agentid-sdk 0.1.4 → 0.1.6

package/README.md

@@ -42,10 +42,14 @@ const openai = new OpenAI();
 const agent = new AgentID({
   apiKey: "ag_prod_...",
   strictMode: false, // default (fail-open on timeout/unreachable AgentID API)
+  guardTimeoutMs: 6000, // optional: timeout for AgentID /guard call in ms
   // strictMode: true, // fail-closed for high-risk workloads
 });
 
-const proxiedOpenAI = agent.wrapOpenAI(openai, { system_id: "sys_..." });
+const proxiedOpenAI = agent.wrapOpenAI(openai, {
+  system_id: "sys_...",
+  user_id: "system-auto-summary", // optional service/user identity
+});
 ```
 
 ## 🔒 Klíčové vlastnosti

package/dist/index.d.mts

@@ -1,4 +1,4 @@
-export { A as AgentID, a as AgentIDCallbackHandler, G as GuardParams, b as GuardResponse, L as LogParams, P as PreparedInput, R as RequestOptions } from './langchain-Cn7doPo2.mjs';
+export { A as AgentID, a as AgentIDCallbackHandler, G as GuardParams, b as GuardResponse, L as LogParams, P as PreparedInput, R as RequestOptions } from './langchain-C6HJAK2b.mjs';
 
 type PIIMapping = Record<string, string>;
 declare class PIIManager {

package/dist/index.d.ts

@@ -1,4 +1,4 @@
-export { A as AgentID, a as AgentIDCallbackHandler, G as GuardParams, b as GuardResponse, L as LogParams, P as PreparedInput, R as RequestOptions } from './langchain-Cn7doPo2.js';
+export { A as AgentID, a as AgentIDCallbackHandler, G as GuardParams, b as GuardResponse, L as LogParams, P as PreparedInput, R as RequestOptions } from './langchain-C6HJAK2b.js';
 
 type PIIMapping = Record<string, string>;
 declare class PIIManager {

package/dist/index.js

@@ -392,7 +392,7 @@ var CONFIG_TTL_MS = 5 * 60 * 1e3;
 var CONFIG_TIMEOUT_MS = 8e3;
 var CONFIG_RETRY_DELAY_MS = 1e3;
 var MAX_CAPABILITY_CACHE_ENTRIES = 500;
-var AGENTID_SDK_VERSION_HEADER = "js-1.0.4";
+var AGENTID_SDK_VERSION_HEADER = "js-1.0.6";
 var CapabilityConfigFetchError = class extends Error {
   constructor(message, params) {
     super(message);
@@ -980,10 +980,71 @@ function getInjectionScanner() {
 }
 
 // src/agentid.ts
-var AGENTID_SDK_VERSION_HEADER2 = "js-1.0.4";
+var AGENTID_SDK_VERSION_HEADER2 = "js-1.0.6";
+var DEFAULT_GUARD_TIMEOUT_MS = 6e3;
+var MIN_GUARD_TIMEOUT_MS = 1e3;
+var MAX_GUARD_TIMEOUT_MS = 3e4;
 function normalizeBaseUrl3(baseUrl) {
   return baseUrl.replace(/\/+$/, "");
 }
+function isAbortSignalLike(value) {
+  if (!value || typeof value !== "object") return false;
+  const candidate = value;
+  return typeof candidate.aborted === "boolean" && typeof candidate.addEventListener === "function";
+}
+function normalizeOpenAICreateArgs(rawArgs) {
+  if (!Array.isArray(rawArgs) || rawArgs.length === 0) {
+    return rawArgs;
+  }
+  const nextArgs = [...rawArgs];
+  const firstArg = nextArgs[0];
+  if (!firstArg || typeof firstArg !== "object" || Array.isArray(firstArg)) {
+    return nextArgs;
+  }
+  const requestBody = { ...firstArg };
+  const hasSignalInBody = Object.prototype.hasOwnProperty.call(requestBody, "signal");
+  if (!hasSignalInBody) {
+    nextArgs[0] = requestBody;
+    return nextArgs;
+  }
+  const bodySignal = requestBody.signal;
+  delete requestBody.signal;
+  nextArgs[0] = requestBody;
+  if (!isAbortSignalLike(bodySignal)) {
+    return nextArgs;
+  }
+  const secondArg = nextArgs[1];
+  if (typeof secondArg === "undefined") {
+    nextArgs[1] = { signal: bodySignal };
+    return nextArgs;
+  }
+  if (!secondArg || typeof secondArg !== "object" || Array.isArray(secondArg)) {
+    return nextArgs;
+  }
+  const requestOptions = { ...secondArg };
+  if (!Object.prototype.hasOwnProperty.call(requestOptions, "signal")) {
+    requestOptions.signal = bodySignal;
