pryvy 0.0.1

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,106 @@
+# pryvy
+
+CLI and MCP server for [Privy](https://www.privy.io) embedded wallets & auth.
+
+## Install
+
+```bash
+npm install -g pryvy
+```
+
+Or run directly:
+
+```bash
+npx pryvy --help
+```
+
+## Setup
+
+On first run with no arguments, pryvy prompts for your App ID and App Secret interactively. Or configure them explicitly:
+
+```bash
+pryvy configure app-id <your-app-id>
+pryvy configure app-secret <your-app-secret>
+```
+
+You can also set them via environment variables:
+
+```bash
+export PRIVY_APP_ID=...
+export PRIVY_APP_SECRET=...
+```
+
+## Usage
+
+```bash
+# create a user with an email
+pryvy users create --email alice@example.com
+
+# create a user with an embedded ethereum wallet
+pryvy users create --email alice@example.com --create-wallet ethereum
+
+# list all users
+pryvy users list
+
+# create a standalone wallet
+pryvy wallets create --chain-type ethereum
+
+# check wallet balance
+pryvy wallets get-balance <wallet-id> --asset usdc --chain base
+
+# sign a message
+pryvy signing personal-sign <wallet-id> --message "hello world"
+
+# send a transaction
+pryvy signing send-tx <wallet-id> \
+  --caip2 eip155:1 --to 0x... --value 0x0
+
+# set default output format
+pryvy configure format json
+```
+
+## Commands
+
+| Group | Commands |
+|---|---|
+| `users` | `create`, `get`, `list`, `delete`, `search`, `add-metadata`, `pregenerate-wallets` |
+| `wallets` | `create`, `get`, `list`, `get-balance`, `get-by-address`, `batch-create` |
+| `signing` | `personal-sign`, `send-tx`, `sign-tx`, `sign-typed-data`, `sign-7702`, `sign-user-op`, `sol-sign-tx`, `sol-sign-message` |
+| `transactions` | `get` |
+| `policies` | `create`, `get`, `list`, `update`, `delete` |
+| `configure` | `app-id`, `app-secret`, `format`, `show` |
+
+All commands support `--format toon|json|yaml|md|jsonl` and `--help`.
+
+## Agent Setup
+
+Give your AI agent (Claude Code, Amp, Cursor, Copilot, etc.) full access to Privy:
+
+```bash
+npx pryvy mcp add      # register as MCP server — gives agents direct tool access
+npx pryvy skills add   # install skill files — gives agents context on available commands
+```
+
+That's it. Your agent can now run commands like "create a user with an email" or "sign a message with a wallet".
+
+You can also run the MCP server directly in stdio mode:
+
+```bash
+pryvy --mcp
+```
+
+## Development
+
+```bash
+bun install
+bun run build        # tsc + chmod
+bun run typecheck    # tsc --noEmit
+```
+
+## Built with
+
+[incur](https://github.com/wevm/incur) — one CLI router that gives you a CLI, MCP server, and agent skills for free.
+
+## License
+
+MIT

package/dist/bin.d.ts

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+export {};

package/dist/bin.js

@@ -0,0 +1,36 @@
+#!/usr/bin/env node
+import { getAppId, getAppSecret, writeConfig } from './core/client.js';
+const args = process.argv.slice(2);
+const hasArgs = args.length > 0;
+if (!hasArgs && (!getAppId() || !getAppSecret())) {
+    const { createInterface } = await import('node:readline/promises');
+    console.error(`
+  Welcome to pryvy — Privy embedded wallets & auth CLI
+
+  To get started, you need your Privy App ID and App Secret.
+  Get them at https://dashboard.privy.io
+`);
+    if (process.stdin.isTTY) {
+        const rl = createInterface({ input: process.stdin, output: process.stderr });
+        const appId = (await rl.question('  Enter your App ID: ')).trim();
+        const appSecret = (await rl.question('  Enter your App Secret: ')).trim();
+        rl.close();
+        if (!appId || !appSecret) {
+            console.error('\n  Missing credentials. You can set them later:\n\n    pryvy configure app-id <your-app-id>\n    pryvy configure app-secret <your-app-secret>\n');
+            process.exit(1);
+        }
+        writeConfig({ app_id: appId, app_secret: appSecret });
+        console.error('\n  ✓ Saved to ~/.config/pryvy/config.json');
+        console.error('\n  You\'re all set! Run pryvy --help to see available commands.\n');
+    }
+    else {
+        console.error('  Run:  pryvy configure app-id <your-app-id>');
+        console.error('        pryvy configure app-secret <your-app-secret>');
+        console.error('  Or:   export PRIVY_APP_ID=... && export PRIVY_APP_SECRET=...\n');
+        process.exit(1);
+    }
+}
+else {
+    const { default: cli } = await import('./cli.js');
+    cli.serve();
+}

