aip-agents-binary 0.5.23__py3-none-any.whl → 0.5.25__py3-none-any.whl

aip_agents/guardrails/middleware.py

@@ -0,0 +1,199 @@
+"""GuardrailMiddleware for integrating guardrails into agent execution.
+
+This module provides GuardrailMiddleware that hooks into the agent execution
+flow to automatically check content before and after model invocations.
+
+Authors:
+    Reinhart Linanda (reinhart.linanda@gdplabs.id)
+"""
+
+from __future__ import annotations
+
+from typing import TYPE_CHECKING, Any
+
+from langchain_core.messages import AIMessage, HumanMessage
+
+from aip_agents.guardrails.exceptions import GuardrailViolationError
+from aip_agents.guardrails.schemas import GuardrailInput
+from aip_agents.middleware.base import AgentMiddleware, ModelRequest
+
+if TYPE_CHECKING:
+    from aip_agents.guardrails.manager import GuardrailManager
+
+
+class GuardrailMiddleware(AgentMiddleware):
+    """Middleware that integrates guardrails into agent execution.
+
+    This middleware wraps a GuardrailManager and automatically checks content
+    at appropriate points during agent execution:
+
+    - Before model invocation: checks user input from messages
+    - After model invocation: checks AI output from messages
+
+    If unsafe content is detected, raises GuardrailViolationError to stop execution.
+
+    Attributes:
+        guardrail_manager: The GuardrailManager to use for content checking
+    """
+
+    def __init__(self, guardrail_manager: GuardrailManager) -> None:
+        """Initialize the GuardrailMiddleware.
+
+        Args:
+            guardrail_manager: GuardrailManager instance to use for checking
+        """
+        self.guardrail_manager = guardrail_manager
+
+    @property
+    def tools(self) -> list:
+        """Guardrails are passive filters and don't contribute tools."""
+        return []
+
+    @property
+    def system_prompt_additions(self) -> str | None:
+        """Guardrails are passive filters and don't modify system prompts."""
+        return None
+
+    async def abefore_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously check user input before model invocation.
+
+        Extracts the last user message from state and checks it with guardrails.
+        If unsafe, raises GuardrailViolationError to stop execution.
+
+        Args:
+            state: Current agent state containing messages and context
+
+        Returns:
+            Empty dict (no state modifications needed)
+
+        Raises:
+            GuardrailViolationError: If user input violates safety policies
+        """
+        # Extract last user message from state
+        messages = state.get("messages", [])
+        user_input = self._extract_last_user_message(messages)
+
+        if user_input is not None:
+            # Check input content
+            result = await self.guardrail_manager.check_content(user_input)
+
+            if not result.is_safe:
+                raise GuardrailViolationError(result)
+
+        return {}
+
+    def before_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Check user input before model invocation (synchronous wrapper).
+
+        Note:
+            This is a synchronous wrapper for the async `abefore_model()` method.
+            LangGraph agents primarily use `abefore_model()` in async contexts.
+            This method should rarely be called directly. If called from an async
+            context with a running event loop, it will attempt to handle it,
+            but `abefore_model()` should be preferred.
+
+        Args:
+            state: Current agent state containing messages and context
+
+        Returns:
+            Empty dict (no state modifications needed)
+
+        Raises:
+            GuardrailViolationError: If user input violates safety policies
+        """
+        import asyncio
+
+        user_input = self._extract_last_user_message(state.get("messages", []))
+        if user_input is None:
+            return {}
+
+        # Check if we're in an async context with a running loop
+        try:
+            loop = asyncio.get_running_loop()
+            if loop.is_running():
+                # We're in an async context with a running loop
+                # Use nest_asyncio to allow nested event loops
+                # This enables calling asyncio.run() from within a running loop
+                import nest_asyncio
+
+                nest_asyncio.apply()
+                result = asyncio.run(self.guardrail_manager.check_content(user_input))
+            else:
+                # Loop exists but not running - safe to use asyncio.run()
+                result = asyncio.run(self.guardrail_manager.check_content(user_input))
+        except RuntimeError:
+            # No running loop - safe to use asyncio.run()
+            result = asyncio.run(self.guardrail_manager.check_content(user_input))
+
+        if not result.is_safe:
+            raise GuardrailViolationError(result)
+
+        return {}
+
+    def modify_model_request(self, request: ModelRequest, state: dict[str, Any]) -> ModelRequest:
+        """Guardrails don't modify model requests."""
+        return request
+
+    async def aafter_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously check AI output after model invocation.
+
+        Extracts the last AI message from state and checks it with guardrails.
+        If unsafe, raises GuardrailViolationError to stop execution.
+
+        Args:
+            state: Current agent state after model invocation
+
+        Returns:
+            Empty dict (no state modifications needed)
+
+        Raises:
+            GuardrailViolationError: If AI output violates safety policies
+        """
+        # Extract last AI message from state
+        messages = state.get("messages", [])
+        ai_output = self._extract_last_ai_message(messages)
+
+        if ai_output is not None:
+            # Check output content
+            result = await self.guardrail_manager.check_content(GuardrailInput(input=None, output=ai_output))
+
+            if not result.is_safe:
+                raise GuardrailViolationError(result)
+
+        return {}
+
+    def after_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Check AI output after model invocation (synchronous wrapper)."""
+        return {}
+
+    def _extract_last_user_message(self, messages: list) -> str | None:
+        """Extract the last user message from a list of messages.
+
+        Searches backwards through messages to find the most recent HumanMessage.
+
+        Args:
+            messages: List of message objects
+
+        Returns:
+            Content of the last user message, or None if not found
+        """
+        for message in reversed(messages):
+            if isinstance(message, HumanMessage) and message.content:
+                return str(message.content)
+        return None
+
+    def _extract_last_ai_message(self, messages: list) -> str | None:
+        """Extract the last AI message from a list of messages.
+
+        Searches backwards through messages to find the most recent AIMessage.
+
+        Args:
+            messages: List of message objects
+
+        Returns:
+            Content of the last AI message, or None if not found
+        """
+        for message in reversed(messages):
+            if isinstance(message, AIMessage) and message.content:
+                return str(message.content)
+        return None

