npm - @usherlabs/cex-broker - Versions diffs - 0.1.12 → 0.1.15 - Mend

@usherlabs/cex-broker 0.1.12 → 0.1.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/commands/cli.js CHANGED Viewed

@@ -26948,9 +26948,11 @@ var require_websocket_server = __commonJS((exports, module) => {
         abortHandshakeOrEmitwsClientError(this, req, socket, 400, message);
         return;
       }
-      if (version !== 8 && version !== 13) {
+      if (version !== 13 && version !== 8) {
         const message = "Missing or invalid Sec-WebSocket-Version header";
-        abortHandshakeOrEmitwsClientError(this, req, socket, 400, message);
+        abortHandshakeOrEmitwsClientError(this, req, socket, 400, message, {
+          "Sec-WebSocket-Version": "13, 8"
+        });
         return;
       }
       if (!this.shouldHandle(req)) {
@@ -27089,13 +27091,13 @@ var require_websocket_server = __commonJS((exports, module) => {
 \r
 ` + message);
   }
-  function abortHandshakeOrEmitwsClientError(server, req, socket, code, message) {
+  function abortHandshakeOrEmitwsClientError(server, req, socket, code, message, headers) {
     if (server.listenerCount("wsClientError")) {
       const err = new Error(message);
       Error.captureStackTrace(err, abortHandshakeOrEmitwsClientError);
       server.emit("wsClientError", err, socket, req);
     } else {
-      abortHandshake(socket, code, message);
+      abortHandshake(socket, code, message, headers);
     }
   }
 });
@@ -36912,6 +36914,7 @@ var require_form_data = __commonJS((exports, module) => {
   var parseUrl = __require("url").parse;
   var fs = __require("fs");
   var Stream2 = __require("stream").Stream;
+  var crypto3 = __require("crypto");
   var mime = require_mime_types();
   var asynckit = require_asynckit();
   var setToStringTag = require_es_set_tostringtag();
@@ -37116,11 +37119,7 @@ var require_form_data = __commonJS((exports, module) => {
     return Buffer.concat([dataBuffer, Buffer.from(this._lastBoundary())]);
   };
   FormData2.prototype._generateBoundary = function() {
-    var boundary = "--------------------------";
-    for (var i2 = 0;i2 < 24; i2++) {
-      boundary += Math.floor(Math.random() * 10).toString(16);
-    }
-    this._boundary = boundary;
+    this._boundary = "--------------------------" + crypto3.randomBytes(12).toString("hex");
   };
   FormData2.prototype.getLengthSync = function() {
     var knownLength = this._overheadLength + this._valueLength;
@@ -38188,7 +38187,7 @@ var require_follow_redirects = __commonJS((exports, module) => {
 // node_modules/axios/dist/node/axios.cjs
 var require_axios = __commonJS((exports, module) => {
-  /*! Axios v1.10.0 Copyright (c) 2025 Matt Zabriskie and contributors */
+  /*! Axios v1.11.0 Copyright (c) 2025 Matt Zabriskie and contributors */
   var FormData$1 = require_form_data();
   var crypto4 = __require("crypto");
   var url2 = __require("url");
@@ -38257,6 +38256,16 @@ var require_axios = __commonJS((exports, module) => {
     const prototype4 = getPrototypeOf2(val);
     return (prototype4 === null || prototype4 === Object.prototype || Object.getPrototypeOf(prototype4) === null) && !(toStringTag2 in val) && !(iterator2 in val);
   };
+  var isEmptyObject2 = (val) => {
+    if (!isObject3(val) || isBuffer2(val)) {
+      return false;
+    }
+    try {
+      return Object.keys(val).length === 0 && Object.getPrototypeOf(val) === Object.prototype;
+    } catch (e) {
+      return false;
+    }
+  };
   var isDate2 = kindOfTest2("Date");
   var isFile2 = kindOfTest2("File");
   var isBlob2 = kindOfTest2("Blob");
@@ -38283,6 +38292,9 @@ var require_axios = __commonJS((exports, module) => {
         fn.call(null, obj[i2], i2, obj);
       }
     } else {
+      if (isBuffer2(obj)) {
+        return;
+      }
       const keys2 = allOwnKeys ? Object.getOwnPropertyNames(obj) : Object.keys(obj);
       const len = keys2.length;
       let key;
@@ -38293,6 +38305,9 @@ var require_axios = __commonJS((exports, module) => {
     }
   }
   function findKey2(obj, key) {
+    if (isBuffer2(obj)) {
+      return null;
+    }
     key = key.toLowerCase();
     const keys2 = Object.keys(obj);
     let i2 = keys2.length;
@@ -38485,6 +38500,9 @@ var require_axios = __commonJS((exports, module) => {
         if (stack.indexOf(source) >= 0) {
