npm - @clampd/sdk - Versions diffs - 0.4.0 → 0.4.1 - Mend

@clampd/sdk 0.4.0 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +31 -10
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -1,17 +1,17 @@
-# Clampd TypeScript SDK
+# @clampd/sdk — TypeScript SDK
-Runtime security for AI agents. Guard every tool call — OpenAI, Anthropic, LangChain.js — in 1 line.
+Runtime security for AI agents. Guard every tool call — OpenAI, Anthropic, LangChain.js — in 1 line. Prompt and response scanning enabled by default.
 ## Installation
 ```bash
-npm install clampd
+npm install @clampd/sdk
 ```
 ## Quick Start
 ```typescript
-import clampd from "clampd";
+import clampd from "@clampd/sdk";
 import OpenAI from "openai";
 // Configure once at startup
@@ -33,8 +33,15 @@ const response = await client.chat.completions.create({
 });
 // Dangerous tool calls → blocked before execution
 // Safe tool calls → proceed normally
+// Prompts scanned before LLM, responses scanned after
 ```
+## What's New in 0.4.0
+- **`scanInput` and `scanOutput` now default to `true`** — prompts are scanned before the LLM call, responses are scanned after. Set `scanInput: false` to opt out.
+- 50 detection rules across 20 languages
+- 7 compliance frameworks (HIPAA, GDPR, PCI-DSS, CCPA, SOC 2, EU AI Act, NIST AI RMF)
 ## Configuration
 Three ways to configure (pick one):
@@ -60,7 +67,7 @@ const safeFn = clampd.guard(myFn, {
 ## Anthropic / Claude
 ```typescript
-import clampd from "clampd";
+import clampd from "@clampd/sdk";
 import Anthropic from "@anthropic-ai/sdk";
 clampd.init({ agentId: "my-agent", secret: "ags_..." });
@@ -77,7 +84,7 @@ const response = await client.messages.create({
 ## Direct Guard (any function)
 ```typescript
-import clampd from "clampd";
+import clampd from "@clampd/sdk";
 clampd.init({ agentId: "my-agent", secret: "ags_..." });
@@ -95,10 +102,24 @@ await safeQuery("SELECT * FROM users");  // allowed
 await safeQuery("DROP TABLE users");     // throws ClampdBlockedError
 ```
+## Scanning Options
+```typescript
+// Defaults (v0.4.0+): scanInput=true, scanOutput=true
+const client = clampd.openai(new OpenAI(), { agentId: "my-agent" });
+// Opt out of scanning
+const client = clampd.openai(new OpenAI(), {
+  agentId: "my-agent",
+  scanInput: false,   // skip prompt scanning
+  scanOutput: false,  // skip response scanning
+});
+```
 ## Tool Definitions Wrapper
 ```typescript
-import clampd from "clampd";
+import clampd from "@clampd/sdk";
 // Wrap OpenAI-style tool definitions
 const safeTools = clampd.tools(myToolDefs, { agentId: "my-agent", secret: "ags_..." });
@@ -107,7 +128,7 @@ const safeTools = clampd.tools(myToolDefs, { agentId: "my-agent", secret: "ags_.
 ## Error Handling
 ```typescript
-import { ClampdBlockedError } from "clampd";
+import { ClampdBlockedError } from "@clampd/sdk";
 try {
   await safeQuery("DROP TABLE users");
@@ -124,8 +145,8 @@ try {
 | Function | Description |
 |----------|-------------|
 | `clampd.init(opts)` | Configure global client (once at startup) |
-| `clampd.openai(client)` | Wrap OpenAI client |
-| `clampd.anthropic(client)` | Wrap Anthropic client |
+| `clampd.openai(client, opts?)` | Wrap OpenAI client (scanInput/scanOutput on by default) |
+| `clampd.anthropic(client, opts?)` | Wrap Anthropic client (scanInput/scanOutput on by default) |
 | `clampd.guard(fn, opts)` | Wrap any async function |
 | `clampd.tools(defs, opts)` | Wrap OpenAI tool definitions |

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@clampd/sdk",
-  "version": "0.4.0",
+  "version": "0.4.1",
   "description": "Runtime security SDK for AI agents — guard tool calls in 1 line",
   "type": "module",
   "main": "./dist/index.js",