bulletin-deploy 0.7.28-rc.2 → 0.7.28

package/assets/environments.json

@@ -8,7 +8,6 @@
       "backend": "https://polkadot-app-stg.parity.io/",
       "ipfs": "https://previewnet.substrate.dev",
       "autoAccountMapping": true,
-      "bulletinAuthorizeV2": true,
       "registerStorageDeposit": 2000000000000,
       "contracts": {
         "DOTNS_PROTOCOL_REGISTRY": "0xc07A2F24387DA27283CD87b9F24573b74C9e0c9b",
@@ -55,7 +54,6 @@
       "ipfs": "https://paseo-bulletin-next-ipfs.polkadot.io",
       "docsUrl": "https://sre.teleport.parity.io/environments/paseo-next/",
       "autoAccountMapping": true,
-      "bulletinAuthorizeV2": true,
       "nativeToEthRatio": 100000000,
       "registerStorageDeposit": 2000000000000,
       "popSelfServe": {

package/dist/bug-report.js

@@ -9,10 +9,10 @@ import {
   offerBugReport,
   scrubSecrets,
   setDeployContext
-} from "./chunk-QMD4BWPM.js";
-import "./chunk-C5ICDZ65.js";
-import "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
+} from "./chunk-B6MBXUCT.js";
+import "./chunk-23U57PZI.js";
+import "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
 export {
   buildCliFlagsSummary,
   buildLabels,

package/dist/{chunk-C5ICDZ65.js → chunk-23U57PZI.js}

@@ -1,6 +1,6 @@
 import {
   VERSION
-} from "./chunk-QNRCWCBP.js";
+} from "./chunk-VS36INHV.js";
 
 // src/version-check.ts
 import { execSync, execFileSync } from "child_process";

package/dist/{chunk-ZCHDCZVP.js → chunk-5OEGCTMJ.js}

@@ -1,16 +1,16 @@
 import {
   isTestnetSpecName
-} from "./chunk-QMYW3D6E.js";
+} from "./chunk-GSATPVTP.js";
 import {
   captureWarning,
   setDeployAttribute,
   setDeploySentryTag,
   truncateAddress,
   withSpan
-} from "./chunk-QNRCWCBP.js";
+} from "./chunk-VS36INHV.js";
 import {
   validateContractAddresses
-} from "./chunk-OITUIM2E.js";
+} from "./chunk-HZKRLQLG.js";
 import {
   NonRetryableError
 } from "./chunk-ZOC4GITL.js";
@@ -93,7 +93,8 @@ var CONNECTION_TIMEOUT_MS = 3e4;
 var OPERATION_TIMEOUT_MS = 3e5;
 var TX_TIMEOUT_MS = 9e4;
 var TX_CHAIN_TIME_BUDGET_MS = 18e4;
-var TX_WALL_CLOCK_CEILING_MS = 10 * 60 * 1e3;
+var TX_WALL_CLOCK_CEILING_MS = 24e4;
+var TX_NO_PROGRESS_MS = 9e4;
 var WS_HEARTBEAT_TIMEOUT_MS = 3e5;
 var DOTNS_TX_MAX_ATTEMPTS = 3;
 function classifyTxRetryDecision(err) {
@@ -104,6 +105,7 @@ function classifyTxRetryDecision(err) {
   if (/"type"\s*:\s*"future"|\binvalid::future\b/.test(lower)) return "retry";
   if (lower.includes("websocket") || lower.includes("connection") || lower.includes("socket closed") || lower.includes("disconnect")) return "retry";
   if (lower.includes("timed out") || lower.includes("timeout")) return "retry";
+  if (lower.includes("transaction watcher silent")) return "retry";
   return "abort";
 }
 var DEFAULT_MNEMONIC = "bottom drive obey lake curtain smoke basket hold race lonely fit walk";
@@ -400,8 +402,8 @@ function sanitizeDomainLabel(label) {
 function validateDomainLabel(label, opts = {}) {
   if (!/^[a-z0-9-]{3,}$/.test(label)) throw new Error("Invalid domain label: must contain only lowercase letters, digits, and hyphens, min 3 chars");
   if (label.startsWith("-") || label.endsWith("-")) throw new Error("Invalid domain label: cannot start or end with hyphen");
-  const sanitized = sanitizeDomainLabel(label);
-  if (/-\d+$/.test(sanitized)) {
+  const sanitized = opts.skipSanitize ? label : sanitizeDomainLabel(label);
+  if (!opts.skipSanitize && /-\d+$/.test(sanitized)) {
     const baseWithHyphen = sanitized.replace(/\d+$/, "");
     const dropHyphen = sanitized.replace(/-(\d+)$/, "$1");
     const insertSegment = sanitized.replace(/-(\d+)$/, "-pr$1");
@@ -471,7 +473,7 @@ function parseDomainName(input) {
     return { isSubdomain: false, label: sanitized, sublabel: null, parentLabel: null, fullName: `${sanitized}.dot` };
   }
   if (parts.length === 2) {
-    const sanitizedSub = validateDomainLabel(parts[0], { checkReserved: false });
+    const sanitizedSub = validateDomainLabel(parts[0], { checkReserved: false, skipSanitize: true });
     const sanitizedParent = validateDomainLabel(parts[1]);
     const fullLabel = `${sanitizedSub}.${sanitizedParent}`;
     return { isSubdomain: true, label: fullLabel, sublabel: sanitizedSub, parentLabel: sanitizedParent, fullName: `${fullLabel}.dot` };
@@ -578,6 +580,8 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
         }
       };
       const startWallClockMs = Date.now();
+      let lastEventAt = Date.now();
+      let lastEventType = "(none)";
       let startChainTimeMs = null;
       const poll = async () => {
         if (settled) return;
@@ -612,6 +616,12 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
             finish(reject)(new Error(`Transaction not included after ${Math.floor(chainElapsedMs / 1e3)}s of chain progress (budget=${TX_CHAIN_TIME_BUDGET_MS / 1e3}s)`));
             return;
           }
+          const silentMs = Date.now() - lastEventAt;
+          if (silentMs > TX_NO_PROGRESS_MS) {
+            statusCallback("failed");
+            finish(reject)(new Error(`transaction watcher silent for ${Math.floor(silentMs / 1e3)}s after ${lastEventType}`));
+            return;
+          }
         } catch {
         }
         if (!settled) deadlinePoller = setTimeout(poll, 6e3);
@@ -620,6 +630,8 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
       try {
         sub = extrinsic.signSubmitAndWatch(signer, { mortality: { mortal: true, period: 256 } }).subscribe({
           next: (event) => {
+            lastEventAt = Date.now();
+            lastEventType = event.type;
             const transactionHash = event.txHash?.toString();
             switch (event.type) {
               case "signed":
@@ -721,7 +733,12 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
       } catch {
       }
     }
-    const prep = await this.dryRunReviveCall(contractAddress, value, encodedData, signerSubstrateAddress, { functionName, args, contracts });
+    const prep = await withSpan(
+      "chain.dry_run",
+      `dry-run ${functionName ?? "Revive.call"}`,
+      { "chain.function_name": functionName ?? "Revive.call" },
