@unicitylabs/sphere-sdk 0.7.1-dev.3 → 0.7.2

package/dist/index.d.cts

@@ -2094,6 +2094,20 @@ declare function signMessage(privateKeyHex: string, message: string): string;
  * @returns `true` if the signature is valid and matches the expected public key
  */
 declare function verifySignedMessage(message: string, signature: string, expectedPubkey: string): boolean;
+/**
+ * Recover the compressed secp256k1 public key from a signed message.
+ *
+ * Use this when the server needs to identify the signer (not just verify
+ * a signature against a known pubkey). Combined with `sphere.resolve(pubkey)`
+ * it gives a fully cryptographically-attributable identity for backend auth,
+ * without trusting any client-supplied identifier claim.
+ *
+ * @param message    - The plaintext that was signed
+ * @param signature  - 130-char hex (v + r + s) as produced by `signMessage`
+ * @returns          - Compressed 66-char hex pubkey
+ * @throws           - On malformed signature length or out-of-range recovery byte
+ */
+declare function recoverPubkeyFromSignature(message: string, signature: string): string;
 
 /**
  * INSTANT_SPLIT V5 Types
@@ -4623,6 +4637,42 @@ declare class PaymentsModule {
      * @returns MintNametagResult with success status and token if successful
      */
     mintNametag(nametag: string): Promise<MintNametagResult>;
+    /**
+     * Mint a fungible token directly to this wallet (genesis mint).
+     *
+     * Useful for test setups that need to seed a wallet with specific token
+     * balances WITHOUT depending on the testnet faucet HTTP service. The
+     * resulting token has the canonical CoinId bytes (passed in `coinIdHex`)
+     * — when those bytes match a registered symbol in the TokenRegistry,
+     * the token shows up under the symbol's name (e.g. "UCT"). There is no
+     * cryptographic restriction on which key may issue a given CoinId; the
+     * aggregator records the mint regardless of issuer identity.
+     *
+     * The flow:
+     *   1. Generate a random TokenId.
+     *   2. Build TokenCoinData with [(coinId, amount)].
+     *   3. Build MintTransactionData with recipient = self (UnmaskedPredicate
+     *      from this wallet's signing service).
+     *   4. Submit MintCommitment to the aggregator.
+     *   5. Wait for the inclusion proof.
+     *   6. Construct an SDK Token via Token.mint().
+     *   7. Convert to wallet Token format and call addToken().
+     *
+     * @param coinIdHex - 64-char lowercase hex CoinId. Must match the bytes
+     *   used by the registered symbol if you want the wallet to recognize
+     *   the token as that symbol (e.g. UCT's coinId from the public registry).
+     * @param amount - Amount in smallest units (multiply by 10^decimals
+     *   when converting from human values).
+     * @returns Result with the resulting wallet Token and its on-chain id.
+     */
+    mintFungibleToken(coinIdHex: string, amount: bigint): Promise<{
+        success: true;
+        token: Token;
+        tokenId: string;
+    } | {
+        success: false;
+        error: string;
+    }>;
     /**
      * Check if a nametag is available for minting
      * @param nametag - The nametag to check (e.g., "alice" or "@alice")
@@ -5115,6 +5165,24 @@ declare class AccountingModule {
     private dirtyLedgerEntries;
     /** Count of unknown (not in invoiceTermsCache) invoice IDs in the ledger. */
     private unknownLedgerCount;
+    /**
+     * Per-unknown-invoice first-seen timestamp for TTL eviction.
+     *
+     * W1 (steelman round-4): without TTL, an attacker who can deliver 500
+     * inbound transfers with synthesized memo invoiceIds permanently exhausts
+     * the unknown-ledger cap, after which legitimate orphan transfers (out-of-
+     * order delivery for real swaps) are silently dropped at the cap-check.
+     *
+     * Round-5 perf: gated by `unknownLedgerNextSweepMs` to amortize the
+     * sweep cost. The naive every-call sweep is O(N) where N=cap=500;
+     * combined with the per-token cleanup loop inside the sweep it became
+     * O(N×M) on every transfer under flood. Now we sweep at most every
+     * `UNKNOWN_LEDGER_SWEEP_INTERVAL_MS` (60s) UNLESS the cap is currently
+     * full, in which case we sweep on each call (the only path that can
+     * actually drop a legitimate orphan).
+     */
+    private unknownLedgerFirstSeen;
+    private unknownLedgerNextSweepMs;
     /** W17: Tracks whether tokenScanState has been mutated since last flush. */
     private tokenScanDirty;
     /** W2 fix: Serialization guard for _flushDirtyLedgerEntries. */
@@ -5299,6 +5367,21 @@ declare class AccountingModule {
      * @throws {SphereError} `NOT_INITIALIZED` — module not initialized.
      */
     getInvoice(invoiceId: string): InvoiceRef | null;
+    /**
+     * Return the set of token IDs that are currently linked to the given
+     * invoice. Populated by both the on-chain `_processTokenTransactions`
+     * path (tokens with `inv:` references) and the transport-memo orphan
+     * buffering path in `_handleIncomingTransfer`.
+     *
+     * Used by callers that want to scope per-invoice operations (e.g.
+     * SwapModule.verifyPayout's L3 validation) to only the tokens that
+     * cover this invoice — avoiding false negatives when the wallet
+     * contains unrelated tokens of the same currency in unconfirmed or
+     * spent state.
+     *
+     * Returns an empty set if no tokens are currently linked.
+     */
+    getTokenIdsForInvoice(invoiceId: string): Set<string>;
     /**
      * Explicitly close an invoice. Only target parties may close (§8.3).
      *
@@ -5646,6 +5729,35 @@ declare class AccountingModule {
      * await and the null assignment, so we loop until the field is null.
      */
     private _drainFlushPromise;
+    /**
+     * Synchronously persist any pending provisional ledger entry for `invoiceId`
+     * before returning to the caller. Used by `payInvoice` and
+     * `returnInvoicePayment` to make the in-memory provisional entry durable
+     * inside the same per-invoice gate that wrote it, closing the
+     * crash-mid-conclude race that produces over-coverage on receivers.
+     *
+     * Implementation:
+     *   1. Schedule a flush via the existing `_flushPromise` chain (so
+     *      concurrent `_handleTokenChange` callers waiting on the chain
+     *      observe ours as part of the sequence).
+     *   2. Await OUR flush directly — NOT `_drainFlushPromise()`, which would
+     *      spin while concurrent token changes keep extending the chain and
+     *      hold the per-invoice gate for an unbounded number of additional
+     *      flushes. We only need OUR provisional entry durable.
+     *   3. `_flushDirtyLedgerEntries` swallows per-invoice `storage.set`
+     *      rejections internally (sets a local `step1Failed` flag), leaving
+     *      the dirty entry on the set without re-throwing. So we post-check
+     *      `dirtyLedgerEntries.has(invoiceId)` and throw a `STORAGE_ERROR`
+     *      `SphereError` if our entry is still dirty — propagating to the
+     *      caller so they learn about the durability failure rather than
+     *      receiving a silent "success" return that lies on disk.
+     *
+     * @param invoiceId    The invoice whose provisional entry must be durable.
+     * @param callContext  Used in the error message so the caller is named
+     *                     ('payInvoice' / 'returnInvoicePayment') without
+     *                     forcing a stack-trace inspection.
+     */
+    private _persistProvisionalAndVerify;
     /**
      * Handle an incoming transfer event from PaymentsModule (§6.2).
      *
@@ -8221,6 +8333,81 @@ declare const initSphere: typeof Sphere.init;
 declare const getSphere: typeof Sphere.getInstance;
 declare const sphereExists: typeof Sphere.exists;
 
+/**
+ * Encryption utilities for SDK2
+ *
+ * Provides AES-256 encryption for sensitive wallet data.
+ * Uses crypto-js for cross-platform compatibility.
