Command Palette

Search for a command to run...

UnylyUnyly
Browse all

Signatures

FreeNot checked

Open-source agreement and e-signature workflows for Markdown, PDFs, local signing, providers, CLI, API, and MCP

GitHubEmbed

About

Open-source agreement and e-signature workflows for Markdown, PDFs, local signing, providers, CLI, API, and MCP

README

Open Signatures is an open-source agreement workflow toolkit for local-first document signing. It can render Markdown agreements to clean PDFs, place signatures at detected fields or explicit coordinates, generate completion certificates, manage signers, send signing requests through open-emails, and prepare domain setup through open-domains.

The current package name stays focused on signatures, but the product surface is broader: agreements, people, signing sessions, provider handoff, evidence, and completion records.

Open Signatures is not a qualified trust service or a substitute for regulated digital signature infrastructure. It is intended for regular electronic signatures, internal workflows, and developer-owned signing flows where local audit evidence is sufficient.

Legal, IP, and Filing Boundary

Open Signatures is the signing ceremony and evidence package for Hasna legal/IP workflows. It does not by itself file trademark, IP, or legal-office submissions. Apps such as iapp-ip, iapp-trademarks, iapp-signatures, open-contracts, and document/file storage integrations should exchange hasna.legal-boundary.v1 packets from the SDK.

Boundary rules:

  • workflow_only: local signing ceremony, audit certificate, document hashes, and provenance are recorded. No external filing is claimed.
  • prepared_packet: a filing packet is prepared for legal review. It requires approved legal review before external use.
  • provider_submitted: an external provider/office submission has happened. It requires approved legal review, provider evidence, filing reference, and audit events.

Every legal/IP packet must include document provenance (sourceApp, sourceId, hash, version/storage reference, creator, created time), signing ceremony requirements (signer identity, signer consent, pinned document hash, certificate, tamper evidence, retention policy), and an evidence bundle (certificate id/path plus audit event ids). Provider-submitted filings must also include provider evidence and the filing reference returned by that provider or office.

The default exported policy, DEFAULT_WORKFLOW_ONLY_BOUNDARY, is intentionally conservative: legal review is required and the app may only claim workflow/evidence status until an explicit prepared/submitted filing packet passes validation.

Install

npm install -g @hasna/signatures

Local development:

bun install
bun run typecheck
bun test
bun run build

Quick Start

Create a text signature:

open-signatures signature create --name "Ada Lovelace" --type text --text "Ada Lovelace"

Render a Markdown agreement with variables and a signature anchor:

# Consulting Agreement

Client: {{ signer.name }}

Please sign here: {{signature:client}}
open-signatures document from-markdown ./agreement.md \
  --signer-name "Ada Lovelace" \
  --signer-email [email protected]

Sign at the generated field and create a local evidence certificate:

open-signatures document sign <document-id> \
  --signature <signature-id> \
  --field <field-id> \
  --signer-name "Ada Lovelace" \
  --signer-email [email protected]

The command writes:

  • a signed PDF in ~/.hasna/signatures/signed/
  • a signer-evidence or document-completion certificate in ~/.hasna/signatures/certificates/
  • audit events in the local SQLite database

Markdown Variables

Variables use double braces:

{{ signer.name }}
{{ signer.email }}
{{ company.name }}
{{ signature }}
{{ signature:client }}
{{ signature:review|type=agent|role=Reviewer|order=2|group=1 }}

{{signature}} and {{signature:name}} become signature fields when Markdown is rendered to PDF. Other variables are replaced from CLI --var key=value values or signer options.

Signature anchors can carry routing metadata:

  • type=human|agent sets the signer type.
  • role=Reviewer stores the signer role.
  • order=2 controls signing order.
  • group=1 groups parallel signers.
  • required=false makes the field optional.

Example:

Human approval: {{signature:client|type=human|role=Client|order=1}}
Agent review: {{signature:review|type=agent|role=Reviewer|order=2}}

Sending For Signature

Create a signing session and local URL:

open-signatures document send <document-id> \
  --signer-name "Ada Lovelace" \
  --signer-email [email protected] \
  --base-url https://sign.example.com

The generated signing URL resolves to /sign/<token>, where the signer can type their name/signature and complete the local signing session. Open Signatures creates a text signature when the signer does not already have one.

