PyPI - decodingtrust-agent-sdk - Versions diffs - 0.1.0__py3-none-any.whl - Mend

decodingtrust-agent-sdk 0.1.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (374) hide show

agent/__init__.py +30 -0
agent/claudesdk/__init__.py +8 -0
agent/claudesdk/example.py +221 -0
agent/claudesdk/src/__init__.py +8 -0
agent/claudesdk/src/agent.py +400 -0
agent/claudesdk/src/mcp_proxy.py +409 -0
agent/claudesdk/src/utils.py +420 -0
agent/googleadk/__init__.py +15 -0
agent/googleadk/example.py +237 -0
agent/googleadk/src/__init__.py +12 -0
agent/googleadk/src/agent.py +401 -0
agent/googleadk/src/mcp_wrapper.py +163 -0
agent/googleadk/src/utils.py +602 -0
agent/langchain/__init__.py +8 -0
agent/langchain/example.py +213 -0
agent/langchain/src/__init__.py +8 -0
agent/langchain/src/agent.py +645 -0
agent/langchain/src/utils.py +433 -0
agent/openaisdk/__init__.py +17 -0
agent/openaisdk/example.py +228 -0
agent/openaisdk/src/__init__.py +12 -0
agent/openaisdk/src/agent.py +491 -0
agent/openaisdk/src/agent_wrapper.py +143 -0
agent/openaisdk/src/mcp_wrapper.py +395 -0
agent/openaisdk/src/utils.py +493 -0
agent/openclaw/__init__.py +10 -0
agent/openclaw/example.py +251 -0
agent/openclaw/src/__init__.py +14 -0
agent/openclaw/src/agent.py +930 -0
agent/openclaw/src/helpers/__init__.py +1 -0
agent/openclaw/src/helpers/auth_helpers.py +55 -0
agent/openclaw/src/mcp_proxy.py +564 -0
agent/openclaw/src/plugin_generator.py +231 -0
agent/openclaw/src/utils.py +341 -0
agent/pocketflow/__init__.py +18 -0
agent/pocketflow/example.py +221 -0
agent/pocketflow/prompts/react_agent.py +46 -0
agent/pocketflow/src/__init__.py +6 -0
agent/pocketflow/src/agent.py +507 -0
agent/pocketflow/src/agent_wrapper.py +159 -0
agent/pocketflow/src/async_helper.py +92 -0
agent/pocketflow/src/mcp_react_agent.py +279 -0
agent/pocketflow/src/native_agent.py +74 -0
agent/pocketflow/src/nodes.py +467 -0
benchmark/__init__.py +0 -0
benchmark/browser/benign.jsonl +34 -0
benchmark/browser/direct.jsonl +85 -0
benchmark/browser/indirect.jsonl +82 -0
benchmark/code/benign.jsonl +0 -0
benchmark/code/direct.jsonl +121 -0
benchmark/code/indirect.jsonl +165 -0
benchmark/crm/benign.jsonl +165 -0
benchmark/crm/direct.jsonl +90 -0
benchmark/crm/indirect.jsonl +150 -0
benchmark/customer-service/benign.jsonl +160 -0
benchmark/customer-service/direct.jsonl +100 -0
benchmark/customer-service/indirect.jsonl +101 -0
benchmark/finance/benign.jsonl +0 -0
benchmark/finance/direct.jsonl +200 -0
benchmark/finance/indirect.jsonl +200 -0
benchmark/legal/benign.jsonl +0 -0
benchmark/legal/direct.jsonl +200 -0
benchmark/legal/indirect.jsonl +200 -0
benchmark/macos/benign.jsonl +30 -0
benchmark/macos/direct.jsonl +50 -0
benchmark/macos/indirect.jsonl +50 -0
benchmark/medical/benign.jsonl +642 -0
benchmark/medical/direct.jsonl +229 -0
benchmark/medical/indirect.jsonl +222 -0
benchmark/os-filesystem/benign.jsonl +200 -0
benchmark/os-filesystem/direct.jsonl +200 -0
benchmark/os-filesystem/indirect.jsonl +200 -0
benchmark/research/benign.jsonl +0 -0
benchmark/research/direct.jsonl +119 -0
benchmark/research/indirect.jsonl +125 -0
benchmark/telecom/benign.jsonl +120 -0
benchmark/telecom/direct.jsonl +161 -0
benchmark/telecom/indirect.jsonl +166 -0
benchmark/travel/benign.jsonl +130 -0
benchmark/travel/direct.jsonl +105 -0
benchmark/travel/indirect.jsonl +120 -0
benchmark/windows/benign.jsonl +100 -0
benchmark/windows/direct.jsonl +140 -0
benchmark/windows/indirect.jsonl +107 -0
benchmark/workflow/benign.jsonl +335 -0
benchmark/workflow/direct.jsonl +78 -0
benchmark/workflow/indirect.jsonl +107 -0
cli/__init__.py +5 -0
cli/main.py +182 -0
cli/scaffold.py +334 -0
decodingtrust_agent_sdk-0.1.0.dist-info/METADATA +642 -0
decodingtrust_agent_sdk-0.1.0.dist-info/RECORD +374 -0
decodingtrust_agent_sdk-0.1.0.dist-info/WHEEL +5 -0
decodingtrust_agent_sdk-0.1.0.dist-info/entry_points.txt +2 -0
decodingtrust_agent_sdk-0.1.0.dist-info/licenses/LICENSE +201 -0
decodingtrust_agent_sdk-0.1.0.dist-info/top_level.txt +6 -0
dt_arena/config/env.yaml +515 -0
dt_arena/config/injection_mcp.yaml +430 -0
dt_arena/config/mcp.yaml +642 -0
