PyPI - decodingtrust-agent-sdk - Versions diffs - 0.1.0__py3-none-any.whl - Mend

decodingtrust-agent-sdk 0.1.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (374) hide show

agent/__init__.py +30 -0
agent/claudesdk/__init__.py +8 -0
agent/claudesdk/example.py +221 -0
agent/claudesdk/src/__init__.py +8 -0
agent/claudesdk/src/agent.py +400 -0
agent/claudesdk/src/mcp_proxy.py +409 -0
agent/claudesdk/src/utils.py +420 -0
agent/googleadk/__init__.py +15 -0
agent/googleadk/example.py +237 -0
agent/googleadk/src/__init__.py +12 -0
agent/googleadk/src/agent.py +401 -0
agent/googleadk/src/mcp_wrapper.py +163 -0
agent/googleadk/src/utils.py +602 -0
agent/langchain/__init__.py +8 -0
agent/langchain/example.py +213 -0
agent/langchain/src/__init__.py +8 -0
agent/langchain/src/agent.py +645 -0
agent/langchain/src/utils.py +433 -0
agent/openaisdk/__init__.py +17 -0
agent/openaisdk/example.py +228 -0
agent/openaisdk/src/__init__.py +12 -0
agent/openaisdk/src/agent.py +491 -0
agent/openaisdk/src/agent_wrapper.py +143 -0
agent/openaisdk/src/mcp_wrapper.py +395 -0
agent/openaisdk/src/utils.py +493 -0
agent/openclaw/__init__.py +10 -0
agent/openclaw/example.py +251 -0
agent/openclaw/src/__init__.py +14 -0
agent/openclaw/src/agent.py +930 -0
agent/openclaw/src/helpers/__init__.py +1 -0
agent/openclaw/src/helpers/auth_helpers.py +55 -0
agent/openclaw/src/mcp_proxy.py +564 -0
agent/openclaw/src/plugin_generator.py +231 -0
agent/openclaw/src/utils.py +341 -0
agent/pocketflow/__init__.py +18 -0
agent/pocketflow/example.py +221 -0
agent/pocketflow/prompts/react_agent.py +46 -0
agent/pocketflow/src/__init__.py +6 -0
agent/pocketflow/src/agent.py +507 -0
agent/pocketflow/src/agent_wrapper.py +159 -0
agent/pocketflow/src/async_helper.py +92 -0
agent/pocketflow/src/mcp_react_agent.py +279 -0
agent/pocketflow/src/native_agent.py +74 -0
agent/pocketflow/src/nodes.py +467 -0
benchmark/__init__.py +0 -0
benchmark/browser/benign.jsonl +34 -0
benchmark/browser/direct.jsonl +85 -0
benchmark/browser/indirect.jsonl +82 -0
benchmark/code/benign.jsonl +0 -0
benchmark/code/direct.jsonl +121 -0
benchmark/code/indirect.jsonl +165 -0
benchmark/crm/benign.jsonl +165 -0
benchmark/crm/direct.jsonl +90 -0
benchmark/crm/indirect.jsonl +150 -0
benchmark/customer-service/benign.jsonl +160 -0
benchmark/customer-service/direct.jsonl +100 -0
benchmark/customer-service/indirect.jsonl +101 -0
benchmark/finance/benign.jsonl +0 -0
benchmark/finance/direct.jsonl +200 -0
benchmark/finance/indirect.jsonl +200 -0
benchmark/legal/benign.jsonl +0 -0
benchmark/legal/direct.jsonl +200 -0
benchmark/legal/indirect.jsonl +200 -0
benchmark/macos/benign.jsonl +30 -0
benchmark/macos/direct.jsonl +50 -0
benchmark/macos/indirect.jsonl +50 -0
benchmark/medical/benign.jsonl +642 -0
benchmark/medical/direct.jsonl +229 -0
benchmark/medical/indirect.jsonl +222 -0
benchmark/os-filesystem/benign.jsonl +200 -0
benchmark/os-filesystem/direct.jsonl +200 -0
benchmark/os-filesystem/indirect.jsonl +200 -0
benchmark/research/benign.jsonl +0 -0
benchmark/research/direct.jsonl +119 -0
benchmark/research/indirect.jsonl +125 -0
benchmark/telecom/benign.jsonl +120 -0
benchmark/telecom/direct.jsonl +161 -0
benchmark/telecom/indirect.jsonl +166 -0
benchmark/travel/benign.jsonl +130 -0
benchmark/travel/direct.jsonl +105 -0
benchmark/travel/indirect.jsonl +120 -0
benchmark/windows/benign.jsonl +100 -0
benchmark/windows/direct.jsonl +140 -0
benchmark/windows/indirect.jsonl +107 -0
benchmark/workflow/benign.jsonl +335 -0
benchmark/workflow/direct.jsonl +78 -0
benchmark/workflow/indirect.jsonl +107 -0
cli/__init__.py +5 -0
cli/main.py +182 -0
cli/scaffold.py +334 -0
decodingtrust_agent_sdk-0.1.0.dist-info/METADATA +642 -0
decodingtrust_agent_sdk-0.1.0.dist-info/RECORD +374 -0
decodingtrust_agent_sdk-0.1.0.dist-info/WHEEL +5 -0
decodingtrust_agent_sdk-0.1.0.dist-info/entry_points.txt +2 -0
decodingtrust_agent_sdk-0.1.0.dist-info/licenses/LICENSE +201 -0
decodingtrust_agent_sdk-0.1.0.dist-info/top_level.txt +6 -0
dt_arena/config/env.yaml +515 -0
dt_arena/config/injection_mcp.yaml +430 -0
dt_arena/config/mcp.yaml +642 -0
dt_arena/envs/arxiv/docker-compose-hub.yml +31 -0
dt_arena/envs/arxiv/docker-compose.yml +36 -0
dt_arena/envs/atlassian/docker/docker-compose.dev.yml +65 -0
dt_arena/envs/atlassian/docker/docker-compose.yml +53 -0
dt_arena/envs/atlassian/docker-compose-hub.yml +57 -0
dt_arena/envs/atlassian/docker-compose.yml +72 -0
dt_arena/envs/bigquery/docker-compose.yml +20 -0
dt_arena/envs/booking/docker-compose.yml +59 -0
dt_arena/envs/calendar/docker-compose-hub.yml +30 -0
dt_arena/envs/calendar/docker-compose.yml +42 -0
dt_arena/envs/custom-website/docker-compose.yml +6 -0
dt_arena/envs/customer_service/docker-compose.yml +59 -0
dt_arena/envs/databricks/docker-compose-hub.yml +47 -0
dt_arena/envs/databricks/docker-compose.yml +51 -0
dt_arena/envs/ecommerce/docker-compose.yml +6 -0
dt_arena/envs/ers/docker-compose.yml +36 -0
dt_arena/envs/ers/hrms/docker/docker-compose.yml +31 -0
