npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

kyc-panda

v0.1.1

Published

KYC gate extension for x402 endpoints. Verify once, transact anywhere.

Downloads

181

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

ash.nouruziash.nouruzi

Keywords

x402kycsiwxsign-in-with-xcaip-122identityverificationevmsolana

Readme

kyc-panda

KYC gate extension for x402 endpoints. Verify once, transact anywhere.

Adds KYC verification to any x402-protected endpoint using SIWX (CAIP-122) for chain-agnostic wallet authentication. Supports EVM and Solana.

Install

npm install kyc-panda

Usage

1. Declare KYC requirement in your 402 response

import { declareKYCGateExtension } from "kyc-panda";

// In your 402 Payment Required response handler:
const extensions = declareKYCGateExtension({
  domain: "your-api.com",
  uri: "https://your-api.com/protected-resource",
});

// Add `extensions` to your 402 response body alongside `accepts`

This tells agents: "this endpoint requires KYC" and provides a SIWX challenge + onboarding URL.

2. Check KYC on incoming requests

import { createKYCGateHook } from "kyc-panda";

const checkKYC = createKYCGateHook();

// In your request handler:
async function handleRequest(request: Request) {
  const result = await checkKYC(request);

  if (!result.grantAccess) {
    // result.reason: "KYC_NOT_FOUND" | "KYC_EXPIRED" | "KYC_DECLINED" | "INVALID_SIGNATURE" | ...
    // result.onboardingUrl: URL where the human can complete KYC
    return new Response(JSON.stringify(result), { status: 403 });
  }

  // Wallet is KYC-verified — serve the resource
  return new Response("Here's your data");
}

How it works

  1. Agent sends a request with a SIGN-IN-WITH-X header (base64-encoded SIWX payload)
  2. The hook parses, validates, and verifies the signature (EVM or Solana)
  3. Recovers the wallet address and checks KYC status against https://kyc-panda.vercel.app/api/verify
  4. Returns { grantAccess: true } if the wallet is KYC-verified

Custom verify endpoint

const checkKYC = createKYCGateHook({
  verifyEndpoint: "https://your-own-deployment.com/api/verify",
});

KYC Onboarding Flow

For wallets that haven't completed KYC:

  1. Human creates a SIWX payload and POSTs { siwxHeader } to https://kyc-panda.vercel.app/api/onboard
  2. Gets back a verificationUrl — human opens it to complete identity verification via Didit
  3. Once approved, the wallet passes KYC gates on all x402 endpoints using this package

Error Codes

| Code | Meaning | |---|---| | KYC_NOT_FOUND | Wallet has never completed KYC | | KYC_EXPIRED | KYC was approved but has expired (1 year) | | KYC_DECLINED | KYC was rejected | | KYC_PENDING_REVIEW | KYC submitted but under manual review | | INVALID_SIGNATURE | SIWX signature verification failed |