+ */
+interface EncryptedData {
+    /** Encrypted ciphertext (base64) */
+    ciphertext: string;
+    /** Initialization vector (hex) */
+    iv: string;
+    /** Salt used for key derivation (hex) */
+    salt: string;
+    /** Algorithm identifier */
+    algorithm: 'aes-256-cbc';
+    /** Key derivation function */
+    kdf: 'pbkdf2';
+    /** Number of PBKDF2 iterations */
+    iterations: number;
+}
+interface EncryptionOptions {
+    /** Number of PBKDF2 iterations (default: 100000) */
+    iterations?: number;
+}
+/**
+ * Encrypt data with AES-256-CBC
+ * @param plaintext - Data to encrypt (string or object)
+ * @param password - Encryption password
+ * @param options - Encryption options
+ */
+declare function encrypt$1(plaintext: string | object, password: string, options?: EncryptionOptions): EncryptedData;
+/**
+ * Decrypt AES-256-CBC encrypted data
+ * @param encryptedData - Encrypted data object
+ * @param password - Decryption password
+ */
+declare function decrypt$1(encryptedData: EncryptedData, password: string): string;
+/**
+ * Decrypt and parse JSON data
+ * @param encryptedData - Encrypted data object
+ * @param password - Decryption password
+ */
+declare function decryptJson<T = unknown>(encryptedData: EncryptedData, password: string): T;
+/**
+ * Simple encryption using CryptoJS built-in password-based encryption
+ * Suitable for localStorage where we don't need full EncryptedData metadata
+ * @param plaintext - Data to encrypt
+ * @param password - Encryption password
+ */
+declare function encryptSimple(plaintext: string, password: string): string;
+/**
+ * Simple decryption
+ * @param ciphertext - Encrypted string
+ * @param password - Decryption password
+ */
+declare function decryptSimple(ciphertext: string, password: string): string;
+/**
+ * Decrypt data encrypted with PBKDF2-derived key (legacy JSON wallet format).
+ * Compatible with webwallet's encryptWithPassword/decryptWithPassword.
+ */
+declare function decryptWithSalt(ciphertext: string, password: string, salt: string): string | null;
+/**
+ * Encrypt mnemonic phrase for storage
+ * Uses simple AES encryption compatible with existing wallet format
+ * @param mnemonic - BIP39 mnemonic phrase
+ * @param password - Encryption password
+ */
+declare function encryptMnemonic(mnemonic: string, password: string): string;
+/**
+ * Decrypt mnemonic phrase from storage
+ * @param encryptedMnemonic - Encrypted mnemonic string
+ * @param password - Decryption password
+ */
+declare function decryptMnemonic(encryptedMnemonic: string, password: string): string;
+
 /**
  * Convert human-readable amount to smallest unit (bigint)
  *
@@ -9822,6 +10009,51 @@ declare function getCoinIdBySymbol(symbol: string): string | undefined;
  * @returns Coin ID or undefined
  */
 declare function getCoinIdByName(name: string): string | undefined;
+/**
+ * Normalize a coin identifier to its canonical hash coinId.
+ *
+ * Accepts both symbolic names ("BTC", "ETH") and hash coinIds (64-char hex).
+ * If the input is a short symbol, resolves it via the TokenRegistry.
+ * Returns the input unchanged if it's already a hash coinId or unknown.
+ *
+ * @public
+ *
+ * @remarks
+ * Heuristic: inputs matching `length <= 20 && /^[A-Za-z0-9]+$/` are treated
+ * as symbolic names and looked up in the registry. Long inputs, hyphenated
+ * inputs ("TOKEN-123"), or dotted inputs ("BTC.CASH") pass through unchanged.
+ *
+ * **Stability:** This function depends on `TokenRegistry` content. Adding a
+ * new symbol that shadows a previously-unknown short alphanumeric coinId
+ * changes normalization semantics retroactively. Consumers building stable
+ * keys against this output should be aware that registry growth is a
+ * non-breaking change *for unknown inputs* but a breaking change *for inputs
+ * that newly resolve*.
+ *
+ * @param coinId - A symbolic name or hash coinId.
+ * @returns The canonical hash coinId, or the original string if not resolvable.
+ */
+declare function normalizeCoinId(coinId: string): string;
+/**
+ * Compare two coin identifiers for equality, normalizing both sides.
+ *
+ * Handles mixed-format comparisons: "BTC" vs hash coinId, or two hash coinIds.
+ * Both values are normalized to hash coinIds via the TokenRegistry before comparison.
+ *
+ * @public
+ *
+ * @remarks
+ * Reflexive byte-equality short-circuit comes first; otherwise both sides
+ * are normalized via {@link normalizeCoinId} and compared. Inherits the
+ * registry-dependence caveat from `normalizeCoinId`. Two distinct symbols
+ * that both fail to resolve will compare unequal even if they're semantic
+ * aliases — register them as aliases in `TokenRegistry` for matching.
+ *
+ * @param a - First coin identifier (symbol or hash coinId).
+ * @param b - Second coin identifier (symbol or hash coinId).
+ * @returns true if both resolve to the same canonical coinId.
+ */
+declare function coinIdsMatch(a: string, b: string): boolean;
 
 /**
  * Standard address parsing, validation, and normalization for Unicity addresses.
@@ -9889,4 +10121,4 @@ declare function normalizeAddress(address: string): string;
  */
 declare function addressesMatch(a: string, b: string): boolean;
 
-export { type AddressInfo, type AddressMode, type AddressType, type AggregatorClient, type AggregatorEvent, type AggregatorEventCallback, type AggregatorEventType, type AggregatorProvider, type AggregatorProviderConfig, type Asset, type BackgroundProgressStatus, type BaseProvider, type BroadcastHandler, type BroadcastMessage, type BuildSplitBundleResult, type CMasterKeyData, COIN_TYPES, type CheckNetworkHealthOptions, CoinGeckoPriceProvider, type CombinedTransferBundleV6, CommunicationsModule, type CommunicationsModuleConfig, type CommunicationsModuleDependencies, type ComposingIndicator, type ConversationPage, type CreateGroupOptions, DEFAULT_AGGREGATOR_TIMEOUT, DEFAULT_AGGREGATOR_URL, DEFAULT_DERIVATION_PATH, DEFAULT_ELECTRUM_URL, DEFAULT_GROUP_RELAYS, DEFAULT_IPFS_BOOTSTRAP_PEERS, DEFAULT_IPFS_GATEWAYS, DEFAULT_MARKET_API_URL, DEFAULT_NOSTR_RELAYS, DEV_AGGREGATOR_URL, type DecryptionProgressCallback, type DerivationMode, type DirectMessage, type DirectTokenEntry, type DiscoverAddressProgress, type DiscoverAddressesOptions, type DiscoverAddressesResult, type DiscoveredAddress, type ExtendedValidationResult, type FullIdentity, type GetConversationPageOptions, type GetSwapsFilter, GroupChatModule, type GroupChatModuleConfig, type GroupChatModuleDependencies, type GroupData, type GroupMemberData, type GroupMessageData, GroupRole, GroupVisibility, type HealthCheckFn, type Identity, type IdentityConfig, type InclusionProof, type IncomingBroadcast, type IncomingMessage, type IncomingPaymentRequest, type IncomingTokenTransfer, type IncomingTransfer, type InitProgress, type InitProgressCallback, type InitProgressStep, type InstantSplitBundle, type InstantSplitBundleV4, type InstantSplitBundleV5, type InstantSplitOptions, type InstantSplitProcessResult, type InstantSplitResult, type InstantSplitV5RecoveryMetadata, type IntentStatus, type IntentType, type InvalidatedNametagEntry, index as L1, type L1Balance, L1PaymentsModule, type L1PaymentsModuleConfig, type L1PaymentsModuleDependencies, type L1SendRequest, type L1SendResult, type L1Transaction, type L1Utxo, LIMITS, type LegacyFileImportOptions, type LegacyFileInfo, type LegacyFileParseResult, type LegacyFileParsedData, type