Skip to main content

Eden runtime SDK — auto-instrumentation, tracing, and fire-and-forget telemetry for LLM applications.

Project description

Eden Python SDK

Lightweight, fire-and-forget observability for LLM applications.

  • @trace_agent decorator and with eden.trace(...) context manager
  • One-call auto-instrumentation for OpenAI, Anthropic, LangChain, LlamaIndex, CrewAI, AutoGen, Mastra (no-op for TS-only frameworks)
  • Async, batched HTTP sender with a 5 ms p99 overhead budget on the producer hot path
  • Zero required dependencies beyond httpx (zero required deps beyond)

Install

# From PyPI (published as eden-sdk)
pip install eden-sdk

# Optional framework integrations (auto-instrumentation):
pip install "eden-sdk[openai,anthropic,langchain]"
pip install "eden-sdk[all]"   # every supported framework

# Or install from source (this repo):
cd sdk/python
pip install -e .[dev]            # core + tests
pip install -e .[openai,anthropic,langchain]   # add instrumentations
pip install -e .[all]            # every supported framework

Quick start

import eden

eden.configure(
    org_id="org_123",
    api_key="sk-eden-...",
    base_url="https://api.eden.dev",  # default: http://localhost:8000
)

eden.instrument()  # patches every installed framework

@eden.trace_agent(name="my-agent", tags=["prod"])
async def answer(question: str) -> str:
    from openai import AsyncOpenAI
    client = AsyncOpenAI()
    resp = await client.chat.completions.create(
        model="gpt-4o-mini",
        messages=[{"role": "user", "content": question}],
    )
    return resp.choices[0].message.content

Events are batched in memory and posted to the Eden ingestion endpoint (/orgs/{org_id}/ingest/{format}) on a background thread. The shape matches what src/eden/observability/ingestion/providers.py already decodes — the SDK does no extra normalization.

Configuration

All settings are read from environment variables first, then overridden by eden.configure(...):

Env var Default Purpose
EDEN_ORG_ID (required) Org the events are attributed to. EDEN_DEFAULT_ORG accepted as an alias for parity with the TypeScript SDK.
EDEN_API_KEY (required) Programmatic key (X-Org-Api-Key). EDEN_ORG_API_KEY accepted as an alias for parity with the TypeScript SDK.
EDEN_BASE_URL http://localhost:8000 Gateway / ingestion base URL
EDEN_PROJECT_ID default Multi-tenant project label
EDEN_BATCH_SIZE 32 Max events per HTTP POST
EDEN_FLUSH_INTERVAL_MS 250 Max time to buffer a batch
EDEN_MAX_QUEUE 4096 Backpressure cap (oldest dropped first)
EDEN_DISABLED 0 Turn the SDK into a complete no-op
EDEN_DEBUG 0 Mirror events to stderr instead of POST

Auto-instrumentation

eden.instrument()                     # everything installed
eden.instrument("openai", "langchain")  # specific frameworks
eden.uninstrument("openai")           # tear down a patch
Framework Mechanism
openai Monkey-patch chat.completions.create
anthropic Monkey-patch messages.create
langchain BaseCallbackHandler registered globally
llama_index BaseSpanHandler registered via Settings.callback_manager
crewai Default step_callback + task_callback
autogen Global register_reply_hook on ConversableAgent
mastra No-op (use the TypeScript SDK)

Token extraction & model normalization

Every instrumentation routes through two shared helpers exposed at eden_sdk._tokens:

from eden_sdk._tokens import extract_usage, normalize_model_name

# Extract a normalized usage dict from any provider's usage blob
extract_usage({
    "prompt_tokens": 100,
    "completion_tokens": 50,
    "prompt_tokens_details": {"cached_tokens": 25},
})
# => {"input_tokens": 100, "output_tokens": 50,
#     "cache_read_tokens": 25, "cache_creation_tokens": None}

# Strip dated suffixes / -latest aliases so pricing lookups hit
# a single row
normalize_model_name("gpt-4o-2024-08-06")           # => "gpt-4o"
normalize_model_name("claude-3-5-sonnet-20241022") # => "claude-3-5-sonnet"
normalize_model_name("claude-3-5-sonnet-latest")   # => "claude-3-5-sonnet"

The SDK emits model_normalized on every auto-instrumented event so the server-side pricing lookup never has to do the stripping itself. Missing token counts are reported as None (never zero) so billing math doesn't accidentally bill free input.

