@veridex/sdk 1.0.0-beta.15 → 1.0.0-beta.17

package/dist/index.d.mts

@@ -1,17 +1,26 @@
-import { c as WalletManagerConfig, P as PasskeyCredential, U as UnifiedIdentity, d as ChainAddress, B as BridgeParams, a as ChainConfig, e as VAA, f as VeridexPayload, g as PreparedTransfer, h as PreparedBridge, i as VeridexConfig, C as ChainClient, T as TransferParams, E as ExecuteParams, D as DispatchResult, j as BridgeResult, k as TransferResult, l as ReceiveAddress, m as VaultInfo, V as VaultCreationResult, I as IdentityState, A as AuthorizedKey, n as AddBackupKeyResult, o as RemoveKeyResult } from './types-ChIsqCiw.mjs';
-export { u as ActionPayload, r as BridgeAction, t as ConfigAction, p as ConfigParams, y as CrossChainFees, s as ExecuteAction, w as TestResult, x as TransactionHistoryEntry, q as TransferAction, v as VAASignature, W as WebAuthnSignature } from './types-ChIsqCiw.mjs';
-import { P as PasskeyManager } from './index-DkrLIDgS.mjs';
-export { E as EVMHubClientAdapter, H as HubClient, S as SessionManager } from './index-DkrLIDgS.mjs';
+import { W as WalletManagerConfig, P as PasskeyCredential, U as UnifiedIdentity, C as ChainAddress, B as BridgeParams, a as ChainConfig, V as VAA, b as VeridexPayload, c as PreparedTransfer, d as PreparedBridge, e as VeridexConfig, f as ChainClient, T as TransferParams, E as ExecuteParams, D as DispatchResult, g as BridgeResult, h as TransferResult, R as ReceiveAddress, i as VaultInfo, j as VaultCreationResult, I as IdentityState, A as AuthorizedKey, k as AddBackupKeyResult, l as RemoveKeyResult } from './types-DE2ICQik.mjs';
+export { r as ActionPayload, o as BridgeAction, q as ConfigAction, m as ConfigParams, v as CrossChainFees, p as ExecuteAction, t as TestResult, u as TransactionHistoryEntry, n as TransferAction, s as VAASignature } from './types-DE2ICQik.mjs';
+import { P as PasskeyManager, a as PasskeyCredential$1, W as WebAuthnSignature } from './index-CYOyIE3b.mjs';
+export { E as EVMClient, e as EVMClientConfig, c as EVMHubClientAdapter, H as HubClient, b as PasskeyManagerConfig, S as SessionManager, V as VERIDEX_RP_ID, d as detectRpId, s as supportsRelatedOrigins } from './index-CYOyIE3b.mjs';
 import { ethers } from 'ethers';
 import { BridgeParams as BridgeParams$1, ChainConfig as ChainConfig$1 } from './types.mjs';
 export { AddGuardianResult, ApproveRecoveryResult, CancelRecoveryResult, ExecuteRecoveryResult, ExecutionPath, GuardianConfig, InitiateRecoveryResult, QueryProof, QuerySubmissionResult, RecoveryStatus, RegisterSessionParams, RemoveGuardianResult, RevokeSessionParams, SessionKey, SessionValidationResult, SetupGuardiansResult } from './types.mjs';
-import { a as SessionStorage, S as SessionKey } from './types-FJL7j6gQ.mjs';
-export { A as ActionParams, b as SessionConfig, i as SessionError, h as SessionErrorCode, e as SessionEvent, f as SessionEventCallback, d as SessionManagerConfig, c as SessionSignature, g as SessionSignedAction } from './types-FJL7j6gQ.mjs';
+export { SolanaClient, SolanaClientConfig } from './chains/solana/index.mjs';
+export { AptosClient, AptosClientConfig } from './chains/aptos/index.mjs';
+export { SuiClient, SuiClientConfig } from './chains/sui/index.mjs';
+export { StarknetClient, StarknetClientConfig } from './chains/starknet/index.mjs';
+export { FtPostCondition, NftPostCondition, PostConditionComparison, STACKS_ACTION_TYPES, StacksClient, StacksClientConfig, PostCondition as StacksPostCondition, StxPostCondition, buildSbtcWithdrawalPostConditions, buildExecutePostConditions as buildStacksExecutePostConditions, buildStxDepositPostConditions, buildStxWithdrawalPostConditions, getContractPrincipal as getStacksContractPrincipal, getStacksExplorerAddressUrl, getStacksExplorerTxUrl, getNetworkFromAddress as getStacksNetworkFromAddress, isContractPrincipal as isStacksContractPrincipal, isValidContractName as isValidStacksContractName, isValidStacksPrincipal, isValidStandardPrincipal as isValidStacksStandardPrincipal, parseContractPrincipal as parseStacksContractPrincipal, buildExecuteHash as stacksBuildExecuteHash, buildRegistrationHash as stacksBuildRegistrationHash, buildRevocationHash as stacksBuildRevocationHash, buildSessionRegistrationHash as stacksBuildSessionRegistrationHash, buildWithdrawalHash as stacksBuildWithdrawalHash, compressPublicKey as stacksCompressPublicKey, computeKeyHash as stacksComputeKeyHash, computeKeyHashFromCoords as stacksComputeKeyHashFromCoords, derToCompactSignature as stacksDerToCompactSignature, rsToCompactSignature as stacksRsToCompactSignature, validatePostConditions as validateStacksPostConditions } from './chains/stacks/index.mjs';
+import { S as SessionStorage, a as SessionKey } from './types-DvFRnIBd.mjs';
+export { A as ActionParams, b as SessionConfig, i as SessionError, h as SessionErrorCode, e as SessionEvent, f as SessionEventCallback, d as SessionManagerConfig, c as SessionSignature, g as SessionSignedAction } from './types-DvFRnIBd.mjs';
 export { ACTION_BRIDGE, ACTION_CONFIG, ACTION_EXECUTE, ACTION_TRANSFER, ACTION_TYPES, HUB_ABI, MAINNET_CHAINS, PROTOCOL_VERSION, TESTNET_CHAINS, VAULT_ABI, VAULT_FACTORY_ABI, WORMHOLE_API, WORMHOLE_CHAIN_IDS, WORMHOLE_CHAIN_IDS_FLAT } from './constants.mjs';
 export { base64URLDecode, base64URLEncode, computeKeyHash, encodeSignatureForSolidity, getAddressExplorerUrl, getChainByEvmId, getChainByWormholeId, getTxExplorerUrl, isEvmChain, isValidBytes32, isValidEvmAddress, isValidWormholeChainId, parseDERSignature, retryWithBackoff } from './utils.mjs';
 export { buildChallenge, buildGaslessChallenge, createGaslessMessageHash, createMessageHash, decodeActionPayload, decodeBridgeAction, decodeExecuteAction, decodeTransferAction, encodeAptosTransferAction, encodeBridgeAction, encodeConfigAction, encodeExecuteAction, encodeSolanaTransferAction, encodeSuiTransferAction, encodeTransferAction, encodeVeridexPayload, formatAmount, generateNonce, padTo32Bytes, parseAmount, solanaAddressToBytes32, trimTo20Bytes } from './payload.mjs';
