@zubari/sdk 0.5.3 → 0.5.5

package/dist/react/index.d.mts

@@ -1,6 +1,6 @@
-import { b as NetworkType } from '../index-CTyZlHKg.mjs';
-import { W as WalletManagerConfig, a as WalletState, C as ChainBalance, M as MultiChainAddresses, b as WalletManager } from '../WalletManager-Sbpx4E1-.mjs';
-export { S as SUPPORTED_CHAINS } from '../WalletManager-Sbpx4E1-.mjs';
+import { b as NetworkType } from '../index-c90msmwW.mjs';
+import { W as WalletManagerConfig, a as WalletState, C as ChainBalance, M as MultiChainAddresses, b as WalletManager } from '../WalletManager-DIx8nENh.mjs';
+export { S as SUPPORTED_CHAINS } from '../WalletManager-DIx8nENh.mjs';
 import 'abitype';
 import 'viem';
 import 'ethers';

package/dist/react/index.d.ts

@@ -1,6 +1,6 @@
-import { b as NetworkType } from '../index-CTyZlHKg.js';
-import { W as WalletManagerConfig, a as WalletState, C as ChainBalance, M as MultiChainAddresses, b as WalletManager } from '../WalletManager-DQQwVkoa.js';
-export { S as SUPPORTED_CHAINS } from '../WalletManager-DQQwVkoa.js';
+import { b as NetworkType } from '../index-c90msmwW.js';
+import { W as WalletManagerConfig, a as WalletState, C as ChainBalance, M as MultiChainAddresses, b as WalletManager } from '../WalletManager-CeLlZo2y.js';
+export { S as SUPPORTED_CHAINS } from '../WalletManager-CeLlZo2y.js';
 import 'abitype';
 import 'viem';
 import 'ethers';

package/dist/react/index.js

@@ -2,12 +2,6 @@
 
 var react = require('react');
 var ethers = require('ethers');
-var bip39 = require('@scure/bip39');
-var english = require('@scure/bip39/wordlists/english');
-var bip32 = require('@scure/bip32');
-var base = require('@scure/base');
-var sha256 = require('@noble/hashes/sha256');
-var ripemd160 = require('@noble/hashes/ripemd160');
 var viem = require('viem');
 var chains = require('viem/chains');
 
@@ -153,7 +147,13 @@ var USDT_ADDRESSES = {
   }
 };
 var DERIVATION_PATHS = {
-  ethereum: "m/44'/60'/0'/0"};
+  bitcoin: "m/84'/0'/0'/0",
+  ethereum: "m/44'/60'/0'/0",
+  ton: "m/44'/607'/0'",
+  tron: "m/44'/195'/0'/0",
+  solana: "m/44'/501'/0'",
+  spark: "m/44'/998'/0'/0"
+};
 function getNetworkConfig(network, isTestnet = false) {
   const mainnetConfig = NETWORKS[network];
   if (!isTestnet) return mainnetConfig;
@@ -171,9 +171,28 @@ var WdkApiClient = class {
   constructor(config) {
     this.config = {
       baseUrl: config.baseUrl,
-      timeout: config.timeout || 3e4
+      timeout: config.timeout || 3e4,
+      authToken: config.authToken
     };
   }
+  /**
+   * Set or update the auth token for authenticated requests
+   */
+  setAuthToken(token) {
+    this.config.authToken = token;
+  }
+  /**
+   * Build headers for API requests, including Authorization when available
+   */
+  getHeaders() {
+    const headers = {
+      "Content-Type": "application/json"
+    };
+    if (this.config.authToken) {
+      headers["Authorization"] = `Bearer ${this.config.authToken}`;
+    }
+    return headers;
+  }
   /**
    * Generate a new BIP-39 seed phrase using Tether WDK
    */
@@ -181,9 +200,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/generate-seed`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        }
+        headers: this.getHeaders()
       });
       return await response.json();
     } catch (error) {
@@ -200,9 +217,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/validate-seed`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ seed })
       });
       return await response.json();
@@ -220,9 +235,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/derive-address`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ seed, chain, network })
       });
       return await response.json();