dt_arena/envs/arxiv/docker-compose-hub.yml +31 -0
dt_arena/envs/arxiv/docker-compose.yml +36 -0
dt_arena/envs/atlassian/docker/docker-compose.dev.yml +65 -0
dt_arena/envs/atlassian/docker/docker-compose.yml +53 -0
dt_arena/envs/atlassian/docker-compose-hub.yml +57 -0
dt_arena/envs/atlassian/docker-compose.yml +72 -0
dt_arena/envs/bigquery/docker-compose.yml +20 -0
dt_arena/envs/booking/docker-compose.yml +59 -0
dt_arena/envs/calendar/docker-compose-hub.yml +30 -0
dt_arena/envs/calendar/docker-compose.yml +42 -0
dt_arena/envs/custom-website/docker-compose.yml +6 -0
dt_arena/envs/customer_service/docker-compose.yml +59 -0
dt_arena/envs/databricks/docker-compose-hub.yml +47 -0
dt_arena/envs/databricks/docker-compose.yml +51 -0
dt_arena/envs/ecommerce/docker-compose.yml +6 -0
dt_arena/envs/ers/docker-compose.yml +36 -0
dt_arena/envs/ers/hrms/docker/docker-compose.yml +31 -0
dt_arena/envs/finance/docker-compose.yml +23 -0
dt_arena/envs/github/docker/docker-compose-hub.yml +50 -0
dt_arena/envs/github/docker/docker-compose.yml +50 -0
dt_arena/envs/gmail/docker-compose-hub.yml +51 -0
dt_arena/envs/gmail/docker-compose.yml +65 -0
dt_arena/envs/google-form/docker-compose-hub.yml +33 -0
dt_arena/envs/google-form/docker-compose.yml +41 -0
dt_arena/envs/googledocs/docker-compose-hub.yml +61 -0
dt_arena/envs/googledocs/docker-compose.yml +78 -0
dt_arena/envs/hospital/docker-compose-hub.yml +25 -0
dt_arena/envs/hospital/docker-compose.yml +27 -0
dt_arena/envs/legal/docker-compose.yml +22 -0
dt_arena/envs/linkedin/docker-compose.yml +63 -0
dt_arena/envs/macos/docker-compose.yml +79 -0
dt_arena/envs/os-filesystem/docker-compose-hub.yml +16 -0
dt_arena/envs/os-filesystem/docker-compose.yml +20 -0
dt_arena/envs/paypal/docker-compose-hub.yml +48 -0
dt_arena/envs/paypal/docker-compose.yml +63 -0
dt_arena/envs/research/docker-compose-hub.yml +13 -0
dt_arena/envs/research/docker-compose.yml +24 -0
dt_arena/envs/salesforce_crm/docker-compose-hub.yaml +45 -0
dt_arena/envs/salesforce_crm/docker-compose.yaml +49 -0
dt_arena/envs/slack/docker-compose-hub.yml +28 -0
dt_arena/envs/slack/docker-compose.yml +41 -0
dt_arena/envs/snowflake/docker-compose-hub.yml +41 -0
dt_arena/envs/snowflake/docker-compose.yml +44 -0
dt_arena/envs/telecom/docker-compose-hub.yml +16 -0
dt_arena/envs/telecom/docker-compose.yml +17 -0
dt_arena/envs/telegram/docker-compose-hub.yml +57 -0
dt_arena/envs/telegram/docker-compose.yml +62 -0
dt_arena/envs/terminal/docker-compose-hub.yml +12 -0
dt_arena/envs/terminal/docker-compose.yml +26 -0
dt_arena/envs/travel/docker-compose-hub.yml +19 -0
dt_arena/envs/travel/docker-compose.yml +19 -0
dt_arena/envs/whatsapp/docker-compose-hub.yml +61 -0
dt_arena/envs/whatsapp/docker-compose.yml +78 -0
dt_arena/envs/windows/docker-compose.yml +71 -0
dt_arena/envs/zoom/docker-compose-hub.yml +27 -0
dt_arena/envs/zoom/docker-compose.yml +40 -0
dt_arena/injection_mcp_server/atlassian/env_injection.py +134 -0
dt_arena/injection_mcp_server/calendar/env_injection.py +217 -0
dt_arena/injection_mcp_server/custom_website/env_injection.py +97 -0
dt_arena/injection_mcp_server/customer_service/env_injection.py +659 -0
dt_arena/injection_mcp_server/databricks/env_injection.py +255 -0
dt_arena/injection_mcp_server/ecommerce/env_injection.py +110 -0
dt_arena/injection_mcp_server/finance/env_injection.py +85 -0
dt_arena/injection_mcp_server/github/env_injection.py +206 -0
dt_arena/injection_mcp_server/gmail/env_injection.py +211 -0
dt_arena/injection_mcp_server/google_form/env_injection.py +186 -0
dt_arena/injection_mcp_server/googledocs/env_injection.py +44 -0
dt_arena/injection_mcp_server/hospital/env_injection.py +43 -0
dt_arena/injection_mcp_server/legal/env_injection.py +229 -0
dt_arena/injection_mcp_server/macos/env_injection.py +272 -0
dt_arena/injection_mcp_server/os-filesystem/env_injection.py +341 -0
dt_arena/injection_mcp_server/paypal/env_injection.py +268 -0
dt_arena/injection_mcp_server/research/env_injection.py +616 -0
dt_arena/injection_mcp_server/salesforce/env_injection.py +514 -0
dt_arena/injection_mcp_server/slack/env_injection.py +265 -0
dt_arena/injection_mcp_server/snowflake/env_injection.py +230 -0
