@trustvc/trustvc 1.8.1 → 2.0.0

package/dist/cjs/w3c/index.js

@@ -7,6 +7,7 @@ var sign = require('./sign');
 var types = require('./types');
 var vc = require('./vc');
 var verify = require('./verify');
+var derive = require('./derive');
 
 function _interopNamespace(e) {
   if (e && e.__esModule) return e;
@@ -55,3 +56,9 @@ Object.keys(verify).forEach(function (k) {
     get: function () { return verify[k]; }
   });
 });
+Object.keys(derive).forEach(function (k) {
+  if (k !== 'default' && !Object.prototype.hasOwnProperty.call(exports, k)) Object.defineProperty(exports, k, {
+    enumerable: true,
+    get: function () { return derive[k]; }
+  });
+});

package/dist/cjs/w3c/sign.js

@@ -4,8 +4,8 @@ var w3cVc = require('@trustvc/w3c-vc');
 
 var __defProp = Object.defineProperty;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
-const signW3C = /* @__PURE__ */ __name(async (credential, keyPair, cryptoSuite = "BbsBlsSignature2020") => {
-  return w3cVc.signCredential(credential, keyPair, cryptoSuite);
+const signW3C = /* @__PURE__ */ __name(async (credential, keyPair, cryptoSuite = "ecdsa-sd-2023", options) => {
+  return w3cVc.signCredential(credential, keyPair, cryptoSuite, options);
 }, "signW3C");
 
 exports.signW3C = signW3C;

package/dist/esm/core/documentBuilder.js

@@ -1,4 +1,5 @@
-import { signW3C, verifyW3CSignature } from '../w3c';
+import { CryptoSuite } from '@trustvc/w3c-issuer';
+import { signW3C, deriveW3C, verifyW3CSignature } from '../w3c';
 import { assertCredentialStatus, assertTransferableRecords } from '@trustvc/w3c-credential-status';
 import { verifyCredentialStatus } from '@trustvc/w3c-vc';
 import { ethers } from 'ethers';
@@ -7,6 +8,7 @@ import { constants as constants$1 } from '@tradetrust-tt/token-registry-v5';
 import { v4Contracts } from '../token-registry-v4';
 import { v5Contracts } from '../token-registry-v5';
 import { SUPPORTED_CHAINS } from '../utils';
+import { TR_CONTEXT_URL, RENDER_CONTEXT_V2_URL, QRCODE_CONTEXT_URL, DATA_INTEGRITY_V2_URL, BBS_V1_URL, VC_V1_URL, VC_V2_URL } from '@trustvc/w3c-context';
 
