@sip-protocol/sdk 0.11.1 → 0.12.0

package/dist/{chunk-7IUKXWDN.mjs → chunk-MKTCJPFH.mjs}

@@ -2395,9 +2395,8 @@ function detectCluster3(endpoint) {
 
 // src/chains/solana/scan.ts
 import {
-  PublicKey as PublicKey4,
-  Transaction as Transaction4,
-  Keypair
+  PublicKey as PublicKey5,
+  Transaction as Transaction5
 } from "@solana/web3.js";
 import {
   getAssociatedTokenAddress as getAssociatedTokenAddress3,
@@ -2434,9 +2433,70 @@ function parseTokenTransferFromBalances(preBalances, postBalances) {
   return null;
 }
 
-// src/chains/solana/scan.ts
-import { hexToBytes as hexToBytes2 } from "@noble/hashes/utils";
+// src/chains/solana/stealth-signer.ts
+import { PublicKey as PublicKey4 } from "@solana/web3.js";
 import { ed25519 as ed255192 } from "@noble/curves/ed25519";
+import { sha512 as sha5122 } from "@noble/hashes/sha512";
+import { hexToBytes as hexToBytes2 } from "@noble/hashes/utils";
+function modL(value) {
+  const reduced = value % ED25519_ORDER;
+  return reduced >= 0n ? reduced : reduced + ED25519_ORDER;
+}
+function signEd25519WithScalar(message, scalar) {
+  const a = modL(bytesToBigIntLE(scalar));
+  if (a === 0n) {
+    throw new Error("Invalid stealth scalar: reduces to zero");
+  }
+  const A = ed255192.ExtendedPoint.BASE.multiply(a).toRawBytes();
+  const prefix = sha5122(scalar).slice(32, 64);
+  const r = modL(bytesToBigIntLE(sha5122(new Uint8Array([...prefix, ...message]))));
+  if (r === 0n) {
+    throw new Error("Invalid nonce: reduces to zero");
+  }
+  const R = ed255192.ExtendedPoint.BASE.multiply(r).toRawBytes();
+  const k = modL(bytesToBigIntLE(sha5122(new Uint8Array([...R, ...A, ...message]))));
+  const S = modL(r + k * a);
+  return new Uint8Array([...R, ...bigIntToBytesLE(S, 32)]);
+}
+function deriveStealthSigner(params) {
+  const {
+    stealthAddress,
+    ephemeralPublicKey,
+    viewingPrivateKey,
+    spendingPrivateKey,
+    version = "2"
+  } = params;
+  const stealthAddressHex = solanaAddressToEd25519PublicKey(stealthAddress);
+  const ephemeralPubKeyHex = solanaAddressToEd25519PublicKey(ephemeralPublicKey);
+  const stealthAddressObj = {
+    address: stealthAddressHex,
+    ephemeralPublicKey: ephemeralPubKeyHex,
+    viewTag: 0
+  };
+  const recovery = version === "1" ? deriveEd25519StealthPrivateKeyV1(stealthAddressObj, spendingPrivateKey, viewingPrivateKey) : deriveEd25519StealthPrivateKey(stealthAddressObj, spendingPrivateKey, viewingPrivateKey);
+  const scalar = hexToBytes2(recovery.privateKey.slice(2));
+  const publicKey = new PublicKey4(stealthAddress);
+  const expectedPubKeyBytes = publicKey.toBytes();
+  const derivedPubKeyBytes = ed255192.ExtendedPoint.BASE.multiply(modL(bytesToBigIntLE(scalar))).toRawBytes();
+  if (!derivedPubKeyBytes.every((b, i) => b === expectedPubKeyBytes[i])) {
+    throw new Error(
+      "Stealth key derivation failed: derived scalar does not produce expected public key. This may indicate incorrect spending/viewing keys or corrupted announcement data."
