@zkproofport-ai/sdk 0.1.0

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAmBA,OAAO,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAE9D,YAAY;AACZ,OAAO,EACL,QAAQ,EACR,0BAA0B,EAC1B,kBAAkB,EAClB,cAAc,GACf,MAAM,gBAAgB,CAAC;AAExB,gBAAgB;AAChB,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3C,0BAA0B;AAC1B,OAAO,EAAE,aAAa,EAAE,MAAM,WAAW,CAAC;AAG1C,4CAA4C;AAC5C,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC/D,OAAO,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAC3C,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AACzC,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAEzD,oBAAoB;AACpB,OAAO,EACL,aAAa,EACb,iBAAiB,EACjB,YAAY,EACZ,gBAAgB,EAChB,iBAAiB,EACjB,UAAU,EACV,wBAAwB,GACzB,MAAM,aAAa,CAAC;AAIrB,OAAO,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAEnF,2CAA2C;AAC3C,OAAO,EAAE,eAAe,EAAE,MAAM,UAAU,CAAC;AAE3C,cAAc;AACd,OAAO,EACL,gBAAgB,EAChB,uBAAuB,EACvB,mBAAmB,EACnB,qBAAqB,EACrB,gBAAgB,GACjB,MAAM,kBAAkB,CAAC;AAE1B,SAAS;AACT,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,qBAAqB,GACtB,MAAM,aAAa,CAAC"}

package/dist/inputs.d.ts

@@ -0,0 +1,56 @@
+import type { CircuitId, ProveInputs, ClientConfig } from './types.js';
+/**
+ * Convert a hex string to an array of byte values (numbers 0-255).
+ */
+export declare function hexToBytes(hex: string): number[];
+/**
+ * Extract X and Y coordinates from an uncompressed public key.
+ * Input: "0x04..." (130 hex chars) or "04..." (128 hex chars)
+ * Output: { x: "0x...", y: "0x..." } each 64 hex chars (32 bytes)
+ */
+export declare function extractPubkeyCoordinates(pubkey: string): {
+    x: string;
+    y: string;
+};
+/**
+ * Compute the deterministic signal hash.
+ * signalHash = keccak256(solidityPacked(address, scopeString, circuitName))
+ */
+export declare function computeSignalHash(userAddress: string, scopeString: string, circuitName: string): Uint8Array;
+/**
+ * Recover user's uncompressed public key from their signature over the signal hash.
+ * Returns "0x04..." (130 hex chars).
+ */
+export declare function recoverUserPubkey(signalHash: Uint8Array, userSignature: string): string;
+/**
+ * Compute scope bytes from a scope string.
+ * scope = keccak256(toUtf8Bytes(scopeString))
+ */
+export declare function computeScope(scopeString: string): Uint8Array;
+/**
+ * Compute nullifier = keccak256(keccak256(address + signalHash) + scope)
+ */
+export declare function computeNullifier(userAddress: string, signalHash: Uint8Array, scopeBytes: Uint8Array): Uint8Array;
+/**
+ * Prepare all inputs for POST /prove.
+ *
+ * Steps:
+ * 1. Compute signal hash
+ * 2. Recover user public key from signature
+ * 3. Fetch EAS attestation + raw transaction from Base chain
+ * 4. Recover Coinbase attester public key from tx signature
+ * 5. Build authorized signer Merkle tree + proof
+ * 6. Compute scope bytes and nullifier
+ * 7. Assemble the ProveInputs object
+ *
+ * All hex string fields use "0x..." format. The server converts to decimal internally.
+ */
+export declare function prepareInputs(config: ClientConfig, params: {
+    circuitId: CircuitId;
+    userAddress: string;
+    userSignature: string;
+    scope: string;
+    countryList?: string[];
+    isIncluded?: boolean;
+}): Promise<ProveInputs>;
+//# sourceMappingURL=inputs.d.ts.map

package/dist/inputs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"inputs.d.ts","sourceRoot":"","sources":["../src/inputs.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAQvE;;GAEG;AACH,wBAAgB,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,CAOhD;AAED;;;;GAIG;AACH,wBAAgB,wBAAwB,CAAC,MAAM,EAAE,MAAM,GAAG;IAAE,CAAC,EAAE,MAAM,CAAC;IAAC,CAAC,EAAE,MAAM,CAAA;CAAE,CAKjF;AAID;;;GAGG;AACH,wBAAgB,iBAAiB,CAC/B,WAAW,EAAE,MAAM,EACnB,WAAW,EAAE,MAAM,EACnB,WAAW,EAAE,MAAM,GAClB,UAAU,CAMZ;AAED;;;GAGG;AACH,wBAAgB,iBAAiB,CAC/B,UAAU,EAAE,UAAU,EACtB,aAAa,EAAE,MAAM,GACpB,MAAM,CAKR;AAED;;;GAGG;AACH,wBAAgB,YAAY,CAAC,WAAW,EAAE,MAAM,GAAG,UAAU,CAE5D;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAC9B,WAAW,EAAE,MAAM,EACnB,UAAU,EAAE,UAAU,EACtB,UAAU,EAAE,UAAU,GACrB,UAAU,CAQZ;AA4ED;;;;;;;;;;;;;GAaG;AACH,wBAAsB,aAAa,CAAC,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE;IAChE,SAAS,EAAE,SAAS,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;IACtB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB,GAAG,OAAO,CAAC,WAAW,CAAC,CAuEvB"}