dt_arena/injection_mcp_server/telecom/env_injection.py +503 -0
dt_arena/injection_mcp_server/telegram/env_injection.py +171 -0
dt_arena/injection_mcp_server/terminal/env_injection.py +523 -0
dt_arena/injection_mcp_server/travel/env_injection.py +173 -0
dt_arena/injection_mcp_server/whatsapp/env_injection.py +185 -0
dt_arena/injection_mcp_server/windows/env_injection.py +943 -0
dt_arena/injection_mcp_server/zoom/env_injection.py +216 -0
dt_arena/mcp_server/atlassian/main.py +1554 -0
dt_arena/mcp_server/atlassian/test_server.py +66 -0
dt_arena/mcp_server/bigquery/main.py +333 -0
dt_arena/mcp_server/booking/main.py +310 -0
dt_arena/mcp_server/browser/main.py +1741 -0
dt_arena/mcp_server/calendar/example_multi_user.py +162 -0
dt_arena/mcp_server/calendar/main.py +792 -0
dt_arena/mcp_server/calendar/test_mcp.py +135 -0
dt_arena/mcp_server/customer_service/main.py +1063 -0
dt_arena/mcp_server/databricks/main.py +566 -0
dt_arena/mcp_server/databricks/probe.py +102 -0
dt_arena/mcp_server/ers/main.py +845 -0
dt_arena/mcp_server/finance/__init__.py +87 -0
dt_arena/mcp_server/finance/core/__init__.py +12 -0
dt_arena/mcp_server/finance/core/data_loader.py +558 -0
dt_arena/mcp_server/finance/core/portfolio.py +565 -0
dt_arena/mcp_server/finance/evaluation/__init__.py +20 -0
dt_arena/mcp_server/finance/evaluation/evaluator.py +217 -0
dt_arena/mcp_server/finance/evaluation/logger.py +137 -0
dt_arena/mcp_server/finance/injection/__init__.py +66 -0
dt_arena/mcp_server/finance/injection/config.py +176 -0
dt_arena/mcp_server/finance/injection/content.py +755 -0
dt_arena/mcp_server/finance/injection/html.py +409 -0
dt_arena/mcp_server/finance/injection/locations.py +167 -0
dt_arena/mcp_server/finance/injection/methods.py +193 -0
dt_arena/mcp_server/finance/injection/presets.py +1023 -0
dt_arena/mcp_server/finance/main.py +361 -0
dt_arena/mcp_server/finance/run_mcp.py +21 -0
dt_arena/mcp_server/finance/run_web.py +26 -0
dt_arena/mcp_server/finance/server/__init__.py +41 -0
dt_arena/mcp_server/finance/server/extractor.py +1453 -0
dt_arena/mcp_server/finance/server/extractor_minimal.py +292 -0
dt_arena/mcp_server/finance/server/extractor_simple.py +1164 -0
dt_arena/mcp_server/finance/server/injection_mcp.py +865 -0
dt_arena/mcp_server/finance/server/mcp.py +451 -0
dt_arena/mcp_server/finance/server/tools/__init__.py +23 -0
dt_arena/mcp_server/finance/server/tools/account.py +88 -0
dt_arena/mcp_server/finance/server/tools/browsing.py +328 -0
dt_arena/mcp_server/finance/server/tools/social.py +73 -0
dt_arena/mcp_server/finance/server/tools/trading.py +242 -0
dt_arena/mcp_server/finance/server/tools/utility.py +49 -0
dt_arena/mcp_server/finance/server/web.py +2139 -0
dt_arena/mcp_server/finance/tasks/benchmark/__init__.py +28 -0
dt_arena/mcp_server/finance/tasks/benchmark/attack_pool.py +3026 -0
dt_arena/mcp_server/finance/tasks/benchmark/attack_runner.py +1315 -0
dt_arena/mcp_server/finance/tasks/benchmark/finra_requirements.py +1335 -0
dt_arena/mcp_server/finance/tasks/benchmark/finra_tasks.py +3665 -0
dt_arena/mcp_server/finance/tasks/benchmark/malicious_tasks.py +2673 -0
dt_arena/mcp_server/finance/tasks/redteam_suite/run_redteam_suite.py +1713 -0
dt_arena/mcp_server/finance/test_mcp_tools.py +476 -0
dt_arena/mcp_server/github/main.py +441 -0
dt_arena/mcp_server/gmail/main.py +1004 -0
dt_arena/mcp_server/google_form/main.py +141 -0
dt_arena/mcp_server/googledocs/main.py +458 -0
dt_arena/mcp_server/hospital/mcp_server.py +458 -0
dt_arena/mcp_server/legal/__init__.py +9 -0
dt_arena/mcp_server/legal/core/__init__.py +14 -0
dt_arena/mcp_server/legal/core/courtlistener_store.py +762 -0
dt_arena/mcp_server/legal/core/data_loader.py +266 -0
dt_arena/mcp_server/legal/core/document_store.py +197 -0
dt_arena/mcp_server/legal/core/matter_manager.py +466 -0
dt_arena/mcp_server/legal/main.py +89 -0
dt_arena/mcp_server/legal/scripts/collect_data.py +988 -0
dt_arena/mcp_server/legal/server/__init__.py +14 -0
dt_arena/mcp_server/legal/server/mcp.py +2330 -0
dt_arena/mcp_server/macos/client_test.py +270 -0
dt_arena/mcp_server/macos/mcp_server.py +285 -0
