@zubari/sdk 0.5.2 → 0.5.4

package/dist/wallet/index.js

@@ -3,11 +3,8 @@
 var ethers = require('ethers');
 var bip39 = require('@scure/bip39');
 var english = require('@scure/bip39/wordlists/english');
-var secp256k1_js = require('@noble/curves/secp256k1.js');
-var hmac_js = require('@noble/hashes/hmac.js');
-var legacy_js = require('@noble/hashes/legacy.js');
-var sha2_js = require('@noble/hashes/sha2.js');
-var utils_js = require('@noble/hashes/utils.js');
+var bip32 = require('@scure/bip32');
+var base = require('@scure/base');
 var sha256 = require('@noble/hashes/sha256');
 var ripemd160 = require('@noble/hashes/ripemd160');
 var viem = require('viem');
@@ -134,8 +131,8 @@ var TESTNET_NETWORKS = {
 var USDT_ADDRESSES = {
   ethereum: {
     mainnet: "0xdAC17F958D2ee523a2206206994597C13D831ec7",
-    testnet: "0xaA8E23Fb1079EA71e0a56F48a2aA51851D8433D0"
-    // Sepolia
+    testnet: "0x7169D38820dfd117C3FA1f22a697dBA58d90BA06"
+    // Sepolia (Test Tether USD)
   },
   tron: {
     mainnet: "TR7NHqjeKQxGTCi8q8ZY4pL8otSzgjLj6t",
@@ -153,11 +150,11 @@ var USDT_ADDRESSES = {
   }
 };
 var DERIVATION_PATHS = {
-  bitcoin: "m/44'/0'/0'/0",
+  bitcoin: "m/84'/0'/0'/0",
   ethereum: "m/44'/60'/0'/0",
-  ton: "m/44'/607'/0'/0",
+  ton: "m/44'/607'/0'",
   tron: "m/44'/195'/0'/0",
-  solana: "m/44'/501'/0'/0",
+  solana: "m/44'/501'/0'",
   spark: "m/44'/998'/0'/0"
 };
 function getNetworkConfig(network, isTestnet = false) {
@@ -235,8 +232,27 @@ var WdkApiClient = class {
   constructor(config) {
     this.config = {
       baseUrl: config.baseUrl,
-      timeout: config.timeout || 3e4
+      timeout: config.timeout || 3e4,
+      authToken: config.authToken
+    };
+  }
+  /**
+   * Set or update the auth token for authenticated requests
+   */
+  setAuthToken(token) {
+    this.config.authToken = token;
+  }
+  /**
+   * Build headers for API requests, including Authorization when available
+   */
+  getHeaders() {
+    const headers = {
+      "Content-Type": "application/json"
     };
+    if (this.config.authToken) {
+      headers["Authorization"] = `Bearer ${this.config.authToken}`;
+    }
+    return headers;
   }
   /**
    * Generate a new BIP-39 seed phrase using Tether WDK
@@ -245,9 +261,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/generate-seed`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        }
+        headers: this.getHeaders()
       });
       return await response.json();
     } catch (error) {
@@ -264,9 +278,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/validate-seed`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ seed })
       });
       return await response.json();
@@ -280,14 +292,12 @@ var WdkApiClient = class {
   /**
    * Derive address for a specific chain using Tether WDK
    */
-  async deriveAddress(seed, chain2, network = "mainnet") {
+  async deriveAddress(seed, chain, network = "mainnet") {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/derive-address`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
-        body: JSON.stringify({ seed, chain: chain2, network })
+        headers: this.getHeaders(),
+        body: JSON.stringify({ seed, chain, network })
       });
       return await response.json();
     } catch (error) {
@@ -304,9 +314,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/derive-all`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ seed, network })
       });
       return await response.json();
@@ -320,14 +328,12 @@ var WdkApiClient = class {
   /**
    * Send a transaction on a specific chain using Tether WDK
    */
-  async sendTransaction(seed, chain2, to, amount, network = "mainnet") {
+  async sendTransaction(seed, chain, to, amount, network = "mainnet") {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/send`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
-        body: JSON.stringify({ seed, chain: chain2, to, amount, network })
+        headers: this.getHeaders(),
+        body: JSON.stringify({ seed, chain, to, amount, network })
       });
       return await response.json();
     } catch (error) {
@@ -341,14 +347,12 @@ var WdkApiClient = class {
    * Get transaction history for an address on a specific chain
    * Fetches from blockchain explorers (Etherscan, mempool.space, etc.)
    */
-  async getTransactionHistory(seed, chain2, network = "mainnet", limit = 10) {
+  async getTransactionHistory(seed, chain, network = "mainnet", limit = 10) {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/history`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
-        body: JSON.stringify({ seed, chain: chain2, network, limit })
+        headers: this.getHeaders(),
+        body: JSON.stringify({ seed, chain, network, limit })
       });
       return await response.json();
     } catch (error) {
@@ -362,14 +366,12 @@ var WdkApiClient = class {
    * Get transaction status by hash
    * Fetches from blockchain explorers to check confirmation status
    */
-  async getTransactionStatus(txHash, chain2, network = "mainnet") {
+  async getTransactionStatus(txHash, chain, network = "mainnet") {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/tx-status`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
-        body: JSON.stringify({ txHash, chain: chain2, network })
+        headers: this.getHeaders(),
+        body: JSON.stringify({ txHash, chain, network })
       });
       return await response.json();
     } catch (error) {
@@ -382,605 +384,23 @@ var WdkApiClient = class {
 };
 var DEFAULT_API_URL = process.env.NEXT_PUBLIC_API_URL || "https://ckgwifsxka.us-east-2.awsapprunner.com";
 var wdkApiClient = null;
-function getWdkApiClient(baseUrl) {
+function getWdkApiClient(baseUrl, authToken) {
   if (!wdkApiClient || baseUrl && wdkApiClient["config"].baseUrl !== baseUrl) {
     wdkApiClient = new WdkApiClient({
-      baseUrl: baseUrl || DEFAULT_API_URL
+      baseUrl: baseUrl || DEFAULT_API_URL,
+      authToken
     });
   }
   return wdkApiClient;
 }
-
-// node_modules/@scure/base/index.js
-function isBytes(a) {
-  return a instanceof Uint8Array || ArrayBuffer.isView(a) && a.constructor.name === "Uint8Array";
-}
-function isArrayOf(isString, arr) {
-  if (!Array.isArray(arr))
-    return false;
-  if (arr.length === 0)
-    return true;
-  if (isString) {
-    return arr.every((item) => typeof item === "string");
-  } else {
-    return arr.every((item) => Number.isSafeInteger(item));
-  }
-}
-function afn(input) {
-  if (typeof input !== "function")
-    throw new Error("function expected");
-  return true;
-}
-function astr(label, input) {
-  if (typeof input !== "string")
-    throw new Error(`${label}: string expected`);
-  return true;
-}
-function anumber(n) {
-  if (!Number.isSafeInteger(n))
-    throw new Error(`invalid integer: ${n}`);
-}
-function aArr(input) {
-  if (!Array.isArray(input))
-    throw new Error("array expected");
-}
-function astrArr(label, input) {
-  if (!isArrayOf(true, input))
-    throw new Error(`${label}: array of strings expected`);
-}
-function anumArr(label, input) {
-  if (!isArrayOf(false, input))
-    throw new Error(`${label}: array of numbers expected`);
-}
-// @__NO_SIDE_EFFECTS__
-function chain(...args) {
-  const id = (a) => a;
-  const wrap = (a, b) => (c) => a(b(c));
-  const encode = args.map((x) => x.encode).reduceRight(wrap, id);
-  const decode = args.map((x) => x.decode).reduce(wrap, id);
-  return { encode, decode };
-}
-// @__NO_SIDE_EFFECTS__
-function alphabet(letters) {
-  const lettersA = typeof letters === "string" ? letters.split("") : letters;
-  const len = lettersA.length;
-  astrArr("alphabet", lettersA);
-  const indexes = new Map(lettersA.map((l, i) => [l, i]));
-  return {
-    encode: (digits) => {
-      aArr(digits);
-      return digits.map((i) => {
-        if (!Number.isSafeInteger(i) || i < 0 || i >= len)
-          throw new Error(`alphabet.encode: digit index outside alphabet "${i}". Allowed: ${letters}`);
-        return lettersA[i];
-      });
-    },
-    decode: (input) => {
-      aArr(input);
-      return input.map((letter) => {
-        astr("alphabet.decode", letter);
-        const i = indexes.get(letter);
-        if (i === void 0)
-          throw new Error(`Unknown letter: "${letter}". Allowed: ${letters}`);
-        return i;
-      });
-    }
-  };
-}