package/dist/inputs.js

@@ -0,0 +1,204 @@
+import { ethers } from 'ethers';
+import { CIRCUITS, MERKLE_PROOF_MAX_DEPTH, COUNTRY_LIST_MAX_LENGTH } from './constants.js';
+import { fetchAttestation, recoverAttesterPubkey, getSignerAddress } from './attestation.js';
+import { findSignerIndex, buildSignerMerkleTree } from './merkle.js';
+// ─── Utility functions ──────────────────────────────────────────────────
+/**
+ * Convert a hex string to an array of byte values (numbers 0-255).
+ */
+export function hexToBytes(hex) {
+    const cleanHex = hex.startsWith('0x') ? hex.slice(2) : hex;
+    const bytes = [];
+    for (let i = 0; i < cleanHex.length; i += 2) {
+        bytes.push(parseInt(cleanHex.slice(i, i + 2), 16));
+    }
+    return bytes;
+}
+/**
+ * Extract X and Y coordinates from an uncompressed public key.
+ * Input: "0x04..." (130 hex chars) or "04..." (128 hex chars)
+ * Output: { x: "0x...", y: "0x..." } each 64 hex chars (32 bytes)
+ */
+export function extractPubkeyCoordinates(pubkey) {
+    const pubkeyHex = pubkey.startsWith('0x04') ? pubkey.slice(4) : pubkey.slice(2);
+    const x = '0x' + pubkeyHex.slice(0, 64);
+    const y = '0x' + pubkeyHex.slice(64, 128);
+    return { x, y };
+}
+// ─── Core computation functions ─────────────────────────────────────────
+/**
+ * Compute the deterministic signal hash.
+ * signalHash = keccak256(solidityPacked(address, scopeString, circuitName))
+ */
+export function computeSignalHash(userAddress, scopeString, circuitName) {
+    const signalPreimage = ethers.solidityPacked(['address', 'string', 'string'], [userAddress, scopeString, circuitName]);
+    return ethers.getBytes(ethers.keccak256(signalPreimage));
+}
+/**
+ * Recover user's uncompressed public key from their signature over the signal hash.
+ * Returns "0x04..." (130 hex chars).
+ */
+export function recoverUserPubkey(signalHash, userSignature) {
+    const messageHex = ethers.hexlify(signalHash);
+    const ethSignedHash = ethers.hashMessage(ethers.getBytes(messageHex));
+    const pubkey = ethers.SigningKey.recoverPublicKey(ethSignedHash, userSignature);
+    return pubkey;
+}
+/**
+ * Compute scope bytes from a scope string.
+ * scope = keccak256(toUtf8Bytes(scopeString))
+ */
+export function computeScope(scopeString) {
+    return ethers.getBytes(ethers.keccak256(ethers.toUtf8Bytes(scopeString)));
+}
+/**
+ * Compute nullifier = keccak256(keccak256(address + signalHash) + scope)
+ */
+export function computeNullifier(userAddress, signalHash, scopeBytes) {
+    const userAddressBytes = ethers.getBytes(userAddress);
+    const userSecret = ethers.getBytes(ethers.keccak256(ethers.concat([userAddressBytes, signalHash])));
+    return ethers.getBytes(ethers.keccak256(ethers.concat([userSecret, scopeBytes])));
+}
+// ─── Internal helpers for input assembly ────────────────────────────────
+/**
+ * Pad a byte array to a target length with trailing zeros.
+ */
+function padBytes(arr, targetLength) {
+    const result = [...arr];
+    while (result.length < targetLength) {
+        result.push(0);
+    }
+    return result;
+}
+/**
+ * Split a signature into r (32 bytes) + s (32 bytes) = 64 bytes.
+ * Drops the v component.
+ */
+function splitSignatureToBytes(signature) {
+    const sig = ethers.Signature.from(signature);
+    const rBytes = hexToBytes(sig.r);
+    const sBytes = hexToBytes(sig.s);
+    return [...rBytes, ...sBytes];
+}
+/**
+ * Encode a country list into the [[u8; 2]; 10] format.
+ * Each country code is 2 ASCII bytes (e.g., "US" -> [85, 83]).
+ * Pads to 10 entries with zero pairs.
+ */
+function encodeCountryList(countries) {
+    const result = [];
+    for (let i = 0; i < COUNTRY_LIST_MAX_LENGTH; i++) {
+        if (i < countries.length) {
+            result.push(countries[i].charCodeAt(0).toString());
+            result.push(countries[i].charCodeAt(1).toString());
+        }
+        else {
+            result.push('0');
+            result.push('0');
+        }
+    }
+    return result;
+}
+/**
+ * Convert byte values to decimal string entries.
+ */
+function bytesToDecimalStrings(bytes) {
+    return bytes.map(b => b.toString());
