@worldcoin/minikit-js 1.4.0 → 1.6.0

package/build/index.cjs

@@ -28,6 +28,9 @@ __export(core_exports, {
   PaymentErrorCodes: () => PaymentErrorCodes,
   PaymentErrorMessage: () => PaymentErrorMessage,
   PaymentValidationErrors: () => PaymentValidationErrors,
+  Permission: () => Permission,
+  RequestPermissionErrorCodes: () => RequestPermissionErrorCodes,
+  RequestPermissionErrorMessage: () => RequestPermissionErrorMessage,
   ResponseEvent: () => ResponseEvent,
   SAFE_CONTRACT_ABI: () => SAFE_CONTRACT_ABI,
   SendTransactionErrorCodes: () => SendTransactionErrorCodes,
@@ -53,44 +56,15 @@ __export(core_exports, {
 });
 module.exports = __toCommonJS(core_exports);
 
-// helpers/send-webview-event.ts
-var sendWebviewEvent = (payload) => {
-  if (window.webkit) {
-    window.webkit?.messageHandlers?.minikit?.postMessage?.(payload);
-  } else if (window.Android) {
-    window.Android.postMessage?.(JSON.stringify(payload));
-  }
-};
-
-// types/commands.ts
-var Command = /* @__PURE__ */ ((Command2) => {
-  Command2["Verify"] = "verify";
-  Command2["Pay"] = "pay";
-  Command2["WalletAuth"] = "wallet-auth";
-  Command2["SendTransaction"] = "send-transaction";
-  Command2["SignMessage"] = "sign-message";
-  Command2["SignTypedData"] = "sign-typed-data";
-  Command2["ShareContacts"] = "share-contacts";
-  return Command2;
-})(Command || {});
-
-// types/responses.ts
-var ResponseEvent = /* @__PURE__ */ ((ResponseEvent2) => {
-  ResponseEvent2["MiniAppVerifyAction"] = "miniapp-verify-action";
-  ResponseEvent2["MiniAppPayment"] = "miniapp-payment";
-  ResponseEvent2["MiniAppWalletAuth"] = "miniapp-wallet-auth";
-  ResponseEvent2["MiniAppSendTransaction"] = "miniapp-send-transaction";
-  ResponseEvent2["MiniAppSignMessage"] = "miniapp-sign-message";
-  ResponseEvent2["MiniAppSignTypedData"] = "miniapp-sign-typed-data";
-  ResponseEvent2["MiniAppShareContacts"] = "miniapp-share-contacts";
-  return ResponseEvent2;
-})(ResponseEvent || {});
+// minikit.ts
+var import_idkit_core3 = require("@worldcoin/idkit-core");
+var import_hashing = require("@worldcoin/idkit-core/hashing");
 
 // types/payment.ts
-var Tokens = /* @__PURE__ */ ((Tokens2) => {
-  Tokens2["USDCE"] = "USDCE";
-  Tokens2["WLD"] = "WLD";
-  return Tokens2;
+var Tokens = /* @__PURE__ */ ((Tokens3) => {
+  Tokens3["USDCE"] = "USDCE";
+  Tokens3["WLD"] = "WLD";
+  return Tokens3;
 })(Tokens || {});
 var TokenDecimals = {
   ["USDCE" /* USDCE */]: 6,
@@ -102,155 +76,34 @@ var Network = /* @__PURE__ */ ((Network2) => {
   return Network2;
 })(Network || {});
 
-// types/errors.ts
-var import_idkit_core = require("@worldcoin/idkit-core");
-var import_idkit_core2 = require("@worldcoin/idkit-core");
-var VerificationErrorMessage = {
-  [import_idkit_core.AppErrorCodes.VerificationRejected]: "You\u2019ve cancelled the request in World App.",
-  [import_idkit_core.AppErrorCodes.MaxVerificationsReached]: "You have already verified the maximum number of times for this action.",
-  [import_idkit_core.AppErrorCodes.CredentialUnavailable]: "It seems you do not have the verification level required by this app.",
-  [import_idkit_core.AppErrorCodes.MalformedRequest]: "There was a problem with this request. Please try again or contact the app owner.",
-  [import_idkit_core.AppErrorCodes.InvalidNetwork]: "Invalid network. If you are the app owner, visit docs.worldcoin.org/test for details.",
-  [import_idkit_core.AppErrorCodes.InclusionProofFailed]: "There was an issue fetching your credential. Please try again.",
-  [import_idkit_core.AppErrorCodes.InclusionProofPending]: "Your identity is still being registered. Please wait a few minutes and try again.",
-  [import_idkit_core.AppErrorCodes.UnexpectedResponse]: "Unexpected response from your wallet. Please try again.",
-  [import_idkit_core.AppErrorCodes.FailedByHostApp]: "Verification failed by the app. Please contact the app owner for details.",
-  [import_idkit_core.AppErrorCodes.GenericError]: "Something unexpected went wrong. Please try again.",
-  [import_idkit_core.AppErrorCodes.ConnectionFailed]: "Connection to your wallet failed. Please try again."