+    );
+  }
+  return {
+    publicKey,
+    signMessage(message) {
+      return signEd25519WithScalar(message, scalar);
+    },
+    signTransaction(transaction) {
+      const message = transaction.serializeMessage();
+      const signature = signEd25519WithScalar(message, scalar);
+      transaction.addSignature(publicKey, Buffer.from(signature));
+    }
+  };
+}
+
+// src/chains/solana/scan.ts
 async function scanForPayments(params) {
   const {
     connection,
@@ -2448,7 +2508,7 @@ async function scanForPayments(params) {
     provider
   } = params;
   const results = [];
-  const memoProgram = new PublicKey4(MEMO_PROGRAM_ID);
+  const memoProgram = new PublicKey5(MEMO_PROGRAM_ID);
   try {
     const signatures = await connection.getSignaturesForAddress(
       memoProgram,
@@ -2527,6 +2587,7 @@ async function scanForPayments(params) {
               results.push({
                 stealthAddress: announcement.stealthAddress || "",
                 ephemeralPublicKey: announcement.ephemeralPublicKey,
+                version: announcement.version,
                 amount,
                 mint: transferInfo.mint,
                 tokenSymbol,
@@ -2558,51 +2619,34 @@ async function claimStealthPayment(params) {
     mint,
     version = "2"
   } = params;
-  const stealthPubkeyForBalance = new PublicKey4(stealthAddress);
+  const stealthPubkeyForBalance = new PublicKey5(stealthAddress);
   const solBalance = await connection.getBalance(stealthPubkeyForBalance);
   if (BigInt(solBalance) < MIN_SOL_FOR_FEES) {
     throw new Error(
       `Insufficient SOL for transaction fees. Stealth address has ${solBalance} lamports, needs at least ${MIN_SOL_FOR_FEES} lamports (~0.000005 SOL). Fund the stealth address with SOL before claiming.`
     );
   }
-  const stealthAddressHex = solanaAddressToEd25519PublicKey(stealthAddress);
-  const ephemeralPubKeyHex = solanaAddressToEd25519PublicKey(ephemeralPublicKey);
-  const stealthAddressObj = {
-    address: stealthAddressHex,
-    ephemeralPublicKey: ephemeralPubKeyHex,
-    viewTag: 0
-    // Not needed for derivation
-  };
-  const recovery = version === "1" ? deriveEd25519StealthPrivateKeyV1(stealthAddressObj, spendingPrivateKey, viewingPrivateKey) : deriveEd25519StealthPrivateKey(stealthAddressObj, spendingPrivateKey, viewingPrivateKey);
-  const stealthPrivKeyBytes = hexToBytes2(recovery.privateKey.slice(2));
-  const stealthPubkey = new PublicKey4(stealthAddress);
-  const expectedPubKeyBytes = stealthPubkey.toBytes();
-  const scalarBigInt = bytesToBigIntLE2(stealthPrivKeyBytes);
-  const ED25519_ORDER3 = 2n ** 252n + 27742317777372353535851937790883648493n;
-  let validScalar = scalarBigInt % ED25519_ORDER3;
-  if (validScalar === 0n) validScalar = 1n;
-  const derivedPubKeyBytes = ed255192.ExtendedPoint.BASE.multiply(validScalar).toRawBytes();
-  if (!derivedPubKeyBytes.every((b, i) => b === expectedPubKeyBytes[i])) {
-    throw new Error(
-      "Stealth key derivation failed: derived private key does not produce expected public key. This may indicate incorrect spending/viewing keys or corrupted announcement data."
-    );
-  }
-  const stealthKeypair = Keypair.fromSecretKey(
-    new Uint8Array([...stealthPrivKeyBytes, ...expectedPubKeyBytes])
-  );
+  const stealthSigner = deriveStealthSigner({
+    stealthAddress,
+    ephemeralPublicKey,
+    viewingPrivateKey,
+    spendingPrivateKey,
+    version
+  });
+  const stealthPubkey = new PublicKey5(stealthAddress);
   const stealthATA = await getAssociatedTokenAddress3(
     mint,
     stealthPubkey,
     true
   );
-  const destinationPubkey = new PublicKey4(destinationAddress);
+  const destinationPubkey = new PublicKey5(destinationAddress);
   const destinationATA = await getAssociatedTokenAddress3(
     mint,
     destinationPubkey
   );
   const stealthAccount = await getAccount3(connection, stealthATA);
   const amount = stealthAccount.amount;
-  const transaction = new Transaction4();
+  const transaction = new Transaction5();
   transaction.add(
     createTransferInstruction3(
       stealthATA,
@@ -2615,7 +2659,7 @@ async function claimStealthPayment(params) {
   transaction.recentBlockhash = blockhash;
