agentid-sdk 0.1.38 → 0.1.40

package/README.md

@@ -111,6 +111,10 @@ console.log(response.choices[0]?.message?.content ?? "");
 By default, official AgentID SDK integrations inherit `enable_sdk_pii_masking`
 from the dashboard/runtime config. You only need to set `piiMasking: true` in
 code if you want to force local masking on even when the dashboard policy is off.
+Starting with `agentid-sdk@0.1.40`, fail-open dependency fallback keeps local
+deterministic PII and secret masking enabled when `/agent/config` or `/guard`
+is unreachable. Fail-open can preserve availability, but official wrappers must
+not treat it as permission to send raw sensitive text to the provider.
 
 When SDK-side masking is enabled, the wrapper now masks both classic PII and
 high-confidence secret material before the request leaves your process:
@@ -121,10 +125,86 @@ high-confidence secret material before the request leaves your process:
 - password / credential assignments, PEM private keys, Azure connection strings and SAS tokens
 
 The masked form is what gets sent to `/guard`, logged to AgentID ingest, and
-forwarded to the model provider. Placeholder mapping stays local to the SDK and
-can be deanonymized back to the caller after completion.
-
-Wrapped OpenAI calls persist telemetry for both regular and streamed completions. For `stream: true`, logging happens when the stream finishes.
+forwarded to the model provider. The wrapper also protects returned completion
+text before it is logged or returned from the wrapped call when SDK-side masking
+is enabled.
+
+Important: this applies only to the wrapped call. If your app sends raw prompt
+or raw chat history through a separate direct provider call, AgentID cannot
+protect that bypass.
+
+Correct:
+
+```ts
+const secured = agent.wrapOpenAI(openai, {
+  system_id: process.env.AGENTID_SYSTEM_ID!,
+});
+
+await secured.chat.completions.create({
+  model: "gpt-4o-mini",
+  messages: fullConversationHistory,
+});
+```
+
+Incorrect:
+
+```ts
+// Raw history reaches the provider.
+await openai.chat.completions.create({
+  model: "gpt-4o-mini",
+  messages: rawConversationHistory,
+});
+
+// Logging a masked copy later does not protect the model call above.
+await agent.log({ system_id: systemId, input: maskedInput, output: maskedOutput });
+```
+
+For chat apps and agent workflows, protect the full message history, not just
+the latest text field. If a previous user/assistant/tool/memory message contains
+raw PII, the model can still repeat it later.
+
+If you cannot use `wrapOpenAI()` and need a manual integration, call
+`protectMessageHistory()` on the exact history that will be sent to the
+provider. Then pass `protected.messages` to the provider, not the raw
+`body.messages`.
+
+```ts
+import { AgentID, protectMessageHistory } from "agentid-sdk";
+
+const agent = new AgentID();
+const protectedHistory = protectMessageHistory(body.messages, {
+  pii: true,
+  secrets: true,
+});
+
+const latestUserInput = extractLatestUserInput(protectedHistory.messages);
+const verdict = await agent.guard({
+  system_id: process.env.AGENTID_SYSTEM_ID!,
+  input: latestUserInput,
+  model: "gpt-4o-mini",
+  metadata: {
+    runtime_surface: "manual_provider_integration",
+    full_history_protected: true,
+    messages_count: Array.isArray(protectedHistory.messages)
+      ? protectedHistory.messages.length
+      : undefined,
+    protected_messages_count: Array.isArray(protectedHistory.messages)
+      ? protectedHistory.messages.length
+      : undefined,
+    prompt_text_parts_count: protectedHistory.textPartsCount,
+    transformed_prompt_text_parts_count:
+      protectedHistory.transformedTextPartsCount,
+  },
+});
+if (!verdict.allowed) throw new Error(`Blocked: ${verdict.reason}`);
+
+const response = await openai.chat.completions.create({
+  model: "gpt-4o-mini",
+  messages: protectedHistory.messages,
+});
+```
+
+Wrapped OpenAI calls persist telemetry for both regular and streamed completions. For `stream: true`, logging happens when the stream finishes.
 
 > Scope note: AgentID compliance/risk controls apply to the specific SDK-wrapped LLM calls (`guard()`, `wrapOpenAI()`, LangChain callback-wrapped flows). They do not automatically classify unrelated code paths in your whole monolithic application.
 
@@ -198,17 +278,28 @@ import { AgentID } from "agentid-sdk";
 
 const agent = new AgentID();
 
-await agent.log({
-  system_id: process.env.AGENTID_SYSTEM_ID!,
-  event_type: "complete",
-  severity: "info",
-  model: "gpt-4o-mini",
-  input: "Raw telemetry prompt",
-  output: '{"ok": true}',
+await agent.log({
+  system_id: process.env.AGENTID_SYSTEM_ID!,
+  event_type: "complete",
+  severity: "info",
+  model: "gpt-4o-mini",
+  input: "Raw telemetry prompt",
+  output: '{"ok": true}',
+  usage: {
+    prompt_tokens: 33,
+    completion_tokens: 9,
+    total_tokens: 42,
+  },
+  latency: 1450,
   metadata: { agent_role: "batch-worker", channel: "manual_ingest" },
 });
 ```
 
+For manual integrations, preserve provider usage. Without `usage` or
+normalized `tokens`, AgentID can store Activity but cannot compute token totals,
+`cost_usd`, Total Spend, or ROI. ROI also requires the system business context
+fields `human_hourly_rate` and `human_time_per_task_min`.
+
 ### Agent workflow and tool events
 
 Use `logOperation()` when an agent calls tools or performs operational work outside the wrapped LLM call. Reuse the same `workflowRunId` across steps.

