Skip to content

entropy0dev/sdk

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
.github/workflows
.github/workflows
 
 
examples/rag-agent
examples/rag-agent
 
 
packages
packages
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

Entropy0 SDK

AI agents fetch URLs, follow links, and act on domains they've never seen before. Most of the time that's fine. Sometimes it isn't — phishing infrastructure, newly registered lookalike domains, brand impersonation sites, or plain malware hosting.

Entropy0 adds a trust gate between your agent and the external web. One API call returns a machine-readable recommended action your agent can reason about before it fetches, navigates, or transacts.

Try it without signing up →

POST /v1/decide
{ "domain": "secure-login-verify-account.xyz" }

→ recommended_action: "deny"
  confidence: 91%
  signals: [NEWLY_REGISTERED_DOMAIN, BRAND_MISMATCH, CERTIFICATE_ANOMALY]

Packages

Package Registry Description
entropy0-langchain PyPI LangChain tool — trust-gate URLs before agents fetch from them
@entropy0/express npm Express middleware — evaluate request targets through /v1/decide

Quick start

LangChain (Python)

pip install entropy0-langchain
from entropy0_langchain import Entropy0Tool

tools = [Entropy0Tool(api_key="sk_ent0_xxxx")]
# Agent will call entropy0_trust_check before fetching any external URL

Express (Node.js)

npm install @entropy0/express
import { entropy0Guard } from "@entropy0/express";

app.use(entropy0Guard({ apiKey: process.env.ENTROPY0_API_KEY! }));
// Requests to flagged domains are blocked before your handlers run

Direct API

curl -X POST https://entropy0.ai/v1/decide \
  -H "X-API-Key: sk_ent0_xxxx" \
  -H "Content-Type: application/json" \
  -d '{"domain": "example.com"}'

How it works

Each decision runs a deterministic pipeline — same inputs always produce the same output:

  1. Classifies the domain (Clear Threat → Safe Known) using WHOIS, DNS, SSL, and threat intel feeds
  2. Maps classification to a base action under your chosen policy
  3. Shifts strictness based on interaction risk (fetch vs transactional vs privileged)
  4. Applies confidence clamps — low-confidence negatives never hard-deny
  5. Returns recommended_action + reason codes + uncertainty + bounded validity window

No probabilistic black boxes. Auditable, explainable, overridable.

Examples

Example Description
examples/rag-agent LangChain agent that trust-gates every URL before fetching content

Links

About

Domain trust API for AI agents — evaluate URLs before your agent fetches them

entropy0.ai

Topics

middleware express ai-safety threat-intelligence ai-agents llm langchain domain-intelligence

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

8 tags

Packages

 
 
 

Contributors

Languages