firstops 0.2.0__tar.gz

firstops-0.2.0/.github/workflows/publish.yml

@@ -0,0 +1,28 @@
+name: Publish to PyPI
+
+on:
+  push:
+    tags: ["v*"]
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    environment: pypi
+    permissions:
+      id-token: write  # Required for PyPI trusted publisher
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install build tools
+        run: pip install build
+
+      - name: Build package
+        run: python -m build
+
+      - name: Publish to PyPI
+        uses: pypa/gh-action-pypi-publish@release/v1

firstops-0.2.0/.github/workflows/test.yml

@@ -0,0 +1,27 @@
+name: Test
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ["3.10", "3.11", "3.12", "3.13"]
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Install dependencies
+        run: pip install -e ".[dev]"
+
+      - name: Run tests
+        run: pytest -v

firstops-0.2.0/.gitignore

@@ -0,0 +1,27 @@
+# Virtual environments
+.venv/
+venv/
+env/
+
+# Python
+__pycache__/
+*.pyc
+*.pyo
+*.egg-info/
+dist/
+build/
+
+# Testing
+.pytest_cache/
+.coverage
+htmlcov/
+
+# IDE
+.idea/
+.vscode/
+*.swp
+*.swo
+
+# OS
+.DS_Store
+Thumbs.db

firstops-0.2.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 FirstOps
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