aip_agents/guardrails/middleware.pyi

@@ -0,0 +1,87 @@
+from _typeshed import Incomplete
+from aip_agents.guardrails.exceptions import GuardrailViolationError as GuardrailViolationError
+from aip_agents.guardrails.manager import GuardrailManager as GuardrailManager
+from aip_agents.guardrails.schemas import GuardrailInput as GuardrailInput
+from aip_agents.middleware.base import AgentMiddleware as AgentMiddleware, ModelRequest as ModelRequest
+from typing import Any
+
+class GuardrailMiddleware(AgentMiddleware):
+    """Middleware that integrates guardrails into agent execution.
+
+    This middleware wraps a GuardrailManager and automatically checks content
+    at appropriate points during agent execution:
+
+    - Before model invocation: checks user input from messages
+    - After model invocation: checks AI output from messages
+
+    If unsafe content is detected, raises GuardrailViolationError to stop execution.
+
+    Attributes:
+        guardrail_manager: The GuardrailManager to use for content checking
+    """
+    guardrail_manager: Incomplete
+    def __init__(self, guardrail_manager: GuardrailManager) -> None:
+        """Initialize the GuardrailMiddleware.
+
+        Args:
+            guardrail_manager: GuardrailManager instance to use for checking
+        """
+    @property
+    def tools(self) -> list:
+        """Guardrails are passive filters and don't contribute tools."""
+    @property
+    def system_prompt_additions(self) -> str | None:
+        """Guardrails are passive filters and don't modify system prompts."""
+    async def abefore_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously check user input before model invocation.
+
+        Extracts the last user message from state and checks it with guardrails.
+        If unsafe, raises GuardrailViolationError to stop execution.
+
+        Args:
+            state: Current agent state containing messages and context
+
+        Returns:
+            Empty dict (no state modifications needed)
+
+        Raises:
+            GuardrailViolationError: If user input violates safety policies
+        """
+    def before_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Check user input before model invocation (synchronous wrapper).
+
+        Note:
+            This is a synchronous wrapper for the async `abefore_model()` method.
+            LangGraph agents primarily use `abefore_model()` in async contexts.
+            This method should rarely be called directly. If called from an async
+            context with a running event loop, it will attempt to handle it,
+            but `abefore_model()` should be preferred.
+
+        Args:
+            state: Current agent state containing messages and context
+
+        Returns:
+            Empty dict (no state modifications needed)
+
+        Raises:
+            GuardrailViolationError: If user input violates safety policies
+        """
+    def modify_model_request(self, request: ModelRequest, state: dict[str, Any]) -> ModelRequest:
+        """Guardrails don't modify model requests."""
+    async def aafter_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously check AI output after model invocation.
+
+        Extracts the last AI message from state and checks it with guardrails.
+        If unsafe, raises GuardrailViolationError to stop execution.
+
+        Args:
+            state: Current agent state after model invocation
+
+        Returns:
+            Empty dict (no state modifications needed)
+
+        Raises:
+            GuardrailViolationError: If AI output violates safety policies
+        """
+    def after_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Check AI output after model invocation (synchronous wrapper)."""