package/dist/cli.d.ts

@@ -0,0 +1,3 @@
+import { Cli } from 'incur';
+declare const cli: Cli.Cli<{}, undefined, undefined>;
+export default cli;

package/dist/cli.js

@@ -0,0 +1,386 @@
+import { Cli, z } from 'incur';
+import { createUser, getUser, listUsers, deleteUser, searchUsers, addCustomMetadata, pregenerateWallets } from './core/users.js';
+import { createWallet, getWallet, listWallets, getWalletBalance, getWalletByAddress, batchCreateWallets } from './core/wallets.js';
+import { personalSign, sendTransaction, signTransaction, signTypedData, sign7702Authorization, signUserOperation, solSignTransaction, solSignMessage } from './core/signing.js';
+import { getTransaction } from './core/transactions.js';
+import { createPolicy, getPolicy, listPolicies, updatePolicy, deletePolicy } from './core/policies.js';
+import { writeConfig, getAppId, getAppSecret, getDefaultFormat } from './core/client.js';
+import pkg from '../package.json' with { type: 'json' };
+const cli = Cli.create('pryvy', {
+    version: pkg.version,
+    description: 'Privy embedded wallets & auth CLI. Built with incur.',
+    format: getDefaultFormat(),
+    sync: {
+        suggestions: [
+            'create a user with an email',
+            'create an ethereum wallet',
+            'list all wallets',
+            'sign a message with a wallet',
+            'send a transaction',
+        ],
+    },
+});
+// --- users subcommand group ---
+const users = Cli.create('users', { description: 'Manage Privy users.' });
+users.command('create', {
+    description: 'Create a new user with linked accounts',
+    options: z.object({
+        email: z.string().optional().describe('Email address to link'),
+        phone: z.string().optional().describe('Phone number to link'),
+        wallet: z.string().optional().describe('Wallet address to link'),
+        walletChain: z.string().optional().describe('Chain type for linked wallet (ethereum, solana)'),
+        createWallet: z.string().optional().describe('Create embedded wallet (ethereum, solana, etc.)'),
+    }),
+    async run(c) {
+        const linked_accounts = [];
+        if (c.options.email)
+            linked_accounts.push({ type: 'email', address: c.options.email });
+        if (c.options.phone)
+            linked_accounts.push({ type: 'phone', number: c.options.phone });
+        if (c.options.wallet)
+            linked_accounts.push({ type: 'wallet', address: c.options.wallet, chain_type: c.options.walletChain ?? 'ethereum' });
+        const body = { linked_accounts };
+        if (c.options.createWallet)
+            body.wallets = [{ chain_type: c.options.createWallet }];
+        return createUser(body);
+    },
+});
+users.command('get', {
+    description: 'Get a user by ID',
+    args: z.object({ id: z.string().describe('User ID') }),
+    async run(c) { return getUser(c.args.id); },
+});
+users.command('list', {
+    description: 'Get all users',
+    options: z.object({
+        cursor: z.string().optional().describe('Pagination cursor'),
+        limit: z.string().optional().describe('Max results (up to 100)'),
+    }),
+    async run(c) {
+        const params = {};
+        if (c.options.cursor)
+            params.cursor = c.options.cursor;
+        if (c.options.limit)
+            params.limit = c.options.limit;
+        return listUsers(Object.keys(params).length ? params : undefined);
+    },
+});
+users.command('delete', {
+    description: 'Delete a user by ID',
+    args: z.object({ id: z.string().describe('User ID') }),
+    async run(c) { return deleteUser(c.args.id); },
+});
+users.command('search', {
+    description: 'Search users by term, emails, phone numbers, or wallet addresses',
+    options: z.object({
+        term: z.string().optional().describe('Search term'),
+        email: z.string().optional().describe('Email to search for'),
+        phone: z.string().optional().describe('Phone number to search for'),
+        wallet: z.string().optional().describe('Wallet address to search for'),
+    }),
+    async run(c) {
+        if (c.options.term)
+            return searchUsers({ searchTerm: c.options.term });
