npm - @wlfi-agent/cli - Versions diffs - 1.4.13 → 1.4.14 - Mend

@wlfi-agent/cli 1.4.13 → 1.4.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (289) hide show

package/Cargo.lock +3968 -0
package/Cargo.toml +50 -0
package/README.md +426 -6
package/crates/vault-cli-admin/Cargo.toml +26 -0
package/crates/vault-cli-admin/src/io_utils.rs +500 -0
package/crates/vault-cli-admin/src/main.rs +3990 -0
package/crates/vault-cli-admin/src/shared_config.rs +624 -0
package/crates/vault-cli-admin/src/tui/amounts.rs +180 -0
package/crates/vault-cli-admin/src/tui/token_rpc.rs +250 -0
package/crates/vault-cli-admin/src/tui/utils.rs +82 -0
package/crates/vault-cli-admin/src/tui.rs +3410 -0
package/crates/vault-cli-agent/Cargo.toml +24 -0
package/crates/vault-cli-agent/src/io_utils.rs +576 -0
package/crates/vault-cli-agent/src/main.rs +833 -0
package/crates/vault-cli-daemon/Cargo.toml +28 -0
package/crates/vault-cli-daemon/src/bin/wlfi-agent-system-keychain.rs +216 -0
package/crates/vault-cli-daemon/src/main.rs +644 -0
package/crates/vault-cli-daemon/src/relay_sync.rs +894 -0
package/crates/vault-cli-daemon/tests/system_keychain_helper_acl.rs +167 -0
package/crates/vault-daemon/Cargo.toml +32 -0
package/crates/vault-daemon/src/daemon_parts/api_impl_and_utils.rs +1041 -0
package/crates/vault-daemon/src/daemon_parts/core_helpers.rs +1256 -0
package/crates/vault-daemon/src/daemon_parts/types_api_rpc.rs +622 -0
package/crates/vault-daemon/src/lib.rs +54 -0
package/crates/vault-daemon/src/persistence.rs +441 -0
package/crates/vault-daemon/src/tests.rs +237 -0
package/crates/vault-daemon/src/tests_parts/part1.rs +1224 -0
package/crates/vault-daemon/src/tests_parts/part2.rs +1021 -0
package/crates/vault-daemon/src/tests_parts/part3.rs +835 -0
package/crates/vault-daemon/src/tests_parts/part4.rs +604 -0
package/crates/vault-domain/Cargo.toml +20 -0
package/crates/vault-domain/src/action.rs +849 -0
package/crates/vault-domain/src/address.rs +51 -0
package/crates/vault-domain/src/approval.rs +90 -0
package/crates/vault-domain/src/constants.rs +4 -0
package/crates/vault-domain/src/error.rs +54 -0
package/crates/vault-domain/src/keys.rs +71 -0
package/crates/vault-domain/src/lib.rs +42 -0
package/crates/vault-domain/src/nonce.rs +102 -0
package/crates/vault-domain/src/policy.rs +172 -0
package/crates/vault-domain/src/request.rs +53 -0
package/crates/vault-domain/src/scope.rs +24 -0
package/crates/vault-domain/src/session.rs +50 -0
package/crates/vault-domain/src/signature.rs +34 -0
package/crates/vault-domain/src/tests.rs +651 -0
package/crates/vault-domain/src/u128_as_decimal_string.rs +44 -0
package/crates/vault-policy/Cargo.toml +17 -0
package/crates/vault-policy/src/engine.rs +301 -0
package/crates/vault-policy/src/error.rs +81 -0
package/crates/vault-policy/src/lib.rs +17 -0
package/crates/vault-policy/src/report.rs +34 -0
package/crates/vault-policy/src/tests.rs +891 -0
package/crates/vault-policy/src/tests_explain.rs +78 -0
package/crates/vault-sdk-agent/Cargo.toml +21 -0
package/crates/vault-sdk-agent/src/lib.rs +711 -0
package/crates/vault-signer/Cargo.toml +25 -0
package/crates/vault-signer/src/lib.rs +731 -0
package/crates/vault-signer/tests/secure_enclave_acl.rs +54 -0
package/crates/vault-transport-unix/Cargo.toml +24 -0
package/crates/vault-transport-unix/src/lib.rs +1640 -0
package/crates/vault-transport-xpc/Cargo.toml +25 -0
package/crates/vault-transport-xpc/src/client_codec_api.rs +635 -0
package/crates/vault-transport-xpc/src/lib.rs +680 -0
package/crates/vault-transport-xpc/src/tests.rs +818 -0
package/crates/vault-transport-xpc/tests/e2e_flow.rs +773 -0
package/dist/cli.cjs +35088 -0
package/dist/cli.cjs.map +1 -0
package/package.json +49 -43
package/packages/cache/.turbo/turbo-build.log +52 -0
package/packages/cache/dist/chunk-2QFWMUXT.cjs +43 -0