aip_agents/guardrails/schemas.py

@@ -0,0 +1,63 @@
+"""Schemas for guardrail input, output, and configuration.
+
+This module defines the data structures used throughout the guardrails system,
+including input/output schemas and configuration objects.
+
+Authors:
+    Reinhart Linanda (reinhart.linanda@gdplabs.id)
+"""
+
+from enum import StrEnum
+
+from pydantic import BaseModel, ConfigDict
+
+
+class GuardrailMode(StrEnum):
+    """Modes determining what content an engine checks."""
+
+    INPUT_ONLY = "input_only"
+    OUTPUT_ONLY = "output_only"
+    INPUT_OUTPUT = "input_output"
+    DISABLED = "disabled"
+
+
+class GuardrailInput(BaseModel):
+    """Input schema for guardrail checks.
+
+    Attributes:
+        input: User input content to check (queries, prompts, context)
+        output: AI output content to check (responses, generated text)
+    """
+
+    model_config = ConfigDict(extra="forbid")
+
+    input: str | None = None
+    output: str | None = None
+
+
+class GuardrailResult(BaseModel):
+    """Result schema returned by guardrail engines and managers.
+
+    Attributes:
+        is_safe: Whether the content passed all checks
+        reason: Explanation when content is blocked (None if safe)
+        filtered_content: Cleaned/sanitized content if engine provides it
+    """
+
+    model_config = ConfigDict(extra="forbid")
+
+    is_safe: bool
+    reason: str | None = None
+    filtered_content: str | None = None
+
+
+class BaseGuardrailEngineConfig(BaseModel):
+    """Base configuration for guardrail engines.
+
+    Attributes:
+        guardrail_mode: What content this engine should check
+    """
+
+    model_config = ConfigDict(extra="forbid")
+
+    guardrail_mode: GuardrailMode = GuardrailMode.INPUT_OUTPUT

aip_agents/guardrails/schemas.pyi

@@ -0,0 +1,43 @@
+from _typeshed import Incomplete
+from enum import StrEnum
+from pydantic import BaseModel
+
+class GuardrailMode(StrEnum):
+    """Modes determining what content an engine checks."""
+    INPUT_ONLY: str
+    OUTPUT_ONLY: str
+    INPUT_OUTPUT: str
+    DISABLED: str
+
+class GuardrailInput(BaseModel):
+    """Input schema for guardrail checks.
+
+    Attributes:
+        input: User input content to check (queries, prompts, context)
+        output: AI output content to check (responses, generated text)
+    """
+    model_config: Incomplete
+    input: str | None
+    output: str | None
+
+class GuardrailResult(BaseModel):
+    """Result schema returned by guardrail engines and managers.
+
+    Attributes:
+        is_safe: Whether the content passed all checks
+        reason: Explanation when content is blocked (None if safe)
+        filtered_content: Cleaned/sanitized content if engine provides it
+    """
+    model_config: Incomplete
+    is_safe: bool
+    reason: str | None
+    filtered_content: str | None
+
+class BaseGuardrailEngineConfig(BaseModel):
+    """Base configuration for guardrail engines.
+
+    Attributes:
+        guardrail_mode: What content this engine should check
+    """
+    model_config: Incomplete
+    guardrail_mode: GuardrailMode