LegacyFileType, type LoadResult, type LogHandler, type LogLevel, type LoggerConfig, type LoggingConfig, type ManifestAuxiliary, type ManifestFields, type ManifestSignatures, type MarketIntent, MarketModule, type MarketModuleConfig, type MarketModuleDependencies, type MessageHandler, type MintOutboxEntry, type MintParams, type MintResult, NETWORKS, NIP29_KINDS, NOSTR_EVENT_KINDS, type NametagBindingProof, type NametagData, type NetworkHealthResult, type NetworkType, type OracleEvent, type OracleEventCallback, type OracleEventType, type OracleProvider, type OutboxEntry, type OutgoingPaymentRequest, type ParsedAddress, type ParsedStorageData, type PaymentRequest, type PaymentRequestHandler, type PaymentRequestResponse, type PaymentRequestResponseHandler, type PaymentRequestResponseType, type PaymentRequestResult, type PaymentRequestStatus, type PaymentSession, type PaymentSessionDirection, type PaymentSessionError, type PaymentSessionErrorCode, type PaymentSessionStatus, PaymentsModule, type PaymentsModuleConfig, type PaymentsModuleDependencies, type PeerInfo, type PendingV5Finalization, type PostIntentRequest, type PostIntentResult, type PricePlatform, type PriceProvider, type PriceProviderConfig, type ProviderMetadata, type ProviderRole, type ProviderStatus, type ProviderStatusInfo, type ReceiveOptions, type ReceiveResult, type RegistryNetwork, SIGN_MESSAGE_PREFIX, STORAGE_KEYS, STORAGE_KEYS_ADDRESS, STORAGE_KEYS_GLOBAL, STORAGE_PREFIX, type SaveResult, type ScanAddressProgress, type ScanAddressesOptions, type ScanAddressesResult, type ScannedAddressResult, type SearchFilters, type SearchIntentResult, type SearchOptions, type SearchResult, type ServiceHealthResult, type SpentTokenInfo, type SpentTokenResult, Sphere, type SphereConfig, type SphereCreateOptions, SphereError, type SphereErrorCode, type SphereEventHandler, type SphereEventMap, type SphereEventType, type SphereImportOptions, type SphereInitOptions, type SphereInitResult, type SphereLoadOptions, type SphereStatus, type SplitPaymentSession, type SplitRecoveryResult, type StorageEvent, type StorageEventCallback, type StorageEventType, type StorageProvider, type StorageProviderConfig, type SubmitResult, type SwapDeal, type SwapManifest, SwapModule, type SwapModuleConfig, type SwapProgress, type SwapProposalResult, type SwapRef, type SwapRole, type SyncResult, TEST_AGGREGATOR_URL, TEST_ELECTRUM_URL, TEST_NOSTR_RELAYS, TIMEOUTS, type Token, type TokenDefinition, type TokenIcon, type TokenPrice, TokenRegistry, type TokenState, type TokenStatus, type TokenStorageProvider, type TokenTransferDetail, type TokenTransferHandler, type TokenTransferPayload, type ValidationResult as TokenValidationResult, TokenValidator, type TombstoneEntry, type TrackedAddress, type TrackedAddressEntry, type TransactionHistoryEntry, type TransferCommitment, type TransferMode, type TransferRequest, type TransferResult, type TransferStatus, type TransportEvent, type TransportEventCallback, type TransportEventType, type TransportProvider, type TransportProviderConfig, type TrustBaseLoader, type TxfAuthenticator, type TxfGenesis, type TxfGenesisData, type TxfInclusionProof, type TxfIntegrity, type TxfInvalidEntry, type TxfMerkleStep, type TxfMerkleTreePath, type TxfMeta, type TxfOutboxEntry, type TxfSentEntry, type TxfState, type TxfStorageData, type TxfStorageDataBase, type TxfToken, type TxfTombstone, type TxfTransaction, type UnconfirmedResolutionResult, type V5FinalizationStage, type ValidationAction, type ValidationIssue, type ValidationResult$1 as ValidationResult, type WaitOptions, type WalletDatInfo, type WalletInfo, type WalletJSON$1 as WalletJSON, type WalletJSONExportOptions$1 as WalletJSONExportOptions, type WalletSource, addressesMatch, archivedKeyFromTokenId, base58Decode, base58Encode, buildManifest, buildTxfStorageData, bytesToHex, checkNetworkHealth, computeSwapId, countCommittedTransactions, createAddress, createCommunicationsModule, createGroupChatModule, createKeyPair, createL1PaymentsModule, createMarketModule, createNametagBinding, createPaymentSession, createPaymentSessionError, createPaymentsModule, createPriceProvider, createSphere, createSplitPaymentSession, createSwapModule, createTokenValidator, decodeBech32, decryptCMasterKey, decryptPrivateKey, decryptTextFormatKey, deriveAddressInfo, deriveChildKey$1 as deriveChildKey, deriveKeyAtPath$1 as deriveKeyAtPath, doubleSha256, encodeBech32, extractFromText, findPattern, forkedKeyFromTokenIdAndState, formatAmount, generateMasterKey, generateMnemonic, getAddressHrp, getAddressId, getAddressStorageKey, getCoinIdByName, getCoinIdBySymbol, getCurrentStateHash, getPublicKey, getSphere, getTokenDecimals, getTokenDefinition, getTokenIconUrl, getTokenId, getTokenName, getTokenSymbol, hasMissingNewStateHash, hasUncommittedTransactions, hasValidTxfData, hash160, hashSignMessage, hexToBytes, identityFromMnemonicSync, initSphere, isArchivedKey, isCombinedTransferBundleV6, isForkedKey, isInstantSplitBundle, isInstantSplitBundleV4, isInstantSplitBundleV5, isKnownToken, isPaymentSessionTerminal, isPaymentSessionTimedOut, isSQLiteDatabase, isSphereError, isTextWalletEncrypted, isTokenKey, isValidAddress, isValidBech32, isValidDirectAddress, isValidNametag, isValidPrivateKey, isValidTokenId, isWalletDatEncrypted, isWalletTextFormat, keyFromTokenId, loadSphere, logger, mnemonicToSeedSync, normalizeAddress, normalizeSdkTokenToStorage, objectToTxf, parseAddress, parseAndDecryptWalletDat, parseAndDecryptWalletText, parseForkedKey, parseTxfStorageData, parseWalletDat, parseWalletText, randomBytes, randomHex, randomUUID, ripemd160, sha256, signMessage, signSwapManifest, sleep, sphereExists, toHumanReadable, toSmallestUnit, tokenIdFromArchivedKey, tokenIdFromKey, tokenToTxf, txfToToken, validateManifest, validateMnemonic, verifyManifestIntegrity, verifyNametagBinding, verifySignedMessage, verifySwapSignature };
+export { type AddressInfo, type AddressMode, type AddressType, type AggregatorClient, type AggregatorEvent, type AggregatorEventCallback, type AggregatorEventType, type AggregatorProvider, type AggregatorProviderConfig, type Asset, type BackgroundProgressStatus, type BaseProvider, type BroadcastHandler, type BroadcastMessage, type BuildSplitBundleResult, type CMasterKeyData, COIN_TYPES, type CheckNetworkHealthOptions, CoinGeckoPriceProvider, type CombinedTransferBundleV6, CommunicationsModule, type CommunicationsModuleConfig, type CommunicationsModuleDependencies, type ComposingIndicator, type ConversationPage, type CreateGroupOptions, type CreateInvoiceRequest, DEFAULT_AGGREGATOR_TIMEOUT, DEFAULT_AGGREGATOR_URL, DEFAULT_DERIVATION_PATH, DEFAULT_ELECTRUM_URL, DEFAULT_GROUP_RELAYS, DEFAULT_IPFS_BOOTSTRAP_PEERS, DEFAULT_IPFS_GATEWAYS, DEFAULT_MARKET_API_URL, DEFAULT_NOSTR_RELAYS, DEV_AGGREGATOR_URL, type DecryptionProgressCallback, type DerivationMode, type DirectMessage, type DirectTokenEntry, type DiscoverAddressProgress, type DiscoverAddressesOptions, type DiscoverAddressesResult, type DiscoveredAddress, type EncryptedData, type ExtendedValidationResult, type FullIdentity, type GetConversationPageOptions, type GetInvoicesOptions, type GetSwapsFilter, GroupChatModule, type GroupChatModuleConfig, type GroupChatModuleDependencies, type GroupData, type GroupMemberData, type GroupMessageData, GroupRole, GroupVisibility, type HealthCheckFn, type Identity, type IdentityConfig, type InclusionProof, type