solvoid 1.0.0

package/dist/cli/test-forensics.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-forensics.d.ts","sourceRoot":"","sources":["../../cli/test-forensics.ts"],"names":[],"mappings":""}

package/dist/cli/test-forensics.js

@@ -0,0 +1,90 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const privacy_engine_1 = require("../sdk/privacy-engine");
+const web3_js_1 = require("@solana/web3.js");
+// Setup Mock Identity - using valid keys
+// Victim = MemoV1
+const VICTIM_PUBKEY = new web3_js_1.PublicKey("Memo1UhkJRfHyvLMcVucJwxXeuD728EqVDDwQDxFMNo");
+const VICTIM_B58 = VICTIM_PUBKEY.toBase58();
+// Attacker = MemoV2
+const ATTACKER = "MemoSq4gqABAXKb96qnH8TysNcWxMyWCqXgDLGmfcHr";
+// Program = Token Program
+const PROGRAM_ID = "TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA";
+// PDA = Goki (Arbitrary valid key)
+const PDA_ACCOUNT = "GokivDYuQXPZCWRkwMhdH2h91KpDQXBEmpgBgs55bnpH";
+// Transaction that defines the "User" context
+const tx = {
+    signatures: ["sig_forensic"],
+    message: {
+        accountKeys: [ATTACKER, VICTIM_B58, PROGRAM_ID, PDA_ACCOUNT],
+        header: {
+            numRequiredSignatures: 2, // Attacker is likely FeePayer here contextually but let's say Victim signed too
+            numReadonlySignedAccounts: 0,
+            numReadonlyUnsignedAccounts: 1
+        },
+        instructions: [
+            { programIdIndex: 2, accounts: [1, 3], data: "AQ==" } // Interact with Program, passing Victim(1) and PDA(3)
+        ]
+    }
+};
+// Construct Malicious State Data
+// [8 bytes discriminator] + [32 bytes innocent] + [32 bytes VICTIM KEY] + [End]
+const innocentBytes = Buffer.alloc(32).fill(0xAA);
+const victimBytes = VICTIM_PUBKEY.toBuffer();
+const maliciousState = Buffer.concat([
+    Buffer.from("12345678", "hex"), // Discriminator
+    innocentBytes,
+    victimBytes, // <--- THE LEAK
+    Buffer.from("DEADBEEF", "hex")
+]);
+const events = {
+    signature: "sig_forensic",
+    accountUpdates: [
+        {
+            pubkey: PDA_ACCOUNT,
+            owner: PROGRAM_ID,
+            lamports: 1000000,
+            data: maliciousState.toString('base64'),
+            executable: false,
+            rentEpoch: 0,
+            writeVersion: 1
+        },
+        // Also include a "Safe" update (User updating their own account)
+        {
+            pubkey: VICTIM_B58, // Updating self
+            owner: "11111111111111111111111111111111", // System Owned usually
+            lamports: 900000,
+            data: victimBytes.toString('base64'), // Contains own key obviously
+            executable: false,
+            rentEpoch: 0,
+            writeVersion: 2
+        }
+    ]
+};
+function runForensicTest() {
+    console.log("--- Running Forensic Analysis (Phase 4) ---");
+    const engine = new privacy_engine_1.PrivacyEngine();
+    // 1. Analyze
+    const leaks = engine.analyzeGeyserEvents(tx, events);
+    // 2. Report
+    if (leaks.length > 0) {
+        console.log(`✅ FOUND ${leaks.length} LEAKS (Expected 1 Critical State Leak):`);
+        leaks.forEach((l) => {
+            console.log(`   [${l.type.toUpperCase()}] Severity: ${l.severity || "Medium"}`);
+            console.log(`   Scope: ${l.scope}`);
+            console.log(`   Desc:  ${l.description}`);
+            if (l.type === 'state-leak' && l.scope.includes(PDA_ACCOUNT)) {
+                console.log("   -> VERIFIED: Successfully detected binary leak in PDA.");
+            }
+            if (l.scope.includes(VICTIM_B58)) {
+                console.log("   -> CHECK: Did we flag the user's own account? (Should NOT happen).");
+            }
+        });
+    }
+    else {
+        console.log("❌ FAILED: No leaks detected in forensic scan.");
+        process.exit(1);
+    }
+}
+runForensicTest();
+//# sourceMappingURL=test-forensics.js.map