-// @__NO_SIDE_EFFECTS__
-function join(separator = "") {
-  astr("join", separator);
-  return {
-    encode: (from) => {
-      astrArr("join.decode", from);
-      return from.join(separator);
-    },
-    decode: (to) => {
-      astr("join.decode", to);
-      return to.split(separator);
-    }
-  };
-}
-function convertRadix(data, from, to) {
-  if (from < 2)
-    throw new Error(`convertRadix: invalid from=${from}, base cannot be less than 2`);
-  if (to < 2)
-    throw new Error(`convertRadix: invalid to=${to}, base cannot be less than 2`);
-  aArr(data);
-  if (!data.length)
-    return [];
-  let pos = 0;
-  const res = [];
-  const digits = Array.from(data, (d) => {
-    anumber(d);
-    if (d < 0 || d >= from)
-      throw new Error(`invalid integer: ${d}`);
-    return d;
-  });
-  const dlen = digits.length;
-  while (true) {
-    let carry = 0;
-    let done = true;
-    for (let i = pos; i < dlen; i++) {
-      const digit = digits[i];
-      const fromCarry = from * carry;
-      const digitBase = fromCarry + digit;
-      if (!Number.isSafeInteger(digitBase) || fromCarry / from !== carry || digitBase - digit !== fromCarry) {
-        throw new Error("convertRadix: carry overflow");
-      }
-      const div = digitBase / to;
-      carry = digitBase % to;
-      const rounded = Math.floor(div);
-      digits[i] = rounded;
-      if (!Number.isSafeInteger(rounded) || rounded * to + carry !== digitBase)
-        throw new Error("convertRadix: carry overflow");
-      if (!done)
-        continue;
-      else if (!rounded)
-        pos = i;
-      else
-        done = false;
-    }
-    res.push(carry);
-    if (done)
-      break;
-  }
-  for (let i = 0; i < data.length - 1 && data[i] === 0; i++)
-    res.push(0);
-  return res.reverse();
-}
-var gcd = (a, b) => b === 0 ? a : gcd(b, a % b);
-var radix2carry = /* @__NO_SIDE_EFFECTS__ */ (from, to) => from + (to - gcd(from, to));
-var powers = /* @__PURE__ */ (() => {
-  let res = [];
-  for (let i = 0; i < 40; i++)
-    res.push(2 ** i);
-  return res;
-})();
-function convertRadix2(data, from, to, padding) {
-  aArr(data);
-  if (from <= 0 || from > 32)
-    throw new Error(`convertRadix2: wrong from=${from}`);
-  if (to <= 0 || to > 32)
-    throw new Error(`convertRadix2: wrong to=${to}`);
-  if (/* @__PURE__ */ radix2carry(from, to) > 32) {
-    throw new Error(`convertRadix2: carry overflow from=${from} to=${to} carryBits=${/* @__PURE__ */ radix2carry(from, to)}`);
-  }
-  let carry = 0;
-  let pos = 0;
-  const max = powers[from];
-  const mask = powers[to] - 1;
-  const res = [];
-  for (const n of data) {
-    anumber(n);
-    if (n >= max)
-      throw new Error(`convertRadix2: invalid data word=${n} from=${from}`);
-    carry = carry << from | n;
-    if (pos + from > 32)
-      throw new Error(`convertRadix2: carry overflow pos=${pos} from=${from}`);
-    pos += from;
-    for (; pos >= to; pos -= to)
-      res.push((carry >> pos - to & mask) >>> 0);
-    const pow = powers[pos];
-    if (pow === void 0)
-      throw new Error("invalid carry");
-    carry &= pow - 1;
-  }
-  carry = carry << to - pos & mask;
-  if (!padding && pos >= from)
-    throw new Error("Excess padding");
-  if (!padding && carry > 0)
-    throw new Error(`Non-zero padding: ${carry}`);
-  if (padding && pos > 0)
-    res.push(carry >>> 0);
-  return res;
-}
-// @__NO_SIDE_EFFECTS__
-function radix(num) {
-  anumber(num);
-  const _256 = 2 ** 8;
-  return {
-    encode: (bytes) => {
-      if (!isBytes(bytes))
-        throw new Error("radix.encode input should be Uint8Array");
-      return convertRadix(Array.from(bytes), _256, num);
-    },
-    decode: (digits) => {
-      anumArr("radix.decode", digits);
-      return Uint8Array.from(convertRadix(digits, num, _256));
-    }
-  };
-}
-// @__NO_SIDE_EFFECTS__
-function radix2(bits, revPadding = false) {
-  anumber(bits);
-  if (/* @__PURE__ */ radix2carry(8, bits) > 32 || /* @__PURE__ */ radix2carry(bits, 8) > 32)
-    throw new Error("radix2: carry overflow");
-  return {
-    encode: (bytes) => {
-      if (!isBytes(bytes))
-        throw new Error("radix2.encode input should be Uint8Array");
-      return convertRadix2(Array.from(bytes), 8, bits, !revPadding);
-    },
-    decode: (digits) => {
-      anumArr("radix2.decode", digits);
-      return Uint8Array.from(convertRadix2(digits, bits, 8, revPadding));
-    }
-  };
-}
-function unsafeWrapper(fn) {
-  afn(fn);
-  return function(...args) {
-    try {
-      return fn.apply(null, args);
-    } catch (e) {
-    }
-  };
-}
-function checksum(len, fn) {
-  anumber(len);
-  afn(fn);
-  return {
-    encode(data) {
-      if (!isBytes(data))
-        throw new Error("checksum.encode: input should be Uint8Array");
-      const sum = fn(data).slice(0, len);
-      const res = new Uint8Array(data.length + len);
-      res.set(data);
-      res.set(sum, data.length);
-      return res;
-    },
-    decode(data) {
-      if (!isBytes(data))
-        throw new Error("checksum.decode: input should be Uint8Array");
-      const payload = data.slice(0, -len);
-      const oldChecksum = data.slice(-len);
-      const newChecksum = fn(payload).slice(0, len);
-      for (let i = 0; i < len; i++)
-        if (newChecksum[i] !== oldChecksum[i])
-          throw new Error("Invalid checksum");
-      return payload;
-    }
-  };
-}
-var genBase58 = /* @__NO_SIDE_EFFECTS__ */ (abc) => /* @__PURE__ */ chain(/* @__PURE__ */ radix(58), /* @__PURE__ */ alphabet(abc), /* @__PURE__ */ join(""));
-var base58 = /* @__PURE__ */ genBase58("123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz");
-var createBase58check = (sha2563) => /* @__PURE__ */ chain(checksum(4, (data) => sha2563(sha2563(data))), base58);
-var base58check = createBase58check;
-var BECH_ALPHABET = /* @__PURE__ */ chain(/* @__PURE__ */ alphabet("qpzry9x8gf2tvdw0s3jn54khce6mua7l"), /* @__PURE__ */ join(""));
-var POLYMOD_GENERATORS = [996825010, 642813549, 513874426, 1027748829, 705979059];
-function bech32Polymod(pre) {
-  const b = pre >> 25;
-  let chk = (pre & 33554431) << 5;
-  for (let i = 0; i < POLYMOD_GENERATORS.length; i++) {
-    if ((b >> i & 1) === 1)
-      chk ^= POLYMOD_GENERATORS[i];
-  }
-  return chk;
-}
-function bechChecksum(prefix, words, encodingConst = 1) {
-  const len = prefix.length;
-  let chk = 1;
-  for (let i = 0; i < len; i++) {
-    const c = prefix.charCodeAt(i);
-    if (c < 33 || c > 126)
-      throw new Error(`Invalid prefix (${prefix})`);
-    chk = bech32Polymod(chk) ^ c >> 5;
-  }
-  chk = bech32Polymod(chk);
-  for (let i = 0; i < len; i++)
-    chk = bech32Polymod(chk) ^ prefix.charCodeAt(i) & 31;
-  for (let v of words)
-    chk = bech32Polymod(chk) ^ v;
-  for (let i = 0; i < 6; i++)
-    chk = bech32Polymod(chk);
-  chk ^= encodingConst;
-  return BECH_ALPHABET.encode(convertRadix2([chk % powers[30]], 30, 5, false));
-}
-// @__NO_SIDE_EFFECTS__
-function genBech32(encoding) {
-  const ENCODING_CONST = 1 ;
-  const _words = /* @__PURE__ */ radix2(5);
-  const fromWords = _words.decode;
-  const toWords = _words.encode;
-  const fromWordsUnsafe = unsafeWrapper(fromWords);
-  function encode(prefix, words, limit = 90) {
-    astr("bech32.encode prefix", prefix);
-    if (isBytes(words))
-      words = Array.from(words);
-    anumArr("bech32.encode", words);
-    const plen = prefix.length;
-    if (plen === 0)
-      throw new TypeError(`Invalid prefix length ${plen}`);
-    const actualLength = plen + 7 + words.length;
-    if (limit !== false && actualLength > limit)
-      throw new TypeError(`Length ${actualLength} exceeds limit ${limit}`);
-    const lowered = prefix.toLowerCase();
-    const sum = bechChecksum(lowered, words, ENCODING_CONST);
-    return `${lowered}1${BECH_ALPHABET.encode(words)}${sum}`;
-  }
-  function decode(str, limit = 90) {
-    astr("bech32.decode input", str);
-    const slen = str.length;
-    if (slen < 8 || limit !== false && slen > limit)
-      throw new TypeError(`invalid string length: ${slen} (${str}). Expected (8..${limit})`);
-    const lowered = str.toLowerCase();
-    if (str !== lowered && str !== str.toUpperCase())
-      throw new Error(`String must be lowercase or uppercase`);
-    const sepIndex = lowered.lastIndexOf("1");
-    if (sepIndex === 0 || sepIndex === -1)
