npm - mppx - Versions diffs - 0.4.9 → 0.4.10 - Mend

mppx 0.4.9 → 0.4.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (158) hide show

package/CHANGELOG.md +17 -0
package/dist/cli/cli.d.ts.map +1 -1
package/dist/cli/cli.js +155 -0
package/dist/cli/cli.js.map +1 -1
package/dist/discovery/Discovery.d.ts +146 -0
package/dist/discovery/Discovery.d.ts.map +1 -0
package/dist/discovery/Discovery.js +60 -0
package/dist/discovery/Discovery.js.map +1 -0
package/dist/discovery/OpenApi.d.ts +61 -0
package/dist/discovery/OpenApi.d.ts.map +1 -0
package/dist/discovery/OpenApi.js +139 -0
package/dist/discovery/OpenApi.js.map +1 -0
package/dist/discovery/Validate.d.ts +10 -0
package/dist/discovery/Validate.d.ts.map +1 -0
package/dist/discovery/Validate.js +63 -0
package/dist/discovery/Validate.js.map +1 -0
package/dist/discovery/index.d.ts +4 -0
package/dist/discovery/index.d.ts.map +1 -0
package/dist/discovery/index.js +4 -0
package/dist/discovery/index.js.map +1 -0
package/dist/middlewares/elysia.d.ts +52 -1
package/dist/middlewares/elysia.d.ts.map +1 -1
package/dist/middlewares/elysia.js +17 -0
package/dist/middlewares/elysia.js.map +1 -1
package/dist/middlewares/express.d.ts +13 -1
package/dist/middlewares/express.d.ts.map +1 -1
package/dist/middlewares/express.js +18 -0
package/dist/middlewares/express.js.map +1 -1
package/dist/middlewares/hono.d.ts +19 -1
package/dist/middlewares/hono.d.ts.map +1 -1
package/dist/middlewares/hono.js +51 -0
package/dist/middlewares/hono.js.map +1 -1
package/dist/middlewares/internal/mppx.d.ts +4 -2
package/dist/middlewares/internal/mppx.d.ts.map +1 -1
package/dist/middlewares/internal/mppx.js +10 -3
package/dist/middlewares/internal/mppx.js.map +1 -1
package/dist/middlewares/nextjs.d.ts +11 -0
package/dist/middlewares/nextjs.d.ts.map +1 -1
package/dist/middlewares/nextjs.js +15 -0
package/dist/middlewares/nextjs.js.map +1 -1
package/dist/proxy/Proxy.d.ts +6 -0
package/dist/proxy/Proxy.d.ts.map +1 -1
package/dist/proxy/Proxy.js +56 -80
package/dist/proxy/Proxy.js.map +1 -1
package/dist/proxy/Service.d.ts +16 -23
package/dist/proxy/Service.d.ts.map +1 -1
package/dist/proxy/Service.js +19 -83
package/dist/proxy/Service.js.map +1 -1
package/dist/proxy/internal/Route.js +1 -1
package/dist/proxy/internal/Route.js.map +1 -1
package/dist/proxy/services/anthropic.d.ts.map +1 -1
package/dist/proxy/services/anthropic.js +5 -0
package/dist/proxy/services/anthropic.js.map +1 -1
package/dist/proxy/services/openai.d.ts.map +1 -1
package/dist/proxy/services/openai.js +6 -3
package/dist/proxy/services/openai.js.map +1 -1
package/dist/proxy/services/stripe.d.ts.map +1 -1
package/dist/proxy/services/stripe.js +6 -3
package/dist/proxy/services/stripe.js.map +1 -1
package/dist/tempo/server/Session.d.ts.map +1 -1
package/dist/tempo/server/Session.js +18 -5
package/dist/tempo/server/Session.js.map +1 -1
package/dist/tempo/server/internal/transport.d.ts.map +1 -1
package/dist/tempo/server/internal/transport.js +8 -0
package/dist/tempo/server/internal/transport.js.map +1 -1
package/dist/tempo/session/Chain.js +1 -1
package/dist/tempo/session/Chain.js.map +1 -1
package/package.json +6 -1
package/src/BodyDigest.test.ts +1 -1
package/src/Challenge.fuzz.test.ts +121 -0
package/src/Challenge.test-d.ts +1 -1
package/src/Challenge.test.ts +1 -1
package/src/Credential.fuzz.test.ts +62 -0
package/src/Credential.test.ts +1 -1
package/src/Errors.test.ts +1 -1
package/src/Expires.test.ts +1 -1
package/src/Method.test.ts +1 -1
package/src/PaymentRequest.test.ts +1 -1
package/src/Receipt.test.ts +1 -1