package/dist/cli/test-forensics.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-forensics.js","sourceRoot":"","sources":["../../cli/test-forensics.ts"],"names":[],"mappings":";;AAAA,0DAAsD;AAEtD,6CAA4C;AAE5C,yCAAyC;AACzC,kBAAkB;AAClB,MAAM,aAAa,GAAG,IAAI,mBAAS,CAAC,6CAA6C,CAAC,CAAC;AACnF,MAAM,UAAU,GAAG,aAAa,CAAC,QAAQ,EAAE,CAAC;AAE5C,oBAAoB;AACpB,MAAM,QAAQ,GAAG,6CAA6C,CAAC;AAE/D,0BAA0B;AAC1B,MAAM,UAAU,GAAG,6CAA6C,CAAC;AAEjE,mCAAmC;AACnC,MAAM,WAAW,GAAG,8CAA8C,CAAC;AAEnE,8CAA8C;AAC9C,MAAM,EAAE,GAAoB;IACxB,UAAU,EAAE,CAAC,cAAc,CAAC;IAC5B,OAAO,EAAE;QACL,WAAW,EAAE,CAAC,QAAQ,EAAE,UAAU,EAAE,UAAU,EAAE,WAAW,CAAC;QAC5D,MAAM,EAAE;YACJ,qBAAqB,EAAE,CAAC,EAAE,gFAAgF;YAC1G,yBAAyB,EAAE,CAAC;YAC5B,2BAA2B,EAAE,CAAC;SACjC;QACD,YAAY,EAAE;YACV,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,sDAAsD;SAC/G;KACJ;CACJ,CAAC;AAEF,iCAAiC;AACjC,gFAAgF;AAChF,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAClD,MAAM,WAAW,GAAG,aAAa,CAAC,QAAQ,EAAE,CAAC;AAC7C,MAAM,cAAc,GAAG,MAAM,CAAC,MAAM,CAAC;IACjC,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,KAAK,CAAC,EAAE,gBAAgB;IAChD,aAAa;IACb,WAAW,EAAE,gBAAgB;IAC7B,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,KAAK,CAAC;CACjC,CAAC,CAAC;AAEH,MAAM,MAAM,GAA4B;IAEpC,SAAS,EAAE,cAAc;IACzB,cAAc,EAAE;QACZ;YACI,MAAM,EAAE,WAAW;YACnB,KAAK,EAAE,UAAU;YACjB,QAAQ,EAAE,OAAO;YACjB,IAAI,EAAE,cAAc,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACvC,UAAU,EAAE,KAAK;YACjB,SAAS,EAAE,CAAC;YACZ,YAAY,EAAE,CAAC;SAClB;QACD,iEAAiE;QACjE;YACI,MAAM,EAAE,UAAU,EAAE,gBAAgB;YACpC,KAAK,EAAE,kCAAkC,EAAE,uBAAuB;YAClE,QAAQ,EAAE,MAAM;YAChB,IAAI,EAAE,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,6BAA6B;YACnE,UAAU,EAAE,KAAK;YACjB,SAAS,EAAE,CAAC;YACZ,YAAY,EAAE,CAAC;SAClB;KACJ;CACJ,CAAC;AAEF,SAAS,eAAe;IACpB,OAAO,CAAC,GAAG,CAAC,6CAA6C,CAAC,CAAC;IAC3D,MAAM,MAAM,GAAG,IAAI,8BAAa,EAAE,CAAC;IAEnC,aAAa;IACb,MAAM,KAAK,GAAG,MAAM,CAAC,mBAAmB,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IAErD,YAAY;IACZ,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnB,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,CAAC,MAAM,0CAA0C,CAAC,CAAC;QAC/E,KAAK,CAAC,OAAO,CAAC,CAAC,CAAO,EAAE,EAAE;YACtB,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,WAAW,EAAE,eAAe,CAAC,CAAC,QAAQ,IAAI,QAAQ,EAAE,CAAC,CAAC;YAChF,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;YACpC,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;YAE1C,IAAI,CAAC,CAAC,IAAI,KAAK,YAAY,IAAI,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;gBAC3D,OAAO,CAAC,GAAG,CAAC,2DAA2D,CAAC,CAAC;YAC7E,CAAC;YACD,IAAI,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;gBAC/B,OAAO,CAAC,GAAG,CAAC,uEAAuE,CAAC,CAAC;YACzF,CAAC;QACL,CAAC,CAAC,CAAC;IACP,CAAC;SAAM,CAAC;QACJ,OAAO,CAAC,GAAG,CAAC,+CAA+C,CAAC,CAAC;QAC7D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACpB,CAAC;AACL,CAAC;AAED,eAAe,EAAE,CAAC"}

package/dist/cli/test-scenarios.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=test-scenarios.d.ts.map

package/dist/cli/test-scenarios.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-scenarios.d.ts","sourceRoot":"","sources":["../../cli/test-scenarios.ts"],"names":[],"mappings":""}

