npm - create-shield-unshield-dapp - Versions diffs - 1.0.1 → 1.0.2 - Mend

create-shield-unshield-dapp 1.0.1 → 1.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -1,6 +1,88 @@
 # create-shield-unshield-dapp
-Scaffold a **Shield/Unshield dApp** for wrapping and unwrapping USDC ↔ cUSDC and USDT ↔ cUSDT, and for confidential transfers. Uses ERC-7984 confidential tokens and the Zama relayer.
+Scaffold a **Shield/Unshield dApp** for the **Zama ecosystem**: let users wrap USDC/USDT into confidential tokens (cUSDC/cUSDT), send them privately, and unwrap back. Built on **ERC-7984** (confidential token standard). Ideal for projects that want to support shield/unshield and confidential transfers, and for developers new to Zama who want a working reference with clear documentation.
+## What you get
+- A ready-to-run React + Vite app with wallet connection (e.g. Rainbow, MetaMask).
+- **Wrap (shield):** USDC → cUSDC, USDT → cUSDT.
+- **Unwrap (unshield):** Two-step flow (unwrap → finalizeUnwrap) with Zama relayer for decryption.
+- **Confidential transfer:** Send cUSDC/cUSDT with amounts hidden on-chain.
+- A **detailed README** in the scaffolded project (env vars, build, where to get Sepolia addresses).
+---
+## Token standard: ERC-7984
+The scaffolded app uses **ERC-7984** (Confidential Token Standard). In short:
+- **Underlying token:** A normal ERC-20 (e.g. USDC, USDT).
+- **Confidential wrapper:** A contract that holds the underlying and mints/burns **confidential** balances. On-chain amounts are encrypted (FHE); only the owner and authorized systems can decrypt with a proof.
+- **cUSDC / cUSDT:** The confidential versions of USDC and USDT. Balances are stored as encrypted handles; you see your balance by decrypting (e.g. via Zama’s relayer/gateway).
+Key contract functions used in the app:
+| Function | Purpose |
+|----------|---------|
+| `wrap(to, amount)` | Lock underlying (e.g. USDC) in the contract and mint confidential balance for `to`. |
+| `unwrap(from, to, encryptedAmount, inputProof)` | Burn confidential balance and request unwrap; the amount is still encrypted until proven. Emits `UnwrapRequested`. |
+| `finalizeUnwrap(burntAmount, burntAmountCleartext, decryptionProof)` | Prove the burnt amount to the contract; contract releases that much underlying to the receiver. |
+| `confidentialTransfer(to, encryptedAmount, inputProof)` | Transfer confidential balance to `to`; amount stays encrypted on-chain. |
+| `confidentialBalanceOf(account)` | Returns an encrypted balance handle (decrypt off-chain to show amount). |
+---
+## How wrapping works (shield)
+**Goal:** Turn public USDC/USDT into confidential cUSDC/cUSDT.
+1. **Approve:** User approves the confidential token contract to spend their underlying (USDC or USDT).
+2. **Wrap:** User calls `wrap(to, amount)` on the cUSDC/cUSDT contract. The contract:
+   - Pulls `amount` of underlying from the user (transferFrom).
+   - Mints confidential balance for `to` (the user). On-chain, the amount is stored in encrypted form.
+3. **Balance:** The user’s cUSDC/cUSDT balance increases (shown after decrypting the handle). Their USDC/USDT balance decreases.
+No relayer needed for wrapping; it’s a single on-chain transaction.
+---
+## How unwrapping works (unshield) — two steps
+**Goal:** Turn confidential cUSDC/cUSDT back into public USDC/USDT.
+Unwrap is **two-step** because the contract only holds encrypted amounts. To release the right amount of underlying, the contract must be given a **decryption proof** that matches the burnt confidential amount. The Zama relayer (gateway) produces that proof after the first step.
+### Step 1: `unwrap(from, to, encryptedAmount, inputProof)`
+1. User chooses amount and the app **encrypts** it (FHE) for the contract, producing an encrypted handle and `inputProof`.
+2. User sends a tx calling `unwrap(from, to, encryptedAmount, inputProof)`. The contract:
+   - Burns the confidential balance corresponding to that encrypted amount.
+   - Emits `UnwrapRequested(receiver, amount)` where `amount` is the encrypted (handle) value.
+   - Does **not** send underlying yet — it waits for a decryption proof.
+3. The app (or backend) sends the emitted handle to the **Zama relayer**. The relayer decrypts it and returns a **decryption proof**.
+### Step 2: `finalizeUnwrap(burntAmount, burntAmountCleartext, decryptionProof)`
+1. The app calls `finalizeUnwrap(burntAmount, burntAmountCleartext, decryptionProof)` with:
+   - `burntAmount`: the handle from `UnwrapRequested`.
