@vultisig/cli 0.4.0 → 0.5.0

package/CHANGELOG.md

@@ -1,5 +1,36 @@
 # @vultisig/cli
 
+## 0.5.0
+
+### Minor Changes
+
+- [#97](https://github.com/vultisig/vultisig-sdk/pull/97) [`cd57d64`](https://github.com/vultisig/vultisig-sdk/commit/cd57d6482e08bd6172550ec4eea0e0233abd7f76) Thanks [@bornslippynuxx](https://github.com/bornslippynuxx)! - Add max send/swap support across SDK, CLI, and example apps
+  - Add `vault.getMaxSendAmount()` returning `{ balance, fee, maxSendable }` for fee-accurate max sends
+  - Add `vault.estimateSendFee()` for gas estimation without max calculation
+  - Enrich `getSwapQuote()` with `balance` and `maxSwapable` fields
+  - CLI: Add `--max` flag to `send`, `swap`, and `swap-quote` commands
+  - Browser/Electron examples: Add "Max" button to Send and Swap screens
+  - Fix native token ticker resolution in example swap UI (was using chain name instead of ticker)
+
+- [#97](https://github.com/vultisig/vultisig-sdk/pull/97) [`75f441c`](https://github.com/vultisig/vultisig-sdk/commit/75f441cdf711e6ba04eed412dcf34002c5705144) Thanks [@bornslippynuxx](https://github.com/bornslippynuxx)! - Add Rujira DEX integration with FIN order book swaps, secured asset deposits/withdrawals, and CLI commands. New package: @vultisig/rujira for THORChain DEX operations (includes asset registry).
+
+### Patch Changes
+
+- [#97](https://github.com/vultisig/vultisig-sdk/pull/97) [`e172aff`](https://github.com/vultisig/vultisig-sdk/commit/e172aff35aff86d182646a521dc1e3ac9e381f60) Thanks [@bornslippynuxx](https://github.com/bornslippynuxx)! - fix: address PR review bugs and safety issues
+  - Fix missing ChromeExtensionPolyfills import causing build failure
+  - Fix floating-point precision loss in CLI amount parsing for high-decimal tokens
+  - Fix BigInt crash on non-integer amount strings in swap validation
+  - Fix Number exponentiation precision loss in VaultSend formatAmount
+  - Use VaultError with error codes in chain validation instead of generic Error
+  - Add chainId mismatch validation in signAndBroadcast
+  - Add hex string input validation in hexDecode
+  - Guard against empty accounts array in client getAddress
+  - Use stricter bech32 THORChain address validator in deposit module
+
+- Updated dependencies [[`bd543af`](https://github.com/vultisig/vultisig-sdk/commit/bd543af73a50a4ce431f38e3ed77511c4ef65ea7), [`74516fa`](https://github.com/vultisig/vultisig-sdk/commit/74516fae8dabd844c9e0793b932f6284ce9aa009), [`7ceab79`](https://github.com/vultisig/vultisig-sdk/commit/7ceab79e53986bfefa3f5d4cb5d25855572fbd3f), [`cd57d64`](https://github.com/vultisig/vultisig-sdk/commit/cd57d6482e08bd6172550ec4eea0e0233abd7f76), [`e172aff`](https://github.com/vultisig/vultisig-sdk/commit/e172aff35aff86d182646a521dc1e3ac9e381f60), [`75f441c`](https://github.com/vultisig/vultisig-sdk/commit/75f441cdf711e6ba04eed412dcf34002c5705144), [`ea1e8d5`](https://github.com/vultisig/vultisig-sdk/commit/ea1e8d5dd14a7273021577471e44719609f983ca), [`3f5fdcb`](https://github.com/vultisig/vultisig-sdk/commit/3f5fdcbfbe23aa287dfbcb38e9be6c904af9caf0), [`6c5c77c`](https://github.com/vultisig/vultisig-sdk/commit/6c5c77ceb49620f711285effee98b052e6aab1f8)]:
+  - @vultisig/sdk@0.5.0
+  - @vultisig/rujira@1.0.0
+
 ## 0.4.0
 
 ### Minor Changes

package/dist/index.js

@@ -1042,14 +1042,14 @@ var require_main = __commonJS({
           cb = opts;
           opts = {};
         }
-        var qrcode4 = new QRCode(-1, this.error);
-        qrcode4.addData(input);
-        qrcode4.make();
+        var qrcode5 = new QRCode(-1, this.error);
+        qrcode5.addData(input);
+        qrcode5.make();
         var output = "";
         if (opts && opts.small) {
           var BLACK = true, WHITE = false;
-          var moduleCount = qrcode4.getModuleCount();
-          var moduleData = qrcode4.modules.slice();
+          var moduleCount = qrcode5.getModuleCount();
+          var moduleData = qrcode5.modules.slice();
           var oddRow = moduleCount % 2 === 1;
           if (oddRow) {
             moduleData.push(fill(moduleCount, WHITE));
@@ -1082,9 +1082,9 @@ var require_main = __commonJS({
             output += borderBottom;
           }
         } else {
-          var border = repeat(white).times(qrcode4.getModuleCount() + 3);
+          var border = repeat(white).times(qrcode5.getModuleCount() + 3);
           output += border + "\n";
-          qrcode4.modules.forEach(function(row2) {
+          qrcode5.modules.forEach(function(row2) {
             output += white;
             output += row2.map(toCell).join("");
             output += white + "\n";
@@ -1103,10 +1103,10 @@ var require_main = __commonJS({
 
 // src/index.ts
 import "dotenv/config";
-import { parseKeygenQR, Vultisig as Vultisig4 } from "@vultisig/sdk";
+import { promises as fs3 } from "node:fs";
+import { parseKeygenQR, Vultisig as Vultisig5 } from "@vultisig/sdk";
 import chalk13 from "chalk";
 import { program } from "commander";
-import { promises as fs3 } from "fs";
 import inquirer8 from "inquirer";
 
