npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@interop/security-document-loader

v9.4.0

Published

A secure and convenient JSON-LD document loader for Node.js, browsers, and React Native.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

codenamedmitricodenamedmitrijchartrandjchartrand

Keywords

Readme

JSON-LD Document Loader (interop/security-document-loader)

Node.js CI NPM Version

A secure and convenient JSON-LD document loader for Node.js, browsers, and React Native.

Table of Contents

Background

Included functionality:

  • Bundled contexts (see Included Contexts below)
  • DID resolver for did:key and did:web
  • Optional loading of arbitrary contexts from the web (see Usage).

Included Contexts

The default loader bundles the following contexts (registered in src/documentLoader.ts):

| Context | Package | URL | | ------------------------------------- | ------------------------------------------------- | ---------------------------------------------------------------------------------------------- | | Ed25519 Signature 2020 | ed25519-signature-2020-context | https://w3id.org/security/suites/ed25519-2020/v1 | | X25519 Key Agreement 2020 | x25519-key-agreement-2020-context | https://w3id.org/security/suites/x25519-2020/v1 | | DID | did-context | https://www.w3.org/ns/did/v1 | | Verifiable Credentials Data Model 1.0 | credentials-context | https://www.w3.org/2018/credentials/v1 | | Verifiable Credentials Data Model 2.0 | @digitalcredentials/credentials-v2-context | https://www.w3.org/ns/credentials/v2 | | Data Integrity | @digitalbazaar/data-integrity-context | https://w3id.org/security/data-integrity/v1, https://w3id.org/security/data-integrity/v2 | | Bitstring Status List | @digitalbazaar/vc-bitstring-status-list-context | https://www.w3.org/ns/credentials/status/v1 | | Status List 2021 (deprecated) | @digitalbazaar/vc-status-list-context | https://w3id.org/vc/status-list/2021/v1 | | Authorization Capabilities (zCap) | @digitalbazaar/zcap-context | https://w3id.org/zcap/v1 | | Multikey | @digitalbazaar/multikey-context | https://w3id.org/security/multikey/v1 | | AES Key Wrapping 2019 | aes-key-wrapping-2019-context | https://w3id.org/security/suites/aes-2019/v1 | | SHA-256 HMAC Key 2019 | sha256-hmac-key-2019-context | https://w3id.org/security/suites/hmac-2019/v1 | | Open Badges v3 | @digitalcredentials/open-badges-context | https://purl.imsglobal.org/spec/ob/v3p0/context-3.0.3.json (and prior 3.0.x / beta versions) |

Install

  • Node.js 20+ is recommended.

NPM

To install via NPM:

npm install @interop/security-document-loader

Development

To install locally (for development):

git clone https://github.com/interop-alliance/security-document-loader.git
cd security-document-loader
npm install

Usage

To get a default document loader (with the stock set of bundled contexts):

import { securityLoader } from '@interop/security-document-loader'

const documentLoader = securityLoader().build()

To add additional contexts:

import { securityLoader } from '@interop/security-document-loader'

const loader = securityLoader()
loader.addStatic('https://example.com/my-context/v1', contextObject)

const documentLoader = loader.build()

React Native

This library caches documents via its jsonld-document-loader dependency, which calls the global structuredClone. React Native's Hermes engine does not provide structuredClone, so calling .build() (or addStatic) will throw ReferenceError: Property 'structuredClone' doesn't exist unless you install a shim before this loader is used (e.g. in your app's entry/shim.js):

if (typeof structuredClone === 'undefined') {
  // Sufficient for JSON-LD context/DID documents, which are plain JSON.
  globalThis.structuredClone = (value) => JSON.parse(JSON.stringify(value))
}

If you need full structured-clone semantics (Date/Map/Set/typed arrays), use a faithful polyfill such as @ungap/structured-clone instead.

Fetching From the Web

To enable fetching arbitrary contexts from the web (not recommended, if you can avoid it):

const documentLoader = securityLoader({ fetchRemoteContexts: true }).build()

Supported URL Protocol Handlers

Out of the box, this library supports loading the following documents:

  • Explicitly added URLs from static local caches (that is, ones that you explicitly add via loader.addStatic)
  • DID Documents using the did:key and did:web methods.

Additionally, if your use case allows it, you can enable fetchRemoteContexts, which will add support for URLs using the http and https protocols (see previous section).

Adding Custom Protocol Handlers

Sometimes you will need to add documents with other URL protocols. If you have internal code to resolve those protocols (for example, you can fetch some urn: documents from a local database), you can write a custom protocol handler:

import { securityLoader } from '@interop/security-document-loader'

function getDocument(url) {
  // Some internal function that fetches or creates documents
}

const customResolver = {
  /**
   * @param {object} options - Options hashmap.
   * @param {string} options.url - Document URL (here `urn:...` key id)
   * @returns {Promise<object>} - Resolves with key object document.
   */
  async get(params: Record<string, string>): Promise<unknown> {
    let document
    try {
      document = await getDocument(params.url)
    } catch (e) {
      throw new Error('NotFoundError')
    }

    return document
  }
};

// For example, use your `getDocument` function to resolve all `urn:` URIs:
securityLoader.setProtocolHandler({protocol: 'urn', handler: customResolver})

const documentLoader = securityLoader().build()

Contribute

PRs accepted.

If editing the Readme, please conform to the standard-readme specification.

License

MIT License © 2022 Digital Credentials Consortium.