Send with open-emails if the emails CLI is configured:

open-signatures document send <document-id> \
  --person [email protected] \
  --from [email protected] \
  --base-url https://sign.example.com

Use --dry-run-email to preview the open-emails command without sending.

Attachment sharing is optional. If @hasna/attachments is installed and configured, send/share flows attach a document share link. If it is not installed, local signing URLs still work and the session records the share-link fallback.

People

open-signatures person add "Ada Lovelace" --email [email protected] --phone "+1..."
open-signatures signer add "Sagan" --type agent --agent-id agent-sagan --agent-provider codewith --role Reviewer
open-signatures person list
open-signatures person list --type agent
open-signatures document send <document-id> --person [email protected]

Signer records can be humans or agents. Agent signatures are recorded as local agent attestations with agent id, provider/runtime, run id, policy id, reason, hashes, audit events, and certificate metadata. They are useful for internal approvals between agents or systems, but they are not human identity proof and are not QES/eIDAS signatures. For ordered or multi-signer documents, Open Signatures writes signer-evidence certificates for partial completion and reserves document-completion metadata for the final required field/session.

Sign as an agent:

open-signatures document sign <document-id> \
  --field <field-id> \
  --signer-type agent \
  --signer-name "Sagan" \
  --agent-id agent-sagan \
  --agent-provider codewith \
  --agent-run-id run-123 \
  --agent-policy-id internal-agent-approval-v1 \
  --agent-reason "Policy check passed"

When --signer-type agent is used without --signature, the CLI creates a minimal local attestation signature automatically.

List signing sessions:

open-signatures sessions list --signer-type agent

Domains

Open Signatures delegates domain setup to open-domains through the domains CLI.

Preview commands:

open-signatures domain setup example.com --subdomain sign --target cname.example.net --dry-run

Run setup:

open-signatures domain setup example.com --subdomain sign --target cname.example.net

Use --buy to ask open-domains to run its full domain setup flow.

Provider Integrations

The built-in local signing flow is first-class. Provider adapters are optional. Provider flows always require an explicit signature level:

  • ses - simple electronic signature evidence
  • aes - advanced electronic signature target
  • qes - qualified electronic signature target through a QTSP/provider
  • eseal - legal-entity electronic seal target
  • qeseal - legal-entity qualified eSeal target

Open Signatures does not turn local signatures into QES. QES and qualified eSeals must be completed by a qualified trust-service/provider flow. The app stores the request, hashes, provider response, validation status, and audit events as provider evidence.

Dry-run a PandaDoc QES request:

open-signatures provider send <document-id> \
  --provider pandadoc \
  --signature-level qes \
  --recipient [email protected] \
  --recipient-name "Ada Lovelace" \
  --signer-type human \
  --dry-run

Dry-run a Yousign QES request:

open-signatures provider send <document-id> \
  --provider yousign \
  --signature-level qes \
  --recipient [email protected] \
  --recipient-name "Ada Lovelace" \
  --signer-type human \
  --dry-run

List stored provider evidence:

open-signatures provider evidence <document-id>

For live connector-backed provider execution, configure either a hosted or local Hasna connectors endpoint:

open-signatures config set connectors_api_url "https://connectors.example"
open-signatures config set connectors_api_key "$CONNECTORS_API_KEY"

or:

open-signatures config set connectors_server_url "http://localhost:9876"

The provider layer uses @hasna/connectors-sdk and can route to pandadoc or yousign connector operations when those connectors and credentials are available. Without provider credentials, use --dry-run to verify requests and evidence locally.

For direct PandaDoc API calls without connectors:

open-signatures config set pandadoc_api_key "$PANDADOC_API_KEY"
open-signatures provider send <document-id> \
  --provider pandadoc \
  --signature-level qes \
  --recipient [email protected] \
  --recipient-name "Ada Lovelace"

PandaDoc documents may require asynchronous readiness polling before send in production integrations. Connector-backed execution should own that provider-specific behavior.