firstops-0.2.0/PKG-INFO

@@ -0,0 +1,160 @@
+Metadata-Version: 2.4
+Name: firstops
+Version: 0.2.0
+Summary: Govern MCP, tool calls, and LLM traffic for AI agents — across LangGraph, Claude Agent SDK, and OpenAI Agents.
+Project-URL: Homepage, https://firstops.dev
+Project-URL: Documentation, https://github.com/firstops-dev/firstops-python
+Project-URL: Repository, https://github.com/firstops-dev/firstops-python
+Project-URL: Issues, https://github.com/firstops-dev/firstops-python/issues
+Author-email: FirstOps <dev@firstops.dev>
+License-Expression: MIT
+License-File: LICENSE
+Keywords: agent,claude,dpop,governance,guardrails,langchain,langgraph,llm,mcp,openai-agents,security
+Classifier: Development Status :: 3 - Alpha
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Topic :: Security
+Classifier: Topic :: Software Development :: Libraries
+Requires-Python: >=3.10
+Requires-Dist: cryptography>=42.0
+Requires-Dist: httpx>=0.27
+Provides-Extra: all
+Requires-Dist: claude-agent-sdk; extra == 'all'
+Requires-Dist: langchain-mcp-adapters; extra == 'all'
+Requires-Dist: langchain-openai; extra == 'all'
+Requires-Dist: langchain>=1.0; extra == 'all'
+Requires-Dist: langgraph; extra == 'all'
+Requires-Dist: openai-agents; extra == 'all'
+Provides-Extra: claude
+Requires-Dist: claude-agent-sdk; extra == 'claude'
+Provides-Extra: dev
+Requires-Dist: pytest-asyncio>=0.23; extra == 'dev'
+Requires-Dist: pytest>=8.0; extra == 'dev'
+Provides-Extra: langgraph
+Requires-Dist: langchain-mcp-adapters; extra == 'langgraph'
+Requires-Dist: langchain-openai; extra == 'langgraph'
+Requires-Dist: langchain>=1.0; extra == 'langgraph'
+Requires-Dist: langgraph; extra == 'langgraph'
+Provides-Extra: openai
+Requires-Dist: openai-agents; extra == 'openai'
+Description-Content-Type: text/markdown
+
+# FirstOps Python SDK
+
+Govern what your AI agents do. FirstOps applies identity, policy enforcement, credential brokering, and audit to every **LLM call**, **tool call**, and **MCP call** your agent makes — across LangGraph, the Claude Agent SDK, and the OpenAI Agents SDK, or any custom loop.
+
+```bash
+pip install "firstops[langgraph]"   # or [claude], [openai], [all]
+```
+
+- **Python 3.10+**
+- Core deps: `cryptography`, `httpx`. Your agent framework comes in via the extra you pick.
+
+---
+
+## What FirstOps governs
+
+| Surface | How it's wired | What you get |
+|---|---|---|
+| **LLM calls** | point the model `base_url` at the local sidecar | inspect prompts/responses, scrub PII, block, audit |
+| **Tool calls** | one adapter (or `@firstops.tool`) | block / rewrite args / audit — including framework built-ins |
+| **MCP servers** | point the MCP client at the local proxy | server-side policy + **credential brokering** (the agent never holds the upstream token) |
+
+Every action is evaluated by FirstOps and returns `allow` / `deny` / `modify` — your agent logic doesn't change.
+
+## Quick start (LangGraph)
+
+```python
+import firstops
+from firstops.integrations.langgraph import FirstOpsMiddleware
+from langchain.agents import create_agent
+from langchain_openai import ChatOpenAI
+
+fo = firstops.init(
+    agent_id="<agent-uuid>",                      # from the FirstOps dashboard
+    private_key_pem=open("agent-key.pem").read(),
+)
+
+# Route the LLM through FirstOps; wire one middleware to govern every tool call.
+llm = ChatOpenAI(model="gpt-4o-mini", base_url=firstops.llm_base_url("openai"), api_key="sk-...")
+agent = create_agent(model=llm, tools=[...], middleware=[FirstOpsMiddleware(fo)])
+
+agent.invoke({"messages": [{"role": "user", "content": "..."}]})
+```
+
+The whole integration is `init()` + a `base_url` swap + one middleware. See [`examples/`](examples/) for runnable agents, including MCP.
+
+## Other harnesses
+
+**Claude Agent SDK** — one `PreToolUse` hook governs every tool (built-ins, MCP, custom):
+
+```python
+from claude_agent_sdk import query, ClaudeAgentOptions
+from firstops.integrations.claude import firstops_hooks
+
+options = ClaudeAgentOptions(hooks=firstops_hooks(fo), permission_mode="bypassPermissions")
+async for _ in query(prompt="...", options=options):
+    pass
+```
+
+**OpenAI Agents SDK** — a guardrail per tool + the model routed through the sidecar:
+
+```python
+from agents import Agent, function_tool, set_default_openai_client
+from firstops.integrations.openai_agents import firstops_tool_input_guardrail
+from openai import AsyncOpenAI
+
+set_default_openai_client(AsyncOpenAI(base_url=firstops.llm_base_url("openai"), api_key="sk-..."))
+guard = firstops_tool_input_guardrail(fo)
+
+@function_tool(tool_input_guardrails=[guard])
+def send_email(to: str, body: str) -> str: ...
+```
+
+**Any framework / custom loop** — the base API:
+
+```python
+@firstops.tool          # govern any callable: block / scrub args / audit
+def send_email(to: str, body: str): ...
+```
+
+## MCP servers
+
+Point your MCP client at the local proxy; FirstOps brokers the upstream credentials.
+
+```python
+from langchain_mcp_adapters.client import MultiServerMCPClient
+
+mcp = MultiServerMCPClient({"notion": {"url": firstops.mcp_url("<connection-id>"), "transport": "streamable_http"}})
+tools = await mcp.get_tools()
+```
+
+## Management client
+
+Provision agents and connections from your backend:
+
+```python
+from firstops import FirstOps
+
+admin = FirstOps(api_key="fo_key_...")
+agent = admin.agents.create(name="research-bot")      # -> id + private_key (shown once)
+admin.connections.register(principal_id=agent.id, name="slack", upstream_url="https://mcp.slack.com/sse")
+```
+
+## How it works
+
+`firstops.init()` starts a local sidecar and establishes the agent's identity (a DPoP-bound principal — RFC 9449). Tool and LLM actions are forwarded to the FirstOps gateway, which evaluates them against your policies and returns the verdict; MCP and LLM traffic flow through the sidecar with credentials brokered. Enforcement fails open on infrastructure errors; authentication fails closed.
+
+## Documentation
+
+- Guides: <https://firstops.dev/docs>
+- Repository: <https://github.com/firstops-dev/firstops-python>
+
+## License
+
+MIT