+}
+/**
+ * Convert a Uint8Array to decimal string entries.
+ */
+function uint8ArrayToDecimalStrings(arr) {
+    return Array.from(arr).map(b => b.toString());
+}
+/**
+ * Build a padded Merkle proof: 8 * 32 = 256 bytes as decimal strings.
+ */
+function buildPaddedMerkleProof(proof) {
+    const result = [];
+    for (let i = 0; i < MERKLE_PROOF_MAX_DEPTH; i++) {
+        if (i < proof.length) {
+            result.push(...bytesToDecimalStrings(hexToBytes(proof[i])));
+        }
+        else {
+            result.push(...bytesToDecimalStrings(new Array(32).fill(0)));
+        }
+    }
+    return result;
+}
+// ─── Main function ──────────────────────────────────────────────────────
+/**
+ * Prepare all inputs for POST /prove.
+ *
+ * Steps:
+ * 1. Compute signal hash
+ * 2. Recover user public key from signature
+ * 3. Fetch EAS attestation + raw transaction from Base chain
+ * 4. Recover Coinbase attester public key from tx signature
+ * 5. Build authorized signer Merkle tree + proof
+ * 6. Compute scope bytes and nullifier
+ * 7. Assemble the ProveInputs object
+ *
+ * All hex string fields use "0x..." format. The server converts to decimal internally.
+ */
+export async function prepareInputs(config, params) {
+    const { circuitId, userAddress, userSignature, scope } = params;
+    // Validate circuit
+    if (!(circuitId in CIRCUITS)) {
+        throw new Error(`Unknown circuit: ${circuitId}`);
+    }
+    // Validate country fields for country circuit
+    if (circuitId === 'coinbase_country_attestation') {
+        if (!params.countryList || params.countryList.length === 0) {
+            throw new Error('countryList is required for coinbase_country_attestation');
+        }
+        if (params.isIncluded === undefined || params.isIncluded === null) {
+            throw new Error('isIncluded is required for coinbase_country_attestation');
+        }
+    }
+    // Step 1: Compute signal hash
+    const signalHash = computeSignalHash(userAddress, scope, circuitId);
+    // Step 2: Recover user public key
+    const userPubkey = recoverUserPubkey(signalHash, userSignature);
+    const { x: userPubkeyX, y: userPubkeyY } = extractPubkeyCoordinates(userPubkey);
+    // Step 3: Fetch attestation transaction from Base chain
+    const attestationData = await fetchAttestation(config, circuitId, userAddress);
+    // Step 4: Recover Coinbase attester public key
+    const attesterPubkey = recoverAttesterPubkey(attestationData.rawTransaction);
+    const attesterAddress = getSignerAddress(attesterPubkey);
+    const { x: attesterPubkeyX, y: attesterPubkeyY } = extractPubkeyCoordinates(attesterPubkey);
+    // Step 5: Build Merkle tree
+    const signerIndex = findSignerIndex(attesterAddress);
+    const merkleData = buildSignerMerkleTree(signerIndex);
+    // Step 6: Compute scope and nullifier
+    const scopeBytes = computeScope(scope);
+    const nullifierBytes = computeNullifier(userAddress, signalHash, scopeBytes);
+    // Step 7: Convert raw TX to byte array
+    const rawTxBytes = hexToBytes(attestationData.rawTransaction);
+    const txLength = rawTxBytes.length;
+    // Assemble ProveInputs -- all values as hex strings (0x...)
+    const inputs = {
+        signal_hash: ethers.hexlify(signalHash),
+        nullifier: ethers.hexlify(nullifierBytes),
+        scope_bytes: ethers.hexlify(scopeBytes),
+        merkle_root: merkleData.root,
+        user_address: userAddress,
+        signature: userSignature,
+        user_pubkey_x: userPubkeyX,
+        user_pubkey_y: userPubkeyY,
+        raw_transaction: attestationData.rawTransaction,
+        tx_length: txLength,
+        coinbase_attester_pubkey_x: attesterPubkeyX,
+        coinbase_attester_pubkey_y: attesterPubkeyY,
+        merkle_proof: merkleData.proof,
+        leaf_index: merkleData.leafIndex,
+        depth: merkleData.depth,
+    };
+    // Add country-specific fields
+    if (circuitId === 'coinbase_country_attestation') {
+        inputs.country_list = params.countryList;
+        inputs.is_included = params.isIncluded;
+    }
+    return inputs;
+}
+//# sourceMappingURL=inputs.js.map