 var __defProp = Object.defineProperty;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
@@ -28,6 +30,8 @@ class DocumentBuilder {
   // Required fields that must be present in the document.
   isSigned = false;
   // Tracks if a document is signed
+  isDerived = false;
+  // Tracks if a document is derived
   /**
    * Constructor to initialize the document builder.
    * @param {Partial<VerifiableCredential>} input - The input document.
@@ -61,18 +65,17 @@ class DocumentBuilder {
         tokenRegistry: config.tokenRegistry
       };
       this.rpcProviderUrl = config.rpcProviderUrl;
-      this.addContext("https://trustvc.io/context/transferable-records-context.json");
+      this.addContext(TR_CONTEXT_URL);
     } else if (isVerifiable) {
       this.selectedStatusType = "verifiableDocument";
       this.statusConfig = {
         id: `${config.url}#${config.index}`,
-        type: "StatusList2021Entry",
+        type: "BitstringStatusListEntry",
         statusPurpose: config.purpose || "revocation",
         // Set status purpose to "revocation" by default.
         statusListIndex: config.index,
         statusListCredential: config.url
       };
-      this.addContext("https://w3id.org/vc/status-list/2021/v1");
     } else {
       throw new Error("Configuration Error: Missing required fields for credential status.");
     }
@@ -81,25 +84,25 @@ class DocumentBuilder {
   // Sets the expiration date of the document.
   expirationDate(date) {
     if (this.isSigned) throw new Error("Configuration Error: Document is already signed.");
-    this.document.expirationDate = typeof date === "string" ? date : date.toISOString();
+    this.document.validUntil = typeof date === "string" ? date : date.toISOString();
     return this;
   }
   // Defines the rendering method for the document.
   renderMethod(method) {
     if (this.isSigned) throw new Error("Configuration Error: Document is already signed.");
     this.document.renderMethod = [method];
-    this.addContext("https://trustvc.io/context/render-method-context.json");
+    this.addContext(RENDER_CONTEXT_V2_URL);
     return this;
   }
   // Defines the qrcode for the document.
   qrCode(method) {
     if (this.isSigned) throw new Error("Configuration Error: Document is already signed.");
     this.document.qrCode = method;
-    this.addContext("https://trustvc.io/context/qrcode-context.json");
+    this.addContext(QRCODE_CONTEXT_URL);
     return this;
   }
   // Sign the document using the provided private key and an optional cryptographic suite.
-  async sign(privateKey, cryptoSuite) {
+  async sign(privateKey, cryptoSuite, options) {
     if (this.isSigned) throw new Error("Configuration Error: Document is already signed.");
     if (this.selectedStatusType) {
       this.document.credentialStatus = this.statusConfig;
@@ -117,16 +120,36 @@ class DocumentBuilder {
       await this.verifyTokenRegistry();
     }
     this.document.issuer = privateKey.id.split("#")[0];
-    this.document.issuanceDate = this.document.issuanceDate || (/* @__PURE__ */ new Date()).toISOString();
-    this.addContext("https://w3id.org/security/bbs/v1");
-    const signedVC = await signW3C(this.document, privateKey, cryptoSuite);
+    this.document.validFrom = this.document.validFrom || (/* @__PURE__ */ new Date()).toISOString();
+    if (!cryptoSuite || cryptoSuite === "ecdsa-sd-2023") {
+      this.addContext(DATA_INTEGRITY_V2_URL);
+    } else {
+      this.addContext(BBS_V1_URL);
+    }
+    const signedVC = await signW3C(this.document, privateKey, cryptoSuite, options);
     if (signedVC.error) throw new Error(`Signing Error: ${signedVC.error}`);
     this.isSigned = true;
     return signedVC.signed;
   }
+  async derive(revealedAttributes) {
+    if (!this.isSigned) throw new Error("Configuration Error: Document is not signed yet.");
+    if (this.isDerived) throw new Error("Configuration Error: Document is already derived.");
+    const derivedCredential = await deriveW3C(
+      this.document,
+      revealedAttributes
+    );
+    if (derivedCredential.error) throw new Error(`Derivation Error: ${derivedCredential.error}`);
+    this.document = derivedCredential.derived;
+    this.isDerived = true;
+    return derivedCredential.derived;
+  }
   // Verify the document.
   async verify() {
     if (!this.isSigned) throw new Error("Verification Error: Document is not signed yet.");
+    const cryptosuite = this.document?.proof?.cryptosuite;
+    if (cryptosuite === CryptoSuite.EcdsaSd2023 && !this.isDerived) {
+      throw new Error("Verification Error: Document is not derived yet. Use derive() first.");
+    }
     const verificationResult = await verifyW3CSignature(
       this.document
     );
@@ -165,10 +188,11 @@ class DocumentBuilder {
   }
   // Private helper method to build the context for the document, ensuring uniqueness and adding the default W3C context.
   buildContext(context) {
-    return [
-      "https://www.w3.org/2018/credentials/v1",
-      ...Array.isArray(context) ? context : context ? [context] : []
-    ].filter((v, i, a) => a.indexOf(v) === i);
+    const arrayContext = Array.isArray(context) ? context : context ? [context] : [];
+    if (arrayContext.includes(VC_V1_URL)) {
+      throw new Error("Document builder does not support data model v1.1.");
+    }
+    return [VC_V2_URL, ...arrayContext].filter((v, i, a) => a.indexOf(v) === i);
   }
   // Private helper method to add a new context to the document if it does not already exist.
   addContext(context) {

package/dist/esm/open-attestation/utils.js

@@ -11,11 +11,10 @@ const {
   isSignedWrappedV3Document,
   isRawV2Document,
   isRawV3Document,
-  isObfuscated,
   getDocumentData,
   getIssuerAddress,
   diagnose,
   getTemplateURL
 } = utils;
 
-export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isObfuscated, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document };
+export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document };

package/dist/esm/utils/documents/index.js

@@ -71,5 +71,30 @@ const getChainId = /* @__PURE__ */ __name((document) => {
     return void 0;
   }
 }, "getChainId");
+const isObfuscated = /* @__PURE__ */ __name((document) => {
+  if (isWrappedV3Document(document)) {
+    return !!document.proof.privacy?.obfuscated?.length;
+  }
+  if (isWrappedV2Document(document)) {
+    return !!document.privacy?.obfuscatedData?.length;
+  }
+  if (isSignedDocument(document)) {
+    return document.proof?.type === "BbsBlsSignatureProof2020";
+  }
+  throw new Error(
+    "Unsupported document type: Can only check if there are obfuscated data from wrapped OpenAttestation v2, v3 documents and signed verifiable credentials."
+  );
+}, "isObfuscated");
+const getObfuscatedData = /* @__PURE__ */ __name((document) => {
+  if (isWrappedV3Document(document)) {
+    return document.proof.privacy?.obfuscated;
+  }
+  if (isWrappedV2Document(document)) {
+    return document.privacy?.obfuscatedData || [];
+  }
+  throw new Error(
+    "Unsupported document type: Can only retrieve obfuscated data from wrapped OpenAttestation v2 & v3 documents."
+  );
+}, "getObfuscatedData");
 
-export { getChainId, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isTransferableRecord };
+export { getChainId, getObfuscatedData, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isObfuscated, isTransferableRecord };

package/dist/esm/verify/fragments/document-integrity/ecdsaW3CSignatureIntegrity.js