package/src/Store.test-d.ts +1 -1
package/src/Store.test.ts +1 -1
package/src/cli/cli.test.ts +212 -1
package/src/cli/cli.ts +162 -0
package/src/client/Mppx.test-d.ts +1 -1
package/src/client/Mppx.test.ts +1 -1
package/src/client/Transport.test.ts +1 -1
package/src/client/internal/Fetch.browser.test.ts +1 -1
package/src/client/internal/Fetch.test-d.ts +1 -1
package/src/client/internal/Fetch.test.ts +2 -1
package/src/discovery/Discovery.test.ts +152 -0
package/src/discovery/Discovery.ts +72 -0
package/src/discovery/OpenApi.test.ts +425 -0
package/src/discovery/OpenApi.ts +224 -0
package/src/discovery/Validate.test.ts +188 -0
package/src/discovery/Validate.ts +76 -0
package/src/discovery/index.ts +3 -0
package/src/internal/constantTimeEqual.test.ts +1 -1
package/src/mcp-sdk/client/McpClient.test-d.ts +1 -1
package/src/mcp-sdk/client/McpClient.test.ts +1 -1
package/src/mcp-sdk/server/Transport.test.ts +1 -1
package/src/middlewares/elysia.test.ts +27 -2
package/src/middlewares/elysia.ts +35 -1
package/src/middlewares/express.test.ts +35 -7
package/src/middlewares/express.ts +34 -0
package/src/middlewares/hono.test.ts +28 -6
package/src/middlewares/hono.ts +73 -1
package/src/middlewares/internal/mppx.test.ts +1 -1
package/src/middlewares/internal/mppx.ts +14 -6
package/src/middlewares/nextjs.test.ts +31 -6
package/src/middlewares/nextjs.ts +28 -0
package/src/proxy/Proxy.test.ts +54 -270
package/src/proxy/Proxy.ts +71 -93
package/src/proxy/Service.test.ts +23 -1
package/src/proxy/Service.ts +40 -86
package/src/proxy/internal/Headers.test.ts +1 -1
package/src/proxy/internal/Route.test.ts +9 -1
package/src/proxy/internal/Route.ts +1 -1
package/src/proxy/services/anthropic.test.ts +132 -0
package/src/proxy/services/anthropic.ts +5 -0
package/src/proxy/services/openai.test.ts +1 -1
package/src/proxy/services/openai.ts +6 -4
package/src/proxy/services/stripe.test.ts +132 -0
package/src/proxy/services/stripe.ts +6 -4
package/src/server/Mppx.test-d.ts +1 -1
package/src/server/Mppx.test.ts +2 -1
package/src/server/NodeListener.test.ts +1 -1
package/src/server/Request.test.ts +1 -1
package/src/server/Response.test.ts +1 -1
package/src/server/Transport.test.ts +1 -1
package/src/stripe/Charge.integration.test.ts +1 -1
package/src/stripe/Methods.test.ts +1 -1
package/src/stripe/client/Charge.test.ts +1 -1
package/src/stripe/server/Charge.test.ts +1 -1
package/src/tempo/Attribution.test.ts +1 -1
package/src/tempo/Methods.test.ts +1 -1
package/src/tempo/client/ChannelOps.test.ts +6 -3
package/src/tempo/client/Session.test.ts +5 -2
package/src/tempo/client/SessionManager.test.ts +1 -1
package/src/tempo/internal/auto-swap.test.ts +1 -1
package/src/tempo/internal/defaults.test.ts +1 -1
package/src/tempo/internal/fee-payer.test.ts +1 -1
package/src/tempo/server/Charge.test.ts +1 -1
package/src/tempo/server/Session.test.ts +87 -37
package/src/tempo/server/Session.ts +25 -8
package/src/tempo/server/Sse.test.ts +1 -1
package/src/tempo/server/internal/transport.test.ts +24 -1
package/src/tempo/server/internal/transport.ts +11 -0
package/src/tempo/session/Chain.test.ts +5 -2
package/src/tempo/session/Chain.ts +1 -1
package/src/tempo/session/Channel.test.ts +1 -1
package/src/tempo/session/ChannelStore.test.ts +1 -1
package/src/tempo/session/Receipt.test.ts +1 -1
package/src/tempo/session/Sse.fuzz.test.ts +138 -0
package/src/tempo/session/Sse.test.ts +1 -1
package/src/tempo/session/Voucher.test.ts +1 -1
package/src/viem/Account.test.ts +1 -1
package/src/viem/Client.test.ts +1 -1
package/src/zod.test.ts +147 -0

