crewai-forge 0.1.0__tar.gz

crewai_forge-0.1.0/PKG-INFO

@@ -0,0 +1,105 @@
+Metadata-Version: 2.4
+Name: crewai-forge
+Version: 0.1.0
+Summary: Forge Verify tools and guardrails for CrewAI — verify every agent action before execution
+Author-email: Veritera AI <engineering@veritera.ai>
+License: MIT
+Project-URL: Homepage, https://veritera.ai
+Project-URL: Documentation, https://veritera.ai/docs
+Project-URL: Repository, https://github.com/VeriteraAI/crewai-forge
+Keywords: veritera,forge,crewai,guardrail,verification,ai-safety
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3
+Classifier: Topic :: Security
+Classifier: Topic :: Software Development :: Libraries
+Requires-Python: >=3.10
+Description-Content-Type: text/markdown
+Requires-Dist: veritera>=0.2.0
+Requires-Dist: crewai>=0.80.0
+
+# crewai-forge
+
+Forge Verify tools and guardrails for [CrewAI](https://github.com/crewAIInc/crewAI). Verify every AI agent action against your policies **before** execution.
+
+## Install
+
+```bash
+pip install crewai-forge
+```
+
+## Quick Start
+
+```python
+import os
+from crewai import Agent, Task, Crew
+from forge_crewai import ForgeVerifyTool, forge_task_guardrail
+
+os.environ["VERITERA_API_KEY"] = "vt_live_..."
+
+# Create a Forge verification tool
+verify = ForgeVerifyTool(policy="finance-controls")
+
+# Give it to your agent
+analyst = Agent(
+    role="Financial Analyst",
+    goal="Process financial transactions safely",
+    tools=[verify],
+)
+
+# Add a task guardrail for output validation
+task = Task(
+    description="Process the refund for order #12345",
+    agent=analyst,
+    guardrail=forge_task_guardrail(policy="finance-controls"),
+    guardrail_max_retries=3,
+)
+
+crew = Crew(agents=[analyst], tasks=[task])
+result = crew.kickoff()
+```
+
+## Three Integration Points
+
+### 1. Agent Tool — verify before acting
+
+```python
+from forge_crewai import ForgeVerifyTool
+
+tool = ForgeVerifyTool(policy="finance-controls")
+agent = Agent(role="Analyst", tools=[tool])
+```
+
+The agent calls `forge_verify(action="payment.create", params='{"amount": 500}')` before executing sensitive actions.
+
+### 2. Task Guardrail — validate output
+
+```python
+from forge_crewai import forge_task_guardrail
+
+task = Task(
+    description="Draft customer email",
+    agent=support_agent,
+    guardrail=forge_task_guardrail(policy="communication-policy"),
+    guardrail_max_retries=3,
+)
+```
+
+If the output violates your policy, CrewAI automatically retries the task.
+
+### 3. LLM Hooks — intercept at the model level
+
+```python
+from forge_crewai import forge_before_llm, forge_after_llm
+
+# Block LLM calls that violate policy
+forge_before_llm(policy="safety-controls", max_iterations=10)
+
+# Audit all LLM responses
+forge_after_llm(policy="audit-trail")
+```
+
+## License
+
+MIT — [Veritera AI](https://veritera.ai)