package/packages/cache/dist/chunk-2QFWMUXT.cjs.map +1 -0
package/packages/cache/dist/chunk-4U63TZTQ.js +43 -0
package/packages/cache/dist/chunk-4U63TZTQ.js.map +1 -0
package/packages/cache/dist/chunk-ALQ6H7KG.cjs +404 -0
package/packages/cache/dist/chunk-ALQ6H7KG.cjs.map +1 -0
package/packages/cache/dist/chunk-FGJEEF5N.js +404 -0
package/packages/cache/dist/chunk-FGJEEF5N.js.map +1 -0
package/packages/cache/dist/chunk-UYNEHZHB.cjs +45 -0
package/packages/cache/dist/chunk-UYNEHZHB.cjs.map +1 -0
package/packages/cache/dist/chunk-VXVMPG3W.js +45 -0
package/packages/cache/dist/chunk-VXVMPG3W.js.map +1 -0
package/packages/cache/dist/client/index.cjs +11 -0
package/packages/cache/dist/client/index.cjs.map +1 -0
package/packages/cache/dist/client/index.d.cts +15 -0
package/packages/cache/dist/client/index.d.ts +15 -0
package/packages/cache/dist/client/index.js +11 -0
package/packages/cache/dist/client/index.js.map +1 -0
package/packages/cache/dist/errors/index.cjs +11 -0
package/packages/cache/dist/errors/index.cjs.map +1 -0
package/packages/cache/dist/errors/index.d.cts +26 -0
package/packages/cache/dist/errors/index.d.ts +26 -0
package/packages/cache/dist/errors/index.js +11 -0
package/packages/cache/dist/errors/index.js.map +1 -0
package/packages/cache/dist/index.cjs +29 -0
package/packages/cache/dist/index.cjs.map +1 -0
package/packages/cache/dist/index.d.cts +4 -0
package/packages/cache/dist/index.d.ts +4 -0
package/packages/cache/dist/index.js +29 -0
package/packages/cache/dist/index.js.map +1 -0
package/packages/cache/dist/service/index.cjs +15 -0
package/packages/cache/dist/service/index.cjs.map +1 -0
package/packages/cache/dist/service/index.d.cts +184 -0
package/packages/cache/dist/service/index.d.ts +184 -0
package/packages/cache/dist/service/index.js +15 -0
package/packages/cache/dist/service/index.js.map +1 -0
package/packages/cache/node_modules/.bin/jiti +17 -0
package/packages/cache/node_modules/.bin/tsc +17 -0
package/packages/cache/node_modules/.bin/tsserver +17 -0
package/packages/cache/node_modules/.bin/tsup +17 -0
package/packages/cache/node_modules/.bin/tsup-node +17 -0
package/packages/cache/node_modules/.bin/tsx +17 -0
package/packages/cache/node_modules/.bin/vitest +17 -0
package/packages/cache/package.json +48 -0
package/packages/cache/src/client/index.ts +56 -0
package/packages/cache/src/errors/index.ts +53 -0
package/packages/cache/src/index.ts +3 -0
package/packages/cache/src/service/index.test.ts +263 -0
package/packages/cache/src/service/index.ts +678 -0
package/packages/cache/tsconfig.json +13 -0
package/packages/cache/tsup.config.ts +13 -0
package/packages/cache/vitest.config.ts +16 -0
package/packages/config/.turbo/turbo-build.log +18 -0
package/packages/config/dist/index.cjs +1037 -0
package/packages/config/dist/index.cjs.map +1 -0
package/packages/config/dist/index.d.ts +131 -0
package/packages/config/node_modules/.bin/jiti +17 -0
package/packages/config/node_modules/.bin/tsc +17 -0
package/packages/config/node_modules/.bin/tsserver +17 -0
package/packages/config/node_modules/.bin/tsup +17 -0
package/packages/config/node_modules/.bin/tsup-node +17 -0
package/packages/config/node_modules/.bin/tsx +17 -0
package/packages/config/package.json +21 -0
package/packages/config/src/index.js +1 -0
package/packages/config/src/index.ts +1282 -0
package/packages/config/tsconfig.json +4 -0
package/packages/rpc/.turbo/turbo-build.log +32 -0
package/packages/rpc/dist/_esm-BCLXDO2R.cjs +3660 -0
package/packages/rpc/dist/_esm-BCLXDO2R.cjs.map +1 -0
package/packages/rpc/dist/ccip-OWJLAW55.cjs +16 -0
package/packages/rpc/dist/ccip-OWJLAW55.cjs.map +1 -0
package/packages/rpc/dist/chunk-APQIFZ3B.cjs +6247 -0
package/packages/rpc/dist/chunk-APQIFZ3B.cjs.map +1 -0