+      () => this.dryRunReviveCall(contractAddress, value, encodedData, signerSubstrateAddress, { functionName, args, contracts })
+    );
     const buildExtrinsic = () => this.client.tx.Revive.call({ dest: contractAddress, value, weight_limit: prep.weight_limit, storage_deposit_limit: prep.storage_deposit_limit, data: Binary.fromHex(encodedData) });
     let nonceFallback;
     if (useNoncePolling) {
@@ -731,7 +748,12 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
       } catch {
       }
     }
-    return await this.signAndSubmitWithRetry(buildExtrinsic, signer, statusCallback, "Revive.call", { nonceFallback, verifyEffect });
+    return await withSpan(
+      "chain.tx.submit",
+      `sign+submit ${functionName ?? "Revive.call"}`,
+      { "chain.function_name": functionName ?? "Revive.call", "chain.use_nonce_polling": Boolean(useNoncePolling) },
+      () => this.signAndSubmitWithRetry(buildExtrinsic, signer, statusCallback, "Revive.call", { nonceFallback, verifyEffect })
+    );
   }
   // Dry-runs each call individually, then wraps them in a single
   // Utility.batch_all extrinsic. batch_all is atomic over inner calls — only
@@ -740,7 +762,12 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
   async submitBatchedTransactions(calls, signerSubstrateAddress, signer, statusCallback) {
     if (calls.length === 0) throw new Error("submitBatchedTransactions: at least one call required");
     await this.ensureAccountMapped(signerSubstrateAddress, signer);
-    const preps = await Promise.all(calls.map((c) => this.dryRunReviveCall(c.contractAddress, c.value, c.encodedData, signerSubstrateAddress, { functionName: c.functionName, args: c.args })));
+    const preps = await withSpan(
+      "chain.dry_run",
+      "dry-run Utility.batch_all",
+      { "chain.function_name": "Utility.batch_all" },
+      () => Promise.all(calls.map((c) => this.dryRunReviveCall(c.contractAddress, c.value, c.encodedData, signerSubstrateAddress, { functionName: c.functionName, args: c.args })))
+    );
     const buildExtrinsic = () => {
       const inners = calls.map((c, i) => this.client.tx.Revive.call({
         dest: c.contractAddress,
@@ -751,7 +778,12 @@ var ReviveClientWrapper = class _ReviveClientWrapper {
       }).decodedCall);
       return this.client.tx.Utility.batch_all({ calls: inners });
     };
-    return await this.signAndSubmitWithRetry(buildExtrinsic, signer, statusCallback, "Utility.batch_all");
+    return await withSpan(
+      "chain.tx.submit",
+      "sign+submit Utility.batch_all",
+      { "chain.function_name": "Utility.batch_all" },
+      () => this.signAndSubmitWithRetry(buildExtrinsic, signer, statusCallback, "Utility.batch_all")
+    );
   }
 };
 function formatDispatchError(err) {
@@ -1329,13 +1361,39 @@ var DotNS = class {
       const parentNode = namehash(`${parentLabel}.dot`);
       const subnodeNode = namehash(`${sublabel}.${parentLabel}.dot`);
       const subnodeRecord = { parentNode, subLabel: sublabel, parentLabel, owner: this.evmAddress };
+      const MAX_VERIFY_CHAIN_SECONDS = 30;
+      const POLL_INTERVAL_MS = 2e3;
+      const verifyEffect = async () => {
+        const wrapper = this.clientWrapper;
+        if (!this.connected || !wrapper) return false;
+        const startChainMs = Number(await wrapper.client.query.Timestamp.Now.getValue());
+        let lastPrintedElapsed = -1;
+        while (true) {
+          const liveWrapper = this.clientWrapper;
+          if (!this.connected || !liveWrapper) return false;
+          const [ownership, nowChainMs] = await Promise.all([
+            this.checkSubdomainOwnership(sublabel, parentLabel),
+            liveWrapper.client.query.Timestamp.Now.getValue().then(Number)
+          ]);
+          if (ownership.owned) return true;
+          const chainElapsed = (nowChainMs - startChainMs) / 1e3;
+          if (chainElapsed >= MAX_VERIFY_CHAIN_SECONDS) return false;
+          const floored = Math.floor(chainElapsed);
+          if (floored > lastPrintedElapsed) {
+            console.log(`   Awaiting subnode finalization [verifyEffect] (chain time +${floored}s / ${MAX_VERIFY_CHAIN_SECONDS}s)...`);
+            lastPrintedElapsed = floored;
+          }
+          await new Promise((r) => setTimeout(r, POLL_INTERVAL_MS));
+        }
+      };
       const txResolution = await this.submitBatchedContractCalls(
         [
           { contractAddress: this._contracts.DOTNS_REGISTRY, abi: DOTNS_REGISTRY_ABI, functionName: "setSubnodeOwner", args: [subnodeRecord] },
           { contractAddress: this._contracts.DOTNS_REGISTRY, abi: DOTNS_REGISTRY_ABI, functionName: "setResolver", args: [subnodeNode, this._contracts.DOTNS_CONTENT_RESOLVER] }
         ],
         (s) => console.log(`      ${s}`),
-        `Utility.batch_all (register ${sublabel}.${parentLabel}.dot)`
+        `Utility.batch_all (register ${sublabel}.${parentLabel}.dot)`,
+        { verifyEffect }
       );
       logTxResolution(txResolution);
       if (txResolution.kind === TX_KIND_HASH) {
@@ -1363,7 +1421,7 @@ var DotNS = class {
    * budget for every subsequent call, on the assumption sibling
    * registry/resolver writes are similarly sized.
    */
-  async submitBatchedContractCalls(calls, statusCallback, label) {
+  async submitBatchedContractCalls(calls, statusCallback, label, { verifyEffect } = {}) {
     this.ensureConnected();
     if (!this.clientWrapper) throw new Error(`${label}: polkadot-api client not available`);
     if (calls.length === 0) throw new Error(`${label}: at least one inner call required`);
@@ -1412,7 +1470,7 @@ var DotNS = class {
       return client.tx.Utility.batch_all({ calls: inner.map((c) => c.decodedCall) });
     };
     return await withTimeout(
-      this.clientWrapper.signAndSubmitWithRetry(buildBatch, this.signer, statusCallback, label),
+      this.clientWrapper.signAndSubmitWithRetry(buildBatch, this.signer, statusCallback, label, { verifyEffect }),
       OPERATION_TIMEOUT_MS,
       label
     );
@@ -2338,6 +2396,7 @@ export {
   TX_TIMEOUT_MS,
   TX_CHAIN_TIME_BUDGET_MS,
   TX_WALL_CLOCK_CEILING_MS,
+  TX_NO_PROGRESS_MS,
   WS_HEARTBEAT_TIMEOUT_MS,
   DOTNS_TX_MAX_ATTEMPTS,
   classifyTxRetryDecision,