-};
-var PaymentErrorCodes = /* @__PURE__ */ ((PaymentErrorCodes2) => {
-  PaymentErrorCodes2["InputError"] = "input_error";
-  PaymentErrorCodes2["PaymentRejected"] = "payment_rejected";
-  PaymentErrorCodes2["InvalidReceiver"] = "invalid_receiver";
-  PaymentErrorCodes2["InsufficientBalance"] = "insufficient_balance";
-  PaymentErrorCodes2["TransactionFailed"] = "transaction_failed";
-  PaymentErrorCodes2["GenericError"] = "generic_error";
-  PaymentErrorCodes2["UserBlocked"] = "user_blocked";
-  return PaymentErrorCodes2;
-})(PaymentErrorCodes || {});
-var PaymentErrorMessage = {
-  ["input_error" /* InputError */]: "There was a problem with this request. Please try again or contact the app owner.",
-  ["payment_rejected" /* PaymentRejected */]: "You\u2019ve cancelled the payment in World App.",
-  ["invalid_receiver" /* InvalidReceiver */]: "The receiver address is invalid. Please contact the app owner.",
-  ["insufficient_balance" /* InsufficientBalance */]: "You do not have enough balance to complete this transaction.",
-  ["transaction_failed" /* TransactionFailed */]: "The transaction failed. Please try again.",
-  ["generic_error" /* GenericError */]: "Something unexpected went wrong. Please try again.",
-  ["user_blocked" /* UserBlocked */]: "User's region is blocked from making payments."
-};
-var PaymentValidationErrors = /* @__PURE__ */ ((PaymentValidationErrors2) => {
-  PaymentValidationErrors2["MalformedRequest"] = "There was a problem with this request. Please try again or contact the app owner.";
-  PaymentValidationErrors2["InvalidTokenAddress"] = "The token address is invalid. Please contact the app owner.";
-  PaymentValidationErrors2["InvalidAppId"] = "The app ID is invalid. Please contact the app owner.";
-  PaymentValidationErrors2["DuplicateReference"] = "This reference ID already exists please generate a new one and try again.";
-  return PaymentValidationErrors2;
-})(PaymentValidationErrors || {});
-var WalletAuthErrorCodes = /* @__PURE__ */ ((WalletAuthErrorCodes2) => {
-  WalletAuthErrorCodes2["MalformedRequest"] = "malformed_request";
-  WalletAuthErrorCodes2["UserRejected"] = "user_rejected";
-  WalletAuthErrorCodes2["GenericError"] = "generic_error";
-  return WalletAuthErrorCodes2;
-})(WalletAuthErrorCodes || {});
-var WalletAuthErrorMessage = {
-  ["malformed_request" /* MalformedRequest */]: "Provided parameters in the request are invalid.",
-  ["user_rejected" /* UserRejected */]: "User rejected the request.",
-  ["generic_error" /* GenericError */]: "Something unexpected went wrong."
-};
-var SendTransactionErrorCodes = /* @__PURE__ */ ((SendTransactionErrorCodes2) => {
-  SendTransactionErrorCodes2["InvalidOperation"] = "invalid_operation";
-  SendTransactionErrorCodes2["UserRejected"] = "user_rejected";
-  SendTransactionErrorCodes2["InputError"] = "input_error";
-  SendTransactionErrorCodes2["SimulationFailed"] = "simulation_failed";
-  SendTransactionErrorCodes2["TransactionFailed"] = "transaction_failed";
-  SendTransactionErrorCodes2["GenericError"] = "generic_error";
-  SendTransactionErrorCodes2["DisallowedOperation"] = "disallowed_operation";
-  SendTransactionErrorCodes2["InvalidContract"] = "invalid_contract";
-  SendTransactionErrorCodes2["MaliciousOperation"] = "malicious_operation";
-  return SendTransactionErrorCodes2;
-})(SendTransactionErrorCodes || {});
-var SendTransactionErrorMessage = {
-  ["invalid_operation" /* InvalidOperation */]: "Transaction included an operation that was invalid",
-  ["user_rejected" /* UserRejected */]: "User rejected the request.",
-  ["input_error" /* InputError */]: "Invalid payload.",
-  ["simulation_failed" /* SimulationFailed */]: "The transaction simulation failed.",
-  ["transaction_failed" /* TransactionFailed */]: "The transaction failed. Please try again later.",
-  ["generic_error" /* GenericError */]: "Something unexpected went wrong. Please try again.",
-  ["disallowed_operation" /* DisallowedOperation */]: "The operation requested is not allowed. Please refer to the docs.",
-  ["invalid_contract" /* InvalidContract */]: "The contract address is not allowed for your application. Please check your developer portal configurations",
-  ["malicious_operation" /* MaliciousOperation */]: "The operation requested is considered malicious."