package/packages/rpc/dist/chunk-CDO2GWRD.cjs +410 -0
package/packages/rpc/dist/chunk-CDO2GWRD.cjs.map +1 -0
package/packages/rpc/dist/chunk-QGTNTFJ7.cjs +2249 -0
package/packages/rpc/dist/chunk-QGTNTFJ7.cjs.map +1 -0
package/packages/rpc/dist/chunk-TZDTAHWR.cjs +44 -0
package/packages/rpc/dist/chunk-TZDTAHWR.cjs.map +1 -0
package/packages/rpc/dist/index.cjs +7342 -0
package/packages/rpc/dist/index.cjs.map +1 -0
package/packages/rpc/dist/index.d.ts +3857 -0
package/packages/rpc/dist/secp256k1-WCNM675D.cjs +18 -0
package/packages/rpc/dist/secp256k1-WCNM675D.cjs.map +1 -0
package/packages/rpc/node_modules/.bin/jiti +17 -0
package/packages/rpc/node_modules/.bin/tsc +17 -0
package/packages/rpc/node_modules/.bin/tsserver +17 -0
package/packages/rpc/node_modules/.bin/tsup +17 -0
package/packages/rpc/node_modules/.bin/tsup-node +17 -0
package/packages/rpc/node_modules/.bin/tsx +17 -0
package/packages/rpc/package.json +25 -0
package/packages/rpc/src/index.ts +206 -0
package/packages/rpc/tsconfig.json +4 -0
package/packages/typescript/base.json +36 -0
package/packages/typescript/nextjs.json +17 -0
package/packages/typescript/package.json +10 -0
package/packages/ui/.turbo/turbo-build.log +44 -0
package/packages/ui/dist/chunk-MOAFBKSA.js +11 -0
package/packages/ui/dist/chunk-MOAFBKSA.js.map +1 -0
package/packages/ui/dist/components/badge.d.ts +12 -0
package/packages/ui/dist/components/badge.js +31 -0
package/packages/ui/dist/components/badge.js.map +1 -0
package/packages/ui/dist/components/button.d.ts +13 -0
package/packages/ui/dist/components/button.js +40 -0
package/packages/ui/dist/components/button.js.map +1 -0
package/packages/ui/dist/components/card.d.ts +10 -0
package/packages/ui/dist/components/card.js +39 -0
package/packages/ui/dist/components/card.js.map +1 -0
package/packages/ui/dist/components/input.d.ts +5 -0
package/packages/ui/dist/components/input.js +28 -0
package/packages/ui/dist/components/input.js.map +1 -0
package/packages/ui/dist/components/label.d.ts +5 -0
package/packages/ui/dist/components/label.js +13 -0
package/packages/ui/dist/components/label.js.map +1 -0
package/packages/ui/dist/components/separator.d.ts +5 -0
package/packages/ui/dist/components/separator.js +13 -0
package/packages/ui/dist/components/separator.js.map +1 -0
package/packages/ui/dist/components/textarea.d.ts +5 -0
package/packages/ui/dist/components/textarea.js +27 -0
package/packages/ui/dist/components/textarea.js.map +1 -0
package/packages/ui/dist/tailwind.d.ts +56 -0
package/packages/ui/dist/tailwind.js +60 -0
package/packages/ui/dist/tailwind.js.map +1 -0
package/packages/ui/dist/utils/cn.d.ts +5 -0
package/packages/ui/dist/utils/cn.js +7 -0
package/packages/ui/dist/utils/cn.js.map +1 -0
package/packages/ui/node_modules/.bin/jiti +17 -0
package/packages/ui/node_modules/.bin/tsc +17 -0
package/packages/ui/node_modules/.bin/tsserver +17 -0
package/packages/ui/node_modules/.bin/tsup +17 -0
package/packages/ui/node_modules/.bin/tsup-node +17 -0
package/packages/ui/node_modules/.bin/tsx +17 -0
package/packages/ui/package.json +69 -0
package/packages/ui/src/components/badge.tsx +27 -0
package/packages/ui/src/components/button.tsx +40 -0
package/packages/ui/src/components/card.tsx +31 -0
package/packages/ui/src/components/input.tsx +21 -0
package/packages/ui/src/components/label.tsx +6 -0
package/packages/ui/src/components/separator.tsx +6 -0
package/packages/ui/src/components/textarea.tsx +20 -0
package/packages/ui/src/globals.css +70 -0
package/packages/ui/src/tailwind.ts +56 -0
package/packages/ui/src/utils/cn.ts +6 -0
package/packages/ui/tsconfig.json +20 -0
package/packages/ui/tsup.config.ts +20 -0
package/pnpm-workspace.yaml +4 -0
package/scripts/install-rust-binaries.mjs +84 -0
package/scripts/launchd/install-user-daemon.sh +358 -0