@@ -240,9 +253,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/derive-all`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ seed, network })
       });
       return await response.json();
@@ -260,9 +271,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/send`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ seed, chain, to, amount, network })
       });
       return await response.json();
@@ -281,9 +290,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/history`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ seed, chain, network, limit })
       });
       return await response.json();
@@ -302,9 +309,7 @@ var WdkApiClient = class {
     try {
       const response = await fetch(`${this.config.baseUrl}/api/wallets/wdk/tx-status`, {
         method: "POST",
-        headers: {
-          "Content-Type": "application/json"
-        },
+        headers: this.getHeaders(),
         body: JSON.stringify({ txHash, chain, network })
       });
       return await response.json();
@@ -318,42 +323,68 @@ var WdkApiClient = class {
 };
 var DEFAULT_API_URL = process.env.NEXT_PUBLIC_API_URL || "https://ckgwifsxka.us-east-2.awsapprunner.com";
 var wdkApiClient = null;
-function getWdkApiClient(baseUrl) {
+function getWdkApiClient(baseUrl, authToken) {
   if (!wdkApiClient || baseUrl && wdkApiClient["config"].baseUrl !== baseUrl) {
     wdkApiClient = new WdkApiClient({
-      baseUrl: baseUrl || DEFAULT_API_URL
+      baseUrl: baseUrl || DEFAULT_API_URL,
+      authToken
     });
   }
   return wdkApiClient;
 }
 var DERIVATION_PATHS2 = {
-  ethereum: "m/44'/60'/0'/0/0",
-  bitcoin_mainnet: "m/84'/0'/0'/0/0",
+  ethereum: `${DERIVATION_PATHS.ethereum}/0`,
+  bitcoin_mainnet: `${DERIVATION_PATHS.bitcoin}/0`,
   bitcoin_testnet: "m/84'/1'/0'/0/0",
-  ton: "m/44'/607'/0'/0'/0'",
-  tron: "m/44'/195'/0'/0/0",
-  solana: "m/44'/501'/0'/0'",
-  spark: "m/44'/998'/0'/0/0"
+  ton: `${DERIVATION_PATHS.ton}/0'/0'`,
+  tron: `${DERIVATION_PATHS.tron}/0`,
+  solana: `${DERIVATION_PATHS.solana}/0'`,
+  spark: `${DERIVATION_PATHS.spark}/0`
 };
+var _crypto = null;
+async function loadCrypto() {
+  if (_crypto) return _crypto;
+  const [bip39, bip39Words, bip32, scureBase, sha256Mod, ripemd160Mod] = await Promise.all([
+    import('@scure/bip39'),
+    import('@scure/bip39/wordlists/english.js'),
+    import('@scure/bip32'),
+    import('@scure/base'),
+    import('@noble/hashes/sha256'),
+    import('@noble/hashes/ripemd160')
+  ]);
+  _crypto = {
+    mnemonicToSeedSync: bip39.mnemonicToSeedSync,
+    validateMnemonic: bip39.validateMnemonic,
+    generateMnemonic: bip39.generateMnemonic,
+    wordlist: bip39Words.wordlist,
+    HDKey: bip32.HDKey,
+    bech32: scureBase.bech32,
+    base58check: scureBase.base58check,
+    sha256: sha256Mod.sha256,
+    ripemd160: ripemd160Mod.ripemd160
+  };
+  return _crypto;
+}
 function deriveEthereumAddress(seed) {
   const hdNode = ethers.HDNodeWallet.fromPhrase(seed, void 0, DERIVATION_PATHS2.ethereum);
   return hdNode.address;
 }
-function deriveBitcoinAddress(seed, network = "mainnet") {
+async function deriveBitcoinAddress(seed, network = "mainnet") {
   try {
-    const seedBytes = bip39.mnemonicToSeedSync(seed);
-    const hdKey = bip32.HDKey.fromMasterSeed(seedBytes);
+    const { mnemonicToSeedSync, HDKey, sha256, ripemd160, bech32 } = await loadCrypto();
+    const seedBytes = mnemonicToSeedSync(seed);
+    const hdKey = HDKey.fromMasterSeed(seedBytes);
     const path = network === "testnet" ? DERIVATION_PATHS2.bitcoin_testnet : DERIVATION_PATHS2.bitcoin_mainnet;
     const child = hdKey.derive(path);
     if (!child.publicKey) {
       throw new Error("Failed to derive public key");
     }
-    const pubKeyHash = ripemd160.ripemd160(sha256.sha256(child.publicKey));