@@ -0,0 +1,85 @@
+import { verifyW3CSignature } from '../../../w3c/verify';
+import { deriveCredential } from '@trustvc/w3c-vc';
+
+var __defProp = Object.defineProperty;
+var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
+const PROOF_TYPE = "DataIntegrityProof";
+const CRYPTOSUITE = "ecdsa-sd-2023";
+const DERIVE_CREDENTIAL_ERROR = "Use deriveCredential() first";
+function isSignedVerifiableCredential(document) {
+  return typeof document === "object" && document !== null && "proof" in document;
+}
+__name(isSignedVerifiableCredential, "isSignedVerifiableCredential");
+const ecdsaW3CSignatureIntegrity = {
+  skip: /* @__PURE__ */ __name(async () => {
+    return {
+      type: "DOCUMENT_INTEGRITY",
+      name: "EcdsaW3CSignatureIntegrity",
+      reason: {
+        code: 0,
+        codeString: "SKIPPED",
+        message: `Document either has no proof or proof type is not '${PROOF_TYPE}' or proof cryptosuite is not '${CRYPTOSUITE}'.`
+      },
+      status: "SKIPPED"
+    };
+  }, "skip"),
+  test: /* @__PURE__ */ __name((document) => {
+    const doc = document;
+    return doc.proof?.type === "DataIntegrityProof" && doc.proof?.cryptosuite === "ecdsa-sd-2023";
+  }, "test"),
+  verify: /* @__PURE__ */ __name(async (document, verifierOptions) => {
+    if (!isSignedVerifiableCredential(document)) {
+      return {
+        type: "DOCUMENT_INTEGRITY",
+        name: "EcdsaW3CSignatureIntegrity",
+        data: false,
+        reason: {
+          message: "Document is not a valid SignedVerifiableCredential"
+        },
+        status: "INVALID"
+      };
+    }
+    try {
+      let verificationResult = await verifyW3CSignature(document, verifierOptions);
+      let isDerived = true;
+      if (!verificationResult.verified && verificationResult.error?.includes(DERIVE_CREDENTIAL_ERROR)) {
+        const derivedCredential = await deriveCredential(document, []);
+        verificationResult = await verifyW3CSignature(derivedCredential.derived, verifierOptions);
+        isDerived = false;
+      }
+      if (verificationResult.verified) {
+        return {
+          type: "DOCUMENT_INTEGRITY",
+          name: "EcdsaW3CSignatureIntegrity",
+          data: true,
+          reason: {
+            message: isDerived ? "Document verified successfully" : "Document verified after derivation"
+          },
+          status: "VALID"
+        };
+      } else {
+        return {
+          type: "DOCUMENT_INTEGRITY",
+          name: "EcdsaW3CSignatureIntegrity",
+          data: false,
+          reason: {
+            message: verificationResult.error || "Verification failed"
+          },
+          status: "INVALID"
+        };
+      }
+    } catch (error) {
+      return {
+        type: "DOCUMENT_INTEGRITY",
+        name: "EcdsaW3CSignatureIntegrity",
+        data: false,
+        reason: {
+          message: error instanceof Error ? error.message : "Unknown verification error"
+        },
+        status: "INVALID"
+      };
+    }
+  }, "verify")
+};
+
+export { ecdsaW3CSignatureIntegrity };

package/dist/esm/verify/fragments/document-integrity/w3cSignatureIntegrity.js

@@ -1,4 +1,4 @@
-import { verifyW3CSignature } from '../../..';
+import { verifyW3CSignature } from '../../../w3c/verify';
 
 var __defProp = Object.defineProperty;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });

package/dist/esm/verify/fragments/index.js

@@ -1,5 +1,6 @@
 export { openAttestationDidIdentityProof, openAttestationDidSignedDocumentStatus, openAttestationDnsDidIdentityProof, openAttestationDnsTxtIdentityProof, openAttestationEthereumDocumentStoreStatus, openAttestationEthereumTokenRegistryStatus, openAttestationHash } from '@tradetrust-tt/tt-verify';
 export { w3cSignatureIntegrity } from './document-integrity/w3cSignatureIntegrity';
+export { ecdsaW3CSignatureIntegrity } from './document-integrity/ecdsaW3CSignatureIntegrity';
 export { TRANSFERABLE_RECORDS_TYPE, credentialStatusTransferableRecordVerifier } from './document-status/transferableRecords/transferableRecordVerifier';
 export { w3cCredentialStatus } from './document-status/w3cCredentialStatus';
 export { w3cIssuerIdentity } from './issuer-identity/w3cIssuerIdentity';

package/dist/esm/verify/verify.js

@@ -1,6 +1,7 @@
 import { openAttestationVerifiers as openAttestationVerifiers$1, openAttestationDidIdentityProof, openAttestationDnsTxtIdentityProof, openAttestationDnsDidIdentityProof, openAttestationEthereumTokenRegistryStatus, openAttestationEthereumDocumentStoreStatus, openAttestationDidSignedDocumentStatus, openAttestationHash } from '@tradetrust-tt/tt-verify';
 export { createResolver, getIdentifier, isValid, openAttestationDidIdentityProof, utils, verificationBuilder, verify } from '@tradetrust-tt/tt-verify';
 import { w3cSignatureIntegrity } from './fragments/document-integrity/w3cSignatureIntegrity';
+import { ecdsaW3CSignatureIntegrity } from './fragments/document-integrity/ecdsaW3CSignatureIntegrity';
 import { credentialStatusTransferableRecordVerifier } from './fragments/document-status/transferableRecords/transferableRecordVerifier';
 import { w3cCredentialStatus } from './fragments/document-status/w3cCredentialStatus';
 import { w3cIssuerIdentity } from './fragments/issuer-identity/w3cIssuerIdentity';
@@ -32,6 +33,7 @@ const openAttestationVerifiers = [
 ];
 const w3cVerifiers = [
   w3cSignatureIntegrity,
+  ecdsaW3CSignatureIntegrity,
   w3cCredentialStatus,
   credentialStatusTransferableRecordVerifier,
   w3cEmptyCredentialStatus,

