ShadowOS

The invisible layer of the financial internet — combining x402 stealth payments, AI-pseudonym reputation, and private merchant bridges secured by zero-knowledge proofs.

Quick Start Architecture Core Modules SDK Guides

Overview

What is ShadowOS?

ShadowOS ($SOS) is a privacy-first payment fabric that proves what happened without revealing who it happened to. Transactions remain invisible, while trust is measurable and provable.

  • x402 Stealth Payments — per-use charges & redacted receipts.
  • AI-Pseudonym Reputation — reputation over identification.
  • Private Merchant Bridge — policy-aware settlement with ZK checks.

Principles

  • Privacy by default, disclosure by choice.
  • Proofs not profiles; attest from behavior, not identity.
  • Layer-agnostic across EVM, Solana, and more.
  • Developer-first headers, receipts, and SDKs.

HTTP 402 is enforced for agent/API access with cryptographic receipts and ZK attestations.

Quick Start

1) Install

bashnpm i @shadowos/sdk

2) Initialize

jsimport { ShadowOS } from "@shadowos/sdk";

const sos = new ShadowOS({
  network: "solana",         // "ethereum" | "polygon" | "bsc" | "arbitrum" ...
  endpoint: "https://api.shadowos.xyz",
  wallet: window.solana      // or window.ethereum (MetaMask)
});

await sos.connect();

3) Pay-per-Use (x402)

js// Request a protected resource via x402
const res = await fetch("https://api.example/data", {
  headers: { "x402-intent": "read:data", "x402-ttl": "60s" }
});

if (res.status === 402) {
  const quote  = await res.json();           // { receiver, amount, ttl, nonce, network }
  const proof  = await sos.pay(quote);       // signs/sends payment
  const retry  = await fetch("https://api.example/data", {
    headers: { "x402-proof": proof }
  });
  const data = await retry.json();
}

4) Verify

jsconst receipt = await sos.lastReceipt();  // zk (redacted)
const ok = await sos.verify(receipt);       // local/remote verify
console.log("verified:", ok);

Architecture

ZK Transaction Core

Generates, batches, and verifies x402 proofs; prevents double-spend while keeping amounts and counterparties redacted.

  • SNARK-friendly proof system.
  • Nonce + TTL replay protection.
  • Receipt commitments & verifiable ledgers.

AI Identity Layer

Pseudonymous “shadows” with encrypted behavioral learning and attestations (reputation over identification).

  • Federated learning & selective disclosure.
  • Proof-of-personhood without deanonymization.

Bridge Interface Layer

SDKs/APIs for wallets, dApps, and merchants to integrate stealth payments & pseudonym features.

  • Wallet adapters (Phantom/MetaMask).
  • Merchant REST & webhooks.
  • Cross-chain settlement policies.

Core Modules

x402 Stealth Payments

402 prompts, quotes, and zk-receipts; server never sees balances or other identities.

httpGET /resource
← 402 Payment Required
{
  "x402": { "receiver":"SoS..abc", "amount":"0.001", "ttl":"60s", "nonce":"k49f..", "network":"solana" }
}

AI-Pseudonym Reputation

Attestations like paid-on-time or delivery-score without revealing identity.

json{
  "shadow": "psdnym:9f2d..",
  "attestation": { "type": "on_time_payments", "score": 0.98 },
  "zkProof": "0x9a.."
}

Private Merchant Bridge

Anonymous settlement with policy controls and ZK compliance checks.

bashcurl -X POST https://bridge.shadowos.xyz/settle \
  -H "Authorization: Bearer <merchant-key>" \
  -d '{ "receipt": "<zk-receipt>" }'

Compliance & Disclosures

Selective facts (amount range, jurisdiction) without revealing raw data.

jsconst proof = await sos.compliance.prove({
  kind: "amount_range", min: "0.00", max: "100.00"
});

SDK Guides

Wallet Integration

js// Phantom (Solana)
await window.solana.connect();
const sos = new ShadowOS({ network:"solana", wallet: window.solana });

// MetaMask (EVM)
await window.ethereum.request({ method: "eth_requestAccounts" });
const sosEvm = new ShadowOS({ network:"ethereum", wallet: window.ethereum });

Merchant Server

nodeimport express from "express";
import { verifyReceipt } from "@shadowos/server";
const app = express(); app.use(express.json());

app.post("/webhook/settled", async (req,res) => {
  const ok = await verifyReceipt(req.body.receipt);
  if(!ok) return res.status(400).json({error:"invalid"});
  res.json({ok:true});
});
app.listen(8080);

Security

Threat Model

  • Hide payer identity, counterparty, and clear amounts.
  • Prevent replay via TTL + nonce bound to resource.
  • Verify settlement with SNARK-friendly receipts.

Pseudocode

pseudoserver.onRequest(r):
  if !r.headers["x402-proof"]:
     return 402 with quote
  if !verifyProof(r.headers["x402-proof"], r.resource, ttl, nonce):
     return 401
  return 200 resource

FAQ

Is ShadowOS a blockchain?

No. It is an overlay protocol + SDK coordinating proofs, receipts, and settlement across existing chains.

Compliance?

Merchants can request selective proofs (e.g., amount range, jurisdiction) without seeing personal data.

Supported wallets?

Phantom (Solana) & MetaMask (EVM). More adapters can be added easily.

License & Use

© 2025 ShadowOS. SDK/examples under a permissive license for evaluation and integration. Follow applicable regulations.

© 2025 ShadowOS
Back to top