+    const pubKeyHash = ripemd160(sha256(child.publicKey));
     const witnessVersion = 0;
-    const words = base.bech32.toWords(pubKeyHash);
+    const words = bech32.toWords(pubKeyHash);
     words.unshift(witnessVersion);
     const hrp = network === "testnet" ? "tb" : "bc";
-    const address = base.bech32.encode(hrp, words);
+    const address = bech32.encode(hrp, words);
     return address;
   } catch (error) {
     console.error("Bitcoin address derivation failed:", error);
@@ -362,13 +393,14 @@ function deriveBitcoinAddress(seed, network = "mainnet") {
 }
 async function deriveSolanaAddress(seed) {
   try {
-    const [ed25519, nacl, bs58Module] = await Promise.all([
+    const [crypto2, ed25519, nacl, bs58Module] = await Promise.all([
+      loadCrypto(),
       import('ed25519-hd-key'),
       import('tweetnacl'),
       import('bs58')
     ]);
     const bs58 = bs58Module.default || bs58Module;
-    const seedBytes = bip39.mnemonicToSeedSync(seed);
+    const seedBytes = crypto2.mnemonicToSeedSync(seed);
     const derived = ed25519.derivePath(DERIVATION_PATHS2.solana, Buffer.from(seedBytes).toString("hex"));
     const keypair = nacl.sign.keyPair.fromSeed(new Uint8Array(derived.key));
     return bs58.encode(keypair.publicKey);
@@ -379,17 +411,18 @@ async function deriveSolanaAddress(seed) {
 }
 async function deriveTonAddress(seed) {
   try {
-    const [ed25519, nacl] = await Promise.all([
+    const [crypto2, ed25519, nacl] = await Promise.all([
+      loadCrypto(),
       import('ed25519-hd-key'),
       import('tweetnacl')
     ]);
-    const seedBytes = bip39.mnemonicToSeedSync(seed);
+    const seedBytes = crypto2.mnemonicToSeedSync(seed);
     const derived = ed25519.derivePath(DERIVATION_PATHS2.ton, Buffer.from(seedBytes).toString("hex"));
     const keypair = nacl.sign.keyPair.fromSeed(new Uint8Array(derived.key));
     const publicKey = keypair.publicKey;
     const workchain = 0;
     const flags = 17;
-    const hash = sha256.sha256(publicKey);
+    const hash = crypto2.sha256(publicKey);
     const addressData = new Uint8Array(34);
     addressData[0] = flags;
     addressData[1] = workchain;
@@ -417,8 +450,9 @@ function crc16(data) {
   }
   return crc;
 }
-function deriveTronAddress(seed) {
+async function deriveTronAddress(seed) {
   try {
+    const { sha256, base58check } = await loadCrypto();
     const hdNode = ethers.HDNodeWallet.fromPhrase(seed, void 0, DERIVATION_PATHS2.tron);
     const ethAddressHex = hdNode.address.slice(2).toLowerCase();
     const addressBytes = new Uint8Array(21);
@@ -426,27 +460,28 @@ function deriveTronAddress(seed) {
     for (let i = 0; i < 20; i++) {
       addressBytes[i + 1] = parseInt(ethAddressHex.slice(i * 2, i * 2 + 2), 16);
     }
-    const tronBase58check = base.base58check(sha256.sha256);
+    const tronBase58check = base58check(sha256);
     return tronBase58check.encode(addressBytes);
   } catch (error) {
     console.error("TRON address derivation failed:", error);
     throw error;
   }
 }
-function deriveSparkAddress(seed, network = "mainnet") {
+async function deriveSparkAddress(seed, network = "mainnet") {
   try {
-    const seedBytes = bip39.mnemonicToSeedSync(seed);
-    const hdKey = bip32.HDKey.fromMasterSeed(seedBytes);
+    const { mnemonicToSeedSync, HDKey, sha256, ripemd160, bech32 } = await loadCrypto();
+    const seedBytes = mnemonicToSeedSync(seed);
+    const hdKey = HDKey.fromMasterSeed(seedBytes);
     const child = hdKey.derive(DERIVATION_PATHS2.spark);
     if (!child.publicKey) {
       throw new Error("Failed to derive public key");
     }
-    const pubKeyHash = ripemd160.ripemd160(sha256.sha256(child.publicKey));
+    const pubKeyHash = ripemd160(sha256(child.publicKey));