crewai_forge-0.1.0/README.md

@@ -0,0 +1,84 @@
+# crewai-forge
+
+Forge Verify tools and guardrails for [CrewAI](https://github.com/crewAIInc/crewAI). Verify every AI agent action against your policies **before** execution.
+
+## Install
+
+```bash
+pip install crewai-forge
+```
+
+## Quick Start
+
+```python
+import os
+from crewai import Agent, Task, Crew
+from forge_crewai import ForgeVerifyTool, forge_task_guardrail
+
+os.environ["VERITERA_API_KEY"] = "vt_live_..."
+
+# Create a Forge verification tool
+verify = ForgeVerifyTool(policy="finance-controls")
+
+# Give it to your agent
+analyst = Agent(
+    role="Financial Analyst",
+    goal="Process financial transactions safely",
+    tools=[verify],
+)
+
+# Add a task guardrail for output validation
+task = Task(
+    description="Process the refund for order #12345",
+    agent=analyst,
+    guardrail=forge_task_guardrail(policy="finance-controls"),
+    guardrail_max_retries=3,
+)
+
+crew = Crew(agents=[analyst], tasks=[task])
+result = crew.kickoff()
+```
+
+## Three Integration Points
+
+### 1. Agent Tool — verify before acting
+
+```python
+from forge_crewai import ForgeVerifyTool
+
+tool = ForgeVerifyTool(policy="finance-controls")
+agent = Agent(role="Analyst", tools=[tool])
+```
+
+The agent calls `forge_verify(action="payment.create", params='{"amount": 500}')` before executing sensitive actions.
+
+### 2. Task Guardrail — validate output
+
+```python
+from forge_crewai import forge_task_guardrail
+
+task = Task(
+    description="Draft customer email",
+    agent=support_agent,
+    guardrail=forge_task_guardrail(policy="communication-policy"),
+    guardrail_max_retries=3,
+)
+```
+
+If the output violates your policy, CrewAI automatically retries the task.
+
+### 3. LLM Hooks — intercept at the model level
+
+```python
+from forge_crewai import forge_before_llm, forge_after_llm
+
+# Block LLM calls that violate policy
+forge_before_llm(policy="safety-controls", max_iterations=10)
+
+# Audit all LLM responses
+forge_after_llm(policy="audit-trail")
+```
+
+## License
+
+MIT — [Veritera AI](https://veritera.ai)

crewai_forge-0.1.0/crewai_forge.egg-info/PKG-INFO

@@ -0,0 +1,105 @@
+Metadata-Version: 2.4
+Name: crewai-forge
+Version: 0.1.0
+Summary: Forge Verify tools and guardrails for CrewAI — verify every agent action before execution
+Author-email: Veritera AI <engineering@veritera.ai>
+License: MIT
+Project-URL: Homepage, https://veritera.ai
+Project-URL: Documentation, https://veritera.ai/docs
+Project-URL: Repository, https://github.com/VeriteraAI/crewai-forge
+Keywords: veritera,forge,crewai,guardrail,verification,ai-safety
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3
+Classifier: Topic :: Security
+Classifier: Topic :: Software Development :: Libraries
+Requires-Python: >=3.10
+Description-Content-Type: text/markdown
+Requires-Dist: veritera>=0.2.0
+Requires-Dist: crewai>=0.80.0
+
+# crewai-forge
+
+Forge Verify tools and guardrails for [CrewAI](https://github.com/crewAIInc/crewAI). Verify every AI agent action against your policies **before** execution.
+
+## Install
+
+```bash
+pip install crewai-forge
+```
+
+## Quick Start
+
+```python
+import os
+from crewai import Agent, Task, Crew
+from forge_crewai import ForgeVerifyTool, forge_task_guardrail
+
+os.environ["VERITERA_API_KEY"] = "vt_live_..."
+
+# Create a Forge verification tool
+verify = ForgeVerifyTool(policy="finance-controls")
+
+# Give it to your agent
+analyst = Agent(
+    role="Financial Analyst",
+    goal="Process financial transactions safely",
+    tools=[verify],
+)
+
+# Add a task guardrail for output validation
+task = Task(
+    description="Process the refund for order #12345",
+    agent=analyst,
+    guardrail=forge_task_guardrail(policy="finance-controls"),
+    guardrail_max_retries=3,
+)
+
+crew = Crew(agents=[analyst], tasks=[task])
+result = crew.kickoff()
+```
+
+## Three Integration Points
+
+### 1. Agent Tool — verify before acting
+
+```python
+from forge_crewai import ForgeVerifyTool
+
+tool = ForgeVerifyTool(policy="finance-controls")
+agent = Agent(role="Analyst", tools=[tool])
+```
+
+The agent calls `forge_verify(action="payment.create", params='{"amount": 500}')` before executing sensitive actions.
+
+### 2. Task Guardrail — validate output
+
+```python
+from forge_crewai import forge_task_guardrail
+
+task = Task(
+    description="Draft customer email",
+    agent=support_agent,
+    guardrail=forge_task_guardrail(policy="communication-policy"),
+    guardrail_max_retries=3,
+)
+```
+
+If the output violates your policy, CrewAI automatically retries the task.
+
+### 3. LLM Hooks — intercept at the model level
+
+```python
+from forge_crewai import forge_before_llm, forge_after_llm
+
+# Block LLM calls that violate policy
+forge_before_llm(policy="safety-controls", max_iterations=10)
+
+# Audit all LLM responses
+forge_after_llm(policy="audit-trail")
+```
+
+## License
+
+MIT — [Veritera AI](https://veritera.ai)

