PyPI - capiscio-sdk - Versions diffs - 0.2.0__py3-none-any.whl → 2.3.0__py3-none-any.whl - Mend

capiscio-sdk 0.2.0py3-none-any.whl → 2.3.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

capiscio_sdk/__init__.py +69 -1
capiscio_sdk/_rpc/__init__.py +7 -0
capiscio_sdk/_rpc/client.py +1321 -0
capiscio_sdk/_rpc/gen/__init__.py +1 -0
capiscio_sdk/_rpc/process.py +232 -0
capiscio_sdk/badge.py +737 -0
capiscio_sdk/badge_keeper.py +304 -0
capiscio_sdk/config.py +1 -1
capiscio_sdk/dv.py +296 -0
capiscio_sdk/errors.py +11 -1
capiscio_sdk/executor.py +17 -0
capiscio_sdk/integrations/fastapi.py +74 -0
capiscio_sdk/scoring/__init__.py +73 -3
capiscio_sdk/simple_guard.py +346 -0
capiscio_sdk/types.py +1 -1
capiscio_sdk/validators/__init__.py +59 -2
capiscio_sdk/validators/_core.py +376 -0
capiscio_sdk-2.3.0.dist-info/METADATA +532 -0
capiscio_sdk-2.3.0.dist-info/RECORD +36 -0
{capiscio_sdk-0.2.0.dist-info → capiscio_sdk-2.3.0.dist-info}/WHEEL +1 -1
capiscio_sdk-0.2.0.dist-info/METADATA +0 -221
capiscio_sdk-0.2.0.dist-info/RECORD +0 -26
{capiscio_sdk-0.2.0.dist-info → capiscio_sdk-2.3.0.dist-info}/licenses/LICENSE +0 -0