+        const body = {};
+        if (c.options.email)
+            body.emails = [c.options.email];
+        if (c.options.phone)
+            body.phoneNumbers = [c.options.phone];
+        if (c.options.wallet)
+            body.walletAddresses = [c.options.wallet];
+        return searchUsers(body);
+    },
+});
+users.command('add-metadata', {
+    description: 'Add custom metadata to a user',
+    args: z.object({ id: z.string().describe('User ID') }),
+    options: z.object({
+        json: z.string().describe('JSON string of custom metadata'),
+    }),
+    async run(c) {
+        return addCustomMetadata(c.args.id, JSON.parse(c.options.json));
+    },
+});
+users.command('pregenerate-wallets', {
+    description: 'Pregenerate embedded wallets for a user',
+    args: z.object({ id: z.string().describe('User ID') }),
+    options: z.object({
+        chainType: z.string().default('ethereum').describe('Chain type (ethereum, solana, etc.)'),
+    }),
+    async run(c) {
+        return pregenerateWallets(c.args.id, { chain_type: c.options.chainType });
+    },
+});
+cli.command(users);
+// --- wallets subcommand group ---
+const wallets = Cli.create('wallets', { description: 'Manage Privy wallets.' });
+wallets.command('create', {
+    description: 'Create a wallet',
+    options: z.object({
+        chainType: z.string().describe('Chain type (ethereum, solana, cosmos, stellar, sui, aptos, etc.)'),
+        userId: z.string().optional().describe('Owner user ID'),
+        policyId: z.string().optional().describe('Policy ID to attach'),
+    }),
+    alias: { chainType: 'c', userId: 'u' },
+    async run(c) {
+        const body = { chain_type: c.options.chainType };
+        if (c.options.userId)
+            body.owner_id = c.options.userId;
+        if (c.options.policyId)
+            body.policy_ids = [c.options.policyId];
+        return createWallet(body);
+    },
+});
+wallets.command('get', {
+    description: 'Get a wallet by ID',
+    args: z.object({ id: z.string().describe('Wallet ID') }),
+    async run(c) { return getWallet(c.args.id); },
+});
+wallets.command('list', {
+    description: 'Get all wallets',
+    options: z.object({
+        cursor: z.string().optional().describe('Pagination cursor'),
+        limit: z.string().optional().describe('Max results (up to 100)'),
+        chainType: z.string().optional().describe('Filter by chain type'),
+        userId: z.string().optional().describe('Filter by user ID'),
+    }),
+    async run(c) {
+        const params = {};
+        if (c.options.cursor)
+            params.cursor = c.options.cursor;
+        if (c.options.limit)
+            params.limit = c.options.limit;
+        if (c.options.chainType)
+            params.chain_type = c.options.chainType;
+        if (c.options.userId)
+            params.user_id = c.options.userId;
+        return listWallets(Object.keys(params).length ? params : undefined);
+    },
+});
+wallets.command('get-balance', {
+    description: 'Get wallet balance',
+    args: z.object({ id: z.string().describe('Wallet ID') }),
+    options: z.object({
+        asset: z.string().optional().describe('Asset filter (usdc, eth, sol, etc.)'),
+        chain: z.string().optional().describe('Chain filter (ethereum, base, solana, etc.)'),
+        currency: z.string().optional().describe('Include fiat value (usd, eur)'),
+    }),
+    async run(c) {
+        const params = {};
+        if (c.options.asset)
+            params.asset = c.options.asset;
+        if (c.options.chain)
+            params.chain = c.options.chain;
+        if (c.options.currency)
+            params.include_currency = c.options.currency;
+        return getWalletBalance(c.args.id, Object.keys(params).length ? params : undefined);
+    },
+});
+wallets.command('get-by-address', {
+    description: 'Look up a wallet by blockchain address',
+    args: z.object({ address: z.string().describe('Blockchain address') }),
+    async run(c) { return getWalletByAddress(c.args.address); },
+});
+wallets.command('batch-create', {
+    description: 'Create multiple wallets in a single request',
+    options: z.object({