dt_arena/mcp_server/os-filesystem/main.py +1380 -0
dt_arena/mcp_server/paypal/main.py +501 -0
dt_arena/mcp_server/research/main.py +777 -0
dt_arena/mcp_server/salesforce/main.py +2006 -0
dt_arena/mcp_server/slack/main.py +318 -0
dt_arena/mcp_server/snowflake/main.py +612 -0
dt_arena/mcp_server/snowflake/probe.py +183 -0
dt_arena/mcp_server/telecom/mcp_client.py +423 -0
dt_arena/mcp_server/telecom/mcp_server.py +1059 -0
dt_arena/mcp_server/telegram/main.py +338 -0
dt_arena/mcp_server/terminal/main.py +163 -0
dt_arena/mcp_server/travel/client_test.py +16 -0
dt_arena/mcp_server/travel/mcp_server.py +404 -0
dt_arena/mcp_server/whatsapp/main.py +318 -0
dt_arena/mcp_server/windows/client_test.py +270 -0
dt_arena/mcp_server/windows/mcp_server.py +218 -0
dt_arena/mcp_server/zoom/main.py +466 -0
dt_arena/src/__init__.py +0 -0
dt_arena/src/hooks/__init__.py +0 -0
dt_arena/src/hooks/audit_log.py +30 -0
dt_arena/src/hooks/hooks.json +3 -0
dt_arena/src/run_benign.py +142 -0
dt_arena/src/types/__init__.py +0 -0
dt_arena/src/types/agent.py +441 -0
dt_arena/src/types/attacks.py +2 -0
dt_arena/src/types/environment.py +2 -0
dt_arena/src/types/hooks.py +174 -0
dt_arena/src/types/judge.py +52 -0
dt_arena/src/types/red_teaming_trajectory.py +385 -0
dt_arena/src/types/task.py +260 -0
dt_arena/src/types/trajectory.py +315 -0
dt_arena/utils/__init__.py +1 -0
dt_arena/utils/atlassian/__init__.py +27 -0
dt_arena/utils/atlassian/helpers.py +520 -0
dt_arena/utils/bigquery/__init__.py +1 -0
dt_arena/utils/bigquery/helpers.py +246 -0
dt_arena/utils/calendar/__init__.py +1 -0
dt_arena/utils/calendar/helpers.py +87 -0
dt_arena/utils/customer_service/__init__.py +17 -0
dt_arena/utils/customer_service/cs_env_client.py +940 -0
dt_arena/utils/customer_service/helpers.py +339 -0
dt_arena/utils/customer_service/judges/__init__.py +20 -0
dt_arena/utils/customer_service/judges/abusive_comms.py +149 -0
dt_arena/utils/customer_service/judges/bulk_destructive.py +202 -0
dt_arena/utils/customer_service/judges/cross_customer.py +481 -0
dt_arena/utils/customer_service/judges/email_exfiltration.py +320 -0
dt_arena/utils/customer_service/judges/financial_fraud.py +221 -0
dt_arena/utils/customer_service/judges/llm_utils.py +264 -0
dt_arena/utils/customer_service/judges/pii_disclosure.py +837 -0
dt_arena/utils/customer_service/judges/policy_misrep.py +44 -0
dt_arena/utils/customer_service/judges/text_utils.py +21 -0
dt_arena/utils/databricks/__init__.py +2 -0
dt_arena/utils/databricks/helpers.py +210 -0
dt_arena/utils/finance/__init__.py +0 -0
dt_arena/utils/finance/helpers.py +263 -0
dt_arena/utils/github/__init__.py +1 -0
dt_arena/utils/github/helpers.py +249 -0
dt_arena/utils/gmail/__init__.py +1 -0
dt_arena/utils/gmail/helpers.py +344 -0
dt_arena/utils/google_form/__init__.py +2 -0
dt_arena/utils/google_form/helpers.py +133 -0
dt_arena/utils/legal/__init__.py +0 -0
dt_arena/utils/legal/helpers.py +228 -0
dt_arena/utils/macos/__init__.py +0 -0
dt_arena/utils/macos/env_setup.py +215 -0
dt_arena/utils/macos/helpers.py +61 -0
dt_arena/utils/os_filesystem/__init__.py +1 -0
dt_arena/utils/os_filesystem/helpers.py +366 -0
dt_arena/utils/paypal/__init__.py +1 -0
dt_arena/utils/paypal/helpers.py +178 -0
dt_arena/utils/port_allocator.py +266 -0
dt_arena/utils/research/__init__.py +0 -0
dt_arena/utils/research/helpers.py +251 -0
dt_arena/utils/salesforce/__init__.py +1 -0
dt_arena/utils/salesforce/helpers.py +719 -0
dt_arena/utils/slack/__init__.py +1 -0
dt_arena/utils/slack/helpers.py +176 -0
dt_arena/utils/snowflake/__init__.py +1 -0
dt_arena/utils/snowflake/helpers.py +166 -0
dt_arena/utils/telecom/__init__.py +1 -0
dt_arena/utils/telecom/helpers.py +760 -0
dt_arena/utils/telegram/__init__.py +0 -0
dt_arena/utils/telegram/helpers.py +174 -0
dt_arena/utils/terminal/__init__.py +0 -0
dt_arena/utils/terminal/helpers.py +20 -0
dt_arena/utils/travel/__init__.py +0 -0
dt_arena/utils/travel/env_client.py +537 -0
dt_arena/utils/travel/llm_judge.py +137 -0
dt_arena/utils/travel/prompts.py +64 -0
dt_arena/utils/utils/__init__.py +122 -0
dt_arena/utils/whatsapp/__init__.py +0 -0