dt_arena/envs/finance/docker-compose.yml +23 -0
dt_arena/envs/github/docker/docker-compose-hub.yml +50 -0
dt_arena/envs/github/docker/docker-compose.yml +50 -0
dt_arena/envs/gmail/docker-compose-hub.yml +51 -0
dt_arena/envs/gmail/docker-compose.yml +65 -0
dt_arena/envs/google-form/docker-compose-hub.yml +33 -0
dt_arena/envs/google-form/docker-compose.yml +41 -0
dt_arena/envs/googledocs/docker-compose-hub.yml +61 -0
dt_arena/envs/googledocs/docker-compose.yml +78 -0
dt_arena/envs/hospital/docker-compose-hub.yml +25 -0
dt_arena/envs/hospital/docker-compose.yml +27 -0
dt_arena/envs/legal/docker-compose.yml +22 -0
dt_arena/envs/linkedin/docker-compose.yml +63 -0
dt_arena/envs/macos/docker-compose.yml +79 -0
dt_arena/envs/os-filesystem/docker-compose-hub.yml +16 -0
dt_arena/envs/os-filesystem/docker-compose.yml +20 -0
dt_arena/envs/paypal/docker-compose-hub.yml +48 -0
dt_arena/envs/paypal/docker-compose.yml +63 -0
dt_arena/envs/research/docker-compose-hub.yml +13 -0
dt_arena/envs/research/docker-compose.yml +24 -0
dt_arena/envs/salesforce_crm/docker-compose-hub.yaml +45 -0
dt_arena/envs/salesforce_crm/docker-compose.yaml +49 -0
dt_arena/envs/slack/docker-compose-hub.yml +28 -0
dt_arena/envs/slack/docker-compose.yml +41 -0
dt_arena/envs/snowflake/docker-compose-hub.yml +41 -0
dt_arena/envs/snowflake/docker-compose.yml +44 -0
dt_arena/envs/telecom/docker-compose-hub.yml +16 -0
dt_arena/envs/telecom/docker-compose.yml +17 -0
dt_arena/envs/telegram/docker-compose-hub.yml +57 -0
dt_arena/envs/telegram/docker-compose.yml +62 -0
dt_arena/envs/terminal/docker-compose-hub.yml +12 -0
dt_arena/envs/terminal/docker-compose.yml +26 -0
dt_arena/envs/travel/docker-compose-hub.yml +19 -0
dt_arena/envs/travel/docker-compose.yml +19 -0
dt_arena/envs/whatsapp/docker-compose-hub.yml +61 -0
dt_arena/envs/whatsapp/docker-compose.yml +78 -0
dt_arena/envs/windows/docker-compose.yml +71 -0
dt_arena/envs/zoom/docker-compose-hub.yml +27 -0
dt_arena/envs/zoom/docker-compose.yml +40 -0
dt_arena/injection_mcp_server/atlassian/env_injection.py +134 -0
dt_arena/injection_mcp_server/calendar/env_injection.py +217 -0
dt_arena/injection_mcp_server/custom_website/env_injection.py +97 -0
dt_arena/injection_mcp_server/customer_service/env_injection.py +659 -0
dt_arena/injection_mcp_server/databricks/env_injection.py +255 -0
dt_arena/injection_mcp_server/ecommerce/env_injection.py +110 -0
dt_arena/injection_mcp_server/finance/env_injection.py +85 -0
dt_arena/injection_mcp_server/github/env_injection.py +206 -0
dt_arena/injection_mcp_server/gmail/env_injection.py +211 -0
dt_arena/injection_mcp_server/google_form/env_injection.py +186 -0
dt_arena/injection_mcp_server/googledocs/env_injection.py +44 -0
dt_arena/injection_mcp_server/hospital/env_injection.py +43 -0
dt_arena/injection_mcp_server/legal/env_injection.py +229 -0
dt_arena/injection_mcp_server/macos/env_injection.py +272 -0
dt_arena/injection_mcp_server/os-filesystem/env_injection.py +341 -0
dt_arena/injection_mcp_server/paypal/env_injection.py +268 -0
dt_arena/injection_mcp_server/research/env_injection.py +616 -0
dt_arena/injection_mcp_server/salesforce/env_injection.py +514 -0
dt_arena/injection_mcp_server/slack/env_injection.py +265 -0
dt_arena/injection_mcp_server/snowflake/env_injection.py +230 -0
dt_arena/injection_mcp_server/telecom/env_injection.py +503 -0
dt_arena/injection_mcp_server/telegram/env_injection.py +171 -0
dt_arena/injection_mcp_server/terminal/env_injection.py +523 -0
dt_arena/injection_mcp_server/travel/env_injection.py +173 -0
dt_arena/injection_mcp_server/whatsapp/env_injection.py +185 -0
dt_arena/injection_mcp_server/windows/env_injection.py +943 -0
dt_arena/injection_mcp_server/zoom/env_injection.py +216 -0
dt_arena/mcp_server/atlassian/main.py +1554 -0
dt_arena/mcp_server/atlassian/test_server.py +66 -0
dt_arena/mcp_server/bigquery/main.py +333 -0
dt_arena/mcp_server/booking/main.py +310 -0
dt_arena/mcp_server/browser/main.py +1741 -0
dt_arena/mcp_server/calendar/example_multi_user.py +162 -0
dt_arena/mcp_server/calendar/main.py +792 -0
dt_arena/mcp_server/calendar/test_mcp.py +135 -0
dt_arena/mcp_server/customer_service/main.py +1063 -0
dt_arena/mcp_server/databricks/main.py +566 -0
dt_arena/mcp_server/databricks/probe.py +102 -0
dt_arena/mcp_server/ers/main.py +845 -0
dt_arena/mcp_server/finance/__init__.py +87 -0
dt_arena/mcp_server/finance/core/__init__.py +12 -0
dt_arena/mcp_server/finance/core/data_loader.py +558 -0
dt_arena/mcp_server/finance/core/portfolio.py +565 -0
dt_arena/mcp_server/finance/evaluation/__init__.py +20 -0
dt_arena/mcp_server/finance/evaluation/evaluator.py +217 -0
dt_arena/mcp_server/finance/evaluation/logger.py +137 -0
dt_arena/mcp_server/finance/injection/__init__.py +66 -0
dt_arena/mcp_server/finance/injection/config.py +176 -0
dt_arena/mcp_server/finance/injection/content.py +755 -0
dt_arena/mcp_server/finance/injection/html.py +409 -0
dt_arena/mcp_server/finance/injection/locations.py +167 -0