capiscio_sdk-0.2.0.dist-info/METADATA DELETED Viewed

@@ -1,221 +0,0 @@
-Metadata-Version: 2.4
-Name: capiscio-sdk
-Version: 0.2.0
-Summary: Runtime security middleware for A2A agents
-Project-URL: Homepage, https://capisc.io
-Project-URL: Documentation, https://docs.capisc.io/sdk-python
-Project-URL: Repository, https://github.com/capiscio/capiscio-sdk-python
-Project-URL: Issues, https://github.com/capiscio/capiscio-sdk-python/issues
-Author-email: Capiscio Team <team@capisc.io>
-License: Apache-2.0
-License-File: LICENSE
-Keywords: a2a,agent,agent-to-agent,middleware,security,validation
-Classifier: Development Status :: 3 - Alpha
-Classifier: Intended Audience :: Developers
-Classifier: License :: OSI Approved :: Apache Software License
-Classifier: Programming Language :: Python :: 3
-Classifier: Programming Language :: Python :: 3.10
-Classifier: Programming Language :: Python :: 3.11
-Classifier: Programming Language :: Python :: 3.12
-Classifier: Programming Language :: Python :: 3.13
-Classifier: Topic :: Security
-Classifier: Topic :: Software Development :: Libraries :: Python Modules
-Requires-Python: >=3.10
-Requires-Dist: a2a-sdk>=0.1.0
-Requires-Dist: cachetools>=5.3.0
-Requires-Dist: cryptography>=42.0.0
-Requires-Dist: httpx>=0.27.0
-Requires-Dist: pydantic>=2.0.0
-Requires-Dist: pyjwt[crypto]>=2.8.0
-Provides-Extra: dev
-Requires-Dist: black>=24.0.0; extra == 'dev'
-Requires-Dist: mypy>=1.9.0; extra == 'dev'
-Requires-Dist: pytest-asyncio>=0.23.0; extra == 'dev'
-Requires-Dist: pytest-cov>=4.1.0; extra == 'dev'
-Requires-Dist: pytest>=8.0.0; extra == 'dev'
-Requires-Dist: ruff>=0.3.0; extra == 'dev'
-Requires-Dist: types-cachetools>=5.3.0; extra == 'dev'
-Description-Content-Type: text/markdown
-# CapiscIO SDK (Python)
-**Runtime security middleware for A2A (Agent-to-Agent) protocol agents**
-[![PyPI version](https://badge.fury.io/py/capiscio-sdk.svg)](https://badge.fury.io/py/capiscio-sdk)
-[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)
-[![Python 3.10+](https://img.shields.io/badge/python-3.10+-blue.svg)](https://www.python.org/downloads/)
-## What is CapiscIO SDK?
-CapiscIO SDK provides **always-on runtime protection** for agents using the [A2A (Agent-to-Agent) protocol](https://github.com/google/A2A). It wraps your agent executor to validate incoming requests, verify signatures, and protect against malicious actors—all without requiring peer cooperation.
-### Key Features
-- ✅ **Message validation** - Schema and protocol compliance checking
-- ✅ **Signature verification** - JWS/JWKS cryptographic validation (RFC 7515)
-- ✅ **Upstream protection** - Validate agents you call
-- ✅ **Downstream protection** - Validate agents calling you
-- ✅ **Rate limiting** - Token bucket algorithm
-- ✅ **Caching** - Performance-optimized validation results
-- ✅ **Three integration patterns** - Minimal, explicit, or decorator
-## Installation
-```bash
-pip install capiscio-sdk
-```
-## Quick Start
-### Pattern 1: Minimal (One-liner with Preset)
-```python
-from capiscio_sdk import secure, SecurityConfig
-from a2a.server.request_handlers import DefaultRequestHandler
-from a2a.server.tasks import InMemoryTaskStore
-# Wrap your agent with security (production defaults)
-agent = secure(MyAgentExecutor(), SecurityConfig.production())
-# Use in A2A request handler
-handler = DefaultRequestHandler(
-    agent_executor=agent,
-    task_store=InMemoryTaskStore()
-)
-# Access validation results (three-dimensional scoring)
-result = await agent.validate_agent_card(card_url)
-print(result.compliance.total, result.trust.total, result.availability.total)
-```
-### Pattern 2: Granular Control
-```python
-from capiscio_sdk import CapiscIOSecurityExecutor, SecurityConfig
-# Start with a preset, customize what matters to you
-config = SecurityConfig.production()
-config.downstream.rate_limit_requests_per_minute = 100  # Higher rate limit
-config.downstream.require_signatures = True             # Enforce signatures
-config.upstream.test_endpoints = True                   # Test before calling
-config.fail_mode = "monitor"                            # Log but don't block yet
-secure_agent = CapiscIOSecurityExecutor(
-    delegate=MyAgentExecutor(),
-    config=config
-)
-```
-### Pattern 3: Environment-Driven (12-Factor App)
-```python
-from capiscio_sdk import secure_agent, SecurityConfig
-from a2a import AgentExecutor, RequestContext, EventQueue
-@secure_agent(config=SecurityConfig.from_env())
-class MyAgentExecutor(AgentExecutor):
-    async def execute(self, context: RequestContext, event_queue: EventQueue):
-        # Your agent logic - config loaded from env vars
-        pass
-# Already secured - use directly!
-handler = DefaultRequestHandler(agent_executor=MyAgentExecutor())
-```
-**All 16 configuration options documented in the [Configuration Guide](https://docs.capisc.io/sdk-python/guides/configuration/).**
-## Why CapiscIO?
-### The Problem
-When building A2A agents, you face security risks from:
-- **Malicious downstream agents** sending invalid/malicious requests
-- **Broken upstream dependencies** with invalid agent cards
-- **Protocol violations** causing runtime failures
-- **Missing signatures** with no authenticity verification
-### The Solution
-CapiscIO wraps your agent executor and provides:
-1. **Downstream Protection** - Validates all incoming requests
-2. **Upstream Protection** - Validates agents you call
-3. **Always-On** - Works without peer cooperation
-4. **Performance** - Caching and parallel validation
-5. **Three-Dimensional Scoring** - Compliance, trust, and availability insights
-## Configuration
-### Presets
-```python
-# Development - Permissive, verbose logging
-SecurityConfig.development()
-# Production - Balanced (default)
-SecurityConfig.production()
-# Strict - Maximum security
-SecurityConfig.strict()
-# From environment variables
-SecurityConfig.from_env()
-```
-### Custom Configuration
-```python
-from capiscio_sdk import SecurityConfig, DownstreamConfig, UpstreamConfig
-config = SecurityConfig(
-    downstream=DownstreamConfig(
-        validate_schema=True,
-        verify_signatures=True,
-        require_signatures=False,
-        enable_rate_limiting=True,
-        rate_limit_requests_per_minute=100
-    ),
-    upstream=UpstreamConfig(
-        validate_agent_cards=True,
-        verify_signatures=True,
-        cache_validation=True,
-        cache_timeout=3600  # seconds
-    ),
-    fail_mode="block",  # "block" | "monitor" | "log"
-    timeout_ms=5000
-)
-```
-## Documentation
-- [Quickstart Guide](docs/quickstart.md)
-- [Configuration Reference](docs/configuration.md)
-- [API Documentation](docs/api-reference.md)
-- [Examples](examples/)
-## Roadmap
-- **V1.0** (Q4 2025) - Core middleware (this package)
-- **V2.0** (Q2 2026) - Extension protocol (validation feedback)
-- **V3.0** (Q3 2026) - Platform integration (trust network)
-- **V4.0** (Q4 2026) - Enterprise features (policies, audit logs)
-## Contributing
-We welcome contributions! Please see [CONTRIBUTING.md](CONTRIBUTING.md) for guidelines.
-## License
-Apache License 2.0 - see [LICENSE](LICENSE) for details.
-## About A2A
-The [Agent-to-Agent (A2A) protocol](https://github.com/google/A2A) is an open standard for agent interoperability, supported by Google and 50+ partners including Salesforce, ServiceNow, SAP, Intuit, and more. CapiscIO provides the security layer for production A2A deployments.
-## Support
-- **Issues:** [GitHub Issues](https://github.com/capiscio/capiscio-sdk-python/issues)
-- **Discussions:** [GitHub Discussions](https://github.com/capiscio/capiscio-sdk-python/discussions)
-- **Documentation:** [docs.capisc.io](https://docs.capisc.io)
-- **Website:** [capisc.io](https://capisc.io)