package/dist/{agentid-CxVUF_eo.d.mts → agentid-BWlN5KCq.d.mts}

@@ -281,6 +281,7 @@ declare class AgentID {
     private getCapabilityConfigWithTelemetry;
     private getCachedCapabilityConfig;
     private resolveEffectiveStrictMode;
+    private buildFailOpenGuardVerdict;
     private maybeRaiseStrictIngestDependencyError;
     private shouldRunLocalInjectionScan;
     private refreshCapabilityConfigBeforeClientControl;
@@ -396,4 +397,4 @@ declare class AgentIDWorkflowTrail {
 }
 declare function createAgentIdWorkflowTrail(options: AgentIDWorkflowTrailOptions): AgentIDWorkflowTrail;
 
-export { type AgentEventType as A, DependencyError as D, type GuardAttachment as G, type LogParams as L, type OperationLogParams as O, PIIManager as P, type RequestOptions as R, SecurityBlockError as S, type TransparencyMetadata as T, type WrapOpenAIOptions as W, AgentID as a, type AgentIDWorkflowRunHooks as b, AgentIDWorkflowStep as c, type AgentIDWorkflowStepParams as d, AgentIDWorkflowTrail as e, type AgentIDWorkflowTrailOptions as f, type AgentOperationCategory as g, type AgentOperationStatus as h, type AgentTelemetryContext as i, type GuardParams as j, type GuardResponse as k, type PIIAnonymizeOptions as l, type PIIMapping as m, type PreparedInput as n, createAgentIdCorrelationId as o, createAgentIdOperationLog as p, createAgentIdTelemetryContext as q, createAgentIdWorkflowTrail as r };
+export { type AgentEventType as A, DependencyError as D, type GuardAttachment as G, type LogParams as L, type OperationLogParams as O, type PIIAnonymizeOptions as P, type RequestOptions as R, SecurityBlockError as S, type TransparencyMetadata as T, type WrapOpenAIOptions as W, PIIManager as a, AgentID as b, type AgentIDWorkflowRunHooks as c, AgentIDWorkflowStep as d, type AgentIDWorkflowStepParams as e, AgentIDWorkflowTrail as f, type AgentIDWorkflowTrailOptions as g, type AgentOperationCategory as h, type AgentOperationStatus as i, type AgentTelemetryContext as j, type GuardParams as k, type GuardResponse as l, type PIIMapping as m, type PreparedInput as n, createAgentIdCorrelationId as o, createAgentIdOperationLog as p, createAgentIdTelemetryContext as q, createAgentIdWorkflowTrail as r };

package/dist/{agentid-CxVUF_eo.d.ts → agentid-BWlN5KCq.d.ts}

@@ -281,6 +281,7 @@ declare class AgentID {
     private getCapabilityConfigWithTelemetry;
     private getCachedCapabilityConfig;
     private resolveEffectiveStrictMode;
+    private buildFailOpenGuardVerdict;
     private maybeRaiseStrictIngestDependencyError;
     private shouldRunLocalInjectionScan;
     private refreshCapabilityConfigBeforeClientControl;
@@ -396,4 +397,4 @@ declare class AgentIDWorkflowTrail {
 }
 declare function createAgentIdWorkflowTrail(options: AgentIDWorkflowTrailOptions): AgentIDWorkflowTrail;
 
-export { type AgentEventType as A, DependencyError as D, type GuardAttachment as G, type LogParams as L, type OperationLogParams as O, PIIManager as P, type RequestOptions as R, SecurityBlockError as S, type TransparencyMetadata as T, type WrapOpenAIOptions as W, AgentID as a, type AgentIDWorkflowRunHooks as b, AgentIDWorkflowStep as c, type AgentIDWorkflowStepParams as d, AgentIDWorkflowTrail as e, type AgentIDWorkflowTrailOptions as f, type AgentOperationCategory as g, type AgentOperationStatus as h, type AgentTelemetryContext as i, type GuardParams as j, type GuardResponse as k, type PIIAnonymizeOptions as l, type PIIMapping as m, type PreparedInput as n, createAgentIdCorrelationId as o, createAgentIdOperationLog as p, createAgentIdTelemetryContext as q, createAgentIdWorkflowTrail as r };
+export { type AgentEventType as A, DependencyError as D, type GuardAttachment as G, type LogParams as L, type OperationLogParams as O, type PIIAnonymizeOptions as P, type RequestOptions as R, SecurityBlockError as S, type TransparencyMetadata as T, type WrapOpenAIOptions as W, PIIManager as a, AgentID as b, type AgentIDWorkflowRunHooks as c, AgentIDWorkflowStep as d, type AgentIDWorkflowStepParams as e, AgentIDWorkflowTrail as f, type AgentIDWorkflowTrailOptions as g, type AgentOperationCategory as h, type AgentOperationStatus as i, type AgentTelemetryContext as j, type GuardParams as k, type GuardResponse as l, type PIIMapping as m, type PreparedInput as n, createAgentIdCorrelationId as o, createAgentIdOperationLog as p, createAgentIdTelemetryContext as q, createAgentIdWorkflowTrail as r };

package/dist/{chunk-AIGMQSAV.mjs → chunk-25SZBEYX.mjs}

@@ -1124,9 +1124,9 @@ var SDK_SECRET_PATTERN_DEFINITIONS = [
   {
     id: "password_assignment",
     placeholderType: "PASSWORD_ASSIGNMENT",
-    patternSource: `(?:\\b|["'])(?:password|passwd|pwd)(?:\\b|["'])\\s*(?:(?::|=|=>)|(?:is|are|was|were)\\b)\\s*(?:"[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}"|'[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}'|[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,})`,
+    patternSource: `(?:\\b|["'])(?:password|passwd|pwd|heslo)(?:\\b|["'])\\s*(?:(?::|=|=>)|(?:is|are|was|were|je)\\b)?\\s*(?:"[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}"|'[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}'|[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,})`,
     flags: "iu",
-    prefilterTerms: ["password", "passwd", "pwd"]
+    prefilterTerms: ["password", "passwd", "pwd", "heslo"]
   },
   {
     id: "private_key_material",
@@ -1228,6 +1228,8 @@ var PHONE_CONTEXT_KEYWORDS = [
   "call",
   "contact",
   "number",
+  "cislo",
+  "\u010D\xEDslo",
   "hotline",
   "support",
   "infoline",
@@ -2288,7 +2290,7 @@ function getInjectionScanner() {
 
 // src/sdk-version.ts
 var FALLBACK_SDK_VERSION = "js-0.0.0-dev";
-var AGENTID_SDK_VERSION_HEADER = "js-0.1.38".trim().length > 0 ? "js-0.1.38" : FALLBACK_SDK_VERSION;
+var AGENTID_SDK_VERSION_HEADER = "js-0.1.40".trim().length > 0 ? "js-0.1.40" : FALLBACK_SDK_VERSION;
 
 // src/local-security-enforcer.ts