 export { HubStateQuery, HubStateResult, PortfolioChainErrorCode, PortfolioChainResult, PortfolioQuery, PortfolioResult, QueryConfig, QueryHubStateError, QueryHubStateErrorCode, QueryHubStateNetwork, QueryHubStateOptions, QueryNetwork, QueryOperation, QueryOperationType, QueryPortfolioError, QueryPortfolioErrorCode, QueryPortfolioNetwork, QueryPortfolioOptions, QueryRequest, QueryResponse, WORMHOLE_QUERY_CHAIN_IDS, WORMHOLE_QUERY_PROXY_URLS, WORMHOLE_QUERY_RATE_LIMIT_PER_SECOND, queryHubState, queryPortfolio } from './queries/index.mjs';
 export { CONSISTENCY_LEVELS, FetchVAAOptions, GUARDIAN_CONFIG, WaitForSignaturesOptions, emitterToEvmAddress, encodeVAAForSolana, encodeVAAToBytes, evmAddressToBytes32, fetchVAA, fetchVAAByTxHash, fetchVAAByTxHashFallback, getSequenceFromTxReceipt, getWormholeCoreBridge, getWormholeRelayer, getWormholeTokenBridge, hasQuorum, normalizeEmitterAddress, parseVAA, parseVAABytes, parseVeridexPayload, supportsRelayer, validateEmitter, waitForGuardianSignatures } from './wormhole.mjs';
+import '@solana/web3.js';
+import '@aptos-labs/ts-sdk';
+import '@mysten/sui/client';
+import 'starknet';
 import '@wormhole-foundation/wormhole-query-sdk';
 
 /**
@@ -2111,6 +2120,7 @@ declare const CHAIN_NAMES: {
     readonly APTOS: "aptos";
     readonly SUI: "sui";
     readonly STARKNET: "starknet";
+    readonly STACKS: "stacks";
     readonly NEAR: "near";
     readonly SEI: "sei";
 };
@@ -2120,7 +2130,7 @@ interface ChainPreset {
     /** Human-readable chain name */
     displayName: string;
     /** Chain type for client selection */
-    type: 'evm' | 'solana' | 'aptos' | 'sui' | 'starknet' | 'near' | 'cosmos';
+    type: 'evm' | 'solana' | 'aptos' | 'sui' | 'starknet' | 'stacks' | 'near' | 'cosmos';
     /** Whether this chain can be a hub */
     canBeHub: boolean;
     /** Testnet configuration */
@@ -2261,7 +2271,7 @@ interface SessionConfig {
  *
  * // With relayer for gasless transactions
  * const gaslessSdk = await createSDK('base', {
- *   relayerUrl: 'https://relayer.veridex.io',
+ *   relayerUrl: 'https://relayer.veridex.network',
  *   relayerApiKey: 'your-api-key',
  * });
  * ```
@@ -2322,6 +2332,236 @@ declare function createMainnetSDK(chain?: ChainName, config?: Omit<SimpleSDKConf
  */
 declare function createSessionSDK(chain?: ChainName, config?: SimpleSDKConfig): VeridexSDK;
 
+/**
+ * Veridex Protocol SDK - Cross-Origin Authentication
+ *
+ * Enables passkey sharing across different domains using WebAuthn Related Origin Requests.
+ *
+ * There are two approaches for cross-domain passkey usage:
+ *
+ * 1. **Related Origin Requests (Recommended)** - W3C Standard
+ *    - Host a `.well-known/webauthn` file at veridex.network
+ *    - Third-party apps use rpId: 'veridex.network' directly
+ *    - Requires browser support for Related Origin Requests
+ *    - No popup needed, seamless UX
+ *
+ * 2. **Auth Portal Flow (Fallback)** - Popup/Redirect Pattern
+ *    - User is redirected to auth.veridex.network
+ *    - Signs with their passkey at veridex.network
+ *    - Returns a session token to the third-party app
+ *    - Works on all browsers, but requires popup/redirect
+ *
+ * @example Related Origins (Recommended)
+ * ```typescript
+ * import { createCrossOriginAuth } from '@veridex/sdk';
+ *
+ * const auth = createCrossOriginAuth();
+ *
+ * // Check if browser supports Related Origin Requests
+ * if (await auth.supportsRelatedOrigins()) {
+ *   // Direct passkey usage with veridex.network rpId
+ *   const credential = await auth.authenticate();
+ * } else {
+ *   // Fallback to Auth Portal
+ *   const session = await auth.authenticateViaPortal();
+ * }
+ * ```
+ *
+ * @example Auth Portal Flow
+ * ```typescript
+ * const auth = createCrossOriginAuth({
+ *   authPortalUrl: 'https://auth.veridex.network',
+ *   mode: 'popup', // or 'redirect'
+ * });
+ *
+ * const session = await auth.connectWithVeridex();
+ * // session contains: { address, sessionKey, expiresAt }
+ * ```
+ */
+
+/** Default auth portal URL */
+declare const DEFAULT_AUTH_PORTAL_URL = "https://auth.veridex.network";
+/** Default relayer API URL for server-side session tokens */
+declare const DEFAULT_RELAYER_URL = "https://amused-kameko-veridex-demo-37453117.koyeb.app/api/v1";
+/** Message types for postMessage communication */
+declare const AUTH_MESSAGE_TYPES: {
+    readonly AUTH_REQUEST: "VERIDEX_AUTH_REQUEST";
+    readonly AUTH_RESPONSE: "VERIDEX_AUTH_RESPONSE";
+    readonly AUTH_ERROR: "VERIDEX_AUTH_ERROR";
+};
+interface CrossOriginAuthConfig {
+    /** The Veridex RP ID (defaults to veridex.network) */
+    rpId?: string;
+    /** Auth portal URL for popup/redirect flow */
+    authPortalUrl?: string;
+    /** Relayer API URL for server-side session tokens */
+    relayerUrl?: string;
+    /** Authentication mode: popup or redirect */
+    mode?: 'popup' | 'redirect';
+    /** Popup window features */
+    popupFeatures?: string;
+    /** Timeout for auth operations (ms) */
+    timeout?: number;
+    /** Callback URL for redirect mode */
+    redirectUri?: string;
+}
+interface CrossOriginSession {
+    /** User's vault address */
+    address: string;
+    /** Session key public key (for signing transactions) */
+    sessionPublicKey: string;
+    /** Session key (encrypted, stored on client) */
+    encryptedSessionKey?: string;
+    /** When the session expires */
+    expiresAt: number;
+    /** Proof of passkey ownership */
+    signature: WebAuthnSignature;
+    /** The credential used */
+    credential: PasskeyCredential$1;
+    /** Server-validated session token ID (from relayer) */
+    serverSessionId?: string;
+}
+/** Server-side session token returned by the relayer */
+interface ServerSessionToken {
+    id: string;
+    keyHash: string;
+    appOrigin: string;
+    permissions: string[];
+    expiresAt: number;
+    createdAt: number;
+}
+interface AuthPortalMessage {
+    type: typeof AUTH_MESSAGE_TYPES[keyof typeof AUTH_MESSAGE_TYPES];
+    payload: CrossOriginSession | {
+        error: string;
+        code: string;
+    };
+    origin: string;
+}
+/**
+ * Manages cross-origin passkey authentication for third-party apps.