aip_agents/guardrails/utils.py

@@ -0,0 +1,45 @@
+"""Utility functions for guardrail mode conversion.
+
+This module provides utilities for converting between aip-agents GuardrailMode
+and gllm-guardrail GuardrailMode enums.
+
+Authors:
+    Reinhart Linanda (reinhart.linanda@gdplabs.id)
+"""
+
+from typing import Any
+
+from aip_agents.guardrails.schemas import GuardrailMode
+
+
+def convert_guardrail_mode_to_gl_sdk(mode: GuardrailMode) -> Any:
+    """Convert aip-agents GuardrailMode to gllm-guardrail GuardrailMode.
+
+    This function performs lazy import of gllm-guardrail to support optional
+    dependencies. The conversion is necessary because we maintain our own
+    GuardrailMode enum for API consistency while wrapping the external library.
+
+    Args:
+        mode: The aip-agents GuardrailMode to convert
+
+    Returns:
+        The corresponding gllm-guardrail GuardrailMode enum value
+
+    Raises:
+        ImportError: If gllm-guardrail is not installed
+    """
+    try:
+        from gllm_guardrail.constants import GuardrailMode as GLGuardrailMode  # pragma: no cover
+    except ImportError as e:  # pragma: no cover
+        raise ImportError(
+            "gllm-guardrail is required for guardrails. Install with: pip install 'aip-agents[guardrails]'"
+        ) from e  # pragma: no cover
+
+    mode_mapping = {
+        GuardrailMode.INPUT_ONLY: GLGuardrailMode.INPUT_ONLY,
+        GuardrailMode.OUTPUT_ONLY: GLGuardrailMode.OUTPUT_ONLY,
+        GuardrailMode.INPUT_OUTPUT: GLGuardrailMode.BOTH,
+        GuardrailMode.DISABLED: GLGuardrailMode.DISABLED,
+    }
+
+    return mode_mapping[mode]

aip_agents/guardrails/utils.pyi

@@ -0,0 +1,19 @@
+from aip_agents.guardrails.schemas import GuardrailMode as GuardrailMode
+from typing import Any
+
+def convert_guardrail_mode_to_gl_sdk(mode: GuardrailMode) -> Any:
+    """Convert aip-agents GuardrailMode to gllm-guardrail GuardrailMode.
+
+    This function performs lazy import of gllm-guardrail to support optional
+    dependencies. The conversion is necessary because we maintain our own
+    GuardrailMode enum for API consistency while wrapping the external library.
+
+    Args:
+        mode: The aip-agents GuardrailMode to convert
+
+    Returns:
+        The corresponding gllm-guardrail GuardrailMode enum value
+
+    Raises:
+        ImportError: If gllm-guardrail is not installed
+    """

aip_agents/mcp/client/persistent_session.py

@@ -115,9 +115,12 @@ class PersistentMCPSession:
 
                 # Discover resources (for future use)
                 if result.capabilities.resources:
-                    resources_result = await self.client_session.list_resources()
-                    if resources_result:
-                        logger.debug(f"Found {len(resources_result.resources)} resources for {self.server_name}")
+                    try:
+                        resources_result = await self.client_session.list_resources()
+                        if resources_result and resources_result.resources:
+                            logger.debug(f"Found {len(resources_result.resources)} resources for {self.server_name}")
+                    except Exception:
+                        logger.debug(f"Could not list resources for {self.server_name}, skipping")
 
                 self._initialized = True
                 logger.info(f"Session initialization complete for {self.server_name}")

aip_agents/middleware/base.py

@@ -86,3 +86,11 @@ class AgentMiddleware(Protocol):
             if no updates are needed.
         """
         return {}  # pragma: no cover  # Protocol default - cannot be executed directly
+
+    async def abefore_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronous version of before_model hook."""
+        return self.before_model(state)
+
+    async def aafter_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronous version of after_model hook."""
+        return self.after_model(state)

aip_agents/middleware/base.pyi

@@ -69,3 +69,7 @@ class AgentMiddleware(Protocol):
             Dict of state updates to merge into the agent state. Return empty dict
             if no updates are needed.
         """
+    async def abefore_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronous version of before_model hook."""
+    async def aafter_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronous version of after_model hook."""

