checkout requirements created by this merchant SDK.
+Micro Payment and Nano Payment are applied automatically by amount and settled on
+a weekly / monthly cadence (see [Pricing](./pricing.md#settlement-schedule)); they
+are not browser checkout requirements you create with this SDK. Their provider
+revenue remains unsettled until the later on-chain settlement succeeds.
 
 ## 1. Run Merchant Setup
 
@@ -42,7 +43,9 @@ const setup = await merchantClient.setupCheckout({
   max_amount_minor: 100000,
 });
 
-console.log(setup.env);
+// setup.env holds the merchant key plus the challenge and webhook secrets.
+// Store them in your server-side secret manager; do not log the secret values.
+console.log(`Configured merchant: ${setup.env.SIGLUME_DIRECT_PAYMENT_MERCHANT}`);
 ```
 
 Python:
@@ -65,7 +68,9 @@ setup = merchant_client.setup_checkout(
     max_amount_minor=100000,
 )
 
-print(setup["env"])
+# setup["env"] holds the merchant key plus the challenge and webhook secrets.
+# Persist them to your server-side secret store; do not log the secret values.
+print("Configured merchant:", setup["env"]["SIGLUME_DIRECT_PAYMENT_MERCHANT"])
 ```
 
 `setupCheckout` / `setup_checkout` performs:

package/docs/pricing.md

@@ -26,13 +26,14 @@ quoted per currency.
 
 | Payment amount | Applied automatically | What you select | Fee | Settlement |
 | --- | --- | --- | --- | --- |
-| Over JPY 500 / over USD 3.00, or whenever immediate finality is required | Standard Payment | Select one Standard plan: Launch, Starter, Growth, or Pro | Launch: JPY 0 / USD 0 monthly, 1.8%; Starter: JPY 980 / USD 6 monthly, 1.0%; Growth: JPY 2,980 / USD 18 monthly, 0.7%; Pro: JPY 9,800 / USD 60 monthly, 0.5%. Minimum JPY 30 / USD 0.20 per payment. | Immediate on-chain split through DirectPaymentHub after payment confirmation |
-| JPY 50-500 / about USD 0.30-3.00 | Micro Payment | No selection. Applied automatically by amount. | USD 0.01 / Tx, about JPY 2 | Meter gate before provider execution; weekly delayed settlement |
-| Under JPY 1 to JPY 49 / under USD 0.01 to about USD 0.30 | Nano Payment | No selection. Applied automatically by amount. | USD 0.001 / usage, about JPY 0.2 | Meter gate before provider execution; monthly delayed settlement |
+| Over JPY 500 / over USD 3.00, or whenever immediate finality is required | Standard Payment | Select one Standard plan: Launch, Starter, Growth, or Pro | Launch: JPY 0 / USD 0 monthly, 1.8%; Starter: JPY 980 / USD 6 monthly, 1.0%; Growth: JPY 2,980 / USD 18 monthly, 0.7%; Pro: JPY 9,800 / USD 60 monthly, 0.5%. Minimum JPY 30 / USD 0.20 per payment. | Settled on-chain immediately after the payment confirms |
+| JPY 50-500 / about USD 0.30-3.00 | Micro Payment | Applied automatically by amount | USD 0.01 / Tx, about JPY 2 | Aggregated and settled **weekly** (see [Settlement schedule](#settlement-schedule)) |
+| Under JPY 1 to JPY 49 / under USD 0.01 to about USD 0.30 | Nano Payment | Applied automatically by amount | USD 0.001 / usage, about JPY 0.2 | Aggregated and settled **monthly** (see [Settlement schedule](#settlement-schedule)) |
 
-For Micro Payment and Nano Payment, the SDRP meter gate runs before provider
-execution. Budget or scope failures are recorded as `rejected_no_charge`; the
-provider API is not called and no pending provider revenue is created.
+Standard Payment settles per payment. Micro Payment and Nano Payment are
+aggregated and settled on a fixed weekly / monthly cadence — see
+[Settlement schedule](#settlement-schedule) for exactly when each band closes,
+when revenue becomes settled, and how rejected requests behave.
 
 USD pricing is the JPY tier converted at roughly 160 JPY/USD and rounded to
 clean price points that keep the same 1:3:10 tier ratio.
@@ -41,21 +42,95 @@ If no paid plan is selected during merchant setup, the merchant account uses the
 Launch plan. A merchant billing mandate is still required before accepting
 payments so Siglume can collect the monthly base fee automatically.
 