crewai_forge-0.1.0/crewai_forge.egg-info/SOURCES.txt

@@ -0,0 +1,11 @@
+README.md
+pyproject.toml
+crewai_forge.egg-info/PKG-INFO
+crewai_forge.egg-info/SOURCES.txt
+crewai_forge.egg-info/dependency_links.txt
+crewai_forge.egg-info/requires.txt
+crewai_forge.egg-info/top_level.txt
+forge_crewai/__init__.py
+forge_crewai/guardrail.py
+forge_crewai/hooks.py
+forge_crewai/tool.py

crewai_forge-0.1.0/crewai_forge.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

crewai_forge-0.1.0/crewai_forge.egg-info/requires.txt

@@ -0,0 +1,2 @@
+veritera>=0.2.0
+crewai>=0.80.0

crewai_forge-0.1.0/crewai_forge.egg-info/top_level.txt

@@ -0,0 +1 @@
+forge_crewai

crewai_forge-0.1.0/forge_crewai/__init__.py

@@ -0,0 +1,33 @@
+"""Forge Verify tools and guardrails for CrewAI.
+
+Three integration points:
+
+1. ForgeVerifyTool — a CrewAI tool agents can use to verify actions
+2. forge_task_guardrail — validates task output against Forge policies
+3. forge_before_llm / forge_after_llm — LLM call hooks for pre/post verification
+
+Usage:
+    from forge_crewai import ForgeVerifyTool, forge_task_guardrail
+
+    tool = ForgeVerifyTool(policy="finance-controls")
+    agent = Agent(role="...", tools=[tool])
+
+    task = Task(
+        description="...",
+        agent=agent,
+        guardrail=forge_task_guardrail(policy="finance-controls"),
+    )
+"""
+
+__version__ = "0.1.0"
+
+from .tool import ForgeVerifyTool
+from .guardrail import forge_task_guardrail
+from .hooks import forge_before_llm, forge_after_llm
+
+__all__ = [
+    "ForgeVerifyTool",
+    "forge_task_guardrail",
+    "forge_before_llm",
+    "forge_after_llm",
+]

