@kakunin/sdk

TypeScript SDK for the Kakunin AI agent compliance API — X.509 certificate issuance, behavioral monitoring, and MiCA / EU AI Act compliance reporting.

npm install @kakunin/sdk

Quick start

import { Kakunin } from '@kakunin/sdk';

const kkn = new Kakunin({ apiKey: process.env.KKN_KEY! });

// Register an agent and issue its X.509 certificate
const agent = await kkn.agents.create({
  name: 'TradeBot-1',
  model_hash: await Kakunin.computeModelHash('gpt-4o:2024-11'),
});
const cert = await kkn.agents.certify(agent.id);
console.log(cert.serial_number); // e.g. "c4f9-17a2"

// Ingest a behavioral event and get a real-time risk score
const event = await kkn.events.ingest({
  agentId: agent.id,
  actionType: 'transaction_initiated',
  details: { amount_usd: 50000, venue: 'NYSE' },
});
console.log(event.risk_band); // "low" | "medium" | "high"

// Verify a certificate (public — no auth required)
const verified = await kkn.verify.cert(cert.serial_number);
console.log(verified.status); // "active" | "revoked" | "expired"

Sandbox mode

Use a kkn_test_... key to hit the sandbox CA at no cost. Certificates are real X.509 but issued by a test root and have no regulatory validity.

const sandbox = new Kakunin({ apiKey: 'kkn_test_...' });
console.log(sandbox.isSandbox()); // true

API surface

| Resource | Methods | |---|---| | kkn.agents | create, get, list, update, certify, getRisk | | kkn.events | ingest, list | | kkn.certificates | revoke | | kkn.verify | cert (no auth) | | kkn.webhooks | constructEvent | | Kakunin (static) | computeModelHash |

Webhook verification

app.post('/webhooks/kakunin', async (req, res) => {
  const event = await kkn.webhooks.constructEvent(
    req.rawBody,
    req.headers['kakunin-signature'] as string,
    process.env.KKN_WEBHOOK_SECRET!,
  );
  if (event.event === 'certificate.revoked') {
    // block the agent immediately
  }
  res.sendStatus(200);
});

Requirements

Node.js ≥ 18. Full docs at docs.kakunin.ai.