firstops-0.2.0/README.md

@@ -0,0 +1,114 @@
+# FirstOps Python SDK
+
+Govern what your AI agents do. FirstOps applies identity, policy enforcement, credential brokering, and audit to every **LLM call**, **tool call**, and **MCP call** your agent makes — across LangGraph, the Claude Agent SDK, and the OpenAI Agents SDK, or any custom loop.
+
+```bash
+pip install "firstops[langgraph]"   # or [claude], [openai], [all]
+```
+
+- **Python 3.10+**
+- Core deps: `cryptography`, `httpx`. Your agent framework comes in via the extra you pick.
+
+---
+
+## What FirstOps governs
+
+| Surface | How it's wired | What you get |
+|---|---|---|
+| **LLM calls** | point the model `base_url` at the local sidecar | inspect prompts/responses, scrub PII, block, audit |
+| **Tool calls** | one adapter (or `@firstops.tool`) | block / rewrite args / audit — including framework built-ins |
+| **MCP servers** | point the MCP client at the local proxy | server-side policy + **credential brokering** (the agent never holds the upstream token) |
+
+Every action is evaluated by FirstOps and returns `allow` / `deny` / `modify` — your agent logic doesn't change.
+
+## Quick start (LangGraph)
+
+```python
+import firstops
+from firstops.integrations.langgraph import FirstOpsMiddleware
+from langchain.agents import create_agent
+from langchain_openai import ChatOpenAI
+
+fo = firstops.init(
+    agent_id="<agent-uuid>",                      # from the FirstOps dashboard
+    private_key_pem=open("agent-key.pem").read(),
+)
+
+# Route the LLM through FirstOps; wire one middleware to govern every tool call.
+llm = ChatOpenAI(model="gpt-4o-mini", base_url=firstops.llm_base_url("openai"), api_key="sk-...")
+agent = create_agent(model=llm, tools=[...], middleware=[FirstOpsMiddleware(fo)])
+
+agent.invoke({"messages": [{"role": "user", "content": "..."}]})
+```
+
+The whole integration is `init()` + a `base_url` swap + one middleware. See [`examples/`](examples/) for runnable agents, including MCP.
+
+## Other harnesses
+
+**Claude Agent SDK** — one `PreToolUse` hook governs every tool (built-ins, MCP, custom):
+
+```python
+from claude_agent_sdk import query, ClaudeAgentOptions
+from firstops.integrations.claude import firstops_hooks
+
+options = ClaudeAgentOptions(hooks=firstops_hooks(fo), permission_mode="bypassPermissions")
+async for _ in query(prompt="...", options=options):
+    pass
+```
+
+**OpenAI Agents SDK** — a guardrail per tool + the model routed through the sidecar:
+
+```python
+from agents import Agent, function_tool, set_default_openai_client
+from firstops.integrations.openai_agents import firstops_tool_input_guardrail
+from openai import AsyncOpenAI
+
+set_default_openai_client(AsyncOpenAI(base_url=firstops.llm_base_url("openai"), api_key="sk-..."))
+guard = firstops_tool_input_guardrail(fo)
+
+@function_tool(tool_input_guardrails=[guard])
+def send_email(to: str, body: str) -> str: ...
+```
+
+**Any framework / custom loop** — the base API:
+
+```python
+@firstops.tool          # govern any callable: block / scrub args / audit
+def send_email(to: str, body: str): ...
+```
+
+## MCP servers
+
+Point your MCP client at the local proxy; FirstOps brokers the upstream credentials.
+
+```python
+from langchain_mcp_adapters.client import MultiServerMCPClient
+
+mcp = MultiServerMCPClient({"notion": {"url": firstops.mcp_url("<connection-id>"), "transport": "streamable_http"}})
+tools = await mcp.get_tools()
+```
+
+## Management client
+
+Provision agents and connections from your backend:
+
+```python
+from firstops import FirstOps
+
+admin = FirstOps(api_key="fo_key_...")
+agent = admin.agents.create(name="research-bot")      # -> id + private_key (shown once)
+admin.connections.register(principal_id=agent.id, name="slack", upstream_url="https://mcp.slack.com/sse")
+```
+
+## How it works
+
+`firstops.init()` starts a local sidecar and establishes the agent's identity (a DPoP-bound principal — RFC 9449). Tool and LLM actions are forwarded to the FirstOps gateway, which evaluates them against your policies and returns the verdict; MCP and LLM traffic flow through the sidecar with credentials brokered. Enforcement fails open on infrastructure errors; authentication fails closed.
+
+## Documentation
+
+- Guides: <https://firstops.dev/docs>
+- Repository: <https://github.com/firstops-dev/firstops-python>
+
+## License
+
+MIT