package/scripts/launchd/run-vault-daemon.sh +5 -0
package/scripts/launchd/run-wlfi-agent-daemon.sh +73 -0
package/scripts/launchd/uninstall-user-daemon.sh +103 -0
package/src/cli.ts +2121 -0
package/src/lib/admin-guard.js +1 -0
package/src/lib/admin-guard.ts +185 -0
package/src/lib/admin-passthrough.ts +33 -0
package/src/lib/admin-reset.ts +751 -0
package/src/lib/admin-setup.ts +1612 -0
package/src/lib/agent-auth-clear.js +1 -0
package/src/lib/agent-auth-clear.ts +58 -0
package/src/lib/agent-auth-forwarding.js +1 -0
package/src/lib/agent-auth-forwarding.ts +149 -0
package/src/lib/agent-auth-migrate.js +1 -0
package/src/lib/agent-auth-migrate.ts +150 -0
package/src/lib/agent-auth-revoke.ts +103 -0
package/src/lib/agent-auth-rotate.ts +107 -0
package/src/lib/agent-auth-token.js +1 -0
package/src/lib/agent-auth-token.ts +25 -0
package/src/lib/agent-auth.ts +89 -0
package/src/lib/asset-broadcast.js +1 -0
package/src/lib/asset-broadcast.ts +285 -0
package/src/lib/bootstrap-artifacts.js +1 -0
package/src/lib/bootstrap-artifacts.ts +205 -0
package/src/lib/bootstrap-credentials.js +1 -0
package/src/lib/bootstrap-credentials.ts +832 -0
package/src/lib/config-amounts.js +1 -0
package/src/lib/config-amounts.ts +189 -0
package/src/lib/config-mutation.ts +27 -0
package/src/lib/fs-trust.js +1 -0
package/src/lib/fs-trust.ts +537 -0
package/src/lib/keychain.js +1 -0
package/src/lib/keychain.ts +225 -0
package/src/lib/local-admin-access.ts +106 -0
package/src/lib/network-selection.js +1 -0
package/src/lib/network-selection.ts +71 -0
package/src/lib/passthrough-security.js +1 -0
package/src/lib/passthrough-security.ts +114 -0
package/src/lib/rpc-guard.js +1 -0
package/src/lib/rpc-guard.ts +7 -0
package/src/lib/rust-spawn-options.js +1 -0
package/src/lib/rust-spawn-options.ts +98 -0
package/src/lib/rust.js +1 -0
package/src/lib/rust.ts +143 -0
package/src/lib/signed-tx.js +1 -0
package/src/lib/signed-tx.ts +116 -0
package/src/lib/status-repair-cli.ts +116 -0
package/src/lib/sudo.js +1 -0
package/src/lib/sudo.ts +172 -0
package/src/lib/vault-password-forwarding.js +1 -0
package/src/lib/vault-password-forwarding.ts +155 -0
package/src/lib/wallet-profile.js +1 -0
package/src/lib/wallet-profile.ts +332 -0
package/src/lib/wallet-repair.js +1 -0
package/src/lib/wallet-repair.ts +304 -0
package/src/lib/wallet-setup.js +1 -0
package/src/lib/wallet-setup.ts +1466 -0
package/src/lib/wallet-status.js +1 -0
package/src/lib/wallet-status.ts +640 -0
package/tsconfig.base.json +17 -0
package/tsconfig.json +10 -0
package/tsup.config.ts +25 -0
package/turbo.json +41 -0
package/LICENSE.md +0 -1
package/dist/wlfa/index.cjs +0 -250
package/dist/wlfa/index.d.cts +0 -1
package/dist/wlfa/index.d.ts +0 -1
package/dist/wlfa/index.js +0 -250
package/dist/wlfc/index.cjs +0 -1839
package/dist/wlfc/index.d.cts +0 -1
package/dist/wlfc/index.d.ts +0 -1
package/dist/wlfc/index.js +0 -1839

package/crates/vault-policy/src/tests.rs ADDED Viewed

@@ -0,0 +1,891 @@
+use std::collections::BTreeSet;
+use std::str::FromStr;
+use time::{Duration, OffsetDateTime};
+use uuid::Uuid;
+use vault_domain::{
+    AgentAction, AssetId, BroadcastTx, EntityScope, EvmAddress, PolicyAttachment, PolicyType,
+    SpendEvent, SpendingPolicy,
+};
+use super::{PolicyEngine, PolicyError};
+fn addr(x: &str) -> EvmAddress {
+    EvmAddress::from_str(x).expect("valid test address")
+}
+fn policy_all_per_tx(max: u128) -> SpendingPolicy {
+    SpendingPolicy::new(
+        1,
+        PolicyType::PerTxMaxSpending,
+        max,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy")
+}
+fn gas_policy(chain_id: u64, max_gas_wei: u128) -> SpendingPolicy {
+    SpendingPolicy::new(
+        0,
+        PolicyType::PerChainMaxGasSpend,
+        max_gas_wei,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::Set(BTreeSet::from([chain_id])),