aip_agents/middleware/manager.py

@@ -126,3 +126,25 @@ class MiddlewareManager:
                 updates.update(mw_updates)
 
         return updates
+
+    async def abefore_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously execute before_model hooks for all middleware."""
+        state_updates: dict[str, Any] = {}
+
+        for mw in self.middleware:
+            mw_updates = await mw.abefore_model(state)
+            if mw_updates:
+                state_updates.update(mw_updates)
+
+        return state_updates
+
+    async def aafter_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously execute after_model hooks for all middleware in reverse order."""
+        updates: dict[str, Any] = {}
+
+        for mw in reversed(self.middleware):
+            mw_updates = await mw.aafter_model(state)
+            if mw_updates:
+                updates.update(mw_updates)
+
+        return updates

aip_agents/middleware/manager.pyi

@@ -78,3 +78,7 @@ class MiddlewareManager:
             Merged dictionary of all state updates from all middleware.
             Updates are accumulated in reverse order of execution.
         """
+    async def abefore_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously execute before_model hooks for all middleware."""
+    async def aafter_model(self, state: dict[str, Any]) -> dict[str, Any]:
+        """Asynchronously execute after_model hooks for all middleware in reverse order."""

{aip_agents_binary-0.5.23.dist-info → aip_agents_binary-0.5.25.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: aip-agents-binary
-Version: 0.5.23
+Version: 0.5.25
 Summary: A library for managing agents in Gen AI applications.
 Author-email: Raymond Christopher <raymond.christopher@gdplabs.id>
 Requires-Python: <3.13,>=3.11
@@ -31,6 +31,8 @@ Provides-Extra: memory
 Requires-Dist: gllm-memory-binary[mem0ai]<0.2.0,>=0.1.1; extra == "memory"
 Provides-Extra: privacy
 Requires-Dist: gllm-privacy-binary<0.5.0,>=0.4.12; extra == "privacy"
+Provides-Extra: guardrails
+Requires-Dist: gllm-guardrail-binary<0.1.0,>=0.0.1; extra == "guardrails"
 Provides-Extra: gl-connector
 Requires-Dist: bosa-connectors-binary<0.4.0,>=0.3.1; extra == "gl-connector"
 Provides-Extra: local

