npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

nonsudo

v1.4.0

Published

NonSudo — mandate enforcement and cryptographic receipts for AI agents

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

tyrohannosaurustyrohannosaurus

Keywords

ai-agentsgovernancepolicyreceiptssecurityfintech

Readme

nonsudo

Mandate enforcement and cryptographic receipts for AI agents.

Install

npm install nonsudo

Usage

Receipt API

import { createReceipt, signReceipt, chainReceipt, verifyChain } from 'nonsudo';

Policy engine

import { loadPolicy, evaluatePolicy } from 'nonsudo/policy';

OpenAI adapter

import { createActionReceipt } from 'nonsudo/adapter-openai';

LangChain adapter

import { createNonSudoCallbacks } from 'nonsudo/adapter-langchain';

const llm = new ChatOpenAI({ callbacks: createNonSudoCallbacks(config) });

CLI

nonsudo init                           # generate keypair + scaffold config
nonsudo observe                        # start observe proxy (local telemetry)
nonsudo verify receipts.ndjson         # L1 + L2 verification
nonsudo verify receipts.ndjson --full  # L1 + L2 + L3 + L4
nonsudo conform                        # conformance test vectors
nonsudo schemas list                   # list available schema packs
nonsudo keys list                      # list signing keypairs
nonsudo health                         # run diagnostic checks
nonsudo query --file receipts.ndjson    # query an NDJSON receipt file
nonsudo report --workflow <id>         # generate workflow report
nonsudo test receipts.ndjson           # replay chain against current policy
nonsudo watch                          # watch live receipt stream

Observe logs vs signed VAR receipts

nonsudo observe writes local observe logs for developer visibility. These logs are not signed VAR receipts and are not a cryptographic audit chain. They are lightweight telemetry for understanding what your agent is doing during development.

For cryptographically signed, hash-chained, timestamped VAR receipts suitable for compliance, audit, or regulatory use — see the NonSudo platform quickstart.

For implementers

The @varcore/* packages are the underlying open standard implementation. Any implementation conforming to the VAR-Core spec can reference them directly. Full spec: https://github.com/nonsudo/varcore

Links

  • Platform: https://nonsudo.com/docs/quickstart
  • Schema registry: https://schemas.nonsudo.com
  • License: Apache-2.0