-The current Siglume API and merchant registry may still expose the internal
-`billing_plan` value `free` for the Launch tier. Treat `free` as an internal
-compatibility key, not the public plan name. (Until 2026-06-12 the Launch plan
-included a free monthly allowance of 100 payments; that allowance has been
-retired — the platform `fee_bps` response is always the source of truth.)
-
-Per-payment fees are collected during payment settlement through the
-DirectPaymentHub split. The merchant receives the net amount after that fee.
-Monthly base fees are collected separately through the merchant billing mandate.
+Per-payment fees are deducted at settlement, so the merchant receives the net
+amount for each payment. Monthly base fees are collected separately through the
+merchant billing mandate.
 
 The same fee schedule applies in JPY and USD. The Siglume platform returns
 `fee_bps` in the merchant's settlement currency on every payment requirement, so
 the SDK never has to know which currency table to read — it just trusts the
 value Siglume returns.
 
+## Settlement schedule
+
+Standard Payment, Micro Payment, and Nano Payment differ mainly in *when* a
+confirmed payment turns into money in your settlement wallet.
+
+| Band | Cadence | Period | You are paid |
+| --- | --- | --- | --- |
+| Standard Payment | Per payment | n/a | On-chain, immediately after each payment confirms |
+| Micro Payment | Weekly | Buyer settlement timezone Monday 00:00 to the next Monday 00:00; default timezone is UTC | After the week closes, in aggregated on-chain settlement(s) grouped per buyer, payee, token, and period |
+| Nano Payment | Monthly | Buyer settlement timezone 1st 00:00 to the 1st of the next month 00:00; default timezone is UTC | After the month closes, in aggregated on-chain settlement(s) grouped per buyer, payee, token, and period |
+
+### Micro weekly settlement
+
+- **Closing period.** Micro-band payments accrue across one calendar week:
+  Monday 00:00 to the following Monday 00:00 in the buyer settlement timezone.
+- **Timezone.** Period boundaries are evaluated in the buyer's configured
+  settlement timezone, defaulting to UTC, so different buyers can close on
+  slightly different local boundaries.
+- **Settlement.** After the week closes, Siglume aggregates that week's Micro
+  payments — grouped per buyer, payee, token, and period — into on-chain
+  settlement(s). Aggregation and payment run automatically on the next settlement
+  pass after the period closes; there is a short, platform-managed lag between
+  the close and the on-chain transaction.
+- **Revenue recognition.** A Micro payment is final only once its weekly
+  settlement confirms on-chain. Until then it is accrued, not settled.
+
+### Nano monthly settlement
+
+- **Closing period.** Nano-band payments accrue across one calendar month:
+  the 1st at 00:00 to the 1st of the next month at 00:00 in the buyer
+  settlement timezone.
+- **Timezone.** As with Micro, period boundaries use the buyer's configured
+  settlement timezone, defaulting to UTC.
+- **Settlement.** After the month closes, Siglume aggregates that month's Nano
+  payments — grouped per buyer, payee, token, and period — into on-chain
+  settlement(s), on the next settlement pass after the period closes.
+- **Revenue recognition.** A Nano payment is final only once its monthly
+  settlement confirms on-chain.
+
+### Failures, retries, and carry-over
+
+- Settlement is on-chain, so there are no banking-holiday gaps — periods close on
+  the calendar boundary regardless of weekday.
+- If a settlement fails because of insufficient balance, insufficient allowance,
+  inactive BudgetVault authorization, a per-payout cap, or an on-chain failure,
+  the affected batch is treated as past due. Siglume currently retries every 6
+  hours for up to 28 automatic attempts. After that, the batch remains past due
+  and requires manual resolution before another attempt.
+- While a buyer has an unresolved failed Micro/Nano settlement for the same
+  payment band and token, new Micro/Nano usage is paused with the machine-readable
+  error `METERED_SETTLEMENT_PAST_DUE`; the provider API is not called.
+- Outstanding amounts remain attached to the failed settlement and are retried
+  under this policy. They are not settled revenue, and Siglume does not advance,
+  guarantee, or insure provider revenue before on-chain settlement succeeds.
+
+### Rejected / no-charge behavior
+
+Micro and Nano run a budget check before the buyer's paid request is fulfilled:
+
+- A buyer's wallet budget is consumed at the **gross amount** (your price plus
+  the protocol fee), held from the moment a request is accepted until its
+  settlement confirms.
+- If the buyer's budget, scope, or amount band does not allow a request, it is
+  **rejected with no charge**: the request is not fulfilled, no amount is
+  accrued, and nothing is added to a settlement. A buyer near their budget
+  ceiling can have a request rejected even though earlier requests in the same
+  period succeeded.
+- Treat Siglume's settled status and webhooks as the source of truth for what has
+  actually been paid.
+
+### What is fixed vs platform-managed
+
+The cadence is fixed: **Micro settles weekly, Nano settles monthly**, and a
+payment is final only after its on-chain settlement confirms. The buyer-timezone
+period boundaries and the current retry policy above are the public behavior as
+of 2026-06-18. The scheduler lag between a period close and the on-chain
+transaction is platform-managed; treat the platform's settlement status and
+`fee_bps` response as authoritative rather than hard-coding local revenue
+recognition.
+
 ## SDK Behavior
 