{aip_agents_binary-0.5.23.dist-info → aip_agents_binary-0.5.25.dist-info}/RECORD

@@ -20,7 +20,7 @@ aip_agents/agent/__init__.py,sha256=noyxX-rddnulFTp9CLOPmlpsysteku3Q2r_nBbfECvc,
 aip_agents/agent/__init__.pyi,sha256=N-XcIaJOUMl6-ZVEHlZNN6PcahotUSeLRYMWxC2Juj0,864
 aip_agents/agent/base_agent.py,sha256=-8TyVGRUqPBwREoDoU14UbSJ3qdtfQ_a6VxdU8P4BCM,40639
 aip_agents/agent/base_agent.pyi,sha256=piwAfkyD4Zw1IESdrx4lIrR8oBABrYai88EzabKTtZ0,11339
-aip_agents/agent/base_langgraph_agent.py,sha256=lswmMlDIN38k169adthVL1dk-O836nuCCI76JXr_Tsw,122672
+aip_agents/agent/base_langgraph_agent.py,sha256=XqsSQtxHCiAqQoi5ib8RW00BbpeujNONEAdkqQQYLV4,122974
 aip_agents/agent/base_langgraph_agent.pyi,sha256=vfRtRAHT7Hb4Pq2uprmFUgQcsK_Tac2fv1Xoht5GPiU,11801
 aip_agents/agent/google_adk_agent.py,sha256=8zNLEnWlvwh0qxY65bZKuxBipsTFT-sbmb6zD12cMDA,38062
 aip_agents/agent/google_adk_agent.pyi,sha256=O7DDlLAHLFBLpBKt1wMIqWX9GqI-_x2mGpkIACyXqf4,6389
@@ -34,8 +34,8 @@ aip_agents/agent/langflow_agent.py,sha256=3KjB4ZBAIAqPKK5pML3DuiQ_yixx2L4dTQSW2p
 aip_agents/agent/langflow_agent.pyi,sha256=HOzMWIkga8F_ZFrzT62JdX9vhh8JhQVg-ylrr2Tglyo,5800
 aip_agents/agent/langgraph_memory_enhancer_agent.py,sha256=1AvvqvFfeLf80Jw2W2Mm7TdpwO3o_OC7r-30M4EIWeU,17859
 aip_agents/agent/langgraph_memory_enhancer_agent.pyi,sha256=6n6cd3udUhSaVTxqulnjCCgR-eUROnBEW2lFkAQCBQ4,2644
-aip_agents/agent/langgraph_react_agent.py,sha256=gIggzMsDoYfDY1KBoEX1O399Xghcul0cAeQ4KjhI9PY,104907
-aip_agents/agent/langgraph_react_agent.pyi,sha256=Mg41c2nugNnS7OEedQskAfG45gI-itT2USwpAcNW4RI,8021
+aip_agents/agent/langgraph_react_agent.py,sha256=tp5luLsB9_Of00yNidcX6Q9QWbZFwZcVuzYC6ck3Egg,108894
+aip_agents/agent/langgraph_react_agent.pyi,sha256=bVzM5w98biRwV6GTzaIeKu_rwIQ8d-q7EugZk9N-0vQ,8487
 aip_agents/agent/system_instruction_context.py,sha256=6lQAJ6DJv1aF8wjalxdsNWqEDZmomHwnhnPikLCfzj4,1220
 aip_agents/agent/system_instruction_context.pyi,sha256=gpYUr_CjWU_qVFobX_sduKDQN_wwtRL9BdnYv0WZ0Mc,424
 aip_agents/agent/hitl/__init__.py,sha256=qyxPIfSJ08MrvkE1qBZxdiom4VxSJSGEkrjqUZY2kNg,850
@@ -280,6 +280,26 @@ aip_agents/examples/tools/weather_forecast_tool.py,sha256=woFXShDC3vw2lzW6Yu3jGV
 aip_agents/examples/tools/weather_forecast_tool.pyi,sha256=UR5XFHI7yWpSJ-TjLfXdy0P-DsfHRvdXJwWKBSMYoxk,389
 aip_agents/executor/agent_executor.py,sha256=glEhBLj12lkfJZ0BkWim6DM0hwnrt4XbLgjeBv_h-Sc,18735
 aip_agents/executor/base.py,sha256=8DJpBjMeyA5MrgSdPnIkDSEbxDSK8PHsDstuRKxP3Kw,1584
+aip_agents/guardrails/__init__.py,sha256=4MIklFY6cHH3ePgAAQ0g8sqZRlIW0qjmHL0rIS1DkS8,2789
+aip_agents/guardrails/__init__.pyi,sha256=IfiFF1riNwswSiupAebschpsbw73HDMRi5KChDOqBa8,633
