npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@sipheron/vdr-pipeline

v0.1.3

Published

Full SDK for AI pipeline cryptography provenance. Anchor GenAI events directly on-chain or via SipHeron API.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

sipheron-arcssipheron-arcs

Keywords

Readme

@sipheron/vdr-pipeline

npm version License Node Solana

The Cryptographic Trust & Governance Engine for Autonomous AI.

vdr-pipeline provides enterprise developers with a lightweight, composable SDK to cryptographically prove every step of an AI reasoning chain. From the initial prompt to tool execution and final generation, every event is hashed, batched, and anchored to an immutable ledger.

Stop relying on ephemeral logs. Treat your AI workflows as verifiable, tamper-evident document trails ready for SOC 2, HIPAA, and EU AI Act compliance.

Key Capabilities

  • Zero-Trust Payload Privacy: Only cryptographic hashes (SHA-256) leave your infrastructure. Raw prompts, PII, and responses always remain in your environment.
  • One-Transaction Merkle Anchoring: Anchor hundreds of agent steps in a single Solana transaction to minimize latency and blockchain fees.
  • Zero-Knowledge Selective Disclosure: Prove specific properties of an AI event (e.g., "The model used was gpt-4o" or "Output token count < 500") to third parties using SnarkJS without revealing the actual payload content.
  • Immutable Audit Trails (W3C Aligned): One-click export of highly structured, standalone cryptographic bundles for compliance auditors.
  • Seamless Framework Integrations: Drop-in adapters for LangChain, LlamaIndex, and the OpenAI SDK. Zero manual instrumentation required.

Installation

npm install @sipheron/vdr-pipeline @solana/web3.js

Note: @sipheron/vdr-core is required as a peer dependency.

Quick Start

1. Initialize the Pipeline

You can run the pipeline in Managed Mode (via SipHeron's API) or Direct Mode (using your own Solana keypair).

import { Pipeline } from '@sipheron/vdr-pipeline';

// Example: Managed Mode using SipHeron infrastructure
const pipeline = Pipeline.withApiKey(process.env.SIPHERON_API_KEY!, {
  pipelineName: 'onboarding-agent'
});

2. Log AI Events

Use the strongly-typed event loggers to track the deterministic state of your agent's reasoning trace.

await pipeline.logPrompt({ role: 'user', content: 'Process application 8492.' });
await pipeline.logRetrieval({ query: 'App 8492 data', resultCount: 2 });
await pipeline.logGeneration({ content: 'Application approved.', model: 'gpt-4o' });

3. Anchor & Export

Finalize the session to freeze the cryptographic state and anchor the Merkle root to the blockchain.

const result = await pipeline.finalizeAndAnchor();

console.log(`✅ Session anchored successfully!`);
console.log(`🔗 Verification URL: ${result.explorerUrl}`);
console.log(`🌳 Merkle Root: ${result.merkleRoot}`);

Framework Integrations

Stop writing boilerplate. Use our official adapters to instantly make your existing AI frameworks compliance-ready.

LangChain

import { PipelineCallbackHandler } from '@sipheron/vdr-pipeline/langchain';

const handler = new PipelineCallbackHandler(pipeline);
const agent = new AgentExecutor({ agent: myAgent, tools: myTools });

await agent.invoke({ input: "Analyze data" }, { callbacks: [handler] });

LlamaIndex

import { PipelineEventListener } from '@sipheron/vdr-pipeline/llamaindex';
import { Settings } from 'llamaindex';

const listener = new PipelineEventListener(pipeline);
Settings.callbackManager.on('retrieve', listener.onRetrieve);
// Fully orchestrates trace collection under the hood.

OpenAI Native

import { wrapOpenAI } from '@sipheron/vdr-pipeline/openai';
import OpenAI from 'openai';

const openai = wrapOpenAI(new OpenAI(), pipeline);

// Generates, logs, and tracks latency automatically
await openai.chat.completions.create({ model: 'gpt-4o', messages: [...] });

Enterprise Governance

vdr-pipeline shifts AI engineering from mere logging to proactive governance.

Lineage & Agent Swarms

Trace causation across complex multi-agent swarms. Child sessions cryptographically bind themselves to their parent's specific event trigger and state root.

const childPipeline = await orchestrator.createChild('Reviewer-Agent');
// Child provenance is permanently paired to the Parent's timeline.

Privacy-Preserving Proofs (Phase 8 ZK)

Prove an AI agent didn't exceed constraints without leaking intellectual property using Zero-Knowledge proofs.

import { SnarkJsProvider } from '@sipheron/vdr-pipeline/crypto/zk';

const pipeline = new Pipeline({ 
  pipelineName: 'audit-agent', 
  zkProvider: new SnarkJsProvider({ wasmPath: '...', zkeyPath: '...' })
});

// Prove the response was under 500 tokens using Groth16 Snarks
const zkProof = await pipeline.generateZKProof(eventHash, "tokenCount < 500");
const isValid = await pipeline.verifyZKProof(zkProof);

Exportable Compliance Bundles

Generate a complete, verifiable JSON artifact that a 3rd-party auditor can use to cryptographically replay your AI's reasoning chain.

import { AuditTrailBundle } from '@sipheron/vdr-pipeline';

const bundle = AuditTrailBundle.fromSession(pipeline.exportSession());
fs.writeFileSync('compliance_audit_log.json', bundle.toString());

Documentation

For deep-dives into the architecture, security posture, and advanced implementations, refer to the VDR-Pipeline Master Plan.

Community & Open Source

License

This project is licensed under the Apache License 2.0. See the LICENSE file for more information.