+ *
+ * Third-party developers can use this to enable Veridex passkey authentication
+ * in their own applications without users having to create new passkeys.
+ */
+declare class CrossOriginAuth {
+    private config;
+    private passkeyManager;
+    constructor(config?: CrossOriginAuthConfig);
+    /**
+     * Check if the browser supports Related Origin Requests.
+     * This is a WebAuthn Level 3 feature that allows using passkeys across different domains.
+     */
+    supportsRelatedOrigins(): Promise<boolean>;
+    /**
+     * Check if WebAuthn is supported at all.
+     */
+    isSupported(): boolean;
+    /**
+     * Authenticate using Related Origin Requests.
+     * This allows using a passkey registered at veridex.network from any origin
+     * listed in the /.well-known/webauthn file.
+     *
+     * @throws If browser doesn't support Related Origin Requests
+     * @throws If the current origin isn't listed in veridex.network's well-known file
+     */
+    authenticate(challenge?: Uint8Array): Promise<{
+        credential: PasskeyCredential$1;
+        signature: WebAuthnSignature;
+    }>;
+    /**
+     * Register a new passkey with veridex.network as the RP.
+     * This should only be called from veridex.network origins.
+     */
+    register(username: string, displayName: string): Promise<PasskeyCredential$1>;
+    /**
+     * Authenticate via the Veridex Auth Portal.
+     * Opens a popup or redirects to auth.veridex.network where the user
+     * signs with their passkey, then returns a session to the calling app.
+     */
+    connectWithVeridex(): Promise<CrossOriginSession>;
+    /**
+     * Popup-based authentication flow.
+     */
+    private authenticateViaPopup;
+    /**
+     * Redirect-based authentication flow.
+     * Stores state in sessionStorage and redirects to auth portal.
+     */
+    private initiateRedirectAuth;
+    /**
+     * Complete redirect-based authentication.
+     * Call this on your callback page to extract the session from URL params.
+     */
+    completeRedirectAuth(): CrossOriginSession | null;
+    /**
+     * Generate a random state string for CSRF protection.
+     */
+    private generateState;
+    /**
+     * Get the RP ID being used.
+     */
+    getRpId(): string;
+    /**
+     * Get the auth portal URL.
+     */
+    getAuthPortalUrl(): string;
+    /**
+     * Create a server-validated session token via the relayer.
+     * Call this after authenticating (via ROR or auth portal) to get a
+     * server-side session that the relayer can verify on subsequent requests.
+     */
+    createServerSession(session: CrossOriginSession, options?: {
+        permissions?: string[];
+        expiresInMs?: number;
+    }): Promise<ServerSessionToken>;
+    /**
+     * Validate an existing server session token.
+     * Returns the session details if valid, null if expired/revoked.
+     */
+    validateServerSession(sessionId: string): Promise<ServerSessionToken | null>;
+    /**
+     * Revoke a server session token.
+     */
+    revokeServerSession(sessionId: string): Promise<boolean>;
+    /**
+     * Full authentication flow: authenticate + create server session.
+     * Automatically detects ROR support and falls back to auth portal.
+     */
+    authenticateAndCreateSession(options?: {
+        permissions?: string[];
+        expiresInMs?: number;
+    }): Promise<{
+        session: CrossOriginSession;
+        serverSession: ServerSessionToken;
+    }>;
+}
+/**
+ * Create a CrossOriginAuth instance for third-party app integration.
+ *
+ * @example
+ * ```typescript
+ * const auth = createCrossOriginAuth();
+ *
+ * // Check for Related Origin support
+ * if (await auth.supportsRelatedOrigins()) {
+ *   const { credential, signature } = await auth.authenticate();
+ * } else {
+ *   const session = await auth.connectWithVeridex();
+ * }
+ * ```
+ */
+declare function createCrossOriginAuth(config?: CrossOriginAuthConfig): CrossOriginAuth;
+/**
+ * Helper for the auth portal page to send results back to the calling app.
+ * Only used on auth.veridex.network, not in third-party apps.
+ */
+declare function sendAuthResponse(session: CrossOriginSession, targetOrigin: string): void;
+/**
+ * Helper for the auth portal to send an error back to the calling app.
+ */
+declare function sendAuthError(error: string, code: string, targetOrigin: string): void;
+
 /**
  * Veridex Protocol SDK - Chain Detector
  *
@@ -3121,4 +3361,4 @@ type AuthenticateAndPrepareResult = {
  */
 declare function authenticateAndPrepare(userParams: AuthenticateAndPrepareParams, apiKey: string): Promise<AuthenticateAndPrepareResult>;
 
-export { ARBITRUM_SEPOLIA_TOKENS, type ActionDetails, type ActionDisplayType, AddBackupKeyResult, type AuthenticateAndPrepareParams, type AuthenticateAndPrepareResult, AuthorizedKey, BASE_SEPOLIA_TOKENS, BalanceManager, type BalanceManagerConfig, type BridgeDetails, BridgeParams, BridgeResult, CHAIN_DISPLAY_INFO, CHAIN_NAMES, CHAIN_PRESETS, CONFIG_TYPE, ChainAddress, type ChainAddressConfig, ChainClient, ChainConfig, type ChainDeploymentConfig, ChainDetector, type ChainDetectorConfig, type ChainDisplay, type ChainName, type ChainTokenList, type ConfigDetails, type CrossChainConfig, CrossChainManager, type CrossChainProgress, type CrossChainProgressCallback, type CrossChainResult, type CrossChainStatus, DEFAULT_REFRESH_BUFFER, DEFAULT_SESSION_DURATION, type DailySpendingSummary, DispatchResult, type DurationDisplay, ERROR_MESSAGES, ERROR_RANGES, ETHEREUM_SEPOLIA_TOKENS, EVM_ZERO_ADDRESS, type ExecuteDetails, ExecuteParams, type FormattedSpendingLimits, GasSponsor, type GasSponsorConfig, IdentityState, IndexedDBSessionStorage, type KeyPair, LIMIT_PRESETS, type LimitCheckResult, type LimitPreset, type LimitViolationSuggestion, type LimitViolationType, LocalStorageSessionStorage, MAX_SESSION_DURATION, MIN_SESSION_DURATION, type MultiChainVaultResult, NATIVE_TOKEN_ADDRESS, type NativeBalanceCapable, type NetworkType, OPTIMISM_SEPOLIA_TOKENS, PasskeyCredential, PasskeyManager, type PortfolioBalance, PreparedBridge, PreparedTransfer, ReceiveAddress, type