           return;
         }
+        if (isBuffer2(source)) {
+          return source;
+        }
         if (!("toJSON" in source)) {
           stack[i2] = source;
           const target = isArray3(source) ? [] : {};
@@ -38531,6 +38549,7 @@ var require_axios = __commonJS((exports, module) => {
     isBoolean: isBoolean3,
     isObject: isObject3,
     isPlainObject: isPlainObject2,
+    isEmptyObject: isEmptyObject2,
     isReadableStream: isReadableStream2,
     isRequest: isRequest2,
     isResponse: isResponse2,
@@ -38896,15 +38915,16 @@ var require_axios = __commonJS((exports, module) => {
     ...platform$1
   };
   function toURLEncodedForm2(data, options) {
-    return toFormData2(data, new platform2.classes.URLSearchParams, Object.assign({
+    return toFormData2(data, new platform2.classes.URLSearchParams, {
       visitor: function(value, key, path, helpers) {
         if (platform2.isNode && utils$1.isBuffer(value)) {
           this.append(key, value.toString("base64"));
           return false;
         }
         return helpers.defaultVisitor.apply(this, arguments);
-      }
-    }, options));
+      },
+      ...options
+    });
   }
   function parsePropPath2(name) {
     return utils$1.matchAll(/\w+|\[(\w*)]/g, name).map((match) => {
@@ -39372,7 +39392,7 @@ var require_axios = __commonJS((exports, module) => {
     }
     return requestedURL;
   }
-  var VERSION2 = "1.10.0";
+  var VERSION2 = "1.11.0";
   function parseProtocol2(url3) {
     const match = /^([-+\w]{1,25})(:?\/\/|:)/.exec(url3);
     return match && match[1] || "";
@@ -39687,7 +39707,7 @@ var require_axios = __commonJS((exports, module) => {
         clearTimeout(timer);
         timer = null;
       }
-      fn.apply(null, args);
+      fn(...args);
     };
     const throttled = (...args) => {
       const now2 = Date.now();
@@ -40288,7 +40308,7 @@ var require_axios = __commonJS((exports, module) => {
       validateStatus: mergeDirectKeys,
       headers: (a, b2, prop3) => mergeDeepProperties(headersToObject2(a), headersToObject2(b2), prop3, true)
     };
-    utils$1.forEach(Object.keys(Object.assign({}, config1, config2)), function computeConfigValue(prop3) {
+    utils$1.forEach(Object.keys({ ...config1, ...config2 }), function computeConfigValue(prop3) {
       const merge4 = mergeMap[prop3] || mergeDeepProperties;
       const configValue = merge4(config1[prop3], config2[prop3], prop3);
       utils$1.isUndefined(configValue) && merge4 !== mergeDirectKeys || (config[prop3] = configValue);
@@ -40927,8 +40947,8 @@ var require_axios = __commonJS((exports, module) => {
       let len;
       if (!synchronousRequestInterceptors) {
         const chain2 = [dispatchRequest2.bind(this), undefined];
-        chain2.unshift.apply(chain2, requestInterceptorChain);
-        chain2.push.apply(chain2, responseInterceptorChain);
+        chain2.unshift(...requestInterceptorChain);
+        chain2.push(...responseInterceptorChain);
         len = chain2.length;
         promise = Promise.resolve(config);
         while (i2 < len) {
@@ -68180,6 +68200,16 @@ var isPlainObject = (val) => {
   const prototype = getPrototypeOf(val);
   return (prototype === null || prototype === Object.prototype || Object.getPrototypeOf(prototype) === null) && !(toStringTag in val) && !(iterator in val);
 };
+var isEmptyObject = (val) => {
+  if (!isObject2(val) || isBuffer(val)) {
+    return false;
+  }
+  try {
+    return Object.keys(val).length === 0 && Object.getPrototypeOf(val) === Object.prototype;
+  } catch (e) {
+    return false;
+  }
+};
 var isDate = kindOfTest("Date");
 var isFile = kindOfTest("File");
 var isBlob = kindOfTest("Blob");
@@ -68206,6 +68236,9 @@ function forEach(obj, fn, { allOwnKeys = false } = {}) {
       fn.call(null, obj[i2], i2, obj);
     }
   } else {
+    if (isBuffer(obj)) {
+      return;
+    }
     const keys2 = allOwnKeys ? Object.getOwnPropertyNames(obj) : Object.keys(obj);
     const len = keys2.length;
     let key;
@@ -68216,6 +68249,9 @@ function forEach(obj, fn, { allOwnKeys = false } = {}) {
   }
 }
 function findKey(obj, key) {
+  if (isBuffer(obj)) {
+    return null;
+  }
   key = key.toLowerCase();
   const keys2 = Object.keys(obj);
   let i2 = keys2.length;
@@ -68408,6 +68444,9 @@ var toJSONObject = (obj) => {