IncomingBroadcast, type IncomingMessage, type IncomingPaymentRequest, type IncomingTokenTransfer, type IncomingTransfer, type InitProgress, type InitProgressCallback, type InitProgressStep, type InstantSplitBundle, type InstantSplitBundleV4, type InstantSplitBundleV5, type InstantSplitOptions, type InstantSplitProcessResult, type InstantSplitResult, type InstantSplitV5RecoveryMetadata, type IntentStatus, type IntentType, type InvalidatedNametagEntry, type InvoiceRequestedAsset, index as L1, type L1Balance, L1PaymentsModule, type L1PaymentsModuleConfig, type L1PaymentsModuleDependencies, type L1SendRequest, type L1SendResult, type L1Transaction, type L1Utxo, LIMITS, type LegacyFileImportOptions, type LegacyFileInfo, type LegacyFileParseResult, type LegacyFileParsedData, type LegacyFileType, type LoadResult, type LogHandler, type LogLevel, type LoggerConfig, type LoggingConfig, type ManifestAuxiliary, type ManifestFields, type ManifestSignatures, type MarketIntent, MarketModule, type MarketModuleConfig, type MarketModuleDependencies, type MessageHandler, type MintOutboxEntry, type MintParams, type MintResult, NETWORKS, NIP29_KINDS, NOSTR_EVENT_KINDS, type NametagBindingProof, type NametagData, type NetworkHealthResult, type NetworkType, type OracleEvent, type OracleEventCallback, type OracleEventType, type OracleProvider, type OutboxEntry, type OutgoingPaymentRequest, type ParsedAddress, type ParsedStorageData, type PayInvoiceParams, type PaymentRequest, type PaymentRequestHandler, type PaymentRequestResponse, type PaymentRequestResponseHandler, type PaymentRequestResponseType, type PaymentRequestResult, type PaymentRequestStatus, type PaymentSession, type PaymentSessionDirection, type PaymentSessionError, type PaymentSessionErrorCode, type PaymentSessionStatus, PaymentsModule, type PaymentsModuleConfig, type PaymentsModuleDependencies, type PeerInfo, type PendingV5Finalization, type PostIntentRequest, type PostIntentResult, type PricePlatform, type PriceProvider, type PriceProviderConfig, type ProviderMetadata, type ProviderRole, type ProviderStatus, type ProviderStatusInfo, type ReceiveOptions, type ReceiveResult, type RegistryNetwork, type ReturnPaymentParams, SIGN_MESSAGE_PREFIX, STORAGE_KEYS, STORAGE_KEYS_ADDRESS, STORAGE_KEYS_GLOBAL, STORAGE_PREFIX, type SaveResult, type ScanAddressProgress, type ScanAddressesOptions, type ScanAddressesResult, type ScannedAddressResult, type SearchFilters, type SearchIntentResult, type SearchOptions, type SearchResult, type ServiceHealthResult, type SpentTokenInfo, type SpentTokenResult, Sphere, type SphereConfig, type SphereCreateOptions, SphereError, type SphereErrorCode, type SphereEventHandler, type SphereEventMap, type SphereEventType, type SphereImportOptions, type SphereInitOptions, type SphereInitResult, type SphereLoadOptions, type SphereStatus, type SplitPaymentSession, type SplitRecoveryResult, type StorageEvent, type StorageEventCallback, type StorageEventType, type StorageProvider, type StorageProviderConfig, type SubmitResult, type SwapDeal, type SwapManifest, SwapModule, type SwapModuleConfig, type SwapProgress, type SwapProposalResult, type SwapRef, type SwapRole, type SyncResult, TEST_AGGREGATOR_URL, TEST_ELECTRUM_URL, TEST_NOSTR_RELAYS, TIMEOUTS, type Token, type TokenDefinition, type TokenIcon, type TokenPrice, TokenRegistry, type TokenState, type TokenStatus, type TokenStorageProvider, type TokenTransferDetail, type TokenTransferHandler, type TokenTransferPayload, type ValidationResult as TokenValidationResult, TokenValidator, type TombstoneEntry, type TrackedAddress, type TrackedAddressEntry, type TransactionHistoryEntry, type TransferCommitment, type TransferMode, type TransferRequest, type TransferResult, type TransferStatus, type TransportEvent, type TransportEventCallback, type TransportEventType, type TransportProvider, type TransportProviderConfig, type TrustBaseLoader, type TxfAuthenticator, type TxfGenesis, type TxfGenesisData, type TxfInclusionProof, type TxfIntegrity, type TxfInvalidEntry, type TxfMerkleStep, type TxfMerkleTreePath, type TxfMeta, type TxfOutboxEntry, type TxfSentEntry, type TxfState, type TxfStorageData, type TxfStorageDataBase, type TxfToken, type TxfTombstone, type TxfTransaction, type UnconfirmedResolutionResult, type V5FinalizationStage, type ValidationAction, type ValidationIssue, type ValidationResult$1 as ValidationResult, type WaitOptions, type WalletDatInfo, type WalletInfo, type WalletJSON$1 as WalletJSON, type WalletJSONExportOptions$1 as WalletJSONExportOptions, type WalletSource, addressesMatch, archivedKeyFromTokenId, base58Decode, base58Encode, buildManifest, buildTxfStorageData, bytesToHex, checkNetworkHealth, coinIdsMatch, computeSwapId, countCommittedTransactions, createAddress, createCommunicationsModule, createGroupChatModule, createKeyPair, createL1PaymentsModule, createMarketModule, createNametagBinding, createPaymentSession, createPaymentSessionError, createPaymentsModule, createPriceProvider, createSphere, createSplitPaymentSession, createSwapModule, createTokenValidator, decodeBech32, decrypt$1 as decrypt, decryptCMasterKey, decryptJson, decryptMnemonic, decryptPrivateKey, decryptSimple, decryptTextFormatKey, decryptWallet, decryptWithSalt, deriveAddressInfo, deriveChildKey$1 as deriveChildKey, deriveKeyAtPath$1 as deriveKeyAtPath, doubleSha256, encodeBech32, encrypt$1 as encrypt, encryptMnemonic, encryptSimple, encryptWallet, extractFromText, findPattern, forkedKeyFromTokenIdAndState, formatAmount, generateAddressFromMasterKey, generateMasterKey, generateMnemonic, generatePrivateKey, getAddressHrp, getAddressId, getAddressStorageKey, getCoinIdByName, getCoinIdBySymbol, getCurrentStateHash, getPublicKey, getSphere, getTokenDecimals, getTokenDefinition, getTokenIconUrl, getTokenId, getTokenName, getTokenSymbol, hasMissingNewStateHash, hasUncommittedTransactions, hasValidTxfData, hash160, hashSignMessage, hexToBytes, hexToWIF, identityFromMnemonicSync, initSphere, isArchivedKey, isCombinedTransferBundleV6, isForkedKey, isInstantSplitBundle, isInstantSplitBundleV4, isInstantSplitBundleV5, isKnownToken, isPaymentSessionTerminal, isPaymentSessionTimedOut, isSQLiteDatabase, isSphereError, isTextWalletEncrypted, isTokenKey, isValidAddress, isValidBech32, isValidDirectAddress, isValidNametag, isValidPrivateKey, isValidTokenId, isWalletDatEncrypted, isWalletTextFormat, keyFromTokenId, loadSphere, logger, mnemonicToSeedSync, normalizeAddress, normalizeCoinId, normalizeSdkTokenToStorage, objectToTxf, parseAddress, parseAndDecryptWalletDat, parseAndDecryptWalletText, parseForkedKey, parseTxfStorageData, parseWalletDat, parseWalletText, randomBytes, randomHex, randomUUID, recoverPubkeyFromSignature, ripemd160, sha256, signMessage, signSwapManifest, sleep, sphereExists, toHumanReadable, toSmallestUnit, tokenIdFromArchivedKey, tokenIdFromKey, tokenToTxf, txfToToken, validateManifest, validateMnemonic, verifyManifestIntegrity, verifyNametagBinding, verifySignedMessage, verifySwapSignature };

package/dist/index.d.ts

@@ -2094,6 +2094,20 @@ declare function signMessage(privateKeyHex: string, message: string): string;
  * @returns `true` if the signature is valid and matches the expected public key
  */
 declare function verifySignedMessage(message: string, signature: string, expectedPubkey: string): boolean;
+/**
+ * Recover the compressed secp256k1 public key from a signed message.