   transaction.lastValidBlockHeight = lastValidBlockHeight;
   transaction.feePayer = stealthPubkey;
-  transaction.sign(stealthKeypair);
+  stealthSigner.signTransaction(transaction);
   const txSignature = await connection.sendRawTransaction(
     transaction.serialize(),
     {
@@ -2647,7 +2691,7 @@ async function getStealthBalance(connection, stealthAddress, mint, provider) {
     }
   }
   try {
-    const stealthPubkey = new PublicKey4(stealthAddress);
+    const stealthPubkey = new PublicKey5(stealthAddress);
     const ata = await getAssociatedTokenAddress3(mint, stealthPubkey, true);
     const account = await getAccount3(connection, ata);
     return account.amount;
@@ -2667,16 +2711,9 @@ function detectCluster4(endpoint) {
   }
   return "mainnet-beta";
 }
-function bytesToBigIntLE2(bytes) {
-  let result = 0n;
-  for (let i = bytes.length - 1; i >= 0; i--) {
-    result = result << 8n | BigInt(bytes[i]);
-  }
-  return result;
-}
 
 // src/chains/solana/stealth-scanner.ts
-import { PublicKey as PublicKey5 } from "@solana/web3.js";
+import { PublicKey as PublicKey6 } from "@solana/web3.js";
 var StealthScanner = class {
   connection;
   provider;
@@ -2743,7 +2780,7 @@ var StealthScanner = class {
     let scannedCount = 0;
     let lastSignature;
     let lastSlot;
-    const memoProgram = new PublicKey5(MEMO_PROGRAM_ID);
+    const memoProgram = new PublicKey6(MEMO_PROGRAM_ID);
     try {
       const signatures = await this.connection.getSignaturesForAddress(
         memoProgram,
@@ -2811,7 +2848,7 @@ var StealthScanner = class {
     }
     this.paymentCallback = onPayment;
     this.errorCallback = onError ?? null;
-    const memoProgram = new PublicKey5(MEMO_PROGRAM_ID);
+    const memoProgram = new PublicKey6(MEMO_PROGRAM_ID);
     this.subscriptionId = this.connection.onLogs(
       memoProgram,
       async (logs) => {
@@ -2913,6 +2950,7 @@ var StealthScanner = class {
           return {
             stealthAddress: announcement.stealthAddress || "",
             ephemeralPublicKey: announcement.ephemeralPublicKey,
+            version: announcement.version,
             viewTag: viewTagNumber,
             amount,
             mint: transferInfo.mint,
@@ -3072,7 +3110,7 @@ function wipeEphemeralPrivateKey(privateKeyHex) {
 }
 
 // src/chains/solana/privacy-adapter.ts
-import { PublicKey as PublicKey9 } from "@solana/web3.js";
+import { PublicKey as PublicKey10 } from "@solana/web3.js";
 
 // src/chains/solana/providers/helius.ts
 var DEFAULT_FETCH_TIMEOUT_MS = 3e4;
@@ -3282,7 +3320,7 @@ var HeliusProvider = class {
 // src/chains/solana/providers/generic.ts
 import {
   Connection as Connection3,
-  PublicKey as PublicKey6
+  PublicKey as PublicKey7
 } from "@solana/web3.js";
 import {
   TOKEN_PROGRAM_ID as TOKEN_PROGRAM_ID3,
@@ -3298,7 +3336,7 @@ var CLUSTER_ENDPOINTS = {
 };
 function validateSolanaAddress(address, paramName) {
   try {
-    return new PublicKey6(address);
+    return new PublicKey7(address);
   } catch {
     throw new ValidationError("invalid Solana address format", paramName, void 0, "SIP_2007" /* INVALID_ADDRESS */);
   }
@@ -3405,7 +3443,7 @@ var GenericProvider = class {
 // src/chains/solana/providers/quicknode.ts
 import {
   Connection as Connection4,
-  PublicKey as PublicKey7
+  PublicKey as PublicKey8
 } from "@solana/web3.js";
 import {
   TOKEN_PROGRAM_ID as TOKEN_PROGRAM_ID4,
@@ -3419,7 +3457,7 @@ import Client, {
 import { base58 } from "@scure/base";
 function validateSolanaAddress2(address, paramName) {
   try {
-    return new PublicKey7(address);
+    return new PublicKey8(address);
   } catch {
     throw new ValidationError("invalid Solana address format", paramName, void 0, "SIP_2007" /* INVALID_ADDRESS */);
   }
@@ -3534,7 +3572,7 @@ var QuickNodeProvider = class {
       return cached;
     }
     try {
-      const mintPubkey = new PublicKey7(mint);
+      const mintPubkey = new PublicKey8(mint);
       const mintInfo = await getMint2(this.connection, mintPubkey);
       const decimals = mintInfo.decimals;
       this.mintDecimalsCache.set(mint, decimals);
@@ -3582,7 +3620,7 @@ var QuickNodeProvider = class {