package/src/tempo/server/Session.ts CHANGED Viewed

@@ -101,6 +101,11 @@ export function session<const parameters extends session.Parameters>(p?: paramet
   const { account, recipient, feePayer, feePayerUrl } = Account.resolve(parameters)
+  if (!account)
+    throw new Error(
+      'tempo.session() requires an `account` (viem Account, e.g. privateKeyToAccount("0x...")). An address string is not sufficient — the server needs a signing account for on-chain channel close and settlement.',
+    )
   const getClient = Client.getResolver({
     chain: tempo_chain,
     feePayerUrl,
@@ -462,19 +467,12 @@ async function verifyAndAcceptVoucher(parameters: {
     throw new AmountExceedsDepositError({ reason: 'voucher amount exceeds on-chain deposit' })
   }
-  if (voucher.cumulativeAmount <= channel.highestVoucherAmount) {
+  if (voucher.cumulativeAmount < channel.highestVoucherAmount) {
     throw new VerificationFailedError({
       reason: 'voucher cumulativeAmount must be strictly greater than highest accepted voucher',
     })
   }
-  const delta = voucher.cumulativeAmount - channel.highestVoucherAmount
-  if (delta < minVoucherDelta) {
-    throw new DeltaTooSmallError({
-      reason: `voucher delta ${delta} below minimum ${minVoucherDelta}`,
-    })
-  }
   const isValid = await verifyVoucher(
     methodDetails.escrowContract,
     methodDetails.chainId,
@@ -486,6 +484,25 @@ async function verifyAndAcceptVoucher(parameters: {
     throw new InvalidSignatureError({ reason: 'invalid voucher signature' })
   }
+  // Idempotent replay: equal cumulative voucher is accepted without
+  // advancing channel state or charging additional value.
+  if (voucher.cumulativeAmount === channel.highestVoucherAmount) {
+    return createSessionReceipt({
+      challengeId: challenge.id,
+      channelId,
+      acceptedCumulative: channel.highestVoucherAmount,
+      spent: channel.spent,
+      units: channel.units,
+    })
+  }
+  const delta = voucher.cumulativeAmount - channel.highestVoucherAmount
+  if (delta < minVoucherDelta) {
+    throw new DeltaTooSmallError({
+      reason: `voucher delta ${delta} below minimum ${minVoucherDelta}`,
+    })
+  }
   const updated = await store.updateChannel(channelId, (current) => {
     if (!current) throw new ChannelNotFoundError({ reason: 'channel not found' })
     if (voucher.cumulativeAmount > current.highestVoucherAmount) {

package/src/tempo/server/Sse.test.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import type { Address, Hex } from 'viem'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import { chainId, escrowContract as escrowContractDefaults } from '../internal/defaults.js'
 import type * as ChannelStore from '../session/ChannelStore.js'