 // src/core/command-context.ts
@@ -1446,26 +1446,25 @@ import { fiatCurrencies, fiatCurrencyNameRecord as fiatCurrencyNameRecord2 } fro
 import { fiatCurrencyNameRecord, Vultisig } from "@vultisig/sdk";
 import chalk2 from "chalk";
 import inquirer2 from "inquirer";
-function displayBalance(chain, balance, raw = false) {
+function displayBalance(chain, balance, _raw = false) {
   printResult(chalk2.cyan(`
 ${chain} Balance:`));
-  const displayAmount = raw ? balance.amount : formatBalanceAmount(balance.amount, balance.decimals);
-  printResult(`  Amount: ${displayAmount} ${balance.symbol}`);
+  printResult(`  Amount: ${balance.formattedAmount} ${balance.symbol}`);
   if (balance.fiatValue && balance.fiatCurrency) {
     printResult(`  Value:  ${balance.fiatValue.toFixed(2)} ${balance.fiatCurrency}`);
   }
 }
-function displayBalancesTable(balances, raw = false) {
+function displayBalancesTable(balances, _raw = false) {
   printResult(chalk2.cyan("\nPortfolio Balances:\n"));
   const tableData = Object.entries(balances).map(([chain, balance]) => ({
     Chain: chain,
-    Amount: raw ? balance.amount : formatBalanceAmount(balance.amount, balance.decimals),
+    Amount: balance.formattedAmount,
     Symbol: balance.symbol,
     Value: balance.fiatValue && balance.fiatCurrency ? `${balance.fiatValue.toFixed(2)} ${balance.fiatCurrency}` : "N/A"
   }));
   printTable(tableData);
 }
-function displayPortfolio(portfolio, currency, raw = false) {
+function displayPortfolio(portfolio, currency, _raw = false) {
   const currencyName = fiatCurrencyNameRecord[currency];
   printResult(chalk2.cyan("\n+----------------------------------------+"));
   printResult(chalk2.cyan(`|       Portfolio Total Value (${currencyName})       |`));
@@ -1476,7 +1475,7 @@ function displayPortfolio(portfolio, currency, raw = false) {
   printResult(chalk2.bold("Chain Breakdown:\n"));
   const table = portfolio.chainBalances.map(({ chain, balance, value }) => ({
     Chain: chain,
-    Amount: raw ? balance.amount : formatBalanceAmount(balance.amount, balance.decimals),
+    Amount: balance.formattedAmount,
     Symbol: balance.symbol,
     Value: value ? `${value.amount} ${value.currency.toUpperCase()}` : "N/A"
   }));
@@ -1572,7 +1571,7 @@ async function confirmTransaction() {
 function setupVaultEvents(vault) {
   vault.on("balanceUpdated", ({ chain, balance, tokenId }) => {
     const asset = tokenId ? `${balance.symbol} token` : balance.symbol;
-    info(chalk2.blue(`i Balance updated for ${chain} (${asset}): ${balance.amount}`));
+    info(chalk2.blue(`i Balance updated for ${chain} (${asset}): ${balance.formattedAmount}`));
   });
   vault.on("transactionBroadcast", ({ chain, txHash }) => {
     info(chalk2.green(`+ Transaction broadcast on ${chain}`));
@@ -1612,14 +1611,6 @@ function formatBigintAmount(amount, decimals) {
   const trimmed = fractionStr.replace(/0+$/, "");
   return `${whole}.${trimmed}`;
 }
-function formatBalanceAmount(amount, decimals) {
-  if (!amount || amount === "0") return "0";
-  try {
-    return formatBigintAmount(BigInt(amount), decimals);
-  } catch {
-    return amount;
-  }
-}
 function displaySwapPreview(quote, fromAmount, fromSymbol, toSymbol, options) {
   const estimatedOutputFormatted = formatBigintAmount(quote.estimatedOutput, options.toDecimals);
   printResult(chalk2.cyan("\nSwap Preview:"));
@@ -1923,7 +1914,8 @@ async function executeSend(ctx2, params) {
   if (!Object.values(Chain).includes(params.chain)) {
     throw new Error(`Invalid chain: ${params.chain}`);
   }
-  if (isNaN(parseFloat(params.amount)) || parseFloat(params.amount) <= 0) {
+  const isMax = params.amount === "max";
+  if (!isMax && (isNaN(parseFloat(params.amount)) || parseFloat(params.amount) <= 0)) {
     throw new Error("Invalid amount");
   }
   return sendTransaction(vault, params);
@@ -1939,7 +1931,25 @@ async function sendTransaction(vault, params) {
     ticker: balance.symbol,
     id: params.tokenId
   };
-  const amount = BigInt(Math.floor(parseFloat(params.amount) * Math.pow(10, balance.decimals)));
+  const isMax = params.amount === "max";
+  let amount;
+  let displayAmount;
+  if (isMax) {
+    const maxInfo = await vault.getMaxSendAmount({ coin, receiver: params.to, memo: params.memo });
+    amount = maxInfo.maxSendable;
+    if (amount === 0n) {
+      throw new Error("Insufficient balance to cover network fees");
+    }
+    displayAmount = formatBigintAmount(amount, balance.decimals);
+  } else {
+    const [whole, frac = ""] = params.amount.split(".");
+    if (frac.length > balance.decimals) {
+      throw new Error(`Amount has more than ${balance.decimals} decimal places`);
+    }
+    const paddedFrac = frac.padEnd(balance.decimals, "0");
+    amount = BigInt(whole || "0") * 10n ** BigInt(balance.decimals) + BigInt(paddedFrac || "0");
+    displayAmount = params.amount;
+  }
   const payload = await vault.prepareSendTx({
     coin,
     receiver: params.to,
@@ -1957,7 +1967,7 @@ async function sendTransaction(vault, params) {
     displayTransactionPreview(
       payload.coin.address,
       params.to,
-      params.amount,
+      displayAmount,
       payload.coin.ticker,
       params.chain,
       params.memo,
@@ -2042,12 +2052,175 @@ Or use this URL: ${qrPayload}
   }
 }
 