RecipientDisplay, type RelayFeeQuote, type RelayRequest, type RelayRoute, type RelayStatus, RelayerClient, type RelayerClientConfig, type RelayerInfo, RemoveKeyResult, type RiskLevel, type RiskWarning, type RiskWarningType, SessionStorage, type SetDailyLimitParams, type SetTransactionLimitParams, type SimpleSDKConfig, type SessionConfig as SimpleSessionConfig, type SpendingLimitChangedEvent, type SpendingLimitConfig, type SpendingLimitEventCallback, type SpendingLimits, SpendingLimitsManager, type SpendingLimitsManagerConfig, type SpendingTransaction, type SponsoredVaultResult, type SponsorshipSource, type SubmitActionResult, type SubmitQueryRequest, type SubmitQueryResult, type SubmitSignedActionRequest, TOKEN_REGISTRY, type TokenBalance, type TokenDisplay, type TokenInfo$1 as TokenInfo, type TrackerConfig, type TransactionAuditEntry, type TransactionCallback, TransactionParser, type TransactionParserConfig, type TransactionState, type TransactionStatus, type TransactionSummary, TransactionTracker, type TransferDetails, TransferParams, TransferResult, UnifiedIdentity, VAA, VERIDEX_ERRORS, VaultCreationResult, VaultInfo, VeridexConfig, type VeridexErrorCode, VeridexPayload, VeridexSDK, WalletManager, WalletManagerConfig, authenticateAndPrepare, calculatePercentage, computeSessionKeyHash, createAuditEntry, createChainDetector, createGasSponsor, createHubSDK, createMainnetSDK, createRelayerClient, createSDK, createSessionSDK, createSessionStorage, createSpendingLimitsManager, createTestnetSDK, createTransactionParser, crossChainManager, decrypt, VeridexSDK as default, deriveEncryptionKey, encrypt, formatDuration, formatLargeAmount, formatTransactionState, generateSecp256k1KeyPair, getAllTokens, getChainConfig, getChainDisplay, getChainName, getChainPreset, getConfigTypeName, getDefaultHub, getErrorCategory, getErrorMessage, getExplorerUrl, getHubChains, getSuggestedAction, getSupportedChainIds, getSupportedChains, getTokenByAddress, getTokenBySymbol, getTokenList, hashAction, isAbiError, isChainSupported, isCoreError, isNativeToken, isQueryError, isQueryExecutionError, isQueryParsingError, isRetryableError, logTransactionSummary, parseVeridexError, signWithSessionKey, validateSessionConfig, verifySessionSignature };
+export { ARBITRUM_SEPOLIA_TOKENS, AUTH_MESSAGE_TYPES, type ActionDetails, type ActionDisplayType, AddBackupKeyResult, type AuthPortalMessage, type AuthenticateAndPrepareParams, type AuthenticateAndPrepareResult, AuthorizedKey, BASE_SEPOLIA_TOKENS, BalanceManager, type BalanceManagerConfig, type BridgeDetails, BridgeParams, BridgeResult, CHAIN_DISPLAY_INFO, CHAIN_NAMES, CHAIN_PRESETS, CONFIG_TYPE, ChainAddress, type ChainAddressConfig, ChainClient, ChainConfig, type ChainDeploymentConfig, ChainDetector, type ChainDetectorConfig, type ChainDisplay, type ChainName, type ChainTokenList, type ConfigDetails, type CrossChainConfig, CrossChainManager, type CrossChainProgress, type CrossChainProgressCallback, type CrossChainResult, type CrossChainStatus, CrossOriginAuth, type CrossOriginAuthConfig, type CrossOriginSession, DEFAULT_AUTH_PORTAL_URL, DEFAULT_REFRESH_BUFFER, DEFAULT_RELAYER_URL, DEFAULT_SESSION_DURATION, type DailySpendingSummary, DispatchResult, type DurationDisplay, ERROR_MESSAGES, ERROR_RANGES, ETHEREUM_SEPOLIA_TOKENS, EVM_ZERO_ADDRESS, type ExecuteDetails, ExecuteParams, type FormattedSpendingLimits, GasSponsor, type GasSponsorConfig, IdentityState, IndexedDBSessionStorage, type KeyPair, LIMIT_PRESETS, type LimitCheckResult, type LimitPreset, type LimitViolationSuggestion, type LimitViolationType, LocalStorageSessionStorage, MAX_SESSION_DURATION, MIN_SESSION_DURATION, type MultiChainVaultResult, NATIVE_TOKEN_ADDRESS, type NativeBalanceCapable, type NetworkType, OPTIMISM_SEPOLIA_TOKENS, PasskeyCredential$1 as PasskeyCredential, PasskeyManager, type PortfolioBalance, PreparedBridge, PreparedTransfer, ReceiveAddress, type RecipientDisplay, type RelayFeeQuote, type RelayRequest, type RelayRoute, type RelayStatus, RelayerClient, type RelayerClientConfig, type RelayerInfo, RemoveKeyResult, type RiskLevel, type RiskWarning, type RiskWarningType, type ServerSessionToken, SessionStorage, type SetDailyLimitParams, type SetTransactionLimitParams, type SimpleSDKConfig, type SessionConfig as SimpleSessionConfig, type SpendingLimitChangedEvent, type SpendingLimitConfig, type SpendingLimitEventCallback, type SpendingLimits, SpendingLimitsManager, type SpendingLimitsManagerConfig, type SpendingTransaction, type SponsoredVaultResult, type SponsorshipSource, type SubmitActionResult, type SubmitQueryRequest, type SubmitQueryResult, type SubmitSignedActionRequest, TOKEN_REGISTRY, type TokenBalance, type TokenDisplay, type TokenInfo$1 as TokenInfo, type TrackerConfig, type TransactionAuditEntry, type TransactionCallback, TransactionParser, type TransactionParserConfig, type TransactionState, type TransactionStatus, type TransactionSummary, TransactionTracker, type TransferDetails, TransferParams, TransferResult, UnifiedIdentity, VAA, VERIDEX_ERRORS, VaultCreationResult, VaultInfo, VeridexConfig, type VeridexErrorCode, VeridexPayload, VeridexSDK, WalletManager, WalletManagerConfig, WebAuthnSignature, authenticateAndPrepare, calculatePercentage, computeSessionKeyHash, createAuditEntry, createChainDetector, createCrossOriginAuth, createGasSponsor, createHubSDK, createMainnetSDK, createRelayerClient, createSDK, createSessionSDK, createSessionStorage, createSpendingLimitsManager, createTestnetSDK, createTransactionParser, crossChainManager, decrypt, VeridexSDK as default, deriveEncryptionKey, encrypt, formatDuration, formatLargeAmount, formatTransactionState, generateSecp256k1KeyPair, getAllTokens, getChainConfig, getChainDisplay, getChainName, getChainPreset, getConfigTypeName, getDefaultHub, getErrorCategory, getErrorMessage, getExplorerUrl, getHubChains, getSuggestedAction, getSupportedChainIds, getSupportedChains, getTokenByAddress, getTokenBySymbol, getTokenList, hashAction, isAbiError, isChainSupported, isCoreError, isNativeToken, isQueryError, isQueryExecutionError, isQueryParsingError, isRetryableError, logTransactionSummary, parseVeridexError, sendAuthError, sendAuthResponse, signWithSessionKey, validateSessionConfig, verifySessionSignature };

