npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@mikeargento/occproof

v1.2.1

Published

Portable cryptographic proof library for Origin Controlled Computing.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

mikeargentomikeargento

Keywords

Readme

OCC — Origin Controlled Computing

Cryptographic proof of when digital objects came into existence.

npm occproof Website Docs

OCC produces portable cryptographic proof when bytes are committed through a hardware-attested execution boundary. The proof is not added to the artifact — it is caused by the act of committing through the authorized path.

Patent Pending.

Try It

  1. Go to occ.wtf
  2. Drop a file
  3. Get a proof

Your file never leaves your device. Only the SHA-256 hash is sent to the enclave. The proof is signed inside an AWS Nitro Enclave and sealed by Ethereum anchors every 12 seconds.

What OCC Proves

  • This specific digital state existed — at this position in a monotonic causal chain
  • It was committed through a hardware boundary — AWS Nitro Enclave with attested measurement
  • Everything before it already existed — Ethereum front anchors seal backward
  • The ordering is unforgeable — atomic causality, not timestamps

Time is subjective. Causality isn't. OCC gives you causality directly.

How It Works

  1. Allocate — The enclave pre-allocates a causal slot (nonce + counter) before the artifact hash is known
  2. Bind — The artifact's SHA-256 digest is bound to the pre-allocated slot and signed with Ed25519 inside the TEE
  3. Commit — The artifact and its proof are produced together. Fail-closed: if any step fails, nothing is produced
  4. Anchor — Every 12 seconds, an Ethereum block hash is committed to the same chain as a future causal boundary

The slot exists before the artifact. The proof is caused by the commit. The Ethereum anchor proves everything before it existed before that block was mined.

Proof Format (occ/1)

Every proof is a self-contained JSON document. No server needed to verify.

{
  "version": "occ/1",
  "artifact": { "hashAlg": "sha256", "digestB64": "..." },
  "commit": {
    "counter": "48",
    "slotCounter": "47",
    "epochId": "...",
    "prevB64": "...",
    "chainId": "occ:main"
  },
  "signer": { "publicKeyB64": "...", "signatureB64": "..." },
  "environment": {
    "enforcement": "measured-tee",
    "measurement": "638d655a...",
    "attestation": { "format": "aws-nitro" }
  },
  "slotAllocation": { "counter": "47", "signatureB64": "..." },
  "proofHash": "..."
}

Key fields:

  • counter — monotonic position in the causal chain (shared with Ethereum anchors)
  • slotCounter — the pre-allocated slot that preceded this commit
  • prevB64 — hash of the previous proof (chain linking)
  • proofHash — canonical SHA-256 of the proof (excluded from its own computation)
  • environment.measurement — PCR0 of the enclave image (verifiable)

Verify a proof

import { verify } from "occproof";
const result = await verify({ proof, bytes });

Verification checklist

A compliant verifier MUST check:

  1. Ed25519 signature — canonical signed body covers artifact, commit, attribution, policy, principal, actor, measurement
  2. Attestation binding — attestation report's userData == SHA-256 of signed body (binds hardware attestation to exact content)
  3. Slot allocation — verify slot signature, confirm slotHashB64 matches canonical slot body, confirm slot.counter < commit.counter
  4. Chain linkingprevB64 matches SHA-256 of the previous proof in the same chain
  5. Measurement policy — enforce an allowlist of trusted PCR0 hashes; reject unknown measurements in production
  6. metadata is unsignedproof.metadata is advisory only and NOT covered by the signature

What OCC is NOT

  • Not a timestamp — proves causal order, not clock time
  • Not a blockchain — no consensus, no distributed ledger, no token
  • Not a watermark — no data embedded in the file
  • Not DRM — no encrypted containers or access control
  • Not proof of authorship — proves commitment through a boundary, not who created it

Architecture

occ/
  src/                        Core library (occproof on npm)
  server/
    commit-service/           TEE commit service (AWS Nitro Enclave)
      src/enclave/            Enclave app (Ed25519, counter, slots)
      src/parent/             Parent server (HTTP, VSOCK bridge)
  packages/
    hosted/                   Ethereum anchor service (Railway)
  website/                    occ.wtf (Next.js on Vercel)

Infrastructure

| Component | Location | Purpose | |---|---|---| | TEE | AWS EC2 + Nitro Enclave | Signs proofs, maintains monotonic counter | | Anchor | Railway (agent.occ.wtf) | Commits ETH block hashes every 12 seconds | | Ledger | S3 (occ-ledger-prod) | Immutable proof storage, 10-year Object Lock | | Website | Vercel (occ.wtf) | Drop zone, proof pages, chat, docs | | Tunnel | Cloudflare (nitro.occproof.com) | Public access to TEE |

Cryptography

| Primitive | Algorithm | Library | |---|---|---| | Hashing | SHA-256 | @noble/hashes | | Signatures | Ed25519 | @noble/ed25519 | | Attestation | AWS Nitro | Hardware (PCR0 measurement) | | Anchoring | Ethereum | Block hash commitment |

Audited, zero-dependency, pure TypeScript.

Links

License

Copyright 2024-2026 Mike Argento. Patent Pending.

Licensed under the Apache License, Version 2.0.