firstops-0.2.0/examples/README.md

@@ -0,0 +1,44 @@
+# FirstOps SDK — Examples
+
+Runnable agents that govern every LLM call, tool call, and MCP call through
+FirstOps.
+
+## Setup
+
+```bash
+python -m venv .venv && source .venv/bin/activate
+pip install -e ..                      # the FirstOps SDK (this repo)
+pip install "langchain>=1.0" langgraph langchain-openai langchain-mcp-adapters openai
+```
+
+## Config (env vars)
+
+| Var | Meaning |
+|-----|---------|
+| `FO_AGENT_ID` | Agent principal ID (UUID) from `client.agents.create(...)` |
+| `FO_PRIVATE_KEY_PATH` | Path to the agent's EC P-256 private-key PEM |
+| `FO_GATEWAY` | FirstOps gateway base URL (default `https://api.firstops.dev`) |
+| `FO_PORT` | Local sidecar port (default `9322`) |
+| `OPENAI_API_KEY` | OpenAI key — passes through the sidecar to OpenAI, never stored |
+| `FO_MCP_CONNECTION_ID` | (MCP example) a registered MCP connection ID for the agent |
+
+## Examples
+
+- **`langgraph_basic.py`** — a LangGraph agent with two local tools and the LLM
+  routed through the sidecar chain-link. Exercises tool governance + LLM
+  governance.
+- **`langgraph_notion_mcp.py`** — adds a Notion MCP server (via the sidecar's
+  MCP proxy) and a local `write_to_file` tool, then asks the agent to fetch
+  customer info from Notion and write it to a local file. Exercises **MCP +
+  local tool** governance together.
+
+```bash
+FO_AGENT_ID=... FO_PRIVATE_KEY_PATH=... OPENAI_API_KEY=... \
+  python langgraph_basic.py
+
+FO_AGENT_ID=... FO_PRIVATE_KEY_PATH=... OPENAI_API_KEY=... \
+  FO_MCP_CONNECTION_ID=... python langgraph_notion_mcp.py
+```
+
+Each run prints a `[GOVERN]` line for every governed action (channel, tool,
+decision), so you can see exactly what FirstOps evaluated.

firstops-0.2.0/examples/_shared.py

@@ -0,0 +1,32 @@
+"""Shared boilerplate for the example agents: config + a governance tracer."""
+
+import os
+
+
+def load_config() -> dict:
+    agent_id = os.environ["FO_AGENT_ID"].strip()
+    key_path = os.environ["FO_PRIVATE_KEY_PATH"]
+    with open(key_path) as f:
+        key_pem = f.read()
+    return {
+        "agent_id": agent_id,
+        "key_pem": key_pem,
+        "gateway": os.environ.get("FO_GATEWAY", "https://api.firstops.dev"),
+        "port": int(os.environ.get("FO_PORT", "9322")),
+    }
+
+
+def trace(fo) -> None:
+    """Wrap the enforcement client so every governed action prints."""
+    orig = fo.enforcement.evaluate
+
+    def traced(event):
+        d = orig(event)
+        print(
+            f"   [GOVERN] {event.channel:<13} {event.event_type:<14} "
+            f"{event.tool_name:<32} -> {d.action}"
+            + (f"  (FAILED_OPEN: {d.reason})" if d.failed_open else "")
+        )
+        return d
+
+    fo.enforcement.evaluate = traced

firstops-0.2.0/examples/claude_sdk_basic.py

@@ -0,0 +1,66 @@
+"""Claude Agent SDK agent governed by FirstOps.
+
+The Claude Agent SDK runs tools (Bash, Write, Read, MCP) inside the Claude Code
+subprocess. FirstOps governs each one via a single PreToolUse hook — block,
+rewrite args (updatedInput), or allow — the daemon model, in-process.
+
+`permission_mode="bypassPermissions"` makes the FirstOps hook the sole gate:
+a hook `deny` still blocks; everything else flows. Run with the env vars in
+README.md (no OpenAI key needed — Claude uses your local Claude Code auth).
+"""
+
+import asyncio
+from pathlib import Path
+
+import firstops
+from claude_agent_sdk import (
+    AssistantMessage,
+    ClaudeAgentOptions,
+    ResultMessage,
+    TextBlock,
+    ToolUseBlock,
+    query,
+)
+from firstops.integrations.claude import firstops_hooks
+
+from _shared import load_config, trace
+
+WORKDIR = Path(__file__).parent / "claude_work"
+
+
+async def main():
+    cfg = load_config()
+    fo = firstops.init(
+        cfg["agent_id"], cfg["key_pem"], gateway_url=cfg["gateway"], port=cfg["port"]
+    )
+    trace(fo)
+    WORKDIR.mkdir(exist_ok=True)
+    try:
+        options = ClaudeAgentOptions(
+            hooks=firstops_hooks(fo),  # ← every tool call governed by FirstOps
+            allowed_tools=["Bash", "Write", "Read"],
+            permission_mode="bypassPermissions",
+            cwd=str(WORKDIR),
+        )
+        prompt = (
+            "Create a file named greeting.txt containing exactly "
+            "'Hello from a FirstOps-governed Claude agent'. "
+            "Then run a bash command to print today's date. "
+            "Finally, read greeting.txt back and report its contents."
+        )
+        print("\n>>> running Claude agent (tools governed via PreToolUse hook)\n")
+        async for message in query(prompt=prompt, options=options):
+            if isinstance(message, AssistantMessage):
+                for block in message.content:
+                    if isinstance(block, TextBlock) and block.text.strip():
+                        print(f"   [CLAUDE] {block.text.strip()[:160]}")
+                    elif isinstance(block, ToolUseBlock):
+                        print(f"   [TOOL-USE] {block.name}  {block.input}")
+            elif isinstance(message, ResultMessage):
+                print(f"\n>>> result:\n{getattr(message, 'result', message)}")
+    finally:
+        firstops.shutdown()
+
+
+if __name__ == "__main__":
+    asyncio.run(main())

