@smartagentkit/sdk 0.1.2 → 0.1.3

package/dist/index.d.mts

@@ -208,7 +208,6 @@ interface ISmartAgentKitClient {
     unpause(walletAddress: Address, guardianKey: SignerKey): Promise<Hex>;
     createSession(wallet: AgentWallet, params: CreateSessionParams, ownerKey: SignerKey): Promise<{
         sessionKey: Address;
-        privateKey: Hex;
         permissionId: Hex;
     }>;
     revokeSession(wallet: AgentWallet, permissionId: Hex, ownerKey: SignerKey): Promise<void>;
@@ -248,11 +247,16 @@ declare class SmartAgentKitClient implements ISmartAgentKitClient {
      * the smart account via Smart Sessions. The session is scoped to
      * specific target contracts, function selectors, and time window.
      *
-     * @returns The session key address, private key, and permission ID.
+     * @returns The session key address and permission ID.
+     *
+     * SECURITY: The session private key is intentionally NOT returned or stored
+     * by the SDK. The caller should use the `sessionKey` address to identify
+     * the session on-chain, and manage key material externally via a secure
+     * key management system. To use a pre-generated key pair, provide the
+     * session key address in `params.sessionKey`.
      */
     createSession(wallet: AgentWallet, params: CreateSessionParams, ownerKey: SignerKey): Promise<{
         sessionKey: Address;
-        privateKey: Hex;
         permissionId: Hex;
     }>;
     /**
@@ -319,13 +323,31 @@ declare class SmartAgentKitClient implements ISmartAgentKitClient {
      */
     private initializePolicies;
     /**
-     * Push the 3 calls needed to initialize a sub-hook:
-     * 1. onInstall(initData) on the sub-hook
-     * 2. setTrustedForwarder(multiplexer) on the sub-hook
-     * 3. addHook(hookAddr, GLOBAL) on the HookMultiPlexer
+     * Push the 2 calls needed to initialize a sub-hook:
+     * 1. onInstall(initData) on the sub-hook — sets trusted forwarder from init data
+     * 2. addHook(hookAddr, GLOBAL) on the HookMultiPlexer
+     *
+     * Note: The trusted forwarder is now set during onInstall via the encoded init data
+     * (passed as the first parameter). A separate setTrustedForwarder call is no longer
+     * needed, reducing gas cost and batch size.
      */
     private pushSubHookInitCalls;
     private mapPoliciesToInstalled;
+    /**
+     * Collect all known infrastructure addresses that must never be
+     * targeted by agent-initiated transactions. This prevents an AI agent
+     * from calling hook admin functions (setGuardian, clearTrustedForwarder,
+     * removeSpendingLimit, removeHook, etc.) to weaken its own policy constraints.
+     */
+    private getProtectedAddresses;
+    /**
+     * Validate a transaction before submission. Blocks calls to infrastructure
+     * addresses and validates input parameters.
+     *
+     * @throws ExecutionError if the transaction targets a protected address
+     *         or has invalid parameters.
+     */
+    private validateTransaction;
     private getWalletClient;
 }
 

package/dist/index.d.ts

@@ -208,7 +208,6 @@ interface ISmartAgentKitClient {
     unpause(walletAddress: Address, guardianKey: SignerKey): Promise<Hex>;
     createSession(wallet: AgentWallet, params: CreateSessionParams, ownerKey: SignerKey): Promise<{
         sessionKey: Address;
-        privateKey: Hex;
         permissionId: Hex;
     }>;
     revokeSession(wallet: AgentWallet, permissionId: Hex, ownerKey: SignerKey): Promise<void>;
@@ -248,11 +247,16 @@ declare class SmartAgentKitClient implements ISmartAgentKitClient {
      * the smart account via Smart Sessions. The session is scoped to
      * specific target contracts, function selectors, and time window.
      *
-     * @returns The session key address, private key, and permission ID.
+     * @returns The session key address and permission ID.
+     *
+     * SECURITY: The session private key is intentionally NOT returned or stored
+     * by the SDK. The caller should use the `sessionKey` address to identify
+     * the session on-chain, and manage key material externally via a secure
+     * key management system. To use a pre-generated key pair, provide the
+     * session key address in `params.sessionKey`.
      */
     createSession(wallet: AgentWallet, params: CreateSessionParams, ownerKey: SignerKey): Promise<{
         sessionKey: Address;
-        privateKey: Hex;
         permissionId: Hex;
     }>;
     /**
@@ -319,13 +323,31 @@ declare class SmartAgentKitClient implements ISmartAgentKitClient {
      */
     private initializePolicies;
     /**
-     * Push the 3 calls needed to initialize a sub-hook:
-     * 1. onInstall(initData) on the sub-hook
-     * 2. setTrustedForwarder(multiplexer) on the sub-hook
-     * 3. addHook(hookAddr, GLOBAL) on the HookMultiPlexer
+     * Push the 2 calls needed to initialize a sub-hook:
+     * 1. onInstall(initData) on the sub-hook — sets trusted forwarder from init data
+     * 2. addHook(hookAddr, GLOBAL) on the HookMultiPlexer
+     *
+     * Note: The trusted forwarder is now set during onInstall via the encoded init data
+     * (passed as the first parameter). A separate setTrustedForwarder call is no longer
+     * needed, reducing gas cost and batch size.
      */
     private pushSubHookInitCalls;
     private mapPoliciesToInstalled;
+    /**
+     * Collect all known infrastructure addresses that must never be
+     * targeted by agent-initiated transactions. This prevents an AI agent
+     * from calling hook admin functions (setGuardian, clearTrustedForwarder,
+     * removeSpendingLimit, removeHook, etc.) to weaken its own policy constraints.
+     */
+    private getProtectedAddresses;
+    /**
+     * Validate a transaction before submission. Blocks calls to infrastructure
+     * addresses and validates input parameters.
+     *
+     * @throws ExecutionError if the transaction targets a protected address
+     *         or has invalid parameters.
+     */
+    private validateTransaction;
     private getWalletClient;
 }