@clampd/sdk 0.13.1 → 0.13.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/langchain.d.ts.map +1 -1
- package/dist/langchain.js +27 -4
- package/dist/langchain.js.map +1 -1
- package/package.json +1 -1
package/dist/langchain.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"langchain.d.ts","sourceRoot":"","sources":["../src/langchain.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,YAAY,EAAsB,MAAM,aAAa,CAAC;
|
|
1
|
+
{"version":3,"file":"langchain.d.ts","sourceRoot":"","sources":["../src/langchain.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,YAAY,EAAsB,MAAM,aAAa,CAAC;AAkC/D,MAAM,WAAW,yBAAyB;IACxC,MAAM,EAAE,YAAY,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAID;;;;;;;;GAQG;AACH,wBAAsB,wBAAwB,CAC5C,IAAI,EAAE,yBAAyB;;;WAsCI,MAAM;;;uCAyB1C"}
|
package/dist/langchain.js
CHANGED
|
@@ -6,6 +6,7 @@
|
|
|
6
6
|
*
|
|
7
7
|
* Requires @langchain/core as a peer dependency.
|
|
8
8
|
*/
|
|
9
|
+
import { contractHash } from "./contract-hash.js";
|
|
9
10
|
// ── Lazy imports with helpful errors ───────────────────────────────
|
|
10
11
|
async function loadDeps() {
|
|
11
12
|
let DynamicStructuredTool;
|
|
@@ -44,13 +45,35 @@ export async function createClampdDatabaseTool(opts) {
|
|
|
44
45
|
const schema = z.object({
|
|
45
46
|
query: z.string().describe("SQL query to execute"),
|
|
46
47
|
});
|
|
48
|
+
const toolName = "database.query";
|
|
49
|
+
const toolDescription = "Execute a SQL query against the database. " +
|
|
50
|
+
"The query is security-scanned before execution.";
|
|
51
|
+
// Compute the descriptor hash once at wrap time. zod 4 exposes
|
|
52
|
+
// `z.toJSONSchema()` natively — no extra dependency required.
|
|
53
|
+
// The resulting JSON Schema is content-hashed together with name
|
|
54
|
+
// and description so rug-pull detection matches a pre-registered
|
|
55
|
+
// descriptor in the dashboard.
|
|
56
|
+
let parameters = {};
|
|
57
|
+
try {
|
|
58
|
+
parameters = z.toJSONSchema(schema);
|
|
59
|
+
}
|
|
60
|
+
catch {
|
|
61
|
+
// Fallback: leave parameters empty if conversion fails. The tool
|
|
62
|
+
// still works; rug-pull detection degrades to "hash mismatch,
|
|
63
|
+
// informational only" rather than blocking the call.
|
|
64
|
+
parameters = {};
|
|
65
|
+
}
|
|
66
|
+
const descriptorHash = contractHash({
|
|
67
|
+
name: toolName,
|
|
68
|
+
description: toolDescription,
|
|
69
|
+
parameters,
|
|
70
|
+
});
|
|
47
71
|
return new DynamicStructuredTool({
|
|
48
|
-
name:
|
|
49
|
-
description:
|
|
50
|
-
"The query is security-scanned before execution.",
|
|
72
|
+
name: toolName,
|
|
73
|
+
description: toolDescription,
|
|
51
74
|
schema,
|
|
52
75
|
func: async ({ query }) => {
|
|
53
|
-
const result = await opts.client.proxy(
|
|
76
|
+
const result = await opts.client.proxy(toolName, { query }, targetUrl, `Agent executing SQL: ${query.slice(0, 200)}`, descriptorHash);
|
|
54
77
|
if (!result.allowed) {
|
|
55
78
|
return (`BLOCKED: ${result.denial_reason} ` +
|
|
56
79
|
`(risk_score=${result.risk_score.toFixed(2)}, ` +
|
package/dist/langchain.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"langchain.js","sourceRoot":"","sources":["../src/langchain.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;
|
|
1
|
+
{"version":3,"file":"langchain.js","sourceRoot":"","sources":["../src/langchain.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,sEAAsE;AAEtE,KAAK,UAAU,QAAQ;IACrB,IAAI,qBAAmF,CAAC;IACxF,IAAI,CAAyB,CAAC;IAE9B,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,uBAAuB,CAAC,CAAC;QACvD,qBAAqB,GAAG,QAAQ,CAAC,qBAAqB,CAAC;IACzD,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CACb,yDAAyD;YACvD,2CAA2C,CAC9C,CAAC;IACJ,CAAC;IAED,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,KAAK,CAAC,CAAC;QACnC,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC;IACf,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CACb,6CAA6C;YAC3C,+BAA+B,CAClC,CAAC;IACJ,CAAC;IAED,OAAO,EAAE,qBAAqB,EAAE,CAAC,EAAE,CAAC;AACtC,CAAC;AASD,sEAAsE;AAEtE;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAC5C,IAA+B;IAE/B,MAAM,EAAE,qBAAqB,EAAE,CAAC,EAAE,GAAG,MAAM,QAAQ,EAAE,CAAC;IACtD,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,uBAAuB,CAAC;IAE5D,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;QACtB,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,sBAAsB,CAAC;KACnD,CAAC,CAAC;IAEH,MAAM,QAAQ,GAAG,gBAAgB,CAAC;IAClC,MAAM,eAAe,GACnB,4CAA4C;QAC5C,iDAAiD,CAAC;IAEpD,+DAA+D;IAC/D,8DAA8D;IAC9D,iEAAiE;IACjE,iEAAiE;IACjE,+BAA+B;IAC/B,IAAI,UAAU,GAAW,EAAE,CAAC;IAC5B,IAAI,CAAC;QACH,UAAU,GAAG,CAAC,CAAC,YAAY,CAAC,MAAM,CAAW,CAAC;IAChD,CAAC;IAAC,MAAM,CAAC;QACP,iEAAiE;QACjE,8DAA8D;QAC9D,qDAAqD;QACrD,UAAU,GAAG,EAAE,CAAC;IAClB,CAAC;IACD,MAAM,cAAc,GAAG,YAAY,CAAC;QAClC,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,eAAe;QAC5B,UAAU;KACX,CAAC,CAAC;IAEH,OAAO,IAAI,qBAAqB,CAAC;QAC/B,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,eAAe;QAC5B,MAAM;QACN,IAAI,EAAE,KAAK,EAAE,EAAE,KAAK,EAAqB,EAAmB,EAAE;YAC5D,MAAM,MAAM,GAAkB,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,CACnD,QAAQ,EACR,EAAE,KAAK,EAAE,EACT,SAAS,EACT,wBAAwB,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,EAC7C,cAAc,CACf,CAAC;YAEF,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;gBACpB,OAAO,CACL,YAAY,MAAM,CAAC,aAAa,GAAG;oBACnC,eAAe,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI;oBAC/C,WAAW,MAAM,CAAC,UAAU,KAAK,CAClC,CAAC;YACJ,CAAC;YAED,OAAO,CACL,YAAY,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,aAAa,CAAC,GAAG;gBACnD,eAAe,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI;gBAC/C,SAAS,MAAM,CAAC,aAAa,IAAI;gBACjC,WAAW,MAAM,CAAC,UAAU,KAAK,CAClC,CAAC;QACJ,CAAC;KACF,CAAC,CAAC;AACL,CAAC"}
|