package/dist/inputs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"inputs.js","sourceRoot":"","sources":["../src/inputs.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAGhC,OAAO,EAAE,QAAQ,EAAwB,sBAAsB,EAAE,uBAAuB,EAAE,MAAM,gBAAgB,CAAC;AACjH,OAAO,EAAE,gBAAgB,EAAE,qBAAqB,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AAC7F,OAAO,EAAE,eAAe,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAC;AAErE,2EAA2E;AAE3E;;GAEG;AACH,MAAM,UAAU,UAAU,CAAC,GAAW;IACpC,MAAM,QAAQ,GAAG,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;IAC3D,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;QAC5C,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;IACrD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,wBAAwB,CAAC,MAAc;IACrD,MAAM,SAAS,GAAG,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAChF,MAAM,CAAC,GAAG,IAAI,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACxC,MAAM,CAAC,GAAG,IAAI,GAAG,SAAS,CAAC,KAAK,CAAC,EAAE,EAAE,GAAG,CAAC,CAAC;IAC1C,OAAO,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC;AAClB,CAAC;AAED,2EAA2E;AAE3E;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAC/B,WAAmB,EACnB,WAAmB,EACnB,WAAmB;IAEnB,MAAM,cAAc,GAAG,MAAM,CAAC,cAAc,CAC1C,CAAC,SAAS,EAAE,QAAQ,EAAE,QAAQ,CAAC,EAC/B,CAAC,WAAW,EAAE,WAAW,EAAE,WAAW,CAAC,CACxC,CAAC;IACF,OAAO,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC,CAAC;AAC3D,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAC/B,UAAsB,EACtB,aAAqB;IAErB,MAAM,UAAU,GAAG,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAC9C,MAAM,aAAa,GAAG,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC;IACtE,MAAM,MAAM,GAAG,MAAM,CAAC,UAAU,CAAC,gBAAgB,CAAC,aAAa,EAAE,aAAa,CAAC,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,YAAY,CAAC,WAAmB;IAC9C,OAAO,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC;AAC5E,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAC9B,WAAmB,EACnB,UAAsB,EACtB,UAAsB;IAEtB,MAAM,gBAAgB,GAAG,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACtD,MAAM,UAAU,GAAG,MAAM,CAAC,QAAQ,CAChC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,gBAAgB,EAAE,UAAU,CAAC,CAAC,CAAC,CAChE,CAAC;IACF,OAAO,MAAM,CAAC,QAAQ,CACpB,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,UAAU,CAAC,CAAC,CAAC,CAC1D,CAAC;AACJ,CAAC;AAED,2EAA2E;AAE3E;;GAEG;AACH,SAAS,QAAQ,CAAC,GAAa,EAAE,YAAoB;IACnD,MAAM,MAAM,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC;IACxB,OAAO,MAAM,CAAC,MAAM,GAAG,YAAY,EAAE,CAAC;QACpC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACjB,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACH,SAAS,qBAAqB,CAAC,SAAiB;IAC9C,MAAM,GAAG,GAAG,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC7C,MAAM,MAAM,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;IACjC,MAAM,MAAM,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;IACjC,OAAO,CAAC,GAAG,MAAM,EAAE,GAAG,MAAM,CAAC,CAAC;AAChC,CAAC;AAED;;;;GAIG;AACH,SAAS,iBAAiB,CAAC,SAAmB;IAC5C,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,uBAAuB,EAAE,CAAC,EAAE,EAAE,CAAC;QACjD,IAAI,CAAC,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC;YACzB,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;YACnD,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;QACrD,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACjB,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnB,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAAC,KAAe;IAC5C,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;AACtC,CAAC;AAED;;GAEG;AACH,SAAS,0BAA0B,CAAC,GAAe;IACjD,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;AAChD,CAAC;AAED;;GAEG;AACH,SAAS,sBAAsB,CAAC,KAAe;IAC7C,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,sBAAsB,EAAE,CAAC,EAAE,EAAE,CAAC;QAChD,IAAI,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;YACrB,MAAM,CAAC,IAAI,CAAC,GAAG,qBAAqB,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC9D,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,GAAG,qBAAqB,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC/D,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,2EAA2E;AAE3E;;;;;;;;;;;;;GAaG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,MAAoB,EAAE,MAOzD;IACC,MAAM,EAAE,SAAS,EAAE,WAAW,EAAE,aAAa,EAAE,KAAK,EAAE,GAAG,MAAM,CAAC;IAEhE,mBAAmB;IACnB,IAAI,CAAC,CAAC,SAAS,IAAI,QAAQ,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,oBAAoB,SAAS,EAAE,CAAC,CAAC;IACnD,CAAC;IAED,8CAA8C;IAC9C,IAAI,SAAS,KAAK,8BAA8B,EAAE,CAAC;QACjD,IAAI,CAAC,MAAM,CAAC,WAAW,IAAI,MAAM,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3D,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAC;QAC9E,CAAC;QACD,IAAI,MAAM,CAAC,UAAU,KAAK,SAAS,IAAI,MAAM,CAAC,UAAU,KAAK,IAAI,EAAE,CAAC;YAClE,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;QAC7E,CAAC;IACH,CAAC;IAED,8BAA8B;IAC9B,MAAM,UAAU,GAAG,iBAAiB,CAAC,WAAW,EAAE,KAAK,EAAE,SAAS,CAAC,CAAC;IAEpE,kCAAkC;IAClC,MAAM,UAAU,GAAG,iBAAiB,CAAC,UAAU,EAAE,aAAa,CAAC,CAAC;IAChE,MAAM,EAAE,CAAC,EAAE,WAAW,EAAE,CAAC,EAAE,WAAW,EAAE,GAAG,wBAAwB,CAAC,UAAU,CAAC,CAAC;IAEhF,wDAAwD;IACxD,MAAM,eAAe,GAAG,MAAM,gBAAgB,CAAC,MAAM,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;IAE/E,+CAA+C;IAC/C,MAAM,cAAc,GAAG,qBAAqB,CAAC,eAAe,CAAC,cAAc,CAAC,CAAC;IAC7E,MAAM,eAAe,GAAG,gBAAgB,CAAC,cAAc,CAAC,CAAC;IACzD,MAAM,EAAE,CAAC,EAAE,eAAe,EAAE,CAAC,EAAE,eAAe,EAAE,GAAG,wBAAwB,CAAC,cAAc,CAAC,CAAC;IAE5F,4BAA4B;IAC5B,MAAM,WAAW,GAAG,eAAe,CAAC,eAAe,CAAC,CAAC;IACrD,MAAM,UAAU,GAAG,qBAAqB,CAAC,WAAW,CAAC,CAAC;IAEtD,sCAAsC;IACtC,MAAM,UAAU,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;IACvC,MAAM,cAAc,GAAG,gBAAgB,CAAC,WAAW,EAAE,UAAU,EAAE,UAAU,CAAC,CAAC;IAE7E,uCAAuC;IACvC,MAAM,UAAU,GAAG,UAAU,CAAC,eAAe,CAAC,cAAc,CAAC,CAAC;IAC9D,MAAM,QAAQ,GAAG,UAAU,CAAC,MAAM,CAAC;IAEnC,4DAA4D;IAC5D,MAAM,MAAM,GAAgB;QAC1B,WAAW,EAAE,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC;QACvC,SAAS,EAAE,MAAM,CAAC,OAAO,CAAC,cAAc,CAAC;QACzC,WAAW,EAAE,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC;QACvC,WAAW,EAAE,UAAU,CAAC,IAAI;QAC5B,YAAY,EAAE,WAAW;QACzB,SAAS,EAAE,aAAa;QACxB,aAAa,EAAE,WAAW;QAC1B,aAAa,EAAE,WAAW;QAC1B,eAAe,EAAE,eAAe,CAAC,cAAc;QAC/C,SAAS,EAAE,QAAQ;QACnB,0BAA0B,EAAE,eAAe;QAC3C,0BAA0B,EAAE,eAAe;QAC3C,YAAY,EAAE,UAAU,CAAC,KAAK;QAC9B,UAAU,EAAE,UAAU,CAAC,SAAS;QAChC,KAAK,EAAE,UAAU,CAAC,KAAK;KACxB,CAAC;IAEF,8BAA8B;IAC9B,IAAI,SAAS,KAAK,8BAA8B,EAAE,CAAC;QACjD,MAAM,CAAC,YAAY,GAAG,MAAM,CAAC,WAAW,CAAC;QACzC,MAAM,CAAC,WAAW,GAAG,MAAM,CAAC,UAAU,CAAC;IACzC,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/merkle.d.ts