+    )
+    .expect("policy")
+}
+fn broadcast_action_with_fees(
+    max_fee_per_gas_wei: u128,
+    max_priority_fee_per_gas_wei: u128,
+    data_hex: &str,
+) -> AgentAction {
+    AgentAction::BroadcastTx {
+        tx: BroadcastTx {
+            chain_id: 1,
+            nonce: 0,
+            to: addr("0x1000000000000000000000000000000000000000"),
+            value_wei: 0,
+            data_hex: data_hex.to_string(),
+            gas_limit: 21_000,
+            max_fee_per_gas_wei,
+            max_priority_fee_per_gas_wei,
+            tx_type: 0x02,
+            delegation_enabled: false,
+        },
+    }
+}
+#[test]
+fn per_tx_limit_is_enforced() {
+    let engine = PolicyEngine;
+    let token = addr("0x1000000000000000000000000000000000000000");
+    let recipient = addr("0x2000000000000000000000000000000000000000");
+    let policy = policy_all_per_tx(100);
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 101,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::PerTxLimitExceeded { .. })
+    ));
+}
+#[test]
+fn daily_limit_sums_recent_usage() {
+    let engine = PolicyEngine;
+    let now = OffsetDateTime::now_utc();
+    let token = addr("0x3000000000000000000000000000000000000000");
+    let recipient = addr("0x4000000000000000000000000000000000000000");
+    let policy = SpendingPolicy::new(
+        1,
+        PolicyType::DailyMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::Set(BTreeSet::from([AssetId::Erc20(token.clone())])),
+        EntityScope::Set(BTreeSet::from([1_u64])),
+    )
+    .expect("policy must build");
+    let agent_key_id = Uuid::new_v4();
+    let history = vec![SpendEvent {
+        agent_key_id,
+        chain_id: 1,
+        asset: AssetId::Erc20(token.clone()),
+        recipient: recipient.clone(),
+        amount_wei: 70,
+        at: now - time::Duration::hours(2),
+    }];
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 31,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &history,
+        agent_key_id,
+        now,
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::WindowLimitExceeded {
+            used_amount_wei: 70,
+            requested_amount_wei: 31,
+            ..
+        })
+    ));
+}
+#[test]
+fn daily_limit_counts_all_in_scope_usage_across_assets_and_chains() {
+    let engine = PolicyEngine;
+    let now = OffsetDateTime::now_utc();
+    let token_a = addr("0x3000000000000000000000000000000000000000");
+    let token_b = addr("0x5000000000000000000000000000000000000000");
+    let recipient_a = addr("0x4000000000000000000000000000000000000000");
+    let recipient_b = addr("0x6000000000000000000000000000000000000000");
+    let policy = SpendingPolicy::new(
+        1,
+        PolicyType::DailyMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    let agent_key_id = Uuid::new_v4();
+    let history = vec![
+        SpendEvent {
+            agent_key_id,
+            chain_id: 1,
+            asset: AssetId::Erc20(token_a),
+            recipient: recipient_a,
+            amount_wei: 70,
+            at: now - time::Duration::hours(2),
+        },
+        SpendEvent {
+            agent_key_id,
+            chain_id: 10,
+            asset: AssetId::NativeEth,
+            recipient: recipient_b.clone(),
+            amount_wei: 20,
+            at: now - time::Duration::hours(1),
+        },
+    ];
+    let action = AgentAction::Transfer {
+        chain_id: 137,
+        token: token_b,
+        to: recipient_b,
+        amount_wei: 15,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &history,
+        agent_key_id,
+        now,
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::WindowLimitExceeded {
+            used_amount_wei: 90,
+            requested_amount_wei: 15,
+            ..