package/dist/index.d.ts

@@ -1,17 +1,26 @@
-import { c as WalletManagerConfig, P as PasskeyCredential, U as UnifiedIdentity, d as ChainAddress, B as BridgeParams, a as ChainConfig, e as VAA, f as VeridexPayload, g as PreparedTransfer, h as PreparedBridge, i as VeridexConfig, C as ChainClient, T as TransferParams, E as ExecuteParams, D as DispatchResult, j as BridgeResult, k as TransferResult, l as ReceiveAddress, m as VaultInfo, V as VaultCreationResult, I as IdentityState, A as AuthorizedKey, n as AddBackupKeyResult, o as RemoveKeyResult } from './types-ChIsqCiw.js';
-export { u as ActionPayload, r as BridgeAction, t as ConfigAction, p as ConfigParams, y as CrossChainFees, s as ExecuteAction, w as TestResult, x as TransactionHistoryEntry, q as TransferAction, v as VAASignature, W as WebAuthnSignature } from './types-ChIsqCiw.js';
-import { P as PasskeyManager } from './index-BJlmzSvm.js';
-export { E as EVMHubClientAdapter, H as HubClient, S as SessionManager } from './index-BJlmzSvm.js';
+import { W as WalletManagerConfig, P as PasskeyCredential, U as UnifiedIdentity, C as ChainAddress, B as BridgeParams, a as ChainConfig, V as VAA, b as VeridexPayload, c as PreparedTransfer, d as PreparedBridge, e as VeridexConfig, f as ChainClient, T as TransferParams, E as ExecuteParams, D as DispatchResult, g as BridgeResult, h as TransferResult, R as ReceiveAddress, i as VaultInfo, j as VaultCreationResult, I as IdentityState, A as AuthorizedKey, k as AddBackupKeyResult, l as RemoveKeyResult } from './types-DE2ICQik.js';
+export { r as ActionPayload, o as BridgeAction, q as ConfigAction, m as ConfigParams, v as CrossChainFees, p as ExecuteAction, t as TestResult, u as TransactionHistoryEntry, n as TransferAction, s as VAASignature } from './types-DE2ICQik.js';
+import { P as PasskeyManager, a as PasskeyCredential$1, W as WebAuthnSignature } from './index-BXcR_ypI.js';
+export { E as EVMClient, e as EVMClientConfig, c as EVMHubClientAdapter, H as HubClient, b as PasskeyManagerConfig, S as SessionManager, V as VERIDEX_RP_ID, d as detectRpId, s as supportsRelatedOrigins } from './index-BXcR_ypI.js';
 import { ethers } from 'ethers';
 import { BridgeParams as BridgeParams$1, ChainConfig as ChainConfig$1 } from './types.js';
 export { AddGuardianResult, ApproveRecoveryResult, CancelRecoveryResult, ExecuteRecoveryResult, ExecutionPath, GuardianConfig, InitiateRecoveryResult, QueryProof, QuerySubmissionResult, RecoveryStatus, RegisterSessionParams, RemoveGuardianResult, RevokeSessionParams, SessionKey, SessionValidationResult, SetupGuardiansResult } from './types.js';
-import { a as SessionStorage, S as SessionKey } from './types-FJL7j6gQ.js';
-export { A as ActionParams, b as SessionConfig, i as SessionError, h as SessionErrorCode, e as SessionEvent, f as SessionEventCallback, d as SessionManagerConfig, c as SessionSignature, g as SessionSignedAction } from './types-FJL7j6gQ.js';
+export { SolanaClient, SolanaClientConfig } from './chains/solana/index.js';
+export { AptosClient, AptosClientConfig } from './chains/aptos/index.js';
+export { SuiClient, SuiClientConfig } from './chains/sui/index.js';
+export { StarknetClient, StarknetClientConfig } from './chains/starknet/index.js';
+export { FtPostCondition, NftPostCondition, PostConditionComparison, STACKS_ACTION_TYPES, StacksClient, StacksClientConfig, PostCondition as StacksPostCondition, StxPostCondition, buildSbtcWithdrawalPostConditions, buildExecutePostConditions as buildStacksExecutePostConditions, buildStxDepositPostConditions, buildStxWithdrawalPostConditions, getContractPrincipal as getStacksContractPrincipal, getStacksExplorerAddressUrl, getStacksExplorerTxUrl, getNetworkFromAddress as getStacksNetworkFromAddress, isContractPrincipal as isStacksContractPrincipal, isValidContractName as isValidStacksContractName, isValidStacksPrincipal, isValidStandardPrincipal as isValidStacksStandardPrincipal, parseContractPrincipal as parseStacksContractPrincipal, buildExecuteHash as stacksBuildExecuteHash, buildRegistrationHash as stacksBuildRegistrationHash, buildRevocationHash as stacksBuildRevocationHash, buildSessionRegistrationHash as stacksBuildSessionRegistrationHash, buildWithdrawalHash as stacksBuildWithdrawalHash, compressPublicKey as stacksCompressPublicKey, computeKeyHash as stacksComputeKeyHash, computeKeyHashFromCoords as stacksComputeKeyHashFromCoords, derToCompactSignature as stacksDerToCompactSignature, rsToCompactSignature as stacksRsToCompactSignature, validatePostConditions as validateStacksPostConditions } from './chains/stacks/index.js';
+import { S as SessionStorage, a as SessionKey } from './types-DvFRnIBd.js';
+export { A as ActionParams, b as SessionConfig, i as SessionError, h as SessionErrorCode, e as SessionEvent, f as SessionEventCallback, d as SessionManagerConfig, c as SessionSignature, g as SessionSignedAction } from './types-DvFRnIBd.js';
 export { ACTION_BRIDGE, ACTION_CONFIG, ACTION_EXECUTE, ACTION_TRANSFER, ACTION_TYPES, HUB_ABI, MAINNET_CHAINS, PROTOCOL_VERSION, TESTNET_CHAINS, VAULT_ABI, VAULT_FACTORY_ABI, WORMHOLE_API, WORMHOLE_CHAIN_IDS, WORMHOLE_CHAIN_IDS_FLAT } from './constants.js';
 export { base64URLDecode, base64URLEncode, computeKeyHash, encodeSignatureForSolidity, getAddressExplorerUrl, getChainByEvmId, getChainByWormholeId, getTxExplorerUrl, isEvmChain, isValidBytes32, isValidEvmAddress, isValidWormholeChainId, parseDERSignature, retryWithBackoff } from './utils.js';
 export { buildChallenge, buildGaslessChallenge, createGaslessMessageHash, createMessageHash, decodeActionPayload, decodeBridgeAction, decodeExecuteAction, decodeTransferAction, encodeAptosTransferAction, encodeBridgeAction, encodeConfigAction, encodeExecuteAction, encodeSolanaTransferAction, encodeSuiTransferAction, encodeTransferAction, encodeVeridexPayload, formatAmount, generateNonce, padTo32Bytes, parseAmount, solanaAddressToBytes32, trimTo20Bytes } from './payload.js';