-// src/commands/sign.ts
+// src/commands/execute.ts
 var import_qrcode_terminal2 = __toESM(require_main(), 1);
-import { Chain as Chain2 } from "@vultisig/sdk";
+import { Vultisig as Vultisig3 } from "@vultisig/sdk";
+var COSMOS_CHAIN_CONFIG = {
+  THORChain: {
+    chainId: "thorchain-1",
+    prefix: "thor",
+    denom: "rune",
+    gasLimit: "500000"
+  },
+  MayaChain: {
+    chainId: "mayachain-mainnet-v1",
+    prefix: "maya",
+    denom: "cacao",
+    gasLimit: "500000"
+  }
+};
+function parseFunds(fundsStr) {
+  if (!fundsStr) return [];
+  return fundsStr.split(",").map((fund) => {
+    const [denom, amount] = fund.trim().split(":");
+    if (!denom || !amount) {
+      throw new Error(`Invalid funds format: "${fund}". Expected "denom:amount"`);
+    }
+    return { denom: denom.toLowerCase(), amount };
+  });
+}
+async function executeExecute(ctx2, params) {
+  const vault = await ctx2.ensureActiveVault();
+  const chainConfig = COSMOS_CHAIN_CONFIG[params.chain];
+  if (!chainConfig) {
+    throw new Error(`Chain ${params.chain} does not support CosmWasm execute. Supported chains: ${Object.keys(COSMOS_CHAIN_CONFIG).join(", ")}`);
+  }
+  let msg;
+  try {
+    msg = JSON.parse(params.msg);
+  } catch {
+    throw new Error(`Invalid JSON message: ${params.msg}`);
+  }
+  const funds = parseFunds(params.funds);
+  return executeContractTransaction(vault, params, chainConfig, msg, funds);
+}
+async function executeContractTransaction(vault, params, chainConfig, msg, funds) {
+  const prepareSpinner = createSpinner("Preparing contract execution...");
+  const address = await vault.address(params.chain);
+  prepareSpinner.succeed("Transaction prepared");
+  if (!isJsonOutput()) {
+    info("\n\u{1F4DD} Contract Execution Preview");
+    info("\u2501".repeat(50));
+    info(`Chain:      ${params.chain}`);
+    info(`From:       ${address}`);
+    info(`Contract:   ${params.contract}`);
+    info(`Message:    ${JSON.stringify(msg, null, 2).substring(0, 200)}${JSON.stringify(msg).length > 200 ? "..." : ""}`);
+    if (funds.length > 0) {
+      info(`Funds:      ${funds.map((f) => `${f.amount} ${f.denom}`).join(", ")}`);
+    }
+    if (params.memo) {
+      info(`Memo:       ${params.memo}`);
+    }
+    info("\u2501".repeat(50));
+  }
+  if (!params.yes && !isJsonOutput()) {
+    const confirmed = await confirmTransaction();
+    if (!confirmed) {
+      warn("Transaction cancelled");
+      throw new Error("Transaction cancelled by user");
+    }
+  }
+  await ensureVaultUnlocked(vault, params.password);
+  const isSecureVault = vault.type === "secure";
+  const signSpinner = createSpinner(isSecureVault ? "Preparing secure signing session..." : "Signing transaction...");
+  vault.on("signingProgress", ({ step }) => {
+    signSpinner.text = `${step.message} (${step.progress}%)`;
+  });
+  if (isSecureVault) {
+    vault.on("qrCodeReady", ({ qrPayload }) => {
+      if (isJsonOutput()) {
+        printResult(qrPayload);
+      } else if (isSilent()) {
+        printResult(`QR Payload: ${qrPayload}`);
+      } else {
+        signSpinner.stop();
+        info("\nScan this QR code with your Vultisig mobile app to sign:");
+        import_qrcode_terminal2.default.generate(qrPayload, { small: true });
+        info(`
+Or use this URL: ${qrPayload}
+`);
+        signSpinner.start("Waiting for devices to join signing session...");
+      }
+    });
+    vault.on("deviceJoined", ({ deviceId, totalJoined, required }) => {
+      if (!isSilent()) {
+        signSpinner.text = `Device joined: ${totalJoined}/${required} (${deviceId})`;
+      } else if (!isJsonOutput()) {
+        printResult(`Device joined: ${totalJoined}/${required}`);
+      }
+    });
+  }
+  try {
+    const coin = {
+      chain: params.chain,
+      address,
+      decimals: 8,
+      // THORChain uses 8 decimals
+      ticker: chainConfig.denom.toUpperCase()
+    };
+    const executeContractMsg = {
+      type: "wasm/MsgExecuteContract",
+      value: JSON.stringify({
+        sender: address,
+        contract: params.contract,
+        msg,
+        funds: funds.map((f) => ({ denom: f.denom, amount: f.amount }))
+      })
+    };
+    const fee = {
+      amount: [{ denom: chainConfig.denom, amount: "0" }],
+      gas: chainConfig.gasLimit
+    };
+    const keysignPayload = await vault.prepareSignAminoTx({
+      chain: params.chain,
+      coin,
+      msgs: [executeContractMsg],
+      fee,
+      memo: params.memo
+    });
+    const messageHashes = await vault.extractMessageHashes(keysignPayload);
+    const signature = await vault.sign(
+      {
+        transaction: keysignPayload,
+        chain: params.chain,
+        messageHashes
+      },
+      { signal: params.signal }
+    );
+    signSpinner.succeed("Transaction signed");
+    const broadcastSpinner = createSpinner("Broadcasting transaction...");
+    const txHash = await vault.broadcastTx({
+      chain: params.chain,
+      keysignPayload,
+      signature
+    });
+    broadcastSpinner.succeed(`Transaction broadcast: ${txHash}`);
+    const result = {
+      txHash,
+      chain: params.chain,
+      explorerUrl: Vultisig3.getTxExplorerUrl(params.chain, txHash)
+    };
+    if (isJsonOutput()) {
+      outputJson(result);
+    } else {
+      displayTransactionResult(params.chain, txHash);
+    }
+    return result;
+  } finally {
+    vault.removeAllListeners("signingProgress");
+    if (isSecureVault) {
+      vault.removeAllListeners("qrCodeReady");
+      vault.removeAllListeners("deviceJoined");
+    }
+  }
+}
+
+// src/commands/sign.ts
+var import_qrcode_terminal3 = __toESM(require_main(), 1);
+import { Chain as Chain3 } from "@vultisig/sdk";
 async function executeSignBytes(ctx2, params) {
   const vault = await ctx2.ensureActiveVault();
-  if (!Object.values(Chain2).includes(params.chain)) {
+  if (!Object.values(Chain3).includes(params.chain)) {
     throw new Error(`Invalid chain: ${params.chain}`);
   }
   return signBytes(vault, params);
@@ -2069,7 +2242,7 @@ async function signBytes(vault, params) {
       } else {
         signSpinner.stop();
         info("\nScan this QR code with your Vultisig mobile app to sign:");
-        import_qrcode_terminal2.default.generate(qrPayload, { small: true });
+        import_qrcode_terminal3.default.generate(qrPayload, { small: true });
         info(`
 Or use this URL: ${qrPayload}
 `);
@@ -2123,10 +2296,10 @@ Or use this URL: ${qrPayload}
 }
 