Examples

export EDEN_ORG_ID=org_...
export EDEN_API_KEY=sk-...
export OPENAI_API_KEY=sk-...
python examples/01_basic_chat.py      # OpenAI non-streaming
python examples/02_langchain.py       # LangChain
python examples/03_anthropic.py       # Anthropic
python examples/04_streaming.py       # OpenAI streaming (TTFT/ITL/TPOT)

Each example traces a real LLM call and prints the result. Verify that a row lands in telemetry_events with source_format matching the framework (openai, anthropic, or framework for chains).

Streaming

eden.instrument("openai") / eden.instrument("anthropic") transparently wrap streaming responses too — no code changes are needed. For each stream=True call the SDK emits:

  • one llm_completion_stream event with ttft_ms, itl_ms_avg, tpot_ms, output_tokens, input_tokens, cache_read_input_tokens, cache_creation_input_tokens, chunk_count, finish_reason, and model_normalized (e.g. gpt-4o for both gpt-4o and gpt-4o-2024-08-06);
  • one row per chunk to /ingest/chunks with the delta_text and the per-chunk ttft_ms / itl_ms / tpot_ms.

Cache tokens are significant for billing — Anthropic's prompt cache gives a ~90% discount on cache reads, so the SDK forwards cache_read_input_tokens / cache_creation_input_tokens to the gateway when the provider returns them.

model_normalized is the dated-suffix-stripped model alias (gpt-4o-2024-08-06gpt-4o, claude-3-5-sonnet-20241022claude-3-5-sonnet, claude-3-5-sonnet-latestclaude-3-5-sonnet) so the server-side pricing lookup hits a single row regardless of which alias the caller used.

import eden
from openai import OpenAI

eden.configure(org_id="...", api_key="...", base_url="...")
eden.instrument("openai")

client = OpenAI()
stream = client.chat.completions.create(
    model="gpt-4o-mini",
    messages=[{"role": "user", "content": "Stream a haiku."}],
    stream=True,
)
for chunk in stream:
    print(chunk.choices[0].delta.content or "", end="", flush=True)
print()

eden.get_default_client().flush()
# → /ingest/openai  (one llm_completion_stream event)
# → /ingest/chunks  (one row per chunk)

The same applies to Anthropic — eden.instrument("anthropic") understands message_start, content_block_delta, message_delta, and message_stop events and emits matching metrics.

Testing

cd sdk/python
pip install -e .[dev]
pytest -v                  # unit + integration
pytest -v -m perf          # perf microbench (p99 < 5 ms)

The perf test asserts that the SDK's enqueue + @trace_agent wrapper adds no more than 5 ms p99 over an uninstrumented baseline.

Architecture

+-------------------+      +------------------+      +------------------+
|  User code        | ---> |  EdenClient      | ---> |  /ingest/{fmt}   |
|  (sync/async)     |      |  (queue + flush) |      |  (FastAPI route) |
+-------------------+      +------------------+      +------------------+
        ^                                                       |
        |                                                       v
   eden.trace /                                       src/eden/observability/
   @trace_agent                                       ingestion/providers.py
                                                          (existing decoders)
  • The EdenClient is a singleton: get_default_client().
  • Producer calls are non-blocking (queue.put_nowait).
  • A single background thread runs the async httpx loop.
  • The ingestion route's auth (get_ingestion_auth) accepts the X-Org-Id + X-Org-Api-Key headers this SDK sends.

Eden AI gateway (OpenAI-compatible)

Eden ships an OpenAI-compatible proxy at https://gateway.eden.ai/v1 that exposes /chat/completions, /completions, /embeddings, and /models. Point any OpenAI-compatible client at it and Eden applies PII redaction, semantic caching, per-tenant budgets, circuit breakers, and cost-aware routing in the path.

