feat(anyspend): add KYC verification flow

[aqt-dev]

Summary

• Added KycGate component with Persona SDK integration for identity verification
• Added useKycStatus, useCreateKycInquiry, and useVerifyKyc hooks for KYC state management
• Integrated KYC gate into FiatCheckoutPanel — blocks order creation until identity is verified
• Added persona dependency to package.json

Split from anyspend-upgrades branch which retains the variable pricing input feature (PR #472).

Test plan

• Verify KYC gate renders before fiat checkout when user is not verified
• Verify Persona inquiry flow opens and completes successfully
• Verify approved KYC status allows order creation to proceed
• Verify polling picks up status changes if verification completes externally
• Verify fiat checkout still works end-to-end after KYC approval

🤖 Generated with Claude Code

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request implements a crucial KYC (Know Your Customer) verification system, which is now a prerequisite for fiat checkouts. It introduces a dedicated UI component and a set of custom hooks to manage the identity verification process, ensuring regulatory compliance and enhanced security by preventing order creation until a user's identity is confirmed. The changes provide a seamless, guided flow for users to complete their verification.

Highlights

• KYC Verification Flow: Introduced a comprehensive Know Your Customer (KYC) verification flow, integrating the Persona SDK for identity verification.
• New Components and Hooks: Added a KycGate component to manage the UI for the verification process and new hooks (useKycStatus, useCreateKycInquiry, useVerifyKyc) for state management.
• Fiat Checkout Integration: Integrated the KYC gate into the FiatCheckoutPanel, ensuring that order creation is blocked until a user's identity is successfully verified.
• Dependency Update: Added the persona SDK as a new dependency to the project.

🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console.

Changelog

• packages/sdk/package.json
  • Added persona package dependency.
• packages/sdk/src/anyspend/react/components/checkout/FiatCheckoutPanel.tsx
  • Imported KycGate component.
  • Added state management for KYC approval.
  • Modified order creation useEffect to depend on kycApproved status.
  • Conditionally rendered KycGate to block checkout if KYC is not approved.
• packages/sdk/src/anyspend/react/components/checkout/KycGate.tsx
  • Added new KycGate component to handle the Persona SDK integration and display various KYC states (loading, pending, needs review, prompt, error).
• packages/sdk/src/anyspend/react/hooks/index.ts
  • Exported the new useKycStatus hook.
• packages/sdk/src/anyspend/react/hooks/useKycStatus.ts
  • Added new file containing useKycStatus, useCreateKycInquiry, and useVerifyKyc hooks for fetching KYC status, initiating inquiries, and verifying results using React Query.

Activity

• The pull request was generated using Claude Code, indicating an AI-assisted development process.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a KYC verification flow using the Persona SDK. It adds a KycGate component that blocks the fiat checkout process until the user's identity is verified. The implementation is well-structured, with new hooks for managing KYC state (useKycStatus, useCreateKycInquiry, useVerifyKyc) and clean integration into the FiatCheckoutPanel. My review includes suggestions to improve code clarity by removing redundant useMemo calls in the new hooks, enhancing error handling in the KYC completion callback for a better user experience, and making a type assertion safer. Overall, this is a solid implementation of a critical feature.

[gemini-code-assist]

The catch block for the verifyKyc call is empty. Silently swallowing this error can lead to a confusing user experience. If the verification call fails, the user won't receive any immediate feedback. While the status will be refetched, it's better to inform the user about the error by setting an error state.

Suggested change

	} catch {
	// Will be picked up by polling via refetch
	}
	} catch (error) {
	setPersonaError(error instanceof Error ? error.message : "Failed to complete verification. We will retry automatically.");
	}

[gemini-code-assist]

The type assertion (config.environment as "sandbox" | "production") is not entirely safe. If the API were to return a different string for the environment, it could lead to unexpected behavior. It's safer to explicitly validate the value and default to "sandbox" if it's not "production".

Suggested change

	environment: (config.environment as "sandbox" | "production") || "sandbox",
	environment: config.environment === "production" ? "production" : "sandbox",

[gemini-code-assist]

The useMemo hook here is redundant. The values returned from react-query's useQuery hook (data, isLoading, error, refetch) are already stable. You can simplify the code by returning the object directly. This improves readability and removes unnecessary memoization. This also applies to useCreateKycInquiry and useVerifyKyc hooks in this file.

  return {
    kycStatus: data || null,
    isLoadingKycStatus: isLoading,
    kycStatusError: error,
    refetchKycStatus: refetch,
  };

[gemini-code-assist]

The useMemo hook here is not necessary. The mutateAsync and isPending values from useMutation are stable across re-renders. You can return the object directly to simplify the code.

  return {
    createInquiry: mutateAsync,
    isCreatingInquiry: isPending,
  };

[gemini-code-assist]

Similar to the other hooks in this file, the useMemo here is redundant. mutateAsync and isPending from useMutation are stable. Returning the object directly makes the code cleaner.

  return {
    verifyKyc: mutateAsync,
    isVerifying: isPending,
  };