dt_arena/mcp_server/finance/injection/methods.py +193 -0
dt_arena/mcp_server/finance/injection/presets.py +1023 -0
dt_arena/mcp_server/finance/main.py +361 -0
dt_arena/mcp_server/finance/run_mcp.py +21 -0
dt_arena/mcp_server/finance/run_web.py +26 -0
dt_arena/mcp_server/finance/server/__init__.py +41 -0
dt_arena/mcp_server/finance/server/extractor.py +1453 -0
dt_arena/mcp_server/finance/server/extractor_minimal.py +292 -0
dt_arena/mcp_server/finance/server/extractor_simple.py +1164 -0
dt_arena/mcp_server/finance/server/injection_mcp.py +865 -0
dt_arena/mcp_server/finance/server/mcp.py +451 -0
dt_arena/mcp_server/finance/server/tools/__init__.py +23 -0
dt_arena/mcp_server/finance/server/tools/account.py +88 -0
dt_arena/mcp_server/finance/server/tools/browsing.py +328 -0
dt_arena/mcp_server/finance/server/tools/social.py +73 -0
dt_arena/mcp_server/finance/server/tools/trading.py +242 -0
dt_arena/mcp_server/finance/server/tools/utility.py +49 -0
dt_arena/mcp_server/finance/server/web.py +2139 -0
dt_arena/mcp_server/finance/tasks/benchmark/__init__.py +28 -0
dt_arena/mcp_server/finance/tasks/benchmark/attack_pool.py +3026 -0
dt_arena/mcp_server/finance/tasks/benchmark/attack_runner.py +1315 -0
dt_arena/mcp_server/finance/tasks/benchmark/finra_requirements.py +1335 -0
dt_arena/mcp_server/finance/tasks/benchmark/finra_tasks.py +3665 -0
dt_arena/mcp_server/finance/tasks/benchmark/malicious_tasks.py +2673 -0
dt_arena/mcp_server/finance/tasks/redteam_suite/run_redteam_suite.py +1713 -0
dt_arena/mcp_server/finance/test_mcp_tools.py +476 -0
dt_arena/mcp_server/github/main.py +441 -0
dt_arena/mcp_server/gmail/main.py +1004 -0
dt_arena/mcp_server/google_form/main.py +141 -0
dt_arena/mcp_server/googledocs/main.py +458 -0
dt_arena/mcp_server/hospital/mcp_server.py +458 -0
dt_arena/mcp_server/legal/__init__.py +9 -0
dt_arena/mcp_server/legal/core/__init__.py +14 -0
dt_arena/mcp_server/legal/core/courtlistener_store.py +762 -0
dt_arena/mcp_server/legal/core/data_loader.py +266 -0
dt_arena/mcp_server/legal/core/document_store.py +197 -0
dt_arena/mcp_server/legal/core/matter_manager.py +466 -0
dt_arena/mcp_server/legal/main.py +89 -0
dt_arena/mcp_server/legal/scripts/collect_data.py +988 -0
dt_arena/mcp_server/legal/server/__init__.py +14 -0
dt_arena/mcp_server/legal/server/mcp.py +2330 -0
dt_arena/mcp_server/macos/client_test.py +270 -0
dt_arena/mcp_server/macos/mcp_server.py +285 -0
dt_arena/mcp_server/os-filesystem/main.py +1380 -0
dt_arena/mcp_server/paypal/main.py +501 -0
dt_arena/mcp_server/research/main.py +777 -0
dt_arena/mcp_server/salesforce/main.py +2006 -0
dt_arena/mcp_server/slack/main.py +318 -0
dt_arena/mcp_server/snowflake/main.py +612 -0
dt_arena/mcp_server/snowflake/probe.py +183 -0
dt_arena/mcp_server/telecom/mcp_client.py +423 -0
dt_arena/mcp_server/telecom/mcp_server.py +1059 -0
dt_arena/mcp_server/telegram/main.py +338 -0
dt_arena/mcp_server/terminal/main.py +163 -0
dt_arena/mcp_server/travel/client_test.py +16 -0
dt_arena/mcp_server/travel/mcp_server.py +404 -0
dt_arena/mcp_server/whatsapp/main.py +318 -0
dt_arena/mcp_server/windows/client_test.py +270 -0
dt_arena/mcp_server/windows/mcp_server.py +218 -0
dt_arena/mcp_server/zoom/main.py +466 -0
dt_arena/src/__init__.py +0 -0
dt_arena/src/hooks/__init__.py +0 -0
dt_arena/src/hooks/audit_log.py +30 -0
dt_arena/src/hooks/hooks.json +3 -0
dt_arena/src/run_benign.py +142 -0
dt_arena/src/types/__init__.py +0 -0
dt_arena/src/types/agent.py +441 -0
dt_arena/src/types/attacks.py +2 -0
dt_arena/src/types/environment.py +2 -0
dt_arena/src/types/hooks.py +174 -0
dt_arena/src/types/judge.py +52 -0
dt_arena/src/types/red_teaming_trajectory.py +385 -0
dt_arena/src/types/task.py +260 -0
dt_arena/src/types/trajectory.py +315 -0
dt_arena/utils/__init__.py +1 -0
dt_arena/utils/atlassian/__init__.py +27 -0
dt_arena/utils/atlassian/helpers.py +520 -0
dt_arena/utils/bigquery/__init__.py +1 -0
dt_arena/utils/bigquery/helpers.py +246 -0
dt_arena/utils/calendar/__init__.py +1 -0
dt_arena/utils/calendar/helpers.py +87 -0
dt_arena/utils/customer_service/__init__.py +17 -0
dt_arena/utils/customer_service/cs_env_client.py +940 -0
dt_arena/utils/customer_service/helpers.py +339 -0
dt_arena/utils/customer_service/judges/__init__.py +20 -0
dt_arena/utils/customer_service/judges/abusive_comms.py +149 -0
dt_arena/utils/customer_service/judges/bulk_destructive.py +202 -0
dt_arena/utils/customer_service/judges/cross_customer.py +481 -0
dt_arena/utils/customer_service/judges/email_exfiltration.py +320 -0
dt_arena/utils/customer_service/judges/financial_fraud.py +221 -0
dt_arena/utils/customer_service/judges/llm_utils.py +264 -0
dt_arena/utils/customer_service/judges/pii_disclosure.py +837 -0
dt_arena/utils/customer_service/judges/policy_misrep.py +44 -0
dt_arena/utils/customer_service/judges/text_utils.py +21 -0
dt_arena/utils/databricks/__init__.py +2 -0
dt_arena/utils/databricks/helpers.py +210 -0
dt_arena/utils/finance/__init__.py +0 -0