package/dist/{chunk-QMD4BWPM.js → chunk-B6MBXUCT.js}

@@ -2,11 +2,11 @@ import {
   classifyErrorArea,
   isInteractive,
   promptYesNo
-} from "./chunk-C5ICDZ65.js";
+} from "./chunk-23U57PZI.js";
 import {
   VERSION,
   getCurrentSentryTraceId
-} from "./chunk-QNRCWCBP.js";
+} from "./chunk-VS36INHV.js";
 
 // src/bug-report.ts
 import { execSync, execFileSync } from "child_process";

package/dist/{chunk-YZT3SWSV.js → chunk-DCZYQCEG.js}

@@ -1,6 +1,6 @@
 import {
   captureWarning
-} from "./chunk-QNRCWCBP.js";
+} from "./chunk-VS36INHV.js";
 
 // src/chunk-probe.ts
 import { Twox128, Blake2128Concat, decAnyMetadata, unifyMetadata } from "@polkadot-api/substrate-bindings";

package/dist/{chunk-5LWQOKOU.js → chunk-EIP3OX6G.js}

@@ -20,10 +20,10 @@ import {
 } from "./chunk-S7EM5VMW.js";
 import {
   setDeployContext
-} from "./chunk-QMD4BWPM.js";
+} from "./chunk-B6MBXUCT.js";
 import {
   probeChunks
-} from "./chunk-YZT3SWSV.js";
+} from "./chunk-DCZYQCEG.js";
 import {
   packSection
 } from "./chunk-C2TS5MER.js";
@@ -35,7 +35,7 @@ import {
   parseDomainName,
   popStatusName,
   verifyNonceAdvanced
-} from "./chunk-ZCHDCZVP.js";
+} from "./chunk-5OEGCTMJ.js";
 import {
   derivePoolAccounts,
   detectTestnet,
@@ -43,7 +43,7 @@ import {
   fetchPoolAuthorizations,
   selectAccount,
   topUpBy
-} from "./chunk-QMYW3D6E.js";
+} from "./chunk-GSATPVTP.js";
 import {
   VERSION,
   captureWarning,
@@ -57,13 +57,13 @@ import {
   truncateAddress,
   withDeploySpan,
   withSpan
-} from "./chunk-QNRCWCBP.js";
+} from "./chunk-VS36INHV.js";
 import {
   DEFAULT_ENV_ID,
   getPopSelfServeConfig,
   loadEnvironments,
   resolveEndpoints
-} from "./chunk-OITUIM2E.js";
+} from "./chunk-HZKRLQLG.js";
 import {
   NonRetryableError
 } from "./chunk-ZOC4GITL.js";
@@ -232,23 +232,11 @@ async function getProvider() {
     await cryptoWaitReady();
     const poolMnemonic = process.env.BULLETIN_POOL_MNEMONIC || void 0;
     const poolAccounts = derivePoolAccounts(POOL_SIZE, poolMnemonic);
-    const [authorizations, currentBlockForPool] = await Promise.all([
-      fetchPoolAuthorizations(unsafeApi, poolAccounts),
-      unsafeApi.query.System.Number.getValue()
-    ]);
-    const selectionResult = selectAccount(authorizations, Math.random, currentBlockForPool);
-    let selectedAccount;
-    let eligibleCount = 0;
-    if (!selectionResult) {
-      const best = authorizations.reduce((a, b) => a.transactions > b.transactions ? a : b);
-      console.log(`   All pool accounts low on capacity, auto-authorizing account ${best.index}...`);
-      await ensureAuthorized(unsafeApi, best.address, `pool account ${best.index}`);
-      selectedAccount = best;
-    } else {
-      selectedAccount = selectionResult.account;
-      eligibleCount = selectionResult.eligibleCount;
-      await ensureAuthorized(unsafeApi, selectedAccount.address, `pool account ${selectedAccount.index}`);
-    }
+    const authorizations = await fetchPoolAuthorizations(unsafeApi, poolAccounts);
+    const selectionResult = selectAccount(authorizations);
+    const selectedAccount = selectionResult.account;
+    const eligibleCount = selectionResult.eligibleCount;
+    await ensureAuthorized(unsafeApi, selectedAccount.address, `pool account ${selectedAccount.index}`);
     console.log(`   Using pool account ${selectedAccount.index}: ${selectedAccount.address}`);
     setDeployAttribute("deploy.signer.mode", "pool");
     setDeployAttribute("deploy.pool.account", truncateAddress(selectedAccount.address));
@@ -260,7 +248,7 @@ async function getProvider() {
     throw e;
   }
 }
-async function getDirectProvider(mnemonic, derivationPath = "", bulletinAuthorizeV2) {
+async function getDirectProvider(mnemonic, derivationPath = "") {
   const primary = BULLETIN_ENDPOINTS[0];
   console.log(`   Connecting to Bulletin: ${primary}`);
   const client = createPolkadotClient(getWsProvider(
@@ -277,7 +265,7 @@ async function getDirectProvider(mnemonic, derivationPath = "", bulletinAuthoriz
   let now = currentBlock.number;
   if (!auth || Number(auth.expiration ?? 0) <= now) {
     try {
-      await ensureAuthorized(unsafeApi, ss58, "direct signer", bulletinAuthorizeV2);
+      await ensureAuthorized(unsafeApi, ss58, "direct signer");
       [auth, currentBlock] = await Promise.all([
         unsafeApi.query.TransactionStorage.Authorizations.getValue(Enum("Account", ss58)),
         client.getFinalizedBlock()
@@ -411,7 +399,7 @@ function assignDenseNonces(stored, startNonce) {
   return nonces;
 }
 var __assignDenseNoncesForTest = assignDenseNonces;
-async function storeChunkedContent(chunks, { client: existingClient, unsafeApi: existingApi, signer: existingSigner, ss58: existingSS58, reconnect, fetchNonce: fetchNonceOverride, skipCids, probeFailedCids, gateway: providerGateway, bulletinAuthorizeV2, trustedCids, skipRootStore } = {}) {
+async function storeChunkedContent(chunks, { client: existingClient, unsafeApi: existingApi, signer: existingSigner, ss58: existingSS58, reconnect, fetchNonce: fetchNonceOverride, skipCids, probeFailedCids, gateway: providerGateway, trustedCids, skipRootStore } = {}) {
   const _fetchNonce = fetchNonceOverride ?? fetchNonce;
   console.log(`
    Chunks: ${chunks.length}`);
@@ -483,7 +471,7 @@ async function storeChunkedContent(chunks, { client: existingClient, unsafeApi:
    Account needs re-authorization (authorized=${isAuthorized}, need ${requiredTxs} txs / ${(totalBytes / 1e6).toFixed(1)}MB, have ${txsRemainingDisplay} txs / ${(Number(bytesRemainingDisplay) / 1e6).toFixed(2)}MB)`);
     console.log(`   Attempting to re-authorize with Alice...`);
     try {
-      await ensureAuthorized(unsafeApi, ss58, void 0, bulletinAuthorizeV2, { txs: requiredTxs, bytes: requiredBytes });
+      await ensureAuthorized(unsafeApi, ss58, void 0, { txs: requiredTxs, bytes: requiredBytes });
       console.log(`   Re-authorization successful`);
     } catch (e) {
       throw new NonRetryableError(`Account ${ss58} has insufficient Bulletin authorization and auto-authorization via Alice failed (${e.message}). Authorize the account on-chain.`);
@@ -1552,7 +1540,6 @@ async function deploy(content, domainName = null, options = {}) {
   let envIpfs;
   let envAutoAccountMapping = false;
   let envContracts = {};
-  let envBulletinAuthorizeV2 = false;
   let envNativeToEthRatio;
   let envRegisterStorageDeposit;
   let envPopSelfServe = null;
@@ -1571,7 +1558,6 @@ async function deploy(content, domainName = null, options = {}) {
       envIpfs = resolved.ipfs;
       envAutoAccountMapping = resolved.autoAccountMapping;
       envContracts = resolved.contracts;
-      envBulletinAuthorizeV2 = resolved.bulletinAuthorizeV2;
       envNativeToEthRatio = resolved.nativeToEthRatio;
       envRegisterStorageDeposit = resolved.registerStorageDeposit;
       envPopSelfServe = getPopSelfServeConfig(doc, envId);
@@ -1614,7 +1600,7 @@ async function deploy(content, domainName = null, options = {}) {
     if (process.env.CI) console.log(`   Runner: ${resolveRunner()} (${resolveRunnerType()})`);
     if (options.password) console.log(`   Encrypted: yes`);
     let provider;
-    const reconnect = options.mnemonic ? () => getDirectProvider(options.mnemonic, options.derivationPath, envBulletinAuthorizeV2) : () => getProvider();
+    const reconnect = options.mnemonic ? () => getDirectProvider(options.mnemonic, options.derivationPath) : () => getProvider();
     let dotnsPreflight = null;
     let previousContenthashCid = null;
     try {
@@ -1668,7 +1654,7 @@ async function deploy(content, domainName = null, options = {}) {
         }
       }
       provider = await reconnect();
-      const providerWithReconnect = { ...provider, reconnect, bulletinAuthorizeV2: envBulletinAuthorizeV2 };
+      const providerWithReconnect = { ...provider, reconnect };
       const [isTestnet, estimated] = await Promise.all([
         detectTestnet(provider.unsafeApi),
         estimateUploadBytes(content)
@@ -1678,7 +1664,7 @@ async function deploy(content, domainName = null, options = {}) {
         const uploadBytes = Math.ceil(estimated * 1.2);
         const chunksNeeded = Math.max(1, Math.ceil(uploadBytes / CHUNK_SIZE));
         const needs = { txs: BigInt(chunksNeeded + 2), bytes: BigInt(uploadBytes) };
-        await topUpBy(provider.unsafeApi, provider.ss58, needs, "uploader", envBulletinAuthorizeV2);
+        await topUpBy(provider.unsafeApi, provider.ss58, needs, "uploader");
       }
       console.log("\n" + "=".repeat(60));
       console.log("Storage");