+        chainType: z.string().describe('Chain type for all wallets'),
+        count: z.string().default('1').describe('Number of wallets to create'),
+        userId: z.string().optional().describe('Owner user ID'),
+    }),
+    async run(c) {
+        const wallets = Array.from({ length: parseInt(c.options.count) }, () => ({
+            chain_type: c.options.chainType,
+            ...(c.options.userId ? { owner_id: c.options.userId } : {}),
+        }));
+        return batchCreateWallets({ wallets });
+    },
+});
+cli.command(wallets);
+// --- signing subcommand group ---
+const signing = Cli.create('signing', { description: 'Sign messages and transactions with Privy wallets.' });
+signing.command('personal-sign', {
+    description: 'Sign a message with personal_sign',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        message: z.string().describe('Message to sign'),
+        encoding: z.string().optional().describe('Message encoding (utf-8, hex)'),
+    }),
+    async run(c) { return personalSign(c.args.walletId, c.options.message, c.options.encoding); },
+});
+signing.command('send-tx', {
+    description: 'Sign and send an Ethereum transaction',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        caip2: z.string().describe('CAIP-2 chain ID (e.g. eip155:1, eip155:11155111)'),
+        to: z.string().describe('Destination address'),
+        value: z.string().optional().describe('Value in hex wei'),
+        data: z.string().optional().describe('Transaction data (hex)'),
+        sponsor: z.boolean().default(false).describe('Enable gas sponsorship'),
+    }),
+    async run(c) {
+        const tx = { to: c.options.to };
+        if (c.options.value)
+            tx.value = c.options.value;
+        if (c.options.data)
+            tx.data = c.options.data;
+        return sendTransaction(c.args.walletId, c.options.caip2, tx, c.options.sponsor || undefined);
+    },
+});
+signing.command('sign-tx', {
+    description: 'Sign an Ethereum transaction without broadcasting',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        caip2: z.string().describe('CAIP-2 chain ID'),
+        to: z.string().describe('Destination address'),
+        value: z.string().optional().describe('Value in hex wei'),
+        data: z.string().optional().describe('Transaction data (hex)'),
+    }),
+    async run(c) {
+        const tx = { to: c.options.to };
+        if (c.options.value)
+            tx.value = c.options.value;
+        if (c.options.data)
+            tx.data = c.options.data;
+        return signTransaction(c.args.walletId, c.options.caip2, tx);
+    },
+});
+signing.command('sign-typed-data', {
+    description: 'Sign EIP-712 typed data',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        json: z.string().describe('JSON string of typed data (domain, types, message, primary_type)'),
+    }),
+    async run(c) { return signTypedData(c.args.walletId, JSON.parse(c.options.json)); },
+});
+signing.command('sign-7702', {
+    description: 'Sign an EIP-7702 authorization',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        caip2: z.string().describe('CAIP-2 chain ID'),
+        json: z.string().describe('JSON string of authorization struct'),
+    }),
+    async run(c) { return sign7702Authorization(c.args.walletId, c.options.caip2, JSON.parse(c.options.json)); },
+});
+signing.command('sign-user-op', {
+    description: 'Sign a user operation',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        caip2: z.string().describe('CAIP-2 chain ID'),
+        json: z.string().describe('JSON string of user operation'),
+    }),
+    async run(c) { return signUserOperation(c.args.walletId, c.options.caip2, JSON.parse(c.options.json)); },
+});
+signing.command('sol-sign-tx', {
+    description: 'Sign a Solana transaction',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        transaction: z.string().describe('Base64-encoded serialized transaction'),
+    }),
+    async run(c) { return solSignTransaction(c.args.walletId, c.options.transaction); },
+});
+signing.command('sol-sign-message', {
+    description: 'Sign a Solana message',