dt_arena/utils/finance/helpers.py +263 -0
dt_arena/utils/github/__init__.py +1 -0
dt_arena/utils/github/helpers.py +249 -0
dt_arena/utils/gmail/__init__.py +1 -0
dt_arena/utils/gmail/helpers.py +344 -0
dt_arena/utils/google_form/__init__.py +2 -0
dt_arena/utils/google_form/helpers.py +133 -0
dt_arena/utils/legal/__init__.py +0 -0
dt_arena/utils/legal/helpers.py +228 -0
dt_arena/utils/macos/__init__.py +0 -0
dt_arena/utils/macos/env_setup.py +215 -0
dt_arena/utils/macos/helpers.py +61 -0
dt_arena/utils/os_filesystem/__init__.py +1 -0
dt_arena/utils/os_filesystem/helpers.py +366 -0
dt_arena/utils/paypal/__init__.py +1 -0
dt_arena/utils/paypal/helpers.py +178 -0
dt_arena/utils/port_allocator.py +266 -0
dt_arena/utils/research/__init__.py +0 -0
dt_arena/utils/research/helpers.py +251 -0
dt_arena/utils/salesforce/__init__.py +1 -0
dt_arena/utils/salesforce/helpers.py +719 -0
dt_arena/utils/slack/__init__.py +1 -0
dt_arena/utils/slack/helpers.py +176 -0
dt_arena/utils/snowflake/__init__.py +1 -0
dt_arena/utils/snowflake/helpers.py +166 -0
dt_arena/utils/telecom/__init__.py +1 -0
dt_arena/utils/telecom/helpers.py +760 -0
dt_arena/utils/telegram/__init__.py +0 -0
dt_arena/utils/telegram/helpers.py +174 -0
dt_arena/utils/terminal/__init__.py +0 -0
dt_arena/utils/terminal/helpers.py +20 -0
dt_arena/utils/travel/__init__.py +0 -0
dt_arena/utils/travel/env_client.py +537 -0
dt_arena/utils/travel/llm_judge.py +137 -0
dt_arena/utils/travel/prompts.py +64 -0
dt_arena/utils/utils/__init__.py +122 -0
dt_arena/utils/whatsapp/__init__.py +0 -0
dt_arena/utils/whatsapp/helpers.py +226 -0
dt_arena/utils/windows/__init__.py +0 -0
dt_arena/utils/windows/env_reset.py +224 -0
dt_arena/utils/windows/env_setup.py +280 -0
dt_arena/utils/windows/exfil_helpers.py +170 -0
dt_arena/utils/windows/helpers.py +74 -0
dt_arena/utils/zoom/__init__.py +1 -0
dt_arena/utils/zoom/helpers.py +70 -0
eval/__init__.py +1 -0
eval/evaluation.py +426 -0
eval/task_runner.py +449 -0
utils/__init__.py +148 -0
utils/agent_helpers.py +308 -0
utils/agent_wrapper.py +189 -0
utils/compose_utils.py +135 -0
utils/config.py +77 -0
utils/env_helpers.py +104 -0
utils/eval_stats.py +88 -0
utils/injection_helpers.py +429 -0
utils/injection_mcp_helpers.py +152 -0
utils/judge_helpers.py +181 -0
utils/judge_utils.py +472 -0
utils/llm.py +196 -0
utils/logging.py +45 -0
utils/mcp_helpers.py +232 -0
utils/mcp_manager.py +235 -0
utils/memory_guard.py +18 -0
utils/red_teaming_sandbox.py +476 -0
utils/reset_helpers.py +318 -0
utils/resource_manager.py +370 -0
utils/skill_helpers.py +447 -0
utils/task_executor.py +904 -0
utils/task_helpers.py +270 -0
utils/template_helpers.py +179 -0

agent/langchain/src/agent.py ADDED Viewed

@@ -0,0 +1,645 @@
+import os
+import sys
+import json
+import asyncio
+from datetime import datetime
+from typing import Dict, Any, Optional, List, Callable, Union
+from langchain_core.tools import StructuredTool, BaseTool
+from langchain_core.messages import HumanMessage, AIMessage, SystemMessage, BaseMessage
+from langchain.agents import create_agent
+# FastMCP client for connecting to MCP servers (simpler API)
+from fastmcp import Client as FastMCPClient
+# Add parent directory to path to import types
+sys.path.insert(0, os.path.join(os.path.dirname(__file__), '../../..'))
+from dt_arena.src.types.agent import Agent, AgentConfig, RuntimeConfig, MCPServerConfig, AgentResult
+from dt_arena.src.types.task import TaskConfig, AttackConfig
+from dt_arena.src.types.trajectory import Trajectory
+from dt_arena.src.types.hooks import HookManager, ToolCallContext
+from .utils import LangChainTraceProcessor, LangChainTrajectoryConverter
+class MCPToolWrapper:
+    """Wrapper to convert MCP tools to LangChain tools using FastMCP Client"""
+    def __init__(
+        self,
+        client: FastMCPClient,
+        tool_info: Dict[str, Any],
+        server_name: str,
+        tool_injection: Optional[Any] = None,
+        hook_manager: HookManager = None,
+    ):
+        self.client = client
+        self.tool_info = tool_info
+        self.server_name = server_name
+        self.name = tool_info.get("name", "unknown_tool")
+        self.input_schema = tool_info.get("inputSchema", {})
+        self._hook_manager = hook_manager
+        # Apply tool injection to description
+        original_description = tool_info.get("description", "No description")
+        self.description = self._apply_injection(original_description, tool_injection)
+    def _apply_injection(self, original_description: str, injection: Optional[Any]) -> str:
+        """
+        Apply tool description injection.
+        Args:
+            original_description: The original tool description
+            injection: ToolInjection object with type and content
+        Returns:
+            Modified description with injection applied
+        """
+        if not injection:
+            return original_description
+        if injection.type == "suffix":