package/dist/{chunk-QMYW3D6E.js → chunk-GSATPVTP.js}

@@ -1,3 +1,7 @@
+import {
+  setDeployAttribute
+} from "./chunk-VS36INHV.js";
+
 // src/pool.ts
 import { sr25519CreateDerive } from "@polkadot-labs/hdkd";
 import { DEV_PHRASE, entropyToMiniSecret, mnemonicToEntropy } from "@polkadot-labs/hdkd-helpers";
@@ -14,7 +18,6 @@ var DEPLOY_PATH_PREFIX = "//deploy";
 var TOPUP_TRANSACTIONS = 1e3;
 var TOPUP_BYTES = 100000000n;
 var WS_HEARTBEAT_TIMEOUT_MS = 3e5;
-var AUTHORIZATION_EXTENSION_BLOCKS = 2e6;
 function derivePoolAccounts(poolSize = 10, mnemonic = DEV_PHRASE) {
   const entropy = mnemonicToEntropy(mnemonic);
   const miniSecret = entropyToMiniSecret(entropy);
@@ -30,23 +33,19 @@ function derivePoolAccounts(poolSize = 10, mnemonic = DEV_PHRASE) {
   }
   return accounts;
 }
-function isAuthorizationSufficient(auth, currentBlock, check = {}) {
+function isAuthorizationSufficient(auth, currentBlock, needs) {
   if (auth === void 0) return false;
   if (Number(auth.expiration ?? 0) <= currentBlock) return false;
-  if (check.bulletinAuthorizeV2 && check.needs) {
+  if (needs) {
     const txsRemaining = BigInt(auth.extent.transactions_allowance) - BigInt(auth.extent.transactions);
     const bytesRemaining = BigInt(auth.extent.bytes_allowance) - BigInt(auth.extent.bytes);
-    if (txsRemaining < check.needs.txs) return false;
-    if (bytesRemaining < check.needs.bytes) return false;
+    if (txsRemaining < needs.txs) return false;
+    if (bytesRemaining < needs.bytes) return false;
   }
   return true;
 }
-function selectAccount(authorizations, random = Math.random, currentBlock) {
-  const eligible = authorizations.filter(
-    (a) => currentBlock === void 0 || a.expiration > currentBlock
-  );
-  if (eligible.length === 0) return null;
-  return { account: eligible[Math.floor(random() * eligible.length)], eligibleCount: eligible.length };
+function selectAccount(authorizations, random = Math.random) {
+  return { account: authorizations[Math.floor(random() * authorizations.length)], eligibleCount: authorizations.length };
 }
 async function fetchPoolAuthorizations(api, accounts) {
   const results = await Promise.all(
@@ -145,83 +144,59 @@ function clampU32(n, name) {
   if (n > U32_MAX) throw new Error(`${name} (${n}) exceeds u32 max \u2014 split the deploy into smaller batches`);
   return Number(n);
 }
-async function ensureAuthorized(api, address, label, bulletinAuthorizeV2, needs) {
+function markBulletinAuthGranted() {
+  setDeployAttribute("deploy.unblock.bulletin_auth.fired", "true");
+  setDeployAttribute("deploy.unblock.bulletin_auth.granted_txs", String(TOPUP_TRANSACTIONS));
+  setDeployAttribute("deploy.unblock.bulletin_auth.granted_bytes", String(TOPUP_BYTES));
+}
+async function ensureAuthorized(api, address, label, needs) {
   const [auth, currentBlock] = await Promise.all([
     api.query.TransactionStorage.Authorizations.getValue(Enum("Account", address)),
     api.query.System.Number.getValue()
   ]);
-  if (isAuthorizationSufficient(auth, currentBlock, { needs, bulletinAuthorizeV2 })) return;
+  if (isAuthorizationSufficient(auth, currentBlock, needs)) return;
   console.log(`   Auto-authorizing ${label ?? "account"} (${address.slice(0, 8)}...)...`);
   const { signer } = aliceKeyring();
-  if (bulletinAuthorizeV2) {
-    await submitAliceTxWithRetry(
-      () => api.tx.TransactionStorage.authorize_account({
-        who: address,
-        transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
-        bytes: TOPUP_BYTES
-      }),
-      signer,
-      `authorize_account(${label ?? "account"})`
-    );
-    console.log(`   Authorized: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
-  } else {
-    const newExpiration = currentBlock + AUTHORIZATION_EXTENSION_BLOCKS;
-    await submitAliceTxWithRetry(
-      () => api.tx.TransactionStorage.authorize_account({
-        who: address,
-        expiration: newExpiration
-      }),
-      signer,
-      `authorize_account(${label ?? "account"})`
-    );
-    console.log(`   Authorized: expires at block ${newExpiration} (current: ${currentBlock})`);
-  }
+  await submitAliceTxWithRetry(
+    () => api.tx.TransactionStorage.authorize_account({
+      who: address,
+      transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
+      bytes: TOPUP_BYTES
+    }),
+    signer,
+    `authorize_account(${label ?? "account"})`
+  );
+  console.log(`   Authorized: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
+  markBulletinAuthGranted();
 }
-async function topUpBy(api, address, needs, label, bulletinAuthorizeV2) {
+async function topUpBy(api, address, needs, label) {
   const [currentAuth, currentBlock] = await Promise.all([
     api.query.TransactionStorage.Authorizations.getValue(Enum("Account", address)),
     api.query.System.Number.getValue()
   ]);
-  if (isAuthorizationSufficient(currentAuth, currentBlock, { needs, bulletinAuthorizeV2 })) {
+  if (isAuthorizationSufficient(currentAuth, currentBlock, needs)) {
     const expiration = Number(currentAuth.expiration);
-    if (currentAuth.extent) {
-      const fmtMB = (b) => (Number(b) / 1e6).toFixed(1);
-      const txsRemaining = BigInt(currentAuth.extent.transactions_allowance) - BigInt(currentAuth.extent.transactions);
-      const bytesRemaining = BigInt(currentAuth.extent.bytes_allowance) - BigInt(currentAuth.extent.bytes);
-      console.log(`   Pre-auth skipped for ${label ?? "account"} (${address.slice(0, 8)}...): authorized until block ${expiration}, ${txsRemaining} txs / ${fmtMB(bytesRemaining)}MB remaining.`);
-    } else {
-      console.log(`   Pre-auth skipped for ${label ?? "account"} (${address.slice(0, 8)}...): authorized until block ${expiration}.`);
-    }
+    const fmtMB = (b) => (Number(b) / 1e6).toFixed(1);
+    const txsRemaining = BigInt(currentAuth.extent.transactions_allowance) - BigInt(currentAuth.extent.transactions);
+    const bytesRemaining = BigInt(currentAuth.extent.bytes_allowance) - BigInt(currentAuth.extent.bytes);
+    console.log(`   Pre-auth skipped for ${label ?? "account"} (${address.slice(0, 8)}...): authorized until block ${expiration}, ${txsRemaining} txs / ${fmtMB(bytesRemaining)}MB remaining.`);
     return;
   }
   const { signer } = aliceKeyring();
-  if (bulletinAuthorizeV2) {
-    console.log(`   Pre-authorizing ${label ?? "account"} (${address.slice(0, 8)}...): granting ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB...`);
-    await submitAliceTxWithRetry(
-      () => api.tx.TransactionStorage.authorize_account({
-        who: address,
-        transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
-        bytes: TOPUP_BYTES
-      }),
-      signer,
-      `topUpBy(${label ?? "account"})`
-    );
-    console.log(`   Pre-authorized: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
-  } else {
-    const newExpiration = currentBlock + AUTHORIZATION_EXTENSION_BLOCKS;
-    console.log(`   Pre-authorizing ${label ?? "account"} (${address.slice(0, 8)}...): extending authorization to block ${newExpiration}...`);
-    await submitAliceTxWithRetry(
-      () => api.tx.TransactionStorage.authorize_account({
-        who: address,
-        expiration: newExpiration
-      }),
-      signer,
-      `topUpBy(${label ?? "account"})`
-    );
-    console.log(`   Pre-authorized: expires at block ${newExpiration}`);
-  }
+  console.log(`   Pre-authorizing ${label ?? "account"} (${address.slice(0, 8)}...): granting ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB...`);
+  await submitAliceTxWithRetry(
+    () => api.tx.TransactionStorage.authorize_account({
+      who: address,
+      transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
+      bytes: TOPUP_BYTES
+    }),
+    signer,
+    `topUpBy(${label ?? "account"})`
+  );
+  console.log(`   Pre-authorized: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
+  markBulletinAuthGranted();
 }
-async function bootstrapPool(bulletinRpc, poolSize = 10, mnemonic, opts = {}) {
+async function bootstrapPool(bulletinRpc, poolSize = 10, mnemonic) {
   console.log(`Bootstrapping ${poolSize} pool accounts on ${bulletinRpc}...
 `);
   await cryptoWaitReady();
@@ -238,40 +213,19 @@ async function bootstrapPool(bulletinRpc, poolSize = 10, mnemonic, opts = {}) {
   const aliceBalance = BigInt(aliceAccount.data.free);
   console.log(`Alice balance: ${formatPasBalance(aliceBalance)} PAS
 `);
-  const currentBlock = await api.query.System.Number.getValue();
-  if (opts.bulletinAuthorizeV2) {
-    console.log(`Authorizing accounts with V2 (${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB)
-`);
-  } else {
-    const authExpiration = currentBlock + AUTHORIZATION_EXTENSION_BLOCKS;
-    console.log(`Authorizing accounts until block ${authExpiration} (current: ${currentBlock})
+  console.log(`Authorizing accounts (${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB)
 `);
-  }
   for (const account of accounts) {
     console.log(`Account ${account.index}: ${account.address}`);
     try {
-      let tx;
-      if (opts.bulletinAuthorizeV2) {
-        tx = api.tx.TransactionStorage.authorize_account({
-          who: account.address,
-          transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
-          bytes: TOPUP_BYTES
-        });
-      } else {
-        const authExpiration = currentBlock + AUTHORIZATION_EXTENSION_BLOCKS;
-        tx = api.tx.TransactionStorage.authorize_account({
-          who: account.address,
-          expiration: authExpiration
-        });
-      }
+      const tx = api.tx.TransactionStorage.authorize_account({
+        who: account.address,
+        transactions: clampU32(BigInt(TOPUP_TRANSACTIONS), "transactions"),
+        bytes: TOPUP_BYTES
+      });
       const result = await tx.signAndSubmit(aliceSigner);
       if (!result.ok) throw new Error("dispatch failed");
-      if (opts.bulletinAuthorizeV2) {
-        console.log(`  Authorized: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
-      } else {
-        const authExpiration = currentBlock + AUTHORIZATION_EXTENSION_BLOCKS;
-        console.log(`  Authorized: expires at block ${authExpiration}`);
-      }
+      console.log(`  Authorized: ${TOPUP_TRANSACTIONS} txs / ${Number(TOPUP_BYTES) / 1e6}MB`);
     } catch (e) {
       console.log(`  Authorization failed: ${e.message?.slice(0, 80)}`);
     }