 // src/commands/broadcast.ts
-import { Chain as Chain3, Vultisig as Vultisig3 } from "@vultisig/sdk";
+import { Chain as Chain4, Vultisig as Vultisig4 } from "@vultisig/sdk";
 async function executeBroadcast(ctx2, params) {
   const vault = await ctx2.ensureActiveVault();
-  if (!Object.values(Chain3).includes(params.chain)) {
+  if (!Object.values(Chain4).includes(params.chain)) {
     throw new Error(`Invalid chain: ${params.chain}`);
   }
   const broadcastSpinner = createSpinner("Broadcasting transaction...");
@@ -2139,7 +2312,7 @@ async function executeBroadcast(ctx2, params) {
     const result = {
       txHash,
       chain: params.chain,
-      explorerUrl: Vultisig3.getTxExplorerUrl(params.chain, txHash)
+      explorerUrl: Vultisig4.getTxExplorerUrl(params.chain, txHash)
     };
     if (isJsonOutput()) {
       outputJson(result);
@@ -2155,7 +2328,7 @@ async function executeBroadcast(ctx2, params) {
 }
 
 // src/commands/vault-management.ts
-var import_qrcode_terminal3 = __toESM(require_main(), 1);
+var import_qrcode_terminal4 = __toESM(require_main(), 1);
 import chalk5 from "chalk";
 import { promises as fs } from "fs";
 import inquirer4 from "inquirer";
@@ -2276,7 +2449,7 @@ async function executeCreateSecure(ctx2, options) {
           } else {
             spinner.stop();
             info("\nScan this QR code with your Vultisig mobile app:");
-            import_qrcode_terminal3.default.generate(qrPayload, { small: true });
+            import_qrcode_terminal4.default.generate(qrPayload, { small: true });
             info(`
 Or use this URL: ${qrPayload}
 `);
@@ -2733,7 +2906,7 @@ async function executeCreateFromSeedphraseSecure(ctx2, options) {
           } else {
             importSpinner.stop();
             info("\nScan this QR code with your Vultisig mobile app:");
-            import_qrcode_terminal3.default.generate(qrPayload, { small: true });
+            import_qrcode_terminal4.default.generate(qrPayload, { small: true });
             info(`
 Or use this URL: ${qrPayload}
 `);
@@ -2918,34 +3091,47 @@ async function executeSwapChains(ctx2) {
 }
 async function executeSwapQuote(ctx2, options) {
   const vault = await ctx2.ensureActiveVault();
-  if (isNaN(options.amount) || options.amount <= 0) {
+  const isMax = options.amount === "max";
+  if (!isMax && (isNaN(options.amount) || options.amount <= 0)) {
     throw new Error("Invalid amount");
   }
   const isSupported = await vault.isSwapSupported(options.fromChain, options.toChain);
   if (!isSupported) {
     throw new Error(`Swaps from ${options.fromChain} to ${options.toChain} are not supported`);
   }
+  let resolvedAmount;
+  if (isMax) {
+    const bal = await vault.balance(options.fromChain, options.fromToken);
+    resolvedAmount = parseFloat(bal.formattedAmount);
+    if (resolvedAmount <= 0) {
+      throw new Error("Zero balance \u2014 nothing to swap");
+    }
+  } else {
+    resolvedAmount = options.amount;
+  }
   const spinner = createSpinner("Getting swap quote...");
   const quote = await vault.getSwapQuote({
     fromCoin: { chain: options.fromChain, token: options.fromToken },
     toCoin: { chain: options.toChain, token: options.toToken },
-    amount: options.amount,
+    amount: resolvedAmount,
     fiatCurrency: "usd"
     // Request fiat conversion
   });
   spinner.succeed("Quote received");
+  const fromAmountDisplay = isMax ? `${formatBigintAmount(quote.maxSwapable, quote.fromCoin.decimals)} (max)` : String(resolvedAmount);
   if (isJsonOutput()) {
     outputJson({
       fromChain: options.fromChain,
       toChain: options.toChain,
-      amount: options.amount,
+      amount: resolvedAmount,
+      isMax,
       quote
     });
     return quote;
   }
   const feeBalance = await vault.balance(options.fromChain);
   const discountTier = await vault.getDiscountTier();
-  displaySwapPreview(quote, String(options.amount), quote.fromCoin.ticker, quote.toCoin.ticker, {
+  displaySwapPreview(quote, fromAmountDisplay, quote.fromCoin.ticker, quote.toCoin.ticker, {
     fromDecimals: quote.fromCoin.decimals,
     toDecimals: quote.toCoin.decimals,
     feeDecimals: feeBalance.decimals,
@@ -2957,26 +3143,38 @@ async function executeSwapQuote(ctx2, options) {
 }
 async function executeSwap(ctx2, options) {
   const vault = await ctx2.ensureActiveVault();
-  if (isNaN(options.amount) || options.amount <= 0) {
+  const isMax = options.amount === "max";
+  if (!isMax && (isNaN(options.amount) || options.amount <= 0)) {
     throw new Error("Invalid amount");
   }
   const isSupported = await vault.isSwapSupported(options.fromChain, options.toChain);
   if (!isSupported) {
     throw new Error(`Swaps from ${options.fromChain} to ${options.toChain} are not supported`);
   }
+  let resolvedAmount;
+  if (isMax) {
+    const bal = await vault.balance(options.fromChain, options.fromToken);
+    resolvedAmount = parseFloat(bal.formattedAmount);
+    if (resolvedAmount <= 0) {
+      throw new Error("Zero balance \u2014 nothing to swap");
+    }
+  } else {
+    resolvedAmount = options.amount;
+  }
   const quoteSpinner = createSpinner("Getting swap quote...");
   const quote = await vault.getSwapQuote({
     fromCoin: { chain: options.fromChain, token: options.fromToken },
     toCoin: { chain: options.toChain, token: options.toToken },
-    amount: options.amount,
+    amount: resolvedAmount,
     fiatCurrency: "usd"
     // Request fiat conversion
   });
   quoteSpinner.succeed("Quote received");
+  const fromAmountDisplay = isMax ? `${formatBigintAmount(quote.maxSwapable, quote.fromCoin.decimals)} (max)` : String(resolvedAmount);
   const feeBalance = await vault.balance(options.fromChain);
   const discountTier = await vault.getDiscountTier();
   if (!isJsonOutput()) {
-    displaySwapPreview(quote, String(options.amount), quote.fromCoin.ticker, quote.toCoin.ticker, {
+    displaySwapPreview(quote, fromAmountDisplay, quote.fromCoin.ticker, quote.toCoin.ticker, {
       fromDecimals: quote.fromCoin.decimals,
       toDecimals: quote.toCoin.decimals,
       feeDecimals: feeBalance.decimals,
@@ -2995,7 +3193,7 @@ async function executeSwap(ctx2, options) {
   const { keysignPayload, approvalPayload } = await vault.prepareSwapTx({
     fromCoin: { chain: options.fromChain, token: options.fromToken },
     toCoin: { chain: options.toChain, token: options.toToken },
-    amount: options.amount,
+    amount: resolvedAmount,
     swapQuote: quote,
     autoApprove: false
   });
@@ -3070,7 +3268,7 @@ async function executeSwap(ctx2, options) {
 }
 