firstops-0.2.0/examples/claude_sdk_mcp.py

@@ -0,0 +1,70 @@
+"""Claude Agent SDK agent with a Notion MCP server, governed by FirstOps.
+
+Same daemon-model hook as claude_sdk_basic.py, but now the agent also talks to
+a Notion MCP server (through the FirstOps proxy). The single PreToolUse hook
+governs BOTH the MCP tool calls (mcp__notion__*) and the built-in Write tool.
+
+Run with the env vars in README.md, incl. FO_MCP_CONNECTION_ID. Uses your local
+Claude Code auth (no OpenAI key needed).
+"""
+
+import asyncio
+import os
+from pathlib import Path
+
+import firstops
+from claude_agent_sdk import (
+    AssistantMessage,
+    ClaudeAgentOptions,
+    ResultMessage,
+    TextBlock,
+    ToolUseBlock,
+    query,
+)
+from firstops.integrations.claude import firstops_hooks
+
+from _shared import load_config, trace
+
+WORKDIR = Path(__file__).parent / "claude_work"
+
+
+async def main():
+    cfg = load_config()
+    conn_id = os.environ["FO_MCP_CONNECTION_ID"].strip()
+
+    fo = firstops.init(
+        cfg["agent_id"], cfg["key_pem"], gateway_url=cfg["gateway"], port=cfg["port"]
+    )
+    trace(fo)
+    WORKDIR.mkdir(exist_ok=True)
+    try:
+        options = ClaudeAgentOptions(
+            hooks=firstops_hooks(fo),  # governs both MCP and built-in tools
+            mcp_servers={
+                "notion": {"type": "http", "url": firstops.mcp_url(conn_id)}
+            },
+            allowed_tools=["Write", "Read", "mcp__notion"],
+            permission_mode="bypassPermissions",
+            cwd=str(WORKDIR),
+        )
+        prompt = (
+            "Use the Notion tools to find the customer database and fetch the "
+            "customer records. Then write the customer info to a file named "
+            "customers_claude.txt."
+        )
+        print("\n>>> running Claude agent (Notion MCP + Write, governed)\n")
+        async for message in query(prompt=prompt, options=options):
+            if isinstance(message, AssistantMessage):
+                for block in message.content:
+                    if isinstance(block, TextBlock) and block.text.strip():
+                        print(f"   [CLAUDE] {block.text.strip()[:140]}")
+                    elif isinstance(block, ToolUseBlock):
+                        print(f"   [TOOL-USE] {block.name}")
+            elif isinstance(message, ResultMessage):
+                print(f"\n>>> result:\n{getattr(message, 'result', message)}")
+    finally:
+        firstops.shutdown()
+
+
+if __name__ == "__main__":
+    asyncio.run(main())