 var DEFAULT_FAIL_OPEN_CONFIG = {
@@ -2299,9 +2301,9 @@ var DEFAULT_FAIL_OPEN_CONFIG = {
   block_on_heuristic: false,
   inject_transparency_metadata: false,
   block_pii_leakage: false,
-  enable_sdk_pii_masking: false,
+  enable_sdk_pii_masking: true,
   block_secret_leakage: false,
-  enable_sdk_secret_masking: false,
+  enable_sdk_secret_masking: true,
   block_db_access: false,
   block_code_execution: false,
   block_toxicity: false
@@ -3711,6 +3713,23 @@ var AgentID = class {
     const config = await this.getCapabilityConfig(false, options);
     return config.strict_security_mode || config.failure_mode === "fail_close";
   }
+  buildFailOpenGuardVerdict(reason, input, options) {
+    const capabilityConfig = this.getCachedCapabilityConfig(options);
+    const shouldMaskPii = capabilityConfig.block_pii_leakage || this.resolveEffectivePiiMasking(capabilityConfig);
+    const shouldMaskSecrets = capabilityConfig.block_secret_leakage === true || this.resolveEffectiveSecretMasking(capabilityConfig);
+    const response = { allowed: true, reason };
+    if (input && (shouldMaskPii || shouldMaskSecrets)) {
+      const masked = this.pii.anonymize(input, {
+        pii: shouldMaskPii,
+        secrets: shouldMaskSecrets
+      });
+      if (masked.maskedText !== input) {
+        response.transformed_input = masked.maskedText;
+        response.detected_pii = Object.keys(masked.mapping).length > 0;
+      }
+    }
+    return response;
+  }
   maybeRaiseStrictIngestDependencyError(params) {
     if (params.result.ok) {
       return;
@@ -3951,12 +3970,43 @@ var AgentID = class {
       })
     });
   }
-  withMaskedOpenAIRequest(req, maskedText) {
+  withMaskedOpenAIRequest(req, maskedText, options) {
     const messages = Array.isArray(req?.messages) ? req.messages : null;
     if (!messages) {
       return req;
     }
-    const newMessages = [...messages];
+    const newMessages = messages.map((message2) => {
+      if (!message2 || typeof message2 !== "object") {
+        return message2;
+      }
+      const typedMessage = message2;
+      const currentContent2 = typedMessage.content;
+      if (typeof currentContent2 === "string") {
+        return {
+          ...typedMessage,
+          content: this.pii.anonymize(currentContent2, options).maskedText
+        };
+      }
+      if (Array.isArray(currentContent2)) {
+        return {
+          ...typedMessage,
+          content: currentContent2.map((part) => {
+            if (!part || typeof part !== "object") {
+              return part;
+            }
+            const typedPart = part;
+            if (typeof typedPart.text !== "string") {
+              return part;
+            }
+            return {
+              ...typedPart,
+              text: this.pii.anonymize(typedPart.text, options).maskedText
+            };
+          })
+        };
+      }
+      return message2;
+    });
     let lastUserIdx = null;
     for (let i = 0; i < newMessages.length; i += 1) {
       const msg = newMessages[i];
@@ -4170,7 +4220,13 @@ var AgentID = class {
               guardParams: params,
               apiKey: effectiveApiKey
             });
-            return withGuardLatency({ allowed: true, reason: "system_failure_fail_open" });
+            return withGuardLatency(
+              this.buildFailOpenGuardVerdict(
+                "system_failure_fail_open",
+                params.input,
+                { apiKey: effectiveApiKey }
+              )
+            );
           }
           this.cacheGuardVerdict(guardCacheKey, verdict);
           return withGuardLatency(verdict);
@@ -4205,7 +4261,11 @@ var AgentID = class {
           if (effectiveStrictMode) {
             return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
           }
-          return withGuardLatency({ allowed: true, reason: "timeout_fallback" });
+          return withGuardLatency(
+            this.buildFailOpenGuardVerdict("timeout_fallback", params.input, {
+              apiKey: effectiveApiKey
+            })
+          );
         }
         console.warn(
           effectiveStrictMode ? "[AgentID] Guard check failed (Strict mode active):" : "[AgentID] Guard check failed (Fail-Open active):",
@@ -4220,7 +4280,11 @@ var AgentID = class {
         if (effectiveStrictMode) {
           return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
         }
-        return withGuardLatency({ allowed: true, reason: "guard_unreachable" });
+        return withGuardLatency(
+          this.buildFailOpenGuardVerdict("guard_unreachable", params.input, {
+            apiKey: effectiveApiKey
+          })
+        );
       } finally {
         clearTimeout(timeoutId);
       }
@@ -4229,13 +4293,23 @@ var AgentID = class {
       if (effectiveStrictMode) {
         return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
       }
-      return withGuardLatency({ allowed: true, reason: "timeout_fallback" });
+      return withGuardLatency(
+        this.buildFailOpenGuardVerdict("timeout_fallback", params.input, {
+          apiKey: effectiveApiKey
+        })
+      );
     }
     if (typeof lastStatusCode === "number" && lastStatusCode >= 500) {
       if (effectiveStrictMode) {
         return withGuardLatency({ allowed: false, reason: "server_error" });
       }
-      return withGuardLatency({ allowed: true, reason: "system_failure_fail_open" });
+      return withGuardLatency(
+        this.buildFailOpenGuardVerdict(
+          "system_failure_fail_open",
+          params.input,
+          { apiKey: effectiveApiKey }
+        )
+      );
     }
     console.warn(
       effectiveStrictMode ? "[AgentID] Guard check failed (Strict mode active):" : "[AgentID] Guard check failed (Fail-Open active):",
@@ -4244,7 +4318,11 @@ var AgentID = class {
     if (effectiveStrictMode) {
       return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
