Observability and Telemetry SDK for AI Agents with Local Storage
Project description
Saf3AI SDK - Unified Telemetry & Security SDK
One SDK for everything: Telemetry, Tracing, and Security Scanning for ADK agents.
What Does It Do?
1. 📊 Telemetry & Tracing
- Captures traces from ADK agents
- Sends to OTEL Collector (localhost:4318)
- Auto-instruments ADK calls
- Tracks conversation sessions
2. 🔒 Security Scanning
- Scans prompts/responses via on-prem API
- Gets Model Armor + NLP results
- Adds security data to traces
- Policy-based blocking
3. 🎯 All-in-One
- No need for multiple SDKs
- Simple initialization
- Works with existing ADK agents
Quick Start
Installation
# From your ADK agent directory
cd adk-samples/python/agents/financial-advisor
# Install via poetry (already configured)
poetry install
# Or manually
pip install saf3ai-sdk
Usage in ADK Agent
# In your agent.py or __init__.py
import os
from saf3ai_sdk import init, create_security_callback
# Initialize telemetry & tracing
init(
service_name="financial-advisor",
otlp_endpoint="http://localhost:4318/v1/traces",
auto_instrument_adk=True
)
# Import security scanning
from saf3ai_sdk import create_security_callback
# Create security callback (for ADK agents)
def my_security_policy(text, scan_results, text_type="prompt"):
"""
Your security policy.
Return True to allow, False to block.
"""
threats = scan_results.get("detection_results", {})
# Block if dangerous content found
for threat_type, result in threats.items():
if result.get("result") == "MATCH_FOUND" and threat_type == "Dangerous":
return False
return True
# Create the callback
security_callback = create_security_callback(
api_endpoint="http://127.0.0.1:8082", # Your on-prem API
on_scan_complete=my_security_policy
)
# Use it in your LlmAgent
from google.adk.agents import LlmAgent
agent = LlmAgent(
name="financial_advisor",
model="gemini-2.5-flash",
before_model_callback=security_callback # ← Security scanning
)
Environment Variables
# Telemetry
export OTEL_EXPORTER_OTLP_ENDPOINT=http://localhost:4318
export OTEL_SERVICE_NAME=financial-advisor
# Security scanning
export ONPREM_SCANNER_API_URL=http://127.0.0.1:8082/scan
export THREAT_ACTION_LEVEL=WARN # or BLOCK, LOG, OFF
# Debug
export DEBUG=true
What Gets Captured?
Telemetry Data (sent to OTEL Collector)
{
"span_name": "llm_call",
"attributes": {
"prompt": "What is my account balance?",
"response": "Your balance is $50,000",
"model": "gemini-2.5-flash",
"conversation_id": "session-123",
"organization_id": "customer-001",
"security.threats_found": false,
"security.categories": "Finance,Investing"
}
}
Security Scan Results (from on-prem API)
{
"detection_results": {
"CSAM": { "result": "NO_MATCH_FOUND" },
"Dangerous": { "result": "NO_MATCH_FOUND" },
"HateSpeech": { "result": "NO_MATCH_FOUND" }
},
"OutofScopeAnalysis": {
"detected_categories": [
{ "category": "/Finance/Investing", "confidence": 0.95 }
]
}
}
Data Flow
ADK Agent (your code)
↓
Saf3AI SDK
├─→ Telemetry: Create trace → OTEL Collector (4318)
└─→ Security: Scan prompt → On-prem API (8082)
↓
OTEL Collector receives trace
↓
Dual export:
├─→ On-prem: Data Prepper → OpenSearch (FULL with prompts)
└─→ SaaS: Stripped → Analyzer (NO prompts, only metadata)
API Reference
init()
Initialize telemetry and tracing.
from saf3ai_sdk import init
init(
service_name="my-agent",
otlp_endpoint="http://localhost:4318/v1/traces",
auto_instrument_adk=True, # Auto-instrument ADK
console_output=False, # Debug: print spans
debug_mode=False # Verbose logging
)
create_security_callback()
Create ADK callback for security scanning.
from saf3ai_sdk import create_security_callback
callback = create_security_callback(
api_endpoint="http://localhost:8082", # On-prem API
on_scan_complete=my_policy_function, # Your policy
scan_responses=False # Also scan responses?