-};
-var SignMessageErrorCodes = /* @__PURE__ */ ((SignMessageErrorCodes2) => {
-  SignMessageErrorCodes2["InvalidMessage"] = "invalid_message";
-  SignMessageErrorCodes2["UserRejected"] = "user_rejected";
-  SignMessageErrorCodes2["GenericError"] = "generic_error";
-  return SignMessageErrorCodes2;
-})(SignMessageErrorCodes || {});
-var SignMessageErrorMessage = {
-  ["invalid_message" /* InvalidMessage */]: "Invalid message requested",
-  ["user_rejected" /* UserRejected */]: "User rejected the request.",
-  ["generic_error" /* GenericError */]: "Something unexpected went wrong."
-};
-var SignTypedDataErrorCodes = /* @__PURE__ */ ((SignTypedDataErrorCodes2) => {
-  SignTypedDataErrorCodes2["InvalidOperation"] = "invalid_operation";
-  SignTypedDataErrorCodes2["UserRejected"] = "user_rejected";
-  SignTypedDataErrorCodes2["InputError"] = "input_error";
-  SignTypedDataErrorCodes2["SimulationFailed"] = "simulation_failed";
-  SignTypedDataErrorCodes2["GenericError"] = "generic_error";
-  SignTypedDataErrorCodes2["DisallowedOperation"] = "disallowed_operation";
-  SignTypedDataErrorCodes2["InvalidContract"] = "invalid_contract";
-  SignTypedDataErrorCodes2["MaliciousOperation"] = "malicious_operation";
-  return SignTypedDataErrorCodes2;
-})(SignTypedDataErrorCodes || {});
-var SignTypedDataErrorMessage = SendTransactionErrorMessage;
-var MiniKitInstallErrorCodes = /* @__PURE__ */ ((MiniKitInstallErrorCodes2) => {
-  MiniKitInstallErrorCodes2["Unknown"] = "unknown";
-  MiniKitInstallErrorCodes2["AlreadyInstalled"] = "already_installed";
-  MiniKitInstallErrorCodes2["OutsideOfWorldApp"] = "outside_of_worldapp";
-  MiniKitInstallErrorCodes2["NotOnClient"] = "not_on_client";
-  MiniKitInstallErrorCodes2["AppOutOfDate"] = "app_out_of_date";
-  return MiniKitInstallErrorCodes2;
-})(MiniKitInstallErrorCodes || {});
-var MiniKitInstallErrorMessage = {
-  ["unknown" /* Unknown */]: "Failed to install MiniKit.",
-  ["already_installed" /* AlreadyInstalled */]: "MiniKit is already installed.",
-  ["outside_of_worldapp" /* OutsideOfWorldApp */]: "MiniApp launched outside of WorldApp.",
-  ["not_on_client" /* NotOnClient */]: "Window object is not available.",
-  ["app_out_of_date" /* AppOutOfDate */]: "WorldApp is out of date. Please update the app."
-};
-var ShareContactsErrorCodes = /* @__PURE__ */ ((ShareContactsErrorCodes2) => {
-  ShareContactsErrorCodes2["UserRejected"] = "user_rejected";
-  ShareContactsErrorCodes2["GenericError"] = "generic_error";
-  return ShareContactsErrorCodes2;
-})(ShareContactsErrorCodes || {});
-var ShareContactsErrorMessage = {
-  ["user_rejected" /* UserRejected */]: "User rejected the request.",
-  ["generic_error" /* GenericError */]: "Something unexpected went wrong."
-};
-
-// minikit.ts
-var import_idkit_core3 = require("@worldcoin/idkit-core");
-var import_hashing = require("@worldcoin/idkit-core/hashing");
-
-// helpers/siwe/validate-wallet-auth-command-input.ts
-var validateWalletAuthCommandInput = (params) => {
-  if (!params.nonce) {
-    return { valid: false, message: "'nonce' is required" };
-  }
-  if (params.nonce.length < 8) {
-    return { valid: false, message: "'nonce' must be at least 8 characters" };
+// helpers/payment/client.ts
+var tokenToDecimals = (amount, token) => {
+  const decimals = TokenDecimals[token];
+  if (decimals === void 0) {
+    throw new Error(`Invalid token: ${token}`);
   }
-  if (params.statement && params.statement.includes("\n")) {
-    return { valid: false, message: "'statement' must not contain newlines" };
+  const factor = 10 ** decimals;
+  const result = amount * factor;
+  if (!Number.isInteger(result)) {
+    throw new Error(`The resulting amount is not a whole number: ${result}`);
   }
-  if (params.expirationTime && new Date(params.expirationTime) < /* @__PURE__ */ new Date()) {
-    return { valid: false, message: "'expirationTime' must be in the future" };
+  return result;
+};
+var validatePaymentPayload = (payload) => {
+  if (payload.tokens.some(
+    (token) => token.symbol == "USDCE" && parseFloat(token.token_amount) < 0.1
+  )) {
+    console.error("USDCE amount should be greater than $0.1");
+    return false;
   }
-  if (params.expirationTime && new Date(params.expirationTime) > new Date(Date.now() + 7 * 24 * 60 * 60 * 1e3)) {
-    return { valid: false, message: "'expirationTime' must be within 7 days" };
+  if (payload.reference.length > 36) {
+    console.error("Reference must not exceed 36 characters");
+    return false;
   }
-  if (params.notBefore && new Date(params.notBefore) > new Date(Date.now() + 7 * 24 * 60 * 60 * 1e3)) {
