npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@agentrouterhq/sdk

v0.1.3

Published

TypeScript SDK for running Codex and Claude Code agents with AgentRouter

Downloads

624

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

agentrouterhqagentrouterhq

Keywords

agentrouteragentscodexclaude-codesandboxcoding-agents

Readme

AgentRouter TypeScript SDK

npm version license types

The TypeScript client for AgentRouter, a self-hosted runtime for running Codex and Claude Code agents in secure sandboxes.

Use the SDK to create agent runs, stream observable progress, continue a conversation by run id, fetch artifacts, and control long-running coding-agent workflows from your app, CLI, or CI.

Installation

npm install @agentrouterhq/sdk
pnpm add @agentrouterhq/sdk
yarn add @agentrouterhq/sdk

Requirements

  • A running AgentRouter API, usually http://127.0.0.1:8787 for local self-hosting.
  • An AGENTROUTER_API_KEY bearer token configured on the AgentRouter API.
  • Provider credentials on the runtime side, such as OPENAI_API_KEY, CODEX_API_KEY, or ANTHROPIC_API_KEY.
  • A server-side TypeScript or JavaScript runtime with fetch.

This SDK does not call OpenAI, Anthropic, Daytona, or R2 directly. It talks to your AgentRouter API, and the runtime keeps provider keys server-side.

Quickstart

import { agentrouter, codex, runAgent } from "@agentrouterhq/sdk";

const client = agentrouter({
  baseUrl: "http://127.0.0.1:8787",
  apiKey: process.env.AGENTROUTER_API_KEY!
});

const result = await runAgent({
  client,
  task: "Inspect this repo and summarize the test strategy.",
  runtime: codex({ mode: "default", model: "gpt-4o" })
});

console.log(result.status);
console.log(result.text);

runAgent creates a run, waits until it reaches a terminal state, and returns the final session snapshot:

result.id;               // run id
result.status;           // completed | failed | cancelled
result.text;             // final agent response text, when available
result.artifacts.items;  // generated logs, patches, and workspace artifacts
result.eventCursor;      // last observed event sequence

Streaming a run

Use streamAgent when you want progress updates while the sandboxed agent is working.

import { agentrouter, codex, streamAgent } from "@agentrouterhq/sdk";

const client = agentrouter({
  baseUrl: process.env.AGENTROUTER_API_BASE_URL ?? "http://127.0.0.1:8787",
  apiKey: process.env.AGENTROUTER_API_KEY!
});

const stream = await streamAgent({
  client,
  task: "Create reports/agent-smoke.txt and explain what you changed.",
  runtime: codex({ mode: "full_access" }),
  pollIntervalMs: 1000,
  maxWaitMs: 10 * 60 * 1000
});

for await (const part of stream.fullStream) {
  if (part.type === "progress") console.log("process:", part.text);
  if (part.type === "message") console.log("agent:", part.text);
  if (part.type === "text") process.stdout.write(part.text);
  if (part.type === "error") console.error(part.text);
}

const final = await stream.finalResult;
console.log(final.status);

fullStream emits safe progress summaries, no-progress warnings, messages, final text, errors, and terminal status. It does not expose hidden model chain-of-thought.

If you only want final text chunks:

for await (const text of stream.textStream) {
  process.stdout.write(text);
}

Control-plane events

AgentRouter streams two related surfaces:

  • stream.events yields raw persisted RunEvent records exactly as stored by the runtime control plane.
  • stream.fullStream yields ergonomic AgentStreamPart objects for app code.

Use fullStream for most products. Drop to raw events when you need the sequence number, original payload, artifact references, or audit trail.

| Raw event | fullStream part | Purpose | | --- | --- | --- | | action.proposed | action | AgentRouter has defined the exact runtime action it may execute, including actionId, actionDigest, target, and schema version. | | policy.evaluated | progress | The configured policy decided whether that action is allowed, requires_approval, or blocked. | | approval.requested | approval_request | The run is paused until your app records an approval decision for the same actionDigest. | | approval.decided | approval_decision | A human or approval system approved or denied the action. Repeated identical decisions are deterministic no-ops. | | execution.started | execution | The approved action started inside the sandbox. | | execution.completed | execution | The action completed successfully. | | execution.failed | execution | Runtime execution failed after policy/approval; this does not rewrite the approval decision. | | agent.progress | progress | Public progress summary from the provider stream. Hidden reasoning is not exposed. | | agent.no_progress | no_progress | The runtime saw a suspected loop, such as repeated failed commands, repeated edits, or long output without state transitions. Use this to show a warning, ask for approval, cancel, or retry from the current state. | | agent.message | message | Assistant-visible message content before the final normalized response. | | agent.response | text | Final normalized agent response text. | | run.completed, run.failed, run.cancelled | done or error | Terminal run state. |

No-progress handling example:

for await (const part of stream.fullStream) {
  if (part.type === "no_progress") {
    console.warn(`Agent may be stuck: ${part.signal} - ${part.text}`);
    // Your app can cancel the run, ask for approval, or let the user continue.
  }
}

The raw agent.no_progress event stays in stream.events, session manifests, and artifact-backed event archives, so dashboards and audit views can replay when the loop signal happened.

