# Contract Instance `getShieldedContract` creates a type-safe contract instance with seven namespaces for interacting with shielded contracts. It extends viem's `getContract` with Seismic-specific read and write patterns, giving you a single object that covers smart routing, encrypted writes, signed reads, transparent operations, and debug inspection. ```typescript import { getShieldedContract } from "seismic-viem"; ``` ## Constructor | Parameter | Type | Required | Description | | --------- | -------------------------------------- | -------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | `abi` | `Abi` | Yes | Contract ABI (use `as const` for full type inference) | | `address` | `Address` | Yes | Deployed contract address | | `client` | `ShieldedWalletClient` \| keyed client | Yes | Wallet client for full capabilities, or a keyed client (e.g., `{ public: publicClient }`) for read-only use. All writes (`.write`, `.swrite`, `.twrite`, `.dwrite`) and signed reads (`.sread`, plus `.read` when the target function has shielded params) require a wallet client. A keyed read-only client only supports `.tread` and `.read` on functions without shielded params. | ```typescript import { getShieldedContract } from "seismic-viem"; const abi = [ { name: "balanceOf", type: "function", stateMutability: "view", inputs: [{ name: "account", type: "saddress" }], outputs: [{ name: "", type: "uint256" }], }, { name: "transfer", type: "function", stateMutability: "nonpayable", inputs: [ { name: "to", type: "saddress" }, { name: "amount", type: "suint256" }, ], outputs: [{ name: "", type: "bool" }], }, { name: "totalSupply", type: "function", stateMutability: "view", inputs: [], outputs: [{ name: "", type: "uint256" }], }, { name: "approve", type: "function", stateMutability: "nonpayable", inputs: [ { name: "spender", type: "saddress" }, { name: "amount", type: "suint256" }, ], outputs: [{ name: "", type: "bool" }], }, ] as const; const contract = getShieldedContract({ abi, address: "0x1234567890abcdef1234567890abcdef12345678", client, }); ``` ## Namespaces The returned `ShieldedContract` exposes seven namespaces. Each namespace provides every function defined in the ABI, but differs in how calldata is handled and who appears as `msg.sender` on-chain. | Namespace | Operation Type | Calldata | msg.sender | Description | | --------- | ----------------- | ------------- | ---------------- | ------------------------------------------------------------------ | | `.read` | Smart Read | Auto-detected | Auto-detected | Inspects ABI -- shielded if shielded params, else transparent | | `.write` | Smart Write | Auto-detected | Signer's address | Inspects ABI -- shielded if shielded params, else transparent | | `.sread` | Force Signed Read | Encrypted | Signer's address | Always authenticated read -- proves identity | | `.swrite` | Force Shielded | Encrypted | Signer's address | Always encrypted transaction | | `.tread` | Transparent Read | Plaintext | Zero address | Always standard read -- rejects `account` | | `.twrite` | Transparent Write | Plaintext | Signer's address | Always standard write | | `.dwrite` | Send + Inspect | Encrypted | Signer's address | Broadcasts shielded tx and returns plaintext + encrypted tx + hash | *** ### `.read` / `.write` -- Smart Routing The default `.read` and `.write` namespaces **auto-detect** whether a function has shielded parameters (`suint*`, `sint*`, `sbool`, `saddress`, `sbytes*`, including nested in tuples and arrays). If any input parameter is shielded, the call is routed to the shielded path; otherwise it uses the transparent path. ```typescript // transfer() has saddress and suint256 params → shielded write (type 0x4A) const hash = await contract.write.transfer(["0x1234...", 100n]); // totalSupply() has no shielded params → transparent read const supply = await contract.read.totalSupply(); // balanceOf() has saddress param → signed read (encrypted, proves identity) const balance = await contract.read.balanceOf(["0x1234..."]); ``` {% hint style="info" %} Smart routing inspects **input parameters** only. If a function has no shielded inputs but you still want an encrypted read (e.g., because the return value is sensitive), use `.sread` instead. {% endhint %} *** ### `.sread` -- Force Signed Read Always sends an encrypted, signed `eth_call` that proves your identity to the contract, regardless of whether the function has shielded parameters. Use this when you want the response encrypted or when the contract checks `msg.sender` in a view function with no shielded inputs. ```typescript // Force signed read even though totalSupply() has no shielded params const supply = await contract.sread.totalSupply(); ``` {% hint style="info" %} The `.sread` namespace always sets `account` to `client.account` for security. This ensures the signed read is authenticated with the wallet's address, regardless of any `account` override you pass. {% endhint %} See [Signed Reads](https://docs.seismic.systems/clients/typescript/viem/signed-reads) for details on how signed reads work under the hood. *** ### `.swrite` -- Force Shielded Write Always encrypts calldata before broadcasting the transaction, regardless of whether the function has shielded parameters. The calldata is not visible on-chain. ```typescript // Force shielded write even though approve() might not need encryption const hash = await contract.swrite.approve(["0x1234...", 100n], { gas: 100_000n, }); ``` See [Shielded Writes](https://docs.seismic.systems/clients/typescript/viem/shielded-writes) for the encryption lifecycle and security parameters. *** ### `.tread` -- Transparent Read Standard read call with plaintext calldata. The `from` address is set to the zero address, so `msg.sender` inside the contract will be `0x0000...0000`. Works with both standard and shielded-typed functions (the ABI types are remapped automatically for encoding). ```typescript const supply = await contract.tread.totalSupply(); ``` Use `.tread` for public view functions that do not depend on `msg.sender`. {% hint style="warning" %} `.tread` **rejects** the `account` option and will throw. Seismic zeroes out `from` on transparent `eth_call`, so an `account` passed here would be ignored on the node and cause silent bugs. Use `.sread` for sender-aware reads. {% endhint %} *** ### `.twrite` -- Transparent Write Standard write call with plaintext (unencrypted) calldata. The transaction is signed by the wallet, so `msg.sender` is the signer's address. Works with both standard and shielded-typed functions (the ABI types are remapped automatically for encoding). ```typescript const hash = await contract.twrite.approve(["0x1234...", 100n]); ``` Use `.twrite` when you intentionally want calldata to be visible on-chain (e.g., for transparency or debugging). *** ### `.dwrite` -- Send + Inspect Sends the same encrypted transaction as `.swrite` -- the tx **is** broadcast and `txHash` is a real on-chain hash -- and additionally returns the plaintext transaction view and the shielded (encrypted) transaction view alongside the hash. Useful for inspecting exactly what the SDK encrypted and submitted. ```typescript const { plaintextTx, shieldedTx, txHash } = await contract.dwrite.transfer([ "0x1234...", 100n, ]); console.log("Plaintext calldata:", plaintextTx.data); console.log("Encrypted calldata:", shieldedTx.data); console.log("Transaction hash:", txHash); ``` {% hint style="info" %} Despite the "debug" flavor of the name, `.dwrite` broadcasts a real shielded transaction. If you just want to see what would be sent without submitting, build the calldata yourself via `getPlaintextCalldata`. {% endhint %} ## TypeScript ABI Typing For full type inference on function names, argument types, and return types, declare your ABI with `as const`: ```typescript const abi = [ { name: "balanceOf", type: "function", stateMutability: "view", inputs: [{ name: "account", type: "address" }], outputs: [{ name: "", type: "uint256" }], }, ] as const; const contract = getShieldedContract({ abi, address: "0x...", client }); // TypeScript knows: // - contract.read.balanceOf exists // - first arg is [Address] // - return type is bigint const balance = await contract.read.balanceOf(["0x1234..."]); ``` Without `as const`, the ABI is widened to `readonly AbiItem[]` and the contract loses per-function type safety. You can still call functions by name, but arguments and return values will be untyped. ## See Also * [Shielded Writes](https://docs.seismic.systems/clients/typescript/viem/shielded-writes) -- Encryption lifecycle and `shieldedWriteContract` * [Signed Reads](https://docs.seismic.systems/clients/typescript/viem/signed-reads) -- Authenticated reads and `signedReadContract` * [Shielded Wallet Client](https://docs.seismic.systems/clients/typescript/viem/shielded-wallet-client) -- Creating the client passed to `getShieldedContract` * [Encryption](https://docs.seismic.systems/clients/typescript/viem/encryption) -- ECDH key exchange and AES-GCM calldata encryption