crewai_forge-0.1.0/forge_crewai/guardrail.py

@@ -0,0 +1,88 @@
+"""Forge task guardrail for CrewAI.
+
+Validates task output against Forge policies. If the output violates a policy,
+the task is retried (up to guardrail_max_retries).
+
+Usage:
+    task = Task(
+        description="Process customer refund",
+        agent=finance_agent,
+        guardrail=forge_task_guardrail(policy="finance-controls"),
+        guardrail_max_retries=3,
+    )
+"""
+
+from __future__ import annotations
+
+import logging
+import os
+from typing import Any, Optional, Tuple
+
+from veritera import Forge
+
+logger = logging.getLogger("forge_crewai")
+
+
+def forge_task_guardrail(
+    api_key: Optional[str] = None,
+    base_url: str = "https://veritera.ai",
+    agent_id: str = "crewai-agent",
+    policy: Optional[str] = None,
+    fail_closed: bool = True,
+):
+    """Create a CrewAI task guardrail that validates output through Forge.
+
+    Returns a function compatible with Task(guardrail=...).
+
+    Args:
+        api_key: Forge API key (or set VERITERA_API_KEY env var).
+        base_url: Forge API endpoint.
+        agent_id: Identifier for this agent in Forge audit logs.
+        policy: Policy to evaluate against.
+        fail_closed: If True, reject output when Forge API is unreachable.
+    """
+    key = api_key or os.environ.get("VERITERA_API_KEY", "")
+    client = Forge(
+        api_key=key,
+        base_url=base_url,
+        fail_closed=fail_closed,
+    )
+
+    def _guardrail(result: Any) -> Tuple[bool, Any]:
+        """Validate task output against Forge policies.
+
+        Returns:
+            (True, output) if approved.
+            (False, feedback) if denied — CrewAI will retry the task.
+        """
+        output_text = result.raw if hasattr(result, "raw") else str(result)
+        description = result.description if hasattr(result, "description") else ""
+
+        try:
+            verification = client.verify_sync(
+                action="task.complete",
+                agent_id=agent_id,
+                params={
+                    "output": output_text[:3000],
+                    "task": description[:500],
+                },
+                policy=policy,
+            )
+        except Exception as exc:
+            logger.error("Forge task guardrail error: %s", exc)
+            if fail_closed:
+                return (False, f"Task output blocked — verification unavailable: {exc}")
+            return (True, output_text)
+
+        if verification.verified:
+            logger.debug("Forge APPROVED task output (proof=%s)", verification.proof_id)
+            return (True, output_text)
+
+        reason = verification.reason or "Policy violation"
+        logger.warning("Forge DENIED task output: %s", reason)
+        return (
+            False,
+            f"Forge policy violation: {reason}. Please revise your output to comply with the policy.",
+        )
+
+    return _guardrail

