Multi-provider blockchain analytics aggregation service. Combines Chainalysis KYT, Elliptic, and TRM Labs into a unified risk scoring pipeline with composite weighted scoring, graceful degradation, and batch processing.
The Analytics Integrations API is a multi-provider blockchain analytics aggregation service that fans out screening requests to three industry-leading providers - Chainalysis KYT, TRM Labs, and Elliptic - and returns a single composite risk score. This unified approach eliminates the need for clients to integrate with each provider individually, provides graceful degradation when a provider is unavailable, and delivers a weighted composite score that reflects the combined intelligence of all active providers.
https://jilsovereign.com/api/analyticsapplication/jsonThe Analytics Integrations API operates as a fan-out aggregator. Each inbound screening request is dispatched in parallel to all configured and healthy providers. Responses are collected, scored, and merged into a single composite result.
Promise.allSettled(). The aggregator waits for all providers to respond (or timeout at 5 seconds) before computing the composite score.degraded: true flag is added to the response.{type}:{chain}:{target}. Cached responses include a "cached": true flag. Cache is bypassed when force_refresh: true is sent in the request body.Three analytics providers are integrated, each with a configurable weight that determines its contribution to the composite risk score. Providers can be individually enabled or disabled at runtime, and weights auto-normalize when a provider is unavailable.
| Provider | Weight | Auth Method | Env Variable | Description |
|---|---|---|---|---|
| Chainalysis KYT | 40% |
API Key | CHAINALYSIS_API_KEY |
Transaction monitoring and wallet screening |
| TRM Labs | 35% |
API Key | TRM_LABS_API_KEY |
Address risk scoring and sanctions screening |
| Elliptic | 25% |
API Key | ELLIPTIC_API_KEY |
Transaction and wallet risk analysis |
503 provider_unavailable error.
POST /v1/analytics/screen/transaction
Screen a blockchain transaction across all active analytics providers. Returns individual provider scores and a composite weighted risk score.
{
"tx_hash": "0x7a8b9c...",
"chain": "ethereum",
"direction": "inbound", // optional: "inbound" | "outbound"
"metadata": {} // optional: additional context
}| Field | Type | Required | Description |
|---|---|---|---|
tx_hash | string | Yes | Transaction hash to screen |
chain | string | Yes | Blockchain network (ethereum, bitcoin, solana, polygon, etc.) |
direction | string | No | Transaction direction - inbound or outbound. Defaults to both. |
metadata | object | No | Arbitrary key-value metadata for audit trail |
{
"ok": true,
"screening_id": "scr_tx_abc123",
"type": "transaction",
"target": "0xabc123...",
"composite_score": 15,
"risk_level": "LOW",
"providers": [
{
"provider": "chainalysis",
"score": 12,
"risk_level": "LOW",
"alerts": [],
"response_ms": 245
},
{
"provider": "trm_labs",
"score": 18,
"risk_level": "LOW",
"alerts": [],
"response_ms": 312
},
{
"provider": "elliptic",
"score": 14,
"risk_level": "LOW",
"alerts": [],
"response_ms": 198
}
],
"alerts": [],
"cached": false,
"timestamp": "2026-03-02T12:00:00.000Z"
}POST /v1/analytics/screen/wallet
Screen a wallet address across all active analytics providers. Returns individual provider scores and a composite weighted risk score.
{
"address": "0x742d35Cc6634C0532925a3b844Bc9e7595f2bD18",
"chain": "ethereum"
}| Field | Type | Required | Description |
|---|---|---|---|
address | string | Yes | Wallet address to screen |
chain | string | Yes | Blockchain network (ethereum, bitcoin, solana, polygon, etc.) |
{
"ok": true,
"screening_id": "scr_wal_def456",
"type": "wallet",
"target": "0x742d35Cc6634C0532925a3b844Bc9e7595f2bD18",
"composite_score": 22,
"risk_level": "LOW",
"providers": [
{
"provider": "chainalysis",
"score": 20,
"risk_level": "LOW",
"alerts": [],
"response_ms": 231
},
{
"provider": "trm_labs",
"score": 25,
"risk_level": "LOW",
"alerts": [],
"response_ms": 287
},
{
"provider": "elliptic",
"score": 19,
"risk_level": "LOW",
"alerts": [],
"response_ms": 176
}
],
"alerts": [],
"cached": false,
"timestamp": "2026-03-02T12:00:00.000Z"
}POST /v1/analytics/screen/sanctions
Screen an address against global sanctions lists across all active analytics providers. Returns match status, lists checked, and a composite risk score.