package/src/tempo/server/internal/transport.test.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 import { Challenge, Credential } from 'mppx'
 import type { Address, Hex } from 'viem'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import * as Store from '../../../Store.js'
 import { chainId, escrowContract as escrowContractDefaults } from '../../internal/defaults.js'
@@ -292,6 +292,29 @@ describe('sse transport', () => {
     expect(response.headers.get('Payment-Receipt')).toBeTruthy()
   })
+  test('respondReceipt with 204 management response keeps null body and receipt', async () => {
+    const store = memoryStore()
+    await seedChannel(store, 10000000n)
+    const transport = sse({ store })
+    transport.getCredential(makeAuthorizedRequest())
+    const managementResponse = new Response(null, { status: 204 })
+    const response = transport.respondReceipt({
+      receipt: makeReceipt(),
+      response: managementResponse,
+      challengeId,
+    })
+    expect(response.status).toBe(204)
+    expect(await response.text()).toBe('')
+    expect(response.headers.get('Payment-Receipt')).toBeTruthy()
+    const channel = await store.getChannel(channelId)
+    expect(channel!.spent).toBe(0n)
+    expect(channel!.units).toBe(0)
+  })
   test('poll: true strips waitForUpdate from store', async () => {
     const store = memoryStore()
     ;(store as any).waitForUpdate = async () => {}

package/src/tempo/server/internal/transport.ts CHANGED Viewed

@@ -100,6 +100,13 @@ export function sse(options: sse.Options & { store: ChannelStore.ChannelStore })
       const ctx = contextMap.get(challengeId)
       if (ctx) {
         contextMap.delete(challengeId)
+        // Null-body statuses (e.g. 204 from management actions) cannot carry a
+        // response body per Fetch/HTTP semantics.
+        if (isNullBodyStatus(baseResponse.status)) {
+          return baseResponse
+        }
         const stream = new ReadableStream<Uint8Array>({
           async start(controller) {
             // deduction completes before consumer reads
@@ -191,3 +198,7 @@ function isAsyncGeneratorFunction(
 function isAsyncIterable(value: unknown): value is AsyncIterable<string> {
   return value !== null && typeof value === 'object' && Symbol.asyncIterator in (value as object)
 }
+function isNullBodyStatus(status: number): boolean {
+  return [101, 204, 205, 304].includes(status)
+}

package/src/tempo/session/Chain.test.ts CHANGED Viewed

@@ -1,7 +1,8 @@
 import { type Address, encodeFunctionData, erc20Abi, type Hex } from 'viem'
 import { waitForTransactionReceipt } from 'viem/actions'
 import { Addresses, Transaction } from 'viem/tempo'
-import { beforeAll, describe, expect, test } from 'vitest'
+import { beforeAll, describe, expect, test } from 'vp/test'
+import { nodeEnv } from '~test/config.js'
 import {
   closeChannelOnChain,
   deployEscrow,
@@ -22,6 +23,8 @@ import {
 } from './Chain.js'
 import { signVoucher } from './Voucher.js'
+const isLocalnet = nodeEnv === 'localnet'
 const UINT128_MAX = 2n ** 128n - 1n
 describe('assertUint128 (via settleOnChain / closeOnChain)', () => {
@@ -70,7 +73,7 @@ describe('assertUint128 (via settleOnChain / closeOnChain)', () => {
   })
 })
-describe('on-chain', () => {
+describe.runIf(isLocalnet)('on-chain', () => {
   const payer = accounts[2]
   const recipient = accounts[0].address
   const currency = asset

package/src/tempo/session/Chain.ts CHANGED Viewed

@@ -132,7 +132,7 @@ export async function closeOnChain(
   const resolved = account ?? client.account
   if (!resolved)
     throw new Error(
-      'Cannot close channel: no account available. Provide an `account` in the session config or a `getClient` that returns an account-bearing client.',
+      'Cannot close channel: no account available. Pass an `account` (viem Account, e.g. privateKeyToAccount("0x...")) to tempo.session(), or provide a `getClient` that returns an account-bearing client.',
     )
   const args = [voucher.channelId, voucher.cumulativeAmount, voucher.signature] as const
   if (feePayer) {

package/src/tempo/session/Channel.test.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import { AbiParameters, Hash } from 'ox'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import * as Channel from './Channel.js'