-      throw new Error(`Letter "1" must be present between prefix and data only`);
-    const prefix = lowered.slice(0, sepIndex);
-    const data = lowered.slice(sepIndex + 1);
-    if (data.length < 6)
-      throw new Error("Data must be at least 6 characters long");
-    const words = BECH_ALPHABET.decode(data).slice(0, -6);
-    const sum = bechChecksum(prefix, words, ENCODING_CONST);
-    if (!data.endsWith(sum))
-      throw new Error(`Invalid checksum in ${str}: expected "${sum}"`);
-    return { prefix, words };
-  }
-  const decodeUnsafe = unsafeWrapper(decode);
-  function decodeToBytes(str) {
-    const { prefix, words } = decode(str, false);
-    return { prefix, words, bytes: fromWords(words) };
-  }
-  function encodeFromBytes(prefix, bytes) {
-    return encode(prefix, toWords(bytes));
-  }
-  return {
-    encode,
-    decode,
-    encodeFromBytes,
-    decodeToBytes,
-    decodeUnsafe,
-    fromWords,
-    fromWordsUnsafe,
-    toWords
-  };
-}
-var bech32 = /* @__PURE__ */ genBech32();
-
-// node_modules/@scure/bip32/index.js
-var Point = secp256k1_js.secp256k1.Point;
-var { Fn } = Point;
-var base58check2 = createBase58check(sha2_js.sha256);
-var MASTER_SECRET = Uint8Array.from("Bitcoin seed".split(""), (char) => char.charCodeAt(0));
-var BITCOIN_VERSIONS = { private: 76066276, public: 76067358 };
-var HARDENED_OFFSET = 2147483648;
-var hash160 = (data) => legacy_js.ripemd160(sha2_js.sha256(data));
-var fromU32 = (data) => utils_js.createView(data).getUint32(0, false);
-var toU32 = (n) => {
-  if (!Number.isSafeInteger(n) || n < 0 || n > 2 ** 32 - 1) {
-    throw new Error("invalid number, should be from 0 to 2**32-1, got " + n);
-  }
-  const buf = new Uint8Array(4);
-  utils_js.createView(buf).setUint32(0, n, false);
-  return buf;
-};
-var HDKey = class _HDKey {
-  get fingerprint() {
-    if (!this.pubHash) {
-      throw new Error("No publicKey set!");
-    }
-    return fromU32(this.pubHash);
-  }
-  get identifier() {
-    return this.pubHash;
-  }
-  get pubKeyHash() {
-    return this.pubHash;
-  }
-  get privateKey() {
-    return this._privateKey || null;
-  }
-  get publicKey() {
-    return this._publicKey || null;
-  }
-  get privateExtendedKey() {
-    const priv = this._privateKey;
-    if (!priv) {
-      throw new Error("No private key");
-    }
-    return base58check2.encode(this.serialize(this.versions.private, utils_js.concatBytes(Uint8Array.of(0), priv)));
-  }
-  get publicExtendedKey() {
-    if (!this._publicKey) {
-      throw new Error("No public key");
-    }
-    return base58check2.encode(this.serialize(this.versions.public, this._publicKey));
-  }
-  static fromMasterSeed(seed, versions = BITCOIN_VERSIONS) {
-    utils_js.abytes(seed);
-    if (8 * seed.length < 128 || 8 * seed.length > 512) {
-      throw new Error("HDKey: seed length must be between 128 and 512 bits; 256 bits is advised, got " + seed.length);
-    }
-    const I = hmac_js.hmac(sha2_js.sha512, MASTER_SECRET, seed);
-    const privateKey = I.slice(0, 32);
-    const chainCode = I.slice(32);
-    return new _HDKey({ versions, chainCode, privateKey });
-  }
-  static fromExtendedKey(base58key, versions = BITCOIN_VERSIONS) {
-    const keyBuffer = base58check2.decode(base58key);
-    const keyView = utils_js.createView(keyBuffer);
-    const version = keyView.getUint32(0, false);
-    const opt = {
-      versions,
-      depth: keyBuffer[4],
-      parentFingerprint: keyView.getUint32(5, false),
-      index: keyView.getUint32(9, false),
-      chainCode: keyBuffer.slice(13, 45)
-    };
-    const key = keyBuffer.slice(45);
-    const isPriv = key[0] === 0;
-    if (version !== versions[isPriv ? "private" : "public"]) {
-      throw new Error("Version mismatch");
-    }
-    if (isPriv) {
-      return new _HDKey({ ...opt, privateKey: key.slice(1) });
-    } else {
-      return new _HDKey({ ...opt, publicKey: key });
-    }
-  }
-  static fromJSON(json) {
-    return _HDKey.fromExtendedKey(json.xpriv);
-  }
-  versions;
-  depth = 0;
-  index = 0;
-  chainCode = null;
-  parentFingerprint = 0;
-  _privateKey;
-  _publicKey;
-  pubHash;
-  constructor(opt) {
-    if (!opt || typeof opt !== "object") {
-      throw new Error("HDKey.constructor must not be called directly");
-    }
-    this.versions = opt.versions || BITCOIN_VERSIONS;
-    this.depth = opt.depth || 0;
-    this.chainCode = opt.chainCode || null;
-    this.index = opt.index || 0;
-    this.parentFingerprint = opt.parentFingerprint || 0;
-    if (!this.depth) {
-      if (this.parentFingerprint || this.index) {
-        throw new Error("HDKey: zero depth with non-zero index/parent fingerprint");
-      }
-    }
-    if (this.depth > 255) {
-      throw new Error("HDKey: depth exceeds the serializable value 255");
-    }
-    if (opt.publicKey && opt.privateKey) {
-      throw new Error("HDKey: publicKey and privateKey at same time.");
-    }
-    if (opt.privateKey) {
-      if (!secp256k1_js.secp256k1.utils.isValidSecretKey(opt.privateKey))
-        throw new Error("Invalid private key");
-      this._privateKey = opt.privateKey;
-      this._publicKey = secp256k1_js.secp256k1.getPublicKey(opt.privateKey, true);
-    } else if (opt.publicKey) {
-      this._publicKey = Point.fromBytes(opt.publicKey).toBytes(true);
-    } else {
-      throw new Error("HDKey: no public or private key provided");
-    }
-    this.pubHash = hash160(this._publicKey);
-  }
-  derive(path) {
-    if (!/^[mM]'?/.test(path)) {
-      throw new Error('Path must start with "m" or "M"');
-    }
-    if (/^[mM]'?$/.test(path)) {
-      return this;
-    }
-    const parts = path.replace(/^[mM]'?\//, "").split("/");
-    let child = this;
-    for (const c of parts) {
-      const m = /^(\d+)('?)$/.exec(c);
-      const m1 = m && m[1];
-      if (!m || m.length !== 3 || typeof m1 !== "string")
-        throw new Error("invalid child index: " + c);
-      let idx = +m1;
-      if (!Number.isSafeInteger(idx) || idx >= HARDENED_OFFSET) {
-        throw new Error("Invalid index");
-      }
-      if (m[2] === "'") {
-        idx += HARDENED_OFFSET;
-      }
-      child = child.deriveChild(idx);
-    }
-    return child;
-  }
-  deriveChild(index) {
-    if (!this._publicKey || !this.chainCode) {
-      throw new Error("No publicKey or chainCode set");
-    }
-    let data = toU32(index);
-    if (index >= HARDENED_OFFSET) {
-      const priv = this._privateKey;
-      if (!priv) {
-        throw new Error("Could not derive hardened child key");
-      }
-      data = utils_js.concatBytes(Uint8Array.of(0), priv, data);
-    } else {
-      data = utils_js.concatBytes(this._publicKey, data);
-    }
-    const I = hmac_js.hmac(sha2_js.sha512, this.chainCode, data);
-    const childTweak = I.slice(0, 32);
-    const chainCode = I.slice(32);
-    if (!secp256k1_js.secp256k1.utils.isValidSecretKey(childTweak)) {
-      throw new Error("Tweak bigger than curve order");
-    }
-    const opt = {
-      versions: this.versions,
-      chainCode,
-      depth: this.depth + 1,
-      parentFingerprint: this.fingerprint,
-      index
-    };
-    const ctweak = Fn.fromBytes(childTweak);
-    try {
-      if (this._privateKey) {
-        const added = Fn.create(Fn.fromBytes(this._privateKey) + ctweak);
-        if (!Fn.isValidNot0(added)) {
-          throw new Error("The tweak was out of range or the resulted private key is invalid");
-        }
-        opt.privateKey = Fn.toBytes(added);
-      } else {
-        const added = Point.fromBytes(this._publicKey).add(Point.BASE.multiply(ctweak));
-        if (added.equals(Point.ZERO)) {
-          throw new Error("The tweak was equal to negative P, which made the result key invalid");
-        }
-        opt.publicKey = added.toBytes(true);
-      }
-      return new _HDKey(opt);
-    } catch (err) {
-      return this.deriveChild(index + 1);
-    }
-  }
-  sign(hash) {
-    if (!this._privateKey) {
-      throw new Error("No privateKey set!");
-    }
-    utils_js.abytes(hash, 32);
-    return secp256k1_js.secp256k1.sign(hash, this._privateKey, { prehash: false });
-  }
-  verify(hash, signature) {
-    utils_js.abytes(hash, 32);
-    utils_js.abytes(signature, 64);
-    if (!this._publicKey) {
-      throw new Error("No publicKey set!");
-    }
-    return secp256k1_js.secp256k1.verify(signature, hash, this._publicKey, { prehash: false });