+aip_agents/guardrails/exceptions.py,sha256=AkJ_RxrL6fvCflpktk-VH50l5QrmAJigzI5cT96H4Vw,1309
+aip_agents/guardrails/exceptions.pyi,sha256=_v3Ma6fA7wOSvwN-LyIcms4VPwiUQWdB7m_gEc8hobk,882
+aip_agents/guardrails/manager.py,sha256=pNSUrO1jILSic7WoV254y_VhE8ezbAN3u7iqftr2IfU,5750
+aip_agents/guardrails/manager.pyi,sha256=5AdR21UkEAD7JPVfkIDsll5_py8iTCStPeySc6buNUQ,1812
+aip_agents/guardrails/middleware.py,sha256=IewMtyEzdd0fY2jdKUAQbNRTWd_6rC_ywqYJhV0ibEM,7356
+aip_agents/guardrails/middleware.pyi,sha256=77OsASwBkoB9dZMqZ3K-mMYzqTmHcwYAQnBENL939N0,3763
+aip_agents/guardrails/schemas.py,sha256=SmMUw8bsDQDNVSqgwTaqByA2HKpMwa3d9eX52Ya9fGw,1711
+aip_agents/guardrails/schemas.pyi,sha256=Yqjis0PbZLy53VkLFYFCwWvJLhTwQEewLJeUM_Ki8Co,1288
+aip_agents/guardrails/utils.py,sha256=Rp9zwLWUydvZmZE4xvAXhIdN05LX-aTkPqWRaQb7-YE,1587
+aip_agents/guardrails/utils.pyi,sha256=b7-XBFiv7QS0NG5AGvExmglp4UQJGpq-972dtgyMbhE,709
+aip_agents/guardrails/engines/__init__.py,sha256=j-H1-rOKe-R-WHyq1tjAi0usEUA7UjhLCwywhom-mo0,2239
+aip_agents/guardrails/engines/__init__.pyi,sha256=W7UjIO5tMaH8PbHs0AIKGV6A2OBNXYJPXsM_xhiQfw4,252
+aip_agents/guardrails/engines/base.py,sha256=wD-VW962WsqDMVEpLZdaKi0HNls3HcUX7pA7nQFRHJ8,2713
+aip_agents/guardrails/engines/base.pyi,sha256=tTxR1zOL-YMEdWkXkU_Pj9y6gshR7mrcyHdjedkK41Y,2297
+aip_agents/guardrails/engines/nemo.py,sha256=1LtevUmghKbHmoj1wJKXVhPZd4ETRXD-X7DJo7xSiZw,3902
+aip_agents/guardrails/engines/nemo.pyi,sha256=Jh5Yma4uOXGrmJO_cshCKVkPd4wjXSmV-XxNuj-pjxc,2027
+aip_agents/guardrails/engines/phrase_matcher.py,sha256=PoY7mQVWdlBxLCldIsdBwFtKr5P1PIdYlRe9q4Fkh9Y,4076
+aip_agents/guardrails/engines/phrase_matcher.pyi,sha256=idJLcLT4R8ZY0jsU55ECajFURLu5hYntSoaQJma29nA,2108
 aip_agents/mcp/__init__.py,sha256=n9E7iz5diKd_yKkPZfATHkfKy0Hdm40NYjDMWPmWImU,61
 aip_agents/mcp/__init__.pyi,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 aip_agents/mcp/client/__init__.py,sha256=Kp0iOfmk2Vdo9wwKu3plcxmJT6HlWvpXiTm9MTXaODU,507
@@ -288,7 +308,7 @@ aip_agents/mcp/client/base_mcp_client.py,sha256=0S10MIi5rSlL350b9MiNLVPe8Tj3ytaG
 aip_agents/mcp/client/base_mcp_client.pyi,sha256=LWnmN1IH1REdL0EebZN00gfZsico8jj0WDAI5vsJYEk,6029
 aip_agents/mcp/client/connection_manager.py,sha256=MwhJF5yyzQFWSkVPGnQ1OcMr0GTnBQFr5A4pU4zCNuU,7680
 aip_agents/mcp/client/connection_manager.pyi,sha256=CO190fuGjRxYLVK79ZJbtNhFiPqlQyv31RJvtjmqeqQ,1820
-aip_agents/mcp/client/persistent_session.py,sha256=x7YUX3EwIg4Ixs0D7Sb7-SyYxNYljSA3Y5qLhhfRy_I,14565
+aip_agents/mcp/client/persistent_session.py,sha256=yC9PhBsPqDO27-yN3EUxS5Hri33hqwa9h9h_9hpQUF4,14773
 aip_agents/mcp/client/persistent_session.pyi,sha256=eMqoGE84JJtDDwiJJSNIsjwWrldB9luaVA7UeXlBGrc,4021
