cortexhub 0.1.4__tar.gz → 0.1.7__tar.gz

{cortexhub-0.1.4 → cortexhub-0.1.7}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: cortexhub
-Version: 0.1.4
+Version: 0.1.7
 Summary: CortexHub Python SDK - Policy-as-Code for AI Agents
 Project-URL: Homepage, https://cortexhub.ai
 Project-URL: Documentation, https://docs.cortexhub.ai

{cortexhub-0.1.4 → cortexhub-0.1.7}/pyproject.toml

@@ -1,6 +1,6 @@
 [project]
 name = "cortexhub"
-version = "0.1.4"
+version = "0.1.7"
 description = "CortexHub Python SDK - Policy-as-Code for AI Agents"
 readme = "README.md"
 requires-python = ">=3.10,<3.14"

{cortexhub-0.1.4 → cortexhub-0.1.7}/src/cortexhub/adapters/claude_agents.py

@@ -73,6 +73,7 @@ class ClaudeAgentsAdapter(ToolAdapter):
     def __init__(self, cortex_hub: Any):
         super().__init__(cortex_hub)
         self._hook_spans: dict[str, Any] = {}
+        self._active_run_session_id: str | None = None
 
     def _get_framework_modules(self) -> list[str]:
         return ["claude_agent_sdk"]
@@ -93,13 +94,6 @@ class ClaudeAgentsAdapter(ToolAdapter):
                 return
             
             cortex_hub = self.cortex_hub
-            tools = self._discover_tools()
-            if tools:
-                cortex_hub.backend.register_tool_inventory(
-                    agent_id=cortex_hub.agent_id,
-                    framework=self.framework_name,
-                    tools=tools,
-                )
             
             # Store original decorator
             if not hasattr(claude_agent_sdk, _ORIGINAL_TOOL_ATTR):
@@ -206,6 +200,7 @@ class ClaudeAgentsAdapter(ToolAdapter):
         try:
             import claude_agent_sdk
             from claude_agent_sdk import ClaudeSDKClient, ResultMessage
+            adapter = self
 
             if getattr(claude_agent_sdk, _PATCHED_RUN_ATTR, False):
                 return
@@ -218,6 +213,7 @@ class ClaudeAgentsAdapter(ToolAdapter):
                 status = None
                 failed = False
                 cortex_hub.start_run(framework="claude_agents")
+                adapter._active_run_session_id = cortex_hub.session_id
                 try:
                     async for message in original_query(*args, **kwargs):
                         if isinstance(message, ResultMessage):
@@ -231,6 +227,7 @@ class ClaudeAgentsAdapter(ToolAdapter):
                         status = "failed"
                     if status:
                         cortex_hub.finish_run(framework="claude_agents", status=status)
+                    adapter._active_run_session_id = None
 
             claude_agent_sdk.query = patched_query
 
@@ -251,10 +248,12 @@ class ClaudeAgentsAdapter(ToolAdapter):
 
             async def patched_client_query(self, *args, **kwargs):
                 cortex_hub.start_run(framework="claude_agents")
+                adapter._active_run_session_id = cortex_hub.session_id
                 try:
                     return await original_client_query(self, *args, **kwargs)
                 except Exception:
                     cortex_hub.finish_run(framework="claude_agents", status="failed")
+                    adapter._active_run_session_id = None
                     raise
 
             async def patched_receive_response(self, *args, **kwargs):
@@ -273,6 +272,7 @@ class ClaudeAgentsAdapter(ToolAdapter):
                         status = "failed"
                     if status:
                         cortex_hub.finish_run(framework="claude_agents", status=status)
+                    adapter._active_run_session_id = None
 
             ClaudeSDKClient.query = patched_client_query
             ClaudeSDKClient.receive_response = patched_receive_response
@@ -303,6 +303,10 @@ class ClaudeAgentsAdapter(ToolAdapter):
         """
         cortex_hub = self.cortex_hub
         span_store = self._hook_spans
+        adapter = self
+
+        def _current_session_id() -> str:
+            return adapter._active_run_session_id or cortex_hub.session_id
 
         def _start_tool_span(
             *,
@@ -316,7 +320,7 @@ class ClaudeAgentsAdapter(ToolAdapter):
                 name="tool.invoke",
                 kind=SpanKind.INTERNAL,
             )
-            span.set_attribute("cortexhub.session.id", cortex_hub.session_id)
+            span.set_attribute("cortexhub.session.id", _current_session_id())
             span.set_attribute("cortexhub.agent.id", cortex_hub.agent_id)
             span.set_attribute("cortexhub.tool.name", tool_name)
             span.set_attribute("cortexhub.tool.framework", "claude_agents")

