npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@usesense/web-sdk

v4.2.1

Published

UseSense Web SDK for biometric identity verification

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

qudusadeyemiqudusadeyemi

Keywords

usesenseverificationbiometriclivenessidentity

Readme

@usesense/web-sdk

Production-quality Web SDK for UseSense human verification flows. Collects comprehensive signals (video frames, optional audio, web integrity heuristics, optional WebAuthn) and transmits them to the UseSense backend for evaluation.

Features

  • 🎥 Video Capture: High-quality frame capture with configurable FPS and duration
  • 🎤 Optional Audio: Risk-based or always-on audio recording
  • 🔒 Web Integrity Heuristics: Comprehensive browser fingerprinting and environment signals
  • 🔐 WebAuthn Support: Optional credential binding for enhanced security
  • 🎯 Step-Up Challenges: Head turn, follow dot, and speak phrase challenges
  • 🎨 Customizable Branding: Logo, colors, and styling
  • 📱 Responsive Design: Mobile-first, calm, and trustworthy UX
  • 🚀 TypeScript: Full type safety and autocomplete
  • Production Ready: Error handling, retries, and idempotency

Installation

npm install @usesense/web-sdk
# or
yarn add @usesense/web-sdk
# or
pnpm add @usesense/web-sdk

Quick Start

React Component (Recommended)

import { createUseSenseClient, UseSenseVerification } from '@usesense/web-sdk';

const client = createUseSenseClient({
  apiBaseUrl: 'https://api.usesense.ai',
  tenantKey: 'your-tenant-key',
  environment: 'production',
  branding: {
    logoUrl: 'https://yourdomain.com/logo.png',
    primaryColor: '#4F63F5',
    buttonRadius: 12
  },
  options: {
    audioEnabled: 'risk_based',
    captureDurationMs: 2500,
    targetFps: 15,
    maxFrames: 40
  }
});

function MyApp() {
  return (
    <UseSenseVerification
      client={client}
      sessionType="enrollment"
      externalUserId="user-123"
      onComplete={(decision) => {
        console.log('Verification complete:', decision);
      }}
      onError={(error) => {
        console.error('Verification error:', error);
      }}
      onEvent={(event) => {
        console.log('Event:', event.type, event.data);
      }}
    />
  );
}

Headless Mode (Programmatic)

import { createUseSenseClient } from '@usesense/web-sdk';

const client = createUseSenseClient({
  apiBaseUrl: 'https://api.usesense.ai',
  tenantKey: 'your-tenant-key',
  environment: 'production'
});

// Start enrollment
const session = await client.startEnrollment({
  externalUserId: 'user-123',
  metadata: { source: 'web-app' }
});

// Run verification (captures video, collects signals, uploads)
const decision = await client.runVerificationSession({
  session_id: session.session_id,
  session_token: session.session_token
});

console.log('Decision:', decision.decision);
console.log('Trust Score:', decision.channel_trust_score);
console.log('Liveness Score:', decision.liveness_score);

Configuration

UseSenseConfig

interface UseSenseConfig {
  apiBaseUrl: string;              // UseSense API endpoint
  tenantKey: string;               // Your tenant API key
  environment: 'sandbox' | 'production';
  
  branding?: {
    logoUrl?: string;              // Your company logo
    primaryColor?: string;         // Primary brand color (default: #4F63F5)
    buttonRadius?: number;         // Button border radius in px (default: 12)
    fontFamily?: string;           // Custom font family
  };
  
  options?: {
    audioEnabled?: 'never' | 'risk_based' | 'always';  // default: 'risk_based'
    stepUpPolicy?: 'risk_based' | 'always' | 'never';  // default: 'risk_based'
    captureDurationMs?: number;    // default: 2500
    targetFps?: number;            // default: 15
    maxFrames?: number;            // default: 40
    maxUploadSizeMb?: number;      // default: 10
    webAuthnEnabled?: boolean;     // default: false
  };
}

API Methods

createUseSenseClient(config)

Create a client instance.

client.startEnrollment(params)

Start an enrollment session (first-time identity capture).

const session = await client.startEnrollment({
  externalUserId: 'user-123',      // Optional: your internal user ID
  metadata: { source: 'mobile' }   // Optional: custom metadata
});

client.startAuthentication(params)

Start an authentication session (verify against existing identity).

const session = await client.startAuthentication({
  identityId: 'identity-abc',      // Required: UseSense identity ID
  metadata: { loginType: '2fa' }   // Optional: custom metadata
});

client.runVerificationSession(params)

Run a complete verification session (headless mode).

const decision = await client.runVerificationSession({
  session_id: session.session_id,
  session_token: session.session_token
});

Events

The SDK emits events throughout the verification flow:

<UseSenseVerification
  client={client}
  sessionType="enrollment"
  onEvent={(event) => {
    switch (event.type) {
      case 'session_created':
        console.log('Session ID:', event.data.session_id);
        break;
      case 'permissions_requested':
        console.log('Requesting:', event.data.type);
        break;
      case 'capture_started':
        console.log('Capturing video...');
        break;
      case 'frame_captured':
        console.log('Frame:', event.data.frame_index);
        break;
      case 'upload_completed':
        console.log('Upload complete');
        break;
      case 'decision_received':
        console.log('Decision:', event.data);
        break;
    }
  }}
/>

Event types:

  • session_created
  • permissions_requested / permissions_granted / permissions_denied
  • capture_started / frame_captured / capture_completed
  • audio_record_started / audio_record_completed
  • challenge_started / challenge_completed
  • upload_started / upload_progress / upload_completed
  • complete_started / decision_received
  • error

Final Decision Object

interface FinalDecisionObject {
  session_id: string;
  session_type: 'enrollment' | 'authentication';
  identity_id?: string;
  decision: 'APPROVE' | 'REJECT' | 'MANUAL_REVIEW' | 'STEP_UP_REQUIRED';
  channel_trust_score: number;   // 0-100
  liveness_score: number;         // 0-100
  dedupe_risk_score: number;      // 0-100
  reasons: string[];              // Why this decision was made
  rule_applied?: string;
  timestamp: string;
  signature: string;              // Backend signature for verification
}

Error Handling

The SDK provides typed errors:

import { UseSenseError } from '@usesense/web-sdk';

try {
  const decision = await client.runVerificationSession(params);
} catch (error) {
  if (error instanceof UseSenseError) {
    console.error('Error code:', error.code);
    console.error('Message:', error.message);
    
    switch (error.code) {
      case 'CAMERA_PERMISSION_DENIED':
        // Show instructions to enable camera
        break;
      case 'NETWORK_ERROR':
        // Retry logic
        break;
      case 'SESSION_EXPIRED':
        // Start new session
        break;
      case 'QUOTA_EXCEEDED':
        // Show "try later" message
        break;
    }
  }
}

Error codes:

  • CAMERA_PERMISSION_DENIED
  • MIC_PERMISSION_DENIED
  • NETWORK_ERROR
  • SESSION_EXPIRED
  • QUOTA_EXCEEDED
  • USER_CANCELLED
  • FACE_NOT_DETECTED
  • LOW_LIGHT
  • TIMEOUT
  • UNKNOWN_ERROR

Browser Compatibility

| Browser | Version | Support | |---------|---------|---------| | Chrome | 80+ | ✅ Full | | Safari | 14+ | ✅ Full | | Firefox | 75+ | ✅ Full | | Edge | 80+ | ✅ Full |

Required APIs:

  • getUserMedia (camera/microphone access)
  • MediaRecorder (audio recording)
  • Canvas (frame capture)
  • WebAuthn (optional)

Security & Privacy

Data Handling

  • Video/audio blobs are never stored in localStorage or IndexedDB
  • All capture data is kept in-memory only
  • Media tracks are released immediately after upload
  • Requests include idempotency keys to prevent duplicate submissions

WebAuthn

When enabled, WebAuthn provides:

  • Session binding to prevent replay attacks
  • Platform authenticator integration
  • No biometric data leaves the device
const client = createUseSenseClient({
  // ...
  options: {
    webAuthnEnabled: true
  }
});

Web Integrity Signals

The SDK collects browser environment data for fraud detection:

  • User agent, platform, languages
  • Hardware capabilities (CPU cores, device memory)
  • Screen properties and pixel ratio
  • Media device counts (no labels without permission)
  • WebGL fingerprint (renderer/vendor only)
  • Performance timing
  • WebDriver detection

No PII is collected. All signals are used for risk assessment by the UseSense backend.

Troubleshooting

Camera Permission Issues

Safari iOS:

  • Camera access requires HTTPS or localhost
  • Check Settings > Safari > Camera

Chrome:

  • Check site settings: chrome://settings/content/camera
  • Ensure no other tab is using the camera

Network Errors

  • Verify apiBaseUrl is correct
  • Check CORS configuration on your backend
  • Ensure tenantKey is valid

WebAuthn Not Working

  • Requires HTTPS (except localhost)
  • Platform authenticator must be available
  • User may need to enable in browser settings

Advanced Usage

Custom Styling

Override CSS variables:

.usesense-container {
  --usesense-primary: #4F63F5;
  --usesense-background: #F8F9FA;
  --usesense-surface: #FFFFFF;
  --usesense-text: #1A1A1A;
  --usesense-text-secondary: #6B7280;
  --usesense-border: #E5E7EB;
  --usesense-error: #EF4444;
  --usesense-success: #10B981;
}

Event Tracking

client.on('*', (event) => {
  // Send to analytics
  analytics.track('UseSense Event', {
    type: event.type,
    timestamp: event.timestamp,
    data: event.data
  });
});

Support

  • Documentation: https://watchtower.usesense.ai/developer-docs
  • Email: [email protected]
  • Issues: https://github.com/qudusadeyemi/usesense-web-sdk/issues

License

MIT © UseSense