package/dist/esm/w3c/derive.js

@@ -0,0 +1,9 @@
+import { deriveCredential } from '@trustvc/w3c-vc';
+
+var __defProp = Object.defineProperty;
+var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
+const deriveW3C = /* @__PURE__ */ __name(async (credential, revealedAttributes) => {
+  return deriveCredential(credential, revealedAttributes);
+}, "deriveW3C");
+
+export { deriveW3C };

package/dist/esm/w3c/index.js

@@ -9,3 +9,4 @@ export * from './types';
 import * as vc from './vc';
 export { vc };
 export * from './verify';
+export * from './derive';

package/dist/esm/w3c/sign.js

@@ -2,8 +2,8 @@ import { signCredential } from '@trustvc/w3c-vc';
 
 var __defProp = Object.defineProperty;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
-const signW3C = /* @__PURE__ */ __name(async (credential, keyPair, cryptoSuite = "BbsBlsSignature2020") => {
-  return signCredential(credential, keyPair, cryptoSuite);
+const signW3C = /* @__PURE__ */ __name(async (credential, keyPair, cryptoSuite = "ecdsa-sd-2023", options) => {
+  return signCredential(credential, keyPair, cryptoSuite, options);
 }, "signW3C");
 
 export { signW3C };

package/dist/types/core/documentBuilder.d.ts

@@ -1,5 +1,5 @@
 import { PrivateKeyPair } from '@trustvc/w3c-issuer';
-import { VerifiableCredential, SignedVerifiableCredential } from '@trustvc/w3c-vc';
+import { VerifiableCredential, CryptoSuiteName, SignedVerifiableCredential, ContextDocument } from '@trustvc/w3c-vc';
 
 /**
  * Configuration for a W3C Verifiable Document using a Bitstring Status List.
@@ -39,7 +39,7 @@ interface RenderMethod {
     templateName: string;
 }
 /**
- * Configuration for the qrcoode used in a Verifiable Credential document.
+ * Configuration for the qrcode used in a Verifiable Credential document.
  * @property {string} uri - A unique identifier for the qrcode, typically a URL or URI.
  * @property {string} type - The type of the qrcode method (e.g., 'TrustVCQRCode').
  */
@@ -47,8 +47,16 @@ interface qrCode {
     uri: string;
     type: string;
 }
+/**
+ * Options for signing a document.
+ * @property {string[]} mandatoryPointers - The mandatory pointers to be used for signing the document.
+ */
+interface SignOptions {
+    mandatoryPointers?: string[];
+}
 /**
  * Main class responsible for building, configuring, and signing documents with credential statuses.
+ * This class implements the W3C Verifiable Credentials Data Model 2.0 specification.
  */
 declare class DocumentBuilder {
     private document;
@@ -58,6 +66,7 @@ declare class DocumentBuilder {
     private rpcProviderUrl;
     private requiredFields;
     private isSigned;
+    private isDerived;
     /**
      * Constructor to initialize the document builder.
      * @param {Partial<VerifiableCredential>} input - The input document.
@@ -69,7 +78,8 @@ declare class DocumentBuilder {
     expirationDate(date: string | Date): this;
     renderMethod(method: RenderMethod): this;
     qrCode(method: qrCode): this;
-    sign(privateKey: PrivateKeyPair, cryptoSuite?: string): Promise<SignedVerifiableCredential>;
+    sign(privateKey: PrivateKeyPair, cryptoSuite?: CryptoSuiteName, options?: SignOptions): Promise<SignedVerifiableCredential>;
+    derive(revealedAttributes: ContextDocument | string[]): Promise<SignedVerifiableCredential>;
     verify(): Promise<boolean>;
     toString(): string;
     private isTransferableRecordsConfig;
@@ -82,4 +92,4 @@ declare class DocumentBuilder {
     private supportsInterface;
 }
 
-export { DocumentBuilder, type RenderMethod, type W3CTransferableRecordsConfig, type W3CVerifiableDocumentConfig, type qrCode };
+export { DocumentBuilder, type RenderMethod, type SignOptions, type W3CTransferableRecordsConfig, type W3CVerifiableDocumentConfig, type qrCode };

package/dist/types/core/index.d.ts

@@ -7,7 +7,7 @@ export { fetchEventTime, mergeTransfersV4, mergeTransfersV5, sortLogChain } from
 export { getEndorsementChain } from './endorsement-chain/retrieveEndorsementChain.js';
 export { EndorsementChain, ParsedLog, TitleEscrowTransferEvent, TitleEscrowTransferEventType, TokenTransferEvent, TokenTransferEventType, TradeTrustTokenEventType, TransferBaseEvent, TransferEvent, TransferEventType, TypedEvent } from './endorsement-chain/types.js';
 export { TitleEscrowInterface, checkSupportsInterface, fetchEndorsementChain, getDocumentOwner, getTitleEscrowAddress, isTitleEscrowVersion } from './endorsement-chain/useEndorsementChain.js';
-export { DocumentBuilder, RenderMethod, W3CTransferableRecordsConfig, W3CVerifiableDocumentConfig, qrCode } from './documentBuilder.js';
+export { DocumentBuilder, RenderMethod, SignOptions, W3CTransferableRecordsConfig, W3CVerifiableDocumentConfig, qrCode } from './documentBuilder.js';
 import '@trustvc/w3c-vc';
 import 'ethers';
 import '@tradetrust-tt/tt-verify/dist/types/src/types/core';