     const witnessVersion = 0;
-    const words = base.bech32.toWords(pubKeyHash);
+    const words = bech32.toWords(pubKeyHash);
     words.unshift(witnessVersion);
     const hrp = network === "testnet" ? "tsp" : "sp";
-    const address = base.bech32.encode(hrp, words);
+    const address = bech32.encode(hrp, words);
     return address;
   } catch (error) {
     console.error("Spark address derivation failed:", error);
@@ -462,47 +497,38 @@ async function deriveAllAddresses(seed, network = "mainnet") {
     solana: null,
     spark: null
   };
+  await loadCrypto();
   try {
     addresses.ethereum = deriveEthereumAddress(seed);
   } catch (e) {
     console.error("ETH derivation failed:", e);
   }
-  try {
-    addresses.bitcoin = deriveBitcoinAddress(seed, network);
-  } catch (e) {
-    console.error("BTC derivation failed:", e);
-  }
-  try {
-    addresses.spark = deriveSparkAddress(seed, network);
-  } catch (e) {
-    console.error("Spark derivation failed:", e);
-  }
-  try {
-    addresses.tron = deriveTronAddress(seed);
-  } catch (e) {
-    console.error("TRON derivation failed:", e);
-  }
-  const [solResult, tonResult] = await Promise.allSettled([
+  const [btcResult, sparkResult, tronResult, solResult, tonResult] = await Promise.allSettled([
+    deriveBitcoinAddress(seed, network),
+    deriveSparkAddress(seed, network),
+    deriveTronAddress(seed),
     deriveSolanaAddress(seed),
     deriveTonAddress(seed)
   ]);
-  if (solResult.status === "fulfilled") {
-    addresses.solana = solResult.value;
-  } else {
-    console.error("SOL derivation failed:", solResult.reason);
-  }
-  if (tonResult.status === "fulfilled") {
-    addresses.ton = tonResult.value;
-  } else {
-    console.error("TON derivation failed:", tonResult.reason);
-  }
+  if (btcResult.status === "fulfilled") addresses.bitcoin = btcResult.value;
+  else console.error("BTC derivation failed:", btcResult.reason);
+  if (sparkResult.status === "fulfilled") addresses.spark = sparkResult.value;
+  else console.error("Spark derivation failed:", sparkResult.reason);
+  if (tronResult.status === "fulfilled") addresses.tron = tronResult.value;
+  else console.error("TRON derivation failed:", tronResult.reason);
+  if (solResult.status === "fulfilled") addresses.solana = solResult.value;
+  else console.error("SOL derivation failed:", solResult.reason);
+  if (tonResult.status === "fulfilled") addresses.ton = tonResult.value;
+  else console.error("TON derivation failed:", tonResult.reason);
   return addresses;
 }
-function isValidSeed(seed) {
-  return bip39.validateMnemonic(seed, english.wordlist);
+async function isValidSeed(seed) {
+  const { validateMnemonic, wordlist } = await loadCrypto();
+  return validateMnemonic(seed, wordlist);
 }
-function generateSeedPhrase() {
-  return bip39.generateMnemonic(english.wordlist);
+async function generateSeedPhrase() {
+  const { generateMnemonic, wordlist } = await loadCrypto();
+  return generateMnemonic(wordlist);
 }
 
 // src/services/ZubariWdkService.ts
@@ -745,7 +771,7 @@ var ZubariWdkService = class {
         };
         if (!addresses.spark) {
           try {
-            addresses.spark = deriveSparkAddress(seed, this.config.network);
+            addresses.spark = await deriveSparkAddress(seed, this.config.network);
           } catch (e) {
             console.warn("Browser Spark derivation fallback failed:", e);
           }
@@ -846,11 +872,6 @@ var ZubariWdkService = class {
   async sendTransaction(seed, chain, to, amount) {
     await this.initialize();
     const startTime = Date.now();
-    console.log(`[ZubariWdkService] Sending ${chain} transaction`, {
-      to: `${to.slice(0, 10)}...${to.slice(-6)}`,