+   - `burntAmountCleartext`: the decrypted amount (so the contract can release the right amount).
+   - `decryptionProof`: proof from the relayer that the decryption is correct.
+2. The contract verifies the proof and sends `burntAmountCleartext` of underlying (USDC/USDT) to the receiver.
+3. User’s public USDC/USDT balance increases.
+In the scaffolded app, both steps run in one flow after the user clicks Unwrap/Unshield: we wait for the unwrap tx, get the proof from the relayer, then call `finalizeUnwrap` and wait for that receipt so the UI can refetch balances and show the updated USDC/USDT.
+---
+## How confidential transfer works
+**Goal:** Send cUSDC/cUSDT to another address without revealing the amount on-chain.
+1. Sender enters amount and recipient address.
+2. The app encrypts the amount (FHE) for the contract, producing an encrypted handle and `inputProof`.
+3. User sends a tx: `confidentialTransfer(to, encryptedAmount, inputProof)`. The contract deducts the encrypted amount from the sender and adds it to the recipient’s confidential balance. The amount stays encrypted; no relayer needed.
+---
 ## Install and run
@@ -8,23 +90,30 @@ Scaffold a **Shield/Unshield dApp** for wrapping and unwrapping USDC ↔ cUSDC a
 npx create-shield-unshield-dapp my-app
 cd my-app
 cp .env.example .env
-# Edit .env (see below)
+# Edit .env (see below and scaffolded README)
+npm install
 npm run dev
 ```
-Open the URL shown (e.g. http://localhost:5173) and connect your wallet.
+Open the URL (e.g. http://localhost:5173) and connect your wallet to the correct network (Mainnet or Sepolia).
-## Switching environment (mainnet vs testnet)
+---
-- **Mainnet:** In `.env` set `VITE_MAINNET=true`. Contract addresses are built-in. Optionally set `VITE_MAINNET_RPC_URL`. Connect your wallet to Ethereum Mainnet.
-- **Testnet (Sepolia):** Leave `VITE_MAINNET=false` or omit it. Set the four Sepolia contract addresses in `.env`: `VITE_USDC_ADDRESS`, `VITE_CONF_USDC_ADDRESS`, `VITE_USDT_ADDRESS`, `VITE_CONF_USDT_ADDRESS`. Connect your wallet to Sepolia.
+## Mainnet vs testnet
-Full details, all environment variables, and where to get Sepolia addresses are in the **scaffolded project’s README** (`README.md` in the created folder).
+- **Mainnet:** In `.env` set `VITE_MAINNET=true`. Contract addresses are built-in. Optionally set `VITE_MAINNET_RPC_URL`.
+- **Testnet (Sepolia):** Leave `VITE_MAINNET=false` or omit it. Set the four Sepolia contract addresses in `.env`: `VITE_USDC_ADDRESS`, `VITE_CONF_USDC_ADDRESS`, `VITE_USDT_ADDRESS`, `VITE_CONF_USDT_ADDRESS`.
+The **scaffolded project’s README** (`README.md` in the created folder) has full env docs, where to get Sepolia addresses, build, and preview.
+---
 ## Options
 - `npx create-shield-unshield-dapp my-app --force` — Overwrite existing files in `my-app` if it already exists.
-- `npx create-shield-unshield-dapp my-app --no-install` — Skip running `npm install` after copying (run it yourself).
+- `npx create-shield-unshield-dapp my-app --no-install` — Skip `npm install` after copying (run it yourself).
+---
 ## License

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "create-shield-unshield-dapp",
-  "version": "1.0.1",
+  "version": "1.0.2",
   "description": "Scaffold a Shield/Unshield dApp for USDC/cUSDC and USDT/cUSDT (wrap, unwrap, confidential transfer)",
   "type": "commonjs",
   "bin": {

package/template/README.md CHANGED Viewed

@@ -1,17 +1,95 @@
 # Shield / Unshield dApp
-A frontend for wrapping and unwrapping **USDC ↔ cUSDC** and **USDT ↔ cUSDT**, and for **transferring** confidential tokens. Supports **Ethereum Mainnet** and **Sepolia** testnet. Uses ERC-7984 confidential token contracts and the Zama relayer for unwrap decryption.
+A reference dApp for the **Zama ecosystem**: wrap and unwrap **USDC ↔ cUSDC** and **USDT ↔ cUSDT**, and **transfer** confidential tokens. Supports **Ethereum Mainnet** and **Sepolia** testnet. Built on **ERC-7984** (confidential token standard). Use it as a foundation or guide when implementing confidential tokens in your own project.