+    args: z.object({ walletId: z.string().describe('Wallet ID') }),
+    options: z.object({
+        message: z.string().describe('Message to sign'),
+        encoding: z.string().optional().describe('Message encoding (utf-8, base64)'),
+    }),
+    async run(c) { return solSignMessage(c.args.walletId, c.options.message, c.options.encoding); },
+});
+cli.command(signing);
+// --- transactions subcommand group ---
+const transactions = Cli.create('transactions', { description: 'Query transactions.' });
+transactions.command('get', {
+    description: 'Get a transaction by ID',
+    args: z.object({ id: z.string().describe('Transaction ID') }),
+    async run(c) { return getTransaction(c.args.id); },
+});
+cli.command(transactions);
+// --- policies subcommand group ---
+const policies = Cli.create('policies', { description: 'Manage wallet policies.' });
+policies.command('create', {
+    description: 'Create a policy',
+    options: z.object({
+        json: z.string().describe('JSON string of policy configuration'),
+    }),
+    async run(c) { return createPolicy(JSON.parse(c.options.json)); },
+});
+policies.command('get', {
+    description: 'Get a policy by ID',
+    args: z.object({ id: z.string().describe('Policy ID') }),
+    async run(c) { return getPolicy(c.args.id); },
+});
+policies.command('list', {
+    description: 'List all policies',
+    options: z.object({
+        cursor: z.string().optional().describe('Pagination cursor'),
+        limit: z.string().optional().describe('Max results'),
+    }),
+    async run(c) {
+        const params = {};
+        if (c.options.cursor)
+            params.cursor = c.options.cursor;
+        if (c.options.limit)
+            params.limit = c.options.limit;
+        return listPolicies(Object.keys(params).length ? params : undefined);
+    },
+});
+policies.command('update', {
+    description: 'Update a policy',
+    args: z.object({ id: z.string().describe('Policy ID') }),
+    options: z.object({
+        json: z.string().describe('JSON string of policy updates'),
+    }),
+    async run(c) { return updatePolicy(c.args.id, JSON.parse(c.options.json)); },
+});
+policies.command('delete', {
+    description: 'Delete a policy',
+    args: z.object({ id: z.string().describe('Policy ID') }),
+    async run(c) { return deletePolicy(c.args.id); },
+});
+cli.command(policies);
+// --- configure subcommand group ---
+const configure = Cli.create('configure', { description: 'Manage CLI configuration.' });
+configure.command('app-id', {
+    description: 'Save your Privy App ID',
+    args: z.object({ appId: z.string().describe('Privy App ID') }),
+    async run(c) {
+        writeConfig({ app_id: c.args.appId });
+        return { saved: true, config: '~/.config/pryvy/config.json' };
+    },
+});
+configure.command('app-secret', {
+    description: 'Save your Privy App Secret',
+    args: z.object({ appSecret: z.string().describe('Privy App Secret') }),
+    async run(c) {
+        writeConfig({ app_secret: c.args.appSecret });
+        return { saved: true, config: '~/.config/pryvy/config.json' };
+    },
+});
+configure.command('format', {
+    description: 'Set the default output format',
+    args: z.object({ format: z.enum(['toon', 'json', 'yaml', 'md', 'jsonl']).describe('Output format') }),
+    async run(c) {
+        writeConfig({ format: c.args.format });
+        return { saved: true, format: c.args.format };
+    },
+});
+configure.command('show', {
+    description: 'Show current configuration',
+    async run() {
+        const appId = getAppId();
+        const appSecret = getAppSecret();
+        if (!appId || !appSecret)
+            return { error: 'No credentials configured. Run: pryvy configure app-id <id> && pryvy configure app-secret <secret>' };
+        const source = process.env.PRIVY_APP_ID ? 'env vars' : '~/.config/pryvy/config.json';
+        return {
+            app_id: appId,
+            app_secret: appSecret.slice(0, 8) + '...' + appSecret.slice(-4),
+            format: getDefaultFormat() ?? 'toon',
+            source,
+        };
+    },
+});
+cli.command(configure);
+export default cli;