 // src/commands/settings.ts
-import { Chain as Chain4, fiatCurrencies as fiatCurrencies2, fiatCurrencyNameRecord as fiatCurrencyNameRecord3 } from "@vultisig/sdk";
+import { Chain as Chain5, fiatCurrencies as fiatCurrencies2, fiatCurrencyNameRecord as fiatCurrencyNameRecord3 } from "@vultisig/sdk";
 import chalk6 from "chalk";
 import inquirer5 from "inquirer";
 async function executeCurrency(ctx2, newCurrency) {
@@ -3138,7 +3336,7 @@ async function executeAddressBook(ctx2, options = {}) {
         type: "list",
         name: "chain",
         message: "Select chain:",
-        choices: Object.values(Chain4)
+        choices: Object.values(Chain5)
       });
     }
     if (!address) {
@@ -3214,6 +3412,192 @@ Address Book${options.chain ? ` (${options.chain})` : ""}:
   return allEntries;
 }
 
+// src/commands/rujira.ts
+import { getRoutesSummary, listEasyRoutes, RujiraClient, VultisigRujiraProvider } from "@vultisig/rujira";
+async function createRujiraClient(ctx2, options = {}) {
+  const vault = await ctx2.ensureActiveVault();
+  const provider = new VultisigRujiraProvider(vault);
+  const client = new RujiraClient({
+    signer: provider,
+    rpcEndpoint: options.rpcEndpoint,
+    config: {
+      // Allow overriding rest endpoint via config (used for thornode calls)
+      ...options.restEndpoint ? { restEndpoint: options.restEndpoint } : {}
+    }
+  });
+  const spinner = createSpinner("Connecting to Rujira/THORChain...");
+  await client.connect();
+  spinner.succeed("Connected");
+  return client;
+}
+async function executeRujiraBalance(ctx2, options = {}) {
+  const vault = await ctx2.ensureActiveVault();
+  const thorAddress = await vault.address("THORChain");
+  const client = await createRujiraClient(ctx2, options);
+  const spinner = createSpinner("Loading THORChain balances...");
+  const balances = await client.deposit.getBalances(thorAddress);
+  spinner.succeed("Balances loaded");
+  const filtered = options.securedOnly ? balances.filter((b) => b.denom.includes("-") || b.denom.includes("/")) : balances;
+  if (isJsonOutput()) {
+    outputJson({ thorAddress, balances: filtered });
+    return;
+  }
+  info(`THORChain address: ${thorAddress}`);
+  if (!filtered.length) {
+    printResult("No balances found");
+    return;
+  }
+  printTable(
+    filtered.map((b) => ({
+      asset: b.asset,
+      denom: b.denom,
+      amount: b.formatted,
+      raw: b.amount
+    }))
+  );
+}
+async function executeRujiraRoutes() {
+  const routes = listEasyRoutes();
+  const summary = getRoutesSummary();
+  if (isJsonOutput()) {
+    outputJson({ routes, summary });
+    return;
+  }
+  printResult(summary);
+  printResult("");
+  printTable(
+    routes.map((r) => ({
+      name: r.name,
+      from: r.from,
+      to: r.to,
+      liquidity: r.liquidity,
+      description: r.description
+    }))
+  );
+}
+async function executeRujiraDeposit(ctx2, options = {}) {
+  const vault = await ctx2.ensureActiveVault();
+  const thorAddress = await vault.address("THORChain");
+  const client = await createRujiraClient(ctx2, options);
+  if (!options.asset) {
+    const spinner2 = createSpinner("Loading THORChain inbound addresses...");
+    const inbound = await client.deposit.getInboundAddresses();
+    spinner2.succeed("Inbound addresses loaded");
+    if (isJsonOutput()) {
+      outputJson({ thorAddress, inboundAddresses: inbound });
+      return;
+    }
+    info(`THORChain address: ${thorAddress}`);
+    printResult("Provide an L1 asset to get a chain-specific inbound address + memo.");
+    printResult("Example: vultisig rujira deposit --asset BTC.BTC --amount 100000");
+    printResult("");
+    printTable(
+      inbound.map((a) => ({
+        chain: a.chain,
+        address: a.address,
+        halted: a.halted,
+        globalTradingPaused: a.global_trading_paused,
+        chainTradingPaused: a.chain_trading_paused
+      }))
+    );
+    return;
+  }
+  const amount = options.amount ?? "1";