package/dist/cli/test-scenarios.js

@@ -0,0 +1,96 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const privacy_engine_1 = require("../sdk/privacy-engine");
+const MEMO_V1 = "Memo1UhkJRfHyvLMcVucJwxXeuD728EqVDDwQDxFMNo";
+const MEMO_V2 = "MemoSq4gqABAXKb96qnH8TysNcWxMyWCqXgDLGmfcHr";
+const SQUADS_ID = "SMPLecH534NA9acpos4G6x7uf3LWbCAwZQE9e8ZekMu";
+const SYSTEM_PROGRAM = "11111111111111111111111111111111";
+const PROXY_PROGRAM = "Proxy11111111111111111111111111111111111111";
+const VICTIM = "VictimUserAddress11111111111111111111111111";
+const ATTACKER = "AttackerAddress111111111111111111111111111";
+function logTest(name, tx) {
+    console.log(`\n--- Running Test: ${name} ---`);
+    const engine = new privacy_engine_1.PrivacyEngine();
+    const leaks = engine.analyzeTransaction(tx);
+    if (leaks.length > 0) {
+        console.log(`✅ DETECTED ${leaks.length} LEAKS:`);
+        leaks.forEach((l) => console.log(`   [${l.type}] ${l.scope} \n   Description: ${l.description}`));
+    }
+    else {
+        console.log("❌ FAILED: No leaks detected!");
+    }
+}
+// Test 1: Nested Memo via CPI
+const test1 = {
+    signatures: ["sig1"],
+    message: {
+        accountKeys: [ATTACKER, VICTIM, SYSTEM_PROGRAM, PROXY_PROGRAM, MEMO_V2],
+        header: { numRequiredSignatures: 1, numReadonlySignedAccounts: 0, numReadonlyUnsignedAccounts: 3 },
+        instructions: [
+            { programIdIndex: 2, accounts: [0, 1], data: "" }, // System Transfer
+            { programIdIndex: 3, accounts: [1], data: "AQ==" } // Proxy Call
+        ]
+    },
+    meta: {
+        innerInstructions: [
+            {
+                index: 1, // Inside Proxy Call
+                instructions: [
+                    { programIdIndex: 4, accounts: [], data: Buffer.from("Secret Data").toString('base64') } // Call Memo v2
+                ]
+            }
+        ]
+    }
+};
+// Test 2: Memo v1 Evasion
+const test2 = {
+    signatures: ["sig2"],
+    message: {
+        accountKeys: [ATTACKER, MEMO_V1],
+        header: { numRequiredSignatures: 1, numReadonlySignedAccounts: 0, numReadonlyUnsignedAccounts: 1 },
+        instructions: [
+            { programIdIndex: 1, accounts: [], data: Buffer.from("Secret V1 Data").toString('base64') }
+        ]
+    }
+};
+// Test 3: Double-Nested CPI
+const test3 = {
+    signatures: ["sig3"],
+    message: {
+        accountKeys: [ATTACKER, PROXY_PROGRAM, "IntermediateProg...", MEMO_V2],
+        header: { numRequiredSignatures: 1, numReadonlySignedAccounts: 0, numReadonlyUnsignedAccounts: 3 },
+        instructions: [
+            { programIdIndex: 1, accounts: [], data: "" } // Call Proxy
+        ]
+    },
+    meta: {
+        innerInstructions: [
+            {
+                index: 0, // Inside Proxy
+                instructions: [
+                    { programIdIndex: 2, accounts: [], data: "" }, // Proxy Calls Intermediate
+                    { programIdIndex: 3, accounts: [], data: Buffer.from("Deep Secret").toString('base64') } // Intermediate Calls Memo
+                ]
+            }
+        ]
+    }
+};
+// Test 4: Account Abstraction (Data Leak)
+// Fee Payer = Squads (Index 0)
+// Real User = Victim (Index 1) -> Signer
+const test4 = {
+    signatures: ["sig4"],
+    message: {
+        accountKeys: [SQUADS_ID, VICTIM, MEMO_V2],
+        header: { numRequiredSignatures: 2, numReadonlySignedAccounts: 0, numReadonlyUnsignedAccounts: 1 },
+        instructions: [
+            // Instruction: Memo program with data that includes VICTIM address
+            { programIdIndex: 2, accounts: [], data: Buffer.from(`User Metadata: ${VICTIM}`).toString('base64') }
+        ]
+    }
+};
+logTest("1. Nested Memo via CPI", test1);
+logTest("2. Memo v1 Evasion", test2);
+logTest("3. Double-Nested CPI", test3);
+logTest("4. Account Abstraction (Data Leak)", test4);
+//# sourceMappingURL=test-scenarios.js.map

package/dist/cli/test-scenarios.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-scenarios.js","sourceRoot":"","sources":["../../cli/test-scenarios.ts"],"names":[],"mappings":";;AAAA,0DAAsD;AAGtD,MAAM,OAAO,GAAG,6CAA6C,CAAC;AAC9D,MAAM,OAAO,GAAG,6CAA6C,CAAC;AAC9D,MAAM,SAAS,GAAG,6CAA6C,CAAC;AAChE,MAAM,cAAc,GAAG,kCAAkC,CAAC;AAC1D,MAAM,aAAa,GAAG,6CAA6C,CAAC;AAEpE,MAAM,MAAM,GAAG,6CAA6C,CAAC;AAC7D,MAAM,QAAQ,GAAG,4CAA4C,CAAC;AAE9D,SAAS,OAAO,CAAC,IAAY,EAAE,EAAmB;IAC9C,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,MAAM,CAAC,CAAC;IAC/C,MAAM,MAAM,GAAG,IAAI,8BAAa,EAAE,CAAC;IACnC,MAAM,KAAK,GAAG,MAAM,CAAC,kBAAkB,CAAC,EAAE,CAAC,CAAC;IAE5C,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnB,OAAO,CAAC,GAAG,CAAC,cAAc,KAAK,CAAC,MAAM,SAAS,CAAC,CAAC;QACjD,KAAK,CAAC,OAAO,CAAC,CAAC,CAAO,EAAE,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,KAAK,sBAAsB,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;IAC5G,CAAC;SAAM,CAAC;QACJ,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;IAChD,CAAC;AACL,CAAC;AAED,8BAA8B;AAC9B,MAAM,KAAK,GAAoB;IAC3B,UAAU,EAAE,CAAC,MAAM,CAAC;IACpB,OAAO,EAAE;QACL,WAAW,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,cAAc,EAAE,aAAa,EAAE,OAAO,CAAC;QACvE,MAAM,EAAE,EAAE,qBAAqB,EAAE,CAAC,EAAE,yBAAyB,EAAE,CAAC,EAAE,2BAA2B,EAAE,CAAC,EAAE;QAClG,YAAY,EAAE;YACV,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,kBAAkB;YACrE,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,aAAa;SACnE;KACJ;IACD,IAAI,EAAE;QACF,iBAAiB,EAAE;YACf;gBACI,KAAK,EAAE,CAAC,EAAE,oBAAoB;gBAC9B,YAAY,EAAE;oBACV,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC,eAAe;iBAC3G;aACJ;SACJ;KACJ;CACJ,CAAC;AAEF,0BAA0B;AAC1B,MAAM,KAAK,GAAoB;IAC3B,UAAU,EAAE,CAAC,MAAM,CAAC;IACpB,OAAO,EAAE;QACL,WAAW,EAAE,CAAC,QAAQ,EAAE,OAAO,CAAC;QAChC,MAAM,EAAE,EAAE,qBAAqB,EAAE,CAAC,EAAE,yBAAyB,EAAE,CAAC,EAAE,2BAA2B,EAAE,CAAC,EAAE;QAClG,YAAY,EAAE;YACV,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE;SAC9F;KACJ;CACJ,CAAC;AAEF,4BAA4B;AAC5B,MAAM,KAAK,GAAoB;IAC3B,UAAU,EAAE,CAAC,MAAM,CAAC;IACpB,OAAO,EAAE;QACL,WAAW,EAAE,CAAC,QAAQ,EAAE,aAAa,EAAE,qBAAqB,EAAE,OAAO,CAAC;QACtE,MAAM,EAAE,EAAE,qBAAqB,EAAE,CAAC,EAAE,yBAAyB,EAAE,CAAC,EAAE,2BAA2B,EAAE,CAAC,EAAE;QAClG,YAAY,EAAE;YACV,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,aAAa;SAC9D;KACJ;IACD,IAAI,EAAE;QACF,iBAAiB,EAAE;YACf;gBACI,KAAK,EAAE,CAAC,EAAE,eAAe;gBACzB,YAAY,EAAE;oBACV,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,2BAA2B;oBAC1E,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC,0BAA0B;iBACtH;aACJ;SACJ;KACJ;CACJ,CAAC;AAEF,0CAA0C;AAC1C,+BAA+B;AAC/B,yCAAyC;AACzC,MAAM,KAAK,GAAoB;IAC3B,UAAU,EAAE,CAAC,MAAM,CAAC;IACpB,OAAO,EAAE;QACL,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC;QACzC,MAAM,EAAE,EAAE,qBAAqB,EAAE,CAAC,EAAE,yBAAyB,EAAE,CAAC,EAAE,2BAA2B,EAAE,CAAC,EAAE;QAClG,YAAY,EAAE;YACV,mEAAmE;YACnE,EAAE,cAAc,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,kBAAkB,MAAM,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE;SACxG;KACJ;CACJ,CAAC;AAEF,OAAO,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC;AACzC,OAAO,CAAC,oBAAoB,EAAE,KAAK,CAAC,CAAC;AACrC,OAAO,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;AACvC,OAAO,CAAC,oCAAoC,EAAE,KAAK,CAAC,CAAC"}