package/dist/core/client.d.ts

@@ -0,0 +1,21 @@
+/** Write a key-value pair to the config file. */
+export declare function writeConfig(data: Record<string, string>): void;
+/** Resolve the App ID: env var takes precedence, then config file. */
+export declare function getAppId(): string;
+/** Resolve the App Secret: env var takes precedence, then config file. */
+export declare function getAppSecret(): string;
+/** Get the saved default output format. */
+export declare function getDefaultFormat(): string | undefined;
+/** Returns the full URL for a Privy API path. */
+export declare const url: (path: string) => string;
+/** Thin fetch wrapper for the Privy API. */
+export declare const privy: {
+    /** GET a Privy API endpoint, with optional query params. */
+    get: (path: string, params?: Record<string, string>) => Promise<any>;
+    /** POST to a Privy API endpoint. */
+    post: (path: string, body: Record<string, unknown>) => Promise<any>;
+    /** PATCH a Privy API endpoint. */
+    patch: (path: string, body: Record<string, unknown>) => Promise<any>;
+    /** DELETE a Privy API endpoint. */
+    delete: (path: string) => Promise<any>;
+};

package/dist/core/client.js

@@ -0,0 +1,65 @@
+import { readFileSync, mkdirSync, writeFileSync } from 'node:fs';
+import { join } from 'node:path';
+import { homedir } from 'node:os';
+const CONFIG_DIR = join(homedir(), '.config', 'pryvy');
+const CONFIG_FILE = join(CONFIG_DIR, 'config.json');
+function readConfig() {
+    try {
+        return JSON.parse(readFileSync(CONFIG_FILE, 'utf8'));
+    }
+    catch {
+        return {};
+    }
+}
+/** Write a key-value pair to the config file. */
+export function writeConfig(data) {
+    mkdirSync(CONFIG_DIR, { recursive: true });
+    writeFileSync(CONFIG_FILE, JSON.stringify({ ...readConfig(), ...data }, null, 2) + '\n');
+}
+/** Resolve the App ID: env var takes precedence, then config file. */
+export function getAppId() {
+    return process.env.PRIVY_APP_ID ?? readConfig().app_id ?? '';
+}
+/** Resolve the App Secret: env var takes precedence, then config file. */
+export function getAppSecret() {
+    return process.env.PRIVY_APP_SECRET ?? readConfig().app_secret ?? '';
+}
+/** Get the saved default output format. */
+export function getDefaultFormat() {
+    return readConfig().format;
+}
+const BASE_URL = 'https://api.privy.io/v1';
+/** Returns the full URL for a Privy API path. */
+export const url = (path) => `${BASE_URL}${path}`;
+function request(method, path, body) {
+    const appId = getAppId();
+    const appSecret = getAppSecret();
+    if (!appId || !appSecret)
+        throw new Error('No Privy credentials configured. Run: pryvy configure app-id <id> && pryvy configure app-secret <secret>');
+    const h = {
+        'Authorization': `Basic ${Buffer.from(`${appId}:${appSecret}`).toString('base64')}`,
+        'privy-app-id': appId,
+        'Content-Type': 'application/json',
+    };
+    if (method === 'POST' || method === 'PUT' || method === 'PATCH')
+        h['privy-idempotency-key'] = crypto.randomUUID();
+    return fetch(url(path), {
+        method,
+        headers: h,
+        ...(body ? { body: JSON.stringify(body) } : {}),
+    }).then(res => res.json());
+}
+/** Thin fetch wrapper for the Privy API. */
+export const privy = {
+    /** GET a Privy API endpoint, with optional query params. */
+    get: (path, params) => {
+        const qs = params ? '?' + new URLSearchParams(params).toString() : '';
+        return request('GET', path + qs);
+    },
+    /** POST to a Privy API endpoint. */
+    post: (path, body) => request('POST', path, body),
+    /** PATCH a Privy API endpoint. */
+    patch: (path, body) => request('PATCH', path, body),
+    /** DELETE a Privy API endpoint. */
+    delete: (path) => request('DELETE', path),
+};

package/dist/core/policies.d.ts

@@ -0,0 +1,10 @@
+/** Create a policy. */
+export declare const createPolicy: (data: Record<string, unknown>) => Promise<any>;
+/** Get a policy by ID. */
+export declare const getPolicy: (id: string) => Promise<any>;
+/** List all policies. */
+export declare const listPolicies: (params?: Record<string, string>) => Promise<any>;
+/** Update a policy by ID. */
+export declare const updatePolicy: (id: string, data: Record<string, unknown>) => Promise<any>;
+/** Delete a policy by ID. */
+export declare const deletePolicy: (id: string) => Promise<any>;

package/dist/core/policies.js

@@ -0,0 +1,11 @@
+import { privy } from './client.js';
+/** Create a policy. */
+export const createPolicy = (data) => privy.post('/policies', data);
+/** Get a policy by ID. */
+export const getPolicy = (id) => privy.get(`/policies/${id}`);
+/** List all policies. */
+export const listPolicies = (params) => privy.get('/policies', params);
+/** Update a policy by ID. */
+export const updatePolicy = (id, data) => privy.patch(`/policies/${id}`, data);
+/** Delete a policy by ID. */
+export const deletePolicy = (id) => privy.delete(`/policies/${id}`);