-      amount,
-      network: this.config.network
-    });
     try {
       const response = await fetch(`${this.config.apiUrl}/api/wallets/wdk/send`, {
         method: "POST",
@@ -870,10 +891,6 @@ var ZubariWdkService = class {
             console.warn(`[ZubariWdkService] Invalid ${chain} tx hash format:`, txHash);
           }
         }
-        console.log(`[ZubariWdkService] ${chain} transaction ${data.success ? "SUCCESS" : "FAILED"}`, {
-          txHash: txHash ? `${txHash.slice(0, 16)}...` : "N/A",
-          elapsed: `${elapsed}ms`
-        });
         if (!data.success) {
           const errorCode2 = parseChainError(chain, data.error || "");
           return {
@@ -896,12 +913,6 @@ var ZubariWdkService = class {
       const errorData = await response.json().catch(() => ({}));
       const errorMessage = errorData.error || `HTTP ${response.status}`;
       const errorCode = parseChainError(chain, errorMessage);
-      console.error(`[ZubariWdkService] ${chain} transaction FAILED`, {
-        status: response.status,
-        error: errorMessage,
-        errorCode,
-        elapsed: `${elapsed}ms`
-      });
       return {
         success: false,
         error: errorMessage,
@@ -909,14 +920,8 @@ var ZubariWdkService = class {
         chain
       };
     } catch (error) {
-      const elapsed = Date.now() - startTime;
       const errorMessage = error instanceof Error ? error.message : "Transaction failed";
       const errorCode = parseChainError(chain, errorMessage);
-      console.error(`[ZubariWdkService] ${chain} transaction ERROR`, {
-        error: errorMessage,
-        errorCode,
-        elapsed: `${elapsed}ms`
-      });
       return {
         success: false,
         error: errorMessage,
@@ -962,15 +967,22 @@ var ZubariWdkService = class {
   // Private Helper Methods
   // ==========================================
   getDerivationPath(chain) {
-    const paths = {
-      bitcoin: this.config.network === "testnet" ? "m/84'/1'/0'/0/0" : "m/84'/0'/0'/0/0",
-      ethereum: "m/44'/60'/0'/0/0",
-      ton: "m/44'/607'/0'/0'/0'",
-      tron: "m/44'/195'/0'/0/0",
-      solana: "m/44'/501'/0'/0'",
-      spark: "m/44'/998'/0'/0/0"
-    };
-    return paths[chain];
+    const basePath = DERIVATION_PATHS[chain];
+    if (chain === "bitcoin" && this.config.network === "testnet") {
+      return "m/84'/1'/0'/0/0";
+    }
+    switch (chain) {
+      case "ton":
+        return `${basePath}/0'/0'`;
+      case "solana":
+        return `${basePath}/0'`;
+      case "bitcoin":
+      case "ethereum":
+      case "tron":
+      case "spark":
+      default:
+        return `${basePath}/0`;
+    }
   }
   getChainSymbol(chain) {
     const symbols = {
@@ -995,13 +1007,13 @@ var ZubariWdkService = class {
           address = deriveEthereumAddress(seed);
           break;
         case "bitcoin":
-          address = deriveBitcoinAddress(seed, this.config.network);
+          address = await deriveBitcoinAddress(seed, this.config.network);
           break;
         case "tron":
-          address = deriveTronAddress(seed);
+          address = await deriveTronAddress(seed);
           break;
         case "spark":
-          address = deriveSparkAddress(seed, this.config.network);
+          address = await deriveSparkAddress(seed, this.config.network);
           break;
         case "solana":
           address = await deriveSolanaAddress(seed);
@@ -1039,7 +1051,10 @@ var KeyManager = class {
   static KEY_LENGTH = 256;
   static IV_LENGTH = 12;
   static SALT_LENGTH = 16;
-  static PBKDF2_ITERATIONS = 1e5;
+  // OWASP 2023 recommends 600,000 iterations for PBKDF2-SHA256 to resist
+  // brute-force attacks with modern GPU hardware.