capiscio_sdk-0.2.0.dist-info/RECORD DELETED Viewed

@@ -1,26 +0,0 @@
-capiscio_sdk/__init__.py,sha256=FeQaj_zfpzATbqqFP1vsRbJ_XT5NcBFm4vpR7efoqbE,1108
-capiscio_sdk/config.py,sha256=S5iclYkxG-29UY4ipVU-7DhmeTR2zell6TiX3yrRvE0,3974
-capiscio_sdk/errors.py,sha256=MCDh1fAAswXPpKoZEqVG_eD8rOmHv38GFEFFvz1GRjI,1859
-capiscio_sdk/executor.py,sha256=EKM_93thP5utyLEH2DZNTL1KY9YZRyOvWNBMzIgpTsU,7226
-capiscio_sdk/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-capiscio_sdk/types.py,sha256=mMh_4VTYRy0xE3Cng1WJEeHigAFUVroRG1GVHtzTN2E,7980
-capiscio_sdk/infrastructure/__init__.py,sha256=5yK7kbk1tcHqlnFIN0lR5N_4ZWWquNivLfHkXOAtso0,152
-capiscio_sdk/infrastructure/cache.py,sha256=FjIRRzNbsPxFZrxdeek51IwFSmR682Wpj1bvvmgqwiU,1841
-capiscio_sdk/infrastructure/rate_limiter.py,sha256=7Q_GfcooWKjioDeB46PpPb00laDmkLpUYGM0Ui8nXqI,3642
-capiscio_sdk/scoring/__init__.py,sha256=OjHeqLe6aZ7yjbpmtt_upqXDwYUnX5CDXTVNngOMHcg,1083
-capiscio_sdk/scoring/availability.py,sha256=CzXA1ED48U1Cc06sh0Mtl_kxZP6af-9cceBumTXQhO8,9130
-capiscio_sdk/scoring/compliance.py,sha256=JZyYuT18A_eiDNdOz-doTIYwW6YhVPvfRj_siNAkkTY,9780
-capiscio_sdk/scoring/trust.py,sha256=u3dposV0zWfh4mW6XzpWDLP7Mora8y3k2_KwVtEuQPw,10955
-capiscio_sdk/scoring/types.py,sha256=4D-2kWVrPNxugxug_q-tZiQI5_Cv1ThtSPmOH-KbSrs,10051
-capiscio_sdk/validators/__init__.py,sha256=KPqNj0ts7Ys6yYUXp8mucR69yp6TIBjz6db8-Xa3QuQ,532
-capiscio_sdk/validators/agent_card.py,sha256=d8VfGXvtHiuU0DuC1W64Z_JPVqOVh-nRMVShOAznJbk,18506
-capiscio_sdk/validators/certificate.py,sha256=7RguWk9ahtrxe3TuRqiv5t5vBGta_cUp4qjcx7GwAl0,14373
-capiscio_sdk/validators/message.py,sha256=TGVCAwFHcen1v9KLK5UtxVXq61yOqOnd4yudxSxFMmw,15472
-capiscio_sdk/validators/protocol.py,sha256=bkaJJXseulTJ4Sdiio8gE8Q_Pyqj0BRsJe6BGHSQSnA,5377
-capiscio_sdk/validators/semver.py,sha256=mlF3GO5ZPA-w6FzSxhjcr56sgCdS0YVVAd1dUr1bxWs,6385
-capiscio_sdk/validators/signature.py,sha256=lI8XzaKfG_dXSOQXZ40Lda0ntga9EqqC4zAId2kOt6g,8072
-capiscio_sdk/validators/url_security.py,sha256=SdpOrB48hrfgAMuLvpWH2P0LLCJtg6QBohGDIye8f1E,9802
-capiscio_sdk-0.2.0.dist-info/METADATA,sha256=k3oDfOrYLqCpPighcDEnKPMNX3SRVsBxHfiAO6H7Oyc,7639
-capiscio_sdk-0.2.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-capiscio_sdk-0.2.0.dist-info/licenses/LICENSE,sha256=AMM_E-ILcCpX0JALqX3BL9yfgSx654BtkhX-CBFYp1Q,10758
-capiscio_sdk-0.2.0.dist-info/RECORD,,

{capiscio_sdk-0.2.0.dist-info → capiscio_sdk-2.3.0.dist-info}/licenses/LICENSE RENAMED Viewed

File without changes

capiscio-sdk 0.2.0__py3-none-any.whl → 2.3.0__py3-none-any.whl

capiscio-sdk 0.2.0py3-none-any.whl → 2.3.0py3-none-any.whl