package/dist/core/signing.d.ts

@@ -0,0 +1,16 @@
+/** Sign a message with personal_sign. */
+export declare const personalSign: (walletId: string, message: string, encoding?: string) => Promise<any>;
+/** Send a transaction with eth_sendTransaction. */
+export declare const sendTransaction: (walletId: string, caip2: string, transaction: Record<string, unknown>, sponsor?: boolean) => Promise<any>;
+/** Sign a transaction with eth_signTransaction. */
+export declare const signTransaction: (walletId: string, caip2: string, transaction: Record<string, unknown>) => Promise<any>;
+/** Sign typed data with eth_signTypedData_v4. */
+export declare const signTypedData: (walletId: string, typedData: Record<string, unknown>) => Promise<any>;
+/** Sign an EIP-7702 authorization. */
+export declare const sign7702Authorization: (walletId: string, caip2: string, authorization: Record<string, unknown>) => Promise<any>;
+/** Sign a user operation with eth_signUserOperation. */
+export declare const signUserOperation: (walletId: string, caip2: string, userOperation: Record<string, unknown>) => Promise<any>;
+/** Sign a Solana transaction. */
+export declare const solSignTransaction: (walletId: string, transaction: string) => Promise<any>;
+/** Sign a Solana message. */
+export declare const solSignMessage: (walletId: string, message: string, encoding?: string) => Promise<any>;

package/dist/core/signing.js

@@ -0,0 +1,19 @@
+import { privy } from './client.js';
+/** Send an RPC request to a wallet. */
+const rpc = (walletId, body) => privy.post(`/wallets/${walletId}/rpc`, body);
+/** Sign a message with personal_sign. */
+export const personalSign = (walletId, message, encoding) => rpc(walletId, { method: 'personal_sign', params: { message, ...(encoding ? { encoding } : {}) } });
+/** Send a transaction with eth_sendTransaction. */
+export const sendTransaction = (walletId, caip2, transaction, sponsor) => rpc(walletId, { method: 'eth_sendTransaction', caip2, params: { transaction }, ...(sponsor ? { sponsor: true } : {}) });
+/** Sign a transaction with eth_signTransaction. */
+export const signTransaction = (walletId, caip2, transaction) => rpc(walletId, { method: 'eth_signTransaction', caip2, params: { transaction } });
+/** Sign typed data with eth_signTypedData_v4. */
+export const signTypedData = (walletId, typedData) => rpc(walletId, { method: 'eth_signTypedData_v4', params: { typed_data: typedData } });
+/** Sign an EIP-7702 authorization. */
+export const sign7702Authorization = (walletId, caip2, authorization) => rpc(walletId, { method: 'eth_sign7702Authorization', caip2, params: { authorization } });
+/** Sign a user operation with eth_signUserOperation. */
+export const signUserOperation = (walletId, caip2, userOperation) => rpc(walletId, { method: 'eth_signUserOperation', caip2, params: { user_operation: userOperation } });
+/** Sign a Solana transaction. */
+export const solSignTransaction = (walletId, transaction) => rpc(walletId, { method: 'signTransaction', params: { transaction } });
+/** Sign a Solana message. */
+export const solSignMessage = (walletId, message, encoding) => rpc(walletId, { method: 'signMessage', params: { message, ...(encoding ? { encoding } : {}) } });

package/dist/core/transactions.d.ts

@@ -0,0 +1,2 @@
+/** Get a transaction by ID. */
+export declare const getTransaction: (id: string) => Promise<any>;

package/dist/core/transactions.js

@@ -0,0 +1,3 @@
+import { privy } from './client.js';
+/** Get a transaction by ID. */
+export const getTransaction = (id) => privy.get(`/transactions/${id}`);