-  }
-  wipePrivateData() {
-    if (this._privateKey) {
-      this._privateKey.fill(0);
-      this._privateKey = void 0;
-    }
-    return this;
-  }
-  toJSON() {
-    return {
-      xpriv: this.privateExtendedKey,
-      xpub: this.publicExtendedKey
-    };
-  }
-  serialize(version, key) {
-    if (!this.chainCode) {
-      throw new Error("No chainCode set");
-    }
-    utils_js.abytes(key, 33);
-    return utils_js.concatBytes(toU32(version), new Uint8Array([this.depth]), toU32(this.parentFingerprint), toU32(this.index), this.chainCode, key);
-  }
-};
 var DERIVATION_PATHS2 = {
-  ethereum: "m/44'/60'/0'/0/0",
-  bitcoin_mainnet: "m/84'/0'/0'/0/0",
+  ethereum: `${DERIVATION_PATHS.ethereum}/0`,
+  bitcoin_mainnet: `${DERIVATION_PATHS.bitcoin}/0`,
   bitcoin_testnet: "m/84'/1'/0'/0/0",
-  ton: "m/44'/607'/0'/0'/0'",
-  tron: "m/44'/195'/0'/0/0",
-  solana: "m/44'/501'/0'/0'",
-  spark: "m/44'/998'/0'/0/0"
+  ton: `${DERIVATION_PATHS.ton}/0'/0'`,
+  tron: `${DERIVATION_PATHS.tron}/0`,
+  solana: `${DERIVATION_PATHS.solana}/0'`,
+  spark: `${DERIVATION_PATHS.spark}/0`
 };
 function deriveEthereumAddress(seed) {
   const hdNode = ethers.HDNodeWallet.fromPhrase(seed, void 0, DERIVATION_PATHS2.ethereum);
@@ -989,7 +409,7 @@ function deriveEthereumAddress(seed) {
 function deriveBitcoinAddress(seed, network = "mainnet") {
   try {
     const seedBytes = bip39.mnemonicToSeedSync(seed);
-    const hdKey = HDKey.fromMasterSeed(seedBytes);
+    const hdKey = bip32.HDKey.fromMasterSeed(seedBytes);
     const path = network === "testnet" ? DERIVATION_PATHS2.bitcoin_testnet : DERIVATION_PATHS2.bitcoin_mainnet;
     const child = hdKey.derive(path);
     if (!child.publicKey) {
@@ -997,10 +417,10 @@ function deriveBitcoinAddress(seed, network = "mainnet") {
     }
     const pubKeyHash = ripemd160.ripemd160(sha256.sha256(child.publicKey));
     const witnessVersion = 0;
-    const words = bech32.toWords(pubKeyHash);
+    const words = base.bech32.toWords(pubKeyHash);
     words.unshift(witnessVersion);
     const hrp = network === "testnet" ? "tb" : "bc";
-    const address = bech32.encode(hrp, words);
+    const address = base.bech32.encode(hrp, words);
     return address;
   } catch (error) {
     console.error("Bitcoin address derivation failed:", error);
@@ -1073,7 +493,7 @@ function deriveTronAddress(seed) {
     for (let i = 0; i < 20; i++) {
       addressBytes[i + 1] = parseInt(ethAddressHex.slice(i * 2, i * 2 + 2), 16);
     }
-    const tronBase58check = base58check(sha256.sha256);
+    const tronBase58check = base.base58check(sha256.sha256);
     return tronBase58check.encode(addressBytes);
   } catch (error) {
     console.error("TRON address derivation failed:", error);
@@ -1083,17 +503,17 @@ function deriveTronAddress(seed) {
 function deriveSparkAddress(seed, network = "mainnet") {
   try {
     const seedBytes = bip39.mnemonicToSeedSync(seed);
-    const hdKey = HDKey.fromMasterSeed(seedBytes);
+    const hdKey = bip32.HDKey.fromMasterSeed(seedBytes);
     const child = hdKey.derive(DERIVATION_PATHS2.spark);
     if (!child.publicKey) {
       throw new Error("Failed to derive public key");
     }
     const pubKeyHash = ripemd160.ripemd160(sha256.sha256(child.publicKey));
     const witnessVersion = 0;
-    const words = bech32.toWords(pubKeyHash);
+    const words = base.bech32.toWords(pubKeyHash);
     words.unshift(witnessVersion);
     const hrp = network === "testnet" ? "tsp" : "sp";
-    const address = bech32.encode(hrp, words);
+    const address = base.bech32.encode(hrp, words);
     return address;
   } catch (error) {
     console.error("Spark address derivation failed:", error);
@@ -1189,9 +609,9 @@ var CHAIN_ERROR_MESSAGES = {
     "no route": "NETWORK_ERROR"
   }
 };
-function parseChainError(chain2, errorMessage) {
+function parseChainError(chain, errorMessage) {
   const errorLower = errorMessage.toLowerCase();
-  const chainErrors = CHAIN_ERROR_MESSAGES[chain2];
+  const chainErrors = CHAIN_ERROR_MESSAGES[chain];
   for (const [pattern, code] of Object.entries(chainErrors)) {
     if (errorLower.includes(pattern)) {
       return code;
@@ -1329,38 +749,38 @@ var ZubariWdkService = class {
    * For Ethereum, falls back to local derivation if API fails.
    * For other chains, WDK API is required - no placeholder fallback.
    */
-  async deriveAddress(seed, chain2) {
+  async deriveAddress(seed, chain) {
     await this.initialize();
-    const path = this.getDerivationPath(chain2);
+    const path = this.getDerivationPath(chain);
     try {
-      const response = await this.apiClient.deriveAddress(seed, chain2, this.config.network);
+      const response = await this.apiClient.deriveAddress(seed, chain, this.config.network);
       if (response.success && response.address) {
         return {
-          chain: chain2,
+          chain,
           address: response.address,
           path: response.path || path
         };
       }
     } catch (error) {
-      console.warn(`API address derivation failed for ${chain2}:`, error);
-      if (chain2 === "ethereum") {
-        return this.deriveBrowserAddress(seed, chain2);
+      console.warn(`API address derivation failed for ${chain}:`, error);
+      if (chain === "ethereum") {
+        return this.deriveBrowserAddress(seed, chain);
       }
     }
     if (this.useNativeWdk && this.nativeWdkService) {
       try {
         const wdk = this.nativeWdkService;
         await wdk.initialize(seed);
-        return await wdk.deriveAddress(chain2);
+        return await wdk.deriveAddress(chain);
       } catch (error) {
-        console.warn(`Native WDK address derivation failed for ${chain2}:`, error);
+        console.warn(`Native WDK address derivation failed for ${chain}:`, error);
       }
     }
-    if (chain2 === "ethereum") {
-      return this.deriveBrowserAddress(seed, chain2);
+    if (chain === "ethereum") {
+      return this.deriveBrowserAddress(seed, chain);
     }
     throw new Error(
-      `WDK API required for ${chain2} address derivation. Ensure the backend is running.`
+      `WDK API required for ${chain} address derivation. Ensure the backend is running.`
     );
   }
   /**
@@ -1440,13 +860,13 @@ var ZubariWdkService = class {
   /**
    * Get fee rates for a chain
    */
-  async getFeeRates(seed, chain2) {
+  async getFeeRates(seed, chain) {
     await this.initialize();
     try {
       const response = await fetch(`${this.config.apiUrl}/api/wallets/wdk/fee-rates`, {
         method: "POST",
         headers: { "Content-Type": "application/json" },
-        body: JSON.stringify({ seed, chain: chain2, network: this.config.network })
+        body: JSON.stringify({ seed, chain, network: this.config.network })
       });
       if (response.ok) {
         const data = await response.json();
@@ -1455,20 +875,20 @@ var ZubariWdkService = class {
         }
       }
     } catch (error) {
-      console.warn(`Failed to fetch fee rates for ${chain2}:`, error);
+      console.warn(`Failed to fetch fee rates for ${chain}:`, error);
     }
     return { slow: "0", normal: "0", fast: "0" };
   }
   /**
    * Estimate transaction fee
    */
-  async estimateFee(seed, chain2, to, amount) {
+  async estimateFee(seed, chain, to, amount) {
     await this.initialize();
     try {
       const response = await fetch(`${this.config.apiUrl}/api/wallets/wdk/estimate-fee`, {
         method: "POST",
         headers: { "Content-Type": "application/json" },
-        body: JSON.stringify({ seed, chain: chain2, to, amount, network: this.config.network })
+        body: JSON.stringify({ seed, chain, to, amount, network: this.config.network })
       });
       if (response.ok) {
         const data = await response.json();
@@ -1477,9 +897,9 @@ var ZubariWdkService = class {
         }
       }
     } catch (error) {
-      console.warn(`Failed to estimate fee for ${chain2}:`, error);
+      console.warn(`Failed to estimate fee for ${chain}:`, error);
     }
-    return { fee: "0", symbol: this.getChainSymbol(chain2) };
+    return { fee: "0", symbol: this.getChainSymbol(chain) };
   }
   /**
    * Send a transaction on any supported chain
@@ -1490,19 +910,14 @@ var ZubariWdkService = class {
    * @param amount - Amount to send (in native units: ETH, BTC, SOL, etc.)
