add demo

Author: hayes

AGENTS.md

@@ -0,0 +1,24 @@
+# AGENTS.md
+
+## Build/Test/Lint Commands
+- `pnpm build` - Build all packages with Turbo
+- `pnpm test` - Run unit tests for all packages
+- `pnpm --filter @mysten/sui vitest run path/to/test.spec.ts` - Run single test file
+- `pnpm lint` - Check ESLint + Prettier
+- `pnpm lint:fix` - Auto-fix linting issues
+- `pnpm changeset` - Add changeset for version updates
+
+## Architecture
+- **Monorepo**: TypeScript SDKs for Sui blockchain, uses pnpm workspaces + Turbo
+- **Core packages**: typescript/ (main SDK), dapp-kit/ (React hooks), wallet-standard/, signers/ (AWS/GCP KMS, Ledger)
+- **Services**: deepbook/ (DEX), suins/ (name service), zksend/, walrus/
+- **Build**: ESM/CJS outputs to `dist/`, dependency-aware builds via Turbo
+- **Tests**: Vitest for unit tests, separate e2e configs, Docker for integration tests
+
+## Code Style
+- **Headers**: Apache-2.0 license headers required (`header/header` rule)
+- **Imports**: Consistent type imports (`@typescript-eslint/consistent-type-imports`), require extensions
+- **TypeScript**: Strict typing, no `any` in production, prefer `type` imports
+- **Naming**: Underscore prefix for unused vars (`argsIgnorePattern: '^_'`)
+- **Modules**: Subpath exports pattern (`@mysten/sui/client`, `@mysten/sui/bcs`)
+- **No Buffer**: Banned in packages for web compatibility

packages/enoki-connect/demo-dapp/package.json

@@ -16,7 +16,7 @@
     "@mysten/wallet-standard": "workspace:*",
     "@radix-ui/colors": "^3.0.0",
     "@radix-ui/react-icons": "^1.3.0",
-    "@radix-ui/themes": "^3.1.1",
+    "@radix-ui/themes": "^3.1.6",
     "@tanstack/react-query": "^5.87.1",
     "react": "^18.3.1",
     "react-dom": "^18.3.1"