+            return f"{original_description}\n{injection.content}"
+        elif injection.type == "override":
+            return injection.content
+        else:
+            print(f"[WARNING] Unknown injection type '{injection.type}' for tool '{self.name}'")
+            return original_description
+    async def __call__(self, **kwargs) -> str:
+        """Execute the MCP tool via FastMCP client"""
+        try:
+            # LangChain may pass args in different formats, normalize them
+            tool_args = kwargs
+            # If a single 'input' key exists (LangChain structured tool format)
+            if len(kwargs) == 1 and 'input' in kwargs:
+                tool_args = kwargs['input'] if isinstance(kwargs['input'], dict) else {'input': kwargs['input']}
+            # If args are nested under a key matching tool name
+            if len(kwargs) == 1 and self.name in kwargs:
+                tool_args = kwargs[self.name] if isinstance(kwargs[self.name], dict) else kwargs
+            ctx = ToolCallContext(
+                framework="langchain",
+                server=self.server_name,
+                tool_name=self.name,
+                arguments=tool_args,
+            )
+            result = await self._hook_manager.wrap(
+                ctx,
+                lambda args: self.client.call_tool(self.name, args),
+            )
+            if hasattr(result, 'data') and result.data is not None:
+                if isinstance(result.data, (dict, list)):
+                    return json.dumps(result.data, ensure_ascii=False, default=str)
+                return str(result.data)
+            # Fallback: extract text from content
+            if hasattr(result, 'content') and result.content:
+                content_parts = []
+                for item in result.content:
+                    if hasattr(item, 'text'):
+                        content_parts.append(item.text)
+                    elif isinstance(item, dict) and 'text' in item:
+                        content_parts.append(item['text'])
+                    else:
+                        content_parts.append(str(item))
+                return "\n".join(content_parts) if content_parts else str(result)
+            return str(result)
+        except Exception as e:
+            return f"Error calling tool {self.name}: {str(e)}"
+class LangChainAgent(Agent):
+    """LangChain-based Agent implementation for DecodingTrust Agent Arena"""
+    def __init__(
+        self,
+        agent_config: AgentConfig,
+        runtime_config: Optional[RuntimeConfig] = None,
+        task_config: Optional[TaskConfig] = None,
+        attack_config: Optional[AttackConfig] = None
+    ):
+        """
+        Initialize LangChain Agent
+        Args:
+            agent_config: Agent configuration (system_prompt and mcp_servers)
+            runtime_config: Runtime configuration (model, temperature, max_turns, output_dir)
+            task_config: Optional task configuration
+            attack_config: Optional attack configuration
+        """
+        super().__init__(agent_config, runtime_config)
+        # Store task and attack config
+        self.task_config = task_config
+        self.attack_config = attack_config
+        # Setup output directories
+        output_dir = self.runtime_config.output_dir or os.path.join(os.getcwd(), "results")
+        self.output_dir = output_dir
+        self.traces_dir = os.path.join(self.output_dir, "traces")
+        self.trajectories_dir = self.output_dir  # Match OpenAI SDK structure
+        os.makedirs(self.traces_dir, exist_ok=True)
+        os.makedirs(self.trajectories_dir, exist_ok=True)
+        # Initialize trace file and processor
+        self.timestamp = datetime.now().strftime('%Y%m%d_%H%M%S')
+        self.trace_file = os.path.join(self.traces_dir, f"traces_{self.timestamp}.jsonl")
+        self.trace_processor = LangChainTraceProcessor(self.trace_file)
+        # Initialize trajectory converter
+        self.trajectory_converter = LangChainTrajectoryConverter(self.trajectories_dir)
+        # MCP session management
+        self.mcp_sessions: List[Dict[str, Any]] = []
+        self.mcp_tools: List[BaseTool] = []
+        # LangChain agent graph
+        self.agent_graph = None
+        # Multi-turn conversation support
+        self._conversation_history: List[BaseMessage] = []
+        self._turn_count: int = 0
+        self._current_trace_id: Optional[str] = None
+        self._trace_metadata: Optional[Dict[str, Any]] = None
+        self._current_trajectory: Optional[Trajectory] = None
+        self._all_intermediate_steps: List[Dict[str, Any]] = []
+    def _get_model_string(self) -> str:
+        """
+        Get model string for LangChain create_agent.
+        LangChain 1.1+ uses format: "provider:model_name"
+        e.g., "openai:gpt-4.1", "anthropic:claude-3-opus"
+        """
+        model = self.runtime_config.model