+  }
+  nextArgs[1] = requestOptions;
+  return nextArgs;
+}
+function normalizeGuardTimeoutMs(value) {
+  if (!Number.isFinite(value)) {
+    return DEFAULT_GUARD_TIMEOUT_MS;
+  }
+  const rounded = Math.trunc(value);
+  if (rounded < MIN_GUARD_TIMEOUT_MS) {
+    return MIN_GUARD_TIMEOUT_MS;
+  }
+  if (rounded > MAX_GUARD_TIMEOUT_MS) {
+    return MAX_GUARD_TIMEOUT_MS;
+  }
+  return rounded;
+}
+function isInfrastructureGuardReason(reason) {
+  if (!reason) return false;
+  return reason === "system_failure" || reason === "system_failure_db_unavailable" || reason === "logging_failed" || reason === "server_error" || reason === "guard_unreachable" || reason === "api_key_pepper_missing" || reason === "encryption_key_missing";
+}
 async function safeReadJson2(response) {
   try {
     return await response.json();
@@ -1001,6 +1062,7 @@ var AgentID = class {
     this.aiScanEnabled = config.aiScanEnabled !== false;
     this.storePii = config.storePii === true;
     this.strictMode = config.strictMode === true;
+    this.guardTimeoutMs = normalizeGuardTimeoutMs(config.guardTimeoutMs);
     this.pii = new PIIManager();
     this.localEnforcer = new LocalSecurityEnforcer(this.pii);
     void this.getCapabilityConfig();
@@ -1157,7 +1219,7 @@ var AgentID = class {
       client_capabilities: params.client_capabilities ?? this.buildClientCapabilities()
     };
     const controller = new AbortController();
-    const timeoutId = setTimeout(() => controller.abort(), 2e3);
+    const timeoutId = setTimeout(() => controller.abort(), this.guardTimeoutMs);
     try {
       const res = await fetch(`${this.baseUrl}/guard`, {
         method: "POST",
@@ -1171,7 +1233,14 @@ var AgentID = class {
       });
       const responseBody = await safeReadJson2(res);
       if (responseBody && typeof responseBody.allowed === "boolean") {
-        return responseBody;
+        const verdict = responseBody;
+        if (!this.strictMode && verdict.allowed === false && (isInfrastructureGuardReason(verdict.reason) || res.status >= 500)) {
+          console.warn(
+            `[AgentID] Guard API infrastructure fallback in fail-open mode (${verdict.reason ?? `http_${res.status}`}).`
+          );
+          return { allowed: true, reason: "system_failure_fail_open" };
+        }
+        return verdict;
       }
       if (!res.ok) {
         throw new Error(`API Error ${res.status}`);
@@ -1272,7 +1341,8 @@ var AgentID = class {
               const originalCreate = Reflect.get(compTarget, compProp, compReceiver);
               if (typeof originalCreate !== "function") return originalCreate;
               return async (...args) => {
-                const req = args?.[0] ?? {};
+                const normalizedCreateArgs = normalizeOpenAICreateArgs(args);
+                const req = normalizedCreateArgs?.[0] ?? {};
                 const requestLevelApiKey = options.resolveApiKey?.(req) ?? options.apiKey ?? options.api_key;
                 const effectiveApiKey = this.resolveApiKey(requestLevelApiKey);
                 const requestOptions = { apiKey: effectiveApiKey };
@@ -1281,7 +1351,7 @@ var AgentID = class {
                 const userText = adapter.extractInput(req);
                 let maskedText = userText;
                 let maskedReq = req;
-                let createArgs = args;
+                let createArgs = normalizedCreateArgs;
                 let mapping = {};
                 let shouldDeanonymize = false;
                 if (userText) {
@@ -1299,7 +1369,9 @@ var AgentID = class {
                       req,
                       maskedText
                     );