    * @returns Transaction result with hash on success, or error details on failure
    */
-  async sendTransaction(seed, chain2, to, amount) {
+  async sendTransaction(seed, chain, to, amount) {
     await this.initialize();
     const startTime = Date.now();
-    console.log(`[ZubariWdkService] Sending ${chain2} transaction`, {
-      to: `${to.slice(0, 10)}...${to.slice(-6)}`,
-      amount,
-      network: this.config.network
-    });
     try {
       const response = await fetch(`${this.config.apiUrl}/api/wallets/wdk/send`, {
         method: "POST",
         headers: { "Content-Type": "application/json" },
-        body: JSON.stringify({ seed, chain: chain2, to, amount, network: this.config.network })
+        body: JSON.stringify({ seed, chain, to, amount, network: this.config.network })
       });
       const elapsed = Date.now() - startTime;
       if (response.ok) {
@@ -1512,22 +927,18 @@ var ZubariWdkService = class {
           txHash = txHash.hash;
         }
         if (txHash) {
-          const isValid = this.validateTxHash(chain2, txHash);
+          const isValid = this.validateTxHash(chain, txHash);
           if (!isValid) {
-            console.warn(`[ZubariWdkService] Invalid ${chain2} tx hash format:`, txHash);
+            console.warn(`[ZubariWdkService] Invalid ${chain} tx hash format:`, txHash);
           }
         }
-        console.log(`[ZubariWdkService] ${chain2} transaction ${data.success ? "SUCCESS" : "FAILED"}`, {
-          txHash: txHash ? `${txHash.slice(0, 16)}...` : "N/A",
-          elapsed: `${elapsed}ms`
-        });
         if (!data.success) {
-          const errorCode2 = parseChainError(chain2, data.error || "");
+          const errorCode2 = parseChainError(chain, data.error || "");
           return {
             success: false,
             error: data.error,
             errorCode: errorCode2,
-            chain: chain2
+            chain
           };
         }
         return {
@@ -1536,47 +947,35 @@ var ZubariWdkService = class {
           from: data.from,
           to: data.to,
           amount: data.amount,
-          chain: data.chain || chain2,
+          chain: data.chain || chain,
           network: data.network || this.config.network
         };
       }
       const errorData = await response.json().catch(() => ({}));
       const errorMessage = errorData.error || `HTTP ${response.status}`;
-      const errorCode = parseChainError(chain2, errorMessage);
-      console.error(`[ZubariWdkService] ${chain2} transaction FAILED`, {
-        status: response.status,
-        error: errorMessage,
-        errorCode,
-        elapsed: `${elapsed}ms`
-      });
+      const errorCode = parseChainError(chain, errorMessage);
       return {
         success: false,
         error: errorMessage,
         errorCode,
-        chain: chain2
+        chain
       };
     } catch (error) {
-      const elapsed = Date.now() - startTime;
       const errorMessage = error instanceof Error ? error.message : "Transaction failed";
-      const errorCode = parseChainError(chain2, errorMessage);
-      console.error(`[ZubariWdkService] ${chain2} transaction ERROR`, {
-        error: errorMessage,
-        errorCode,
-        elapsed: `${elapsed}ms`
-      });
+      const errorCode = parseChainError(chain, errorMessage);
       return {
         success: false,
         error: errorMessage,
         errorCode,
-        chain: chain2
+        chain
       };
     }
   }
   /**
    * Validate transaction hash format for a specific chain
    */
-  validateTxHash(chain2, txHash) {
-    switch (chain2) {
+  validateTxHash(chain, txHash) {
+    switch (chain) {
       case "ethereum":
         return /^0x[a-fA-F0-9]{64}$/.test(txHash);
       case "bitcoin":
@@ -1608,18 +1007,25 @@ var ZubariWdkService = class {
   // ==========================================
   // Private Helper Methods
   // ==========================================
-  getDerivationPath(chain2) {
-    const paths = {
-      bitcoin: this.config.network === "testnet" ? "m/84'/1'/0'/0/0" : "m/84'/0'/0'/0/0",
-      ethereum: "m/44'/60'/0'/0/0",
-      ton: "m/44'/607'/0'/0'/0'",
-      tron: "m/44'/195'/0'/0/0",
-      solana: "m/44'/501'/0'/0'",
-      spark: "m/44'/998'/0'/0/0"
-    };
-    return paths[chain2];
+  getDerivationPath(chain) {
+    const basePath = DERIVATION_PATHS[chain];
+    if (chain === "bitcoin" && this.config.network === "testnet") {
+      return "m/84'/1'/0'/0/0";
+    }
+    switch (chain) {
+      case "ton":
+        return `${basePath}/0'/0'`;
+      case "solana":
+        return `${basePath}/0'`;
+      case "bitcoin":
+      case "ethereum":
+      case "tron":
+      case "spark":
+      default:
+        return `${basePath}/0`;
+    }
   }
-  getChainSymbol(chain2) {
+  getChainSymbol(chain) {
     const symbols = {
       ethereum: "ETH",
       bitcoin: "BTC",
@@ -1628,16 +1034,16 @@ var ZubariWdkService = class {
       solana: "SOL",
       spark: "SAT"
     };
-    return symbols[chain2];
+    return symbols[chain];
   }
   /**
    * Derive address using browser-compatible libraries
    */
-  async deriveBrowserAddress(seed, chain2) {
-    const path = this.getDerivationPath(chain2);
+  async deriveBrowserAddress(seed, chain) {
+    const path = this.getDerivationPath(chain);
     try {
       let address;
-      switch (chain2) {
+      switch (chain) {
         case "ethereum":
           address = deriveEthereumAddress(seed);
           break;
@@ -1657,11 +1063,11 @@ var ZubariWdkService = class {
           address = await deriveTonAddress(seed);
           break;
         default:
-          throw new Error(`Unsupported chain: ${chain2}`);
+          throw new Error(`Unsupported chain: ${chain}`);
       }
-      return { chain: chain2, address, path };
+      return { chain, address, path };
     } catch (error) {
-      console.error(`Browser derivation failed for ${chain2}:`, error);
+      console.error(`Browser derivation failed for ${chain}:`, error);
       throw error;
     }
   }
@@ -1674,19 +1080,28 @@ var ZubariWdkService = class {
 };
 var defaultService = null;
 function getZubariWdkService(config) {
-  if (!defaultService || config && config.network !== defaultService.getNetwork()) {
+  if (!defaultService || config && (config.network !== defaultService.getNetwork() || config.apiUrl && config.apiUrl !== defaultService.getApiUrl())) {
     defaultService = new ZubariWdkService(config);
   }
   return defaultService;
 }
 
 // src/wallet/ZubariWallet.ts
-var ZubariWallet = class {
+var ZubariWallet = class _ZubariWallet {
   seed;
   config;
   accounts = /* @__PURE__ */ new Map();