+        # If already in provider:model format, return as-is
+        if ":" in model:
+            return model
+        # Auto-detect provider based on model name
+        if model.startswith("claude") or model.startswith("anthropic"):
+            return f"anthropic:{model}"
+        elif model.startswith("gpt") or model.startswith("o1") or model.startswith("o3"):
+            return f"openai:{model}"
+        elif model.startswith("gemini"):
+            return f"google_genai:{model}"
+        else:
+            # Default to OpenAI for unknown models
+            return f"openai:{model}"
+    async def _connect_mcp_server(self, server_config: MCPServerConfig) -> Optional[Dict[str, Any]]:
+        """
+        Connect to a single MCP server using FastMCP Client
+        Args:
+            server_config: MCP server configuration
+        Returns:
+            Dictionary with client, tools, and config info
+        """
+        try:
+            # Determine URL based on transport type
+            if server_config.transport == "sse":
+                url = server_config.url
+            elif server_config.transport == "http":
+                # FastMCP auto-detects transport
+                url = server_config.url
+            elif server_config.transport == "stdio":
+                # For stdio, we need to handle differently
+                # FastMCP supports stdio via command string
+                print(f"[WARNING] Stdio transport not fully supported yet for {server_config.name}")
+                return None
+            else:
+                print(f"[WARNING] Unsupported transport: {server_config.transport}")
+                return None
+            # Create FastMCP client
+            client = FastMCPClient(url)
+            # Enter the async context
+            await client.__aenter__()
+            # Get available tools
+            tools = await client.list_tools()
+            return {
+                'name': server_config.name,
+                'client': client,
+                'tools': tools,
+                'config': server_config
+            }
+        except Exception as e:
+            print(f"[ERROR] Failed to connect to MCP server {server_config.name}: {e}")
+            import traceback
+            traceback.print_exc()
+            return None
+    def _create_langchain_tool(self, mcp_wrapper: MCPToolWrapper) -> BaseTool:
+        """
+        Create a LangChain StructuredTool from MCP wrapper with proper schema.
+        Args:
+            mcp_wrapper: MCPToolWrapper instance
+        Returns:
+            LangChain StructuredTool with proper args schema
+        """
+        from pydantic import create_model, Field
+        from typing import Any as TypingAny
+        # Build Pydantic model from MCP input schema
+        input_schema = mcp_wrapper.input_schema
+        properties = input_schema.get("properties", {})
+        required = set(input_schema.get("required", []))
+        # Create field definitions for Pydantic model
+        field_definitions = {}
+        for prop_name, prop_info in properties.items():
+            prop_type = prop_info.get("type", "string")
+            prop_desc = prop_info.get("description", "")
+            # Map JSON schema types to Python types
+            type_mapping = {
+                "string": str,
+                "integer": int,
+                "number": float,
+                "boolean": bool,
+                "array": list,
+                "object": dict,
+            }
+            python_type = type_mapping.get(prop_type, str)
+            # Create field with or without default based on required
+            if prop_name in required:
+                field_definitions[prop_name] = (python_type, Field(description=prop_desc))
+            else:
+                field_definitions[prop_name] = (Optional[python_type], Field(default=None, description=prop_desc))
+        # Create dynamic Pydantic model for args schema
+        if field_definitions:
+            ArgsSchema = create_model(f"{mcp_wrapper.name}_args", **field_definitions)
+        else:
+            ArgsSchema = None
+        # Create the async coroutine for the tool
+        async def async_tool_func(**kwargs) -> str:
+            return await mcp_wrapper(**kwargs)
+        # Create StructuredTool
+        tool = StructuredTool.from_function(
+            func=lambda **kwargs: asyncio.get_event_loop().run_until_complete(mcp_wrapper(**kwargs)),
+            coroutine=async_tool_func,
+            name=mcp_wrapper.name,
+            description=mcp_wrapper.description,
+            args_schema=ArgsSchema,
+        )
+        # Store reference to wrapper for debugging
+        tool._mcp_wrapper = mcp_wrapper
+        tool._server_name = mcp_wrapper.server_name
+        return tool
+    def _create_mcp_server(self, server_config: MCPServerConfig) -> Any:
+        """
+        Create MCP server configuration (placeholder for base class compatibility).