-                    createArgs = [maskedReq, ...args.slice(1)];
+                    const nextCreateArgs = [...normalizedCreateArgs];
+                    nextCreateArgs[0] = maskedReq;
+                    createArgs = nextCreateArgs;
                   }
                   if (!capabilityConfig.block_pii_leakage && this.piiMasking) {
                     if (stream) {
@@ -1313,7 +1385,9 @@ var AgentID = class {
                         req,
                         maskedText
                       );
-                      createArgs = [maskedReq, ...args.slice(1)];
+                      const nextCreateArgs = [...normalizedCreateArgs];
+                      nextCreateArgs[0] = maskedReq;
+                      createArgs = nextCreateArgs;
                     }
                   }
                 }
@@ -1325,6 +1399,7 @@ var AgentID = class {
                 const verdict = await this.guard({
                   input: maskedText,
                   system_id: systemId,
+                  user_id: options.user_id,
                   client_capabilities: this.buildClientCapabilities("openai", false)
                 }, requestOptions);
                 if (!verdict.allowed) {
@@ -1347,6 +1422,7 @@ var AgentID = class {
                   const usage = adapter.getTokenUsage(res);
                   this.log({
                     system_id: systemId,
+                    user_id: options.user_id,
                     input: maskedText,
                     output,
                     model,

package/dist/index.mjs

@@ -354,7 +354,7 @@ var CONFIG_TTL_MS = 5 * 60 * 1e3;
 var CONFIG_TIMEOUT_MS = 8e3;
 var CONFIG_RETRY_DELAY_MS = 1e3;
 var MAX_CAPABILITY_CACHE_ENTRIES = 500;
-var AGENTID_SDK_VERSION_HEADER = "js-1.0.4";
+var AGENTID_SDK_VERSION_HEADER = "js-1.0.6";
 var CapabilityConfigFetchError = class extends Error {
   constructor(message, params) {
     super(message);
@@ -942,10 +942,71 @@ function getInjectionScanner() {
 }
 
 // src/agentid.ts
-var AGENTID_SDK_VERSION_HEADER2 = "js-1.0.4";
+var AGENTID_SDK_VERSION_HEADER2 = "js-1.0.6";
+var DEFAULT_GUARD_TIMEOUT_MS = 6e3;
+var MIN_GUARD_TIMEOUT_MS = 1e3;
+var MAX_GUARD_TIMEOUT_MS = 3e4;
 function normalizeBaseUrl3(baseUrl) {
   return baseUrl.replace(/\/+$/, "");
 }
+function isAbortSignalLike(value) {
+  if (!value || typeof value !== "object") return false;
+  const candidate = value;
+  return typeof candidate.aborted === "boolean" && typeof candidate.addEventListener === "function";
+}
+function normalizeOpenAICreateArgs(rawArgs) {
+  if (!Array.isArray(rawArgs) || rawArgs.length === 0) {
+    return rawArgs;
+  }
+  const nextArgs = [...rawArgs];
+  const firstArg = nextArgs[0];
+  if (!firstArg || typeof firstArg !== "object" || Array.isArray(firstArg)) {
+    return nextArgs;
+  }
+  const requestBody = { ...firstArg };
+  const hasSignalInBody = Object.prototype.hasOwnProperty.call(requestBody, "signal");
+  if (!hasSignalInBody) {
+    nextArgs[0] = requestBody;
+    return nextArgs;
+  }
+  const bodySignal = requestBody.signal;
+  delete requestBody.signal;
+  nextArgs[0] = requestBody;
+  if (!isAbortSignalLike(bodySignal)) {
+    return nextArgs;
+  }
+  const secondArg = nextArgs[1];
+  if (typeof secondArg === "undefined") {
+    nextArgs[1] = { signal: bodySignal };
+    return nextArgs;
+  }
+  if (!secondArg || typeof secondArg !== "object" || Array.isArray(secondArg)) {
+    return nextArgs;
+  }
+  const requestOptions = { ...secondArg };
+  if (!Object.prototype.hasOwnProperty.call(requestOptions, "signal")) {
+    requestOptions.signal = bodySignal;
+  }
+  nextArgs[1] = requestOptions;
