Add airdrop implementations with cost comparison

- compressed-claim: slot-based time-lock, distributes compressed tokens
- distributor: linear vesting, clawback, admin controls, Merkle proofs
- README with feature comparison and cost breakdown (10k recipients)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

Author: tilo-14

.gitmodules

@@ -1,3 +1,6 @@
 [submodule "depin-poc"]
 	path = depin-poc
 	url = https://github.com/Lightprotocol/nosana-programs
+[submodule "airdrop-implementations/distributor"]
+	path = airdrop-implementations/distributor
+	url = https://github.com/Lightprotocol/distributor.git

account-comparison/CLAUDE.md

@@ -0,0 +1,81 @@
+# Account Comparison
+
+Side-by-side implementation of Solana accounts vs compressed accounts. Shows equivalent create and update operations for both account types using identical data structures.
+
+## Summary
+
+- Demonstrates equivalent PDA and compressed account patterns with identical seeds `["account", user.key()]`
+- Compressed accounts use `LightAccount::new_init` for creation and `LightAccount::new_mut` for updates
+- Updates require client to pass existing state because on-chain storage is a Poseidon hash
+- All fields marked `#[hash]` are included in Poseidon hash computation
+
+## Source Structure
+
+```
+programs/account-comparison/src/
+  lib.rs              # Program entrypoint, instructions, account structs
+programs/account-comparison/tests/
+  test_solana_account.rs      # LiteSVM tests for standard accounts
+  test_compressed_account.rs  # Light Protocol tests for compressed accounts
+```
+
+## Accounts
+
+### AccountData (Solana PDA)
+
+| Field | Type | Offset |
+|-------|------|--------|
+| discriminator | `[u8; 8]` | 0..8 |
+| user | `Pubkey` | 8..40 |
+| name | `String` | 40..168 |
+| data | `[u8; 128]` | 168..232 |
+
+- **Seeds**: `["account", user.key()]`
+- **Discriminator**: 8 bytes, SHA256("account:AccountData")[0..8]
+- **Space**: 232 bytes
+
+### CompressedAccountData (LightAccount)
+
+```rust
+#[derive(LightDiscriminator, LightHasher)]
+pub struct CompressedAccountData {
+    #[hash] pub user: Pubkey,
+    #[hash] pub name: String,
+    #[hash] pub data: [u8; 128],
+}
+```
+
+- **Address seeds**: `["account", user.key()]`
+- **Discriminator**: `LightDiscriminator` derive generates from struct name
+- **Hashing**: Poseidon hash of all `#[hash]` fields (user, name, data)
+
+### CPI Signer
+
+```rust
+const CPI_SIGNER: CpiSigner = derive_light_cpi_signer!("FYX4GmKJYzSiycc7XZKf12NGXNE9siSx1cJubYJniHcv");
+```
+
+## Instructions
+
+| # | Instruction | Accounts | Parameters | Logic |
+|---|-------------|----------|------------|-------|
+| 0 | `create_account` | `user` (signer, mut), `account` (init PDA), `system_program` | `name: String` | Initializes PDA with seeds `["account", user]`, sets `data = [1u8; 128]` |
+| 1 | `update_data` | `user` (signer, mut), `account` (mut, has_one = user) | `data: [u8; 128]` | Overwrites account.data |
+| 2 | `create_compressed_account` | `user` (signer, mut) + remaining_accounts | `name`, `proof`, `address_tree_info`, `output_tree_index` | Validates ADDRESS_TREE_V2, derives address, calls `LightAccount::new_init`, invokes light-system-program |
+| 3 | `update_compressed_account` | `user` (signer, mut) + remaining_accounts | `new_data`, `existing_data`, `name`, `proof`, `account_meta` | Reconstructs state via `LightAccount::new_mut`, verifies user ownership, invokes light-system-program |
+
+## Security
+
+| Check | Location | Description |
+|-------|----------|-------------|
+| Address tree validation | `create_compressed_account` | Verifies `address_tree_pubkey.to_bytes() == ADDRESS_TREE_V2` |
+| Owner verification | `update_compressed_account` | Asserts `compressed_account.user == ctx.accounts.user.key()` |
+| PDA constraint | `update_data` | Anchor `has_one = user` constraint |
+| Signer requirement | All instructions | User must sign transaction |
+
+## Errors
+
+| Error | Message |
+|-------|---------|
+| `CustomError::Unauthorized` | "No authority to perform this action" |
+| `ProgramError::InvalidAccountData` | Returned when address tree validation fails |