+        })
+    ));
+}
+#[test]
+fn network_scope_is_enforced() {
+    let engine = PolicyEngine;
+    let token = addr("0x5000000000000000000000000000000000000000");
+    let recipient = addr("0x6000000000000000000000000000000000000000");
+    let policy = SpendingPolicy::new(
+        1,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::Set(BTreeSet::from([1_u64])),
+    )
+    .expect("policy");
+    let action = AgentAction::Transfer {
+        chain_id: 10,
+        token,
+        to: recipient,
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(result, Err(PolicyError::NoApplicablePolicies)));
+}
+#[test]
+fn native_eth_scope_is_enforced() {
+    let engine = PolicyEngine;
+    let recipient = addr("0x7000000000000000000000000000000000000000");
+    let policy = SpendingPolicy::new(
+        1,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::Set(BTreeSet::from([AssetId::NativeEth])),
+        EntityScope::All,
+    )
+    .expect("policy");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token: addr("0x8000000000000000000000000000000000000000"),
+        to: recipient.clone(),
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        std::slice::from_ref(&policy),
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(result, Err(PolicyError::NoApplicablePolicies)));
+    let native_action = AgentAction::TransferNative {
+        chain_id: 1,
+        to: recipient,
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &native_action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(result.is_ok());
+}
+#[test]
+fn policies_are_evaluated_in_priority_order() {
+    let engine = PolicyEngine;
+    let token = addr("0x5000000000000000000000000000000000000000");
+    let recipient = addr("0x6000000000000000000000000000000000000000");
+    let p1 = SpendingPolicy::new(
+        10,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    let p2 = SpendingPolicy::new(
+        1,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 1,
+    };
+    let result = engine
+        .evaluate(
+            &[p1.clone(), p2.clone()],
+            &PolicyAttachment::AllPolicies,
+            &action,
+            &[],
+            Uuid::new_v4(),
+            OffsetDateTime::now_utc(),
+        )
+        .expect("must pass");
+    assert_eq!(result.evaluated_policy_ids, vec![p2.id, p1.id]);
+}
+#[test]
+fn only_attached_policy_ids_are_used() {
+    let engine = PolicyEngine;
+    let token = addr("0x5000000000000000000000000000000000000000");
+    let recipient = addr("0x6000000000000000000000000000000000000000");
+    let included = SpendingPolicy::new(
+        1,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    let excluded = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxSpending,
+        10,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    let mut only_included = BTreeSet::new();
+    only_included.insert(included.id);
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 20,
+    };
+    let result = engine.evaluate(
+        &[included.clone(), excluded],
+        &PolicyAttachment::PolicySet(only_included),
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    let evaluation = result.expect("included policy should pass");
+    assert_eq!(evaluation.evaluated_policy_ids, vec![included.id]);
+}
+#[test]
+fn no_applicable_policy_fails_when_scope_does_not_match() {
+    let engine = PolicyEngine;
+    let token = addr("0x7777777777777777777777777777777777777777");
+    let recipient = addr("0x8888888888888888888888888888888888888888");
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::Set(BTreeSet::from([AssetId::Erc20(addr(
+            "0x9999999999999999999999999999999999999999",
+        ))])),
+        EntityScope::All,
+    )
+    .expect("policy");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(result, Err(PolicyError::NoApplicablePolicies)));
+}
+#[test]
+fn equal_priority_policies_are_ordered_by_id() {
+    let engine = PolicyEngine;
+    let token = addr("0x1111111111111111111111111111111111111111");
+    let recipient = addr("0x2222222222222222222222222222222222222222");
+    let mut high_id = SpendingPolicy::new(
+        5,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    high_id.id = Uuid::parse_str("ffffffff-ffff-ffff-ffff-ffffffffffff").expect("uuid");
+    let mut low_id = SpendingPolicy::new(
+        5,
+        PolicyType::PerTxMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    low_id.id = Uuid::parse_str("00000000-0000-0000-0000-000000000001").expect("uuid");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 1,
+    };
+    let result = engine
+        .evaluate(
+            &[high_id.clone(), low_id.clone()],
+            &PolicyAttachment::AllPolicies,
+            &action,
+            &[],
+            Uuid::new_v4(),
+            OffsetDateTime::now_utc(),
+        )
+        .expect("must pass");
+    assert_eq!(result.evaluated_policy_ids, vec![low_id.id, high_id.id]);
+}
+#[test]
+fn window_limit_fails_closed_on_usage_overflow() {
+    let engine = PolicyEngine;
+    let now = OffsetDateTime::now_utc();
+    let token = addr("0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa");
+    let recipient = addr("0xbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb");
+    let policy = SpendingPolicy::new(
+        1,
+        PolicyType::DailyMaxSpending,
+        100,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy must build");
+    let agent_key_id = Uuid::new_v4();
+    let history = vec![
+        SpendEvent {
+            agent_key_id,
+            chain_id: 1,
+            asset: AssetId::Erc20(token.clone()),
+            recipient: recipient.clone(),
+            amount_wei: u128::MAX,
+            at: now - time::Duration::hours(2),
+        },
+        SpendEvent {
+            agent_key_id,
+            chain_id: 1,
+            asset: AssetId::Erc20(token.clone()),
+            recipient: recipient.clone(),
+            amount_wei: 1,
+            at: now - time::Duration::hours(1),
+        },
+    ];
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &history,
+        agent_key_id,
+        now,
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::WindowLimitExceeded {
+            used_amount_wei: u128::MAX,
+            requested_amount_wei: 1,
+            ..