REST API

export OPEN_SIGNATURES_ADMIN_TOKEN="$(openssl rand -hex 32)"
signatures-serve

Selected endpoints:

  • POST /api/documents/from-markdown
  • POST /api/documents/:id/sign
  • POST /api/documents/:id/send
  • POST /api/documents/:id/provider-send
  • GET /api/sessions
  • GET /api/sessions/:id/certificate
  • GET /api/provider-evidence
  • GET /sign/:token
  • POST /api/sign/:token
  • GET /api/people

All /api/* endpoints except POST /api/sign/:token require an admin token:

curl http://localhost:19440/api/config \
  -H "Authorization: Bearer $OPEN_SIGNATURES_ADMIN_TOKEN"

Signing links remain token-scoped and public at GET /sign/:token and POST /api/sign/:token. Same-origin signing requests are accepted. Other cross-origin API access is disabled unless the origin is explicitly allowed:

export OPEN_SIGNATURES_ALLOWED_ORIGINS="http://localhost:5173"
signatures-serve

The server is designed for trusted local or private deployments by default. If you expose it publicly, use authentication, TLS, request logging, and a file access policy.

Dashboard

The dashboard is a separate Vite app for local operations:

export OPEN_SIGNATURES_ADMIN_TOKEN="$(openssl rand -hex 32)"
export OPEN_SIGNATURES_ALLOWED_ORIGINS="http://localhost:5173"
signatures-serve
cd dashboard
bun install
OPEN_SIGNATURES_ADMIN_TOKEN="$OPEN_SIGNATURES_ADMIN_TOKEN" bun run dev

The dashboard dev proxy injects the admin token server-side and is bound to loopback; do not expose it with --host or a public reverse proxy.

It includes overview, agreement, signing session, people, signature, certificate, provider, and domain setup views.

MCP Server

signatures-mcp

Workflow tools include:

  • signatures_document_from_markdown
  • signatures_sign
  • signatures_send_for_signature
  • signatures_person_create
  • signatures_certificate_get

Configuration values containing key, secret, or token are masked in MCP responses.

Data Directory

When SIGNATURES_DB_PATH or HASNA_SIGNATURES_DB_PATH is set, that file is used as the SQLite database. Otherwise, a git checkout uses the repo-local .signatures/signatures.db; outside a git checkout, data is stored under:

~/.hasna/signatures/

Security Model

Open Signatures stores signing evidence locally. A certificate includes signer metadata, document hashes, session id, audit summary, and metadata that distinguishes signer_evidence from document_completion. This provides useful evidence for ordinary electronic signature workflows, but does not provide regulated digital signature, qualified electronic signature, or eIDAS/QTSP guarantees.

Provider evidence records are not validation reports by themselves. A QES/eSeal workflow is only considered externally validated after a provider/QTSP signed output, proof/audit file, and validation report are attached and recorded as valid.

Do not publish local .hasna/, .signatures/, .env, or .claude/ directories.

License

Apache-2.0 - see LICENSE.

from github.com/hasna/signatures

Install Signatures in Claude Desktop, Claude Code & Cursor

Recommended · one command, every IDE
unyly install signatures

Installs into Claude Desktop, Claude Code, Cursor & VS Code — handles npx, uvx and build-from-source repos for you.

First time? Get the CLI: curl -fsSL https://unyly.org/install | sh

Or configure manually

Run in your terminal:

claude mcp add signatures -- npx -y @hasna/signatures

FAQ

Is Signatures MCP free?

Yes, Signatures MCP is free — one-click install via Unyly at no cost.

Does Signatures need an API key?

No, Signatures runs without API keys or environment variables.

Is Signatures hosted or self-hosted?

Self-hosted: the server runs locally on your machine via the install command above.

How do I install Signatures in Claude Desktop, Claude Code or Cursor?

Open Signatures on unyly.org, pick your client tab (Claude Desktop, Claude Code, Cursor) and press Install — the config is generated automatically, no JSON editing.

Related MCPs

Compare Signatures with

Not sure what to pick?

Find your stack in 60 seconds

Author?

Embed badge for your README

Browse similar

All development MCPs