+ *
+ * Use this when the server needs to identify the signer (not just verify
+ * a signature against a known pubkey). Combined with `sphere.resolve(pubkey)`
+ * it gives a fully cryptographically-attributable identity for backend auth,
+ * without trusting any client-supplied identifier claim.
+ *
+ * @param message    - The plaintext that was signed
+ * @param signature  - 130-char hex (v + r + s) as produced by `signMessage`
+ * @returns          - Compressed 66-char hex pubkey
+ * @throws           - On malformed signature length or out-of-range recovery byte
+ */
+declare function recoverPubkeyFromSignature(message: string, signature: string): string;
 
 /**
  * INSTANT_SPLIT V5 Types
@@ -4623,6 +4637,42 @@ declare class PaymentsModule {
      * @returns MintNametagResult with success status and token if successful
      */
     mintNametag(nametag: string): Promise<MintNametagResult>;
+    /**
+     * Mint a fungible token directly to this wallet (genesis mint).
+     *
+     * Useful for test setups that need to seed a wallet with specific token
+     * balances WITHOUT depending on the testnet faucet HTTP service. The
+     * resulting token has the canonical CoinId bytes (passed in `coinIdHex`)
+     * — when those bytes match a registered symbol in the TokenRegistry,
+     * the token shows up under the symbol's name (e.g. "UCT"). There is no
+     * cryptographic restriction on which key may issue a given CoinId; the
+     * aggregator records the mint regardless of issuer identity.
+     *
+     * The flow:
+     *   1. Generate a random TokenId.
+     *   2. Build TokenCoinData with [(coinId, amount)].
+     *   3. Build MintTransactionData with recipient = self (UnmaskedPredicate
+     *      from this wallet's signing service).
+     *   4. Submit MintCommitment to the aggregator.
+     *   5. Wait for the inclusion proof.
+     *   6. Construct an SDK Token via Token.mint().
+     *   7. Convert to wallet Token format and call addToken().
+     *
+     * @param coinIdHex - 64-char lowercase hex CoinId. Must match the bytes
+     *   used by the registered symbol if you want the wallet to recognize
+     *   the token as that symbol (e.g. UCT's coinId from the public registry).
+     * @param amount - Amount in smallest units (multiply by 10^decimals
+     *   when converting from human values).
+     * @returns Result with the resulting wallet Token and its on-chain id.
+     */
+    mintFungibleToken(coinIdHex: string, amount: bigint): Promise<{
+        success: true;
+        token: Token;
+        tokenId: string;
+    } | {
+        success: false;
+        error: string;
+    }>;
     /**
      * Check if a nametag is available for minting
      * @param nametag - The nametag to check (e.g., "alice" or "@alice")
@@ -5115,6 +5165,24 @@ declare class AccountingModule {
     private dirtyLedgerEntries;
     /** Count of unknown (not in invoiceTermsCache) invoice IDs in the ledger. */
     private unknownLedgerCount;
+    /**
+     * Per-unknown-invoice first-seen timestamp for TTL eviction.
+     *
+     * W1 (steelman round-4): without TTL, an attacker who can deliver 500
+     * inbound transfers with synthesized memo invoiceIds permanently exhausts
+     * the unknown-ledger cap, after which legitimate orphan transfers (out-of-
+     * order delivery for real swaps) are silently dropped at the cap-check.
+     *
+     * Round-5 perf: gated by `unknownLedgerNextSweepMs` to amortize the
+     * sweep cost. The naive every-call sweep is O(N) where N=cap=500;
+     * combined with the per-token cleanup loop inside the sweep it became
+     * O(N×M) on every transfer under flood. Now we sweep at most every
+     * `UNKNOWN_LEDGER_SWEEP_INTERVAL_MS` (60s) UNLESS the cap is currently
+     * full, in which case we sweep on each call (the only path that can
+     * actually drop a legitimate orphan).
+     */
+    private unknownLedgerFirstSeen;
+    private unknownLedgerNextSweepMs;
     /** W17: Tracks whether tokenScanState has been mutated since last flush. */
     private tokenScanDirty;
     /** W2 fix: Serialization guard for _flushDirtyLedgerEntries. */
@@ -5299,6 +5367,21 @@ declare class AccountingModule {
      * @throws {SphereError} `NOT_INITIALIZED` — module not initialized.
      */
     getInvoice(invoiceId: string): InvoiceRef | null;
+    /**
+     * Return the set of token IDs that are currently linked to the given
+     * invoice. Populated by both the on-chain `_processTokenTransactions`
+     * path (tokens with `inv:` references) and the transport-memo orphan
+     * buffering path in `_handleIncomingTransfer`.
+     *
+     * Used by callers that want to scope per-invoice operations (e.g.
+     * SwapModule.verifyPayout's L3 validation) to only the tokens that
+     * cover this invoice — avoiding false negatives when the wallet
+     * contains unrelated tokens of the same currency in unconfirmed or
+     * spent state.
+     *
+     * Returns an empty set if no tokens are currently linked.
+     */
+    getTokenIdsForInvoice(invoiceId: string): Set<string>;
     /**
      * Explicitly close an invoice. Only target parties may close (§8.3).
      *
@@ -5646,6 +5729,35 @@ declare class AccountingModule {
      * await and the null assignment, so we loop until the field is null.
      */
     private _drainFlushPromise;
+    /**
+     * Synchronously persist any pending provisional ledger entry for `invoiceId`
+     * before returning to the caller. Used by `payInvoice` and
+     * `returnInvoicePayment` to make the in-memory provisional entry durable
+     * inside the same per-invoice gate that wrote it, closing the
+     * crash-mid-conclude race that produces over-coverage on receivers.
+     *
+     * Implementation:
+     *   1. Schedule a flush via the existing `_flushPromise` chain (so
+     *      concurrent `_handleTokenChange` callers waiting on the chain
+     *      observe ours as part of the sequence).
+     *   2. Await OUR flush directly — NOT `_drainFlushPromise()`, which would
+     *      spin while concurrent token changes keep extending the chain and
+     *      hold the per-invoice gate for an unbounded number of additional
+     *      flushes. We only need OUR provisional entry durable.
+     *   3. `_flushDirtyLedgerEntries` swallows per-invoice `storage.set`
+     *      rejections internally (sets a local `step1Failed` flag), leaving
+     *      the dirty entry on the set without re-throwing. So we post-check
+     *      `dirtyLedgerEntries.has(invoiceId)` and throw a `STORAGE_ERROR`
+     *      `SphereError` if our entry is still dirty — propagating to the
+     *      caller so they learn about the durability failure rather than
+     *      receiving a silent "success" return that lies on disk.
+     *
+     * @param invoiceId    The invoice whose provisional entry must be durable.
+     * @param callContext  Used in the error message so the caller is named
+     *                     ('payInvoice' / 'returnInvoicePayment') without
+     *                     forcing a stack-trace inspection.
+     */
+    private _persistProvisionalAndVerify;
     /**
      * Handle an incoming transfer event from PaymentsModule (§6.2).
      *
@@ -8221,6 +8333,81 @@ declare const initSphere: typeof Sphere.init;
 declare const getSphere: typeof Sphere.getInstance;
 declare const sphereExists: typeof Sphere.exists;
 
+/**
+ * Encryption utilities for SDK2
+ *
+ * Provides AES-256 encryption for sensitive wallet data.
+ * Uses crypto-js for cross-platform compatibility.