 The SDK does not calculate merchant invoices or enforce plan limits locally.
@@ -72,3 +147,11 @@ The trial pricing is intended for:
 - Membership services
 - Paid API access
 - Scheduled autopay for external merchant workflows
+
+## Compatibility note
+
+The Siglume API and merchant registry may still expose the legacy `billing_plan`
+value `free` for the Launch tier. Treat `free` as a wire-compatibility key, not a
+public plan name. (Until 2026-06-12 the Launch plan included a free monthly
+allowance of 100 payments; that allowance has been retired — the platform
+`fee_bps` response is always the source of truth.)

package/docs/security.md

@@ -106,9 +106,14 @@ Direct Request Payment is not:
 - escrow
 - a platform balance
 - a card payment fallback
-- the Micro Payment or Nano Payment meter
 
-It is a Standard Payment wallet gate backed by an on-chain receipt. Micro
-Payment and Nano Payment are SDRP amount bands with internal-meter,
-delayed-settlement behavior; they must fail closed before provider API
-execution when the buyer's metered budget, scope, or amount band is invalid.
+Each payment is an individual wallet payment backed by an on-chain receipt. Small
+payments in the Micro and Nano amount bands are aggregated and settled on a
+weekly / monthly cadence instead of one transaction at a time (see the
+[pricing guide](./pricing.md#settlement-schedule)), but they are still wallet
+payments, not a stored balance. Before a small payment is fulfilled, Siglume
+checks the buyer's wallet budget and fails closed when it is invalid, so a
+rejected request is never charged. Provider revenue for Micro and Nano remains
+unsettled until the weekly or monthly on-chain settlement succeeds; Siglume does
+not advance or guarantee revenue when a buyer's balance, allowance, BudgetVault
+authorization, cap, or on-chain transaction fails.

package/examples/express-checkout.ts

@@ -99,8 +99,10 @@ app.post("/siglume/webhook", express.raw({ type: "application/json" }), asyncRou
 }));
 
 app.use((error: unknown, _req: express.Request, res: express.Response, _next: express.NextFunction) => {
-  const message = error instanceof Error ? error.message : "internal_error";
-  res.status(500).json({ error: message });
+  // Log the detail server-side; never return raw error messages to the client —
+  // a payment error can otherwise leak internal API details or configuration.
+  console.error("checkout error:", error);
+  res.status(500).json({ error: "internal_error" });
 });
 
 app.listen(port);

package/examples/setup-merchant.ts

@@ -14,4 +14,12 @@ const setup = await merchant.setupCheckout({
   create_webhook_subscription: Boolean(process.env.SIGLUME_DIRECT_PAYMENT_WEBHOOK_URL),
 });
 
-console.log(JSON.stringify(setup, null, 2));
+// setup.env contains the merchant key PLUS the challenge and webhook secrets.
+// Store these in your server-side secret manager. Never log the secret values —
+// log only non-secret confirmation.
+const env = setup.env ?? {};
+console.log("Merchant configured:", {
+  merchant: env.SIGLUME_DIRECT_PAYMENT_MERCHANT,
+  challenge_secret: env.SIGLUME_DIRECT_PAYMENT_CHALLENGE_SECRET ? "****" : undefined,
+  webhook_secret: env.SIGLUME_WEBHOOK_SECRET ? "****" : undefined,
+});

package/package.json

@@ -1,13 +1,18 @@
 {
   "name": "@siglume/direct-request-payment",
-  "version": "0.3.5",
+  "version": "0.3.6",
   "description": "SDK for the Siglume Direct Request Payment SDRP payment protocol",
   "keywords": [
     "siglume",
+    "sdrp",
+    "direct-request-payment",
     "payment",
-    "checkout",
-    "external-402",
+    "micropayments",
+    "metered-billing",
     "wallet",
+    "jpyc",
+    "usdc",
+    "checkout",
     "sdk"
   ],
   "license": "MIT",