{
"address": "0x742d35Cc6634C0532925a3b844Bc9e7595f2bD18",
"chain": "ethereum", // optional
"include_partial_matches": false // optional, default: false
}| Field | Type | Required | Description |
|---|---|---|---|
address | string | Yes | Address to screen against sanctions lists |
chain | string | No | Blockchain network - improves accuracy for chain-specific lists |
include_partial_matches | boolean | No | Include fuzzy/partial matches in results. Default false. |
{
"ok": true,
"screening_id": "scr_san_ghi789",
"type": "sanctions",
"target": "0x742d35Cc6634C0532925a3b844Bc9e7595f2bD18",
"composite_score": 5,
"risk_level": "LOW",
"sanctions_match": false,
"sanctions_lists_checked": ["OFAC_SDN", "EU_SANCTIONS", "UN_SANCTIONS"],
"providers": [
{
"provider": "chainalysis",
"score": 3,
"risk_level": "LOW",
"alerts": [],
"response_ms": 210
},
{
"provider": "trm_labs",
"score": 7,
"risk_level": "LOW",
"alerts": [],
"response_ms": 298
},
{
"provider": "elliptic",
"score": 4,
"risk_level": "LOW",
"alerts": [],
"response_ms": 185
}
],
"alerts": [],
"cached": false,
"timestamp": "2026-03-02T12:00:00.000Z"
}GET /v1/analytics/risk-score/:address
Retrieve the cached composite risk score for a previously screened address. Returns the most recent screening result without triggering a new provider lookup.
| Parameter | Type | Required | Description |
|---|---|---|---|
chain | string | No | Filter by blockchain network. If omitted, returns the most recent score across all chains. |
{
"ok": true,
"address": "0xabc123...",
"composite_score": 15,
"risk_level": "LOW",
"provider_scores": {
"chainalysis": 12,
"trm_labs": 18,
"elliptic": 14
},
"last_screened_at": "2026-03-02T12:00:00.000Z",
"screening_count": 5,
"cached": true
}POST /v1/analytics/batch/screen
Screen multiple addresses in a single request. Supports wallet and sanctions screening types. Maximum 100 addresses per batch.
{
"addresses": ["0xabc...", "0xdef..."],
"chain": "ethereum",
"type": "wallet" // "wallet" | "sanctions"
}| Field | Type | Required | Description |
|---|---|---|---|
addresses | string[] | Yes | Array of addresses to screen (max 100) |
chain | string | Yes | Blockchain network |
type | string | Yes | Screening type - wallet or sanctions |
400 bad_request error. For larger volumes, split into multiple batch requests.
{
"ok": true,
"batch_id": "batch_abc123",
"total": 2,
"results": [
{
"address": "0xabc...",
"composite_score": 15,
"risk_level": "LOW",
"alerts": []
},
{
"address": "0xdef...",
"composite_score": 72,
"risk_level": "HIGH",
"alerts": [
{
"type": "sanctions_match",
"severity": "critical",
"details": "OFAC SDN match"
}
]
}
],
"processing_time_ms": 890
}GET /v1/analytics/providers/status
Returns the current health status, weight configuration, and performance metrics for all configured providers. No authentication required.
{
"ok": true,
"providers": [
{
"name": "chainalysis",
"status": "healthy",
"weight": 0.40,
"avg_response_ms": 245,
"success_rate": 0.998
},
{
"name": "trm_labs",
"status": "healthy",
"weight": 0.35,
"avg_response_ms": 312,
"success_rate": 0.995
},
{
"name": "elliptic",
"status": "healthy",
"weight": 0.25,
"avg_response_ms": 198,
"success_rate": 0.997
}
],
"timestamp": "2026-03-02T12:00:00.000Z"
}The composite risk score is calculated as a weighted average of all active provider scores:
// Composite score formula
composite_score = SUM(provider_score * provider_weight)
// Example with all 3 providers active:
composite = (12 * 0.40) + (18 * 0.35) + (14 * 0.25)
= 4.8 + 6.3 + 3.5
= 14.6 // rounded to 15
// Example with Elliptic down (weights re-normalized):
composite = (12 * 0.533) + (18 * 0.467)
= 6.4 + 8.4
= 14.8 // rounded to 15| Score Range | Risk Level | Status | Recommended Action |
|---|---|---|---|
0 - 25 |
LOW | LOW | Proceed - no action required |
26 - 50 |
MEDIUM | MEDIUM | Enhanced monitoring - flag for review |
51 - 75 |
HIGH | HIGH | Manual review required before proceeding |
76 - 100 |
CRITICAL | CRITICAL | Block transaction - escalate to compliance |
All error responses follow a consistent format with an HTTP status code, a machine-readable error code, and a human-readable message.