from openai import OpenAI

client = OpenAI(
    base_url="https://gateway.eden.ai/v1",
    api_key="<EDEN_API_KEY>",  # your org's Eden API key
    default_headers={
        # Per-request upstream: route to your own OpenAI-compatible
        # server (e.g. an internal vLLM proxy) instead of the
        # Eden-default upstream. Both are optional; when omitted,
        # Eden uses the server-configured OpenRouter / MiniMax.
        "X-Upstream-Base-Url": "https://my-internal-llm.example.com/v1",
        "X-Upstream-Api-Key": "<your-internal-key>",
        # Optional: hint for telemetry labelling + provider-specific
        # header defaults (anthropic-version, etc.).
        "X-Upstream-Provider": "openai",
        # OpenRouter attribution (optional).
        "HTTP-Referer": "https://my-app.example.com",
        "X-Title": "my-app",
    },
)

resp = client.chat.completions.create(
    model="gpt-4o-mini",  # any model your upstream supports
    messages=[{"role": "user", "content": "hello"}],
)

The gateway strips X-Upstream-Api-Key, X-Org-Api-Key, and X-Org-Id before forwarding to the upstream so Eden credentials never leak to a third-party LLM provider. Other X-* headers (OpenRouter HTTP-Referer / X-Title, Anthropic anthropic-version / anthropic-beta, OpenRouter X-OpenRouter-Beta) flow through unchanged.

Client-side PII safety net

In addition to the gateway's per-tenant PII policy, the SDK runs its own redaction pass on every payload before it leaves the process. This is a belt-and-suspenders backstop for local dev and for the case where the gateway is down or misconfigured. The default is on — to disable it (e.g. for compliance audits where you need to verify the SDK never modifies your data), pass redact_on_client=False to :func:eden.configure:

import eden
eden.configure(org_id="...", api_key="...", redact_on_client=False)

The client-side pass covers emails, formatted phones, SSNs, and Luhn-valid credit cards in JSON string values (dict + list recursively walked, plus string keys). False-positive guards keep pure-digit IDs, hex digests, and token counts untouched.

PII redaction

Every gateway call passes through Eden's PII redactor before the upstream sees it. By default, the redactor masks emails, phones, SSNs, credit cards, JWTs, API keys, AWS secrets, private keys, IBANs, passports, and IP addresses. Three knobs control the behaviour — pick the one that matches your scenario:

1. Per-tenant policy (recommended for org-wide defaults). The org's org_pii_policies row drives the active category set, the masker mode, and the fail-closed behaviour. Admins set it via PUT /orgs/{org_id}/pii-policy or the portal. Three modes:

  • off — never mask. Use when the system is designed to use the raw PII values (e.g. an internal credential-management flow that needs the API key to authenticate downstream).
  • redact (default) — mask per the active category set.
  • fail_closed — mask + reject with 422 when a credential category (JWT, API key, AWS secret, private key, etc.) is detected. Use for tenants handling user-supplied prompts that must never reach the upstream unmasked.

2. Per-request opt-out (recommended for one-off calls). Send X-PII-Bypass: true on a specific request to skip redaction for that call, regardless of the tenant policy:

headers = cfg.gateway_headers(
    pii_bypass=True,  # skip PII redaction for this request
)

The same effect comes from a request-body field — useful for OpenAI-compatible clients that can't easily add headers:

client.chat.completions.create(
    model="gpt-4o-mini",
    messages=[...],
    extra_body={"pii_filter_enabled": False},
)

3. Disable a specific category. Set disabled_categories=["api_key", "url_with_creds"] in the policy when your flow intentionally carries API keys (e.g. the auth header of an outbound call the LLM has to make on the user's behalf). The masker will redact emails, phones, SSNs, etc. but leave credentials untouched.

Per-request bypass wins over per-tenant policy. If a tenant has mode="fail_closed" and a single request legitimately needs to send a credential, that request can opt out via X-PII-Bypass: true and the upstream sees the credential — the rest of the tenant's traffic remains fail-closed.

Programmatic filter configuration from the SDK

For call sites that want to configure PII (and any future gateway filters) from Python instead of hand-rolling headers, the SDK ships a typed filter config surface:

import eden
from eden_sdk.filters import FilterConfig, PIIConfig

# Process-wide defaults — applied to every gateway call.
eden.configure(
    org_id="org_123",
    api_key="sk-eden-...",
    filters=FilterConfig(
        pii=PIIConfig(
            mode="fail_closed",
            disabled_categories=["api_key"],  # opt out of specific categories
        ),
    ),
)