package/dist/{chunk-OITUIM2E.js → chunk-HZKRLQLG.js}

@@ -17,7 +17,6 @@ var environments_default = {
       backend: "https://polkadot-app-stg.parity.io/",
       ipfs: "https://previewnet.substrate.dev",
       autoAccountMapping: true,
-      bulletinAuthorizeV2: true,
       registerStorageDeposit: 2e12,
       contracts: {
         DOTNS_PROTOCOL_REGISTRY: "0xc07A2F24387DA27283CD87b9F24573b74C9e0c9b",
@@ -64,7 +63,6 @@ var environments_default = {
       ipfs: "https://paseo-bulletin-next-ipfs.polkadot.io",
       docsUrl: "https://sre.teleport.parity.io/environments/paseo-next/",
       autoAccountMapping: true,
-      bulletinAuthorizeV2: true,
       nativeToEthRatio: 1e8,
       registerStorageDeposit: 2e12,
       popSelfServe: {
@@ -471,7 +469,6 @@ function resolveEndpoints(doc, envId) {
     envName: env.name,
     ipfs: env.ipfs,
     autoAccountMapping: env.autoAccountMapping ?? false,
-    bulletinAuthorizeV2: env.bulletinAuthorizeV2 ?? false,
     contracts: env.contracts ?? {},
     nativeToEthRatio: BigInt(env.nativeToEthRatio ?? 1e6),
     ...env.registerStorageDeposit !== void 0 ? { registerStorageDeposit: BigInt(env.registerStorageDeposit) } : {}

package/dist/{chunk-O6GP6JOD.js → chunk-RDTUUXZM.js}

@@ -6,7 +6,7 @@ import * as path from "path";
 // package.json
 var package_default = {
   name: "bulletin-deploy",
-  version: "0.7.28-rc.2",
+  version: "0.7.28",
   private: false,
   repository: {
     type: "git",

package/dist/{chunk-POA4GHYP.js → chunk-UY6S4E3A.js}

@@ -6,15 +6,15 @@ import {
   resolveDotnsConnectOptions,
   storeDirectory,
   storeFile
-} from "./chunk-5LWQOKOU.js";
+} from "./chunk-EIP3OX6G.js";
 import {
   DotNS
-} from "./chunk-ZCHDCZVP.js";
+} from "./chunk-5OEGCTMJ.js";
 import {
   getPopSelfServeConfig,
   loadEnvironments,
   resolveEndpoints
-} from "./chunk-OITUIM2E.js";
+} from "./chunk-HZKRLQLG.js";
 import {
   NonRetryableError
 } from "./chunk-ZOC4GITL.js";

package/dist/{chunk-QNRCWCBP.js → chunk-VS36INHV.js}

@@ -1,7 +1,7 @@
 import {
   package_default,
   writeRunState
-} from "./chunk-O6GP6JOD.js";
+} from "./chunk-RDTUUXZM.js";
 
 // src/memory-report.ts
 import * as fs2 from "fs";
@@ -211,6 +211,10 @@ function getDeployAttributes(domain) {
     // testnet auto-top-up" metrics. Flipped by gateOnFeeBalance.
     "deploy.dotns.signer_below_floor": "false",
     "deploy.dotns.toppedup": "false",
+    // Seeded "false" so every span carries the attribute for ratio queries.
+    // Flipped to "true" by pool.ts ensureAuthorized / topUpBy when authorize_account
+    // actually submits (i.e. re-auth was needed, not short-circuited).
+    "deploy.unblock.bulletin_auth.fired": "false",
     // Seeded "hash" so spans missing an explicit set (non-DotNS deploys) group
     // cleanly in the "hash" bucket.
     "deploy.dotns.tx_resolution_kind": "hash",
@@ -276,7 +280,7 @@ function isExpectedError(msg) {
 }
 function classifyDeployError(msg) {
   if (isExpectedError(msg)) return "user";
-  if (/chunk.*failed after.*retr|tx dropped from best chain|timed out after \d+s waiting for block|Contract reverted|Contract execution would revert|dotns register failed|All promises were rejected|"type"\s*:\s*"Invalid"|Commitment still too new|not finalised after \d+s|chain may have (dropped|evicted)|ReviveApi.*timed out/i.test(msg)) return "environment";
+  if (/chunk.*failed after.*retr|tx dropped from best chain|timed out after \d+s waiting for block|Contract reverted|Contract execution would revert|dotns register failed|All promises were rejected|"type"\s*:\s*"Invalid"|Commitment still too new|not finalised after \d+s|chain may have (dropped|evicted)|ReviveApi.*timed out|\b(?:commit|register|setSubnodeOwner|setResolver|setContenthash|setText|publish|unpublish|Revive\.call|Utility\.batch_all) timed out after \d+ms|transaction watcher silent for/i.test(msg)) return "environment";
   if (/javascript heap out of memory|allocation failed.*heap|External signer mode is not supported with dotns-cli/i.test(msg)) return "internal";
   return "unknown";
 }
@@ -301,13 +305,15 @@ var ERROR_KIND_RULES = [
   [/timed out after \d+s waiting for block|Transaction not included after \d+s|Transaction did not settle within/i, "chain-timeout"],
   [/\bstale\b.*nonce|nonce.*\bstale\b|"type"\s*:\s*"(?:Future|Stale)"|Invalid::Future|tx rejected by pool/i, "nonce-stale"],
   [/heartbeat timeout|WS halt|Unable to connect|ChainHead disjointed|websocket.*closed|socket closed|disconnect/i, "connection"],
-  [/requires ProofOfPersonhoodFull,\s*but this signer is NoStatus/i, "naming.pop_required"],
+  [/requires ProofOfPersonhood(?:Full|Lite|Light),\s*but this signer is NoStatus/i, "naming.pop_required"],
   [/Domain\s+\S+\.dot\s+is already owned by\s+0x[a-fA-F0-9]+/i, "naming.already_owned"],
   [/Cannot deploy\s+[\w.-]+\.dot:\s*parent\s+[\w.-]+\.dot\s+is owned by/i, "naming.subdomain_orphan"],
   [/Post-deploy verification failed for .+: on-chain contenthash is /i, "verify.contenthash_mismatch"],
   [/Deploy verification failed:\s*DAG-PB root.+not finalised/i, "verify.dagpb_not_finalised"],
   [/Retry budget exhausted:.*recovery attempts/i, "network.recovery_exhausted"],
   [/ReviveApi\.\w+ timed out after \d+ms/i, "chain.api_timeout"],
+  [/transaction watcher silent for \d+s/i, "chain.tx_silent"],
+  [/^(?:commit|register|setSubnodeOwner|setResolver|setContenthash|setText|publish|unpublish|Revive\.call|Utility\.batch_all) timed out after \d+ms/i, "chain.tx_timeout"],
   [/^INVARIANT FAILED:/i, "tool.invariant"]
 ];
 function classifyErrorKind(msg) {