-    return { valid: false, message: "'notBefore' must be within 7 days" };
+  if (typeof payload.reference !== "string") {
+    throw new Error("Reference must be a string");
   }
-  return { valid: true };
+  return true;
 };
 
 // helpers/siwe/siwe.ts
@@ -364,15 +217,23 @@ var generateSiweMessage = (siweMessageData) => {
 };
 var SAFE_CONTRACT_ABI = [
   {
-    name: "checkSignatures",
-    type: "function",
-    stateMutability: "view",
     inputs: [
-      { name: "dataHash", type: "bytes32" },
-      { name: "data", type: "bytes" },
-      { name: "signature", type: "bytes" }
+      {
+        internalType: "address",
+        name: "owner",
+        type: "address"
+      }
     ],
-    outputs: []
+    name: "isOwner",
+    outputs: [
+      {
+        internalType: "bool",
+        name: "",
+        type: "bool"
+      }
+    ],
+    stateMutability: "view",
+    type: "function"
   }
 ];
 var verifySiweMessage = async (payload, nonce, statement, requestId, userProvider) => {
@@ -408,9 +269,8 @@ var verifySiweMessage = async (payload, nonce, statement, requestId, userProvide
       `Request ID mismatch. Got: ${siweMessageData.request_id}, Expected: ${requestId}`
     );
   }
-  let provider = userProvider || (0, import_viem.createPublicClient)({ chain: import_chains.optimism, transport: (0, import_viem.http)() });
+  let provider = userProvider || (0, import_viem.createPublicClient)({ chain: import_chains.worldchain, transport: (0, import_viem.http)() });
   const signedMessage = `${ERC_191_PREFIX}${message.length}${message}`;
-  const messageBytes = Buffer.from(signedMessage, "utf8").toString("hex");
   const hashedMessage = (0, import_viem.hashMessage)(signedMessage);
   const contract = (0, import_viem.getContract)({
     address,
@@ -418,43 +278,71 @@ var verifySiweMessage = async (payload, nonce, statement, requestId, userProvide
     client: provider
   });
   try {
-    await contract.read.checkSignatures([
-      hashedMessage,
-      `0x${messageBytes}`,
-      `0x${signature}`
-    ]);
+    const recoveredAddress = await (0, import_viem.recoverAddress)({
+      hash: hashedMessage,
+      signature: `0x${signature}`
+    });
+    const isOwner = await contract.read.isOwner([recoveredAddress]);
+    if (!isOwner) {
+      throw new Error("Signature verification failed, invalid owner");
+    }
   } catch (error) {
     throw new Error("Signature verification failed");
   }
   return { isValid: true, siweMessageData };
 };
 
-// helpers/payment/client.ts
-var tokenToDecimals = (amount, token) => {
-  const decimals = TokenDecimals[token];
-  if (decimals === void 0) {
-    throw new Error(`Invalid token: ${token}`);
+// helpers/siwe/validate-wallet-auth-command-input.ts
+var validateWalletAuthCommandInput = (params) => {
+  if (!params.nonce) {
+    return { valid: false, message: "'nonce' is required" };
   }
-  const factor = 10 ** decimals;
-  const result = amount * factor;
-  if (!Number.isInteger(result)) {
-    throw new Error(`The resulting amount is not a whole number: ${result}`);
+  if (params.nonce.length < 8) {
+    return { valid: false, message: "'nonce' must be at least 8 characters" };
   }
-  return result;
+  if (params.statement && params.statement.includes("\n")) {
+    return { valid: false, message: "'statement' must not contain newlines" };
+  }
+  if (params.expirationTime && new Date(params.expirationTime) < /* @__PURE__ */ new Date()) {
+    return { valid: false, message: "'expirationTime' must be in the future" };
+  }
+  if (params.expirationTime && new Date(params.expirationTime) > new Date(Date.now() + 7 * 24 * 60 * 60 * 1e3)) {
+    return { valid: false, message: "'expirationTime' must be within 7 days" };
+  }
+  if (params.notBefore && new Date(params.notBefore) > new Date(Date.now() + 7 * 24 * 60 * 60 * 1e3)) {
+    return { valid: false, message: "'notBefore' must be within 7 days" };
+  }
+  return { valid: true };
 };
-var validatePaymentPayload = (payload) => {
-  if (payload.tokens.some(
-    (token) => token.symbol == "USDCE" && parseFloat(token.token_amount) < 0.1
-  )) {
-    console.error("USDCE amount should be greater than $0.1");
-    return false;
+
+// helpers/transaction/validate-payload.ts
+var isValidHex = (str) => {
+  return /^0x[0-9A-Fa-f]+$/.test(str);
+};
+var validate = (payload) => {
+  if (typeof payload === "string") return { isValid: true };
+  if (Array.isArray(payload)) {
+    const isValid = payload.every((value) => validate(value).isValid);
+    return { isValid };
   }
