npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

revenant-sign

v1.0.0

Published

Cross-platform client for ARX CoSign electronic signatures via SOAP API

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

lobotomoelobotomoe

Keywords

revenantarxcosignelectronic-signaturedigital-signaturepdf-signingsoappkcs7cmsoasis-dss

Readme

revenant (TypeScript)

CI TypeScript: strict License: Apache 2.0

Cross-platform TypeScript/Node.js client for ARX CoSign electronic signatures via SOAP API. Library + CLI.

Server-specific settings (URL, TLS, identity discovery) are managed through server profiles -- see src/config/profiles.ts. For SOAP API technical details, see ../docs/soap-api.md.

Install

npm install revenant-sign
# or
pnpm add revenant-sign

Requires Node.js >= 18.0.0.

CLI quick start

# Interactive setup (server, credentials, signer identity)
npx revenant setup
npx revenant setup --profile ekeng

# Sign a PDF (embedded signature)
npx revenant sign document.pdf

# Sign multiple files
npx revenant sign *.pdf

# Detached CMS/PKCS#7 signature
npx revenant sign document.pdf --detached

# Check an embedded signature
npx revenant check signed.pdf

# Inspect a detached signature
npx revenant info document.pdf.p7s

# Verify with openssl (detached)
npx revenant verify document.pdf

CLI options

revenant sign <files...>
  -o, --output <path>    Output file path (single file only)
  -d, --detached         Save detached .p7s instead of embedded PDF
  -p, --position <preset>  Signature position (default: bottom-right)
  --page <page>          Page for signature (default: last)
  --image <path>         Signature image (PNG or JPEG)
  --invisible            Create invisible signature
  --font <name>          Font (noto-sans, ghea-mariam, ghea-grapalat)
  --reason <text>        Signature reason string
  --dry-run              Preview without signing

Library usage

import {
  sign,
  signDetached,
  signPdfEmbedded,
  signPdfDetached,
  verifyEmbeddedSignature,
  AuthError,
  TLSError,
} from "revenant-sign";

// High-level API (uses saved config or profile)
const signedPdf = await sign(pdfBytes, "user", "pass", {
  profile: "ekeng",
});

// Detached CMS/PKCS#7 signature
const cmsDer = await signDetached(pdfBytes, "user", "pass", {
  profile: "ekeng",
});

// Low-level API with explicit transport
import { SoapSigningTransport } from "revenant-sign/network/soap-transport";

const transport = new SoapSigningTransport(
  "https://ca.gov.am:8080/SAPIWS/DSS.asmx",
);
const signed = await signPdfEmbedded(pdfBytes, transport, "user", "pass", 120, {
  page: "last",
  position: "bottom-right",
  name: "Signer Name",
  reason: "Approved",
});

// Verify an embedded signature
const result = await verifyEmbeddedSignature(signedPdf);
console.log(result.valid, result.details);

Error handling

All functions throw typed errors from a hierarchy rooted at RevenantError:

RevenantError (base)
  AuthError           -- wrong credentials, account locked
  ServerError         -- server returned an error response
  TLSError            -- connection/TLS issues (.retryable flag)
  PDFError            -- invalid PDF structure, parse failures
  ConfigError         -- missing or malformed configuration
  CertificateError    -- certificate parsing/extraction errors
import { AuthError, TLSError, ServerError, PDFError } from "revenant-sign";

try {
  await sign(pdfBytes, user, password, { profile: "ekeng" });
} catch (e) {
  if (e instanceof AuthError) {
    console.error("Wrong credentials or account locked");
  } else if (e instanceof TLSError && e.retryable) {
    console.error("Transient connection error, retry later");
  } else if (e instanceof ServerError) {
    console.error(`Server error: ${e.message}`);
  } else if (e instanceof PDFError) {
    console.error(`Invalid PDF: ${e.message}`);
  }
}

Environment variables

| Variable | Description | | ------------------ | ------------------------------------------------------- | | REVENANT_USER | CoSign username (overrides saved config) | | REVENANT_PASS | CoSign password (overrides saved config) | | REVENANT_URL | SOAP endpoint (overrides profile URL from setup) | | REVENANT_TIMEOUT | Request timeout in seconds (default: 120) | | REVENANT_NAME | Signer display name (overrides config from setup) |

Credentials

Credentials are resolved in this order:

  1. Environment variables REVENANT_USER / REVENANT_PASS
  2. System keychain via keytar (if installed)
  3. Saved config in ~/.revenant/config.json
  4. Interactive prompt

Install keytar as an optional peer dependency for secure credential storage:

npm install keytar

Development

cd typescript/
pnpm install
pnpm test              # run unit tests
pnpm typecheck         # strict TypeScript check
pnpm build             # dual ESM + CJS via tsup

Documentation

Protocol, API, and server-specific docs are shared between implementations and live in ../docs/.

License

Apache 2.0