SDK

A TypeScript SDK for secure multi-party computation (MPC) and blockchain operations using the Vultisig protocol. Build secure, decentralized applications with threshold signature schemes and multi-chain support.

Features

• 🔐 Multi-Party Computation (MPC) - Secure threshold signatures using DKLS and Schnorr protocols

• 🏦 Fast Vault - Server-assisted 2-of-2 vault for quick setup and instant signing

• 🛡️ Secure Vault - Multi-device N-of-M threshold signing with mobile device pairing

• 📲 QR Code Pairing - Pair with Vultisig mobile apps (iOS/Android) for vault creation and signing

• 🌐 Multi-Chain Support - Bitcoin, Ethereum, Solana, THORChain, and 40+ blockchains

• 🔗 Address Derivation - Generate addresses across multiple blockchain networks

• 📱 Cross-Platform - Works in browsers, Node.js, and Electron (React Native coming soon)

• 🔒 Vault Management - Import, export, encrypt, and decrypt vault keyshares

• 🔑 Seedphrase Import - Import existing BIP39 mnemonics with automatic chain discovery

• 💰 VULT Discount Tiers - Automatic swap fee discounts based on VULT token holdings

• 📋 Token Registry - Built-in known token database, fee coin lookup, and on-chain token discovery

• 🛡️ Security Scanning - Transaction validation/simulation via Blockaid, site phishing detection

• 💵 Price Feeds - Fetch token prices via CoinGecko

• 🏪 Fiat On-Ramp - Generate Banxa buy URLs for 23+ supported chains

• 🌍 WASM Integration - High-performance cryptographic operations via WebAssembly

Installation

Quick Start

1. Initialize the SDK

2. Create a Fast Vault (Server-Assisted)

3. Derive Blockchain Addresses

4. Create a Secure Vault (Multi-Device)

5. Sign with Secure Vault

6. Import/Export Vaults

7. Create Vault from Seedphrase

Import an existing wallet from a BIP39 mnemonic. Supports all 10 BIP39 languages with automatic detection:

8. Token Registry & Prices

9. Security Scanning

10. Fiat On-Ramp (Banxa)

Supported Blockchains

The SDK supports address derivation and operations for 40+ blockchain networks:

Vault Types

The SDK supports two vault types for different security and usability requirements:

When to Use Each Type

Fast Vault - Best for:

• Individual users wanting quick setup

• Development and testing

• Situations where server-assisted signing is acceptable

Secure Vault - Best for:

• Team or organizational wallets

• High-value assets requiring multi-party approval

• Scenarios requiring configurable thresholds (2-of-3, 3-of-5, etc.)

• Maximum security without server dependency during signing

Framework Integration Example

The SDK works with any JavaScript framework. Here's a React example:

React Component Example

Configuration

SDK Configuration

WASM Files

The SDK requires three WASM files to be available in your application's public directory:

• wallet-core.wasm - Trust Wallet Core for address derivation

• dkls.wasm - ECDSA threshold signatures (DKLS protocol)

• schnorr.wasm - EdDSA threshold signatures (Schnorr protocol)

For bundled applications (Vite, webpack, etc.), place these files in the public/ directory.

API Reference

Core Methods

initialize(): Promise<void>

Initialize the SDK and load all WASM modules.

createFastVault(options): Promise<string>

Create a new vault using VultiServer assistance. Returns the vaultId.

Parameters:

• options.name: string - Vault name

• options.email: string - Email for verification

• options.password: string - Vault encryption password

verifyVault(vaultId, code): Promise<FastVault>

Verify vault creation with email verification code. Returns the verified vault.

createSecureVault(options): Promise<{ vault, vaultId, sessionId }>

Create a multi-device secure vault with N-of-M threshold signing.

Parameters:

• options.name: string - Vault name

• options.devices: number - Number of devices participating (minimum 2)

• options.threshold?: number - Signing threshold (defaults to ceil((devices+1)/2))

• options.password?: string - Optional vault encryption password

• options.onQRCodeReady?: (qrPayload: string) => void - Called when QR code is ready for device pairing

• options.onDeviceJoined?: (deviceId: string, total: number, required: number) => void - Called when a device joins

• options.onProgress?: (step: VaultCreationStep) => void - Called with creation progress updates

Returns:

• vault: SecureVault - The created vault instance

• vaultId: string - Unique vault identifier

• sessionId: string - Session ID used for creation

validateSeedphrase(mnemonic): Promise<SeedphraseValidation>

Validate a BIP39 mnemonic phrase.