{
"ok": false,
"error": {
"code": "bad_request",
"message": "Missing required field: address"
}
}| HTTP | Code | Description |
|---|---|---|
400 |
bad_request |
Missing required fields or invalid input format |
401 |
unauthorized |
Invalid or missing API key |
404 |
not_found |
Address or transaction not found in any provider |
429 |
rate_limit |
Too many requests - default limit is 100 requests per minute |
500 |
internal_error |
Unexpected server error |
503 |
provider_unavailable |
All analytics providers are down or unreachable |
When one or more providers fail but at least one remains healthy, the API returns a successful response with partial results. The response includes a degraded: true flag and lists which providers were unavailable:
{
"ok": true,
"degraded": true,
"unavailable_providers": ["elliptic"],
"composite_score": 15,
"risk_level": "LOW",
"providers": [
{
"provider": "chainalysis",
"score": 12,
"risk_level": "LOW",
"alerts": [],
"response_ms": 245
},
{
"provider": "trm_labs",
"score": 18,
"risk_level": "LOW",
"alerts": [],
"response_ms": 312
},
{
"provider": "elliptic",
"status": "unavailable",
"error": "Connection timeout after 5000ms"
}
],
"cached": false,
"timestamp": "2026-03-02T12:00:00.000Z"
}degraded: true, the composite score is calculated from fewer providers. Clients should factor this into their risk decisions - a LOW score from only one provider carries less confidence than a LOW score from all three.
Screen a wallet address using the Analytics Integrations API.
curl -X POST https://jilsovereign.com/api/analytics/v1/analytics/screen/wallet \
-H "Content-Type: application/json" \
-H "Authorization: Bearer YOUR_API_KEY" \
-d '{
"address": "0x742d35Cc6634C0532925a3b844Bc9e7595f2bD18",
"chain": "ethereum"
}'// Screen a wallet address
const response = await fetch(
'https://jilsovereign.com/api/analytics/v1/analytics/screen/wallet',
{
method: 'POST',
headers: {
'Content-Type': 'application/json',
'Authorization': 'Bearer YOUR_API_KEY'
},
body: JSON.stringify({
address: '0x742d35Cc6634C0532925a3b844Bc9e7595f2bD18',
chain: 'ethereum'
})
}
);
const data = await response.json();
if (data.ok) {
console.log(`Composite score: ${data.composite_score}`);
console.log(`Risk level: ${data.risk_level}`);
// Check individual provider scores
for (const provider of data.providers) {
console.log(`${provider.provider}: ${provider.score} (${provider.response_ms}ms)`);
}
// Check for degraded response
if (data.degraded) {
console.warn('Response is degraded - some providers unavailable');
}
} else {
console.error(`Error: ${data.error.code} - ${data.error.message}`);
}import requests
# Screen a wallet address
url = "https://jilsovereign.com/api/analytics/v1/analytics/screen/wallet"
headers = {
"Content-Type": "application/json",
"Authorization": "Bearer YOUR_API_KEY"
}
payload = {
"address": "0x742d35Cc6634C0532925a3b844Bc9e7595f2bD18",
"chain": "ethereum"
}
response = requests.post(url, json=payload, headers=headers)
data = response.json()
if data["ok"]:
print(f"Composite score: {data['composite_score']}")
print(f"Risk level: {data['risk_level']}")
# Check individual provider scores
for provider in data["providers"]:
print(f" {provider['provider']}: {provider['score']} ({provider['response_ms']}ms)")
# Check for degraded response
if data.get("degraded"):
print("WARNING: Response is degraded - some providers unavailable")
else:
print(f"Error: {data['error']['code']} - {data['error']['message']}")The Analytics Integrations API exposes Prometheus-compatible metrics on the /metrics endpoint for monitoring screening volume, provider health, latency, and cache performance.
| Metric | Type | Labels | Description |
|---|---|---|---|
analytics_screening_total |
counter | type, provider, risk_level |
Total number of screening operations performed, broken down by screening type, provider, and resulting risk level |
analytics_screening_duration_seconds |
histogram | type, provider |
Duration of screening operations in seconds, measured per provider and screening type |
analytics_provider_status |
gauge | provider |
Current provider health status (1 = healthy, 0 = down) |
analytics_cache_hits_total |
counter | - | Total number of cache hits across all screening requests |
/metrics endpoint on port 8770 at a 15-second interval. Grafana dashboards for analytics provider health and screening volume are available in the ops-dashboard.