package/dist/chunk-probe.js

@@ -5,9 +5,9 @@ import {
   _decodeStorageValue,
   _resetProbeSession,
   probeChunks
-} from "./chunk-YZT3SWSV.js";
-import "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
+} from "./chunk-DCZYQCEG.js";
+import "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
 export {
   ChainProbeCrossValidationError,
   ChainProbeMetadataError,

package/dist/deploy.d.ts

@@ -29,7 +29,6 @@ interface ExistingProvider {
     skipCids?: Set<string>;
     probeFailedCids?: Set<string>;
     gateway?: string;
-    bulletinAuthorizeV2?: boolean;
     /**
      * CIDs the caller vouches are already on-chain. Chunks matching these CIDs
      * are skipped without any re-probe (unlike `skipCids` which re-probes before
@@ -86,7 +85,7 @@ declare function storeFile(contentBytes: Uint8Array, { client: existingClient, u
  */
 declare function assignDenseNonces(stored: (StoredChunk | null)[], startNonce: number): Map<number, number>;
 declare const __assignDenseNoncesForTest: typeof assignDenseNonces;
-declare function storeChunkedContent(chunks: Uint8Array[], { client: existingClient, unsafeApi: existingApi, signer: existingSigner, ss58: existingSS58, reconnect, fetchNonce: fetchNonceOverride, skipCids, probeFailedCids, gateway: providerGateway, bulletinAuthorizeV2, trustedCids, skipRootStore }?: ExistingProvider): Promise<{
+declare function storeChunkedContent(chunks: Uint8Array[], { client: existingClient, unsafeApi: existingApi, signer: existingSigner, ss58: existingSS58, reconnect, fetchNonce: fetchNonceOverride, skipCids, probeFailedCids, gateway: providerGateway, trustedCids, skipRootStore }?: ExistingProvider): Promise<{
     storageCid: string;
     tier2Verified: number;
     tier2Inconclusive: number;

package/dist/deploy.js

@@ -35,20 +35,20 @@ import {
   storeDirectoryV2,
   storeFile,
   unpublish
-} from "./chunk-5LWQOKOU.js";
+} from "./chunk-EIP3OX6G.js";
 import "./chunk-IW3X2MJF.js";
 import "./chunk-KOSF5FDO.js";
 import "./chunk-L2SKSKB6.js";
 import "./chunk-S7EM5VMW.js";
-import "./chunk-QMD4BWPM.js";
-import "./chunk-C5ICDZ65.js";
-import "./chunk-YZT3SWSV.js";
+import "./chunk-B6MBXUCT.js";
+import "./chunk-23U57PZI.js";
+import "./chunk-DCZYQCEG.js";
 import "./chunk-C2TS5MER.js";
-import "./chunk-ZCHDCZVP.js";
-import "./chunk-QMYW3D6E.js";
-import "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
-import "./chunk-OITUIM2E.js";
+import "./chunk-5OEGCTMJ.js";
+import "./chunk-GSATPVTP.js";
+import "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
+import "./chunk-HZKRLQLG.js";
 import {
   EXIT_CODE_NO_RETRY,
   NonRetryableError

package/dist/dotns.d.ts

@@ -112,6 +112,7 @@ declare const OPERATION_TIMEOUT_MS: number;
 declare const TX_TIMEOUT_MS: number;
 declare const TX_CHAIN_TIME_BUDGET_MS: number;
 declare const TX_WALL_CLOCK_CEILING_MS: number;
+declare const TX_NO_PROGRESS_MS: number;
 declare const WS_HEARTBEAT_TIMEOUT_MS: number;
 declare const DOTNS_TX_MAX_ATTEMPTS: number;
 declare function classifyTxRetryDecision(err: unknown): "retry" | "abort";
@@ -231,6 +232,7 @@ declare function stripTrailingDigits(label: string): string;
 declare function sanitizeDomainLabel(label: string): string;
 declare function validateDomainLabel(label: string, opts?: {
     checkReserved?: boolean;
+    skipSanitize?: boolean;
 }): string;
 declare function isCommitmentMature(chainNowSeconds: number, commitTimestampSeconds: number, minimumAgeSeconds: number): boolean;
 declare function isCommitmentTimingBarerevert(msg: string): boolean;
@@ -510,4 +512,4 @@ declare class DotNS {
 }
 declare const dotns: DotNS;
 
-export { ATTR_TX_RESOLUTION_KIND, type AliasAccountClassification, type AliasAccountState, CONNECTION_TIMEOUT_MS, CONTRACTS, ContractDryRunRevertError, DECIMALS, DEFAULT_MNEMONIC, DOTNS_TX_MAX_ATTEMPTS, DOT_NODE, DotNS, type DotNSConnectOptions, type DotnsPreflightResult, type DotnsSuccessAction, MINIMUM_REGISTER_STORAGE_DEPOSIT, NATIVE_TO_ETH_RATIO, OPERATION_TIMEOUT_MS, type OwnershipResult, PUBLISHER_ABI, type ParsedDomainName, type PriceValidationResult, ProofOfPersonhoodStatus, PublisherNotSupportedError, RPC_ENDPOINTS, TX_CHAIN_TIME_BUDGET_MS, TX_KIND_HASH, TX_KIND_NONCE_ADVANCED, TX_TIMEOUT_MS, TX_WALL_CLOCK_CEILING_MS, type TxResolution, WS_HEARTBEAT_TIMEOUT_MS, __formatContractDryRunFailureForTest, canRegister, classifyDotnsLabel, classifyTxRetryDecision, computeDomainTokenId, convertToHexString, convertWeiToNative, countTrailingDigits, decodePublisherRevert, dotns, feeFloorFor, fetchNonce, fmtPas, formatDispatchError, formatPersonhoodRemediation, formatPopShortfallReason, isCommitmentMature, isCommitmentTimingBarerevert, parseDomainName, parseProofOfPersonhoodStatus, popStatusName, sanitizeDomainLabel, stripTrailingDigits, validateDomainLabel, verifyNonceAdvanced };
+export { ATTR_TX_RESOLUTION_KIND, type AliasAccountClassification, type AliasAccountState, CONNECTION_TIMEOUT_MS, CONTRACTS, ContractDryRunRevertError, DECIMALS, DEFAULT_MNEMONIC, DOTNS_TX_MAX_ATTEMPTS, DOT_NODE, DotNS, type DotNSConnectOptions, type DotnsPreflightResult, type DotnsSuccessAction, MINIMUM_REGISTER_STORAGE_DEPOSIT, NATIVE_TO_ETH_RATIO, OPERATION_TIMEOUT_MS, type OwnershipResult, PUBLISHER_ABI, type ParsedDomainName, type PriceValidationResult, ProofOfPersonhoodStatus, PublisherNotSupportedError, RPC_ENDPOINTS, TX_CHAIN_TIME_BUDGET_MS, TX_KIND_HASH, TX_KIND_NONCE_ADVANCED, TX_NO_PROGRESS_MS, TX_TIMEOUT_MS, TX_WALL_CLOCK_CEILING_MS, type TxResolution, WS_HEARTBEAT_TIMEOUT_MS, __formatContractDryRunFailureForTest, canRegister, classifyDotnsLabel, classifyTxRetryDecision, computeDomainTokenId, convertToHexString, convertWeiToNative, countTrailingDigits, decodePublisherRevert, dotns, feeFloorFor, fetchNonce, fmtPas, formatDispatchError, formatPersonhoodRemediation, formatPopShortfallReason, isCommitmentMature, isCommitmentTimingBarerevert, parseDomainName, parseProofOfPersonhoodStatus, popStatusName, sanitizeDomainLabel, stripTrailingDigits, validateDomainLabel, verifyNonceAdvanced };

