TypeScript SDK for storing and retrieving provenance data via the Swarm network.
- Node.js >= 18.0.0
- viem >= 2.0.0 (optional, for blockchain anchoring only)
pnpm add @datafund/swarm-provenanceFor blockchain anchoring features, also install viem:
pnpm add @datafund/swarm-provenance viemFor x402 paid gateway access (higher rate limits), also install:
pnpm add @datafund/swarm-provenance @x402/fetch @x402/evm viemimport { ProvenanceClient } from '@datafund/swarm-provenance';
const client = new ProvenanceClient();
// Upload data
const result = await client.upload('Hello, World!', {
standard: 'my-provenance-v1',
});
console.log('Uploaded:', result.reference);
// Download data
const downloaded = await client.download(result.reference);
console.log('Content:', new TextDecoder().decode(downloaded.file));By default, the SDK uses the free tier (X-Payment-Mode: free), which is rate-limited. For higher throughput, configure x402 automatic USDC payments:
import { ProvenanceClient } from '@datafund/swarm-provenance';
import { createWalletClient, http } from 'viem';
import { baseSepolia } from 'viem/chains';
import { privateKeyToAccount } from 'viem/accounts';
import { publicActions } from 'viem';
// Create a signer with readContract support
const wallet = createWalletClient({
account: privateKeyToAccount('0x...'),
chain: baseSepolia,
transport: http(),
}).extend(publicActions);
const client = new ProvenanceClient({
payment: { wallet },
});
// Requests that receive 402 responses are automatically paid via USDC
const result = await client.upload('Hello, World!');Payment modes:
'free'(default) — sendsX-Payment-Mode: freeheader, rate-limited'none'— no payment header, gets raw 402 responses{ wallet }— automatic x402 USDC payments via@x402/fetch
import { ChainClient, fromPrivateKey } from '@datafund/swarm-provenance/chain';
// Read-only (no wallet needed)
const chain = new ChainClient({ chain: 'base-sepolia' });
const exists = await chain.verifyOnChain(contentHash);
const record = await chain.getDataRecord(contentHash);
// With wallet (browser)
import { fromEip1193Provider } from '@datafund/swarm-provenance/chain';
const signer = await fromEip1193Provider(window.ethereum);
const chain = new ChainClient({ chain: 'base-sepolia', signer });
const result = await chain.anchor(contentHash, 'dataset');
// With private key (Node.js)
const signer = await fromPrivateKey('0x...', 'https://sepolia.base.org');
const chain = new ChainClient({ chain: 'base-sepolia', signer });
await chain.anchor(contentHash, 'dataset');- Simple API: High-level
upload()anddownload()methods handle the full workflow - Automatic stamp management: Acquires stamps from the pool automatically
- Notary signing: Optional cryptographic signatures for data authenticity
- Content verification: Automatic SHA256 hash verification on download
- Blockchain anchoring: Register data hashes on-chain for immutable provenance
- Browser + Node.js: Works in both environments with native
fetch - TypeScript first: Full type definitions included
const client = new ProvenanceClient({
gatewayUrl?: string, // default: https://provenance-gateway.datafund.io
timeout?: number, // default: 30000ms
payment?: PaymentMode, // default: 'free' (see x402 Payment Mode)
retry?: GatewayRetryConfig, // auto-retry on 502/503/429 (default: 2 retries, 1s backoff)
});const result = await client.upload(content, {
sign?: 'notary', // Enable notary signing
standard?: string, // Provenance standard identifier
stampId?: string, // Use existing stamp (skip pool)
poolSize?: 'small' | 'medium' | 'large', // Pool size preset
contentType?: string, // Content type
});
// Returns:
// {
// reference: string, // Swarm hash
// metadata: ProvenanceMetadata,
// }const result = await client.download(reference, {
verify?: boolean, // Verify notary signature (default: true)