 export { HubStateQuery, HubStateResult, PortfolioChainErrorCode, PortfolioChainResult, PortfolioQuery, PortfolioResult, QueryConfig, QueryHubStateError, QueryHubStateErrorCode, QueryHubStateNetwork, QueryHubStateOptions, QueryNetwork, QueryOperation, QueryOperationType, QueryPortfolioError, QueryPortfolioErrorCode, QueryPortfolioNetwork, QueryPortfolioOptions, QueryRequest, QueryResponse, WORMHOLE_QUERY_CHAIN_IDS, WORMHOLE_QUERY_PROXY_URLS, WORMHOLE_QUERY_RATE_LIMIT_PER_SECOND, queryHubState, queryPortfolio } from './queries/index.js';
 export { CONSISTENCY_LEVELS, FetchVAAOptions, GUARDIAN_CONFIG, WaitForSignaturesOptions, emitterToEvmAddress, encodeVAAForSolana, encodeVAAToBytes, evmAddressToBytes32, fetchVAA, fetchVAAByTxHash, fetchVAAByTxHashFallback, getSequenceFromTxReceipt, getWormholeCoreBridge, getWormholeRelayer, getWormholeTokenBridge, hasQuorum, normalizeEmitterAddress, parseVAA, parseVAABytes, parseVeridexPayload, supportsRelayer, validateEmitter, waitForGuardianSignatures } from './wormhole.js';
+import '@solana/web3.js';
+import '@aptos-labs/ts-sdk';
+import '@mysten/sui/client';
+import 'starknet';
 import '@wormhole-foundation/wormhole-query-sdk';
 
 /**
@@ -2111,6 +2120,7 @@ declare const CHAIN_NAMES: {
     readonly APTOS: "aptos";
     readonly SUI: "sui";
     readonly STARKNET: "starknet";
+    readonly STACKS: "stacks";
     readonly NEAR: "near";
     readonly SEI: "sei";
 };
@@ -2120,7 +2130,7 @@ interface ChainPreset {
     /** Human-readable chain name */
     displayName: string;
     /** Chain type for client selection */
-    type: 'evm' | 'solana' | 'aptos' | 'sui' | 'starknet' | 'near' | 'cosmos';
+    type: 'evm' | 'solana' | 'aptos' | 'sui' | 'starknet' | 'stacks' | 'near' | 'cosmos';
     /** Whether this chain can be a hub */
     canBeHub: boolean;
     /** Testnet configuration */
@@ -2261,7 +2271,7 @@ interface SessionConfig {
  *
  * // With relayer for gasless transactions
  * const gaslessSdk = await createSDK('base', {
- *   relayerUrl: 'https://relayer.veridex.io',
+ *   relayerUrl: 'https://relayer.veridex.network',
  *   relayerApiKey: 'your-api-key',
  * });
  * ```
@@ -2322,6 +2332,236 @@ declare function createMainnetSDK(chain?: ChainName, config?: Omit<SimpleSDKConf
  */
 declare function createSessionSDK(chain?: ChainName, config?: SimpleSDKConfig): VeridexSDK;
 
+/**
+ * Veridex Protocol SDK - Cross-Origin Authentication
+ *
+ * Enables passkey sharing across different domains using WebAuthn Related Origin Requests.
+ *
+ * There are two approaches for cross-domain passkey usage:
+ *
+ * 1. **Related Origin Requests (Recommended)** - W3C Standard
+ *    - Host a `.well-known/webauthn` file at veridex.network
+ *    - Third-party apps use rpId: 'veridex.network' directly
+ *    - Requires browser support for Related Origin Requests
+ *    - No popup needed, seamless UX
+ *
+ * 2. **Auth Portal Flow (Fallback)** - Popup/Redirect Pattern
+ *    - User is redirected to auth.veridex.network
+ *    - Signs with their passkey at veridex.network
+ *    - Returns a session token to the third-party app
+ *    - Works on all browsers, but requires popup/redirect
+ *
+ * @example Related Origins (Recommended)
+ * ```typescript
+ * import { createCrossOriginAuth } from '@veridex/sdk';
+ *
+ * const auth = createCrossOriginAuth();
+ *
+ * // Check if browser supports Related Origin Requests
+ * if (await auth.supportsRelatedOrigins()) {
+ *   // Direct passkey usage with veridex.network rpId
+ *   const credential = await auth.authenticate();
+ * } else {
+ *   // Fallback to Auth Portal
+ *   const session = await auth.authenticateViaPortal();
+ * }
+ * ```
+ *
+ * @example Auth Portal Flow
+ * ```typescript
+ * const auth = createCrossOriginAuth({
+ *   authPortalUrl: 'https://auth.veridex.network',
+ *   mode: 'popup', // or 'redirect'
+ * });
+ *
+ * const session = await auth.connectWithVeridex();
+ * // session contains: { address, sessionKey, expiresAt }
+ * ```
+ */
+
+/** Default auth portal URL */
+declare const DEFAULT_AUTH_PORTAL_URL = "https://auth.veridex.network";
+/** Default relayer API URL for server-side session tokens */
+declare const DEFAULT_RELAYER_URL = "https://amused-kameko-veridex-demo-37453117.koyeb.app/api/v1";
+/** Message types for postMessage communication */
+declare const AUTH_MESSAGE_TYPES: {
+    readonly AUTH_REQUEST: "VERIDEX_AUTH_REQUEST";
+    readonly AUTH_RESPONSE: "VERIDEX_AUTH_RESPONSE";
+    readonly AUTH_ERROR: "VERIDEX_AUTH_ERROR";
+};
+interface CrossOriginAuthConfig {
+    /** The Veridex RP ID (defaults to veridex.network) */
+    rpId?: string;
+    /** Auth portal URL for popup/redirect flow */
+    authPortalUrl?: string;
+    /** Relayer API URL for server-side session tokens */
+    relayerUrl?: string;
+    /** Authentication mode: popup or redirect */
+    mode?: 'popup' | 'redirect';
+    /** Popup window features */
+    popupFeatures?: string;
+    /** Timeout for auth operations (ms) */
+    timeout?: number;
+    /** Callback URL for redirect mode */
+    redirectUri?: string;
+}
+interface CrossOriginSession {
+    /** User's vault address */
+    address: string;
+    /** Session key public key (for signing transactions) */
+    sessionPublicKey: string;
+    /** Session key (encrypted, stored on client) */
+    encryptedSessionKey?: string;
+    /** When the session expires */
+    expiresAt: number;
+    /** Proof of passkey ownership */
+    signature: WebAuthnSignature;
+    /** The credential used */
+    credential: PasskeyCredential$1;
+    /** Server-validated session token ID (from relayer) */
+    serverSessionId?: string;
+}
+/** Server-side session token returned by the relayer */
+interface ServerSessionToken {
+    id: string;
+    keyHash: string;
+    appOrigin: string;
+    permissions: string[];
+    expiresAt: number;
+    createdAt: number;
+}
+interface AuthPortalMessage {
+    type: typeof AUTH_MESSAGE_TYPES[keyof typeof AUTH_MESSAGE_TYPES];
+    payload: CrossOriginSession | {
+        error: string;
+        code: string;
+    };
+    origin: string;
+}
+/**
+ * Manages cross-origin passkey authentication for third-party apps.
