Skip to main content

SecureVector SDK for CrewAI — brings the local threat monitor's three controls (tool-call permissions, secret/data-leak detection, threat detection) to every CrewAI tool call, with tamper-evident audit logging.

Project description

SecureVector SDK for CrewAI

PyPI Downloads Python License

Bring the SecureVector local threat monitor's three controls — tool-call permissions, secret / data-leak detection, and threat detection — to every CrewAI tool call, with tamper-evident audit logging.

pip install securevector-sdk-crewai

📦 One install — batteries included. pip install securevector-sdk-crewai also installs the local SecureVector app (securevector-ai-monitor): the adapter and the detection engine + tamper-evident audit chain arrive in a single pip install. The SDK is a thin interception layer — the app must be running locally (securevector-app --web) for it to do anything.

Quick start

Wrap your tools (recommended — robust across CrewAI versions):

from securevector_sdk_crewai import secure_tools

agent = Agent(tools=secure_tools(my_tools), ...)

or install globally (best-effort monkeypatch of CrewAI's BaseTool):

from securevector_sdk_crewai import install

install(mode="observe")

or fully zero-config:

import securevector_sdk_crewai.auto   # reads env, installs globally

What happens on every tool call

Before a tool runs, the SDK:

  1. (a) Permissions — resolves an allow/block verdict for the tool, using the app's own precedence: cloud-pushed synced policy → local overrideessential registry → default-allow.
  2. (b)+(c) Secret & threat scan — sends the serialized tool input through the app's /analyze pipeline.

After the tool returns, the result is scanned the same way to catch secrets / exfiltration in tool output. Every decision is written to the app's audit chain tagged runtime_kind="crewai".

observe vs enforce

local app reachable local app unreachable
observe (default) log + advisory verdict; tool always runs tool runs (fail-open)
enforce (opt-in) tool runs only if the verdict ≠ block tool denied (fail-closed)
install(mode="enforce")   # blocks denied tools and fails closed if the app is down

In enforce mode a denied tool raises ToolBlocked before it executes; enforce also prints a one-time disclosure to stderr.

Configuration

All optional, via env or kwargs:

Env var Default Meaning
SECUREVECTOR_SDK_APP_URL http://127.0.0.1:8741 local app base URL
SECUREVECTOR_SDK_MODE observe observe or enforce
SECUREVECTOR_SDK_TIMEOUT_MS 3000 per-call verdict timeout
SECUREVECTOR_SDK_RISK_THRESHOLD 70 risk score that blocks in enforce mode
SECUREVECTOR_SDK_DISABLED (unset) set truthy to no-op

Compliance

The tool-call-level, attributed, tamper-evident audit trail this produces is exactly the action-layer logging auditors ask for under EU AI Act Art. 12 / 15. This SDK produces the local evidence; the cloud governance surface turns it into an auditor-ready pack.

Trademarks

SecureVector is the product name of this SDK. CrewAI is a trademark of CrewAI, Inc. This is an independent, community SDK that integrates with CrewAI via its public tool API. It is not affiliated with, sponsored by, or endorsed by CrewAI, Inc. The name uses "crewai" only descriptively, to identify the framework this package works with (nominative fair use).

License

Apache-2.0. See LICENSE and NOTICE.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

securevector_sdk_crewai-1.0.0.tar.gz (21.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

securevector_sdk_crewai-1.0.0-py3-none-any.whl (21.0 kB view details)

Uploaded Python 3

File details

Details for the file securevector_sdk_crewai-1.0.0.tar.gz.

File metadata

  • Download URL: securevector_sdk_crewai-1.0.0.tar.gz
  • Upload date:
  • Size: 21.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.13

File hashes

Hashes for securevector_sdk_crewai-1.0.0.tar.gz
Algorithm Hash digest
SHA256 98c30b5637da41570d196ab5ffecefe809dd40967d0c765fccc730191f841b1e
MD5 bafc7c465e492f5355815f8d1e179cb1
BLAKE2b-256 4084edd68447d3021a050527f5949fb8b76f70e442a155fc73dee57414b51964

See more details on using hashes here.

Provenance

The following attestation bundles were made for securevector_sdk_crewai-1.0.0.tar.gz:

Publisher: release.yml on Secure-Vector/securevector-sdk-crewai

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file securevector_sdk_crewai-1.0.0-py3-none-any.whl.

File metadata

File hashes

Hashes for securevector_sdk_crewai-1.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 36e729e82bace7651f2a8973b2789bce71d14cc4a516c82c3d88cf05ec47cdd5
MD5 86f786823761417176422d339165ee7f
BLAKE2b-256 61f32bcaaedd90f912c64da7eab87657f14c1ddf63713836d12d9c7c4d7145dc

See more details on using hashes here.

Provenance

The following attestation bundles were made for securevector_sdk_crewai-1.0.0-py3-none-any.whl:

Publisher: release.yml on Secure-Vector/securevector-sdk-crewai

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page