Returns:

• valid: boolean - Whether the mnemonic is valid

• wordCount: number - Number of words (12 or 24)

• invalidWords?: string[] - Words not in BIP39 wordlist

• error?: string - Error message if invalid

discoverChainsFromSeedphrase(mnemonic, chains?, onProgress?): Promise<ChainDiscoveryResult[]>

Discover chains with balances for a seedphrase.

Parameters:

• mnemonic: string - BIP39 mnemonic phrase

• chains?: Chain[] - Chains to scan (defaults to common chains)

• onProgress?: (progress: ChainDiscoveryProgress) => void - Progress callback

createFastVaultFromSeedphrase(options): Promise<string>

Create a FastVault from a BIP39 seedphrase. Returns vaultId for email verification.

Parameters:

• options.mnemonic: string - BIP39 mnemonic (12 or 24 words)

• options.name: string - Vault name

• options.email: string - Email for verification

• options.password: string - Vault encryption password

• options.discoverChains?: boolean - Auto-enable chains with balances

• options.onProgress?: (step: VaultCreationStep) => void - Progress callback

• options.onChainDiscovery?: (progress: ChainDiscoveryProgress) => void - Discovery callback

createSecureVaultFromSeedphrase(options): Promise<{ vault, vaultId, sessionId }>

Create a SecureVault from a BIP39 seedphrase with multi-device MPC.

Parameters:

• options.mnemonic: string - BIP39 mnemonic (12 or 24 words)

• options.name: string - Vault name

• options.devices: number - Number of participating devices

• options.threshold?: number - Signing threshold

• options.password?: string - Optional encryption password

• options.onQRCodeReady?: (qrPayload: string) => void - QR callback

• options.onDeviceJoined?: (deviceId, total, required) => void - Device join callback

joinSecureVault(qrPayload, options): Promise<{ vault, vaultId }>

Join an existing SecureVault creation session. Auto-detects keygen vs seedphrase mode.

Parameters:

• qrPayload: string - QR code content from initiator (vultisig://...)

• options.mnemonic?: string - Required for seedphrase-based sessions, ignored for keygen

• options.devices: number - Number of participating devices (required)

• options.password?: string - Optional encryption password

• options.onProgress?: (step: VaultCreationStep) => void - Progress callback

• options.onDeviceJoined?: (deviceId, total, required) => void - Device join callback

vault.address(chain): Promise<string>

Derive a blockchain address for the given chain (called on Vault instance).

addVault(file, password?): Promise<Vault>

Import a vault from a backup file.

vault.export(password?): Promise<Blob>

Export a vault to encrypted backup format as a Blob (called on Vault instance).

vault.exportAsBase64(password?): Promise<string>

Export a vault to encrypted backup format as a base64 string (called on Vault instance).

secureVault.sign(payload, options?): Promise<SigningResult>

Sign a transaction with a SecureVault (requires device coordination).

Parameters:

• payload: SigningPayload - Transaction data to sign

• options.signal?: AbortSignal - Optional signal to cancel the signing operation

• options.onQRCodeReady?: (qrPayload: string) => void - Called when QR code is ready for device pairing

• options.onDeviceJoined?: (deviceId: string, total: number, required: number) => void - Called when a device joins

• options.onProgress?: (step: SigningStep) => void - Called with signing progress updates

secureVault.signBytes(options, signingOptions?): Promise<SigningResult>

Sign arbitrary bytes with a SecureVault.

Parameters:

• options.chain: string - Chain for signature algorithm selection

• options.messages: (Uint8Array | Buffer | string)[] - Messages to sign (hex strings or bytes)

• signingOptions.signal?: AbortSignal - Optional signal to cancel the operation

Static Methods (No Vault Needed)

Vultisig.getKnownTokens(chain): TokenInfo[]

Get all known tokens for a chain from the built-in registry.

Vultisig.getKnownToken(chain, contractAddress): TokenInfo | null

Look up a specific token by contract address (case-insensitive). Returns null if not found.