           try {
             const data = accountData.data;
             if (data && data.length >= 72) {
-              const mint = new PublicKey7(data.slice(0, 32)).toBase58();
+              const mint = new PublicKey8(data.slice(0, 32)).toBase58();
               const amount = BigInt(
                 "0x" + Buffer.from(data.slice(64, 72)).reverse().toString("hex")
               );
@@ -3682,7 +3720,7 @@ var QuickNodeProvider = class {
 // src/chains/solana/providers/triton.ts
 import {
   Connection as Connection5,
-  PublicKey as PublicKey8
+  PublicKey as PublicKey9
 } from "@solana/web3.js";
 import {
   TOKEN_PROGRAM_ID as TOKEN_PROGRAM_ID5,
@@ -3704,7 +3742,7 @@ var TRITON_GRPC_ENDPOINTS = {
 };
 function validateSolanaAddress3(address, paramName) {
   try {
-    return new PublicKey8(address);
+    return new PublicKey9(address);
   } catch {
     throw new ValidationError("invalid Solana address format", paramName, void 0, "SIP_2007" /* INVALID_ADDRESS */);
   }
@@ -3810,7 +3848,7 @@ var TritonProvider = class {
       return cached;
     }
     try {
-      const mintPubkey = new PublicKey8(mint);
+      const mintPubkey = new PublicKey9(mint);
       const mintInfo = await getMint3(this.connection, mintPubkey);
       const decimals = mintInfo.decimals;
       this.mintDecimalsCache.set(mint, decimals);
@@ -3861,7 +3899,7 @@ var TritonProvider = class {
           try {
             const data = accountData.data;
             if (data && data.length >= 72) {
-              const mint = new PublicKey8(data.slice(0, 32)).toBase58();
+              const mint = new PublicKey9(data.slice(0, 32)).toBase58();
               const amount = BigInt(
                 "0x" + Buffer.from(data.slice(64, 72)).reverse().toString("hex")
               );
@@ -4188,6 +4226,7 @@ async function processRawTransaction(tx, viewingPrivateKey, spendingPublicKey, o
       const payment = {
         stealthAddress: announcement.stealthAddress || "",
         ephemeralPublicKey: announcement.ephemeralPublicKey,
+        version: announcement.version,
         amount: transferInfo?.amount ?? 0n,
         mint: transferInfo?.mint ?? "",
         tokenSymbol: transferInfo?.mint ? getTokenSymbol(transferInfo.mint) : void 0,
@@ -4855,7 +4894,8 @@ var SolanaPrivacyAdapter = class {
       viewingPrivateKey: params.viewingPrivateKey,
       spendingPrivateKey: params.spendingPrivateKey,
       destinationAddress: params.destinationAddress,
-      mint: new PublicKey9(params.payment.mint)
+      mint: new PublicKey10(params.payment.mint),
+      version: params.payment.version
     });
   }
   /**
@@ -4920,7 +4960,7 @@ import {
 } from "@scure/bip39";
 import { wordlist as english } from "@scure/bip39/wordlists/english.js";
 import { ed25519 as ed255194 } from "@noble/curves/ed25519";
-import { sha256 as sha2564, sha512 as sha5122 } from "@noble/hashes/sha2";
+import { sha256 as sha2564, sha512 as sha5123 } from "@noble/hashes/sha2";
 import { hmac as hmac2 } from "@noble/hashes/hmac";
 var SOLANA_DEFAULT_PATH = "m/44'/501'/0'/0'";
 var VIEWING_KEY_CONTEXT = "SIP-viewing-key-v1";
@@ -4962,7 +5002,7 @@ function validateDerivationPath(path) {
   return true;
 }
 function slip0010DeriveEd25519(seed, path) {
-  const I = hmac2(sha5122, "ed25519 seed", seed);
+  const I = hmac2(sha5123, "ed25519 seed", seed);
   let key = new Uint8Array(I.slice(0, 32));
   let chainCode = new Uint8Array(I.slice(32, 64));
   const components = path.split("/").slice(1);
@@ -4981,7 +5021,7 @@ function slip0010DeriveEd25519(seed, path) {
     data[0] = 0;
     data.set(key, 1);
     new DataView(data.buffer).setUint32(33, hardenedIndex, false);
-    const derivedI = hmac2(sha5122, chainCode, data);
+    const derivedI = hmac2(sha5123, chainCode, data);
     key = new Uint8Array(derivedI.slice(0, 32));
     chainCode = new Uint8Array(derivedI.slice(32, 64));
   }
@@ -5607,7 +5647,7 @@ import {
 } from "@solana/kit";
 import {
   Connection as Connection8,
-  Transaction as Transaction5,
+  Transaction as Transaction6,
   ComputeBudgetProgram
 } from "@solana/web3.js";
 
@@ -5625,7 +5665,7 @@ import {
 } from "@solana/compat";
 import {