@@ -0,0 +1,34 @@
+/**
+ * Simple binary Merkle tree for signer verification.
+ *
+ * Leaf: keccak256(address_bytes)
+ * Odd number of leaves: duplicate last leaf
+ * Internal node: keccak256(left || right)
+ */
+export declare class SimpleMerkleTree {
+    private leaves;
+    private layers;
+    constructor(addresses: string[]);
+    getRoot(): string;
+    getProof(index: number): {
+        proof: string[];
+        leafIndex: number;
+        depth: number;
+    };
+    getLeafHash(index: number): string;
+}
+/**
+ * Find the index of a signer address in the authorized signers list.
+ * Case-insensitive comparison.
+ */
+export declare function findSignerIndex(signerAddress: string): number;
+/**
+ * Build a Merkle tree from authorized signers and get proof for the given signer index.
+ */
+export declare function buildSignerMerkleTree(signerIndex: number): {
+    root: string;
+    proof: string[];
+    leafIndex: number;
+    depth: number;
+};
+//# sourceMappingURL=merkle.d.ts.map

package/dist/merkle.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"merkle.d.ts","sourceRoot":"","sources":["../src/merkle.ts"],"names":[],"mappings":"AAGA;;;;;;GAMG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAAW;IACzB,OAAO,CAAC,MAAM,CAAa;gBAEf,SAAS,EAAE,MAAM,EAAE;IA+B/B,OAAO,IAAI,MAAM;IAIjB,QAAQ,CAAC,KAAK,EAAE,MAAM,GAAG;QAAE,KAAK,EAAE,MAAM,EAAE,CAAC;QAAC,SAAS,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;IA8B9E,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;CAMnC;AAED;;;GAGG;AACH,wBAAgB,eAAe,CAAC,aAAa,EAAE,MAAM,GAAG,MAAM,CAU7D;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,WAAW,EAAE,MAAM,GAAG;IAC1D,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;CACf,CAMA"}

package/dist/merkle.js

@@ -0,0 +1,95 @@
+import { ethers } from 'ethers';
+import { AUTHORIZED_SIGNERS } from './constants.js';
+/**
+ * Simple binary Merkle tree for signer verification.
+ *
+ * Leaf: keccak256(address_bytes)
+ * Odd number of leaves: duplicate last leaf
+ * Internal node: keccak256(left || right)
+ */
+export class SimpleMerkleTree {
+    leaves;
+    layers;
+    constructor(addresses) {
+        if (addresses.length === 0) {
+            throw new Error('SimpleMerkleTree requires at least one address');
+        }
+        // Create leaf hashes: keccak256(address_bytes)
+        this.leaves = addresses.map(addr => {
+            const addrBytes = ethers.getBytes(ethers.getAddress(addr));
+            return ethers.keccak256(addrBytes);
+        });
+        // Build layers bottom-up
+        this.layers = [this.leaves];
+        let currentLayer = this.leaves;
+        while (currentLayer.length > 1) {
+            const nextLayer = [];
+            for (let i = 0; i < currentLayer.length; i += 2) {
+                const left = currentLayer[i];
+                const right = currentLayer[i + 1] || left; // duplicate if odd
+                const combined = ethers.concat([
+                    ethers.getBytes(left),
+                    ethers.getBytes(right),
+                ]);
+                nextLayer.push(ethers.keccak256(combined));
+            }
+            this.layers.push(nextLayer);
+            currentLayer = nextLayer;
+        }
+    }
+    getRoot() {
+        return this.layers[this.layers.length - 1][0];
+    }
+    getProof(index) {
+        if (index < 0 || index >= this.leaves.length) {
+            throw new Error(`Leaf index ${index} out of bounds (0..${this.leaves.length - 1})`);
+        }
+        const proof = [];
+        let idx = index;
+        for (let i = 0; i < this.layers.length - 1; i++) {
+            const layer = this.layers[i];
+            const isRight = idx % 2 === 1;
+            const siblingIdx = isRight ? idx - 1 : idx + 1;
+            if (siblingIdx < layer.length) {
+                proof.push(layer[siblingIdx]);
+            }
+            else {
+                // No sibling -- use self (duplicate)
+                proof.push(layer[idx]);
+            }
+            idx = Math.floor(idx / 2);
+        }
+        return {
+            proof,
+            leafIndex: index,
+            depth: proof.length,
+        };
+    }
+    getLeafHash(index) {
+        if (index < 0 || index >= this.leaves.length) {
+            throw new Error(`Leaf index ${index} out of bounds (0..${this.leaves.length - 1})`);
+        }
+        return this.leaves[index];
+    }
+}
+/**
+ * Find the index of a signer address in the authorized signers list.
+ * Case-insensitive comparison.
+ */
+export function findSignerIndex(signerAddress) {
+    const index = AUTHORIZED_SIGNERS.findIndex(addr => addr.toLowerCase() === signerAddress.toLowerCase());
+    if (index === -1) {
+        throw new Error(`Signer ${signerAddress} is not in the authorized signers list`);
+    }
+    return index;
+}
+/**
+ * Build a Merkle tree from authorized signers and get proof for the given signer index.
+ */
+export function buildSignerMerkleTree(signerIndex) {
+    const tree = new SimpleMerkleTree(AUTHORIZED_SIGNERS);
+    const root = tree.getRoot();
+    const { proof, leafIndex, depth } = tree.getProof(signerIndex);
+    return { root, proof, leafIndex, depth };
+}
+//# sourceMappingURL=merkle.js.map

