npm - solana-messenger-sdk - Versions diffs - 1.5.4 → 1.5.5 - Mend

solana-messenger-sdk 1.5.4 → 1.5.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +40 -5
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -91,18 +91,53 @@ const sig = await conn.sendRawTransaction(signedTxBytes);
 ### Deployment Patterns
-#### 1. Client-Side (True E2E Encryption)
+#### 1. Client-Side with Privy (True E2E Encryption)
-Users hold their own encryption key B on-device. Server never sees plaintext. Maximum privacy.
+Users hold their own encryption key B on-device. Server never sees plaintext. Maximum privacy. Privy handles wallet key A — user never manages raw keys.
 ```
-User Device                          Solana
-├── Wallet key A (or Privy signer)   ├── EncryptionRegistry (pubkey B)
-├── Encryption key B (local)         ├── Messages (encrypted)
+Browser (Client)                     Solana
+├── Privy embedded wallet (A)        ├── EncryptionRegistry (pubkey B)
+├── Encryption key B (localStorage)  ├── Messages (encrypted)
 ├── SDK: encrypt → sign → send       └── Channels, Servers...
 └── SDK: read → decrypt → display
 ```
+```typescript
+import { usePrivy, useWallets } from "@privy-io/react-auth";
+import { SolanaMessenger } from "solana-messenger-sdk";
+// On first login: generate encryption keypair, store in localStorage
+function getOrCreateEncryptionKey(userId: string): Uint8Array {
+  const key = `enc_keypair_${userId}`;
+  const stored = localStorage.getItem(key);
+  if (stored) return new Uint8Array(JSON.parse(stored));
+  const kp = SolanaMessenger.generateEncryptionKeypair();
+  localStorage.setItem(key, JSON.stringify(Array.from(kp.secretKey)));
+  return kp.secretKey;
+}
+// Create messenger with Privy signer + local encryption key
+const { wallets } = useWallets();
+const solWallet = wallets.find(w => w.walletClientType === "privy" && w.chainType === "solana");
+const messenger = new SolanaMessenger({
+  apiKey: HELIUS_API_KEY,
+  walletAddress: solWallet.address,
+  signer: async (tx) => {
+    // Sign with Privy embedded wallet
+    return await solWallet.signTransaction(tx);
+  },
+  encryptionKeypair: getOrCreateEncryptionKey(user.id),
+});
+await messenger.init();
+// Now send/read — Privy signs txs, encryption stays client-side
+await messenger.send(recipient, "truly private message");
+```
+> ✅ **Best privacy:** Privy holds wallet key A (signs txs) but never sees encryption key B. Your server never sees plaintext. Only the user's browser can decrypt messages.
 #### 2. Server-Managed (Slack/Discord Model)
 Server holds both keys per user. Handles all encryption/decryption, pushes plaintext to clients. Users trust the platform.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "solana-messenger-sdk",
-  "version": "1.5.4",
+  "version": "1.5.5",
   "description": "TypeScript SDK for Solana Messenger — encrypted agent-to-agent messaging",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",