-  if (payload.reference.length > 36) {
-    console.error("Reference must not exceed 36 characters");
-    return false;
+  if (typeof payload === "object" && payload !== null) {
+    if ("value" in payload && payload.value !== void 0) {
+      if (typeof payload.value !== "string" || !isValidHex(payload.value)) {
+        console.error(
+          "Transaction value must be a valid hex string",
+          payload.value
+        );
+        return { isValid: false };
+      }
+    }
+    const isValid = Object.values(payload).every(
+      (value) => validate(value).isValid
+    );
+    return { isValid };
   }
-  return true;
+  return { isValid: false };
 };
+var validateSendTransactionPayload = (payload) => validate(payload);
 
 // helpers/usernames/index.ts
 var getUserProfile = async (address) => {
@@ -468,8 +356,188 @@ var getUserProfile = async (address) => {
     })
   });
   const usernames = await res.json();
-  return usernames[0] ?? { username: null, profilePictureUrl: null };
+  return usernames?.[0] ?? { username: null, profilePictureUrl: null };
+};
+
+// types/commands.ts
+var Command = /* @__PURE__ */ ((Command2) => {
+  Command2["Verify"] = "verify";
+  Command2["Pay"] = "pay";
+  Command2["WalletAuth"] = "wallet-auth";
+  Command2["SendTransaction"] = "send-transaction";
+  Command2["SignMessage"] = "sign-message";
+  Command2["SignTypedData"] = "sign-typed-data";
+  Command2["ShareContacts"] = "share-contacts";
+  Command2["RequestPermission"] = "request-permission";
+  return Command2;
+})(Command || {});
+var Permission = /* @__PURE__ */ ((Permission2) => {
+  Permission2["Notifications"] = "notifications";
+  return Permission2;
+})(Permission || {});
+
+// types/errors.ts
+var import_idkit_core = require("@worldcoin/idkit-core");
+var import_idkit_core2 = require("@worldcoin/idkit-core");
+var VerificationErrorMessage = {
+  [import_idkit_core.AppErrorCodes.VerificationRejected]: "You\u2019ve cancelled the request in World App.",
+  [import_idkit_core.AppErrorCodes.MaxVerificationsReached]: "You have already verified the maximum number of times for this action.",
+  [import_idkit_core.AppErrorCodes.CredentialUnavailable]: "It seems you do not have the verification level required by this app.",
+  [import_idkit_core.AppErrorCodes.MalformedRequest]: "There was a problem with this request. Please try again or contact the app owner.",
+  [import_idkit_core.AppErrorCodes.InvalidNetwork]: "Invalid network. If you are the app owner, visit docs.worldcoin.org/test for details.",
+  [import_idkit_core.AppErrorCodes.InclusionProofFailed]: "There was an issue fetching your credential. Please try again.",
+  [import_idkit_core.AppErrorCodes.InclusionProofPending]: "Your identity is still being registered. Please wait a few minutes and try again.",
+  [import_idkit_core.AppErrorCodes.UnexpectedResponse]: "Unexpected response from your wallet. Please try again.",
+  [import_idkit_core.AppErrorCodes.FailedByHostApp]: "Verification failed by the app. Please contact the app owner for details.",
+  [import_idkit_core.AppErrorCodes.GenericError]: "Something unexpected went wrong. Please try again.",
+  [import_idkit_core.AppErrorCodes.ConnectionFailed]: "Connection to your wallet failed. Please try again."
+};
+var PaymentErrorCodes = /* @__PURE__ */ ((PaymentErrorCodes2) => {
+  PaymentErrorCodes2["InputError"] = "input_error";
+  PaymentErrorCodes2["PaymentRejected"] = "payment_rejected";
+  PaymentErrorCodes2["InvalidReceiver"] = "invalid_receiver";
+  PaymentErrorCodes2["InsufficientBalance"] = "insufficient_balance";
+  PaymentErrorCodes2["TransactionFailed"] = "transaction_failed";
+  PaymentErrorCodes2["GenericError"] = "generic_error";
+  PaymentErrorCodes2["UserBlocked"] = "user_blocked";
+  return PaymentErrorCodes2;
+})(PaymentErrorCodes || {});
+var PaymentErrorMessage = {
+  ["input_error" /* InputError */]: "There was a problem with this request. Please try again or contact the app owner.",
+  ["payment_rejected" /* PaymentRejected */]: "You\u2019ve cancelled the payment in World App.",
+  ["invalid_receiver" /* InvalidReceiver */]: "The receiver address is invalid. Please contact the app owner.",
+  ["insufficient_balance" /* InsufficientBalance */]: "You do not have enough balance to complete this transaction.",
+  ["transaction_failed" /* TransactionFailed */]: "The transaction failed. Please try again.",
+  ["generic_error" /* GenericError */]: "Something unexpected went wrong. Please try again.",
+  ["user_blocked" /* UserBlocked */]: "User's region is blocked from making payments."