+  const spinner = createSpinner("Preparing deposit instructions...");
+  const prepared = await client.deposit.prepare({
+    fromAsset: options.asset,
+    amount,
+    thorAddress,
+    affiliate: options.affiliate,
+    affiliateBps: options.affiliateBps
+  });
+  spinner.succeed("Deposit prepared");
+  if (isJsonOutput()) {
+    outputJson({ thorAddress, deposit: prepared });
+    return;
+  }
+  info(`THORChain address: ${thorAddress}`);
+  printResult("Deposit instructions (send from L1):");
+  printResult(`  Chain:          ${prepared.chain}`);
+  printResult(`  Asset:          ${prepared.asset}`);
+  printResult(`  Inbound address:${prepared.inboundAddress}`);
+  printResult(`  Memo:           ${prepared.memo}`);
+  printResult(`  Min amount:     ${prepared.minimumAmount}`);
+  if (prepared.warning) {
+    warn(prepared.warning);
+  }
+}
+async function executeRujiraSwap(ctx2, options) {
+  const vault = await ctx2.ensureActiveVault();
+  await ensureVaultUnlocked(vault, options.password);
+  const client = await createRujiraClient(ctx2, options);
+  const destination = options.destination ?? await vault.address("THORChain");
+  const quoteSpinner = createSpinner("Getting FIN swap quote...");
+  const quote = await client.swap.getQuote({
+    fromAsset: options.fromAsset,
+    toAsset: options.toAsset,
+    amount: options.amount,
+    destination,
+    slippageBps: options.slippageBps
+  });
+  quoteSpinner.succeed("Quote received");
+  if (isJsonOutput()) {
+    const result2 = await client.swap.execute(quote, { slippageBps: options.slippageBps });
+    outputJson({ quote, result: result2 });
+    return;
+  }
+  printResult("FIN Swap Preview");
+  printResult(`  From:        ${options.fromAsset}`);
+  printResult(`  To:          ${options.toAsset}`);
+  printResult(`  Amount (in): ${options.amount}`);
+  printResult(`  Expected out:${quote.expectedOutput}`);
+  printResult(`  Min out:     ${quote.minimumOutput}`);
+  printResult(`  Contract:    ${quote.contractAddress}`);
+  if (quote.warning) {
+    warn(quote.warning);
+  }
+  if (!options.yes) {
+    warn("This command will execute a swap. Re-run with -y/--yes to skip this warning.");
+    throw new Error("Confirmation required (use --yes)");
+  }
+  const execSpinner = createSpinner("Executing FIN swap...");
+  const result = await client.swap.execute(quote, { slippageBps: options.slippageBps });
+  execSpinner.succeed("Swap submitted");
+  printResult(`Tx Hash: ${result.txHash}`);
+}
+async function executeRujiraWithdraw(ctx2, options) {
+  const vault = await ctx2.ensureActiveVault();
+  await ensureVaultUnlocked(vault, options.password);
+  const client = await createRujiraClient(ctx2, options);
+  const prepSpinner = createSpinner("Preparing withdrawal (MsgDeposit)...");
+  const prepared = await client.withdraw.prepare({
+    asset: options.asset,
+    amount: options.amount,
+    l1Address: options.l1Address,
+    maxFeeBps: options.maxFeeBps
+  });
+  prepSpinner.succeed("Withdrawal prepared");
+  if (isJsonOutput()) {
+    const result2 = await client.withdraw.execute(prepared);
+    outputJson({ prepared, result: result2 });
+    return;
+  }
+  printResult("Withdraw Preview");
+  printResult(`  Asset:       ${prepared.asset}`);
+  printResult(`  Amount:      ${prepared.amount}`);
+  printResult(`  Destination: ${prepared.destination}`);
+  printResult(`  Memo:        ${prepared.memo}`);
+  printResult(`  Est. fee:    ${prepared.estimatedFee}`);
+  if (!options.yes) {
+    warn("This command will broadcast a THORChain MsgDeposit withdrawal. Re-run with -y/--yes to proceed.");
+    throw new Error("Confirmation required (use --yes)");
+  }
+  const execSpinner = createSpinner("Broadcasting withdrawal...");
+  const result = await client.withdraw.execute(prepared);
+  execSpinner.succeed("Withdrawal submitted");
+  printResult(`Tx Hash: ${result.txHash}`);
+}
+
 // src/commands/discount.ts
 import {
   baseAffiliateBps,
@@ -3313,7 +3697,7 @@ function displayDiscountTier(tierInfo) {
 }
 