package/src/tempo/session/ChannelStore.test.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import type { Address, Hex } from 'viem'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import * as Store from '../../Store.js'
 import { chainId, escrowContract as escrowContractDefaults } from '../internal/defaults.js'

package/src/tempo/session/Receipt.test.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import type { Hex } from 'viem'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import {
   createSessionReceipt,

package/src/tempo/session/Sse.fuzz.test.ts ADDED Viewed

@@ -0,0 +1,138 @@
+import * as fc from 'fast-check'
+import { describe, expect, test } from 'vp/test'
+import * as Sse from './Sse.js'
+function createChunkedResponse(chunks: Uint8Array[]): Response {
+  let index = 0
+  const stream = new ReadableStream<Uint8Array>({
+    pull(controller) {
+      if (index < chunks.length) {
+        controller.enqueue(chunks[index]!)
+        index++
+      } else {
+        controller.close()
+      }
+    },
+  })
+  return new Response(stream, {
+    headers: { 'Content-Type': 'text/event-stream' },
+  })
+}
+function splitAtPositions(str: string, positions: number[]): Uint8Array[] {
+  const encoder = new TextEncoder()
+  const sorted = [...new Set([0, ...positions, str.length])]
+    .filter((p) => p >= 0 && p <= str.length)
+    .sort((a, b) => a - b)
+  const chunks: Uint8Array[] = []
+  for (let i = 0; i < sorted.length - 1; i++) {
+    const chunk = str.slice(sorted[i], sorted[i + 1])
+    if (chunk.length > 0) chunks.push(encoder.encode(chunk))
+  }
+  return chunks
+}
+async function collectData(response: Response): Promise<string[]> {
+  const results: string[] = []
+  for await (const data of Sse.iterateData(response)) {
+    results.push(data)
+  }
+  return results
+}
+describe('parseEvent', () => {
+  test('never throws on arbitrary message-type input', () => {
+    fc.assert(
+      fc.property(fc.string(), (input) => {
+        const result = Sse.parseEvent(input)
+        if (result !== null) {
+          expect(result.type).toBe('message')
+          expect(typeof result.data).toBe('string')
+        }
+      }),
+      { numRuns: 10_000 },
+    )
+  })
+  test('parseEvent with valid SSE format', () => {
+    const sseMessageArb = fc
+      .array(
+        fc.string().filter((s) => !s.includes('\n')),
+        { minLength: 1, maxLength: 5 },
+      )
+      .map((lines) => lines.map((l) => `data: ${l}`).join('\n'))
+    fc.assert(
+      fc.property(sseMessageArb, (raw) => {
+        const result = Sse.parseEvent(raw)
+        expect(result).not.toBeNull()
+        expect(result!.type).toBe('message')
+        const expectedData = raw
+          .split('\n')
+          .map((l) => l.slice(6))
+          .join('\n')
+        expect(result!.data).toBe(expectedData)
+      }),
+      { numRuns: 5_000 },
+    )
+  })
+})
+describe('iterateData', () => {
+  const sseEventArb = fc
+    .array(
+      fc.string().filter((s) => !s.includes('\n\n') && !s.includes('\n')),
+      { minLength: 1, maxLength: 3 },
+    )
+    .map((lines) => lines.map((l) => `data: ${l}`).join('\n'))
+  const sseStreamArb = fc
+    .array(sseEventArb, { minLength: 1, maxLength: 5 })
+    .map((events) => events.join('\n\n') + '\n\n')
+  test('chunk boundary invariance', async () => {
+    await fc.assert(
+      fc.asyncProperty(
+        sseStreamArb,
+        fc.array(fc.nat(), { minLength: 1, maxLength: 10 }),
+        async (stream, positions) => {
+          const encoder = new TextEncoder()
+          const singleChunk = createChunkedResponse([encoder.encode(stream)])
+          const singleResult = await collectData(singleChunk)
+          const boundedPositions = positions.map((p) => p % (stream.length + 1))
+          const chunks = splitAtPositions(stream, boundedPositions)
+          const multiChunk = createChunkedResponse(chunks)
+          const multiResult = await collectData(multiChunk)
+          expect(multiResult).toEqual(singleResult)
+        },
+      ),
+      { numRuns: 1_000 },
+    )
+  })
+  test('iterateData never throws on arbitrary chunked input', async () => {
+    await fc.assert(
+      fc.asyncProperty(
+        fc.array(fc.uint8Array({ minLength: 1, maxLength: 100 }), {
+          minLength: 1,
+          maxLength: 5,
+        }),
+        async (chunks) => {
+          const response = createChunkedResponse(chunks)
+          const results: string[] = []
+          for await (const data of Sse.iterateData(response)) {
+            results.push(data)
+          }
+          for (const item of results) {
+            expect(typeof item).toBe('string')
+          }
+        },
+      ),
+      { numRuns: 5_000 },
+    )
+  })
+})