package/dist/core/users.d.ts

@@ -0,0 +1,14 @@
+/** Create a new user with linked accounts. */
+export declare const createUser: (data: Record<string, unknown>) => Promise<any>;
+/** Get a user by ID. */
+export declare const getUser: (id: string) => Promise<any>;
+/** List all users. */
+export declare const listUsers: (params?: Record<string, string>) => Promise<any>;
+/** Delete a user by ID. */
+export declare const deleteUser: (id: string) => Promise<any>;
+/** Search users by term, emails, phone numbers, or wallet addresses. */
+export declare const searchUsers: (data: Record<string, unknown>) => Promise<any>;
+/** Add custom metadata to a user. */
+export declare const addCustomMetadata: (id: string, data: Record<string, unknown>) => Promise<any>;
+/** Pregenerate embedded wallets for a user. */
+export declare const pregenerateWallets: (id: string, data: Record<string, unknown>) => Promise<any>;

package/dist/core/users.js

@@ -0,0 +1,15 @@
+import { privy } from './client.js';
+/** Create a new user with linked accounts. */
+export const createUser = (data) => privy.post('/users', data);
+/** Get a user by ID. */
+export const getUser = (id) => privy.get(`/users/${id}`);
+/** List all users. */
+export const listUsers = (params) => privy.get('/users', params);
+/** Delete a user by ID. */
+export const deleteUser = (id) => privy.delete(`/users/${id}`);
+/** Search users by term, emails, phone numbers, or wallet addresses. */
+export const searchUsers = (data) => privy.post('/users/search', data);
+/** Add custom metadata to a user. */
+export const addCustomMetadata = (id, data) => privy.patch(`/users/${id}/custom_metadata`, data);
+/** Pregenerate embedded wallets for a user. */
+export const pregenerateWallets = (id, data) => privy.post(`/users/${id}/wallets`, data);

package/dist/core/wallets.d.ts

@@ -0,0 +1,12 @@
+/** Create a wallet. */
+export declare const createWallet: (data: Record<string, unknown>) => Promise<any>;
+/** Get a wallet by ID. */
+export declare const getWallet: (id: string) => Promise<any>;
+/** List all wallets. */
+export declare const listWallets: (params?: Record<string, string>) => Promise<any>;
+/** Get wallet balance. */
+export declare const getWalletBalance: (id: string, params?: Record<string, string>) => Promise<any>;
+/** Get a wallet by address. */
+export declare const getWalletByAddress: (address: string) => Promise<any>;
+/** Create wallets in batch. */
+export declare const batchCreateWallets: (data: Record<string, unknown>) => Promise<any>;

package/dist/core/wallets.js

@@ -0,0 +1,13 @@
+import { privy } from './client.js';
+/** Create a wallet. */
+export const createWallet = (data) => privy.post('/wallets', data);
+/** Get a wallet by ID. */
+export const getWallet = (id) => privy.get(`/wallets/${id}`);
+/** List all wallets. */
+export const listWallets = (params) => privy.get('/wallets', params);
+/** Get wallet balance. */
+export const getWalletBalance = (id, params) => privy.get(`/wallets/${id}/balance`, params);
+/** Get a wallet by address. */
+export const getWalletByAddress = (address) => privy.post('/wallets/address', { address });
+/** Create wallets in batch. */
+export const batchCreateWallets = (data) => privy.post('/wallets/batch', data);

package/dist/index.d.ts

@@ -0,0 +1 @@
+export { privy } from './core/client.js';

package/dist/index.js

@@ -0,0 +1 @@
+export { privy } from './core/client.js';

package/package.json

@@ -0,0 +1,45 @@
+{
+  "name": "pryvy",
+  "version": "0.0.1",
+  "type": "module",
+  "description": "Privy embedded wallets & auth CLI.",
+  "license": "MIT",
+  "keywords": [
+    "privy",
+    "wallets",
+    "auth",
+    "cli",
+    "mcp",
+    "embedded-wallets",
+    "signing",
+    "web3"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/struong/pryvy.git"
+  },
+  "bin": {
+    "pryvy": "./dist/bin.js"
+  },
+  "exports": {
+    ".": "./dist/index.js"
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsc && chmod +x dist/bin.js",
+    "typecheck": "tsc --noEmit",
+    "changeset:version": "changeset version",
+    "changeset:publish": "bun run build && changeset publish"
+  },
+  "dependencies": {
+    "incur": "^0.3.13"
+  },
+  "devDependencies": {
+    "@changesets/changelog-github": "^0.6.0",
+    "@changesets/cli": "^2.30.0",
+    "@types/node": "^22.0.0",
+    "typescript": "^5.7.0"
+  }
+}