 // src/interactive/completer.ts
-import { Chain as Chain5 } from "@vultisig/sdk";
+import { Chain as Chain6 } from "@vultisig/sdk";
 import fs2 from "fs";
 import path2 from "path";
 var COMMANDS = [
@@ -3456,7 +3840,7 @@ function completeVaultName(ctx2, partial) {
   return [show, partial];
 }
 function completeChainName(partial) {
-  const allChains = Object.values(Chain5);
+  const allChains = Object.values(Chain6);
   const partialLower = partial.toLowerCase();
   const matches = allChains.filter((chain) => chain.toLowerCase().startsWith(partialLower));
   matches.sort();
@@ -3464,7 +3848,7 @@ function completeChainName(partial) {
   return [show, partial];
 }
 function findChainByName(name) {
-  const allChains = Object.values(Chain5);
+  const allChains = Object.values(Chain6);
   const nameLower = name.toLowerCase();
   const found = allChains.find((chain) => chain.toLowerCase() === nameLower);
   return found ? found : null;
@@ -4694,7 +5078,7 @@ var cachedVersion = null;
 function getVersion() {
   if (cachedVersion) return cachedVersion;
   if (true) {
-    cachedVersion = "0.4.0";
+    cachedVersion = "0.5.0";
     return cachedVersion;
   }
   try {
@@ -5168,7 +5552,7 @@ async function init(vaultOverride, unlockPassword) {
     if (unlockPassword && vaultSelector) {
       cachePassword(vaultSelector, unlockPassword);
     }
-    const sdk = new Vultisig4({
+    const sdk = new Vultisig5({
       onPasswordRequired: createPasswordCallback()
     });
     await sdk.initialize();
@@ -5370,15 +5754,17 @@ program.command("balance [chain]").description("Show balance for a chain or all
     });
   })
 );
-program.command("send <chain> <to> <amount>").description("Send tokens to an address").option("--token <tokenId>", "Token to send (default: native)").option("--memo <memo>", "Transaction memo").option("-y, --yes", "Skip confirmation prompt").option("--password <password>", "Vault password for signing").action(
+program.command("send <chain> <to> [amount]").description("Send tokens to an address").option("--max", "Send maximum amount (balance minus fees)").option("--token <tokenId>", "Token to send (default: native)").option("--memo <memo>", "Transaction memo").option("-y, --yes", "Skip confirmation prompt").option("--password <password>", "Vault password for signing").action(
   withExit(
     async (chainStr, to, amount, options) => {
+      if (!amount && !options.max) throw new Error("Provide an amount or use --max");
+      if (amount && options.max) throw new Error("Cannot specify both amount and --max");
       const context = await init(program.opts().vault);
       try {
         await executeSend(context, {
           chain: findChainByName(chainStr) || chainStr,
           to,
-          amount,
+          amount: amount ?? "max",
           tokenId: options.token,
           memo: options.memo,
           yes: options.yes,
@@ -5394,6 +5780,30 @@ program.command("send <chain> <to> <amount>").description("Send tokens to an add
     }
   )
 );
+program.command("execute <chain> <contract> <msg>").description("Execute a CosmWasm smart contract (THORChain, MayaChain)").option("--funds <funds>", 'Funds to send with execution (format: "denom:amount" or "denom:amount,denom2:amount2")').option("--memo <memo>", "Transaction memo").option("-y, --yes", "Skip confirmation prompt").option("--password <password>", "Vault password for signing").action(
+  withExit(
+    async (chainStr, contract, msg, options) => {
+      const context = await init(program.opts().vault, options.password);
+      try {
+        await executeExecute(context, {
+          chain: findChainByName(chainStr) || chainStr,
+          contract,
+          msg,
+          funds: options.funds,
+          memo: options.memo,
+          yes: options.yes,
+          password: options.password
+        });
+      } catch (err) {
+        if (err.message === "Transaction cancelled by user") {
+          warn("\nx Transaction cancelled");
+          return;
+        }
+        throw err;
+      }
+    }
+  )
+);
 program.command("sign").description("Sign pre-hashed bytes (for externally constructed transactions)").requiredOption("--chain <chain>", "Target blockchain").requiredOption("--bytes <base64>", "Base64-encoded pre-hashed data to sign").option("--password <password>", "Vault password for signing").action(
   withExit(async (options) => {
     const context = await init(program.opts().vault, options.password);
@@ -5532,29 +5942,33 @@ program.command("swap-chains").description("List chains that support swaps").act
     await executeSwapChains(context);
   })
 );
-program.command("swap-quote <fromChain> <toChain> <amount>").description("Get a swap quote without executing").option("--from-token <address>", "Token address to swap from (default: native)").option("--to-token <address>", "Token address to swap to (default: native)").action(
+program.command("swap-quote <fromChain> <toChain> [amount]").description("Get a swap quote without executing").option("--max", "Swap maximum amount (full balance minus fees for native)").option("--from-token <address>", "Token address to swap from (default: native)").option("--to-token <address>", "Token address to swap to (default: native)").action(
   withExit(
     async (fromChainStr, toChainStr, amountStr, options) => {
+      if (!amountStr && !options.max) throw new Error("Provide an amount or use --max");
+      if (amountStr && options.max) throw new Error("Cannot specify both amount and --max");
       const context = await init(program.opts().vault);
       await executeSwapQuote(context, {
         fromChain: findChainByName(fromChainStr) || fromChainStr,
         toChain: findChainByName(toChainStr) || toChainStr,
-        amount: parseFloat(amountStr),
+        amount: options.max ? "max" : parseFloat(amountStr),
         fromToken: options.fromToken,
         toToken: options.toToken
       });
     }
   )
 );
-program.command("swap <fromChain> <toChain> <amount>").description("Swap tokens between chains").option("--from-token <address>", "Token address to swap from (default: native)").option("--to-token <address>", "Token address to swap to (default: native)").option("--slippage <percent>", "Slippage tolerance in percent", "1").option("-y, --yes", "Skip confirmation prompt").option("--password <password>", "Vault password for signing").action(