dt_arena/utils/whatsapp/helpers.py +226 -0
dt_arena/utils/windows/__init__.py +0 -0
dt_arena/utils/windows/env_reset.py +224 -0
dt_arena/utils/windows/env_setup.py +280 -0
dt_arena/utils/windows/exfil_helpers.py +170 -0
dt_arena/utils/windows/helpers.py +74 -0
dt_arena/utils/zoom/__init__.py +1 -0
dt_arena/utils/zoom/helpers.py +70 -0
eval/__init__.py +1 -0
eval/evaluation.py +426 -0
eval/task_runner.py +449 -0
utils/__init__.py +148 -0
utils/agent_helpers.py +308 -0
utils/agent_wrapper.py +189 -0
utils/compose_utils.py +135 -0
utils/config.py +77 -0
utils/env_helpers.py +104 -0
utils/eval_stats.py +88 -0
utils/injection_helpers.py +429 -0
utils/injection_mcp_helpers.py +152 -0
utils/judge_helpers.py +181 -0
utils/judge_utils.py +472 -0
utils/llm.py +196 -0
utils/logging.py +45 -0
utils/mcp_helpers.py +232 -0
utils/mcp_manager.py +235 -0
utils/memory_guard.py +18 -0
utils/red_teaming_sandbox.py +476 -0
utils/reset_helpers.py +318 -0
utils/resource_manager.py +370 -0
utils/skill_helpers.py +447 -0
utils/task_executor.py +904 -0
utils/task_helpers.py +270 -0
utils/template_helpers.py +179 -0

dt_arena/utils/salesforce/helpers.py ADDED Viewed

@@ -0,0 +1,719 @@
+"""
+Salesforce CRM helpers for end-to-end verification in judges.
+These helpers directly query the Salesforce API to verify that the agent's
+actions have had the expected effect on the environment state.
+Usage in judges:
+    from dt_arena.utils.salesforce.helpers import configure_salesforce, search_opportunities
+    from dt_arena.utils.utils import get_mcp_env_var
+    class Judge:
+        def __init__(self):
+            config = load_task_config(_task_dir)
+            configure_salesforce(
+                base_url=get_mcp_env_var(config, "salesforce", "SALESFORCE_BASE_URL"),
+                grant_type=get_mcp_env_var(config, "salesforce", "SALESFORCE_GRANT_TYPE"),
+                client_id=get_mcp_env_var(config, "salesforce", "SALESFORCE_CLIENT_ID"),
+                client_secret=get_mcp_env_var(config, "salesforce", "SALESFORCE_CLIENT_SECRET"),
+            )
+"""
+from __future__ import annotations
+import http.client
+import json
+import urllib.parse as urlparse
+from typing import List, Dict, Any, Tuple, Optional
+# Module-level configuration - set by configure_salesforce()
+_salesforce_config: Dict[str, str] = {}
+def configure_salesforce(
+    base_url: Optional[str] = None,
+    grant_type: Optional[str] = None,
+    client_id: Optional[str] = None,
+    client_secret: Optional[str] = None,
+    username: Optional[str] = None,
+    password: Optional[str] = None,
+    access_token: Optional[str] = None,
+) -> None:
+    """Configure Salesforce connection parameters.
+    Call this once in your judge's __init__ before using any helper functions.
+    All parameters should be obtained via get_mcp_env_var() which resolves
+    template variables like ${SALESFORCE_API_PORT}.
+    Args:
+        base_url: Salesforce API base URL (e.g., "http://127.0.0.1:8080")
+        grant_type: OAuth grant type ("client_credentials" or "password")
+        client_id: OAuth client ID
+        client_secret: OAuth client secret
+        username: Username for password grant
+        password: Password for password grant
+        access_token: Pre-existing access token (optional)
+    """
+    global _salesforce_config
+    _salesforce_config = {
+        "base_url": (base_url or "").rstrip("/"),
+        "grant_type": grant_type or "client_credentials",
+        "client_id": client_id or "",
+        "client_secret": client_secret or "",
+        "username": username or "",
+        "password": password or "",
+        "access_token": access_token or "",
+    }
+def _get_config() -> Dict[str, str]:
+    """Get Salesforce configuration.
+    Returns the configuration set by configure_salesforce().
+    Raises an error if not configured.
+    """
+    if not _salesforce_config or not _salesforce_config.get("base_url"):
+        raise RuntimeError(
+            "Salesforce not configured. Call configure_salesforce() first in your judge's __init__. "
+            "See module docstring for usage example."