     }
-    return withGuardLatency({ allowed: true, reason: "guard_unreachable" });
+    return withGuardLatency(
+      this.buildFailOpenGuardVerdict("guard_unreachable", params.input, {
+        apiKey: effectiveApiKey
+      })
+    );
   }
   async sendIngest(params, options, internal) {
     const ingestStartedAt = Date.now();
@@ -4749,6 +4827,7 @@ var AgentID = class {
                 let mapping = {};
                 let sdkConfigFetchMs = 0;
                 let sdkLocalScanMs = 0;
+                let providerMaskingOptions;
                 if (hasGuardContent) {
                   const prepared = await this.prepareInputForDispatch({
                     input: userText ?? "",
@@ -4758,6 +4837,10 @@ var AgentID = class {
                     telemetryMetadata
                   }, requestOptions);
                   capabilityConfig = prepared.capabilityConfig;
+                  providerMaskingOptions = {
+                    pii: !capabilityConfig.block_pii_leakage && this.resolveEffectivePiiMasking(capabilityConfig),
+                    secrets: !capabilityConfig.block_secret_leakage && this.resolveEffectiveSecretMasking(capabilityConfig)
+                  };
                   maskedText = prepared.sanitizedInput;
                   mapping = prepared.piiMapping ?? {};
                   sdkConfigFetchMs = prepared.sdkConfigFetchMs ?? 0;
@@ -4765,7 +4848,8 @@ var AgentID = class {
                   if (maskedText !== (userText ?? "")) {
                     maskedReq = this.withMaskedOpenAIRequest(
                       providerReq,
-                      maskedText
+                      maskedText,
+                      providerMaskingOptions
                     );
                     const nextCreateArgs = [...createArgs];
                     nextCreateArgs[0] = maskedReq;
@@ -4839,10 +4923,11 @@ var AgentID = class {
                   }
                 }
                 const currentRequestInput = adapter.extractInput(maskedReq) ?? "";
-                if (maskedText !== currentRequestInput) {
+                if (maskedText !== currentRequestInput || providerMaskingOptions?.pii === true || providerMaskingOptions?.secrets === true) {
                   maskedReq = this.withMaskedOpenAIRequest(
                     providerReq,
-                    maskedText
+                    maskedText,
+                    providerMaskingOptions
                   );
                   const nextCreateArgs = [...createArgs];
                   nextCreateArgs[0] = maskedReq;
@@ -4865,7 +4950,8 @@ var AgentID = class {
                   maskedText = transformedInput;
                   maskedReq = this.withMaskedOpenAIRequest(
                     providerReq,
-                    transformedInput
+                    transformedInput,
+                    providerMaskingOptions
                   );
                   const nextCreateArgs = [...createArgs];
                   nextCreateArgs[0] = maskedReq;
@@ -4912,7 +4998,7 @@ var AgentID = class {
                     void wrappedCompletion.done.then(async (result) => {
                       const modelLatencyMs2 = Math.max(0, Date.now() - modelStartedAt2);
                       const totalPipelineLatencyMs2 = Math.max(0, Date.now() - pipelineStartedAt);
-                      const outputForLog = isShadowMode ? result.rawOutput : result.transformedOutput;
+                      const outputForLog = result.transformedOutput;
                       const ingestResult = await this.sendIngest({
                         event_id: canonicalClientEventId,
                         system_id: systemId,
@@ -4986,7 +5072,7 @@ var AgentID = class {
                   });
                   const model = adapter.getModelName(maskedReq, res);
                   const usage = adapter.getTokenUsage(res);
-                  const outputForLog = isShadowMode ? wrappedCompletion.rawOutput : wrappedCompletion.transformedOutput;
+                  const outputForLog = wrappedCompletion.transformedOutput;
                   const ingestResult = await this.sendIngest({
                     event_id: canonicalClientEventId,
                     system_id: systemId,

package/dist/index.d.mts

@@ -1,5 +1,5 @@
-import { P as PIIManager } from './agentid-CxVUF_eo.mjs';
-export { A as AgentEventType, a as AgentID, b as AgentIDWorkflowRunHooks, c as AgentIDWorkflowStep, d as AgentIDWorkflowStepParams, e as AgentIDWorkflowTrail, f as AgentIDWorkflowTrailOptions, g as AgentOperationCategory, h as AgentOperationStatus, i as AgentTelemetryContext, D as DependencyError, G as GuardAttachment, j as GuardParams, k as GuardResponse, L as LogParams, O as OperationLogParams, l as PIIAnonymizeOptions, m as PIIMapping, n as PreparedInput, R as RequestOptions, S as SecurityBlockError, T as TransparencyMetadata, W as WrapOpenAIOptions, o as createAgentIdCorrelationId, p as createAgentIdOperationLog, q as createAgentIdTelemetryContext, r as createAgentIdWorkflowTrail } from './agentid-CxVUF_eo.mjs';
+import { P as PIIAnonymizeOptions, a as PIIManager } from './agentid-BWlN5KCq.mjs';
+export { A as AgentEventType, b as AgentID, c as AgentIDWorkflowRunHooks, d as AgentIDWorkflowStep, e as AgentIDWorkflowStepParams, f as AgentIDWorkflowTrail, g as AgentIDWorkflowTrailOptions, h as AgentOperationCategory, i as AgentOperationStatus, j as AgentTelemetryContext, D as DependencyError, G as GuardAttachment, k as GuardParams, l as GuardResponse, L as LogParams, O as OperationLogParams, m as PIIMapping, n as PreparedInput, R as RequestOptions, S as SecurityBlockError, T as TransparencyMetadata, W as WrapOpenAIOptions, o as createAgentIdCorrelationId, p as createAgentIdOperationLog, q as createAgentIdTelemetryContext, r as createAgentIdWorkflowTrail } from './agentid-BWlN5KCq.mjs';
 
 type TokenUsage = Record<string, unknown>;