       if (stack.indexOf(source) >= 0) {
         return;
       }
+      if (isBuffer(source)) {
+        return source;
+      }
       if (!("toJSON" in source)) {
         stack[i2] = source;
         const target = isArray2(source) ? [] : {};
@@ -68454,6 +68493,7 @@ var utils_default = {
   isBoolean: isBoolean2,
   isObject: isObject2,
   isPlainObject,
+  isEmptyObject,
   isReadableStream,
   isRequest,
   isResponse,
@@ -68851,15 +68891,16 @@ var platform_default = {
 // node_modules/axios/lib/helpers/toURLEncodedForm.js
 function toURLEncodedForm(data, options) {
-  return toFormData_default(data, new platform_default.classes.URLSearchParams, Object.assign({
+  return toFormData_default(data, new platform_default.classes.URLSearchParams, {
     visitor: function(value, key, path, helpers) {
       if (platform_default.isNode && utils_default.isBuffer(value)) {
         this.append(key, value.toString("base64"));
         return false;
       }
       return helpers.defaultVisitor.apply(this, arguments);
-    }
-  }, options));
+    },
+    ...options
+  });
 }
 // node_modules/axios/lib/helpers/formDataToJSON.js
@@ -69361,7 +69402,7 @@ import util2 from "util";
 import zlib from "zlib";
 // node_modules/axios/lib/env/data.js
-var VERSION = "1.10.0";
+var VERSION = "1.11.0";
 // node_modules/axios/lib/helpers/parseProtocol.js
 function parseProtocol(url2) {
@@ -69707,7 +69748,7 @@ function throttle2(fn, freq) {
       clearTimeout(timer);
       timer = null;
     }
-    fn.apply(null, args);
+    fn(...args);
   };
   const throttled = (...args) => {
     const now2 = Date.now();
@@ -70317,7 +70358,7 @@ function mergeConfig(config1, config2) {
     validateStatus: mergeDirectKeys,
     headers: (a, b2, prop3) => mergeDeepProperties(headersToObject(a), headersToObject(b2), prop3, true)
   };
-  utils_default.forEach(Object.keys(Object.assign({}, config1, config2)), function computeConfigValue(prop3) {
+  utils_default.forEach(Object.keys({ ...config1, ...config2 }), function computeConfigValue(prop3) {
     const merge3 = mergeMap[prop3] || mergeDeepProperties;
     const configValue = merge3(config1[prop3], config2[prop3], prop3);
     utils_default.isUndefined(configValue) && merge3 !== mergeDirectKeys || (config[prop3] = configValue);
@@ -70972,8 +71013,8 @@ class Axios {
     let len;
     if (!synchronousRequestInterceptors) {
       const chain2 = [dispatchRequest.bind(this), undefined];
-      chain2.unshift.apply(chain2, requestInterceptorChain);
-      chain2.push.apply(chain2, responseInterceptorChain);
+      chain2.unshift(...requestInterceptorChain);
+      chain2.push(...responseInterceptorChain);
       len = chain2.length;
       promise = Promise.resolve(config);
       while (i2 < len) {
@@ -73465,7 +73506,6 @@ class Exchange {
     this.countries = undefined;
     this.userAgent = undefined;
     this.user_agent = undefined;
-    this.redact_exclusion = "api-key";
     this.userAgents = {
       chrome: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.94 Safari/537.36",
       chrome39: "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.71 Safari/537.36",
@@ -73481,6 +73521,8 @@ class Exchange {
     this.useVerity = false;
     this.verityProverUrl = "http://localhost:8080";
     this.verityMethods = ["fetchBalance", "fetchDepositAddress", "fetchDepositAddress", "fetchDepositAddresses", "fetchDepositAddressesByNetwork", "fetchDeposits", "withdraw", "fetchFundingHistory", "fetchWithdrawals", "fetchWithdrawal"];
+    this.verityRequestOptions = { redact: "" };
+    //! ------------------------------
     this.minFundingAddressLength = 1;
     this.substituteCommonCurrencyCodes = true;
     this.quoteJsonNumbers = true;
@@ -73901,6 +73943,9 @@ class Exchange {
     }
     return;
   }
+  addVerityRequestOptions(options) {
+    this.verityRequestOptions = options;
+  }
   async fetch(url2, method = "GET", headers = undefined, body = undefined) {
     if (isNode2) {
       if (!this.nodeHttpModuleLoaded) {
@@ -73977,8 +74022,7 @@ RequestBody:
       }
       if (this.useVerity && ["get", "post"].includes(method.toLowerCase()) && this.verityMethods.includes(methodCalled)) {
         const client = new import_verity_client.default.VerityClient({ prover_url: this.verityProverUrl });