+};
+var PaymentValidationErrors = /* @__PURE__ */ ((PaymentValidationErrors2) => {
+  PaymentValidationErrors2["MalformedRequest"] = "There was a problem with this request. Please try again or contact the app owner.";
+  PaymentValidationErrors2["InvalidTokenAddress"] = "The token address is invalid. Please contact the app owner.";
+  PaymentValidationErrors2["InvalidAppId"] = "The app ID is invalid. Please contact the app owner.";
+  PaymentValidationErrors2["DuplicateReference"] = "This reference ID already exists please generate a new one and try again.";
+  return PaymentValidationErrors2;
+})(PaymentValidationErrors || {});
+var WalletAuthErrorCodes = /* @__PURE__ */ ((WalletAuthErrorCodes2) => {
+  WalletAuthErrorCodes2["MalformedRequest"] = "malformed_request";
+  WalletAuthErrorCodes2["UserRejected"] = "user_rejected";
+  WalletAuthErrorCodes2["GenericError"] = "generic_error";
+  return WalletAuthErrorCodes2;
+})(WalletAuthErrorCodes || {});
+var WalletAuthErrorMessage = {
+  ["malformed_request" /* MalformedRequest */]: "Provided parameters in the request are invalid.",
+  ["user_rejected" /* UserRejected */]: "User rejected the request.",
+  ["generic_error" /* GenericError */]: "Something unexpected went wrong."
+};
+var SendTransactionErrorCodes = /* @__PURE__ */ ((SendTransactionErrorCodes2) => {
+  SendTransactionErrorCodes2["InvalidOperation"] = "invalid_operation";
+  SendTransactionErrorCodes2["UserRejected"] = "user_rejected";
+  SendTransactionErrorCodes2["InputError"] = "input_error";
+  SendTransactionErrorCodes2["SimulationFailed"] = "simulation_failed";
+  SendTransactionErrorCodes2["TransactionFailed"] = "transaction_failed";
+  SendTransactionErrorCodes2["GenericError"] = "generic_error";
+  SendTransactionErrorCodes2["DisallowedOperation"] = "disallowed_operation";
+  SendTransactionErrorCodes2["InvalidContract"] = "invalid_contract";
+  SendTransactionErrorCodes2["MaliciousOperation"] = "malicious_operation";
+  return SendTransactionErrorCodes2;
+})(SendTransactionErrorCodes || {});
+var SendTransactionErrorMessage = {
+  ["invalid_operation" /* InvalidOperation */]: "Transaction included an operation that was invalid",
+  ["user_rejected" /* UserRejected */]: "User rejected the request.",
+  ["input_error" /* InputError */]: "Invalid payload.",
+  ["simulation_failed" /* SimulationFailed */]: "The transaction simulation failed.",
+  ["transaction_failed" /* TransactionFailed */]: "The transaction failed. Please try again later.",
+  ["generic_error" /* GenericError */]: "Something unexpected went wrong. Please try again.",
+  ["disallowed_operation" /* DisallowedOperation */]: "The operation requested is not allowed. Please refer to the docs.",
+  ["invalid_contract" /* InvalidContract */]: "The contract address is not allowed for your application. Please check your developer portal configurations",
+  ["malicious_operation" /* MaliciousOperation */]: "The operation requested is considered malicious."
+};
+var SignMessageErrorCodes = /* @__PURE__ */ ((SignMessageErrorCodes2) => {
+  SignMessageErrorCodes2["InvalidMessage"] = "invalid_message";
+  SignMessageErrorCodes2["UserRejected"] = "user_rejected";
+  SignMessageErrorCodes2["GenericError"] = "generic_error";
+  return SignMessageErrorCodes2;
+})(SignMessageErrorCodes || {});
+var SignMessageErrorMessage = {
+  ["invalid_message" /* InvalidMessage */]: "Invalid message requested",
+  ["user_rejected" /* UserRejected */]: "User rejected the request.",
+  ["generic_error" /* GenericError */]: "Something unexpected went wrong."