 type ExtractedGuardAttachment = {
@@ -24,6 +24,15 @@ declare class OpenAIAdapter implements LLMAdapter {
     isStream(req: any): boolean;
 }
 
+type ProtectMessageHistoryOptions = PIIAnonymizeOptions;
+type ProtectMessageHistoryResult<T> = {
+    messages: T;
+    transformed: boolean;
+    textPartsCount: number;
+    transformedTextPartsCount: number;
+};
+declare function protectMessageHistory<T>(messages: T, options?: ProtectMessageHistoryOptions): ProtectMessageHistoryResult<T>;
+
 type InjectionScanParams = {
     prompt: string;
     apiKey: string;
@@ -54,4 +63,4 @@ declare class InjectionScanner {
 }
 declare function getInjectionScanner(): InjectionScanner;
 
-export { type ExtractedGuardAttachment, type InjectionScanParams, InjectionScanner, type LLMAdapter, OpenAIAdapter, PIIManager, type TokenUsage, getInjectionScanner, scanWithRegex };
+export { type ExtractedGuardAttachment, type InjectionScanParams, InjectionScanner, type LLMAdapter, OpenAIAdapter, PIIAnonymizeOptions, PIIManager, type ProtectMessageHistoryOptions, type ProtectMessageHistoryResult, type TokenUsage, getInjectionScanner, protectMessageHistory, scanWithRegex };

package/dist/index.d.ts

@@ -1,5 +1,5 @@
-import { P as PIIManager } from './agentid-CxVUF_eo.js';
-export { A as AgentEventType, a as AgentID, b as AgentIDWorkflowRunHooks, c as AgentIDWorkflowStep, d as AgentIDWorkflowStepParams, e as AgentIDWorkflowTrail, f as AgentIDWorkflowTrailOptions, g as AgentOperationCategory, h as AgentOperationStatus, i as AgentTelemetryContext, D as DependencyError, G as GuardAttachment, j as GuardParams, k as GuardResponse, L as LogParams, O as OperationLogParams, l as PIIAnonymizeOptions, m as PIIMapping, n as PreparedInput, R as RequestOptions, S as SecurityBlockError, T as TransparencyMetadata, W as WrapOpenAIOptions, o as createAgentIdCorrelationId, p as createAgentIdOperationLog, q as createAgentIdTelemetryContext, r as createAgentIdWorkflowTrail } from './agentid-CxVUF_eo.js';
+import { P as PIIAnonymizeOptions, a as PIIManager } from './agentid-BWlN5KCq.js';
+export { A as AgentEventType, b as AgentID, c as AgentIDWorkflowRunHooks, d as AgentIDWorkflowStep, e as AgentIDWorkflowStepParams, f as AgentIDWorkflowTrail, g as AgentIDWorkflowTrailOptions, h as AgentOperationCategory, i as AgentOperationStatus, j as AgentTelemetryContext, D as DependencyError, G as GuardAttachment, k as GuardParams, l as GuardResponse, L as LogParams, O as OperationLogParams, m as PIIMapping, n as PreparedInput, R as RequestOptions, S as SecurityBlockError, T as TransparencyMetadata, W as WrapOpenAIOptions, o as createAgentIdCorrelationId, p as createAgentIdOperationLog, q as createAgentIdTelemetryContext, r as createAgentIdWorkflowTrail } from './agentid-BWlN5KCq.js';
 
 type TokenUsage = Record<string, unknown>;
 type ExtractedGuardAttachment = {
@@ -24,6 +24,15 @@ declare class OpenAIAdapter implements LLMAdapter {
     isStream(req: any): boolean;
 }
 
+type ProtectMessageHistoryOptions = PIIAnonymizeOptions;
+type ProtectMessageHistoryResult<T> = {
+    messages: T;
+    transformed: boolean;
+    textPartsCount: number;
+    transformedTextPartsCount: number;
+};
+declare function protectMessageHistory<T>(messages: T, options?: ProtectMessageHistoryOptions): ProtectMessageHistoryResult<T>;
+
 type InjectionScanParams = {
     prompt: string;
     apiKey: string;
@@ -54,4 +63,4 @@ declare class InjectionScanner {
 }
 declare function getInjectionScanner(): InjectionScanner;
 
-export { type ExtractedGuardAttachment, type InjectionScanParams, InjectionScanner, type LLMAdapter, OpenAIAdapter, PIIManager, type TokenUsage, getInjectionScanner, scanWithRegex };
+export { type ExtractedGuardAttachment, type InjectionScanParams, InjectionScanner, type LLMAdapter, OpenAIAdapter, PIIAnonymizeOptions, PIIManager, type ProtectMessageHistoryOptions, type ProtectMessageHistoryResult, type TokenUsage, getInjectionScanner, protectMessageHistory, scanWithRegex };

package/dist/index.js

@@ -33,6 +33,7 @@ __export(index_exports, {
   createAgentIdTelemetryContext: () => createAgentIdTelemetryContext,
   createAgentIdWorkflowTrail: () => createAgentIdWorkflowTrail,
   getInjectionScanner: () => getInjectionScanner,
+  protectMessageHistory: () => protectMessageHistory,
   scanWithRegex: () => scanWithRegex
 });
 module.exports = __toCommonJS(index_exports);
@@ -181,7 +182,7 @@ var OpenAIAdapter = class {
 
 // src/sdk-version.ts
 var FALLBACK_SDK_VERSION = "js-0.0.0-dev";
-var AGENTID_SDK_VERSION_HEADER = "js-0.1.38".trim().length > 0 ? "js-0.1.38" : FALLBACK_SDK_VERSION;
+var AGENTID_SDK_VERSION_HEADER = "js-0.1.40".trim().length > 0 ? "js-0.1.40" : FALLBACK_SDK_VERSION;
 
 // src/pii-national-identifiers.ts
 var MAX_CANDIDATES_PER_RULE = 256;
@@ -1167,9 +1168,9 @@ var SDK_SECRET_PATTERN_DEFINITIONS = [
   {
     id: "password_assignment",
     placeholderType: "PASSWORD_ASSIGNMENT",
-    patternSource: `(?:\\b|["'])(?:password|passwd|pwd)(?:\\b|["'])\\s*(?:(?::|=|=>)|(?:is|are|was|were)\\b)\\s*(?:"[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}"|'[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}'|[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,})`,
+    patternSource: `(?:\\b|["'])(?:password|passwd|pwd|heslo)(?:\\b|["'])\\s*(?:(?::|=|=>)|(?:is|are|was|were|je)\\b)?\\s*(?:"[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}"|'[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}'|[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,})`,
     flags: "iu",
-    prefilterTerms: ["password", "passwd", "pwd"]
+    prefilterTerms: ["password", "passwd", "pwd", "heslo"]
   },
   {
     id: "private_key_material",
@@ -1271,6 +1272,8 @@ var PHONE_CONTEXT_KEYWORDS = [
   "call",
   "contact",
   "number",
+  "cislo",
+  "\u010D\xEDslo",
   "hotline",
   "support",
   "infoline",
@@ -1679,9 +1682,9 @@ var DEFAULT_FAIL_OPEN_CONFIG = {