package/dist/examples/enterprise-demo.js

@@ -0,0 +1,65 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const client_1 = require("../sdk/client"); // Adjust path
+// Mock Config
+const client = new client_1.PrivacyZeroClient({
+    rpcUrl: "https://api.mainnet-beta.solana.com", // Dummy
+    modules: {
+        semantic: true, // We want to test this
+        mev: true
+    }
+});
+// Mock Transaction: A User (FeePayer) calling "Super Swap"
+// User Wallet: 5ZwJ... (Mock) -> Index 0
+const USER_WALLET = "5ZwJqpwa5u4...UserWallet";
+const DEFI_PROGRAM = "DeFi111111111111111111111111111111111111111"; // Matches Mock Registry
+// Instruction Data for "swap"
+// Discriminator: [100, 100, 100, 100, 100, 100, 100, 100]
+// Arg1 (amount_in u64): 5000 (LE) -> 88 13 00 00 00 00 00 00
+// Arg2 (min_out u64): 0 -> 00 00 00 00 00 00 00 00
+// Total: Disc + 16 bytes.
+const disc = Buffer.alloc(8, 100);
+const arg1 = Buffer.alloc(8);
+arg1.writeBigUInt64LE(5000n);
+const arg2 = Buffer.alloc(8);
+const data = Buffer.concat([disc, arg1, arg2]);
+const transaction = {
+    message: {
+        header: {
+            numRequiredSignatures: 1,
+            numReadonlySignedAccounts: 0,
+            numReadonlyUnsignedAccounts: 3
+        },
+        accountKeys: [
+            USER_WALLET, // 0: Signer/Payer
+            "PoolSourceAdd", // 1: Writable
+            "PoolDestAdd", // 2: Writable
+            "UserDestAdd", // 3: Writable
+            DEFI_PROGRAM // 4: Program
+        ],
+        instructions: [
+            {
+                programIdIndex: 4, // DeFi Program
+                accounts: [0, 0, 1, 2, 3], // 0 is authority. 0 is also user_source.
+                data: data.toString('base64')
+            }
+        ]
+    },
+    signatures: ["sig1"]
+};
+async function runTest() {
+    console.log("Starting Enterprise Scan...");
+    const report = await client.scan(transaction);
+    console.log("--- GOVERNANCE REPORT ---");
+    console.log("Status:", report.status);
+    console.log("Score:", report.privacyScore);
+    console.log("\n--- UNACCEPTED LIABILITIES ---");
+    report.unacceptedLiabilities.forEach(l => {
+        console.log(`[${l.leak.severity}] ${l.leak.type}: ${l.leak.description}`);
+        console.log(`Recommendation: ${l.leak.remediation}`);
+        if (l.leak.context)
+            console.log("Context:", l.leak.context);
+        console.log("-");
+    });
+}
+runTest();