+};
+var SignTypedDataErrorCodes = /* @__PURE__ */ ((SignTypedDataErrorCodes2) => {
+  SignTypedDataErrorCodes2["InvalidOperation"] = "invalid_operation";
+  SignTypedDataErrorCodes2["UserRejected"] = "user_rejected";
+  SignTypedDataErrorCodes2["InputError"] = "input_error";
+  SignTypedDataErrorCodes2["SimulationFailed"] = "simulation_failed";
+  SignTypedDataErrorCodes2["GenericError"] = "generic_error";
+  SignTypedDataErrorCodes2["DisallowedOperation"] = "disallowed_operation";
+  SignTypedDataErrorCodes2["InvalidContract"] = "invalid_contract";
+  SignTypedDataErrorCodes2["MaliciousOperation"] = "malicious_operation";
+  return SignTypedDataErrorCodes2;
+})(SignTypedDataErrorCodes || {});
+var SignTypedDataErrorMessage = SendTransactionErrorMessage;
+var MiniKitInstallErrorCodes = /* @__PURE__ */ ((MiniKitInstallErrorCodes2) => {
+  MiniKitInstallErrorCodes2["Unknown"] = "unknown";
+  MiniKitInstallErrorCodes2["AlreadyInstalled"] = "already_installed";
+  MiniKitInstallErrorCodes2["OutsideOfWorldApp"] = "outside_of_worldapp";
+  MiniKitInstallErrorCodes2["NotOnClient"] = "not_on_client";
+  MiniKitInstallErrorCodes2["AppOutOfDate"] = "app_out_of_date";
+  return MiniKitInstallErrorCodes2;
+})(MiniKitInstallErrorCodes || {});
+var MiniKitInstallErrorMessage = {
+  ["unknown" /* Unknown */]: "Failed to install MiniKit.",
+  ["already_installed" /* AlreadyInstalled */]: "MiniKit is already installed.",
+  ["outside_of_worldapp" /* OutsideOfWorldApp */]: "MiniApp launched outside of WorldApp.",
+  ["not_on_client" /* NotOnClient */]: "Window object is not available.",
+  ["app_out_of_date" /* AppOutOfDate */]: "WorldApp is out of date. Please update the app."
 };
+var ShareContactsErrorCodes = /* @__PURE__ */ ((ShareContactsErrorCodes2) => {
+  ShareContactsErrorCodes2["UserRejected"] = "user_rejected";
+  ShareContactsErrorCodes2["GenericError"] = "generic_error";
+  return ShareContactsErrorCodes2;
+})(ShareContactsErrorCodes || {});
+var ShareContactsErrorMessage = {
+  ["user_rejected" /* UserRejected */]: "User rejected the request.",
+  ["generic_error" /* GenericError */]: "Something unexpected went wrong."
+};
+var RequestPermissionErrorCodes = /* @__PURE__ */ ((RequestPermissionErrorCodes2) => {
+  RequestPermissionErrorCodes2["UserRejected"] = "user_rejected";
+  RequestPermissionErrorCodes2["GenericError"] = "generic_error";
+  RequestPermissionErrorCodes2["AlreadyRequested"] = "already_requested";
+  RequestPermissionErrorCodes2["PermissionDisabled"] = "permission_disabled";
+  RequestPermissionErrorCodes2["AlreadyGranted"] = "already_granted";
+  RequestPermissionErrorCodes2["UnsupportedPermission"] = "unsupported_permission";
+  return RequestPermissionErrorCodes2;
+})(RequestPermissionErrorCodes || {});
+var RequestPermissionErrorMessage = {
+  ["user_rejected" /* UserRejected */]: "User declined sharing contacts",
+  ["generic_error" /* GenericError */]: "Request failed for unknown reason.",
+  ["already_requested" /* AlreadyRequested */]: "User has already declined turning on notifications once",
+  ["permission_disabled" /* PermissionDisabled */]: "User does not have this permission enabled in World App",
+  ["already_granted" /* AlreadyGranted */]: "If the user has already granted this mini app permission",
+  ["unsupported_permission" /* UnsupportedPermission */]: "The permission requested is not supported by this mini app"
+};
+
+// helpers/send-webview-event.ts
+var sendWebviewEvent = (payload) => {
+  if (window.webkit) {
+    window.webkit?.messageHandlers?.minikit?.postMessage?.(payload);
+  } else if (window.Android) {
+    window.Android.postMessage?.(JSON.stringify(payload));
+  }
+};
+
+// types/responses.ts
+var ResponseEvent = /* @__PURE__ */ ((ResponseEvent2) => {
+  ResponseEvent2["MiniAppVerifyAction"] = "miniapp-verify-action";
+  ResponseEvent2["MiniAppPayment"] = "miniapp-payment";
+  ResponseEvent2["MiniAppWalletAuth"] = "miniapp-wallet-auth";
+  ResponseEvent2["MiniAppSendTransaction"] = "miniapp-send-transaction";
+  ResponseEvent2["MiniAppSignMessage"] = "miniapp-sign-message";
+  ResponseEvent2["MiniAppSignTypedData"] = "miniapp-sign-typed-data";
+  ResponseEvent2["MiniAppShareContacts"] = "miniapp-share-contacts";
+  ResponseEvent2["MiniAppRequestPermission"] = "miniapp-request-permission";
+  return ResponseEvent2;
+})(ResponseEvent || {});
 
 // minikit.ts
 var sendMiniKitEvent = (payload) => {
@@ -488,12 +556,8 @@ var _MiniKit = class _MiniKit {