   block_on_heuristic: false,
   inject_transparency_metadata: false,
   block_pii_leakage: false,
-  enable_sdk_pii_masking: false,
+  enable_sdk_pii_masking: true,
   block_secret_leakage: false,
-  enable_sdk_secret_masking: false,
+  enable_sdk_secret_masking: true,
   block_db_access: false,
   block_code_execution: false,
   block_toxicity: false
@@ -3750,6 +3753,23 @@ var AgentID = class {
     const config = await this.getCapabilityConfig(false, options);
     return config.strict_security_mode || config.failure_mode === "fail_close";
   }
+  buildFailOpenGuardVerdict(reason, input, options) {
+    const capabilityConfig = this.getCachedCapabilityConfig(options);
+    const shouldMaskPii = capabilityConfig.block_pii_leakage || this.resolveEffectivePiiMasking(capabilityConfig);
+    const shouldMaskSecrets = capabilityConfig.block_secret_leakage === true || this.resolveEffectiveSecretMasking(capabilityConfig);
+    const response = { allowed: true, reason };
+    if (input && (shouldMaskPii || shouldMaskSecrets)) {
+      const masked = this.pii.anonymize(input, {
+        pii: shouldMaskPii,
+        secrets: shouldMaskSecrets
+      });
+      if (masked.maskedText !== input) {
+        response.transformed_input = masked.maskedText;
+        response.detected_pii = Object.keys(masked.mapping).length > 0;
+      }
+    }
+    return response;
+  }
   maybeRaiseStrictIngestDependencyError(params) {
     if (params.result.ok) {
       return;
@@ -3990,12 +4010,43 @@ var AgentID = class {
       })
     });
   }
-  withMaskedOpenAIRequest(req, maskedText) {
+  withMaskedOpenAIRequest(req, maskedText, options) {
     const messages = Array.isArray(req?.messages) ? req.messages : null;
     if (!messages) {
       return req;
     }
-    const newMessages = [...messages];
+    const newMessages = messages.map((message2) => {
+      if (!message2 || typeof message2 !== "object") {
+        return message2;
+      }
+      const typedMessage = message2;
+      const currentContent2 = typedMessage.content;
+      if (typeof currentContent2 === "string") {
+        return {
+          ...typedMessage,
+          content: this.pii.anonymize(currentContent2, options).maskedText
+        };
+      }
+      if (Array.isArray(currentContent2)) {
+        return {
+          ...typedMessage,
+          content: currentContent2.map((part) => {
+            if (!part || typeof part !== "object") {
+              return part;
+            }
+            const typedPart = part;
+            if (typeof typedPart.text !== "string") {
+              return part;
+            }
+            return {
+              ...typedPart,
+              text: this.pii.anonymize(typedPart.text, options).maskedText
+            };
+          })
+        };
+      }
+      return message2;
+    });
     let lastUserIdx = null;
     for (let i = 0; i < newMessages.length; i += 1) {
       const msg = newMessages[i];
@@ -4209,7 +4260,13 @@ var AgentID = class {
               guardParams: params,
               apiKey: effectiveApiKey
             });
-            return withGuardLatency({ allowed: true, reason: "system_failure_fail_open" });
+            return withGuardLatency(
+              this.buildFailOpenGuardVerdict(
+                "system_failure_fail_open",
+                params.input,
+                { apiKey: effectiveApiKey }
+              )
+            );
           }
           this.cacheGuardVerdict(guardCacheKey, verdict);
           return withGuardLatency(verdict);
@@ -4244,7 +4301,11 @@ var AgentID = class {
           if (effectiveStrictMode) {
             return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
           }
-          return withGuardLatency({ allowed: true, reason: "timeout_fallback" });
+          return withGuardLatency(
+            this.buildFailOpenGuardVerdict("timeout_fallback", params.input, {
+              apiKey: effectiveApiKey
+            })
+          );
         }
         console.warn(
           effectiveStrictMode ? "[AgentID] Guard check failed (Strict mode active):" : "[AgentID] Guard check failed (Fail-Open active):",
@@ -4259,7 +4320,11 @@ var AgentID = class {
         if (effectiveStrictMode) {
           return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
         }
-        return withGuardLatency({ allowed: true, reason: "guard_unreachable" });
+        return withGuardLatency(
+          this.buildFailOpenGuardVerdict("guard_unreachable", params.input, {
+            apiKey: effectiveApiKey
+          })
+        );
       } finally {
         clearTimeout(timeoutId);
       }
@@ -4268,13 +4333,23 @@ var AgentID = class {
       if (effectiveStrictMode) {
         return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
       }
-      return withGuardLatency({ allowed: true, reason: "timeout_fallback" });
+      return withGuardLatency(
+        this.buildFailOpenGuardVerdict("timeout_fallback", params.input, {
+          apiKey: effectiveApiKey
+        })
+      );
     }
     if (typeof lastStatusCode === "number" && lastStatusCode >= 500) {
       if (effectiveStrictMode) {
         return withGuardLatency({ allowed: false, reason: "server_error" });
       }
-      return withGuardLatency({ allowed: true, reason: "system_failure_fail_open" });
+      return withGuardLatency(
+        this.buildFailOpenGuardVerdict(
+          "system_failure_fail_open",
+          params.input,
+          { apiKey: effectiveApiKey }
+        )
+      );
     }
     console.warn(
       effectiveStrictMode ? "[AgentID] Guard check failed (Strict mode active):" : "[AgentID] Guard check failed (Fail-Open active):",
@@ -4283,7 +4358,11 @@ var AgentID = class {
     if (effectiveStrictMode) {
       return withGuardLatency({ allowed: false, reason: "network_error_strict_mode" });
     }
-    return withGuardLatency({ allowed: true, reason: "guard_unreachable" });