package/src/tempo/session/Sse.test.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import type { Address, Hex } from 'viem'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import { chainId, escrowContract as escrowContractDefaults } from '../internal/defaults.js'
 import type * as ChannelStore from './ChannelStore.js'

package/src/tempo/session/Voucher.test.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 import { createClient, http } from 'viem'
 import { privateKeyToAccount } from 'viem/accounts'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import { parseVoucherFromPayload, signVoucher, verifyVoucher } from './Voucher.js'

package/src/viem/Account.test.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 import { createClient, http } from 'viem'
 import { privateKeyToAccount } from 'viem/accounts'
 import { mainnet } from 'viem/chains'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import * as Account from './Account.js'

package/src/viem/Client.test.ts CHANGED Viewed

@@ -3,7 +3,7 @@ import { privateKeyToAccount } from 'viem/accounts'
 import { signTransaction } from 'viem/actions'
 import { tempoLocalnet } from 'viem/chains'
 import { Transaction } from 'viem/tempo'
-import { describe, expect, test } from 'vitest'
+import { describe, expect, test } from 'vp/test'
 import * as Client from './Client.js'

package/src/zod.test.ts ADDED Viewed

@@ -0,0 +1,147 @@
+import { describe, expect, test } from 'vp/test'
+import { address, amount, datetime, hash, period, signature, unwrapOptional, z } from './zod.js'
+describe('amount', () => {
+  test.each([
+    { input: '1', expected: true, desc: 'integer' },
+    { input: '1000000', expected: true, desc: 'large integer' },
+    { input: '1.5', expected: true, desc: 'decimal' },
+    { input: '0', expected: true, desc: 'zero' },
+    { input: '007', expected: true, desc: 'leading zeros' },
+    { input: '-1', expected: false, desc: 'negative number' },
+    { input: '', expected: false, desc: 'empty string' },
+    { input: 'abc', expected: false, desc: 'alphabetic string' },
+    { input: '1.', expected: false, desc: 'trailing decimal point' },
+    { input: 123 as unknown as string, expected: false, desc: 'non-string type' },
+  ])('$desc ($input) → $expected', ({ input, expected }) => {
+    expect(amount().safeParse(input).success).toBe(expected)
+  })
+})
+describe('datetime', () => {
+  test.each([
+    { input: '2025-01-06T12:00:00Z', expected: true, desc: 'UTC with Z suffix' },
+    { input: '2025-01-06T12:00:00.123Z', expected: true, desc: 'fractional seconds' },
+    { input: '2025-01-06T12:00:00+05:30', expected: true, desc: 'positive UTC offset' },
+    { input: '2025-01-06T12:00:00-08:00', expected: true, desc: 'negative UTC offset' },
+    { input: '2025-01-06T12:00:00', expected: false, desc: 'missing timezone' },
+    { input: '2025-01-06', expected: false, desc: 'date only, no time' },
+    { input: '', expected: false, desc: 'empty string' },
+    { input: 'not-a-date', expected: false, desc: 'non-date string' },
+  ])('$desc ($input) → $expected', ({ input, expected }) => {
+    expect(datetime().safeParse(input).success).toBe(expected)
+  })
+})
+describe('address', () => {
+  test.each([
+    { input: '0x1234567890abcdef1234567890abcdef12345678', expected: true, desc: 'lowercase hex' },
+    { input: '0x1234567890ABCDEF1234567890ABCDEF12345678', expected: true, desc: 'uppercase hex' },
+    { input: '0xAbCdEf0123456789AbCdEf0123456789AbCdEf01', expected: true, desc: 'mixed case hex' },
+    { input: '0x1234', expected: false, desc: 'too short' },