+  // See: https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html
+  static PBKDF2_ITERATIONS = 6e5;
   /**
    * Encrypt a seed phrase with a password
    */
@@ -1278,7 +1293,7 @@ var WebEncryptedStorageAdapter = class {
       {
         name: "PBKDF2",
         salt: salt.buffer,
-        iterations: 1e5,
+        iterations: 6e5,
         hash: "SHA-256"
       },
       keyMaterial,
@@ -1591,6 +1606,16 @@ var WalletManager = class _WalletManager {
   }
   /**
    * Lock wallet (clear seed from memory)
+   *
+   * SECURITY NOTE: JavaScript strings are immutable and cannot be overwritten
+   * in place. Setting `this.currentSeed = null` removes the reference, but
+   * the original string may persist in memory until garbage collected.
+   * There is no reliable way to zero out a JS string.
+   *
+   * TODO: In a future version, store the seed as a Uint8Array instead of a
+   * string. Uint8Array contents can be explicitly zeroed (e.g.,
+   * `seedBytes.fill(0)`) before releasing the reference, which provides
+   * stronger guarantees that sensitive material is scrubbed from memory.
    */
   lock() {
     this.currentSeed = null;
@@ -1807,7 +1832,6 @@ var WalletManager = class _WalletManager {
   async saveAddressesToStorage(addresses) {
     try {
       await this.storage.setItem(STORAGE_KEYS.DERIVED_ADDRESSES, JSON.stringify(addresses));
-      console.log("Saved derived addresses to storage:", Object.keys(addresses));
     } catch (error) {
       console.warn("Failed to save addresses to storage:", error);
     }
@@ -1847,9 +1871,7 @@ var WalletManager = class _WalletManager {
       const stored = await this.storage.getItem(STORAGE_KEYS.DERIVED_ADDRESSES);
       if (stored) {
         const rawAddresses = JSON.parse(stored);
-        console.log("[WalletManager] Raw addresses from storage:", rawAddresses);
         const addresses = this.normalizeAddresses(rawAddresses);
-        console.log("[WalletManager] Normalized addresses:", addresses);
         await this.saveAddressesToStorage(addresses);
         return addresses;
       }
@@ -1874,11 +1896,8 @@ var WalletManager = class _WalletManager {
     if (storedAddresses && Object.keys(storedAddresses).length > 1) {
       const expectedEthAddress = _WalletManager.deriveAddress(this.currentSeed);
       if (storedAddresses.ethereum === expectedEthAddress) {
-        console.log("Using addresses from storage (verified by Ethereum address)");
         this.derivedAddresses = storedAddresses;
         return storedAddresses;
-      } else {
-        console.log("Stored addresses do not match current seed, re-deriving...");
       }
     }
     return await this.deriveAllAddressesWithWdk();
@@ -1890,9 +1909,7 @@ var WalletManager = class _WalletManager {
   getAddressForChain(chain) {
     const cachedValue = this.derivedAddresses[chain];
     if (cachedValue) {
-      console.log(`[WalletManager] getAddressForChain(${chain}) cached value:`, cachedValue, "type:", typeof cachedValue);
       const addr = this.normalizeAddress(cachedValue);
-      console.log(`[WalletManager] getAddressForChain(${chain}) normalized:`, addr);
       if (addr) {
         this.derivedAddresses[chain] = addr;
         return addr;
@@ -2019,10 +2036,8 @@ var WalletManager = class _WalletManager {
               const mempoolSpent = data.mempool_stats?.spent_txo_sum || 0;