+  return nextArgs;
+}
+function normalizeGuardTimeoutMs(value) {
+  if (!Number.isFinite(value)) {
+    return DEFAULT_GUARD_TIMEOUT_MS;
+  }
+  const rounded = Math.trunc(value);
+  if (rounded < MIN_GUARD_TIMEOUT_MS) {
+    return MIN_GUARD_TIMEOUT_MS;
+  }
+  if (rounded > MAX_GUARD_TIMEOUT_MS) {
+    return MAX_GUARD_TIMEOUT_MS;
+  }
+  return rounded;
+}
+function isInfrastructureGuardReason(reason) {
+  if (!reason) return false;
+  return reason === "system_failure" || reason === "system_failure_db_unavailable" || reason === "logging_failed" || reason === "server_error" || reason === "guard_unreachable" || reason === "api_key_pepper_missing" || reason === "encryption_key_missing";
+}
 async function safeReadJson2(response) {
   try {
     return await response.json();
@@ -963,6 +1024,7 @@ var AgentID = class {
     this.aiScanEnabled = config.aiScanEnabled !== false;
     this.storePii = config.storePii === true;
     this.strictMode = config.strictMode === true;
+    this.guardTimeoutMs = normalizeGuardTimeoutMs(config.guardTimeoutMs);
     this.pii = new PIIManager();
     this.localEnforcer = new LocalSecurityEnforcer(this.pii);
     void this.getCapabilityConfig();
@@ -1119,7 +1181,7 @@ var AgentID = class {
       client_capabilities: params.client_capabilities ?? this.buildClientCapabilities()
     };
     const controller = new AbortController();
-    const timeoutId = setTimeout(() => controller.abort(), 2e3);
+    const timeoutId = setTimeout(() => controller.abort(), this.guardTimeoutMs);
     try {
       const res = await fetch(`${this.baseUrl}/guard`, {
         method: "POST",
@@ -1133,7 +1195,14 @@ var AgentID = class {
       });
       const responseBody = await safeReadJson2(res);
       if (responseBody && typeof responseBody.allowed === "boolean") {
-        return responseBody;
+        const verdict = responseBody;
+        if (!this.strictMode && verdict.allowed === false && (isInfrastructureGuardReason(verdict.reason) || res.status >= 500)) {
+          console.warn(
+            `[AgentID] Guard API infrastructure fallback in fail-open mode (${verdict.reason ?? `http_${res.status}`}).`
+          );
+          return { allowed: true, reason: "system_failure_fail_open" };
+        }
+        return verdict;
       }
       if (!res.ok) {
         throw new Error(`API Error ${res.status}`);
@@ -1234,7 +1303,8 @@ var AgentID = class {
               const originalCreate = Reflect.get(compTarget, compProp, compReceiver);
               if (typeof originalCreate !== "function") return originalCreate;
               return async (...args) => {
-                const req = args?.[0] ?? {};
+                const normalizedCreateArgs = normalizeOpenAICreateArgs(args);
+                const req = normalizedCreateArgs?.[0] ?? {};
                 const requestLevelApiKey = options.resolveApiKey?.(req) ?? options.apiKey ?? options.api_key;
                 const effectiveApiKey = this.resolveApiKey(requestLevelApiKey);
                 const requestOptions = { apiKey: effectiveApiKey };
@@ -1243,7 +1313,7 @@ var AgentID = class {
                 const userText = adapter.extractInput(req);
                 let maskedText = userText;
                 let maskedReq = req;
-                let createArgs = args;
+                let createArgs = normalizedCreateArgs;
                 let mapping = {};
                 let shouldDeanonymize = false;
                 if (userText) {
@@ -1261,7 +1331,9 @@ var AgentID = class {
                       req,
                       maskedText
                     );
-                    createArgs = [maskedReq, ...args.slice(1)];
