npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@marmoxyz/sui-kit

v0.1.0

Published

Open-source threshold sharding kit for Sui. Split a wallet into shards; spend with any 2 of 3.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

davidnzubedavidnzube

Keywords

suimultisigmpcthresholdwalleted25519self-custody

Readme

Why

Storing crypto today means choosing between a hot wallet that keeps your whole key in one place, or a $150 proprietary hardware wallet. Marmo takes a third path: it splits your wallet into independent shards using Sui native multisig, so no single device, server, or login ever holds the power to move your funds.

  • Drive shard lives as an encrypted file on any cheap USB or hard drive you already own.
  • Server shard lives with a non-custodial co-signer that can never spend on its own.
  • Recovery shard lives behind a Google login via zkLogin.

Lose any one shard and the other two still work. Steal any one shard and it is useless on its own. The full private key never exists in one place.

Install

npm install @marmoxyz/sui-kit @mysten/sui

Quick start

import {
  Shard,
  MarmoWallet,
  createClient,
  buildTransferSui,
  signAndSubmit,
} from "@marmoxyz/sui-kit";

const drive = Shard.create("drive");
const server = Shard.create("server");
const recovery = Shard.create("recovery");

const wallet = MarmoWallet.twoOfThree(drive, server, recovery);
console.log(wallet.address);

const client = createClient("testnet");
const tx = await buildTransferSui(client, wallet, "0xRECIPIENT", 0.01);

const result = await signAndSubmit(client, wallet, tx, [drive, server]);
console.log(result.effects?.status.status);

The same wallet can be spent by any 2 of the 3 shards. If the drive is lost, sign with [server, recovery] instead.

Concepts

Shard

A Shard wraps a single Ed25519 keypair. Create one, import one from a saved secret, sign with it, or export its secret for cold storage.

const shard = Shard.create("drive");
const address = shard.address;
const secret = shard.exportSecret();

const restored = Shard.fromSecret(secret, "drive");

MarmoWallet

A MarmoWallet combines several shard public keys into one on-chain address governed by a threshold. The shards never have to be in the same place to create the wallet, only their public keys.

const wallet = MarmoWallet.from({
  members: [drive, server, recovery],
  threshold: 2,
});

const sameAsTwoOfThree = MarmoWallet.twoOfThree(drive, server, recovery);

Weighted members are supported for advanced policies:

const wallet = MarmoWallet.from({
  members: [
    { publicKey: drive.publicKey, weight: 2 },
    { publicKey: server.publicKey, weight: 1 },
    { publicKey: recovery.publicKey, weight: 1 },
  ],
  threshold: 3,
});

Signing

Shards sign the same transaction bytes independently, then their partial signatures are combined. Signing can happen on different machines: build the bytes once, distribute them, collect signatures back, and submit.

const tx = await buildTransaction(client, wallet, (t) => {
  const [coin] = t.splitCoins(t.gas, [1_000_000n]);
  t.transferObjects([coin], "0xRECIPIENT");
});

const driveSig = await drive.sign(tx);
const serverSig = await server.sign(tx);

await submit(client, wallet, tx, [driveSig, serverSig]);

API

| Export | Description | | --- | --- | | Shard.create(label?) | Generate a new shard. | | Shard.fromSecret(secret, label?) | Restore a shard from an exported secret. | | shard.publicKey / shard.address | The shard public key and its standalone address. | | shard.exportSecret() | Serialize the secret for encrypted storage. | | shard.sign(bytes) | Produce a partial signature over transaction bytes. | | MarmoWallet.from({ members, threshold }) | Build a wallet from members and a threshold. | | MarmoWallet.twoOfThree(a, b, c) | Convenience for the classic 2 of 3 split. | | wallet.address | The multisig wallet address that holds funds. | | wallet.combine(signatures) | Combine partial signatures into a submittable signature. | | createClient(network?) | A Sui client for testnet, mainnet, devnet, or localnet. | | buildTransaction(client, wallet, compose) | Build transaction bytes with the wallet as sender. | | buildTransferSui(client, wallet, to, amountSui) | Build a SUI transfer. | | signAndSubmit(client, wallet, bytes, shards) | Sign with the given shards and submit. | | submit(client, wallet, bytes, signatures) | Combine existing partial signatures and submit. |

Security model

Marmo relies on Sui native multisig, a protocol-level primitive, rather than hand-rolled cryptography. The threshold is enforced by the Sui network itself: a transaction carrying fewer than the required signatures is rejected by validators, not by client code.

What this gives you:

  • No single point of failure. One shard can never move funds.
  • Recoverability. Any quorum of shards can sign, so losing one shard is survivable.
  • Self-custody. The co-signer holds only one shard and cannot spend alone.

What to keep in mind:

  • Each shard is a real key. Store the drive shard encrypted and treat the recovery path as seriously as the primary path.
  • Signing assembles partial signatures, not the key. To resist host malware, the quorum should sign across separate environments, for example device plus server, rather than two shards on the same compromised machine.

License

MIT