   wdkService;
   initialized = false;
+  /** Mapping from NetworkType to SupportedChain (identity map, shared across methods) */
+  static CHAIN_MAP = {
+    ethereum: "ethereum",
+    bitcoin: "bitcoin",
+    ton: "ton",
+    tron: "tron",
+    solana: "solana",
+    spark: "spark"
+  };
   constructor(seed, config) {
     this.seed = seed;
     this.config = {
@@ -1719,20 +1134,12 @@ var ZubariWallet = class {
   async deriveAccount(network, index = 0) {
     const basePath = DERIVATION_PATHS[network];
     const derivationPath = `${basePath}/${index}`;
-    const chainMap = {
-      ethereum: "ethereum",
-      bitcoin: "bitcoin",
-      ton: "ton",
-      tron: "tron",
-      solana: "solana",
-      spark: "spark"
-    };
-    const chain2 = chainMap[network];
-    if (!chain2) {
+    const chain = _ZubariWallet.CHAIN_MAP[network];
+    if (!chain) {
       throw new Error(`Unsupported network: ${network}`);
     }
     try {
-      const result = await this.wdkService.deriveAddress(this.seed, chain2);
+      const result = await this.wdkService.deriveAddress(this.seed, chain);
       const account = {
         network,
         address: result.address,
@@ -1779,21 +1186,13 @@ var ZubariWallet = class {
    */
   async getBalance(network) {
     const networkConfig = getNetworkConfig(network, this.config.network === "testnet");
-    const chainMap = {
-      ethereum: "ethereum",
-      bitcoin: "bitcoin",
-      ton: "ton",
-      tron: "tron",
-      solana: "solana",
-      spark: "spark"
-    };
-    const chain2 = chainMap[network];
-    if (!chain2) {
+    const chain = _ZubariWallet.CHAIN_MAP[network];
+    if (!chain) {
       throw new Error(`Unsupported network: ${network}`);
     }
     try {
       const balances = await this.wdkService.getAllBalances(this.seed);
-      const chainBalance = balances[chain2];
+      const chainBalance = balances[chain];
       if (chainBalance) {
         const balanceValue = BigInt(chainBalance.balance || "0");
         const decimals = networkConfig.nativeCurrency.decimals;
@@ -1874,22 +1273,14 @@ var ZubariWallet = class {
    */
   async send(network, params) {
     const { to, amount } = params;
-    const chainMap = {
-      ethereum: "ethereum",
-      bitcoin: "bitcoin",
-      ton: "ton",
-      tron: "tron",
-      solana: "solana",
-      spark: "spark"
-    };
-    const chain2 = chainMap[network];
-    if (!chain2) {
+    const chain = _ZubariWallet.CHAIN_MAP[network];
+    if (!chain) {
       throw new Error(`Unsupported network: ${network}`);
     }
     try {
       const result = await this.wdkService.sendTransaction(
         this.seed,
-        chain2,
+        chain,
         to,
         amount.toString()
       );
@@ -2187,7 +1578,10 @@ var KeyManager = class {
   static KEY_LENGTH = 256;
   static IV_LENGTH = 12;
   static SALT_LENGTH = 16;
-  static PBKDF2_ITERATIONS = 1e5;
+  // OWASP 2023 recommends 600,000 iterations for PBKDF2-SHA256 to resist
+  // brute-force attacks with modern GPU hardware.
+  // See: https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html
+  static PBKDF2_ITERATIONS = 6e5;
   /**
    * Encrypt a seed phrase with a password
    */
@@ -2426,7 +1820,7 @@ var WebEncryptedStorageAdapter = class {
       {
         name: "PBKDF2",
         salt: salt.buffer,
-        iterations: 1e5,
+        iterations: 6e5,
         hash: "SHA-256"
       },
       keyMaterial,
@@ -2564,8 +1958,8 @@ async function fetchPrices() {
     if (response.ok) {
       const data = await response.json();
       const prices = {};
-      for (const [chain2, geckoId] of Object.entries(COINGECKO_IDS)) {
-        prices[chain2] = data[geckoId]?.usd || 0;
+      for (const [chain, geckoId] of Object.entries(COINGECKO_IDS)) {
+        prices[chain] = data[geckoId]?.usd || 0;
       }
       priceCache = { prices, timestamp: Date.now() };
       return prices;
@@ -2575,9 +1969,22 @@ async function fetchPrices() {
   }
   return priceCache?.prices || {};
 }
-async function getPriceForChain(chain2) {
+async function getPriceForChain(chain) {
   const prices = await fetchPrices();
-  return prices[chain2] || 0;
+  return prices[chain] || 0;
+}
+function tonFriendlyToRaw(addr) {
+  if (addr.includes(":")) return addr;
+  try {
+    const b64 = addr.replace(/-/g, "+").replace(/_/g, "/");
+    const bytes = Uint8Array.from(atob(b64), (c) => c.charCodeAt(0));
+    if (bytes.length !== 36) return addr;
+    const workchain = bytes[1] === 255 ? -1 : bytes[1];
+    const hash = Array.from(bytes.slice(2, 34)).map((b) => b.toString(16).padStart(2, "0")).join("");
+    return `${workchain}:${hash}`;
+  } catch {
+    return addr;
+  }
 }
 var STORAGE_KEYS = {
   ENCRYPTED_SEED: "encrypted_seed",
@@ -2726,6 +2133,16 @@ var WalletManager = class _WalletManager {
   }
   /**
    * Lock wallet (clear seed from memory)
+   *
+   * SECURITY NOTE: JavaScript strings are immutable and cannot be overwritten
+   * in place. Setting `this.currentSeed = null` removes the reference, but
+   * the original string may persist in memory until garbage collected.
+   * There is no reliable way to zero out a JS string.
+   *
+   * TODO: In a future version, store the seed as a Uint8Array instead of a
+   * string. Uint8Array contents can be explicitly zeroed (e.g.,
+   * `seedBytes.fill(0)`) before releasing the reference, which provides
+   * stronger guarantees that sensitive material is scrubbed from memory.
    */
   lock() {
     this.currentSeed = null;
@@ -2783,9 +2200,9 @@ var WalletManager = class _WalletManager {
     if (!this.derivedAddress) {
       throw new Error("Wallet not initialized");
     }
-    const chain2 = this.config.network === "mainnet" ? chains.mainnet : chains.sepolia;
+    const chain = this.config.network === "mainnet" ? chains.mainnet : chains.sepolia;
     const client = viem.createPublicClient({
-      chain: chain2,
+      chain,
       transport: viem.http(this.config.rpcUrl, {
         timeout: 15e3,
         // 15 second timeout
@@ -2807,9 +2224,9 @@ var WalletManager = class _WalletManager {
    * Create viem public client for the current network
    */
   getPublicClient() {
-    const chain2 = this.config.network === "mainnet" ? chains.mainnet : chains.sepolia;
+    const chain = this.config.network === "mainnet" ? chains.mainnet : chains.sepolia;
     return viem.createPublicClient({
-      chain: chain2,
+      chain,
       transport: viem.http(this.config.rpcUrl, {
         timeout: 15e3,
         // 15 second timeout
@@ -2863,11 +2280,11 @@ var WalletManager = class _WalletManager {
    *
    * No fallback to placeholder addresses - WDK API is required for real addresses.
