fix: address PR review feedback

- TonSignData: restore getVersionRange(). With strictCheckDeviceSupport=true
  the core consults this method's version matrix; an empty range causes
  every device to be classified as unsupported and the TonSignData typedCall
  is rejected before run() ever fires. Aligned with TonSignMessage's
  getFixInitStateErrorVersionRange — bump when the firmware ships TonSignData.

- LedgerConnectorBase.call: stop logging full call params via
  JSON.stringify(params). Now that debugLog flows through onSdkEvent into
  the host's defaultLogger pipeline, sensitive payloads (serializedTx,
  psbt, rawTxHex, messageHex, typed data) would propagate to telemetry /
  persistent stores. Replaced with summarizeCallParams() which surfaces
  only path, length-of-payload, and harmless flags.

Author: ByteZhang1024

packages/core/src/api/ton/TonSignData.ts

@@ -47,6 +47,22 @@ export default class TonSignData extends BaseMethod<HardwareTonSignData> {
     };
   }
 
+  // Required because strictCheckDeviceSupport=true above. Without an entry
+  // here, BaseMethod returns an empty range and the core treats every
+  // device as unsupported, blocking the call before run() ever fires.
+  // Aligned with TonSignMessage's getFixInitStateErrorVersionRange() — bump
+  // when the firmware release that ships TonSignData lands.
+  getVersionRange() {
+    return {
+      model_touch: {
+        min: '4.13.0',
+      },
+      model_classic1s: {
+        min: '3.12.0',
+      },
+    };
+  }
+
   async run() {
     const res = await this.device.commands.typedCall('TonSignData', 'TonSignedData', {
       ...this.params,

packages/hwk-ledger-adapter/src/connector/LedgerConnectorBase.ts

@@ -88,6 +88,30 @@ const METHOD_PREFIX_TO_APP_NAME: Record<string, string> = {
   tron: 'Tron',
 };
 
+/**
+ * Render call params as non-sensitive metadata for the SDK log bus. Raw
+ * payloads (serializedTx / psbt / rawTxHex / messageHex / typed data) MUST
+ * NOT enter the log stream — hosts may forward it to telemetry / persistent
+ * stores. We surface only path, length-of-payload, and a few harmless flags.
+ */
+function summarizeCallParams(_method: string, params: unknown): string {
+  if (!params || typeof params !== 'object') return '';
+  const p = params as Record<string, unknown>;
+  const safe: Record<string, unknown> = {};
+  if (typeof p.path === 'string') safe.path = p.path;
+  if (typeof p.showOnDevice === 'boolean') safe.showOnDevice = p.showOnDevice;
+  if (typeof p.checkOnDevice === 'boolean') safe.checkOnDevice = p.checkOnDevice;
+  for (const key of ['serializedTx', 'rawTxHex', 'messageHex', 'message', 'psbt', 'data']) {
+    const v = p[key];
+    if (typeof v === 'string') safe[`${key}.len`] = v.length;
+    else if (v !== undefined) safe[`${key}.type`] = typeof v;
+  }
+  if (Array.isArray(p.tokenSignatures)) {
+    safe.tokenSignaturesCount = p.tokenSignatures.length;
+  }
+  return JSON.stringify(safe);
+}
+
 // ---------------------------------------------------------------------------
 // Default signer kit importer (webpack/rspack — uses "exports" field)
 // ---------------------------------------------------------------------------
@@ -381,7 +405,7 @@ export class LedgerConnectorBase implements IConnector {
   // ---------------------------------------------------------------------------
 
   async call(sessionId: string, method: string, params: unknown): Promise<unknown> {
-    debugLog('[DMK] call:', method, JSON.stringify(params));
+    debugLog('[DMK] call:', method, summarizeCallParams(method, params));
     // Bind the chain's Ledger app name to ctx.wrapError once per dispatch so
     // chain handlers can call `ctx.wrapError(err)` with no per-site appName.
     const ctx = this._ctxForMethod(method);