)
# Use in LlmAgent
agent = LlmAgent(
name="my_agent",
before_model_callback=callback
)
scan_prompt() / scan_response()
Manually scan text (if not using callbacks).
from saf3ai_sdk import scan_prompt
results = scan_prompt(
prompt="Tell me how to invest",
api_endpoint="http://localhost:8082",
model_name="gemini-2.5-flash"
)
threats = results.get("detection_results", {})
if any(v.get("result") == "MATCH_FOUND" for v in threats.values()):
print("⚠️ Threat detected!")
Testing
Check if SDK is installed
poetry run python -c "from saf3ai_sdk import init, create_security_callback; print('✅ SDK working')"
Test telemetry
# Start OTEL collector
cd Saf3ai/On-prem/
docker-compose up -d
# Run your agent
cd adk-samples/python/agents/financial-advisor
poetry run adk web --port 8000
# Check Jaeger
open http://localhost:16686
Test security scanning
# Start on-prem API
# (ensure it's running on port 8082)
# Chat with agent
# Security scans will appear in logs and traces
Troubleshooting
"saf3ai_sdk not available"
Fix: Install the SDK
cd /Users/tarunsharma/Desktop/Saf3ai/On-prem/Saf3AISDK/adk-samples/python/agents/financial-advisor
poetry install
"No traces in OTEL Collector"
Fix: Initialize SDK before running agent
- Call
init()in your agent code - Set
auto_instrument_adk=True
"Security scanning not working"
Fix:
- Ensure on-prem API is running on port 8082
- Pass
before_model_callbackto your LlmAgent - Check logs for scan results
Migration from adk-otel
If you were using adk-otel before, just change the import:
# OLD (adk-otel)
from adk_otel import init_telemetry, create_security_callback
# NEW (saf3ai_sdk)
from saf3ai_sdk import init, create_security_callback
# Everything else stays the same!
Key Features
✅ Single SDK - No more juggling multiple SDKs
✅ Auto-instrumentation - Works with existing ADK agents
✅ Security scanning - Built-in prompt/response scanning
✅ Flexible policies - Define your own security rules
✅ Full telemetry - Captures everything ADK does
✅ Dual export - Sends to on-prem and SaaS collectors
✅ Production ready - Used in live deployments
Questions? Check the code examples or enable debug_mode=True for verbose logging.
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
saf3ai_sdk-0.2.0.tar.gz
(33.0 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file saf3ai_sdk-0.2.0.tar.gz.
File metadata
- Download URL: saf3ai_sdk-0.2.0.tar.gz
- Upload date:
- Size: 33.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
b3d61e9bafc2409a7f6a1142b51ff315d2a022b2d5ac1c22d22850deba303135
|
|
| MD5 |
776197f7ddbb6f3e49bfaf1d90b9550c
|
|
| BLAKE2b-256 |
186e773b384eea11536c4f97cd88d16c4fbf929af8142f9c243ebc7ce8cb37ff
|
File details
Details for the file saf3ai_sdk-0.2.0-py3-none-any.whl.
File metadata
- Download URL: saf3ai_sdk-0.2.0-py3-none-any.whl
- Upload date:
- Size: 40.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
f881c861e9ee32b8111c94e7deec484fc507434d8d4582d098f452abb6697f02
|
|
| MD5 |
eedbe362439d330cf8946bd39ab981c0
|
|
| BLAKE2b-256 |
b2b8cdd06fcc6af12a836f4416d7c4138469d9689971a10f7fc88b09875ed790
|