    */
-  static async deriveAddressForChainAsync(seed, chain2, network = "mainnet", apiUrl) {
-    if (chain2 === "ethereum") {
+  static async deriveAddressForChainAsync(seed, chain, network = "mainnet", apiUrl) {
+    if (chain === "ethereum") {
       try {
         const wdkService2 = getZubariWdkService({ network, apiUrl });
-        const result2 = await wdkService2.deriveAddress(seed, chain2);
+        const result2 = await wdkService2.deriveAddress(seed, chain);
         return result2.address;
       } catch (error) {
         console.warn("WDK service failed for Ethereum, using local derivation:", error);
@@ -2875,7 +2292,7 @@ var WalletManager = class _WalletManager {
       }
     }
     const wdkService = getZubariWdkService({ network, apiUrl });
-    const result = await wdkService.deriveAddress(seed, chain2);
+    const result = await wdkService.deriveAddress(seed, chain);
     return result.address;
   }
   /**
@@ -2884,14 +2301,14 @@ var WalletManager = class _WalletManager {
    *
    * @throws Error for non-Ethereum chains - use WDK API instead
    */
-  static deriveAddressForChain(seed, chain2) {
-    if (chain2 === "ethereum") {
+  static deriveAddressForChain(seed, chain) {
+    if (chain === "ethereum") {
       const ethPath = DERIVATION_PATHS["ethereum"];
       const ethNode = ethers.HDNodeWallet.fromPhrase(seed, void 0, `${ethPath}/0`);
       return ethNode.address;
     }
     throw new Error(
-      `Sync derivation not supported for ${chain2}. Use deriveAddressForChainAsync() with WDK API.`
+      `Sync derivation not supported for ${chain}. Use deriveAddressForChainAsync() with WDK API.`
     );
   }
   /**
@@ -2923,9 +2340,9 @@ var WalletManager = class _WalletManager {
       const wdkAddresses = await this.wdkService.deriveAllAddresses(this.currentSeed);
       const enabledChainsSet = new Set(this.config.enabledChains);
       const addresses = {};
-      for (const [chain2, address] of Object.entries(wdkAddresses)) {
-        if (enabledChainsSet.has(chain2) && address) {
-          addresses[chain2] = address;
+      for (const [chain, address] of Object.entries(wdkAddresses)) {
+        if (enabledChainsSet.has(chain) && address) {
+          addresses[chain] = address;
         }
       }
       this.derivedAddresses = addresses;
@@ -2942,7 +2359,6 @@ var WalletManager = class _WalletManager {
   async saveAddressesToStorage(addresses) {
     try {
       await this.storage.setItem(STORAGE_KEYS.DERIVED_ADDRESSES, JSON.stringify(addresses));
-      console.log("Saved derived addresses to storage:", Object.keys(addresses));
     } catch (error) {
       console.warn("Failed to save addresses to storage:", error);
     }
@@ -2966,10 +2382,10 @@ var WalletManager = class _WalletManager {
    */
   normalizeAddresses(addresses) {
     const normalized = {};
-    for (const [chain2, value] of Object.entries(addresses)) {
+    for (const [chain, value] of Object.entries(addresses)) {
       const addr = this.normalizeAddress(value);
       if (addr) {
-        normalized[chain2] = addr;
+        normalized[chain] = addr;
       }
     }
     return normalized;
@@ -2982,9 +2398,7 @@ var WalletManager = class _WalletManager {
       const stored = await this.storage.getItem(STORAGE_KEYS.DERIVED_ADDRESSES);
       if (stored) {
         const rawAddresses = JSON.parse(stored);
-        console.log("[WalletManager] Raw addresses from storage:", rawAddresses);
         const addresses = this.normalizeAddresses(rawAddresses);
-        console.log("[WalletManager] Normalized addresses:", addresses);
         await this.saveAddressesToStorage(addresses);
         return addresses;
       }
@@ -3009,11 +2423,8 @@ var WalletManager = class _WalletManager {
     if (storedAddresses && Object.keys(storedAddresses).length > 1) {
       const expectedEthAddress = _WalletManager.deriveAddress(this.currentSeed);
       if (storedAddresses.ethereum === expectedEthAddress) {
-        console.log("Using addresses from storage (verified by Ethereum address)");
         this.derivedAddresses = storedAddresses;
         return storedAddresses;
-      } else {
-        console.log("Stored addresses do not match current seed, re-deriving...");
       }
     }
     return await this.deriveAllAddressesWithWdk();
@@ -3022,20 +2433,18 @@ var WalletManager = class _WalletManager {
    * Get address for a specific chain
    * Returns cached address or null - use deriveAllAddressesAsync to derive addresses
    */
-  getAddressForChain(chain2) {
-    const cachedValue = this.derivedAddresses[chain2];
+  getAddressForChain(chain) {
+    const cachedValue = this.derivedAddresses[chain];
     if (cachedValue) {
-      console.log(`[WalletManager] getAddressForChain(${chain2}) cached value:`, cachedValue, "type:", typeof cachedValue);
       const addr = this.normalizeAddress(cachedValue);
-      console.log(`[WalletManager] getAddressForChain(${chain2}) normalized:`, addr);
       if (addr) {
-        this.derivedAddresses[chain2] = addr;
+        this.derivedAddresses[chain] = addr;
         return addr;
       }
     }
-    if (chain2 === "ethereum" && this.currentSeed) {
-      this.derivedAddresses[chain2] = _WalletManager.deriveAddressForChain(this.currentSeed, chain2);
-      return this.derivedAddresses[chain2];
+    if (chain === "ethereum" && this.currentSeed) {
+      this.derivedAddresses[chain] = _WalletManager.deriveAddressForChain(this.currentSeed, chain);
+      return this.derivedAddresses[chain];
     }
     return null;
   }
@@ -3048,11 +2457,11 @@ var WalletManager = class _WalletManager {
   /**
    * Set the selected chain
    */
-  setSelectedChain(chain2) {
-    if (!this.config.enabledChains.includes(chain2)) {
-      throw new Error(`Chain ${chain2} is not enabled`);
+  setSelectedChain(chain) {
+    if (!this.config.enabledChains.includes(chain)) {
+      throw new Error(`Chain ${chain} is not enabled`);
     }
-    this.selectedChain = chain2;
+    this.selectedChain = chain;
   }
   /**
    * Get the currently selected chain
@@ -3069,22 +2478,22 @@ var WalletManager = class _WalletManager {
   /**
    * Get chain configuration
    */
-  getChainConfig(chain2) {
-    return getNetworkConfig(chain2, this.config.network === "testnet");
+  getChainConfig(chain) {
+    return getNetworkConfig(chain, this.config.network === "testnet");
   }
   /**
    * Fetch balance for a specific chain
    * Note: Currently only Ethereum is implemented
    */
-  async fetchBalanceForChain(chain2) {
-    const address = this.getAddressForChain(chain2);
+  async fetchBalanceForChain(chain) {
+    const address = this.getAddressForChain(chain);
     if (!address) {
-      throw new Error(`No address for chain ${chain2}`);
+      throw new Error(`No address for chain ${chain}`);
     }
-    const networkConfig = this.getChainConfig(chain2);
+    const networkConfig = this.getChainConfig(chain);
     let balance = "0";
     const tokenBalances = {};
-    if (chain2 === "ethereum") {
+    if (chain === "ethereum") {
       const viemChain = this.config.network === "mainnet" ? chains.mainnet : chains.sepolia;
       const isTestnet = this.config.network !== "mainnet";
       const client = viem.createPublicClient({
@@ -3131,7 +2540,7 @@ var WalletManager = class _WalletManager {
       } else if (usdtResult.status === "rejected") {
         console.warn("[WalletManager] Failed to fetch ETH USDT balance:", usdtResult.reason);
       }
-    } else if (chain2 === "bitcoin") {
+    } else if (chain === "bitcoin") {
       const isMainnet = this.config.network === "mainnet" || address.startsWith("bc1") || address.startsWith("1") || address.startsWith("3");
       const apisToTry = isMainnet ? ["https://mempool.space/api"] : [
         "https://mempool.space/testnet/api",
@@ -3154,16 +2563,14 @@ var WalletManager = class _WalletManager {
               const mempoolSpent = data.mempool_stats?.spent_txo_sum || 0;
               const satoshis = chainFunded - chainSpent + (mempoolFunded - mempoolSpent);
               balance = (satoshis / 1e8).toFixed(8);
-              console.log(`Bitcoin balance for ${address}: ${balance} BTC (${satoshis} sats) via ${apiUrl}`);
               break;
             }
-            console.log(`No transactions found on ${apiUrl}, trying next...`);
           }
         } catch (error) {
           console.warn(`Failed to fetch from ${apiUrl}:`, error);
         }
       }
-    } else if (chain2 === "solana") {
+    } else if (chain === "solana") {
       const rpcUrl = this.config.network === "mainnet" ? "https://api.mainnet-beta.solana.com" : "https://api.devnet.solana.com";
       try {
         const response = await fetch(rpcUrl, {
@@ -3183,7 +2590,7 @@ var WalletManager = class _WalletManager {
           }
         }
       } catch (error) {
-        console.warn(`Failed to fetch ${chain2} balance:`, error);
+        console.warn(`Failed to fetch ${chain} balance:`, error);
       }
       const isTestnet = this.config.network !== "mainnet";
       const usdtMint = USDT_ADDRESSES.solana?.[isTestnet ? "testnet" : "mainnet"];
@@ -3217,7 +2624,7 @@ var WalletManager = class _WalletManager {
           console.warn("Failed to fetch Solana USDT balance:", error);
         }
       }
-    } else if (chain2 === "tron") {
+    } else if (chain === "tron") {
       const tronConfig = getNetworkConfig("tron", this.config.network !== "mainnet");
       const baseUrl = tronConfig.rpcUrl;
       try {