+        )
+    return _salesforce_config
+def _get_host_port(base_url: str) -> Tuple[str, int]:
+    """Parse host and port from base URL."""
+    parsed = urlparse.urlparse(base_url)
+    host = parsed.hostname or "127.0.0.1"
+    port = parsed.port or (443 if parsed.scheme == "https" else 80)
+    return host, port
+def _get_access_token() -> str:
+    """Get an access token for Salesforce API."""
+    global _salesforce_config
+    config = _get_config()
+    # Use cached token if available
+    if config["access_token"]:
+        return config["access_token"]
+    # Otherwise obtain a new token
+    host, port = _get_host_port(config["base_url"])
+    if config["grant_type"] == "password":
+        body = urlparse.urlencode({
+            "grant_type": "password",
+            "client_id": config["client_id"],
+            "client_secret": config["client_secret"],
+            "username": config["username"],
+            "password": config["password"],
+        })
+    else:  # client_credentials
+        body = urlparse.urlencode({
+            "grant_type": "client_credentials",
+            "client_id": config["client_id"],
+            "client_secret": config["client_secret"],
+        })
+    headers = {
+        "Content-Type": "application/x-www-form-urlencoded",
+        "Accept": "application/json",
+    }
+    conn = http.client.HTTPConnection(host, port, timeout=30)
+    conn.request("POST", "/Api/access_token", body=body, headers=headers)
+    resp = conn.getresponse()
+    data = resp.read()
+    conn.close()
+    if resp.status == 200:
+        try:
+            result = json.loads(data.decode())
+            token = result.get("access_token") or result.get("token")
+            if token:
+                # Cache in module config
+                _salesforce_config["access_token"] = token
+                return token
+        except Exception:
+            pass
+    raise RuntimeError(f"Failed to obtain Salesforce access token: {resp.status} {data.decode()[:200]}")
+def _api_request(
+    method: str,
+    path: str,
+    token: Optional[str] = None,
+    body: Optional[Dict[str, Any]] = None,
+    params: Optional[Dict[str, Any]] = None,
+    _retried: bool = False,
+) -> Dict[str, Any]:
+    """Make an API request to Salesforce."""
+    config = _get_config()
+    host, port = _get_host_port(config["base_url"])
+    if token is None:
+        token = _get_access_token()
+    headers = {
+        "Authorization": f"Bearer {token}",
+        "Accept": "application/vnd.api+json",
+        "Content-Type": "application/vnd.api+json",
+    }
+    url = path
+    if params:
+        url = f"{path}?{urlparse.urlencode(params)}"
+    conn = http.client.HTTPConnection(host, port, timeout=30)
+    if body:
+        conn.request(method, url, body=json.dumps(body), headers=headers)
+    else:
+        conn.request(method, url, headers=headers)
+    resp = conn.getresponse()
+    data = resp.read()
+    conn.close()
+    # On 401, clear cached token and retry once with a fresh token.
+    # reset-database drops oauth2tokens, invalidating any cached token.
+    if resp.status == 401 and not _retried:
+        global _salesforce_config
+        _salesforce_config["access_token"] = ""
+        return _api_request(method, path, token=None, body=body, params=params, _retried=True)
+    if resp.status >= 200 and resp.status < 300:
+        if data:
+            try:
+                return json.loads(data.decode())
+            except Exception:
+                return {"ok": True, "text": data.decode()}
+        return {"ok": True}
+    return {
+        "error": f"HTTP {resp.status}",
+        "status_code": resp.status,
+        "text": data.decode()[:500] if data else "",
+    }
+# ============ Lead Operations ============
+def list_leads(page: int = 1, page_size: int = 50) -> List[Dict[str, Any]]:
+    """List all leads from the Salesforce environment.
+    Returns:
+        List of lead records with id, type, and attributes.
+    """
+    params = {
+        "page[number]": page,
+        "page[size]": page_size,
+    }
+    result = _api_request("GET", "/Api/V8/module/Leads", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def get_lead_by_id(lead_id: str) -> Optional[Dict[str, Any]]:
+    """Get a specific lead by its ID.
+    Args:
+        lead_id: The GUID of the lead.
+    Returns:
+        Lead record or None if not found.
+    """
+    result = _api_request("GET", f"/Api/V8/module/Leads/{lead_id}")
+    if "error" in result:
+        return None
+    return result.get("data")
+def search_leads_by_name(
+    first_name: Optional[str] = None,
+    last_name: Optional[str] = None,
+    account_name: Optional[str] = None,
+) -> List[Dict[str, Any]]:
+    """Search leads by name fields.
+    Args:
+        first_name: First name to search for.
+        last_name: Last name to search for.
+        account_name: Company/account name to search for.
+    Returns:
+        List of matching lead records.
+    """
+    params: Dict[str, Any] = {
+        "page[number]": 1,
+        "page[size]": 50,
+    }
+    # Build filter params
+    if first_name:
+        params["filter[first_name][eq]"] = first_name
+    if last_name:
+        params["filter[last_name][eq]"] = last_name
+    if account_name:
+        params["filter[account_name][eq]"] = account_name
+    result = _api_request("GET", "/Api/V8/module/Leads", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def find_lead_by_email(email: str) -> Optional[Dict[str, Any]]:
+    """Find a lead by email address.
+    Args:
+        email: Email address to search for.