packages/wallet-sdk/AUTO_APPROVALS.md

@@ -0,0 +1,123 @@
+# Wallet Auto-Approval System
+
+The Wallet Auto-Approval System enables users to authorize automatic signing of specific transaction
+types, reducing friction for trusted applications while maintaining security and user control
+
+## Overview
+
+This system provides a standard implementation for wallets to automatically approve transactions
+based on predefined policies. It consists of three main components:
+
+- **AutoApprovalPolicy**: Application-hosted policies defining approved transaction types
+- **AutoApprovalManager**: SDK class for policy management and transaction evaluation
+- **AutoApprovalIntent**: Optional hints from applications about which policy rule sets to apply
+
+## Architecture
+
+### Policy Discovery
+
+Applications host their `AutoApprovalPolicy` at:
+
+```
+/.well-known/sui/automatic-approval-policy.json
+```
+
+This well-known location enables wallets to discover policies without requiring explicit
+advertising, making policies easier to mange for wallets, easier to audit and harder to change
+frequently or generate dynamically to target specific users.
+
+### Policy Structure
+
+An `AutoApprovalPolicy` contains:
+
+- **ruleSets**: Collections of rules describing allowed asset interactions
+- **suggestedSettings**: Recommended user configurations (budgets, limits, etc.)
+- **defaultRuleSet**: Must be null - auto-approvals require explicit rule set selection
+
+### Rule Types
+
+Each ruleset specifies rules for different asset access patterns:
+
+- **ownedObjects**: Access to specific object types the user owns
+- **sessionCreatedObjects**: Access to objects created during the current session
+- **balances**: Access to specific coin type balances
+- **allBalances**: Access to all coin balances
+
+### Policy Settings
+
+User-controlled limits applied to approved policies. These are controlled by the wallet and can be
+configured by the user.
+
+- **remainingTransactions**: Maximum transactions per session
+- **expiration**: Session expiration timestamp
+- **approvedRuleSets**: Currently active rulesets
+- **usdBudget**: USD spending limit across all coins
+- **coinBudgets**: Per-coin-type spending limits
+
+## Usage Flow
+
+1. **Transaction Construction**: Applications build transactions normally, adding
+   `tx.add(autoApproval(ruleSetId))` to request auto-approval with a specific rule set
+
+2. **Policy Evaluation**: Wallet loads the AutoApprovalManager and analyzes the transaction against
+   current policy state
+
+3. **Auto-Approval Decision**: If approved, wallet signs automatically; otherwise, falls back to
+   standard user confirmation
+
+4. **State Updates**: On signing, the manager deducts balances and policy settings. After execution,
+   transaction effects can be applied to track new objects and increase balances in the policy
+   settings.
+
+## Implementation
+
+### AutoApprovalManager Class
+
+The core SDK class manages policy state and transaction analysis:
+
+```typescript
+class AutoApprovalManager {
+	constructor(options: AutoApprovalManagerOptions);
+	analyzeTransaction(tx: Transaction): Promise<TransactionAnalysis>;
+	commitTransaction(analysis: TransactionAnalysis): void;
+	applyTransactionEffects(analysis: TransactionAnalysis, effects: TransactionEffects): void;
+	update(policy: AutoApprovalPolicy, settings: AutoApprovalPolicySettings): void;
+	approve(): void;
+	reset(): void;
+	export(): string;
+}
+```
+
+### State Management
+
+The manager maintains an `AutoApprovalState` tracking:
+
+- Current policy and settings
+- Balance changes and transaction history
+- Created objects from approved transactions
+- Approved and pending transaction digests
+
+## Design Decisions
+
+### Limited API Surface
+
+Applications have no visibility into auto-approval state, ensuring:
+
+- Simple adoption (just publish a policy)
+- Compatibility with non-supporting wallets
+- Graceful degradation when users opt out
+
+### User Control
+
+All limits and permissions remain under user control:
+
+- Policies only describe what _may_ be auto-approved
+- Users set actual budgets and transaction limits
+- Access can be revoked at any time without breaking functionality
+
+### Security
+
+Well-known policy locations and structured rules provide:
+
+- Auditability of application intentions
+- Protection against dynamic policy manipulation

packages/wallet-sdk/examples/demo-app/.gitignore

@@ -0,0 +1,28 @@
+# Logs
+logs
+*.log
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+pnpm-debug.log*
+lerna-debug.log*
+
+node_modules
+dist
+dist-ssr
+*.local
+
+# Editor directories and files
+.vscode/*
+!.vscode/extensions.json
+.idea
+.DS_Store
+*.suo
+*.ntvs*
+*.njsproj
+*.sln
+*.sw?
+
+# Move build artifacts
+**/build/
+package_summaries/

packages/wallet-sdk/examples/demo-app/.prettierignore

@@ -0,0 +1,4 @@
+dist/
+node_modules/
+*.min.js
+*.map

packages/wallet-sdk/examples/demo-app/README.md

@@ -0,0 +1,56 @@
+# Wallet SDK Demo App
+
+This demo app showcases two key components side by side:
+
+1. **Demo Wallet**: A simple wallet implementation based on the wallet-standard that shows what
+   transactions are being signed and allows approve/reject actions
+2. **Demo dApp**: A counter example app that uses dapp-kit-react to interact with the wallet
+
+## Features
+
+### Demo Wallet
+
+- Creates an in-browser wallet using Ed25519 keypair
+- Registers with the wallet-standard
+- Shows signing requests with details
+- Allows users to approve or reject transactions
+- Displays the wallet address
+
+### Demo dApp
+
+- Simple counter application
+- Uses dapp-kit-react hooks
+- Creates, increments, and resets a counter
+- Demonstrates wallet connectivity
+
+## Development
+
+```bash
+# Install dependencies
+pnpm install
+
+# Start development server
+pnpm dev
+
+# Build for production
+pnpm build
+```
+
+## Configuration
+
+To use the counter functionality, update the `COUNTER_PACKAGE_ID` constant in `src/DemoApp.tsx` with
+your deployed counter package ID.
+
+## Architecture
+
+The demo uses:
+
+- Vite for bundling
+- React for UI
+- @mysten/dapp-kit for dApp functionality
+- @mysten/wallet-standard for wallet implementation
+- @radix-ui/themes for styling
+- @tanstack/react-query for data fetching
+
+The wallet implementation shows a placeholder for future wallet-sdk integration, with a UI that
+displays what users are signing before approving transactions.