+ *
+ * Third-party developers can use this to enable Veridex passkey authentication
+ * in their own applications without users having to create new passkeys.
+ */
+declare class CrossOriginAuth {
+    private config;
+    private passkeyManager;
+    constructor(config?: CrossOriginAuthConfig);
+    /**
+     * Check if the browser supports Related Origin Requests.
+     * This is a WebAuthn Level 3 feature that allows using passkeys across different domains.
+     */
+    supportsRelatedOrigins(): Promise<boolean>;
+    /**
+     * Check if WebAuthn is supported at all.
+     */
+    isSupported(): boolean;
+    /**
+     * Authenticate using Related Origin Requests.
+     * This allows using a passkey registered at veridex.network from any origin
+     * listed in the /.well-known/webauthn file.
+     *
+     * @throws If browser doesn't support Related Origin Requests
+     * @throws If the current origin isn't listed in veridex.network's well-known file
+     */
+    authenticate(challenge?: Uint8Array): Promise<{
+        credential: PasskeyCredential$1;
+        signature: WebAuthnSignature;
+    }>;
+    /**
+     * Register a new passkey with veridex.network as the RP.
+     * This should only be called from veridex.network origins.
+     */
+    register(username: string, displayName: string): Promise<PasskeyCredential$1>;
+    /**
+     * Authenticate via the Veridex Auth Portal.
+     * Opens a popup or redirects to auth.veridex.network where the user
+     * signs with their passkey, then returns a session to the calling app.
+     */
+    connectWithVeridex(): Promise<CrossOriginSession>;
+    /**
+     * Popup-based authentication flow.
+     */
+    private authenticateViaPopup;
+    /**
+     * Redirect-based authentication flow.
+     * Stores state in sessionStorage and redirects to auth portal.
+     */
+    private initiateRedirectAuth;
+    /**
+     * Complete redirect-based authentication.
+     * Call this on your callback page to extract the session from URL params.
+     */
+    completeRedirectAuth(): CrossOriginSession | null;
+    /**
+     * Generate a random state string for CSRF protection.
+     */
+    private generateState;
+    /**
+     * Get the RP ID being used.
+     */
+    getRpId(): string;
+    /**
+     * Get the auth portal URL.
+     */
+    getAuthPortalUrl(): string;
+    /**
+     * Create a server-validated session token via the relayer.
+     * Call this after authenticating (via ROR or auth portal) to get a
+     * server-side session that the relayer can verify on subsequent requests.
+     */
+    createServerSession(session: CrossOriginSession, options?: {
+        permissions?: string[];
+        expiresInMs?: number;
+    }): Promise<ServerSessionToken>;
+    /**
+     * Validate an existing server session token.
+     * Returns the session details if valid, null if expired/revoked.
+     */
+    validateServerSession(sessionId: string): Promise<ServerSessionToken | null>;
+    /**
+     * Revoke a server session token.
+     */
+    revokeServerSession(sessionId: string): Promise<boolean>;
+    /**
+     * Full authentication flow: authenticate + create server session.
+     * Automatically detects ROR support and falls back to auth portal.
+     */
+    authenticateAndCreateSession(options?: {
+        permissions?: string[];
+        expiresInMs?: number;
+    }): Promise<{
+        session: CrossOriginSession;
+        serverSession: ServerSessionToken;
+    }>;
+}
+/**
+ * Create a CrossOriginAuth instance for third-party app integration.
+ *
+ * @example
+ * ```typescript
+ * const auth = createCrossOriginAuth();
+ *
+ * // Check for Related Origin support
+ * if (await auth.supportsRelatedOrigins()) {
+ *   const { credential, signature } = await auth.authenticate();
+ * } else {
+ *   const session = await auth.connectWithVeridex();
+ * }
+ * ```
+ */
+declare function createCrossOriginAuth(config?: CrossOriginAuthConfig): CrossOriginAuth;
+/**
+ * Helper for the auth portal page to send results back to the calling app.
+ * Only used on auth.veridex.network, not in third-party apps.
+ */
+declare function sendAuthResponse(session: CrossOriginSession, targetOrigin: string): void;
+/**
+ * Helper for the auth portal to send an error back to the calling app.
+ */
+declare function sendAuthError(error: string, code: string, targetOrigin: string): void;
+
 /**
  * Veridex Protocol SDK - Chain Detector
  *
@@ -3121,4 +3361,4 @@ type AuthenticateAndPrepareResult = {
  */
 declare function authenticateAndPrepare(userParams: AuthenticateAndPrepareParams, apiKey: string): Promise<AuthenticateAndPrepareResult>;
 
-export { ARBITRUM_SEPOLIA_TOKENS, type ActionDetails, type ActionDisplayType, AddBackupKeyResult, type AuthenticateAndPrepareParams, type AuthenticateAndPrepareResult, AuthorizedKey, BASE_SEPOLIA_TOKENS, BalanceManager, type BalanceManagerConfig, type BridgeDetails, BridgeParams, BridgeResult, CHAIN_DISPLAY_INFO, CHAIN_NAMES, CHAIN_PRESETS, CONFIG_TYPE, ChainAddress, type ChainAddressConfig, ChainClient, ChainConfig, type ChainDeploymentConfig, ChainDetector, type ChainDetectorConfig, type ChainDisplay, type ChainName, type ChainTokenList, type ConfigDetails, type CrossChainConfig, CrossChainManager, type CrossChainProgress, type CrossChainProgressCallback, type CrossChainResult, type CrossChainStatus, DEFAULT_REFRESH_BUFFER, DEFAULT_SESSION_DURATION, type DailySpendingSummary, DispatchResult, type DurationDisplay, ERROR_MESSAGES, ERROR_RANGES, ETHEREUM_SEPOLIA_TOKENS, EVM_ZERO_ADDRESS, type ExecuteDetails, ExecuteParams, type FormattedSpendingLimits, GasSponsor, type GasSponsorConfig, IdentityState, IndexedDBSessionStorage, type KeyPair, LIMIT_PRESETS, type LimitCheckResult, type LimitPreset, type LimitViolationSuggestion, type LimitViolationType, LocalStorageSessionStorage, MAX_SESSION_DURATION, MIN_SESSION_DURATION, type MultiChainVaultResult, NATIVE_TOKEN_ADDRESS, type NativeBalanceCapable, type NetworkType, OPTIMISM_SEPOLIA_TOKENS, PasskeyCredential, PasskeyManager, type PortfolioBalance, PreparedBridge, PreparedTransfer, ReceiveAddress, type RecipientDisplay, type RelayFeeQuote, type RelayRequest, type