package/dist/sdk/client.d.ts

@@ -0,0 +1,77 @@
+import { PublicKey } from '@solana/web3.js';
+export interface SolVoidConfig {
+    rpcUrl: string;
+    programId: string;
+    relayerUrl?: string;
+    mock?: boolean;
+}
+/**
+ * SolVoidClient
+ * High-level orchestration for scanning, shielding, and ZK-withdrawals.
+ */
+export declare class SolVoidClient {
+    private pipeline;
+    private passport;
+    private shadow;
+    private connection;
+    private protocolShield;
+    private config;
+    constructor(config: SolVoidConfig, wallet: any);
+    /**
+     * Scans an address for privacy leaks and prepares remediation shielding.
+     */
+    protect(address: PublicKey): Promise<any>;
+    /**
+     * Retrieve local scoring history and earned badges for a wallet.
+     */
+    getPassport(address: string): Promise<import("./passport/manager").PrivacyPassport>;
+    /**
+     * Automatic scan and atomic shield for all tainted assets.
+     */
+    rescue(address: PublicKey): Promise<{
+        status: string;
+        txid: string;
+        leakedAssets: {
+            mint: string;
+            amount: number;
+        }[];
+        oldScore: number;
+        newScore: number;
+        message?: undefined;
+    } | {
+        status: string;
+        message: string;
+        txid?: undefined;
+        leakedAssets?: undefined;
+        oldScore?: undefined;
+        newScore?: undefined;
+    } | {
+        status: string;
+        txid: string;
+        leakedAssets: import("./rescue/analyzer").LeakedAsset[];
+        oldScore: any;
+        newScore: number;
+        message?: undefined;
+    }>;
+    /**
+     * Directly shields an amount of SOL.
+     */
+    shield(_amount: number): Promise<{
+        txid: string;
+        commitmentData: {
+            secret: NonSharedBuffer;
+            nullifier: NonSharedBuffer;
+            commitment: NonSharedBuffer;
+            nullifierHash: NonSharedBuffer;
+            commitmentHex: string;
+        };
+    }>;
+    /**
+     * End-to-end withdrawal: Merkle proof -> ZK-proof -> On-chain broadcast.
+     */
+    withdraw(secretHex: string, nullifierHex: string, recipient: PublicKey, allCommitments: Buffer[], wasmPath: string, zkeyPath: string, relayerSigner: any, fee?: number): Promise<string | {
+        status: string;
+        signature: string;
+    }>;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/sdk/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../sdk/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAUxD,MAAM,WAAW,aAAa;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,OAAO,CAAC;CAClB;AAED;;;GAGG;AACH,qBAAa,aAAa;IACtB,OAAO,CAAC,QAAQ,CAAkB;IAClC,OAAO,CAAC,QAAQ,CAAkB;IAClC,OAAO,CAAC,MAAM,CAAY;IAC1B,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,cAAc,CAAgB;IAEtC,OAAO,CAAC,MAAM,CAAgB;gBAElB,MAAM,EAAE,aAAa,EAAE,MAAM,EAAE,GAAG;IA0B9C;;OAEG;IACU,OAAO,CAAC,OAAO,EAAE,SAAS;IA6BvC;;OAEG;IACU,WAAW,CAAC,OAAO,EAAE,MAAM;IAIxC;;OAEG;IACU,MAAM,CAAC,OAAO,EAAE,SAAS;;;;;;;;;;;;;;;;;;;;;;;;;IAkCtC;;OAEG;IACU,MAAM,CAAC,OAAO,EAAE,MAAM;;;;;;;;;;IASnC;;OAEG;IACU,QAAQ,CACjB,SAAS,EAAE,MAAM,EACjB,YAAY,EAAE,MAAM,EACpB,SAAS,EAAE,SAAS,EACpB,cAAc,EAAE,MAAM,EAAE,EACxB,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,MAAM,EAChB,aAAa,EAAE,GAAG,EAClB,GAAG,GAAE,MAAU;;;;CAgCtB"}

