npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@sipheron/vdr-core

v0.1.19

Published

SipHeron VDR Official JavaScript/TypeScript SDK. Cryptographically anchor documents to Solana.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

sipheron-arcssipheron-arcs

Keywords

document-verificationblockchainsolanasha256tamper-proofnotarizationvdrsipheron

Readme

SipHeron VDR is a protocol for permanently notarizing documents to the Solana blockchain. @sipheron/vdr-core is the independent, foundational SDK that allows developers to interact with the SipHeron smart contract on Solana — either fully independently (no API key required) or via the managed SipHeron platform.

The Architecture Visualization

@sipheron/vdr-core
│
├── DIRECT (no SipHeron account needed)
│   ├── hashDocument()          — SHA-256 client-side
│   ├── anchorToSolana()        — Direct blockchain write
│   ├── verifyOnChain()         — Direct blockchain read
│   ├── deriveAnchorAddress()   — PDA derivation
│   └── verifyWebhookSignature() — HMAC verification
│
└── HOSTED (SipHeron API key required)
    └── SipHeron (Client)
        ├── anchors.create()
        ├── anchors.get()
        ├── verify.check()

The separation between DIRECT and HOSTED is very deliberate. Any sophisticated buyer or external auditor can view the open source implementation in vdr-core and confirm that we offer true, autonomous cryptographic independence. anchorToSolana() and verifyOnChain() work purely using RPC nodes. By utilizing our hosted features, you only gain convenience — metadata, certificates, dashboards, and compliance features — without giving up the fundamental blockchain promise.

Installation

npm install @sipheron/vdr-core
# and the peer dependency if utilizing Direct On-Chain functions
npm install @solana/web3.js

1. Direct, On-Chain Usage (Open Source)

No API keys, no monthly fees (beyond Solana gas), no dashboard. You talk directly with the immutable smart contract.

A. Document Hashing (Client-Side)

Everything is generated client-side to ensure documents never touch external servers unhashed.

import { hashDocument, hashFile, hashStream, hashBase64 } from '@sipheron/vdr-core'

// Browser: File / Blob
const hash1 = await hashDocument(fileBuffer)

// Node.js: Disc files
const hash2 = await hashFile('/path/to/contract.pdf')

// Streams (Node or Web Streams)
const hash3 = await hashStream(readableStream)

// APIs: Base64
const hash4 = await hashBase64('JVBERi0xLjQKJcOkw...')

B. Direct Anchoring to Solana

You bring your own Solana Keypair. The library invokes the SipHeron Contract on-chain directly via JSON RPC.

import { anchorToSolana } from '@sipheron/vdr-core'
import { Keypair } from '@solana/web3.js'

const issuerKeypair = Keypair.fromSecretKey(...) // Your wallet

const result = await anchorToSolana({
  buffer: fileBuffer,
  keypair: issuerKeypair,
  network: 'mainnet',
  metadata: 'My Private Contract v1.2' 
})

console.log('Record PDA Address:', result.pda)
console.log('Solana Transaction:', result.explorerUrl)

C. Direct On-Chain Verification

Look up your anchor explicitly parsing the Program Data Accounts.

import { verifyOnChain, deriveAnchorAddress } from '@sipheron/vdr-core'

const check = await verifyOnChain({
  hash: documentHash,
  network: 'mainnet',
  ownerPublicKey: issuerKeypair.publicKey
})

console.log(check.authentic) // true if hash matches and not revoked

D. Webhook Verification

If your server receives SipHeron Webhooks (when using the hosted platform), manually verify signatures cryptographically using constant-time comparison.

import { parseWebhookEvent } from '@sipheron/vdr-core'

const event = parseWebhookEvent({
  body: rawRequestBody,
  signature: req.headers['x-sipheron-signature'],
  secret: process.env.SIPHERON_WEBHOOK_SECRET
})

console.log(event.type) // 'anchor.confirmed'

2. Hosted Platform Usage (SipHeron Client)

For developers looking to integrate the SaaS aspects (generating PDF Certificates, maintaining managed analytics dashboards, fetching hosted compliance logs), the SDK exposes the exact same logic over our convenience wrapper API.

import { SipHeron } from '@sipheron/vdr-core'

// 1. Initialize client
const sipheron = new SipHeron({
  apiKey: process.env.SIPHERON_API_KEY,
  network: 'devnet' // or 'mainnet'
})

// 2. Wrap and anchor via Platform 
const record = await sipheron.anchors.create({
  file: documentBuffer, 
  name: 'Employment Verification' 
})
console.log('Certificate URL:', record.verificationUrl)

// 3. Batch Verification API
const verification = await sipheron.verify.check({ file: documentBuffer })

Error Handling

Clean, consistent, programmatic error classes.

import { 
  SipHeronError, 
  SolanaConnectionError, 
  TransactionError, 
  HashMismatchError 
} from '@sipheron/vdr-core'

try {
  await anchorToSolana(...)
} catch (err) {
  if (err instanceof TransactionError) {
    console.log('Wallet rejected or Tx dropped')
  }
}

Interactive Studio Example

If you want to fully test the direct engine visually, we built a stunning Interactive Studio directly into our examples directory:

cd examples/vdr-studio
npm install
node server.js

Navigate to http://localhost:3050 to drag-and-drop secure documents, generate PDAs, hash completely client-side, and directly verify/anchor to Solana.

Building

npm run build

Licensing & Security

Open Source SDK licensed under standard Apache-2.0. To report a security vulnerability or timing attack related bug within Hashing/Webhook signatures, please coordinate via [email protected].