RelayRoute, type RelayStatus, RelayerClient, type RelayerClientConfig, type RelayerInfo, RemoveKeyResult, type RiskLevel, type RiskWarning, type RiskWarningType, SessionStorage, type SetDailyLimitParams, type SetTransactionLimitParams, type SimpleSDKConfig, type SessionConfig as SimpleSessionConfig, type SpendingLimitChangedEvent, type SpendingLimitConfig, type SpendingLimitEventCallback, type SpendingLimits, SpendingLimitsManager, type SpendingLimitsManagerConfig, type SpendingTransaction, type SponsoredVaultResult, type SponsorshipSource, type SubmitActionResult, type SubmitQueryRequest, type SubmitQueryResult, type SubmitSignedActionRequest, TOKEN_REGISTRY, type TokenBalance, type TokenDisplay, type TokenInfo$1 as TokenInfo, type TrackerConfig, type TransactionAuditEntry, type TransactionCallback, TransactionParser, type TransactionParserConfig, type TransactionState, type TransactionStatus, type TransactionSummary, TransactionTracker, type TransferDetails, TransferParams, TransferResult, UnifiedIdentity, VAA, VERIDEX_ERRORS, VaultCreationResult, VaultInfo, VeridexConfig, type VeridexErrorCode, VeridexPayload, VeridexSDK, WalletManager, WalletManagerConfig, authenticateAndPrepare, calculatePercentage, computeSessionKeyHash, createAuditEntry, createChainDetector, createGasSponsor, createHubSDK, createMainnetSDK, createRelayerClient, createSDK, createSessionSDK, createSessionStorage, createSpendingLimitsManager, createTestnetSDK, createTransactionParser, crossChainManager, decrypt, VeridexSDK as default, deriveEncryptionKey, encrypt, formatDuration, formatLargeAmount, formatTransactionState, generateSecp256k1KeyPair, getAllTokens, getChainConfig, getChainDisplay, getChainName, getChainPreset, getConfigTypeName, getDefaultHub, getErrorCategory, getErrorMessage, getExplorerUrl, getHubChains, getSuggestedAction, getSupportedChainIds, getSupportedChains, getTokenByAddress, getTokenBySymbol, getTokenList, hashAction, isAbiError, isChainSupported, isCoreError, isNativeToken, isQueryError, isQueryExecutionError, isQueryParsingError, isRetryableError, logTransactionSummary, parseVeridexError, signWithSessionKey, validateSessionConfig, verifySessionSignature };
+export { ARBITRUM_SEPOLIA_TOKENS, AUTH_MESSAGE_TYPES, type ActionDetails, type ActionDisplayType, AddBackupKeyResult, type AuthPortalMessage, type AuthenticateAndPrepareParams, type AuthenticateAndPrepareResult, AuthorizedKey, BASE_SEPOLIA_TOKENS, BalanceManager, type BalanceManagerConfig, type BridgeDetails, BridgeParams, BridgeResult, CHAIN_DISPLAY_INFO, CHAIN_NAMES, CHAIN_PRESETS, CONFIG_TYPE, ChainAddress, type ChainAddressConfig, ChainClient, ChainConfig, type ChainDeploymentConfig, ChainDetector, type ChainDetectorConfig, type ChainDisplay, type ChainName, type ChainTokenList, type ConfigDetails, type CrossChainConfig, CrossChainManager, type CrossChainProgress, type CrossChainProgressCallback, type CrossChainResult, type CrossChainStatus, CrossOriginAuth, type CrossOriginAuthConfig, type CrossOriginSession, DEFAULT_AUTH_PORTAL_URL, DEFAULT_REFRESH_BUFFER, DEFAULT_RELAYER_URL, DEFAULT_SESSION_DURATION, type DailySpendingSummary, DispatchResult, type DurationDisplay, ERROR_MESSAGES, ERROR_RANGES, ETHEREUM_SEPOLIA_TOKENS, EVM_ZERO_ADDRESS, type ExecuteDetails, ExecuteParams, type FormattedSpendingLimits, GasSponsor, type GasSponsorConfig, IdentityState, IndexedDBSessionStorage, type KeyPair, LIMIT_PRESETS, type LimitCheckResult, type LimitPreset, type LimitViolationSuggestion, type LimitViolationType, LocalStorageSessionStorage, MAX_SESSION_DURATION, MIN_SESSION_DURATION, type MultiChainVaultResult, NATIVE_TOKEN_ADDRESS, type NativeBalanceCapable, type NetworkType, OPTIMISM_SEPOLIA_TOKENS, PasskeyCredential$1 as PasskeyCredential, PasskeyManager, type PortfolioBalance, PreparedBridge, PreparedTransfer, ReceiveAddress, type RecipientDisplay, type RelayFeeQuote, type RelayRequest, type RelayRoute, type RelayStatus, RelayerClient, type RelayerClientConfig, type RelayerInfo, RemoveKeyResult, type RiskLevel, type RiskWarning, type RiskWarningType, type ServerSessionToken, SessionStorage, type SetDailyLimitParams, type SetTransactionLimitParams, type SimpleSDKConfig, type SessionConfig as SimpleSessionConfig, type SpendingLimitChangedEvent, type SpendingLimitConfig, type SpendingLimitEventCallback, type SpendingLimits, SpendingLimitsManager, type SpendingLimitsManagerConfig, type SpendingTransaction, type SponsoredVaultResult, type SponsorshipSource, type SubmitActionResult, type SubmitQueryRequest, type SubmitQueryResult, type SubmitSignedActionRequest, TOKEN_REGISTRY, type TokenBalance, type TokenDisplay, type TokenInfo$1 as TokenInfo, type TrackerConfig, type TransactionAuditEntry, type TransactionCallback, TransactionParser, type TransactionParserConfig, type TransactionState, type TransactionStatus, type TransactionSummary, TransactionTracker, type TransferDetails, TransferParams, TransferResult, UnifiedIdentity, VAA, VERIDEX_ERRORS, VaultCreationResult, VaultInfo, VeridexConfig, type VeridexErrorCode, VeridexPayload, VeridexSDK, WalletManager, WalletManagerConfig, WebAuthnSignature, authenticateAndPrepare, calculatePercentage, computeSessionKeyHash, createAuditEntry, createChainDetector, createCrossOriginAuth, createGasSponsor, createHubSDK, createMainnetSDK, createRelayerClient, createSDK, createSessionSDK, createSessionStorage, createSpendingLimitsManager, createTestnetSDK, createTransactionParser, crossChainManager, decrypt, VeridexSDK as default, deriveEncryptionKey, encrypt, formatDuration, formatLargeAmount, formatTransactionState, generateSecp256k1KeyPair, getAllTokens, getChainConfig, getChainDisplay, getChainName, getChainPreset, getConfigTypeName, getDefaultHub, getErrorCategory, getErrorMessage, getExplorerUrl, getHubChains, getSuggestedAction, getSupportedChainIds, getSupportedChains, getTokenByAddress, getTokenBySymbol, getTokenList, hashAction, isAbiError, isChainSupported, isCoreError, isNativeToken, isQueryError, isQueryExecutionError, isQueryParsingError, isRetryableError, logTransactionSummary, parseVeridexError, sendAuthError, sendAuthResponse, signWithSessionKey, validateSessionConfig, verifySessionSignature };