package/dist/sdk/client.js

@@ -0,0 +1,180 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SolVoidClient = void 0;
+const web3_js_1 = require("@solana/web3.js");
+const shield_1 = require("./privacy/shield");
+const pipeline_1 = require("./pipeline");
+const analyzer_1 = require("./rescue/analyzer");
+const builder_1 = require("./rescue/builder");
+const manager_1 = require("./passport/manager");
+const shadow_rpc_1 = require("./network/shadow-rpc");
+const crypto = __importStar(require("crypto"));
+const winston_1 = __importDefault(require("winston"));
+/**
+ * SolVoidClient
+ * High-level orchestration for scanning, shielding, and ZK-withdrawals.
+ */
+class SolVoidClient {
+    constructor(config, wallet) {
+        this.config = config;
+        this.connection = new web3_js_1.Connection(config.rpcUrl, 'confirmed');
+        this.passport = new manager_1.PassportManager();
+        const logger = winston_1.default.createLogger({
+            level: 'info',
+            transports: [new winston_1.default.transports.Console()]
+        });
+        this.shadow = new shadow_rpc_1.ShadowRPC(this.connection, logger);
+        const idl = {
+            version: "0.1.0",
+            name: "solvoid",
+            instructions: [
+                { name: "initialize", accounts: [{ name: "state", isMut: true, isSigner: false }, { name: "admin", isMut: true, isSigner: true }, { name: "systemProgram", isMut: false, isSigner: false }], args: [{ name: "amount", type: "u64" }] },
+                { name: "deposit", accounts: [{ name: "state", isMut: true, isSigner: false }, { name: "depositor", isMut: true, isSigner: true }, { name: "vault", isMut: true, isSigner: false }, { name: "systemProgram", isMut: false, isSigner: false }], args: [{ name: "commitment", type: { array: ["u8", 32] } }] },
+                { name: "withdraw", accounts: [{ name: "state", isMut: true, isSigner: false }, { name: "vault", isMut: true, isSigner: false }, { name: "recipient", isMut: true, isSigner: false }, { name: "nullifierRecord", isMut: true, isSigner: false }, { name: "relayer", isMut: true, isSigner: true }, { name: "systemProgram", isMut: false, isSigner: false }], args: [{ name: "nullifierHash", type: { array: ["u8", 32] } }, { name: "root", type: { array: ["u8", 32] } }, { name: "proof", type: "bytes" }, { name: "fee", type: "u64" }] }
+            ],
+            address: config.programId
+        };
+        this.protocolShield = new shield_1.PrivacyShield(this.connection, config.programId, idl, wallet);
+        this.pipeline = new pipeline_1.PrivacyPipeline(this.connection, this.protocolShield);
+    }
+    /**
+     * Scans an address for privacy leaks and prepares remediation shielding.
+     */
+    async protect(address) {
+        if (this.config.mock) {
+            const mockResult = [{
+                    signature: '5Qw...zX9',
+                    privacyScore: 42,
+                    leaks: [
+                        {
+                            type: 'identity',
+                            scope: 'funding',
+                            visibility: 'PUBLIC',
+                            severity: 'CRITICAL',
+                            description: 'Identity linked to Binance via Jupiter swap.'
+                        }
+                    ]
+                }];
+            this.passport.updateScore(address.toBase58(), 42);
+            return mockResult;
+        }
+        const results = await this.pipeline.processAddress(address);
+        // Update passport score automatically
+        if (results.length > 0) {
+            const avgScore = results.reduce((acc, r) => acc + r.privacyScore, 0) / results.length;
+            this.passport.updateScore(address.toBase58(), avgScore);
+        }
+        return results;
+    }
+    /**
+     * Retrieve local scoring history and earned badges for a wallet.
+     */
+    async getPassport(address) {
+        return this.passport.getPassport(address);
+    }
+    /**
+     * Automatic scan and atomic shield for all tainted assets.
+     */
+    async rescue(address) {
+        if (this.config.mock) {
+            return {
+                status: 'success',
+                txid: '5eYk...zVq',
+                leakedAssets: [{ mint: 'So111...112', amount: 1000000000 }],
+                oldScore: 42,
+                newScore: 95
+            };
+        }
+        // 1. Scan for leaks
+        const results = await this.protect(address);
+        const allLeaks = results.flatMap((r) => r.leaks);
+        // 2. Identify Leaked Assets
+        const leakedAssets = analyzer_1.RescueAnalyzer.identifyLeakedAssets(allLeaks);
+        if (leakedAssets.length === 0)
+            return { status: 'secure', message: 'No leaked assets found.' };
+        // 3. Build Atomic Rescue Transaction
+        const builder = new builder_1.RescueBuilder(this.connection, this.protocolShield);
+        const rescueTx = await builder.buildAtomicRescueTx(address, leakedAssets);
+        // Broadcast via the relay network to hide IP
+        const txid = await this.shadow.broadcastPrivately(rescueTx, { hops: 3, stealthMode: true });
+        return {
+            status: 'success',
+            txid,
+            leakedAssets,
+            oldScore: results.length > 0 ? results[0].privacyScore : 100,
+            newScore: 95
+        };
+    }
+    /**
+     * Directly shields an amount of SOL.
+     */
+    async shield(_amount) {
+        const commitmentData = this.protocolShield.generateCommitment();
+        if (this.config.mock) {
+            return { txid: '4RzV...aB2', commitmentData };
+        }
+        const txid = await this.protocolShield.deposit(commitmentData.commitment);
+        return { txid, commitmentData };
+    }
+    /**
+     * End-to-end withdrawal: Merkle proof -> ZK-proof -> On-chain broadcast.
+     */
+    async withdraw(secretHex, nullifierHex, recipient, allCommitments, wasmPath, zkeyPath, relayerSigner, fee = 0) {
+        if (this.config.mock) {
+            return { status: 'success', signature: '3mKj...nP5' };
+        }
+        const secret = Buffer.from(secretHex, 'hex');
+        const nullifier = Buffer.from(nullifierHex, 'hex');
+        // Generate proof of membership in the commitment pool
+        const commitment = crypto.createHash('sha256').update(Buffer.concat([secret, nullifier])).digest();
+        const index = allCommitments.findIndex(c => c.equals(commitment));
+        if (index === -1)
+            throw new Error("Commitment not found in state");
+        const merklePath = await this.protocolShield.getMerkleProof(index, allCommitments);
+        // Final root used for ZK verification
+        const root = Buffer.alloc(32); // Placeholder for root calculation logic
+        // 3. Generate ZK-Proof
+        const { proof } = await this.protocolShield.generateZKProof(secret, nullifier, root, merklePath, wasmPath, zkeyPath);
+        // 4. Submit to blockchain (or relayer)
+        const nullifierHash = crypto.createHash('sha256').update(nullifier).digest();
+        return await this.protocolShield.withdraw(nullifierHash, root, [proof], recipient, relayerSigner, fee);
+    }
+}
+exports.SolVoidClient = SolVoidClient;
+//# sourceMappingURL=client.js.map