package/dist/dotns.js

@@ -18,6 +18,7 @@ import {
   TX_CHAIN_TIME_BUDGET_MS,
   TX_KIND_HASH,
   TX_KIND_NONCE_ADVANCED,
+  TX_NO_PROGRESS_MS,
   TX_TIMEOUT_MS,
   TX_WALL_CLOCK_CEILING_MS,
   WS_HEARTBEAT_TIMEOUT_MS,
@@ -46,11 +47,11 @@ import {
   stripTrailingDigits,
   validateDomainLabel,
   verifyNonceAdvanced
-} from "./chunk-ZCHDCZVP.js";
-import "./chunk-QMYW3D6E.js";
-import "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
-import "./chunk-OITUIM2E.js";
+} from "./chunk-5OEGCTMJ.js";
+import "./chunk-GSATPVTP.js";
+import "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
+import "./chunk-HZKRLQLG.js";
 import "./chunk-ZOC4GITL.js";
 export {
   ATTR_TX_RESOLUTION_KIND,
@@ -72,6 +73,7 @@ export {
   TX_CHAIN_TIME_BUDGET_MS,
   TX_KIND_HASH,
   TX_KIND_NONCE_ADVANCED,
+  TX_NO_PROGRESS_MS,
   TX_TIMEOUT_MS,
   TX_WALL_CLOCK_CEILING_MS,
   WS_HEARTBEAT_TIMEOUT_MS,

package/dist/environments.d.ts

@@ -25,7 +25,6 @@ interface Environment {
     ipfs?: string;
     uptimeUrl?: string;
     autoAccountMapping?: boolean;
-    bulletinAuthorizeV2?: boolean;
     nativeToEthRatio?: number;
     registerStorageDeposit?: number;
     contracts?: Record<string, string>;
@@ -62,7 +61,6 @@ interface ResolvedEndpoints {
     envName: string;
     ipfs?: string;
     autoAccountMapping: boolean;
-    bulletinAuthorizeV2: boolean;
     contracts: Record<string, string>;
     nativeToEthRatio: bigint;
     registerStorageDeposit?: bigint;

package/dist/environments.js

@@ -8,7 +8,7 @@ import {
   loadEnvironments,
   resolveEndpoints,
   validateContractAddresses
-} from "./chunk-OITUIM2E.js";
+} from "./chunk-HZKRLQLG.js";
 import "./chunk-ZOC4GITL.js";
 export {
   DEFAULT_ENV_ID,

package/dist/index.js

@@ -7,7 +7,7 @@ import {
 } from "./chunk-MMAZFJDG.js";
 import {
   publishManifest
-} from "./chunk-POA4GHYP.js";
+} from "./chunk-UY6S4E3A.js";
 import {
   DEFAULT_TEXT_RECORD_BUDGET_BYTES,
   PLACEHOLDER_CID,
@@ -24,7 +24,7 @@ import {
   deploy,
   merkleizeJS,
   merkleizeWithStableOrder
-} from "./chunk-5LWQOKOU.js";
+} from "./chunk-EIP3OX6G.js";
 import {
   computeStats,
   renderSummary,
@@ -46,26 +46,26 @@ import {
   isVolatilePath,
   parseManifest
 } from "./chunk-S7EM5VMW.js";
-import "./chunk-QMD4BWPM.js";
-import "./chunk-C5ICDZ65.js";
+import "./chunk-B6MBXUCT.js";
+import "./chunk-23U57PZI.js";
 import {
   probeChunks
-} from "./chunk-YZT3SWSV.js";
+} from "./chunk-DCZYQCEG.js";
 import "./chunk-C2TS5MER.js";
 import {
   DEFAULT_MNEMONIC,
   DotNS,
   parseDomainName,
   sanitizeDomainLabel
-} from "./chunk-ZCHDCZVP.js";
+} from "./chunk-5OEGCTMJ.js";
 import {
   bootstrapPool,
   derivePoolAccounts,
   ensureAuthorized,
   fetchPoolAuthorizations,
   selectAccount
-} from "./chunk-QMYW3D6E.js";
-import "./chunk-QNRCWCBP.js";
+} from "./chunk-GSATPVTP.js";
+import "./chunk-VS36INHV.js";
 import {
   VERSION,
   loadRunState,
@@ -75,7 +75,7 @@ import {
   shouldSkipStaleWarning,
   stateFilePath,
   writeRunState
-} from "./chunk-O6GP6JOD.js";
+} from "./chunk-RDTUUXZM.js";
 import {
   DEFAULT_ENV_ID,
   defaultBundledPath,
@@ -85,7 +85,7 @@ import {
   loadEnvironments,
   resolveEndpoints,
   validateContractAddresses
-} from "./chunk-OITUIM2E.js";
+} from "./chunk-HZKRLQLG.js";
 import "./chunk-ZOC4GITL.js";
 import "./chunk-HOTQDYHD.js";
 export {

package/dist/manifest/publish.js

@@ -1,21 +1,21 @@
 import {
   publishManifest
-} from "../chunk-POA4GHYP.js";
+} from "../chunk-UY6S4E3A.js";
 import "../chunk-RI3ZLNPN.js";
-import "../chunk-5LWQOKOU.js";
+import "../chunk-EIP3OX6G.js";
 import "../chunk-IW3X2MJF.js";
 import "../chunk-KOSF5FDO.js";
 import "../chunk-L2SKSKB6.js";
 import "../chunk-S7EM5VMW.js";
-import "../chunk-QMD4BWPM.js";
-import "../chunk-C5ICDZ65.js";
-import "../chunk-YZT3SWSV.js";
+import "../chunk-B6MBXUCT.js";
+import "../chunk-23U57PZI.js";
+import "../chunk-DCZYQCEG.js";
 import "../chunk-C2TS5MER.js";
-import "../chunk-ZCHDCZVP.js";
-import "../chunk-QMYW3D6E.js";
-import "../chunk-QNRCWCBP.js";
-import "../chunk-O6GP6JOD.js";
-import "../chunk-OITUIM2E.js";
+import "../chunk-5OEGCTMJ.js";
+import "../chunk-GSATPVTP.js";
+import "../chunk-VS36INHV.js";
+import "../chunk-RDTUUXZM.js";
+import "../chunk-HZKRLQLG.js";
 import "../chunk-ZOC4GITL.js";
 import "../chunk-HOTQDYHD.js";
 export {

package/dist/memory-report.js

@@ -5,8 +5,8 @@ import {
   maybeWriteMemoryReport,
   safeHeap,
   sampleFromBytes
-} from "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
+} from "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
 export {
   DEFAULT_THRESHOLD_MB,
   buildMemoryReport,

package/dist/merkle.js

@@ -6,20 +6,20 @@ import {
   merkleizeKuboBackend,
   merkleizeWithStableOrder,
   rebuildOrderedCarFromBytes
-} from "./chunk-5LWQOKOU.js";
+} from "./chunk-EIP3OX6G.js";
 import "./chunk-IW3X2MJF.js";
 import "./chunk-KOSF5FDO.js";
 import "./chunk-L2SKSKB6.js";
 import "./chunk-S7EM5VMW.js";
-import "./chunk-QMD4BWPM.js";
-import "./chunk-C5ICDZ65.js";
-import "./chunk-YZT3SWSV.js";
+import "./chunk-B6MBXUCT.js";
+import "./chunk-23U57PZI.js";
+import "./chunk-DCZYQCEG.js";
 import "./chunk-C2TS5MER.js";
-import "./chunk-ZCHDCZVP.js";
-import "./chunk-QMYW3D6E.js";
-import "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
-import "./chunk-OITUIM2E.js";
+import "./chunk-5OEGCTMJ.js";
+import "./chunk-GSATPVTP.js";
+import "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
+import "./chunk-HZKRLQLG.js";
 import "./chunk-ZOC4GITL.js";
 import "./chunk-HOTQDYHD.js";
 export {

package/dist/personhood/bootstrap.js

@@ -21,13 +21,13 @@ import {
 import "../chunk-UPWEOGLQ.js";
 import {
   WS_HEARTBEAT_TIMEOUT_MS
-} from "../chunk-ZCHDCZVP.js";
-import "../chunk-QMYW3D6E.js";
-import "../chunk-QNRCWCBP.js";
-import "../chunk-O6GP6JOD.js";
+} from "../chunk-5OEGCTMJ.js";
+import "../chunk-GSATPVTP.js";
+import "../chunk-VS36INHV.js";
+import "../chunk-RDTUUXZM.js";
 import {
   loadEnvironments
-} from "../chunk-OITUIM2E.js";
+} from "../chunk-HZKRLQLG.js";
 import "../chunk-ZOC4GITL.js";
 