       const wrappedHandler = (payload) => {
         if (payload.status === "success") {
           _MiniKit.walletAddress = payload.address;
-          getUserProfile(payload.address).then((queryResponse) => {
-            _MiniKit.user = {
-              username: queryResponse.username,
-              profilePictureUrl: queryResponse.profilePictureUrl,
-              walletAddress: payload.address
-            };
+          _MiniKit.getUserByAddress(payload.address).then((user) => {
+            _MiniKit.user = user;
           });
         }
         originalHandler(payload);
@@ -602,7 +666,8 @@ _MiniKit.commandVersion = {
   ["send-transaction" /* SendTransaction */]: 1,
   ["sign-message" /* SignMessage */]: 1,
   ["sign-typed-data" /* SignTypedData */]: 1,
-  ["share-contacts" /* ShareContacts */]: 1
+  ["share-contacts" /* ShareContacts */]: 1,
+  ["request-permission" /* RequestPermission */]: 1
 };
 _MiniKit.isCommandAvailable = {
   ["verify" /* Verify */]: false,
@@ -611,7 +676,8 @@ _MiniKit.isCommandAvailable = {
   ["send-transaction" /* SendTransaction */]: false,
   ["sign-message" /* SignMessage */]: false,
   ["sign-typed-data" /* SignTypedData */]: false,
-  ["share-contacts" /* ShareContacts */]: false
+  ["share-contacts" /* ShareContacts */]: false,
+  ["request-permission" /* RequestPermission */]: false
 };
 _MiniKit.listeners = {
   ["miniapp-verify-action" /* MiniAppVerifyAction */]: () => {
@@ -627,6 +693,8 @@ _MiniKit.listeners = {
   ["miniapp-sign-typed-data" /* MiniAppSignTypedData */]: () => {
   },
   ["miniapp-share-contacts" /* MiniAppShareContacts */]: () => {
+  },
+  ["miniapp-request-permission" /* MiniAppRequestPermission */]: () => {
   }
 };
 _MiniKit.appId = null;
@@ -635,6 +703,14 @@ _MiniKit.appId = null;
  */
 _MiniKit.walletAddress = null;
 _MiniKit.user = null;
+_MiniKit.getUserByAddress = async (address) => {
+  const userProfile = await getUserProfile(address);
+  return {
+    walletAddress: address,
+    username: userProfile.username,
+    profilePictureUrl: userProfile.profilePictureUrl
+  };
+};
 _MiniKit.commands = {
   verify: (payload) => {
     if (typeof window === "undefined" || !_MiniKit.isCommandAvailable["verify" /* Verify */]) {
@@ -708,7 +784,7 @@ _MiniKit.commands = {
       statement: payload.statement ?? void 0,
       uri: window.location.href,
       version: 1,
-      chain_id: 10,
+      chain_id: 480,
       nonce: payload.nonce,
       issued_at: (/* @__PURE__ */ new Date()).toISOString(),
       expiration_time: payload.expirationTime?.toISOString() ?? void 0,
@@ -730,6 +806,12 @@ _MiniKit.commands = {
       );
       return null;
     }
+    if (!validateSendTransactionPayload(payload).isValid) {
+      console.error(
+        "Invalid sendTransaction payload - some object properties are not strings"
+      );
+      return null;
+    }
     sendMiniKitEvent({
       command: "send-transaction" /* SendTransaction */,
       version: 1,
@@ -778,6 +860,20 @@ _MiniKit.commands = {
       payload
     });
     return payload;
+  },
+  requestPermission: (payload) => {
+    if (typeof window === "undefined" || !_MiniKit.isCommandAvailable["request-permission" /* RequestPermission */]) {
+      console.error(
+        "'requestPermission' command is unavailable. Check MiniKit.install() or update the app version"
+      );
+      return null;
+    }
+    sendMiniKitEvent({
+      command: "request-permission" /* RequestPermission */,
+      version: 1,
+      payload
+    });
+    return payload;
   }
 };
 /**
@@ -888,6 +984,20 @@ _MiniKit.commandsAsync = {
         reject(error);
       }
     });
+  },
+  requestPermission: async (payload) => {
+    return new Promise(async (resolve, reject) => {
+      try {
+        const response = await _MiniKit.awaitCommand(
+          "miniapp-request-permission" /* MiniAppRequestPermission */,
+          "request-permission" /* RequestPermission */,
+          () => _MiniKit.commands.requestPermission(payload)
+        );
+        resolve(response);
+      } catch (error) {
+        reject(error);
+      }
+    });
   }
 };
 var MiniKit = _MiniKit;
@@ -957,6 +1067,9 @@ var getIsUserVerified = async (walletAddress, rpcUrl) => {
   PaymentErrorCodes,
   PaymentErrorMessage,
   PaymentValidationErrors,
+  Permission,
+  RequestPermissionErrorCodes,
+  RequestPermissionErrorMessage,
   ResponseEvent,
   SAFE_CONTRACT_ABI,
   SendTransactionErrorCodes,