+ */
+interface EncryptedData {
+    /** Encrypted ciphertext (base64) */
+    ciphertext: string;
+    /** Initialization vector (hex) */
+    iv: string;
+    /** Salt used for key derivation (hex) */
+    salt: string;
+    /** Algorithm identifier */
+    algorithm: 'aes-256-cbc';
+    /** Key derivation function */
+    kdf: 'pbkdf2';
+    /** Number of PBKDF2 iterations */
+    iterations: number;
+}
+interface EncryptionOptions {
+    /** Number of PBKDF2 iterations (default: 100000) */
+    iterations?: number;
+}
+/**
+ * Encrypt data with AES-256-CBC
+ * @param plaintext - Data to encrypt (string or object)
+ * @param password - Encryption password
+ * @param options - Encryption options
+ */
+declare function encrypt$1(plaintext: string | object, password: string, options?: EncryptionOptions): EncryptedData;
+/**
+ * Decrypt AES-256-CBC encrypted data
+ * @param encryptedData - Encrypted data object
+ * @param password - Decryption password
+ */
+declare function decrypt$1(encryptedData: EncryptedData, password: string): string;
+/**
+ * Decrypt and parse JSON data
+ * @param encryptedData - Encrypted data object
+ * @param password - Decryption password
+ */
+declare function decryptJson<T = unknown>(encryptedData: EncryptedData, password: string): T;
+/**
+ * Simple encryption using CryptoJS built-in password-based encryption
+ * Suitable for localStorage where we don't need full EncryptedData metadata
+ * @param plaintext - Data to encrypt
+ * @param password - Encryption password
+ */
+declare function encryptSimple(plaintext: string, password: string): string;
+/**
+ * Simple decryption
+ * @param ciphertext - Encrypted string
+ * @param password - Decryption password
+ */
+declare function decryptSimple(ciphertext: string, password: string): string;
+/**
+ * Decrypt data encrypted with PBKDF2-derived key (legacy JSON wallet format).
+ * Compatible with webwallet's encryptWithPassword/decryptWithPassword.
+ */
+declare function decryptWithSalt(ciphertext: string, password: string, salt: string): string | null;
+/**
+ * Encrypt mnemonic phrase for storage
+ * Uses simple AES encryption compatible with existing wallet format
+ * @param mnemonic - BIP39 mnemonic phrase
+ * @param password - Encryption password
+ */
+declare function encryptMnemonic(mnemonic: string, password: string): string;
+/**
+ * Decrypt mnemonic phrase from storage
+ * @param encryptedMnemonic - Encrypted mnemonic string
+ * @param password - Decryption password
+ */
+declare function decryptMnemonic(encryptedMnemonic: string, password: string): string;
+
 /**
  * Convert human-readable amount to smallest unit (bigint)
  *
@@ -9822,6 +10009,51 @@ declare function getCoinIdBySymbol(symbol: string): string | undefined;
  * @returns Coin ID or undefined
  */
 declare function getCoinIdByName(name: string): string | undefined;
+/**
+ * Normalize a coin identifier to its canonical hash coinId.
+ *
+ * Accepts both symbolic names ("BTC", "ETH") and hash coinIds (64-char hex).
+ * If the input is a short symbol, resolves it via the TokenRegistry.
+ * Returns the input unchanged if it's already a hash coinId or unknown.
+ *
+ * @public
+ *
+ * @remarks
+ * Heuristic: inputs matching `length <= 20 && /^[A-Za-z0-9]+$/` are treated
+ * as symbolic names and looked up in the registry. Long inputs, hyphenated
+ * inputs ("TOKEN-123"), or dotted inputs ("BTC.CASH") pass through unchanged.
+ *
+ * **Stability:** This function depends on `TokenRegistry` content. Adding a
+ * new symbol that shadows a previously-unknown short alphanumeric coinId
+ * changes normalization semantics retroactively. Consumers building stable
+ * keys against this output should be aware that registry growth is a
+ * non-breaking change *for unknown inputs* but a breaking change *for inputs
+ * that newly resolve*.
+ *
+ * @param coinId - A symbolic name or hash coinId.
+ * @returns The canonical hash coinId, or the original string if not resolvable.
+ */
+declare function normalizeCoinId(coinId: string): string;
+/**
+ * Compare two coin identifiers for equality, normalizing both sides.
+ *
+ * Handles mixed-format comparisons: "BTC" vs hash coinId, or two hash coinIds.
+ * Both values are normalized to hash coinIds via the TokenRegistry before comparison.
+ *
+ * @public
+ *
+ * @remarks
+ * Reflexive byte-equality short-circuit comes first; otherwise both sides
+ * are normalized via {@link normalizeCoinId} and compared. Inherits the
+ * registry-dependence caveat from `normalizeCoinId`. Two distinct symbols
+ * that both fail to resolve will compare unequal even if they're semantic
+ * aliases — register them as aliases in `TokenRegistry` for matching.
+ *
+ * @param a - First coin identifier (symbol or hash coinId).
+ * @param b - Second coin identifier (symbol or hash coinId).
+ * @returns true if both resolve to the same canonical coinId.
+ */
+declare function coinIdsMatch(a: string, b: string): boolean;
 
 /**
  * Standard address parsing, validation, and normalization for Unicity addresses.
@@ -9889,4 +10121,4 @@ declare function normalizeAddress(address: string): string;
  */
 declare function addressesMatch(a: string, b: string): boolean;
 
-export { type AddressInfo, type AddressMode, type AddressType, type AggregatorClient, type AggregatorEvent, type AggregatorEventCallback, type AggregatorEventType, type AggregatorProvider, type AggregatorProviderConfig, type Asset, type BackgroundProgressStatus, type BaseProvider, type BroadcastHandler, type BroadcastMessage, type BuildSplitBundleResult, type CMasterKeyData, COIN_TYPES, type CheckNetworkHealthOptions, CoinGeckoPriceProvider, type CombinedTransferBundleV6, CommunicationsModule, type CommunicationsModuleConfig, type CommunicationsModuleDependencies, type ComposingIndicator, type ConversationPage, type CreateGroupOptions, DEFAULT_AGGREGATOR_TIMEOUT, DEFAULT_AGGREGATOR_URL, DEFAULT_DERIVATION_PATH, DEFAULT_ELECTRUM_URL, DEFAULT_GROUP_RELAYS, DEFAULT_IPFS_BOOTSTRAP_PEERS, DEFAULT_IPFS_GATEWAYS, DEFAULT_MARKET_API_URL, DEFAULT_NOSTR_RELAYS, DEV_AGGREGATOR_URL, type DecryptionProgressCallback, type DerivationMode, type DirectMessage, type DirectTokenEntry, type DiscoverAddressProgress, type DiscoverAddressesOptions, type DiscoverAddressesResult, type DiscoveredAddress, type ExtendedValidationResult, type FullIdentity, type GetConversationPageOptions, type GetSwapsFilter, GroupChatModule, type GroupChatModuleConfig, type GroupChatModuleDependencies, type GroupData, type GroupMemberData, type GroupMessageData, GroupRole, GroupVisibility, type HealthCheckFn, type Identity, type IdentityConfig, type InclusionProof, type IncomingBroadcast, type IncomingMessage, type IncomingPaymentRequest, type IncomingTokenTransfer, type IncomingTransfer, type InitProgress, type InitProgressCallback, type InitProgressStep, type InstantSplitBundle, type InstantSplitBundleV4, type InstantSplitBundleV5, type InstantSplitOptions, type InstantSplitProcessResult, type InstantSplitResult, type InstantSplitV5RecoveryMetadata, type IntentStatus, type IntentType, type InvalidatedNametagEntry, index as L1, type L1Balance, L1PaymentsModule, type L1PaymentsModuleConfig, type L1PaymentsModuleDependencies, type L1SendRequest, type L1SendResult, type L1Transaction, type