 // src/personhood/bootstrap.ts

package/dist/personhood/people-client.js

@@ -1,12 +1,12 @@
 import {
   WS_HEARTBEAT_TIMEOUT_MS
-} from "../chunk-ZCHDCZVP.js";
-import "../chunk-QMYW3D6E.js";
-import "../chunk-QNRCWCBP.js";
-import "../chunk-O6GP6JOD.js";
+} from "../chunk-5OEGCTMJ.js";
+import "../chunk-GSATPVTP.js";
+import "../chunk-VS36INHV.js";
+import "../chunk-RDTUUXZM.js";
 import {
   loadEnvironments
-} from "../chunk-OITUIM2E.js";
+} from "../chunk-HZKRLQLG.js";
 import "../chunk-ZOC4GITL.js";
 
 // src/personhood/people-client.ts

package/dist/pool.d.ts

@@ -14,16 +14,12 @@ interface PoolAuthorization extends PoolAccount {
     expiration: number;
 }
 declare function derivePoolAccounts(poolSize?: number, mnemonic?: string): PoolAccount[];
-interface AuthorizationCheck {
-    needs?: AuthorizationNeeds;
-    bulletinAuthorizeV2?: boolean;
-}
-declare function isAuthorizationSufficient(auth: any, currentBlock: number, check?: AuthorizationCheck): boolean;
+declare function isAuthorizationSufficient(auth: any, currentBlock: number, needs?: AuthorizationNeeds): boolean;
 interface SelectionResult {
     account: PoolAuthorization;
     eligibleCount: number;
 }
-declare function selectAccount(authorizations: PoolAuthorization[], random?: () => number, currentBlock?: number): SelectionResult | null;
+declare function selectAccount(authorizations: PoolAuthorization[], random?: () => number): SelectionResult;
 declare function fetchPoolAuthorizations(api: any, accounts: PoolAccount[]): Promise<PoolAuthorization[]>;
 interface AuthorizationNeeds {
     txs: bigint;
@@ -41,11 +37,8 @@ declare function classifyAliceTxError(err: unknown): TxRetryDecision;
 declare function isTestnetSpecName(specName: string | undefined | null): boolean;
 declare function detectTestnet(api: any): Promise<boolean>;
 declare function _resetTestnetCacheForTests(): void;
-declare function ensureAuthorized(api: any, address: string, label?: string, bulletinAuthorizeV2?: boolean, needs?: AuthorizationNeeds): Promise<void>;
-declare function topUpBy(api: any, address: string, needs: AuthorizationNeeds, label?: string, bulletinAuthorizeV2?: boolean): Promise<void>;
-interface BootstrapOptions {
-    bulletinAuthorizeV2?: boolean;
-}
-declare function bootstrapPool(bulletinRpc: string, poolSize?: number, mnemonic?: string, opts?: BootstrapOptions): Promise<void>;
+declare function ensureAuthorized(api: any, address: string, label?: string, needs?: AuthorizationNeeds): Promise<void>;
+declare function topUpBy(api: any, address: string, needs: AuthorizationNeeds, label?: string): Promise<void>;
+declare function bootstrapPool(bulletinRpc: string, poolSize?: number, mnemonic?: string): Promise<void>;
 
-export { type AuthorizationCheck, type AuthorizationNeeds, type BootstrapOptions, type PoolAccount, type PoolAuthorization, type SelectionResult, type TxRetryDecision, _resetTestnetCacheForTests, bootstrapPool, classifyAliceTxError, computeTopUpTarget, derivePoolAccounts, detectTestnet, ensureAuthorized, fetchPoolAuthorizations, formatPasBalance, isAuthorizationSufficient, isTestnetSpecName, selectAccount, topUpBy };
+export { type AuthorizationNeeds, type PoolAccount, type PoolAuthorization, type SelectionResult, type TxRetryDecision, _resetTestnetCacheForTests, bootstrapPool, classifyAliceTxError, computeTopUpTarget, derivePoolAccounts, detectTestnet, ensureAuthorized, fetchPoolAuthorizations, formatPasBalance, isAuthorizationSufficient, isTestnetSpecName, selectAccount, topUpBy };

package/dist/pool.js

@@ -12,7 +12,9 @@ import {
   isTestnetSpecName,
   selectAccount,
   topUpBy
-} from "./chunk-QMYW3D6E.js";
+} from "./chunk-GSATPVTP.js";
+import "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
 export {
   _resetTestnetCacheForTests,
   bootstrapPool,

package/dist/run-state.js

@@ -7,7 +7,7 @@ import {
   shouldSkipStaleWarning,
   stateFilePath,
   writeRunState
-} from "./chunk-O6GP6JOD.js";
+} from "./chunk-RDTUUXZM.js";
 export {
   VERSION,
   loadRunState,

package/dist/telemetry.d.ts

@@ -29,7 +29,7 @@ type DeployErrorCategory = 'user' | 'environment' | 'internal' | 'unknown';
 declare function classifyDeployError(msg: string): DeployErrorCategory;
 declare function classifySadReason(message: string): string;
 declare function computeDeployOutcome(errorCategory: DeployErrorCategory | null, isSad: boolean, sadReason: string): string;
-type DeployErrorKind = 'contract-revert' | 'chain-timeout' | 'nonce-stale' | 'connection' | 'naming.pop_required' | 'naming.already_owned' | 'naming.subdomain_orphan' | 'verify.contenthash_mismatch' | 'verify.dagpb_not_finalised' | 'network.recovery_exhausted' | 'chain.api_timeout' | 'tool.invariant' | 'unknown';
+type DeployErrorKind = 'contract-revert' | 'chain-timeout' | 'nonce-stale' | 'connection' | 'naming.pop_required' | 'naming.already_owned' | 'naming.subdomain_orphan' | 'verify.contenthash_mismatch' | 'verify.dagpb_not_finalised' | 'network.recovery_exhausted' | 'chain.api_timeout' | 'chain.tx_timeout' | 'chain.tx_silent' | 'tool.invariant' | 'unknown';
 declare function classifyErrorKind(msg: string): DeployErrorKind;
 declare function sanitizeErrorMessage(msg: string): string;
 /**

package/dist/telemetry.js

@@ -32,8 +32,8 @@ import {
   truncateAddress,
   withDeploySpan,
   withSpan
-} from "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
+} from "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
 export {
   VERSION,
   __setDeployRootSpanForTest,

package/dist/version-check.js

@@ -11,9 +11,9 @@ import {
   isPreReleaseVersion,
   preReleaseWarning,
   promptYesNo
-} from "./chunk-C5ICDZ65.js";
-import "./chunk-QNRCWCBP.js";
-import "./chunk-O6GP6JOD.js";
+} from "./chunk-23U57PZI.js";
+import "./chunk-VS36INHV.js";
+import "./chunk-RDTUUXZM.js";
 export {
   assessVersion,
   checkNodeVersion,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "bulletin-deploy",
-  "version": "0.7.28-rc.2",
+  "version": "0.7.28",
   "private": false,
   "repository": {
     "type": "git",