feat: enhance security and add environment configuration templates

- Improved secret management with environment variables
- Added .env.base files to .gitignore for better security
- Created .env.example with placeholder values for safe distribution
- Updated example code to enforce environment variable usage
- Added comprehensive security reminders in configuration templates
- Added test utilities for Base mainnet testing

This ensures compliance with security best practices for handling
sensitive credentials in development and production environments.

Author: cryptoflops

.env.example

@@ -0,0 +1,41 @@
+# Example environment configuration
+# Copy this file to .env and fill in your actual values
+# NEVER commit .env files with real credentials
+
+# Private key for transaction signing
+# Use a test wallet with minimal funds for development
+PRIVATE_KEY=your_private_key_here_without_0x_prefix
+
+# RPC URLs for different networks
+RPC_URL_ETHEREUM=https://eth-mainnet.g.alchemy.com/v2/YOUR_ALCHEMY_KEY
+RPC_URL_POLYGON=https://polygon-rpc.com
+RPC_URL_BASE=https://mainnet.base.org
+RPC_URL_ARBITRUM=https://arb1.arbitrum.io/rpc
+
+# WalletConnect Project ID (get from cloud.reown.com)
+WALLETCONNECT_PROJECT_ID=your_project_id_here
+
+# Network configuration
+CHAIN_ID=1
+NETWORK_NAME=ethereum
+
+# Transaction settings
+DEFAULT_GAS_LIMIT=21000
+CONFIRMATION_BLOCKS=1
+MAX_RETRIES=3
+
+# Test configuration (for development only)
+TEST_RECIPIENT_ADDRESS=0x0000000000000000000000000000000000000000
+TEST_AMOUNT_ETH=0.001
+
+# API Keys (if needed)
+ALCHEMY_API_KEY=your_alchemy_key_here
+INFURA_API_KEY=your_infura_key_here
+ETHERSCAN_API_KEY=your_etherscan_key_here
+
+# SECURITY REMINDERS:
+# 1. Never share your private keys
+# 2. Use separate wallets for testing and production
+# 3. Keep production keys in secure key management systems
+# 4. Add .env to .gitignore (already done)
+# 5. Use environment-specific .env files (.env.development, .env.production)

.gitignore

@@ -8,6 +8,8 @@ dist/
 .env
 .env.local
 .env.*.local
+.env.base
+test-base/.env.base
 
 # Logs
 npm-debug.log*

examples/real-transactions.js

@@ -14,7 +14,7 @@ const { SequentialTransactionHandler } = require('@cryptoflops/walletconnect-seq
 const CONFIG = {
   // Your private key (NEVER commit this to git!)
   // For testing, use a test wallet with small amounts
-  PRIVATE_KEY: process.env.PRIVATE_KEY || 'YOUR_PRIVATE_KEY_HERE',
+  PRIVATE_KEY: process.env.PRIVATE_KEY, // Always use environment variables, never hardcode
 
   // RPC URLs (you can get free ones from Infura, Alchemy, etc.)
   RPC_URLS: {

project-info.sh

@@ -0,0 +1,43 @@
+#!/bin/bash
+
+echo "
+╔══════════════════════════════════════════════════════════════════╗
+║   WalletConnect Sequential Transaction Handler - Project Info    ║
+╚══════════════════════════════════════════════════════════════════╝
+
+📦 NPM Package Information:
+   Name: @cryptoflops/walletconnect-sequential-tx
+   Version: 1.0.0
+   URL: https://www.npmjs.com/package/@cryptoflops/walletconnect-sequential-tx
+
+🐙 GitHub Repository:
+   URL: https://github.com/cryptoflops/walletconnect-sequential-tx
+
+📊 Badges for README/Documentation:
+
+   NPM Version:
+   [![npm version](https://img.shields.io/npm/v/@cryptoflops/walletconnect-sequential-tx.svg)](https://www.npmjs.com/package/@cryptoflops/walletconnect-sequential-tx)
+
+   NPM Downloads:
+   [![npm downloads](https://img.shields.io/npm/dm/@cryptoflops/walletconnect-sequential-tx.svg)](https://www.npmjs.com/package/@cryptoflops/walletconnect-sequential-tx)
+
+   Build Status:
+   [![CI](https://github.com/cryptoflops/walletconnect-sequential-tx/actions/workflows/ci.yml/badge.svg)](https://github.com/cryptoflops/walletconnect-sequential-tx/actions/workflows/ci.yml)
+
+   License:
+   [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+
+   Bundle Size:
+   [![npm bundle size](https://img.shields.io/bundlephobia/min/@cryptoflops/walletconnect-sequential-tx)](https://bundlephobia.com/package/@cryptoflops/walletconnect-sequential-tx)
+
+📝 Installation Command:
+   npm install @cryptoflops/walletconnect-sequential-tx
+
+🚀 Import Statement:
+   import { SequentialTransactionHandler } from '@cryptoflops/walletconnect-sequential-tx';
+
+✨ View Live on:
+   • NPM Registry: https://www.npmjs.com/package/@cryptoflops/walletconnect-sequential-tx
+   • GitHub: https://github.com/cryptoflops/walletconnect-sequential-tx
+   • Bundlephobia: https://bundlephobia.com/package/@cryptoflops/walletconnect-sequential-tx
+"