package/dist/types/{index-Bc5NlE8f.d.ts → index-1ws_BWZW.d.ts}

@@ -1,4 +1,4 @@
-import * as _trustvc_w3c_vc from '@trustvc/w3c-vc';
+import * as w3cVc from '@trustvc/w3c-vc';
 
 function _mergeNamespaces(n, m) {
 	m.forEach(function (e) {
@@ -17,6 +17,6 @@ function _mergeNamespaces(n, m) {
 
 var index = /*#__PURE__*/_mergeNamespaces({
 	__proto__: null
-}, [_trustvc_w3c_vc]);
+}, [w3cVc]);
 
 export { index as i };

package/dist/types/{index-CRVFHzes.d.ts → index-LpXMEhhr.d.ts}

@@ -1,5 +1,6 @@
 import { openAttestationDidIdentityProof, openAttestationDidSignedDocumentStatus, openAttestationDnsDidIdentityProof, openAttestationDnsTxtIdentityProof, openAttestationEthereumDocumentStoreStatus, openAttestationEthereumTokenRegistryStatus, openAttestationHash } from '@tradetrust-tt/tt-verify';
 import { w3cSignatureIntegrity } from './verify/fragments/document-integrity/w3cSignatureIntegrity.js';
+import { ecdsaW3CSignatureIntegrity } from './verify/fragments/document-integrity/ecdsaW3CSignatureIntegrity.js';
 import { TRANSFERABLE_RECORDS_TYPE, credentialStatusTransferableRecordVerifier } from './verify/fragments/document-status/transferableRecords/transferableRecordVerifier.js';
 import { w3cCredentialStatus } from './verify/fragments/document-status/w3cCredentialStatus.js';
 import { w3cIssuerIdentity } from './verify/fragments/issuer-identity/w3cIssuerIdentity.js';
@@ -7,6 +8,7 @@ import { w3cEmptyCredentialStatus } from './verify/fragments/document-status/w3c
 
 declare const index_TRANSFERABLE_RECORDS_TYPE: typeof TRANSFERABLE_RECORDS_TYPE;
 declare const index_credentialStatusTransferableRecordVerifier: typeof credentialStatusTransferableRecordVerifier;
+declare const index_ecdsaW3CSignatureIntegrity: typeof ecdsaW3CSignatureIntegrity;
 declare const index_openAttestationDidIdentityProof: typeof openAttestationDidIdentityProof;
 declare const index_openAttestationDidSignedDocumentStatus: typeof openAttestationDidSignedDocumentStatus;
 declare const index_openAttestationDnsDidIdentityProof: typeof openAttestationDnsDidIdentityProof;
@@ -19,7 +21,7 @@ declare const index_w3cEmptyCredentialStatus: typeof w3cEmptyCredentialStatus;
 declare const index_w3cIssuerIdentity: typeof w3cIssuerIdentity;
 declare const index_w3cSignatureIntegrity: typeof w3cSignatureIntegrity;
 declare namespace index {
-  export { index_TRANSFERABLE_RECORDS_TYPE as TRANSFERABLE_RECORDS_TYPE, index_credentialStatusTransferableRecordVerifier as credentialStatusTransferableRecordVerifier, index_openAttestationDidIdentityProof as openAttestationDidIdentityProof, index_openAttestationDidSignedDocumentStatus as openAttestationDidSignedDocumentStatus, index_openAttestationDnsDidIdentityProof as openAttestationDnsDidIdentityProof, index_openAttestationDnsTxtIdentityProof as openAttestationDnsTxtIdentityProof, index_openAttestationEthereumDocumentStoreStatus as openAttestationEthereumDocumentStoreStatus, index_openAttestationEthereumTokenRegistryStatus as openAttestationEthereumTokenRegistryStatus, index_openAttestationHash as openAttestationHash, index_w3cCredentialStatus as w3cCredentialStatus, index_w3cEmptyCredentialStatus as w3cEmptyCredentialStatus, index_w3cIssuerIdentity as w3cIssuerIdentity, index_w3cSignatureIntegrity as w3cSignatureIntegrity };
+  export { index_TRANSFERABLE_RECORDS_TYPE as TRANSFERABLE_RECORDS_TYPE, index_credentialStatusTransferableRecordVerifier as credentialStatusTransferableRecordVerifier, index_ecdsaW3CSignatureIntegrity as ecdsaW3CSignatureIntegrity, index_openAttestationDidIdentityProof as openAttestationDidIdentityProof, index_openAttestationDidSignedDocumentStatus as openAttestationDidSignedDocumentStatus, index_openAttestationDnsDidIdentityProof as openAttestationDnsDidIdentityProof, index_openAttestationDnsTxtIdentityProof as openAttestationDnsTxtIdentityProof, index_openAttestationEthereumDocumentStoreStatus as openAttestationEthereumDocumentStoreStatus, index_openAttestationEthereumTokenRegistryStatus as openAttestationEthereumTokenRegistryStatus, index_openAttestationHash as openAttestationHash, index_w3cCredentialStatus as w3cCredentialStatus, index_w3cEmptyCredentialStatus as w3cEmptyCredentialStatus, index_w3cIssuerIdentity as w3cIssuerIdentity, index_w3cSignatureIntegrity as w3cSignatureIntegrity };
 }
 