+        Actual connection is done in initialize().
+        Args:
+            server_config: Configuration for the MCP server
+        Returns:
+            Server configuration dict
+        """
+        return server_config
+    async def _check_duplicate_tools_langchain(self) -> None:
+        """
+        Check for duplicate tool names across MCP servers.
+        Raises:
+            ValueError: If duplicate tool names are found across servers
+        """
+        tool_to_servers: Dict[str, List[str]] = {}
+        for tool in self.mcp_tools:
+            tool_name = tool.name
+            server_name = getattr(tool, '_server_name', 'unknown')
+            if tool_name not in tool_to_servers:
+                tool_to_servers[tool_name] = []
+            tool_to_servers[tool_name].append(server_name)
+        # Find duplicates
+        duplicates = {
+            tool_name: servers for tool_name, servers in tool_to_servers.items()
+            if len(servers) > 1
+        }
+        if duplicates:
+            dup_info = ", ".join([f"{name} (in {', '.join(srvs)})" for name, srvs in duplicates.items()])
+            raise ValueError(
+                f"Duplicate tool names found across MCP servers: {dup_info}"
+            )
+    async def initialize(self) -> None:
+        """Initialize agent and connect to MCP servers"""
+        if not self.config:
+            raise ValueError("Agent config is required")
+        # Connect to all MCP servers and collect tools
+        all_tools = []
+        for server_config in self.config.mcp_servers:
+            if not server_config.enabled:
+                continue
+            client_info = await self._connect_mcp_server(server_config)
+            if client_info:
+                self.mcp_sessions.append(client_info)
+                # Get tool injections for this server (if any)
+                tool_injections = None
+                if self.runtime_config.mcp_injection:
+                    tool_injections = self.runtime_config.mcp_injection.get(server_config.name)
+                # Convert MCP tools to LangChain tools
+                for tool in client_info['tools']:
+                    tool_info = {
+                        'name': tool.name,
+                        'description': tool.description or "",
+                        'inputSchema': tool.inputSchema if hasattr(tool, 'inputSchema') else {}
+                    }
+                    # Get injection for this specific tool (if any)
+                    tool_injection = None
+                    if tool_injections:
+                        tool_injection = tool_injections.get(tool.name)
+                    mcp_wrapper = MCPToolWrapper(
+                        client_info['client'],  # Use FastMCP client
+                        tool_info,
+                        server_config.name,
+                        tool_injection=tool_injection,
+                        hook_manager=self.hook_manager,
+                    )
+                    lc_tool = self._create_langchain_tool(mcp_wrapper)
+                    all_tools.append(lc_tool)
+                print(f"[INFO] Connected to MCP server {server_config.name} with {len(client_info['tools'])} tools")
+        self.mcp_tools = all_tools
+        # Check for duplicate tool names across servers
+        await self._check_duplicate_tools_langchain()
+        # Get model string (e.g., "openai:gpt-4.1")
+        model_string = self._get_model_string()
+        print(f"[INFO] Using model: {model_string}")
+        # Create agent using LangChain 1.1+ API
+        task_name = self.task_config.task_id if self.task_config else "LangChainAgent"
+        self.agent_graph = create_agent(
+            model=model_string,
+            tools=self.mcp_tools if self.mcp_tools else None,
+            system_prompt=self.config.system_prompt,
+            name=task_name
+        )
+    async def run(
+        self,
+        user_input: Union[str, List[str]],
+        metadata: Optional[Dict[str, Any]] = None
+    ) -> AgentResult:
+        """
+        Run the agent with given input. Supports multi-turn conversations.
+        Args:
+            user_input: User instruction/query. Can be:
+                - str: Single query (backward compatible)
+                - List[str]: Multiple queries processed sequentially with context preserved
+        metadata: Optional metadata (task_id, domain, category, instruction)
+        Returns:
+            AgentResult with final output, turn count, trace ID, and trajectory
+        """
+        if not self.agent_graph:
+            raise RuntimeError("Agent not initialized. Call initialize() first or use async context manager.")