test-base/package-lock.json

@@ -0,0 +1,16 @@
+{
+  "name": "test-base",
+  "version": "1.0.0",
+  "main": "setup.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "keywords": [],
+  "author": "",
+  "license": "ISC",
+  "description": "",
+  "dependencies": {
+    "dotenv": "^17.2.3",
+    "ethers": "^6.15.0"
+  }
+}

test-base/package.json

@@ -0,0 +1,89 @@
+#!/usr/bin/env node
+
+/**
+ * Base Mainnet Testing Setup
+ * This script helps you test the Sequential Transaction Handler on Base mainnet
+ */
+
+const fs = require('fs');
+const path = require('path');
+
+console.log('🚀 Setting up Base mainnet testing environment...\n');
+
+// Check if .env.base exists
+const envPath = path.join(__dirname, '.env.base');
+if (!fs.existsSync(envPath)) {
+  console.log('📝 Creating .env.base file...');
+  const envTemplate = `# Base Mainnet Configuration
+# ⚠️  WARNING: This is for MAINNET - real money! Use small amounts for testing
+
+# Base Mainnet RPC URLs (choose one)
+RPC_URL=https://mainnet.base.org
+# RPC_URL=https://base.llamarpc.com
+# RPC_URL=https://base.blockpi.network/v1/rpc/public
+
+# Your wallet private key (USE A TEST WALLET WITH SMALL AMOUNTS!)
+# Create a new wallet specifically for testing
+# NEVER commit this file with a real private key!
+PRIVATE_KEY=YOUR_PRIVATE_KEY_HERE
+        
+# Base Network Configuration
+CHAIN_ID=8453
+NETWORK_NAME=base
+
+# Base Block Explorer
+EXPLORER_URL=https://basescan.org
+
+# Transaction Settings
+DEFAULT_GAS_LIMIT=100000
+CONFIRMATION_BLOCKS=1
+MAX_RETRIES=3
+
+# Test Recipients (you can change these)
+TEST_RECIPIENT_1=0x
+TEST_RECIPIENT_2=0x
+
+# Test Amounts (in ETH - keep these small!)
+TEST_AMOUNT_ETH=0.000001
+
+# Popular Base Tokens (for testing token transfers)
+# USDC on Base
+USDC_ADDRESS=0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913
+# Wrapped ETH on Base
+WETH_ADDRESS=0x4200000000000000000000000000000000000006
+
+# DEX Contracts on Base
+# Uniswap V3 Router
+UNISWAP_V3_ROUTER=0x2626664c2603336E57B271c5C0b26F421741e481
+# BaseSwap Router
+BASESWAP_ROUTER=0x327Df1E6de05895d2ab08513aaDD9313Fe505d86
+
+# Bridge Base ETH to Base:
+# https://bridge.base.org/
+`;
+  
+  fs.writeFileSync(envPath, envTemplate);
+  console.log('✅ Created .env.base template\n');
+  console.log('⚠️  IMPORTANT: Edit .env.base with your configuration before testing!\n');
+} else {
+  console.log('✅ .env.base already exists\n');
+}
+
+console.log('📌 Base Mainnet Information:');
+console.log('   Chain ID: 8453');
+console.log('   Native Token: ETH');
+console.log('   Block Explorer: https://basescan.org');
+console.log('   Bridge: https://bridge.base.org/\n');
+
+console.log('🎯 Setup complete! Next steps:');
+console.log('1. Edit .env.base with your private key (use a test wallet!)');
+console.log('2. Bridge some ETH to Base: https://bridge.base.org/');
+console.log('3. Run: node test-simple.js (for simple ETH transfers)');
+console.log('4. Run: node test-sequential.js (for sequential transactions)');
+console.log('5. Run: node test-tokens.js (for token operations)\n');
+
+console.log('⚠️  SAFETY REMINDERS:');
+console.log('   - This is MAINNET - transactions cost real money');
+console.log('   - Use a dedicated test wallet with small amounts');
+console.log('   - Start with very small test amounts (0.000001 ETH)');
+console.log('   - Always double-check addresses before sending\n');