 export { index as i };

package/dist/types/index.d.ts

@@ -24,28 +24,29 @@ export { fetchEventTime, mergeTransfersV4, mergeTransfersV5, sortLogChain } from
 export { getEndorsementChain } from './core/endorsement-chain/retrieveEndorsementChain.js';
 export { EndorsementChain, ParsedLog, TitleEscrowTransferEvent, TitleEscrowTransferEventType, TokenTransferEvent, TokenTransferEventType, TradeTrustTokenEventType, TransferBaseEvent, TransferEvent, TransferEventType, TypedEvent } from './core/endorsement-chain/types.js';
 export { TitleEscrowInterface, checkSupportsInterface, fetchEndorsementChain, getDocumentOwner, getTitleEscrowAddress, isTitleEscrowVersion } from './core/endorsement-chain/useEndorsementChain.js';
-export { DocumentBuilder, RenderMethod, W3CTransferableRecordsConfig, W3CVerifiableDocumentConfig, qrCode } from './core/documentBuilder.js';
+export { DocumentBuilder, RenderMethod, SignOptions, W3CTransferableRecordsConfig, W3CVerifiableDocumentConfig, qrCode } from './core/documentBuilder.js';
 export { signOA } from './open-attestation/sign.js';
 export { KeyPair } from './open-attestation/types.js';
-export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isObfuscated, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document } from './open-attestation/utils.js';
+export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document } from './open-attestation/utils.js';
 export { verifyOASignature } from './open-attestation/verify.js';
 export { wrapOADocument, wrapOADocumentV2, wrapOADocuments, wrapOADocumentsV2 } from './open-attestation/wrap.js';
 export { openAttestationVerifiers, verifiers, w3cVerifiers } from './verify/verify.js';
-export { i as fragments } from './index-CRVFHzes.js';
+export { i as fragments } from './index-LpXMEhhr.js';
 export { i as context } from './index-DwAYXQn2.js';
 export { i as credentialStatus } from './index-CjwEVGoM.js';
 export { i as issuer } from './index-ClF4_Nqk.js';
 export { signW3C } from './w3c/sign.js';
 export { RawVerifiableCredential, SignedVerifiableCredential, SigningResult, VerificationResult } from '@trustvc/w3c-vc';
 export { PrivateKeyPair } from '@trustvc/w3c-issuer';
-export { i as vc } from './index-Bc5NlE8f.js';
+export { i as vc } from './index-1ws_BWZW.js';
 export { verifyW3CSignature } from './w3c/verify.js';
+export { deriveW3C } from './w3c/derive.js';
 export { errorMessageHandling, w3cCredentialStatusRevoked, w3cCredentialStatusSuspended } from './utils/fragment/index.js';
 export * from '@tradetrust-tt/tradetrust-utils/constants/network';
 export { generate12ByteNonce, generate32ByteKey, stringToUint8Array } from './utils/stringUtils/index.js';
 export * from '@tradetrust-tt/tradetrust-utils/constants/supportedChains';
 export { errorMessages } from './utils/errorMessages/index.js';
-export { WrappedOrSignedOpenAttestationDocument, getChainId, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isTransferableRecord } from './utils/documents/index.js';
+export { WrappedOrSignedOpenAttestationDocument, getChainId, getObfuscatedData, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isObfuscated, isTransferableRecord } from './utils/documents/index.js';
 export { GasStationFeeData, GasStationFunction, calculateMaxFee, gasStation, interpretFragments, scaleBigNumber } from '@tradetrust-tt/tradetrust-utils';
 export { AwsKmsSigner, AwsKmsSignerCredentials } from '@tradetrust-tt/ethers-aws-kms-signer';
 export { CustomDnsResolver, IDNSQueryResponse, IDNSRecord, OpenAttestationDNSTextRecord, OpenAttestationDnsDidRecord, defaultDnsResolvers, getDnsDidRecords, getDocumentStoreRecords, parseDnsDidResults, parseDocumentStoreResults, parseOpenAttestationRecord, queryDns } from '@tradetrust-tt/dnsprove';
@@ -71,6 +72,7 @@ import '@tradetrust-tt/tradetrust/dist/types/__generated__/schema.2.0';
 import '@tradetrust-tt/tradetrust/dist/types/shared/utils/@types/diagnose';
 import './verify/fragments/document-status/transferableRecords/transferableRecordVerifier.types.js';
 import './verify/fragments/document-integrity/w3cSignatureIntegrity.js';
+import './verify/fragments/document-integrity/ecdsaW3CSignatureIntegrity.js';
 import './verify/fragments/document-status/transferableRecords/transferableRecordVerifier.js';
 import './verify/fragments/document-status/w3cCredentialStatus.js';
 import './verify/fragments/issuer-identity/w3cIssuerIdentity.js';