});
// Returns:
// {
// file: Uint8Array, // Decoded content
// metadata: ProvenanceMetadata,
// verified?: boolean,
// signatures?: NotarySignature[],
// }// Health check
await client.health(); // => boolean
// Notary info
await client.notaryInfo();
// => { enabled: boolean, available: boolean, address?: string }
// Pool status
await client.poolStatus();
// => { enabled: boolean, available: Record<string, number>, reserve: Record<string, number> }
// Acquire stamp directly
await client.acquireStamp('small');
// => { batchId: string, depth: number, sizeName: string, fallbackUsed: boolean }import {
ProvenanceError,
GatewayConnectionError,
StampError,
NotaryError,
VerificationError,
PaymentError,
PaymentConfigurationError,
PaymentRateLimitError,
} from '@datafund/swarm-provenance';
try {
await client.upload(content);
} catch (error) {
if (error instanceof PaymentRateLimitError) {
console.error('Rate limited, retry after:', error.retryAfterSeconds, 'seconds');
} else if (error instanceof PaymentConfigurationError) {
console.error('Missing @x402 packages:', error.message);
} else if (error instanceof StampError) {
// error.code may be 'POOL_EXHAUSTED' when pool is empty
console.error('Stamp acquisition failed:', error.message);
} else if (error instanceof GatewayConnectionError) {
console.error('Gateway error:', error.statusCode, error.message);
if (error.suggestion) {
console.error('Suggestion:', error.suggestion);
}
}
}import {
buildMetadata,
extractContent,
verifyContentHash,
sha256Hex,
bytesToBase64,
base64ToBytes,
} from '@datafund/swarm-provenance';
// Build metadata manually
const metadata = buildMetadata(content, {
stampId: 'my-stamp',
standard: 'v1',
});
// Extract and verify
const originalContent = extractContent(metadata);
const isValid = verifyContentHash(metadata);import {
verifySignature,
verifyAllSignatures,
} from '@datafund/swarm-provenance';
const result = verifySignature(signature, metadata, expectedSigner);
// => { valid: boolean, dataHashValid: boolean, signerValid?: boolean }The chain module provides on-chain data provenance via a DataProvenance smart contract. It uses viem as an optional peer dependency (see Installation).
import { ChainClient } from '@datafund/swarm-provenance/chain';
const chain = new ChainClient({
chain: 'base-sepolia', // or 'base' for mainnet, or a custom ChainPreset
rpcUrl?: string, // override RPC endpoint
signer?: ChainSigner, // required for write operations
retry?: RetryConfig, // auto-retry on nonce errors (default: 2 retries, 1s backoff)
});// Check if a hash is registered on-chain
await chain.verifyOnChain(dataHash); // => boolean
// Get full provenance record
await chain.getDataRecord(dataHash);
// => { dataHash, owner, timestamp, dataType, status, accessors, transformationLinks }
// Get all records owned by an address
await chain.getUserDataRecords('0x...'); // => string[]
await chain.getUserDataRecordsCount('0x...'); // => number
await chain.getUserDataRecordsPaginated('0x...', 0, 10); // => string[]
// Check if an address has accessed a hash
await chain.hasAddressAccessed(dataHash, '0x...'); // => boolean
// Check delegate authorization
await chain.isAuthorizedDelegate(owner, delegate); // => boolean
// Transformation links and parents (v2 contract)
await chain.getTransformationLinks(dataHash);
// => TransformationLink[] ({ newDataHash, description })
await chain.getTransformationParents(dataHash); // => string[]
await chain.getChildHashes(dataHash); // => string[]
// Traverse full provenance chain (BFS, bidirectional)
await chain.getProvenanceChain(dataHash, 10);
// => ChainProvenanceRecord[] — ancestors + descendants up to maxDepth
// Detect v2 contract support
await chain.supportsTransformationLinks(); // => boolean
// Health check and balance