crewai_forge-0.1.0/forge_crewai/hooks.py

@@ -0,0 +1,132 @@
+"""Forge LLM call hooks for CrewAI.
+
+Intercept LLM calls at the lowest level — before the model runs and after it responds.
+
+Usage:
+    from forge_crewai import forge_before_llm, forge_after_llm
+
+    # Register hooks (they apply globally to all CrewAI agents)
+    forge_before_llm(policy="safety-controls")
+    forge_after_llm()  # audit all responses
+"""
+
+from __future__ import annotations
+
+import logging
+import os
+from typing import Optional
+
+from veritera import Forge
+
+logger = logging.getLogger("forge_crewai")
+
+
+def forge_before_llm(
+    api_key: Optional[str] = None,
+    base_url: str = "https://veritera.ai",
+    agent_id: str = "crewai-agent",
+    policy: Optional[str] = None,
+    fail_closed: bool = True,
+    max_iterations: Optional[int] = None,
+):
+    """Register a CrewAI @before_llm_call hook that verifies through Forge.
+
+    This hook runs before every LLM call in the crew. It can block execution
+    by returning False.
+
+    Args:
+        api_key: Forge API key (or set VERITERA_API_KEY env var).
+        policy: Policy to evaluate against.
+        fail_closed: If True, block LLM calls when Forge API is unreachable.
+        max_iterations: If set, block after this many iterations (safety limit).
+    """
+    try:
+        from crewai.hooks import before_llm_call, LLMCallHookContext
+    except ImportError:
+        logger.warning("CrewAI hooks not available — requires crewai>=0.80")
+        return None
+
+    key = api_key or os.environ.get("VERITERA_API_KEY", "")
+    client = Forge(api_key=key, base_url=base_url, fail_closed=fail_closed)
+
+    @before_llm_call
+    def _forge_pre_check(context: LLMCallHookContext):
+        # Safety limit on iterations
+        if max_iterations and hasattr(context, "iterations"):
+            if context.iterations > max_iterations:
+                logger.warning("Forge: iteration limit exceeded (%d)", context.iterations)
+                return False
+
+        agent_role = context.agent.role if hasattr(context, "agent") and context.agent else "unknown"
+        task_desc = ""
+        if hasattr(context, "task") and context.task:
+            task_desc = getattr(context.task, "description", "")[:500]
+
+        try:
+            result = client.verify_sync(
+                action=f"llm.call.{agent_role}",
+                agent_id=agent_id,
+                params={
+                    "agent_role": agent_role,
+                    "task": task_desc,
+                    "iterations": getattr(context, "iterations", 0),
+                },
+                policy=policy,
+            )
+        except Exception as exc:
+            logger.error("Forge before_llm_call error: %s", exc)
+            return None if not fail_closed else False
+
+        if not result.verified:
+            logger.warning("Forge DENIED LLM call for %s: %s", agent_role, result.reason)
+            return False
+
+        return None  # Allow
+
+    return _forge_pre_check
+
+
+def forge_after_llm(
+    api_key: Optional[str] = None,
+    base_url: str = "https://veritera.ai",
+    agent_id: str = "crewai-agent",
+    policy: Optional[str] = None,
+):
+    """Register a CrewAI @after_llm_call hook that audits responses through Forge.
+
+    This hook logs every LLM response to the Forge audit trail.
+    It does not block — use forge_before_llm for blocking.
+    """
+    try:
+        from crewai.hooks import after_llm_call, LLMCallHookContext
+    except ImportError:
+        logger.warning("CrewAI hooks not available — requires crewai>=0.80")
+        return None
+
+    key = api_key or os.environ.get("VERITERA_API_KEY", "")
+    client = Forge(api_key=key, base_url=base_url, fail_closed=False)
+
+    @after_llm_call
+    def _forge_post_audit(context: LLMCallHookContext):
+        response_text = getattr(context, "response", "")
+        if response_text:
+            response_text = str(response_text)[:2000]
+
+        agent_role = context.agent.role if hasattr(context, "agent") and context.agent else "unknown"
+
+        try:
+            client.verify_sync(
+                action=f"llm.response.{agent_role}",
+                agent_id=agent_id,
+                params={
+                    "response_preview": response_text[:500],
+                    "agent_role": agent_role,
+                },
+                policy=policy,
+            )
+        except Exception as exc:
+            logger.debug("Forge after_llm_call audit error (non-blocking): %s", exc)
+
+        return None  # Keep original response
+
+    return _forge_post_audit