+    Returns:
+        Lead record or None if not found.
+    """
+    params = {
+        "page[number]": 1,
+        "page[size]": 10,
+        "filter[email1][eq]": email,
+    }
+    result = _api_request("GET", "/Api/V8/module/Leads", params=params)
+    if "error" in result:
+        return None
+    data = result.get("data", [])
+    return data[0] if data else None
+def check_lead_exists(
+    first_name: str,
+    last_name: str,
+    email: Optional[str] = None,
+) -> bool:
+    """Check if a lead with the given name exists.
+    Args:
+        first_name: Lead's first name.
+        last_name: Lead's last name.
+        email: Optional email to also check.
+    Returns:
+        True if a matching lead exists, False otherwise.
+    """
+    leads = search_leads_by_name(first_name=first_name, last_name=last_name)
+    if not leads:
+        return False
+    if email:
+        for lead in leads:
+            attrs = lead.get("attributes", {})
+            if attrs.get("email1") == email:
+                return True
+        return False
+    return len(leads) > 0
+def check_lead_status(lead_id: str, expected_status: str) -> bool:
+    """Check if a lead has the expected status.
+    Args:
+        lead_id: The GUID of the lead.
+        expected_status: Expected status value (e.g., "New", "In Process", "Converted").
+    Returns:
+        True if the lead has the expected status, False otherwise.
+    """
+    lead = get_lead_by_id(lead_id)
+    if not lead:
+        return False
+    attrs = lead.get("attributes", {})
+    return attrs.get("status") == expected_status
+def check_lead_description_contains(lead_id: str, text: str) -> bool:
+    """Check if a lead's description contains specific text.
+    Args:
+        lead_id: The GUID of the lead.
+        text: Text to search for in the description.
+    Returns:
+        True if the description contains the text, False otherwise.
+    """
+    lead = get_lead_by_id(lead_id)
+    if not lead:
+        return False
+    attrs = lead.get("attributes", {})
+    description = attrs.get("description", "") or ""
+    return text.lower() in description.lower()
+# ============ Contact Operations ============
+def list_contacts(page: int = 1, page_size: int = 50) -> List[Dict[str, Any]]:
+    """List all contacts from the Salesforce environment.
+    Returns:
+        List of contact records.
+    """
+    params = {
+        "page[number]": page,
+        "page[size]": page_size,
+    }
+    result = _api_request("GET", "/Api/V8/module/Contacts", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def get_contact_by_id(contact_id: str) -> Optional[Dict[str, Any]]:
+    """Get a specific contact by its ID.
+    Args:
+        contact_id: The GUID of the contact.
+    Returns:
+        Contact record or None if not found.
+    """
+    result = _api_request("GET", f"/Api/V8/module/Contacts/{contact_id}")
+    if "error" in result:
+        return None
+    return result.get("data")
+def search_contacts_by_name(
+    first_name: Optional[str] = None,
+    last_name: Optional[str] = None,
+) -> List[Dict[str, Any]]:
+    """Search contacts by name.
+    Args:
+        first_name: First name to search for.
+        last_name: Last name to search for.
+    Returns:
+        List of matching contact records.
+    """
+    params: Dict[str, Any] = {
+        "page[number]": 1,
+        "page[size]": 50,
+    }
+    if first_name:
+        params["filter[first_name][eq]"] = first_name
+    if last_name:
+        params["filter[last_name][eq]"] = last_name
+    result = _api_request("GET", "/Api/V8/module/Contacts", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def check_contact_exists(
+    first_name: str,
+    last_name: str,
+    email: Optional[str] = None,
+) -> bool:
+    """Check if a contact with the given name exists.
+    Args:
+        first_name: Contact's first name.
+        last_name: Contact's last name.
+        email: Optional email to also check.
+    Returns:
+        True if a matching contact exists, False otherwise.
+    """
+    contacts = search_contacts_by_name(first_name=first_name, last_name=last_name)
+    if not contacts:
+        return False
+    if email:
+        for contact in contacts:
+            attrs = contact.get("attributes", {})
+            if attrs.get("email1") == email:
+                return True
+        return False
+    return len(contacts) > 0
+# ============ Account Operations ============
+def list_accounts(page: int = 1, page_size: int = 50) -> List[Dict[str, Any]]:
+    """List all accounts from the Salesforce environment.
+    Returns:
+        List of account records.
+    """
+    params = {
+        "page[number]": page,
+        "page[size]": page_size,
+    }
+    result = _api_request("GET", "/Api/V8/module/Accounts", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def get_account_by_id(account_id: str) -> Optional[Dict[str, Any]]:
+    """Get a specific account by its ID.
+    Args:
+        account_id: The GUID of the account.
+    Returns:
+        Account record or None if not found.
+    """
+    result = _api_request("GET", f"/Api/V8/module/Accounts/{account_id}")
+    if "error" in result:
+        return None
+    return result.get("data")
+def search_accounts_by_name(name: str) -> List[Dict[str, Any]]:
+    """Search accounts by name.
+    Args:
+        name: Account name to search for.
+    Returns:
+        List of matching account records.
+    """
+    params = {
+        "page[number]": 1,
+        "page[size]": 50,
+        "filter[name][like]": f"%{name}%",
+    }
+    result = _api_request("GET", "/Api/V8/module/Accounts", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def check_account_exists(name: str) -> bool:
+    """Check if an account with the given name exists.