+program.command("swap <fromChain> <toChain> [amount]").description("Swap tokens between chains").option("--max", "Swap maximum amount (full balance minus fees for native)").option("--from-token <address>", "Token address to swap from (default: native)").option("--to-token <address>", "Token address to swap to (default: native)").option("--slippage <percent>", "Slippage tolerance in percent", "1").option("-y, --yes", "Skip confirmation prompt").option("--password <password>", "Vault password for signing").action(
   withExit(
     async (fromChainStr, toChainStr, amountStr, options) => {
+      if (!amountStr && !options.max) throw new Error("Provide an amount or use --max");
+      if (amountStr && options.max) throw new Error("Cannot specify both amount and --max");
       const context = await init(program.opts().vault);
       try {
         await executeSwap(context, {
           fromChain: findChainByName(fromChainStr) || fromChainStr,
           toChain: findChainByName(toChainStr) || toChainStr,
-          amount: parseFloat(amountStr),
+          amount: options.max ? "max" : parseFloat(amountStr),
           fromToken: options.fromToken,
           toToken: options.toToken,
           slippage: options.slippage ? parseFloat(options.slippage) : void 0,
@@ -5571,6 +5985,72 @@ program.command("swap <fromChain> <toChain> <amount>").description("Swap tokens
     }
   )
 );
+var rujiraCmd = program.command("rujira").description("Rujira FIN swaps + secured asset tools on THORChain");
+rujiraCmd.command("balance").description("Show secured asset balances on THORChain").option("--secured-only", "Filter to secured/FIN-like denoms only").option("--rpc <url>", "Override THORChain RPC endpoint").option("--rest <url>", "Override THORNode REST endpoint").action(
+  withExit(async (options) => {
+    const context = await init(program.opts().vault);
+    await executeRujiraBalance(context, {
+      securedOnly: options.securedOnly,
+      rpcEndpoint: options.rpc,
+      restEndpoint: options.rest
+    });
+  })
+);
+rujiraCmd.command("routes").description("List available FIN swap routes").action(
+  withExit(async () => {
+    await executeRujiraRoutes();
+  })
+);
+rujiraCmd.command("deposit").description("Show deposit instructions (inbound address + memo)").option("--asset <asset>", "L1 asset to deposit (e.g., BTC.BTC, ETH.ETH)").option("--amount <amount>", "Amount in base units (optional; used for validation)", "1").option("--affiliate <thorAddress>", "Affiliate THOR address (optional)").option("--affiliate-bps <bps>", "Affiliate fee in basis points (optional)", "0").option("--rpc <url>", "Override THORChain RPC endpoint").option("--rest <url>", "Override THORNode REST endpoint").action(
+  withExit(
+    async (options) => {
+      const context = await init(program.opts().vault);
+      await executeRujiraDeposit(context, {
+        asset: options.asset,
+        amount: options.amount,
+        affiliate: options.affiliate,
+        affiliateBps: options.affiliateBps ? parseInt(options.affiliateBps, 10) : void 0,
+        rpcEndpoint: options.rpc,
+        restEndpoint: options.rest
+      });
+    }
+  )
+);
+rujiraCmd.command("swap <fromAsset> <toAsset> <amount>").description("Execute a FIN swap (amount in base units)").option("--slippage-bps <bps>", "Slippage tolerance in basis points (default: 100 = 1%)", "100").option("--destination <thorAddress>", "Destination THOR address (default: vault THORChain address)").option("-y, --yes", "Skip confirmation prompt").option("--password <password>", "Vault password for signing").option("--rpc <url>", "Override THORChain RPC endpoint").option("--rest <url>", "Override THORNode REST endpoint").action(
+  withExit(
+    async (fromAsset, toAsset, amount, options) => {
+      const context = await init(program.opts().vault, options.password);
+      await executeRujiraSwap(context, {
+        fromAsset,
+        toAsset,
+        amount,
+        slippageBps: options.slippageBps ? parseInt(options.slippageBps, 10) : void 0,
+        destination: options.destination,
+        yes: options.yes,
+        password: options.password,
+        rpcEndpoint: options.rpc,
+        restEndpoint: options.rest
+      });
+    }
+  )
+);
+rujiraCmd.command("withdraw <asset> <amount> <l1Address>").description("Withdraw secured assets to L1 (amount in base units)").option("--max-fee-bps <bps>", "Max outbound fee as bps of amount (optional)").option("-y, --yes", "Skip confirmation prompt").option("--password <password>", "Vault password for signing").option("--rpc <url>", "Override THORChain RPC endpoint").option("--rest <url>", "Override THORNode REST endpoint").action(
+  withExit(
+    async (asset, amount, l1Address, options) => {
+      const context = await init(program.opts().vault, options.password);
+      await executeRujiraWithdraw(context, {
+        asset,
+        amount,
+        l1Address,
+        maxFeeBps: options.maxFeeBps ? parseInt(options.maxFeeBps, 10) : void 0,
+        yes: options.yes,
+        password: options.password,
+        rpcEndpoint: options.rpc,
+        restEndpoint: options.rest
+      });
+    }
+  )
+);
 program.command("version").description("Show detailed version information").action(
   withExit(async () => {
     printResult(formatVersionDetailed());
@@ -5608,7 +6088,7 @@ program.command("update").description("Check for updates and show update command
 );
 setupCompletionCommand(program);
 async function startInteractiveMode() {
-  const sdk = new Vultisig4({
+  const sdk = new Vultisig5({
     onPasswordRequired: createPasswordCallback()
   });
   await sdk.initialize();

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@vultisig/cli",
-  "version": "0.4.0",
+  "version": "0.5.0",
   "description": "Command-line wallet for Vultisig - multi-chain MPC wallet management",
   "type": "module",
   "bin": {
@@ -48,7 +48,12 @@
   },
   "homepage": "https://vultisig.com",
   "dependencies": {
-    "@vultisig/sdk": "^0.4.0",
+    "@cosmjs/cosmwasm-stargate": "^0.32.4",
+    "@cosmjs/encoding": "^0.32.4",
+    "@cosmjs/proto-signing": "^0.32.4",
+    "@cosmjs/stargate": "^0.32.4",
+    "@vultisig/rujira": "^1.0.0",
+    "@vultisig/sdk": "^0.5.0",
     "chalk": "^5.3.0",
     "cli-table3": "^0.6.5",
     "commander": "^12.0.0",