package/dist/sdk/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../sdk/client.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6CAAwD;AACxD,6CAAiD;AACjD,yCAA6C;AAC7C,gDAAmD;AACnD,8CAAiD;AACjD,gDAAqD;AACrD,qDAAiD;AACjD,+CAAiC;AACjC,sDAA8B;AAS9B;;;GAGG;AACH,MAAa,aAAa;IAStB,YAAY,MAAqB,EAAE,MAAW;QAC1C,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,UAAU,GAAG,IAAI,oBAAU,CAAC,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;QAC7D,IAAI,CAAC,QAAQ,GAAG,IAAI,yBAAe,EAAE,CAAC;QAEtC,MAAM,MAAM,GAAG,iBAAO,CAAC,YAAY,CAAC;YAChC,KAAK,EAAE,MAAM;YACb,UAAU,EAAE,CAAC,IAAI,iBAAO,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;SACjD,CAAC,CAAC;QACH,IAAI,CAAC,MAAM,GAAG,IAAI,sBAAS,CAAC,IAAI,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;QAErD,MAAM,GAAG,GAAQ;YACb,OAAO,EAAE,OAAO;YAChB,IAAI,EAAE,SAAS;YACf,YAAY,EAAE;gBACV,EAAE,IAAI,EAAE,YAAY,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,EAAE;gBACtO,EAAE,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,EAAE;gBAC5S,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,iBAAiB,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,EAAE;aAChhB;YACD,OAAO,EAAE,MAAM,CAAC,SAAS;SAC5B,CAAC;QAEF,IAAI,CAAC,cAAc,GAAG,IAAI,sBAAa,CAAC,IAAI,CAAC,UAAU,EAAE,MAAM,CAAC,SAAS,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QACxF,IAAI,CAAC,QAAQ,GAAG,IAAI,0BAAe,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;IAC9E,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,OAAO,CAAC,OAAkB;QACnC,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YACnB,MAAM,UAAU,GAAG,CAAC;oBAChB,SAAS,EAAE,WAAW;oBACtB,YAAY,EAAE,EAAE;oBAChB,KAAK,EAAE;wBACH;4BACI,IAAI,EAAE,UAAiB;4BACvB,KAAK,EAAE,SAAS;4BAChB,UAAU,EAAE,QAAe;4BAC3B,QAAQ,EAAE,UAAiB;4BAC3B,WAAW,EAAE,8CAA8C;yBAC9D;qBACJ;iBACJ,CAAC,CAAC;YACH,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;YAClD,OAAO,UAAiB,CAAC;QAC7B,CAAC;QACD,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAE5D,sCAAsC;QACtC,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC;YACtF,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,QAAQ,CAAC,CAAC;QAC5D,CAAC;QAED,OAAO,OAAO,CAAC;IACnB,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,WAAW,CAAC,OAAe;QACpC,OAAO,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;IAC9C,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,MAAM,CAAC,OAAkB;QAClC,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YACnB,OAAO;gBACH,MAAM,EAAE,SAAS;gBACjB,IAAI,EAAE,YAAY;gBAClB,YAAY,EAAE,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;gBAC3D,QAAQ,EAAE,EAAE;gBACZ,QAAQ,EAAE,EAAE;aACf,CAAC;QACN,CAAC;QACD,oBAAoB;QACpB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAC5C,MAAM,QAAQ,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;QAEtD,4BAA4B;QAC5B,MAAM,YAAY,GAAG,yBAAc,CAAC,oBAAoB,CAAC,QAAQ,CAAC,CAAC;QACnE,IAAI,YAAY,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,yBAAyB,EAAE,CAAC;QAE/F,qCAAqC;QACrC,MAAM,OAAO,GAAG,IAAI,uBAAa,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;QACxE,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,mBAAmB,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;QAE1E,6CAA6C;QAC7C,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,QAAQ,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC;QAE5F,OAAO;YACH,MAAM,EAAE,SAAS;YACjB,IAAI;YACJ,YAAY;YACZ,QAAQ,EAAE,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,GAAG;YAC5D,QAAQ,EAAE,EAAE;SACf,CAAC;IACN,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,MAAM,CAAC,OAAe;QAC/B,MAAM,cAAc,GAAG,IAAI,CAAC,cAAc,CAAC,kBAAkB,EAAE,CAAC;QAChE,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YACnB,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,cAAc,EAAE,CAAC;QAClD,CAAC;QACD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;QAC1E,OAAO,EAAE,IAAI,EAAE,cAAc,EAAE,CAAC;IACpC,CAAC;IAED;;OAEG;IACI,KAAK,CAAC,QAAQ,CACjB,SAAiB,EACjB,YAAoB,EACpB,SAAoB,EACpB,cAAwB,EACxB,QAAgB,EAChB,QAAgB,EAChB,aAAkB,EAClB,MAAc,CAAC;QAEf,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YACnB,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,YAAY,EAAE,CAAC;QAC1D,CAAC;QACD,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;QAC7C,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QAEnD,sDAAsD;QACtD,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;QACnG,MAAM,KAAK,GAAG,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC;QAClE,IAAI,KAAK,KAAK,CAAC,CAAC;YAAE,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;QAEnE,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,cAAc,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;QAEnF,sCAAsC;QACtC,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,yCAAyC;QAExE,uBAAuB;QACvB,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,eAAe,CACvD,MAAM,EACN,SAAS,EACT,IAAI,EACJ,UAAU,EACV,QAAQ,EACR,QAAQ,CACX,CAAC;QAEF,uCAAuC;QACvC,MAAM,aAAa,GAAG,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,MAAM,EAAE,CAAC;QAC7E,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,aAAa,EAAE,IAAI,EAAE,CAAC,KAAK,CAAC,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,CAAC,CAAC;IAC3G,CAAC;CACJ;AAtKD,sCAsKC"}