Vultisig.getFeeCoin(chain): FeeCoinInfo

Get the native fee coin info for a chain (e.g., ETH for Ethereum, BTC for Bitcoin).

Vultisig.getCoinPrices(params): Promise<Record<string, number>>

Fetch current token prices by CoinGecko IDs.

Parameters:

• params.ids: string[] - CoinGecko price provider IDs

• params.fiatCurrency?: string - Fiat currency code (default: 'usd')

Vultisig.getBanxaSupportedChains(): Chain[]

Get the list of chains supported by the Banxa fiat on-ramp.

Vultisig.scanSite(url): Promise<SiteScanResult>

Scan a website URL for malicious content via Blockaid.

Returns:

• isMalicious: boolean - Whether the site is flagged as malicious

• url: string - The scanned URL

Vault Methods (Token Discovery & Security)

vault.discoverTokens(chain): Promise<DiscoveredToken[]>

Discover tokens with non-zero balances at this vault's address. Supported: EVM (via 1inch), Solana (via Jupiter), Cosmos (via RPC).

vault.resolveToken(chain, contractAddress): Promise<TokenInfo>

Resolve token metadata by contract address. Checks known tokens registry first, then resolves from chain APIs.

vault.getBuyUrl(chain, ticker?): Promise<string | null>

Generate a Banxa fiat on-ramp URL for buying crypto to this vault's address. Returns null if chain is not supported by Banxa.

vault.validateTransaction(keysignPayload): Promise<TransactionValidationResult | null>

Validate a transaction for security risks before signing using Blockaid. Supported: EVM chains, Solana, Sui, Bitcoin. Returns null for unsupported chains.

vault.simulateTransaction(keysignPayload): Promise<TransactionSimulationResult | null>

Simulate a transaction to preview asset changes before signing. Supported: EVM chains, Solana. Returns null for unsupported chains.

Utility Methods

isVaultFileEncrypted(file): Promise<boolean>

Check if a vault backup file is encrypted.

validateVault(vault): VaultValidationResult

Validate vault structure and integrity.

getVaultDetails(vault): VaultDetails

Get vault metadata and information.

Error Handling

The SDK throws descriptive errors that you can catch and handle:

Examples

See the /examples directory for complete sample applications:

• Browser Example - Complete web application with vault creation, import, and address derivation

• Node.js Example - Server-side vault operations and blockchain interactions

Requirements

• Node.js 20+

• Modern browser with WebAssembly support

• Electron 20+ (for desktop applications)

• Network access for VultiServer communication (for Fast Vault features)

Security Considerations

• Private Keys: The SDK uses threshold signatures - private keys are never stored in a single location

• Encryption: Vault keyshares are encrypted using AES-GCM with user-provided passwords

• Server Trust: Fast Vaults use VultiServer as one party in the MPC protocol

• Secure Vault Independence: Secure Vaults only use the relay server for coordination, not signing

• Configurable Thresholds: Secure Vaults support custom M-of-N thresholds for multi-party approval

• WASM Integrity: Ensure WASM files are served from trusted sources

Development

Prerequisites

• Node.js 20+

• Yarn 4.x

Setup

This SDK is part of a monorepo. Always install dependencies from the root directory:

Building

The SDK bundles functionality from workspace packages (packages/core/ and packages/lib/) into a single distributable package.

This creates the distributable package in packages/sdk/dist/ with all dependencies bundled.

Testing

Development Workflow

1. Make changes to SDK code in packages/sdk/src/ or workspace packages in packages/core//packages/lib/

2. Build: yarn workspace @vultisig/sdk build

3. Test: yarn workspace @vultisig/sdk test

4. Lint: yarn lint (from root)

Project Structure

Contributing

1. Fork the repository

2. Install dependencies from root: yarn install

3. Make your changes in packages/sdk/src/ or workspace packages

4. Run tests: yarn workspace @vultisig/sdk test

5. Build: yarn workspace @vultisig/sdk build

6. Submit a pull request

License

MIT License - see LICENSE file for details.

Support

• 📖 Documentation

• 💬 Discord Community

• 🐛 Report Issues

• 🌐 Website

Built with ❤️ by the Vultisig team