{cortexhub-0.1.4 → cortexhub-0.1.7}/src/cortexhub/adapters/crewai.py

@@ -70,13 +70,6 @@ class CrewAIAdapter(ToolAdapter):
             from crewai.tools.structured_tool import CrewStructuredTool
             
             cortex_hub = self.cortex_hub
-            tools = self._discover_tools()
-            if tools:
-                cortex_hub.backend.register_tool_inventory(
-                    agent_id=cortex_hub.agent_id,
-                    framework=self.framework_name,
-                    tools=tools,
-                )
 
             # Patch CrewStructuredTool.invoke (primary execution path)
             if not getattr(CrewStructuredTool, _PATCHED_ATTR, False):

{cortexhub-0.1.4 → cortexhub-0.1.7}/src/cortexhub/adapters/langgraph.py

@@ -411,12 +411,6 @@ class LangGraphAdapter(ToolAdapter):
             name = tool.get("name") or "unknown_tool"
             self._discovered_tools[name] = tool
 
-        self.cortex_hub.backend.register_tool_inventory(
-            agent_id=self.cortex_hub.agent_id,
-            framework=self.framework_name,
-            tools=list(self._discovered_tools.values()),
-        )
-
     def _normalize_tools(self, tools: Any) -> list[dict[str, Any]]:
         """Convert tool objects to inventory payloads."""
         normalized: list[dict[str, Any]] = []

{cortexhub-0.1.4 → cortexhub-0.1.7}/src/cortexhub/adapters/openai_agents.py

@@ -67,13 +67,6 @@ class OpenAIAgentsAdapter(ToolAdapter):
                 return
 
             cortex_hub = self.cortex_hub
-            tools = self._discover_tools()
-            if tools:
-                cortex_hub.backend.register_tool_inventory(
-                    agent_id=cortex_hub.agent_id,
-                    framework=self.framework_name,
-                    tools=tools,
-                )
             
             # Store original function_tool decorator
             if not hasattr(tool_module, _ORIGINAL_FUNCTION_TOOL_ATTR):

{cortexhub-0.1.4 → cortexhub-0.1.7}/src/cortexhub/backend/client.py

@@ -7,7 +7,6 @@ import httpx
 from typing import Any
 from dataclasses import dataclass
 
-from cortexhub.version import __version__
 
 logger = structlog.get_logger(__name__)
 
@@ -92,7 +91,7 @@ class BackendClient:
                 timeout=10.0,
             )
     
-    def validate_api_key(self) -> tuple[bool, SDKConfig | None]:
+    def validate_api_key(self, *, agent_id: str | None = None) -> tuple[bool, SDKConfig | None]:
         """Validate API key with backend and get SDK configuration.
         
         Returns:
@@ -127,7 +126,46 @@ class BackendClient:
                 
                 # Convert policy objects to Cedar string if needed
                 raw_policies = policies_data.get("policies", [])
+                if agent_id:
+                    raw_policies = [
+                        policy for policy in raw_policies if policy.get("agent_id") == agent_id
+                    ]
                 guardrail_configs: dict[str, GuardrailConfig] = {}
+
+                def _merge_guardrail_config(
+                    existing: GuardrailConfig | None,
+                    incoming: GuardrailConfig,
+                ) -> GuardrailConfig:
+                    if not existing:
+                        return incoming
+                    priority = {"block": 3, "redact": 2, "allow": 1}
+                    action = (
+                        incoming.action
+                        if priority.get(incoming.action, 0) > priority.get(existing.action, 0)
+                        else existing.action
+                    )
+                    if existing.pii_types is None or incoming.pii_types is None:
+                        pii_types = None
+                    else:
+                        pii_types = sorted(set(existing.pii_types + incoming.pii_types))
+                    if existing.secret_types is None or incoming.secret_types is None:
+                        secret_types = None
+                    else:
+                        secret_types = sorted(set(existing.secret_types + incoming.secret_types))
+                    custom_patterns = (existing.custom_patterns or []) + (incoming.custom_patterns or [])
+                    if existing.redaction_scope == "both" or incoming.redaction_scope == "both":
+                        redaction_scope = "both"
+                    elif existing.redaction_scope != incoming.redaction_scope:
+                        redaction_scope = "both"
+                    else:
+                        redaction_scope = existing.redaction_scope
+                    return GuardrailConfig(
+                        action=action,
+                        pii_types=pii_types,
+                        secret_types=secret_types,
+                        custom_patterns=custom_patterns,
+                        redaction_scope=redaction_scope,
+                    )
                 