Or, per-call, build a configured OpenAI client in one call:

from eden_sdk import EdenConfig, FilterConfig, PIIConfig, openai_client

cfg = EdenConfig(org_id="org_123", api_key="sk-eden-...")
client = openai_client(
    cfg,
    filters=FilterConfig(pii=PIIConfig(mode="redact")),
    # Optional: route this specific call through your own
    # OpenAI-compatible upstream.
    upstream_base_url="https://my-internal-llm.example.com/v1",
    upstream_api_key="<your-internal-key>",
)

resp = client.chat.completions.create(
    model="gpt-5",
    messages=[{"role": "user", "content": "hello"}],
)

Or a one-shot helper for the common case:

from eden_sdk import (
    EdenConfig, FilterConfig, PIIConfig, chat_completion,
)

cfg = EdenConfig(org_id="org_123", api_key="sk-eden-...")
resp = chat_completion(
    cfg,
    model="gpt-5",
    messages=[{"role": "user", "content": "hello"}],
    filters=FilterConfig(pii=PIIConfig(mode="fail_closed")),
)

The SDK renders the filter config as the same wire headers the gateway already accepts (X-PII-Mode, X-PII-Disabled-Categories, X-PII-Bypass). Per-call filters layered via the filters= kwarg override the process-wide EdenConfig.filters for that one call. Adding a new server-side filter is a one-line change in sdk/python/eden_sdk/filters.py + one new field on FilterConfig.

The TypeScript SDK (@eden-ai/sdk) mirrors this surface: new FilterConfig({ pii: new PIIConfig({ mode: "fail_closed" }) }) plus sdk.gatewayHeaders({ filters }) and sdk.resolvedGatewayUrl().

License

Apache 2.0

What's new in 0.2.0

  • Span API. trace() now yields a Span with first-class set_input(), set_output(), set_tag(), and set_status() methods. The legacy with trace(...) as ctx: ctx.set_* shape remains supported.
  • Retry with backoff. EdenClient._send_batch retries transient gateway failures (3 attempts, honours Retry-After, never retries 4xx other than 408/429).
  • Detection helpers. eden.autoInstrument() / eden.detect_installed_frameworks() report which LLM SDKs are importable, mirroring the TypeScript SDK. All seven supported framework keys are always present in the result dict.
  • PII redaction is still the gateway's job. The SDK now also exports a redact_on_client: bool config flag (default True) that, when enabled, runs a small regex pass over outgoing payloads to mask obvious emails / phone numbers / SSN / credit card patterns before they reach the network. This is a safety net only — the gateway remains the authoritative redaction layer and the source of truth for tenant policy.
  • New examples. examples/05_crewai.py, examples/06_autogen.py, and examples/07_llamaindex.py mirror the LangChain example shape and exercise the corresponding auto-instrumentation.
  • CHANGELOG.md is now shipped with the package; see sdk/python/CHANGELOG.md for the full 0.2.0 notes.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

eden_sdk-0.2.7.tar.gz (80.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

eden_sdk-0.2.7-py3-none-any.whl (59.2 kB view details)

Uploaded Python 3

File details

Details for the file eden_sdk-0.2.7.tar.gz.

File metadata

  • Download URL: eden_sdk-0.2.7.tar.gz
  • Upload date:
  • Size: 80.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.12.11

File hashes

Hashes for eden_sdk-0.2.7.tar.gz
Algorithm Hash digest
SHA256 ed6d31593ca2c3eec9725804bbe97abb0e8a75bbf1088322294168ed8bcf0c0b
MD5 ca0f2edd2bf93da9d414237e6064e8e3
BLAKE2b-256 06b591d1002b1804fdf47f0d80812b3d837bed521a4c8fffb9e4c15ed8fb4752

See more details on using hashes here.

File details

Details for the file eden_sdk-0.2.7-py3-none-any.whl.

File metadata

  • Download URL: eden_sdk-0.2.7-py3-none-any.whl
  • Upload date:
  • Size: 59.2 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.12.11

File hashes

Hashes for eden_sdk-0.2.7-py3-none-any.whl
Algorithm Hash digest
SHA256 d1195dbbceec5839e4016008f8ba22cb8ff07794185d1814bb8801749c285b5f
MD5 d3ccb0a71294a6751cfcf3d584286ca5
BLAKE2b-256 1efa09f78eda1045a963bdc407e111ed7235354716867db380f70c688d5bf3c9

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page