-## Features
+---
-- **Wrap (shield):** USDC → cUSDC, USDT → cUSDT.
-- **Unwrap (unshield):** cUSDC → USDC, cUSDT → USDT (two-step flow via Zama gateway).
-- **Transfer:** Send cUSDC or cUSDT to any address; amount is encrypted on-chain.
+## Token standard: ERC-7984
+This app uses **ERC-7984** (Confidential Token Standard). In short:
+- **Underlying token:** A normal ERC-20 (e.g. USDC, USDT).
+- **Confidential wrapper:** A contract that holds the underlying and mints/burns **confidential** balances. On-chain amounts are encrypted (FHE); only the owner and authorized systems can decrypt with a proof.
+- **cUSDC / cUSDT:** The confidential versions of USDC and USDT. Balances are stored as encrypted handles; you see your balance by decrypting (e.g. via Zama’s relayer/gateway).
+Key contract functions we use:
+| Function | Purpose |
+|----------|---------|
+| `wrap(to, amount)` | Lock underlying (e.g. USDC) in the contract and mint confidential balance for `to`. |
+| `unwrap(from, to, encryptedAmount, inputProof)` | Burn confidential balance and request unwrap; the amount is still encrypted until proven. Emits `UnwrapRequested`. |
+| `finalizeUnwrap(burntAmount, burntAmountCleartext, decryptionProof)` | Prove the burnt amount to the contract; contract releases that much underlying to the receiver. |
+| `confidentialTransfer(to, encryptedAmount, inputProof)` | Transfer confidential balance to `to`; amount stays encrypted on-chain. |
+| `confidentialBalanceOf(account)` | Returns an encrypted balance handle (decrypt off-chain to show amount). |
+---
+## How wrapping works (shield)
+**Goal:** Turn public USDC/USDT into confidential cUSDC/cUSDT.
+1. **Approve:** User approves the confidential token contract to spend their underlying (USDC or USDT).
+2. **Wrap:** User calls `wrap(to, amount)` on the cUSDC/cUSDT contract. The contract:
+   - Pulls `amount` of underlying from the user (transferFrom).
+   - Mints confidential balance for `to` (the user). On-chain, the amount is stored in encrypted form.
+3. **Balance:** The user’s cUSDC/cUSDC balance increases (shown after decrypting the handle). Their USDC/USDT balance decreases.
+No relayer needed for wrapping; it’s a single on-chain transaction.
+---
+## How unwrapping works (unshield) — two steps
+**Goal:** Turn confidential cUSDC/cUSDT back into public USDC/USDT.
+Unwrap is **two-step** because the contract only holds encrypted amounts. To release the right amount of underlying, the contract must be given a **decryption proof** that matches the burnt confidential amount. The Zama relayer (gateway) produces that proof after the first step.
+### Step 1: `unwrap(from, to, encryptedAmount, inputProof)`
+1. User chooses amount and the app **encrypts** it (FHE) for the contract, producing an encrypted handle and `inputProof`.
+2. User sends a tx calling `unwrap(from, to, encryptedAmount, inputProof)`. The contract:
+   - Burns the confidential balance corresponding to that encrypted amount.
+   - Emits `UnwrapRequested(receiver, amount)` where `amount` is the encrypted (handle) value.
+   - Does **not** send underlying yet — it waits for a decryption proof.
+3. The app (or backend) sends the emitted handle to the **Zama relayer**. The relayer decrypts it and returns a **decryption proof**.
+### Step 2: `finalizeUnwrap(burntAmount, burntAmountCleartext, decryptionProof)`
+1. The app calls `finalizeUnwrap(burntAmount, burntAmountCleartext, decryptionProof)` with:
+   - `burntAmount`: the handle from `UnwrapRequested`.
+   - `burntAmountCleartext`: the decrypted amount (so the contract can release the right amount).
+   - `decryptionProof`: proof from the relayer that the decryption is correct.
+2. The contract verifies the proof and sends `burntAmountCleartext` of underlying (USDC/USDT) to the receiver.
+3. User’s public USDC/USDT balance increases.
+In this app, both steps run in one flow after the user clicks Unwrap/Unshield: we wait for the unwrap tx, get the proof from the relayer, then call `finalizeUnwrap` and wait for that receipt so the UI can refetch balances and show the updated USDC/USDT.
+---
+## How confidential transfer works
+**Goal:** Send cUSDC/cUSDT to another address without revealing the amount on-chain.
+1. Sender enters amount and recipient address.
+2. The app encrypts the amount (FHE) for the contract, producing an encrypted handle and `inputProof`.