                 if isinstance(raw_policies, list):
                     # Backend returns list of policy objects - extract Cedar code
@@ -171,12 +209,16 @@ class BackendClient:
                                         description=cp.get("description"),
                                         enabled=cp.get("enabled", True),
                                     ))
-                                guardrail_configs["pii"] = GuardrailConfig(
-                                    action=gc.get("action", "redact"),
-                                    pii_types=gc.get("pii_types"),
-                                    custom_patterns=custom_patterns if custom_patterns else None,
-                                    redaction_scope=gc.get("redaction_scope", "both"),
+                                merged = _merge_guardrail_config(
+                                    guardrail_configs.get("pii"),
+                                    GuardrailConfig(
+                                        action=gc.get("action", "redact"),
+                                        pii_types=gc.get("pii_types"),
+                                        custom_patterns=custom_patterns if custom_patterns else None,
+                                        redaction_scope=gc.get("redaction_scope", "both"),
+                                    ),
                                 )
+                                guardrail_configs["pii"] = merged
                             elif "secrets" in policy_key:
                                 custom_patterns = []
                                 raw_patterns = gc.get("custom_patterns") or []
@@ -187,12 +229,16 @@ class BackendClient:
                                         description=cp.get("description"),
                                         enabled=cp.get("enabled", True),
                                     ))
-                                guardrail_configs["secrets"] = GuardrailConfig(
-                                    action=gc.get("action", "redact"),
-                                    secret_types=gc.get("secret_types"),
-                                    custom_patterns=custom_patterns if custom_patterns else None,
-                                    redaction_scope=gc.get("redaction_scope", "both"),
+                                merged = _merge_guardrail_config(
+                                    guardrail_configs.get("secrets"),
+                                    GuardrailConfig(
+                                        action=gc.get("action", "redact"),
+                                        secret_types=gc.get("secret_types"),
+                                        custom_patterns=custom_patterns if custom_patterns else None,
+                                        redaction_scope=gc.get("redaction_scope", "both"),
+                                    ),
                                 )
+                                guardrail_configs["secrets"] = merged
                     policies_str = "\n".join(cedar_parts)
                 else:
                     policies_str = raw_policies or ""
@@ -254,33 +300,6 @@ class BackendClient:
         if self._client:
             self._client.close()
 
-    def register_tool_inventory(
-        self,
-        *,
-        agent_id: str,
-        framework: str,
-        tools: list[dict],
-    ) -> dict[str, Any]:
-        """Register agent tool inventory on init. Overwrites previous."""
-
-        if not self._client:
-            return {"agent_id": agent_id, "tools_count": 0}
-
-        try:
-            response = self._client.post(
-                "/tool-inventory",
-                json={
-                    "agent_id": agent_id,
-                    "framework": framework,
-                    "sdk_version": __version__,
-                    "tools": tools,
-                },
-            )
-            return response.json()
-        except Exception as e:
-            logger.warning("Failed to register tool inventory", error=str(e))
-            return {"agent_id": agent_id, "tools_count": len(tools)}
-
     def create_approval(
         self,
         *,

{cortexhub-0.1.4 → cortexhub-0.1.7}/src/cortexhub/client.py

@@ -159,7 +159,7 @@ class CortexHub:
 
         # Validate API key and get configuration (including policies)
         self.backend = BackendClient(self.api_key, self.api_base_url)
-        is_valid, sdk_config = self.backend.validate_api_key()
+        is_valid, sdk_config = self.backend.validate_api_key(agent_id=self.agent_id)
         
         if not is_valid:
             raise ConfigurationError(

{cortexhub-0.1.4 → cortexhub-0.1.7}/src/cortexhub/version.py

@@ -1,3 +1,3 @@
 """Version information for CortexHub SDK."""
 
-__version__ = "0.1.0"
+__version__ = "0.1.5"