package/dist/types/open-attestation/index.d.ts

@@ -1,12 +1,11 @@
 export { signOA } from './sign.js';
 export { KeyPair } from './types.js';
-export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isObfuscated, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document } from './utils.js';
+export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document } from './utils.js';
 export { verifyOASignature } from './verify.js';
 export { wrapOADocument, wrapOADocumentV2, wrapOADocuments, wrapOADocumentsV2 } from './wrap.js';
 export { OpenAttestationDocument, SUPPORTED_SIGNING_ALGORITHM, SchemaId, SignedWrappedDocument, WrappedDocument, getData as getDataV2, isSchemaValidationError, obfuscateDocument, v2, v3, validateSchema, __unsafe__use__it__at__your__own__risks__wrapDocument as wrapOADocumentV3, __unsafe__use__it__at__your__own__risks__wrapDocuments as wrapOADocumentsV3 } from '@tradetrust-tt/tradetrust';
 export { DiagnoseError } from '@tradetrust-tt/tradetrust/dist/types/shared/utils';
 import '@ethersproject/abstract-signer';
-import '@trustvc/w3c-vc';
 import '@tradetrust-tt/tradetrust/dist/types/3.0/types';
 import '@tradetrust-tt/tradetrust/dist/types/__generated__/schema.3.0';
 import '@tradetrust-tt/tradetrust/dist/types/2.0/types';

package/dist/types/open-attestation/utils.d.ts

@@ -1,4 +1,3 @@
-import * as _trustvc_w3c_vc from '@trustvc/w3c-vc';
 import * as _tradetrust_tt_tradetrust_dist_types_3_0_types from '@tradetrust-tt/tradetrust/dist/types/3.0/types';
 import * as _tradetrust_tt_tradetrust_dist_types___generated___schema_3_0 from '@tradetrust-tt/tradetrust/dist/types/__generated__/schema.3.0';
 import * as _tradetrust_tt_tradetrust from '@tradetrust-tt/tradetrust';
@@ -29,7 +28,6 @@ declare const isRawV2Document: (document: any, { mode }?: {
 declare const isRawV3Document: (document: any, { mode }?: {
     mode: _tradetrust_tt_tradetrust_dist_types_shared_utils__types_diagnose.Mode;
 }) => document is _tradetrust_tt_tradetrust_dist_types___generated___schema_3_0.OpenAttestationDocument;
-declare const isObfuscated: (document: _tradetrust_tt_tradetrust_dist_types_3_0_types.WrappedDocument<_tradetrust_tt_tradetrust_dist_types___generated___schema_3_0.OpenAttestationDocument> | _tradetrust_tt_tradetrust_dist_types_2_0_types.WrappedDocument<_tradetrust_tt_tradetrust_dist_types___generated___schema_2_0.OpenAttestationDocument> | _trustvc_w3c_vc.SignedVerifiableCredential) => boolean;
 declare const getDocumentData: (document: _tradetrust_tt_tradetrust.WrappedDocument<_tradetrust_tt_tradetrust.OpenAttestationDocument>) => _tradetrust_tt_tradetrust.OpenAttestationDocument;
 declare const getIssuerAddress: typeof utils.getIssuerAddress;
 declare const diagnose: ({ version, kind, document, debug, mode, }: {
@@ -41,4 +39,4 @@ declare const diagnose: ({ version, kind, document, debug, mode, }: {
 }) => utils.DiagnoseError[];
 declare const getTemplateURL: (document: any) => string | undefined;
 
-export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isObfuscated, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document };
+export { diagnose, getAssetId, getDocumentData, getIssuerAddress, getTemplateURL, isDocumentRevokable, isRawV2Document, isRawV3Document, isSignedWrappedV2Document, isSignedWrappedV3Document, isTransferableAsset, isWrappedV2Document, isWrappedV3Document };

package/dist/types/utils/documents/index.d.ts

@@ -1,6 +1,6 @@
 import { WrappedDocument, OpenAttestationDocument } from '@tradetrust-tt/tradetrust';
-import { SignedVerifiableCredential } from '@trustvc/w3c-vc';
 import { TransferableRecordsCredentialStatus } from '@trustvc/w3c-credential-status';
+import { SignedVerifiableCredential } from '@trustvc/w3c-vc';
 import { CHAIN_ID } from '@tradetrust-tt/tradetrust-utils/constants/supportedChains';
 
 type WrappedOrSignedOpenAttestationDocument = WrappedDocument<OpenAttestationDocument>;
@@ -9,5 +9,7 @@ declare const isTransferableRecord: (document: WrappedOrSignedOpenAttestationDoc
 declare const getTokenRegistryAddress: (document: WrappedOrSignedOpenAttestationDocument | SignedVerifiableCredential) => string | undefined;
 declare const getTokenId: (document: WrappedOrSignedOpenAttestationDocument | SignedVerifiableCredential) => string;
 declare const getChainId: (document: WrappedOrSignedOpenAttestationDocument | SignedVerifiableCredential) => CHAIN_ID | undefined;
+declare const isObfuscated: (document: WrappedDocument<OpenAttestationDocument> | SignedVerifiableCredential) => boolean;
+declare const getObfuscatedData: (document: WrappedDocument<OpenAttestationDocument>) => string[];
 