+    return withGuardLatency(
+      this.buildFailOpenGuardVerdict("guard_unreachable", params.input, {
+        apiKey: effectiveApiKey
+      })
+    );
   }
   async sendIngest(params, options, internal) {
     const ingestStartedAt = Date.now();
@@ -4788,6 +4867,7 @@ var AgentID = class {
                 let mapping = {};
                 let sdkConfigFetchMs = 0;
                 let sdkLocalScanMs = 0;
+                let providerMaskingOptions;
                 if (hasGuardContent) {
                   const prepared = await this.prepareInputForDispatch({
                     input: userText ?? "",
@@ -4797,6 +4877,10 @@ var AgentID = class {
                     telemetryMetadata
                   }, requestOptions);
                   capabilityConfig = prepared.capabilityConfig;
+                  providerMaskingOptions = {
+                    pii: !capabilityConfig.block_pii_leakage && this.resolveEffectivePiiMasking(capabilityConfig),
+                    secrets: !capabilityConfig.block_secret_leakage && this.resolveEffectiveSecretMasking(capabilityConfig)
+                  };
                   maskedText = prepared.sanitizedInput;
                   mapping = prepared.piiMapping ?? {};
                   sdkConfigFetchMs = prepared.sdkConfigFetchMs ?? 0;
@@ -4804,7 +4888,8 @@ var AgentID = class {
                   if (maskedText !== (userText ?? "")) {
                     maskedReq = this.withMaskedOpenAIRequest(
                       providerReq,
-                      maskedText
+                      maskedText,
+                      providerMaskingOptions
                     );
                     const nextCreateArgs = [...createArgs];
                     nextCreateArgs[0] = maskedReq;
@@ -4878,10 +4963,11 @@ var AgentID = class {
                   }
                 }
                 const currentRequestInput = adapter.extractInput(maskedReq) ?? "";
-                if (maskedText !== currentRequestInput) {
+                if (maskedText !== currentRequestInput || providerMaskingOptions?.pii === true || providerMaskingOptions?.secrets === true) {
                   maskedReq = this.withMaskedOpenAIRequest(
                     providerReq,
-                    maskedText
+                    maskedText,
+                    providerMaskingOptions
                   );
                   const nextCreateArgs = [...createArgs];
                   nextCreateArgs[0] = maskedReq;
@@ -4904,7 +4990,8 @@ var AgentID = class {
                   maskedText = transformedInput;
                   maskedReq = this.withMaskedOpenAIRequest(
                     providerReq,
-                    transformedInput
+                    transformedInput,
+                    providerMaskingOptions
                   );
                   const nextCreateArgs = [...createArgs];
                   nextCreateArgs[0] = maskedReq;
@@ -4951,7 +5038,7 @@ var AgentID = class {
                     void wrappedCompletion.done.then(async (result) => {
                       const modelLatencyMs2 = Math.max(0, Date.now() - modelStartedAt2);
                       const totalPipelineLatencyMs2 = Math.max(0, Date.now() - pipelineStartedAt);
-                      const outputForLog = isShadowMode ? result.rawOutput : result.transformedOutput;
+                      const outputForLog = result.transformedOutput;
                       const ingestResult = await this.sendIngest({
                         event_id: canonicalClientEventId,
                         system_id: systemId,
@@ -5025,7 +5112,7 @@ var AgentID = class {
                   });
                   const model = adapter.getModelName(maskedReq, res);
                   const usage = adapter.getTokenUsage(res);
-                  const outputForLog = isShadowMode ? wrappedCompletion.rawOutput : wrappedCompletion.transformedOutput;
+                  const outputForLog = wrappedCompletion.transformedOutput;
                   const ingestResult = await this.sendIngest({
                     event_id: canonicalClientEventId,
                     system_id: systemId,
@@ -5267,6 +5354,58 @@ var AgentIDWorkflowTrail = class {
 function createAgentIdWorkflowTrail(options) {
   return new AgentIDWorkflowTrail(options);
 }
+
+// src/message-history.ts
+function isPlainRecord(value) {
+  if (!value || typeof value !== "object") return false;
+  const proto = Object.getPrototypeOf(value);
+  return proto === Object.prototype || proto === null;
+}
+function protectMessageHistory(messages, options = { pii: true, secrets: true }) {
+  const piiManager = new PIIManager();
+  let textPartsCount = 0;
+  let transformedTextPartsCount = 0;
+  const protectString = (value) => {
+    textPartsCount += 1;
+    const masked = piiManager.anonymize(value, options).maskedText;
+    if (masked !== value) {
+      transformedTextPartsCount += 1;
+    }
+    return masked;
+  };
+  const visit = (value, key) => {
+    if (typeof value === "string") {
+      return key === "content" || key === "text" ? protectString(value) : value;
+    }
+    if (Array.isArray(value)) {
+      let changed = false;
+      const next = value.map((item) => {
+        const protectedItem = visit(item);
+        if (protectedItem !== item) changed = true;
+        return protectedItem;
+      });
+      return changed ? next : value;
+    }
+    if (isPlainRecord(value)) {
+      let changed = false;
+      const next = {};
+      for (const [entryKey, entryValue] of Object.entries(value)) {
+        const protectedValue = visit(entryValue, entryKey);
+        next[entryKey] = protectedValue;
+        if (protectedValue !== entryValue) changed = true;
+      }
+      return changed ? next : value;
+    }
+    return value;
+  };
+  const protectedMessages = visit(messages);
+  return {
+    messages: protectedMessages,