firstops-0.2.0/examples/customers_openai.txt

@@ -0,0 +1,21 @@
+#	Name	Email	Phone	Company	Revenue ($)	Plan	Status
+1	Sarah Chen	sarah.chen@acmecorp.io	+1-415-555-0142	Acme Corp	248,000	Enterprise	Active
+2	Marcus Johnson	marcus.j@brevity.co	+1-212-555-0198	Brevity Inc	85,500	Pro	Active
+3	Priya Sharma	priya@novatech.in	+91-98765-43210	NovaTech	412,000	Enterprise	Active
+4	James O'Brien	jobrien@lumendata.com	+44-20-7946-0958	Lumen Data	67,200	Starter	Churned
+5	Mei Lin	mei.lin@zephyrcloud.io	+65-9123-4567	Zephyr Cloud	195,000	Pro	Active
+6	Carlos Ruiz	cruiz@fintechflow.mx	+52-55-5555-0147	FintechFlow	320,000	Enterprise	Active
+7	Aisha Patel	aisha@gridpoint.ai	+1-650-555-0173	GridPoint AI	54,800	Starter	Trial
+8	Tom Eriksson	tom.e@nordicsaas.se	+46-70-123-4567	Nordic SaaS	128,500	Pro	Active
+9	Rachel Kim	rkim@ocelotlabs.com	+1-310-555-0261	Ocelot Labs	91,000	Pro	Churned
+10	David Müller	dmuller@berlinops.de	+49-30-5555-0184	BerlinOps	275,000	Enterprise	Active
+11	Fatima Al-Hassan	fatima@clearstack.ae	+971-50-555-0139	ClearStack	182,000	Pro	Active
+12	Liam Cooper	lcooper@pulseio.com.au	+61-4-5555-0192	Pulse.io	43,200	Starter	Trial
+13	Yuki Tanaka	yuki@kaizenlabs.jp	+81-3-5555-0167	Kaizen Labs	356,000	Enterprise	Active
+14	Nina Petrova	nina.p@dataweave.ru	+7-495-555-0128	DataWeave	72,400	Pro	Churned
+15	Ben Adeyemi	ben@scalepath.ng	+234-801-555-0145	ScalePath	38,900	Starter	Active
+16	Sophie Dubois	sdubois@cloudnine.fr	+33-1-5555-0176	CloudNine	210,000	Enterprise	Active
+17	Raj Menon	raj@bytebridge.io	+1-512-555-0203	ByteBridge	99,800	Pro	Active
+18	Emma Walsh	ewalsh@peakvector.ie	+353-1-555-0154	PeakVector	156,300	Pro	Active
+19	Alex Novak	anovak@synchub.cz	+420-222-555-016	SyncHub	61,700	Starter	Churned
+20	Isabela Costa	icosta@flowmetrics.br	+55-11-5555-0189	FlowMetrics	287,500	Enterprise	Active

firstops-0.2.0/examples/langgraph_basic.py

@@ -0,0 +1,66 @@
+"""LangGraph agent governed by FirstOps — tool calls + LLM, no MCP.
+
+Every LLM call routes through the sidecar chain-link; every tool call is
+intercepted by FirstOpsMiddleware. Run with the env vars in README.md.
+"""
+
+import os
+
+import firstops
+from firstops.integrations.langgraph import FirstOpsMiddleware
+from langchain.agents import create_agent
+from langchain_core.tools import tool as lc_tool
+from langchain_openai import ChatOpenAI
+
+from _shared import load_config, trace
+
+
+@lc_tool
+def get_weather(city: str) -> str:
+    """Get the current weather for a city."""
+    print(f"   [TOOL get_weather] city={city}")
+    return f"It is 21C and sunny in {city}."
+
+
+@lc_tool
+def send_email(to: str, body: str) -> str:
+    """Send an email to a recipient."""
+    print(f"   [TOOL send_email] to={to} body={body!r}")
+    return "email sent"
+
+
+def main():
+    cfg = load_config()
+    fo = firstops.init(
+        cfg["agent_id"], cfg["key_pem"], gateway_url=cfg["gateway"], port=cfg["port"]
+    )
+    trace(fo)
+    try:
+        llm = ChatOpenAI(
+            model="gpt-4o-mini",
+            base_url=firstops.llm_base_url("openai"),
+            api_key=os.environ["OPENAI_API_KEY"],
+        )
+        agent = create_agent(
+            model=llm,
+            tools=[get_weather, send_email],
+            middleware=[FirstOpsMiddleware(fo)],
+        )
+        print("\n>>> invoking agent\n")
+        result = agent.invoke(
+            {
+                "messages": [
+                    {
+                        "role": "user",
+                        "content": "Check the weather in Paris, then email it to alice@example.com.",
+                    }
+                ]
+            }
+        )
+        print(f"\n>>> final answer:\n{result['messages'][-1].content}\n")
+    finally:
+        firstops.shutdown()
+
+
+if __name__ == "__main__":
+    main()