-        const lowercase = Object.keys(axiosConfig.headers).filter((header) => !header.toLowerCase().includes(this.redact_exclusion.toLowerCase())).map((h) => `req:header:${h.toLowerCase()}`).join(",");
-        const response = await client.get(axiosConfig.url, axiosConfig).redact(lowercase);
+        const response = await client.get(axiosConfig.url, axiosConfig).redact(this.verityRequestOptions.redact || "");
         if (this.verbose) {
           this.log("verityProof:", response.proof, `
@@ -289223,7 +289267,7 @@ class xt2 extends xt {
 }
 // node_modules/@usherlabs/ccxt/js/ccxt.js
-var version2 = "0.0.6";
+var version2 = "0.0.10";
 Exchange.ccxtVersion = version2;
 var exchanges = {
   alpaca,
@@ -289979,7 +290023,7 @@ class Logger extends BaseLogger {
 // src/helpers/logger.ts
 var log = new Logger({
   type: "pretty",
-  stylePrettyLogs: false,
+  stylePrettyLogs: true,
   minLevel: process.env.LOG_LEVEL === "debug" ? 0 : 3
 });
@@ -290020,7 +290064,6 @@ function createBroker(cex3, metadata, useVerity, verityProverUrl) {
     exchange.setSandboxMode(true);
   }
   exchange.options.recvWindow = 60000;
-  exchange.redact_exclusion = "key";
   return exchange;
 }
 function selectBroker(brokers, metadata) {
@@ -290190,11 +290233,11 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl) {
   const server = new grpc.Server;
   server.addService(cexNode.cex_service.service, {
     ExecuteAction: async (call, callback) => {
-      log.info(`Request - ExecuteAction: ${JSON.stringify({
+      log.info(`Request - ExecuteAction:`, {
         action: call.request.action,
         cex: call.request.cex,
         symbol: call.request.symbol
-      })}`);
+      });
       if (!authenticateRequest(call, whitelistIps)) {
         return callback({
           code: grpc.status.PERMISSION_DENIED,
@@ -290203,10 +290246,10 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl) {
       }
       const metadata = call.metadata;
       const { action, cex: cex3, symbol } = call.request;
-      if (!action || !cex3 || !symbol) {
+      if (!action || !cex3) {
         return callback({
           code: grpc.status.INVALID_ARGUMENT,
-          message: "action, cex, symbol, and cex are required"
+          message: "`action` AND `cex` fields are required"
         }, null);
       }
       const broker = selectBroker(brokers[cex3], metadata) ?? createBroker(cex3, metadata, useVerity, verityProverUrl);
@@ -290216,6 +290259,13 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl) {
           message: `This Exchange is not registered and No API metadata ws found`
         }, null);
       }
+      if (useVerity && broker.useVerity) {
+        const redact = metadata.get("verity-t-redacted")?.[0]?.toString() || "";
+        log.info(`Verity Options: Redact`, { redact });
+        broker.addVerityRequestOptions({
+          redact
+        });
+      }
       switch (action) {
         case Action.Deposit: {
           const transactionSchema = import_joi2.default.object({
@@ -290256,6 +290306,12 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl) {
           break;
         }
         case Action.FetchDepositAddresses: {
+          if (!symbol) {
+            return callback({
+              code: grpc.status.INVALID_ARGUMENT,
+              message: `ValidationError: Symbol requied`
+            }, null);
+          }
           const fetchDepositAddressesSchema = import_joi2.default.object({
             chain: import_joi2.default.string().required(),
             params: import_joi2.default.object().pattern(import_joi2.default.string(), import_joi2.default.string()).default({})
@@ -290299,6 +290355,12 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl) {
           break;
         }
         case Action.Transfer: {
+          if (!symbol) {
+            return callback({
+              code: grpc.status.INVALID_ARGUMENT,
+              message: `ValidationError: Symbol requied`
+            }, null);
+          }
           const transferSchema = import_joi2.default.object({
             recipientAddress: import_joi2.default.string().required(),
             amount: import_joi2.default.number().positive().required(),
@@ -290450,7 +290512,7 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl) {
             const balance = await broker.fetchFreeBalance({