L1Utxo, LIMITS, type LegacyFileImportOptions, type LegacyFileInfo, type LegacyFileParseResult, type LegacyFileParsedData, type LegacyFileType, type LoadResult, type LogHandler, type LogLevel, type LoggerConfig, type LoggingConfig, type ManifestAuxiliary, type ManifestFields, type ManifestSignatures, type MarketIntent, MarketModule, type MarketModuleConfig, type MarketModuleDependencies, type MessageHandler, type MintOutboxEntry, type MintParams, type MintResult, NETWORKS, NIP29_KINDS, NOSTR_EVENT_KINDS, type NametagBindingProof, type NametagData, type NetworkHealthResult, type NetworkType, type OracleEvent, type OracleEventCallback, type OracleEventType, type OracleProvider, type OutboxEntry, type OutgoingPaymentRequest, type ParsedAddress, type ParsedStorageData, type PaymentRequest, type PaymentRequestHandler, type PaymentRequestResponse, type PaymentRequestResponseHandler, type PaymentRequestResponseType, type PaymentRequestResult, type PaymentRequestStatus, type PaymentSession, type PaymentSessionDirection, type PaymentSessionError, type PaymentSessionErrorCode, type PaymentSessionStatus, PaymentsModule, type PaymentsModuleConfig, type PaymentsModuleDependencies, type PeerInfo, type PendingV5Finalization, type PostIntentRequest, type PostIntentResult, type PricePlatform, type PriceProvider, type PriceProviderConfig, type ProviderMetadata, type ProviderRole, type ProviderStatus, type ProviderStatusInfo, type ReceiveOptions, type ReceiveResult, type RegistryNetwork, SIGN_MESSAGE_PREFIX, STORAGE_KEYS, STORAGE_KEYS_ADDRESS, STORAGE_KEYS_GLOBAL, STORAGE_PREFIX, type SaveResult, type ScanAddressProgress, type ScanAddressesOptions, type ScanAddressesResult, type ScannedAddressResult, type SearchFilters, type SearchIntentResult, type SearchOptions, type SearchResult, type ServiceHealthResult, type SpentTokenInfo, type SpentTokenResult, Sphere, type SphereConfig, type SphereCreateOptions, SphereError, type SphereErrorCode, type SphereEventHandler, type SphereEventMap, type SphereEventType, type SphereImportOptions, type SphereInitOptions, type SphereInitResult, type SphereLoadOptions, type SphereStatus, type SplitPaymentSession, type SplitRecoveryResult, type StorageEvent, type StorageEventCallback, type StorageEventType, type StorageProvider, type StorageProviderConfig, type SubmitResult, type SwapDeal, type SwapManifest, SwapModule, type SwapModuleConfig, type SwapProgress, type SwapProposalResult, type SwapRef, type SwapRole, type SyncResult, TEST_AGGREGATOR_URL, TEST_ELECTRUM_URL, TEST_NOSTR_RELAYS, TIMEOUTS, type Token, type TokenDefinition, type TokenIcon, type TokenPrice, TokenRegistry, type TokenState, type TokenStatus, type TokenStorageProvider, type TokenTransferDetail, type TokenTransferHandler, type TokenTransferPayload, type ValidationResult as TokenValidationResult, TokenValidator, type TombstoneEntry, type TrackedAddress, type TrackedAddressEntry, type TransactionHistoryEntry, type TransferCommitment, type TransferMode, type TransferRequest, type TransferResult, type TransferStatus, type TransportEvent, type TransportEventCallback, type TransportEventType, type TransportProvider, type TransportProviderConfig, type TrustBaseLoader, type TxfAuthenticator, type TxfGenesis, type TxfGenesisData, type TxfInclusionProof, type TxfIntegrity, type TxfInvalidEntry, type TxfMerkleStep, type TxfMerkleTreePath, type TxfMeta, type TxfOutboxEntry, type TxfSentEntry, type TxfState, type TxfStorageData, type TxfStorageDataBase, type TxfToken, type TxfTombstone, type TxfTransaction, type UnconfirmedResolutionResult, type V5FinalizationStage, type ValidationAction, type ValidationIssue, type ValidationResult$1 as ValidationResult, type WaitOptions, type WalletDatInfo, type WalletInfo, type WalletJSON$1 as WalletJSON, type WalletJSONExportOptions$1 as WalletJSONExportOptions, type WalletSource, addressesMatch, archivedKeyFromTokenId, base58Decode, base58Encode, buildManifest, buildTxfStorageData, bytesToHex, checkNetworkHealth, computeSwapId, countCommittedTransactions, createAddress, createCommunicationsModule, createGroupChatModule, createKeyPair, createL1PaymentsModule, createMarketModule, createNametagBinding, createPaymentSession, createPaymentSessionError, createPaymentsModule, createPriceProvider, createSphere, createSplitPaymentSession, createSwapModule, createTokenValidator, decodeBech32, decryptCMasterKey, decryptPrivateKey, decryptTextFormatKey, deriveAddressInfo, deriveChildKey$1 as deriveChildKey, deriveKeyAtPath$1 as deriveKeyAtPath, doubleSha256, encodeBech32, extractFromText, findPattern, forkedKeyFromTokenIdAndState, formatAmount, generateMasterKey, generateMnemonic, getAddressHrp, getAddressId, getAddressStorageKey, getCoinIdByName, getCoinIdBySymbol, getCurrentStateHash, getPublicKey, getSphere, getTokenDecimals, getTokenDefinition, getTokenIconUrl, getTokenId, getTokenName, getTokenSymbol, hasMissingNewStateHash, hasUncommittedTransactions, hasValidTxfData, hash160, hashSignMessage, hexToBytes, identityFromMnemonicSync, initSphere, isArchivedKey, isCombinedTransferBundleV6, isForkedKey, isInstantSplitBundle, isInstantSplitBundleV4, isInstantSplitBundleV5, isKnownToken, isPaymentSessionTerminal, isPaymentSessionTimedOut, isSQLiteDatabase, isSphereError, isTextWalletEncrypted, isTokenKey, isValidAddress, isValidBech32, isValidDirectAddress, isValidNametag, isValidPrivateKey, isValidTokenId, isWalletDatEncrypted, isWalletTextFormat, keyFromTokenId, loadSphere, logger, mnemonicToSeedSync, normalizeAddress, normalizeSdkTokenToStorage, objectToTxf, parseAddress, parseAndDecryptWalletDat, parseAndDecryptWalletText, parseForkedKey, parseTxfStorageData, parseWalletDat, parseWalletText, randomBytes, randomHex, randomUUID, ripemd160, sha256, signMessage, signSwapManifest, sleep, sphereExists, toHumanReadable, toSmallestUnit, tokenIdFromArchivedKey, tokenIdFromKey, tokenToTxf, txfToToken, validateManifest, validateMnemonic, verifyManifestIntegrity, verifyNametagBinding, verifySignedMessage, verifySwapSignature };
+export { type AddressInfo, type AddressMode, type AddressType, type AggregatorClient, type AggregatorEvent, type AggregatorEventCallback, type AggregatorEventType, type AggregatorProvider, type AggregatorProviderConfig, type Asset, type BackgroundProgressStatus, type BaseProvider, type BroadcastHandler, type BroadcastMessage, type BuildSplitBundleResult, type CMasterKeyData, COIN_TYPES, type CheckNetworkHealthOptions, CoinGeckoPriceProvider, type CombinedTransferBundleV6, CommunicationsModule, type CommunicationsModuleConfig, type CommunicationsModuleDependencies, type ComposingIndicator, type ConversationPage, type CreateGroupOptions, type CreateInvoiceRequest, DEFAULT_AGGREGATOR_TIMEOUT, DEFAULT_AGGREGATOR_URL, DEFAULT_DERIVATION_PATH, DEFAULT_ELECTRUM_URL, DEFAULT_GROUP_RELAYS, DEFAULT_IPFS_BOOTSTRAP_PEERS, DEFAULT_IPFS_GATEWAYS, DEFAULT_MARKET_API_URL, DEFAULT_NOSTR_RELAYS, DEV_AGGREGATOR_URL, type DecryptionProgressCallback, type DerivationMode, type DirectMessage, type DirectTokenEntry, type DiscoverAddressProgress, type DiscoverAddressesOptions, type DiscoverAddressesResult, type DiscoveredAddress, type EncryptedData, type ExtendedValidationResult, type FullIdentity, type GetConversationPageOptions, type GetInvoicesOptions, type