Context-driven data pipeline with budget enforcement and pluggable context slicing
Project description
Relay
Agent-agent context passing, done right.
Relay is a lightweight, open source Python middleware library for passing context reliably between AI agents in a multi-agent pipeline. Works with any LLM provider or framework — LangChain, OpenAI, Anthropic, LiteLLM, or your own agents.
The Problem
One hallucinating agent silently corrupts the shared context, and every downstream agent inherits the damage. Existing orchestration tools treat the context window as a mutable blob with no version control.
The Solution
Relay treats context like a ledger: append-only, signed at every step, and reversible.
Features
- Context Broker — Normalizes, timestamps, and cryptographically signs context envelopes
- Handoff Validator — Detects contradictions and triggers rollback on corruption
- Snapshot Store — Persists immutable checkpoints for automatic rollback
- Budget Enforcer — Hard token cap enforcement before every agent call
- Slicer — Pluggable context slicing strategies (recency, relevance, structural)
- Manifest Boundaries — Agent manifests define read/write permissions with hash verification
Installation
pip install relay-middleware
Or from source:
git clone https://github.com/kridaydave/Relay.git
cd Relay
pip install -e .
Optional: install tiktoken for precise token counting:
pip install relay-middleware[tiktoken]
The Aha Moment
Without Relay (manual, error-prone):
# Agent 1 produces output
agent1_output = {"entities": ["Apple", "2024 revenue"], "summary": "Apple grew"}
# Manual serialization — easy to lose data, corrupt context
context = json.dumps(agent1_output)
# Agent 2 receives corrupted context
agent2_input = f"Given: {context}\nAnalyze this."
With Relay (automatic, verified):
from relay.core_pipeline import CoreRelayPipeline
pipeline = CoreRelayPipeline(
signing_secret="your-secret-key",
token_budget=8000
)
# Agent 1 — creates signed envelope
result = pipeline.execute_step({"entities": ["Apple"], "revenue": "2024"})
envelope1 = result.value # signed, immutable
# Agent 2 — validator detects contradiction
# If Agent 2 accidentally drops "entities", rollback triggers automatically
result = pipeline.execute_step({"summary": "growth"}) # contradiction!
What happens on contradiction:
# Validator detects: critical key "entities" disappeared
# Relay automatically rolls back to last clean snapshot
result = pipeline.rollback()
restored_envelope = result.value
# Now you have the clean envelope from step 1
Budget & Slicing (v0.2)
Enforce token limits and slice context intelligently:
from relay.core_pipeline import CoreRelayPipeline
from relay.budget import TiktokenCounter
from relay.slicer import AgentManifest, RecencySlicePacker
# Create manifest defining agent permissions
manifest = AgentManifest(
agent_id="agent-1",
task_description="Analyze entities and summarize findings",
reads=frozenset({"entities", "summary"}),
writes=frozenset({"analysis"}),
max_tokens=4000
)
# Initialize pipeline with budget enforcement and slicer
pipeline = CoreRelayPipeline(
signing_secret="your-secret",
token_budget=8000,
token_counter=TiktokenCounter(),
slice_packer=RecencySlicePacker()
)
# Execute step with manifest validation
result = pipeline.execute_step_with_manifest(
agent_output={"analysis": "growth at 5%"},
manifest=manifest
)
The budget enforcer checks projected token cost before each call. The slicer selects context based on strategy. Manifest boundaries validate write permissions.
How It Works
Agent 1 → [Sign Envelope] → Agent 2 → [Validate] → Agent 3
↓
[Snapshot]
↓
[Rollback if dirty]
Every handoff is signed and validated. If corruption is detected, Relay silently rolls back to the last clean checkpoint.
Context Envelope
Every context move between agents is wrapped in a signed, immutable envelope:
{
"relay_version": "0.2.0",
"pipeline_id": "uuid-v4",
"step": 2,
"timestamp": "2026-05-04T10:22:00Z",
"token_budget_used": 1840,
"token_budget_total": 8000,
"payload": {...},
"manifest_hash": "sha256:abc123...",
"signature": "sha256:def456..."
}
Error Handling
Relay uses Result types instead of exceptions:
from relay.types import Success, Failure, Result
result = pipeline.execute_step({"task": "work"})
if isinstance(result, Success):
envelope = result.value
elif isinstance(result, Failure):
print(f"Error: {result.reason} (code: {result.code})")
Testing
pytest tests/unit -v
Quality gates:
- mypy --strict passes
-
80% test coverage
- Every public function has a test
License
MIT License - see LICENSE file
Resources
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file relay_middleware-0.3.0.tar.gz.
File metadata
- Download URL: relay_middleware-0.3.0.tar.gz
- Upload date:
- Size: 31.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9486b5947532f3fe592517cfd9a658712a4469c397705704290a87ad474e26da
|
|
| MD5 |
95de1a58bfc679f5b34f33348e536f8d
|
|
| BLAKE2b-256 |
7fde7b783fd74bb3269f6dc7f2821f4bfa3d6d2d486e8e5b0e92f6fae988cd95
|
File details
Details for the file relay_middleware-0.3.0-py3-none-any.whl.
File metadata
- Download URL: relay_middleware-0.3.0-py3-none-any.whl
- Upload date:
- Size: 38.6 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9ddbc05eed866f7c493859763b3fe5fcd384b09b8368c801ea89f77c7748dc52
|
|
| MD5 |
d6be1dabd655596bd75a34cc9064b707
|
|
| BLAKE2b-256 |
06e790172e4f4427f41b162650355e8afa314b10df92ba5448621ec83d361393
|