package/dist/sdk/compliance/identity.d.ts

@@ -0,0 +1,34 @@
+import { TransactionJSON, Leak } from '../types';
+export declare class IdentityComplianceConfig {
+    requireCivicPass: boolean;
+    allowedCountries: string[];
+    constructor(requireCivicPass?: boolean, allowedCountries?: string[]);
+}
+export declare class IdentityManager {
+    /**
+     * Checks if a transaction interacts with regulated protocols.
+     *
+     * @todo INTEGRATION REQUIRED: This method is a stub.
+     * Real implementation requires integration with:
+     * 1. Civic Gateway (Identity/KYC checks)
+     * 2. TRM Labs / Chainalysis (Sanctions Screening)
+     * 3. On-chain Allowlist Providers
+     */
+    checkCompliance(_tx: TransactionJSON, _config: IdentityComplianceConfig): Promise<Leak[]>;
+    /**
+     * Returns a list of integrations required to enable full compliance mode.
+     */
+    getRequiredIntegrations(): string[];
+    /**
+     * Generates a "Selective Disclosure" proof.
+     * @deprecated Stub implementation. Use @civic/solana-gateway-react for real proofs.
+     */
+    generateDisclosure(_credentialType: string): {
+        proof: string;
+        claim: string;
+    };
+}
+export declare class MultisigMonitor {
+    analyzeMultisigPrivacy(_multisigAddress: string): Promise<Leak[]>;
+}
+//# sourceMappingURL=identity.d.ts.map

package/dist/sdk/compliance/identity.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.d.ts","sourceRoot":"","sources":["../../../sdk/compliance/identity.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,IAAI,EAAE,MAAM,UAAU,CAAC;AAEjD,qBAAa,wBAAwB;IAEtB,gBAAgB,EAAE,OAAO;IACzB,gBAAgB,EAAE,MAAM,EAAE;gBAD1B,gBAAgB,GAAE,OAAe,EACjC,gBAAgB,GAAE,MAAM,EAAO;CAE7C;AAED,qBAAa,eAAe;IAExB;;;;;;;;OAQG;IACU,eAAe,CAAC,GAAG,EAAE,eAAe,EAAE,OAAO,EAAE,wBAAwB,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;IAStG;;OAEG;IACI,uBAAuB,IAAI,MAAM,EAAE;IAQ1C;;;OAGG;IACI,kBAAkB,CAAC,eAAe,EAAE,MAAM,GAAG;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;CAMvF;AAED,qBAAa,eAAe;IACX,sBAAsB,CAAC,gBAAgB,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;CAGjF"}

package/dist/sdk/compliance/identity.js

@@ -0,0 +1,55 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MultisigMonitor = exports.IdentityManager = exports.IdentityComplianceConfig = void 0;
+class IdentityComplianceConfig {
+    constructor(requireCivicPass = false, allowedCountries = []) {
+        this.requireCivicPass = requireCivicPass;
+        this.allowedCountries = allowedCountries;
+    }
+}
+exports.IdentityComplianceConfig = IdentityComplianceConfig;
+class IdentityManager {
+    /**
+     * Checks if a transaction interacts with regulated protocols.
+     *
+     * @todo INTEGRATION REQUIRED: This method is a stub.
+     * Real implementation requires integration with:
+     * 1. Civic Gateway (Identity/KYC checks)
+     * 2. TRM Labs / Chainalysis (Sanctions Screening)
+     * 3. On-chain Allowlist Providers
+     */
+    async checkCompliance(_tx, _config) {
+        const leaks = [];
+        // Example logic for "Mock" compliance violation
+        // In production, fetch sanctions list here.
+        return leaks;
+    }
+    /**
+     * Returns a list of integrations required to enable full compliance mode.
+     */
+    getRequiredIntegrations() {
+        return [
+            "Civic Pass Gateway IDL",
+            "TRM Labs API Key",
+            "Chainalysis Risk API"
+        ];
+    }
+    /**
+     * Generates a "Selective Disclosure" proof.
+     * @deprecated Stub implementation. Use @civic/solana-gateway-react for real proofs.
+     */
+    generateDisclosure(_credentialType) {
+        return {
+            proof: "integration_required",
+            claim: "Identity integration pending"
+        };
+    }
+}
+exports.IdentityManager = IdentityManager;
+class MultisigMonitor {
+    async analyzeMultisigPrivacy(_multisigAddress) {
+        return [];
+    }
+}
+exports.MultisigMonitor = MultisigMonitor;
+//# sourceMappingURL=identity.js.map

package/dist/sdk/compliance/identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.js","sourceRoot":"","sources":["../../../sdk/compliance/identity.ts"],"names":[],"mappings":";;;AAEA,MAAa,wBAAwB;IACjC,YACW,mBAA4B,KAAK,EACjC,mBAA6B,EAAE;QAD/B,qBAAgB,GAAhB,gBAAgB,CAAiB;QACjC,qBAAgB,GAAhB,gBAAgB,CAAe;IACtC,CAAC;CACR;AALD,4DAKC;AAED,MAAa,eAAe;IAExB;;;;;;;;OAQG;IACI,KAAK,CAAC,eAAe,CAAC,GAAoB,EAAE,OAAiC;QAChF,MAAM,KAAK,GAAW,EAAE,CAAC;QAEzB,gDAAgD;QAChD,4CAA4C;QAE5C,OAAO,KAAK,CAAC;IACjB,CAAC;IAED;;OAEG;IACI,uBAAuB;QAC1B,OAAO;YACH,wBAAwB;YACxB,kBAAkB;YAClB,sBAAsB;SACzB,CAAC;IACN,CAAC;IAED;;;OAGG;IACI,kBAAkB,CAAC,eAAuB;QAC7C,OAAO;YACH,KAAK,EAAE,sBAAsB;YAC7B,KAAK,EAAE,8BAA8B;SACxC,CAAC;IACN,CAAC;CACJ;AAzCD,0CAyCC;AAED,MAAa,eAAe;IACjB,KAAK,CAAC,sBAAsB,CAAC,gBAAwB;QACxD,OAAO,EAAE,CAAC;IACd,CAAC;CACJ;AAJD,0CAIC"}