+        })
+    ));
+}
+#[test]
+fn per_chain_gas_limit_is_enforced_for_broadcast_tx() {
+    let engine = PolicyEngine;
+    let now = OffsetDateTime::now_utc();
+    let policy = gas_policy(1, 500_000_000_000_000);
+    let action = AgentAction::BroadcastTx {
+        tx: BroadcastTx {
+            chain_id: 1,
+            nonce: 0,
+            to: addr("0x1000000000000000000000000000000000000000"),
+            value_wei: 0,
+            data_hex: "0x".to_string(),
+            gas_limit: 1_000_000,
+            max_fee_per_gas_wei: 1_000_000_000,
+            max_priority_fee_per_gas_wei: 1_000_000_000,
+            tx_type: 0x02,
+            delegation_enabled: false,
+        },
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        now,
+    );
+    assert!(matches!(result, Err(PolicyError::GasLimitExceeded { .. })));
+}
+#[test]
+fn per_chain_gas_limit_allows_broadcast_within_cap() {
+    let engine = PolicyEngine;
+    let now = OffsetDateTime::now_utc();
+    let policy = gas_policy(1, 2_000_000_000_000_000);
+    let action = AgentAction::BroadcastTx {
+        tx: BroadcastTx {
+            chain_id: 1,
+            nonce: 0,
+            to: addr("0x1000000000000000000000000000000000000000"),
+            value_wei: 0,
+            data_hex: "0x".to_string(),
+            gas_limit: 1_000_000,
+            max_fee_per_gas_wei: 1_000_000_000,
+            max_priority_fee_per_gas_wei: 1_000_000_000,
+            tx_type: 0x02,
+            delegation_enabled: false,
+        },
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        now,
+    );
+    assert!(result.is_ok());
+}
+#[test]
+fn per_tx_max_fee_per_gas_is_enforced() {
+    let engine = PolicyEngine;
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxFeePerGas,
+        1_000_000_000,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy");
+    let action = broadcast_action_with_fees(2_000_000_000, 1_000_000_000, "0x");
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::MaxFeePerGasLimitExceeded { .. })
+    ));
+}
+#[test]
+fn per_tx_max_priority_fee_per_gas_is_enforced() {
+    let engine = PolicyEngine;
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxPriorityFeePerGas,
+        500_000_000,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy");
+    let action = broadcast_action_with_fees(2_000_000_000, 1_000_000_000, "0x");
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::PriorityFeePerGasLimitExceeded { .. })
+    ));
+}
+#[test]
+fn per_tx_max_calldata_bytes_is_enforced() {
+    let engine = PolicyEngine;
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxCalldataBytes,
+        3,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy");
+    let action = broadcast_action_with_fees(2_000_000_000, 1_000_000_000, "0xdeadbeef");
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::CalldataBytesLimitExceeded { .. })
+    ));
+}
+#[test]
+fn daily_tx_count_limit_is_enforced() {
+    let engine = PolicyEngine;
+    let now = OffsetDateTime::now_utc();
+    let recipient = addr("0x2000000000000000000000000000000000000000");
+    let token = addr("0x3000000000000000000000000000000000000000");
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::DailyMaxTxCount,
+        2,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy");
+    let agent_key_id = Uuid::new_v4();
+    let history = vec![
+        SpendEvent {
+            agent_key_id,
+            chain_id: 1,
+            asset: AssetId::Erc20(token.clone()),
+            recipient: recipient.clone(),
+            amount_wei: 1,
+            at: now - Duration::hours(2),
+        },
+        SpendEvent {
+            agent_key_id,
+            chain_id: 1,
+            asset: AssetId::Erc20(token.clone()),
+            recipient: recipient.clone(),
+            amount_wei: 1,
+            at: now - Duration::hours(1),
+        },
+    ];
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token,
+        to: recipient,
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &history,
+        agent_key_id,
+        now,
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::TxCountLimitExceeded { .. })
+    ));
+}
+#[test]