+    transformed: protectedMessages !== messages,
+    textPartsCount,
+    transformedTextPartsCount
+  };
+}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   AgentID,
@@ -5282,5 +5421,6 @@ function createAgentIdWorkflowTrail(options) {
   createAgentIdTelemetryContext,
   createAgentIdWorkflowTrail,
   getInjectionScanner,
+  protectMessageHistory,
   scanWithRegex
 });

package/dist/index.mjs

@@ -13,7 +13,59 @@ import {
   createAgentIdWorkflowTrail,
   getInjectionScanner,
   scanWithRegex
-} from "./chunk-AIGMQSAV.mjs";
+} from "./chunk-25SZBEYX.mjs";
+
+// src/message-history.ts
+function isPlainRecord(value) {
+  if (!value || typeof value !== "object") return false;
+  const proto = Object.getPrototypeOf(value);
+  return proto === Object.prototype || proto === null;
+}
+function protectMessageHistory(messages, options = { pii: true, secrets: true }) {
+  const piiManager = new PIIManager();
+  let textPartsCount = 0;
+  let transformedTextPartsCount = 0;
+  const protectString = (value) => {
+    textPartsCount += 1;
+    const masked = piiManager.anonymize(value, options).maskedText;
+    if (masked !== value) {
+      transformedTextPartsCount += 1;
+    }
+    return masked;
+  };
+  const visit = (value, key) => {
+    if (typeof value === "string") {
+      return key === "content" || key === "text" ? protectString(value) : value;
+    }
+    if (Array.isArray(value)) {
+      let changed = false;
+      const next = value.map((item) => {
+        const protectedItem = visit(item);
+        if (protectedItem !== item) changed = true;
+        return protectedItem;
+      });
+      return changed ? next : value;
+    }
+    if (isPlainRecord(value)) {
+      let changed = false;
+      const next = {};
+      for (const [entryKey, entryValue] of Object.entries(value)) {
+        const protectedValue = visit(entryValue, entryKey);
+        next[entryKey] = protectedValue;
+        if (protectedValue !== entryValue) changed = true;
+      }
+      return changed ? next : value;
+    }
+    return value;
+  };
+  const protectedMessages = visit(messages);
+  return {
+    messages: protectedMessages,
+    transformed: protectedMessages !== messages,
+    textPartsCount,
+    transformedTextPartsCount
+  };
+}
 export {
   AgentID,
   AgentIDWorkflowStep,
@@ -28,5 +80,6 @@ export {
   createAgentIdTelemetryContext,
   createAgentIdWorkflowTrail,
   getInjectionScanner,
+  protectMessageHistory,
   scanWithRegex
 };

package/dist/langchain.d.mts

@@ -1,5 +1,5 @@
 import { BaseCallbackHandler } from '@langchain/core/callbacks/base';
-import { a as AgentID, i as AgentTelemetryContext } from './agentid-CxVUF_eo.mjs';
+import { b as AgentID, j as AgentTelemetryContext } from './agentid-BWlN5KCq.mjs';
 
 /**
  * LangChainJS callback handler (dependency-free shape).

package/dist/langchain.d.ts

@@ -1,5 +1,5 @@
 import { BaseCallbackHandler } from '@langchain/core/callbacks/base';
-import { a as AgentID, i as AgentTelemetryContext } from './agentid-CxVUF_eo.js';
+import { b as AgentID, j as AgentTelemetryContext } from './agentid-BWlN5KCq.js';
 
 /**
  * LangChainJS callback handler (dependency-free shape).

package/dist/langchain.js

@@ -27,7 +27,7 @@ var import_base = require("@langchain/core/callbacks/base");
 
 // src/sdk-version.ts
 var FALLBACK_SDK_VERSION = "js-0.0.0-dev";
-var AGENTID_SDK_VERSION_HEADER = "js-0.1.38".trim().length > 0 ? "js-0.1.38" : FALLBACK_SDK_VERSION;
+var AGENTID_SDK_VERSION_HEADER = "js-0.1.40".trim().length > 0 ? "js-0.1.40" : FALLBACK_SDK_VERSION;
 
 // src/pii-national-identifiers.ts
 var MAX_CANDIDATES_PER_RULE = 256;
@@ -1013,9 +1013,9 @@ var SDK_SECRET_PATTERN_DEFINITIONS = [
   {
     id: "password_assignment",
     placeholderType: "PASSWORD_ASSIGNMENT",
-    patternSource: `(?:\\b|["'])(?:password|passwd|pwd)(?:\\b|["'])\\s*(?:(?::|=|=>)|(?:is|are|was|were)\\b)\\s*(?:"[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}"|'[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}'|[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,})`,
+    patternSource: `(?:\\b|["'])(?:password|passwd|pwd|heslo)(?:\\b|["'])\\s*(?:(?::|=|=>)|(?:is|are|was|were|je)\\b)?\\s*(?:"[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}"|'[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,}'|[A-Za-z0-9._~!@#$%^&*+=\\/-]{8,})`,
     flags: "iu",
-    prefilterTerms: ["password", "passwd", "pwd"]
+    prefilterTerms: ["password", "passwd", "pwd", "heslo"]
   },
   {
     id: "private_key_material",
@@ -1117,6 +1117,8 @@ var PHONE_CONTEXT_KEYWORDS = [
   "call",
   "contact",
   "number",
+  "cislo",
+  "\u010D\xEDslo",
   "hotline",
   "support",
   "infoline",

package/dist/langchain.mjs

@@ -2,7 +2,7 @@ import {
   PIIManager,
   SecurityBlockError,
   createAgentIdTelemetryContext
-} from "./chunk-AIGMQSAV.mjs";
+} from "./chunk-25SZBEYX.mjs";
 
 // src/langchain.ts
 import { BaseCallbackHandler } from "@langchain/core/callbacks/base";

package/dist/transparency-badge.d.mts

@@ -1,5 +1,5 @@
 import * as react_jsx_runtime from 'react/jsx-runtime';
-import { T as TransparencyMetadata } from './agentid-CxVUF_eo.mjs';
+import { T as TransparencyMetadata } from './agentid-BWlN5KCq.mjs';
 
 type AgentIDTransparencyBadgeTelemetry = {
     systemId: string;

package/dist/transparency-badge.d.ts

@@ -1,5 +1,5 @@
 import * as react_jsx_runtime from 'react/jsx-runtime';
-import { T as TransparencyMetadata } from './agentid-CxVUF_eo.js';
+import { T as TransparencyMetadata } from './agentid-BWlN5KCq.js';
 
 type AgentIDTransparencyBadgeTelemetry = {
     systemId: string;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agentid-sdk",
-  "version": "0.1.38",
+  "version": "0.1.40",
   "description": "AgentID JavaScript/TypeScript SDK for guardrails, masking, workflow telemetry, and audit logging.",
   "license": "MIT",
   "homepage": "https://agentid.ai",