packages/wallet-sdk/examples/demo-app/index.html

@@ -0,0 +1,13 @@
+<!doctype html>
+<html lang="en">
+	<head>
+		<meta charset="UTF-8" />
+		<link rel="icon" type="image/svg+xml" href="/vite.svg" />
+		<meta name="viewport" content="width=device-width, initial-scale=1.0" />
+		<title>Wallet SDK Demo App</title>
+	</head>
+	<body>
+		<div id="root"></div>
+		<script type="module" src="/src/main.tsx"></script>
+	</body>
+</html>

packages/wallet-sdk/examples/demo-app/move/counter/Move.lock

@@ -0,0 +1,34 @@
+# @generated by Move, please check-in and do not edit manually.
+
+[move]
+version = 3
+manifest_digest = "08D7316957B1A037CF595F048A68951A7170111D758800E544B4CE2943ED9D97"
+deps_digest = "F8BBB0CCB2491CA29A3DF03D6F92277A4F3574266507ACD77214D37ECA3F3082"
+dependencies = [
+  { id = "Sui", name = "Sui" },
+]
+
+[[move.package]]
+id = "MoveStdlib"
+source = { git = "https://github.com/MystenLabs/sui.git", rev = "framework/testnet", subdir = "crates/sui-framework/packages/move-stdlib" }
+
+[[move.package]]
+id = "Sui"
+source = { git = "https://github.com/MystenLabs/sui.git", rev = "framework/testnet", subdir = "crates/sui-framework/packages/sui-framework" }
+
+dependencies = [
+  { id = "MoveStdlib", name = "MoveStdlib" },
+]
+
+[move.toolchain-version]
+compiler-version = "1.51.1"
+edition = "2024.beta"
+flavor = "sui"
+
+[env]
+
+[env.testnet]
+chain-id = "4c78adac"
+original-published-id = "0x58a6d7dccd124b7e0bb9756dc309f5d5b9e2bc38a05261177970e96d0d3911f1"
+latest-published-id = "0x58a6d7dccd124b7e0bb9756dc309f5d5b9e2bc38a05261177970e96d0d3911f1"
+published-version = "1"

packages/wallet-sdk/examples/demo-app/move/counter/Move.toml

@@ -0,0 +1,10 @@
+[package]
+name = "counter"
+version = "0.0.1"
+edition = "2024.beta"
+
+[dependencies]
+Sui = { git = "https://github.com/MystenLabs/sui.git", subdir = "crates/sui-framework/packages/sui-framework", rev = "framework/testnet" }
+
+[addresses]
+counter = "0x0"

packages/wallet-sdk/examples/demo-app/move/counter/sources/counter.move

@@ -0,0 +1,36 @@
+// Copyright (c) Mysten Labs, Inc.
+// SPDX-License-Identifier: Apache-2.0
+
+/// This example demonstrates a basic use of a shared object.
+/// Rules:
+/// - anyone can create and share a counter
+/// - everyone can increment a counter by 1
+/// - the owner of the counter can reset it to any value
+module counter::counter {
+  /// A shared counter.
+  public struct Counter has key {
+    id: UID,
+    owner: address,
+    value: u64
+  }
+
+  /// Create and share a Counter object.
+  public fun create(ctx: &mut TxContext) {
+    transfer::share_object(Counter {
+      id: object::new(ctx),
+      owner: ctx.sender(),
+      value: 0
+    })
+  }
+
+  /// Increment a counter by 1.
+  public fun increment(counter: &mut Counter) {
+    counter.value = counter.value + 1;
+  }
+
+  /// Set value (only runnable by the Counter owner)
+  public fun set_value(counter: &mut Counter, value: u64, ctx: &TxContext) {
+    assert!(counter.owner == ctx.sender(), 0);
+    counter.value = value;
+  }
+}