@dropyacht/evm-signer
Advanced tools
The evm-signer/ package contains libraries for signing messages and transactions with hardware security modules (HSMs).
At this time, only GCP KMS-managed HSMs are supported, but we hope to add support for AWS Cloud HSM, Azure Dedicated HSM, and self-hosted HSMs.
We'll assume that you've set up a Google Cloud account and created an HSM key with Purpose Asymmetric sign and with Algorithm Elliptic Curve secp256k1 - SHA256 Digest.
You'll need to set appropriate GOOGLE_APPLICATION_CREDENTIALS for submitting requests.
The easiest way is to create a service account with the roles/cloudkms.signer and roles/cloudkms.publicKeyViewer minimum permission set.
You should add a new JSON key to your service account, and download it. Then set
$ export GOOGLE_APPLICATION_CREDENTIALS=key.json
pointing to the downloaded keyfile.
You can install with npm:
$ npm install @dropyacht/evm-signer
FAQs
A cloud HSM signer for EVM-compatible transactions.
We found that @dropyacht/evm-signer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Fluent Assertions is facing backlash after dropping the Apache license for a commercial model, leaving users blindsided and questioning contributor rights.
Research
Security News
Socket researchers uncover the risks of a malicious Python package targeting Discord developers.
Security News
The UK is proposing a bold ban on ransomware payments by public entities to disrupt cybercrime, protect critical services, and lead global cybersecurity efforts.