+fn fee_policy_is_not_applicable_when_action_lacks_metadata() {
+    let engine = PolicyEngine;
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerTxMaxFeePerGas,
+        1_000_000_000,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token: addr("0x1000000000000000000000000000000000000000"),
+        to: addr("0x2000000000000000000000000000000000000000"),
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(result.is_ok());
+}
+#[test]
+fn gas_policy_is_not_applicable_when_action_lacks_metadata() {
+    let engine = PolicyEngine;
+    let policy = SpendingPolicy::new(
+        0,
+        PolicyType::PerChainMaxGasSpend,
+        1_000_000_000_000_000,
+        EntityScope::All,
+        EntityScope::All,
+        EntityScope::All,
+    )
+    .expect("policy");
+    let action = AgentAction::Transfer {
+        chain_id: 1,
+        token: addr("0x1000000000000000000000000000000000000000"),
+        to: addr("0x2000000000000000000000000000000000000000"),
+        amount_wei: 1,
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(result.is_ok());
+}
+#[test]
+fn permit2_per_tx_limit_is_enforced() {
+    let engine = PolicyEngine;
+    let action = AgentAction::Permit2Permit {
+        permit: vault_domain::Permit2Permit {
+            chain_id: 1,
+            permit2_contract: addr("0x000000000022d473030f116ddee9f6b43ac78ba3"),
+            token: addr("0x1000000000000000000000000000000000000000"),
+            spender: addr("0x2000000000000000000000000000000000000000"),
+            amount_wei: 101,
+            expiration: 100,
+            nonce: 1,
+            sig_deadline: 200,
+        },
+    };
+    let result = engine.evaluate(
+        &[policy_all_per_tx(100)],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(
+        result,
+        Err(PolicyError::PerTxLimitExceeded { .. })
+    ));
+}
+#[test]
+fn eip3009_broadcast_scope_is_enforced() {
+    let engine = PolicyEngine;
+    let token = addr("0x3000000000000000000000000000000000000000");
+    let allowed_recipient = addr("0x4000000000000000000000000000000000000000");
+    let denied_recipient = addr("0x5050505050505050505050505050505050505050");
+    let policy = SpendingPolicy::new(
+        1,
+        PolicyType::PerTxMaxSpending,
+        1_000,
+        EntityScope::Set(BTreeSet::from([allowed_recipient.clone()])),
+        EntityScope::Set(BTreeSet::from([AssetId::Erc20(token.clone())])),
+        EntityScope::Set(BTreeSet::from([1_u64])),
+    )
+    .expect("policy");
+    let calldata = {
+        use alloy_sol_types::{sol, SolCall};
+        sol! {
+            function transferWithAuthorization(address from, address to, uint256 value, uint256 validAfter, uint256 validBefore, bytes32 nonce, bytes signature);
+        }
+        transferWithAuthorizationCall {
+            from: alloy_primitives::Address::from([0x11; 20]),
+            to: alloy_primitives::Address::from([0x50; 20]),
+            value: alloy_primitives::U256::from(10u64),
+            validAfter: alloy_primitives::U256::from(1u64),
+            validBefore: alloy_primitives::U256::from(2u64),
+            nonce: [0x77; 32].into(),
+            signature: vec![0x12].into(),
+        }
+        .abi_encode()
+    };
+    let action = AgentAction::BroadcastTx {
+        tx: BroadcastTx {
+            chain_id: 1,
+            nonce: 0,
+            to: token,
+            value_wei: 0,
+            data_hex: format!(
+                "0x{}",
+                calldata
+                    .iter()
+                    .map(|byte| format!("{byte:02x}"))
+                    .collect::<String>()
+            ),
+            gas_limit: 50_000,
+            max_fee_per_gas_wei: 1_000_000_000,
+            max_priority_fee_per_gas_wei: 1_000_000_000,
+            tx_type: 0x02,
+            delegation_enabled: false,
+        },
+    };
+    let result = engine.evaluate(
+        &[policy],
+        &PolicyAttachment::AllPolicies,
+        &action,
+        &[],
+        Uuid::new_v4(),
+        OffsetDateTime::now_utc(),
+    );
+    assert!(matches!(result, Err(PolicyError::NoApplicablePolicies)));
+    assert_eq!(action.recipient(), denied_recipient);
+}