package/dist/merkle.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"merkle.js","sourceRoot":"","sources":["../src/merkle.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAChC,OAAO,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAEpD;;;;;;GAMG;AACH,MAAM,OAAO,gBAAgB;IACnB,MAAM,CAAW;IACjB,MAAM,CAAa;IAE3B,YAAY,SAAmB;QAC7B,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3B,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;QACpE,CAAC;QAED,+CAA+C;QAC/C,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE;YACjC,MAAM,SAAS,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;YAC3D,OAAO,MAAM,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;QACrC,CAAC,CAAC,CAAC;QAEH,yBAAyB;QACzB,IAAI,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5B,IAAI,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC;QAE/B,OAAO,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/B,MAAM,SAAS,GAAa,EAAE,CAAC;YAC/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,YAAY,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;gBAChD,MAAM,IAAI,GAAG,YAAY,CAAC,CAAC,CAAC,CAAC;gBAC7B,MAAM,KAAK,GAAG,YAAY,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,mBAAmB;gBAC9D,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC;oBAC7B,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC;oBACrB,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC;iBACvB,CAAC,CAAC;gBACH,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;YAC7C,CAAC;YACD,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC5B,YAAY,GAAG,SAAS,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,OAAO;QACL,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAChD,CAAC;IAED,QAAQ,CAAC,KAAa;QACpB,IAAI,KAAK,GAAG,CAAC,IAAI,KAAK,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;YAC7C,MAAM,IAAI,KAAK,CAAC,cAAc,KAAK,sBAAsB,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,GAAG,CAAC,CAAC;QACtF,CAAC;QAED,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,IAAI,GAAG,GAAG,KAAK,CAAC;QAEhB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAChD,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YAC7B,MAAM,OAAO,GAAG,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC;YAC9B,MAAM,UAAU,GAAG,OAAO,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC;YAE/C,IAAI,UAAU,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;gBAC9B,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC;YAChC,CAAC;iBAAM,CAAC;gBACN,qCAAqC;gBACrC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;YACzB,CAAC;YAED,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;QAC5B,CAAC;QAED,OAAO;YACL,KAAK;YACL,SAAS,EAAE,KAAK;YAChB,KAAK,EAAE,KAAK,CAAC,MAAM;SACpB,CAAC;IACJ,CAAC;IAED,WAAW,CAAC,KAAa;QACvB,IAAI,KAAK,GAAG,CAAC,IAAI,KAAK,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;YAC7C,MAAM,IAAI,KAAK,CAAC,cAAc,KAAK,sBAAsB,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,GAAG,CAAC,CAAC;QACtF,CAAC;QACD,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC5B,CAAC;CACF;AAED;;;GAGG;AACH,MAAM,UAAU,eAAe,CAAC,aAAqB;IACnD,MAAM,KAAK,GAAG,kBAAkB,CAAC,SAAS,CACxC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,WAAW,EAAE,KAAK,aAAa,CAAC,WAAW,EAAE,CAC3D,CAAC;IACF,IAAI,KAAK,KAAK,CAAC,CAAC,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,UAAU,aAAa,wCAAwC,CAChE,CAAC;IACJ,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,WAAmB;IAMvD,MAAM,IAAI,GAAG,IAAI,gBAAgB,CAAC,kBAAkB,CAAC,CAAC;IACtD,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC;IAC5B,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAE/D,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;AAC3C,CAAC"}

package/dist/payment.d.ts

@@ -0,0 +1,15 @@
+import type { PaymentInfo } from './types.js';
+import type { ProofportSigner } from './signer.js';
+/**
+ * Make payment for a proof session via x402 protocol.
+ *
+ * Uses EIP-3009 TransferWithAuthorization signed by the client,
+ * settled via x402 facilitator (facilitator pays gas).
+ * Works on both Base Sepolia (testnet) and Base (mainnet).
+ *
+ * @param signer - ProofportSigner (ethers, CDP MPC, or any implementation)
+ * @param payment - PaymentInfo from session or 402 response
+ * @returns Transaction hash
+ */
+export declare function makePayment(signer: ProofportSigner, payment: PaymentInfo): Promise<string>;
+//# sourceMappingURL=payment.d.ts.map

package/dist/payment.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment.d.ts","sourceRoot":"","sources":["../src/payment.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAC9C,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAenD;;;;;;;;;;GAUG;AACH,wBAAsB,WAAW,CAC/B,MAAM,EAAE,eAAe,EACvB,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,MAAM,CAAC,CAsGjB"}

package/dist/payment.js

@@ -0,0 +1,114 @@
+import { ethers } from 'ethers';
+const X402_FACILITATOR = 'https://www.x402.org/facilitator';
+const CHAIN_IDS = {
+    'base-sepolia': 84532,
+    'base': 8453,
+};
+// EIP-712 domain names per USDC contract (queried via name() on-chain)
+const USDC_DOMAIN_NAMES = {
+    'base-sepolia': 'USDC',
+    'base': 'USD Coin',
+};
+/**
+ * Make payment for a proof session via x402 protocol.
+ *
+ * Uses EIP-3009 TransferWithAuthorization signed by the client,
+ * settled via x402 facilitator (facilitator pays gas).
+ * Works on both Base Sepolia (testnet) and Base (mainnet).
+ *
+ * @param signer - ProofportSigner (ethers, CDP MPC, or any implementation)
+ * @param payment - PaymentInfo from session or 402 response
+ * @returns Transaction hash
+ */
+export async function makePayment(signer, payment) {
+    const network = payment.network;
+    const chainId = CHAIN_IDS[network];
+    if (!chainId) {
+        throw new Error(`Unsupported network: ${network}`);
+    }
+    // Pad nonce to bytes32 (EIP-3009 requires bytes32 nonce)
+    const nonce = ethers.zeroPadValue(payment.nonce, 32);
+    // Validity window
+    const validAfter = 0;
+    const validBefore = Math.floor(Date.now() / 1000) + 3600; // 1 hour
+    // EIP-712 domain for USDC (domain name differs between testnet and mainnet)
+    const domain = {
+        name: USDC_DOMAIN_NAMES[network] || 'USD Coin',
+        version: '2',
+        chainId,
+        verifyingContract: payment.asset,
+    };
+    const types = {
+        TransferWithAuthorization: [
+            { name: 'from', type: 'address' },
+            { name: 'to', type: 'address' },
+            { name: 'value', type: 'uint256' },
+            { name: 'validAfter', type: 'uint256' },
+            { name: 'validBefore', type: 'uint256' },
+            { name: 'nonce', type: 'bytes32' },
+        ],
+    };
+    const from = await signer.getAddress();
+    const message = {
+        from,
+        to: payment.recipient,
+        value: payment.amount,
+        validAfter,
+        validBefore,
+        nonce,
+    };
+    // Sign EIP-712 TransferWithAuthorization
+    const signature = await signer.signTypedData(domain, types, message);
+    // Settle via x402 facilitator (facilitator pays gas)
+    const settlePayload = {
+        x402Version: 1,
+        scheme: 'exact',
+        network,
+        paymentPayload: {
+            x402Version: 1,
+            scheme: 'exact',
+            network,
+            payload: {
+                signature,
+                authorization: {
+                    from,
+                    to: payment.recipient,
+                    value: String(payment.amount),
+                    validAfter: String(validAfter),
+                    validBefore: String(validBefore),
+                    nonce,
+                },
+            },
+        },
+        paymentRequirements: {
+            scheme: 'exact',
+            network,
+            maxAmountRequired: String(payment.amount),
+            asset: payment.asset,
+            resource: `${payment.recipient}/proof`,
+            description: 'ZK proof generation payment',
+            mimeType: 'application/json',
+            payTo: payment.recipient,
+            extra: {
+                name: USDC_DOMAIN_NAMES[network] || 'USD Coin',
+                version: '2',
+            },
+        },
+    };
+    const settleResponse = await fetch(`${X402_FACILITATOR}/settle`, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify(settlePayload),
+    });
+    if (!settleResponse.ok) {
+        const error = await settleResponse.text();
+        throw new Error(`x402 facilitator settle failed: ${error}`);
+    }
+    const settleResult = (await settleResponse.json());
+    const txHash = settleResult.txHash || settleResult.transaction?.hash || settleResult.transaction;
+    if (!txHash) {
+        throw new Error(`x402 settle failed: ${settleResult.errorReason || 'no transaction hash'}`);
+    }
+    return txHash;
+}
+//# sourceMappingURL=payment.js.map