   Connection as Connection7,
-  PublicKey as PublicKey10
+  PublicKey as PublicKey11
 } from "@solana/web3.js";
 function toAddress(pubkey) {
   if (typeof pubkey === "string") {
@@ -5634,7 +5674,7 @@ function toAddress(pubkey) {
   return fromLegacyPublicKey(pubkey);
 }
 function toPublicKey(addr) {
-  return new PublicKey10(addr);
+  return new PublicKey11(addr);
 }
 function createAddress(base583) {
   return kitAddress(base583);
@@ -5692,18 +5732,18 @@ function isAddress(value) {
   return typeof value === "string" && value.length >= 32 && value.length <= 44;
 }
 function isPublicKey(value) {
-  return value instanceof PublicKey10;
+  return value instanceof PublicKey11;
 }
 function normalizeAddress(input) {
   let base583;
-  if (input instanceof PublicKey10) {
+  if (input instanceof PublicKey11) {
     base583 = input.toBase58();
   } else {
     base583 = input;
   }
   return {
     address: kitAddress(base583),
-    publicKey: new PublicKey10(base583),
+    publicKey: new PublicKey11(base583),
     base58: base583
   };
 }
@@ -5883,11 +5923,11 @@ async function createProxyAgent(config, options = {}) {
   const parsed = parseProxyConfig(config === "tor" ? `socks5://${TOR_HOST}:${TOR_PORTS[0]}` : config);
   try {
     if (parsed.type === "socks5" || parsed.type === "socks4" || config === "tor") {
-      const { SocksProxyAgent } = await import("./dist-PYEXZNFD.mjs");
+      const { SocksProxyAgent } = await import("./dist-4KSUM2PU.mjs");
       return new SocksProxyAgent(proxyUrl, { timeout });
     }
     if (parsed.type === "http" || parsed.type === "https") {
-      const { HttpsProxyAgent } = await import("./dist-IFHPYLDX.mjs");
+      const { HttpsProxyAgent } = await import("./dist-4O5YILSN.mjs");
       return new HttpsProxyAgent(proxyUrl, { timeout });
     }
   } catch (error) {
@@ -6176,7 +6216,7 @@ var SolanaRPCClient = class _SolanaRPCClient {
       ...sendOptions
     } = options;
     let txToSend = transaction;
-    if (this.usePriorityFees && !skipPriorityFee && transaction instanceof Transaction5) {
+    if (this.usePriorityFees && !skipPriorityFee && transaction instanceof Transaction6) {
       txToSend = await this.addPriorityFee(
         transaction,
         priorityFeeMicroLamports,
@@ -6319,7 +6359,7 @@ var SolanaRPCClient = class _SolanaRPCClient {
       const estimate = await this.estimatePriorityFee(transaction);
       feeToUse = estimate.microLamportsPerComputeUnit;
     }
-    const modifiedTx = new Transaction5();
+    const modifiedTx = new Transaction6();
     modifiedTx.add(
       ComputeBudgetProgram.setComputeUnitLimit({
         units: computeUnitLimit ?? 2e5
@@ -6616,8 +6656,8 @@ function createClusterClient(cluster, options = {}) {
 
 // src/chains/solana/transaction-builder.ts
 import {
-  PublicKey as PublicKey12,
-  Transaction as Transaction6,
+  PublicKey as PublicKey13,
+  Transaction as Transaction7,
   TransactionInstruction as TransactionInstruction4,
   TransactionMessage,
   VersionedTransaction as VersionedTransaction2,
@@ -6681,7 +6721,7 @@ var ShieldedTransactionBuilder = class {
     }
     const { stealthAddress } = generateEd25519StealthAddress(recipientMetaAddress);
     const stealthAddressBase58 = ed25519PublicKeyToSolanaAddress(stealthAddress.address);
-    const stealthPubkey = new PublicKey12(stealthAddressBase58);
+    const stealthPubkey = new PublicKey13(stealthAddressBase58);
     const ephemeralPubkeyBase58 = ed25519PublicKeyToSolanaAddress(stealthAddress.ephemeralPublicKey);
     const stealthATA = await getAssociatedTokenAddress7(mint, stealthPubkey, true);
     const instructions = [];
@@ -6722,7 +6762,7 @@ var ShieldedTransactionBuilder = class {
     instructions.push(
       new TransactionInstruction4({
         keys: [],
-        programId: new PublicKey12(MEMO_PROGRAM_ID),
+        programId: new PublicKey13(MEMO_PROGRAM_ID),
         data: Buffer.from(memoContent, "utf-8")
       })
     );
@@ -6754,7 +6794,7 @@ var ShieldedTransactionBuilder = class {
     }
     const { stealthAddress } = generateEd25519StealthAddress(recipientMetaAddress);
     const stealthAddressBase58 = ed25519PublicKeyToSolanaAddress(stealthAddress.address);