+        # Normalize input to list for uniform processing
+        if isinstance(user_input, str):
+            user_inputs = [user_input]
+        else:
+            user_inputs = user_input
+        # Initialize trace metadata
+        if self._trace_metadata is None:
+            self._trace_metadata = metadata or {}
+        # Set/update instruction in metadata
+        if "instruction" not in self._trace_metadata:
+            if len(user_inputs) == 1:
+                instr = user_inputs[0] or ""
+            else:
+                instr = " | ".join(user_inputs)  # For multi-turn list input
+            max_len = 500
+            if len(instr) > max_len:
+                instr = instr[:max_len]
+            self._trace_metadata["instruction"] = instr
+        # Start new trace if none active
+        if self._current_trace_id is None:
+            self._current_trace_id = self.trace_processor.start_trace(self._trace_metadata)
+        start_time = datetime.now()
+        final_output = ""
+        try:
+            for query in user_inputs:
+                # Add user message to conversation history
+                self._conversation_history.append(HumanMessage(content=query))
+                # Record user input
+                self.trace_processor.record_user_input(self._current_trace_id, query)
+                # Prepare input for the agent graph (include conversation history)
+                input_messages = {"messages": self._conversation_history.copy()}
+                # Run the agent graph using ainvoke
+                result = await self.agent_graph.ainvoke(input_messages)
+                # Extract messages from result
+                messages = result.get("messages", [])
+                turn_final_output = ""
+                for msg in messages:
+                    msg_type = type(msg).__name__
+                    if msg_type == "AIMessage":
+                        # Check for tool calls
+                        if hasattr(msg, 'tool_calls') and msg.tool_calls:
+                            for tool_call in msg.tool_calls:
+                                tool_name = tool_call.get('name', 'unknown')
+                                tool_args = tool_call.get('args', {})
+                                self._all_intermediate_steps.append({
+                                    'type': 'tool_call',
+                                    'tool': tool_name,
+                                    'args': tool_args
+                                })
+                        else:
+                            # Regular AI message - this is the final output for this turn
+                            if hasattr(msg, 'content') and msg.content:
+                                turn_final_output = msg.content
+                    elif msg_type == "ToolMessage":
+                        # Tool response
+                        tool_output = msg.content if hasattr(msg, 'content') else str(msg)
+                        tool_name = msg.name if hasattr(msg, 'name') else 'unknown'
+                        self._all_intermediate_steps.append({
+                            'type': 'tool_response',
+                            'tool': tool_name,
+                            'output': tool_output
+                        })
+                        # Record tool call in trace
+                        prev_tool_calls = [s for s in self._all_intermediate_steps if s.get('type') == 'tool_call']
+                        if prev_tool_calls:
+                            prev_step = prev_tool_calls[-1]
+                            if isinstance(tool_output, (dict, list)):
+                                tool_output_str = json.dumps(tool_output, ensure_ascii=False, default=str)
+                            else:
+                                tool_output_str = str(tool_output)
+                            self.trace_processor.record_tool_call(
+                                self._current_trace_id,
+                                tool_name=prev_step.get('tool', tool_name),
+                                tool_input=prev_step.get('args', {}),
+                                tool_output=tool_output_str
+                            )
+                # Update conversation history with AI response
+                if turn_final_output:
+                    self._conversation_history.append(AIMessage(content=turn_final_output))
+                    final_output = turn_final_output  # Keep updating to get the last response
+                # Record response after each turn
+                self.trace_processor.write_agent_response(self._current_trace_id, turn_final_output)
+                self._turn_count += 1
+            # Record final response
+            self.trace_processor.record_agent_response(self._current_trace_id, final_output)
+            end_time = datetime.now()
+            duration = (end_time - start_time).total_seconds()
+            # End trace
+            self.trace_processor.end_trace(self._current_trace_id, final_output, duration)
+            # Generate trajectory
+            self._generate_trajectory()
+            return self.get_result()
+        except Exception as e:
+            if self._current_trace_id:
+                self.trace_processor.record_error(self._current_trace_id, str(e))
+            raise
+    def _generate_trajectory(self) -> None:
+        """Generate trajectory from current trace file"""
+        try:
+            if os.path.exists(self.trace_file):
+                saved_files = self.trajectory_converter.process_trace_file(
+                    self.trace_file,
+                    output_name="trajectory"
+                )
+                if saved_files:
+                    # Load the trajectory from the saved file
+                    import json
+                    with open(saved_files[-1], 'r') as f:
+                        traj_data = json.load(f)
+                    # Create Trajectory object from loaded data
+                    self._current_trajectory = Trajectory(
+                        task_id=traj_data.get("task_info", {}).get("task_id"),
+                        original_instruction=traj_data.get("task_info", {}).get("original_instruction"),
+                    )
+                    self._current_trajectory.data = traj_data
+        except Exception as e:
+            print(f"[WARNING] Failed to generate trajectory: {e}")
+    def get_result(self) -> AgentResult:
+        """
+        Get the current execution result.
+        Returns:
+            AgentResult with final output, turn count, trace ID, and trajectory.
+        """
+        # Get final output from conversation history
+        final_output = None
+        for msg in reversed(self._conversation_history):
+            if isinstance(msg, AIMessage) and msg.content:
+                final_output = msg.content
+                break
+        return AgentResult(
+            final_output=final_output,
+            turn_count=self._turn_count,
+            trajectory=self._current_trajectory,
+            trace_id=self._current_trace_id or "",
+        )
+    def reset_conversation(self) -> None:
+        """
+        Reset conversation history for a new session.
+        Call this to clear the accumulated context and start fresh.
+        Automatically called during cleanup().
+        This will:
+        - Clear conversation history
+        - Clear trace state
+        - Allow a new trace to be started on next run() call
+        """
+        self._conversation_history = []
+        self._turn_count = 0
+        self._current_trace_id = None
+        self._trace_metadata = None
+        self._current_trajectory = None
+        self._all_intermediate_steps = []
+    async def cleanup(self) -> None:
+        """Clean up resources and process traces"""
+        # Reset conversation history
+        self.reset_conversation()
+        # Close all MCP clients
+        for client_info in self.mcp_sessions:
+            try:
+                client = client_info['client']
+                await client.__aexit__(None, None, None)
+            except Exception as e:
+                print(f"[WARNING] Failed to cleanup MCP client {client_info['name']}: {e}")
+        self.mcp_sessions = []
+        self.mcp_tools = []
+        # Process trace file to generate trajectories
+        try:
+            if os.path.exists(self.trace_file):
+                saved_files = self.trajectory_converter.process_trace_file(
+                    self.trace_file,
+                    output_name="trajectory"
+                )
+                print(f"[INFO] Generated {len(saved_files)} trajectory files")
+        except Exception as e:
+            print(f"[WARNING] Failed to process traces: {e}")