package/dist/payment.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment.js","sourceRoot":"","sources":["../src/payment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAIhC,MAAM,gBAAgB,GAAG,kCAAkC,CAAC;AAE5D,MAAM,SAAS,GAA2B;IACxC,cAAc,EAAE,KAAK;IACrB,MAAM,EAAE,IAAI;CACb,CAAC;AAEF,uEAAuE;AACvE,MAAM,iBAAiB,GAA2B;IAChD,cAAc,EAAE,MAAM;IACtB,MAAM,EAAE,UAAU;CACnB,CAAC;AAEF;;;;;;;;;;GAUG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,MAAuB,EACvB,OAAoB;IAEpB,MAAM,OAAO,GAAG,OAAO,CAAC,OAAkC,CAAC;IAC3D,MAAM,OAAO,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC;IACnC,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,wBAAwB,OAAO,EAAE,CAAC,CAAC;IACrD,CAAC;IAED,yDAAyD;IACzD,MAAM,KAAK,GAAG,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IAErD,kBAAkB;IAClB,MAAM,UAAU,GAAG,CAAC,CAAC;IACrB,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC,CAAC,SAAS;IAEnE,4EAA4E;IAC5E,MAAM,MAAM,GAAG;QACb,IAAI,EAAE,iBAAiB,CAAC,OAAO,CAAC,IAAI,UAAU;QAC9C,OAAO,EAAE,GAAG;QACZ,OAAO;QACP,iBAAiB,EAAE,OAAO,CAAC,KAAK;KACjC,CAAC;IAEF,MAAM,KAAK,GAAG;QACZ,yBAAyB,EAAE;YACzB,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE;YACjC,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE;YAC/B,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE;YAClC,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,SAAS,EAAE;YACvC,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,SAAS,EAAE;YACxC,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE;SACnC;KACF,CAAC;IAEF,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC;IAEvC,MAAM,OAAO,GAAG;QACd,IAAI;QACJ,EAAE,EAAE,OAAO,CAAC,SAAS;QACrB,KAAK,EAAE,OAAO,CAAC,MAAM;QACrB,UAAU;QACV,WAAW;QACX,KAAK;KACN,CAAC;IAEF,yCAAyC;IACzC,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,MAAM,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;IAErE,qDAAqD;IACrD,MAAM,aAAa,GAAG;QACpB,WAAW,EAAE,CAAC;QACd,MAAM,EAAE,OAAO;QACf,OAAO;QACP,cAAc,EAAE;YACd,WAAW,EAAE,CAAC;YACd,MAAM,EAAE,OAAO;YACf,OAAO;YACP,OAAO,EAAE;gBACP,SAAS;gBACT,aAAa,EAAE;oBACb,IAAI;oBACJ,EAAE,EAAE,OAAO,CAAC,SAAS;oBACrB,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;oBAC7B,UAAU,EAAE,MAAM,CAAC,UAAU,CAAC;oBAC9B,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC;oBAChC,KAAK;iBACN;aACF;SACF;QACD,mBAAmB,EAAE;YACnB,MAAM,EAAE,OAAO;YACf,OAAO;YACP,iBAAiB,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;YACzC,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,QAAQ,EAAE,GAAG,OAAO,CAAC,SAAS,QAAQ;YACtC,WAAW,EAAE,6BAA6B;YAC1C,QAAQ,EAAE,kBAAkB;YAC5B,KAAK,EAAE,OAAO,CAAC,SAAS;YACxB,KAAK,EAAE;gBACL,IAAI,EAAE,iBAAiB,CAAC,OAAO,CAAC,IAAI,UAAU;gBAC9C,OAAO,EAAE,GAAG;aACb;SACF;KACF,CAAC;IAEF,MAAM,cAAc,GAAG,MAAM,KAAK,CAAC,GAAG,gBAAgB,SAAS,EAAE;QAC/D,MAAM,EAAE,MAAM;QACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;QAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC;KACpC,CAAC,CAAC;IAEH,IAAI,CAAC,cAAc,CAAC,EAAE,EAAE,CAAC;QACvB,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,IAAI,EAAE,CAAC;QAC1C,MAAM,IAAI,KAAK,CAAC,mCAAmC,KAAK,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,YAAY,GAAG,CAAC,MAAM,cAAc,CAAC,IAAI,EAAE,CAAQ,CAAC;IAC1D,MAAM,MAAM,GAAG,YAAY,CAAC,MAAM,IAAI,YAAY,CAAC,WAAW,EAAE,IAAI,IAAI,YAAY,CAAC,WAAW,CAAC;IACjG,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,uBAAuB,YAAY,CAAC,WAAW,IAAI,qBAAqB,EAAE,CAAC,CAAC;IAC9F,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/prove.d.ts