-    const stealthPubkey = new PublicKey12(stealthAddressBase58);
+    const stealthPubkey = new PublicKey13(stealthAddressBase58);
     const ephemeralPubkeyBase58 = ed25519PublicKeyToSolanaAddress(stealthAddress.ephemeralPublicKey);
     const instructions = [];
     if (this.priorityFee > 0) {
@@ -6779,7 +6819,7 @@ var ShieldedTransactionBuilder = class {
     instructions.push(
       new TransactionInstruction4({
         keys: [],
-        programId: new PublicKey12(MEMO_PROGRAM_ID),
+        programId: new PublicKey13(MEMO_PROGRAM_ID),
         data: Buffer.from(memoContent, "utf-8")
       })
     );
@@ -6822,7 +6862,7 @@ var ShieldedTransactionBuilder = class {
       }
       const { stealthAddress } = generateEd25519StealthAddress(transfer.recipientMetaAddress);
       const stealthAddressBase58 = ed25519PublicKeyToSolanaAddress(stealthAddress.address);
-      const stealthPubkey = new PublicKey12(stealthAddressBase58);
+      const stealthPubkey = new PublicKey13(stealthAddressBase58);
       const ephemeralPubkeyBase58 = ed25519PublicKeyToSolanaAddress(stealthAddress.ephemeralPublicKey);
       const stealthATA = await getAssociatedTokenAddress7(mint, stealthPubkey, true);
       try {
@@ -6863,7 +6903,7 @@ var ShieldedTransactionBuilder = class {
       instructions.push(
         new TransactionInstruction4({
           keys: [],
-          programId: new PublicKey12(MEMO_PROGRAM_ID),
+          programId: new PublicKey13(MEMO_PROGRAM_ID),
           data: Buffer.from(memoContent, "utf-8")
         })
       );
@@ -6911,7 +6951,7 @@ var ShieldedTransactionBuilder = class {
         estimatedFee
       };
     } else {
-      const transaction = new Transaction6();
+      const transaction = new Transaction7();
       transaction.recentBlockhash = blockhash;
       transaction.lastValidBlockHeight = lastValidBlockHeight;
       transaction.feePayer = this.feePayer;
@@ -6958,7 +6998,7 @@ var ShieldedTransactionBuilder = class {
     if (isVersioned) {
       return VersionedTransaction2.deserialize(buffer);
     } else {
-      return Transaction6.from(buffer);
+      return Transaction7.from(buffer);
     }
   }
   // ─── Configuration ────────────────────────────────────────────────────────────
@@ -7040,8 +7080,8 @@ function calculatePriorityFee(priority) {
 
 // src/chains/solana/anchor-transfer.ts
 import {
-  PublicKey as PublicKey13,
-  Transaction as Transaction7,
+  PublicKey as PublicKey14,
+  Transaction as Transaction8,
   TransactionInstruction as TransactionInstruction5,
   SystemProgram as SystemProgram3
 } from "@solana/web3.js";
@@ -7249,13 +7289,13 @@ function bigIntToBytes3(value, length) {
 }
 
 // src/chains/solana/anchor-transfer.ts
-var SIP_PRIVACY_PROGRAM_ID = new PublicKey13(
+var SIP_PRIVACY_PROGRAM_ID = new PublicKey14(
   "S1PMFspo4W6BYKHWkHNF7kZ3fnqibEXg3LQjxepS9at"
 );
-var CONFIG_PDA = new PublicKey13(
+var CONFIG_PDA = new PublicKey14(
   "BVawZkppFewygA5nxdrLma4ThKx8Th7bW4KTCkcWTZwZ"
 );
-var FEE_COLLECTOR = new PublicKey13(
+var FEE_COLLECTOR = new PublicKey14(
   "S1P6j1yeTm6zkewQVeihrTZvmfoHABRkHDhabWTuWMd"
 );
 var TRANSFER_RECORD_SEED = Buffer.from("transfer_record");
@@ -7293,7 +7333,7 @@ async function shieldedTransfer(params) {
   const stealthResult = generateEd25519StealthAddress(recipientMeta);
   const stealthAddr = stealthResult.stealthAddress;
   const stealthPubkey = ed25519PublicKeyToSolanaAddress(stealthAddr.address);
-  const stealthAccountPubkey = new PublicKey13(stealthPubkey);
+  const stealthAccountPubkey = new PublicKey14(stealthPubkey);
   const { commitment, blinding } = commit(amount);
   const commitmentBytes = hexToBytes7(commitment.slice(2));
   if (commitmentBytes.length !== 33) {
@@ -7317,7 +7357,7 @@ async function shieldedTransfer(params) {
     throw new ValidationError("SIP Privacy program not initialized", "config");
   }
   const totalTransfers = configAccount.data.readBigUInt64LE(43);
-  const [transferRecordPda] = PublicKey13.findProgramAddressSync(
+  const [transferRecordPda] = PublicKey14.findProgramAddressSync(
     [
       TRANSFER_RECORD_SEED,
       sender.toBuffer(),