               const satoshis = chainFunded - chainSpent + (mempoolFunded - mempoolSpent);
               balance = (satoshis / 1e8).toFixed(8);
-              console.log(`Bitcoin balance for ${address}: ${balance} BTC (${satoshis} sats) via ${apiUrl}`);
               break;
             }
-            console.log(`No transactions found on ${apiUrl}, trying next...`);
           }
         } catch (error) {
           console.warn(`Failed to fetch from ${apiUrl}:`, error);
@@ -2125,7 +2140,6 @@ var WalletManager = class _WalletManager {
           if (data.ok && data.result !== void 0) {
             const nanotons = BigInt(data.result);
             balance = (Number(nanotons) / 1e9).toFixed(9);
-            console.log(`TON balance for ${address}: ${balance} TON`);
           }
         }
       } catch (error) {
@@ -2182,7 +2196,6 @@ var WalletManager = class _WalletManager {
           const data = await response.json();
           if (data.success && data.balance !== void 0) {
             balance = (parseFloat(data.balance) / 1e8).toFixed(8);
-            console.log(`Spark balance for ${address}: ${balance} BTC`);
           }
         }
       } catch (error) {
@@ -2203,28 +2216,29 @@ var WalletManager = class _WalletManager {
     };
   }
   /**
-   * Fetch balances for all enabled chains
+   * Fetch balances for all enabled chains in parallel.
+   * Uses Promise.allSettled so that one chain failing does not block others.
    */
   async fetchAllBalances() {
-    const balances = [];
-    for (const chain of this.config.enabledChains) {
-      try {
-        const balance = await this.fetchBalanceForChain(chain);
-        balances.push(balance);
-      } catch (error) {
-        console.error(`Failed to fetch balance for ${chain}:`, error);
-        const networkConfig = this.getChainConfig(chain);
-        balances.push({
-          chain,
-          symbol: networkConfig.nativeCurrency.symbol,
-          balance: "0",
-          balanceUsd: 0,
-          address: this.getAddressForChain(chain) || "",
-          decimals: networkConfig.nativeCurrency.decimals
-        });
+    const results = await Promise.allSettled(
+      this.config.enabledChains.map((chain) => this.fetchBalanceForChain(chain))
+    );
+    return results.map((result, index) => {
+      const chain = this.config.enabledChains[index];
+      if (result.status === "fulfilled") {
+        return result.value;
       }
-    }
-    return balances;
+      console.error(`Failed to fetch balance for ${chain}:`, result.reason);
+      const networkConfig = this.getChainConfig(chain);
+      return {
+        chain,
+        symbol: networkConfig.nativeCurrency.symbol,
+        balance: "0",
+        balanceUsd: 0,
+        address: this.getAddressForChain(chain) || "",
+        decimals: networkConfig.nativeCurrency.decimals
+      };
+    });
   }
   /**
    * Get extended wallet state with multi-chain info
@@ -2278,7 +2292,6 @@ var WalletManager = class _WalletManager {
       });
       if (response.ok) {
         const data = await response.json();
-        console.log(`Transaction sent on ${chain}:`, data);
         let txHash = data.txHash || data.transactionHash || data.hash;
         if (txHash && typeof txHash === "object" && "hash" in txHash) {
           txHash = txHash.hash;