+    {
+      input: '0x1234567890abcdef1234567890abcdef1234567890',
+      expected: false,
+      desc: 'too long (42 hex chars)',
+    },
+    {
+      input: '1234567890abcdef1234567890abcdef12345678',
+      expected: false,
+      desc: 'missing 0x prefix',
+    },
+    {
+      input: '0xGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGGG',
+      expected: false,
+      desc: 'non-hex characters',
+    },
+    { input: '', expected: false, desc: 'empty string' },
+  ])('$desc → $expected', ({ input, expected }) => {
+    expect(address().safeParse(input).success).toBe(expected)
+  })
+})
+describe('hash', () => {
+  test.each([
+    {
+      input: '0x1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef',
+      expected: true,
+      desc: 'valid 64 hex chars',
+    },
+    {
+      input: '0xABCDEF1234567890ABCDEF1234567890ABCDEF1234567890ABCDEF1234567890',
+      expected: true,
+      desc: 'uppercase hex',
+    },
+    {
+      input: '0x1234567890abcdef1234567890abcdef12345678',
+      expected: false,
+      desc: 'too short (address length)',
+    },
+    {
+      input: '0x1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef00',
+      expected: false,
+      desc: 'too long (66 hex chars)',
+    },
+    {
+      input: '1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef',
+      expected: false,
+      desc: 'missing 0x prefix',
+    },
+    { input: '', expected: false, desc: 'empty string' },
+  ])('$desc → $expected', ({ input, expected }) => {
+    expect(hash().safeParse(input).success).toBe(expected)
+  })
+})
+describe('period', () => {
+  test.each([
+    { input: 'day', expected: true, desc: 'day keyword' },
+    { input: 'week', expected: true, desc: 'week keyword' },
+    { input: 'month', expected: true, desc: 'month keyword' },
+    { input: 'year', expected: true, desc: 'year keyword' },
+    { input: '3600', expected: true, desc: 'numeric seconds' },
+    { input: '', expected: false, desc: 'empty string' },
+    { input: 'hourly', expected: false, desc: 'unsupported keyword' },
+    { input: 'day1', expected: false, desc: 'keyword with trailing digits' },
+  ])('$desc ($input) → $expected', ({ input, expected }) => {
+    expect(period().safeParse(input).success).toBe(expected)
+  })
+})
+describe('signature', () => {
+  test.each([
+    { input: '0xabcdef', expected: true, desc: 'short hex' },
+    {
+      input:
+        '0x1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef1234567890abcdef1b',
+      expected: true,
+      desc: 'full 65-byte secp256k1 signature',
+    },
+    { input: '0x', expected: false, desc: 'bare 0x prefix with no data' },
+    { input: 'abcdef', expected: false, desc: 'missing 0x prefix' },
+    { input: '0xZZZZ', expected: false, desc: 'non-hex characters after 0x' },
+    { input: '', expected: false, desc: 'empty string' },
+  ])('$desc → $expected', ({ input, expected }) => {
+    expect(signature().safeParse(input).success).toBe(expected)
+  })
+})
+describe('unwrapOptional', () => {
+  test('unwraps optional string schema to inner type', () => {
+    const inner = z.string()
+    const result = unwrapOptional(z.optional(inner))
+    expect(result).toBe(inner)
+  })
+  test('returns non-optional schema unchanged', () => {
+    const schema = z.string()
+    expect(unwrapOptional(schema)).toBe(schema)
+  })
+  test('unwraps optional number schema to inner type', () => {
+    const inner = z.number()
+    const result = unwrapOptional(z.optional(inner))
+    expect(result).toBe(inner)
+  })
+})