npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@altananetwork/hypersigner-keystore-mcp

v0.2.0

Published

Non-custodial MCP server for KeyStore agent authorization: verify, register, timebox, and revoke keys without signing.

Readme

@altananetwork/hypersigner-keystore-mcp

Non-custodial MCP server for KeyStore agent authorization.

@altananetwork/hypersigner-keystore-mcp lets any agent SDK verify agent-to-agent authority, and lets agent SDKs and tools register, timebox, and revoke agent authority through the Altana KeyStore registry. It never holds private keys, signs transactions, or broadcasts transactions. Read tools query on-chain state; encode tools return unsigned { to, value, data, chainId } calls for your wallet or SDK to sign.

Use Cases

  • Agent-to-agent verification before payment, work dispatch, or data handoff.
  • Time-boxed authority for short-lived agent sessions that expire automatically.
  • Cross-service kill-switches where one revoke blocks an agent everywhere.
  • Neutral authorization checks for Trust Wallet Agent Kit, Coinbase AgentKit, LangChain agents, custom agent SDKs, and other agent runtimes.
  • Unsigned transaction encoding so the user's wallet or SDK remains the only signer.

Install

bunx @altananetwork/hypersigner-keystore-mcp

For local development:

bun install
bun run start

MCP Config

Use stdio transport:

{
  "mcpServers": {
    "keystore": {
      "command": "bunx",
      "args": ["@altananetwork/hypersigner-keystore-mcp"],
      "env": {
        "ALTANA_CHAIN": "bnb"
      }
    }
  }
}

Optional env vars:

  • ALTANA_CHAIN: bnb, bsc, 56, ethereum, eth, or 1. Defaults to bnb.
  • RPC_URL: override the default public RPC URL.

Tools

  • keystore_verify_authorization

    • Reads isValidKey(user, keyId).
    • Returns whether the key is registered, not revoked, and not expired.
  • keystore_list_active_keys

    • Lists active key IDs for a user and expands each record with liveness, expiry, role, and public key.
  • keystore_get_key

    • Reads a single on-chain key record.
  • keystore_registration_quote

    • Reads the current one-time registration fee in native wei.
  • keystore_encode_register_key

    • Returns unsigned calldata to register a root or session key.
    • Session keys may include an expiry timestamp for time-boxed authority.
  • keystore_encode_revoke_key

    • Returns unsigned calldata to revoke a key.
    • Revocation must be signed by the user account.

Safety Model

This server is intentionally not a wallet.

  • It does not accept private keys.
  • It refuses 32-byte values passed as publicKey, because those often indicate private-key leakage.
  • It does not sign or send transactions.
  • It does not custody funds.
  • It only reads the KeyStore and encodes calls that another wallet or SDK signs.

Example Flow

  1. An Agent SDK creates an agent keypair.
  2. The SDK calls keystore_encode_register_key with the agent public key.
  3. The user wallet signs and sends the returned transaction.
  4. A counterparty calls keystore_verify_authorization before serving the agent.
  5. The user can later call keystore_encode_revoke_key; once signed and sent, all readers see the key as invalid.

Programmatic Helpers

The package also exports typed helpers:

import {
  buildRegisterCall,
  buildRevokeCall,
  deriveKeyId,
  readIsValidKey,
  resolveChain,
} from "@altananetwork/hypersigner-keystore-mcp/keystore";

License

GPL-3.0-or-later.