@@ -7346,7 +7386,7 @@ async function shieldedTransfer(params) {
     programId: SIP_PRIVACY_PROGRAM_ID,
     data: instructionData
   });
-  const transaction = new Transaction7();
+  const transaction = new Transaction8();
   transaction.add(instruction);
   const { blockhash, lastValidBlockHeight } = await connection.getLatestBlockhash();
   transaction.recentBlockhash = blockhash;
@@ -7452,8 +7492,8 @@ function encryptAmount(amount, viewingKey) {
 
 // src/chains/solana/sunspot-verifier.ts
 import {
-  PublicKey as PublicKey14,
-  Transaction as Transaction8,
+  PublicKey as PublicKey15,
+  Transaction as Transaction9,
   TransactionInstruction as TransactionInstruction6,
   ComputeBudgetProgram as ComputeBudgetProgram3
 } from "@solana/web3.js";
@@ -7572,7 +7612,7 @@ var SunspotVerifier = class {
       proofBytes,
       ...publicInputBytes.map((b) => Buffer.from(b))
     ]);
-    const transaction = new Transaction8();
+    const transaction = new Transaction9();
     transaction.add(
       ComputeBudgetProgram3.setComputeUnitLimit({
         units: this.config.computeUnits
@@ -7692,7 +7732,7 @@ function formatOwnershipInputs(params) {
   ];
 }
 function toPublicKey2(input) {
-  return typeof input === "string" ? new PublicKey14(input) : input;
+  return typeof input === "string" ? new PublicKey15(input) : input;
 }
 function toBytes(input) {
   if (typeof input === "string") {
@@ -7710,6 +7750,198 @@ function bigintToBytes32(value) {
   return bytes;
 }
 
+// src/chains/solana/gasless-cashout.ts
+import {
+  PublicKey as PublicKey16,
+  Transaction as Transaction10
+} from "@solana/web3.js";
+import {
+  getAssociatedTokenAddress as getAssociatedTokenAddress8,
+  createTransferInstruction as createTransferInstruction5,
+  createAssociatedTokenAccountIdempotentInstruction,
+  getAccount as getAccount7
+} from "@solana/spl-token";
+
+// src/chains/solana/relayer-fee.ts
+function computeRelayerFee(amount, config) {
+  if (!Number.isInteger(config.bps) || config.bps < 0) {
+    throw new Error("bps must be a non-negative integer");
+  }
+  if (amount < 0n) {
+    throw new Error("amount must be a non-negative bigint");
+  }
+  if (typeof config.flatFloor !== "bigint" || config.flatFloor < 0n) {
+    throw new Error("flatFloor must be a non-negative bigint");
+  }
+  const bpsFee = amount * BigInt(config.bps) / 10000n;
+  return bpsFee > config.flatFloor ? bpsFee : config.flatFloor;
+}
+
+// src/chains/solana/gasless-cashout.ts
+async function buildGaslessCashout(params) {
+  const {
+    connection,
+    stealthAddress,
+    ephemeralPublicKey,
+    viewingPrivateKey,
+    spendingPrivateKey,
+    destinationAddress,
+    mint,
+    relayerPublicKey,
+    relayerFeeAccount,
+    feeConfig,
+    version = "2"
+  } = params;
+  const stealthSigner = deriveStealthSigner({
+    stealthAddress,
+    ephemeralPublicKey,
+    viewingPrivateKey,
+    spendingPrivateKey,
+    version
+  });
+  const stealthPubkey = stealthSigner.publicKey;
+  const stealthATA = await getAssociatedTokenAddress8(mint, stealthPubkey, true);
+  const destinationPubkey = new PublicKey16(destinationAddress);
+  const destinationATA = await getAssociatedTokenAddress8(mint, destinationPubkey);
+  if (destinationATA.equals(stealthATA)) {
+    throw new Error(
+      "destinationAddress resolves to the stealth token account; choose a different destination"
+    );
+  }
+  let feeAccount;
+  try {
+    feeAccount = await getAccount7(connection, relayerFeeAccount);
+  } catch {
+    throw new Error("relayerFeeAccount does not exist or is not a token account");
+  }
+  if (!feeAccount.mint.equals(mint)) {
+    throw new Error("relayerFeeAccount is not an associated token account for the given mint");
+  }
+  let balanceResp;
+  try {
+    balanceResp = await connection.getTokenAccountBalance(stealthATA);
+  } catch {
+    throw new Error(
+      `Stealth token account ${stealthATA.toBase58()} for mint ${mint.toBase58()} does not exist or holds no balance; nothing to cash out`
+    );
+  }
+  const grossAmount = BigInt(balanceResp.value.amount);
+  const relayerFee = computeRelayerFee(grossAmount, feeConfig);
+  if (relayerFee >= grossAmount) {
+    throw new Error(