@@ -0,0 +1,12 @@
+import type { ClientConfig, CircuitName, ProveInputs, ProveResponse } from './types.js';
+/**
+ * Submit proof generation with x402 payment headers.
+ * POST /api/v1/prove with X-Payment-TX and X-Payment-Nonce headers.
+ */
+export declare function submitProof(config: ClientConfig, request: {
+    circuit: CircuitName;
+    inputs: ProveInputs;
+    paymentTxHash: string;
+    paymentNonce: string;
+}): Promise<ProveResponse>;
+//# sourceMappingURL=prove.d.ts.map

package/dist/prove.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prove.d.ts","sourceRoot":"","sources":["../src/prove.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,WAAW,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAExF;;;GAGG;AACH,wBAAsB,WAAW,CAC/B,MAAM,EAAE,YAAY,EACpB,OAAO,EAAE;IACP,OAAO,EAAE,WAAW,CAAC;IACrB,MAAM,EAAE,WAAW,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;CACtB,GACA,OAAO,CAAC,aAAa,CAAC,CAqBxB"}

package/dist/prove.js

@@ -0,0 +1,25 @@
+/**
+ * Submit proof generation with x402 payment headers.
+ * POST /api/v1/prove with X-Payment-TX and X-Payment-Nonce headers.
+ */
+export async function submitProof(config, request) {
+    const url = `${config.baseUrl}/api/v1/prove`;
+    const response = await fetch(url, {
+        method: 'POST',
+        headers: {
+            'Content-Type': 'application/json',
+            'X-Payment-TX': request.paymentTxHash,
+            'X-Payment-Nonce': request.paymentNonce,
+        },
+        body: JSON.stringify({
+            circuit: request.circuit,
+            inputs: request.inputs,
+        }),
+    });
+    if (!response.ok) {
+        const error = await response.json().catch(() => ({ message: `HTTP ${response.status}` }));
+        throw new Error(`Proof generation failed: ${JSON.stringify(error)}`);
+    }
+    return response.json();
+}
+//# sourceMappingURL=prove.js.map

package/dist/prove.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prove.js","sourceRoot":"","sources":["../src/prove.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,MAAoB,EACpB,OAKC;IAED,MAAM,GAAG,GAAG,GAAG,MAAM,CAAC,OAAO,eAAe,CAAC;IAC7C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,cAAc,EAAE,kBAAkB;YAClC,cAAc,EAAE,OAAO,CAAC,aAAa;YACrC,iBAAiB,EAAE,OAAO,CAAC,YAAY;SACxC;QACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,MAAM,EAAE,OAAO,CAAC,MAAM;SACvB,CAAC;KACH,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,QAAQ,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC;QAC1F,MAAM,IAAI,KAAK,CAAC,4BAA4B,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACvE,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,EAA4B,CAAC;AACnD,CAAC"}

package/dist/session.d.ts

@@ -0,0 +1,8 @@
+import type { ClientConfig, CircuitName, ChallengeResponse, ProveInputs } from './types.js';
+/**
+ * Request a 402 payment challenge from the server.
+ * POST /api/v1/prove without payment headers → 402 with nonce + payment info.
+ */
+export declare function requestChallenge(config: ClientConfig, circuit: CircuitName, inputs: ProveInputs): Promise<ChallengeResponse>;
+export { requestChallenge as createSession };
+//# sourceMappingURL=session.d.ts.map

package/dist/session.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,WAAW,EAAE,iBAAiB,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAE5F;;;GAGG;AACH,wBAAsB,gBAAgB,CACpC,MAAM,EAAE,YAAY,EACpB,OAAO,EAAE,WAAW,EACpB,MAAM,EAAE,WAAW,GAClB,OAAO,CAAC,iBAAiB,CAAC,CAc5B;AAGD,OAAO,EAAE,gBAAgB,IAAI,aAAa,EAAE,CAAC"}

package/dist/session.js

@@ -0,0 +1,20 @@
+/**
+ * Request a 402 payment challenge from the server.
+ * POST /api/v1/prove without payment headers → 402 with nonce + payment info.
+ */
+export async function requestChallenge(config, circuit, inputs) {
+    const url = `${config.baseUrl}/api/v1/prove`;
+    const response = await fetch(url, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify({ circuit, inputs }),
+    });
+    if (response.status !== 402) {
+        const error = await response.json().catch(() => ({ message: `HTTP ${response.status}` }));
+        throw new Error(`Expected 402 challenge, got ${response.status}: ${error.message || response.status}`);
+    }
+    return response.json();
+}
+// Backward-compatible alias (deprecated — use requestChallenge instead)
+export { requestChallenge as createSession };
+//# sourceMappingURL=session.js.map

package/dist/session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"session.js","sourceRoot":"","sources":["../src/session.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,MAAoB,EACpB,OAAoB,EACpB,MAAmB;IAEnB,MAAM,GAAG,GAAG,GAAG,MAAM,CAAC,OAAO,eAAe,CAAC;IAC7C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;QAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;KAC1C,CAAC,CAAC;IAEH,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;QAC5B,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,QAAQ,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC;QAC1F,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,CAAC,MAAM,KAAM,KAAa,CAAC,OAAO,IAAI,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IAClH,CAAC;IAED,OAAO,QAAQ,CAAC,IAAI,EAAgC,CAAC;AACvD,CAAC;AAED,wEAAwE;AACxE,OAAO,EAAE,gBAAgB,IAAI,aAAa,EAAE,CAAC"}