+                    const nextCreateArgs = [...normalizedCreateArgs];
+                    nextCreateArgs[0] = maskedReq;
+                    createArgs = nextCreateArgs;
                   }
                   if (!capabilityConfig.block_pii_leakage && this.piiMasking) {
                     if (stream) {
@@ -1275,7 +1347,9 @@ var AgentID = class {
                         req,
                         maskedText
                       );
-                      createArgs = [maskedReq, ...args.slice(1)];
+                      const nextCreateArgs = [...normalizedCreateArgs];
+                      nextCreateArgs[0] = maskedReq;
+                      createArgs = nextCreateArgs;
                     }
                   }
                 }
@@ -1287,6 +1361,7 @@ var AgentID = class {
                 const verdict = await this.guard({
                   input: maskedText,
                   system_id: systemId,
+                  user_id: options.user_id,
                   client_capabilities: this.buildClientCapabilities("openai", false)
                 }, requestOptions);
                 if (!verdict.allowed) {
@@ -1309,6 +1384,7 @@ var AgentID = class {
                   const usage = adapter.getTokenUsage(res);
                   this.log({
                     system_id: systemId,
+                    user_id: options.user_id,
                     input: maskedText,
                     output,
                     model,

package/dist/{langchain-Cn7doPo2.d.mts → langchain-C6HJAK2b.d.mts}

@@ -55,6 +55,7 @@ type AgentIDConfig = {
     aiScanEnabled?: boolean;
     storePii?: boolean;
     strictMode?: boolean;
+    guardTimeoutMs?: number;
 };
 
 type PreparedInput = {
@@ -69,6 +70,7 @@ declare class AgentID {
     private aiScanEnabled;
     private storePii;
     private strictMode;
+    private guardTimeoutMs;
     private pii;
     private localEnforcer;
     private injectionScanner;
@@ -113,6 +115,7 @@ declare class AgentID {
      */
     wrapOpenAI<T>(openai: T, options: {
         system_id: string;
+        user_id?: string;
         apiKey?: string;
         api_key?: string;
         resolveApiKey?: (request: Record<string, unknown>) => string | undefined;

package/dist/{langchain-Cn7doPo2.d.ts → langchain-C6HJAK2b.d.ts}

@@ -55,6 +55,7 @@ type AgentIDConfig = {
     aiScanEnabled?: boolean;
     storePii?: boolean;
     strictMode?: boolean;
+    guardTimeoutMs?: number;
 };
 
 type PreparedInput = {
@@ -69,6 +70,7 @@ declare class AgentID {
     private aiScanEnabled;
     private storePii;
     private strictMode;
+    private guardTimeoutMs;
     private pii;
     private localEnforcer;
     private injectionScanner;
@@ -113,6 +115,7 @@ declare class AgentID {
      */
     wrapOpenAI<T>(openai: T, options: {
         system_id: string;
+        user_id?: string;
         apiKey?: string;
         api_key?: string;
         resolveApiKey?: (request: Record<string, unknown>) => string | undefined;

package/dist/langchain.d.mts

@@ -1 +1 @@
-export { a as AgentIDCallbackHandler } from './langchain-Cn7doPo2.mjs';
+export { a as AgentIDCallbackHandler } from './langchain-C6HJAK2b.mjs';

package/dist/langchain.d.ts

@@ -1 +1 @@
-export { a as AgentIDCallbackHandler } from './langchain-Cn7doPo2.js';
+export { a as AgentIDCallbackHandler } from './langchain-C6HJAK2b.js';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agentid-sdk",
-  "version": "0.1.4",
+  "version": "0.1.6",
   "description": "AgentID JavaScript/TypeScript SDK for guard, ingest, tracing, and analytics.",
   "license": "MIT",
   "homepage": "https://agentid.ai",