+3. User sends a tx: `confidentialTransfer(to, encryptedAmount, inputProof)`. The contract deducts the encrypted amount from the sender and adds it to the recipient’s confidential balance. The amount stays encrypted; no relayer needed.
+---
+## Features (summary)
+- **Wrap (shield):** USDC → cUSDC, USDT → cUSDT (approve + one tx).
+- **Unwrap (unshield):** cUSDC → USDC, cUSDT → USDT (two-step: unwrap tx → relayer proof → finalizeUnwrap tx).
+- **Transfer:** Send cUSDC or cUSDT confidentially (one tx).
+---
 ## Prerequisites
 - Node.js 18+
-- A wallet (e.g. MetaMask) on the network you use (Mainnet or Sepolia).
+- A wallet (e.g. MetaMask, Rainbow) on the network you use (Mainnet or Sepolia).
+---
 ## Quick start
@@ -21,7 +99,7 @@ A frontend for wrapping and unwrapping **USDC ↔ cUSDC** and **USDT ↔ cUSDT**
    npm install
    ```
-2. Copy the example env file and edit it:
+2. Copy the example env and edit it:
    ```bash
    cp .env.example .env
@@ -39,17 +117,19 @@ A frontend for wrapping and unwrapping **USDC ↔ cUSDC** and **USDT ↔ cUSDT**
 5. Open the URL (e.g. http://localhost:5173), connect your wallet to the correct network (Sepolia or Mainnet), and use the app.
-## Switching environment (mainnet vs testnet)
+---
+## Mainnet vs testnet
-The app uses a single env flag to choose the network.
+| Mode    | Set in `.env`                    | Contract addresses |
+|---------|----------------------------------|--------------------|
+| Testnet | `VITE_MAINNET=false` or omit     | **Required:** `VITE_USDC_ADDRESS`, `VITE_CONF_USDC_ADDRESS`, `VITE_USDT_ADDRESS`, `VITE_CONF_USDT_ADDRESS` (Sepolia). |
+| Mainnet | `VITE_MAINNET=true`              | **Built-in.** Optional: `VITE_MAINNET_RPC_URL`. |
-| Mode     | Set in `.env`                     | Contract addresses |
-|----------|-----------------------------------|--------------------|
-| Testnet  | `VITE_MAINNET=false` or omit      | **Required:** `VITE_USDC_ADDRESS`, `VITE_CONF_USDC_ADDRESS`, `VITE_USDT_ADDRESS`, `VITE_CONF_USDT_ADDRESS` (Sepolia). |
-| Mainnet  | `VITE_MAINNET=true`               | **Built-in.** No address env vars needed. Optional: `VITE_MAINNET_RPC_URL`. |
+- After changing `.env`, restart the dev server (`npm run dev`) or rebuild (`npm run build`).
+- Mainnet: Wrap and transfer work with built-in addresses. Unwrap/decrypt on mainnet may require a relayer API key (contact the Zama team for access).
-- **After changing** `.env`, restart the dev server (`npm run dev`) or rebuild for production (`npm run build`).
-- **Mainnet:** Wrap and transfer work with built-in addresses. Unwrap/decrypt on mainnet may require a relayer API key (contact the Zama team for access).
+---
 ## Environment variables
@@ -64,9 +144,13 @@ The app uses a single env flag to choose the network.
 | `VITE_MAINNET_RPC_URL` | No | Mainnet RPC URL when `VITE_MAINNET=true` (default: public RPC). |
 | `VITE_WALLETCONNECT_PROJECT_ID` | No | WalletConnect project ID (optional). |
+---
 ## Where to get Sepolia addresses
-Obtain the USDC, cUSDC, USDT, and cUSDT contract addresses from your deployment or from the Zama/contract documentation. The app does not ship valid default addresses for Sepolia.
+Obtain the USDC, cUSDC, USDT, and cUSDT contract addresses from your deployment or from Zama/contract documentation. The app does not ship valid default addresses for Sepolia.
+---
 ## Build and preview
@@ -74,18 +158,22 @@ Obtain the USDC, cUSDC, USDT, and cUSDT contract addresses from your deployment
 npm run build
 ```
-Output is in `dist/`. To serve it locally:
+Output is in `dist/`. To serve locally:
 ```bash
 npm run preview
 ```
+---
 ## Architecture
 - **Frontend only:** No backend or indexer; reads from the chain and uses the Zama relayer for unwrap decryption proof.
 - **Contracts:** ERC-7984 confidential token wrappers with `wrap`, `unwrap`, `finalizeUnwrap`, and `confidentialTransfer`.
 - **Two token pairs:** USDC/cUSDC and USDT/cUSDT; on testnet you supply all four addresses via env; on mainnet they are built-in.
+---
 ## License
 MIT.