crewai_forge-0.1.0/forge_crewai/tool.py

@@ -0,0 +1,121 @@
+"""Forge Verify tool for CrewAI agents.
+
+A CrewAI BaseTool that verifies actions through the Forge /v1/verify API.
+Agents use this tool to check whether an action is allowed before executing it.
+"""
+
+from __future__ import annotations
+
+import json
+import logging
+import os
+from typing import Any, Optional, Type
+
+from pydantic import BaseModel, Field
+from veritera import Forge
+
+logger = logging.getLogger("forge_crewai")
+
+
+class ForgeVerifyInput(BaseModel):
+    """Input schema for the Forge Verify tool."""
+    action: str = Field(
+        ...,
+        description="The action to verify (e.g. 'payment.create', 'email.send', 'db.delete')"
+    )
+    params: str = Field(
+        default="{}",
+        description="JSON string of action parameters (e.g. '{\"amount\": 100, \"to\": \"user@example.com\"}')"
+    )
+
+
+class ForgeVerifyTool:
+    """CrewAI tool that verifies agent actions through Forge policies.
+
+    Usage:
+        from forge_crewai import ForgeVerifyTool
+
+        tool = ForgeVerifyTool(policy="finance-controls")
+        agent = Agent(
+            role="Financial Analyst",
+            tools=[tool],
+        )
+
+    Args:
+        api_key: Forge API key (or set VERITERA_API_KEY env var).
+        base_url: Forge API endpoint.
+        agent_id: Identifier for this agent in Forge audit logs.
+        policy: Default policy to evaluate against.
+        fail_closed: If True (default), deny when Forge API is unreachable.
+    """
+
+    name: str = "forge_verify"
+    description: str = (
+        "Verify an AI agent action against security policies before executing it. "
+        "Call this BEFORE performing any sensitive action (payments, emails, deletions, API calls). "
+        "Returns APPROVED or DENIED with a reason."
+    )
+
+    def __init__(
+        self,
+        api_key: Optional[str] = None,
+        base_url: str = "https://veritera.ai",
+        agent_id: str = "crewai-agent",
+        policy: Optional[str] = None,
+        fail_closed: bool = True,
+        timeout: float = 10.0,
+    ):
+        key = api_key or os.environ.get("VERITERA_API_KEY", "")
+        if not key:
+            raise ValueError(
+                "Forge API key required. Pass api_key= or set VERITERA_API_KEY env var."
+            )
+        self._client = Forge(
+            api_key=key,
+            base_url=base_url,
+            timeout=timeout,
+            fail_closed=fail_closed,
+        )
+        self._agent_id = agent_id
+        self._policy = policy
+
+    def run(self, action: str, params: str = "{}") -> str:
+        """Verify an action against Forge policies.
+
+        Args:
+            action: The action identifier (e.g. 'payment.create').
+            params: JSON string of action parameters.
+
+        Returns:
+            Verification result string (APPROVED or DENIED with details).
+        """
+        try:
+            parsed_params = json.loads(params) if isinstance(params, str) else params
+        except (json.JSONDecodeError, TypeError):
+            parsed_params = {"raw": str(params)}
+
+        try:
+            result = self._client.verify_sync(
+                action=action,
+                agent_id=self._agent_id,
+                params=parsed_params,
+                policy=self._policy,
+            )
+        except Exception as exc:
+            logger.error("Forge verify error: %s", exc)
+            return f"ERROR: Verification unavailable — {exc}"
+
+        if result.verified:
+            logger.debug("Forge APPROVED: %s", action)
+            return (
+                f"APPROVED: {result.verdict} | "
+                f"proof_id: {result.proof_id} | "
+                f"latency: {result.latency_ms}ms"
+            )
+
+        logger.warning("Forge DENIED: %s — %s", action, result.reason)
+        return (
+            f"DENIED: {result.reason} | "
+            f"proof_id: {result.proof_id} | "
+            f"Do NOT proceed with this action."
+        )

crewai_forge-0.1.0/pyproject.toml

@@ -0,0 +1,33 @@
+[project]
+name = "crewai-forge"
+version = "0.1.0"
+description = "Forge Verify tools and guardrails for CrewAI — verify every agent action before execution"
+readme = "README.md"
+license = {text = "MIT"}
+requires-python = ">=3.10"
+authors = [{name = "Veritera AI", email = "engineering@veritera.ai"}]
+keywords = ["veritera", "forge", "crewai", "guardrail", "verification", "ai-safety"]
+classifiers = [
+    "Development Status :: 4 - Beta",
+    "Intended Audience :: Developers",
+    "License :: OSI Approved :: MIT License",
+    "Programming Language :: Python :: 3",
+    "Topic :: Security",
+    "Topic :: Software Development :: Libraries",
+]
+dependencies = [
+    "veritera>=0.2.0",
+    "crewai>=0.80.0",
+]
+
+[project.urls]
+Homepage = "https://veritera.ai"
+Documentation = "https://veritera.ai/docs"
+Repository = "https://github.com/VeriteraAI/crewai-forge"
+
+[build-system]
+requires = ["setuptools>=68.0"]
+build-backend = "setuptools.build_meta"
+
+[tool.setuptools.packages.find]
+include = ["forge_crewai*"]

crewai_forge-0.1.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+