 aip_agents/mcp/client/session_pool.py,sha256=qYxtalGyT1Z4a5LIDe2X9QinduOz4f_U9yDzBH_qjKI,12968
 aip_agents/mcp/client/session_pool.pyi,sha256=dUXl8g4G4asZ1CplaeZaR24suyU4gAgKzvQNOlriQA0,3680
@@ -326,10 +346,10 @@ aip_agents/memory/adapters/mem0.py,sha256=eGVPvqF2TFx-_gmxpfC08n5FZZW_BDKIKOwCO4
 aip_agents/memory/adapters/mem0.pyi,sha256=p82Xg3yG1jr_ogfY5D6cH93uR-EjigBk-TDl4Ba-okM,1115
 aip_agents/middleware/__init__.py,sha256=VqqQmOQKyYwV9bUNTB2ZN-_IpBRevQaWp4Q2sTe2LHA,502
 aip_agents/middleware/__init__.pyi,sha256=hSSkK1QpAGwCs9c-hVzWDh_R_xi3mh7mUVfzQBJwdS4,404
-aip_agents/middleware/base.py,sha256=s0s4_JL5nkyOYnB0CGlc7rT5SWNGf0Cq2N7TDhthpPc,3358
-aip_agents/middleware/base.pyi,sha256=218StfhoaWONgbN_uXxd3ENelRYfLUQwMi_mQuTaKPs,2794
-aip_agents/middleware/manager.py,sha256=kWEN5zZHiehP6jxrSSXhWAb6wqh0LG0zHxZyhbeJsiQ,4513
-aip_agents/middleware/manager.pyi,sha256=3jnpzput8FEcFCJl8lA60NHC2eqI5-zzDhYt8pLxZig,3338
+aip_agents/middleware/base.py,sha256=7PW5FEBbRDUdvd56yNTVuQDxJrX-ymBjxUPUePIRH4U,3711
+aip_agents/middleware/base.pyi,sha256=1f4pKaxq9dDZgLcDr1G93KXmWoRfsezXuMkVluXXwWY,3062
+aip_agents/middleware/manager.py,sha256=cTSzJN-3ty2o7x7iS1xd__hdBsQiq2Rqb5bnLPvWr4Y,5327
+aip_agents/middleware/manager.pyi,sha256=UbQ-5sehP7G0sokwxCSBe4q8JLub7acFrmr0P-z65vE,3661
 aip_agents/middleware/todolist.py,sha256=YxE1kcaP6Ov1WnfxM5z8cv5cNsJViG0NRPpbAGfpeMQ,10788
 aip_agents/middleware/todolist.pyi,sha256=nkRSDplMiQPS0qhNrMoDB1ksOtarEclaGErvIZH7QQ4,4320
 aip_agents/schema/__init__.py,sha256=Pxqd6kvSJkKHpmkBjy3N9ncxK7aEyYFf60STfNuHgkQ,1767
@@ -540,7 +560,7 @@ aip_agents/utils/pii/pii_helper.py,sha256=8QGVC9lb7dic_vSfLDUaDvqm45BUbYyPeQTVva
 aip_agents/utils/pii/pii_helper.pyi,sha256=wEgOasJxwKObtQ9Cb1UsiyIaqq2JUYmdRwOZR9PnIjA,3017
 aip_agents/utils/pii/uuid_deanonymizer_mapping.py,sha256=X9zeX1bhb3rlCc8P5QnbHCILx2AIhGmZwjsjh_2G4ZQ,7543
 aip_agents/utils/pii/uuid_deanonymizer_mapping.pyi,sha256=6H1xRV2Nr0LpP5K6fbz2uCobehTpM2626v8kiOd9W9Y,3157
-aip_agents_binary-0.5.23.dist-info/METADATA,sha256=_a-Fvb_Eb9t0DaR-rkSlMXX1WU0lO1kk9N9bNFUi-ic,22895
-aip_agents_binary-0.5.23.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
-aip_agents_binary-0.5.23.dist-info/top_level.txt,sha256=PEz8vcwC1bH4UrkhF0LkIYCNfXGWZUHdSklbvkBe25E,11
-aip_agents_binary-0.5.23.dist-info/RECORD,,
+aip_agents_binary-0.5.25.dist-info/METADATA,sha256=lSp9fH3seSvB9hXwjbf_zOMe44-tc3KkZsuZ2W9Jx3E,22998
+aip_agents_binary-0.5.25.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
+aip_agents_binary-0.5.25.dist-info/top_level.txt,sha256=PEz8vcwC1bH4UrkhF0LkIYCNfXGWZUHdSklbvkBe25E,11
+aip_agents_binary-0.5.25.dist-info/RECORD,,