-export { type WrappedOrSignedOpenAttestationDocument, getChainId, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isTransferableRecord };
+export { type WrappedOrSignedOpenAttestationDocument, getChainId, getObfuscatedData, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isObfuscated, isTransferableRecord };

package/dist/types/utils/index.d.ts

@@ -3,11 +3,11 @@ export * from '@tradetrust-tt/tradetrust-utils/constants/network';
 export { generate12ByteNonce, generate32ByteKey, stringToUint8Array } from './stringUtils/index.js';
 export * from '@tradetrust-tt/tradetrust-utils/constants/supportedChains';
 export { errorMessages } from './errorMessages/index.js';
-export { WrappedOrSignedOpenAttestationDocument, getChainId, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isTransferableRecord } from './documents/index.js';
+export { WrappedOrSignedOpenAttestationDocument, getChainId, getObfuscatedData, getTokenId, getTokenRegistryAddress, getTransferableRecordsCredentialStatus, isObfuscated, isTransferableRecord } from './documents/index.js';
 export { GasStationFeeData, GasStationFunction, calculateMaxFee, gasStation, interpretFragments, scaleBigNumber } from '@tradetrust-tt/tradetrust-utils';
 export { AwsKmsSigner, AwsKmsSignerCredentials } from '@tradetrust-tt/ethers-aws-kms-signer';
 export { ErrorMessage, ErrorMessageTypes, ErrorMessages, MessagesDictionary } from './errorMessages/types.js';
 import '@tradetrust-tt/tt-verify';
 import '@tradetrust-tt/tradetrust';
-import '@trustvc/w3c-vc';
 import '@trustvc/w3c-credential-status';
+import '@trustvc/w3c-vc';

package/dist/types/verify/fragments/document-integrity/ecdsaW3CSignatureIntegrity.d.ts

@@ -0,0 +1,5 @@
+import { Verifier, VerificationFragment } from '@tradetrust-tt/tt-verify';
+
+declare const ecdsaW3CSignatureIntegrity: Verifier<VerificationFragment>;
+
+export { ecdsaW3CSignatureIntegrity };

package/dist/types/verify/fragments/index.d.ts

@@ -1,5 +1,6 @@
 export { openAttestationDidIdentityProof, openAttestationDidSignedDocumentStatus, openAttestationDnsDidIdentityProof, openAttestationDnsTxtIdentityProof, openAttestationEthereumDocumentStoreStatus, openAttestationEthereumTokenRegistryStatus, openAttestationHash } from '@tradetrust-tt/tt-verify';
 export { w3cSignatureIntegrity } from './document-integrity/w3cSignatureIntegrity.js';
+export { ecdsaW3CSignatureIntegrity } from './document-integrity/ecdsaW3CSignatureIntegrity.js';
 export { TRANSFERABLE_RECORDS_TYPE, credentialStatusTransferableRecordVerifier } from './document-status/transferableRecords/transferableRecordVerifier.js';
 export { w3cCredentialStatus } from './document-status/w3cCredentialStatus.js';
 export { w3cIssuerIdentity } from './issuer-identity/w3cIssuerIdentity.js';

package/dist/types/verify/index.d.ts

@@ -1,9 +1,10 @@
 export { openAttestationVerifiers, verifiers, w3cVerifiers } from './verify.js';
-export { i as fragments } from '../index-CRVFHzes.js';
+export { i as fragments } from '../index-LpXMEhhr.js';
 export { createResolver, getIdentifier, isValid, openAttestationDidIdentityProof, utils, verificationBuilder, verify } from '@tradetrust-tt/tt-verify';
 export { DocumentsToVerify, ErrorVerificationFragment, InvalidVerificationFragment, ProviderDetails, providerType as ProviderType, SkippedVerificationFragment, ValidVerificationFragment, VerificationBuilderOptions, VerificationFragment, VerificationFragmentStatus, VerificationFragmentType, VerificationFragmentWithData, Verifier, VerifierOptions } from '@tradetrust-tt/tt-verify/dist/types/src/types/core';
 import './fragments/document-status/transferableRecords/transferableRecordVerifier.types.js';
 import './fragments/document-integrity/w3cSignatureIntegrity.js';
+import './fragments/document-integrity/ecdsaW3CSignatureIntegrity.js';
 import './fragments/document-status/transferableRecords/transferableRecordVerifier.js';
 import './fragments/document-status/w3cCredentialStatus.js';
 import './fragments/issuer-identity/w3cIssuerIdentity.js';

package/dist/types/w3c/derive.d.ts

@@ -0,0 +1,11 @@
+import { SignedVerifiableCredential, ContextDocument, DerivedResult } from '@trustvc/w3c-vc';
+
+/**
+ * Derives a credential with selective disclosure based on revealed attributes.
+ * @param {object} credential - The verifiable credential to be selectively disclosed.
+ * @param {object|string[]} revealedAttributes - For BBS+: The attributes from the credential that should be revealed. For ECDSA-SD-2023: Array of selective pointers.
+ * @returns {Promise<DerivedResult>} A DerivedResult containing the derived proof or an error message.
+ */
+declare const deriveW3C: (credential: SignedVerifiableCredential, revealedAttributes: ContextDocument | string[]) => Promise<DerivedResult>;
+
+export { deriveW3C };