GetSwapsFilter, GroupChatModule, type GroupChatModuleConfig, type GroupChatModuleDependencies, type GroupData, type GroupMemberData, type GroupMessageData, GroupRole, GroupVisibility, type HealthCheckFn, type Identity, type IdentityConfig, type InclusionProof, type IncomingBroadcast, type IncomingMessage, type IncomingPaymentRequest, type IncomingTokenTransfer, type IncomingTransfer, type InitProgress, type InitProgressCallback, type InitProgressStep, type InstantSplitBundle, type InstantSplitBundleV4, type InstantSplitBundleV5, type InstantSplitOptions, type InstantSplitProcessResult, type InstantSplitResult, type InstantSplitV5RecoveryMetadata, type IntentStatus, type IntentType, type InvalidatedNametagEntry, type InvoiceRequestedAsset, index as L1, type L1Balance, L1PaymentsModule, type L1PaymentsModuleConfig, type L1PaymentsModuleDependencies, type L1SendRequest, type L1SendResult, type L1Transaction, type L1Utxo, LIMITS, type LegacyFileImportOptions, type LegacyFileInfo, type LegacyFileParseResult, type LegacyFileParsedData, type LegacyFileType, type LoadResult, type LogHandler, type LogLevel, type LoggerConfig, type LoggingConfig, type ManifestAuxiliary, type ManifestFields, type ManifestSignatures, type MarketIntent, MarketModule, type MarketModuleConfig, type MarketModuleDependencies, type MessageHandler, type MintOutboxEntry, type MintParams, type MintResult, NETWORKS, NIP29_KINDS, NOSTR_EVENT_KINDS, type NametagBindingProof, type NametagData, type NetworkHealthResult, type NetworkType, type OracleEvent, type OracleEventCallback, type OracleEventType, type OracleProvider, type OutboxEntry, type OutgoingPaymentRequest, type ParsedAddress, type ParsedStorageData, type PayInvoiceParams, type PaymentRequest, type PaymentRequestHandler, type PaymentRequestResponse, type PaymentRequestResponseHandler, type PaymentRequestResponseType, type PaymentRequestResult, type PaymentRequestStatus, type PaymentSession, type PaymentSessionDirection, type PaymentSessionError, type PaymentSessionErrorCode, type PaymentSessionStatus, PaymentsModule, type PaymentsModuleConfig, type PaymentsModuleDependencies, type PeerInfo, type PendingV5Finalization, type PostIntentRequest, type PostIntentResult, type PricePlatform, type PriceProvider, type PriceProviderConfig, type ProviderMetadata, type ProviderRole, type ProviderStatus, type ProviderStatusInfo, type ReceiveOptions, type ReceiveResult, type RegistryNetwork, type ReturnPaymentParams, SIGN_MESSAGE_PREFIX, STORAGE_KEYS, STORAGE_KEYS_ADDRESS, STORAGE_KEYS_GLOBAL, STORAGE_PREFIX, type SaveResult, type ScanAddressProgress, type ScanAddressesOptions, type ScanAddressesResult, type ScannedAddressResult, type SearchFilters, type SearchIntentResult, type SearchOptions, type SearchResult, type ServiceHealthResult, type SpentTokenInfo, type SpentTokenResult, Sphere, type SphereConfig, type SphereCreateOptions, SphereError, type SphereErrorCode, type SphereEventHandler, type SphereEventMap, type SphereEventType, type SphereImportOptions, type SphereInitOptions, type SphereInitResult, type SphereLoadOptions, type SphereStatus, type SplitPaymentSession, type SplitRecoveryResult, type StorageEvent, type StorageEventCallback, type StorageEventType, type StorageProvider, type StorageProviderConfig, type SubmitResult, type SwapDeal, type SwapManifest, SwapModule, type SwapModuleConfig, type SwapProgress, type SwapProposalResult, type SwapRef, type SwapRole, type SyncResult, TEST_AGGREGATOR_URL, TEST_ELECTRUM_URL, TEST_NOSTR_RELAYS, TIMEOUTS, type Token, type TokenDefinition, type TokenIcon, type TokenPrice, TokenRegistry, type TokenState, type TokenStatus, type TokenStorageProvider, type TokenTransferDetail, type TokenTransferHandler, type TokenTransferPayload, type ValidationResult as TokenValidationResult, TokenValidator, type TombstoneEntry, type TrackedAddress, type TrackedAddressEntry, type TransactionHistoryEntry, type TransferCommitment, type TransferMode, type TransferRequest, type TransferResult, type TransferStatus, type TransportEvent, type TransportEventCallback, type TransportEventType, type TransportProvider, type TransportProviderConfig, type TrustBaseLoader, type TxfAuthenticator, type TxfGenesis, type TxfGenesisData, type TxfInclusionProof, type TxfIntegrity, type TxfInvalidEntry, type TxfMerkleStep, type TxfMerkleTreePath, type TxfMeta, type TxfOutboxEntry, type TxfSentEntry, type TxfState, type TxfStorageData, type TxfStorageDataBase, type TxfToken, type TxfTombstone, type TxfTransaction, type UnconfirmedResolutionResult, type V5FinalizationStage, type ValidationAction, type ValidationIssue, type ValidationResult$1 as ValidationResult, type WaitOptions, type WalletDatInfo, type WalletInfo, type WalletJSON$1 as WalletJSON, type WalletJSONExportOptions$1 as WalletJSONExportOptions, type WalletSource, addressesMatch, archivedKeyFromTokenId, base58Decode, base58Encode, buildManifest, buildTxfStorageData, bytesToHex, checkNetworkHealth, coinIdsMatch, computeSwapId, countCommittedTransactions, createAddress, createCommunicationsModule, createGroupChatModule, createKeyPair, createL1PaymentsModule, createMarketModule, createNametagBinding, createPaymentSession, createPaymentSessionError, createPaymentsModule, createPriceProvider, createSphere, createSplitPaymentSession, createSwapModule, createTokenValidator, decodeBech32, decrypt$1 as decrypt, decryptCMasterKey, decryptJson, decryptMnemonic, decryptPrivateKey, decryptSimple, decryptTextFormatKey, decryptWallet, decryptWithSalt, deriveAddressInfo, deriveChildKey$1 as deriveChildKey, deriveKeyAtPath$1 as deriveKeyAtPath, doubleSha256, encodeBech32, encrypt$1 as encrypt, encryptMnemonic, encryptSimple, encryptWallet, extractFromText, findPattern, forkedKeyFromTokenIdAndState, formatAmount, generateAddressFromMasterKey, generateMasterKey, generateMnemonic, generatePrivateKey, getAddressHrp, getAddressId, getAddressStorageKey, getCoinIdByName, getCoinIdBySymbol, getCurrentStateHash, getPublicKey, getSphere, getTokenDecimals, getTokenDefinition, getTokenIconUrl, getTokenId, getTokenName, getTokenSymbol, hasMissingNewStateHash, hasUncommittedTransactions, hasValidTxfData, hash160, hashSignMessage, hexToBytes, hexToWIF, identityFromMnemonicSync, initSphere, isArchivedKey, isCombinedTransferBundleV6, isForkedKey, isInstantSplitBundle, isInstantSplitBundleV4, isInstantSplitBundleV5, isKnownToken, isPaymentSessionTerminal, isPaymentSessionTimedOut, isSQLiteDatabase, isSphereError, isTextWalletEncrypted, isTokenKey, isValidAddress, isValidBech32, isValidDirectAddress, isValidNametag, isValidPrivateKey, isValidTokenId, isWalletDatEncrypted, isWalletTextFormat, keyFromTokenId, loadSphere, logger, mnemonicToSeedSync, normalizeAddress, normalizeCoinId, normalizeSdkTokenToStorage, objectToTxf, parseAddress, parseAndDecryptWalletDat, parseAndDecryptWalletText, parseForkedKey, parseTxfStorageData, parseWalletDat, parseWalletText, randomBytes, randomHex, randomUUID, recoverPubkeyFromSignature, ripemd160, sha256, signMessage, signSwapManifest, sleep, sphereExists, toHumanReadable, toSmallestUnit, tokenIdFromArchivedKey, tokenIdFromKey, tokenToTxf, txfToToken, validateManifest, validateMnemonic, verifyManifestIntegrity, verifyNametagBinding, verifySignedMessage, verifySwapSignature };