               ...call.request.payload ?? {}
             });
-            const currencyBalance = balance[symbol];
+            const currencyBalance = symbol ? balance[symbol] : balance;
             callback(null, {
               proof: broker.last_proof || "",
               result: JSON.stringify({
@@ -290484,6 +290546,12 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl) {
           }
           break;
         case Action.FetchTicker:
+          if (!symbol) {
+            return callback({
+              code: grpc.status.INVALID_ARGUMENT,
+              message: `ValidationError: Symbol requied`
+            }, null);
+          }
           try {
             const ticker = await broker.fetchTicker(symbol);
             callback(null, {
@@ -290894,7 +290962,7 @@ class CEXBroker {
       }
     }
     if (Object.keys(configMap).length === 0) {
-      log.error(`❌ NO CEX Broker Key Found`);
+      log.warn(`❌ NO CEX Broker Key Found`);
     }
     for (const [broker, creds] of Object.entries(configMap)) {
       const hasKey = !!creds.apiKey;
@@ -290927,7 +290995,6 @@ class CEXBroker {
                   recvWindow: 60000
                 }
               });
-              exchange.redact_exclusion = "key";
               secondaryBrokers[+index2] = exchange;
             } else {
               log.warn(`⚠️ Incomplete secondary credentials for broker "${broker}" at index ${index2}`);
@@ -291006,7 +291073,6 @@ class CEXBroker {
               recvWindow: 60000
             }
           });
-          exchange.redact_exclusion = "key";
           secondaryBroker[+index2] = exchange;
         } else {
           log.warn(`⚠️ Incomplete secondary credentials for broker "${broker}" at index ${index2}`);
@@ -291030,7 +291096,6 @@ class CEXBroker {
           recvWindow: 60000
         }
       });
-      client.redact_exclusion = "key";
       this.brokers[broker] = {
         primary: client,
         secondaryBrokers: secondaryBroker
@@ -291097,26 +291162,32 @@ class CEXBroker {
 }
 // src/commands/start-broker.ts
-async function startBrokerCommand(policyPath, port, whitelistIps, url2) {
-  const broker = new CEXBroker({}, policyPath, { port, whitelistIps, verityProverUrl: url2 });
+async function startBrokerCommand(policyPath, port, whitelistIps, verityProverUrl) {
+  const broker = new CEXBroker({}, policyPath, {
+    port,
+    whitelistIps,
+    verityProverUrl,
+    useVerity: !!verityProverUrl
+  });
   broker.loadEnvConfig();
   await broker.run();
 }
 // src/cli.ts
 var program2 = new Command;
-program2.name("cex-broker").description("CLI to start the CEXBroker service").requiredOption("-p, --policy <path>", "Policy JSON file").option("--port <number>", "Port number (default: 8086)", "8086").option("-w, --whitelist <addresses...>", "IPv4 address whitelist (space-separated list)").option("--verityProverUrl <url>", "Verity Prover Url").action(async (options) => {
+program2.name("cex-broker").description("CLI to start the CEXBroker service").requiredOption("-p, --policy <path>", "Policy JSON file").option("--port <number>", "Port number (default: 8086)", "8086").option("-w, --whitelist <addresses...>", "IPv4 address whitelist (space-separated list)").option("--whitelistAll", "Allow all IPv4 addresses (development mode)").option("--verityProverUrl <url>", "Verity Prover Url").action(async (options) => {
   try {
-    if (options.whitelist) {
+    const whitelist = options.whitelistAll ? ["*"] : options.whitelist ?? [];
+    if (whitelist.length > 0 && !whitelist.includes("*")) {
       const isValidIPv4 = (ip) => /^(\d{1,3}\.){3}\d{1,3}$/.test(ip) && ip.split(".").every((part) => Number(part) >= 0 && Number(part) <= 255);
-      for (const ip of options.whitelist) {
+      for (const ip of whitelist) {
         if (!isValidIPv4(ip)) {
           console.error(`\u274C Invalid IPv4 address: ${ip}`);
           process.exit(1);
         }
       }
     }
-    await startBrokerCommand(options.policy, parseInt(options.port, 10), options.whitelist ?? [], options.verityProverUrl);
+    await startBrokerCommand(options.policy, parseInt(options.port, 10), whitelist, options.verityProverUrl);
   } catch (err2) {
     console.error("\u274C Failed to start broker:", err2);
     process.exit(1);