airdrop-implementations/README.md

@@ -0,0 +1,28 @@
+# Airdrop Implementations
+
+Simple Implementation: compressed-claim -  Distributes compressed tokens that get decompressed on claim
+
+Advanced Implementation: distributor - Distributes SPL tokens, uses compressed PDAs to track claims
+
+
+## Quick comparison
+
+|  | compressed-claim | distributor |
+|--|------------------|-------------|
+| Time-lock | Slot-based (all-or-nothing) | Timestamp-based (linear vesting) |
+| Partial claims | No | Yes |
+| Clawback | No | Yes |
+| Admin controls | No | Yes |
+
+## Cost (10,000 recipients)
+
+| | compressed-claim | distributor | Regular |
+|--|----------------:|------------:|----------------:|
+| Setup | ~0.03 SOL | ~0.002 SOL | ~0.002 SOL |
+| Claim tracking | 0 | ~0.03 SOL | ~6 SOL |
+| **Total** | **~0.03 SOL** | **~0.03 SOL** | **~6 SOL** |
+
+## Getting started
+
+- [compressed-claim README](./compressed-claim/README.md)
+- [distributor README](./distributor/README.md)

airdrop-implementations/compressed-claim/.gitignore

@@ -0,0 +1,10 @@
+.anchor
+.cargo
+.DS_Store
+**/.DS_Store
+**/target
+**/*.rs.bk
+node_modules
+test-ledger
+dist
+test-keypair.json

airdrop-implementations/compressed-claim/CLAUDE.md

@@ -0,0 +1,84 @@
+# Compressed Claim
+
+Claims time-locked compressed tokens and decompresses them to an SPL token account.
+
+## [README](README.md)
+
+## Source Structure
+
+```text
+program/src/
+├── lib.rs           # entrypoint, declare_id!
+├── error.rs         # ClaimError (3 variants)
+├── instruction.rs   # ClaimIxData, ClaimAccounts, builders
+└── processor.rs     # process_claim logic
+```
+
+## Accounts
+
+### Airdrop PDA
+
+Seeds: `[claimant.to_bytes(), mint.to_bytes(), unlock_slot.to_le_bytes(), bump]`
+
+Derived via `Pubkey::create_program_address`. Holds compressed tokens until claim.
+
+### ClaimIxData (Instruction Data)
+
+| Field | Type | Description |
+|-------|------|-------------|
+| proof | ValidityProof | ZK proof for compressed account |
+| packed_tree_info | PackedStateTreeInfo | Merkle tree state info |
+| amount | u64 | Tokens to claim |
+| lamports | Option<u64> | Optional lamports to transfer |
+| mint | Pubkey | Token mint address |
+| unlock_slot | u64 | Slot when tokens unlock |
+| bump_seed | u8 | PDA bump seed |
+
+## Instructions
+
+| Instruction | Path | Accounts | Logic |
+|-------------|------|----------|-------|
+| Claim | processor.rs | claimant (signer), fee_payer (signer), airdrop_pda, + 13 Light/CToken accounts | Verifies unlock_slot <= current_slot, validates PDA, invokes decompress CPI |
+
+### Claim Accounts (16 total)
+
+0. claimant (signer)
+1. fee_payer (signer)
+2. associated_airdrop_pda
+3. ctoken_cpi_authority_pda
+4. light_system_program
+5. registered_program_pda
+6. noop_program
+7. account_compression_authority
+8. account_compression_program
+9. ctoken_program
+10. spl_interface_pda (token_pool)
+11. decompress_destination (writable)
+12. token_program
+13. system_program
+14. state_tree (writable)
+15. queue (writable)
+
+## Key Concepts
+
+**Time-lock**: Tokens unlock at `unlock_slot`. Claim fails if `current_slot < unlock_slot`.
+
+**PDA Derivation**: `[claimant, mint, unlock_slot, bump]` - ensures only rightful claimant can claim.
+
+**Decompress CPI**: Invokes `light_ctoken_sdk::decompress` to convert compressed tokens to SPL.
+
+## Security
+
+**Signer checks**: Both claimant and fee_payer must sign.
+
+**PDA validation**: Derived PDA must match provided airdrop_pda account.
+
+**Program check**: ctoken_program must equal `light_ctoken_sdk::ctoken::id()`.
+
+## Errors
+
+| Error | Description |
+|-------|-------------|
+| MissingRequiredSignature | Claimant or fee_payer not signer |
+| TokensLocked | current_slot < unlock_slot |
+| InvalidPDA | Derived PDA doesn't match provided account |