+      `Relayer fee (${relayerFee}) equals or exceeds the claim amount (${grossAmount}); nothing left to forward`
+    );
+  }
+  const netAmount = grossAmount - relayerFee;
+  const transaction = new Transaction10();
+  transaction.add(
+    createAssociatedTokenAccountIdempotentInstruction(
+      relayerPublicKey,
+      // payer (relayer pays rent)
+      destinationATA,
+      destinationPubkey,
+      mint
+    )
+  );
+  transaction.add(
+    createTransferInstruction5(stealthATA, relayerFeeAccount, stealthPubkey, relayerFee)
+  );
+  transaction.add(
+    createTransferInstruction5(stealthATA, destinationATA, stealthPubkey, netAmount)
+  );
+  const { blockhash, lastValidBlockHeight } = await connection.getLatestBlockhash();
+  transaction.recentBlockhash = blockhash;
+  transaction.lastValidBlockHeight = lastValidBlockHeight;
+  transaction.feePayer = relayerPublicKey;
+  stealthSigner.signTransaction(transaction);
+  return {
+    transaction,
+    stealthAddress,
+    destinationAddress,
+    grossAmount,
+    relayerFee,
+    netAmount,
+    blockhash,
+    lastValidBlockHeight
+  };
+}
+function detectCluster5(endpoint) {
+  if (endpoint.includes("devnet")) {
+    return "devnet";
+  }
+  if (endpoint.includes("testnet")) {
+    return "testnet";
+  }
+  if (endpoint.includes("localhost") || endpoint.includes("127.0.0.1")) {
+    return "localnet";
+  }
+  return "mainnet-beta";
+}
+async function submitGaslessCashout(params) {
+  const { connection, build, relayerKeypair, jitoRelayer, tipLamports } = params;
+  const { transaction, netAmount, relayerFee, destinationAddress } = build;
+  if (!transaction.feePayer || !transaction.feePayer.equals(relayerKeypair.publicKey)) {
+    throw new Error("relayerKeypair does not match the transaction fee-payer");
+  }
+  const relayerAlreadySigned = transaction.signatures.some(
+    (s) => s.publicKey.equals(relayerKeypair.publicKey) && s.signature !== null
+  );
+  if (!relayerAlreadySigned) {
+    transaction.partialSign(relayerKeypair);
+  }
+  const cluster = detectCluster5(connection.rpcEndpoint);
+  if (jitoRelayer) {
+    const relayed = await jitoRelayer.relayTransaction({
+      transaction,
+      tipLamports,
+      tipPayer: relayerKeypair,
+      waitForConfirmation: true
+    });
+    if (relayed.status !== "confirmed") {
+      throw new Error(
+        `Gasless cash-out via Jito did not confirm (status: ${relayed.status})` + (relayed.error ? `: ${relayed.error}` : "")
+      );
+    }
+    if (!relayed.signature) {
+      throw new Error("Gasless cash-out via Jito returned an empty transaction signature");
+    }
+    return {
+      txSignature: relayed.signature,
+      destinationAddress,
+      amount: netAmount,
+      relayerFee,
+      explorerUrl: getExplorerUrl(relayed.signature, cluster),
+      // Report the TRUE path: the relayer may have fallen back to direct submission.
+      viaJito: relayed.relayed
+    };
+  }
+  const txSignature = await connection.sendRawTransaction(transaction.serialize(), {
+    skipPreflight: false,
+    preflightCommitment: "confirmed"
+  });
+  const confirmation = await connection.confirmTransaction(
+    {
+      signature: txSignature,
+      blockhash: build.blockhash,
+      lastValidBlockHeight: build.lastValidBlockHeight
+    },
+    "confirmed"
+  );
+  if (confirmation.value.err) {
+    throw new Error(
+      `Gasless cash-out landed but failed on-chain: ${JSON.stringify(confirmation.value.err)}`
+    );
+  }
+  return {
+    txSignature,
+    destinationAddress,
+    amount: netAmount,
+    relayerFee,
+    explorerUrl: getExplorerUrl(txSignature, cluster),
+    viaJito: false
+  };
+}
+
 export {
   isValidChainId,
   isValidPrivacyLevel,
@@ -7797,6 +8029,8 @@ export {
   formatLamports,
   parseSOLToLamports,
   getSOLBalance,
+  signEd25519WithScalar,
+  deriveStealthSigner,
   scanForPayments,
   claimStealthPayment,
   getStealthBalance,
@@ -7911,5 +8145,8 @@ export {
   SunspotVerifier,
   createVerifyInstructionData,
   formatFundingInputs,
-  formatOwnershipInputs
+  formatOwnershipInputs,
+  computeRelayerFee,
+  buildGaslessCashout,
+  submitGaslessCashout
 };