await chain.healthCheck(); // => boolean (never throws)
await chain.getBalance(); // => { address, balanceWei, balanceEth, chain }// Anchor a data hash on-chain
const result = await chain.anchor(dataHash, 'dataset');
// => { txHash, blockNumber, gasUsed, explorerUrl, dataHash, dataType, owner }
// Anchor on behalf of another owner (operator only)
await chain.anchorFor(dataHash, 'dataset', ownerAddress);
// Record access
await chain.recordAccess(dataHash);
// => { txHash, blockNumber, gasUsed, explorerUrl, dataHash, accessor }
// Record 1-to-1 transformation
await chain.recordTransformation(originalHash, newHash, 'filtered PII');
// Record N-to-1 merge transformation (v2 contract)
await chain.mergeTransform(
[sourceHash1, sourceHash2],
mergedHash,
'combined datasets',
'merged', // data type (default: 'merged')
);
// Set data status (ACTIVE=0, RESTRICTED=1, DELETED=2)
import { DataStatus } from '@datafund/swarm-provenance/chain';
await chain.setDataStatus(dataHash, DataStatus.RESTRICTED);
// Transfer ownership
await chain.transferOwnership(dataHash, newOwnerAddress);
// Manage delegates
await chain.setDelegate(delegateAddress, true); // authorize
await chain.setDelegate(delegateAddress, false); // revoke
// Batch operations
await chain.batchAnchor([
{ dataHash: hash1, dataType: 'dataset' },
{ dataHash: hash2, dataType: 'model' },
]);
await chain.batchRecordAccess([hash1, hash2]);
await chain.batchSetDataStatus([
{ dataHash: hash1, status: DataStatus.RESTRICTED },
]);import {
fromEip1193Provider,
fromPrivateKey,
fromViemWalletClient,
} from '@datafund/swarm-provenance/chain';
// Browser wallet (MetaMask, etc.)
const signer = await fromEip1193Provider(window.ethereum);
// Private key (Node.js / scripts)
const signer = await fromPrivateKey('0x...', 'https://sepolia.base.org');
// Existing viem WalletClient
const signer = fromViemWalletClient(walletClient);import {
ChainConnectionError,
ChainTransactionError,
DataNotRegisteredError,
SignerRequiredError,
} from '@datafund/swarm-provenance/chain';
try {
await chain.anchor(hash, 'dataset');
} catch (error) {
if (error instanceof SignerRequiredError) {
console.error('Connect a wallet first');
} else if (error instanceof ChainTransactionError) {
console.error('Transaction failed:', error.message);
// error.originalError has the full viem error for debugging
}
}| Network | Preset | Contract |
|---|---|---|
| Base Sepolia (testnet) | base-sepolia |
0xD4a724CD7f5C4458cD2d884C2af6f011aC3Af80a |
| Base (mainnet) | base |
Not yet deployed |
The v2 contract update changes the ChainProvenanceRecord type:
// Before (v0.4.x)
record.transformations // string[]
// After (v0.5.0)
record.transformationLinks // TransformationLink[] ({ newDataHash, description })The ChainTransformation type is deprecated — use TransformationLink instead.
A reference React app is available at examples/web-app/ with upload, download, notary signing, blockchain anchoring, merge transformations, and provenance chain traversal:
cd examples/web-app
pnpm install
pnpm devOpen http://localhost:5173 to try the full workflow.
# Install dependencies
pnpm install
# Build
pnpm build
# Unit tests
pnpm test
# Integration tests (requires gateway / Hardhat)
pnpm test:integration
# E2E tests (Playwright)
cd examples/web-app && pnpm test
# Type check
pnpm typecheck
# Lint
pnpm lintContributions are welcome. Please open an issue first to discuss what you'd like to change.
- Fork the repo
- Create a feature branch from
development(git checkout -b feature/my-feature development) - Commit your changes
- Push and open a PR against
development
All PRs to main require a review. See the development section for build and test commands.
- swarm_connect - Provenance Gateway server (Python/FastAPI)
- swarm_provenance_CLI - CLI tool (Python)
- swarm_provenance_mcp - MCP server
MIT