@@ -3246,9 +2653,9 @@ var WalletManager = class _WalletManager {
           }
         }
       } catch (error) {
-        console.warn(`Failed to fetch ${chain2} balance:`, error);
+        console.warn(`Failed to fetch ${chain} balance:`, error);
       }
-    } else if (chain2 === "ton") {
+    } else if (chain === "ton") {
       const isTestnet = this.config.network !== "mainnet";
       const baseUrl = isTestnet ? "https://testnet.toncenter.com/api/v2" : "https://toncenter.com/api/v2";
       try {
@@ -3260,29 +2667,39 @@ var WalletManager = class _WalletManager {
           if (data.ok && data.result !== void 0) {
             const nanotons = BigInt(data.result);
             balance = (Number(nanotons) / 1e9).toFixed(9);
-            console.log(`TON balance for ${address}: ${balance} TON`);
           }
         }
       } catch (error) {
-        console.warn(`Failed to fetch ${chain2} balance:`, error);
+        console.warn(`Failed to fetch ${chain} balance:`, error);
       }
       const usdtJetton = USDT_ADDRESSES.ton?.[isTestnet ? "testnet" : "mainnet"];
       if (usdtJetton) {
-        const v3BaseUrl = isTestnet ? "https://testnet.toncenter.com/api/v3" : "https://toncenter.com/api/v3";
+        const tonapiBaseUrl = isTestnet ? "https://testnet.tonapi.io/v2" : "https://tonapi.io/v2";
         try {
+          const rawAddr = tonFriendlyToRaw(address);
           const jettonResponse = await fetch(
-            `${v3BaseUrl}/jetton/wallets?owner_address=${address}&jetton_address=${usdtJetton}&limit=1`,
+            `${tonapiBaseUrl}/accounts/${encodeURIComponent(rawAddr)}/jettons?currencies=usd`,
             { headers: { "Accept": "application/json" } }
           );
           if (jettonResponse.ok) {
             const jettonData = await jettonResponse.json();
-            const wallets = jettonData.jetton_wallets;
-            if (wallets && wallets.length > 0) {
-              const rawBalance = wallets[0].balance;
-              if (rawBalance) {
-                const usdtAmount = Number(BigInt(rawBalance)) / 1e6;
-                if (usdtAmount > 0) {
-                  tokenBalances.USDT = { balance: usdtAmount.toFixed(6), balanceUsd: usdtAmount };
+            const balances = jettonData.balances;
+            if (balances && balances.length > 0) {
+              for (const jb of balances) {
+                const jettonAddr = jb.jetton?.address;
+                if (jettonAddr) {
+                  const usdtRaw = tonFriendlyToRaw(usdtJetton);
+                  if (jettonAddr.toLowerCase() === usdtRaw.toLowerCase()) {
+                    const rawBalance = jb.balance;
+                    if (rawBalance) {
+                      const decimals = jb.jetton?.decimals || 6;
+                      const usdtAmount = Number(BigInt(rawBalance)) / Math.pow(10, decimals);
+                      if (usdtAmount > 0) {
+                        tokenBalances.USDT = { balance: usdtAmount.toFixed(6), balanceUsd: usdtAmount };
+                      }
+                    }
+                    break;
+                  }
                 }
               }
             }
@@ -3291,7 +2708,7 @@ var WalletManager = class _WalletManager {
           console.warn("Failed to fetch TON USDT jetton balance:", error);
         }
       }
-    } else if (chain2 === "spark") {
+    } else if (chain === "spark") {
       try {
         const response = await fetch(`${this.config.apiUrl}/api/wallets/wdk/balance`, {
           method: "POST",
@@ -3306,18 +2723,17 @@ var WalletManager = class _WalletManager {
           const data = await response.json();
           if (data.success && data.balance !== void 0) {
             balance = (parseFloat(data.balance) / 1e8).toFixed(8);
-            console.log(`Spark balance for ${address}: ${balance} BTC`);
           }
         }
       } catch (error) {
-        console.warn(`Failed to fetch ${chain2} balance:`, error);
+        console.warn(`Failed to fetch ${chain} balance:`, error);
       }
     }
-    const priceUsd = await getPriceForChain(chain2);
+    const priceUsd = await getPriceForChain(chain);
     const balanceNum = parseFloat(balance) || 0;
     const balanceUsd = balanceNum * priceUsd;
     return {
-      chain: chain2,
+      chain,
       symbol: networkConfig.nativeCurrency.symbol,
       balance,
       balanceUsd,
@@ -3327,28 +2743,29 @@ var WalletManager = class _WalletManager {
     };
   }
   /**
-   * Fetch balances for all enabled chains
+   * Fetch balances for all enabled chains in parallel.
+   * Uses Promise.allSettled so that one chain failing does not block others.
    */
   async fetchAllBalances() {
-    const balances = [];
-    for (const chain2 of this.config.enabledChains) {
-      try {
-        const balance = await this.fetchBalanceForChain(chain2);
-        balances.push(balance);
-      } catch (error) {
-        console.error(`Failed to fetch balance for ${chain2}:`, error);
-        const networkConfig = this.getChainConfig(chain2);
-        balances.push({
-          chain: chain2,
-          symbol: networkConfig.nativeCurrency.symbol,
-          balance: "0",
-          balanceUsd: 0,
-          address: this.getAddressForChain(chain2) || "",
-          decimals: networkConfig.nativeCurrency.decimals
-        });
+    const results = await Promise.allSettled(
+      this.config.enabledChains.map((chain) => this.fetchBalanceForChain(chain))
+    );
+    return results.map((result, index) => {
+      const chain = this.config.enabledChains[index];
+      if (result.status === "fulfilled") {
+        return result.value;
       }
-    }
-    return balances;
+      console.error(`Failed to fetch balance for ${chain}:`, result.reason);
+      const networkConfig = this.getChainConfig(chain);
+      return {
+        chain,
+        symbol: networkConfig.nativeCurrency.symbol,
+        balance: "0",
+        balanceUsd: 0,
+        address: this.getAddressForChain(chain) || "",
+        decimals: networkConfig.nativeCurrency.decimals
+      };
+    });
   }
   /**
    * Get extended wallet state with multi-chain info
@@ -3373,13 +2790,13 @@ var WalletManager = class _WalletManager {
    * @param token - Optional token symbol (e.g., 'USDT' for stablecoins)
    * @returns Transaction result with hash and status
    */
-  async sendTransaction(chain2, to, amount, token) {
+  async sendTransaction(chain, to, amount, token) {
     if (!this.currentSeed) {
       return { success: false, error: "Wallet is locked" };
     }
-    const fromAddress = this.getAddressForChain(chain2);
+    const fromAddress = this.getAddressForChain(chain);
     if (!fromAddress) {
-      return { success: false, error: `No address for chain ${chain2}` };
+      return { success: false, error: `No address for chain ${chain}` };
     }
     try {
       const headers = {
@@ -3393,7 +2810,7 @@ var WalletManager = class _WalletManager {
         headers,
         body: JSON.stringify({
           seed: this.currentSeed,
-          chain: chain2,
+          chain,
           to,
           amount,
           token,
@@ -3402,12 +2819,11 @@ var WalletManager = class _WalletManager {
       });
       if (response.ok) {
         const data = await response.json();
-        console.log(`Transaction sent on ${chain2}:`, data);
         let txHash = data.txHash || data.transactionHash || data.hash;
         if (txHash && typeof txHash === "object" && "hash" in txHash) {
           txHash = txHash.hash;
         }
-        if (chain2 === "ethereum" && txHash && (typeof txHash !== "string" || !txHash.startsWith("0x") || txHash.length !== 66)) {
+        if (chain === "ethereum" && txHash && (typeof txHash !== "string" || !txHash.startsWith("0x") || txHash.length !== 66)) {
           console.warn(`Invalid Ethereum tx hash format: ${txHash} (length: ${txHash?.length}, expected: 66)`);
         }
         return {
@@ -3416,7 +2832,7 @@ var WalletManager = class _WalletManager {
           from: fromAddress,
           to,
           amount,
-          chain: chain2
+          chain
         };
       }
       const errorData = await response.json().catch(() => ({}));
@@ -3425,7 +2841,7 @@ var WalletManager = class _WalletManager {
         error: errorData.error || `HTTP ${response.status}`
       };
     } catch (error) {
-      console.error(`Transaction failed on ${chain2}:`, error);
+      console.error(`Transaction failed on ${chain}:`, error);
       return {
         success: false,
         error: error instanceof Error ? error.message : "Transaction failed"
@@ -3435,7 +2851,7 @@ var WalletManager = class _WalletManager {
   /**
    * Estimate transaction fee using Tether WDK
    */
-  async estimateFee(chain2, to, amount, token) {
+  async estimateFee(chain, to, amount, token) {
     try {
       const headers = {
         "Content-Type": "application/json"
@@ -3447,7 +2863,7 @@ var WalletManager = class _WalletManager {
         method: "POST",
         headers,
         body: JSON.stringify({
-          chain: chain2,
+          chain,
           to,
           amount,
           token,
@@ -3471,14 +2887,6 @@ var WalletManager = class _WalletManager {
     }
   }
 };
-/*! Bundled license information:
-
-@scure/base/index.js:
-  (*! scure-base - MIT License (c) 2022 Paul Miller (paulmillr.com) *)
-
-@scure/bip32/index.js:
-  (*! scure-bip32 - MIT License (c) 2022 Patricio Palladino, Paul Miller (paulmillr.com) *)
-*/
 
 exports.SUPPORTED_CHAINS = SUPPORTED_CHAINS;
 exports.WalletManager = WalletManager;