+    Args:
+        name: Account name to search for.
+    Returns:
+        True if a matching account exists, False otherwise.
+    """
+    accounts = search_accounts_by_name(name)
+    return len(accounts) > 0
+# ============ Opportunity Operations ============
+def list_opportunities(page: int = 1, page_size: int = 50) -> List[Dict[str, Any]]:
+    """List all opportunities from the Salesforce environment.
+    Returns:
+        List of opportunity records.
+    """
+    params = {
+        "page[number]": page,
+        "page[size]": page_size,
+    }
+    result = _api_request("GET", "/Api/V8/module/Opportunities", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def get_opportunity_by_id(opportunity_id: str) -> Optional[Dict[str, Any]]:
+    """Get a specific opportunity by its ID.
+    Args:
+        opportunity_id: The GUID of the opportunity.
+    Returns:
+        Opportunity record or None if not found.
+    """
+    result = _api_request("GET", f"/Api/V8/module/Opportunities/{opportunity_id}")
+    if "error" in result:
+        return None
+    return result.get("data")
+def search_opportunities(search_term: str) -> List[Dict[str, Any]]:
+    """Search opportunities by name.
+    Args:
+        search_term: Text to search for in opportunity names.
+    Returns:
+        List of matching opportunity records.
+    """
+    params = {
+        "page[number]": 1,
+        "page[size]": 50,
+        "filter[name][like]": f"%{search_term}%",
+    }
+    result = _api_request("GET", "/Api/V8/module/Opportunities", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+# ============ Generic Record Operations ============
+def get_record(module: str, record_id: str) -> Optional[Dict[str, Any]]:
+    """Get any record by module and ID.
+    Args:
+        module: Module name (e.g., "Leads", "Contacts", "Accounts").
+        record_id: Record GUID.
+    Returns:
+        Record data or None if not found.
+    """
+    result = _api_request("GET", f"/Api/V8/module/{module}/{record_id}")
+    if "error" in result:
+        return None
+    return result.get("data")
+def record_exists(module: str, record_id: str) -> bool:
+    """Check if a record exists.
+    Args:
+        module: Module name.
+        record_id: Record GUID.
+    Returns:
+        True if the record exists, False otherwise.
+    """
+    record = get_record(module, record_id)
+    return record is not None
+def get_relationships(
+    module: str,
+    record_id: str,
+    relationship_name: str,
+) -> List[Dict[str, Any]]:
+    """Get related records for a given relationship.
+    Args:
+        module: Source module name.
+        record_id: Source record GUID.
+        relationship_name: Name of the relationship link.
+    Returns:
+        List of related records.
+    """
+    result = _api_request(
+        "GET",
+        f"/Api/V8/module/{module}/{record_id}/relationships/{relationship_name}",
+    )
+    if "error" in result:
+        return []
+    return result.get("data", [])
+# ============ Additional Helper Functions ============
+def list_leads_by_company(company_name: str) -> List[Dict[str, Any]]:
+    """List all leads from a specific company.
+    Args:
+        company_name: The company/account name to filter by.
+    Returns:
+        List of matching lead records.
+    """
+    return search_leads_by_name(account_name=company_name)
+def find_contact_by_email(email: str) -> Optional[Dict[str, Any]]:
+    """Find a contact by email address.
+    Args:
+        email: Email address to search for.
+    Returns:
+        Contact record or None if not found.
+    """
+    params = {
+        "page[number]": 1,
+        "page[size]": 10,
+        "filter[email1][eq]": email,
+    }
+    result = _api_request("GET", "/Api/V8/module/Contacts", params=params)
+    if "error" in result:
+        return None
+    data = result.get("data", [])
+    return data[0] if data else None
+def list_accounts_by_industry(industry: str) -> List[Dict[str, Any]]:
+    """List all accounts in a specific industry.
+    Args:
+        industry: The industry to filter by (e.g., "Healthcare", "Technology").
+    Returns:
+        List of matching account records.
+    """
+    params = {
+        "page[number]": 1,
+        "page[size]": 50,
+        "filter[industry][eq]": industry,
+    }
+    result = _api_request("GET", "/Api/V8/module/Accounts", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])
+def find_account_by_name(name: str) -> Optional[Dict[str, Any]]:
+    """Find an account by exact name.
+    Args:
+        name: Account name to search for.
+    Returns:
+        Account record or None if not found.
+    """
+    params = {
+        "page[number]": 1,
+        "page[size]": 10,
+        "filter[name][eq]": name,
+    }
+    result = _api_request("GET", "/Api/V8/module/Accounts", params=params)
+    if "error" in result:
+        return None
+    data = result.get("data", [])
+    return data[0] if data else None
+def list_contacts_for_account(account_id: str) -> List[Dict[str, Any]]:
+    """List all contacts associated with an account.
+    Args:
+        account_id: The GUID of the account.
+    Returns:
+        List of contact records linked to the account.
+    """
+    return get_relationships("Accounts", account_id, "contacts")
+def list_cases(page: int = 1, page_size: int = 50) -> List[Dict[str, Any]]:
+    """List all cases from the Salesforce environment.
+    Returns:
+        List of case records.
+    """
+    params = {
+        "page[number]": page,
+        "page[size]": page_size,
+    }
+    result = _api_request("GET", "/Api/V8/module/Cases", params=params)
+    if "error" in result:
+        return []
+    return result.get("data", [])