Skip to content

feat: added ts-sdk with openAI sdk support#55

Merged
yanny-sec merged 26 commits into
secureagentics:mainfrom
Adarsh9977:ts-openai
Jun 25, 2026
Merged

feat: added ts-sdk with openAI sdk support#55
yanny-sec merged 26 commits into
secureagentics:mainfrom
Adarsh9977:ts-openai

Conversation

@Adarsh9977

@Adarsh9977 Adarsh9977 commented Jun 18, 2026

Copy link
Copy Markdown
Contributor

Summary

Adds @secureagentics/adrian-openai, a TypeScript provider package that instruments the official OpenAI Node SDK for Adrian security monitoring.

  • adrian.openai(client) — proxy wrapper around an existing OpenAI client; instruments chat.completions.create and responses.create without changing call sites
  • Chat Completions — captures paired LLM events for non-stream and streaming responses, including streamed tool-call aggregation and usage tokens
  • Responses API — captures text output, function/tool calls, instructions, and array-shaped input (including prior tool calls and outputs) for both stream and non-stream paths
  • adrian.captureTool() — wraps manual tool execution so tool start/end events are emitted and BLOCK/HITL policy can halt execution before the handler runs
  • Error capture — failed OpenAI requests and tool executions are recorded as LLM/tool events with error metadata
  • Shared capture helpers — reuses @secureagentics/adrian/capture from the core package for consistent event pairing and policy gating
  • Depends on @secureagentics/adrian (core TypeScript SDK). feat: added ts-core sdk #50

Test plan

  • cd sdk/typescript and run npm test -w @secureagentics/adrian-openai

Checklist

  • CLA signed (see CLA.md)
  • Tests pass locally
  • Docs updated where needed
  • British English; no em-dashes; no marketing fluff

Adarsh9977 added 20 commits June 12, 2026 01:25
@Adarsh9977
feat(sdk/typescript): add core TypeScript SDK package
487ad53 
Introduce @secureagentics/adrian with the event pipeline, PII redaction,
WebSocket streaming, policy gating, and core test suite. Includes shared
proto layout and workspace scaffolding for provider packages.
@Adarsh9977
chore(proto): move event.proto into sdk/python/adrian/proto
de7d91e 
Remove the legacy root proto/event.proto after relocating the schema into
the Python SDK package layout.
@Adarsh9977
fix(ts-core): keep proto layout aligned with main
5c047af 
Restore proto/event.proto at the repo root and drop the unrelated Python
proto relocation, Makefile, and SDK changes from the ts-core branch.
@Adarsh9977
fix(sdk/typescript): address core team feedback
7271a49 
Fix init option resolution so explicit params beat env vars and wsUrl: null
disables WebSocket. Align BLOCK-mode with Python fail-open, wire 4003 quota
reconnect delay, refactor shouldHalt to switch, export adrian namespace,
merge README docs, and add init/policy/ws tests.
@Adarsh9977
removed unnecessary readme
3d3b80c
@Adarsh9977
fix
d889006
@Adarsh9977
feat(sdk/typescript): add OpenAI provider package
480382d 
Add @secureagentics/adrian-openai with client wrapping, tool capture,
streaming support, and OpenAI-specific tests. Updates workspace docs for
the provider package workflow.
@Adarsh9977
removed core only documentation
064bde3
@Adarsh9977
Fix 4003 reconnect backoff and refresh TypeScript SDK docs
8f44bca
@Adarsh9977
updated package.json
c20e8cf
@Adarsh9977
integrity hash
49a711d
@Adarsh9977
fail open on missing toolcall id
61bde28
@Adarsh9977
updated 4003 reconnect
910be4b
@Adarsh9977
reconnect immediately on normal close like python sdk
31d2eba
@Adarsh9977
patch applied
0afe980
@Adarsh9977
updated patterns and strategies
25c4a2e
@Adarsh9977
added patterns test
921251f
@Adarsh9977
reabse ts-core
6db9f68
@Adarsh9977
Merge branch 'ts-core' into ts-openai
b77caf6
@Adarsh9977
Merge branch 'secureagentics:main' into ts-openai
77295df
@shahtajkhalid

shahtajkhalid commented Jun 23, 2026

Copy link
Copy Markdown
Contributor

Thanks for PR @Adarsh9977, needs to fix the following before we can merge:

  1. invocation_id is being randomly regenerated per call. Both captureLlmCall (common.ts:27) and captureTool (index.ts:66) is calling runWithInvocationId(randomUUID(), …), hence each LLM call and each tool call gets its own invocation, which degrades our classifier's context, since our backend groups context by the
    (session, invocation, agent_id) tuple.

@Adarsh9977

Adarsh9977 commented Jun 23, 2026

Copy link
Copy Markdown
Contributor Author

Thanks for PR @Adarsh9977, needs to fix the following before we can merge:

  1. invocation_id is being randomly regenerated per call. Both captureLlmCall (common.ts:27) and captureTool (index.ts:66) is calling runWithInvocationId(randomUUID(), …), hence each LLM call and each tool call gets its own invocation, which degrades our classifier's context, since our backend groups context by the
    (session, invocation, agent_id) tuple.

I'm looking on it thanks @shahtajkhalid

@Adarsh9977

Adarsh9977 commented Jun 23, 2026

Copy link
Copy Markdown
Contributor Author

@shahtajkhalid Done with the changes. Now it's taking the active invocation Id and if not present then it passes null. Just like we're doing in python.

Please take a look and let me know

@yanny-sec yanny-sec merged commit 402cfde into secureagentics:main Jun 25, 2026
@shahtajkhalid shahtajkhalid mentioned this pull request Jun 25, 2026
Closed
@yanny-sec yanny-sec mentioned this pull request Jun 29, 2026
Closed
7 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@yanny-sec yanny-sec yanny-sec approved these changes
@shahtajkhalid shahtajkhalid Awaiting requested review from shahtajkhalid shahtajkhalid is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Adarsh9977 @shahtajkhalid @yanny-sec