Manual approval example:

const stream = await streamAgent({
  client,
  task: "Run the repository tests and summarize failures.",
  runtime: codex({ mode: "full_access" }),
  approvalMode: "manual"
});

for await (const part of stream.fullStream) {
  if (part.type === "approval_request") {
    await client.approveRunAction({
      runId: stream.run.id,
      actionId: part.actionId,
      actionDigest: part.actionDigest,
      reason: "Approved by CI policy"
    });
  }

  if (part.type === "execution") {
    console.log(part.status);
  }
}

actionDigest is the important safety field. An approval for digest A cannot start execution for digest B.

Continue a conversation

AgentRouter can keep a sandbox and provider thread alive after a run finishes. The first run id becomes the conversation handle.

Run ids are the SDK's public conversation handle. Use streamAgent with continueRun for streamed follow-up turns, or runAgent with continueRun when you only need the final result. There is no separate public session API.

conversationId and runId are different on follow-up turns:

conversationId  stable id for the whole conversation; pass this as continueRun
runId           id for one specific turn; stream/fetch this turn's events

For turn 1 they are the same id. For turn 2+, conversationId stays fixed as the first run id, while runId is the newly-created run for that turn.

import { agentrouter, codex, runAgent, streamAgent } from "@agentrouterhq/sdk";

const client = agentrouter({
  baseUrl: "http://127.0.0.1:8787",
  apiKey: process.env.AGENTROUTER_API_KEY!
});

const firstTurn = await runAgent({
  client,
  task: "Create src/fib.ts with a fib(n) function.",
  runtime: codex({ mode: "full_access" })
});

const secondTurn = await streamAgent({
  client,
  continueRun: firstTurn.id,
  message: "Now add tests for fib(n)."
});

for await (const part of secondTurn.fullStream) {
  if (part.type === "progress") console.log(part.text);
  if (part.type === "text") process.stdout.write(part.text);
}

await client.closeRun(firstTurn.id);

You can also continue and wait in one call:

const result = await runAgent({
  client,
  continueRun: firstTurn.id,
  message: "Add edge-case tests for n = 0 and n = 1."
});

Claude Code runs

Use claudeCode instead of codex to run the same workflow through Claude Code.

import { agentrouter, claudeCode, runAgent } from "@agentrouterhq/sdk";

const client = agentrouter({
  baseUrl: "http://127.0.0.1:8787",
  apiKey: process.env.AGENTROUTER_API_KEY!
});

const result = await runAgent({
  client,
  task: "Review the current repository and suggest the highest-impact cleanup.",
  runtime: claudeCode({ permissionMode: "default", model: "claude-sonnet-4-6" })
});

console.log(result.text);

Low-level client

The helper functions are built on top of a small typed client. Use it directly when you need more control.

const run = await client.createRun({
  task: "Run the test suite and summarize failures.",
  runtime: codex({ mode: "read_only" }),
  metadata: { source: "ci" },
  idempotencyKey: "pr-123-review"
});

for await (const event of client.streamRun(run.id)) {
  console.log(event.sequence, event.type);
}

const runSession = await client.getRunSession(run.id);
const artifacts = await client.listRunArtifacts(run.id);

Available client methods:

| Method | Purpose | | --- | --- | | createRun | Queue a new agent run | | createRunAndWait | Queue a run and wait for the final run session snapshot | | getRun, listRuns, cancelRun | Inspect and control runs | | listRunEvents, streamRun | Read observable run events | | getRunSession | Get the final run response, event cursor, and artifact manifest | | listRunArtifacts, downloadArtifact | Inspect and download artifacts | | approveRunAction, denyRunAction | Record an immutable approval decision for an approval.requested action digest | | continueRun, getRunTurns, closeRun | Continue, inspect, or close a run-id conversation |

Runtime options

Codex:

codex({ mode: "default", model: "gpt-4o" });
codex({ mode: "read_only" });
codex({ mode: "full_access" });
codex({ mode: "auto_review" });

Claude Code:

claudeCode({ permissionMode: "default" });
claudeCode({ permissionMode: "plan" });
claudeCode({ permissionMode: "acceptEdits" });
claudeCode({ permissionMode: "bypassPermissions" });

Custom headers and fetch

Use defaultHeaders when your self-hosted deployment needs per-client headers, for example tenant routing or internal request metadata.

const client = agentrouter({
  baseUrl: "https://agentrouter.example.com",
  apiKey: process.env.AGENTROUTER_API_KEY!,
  defaultHeaders: {
    "x-workspace-id": "workspace_123"
  }
});

Use fetchImpl when your runtime needs a custom fetch implementation.

const client = agentrouter({
  apiKey: process.env.AGENTROUTER_API_KEY!,
  fetchImpl: customFetch
});

Error handling

API errors and wait timeouts throw AgentRouterError.

import { AgentRouterError, agentrouter, codex, runAgent } from "@agentrouterhq/sdk";

const client = agentrouter({
  baseUrl: "http://127.0.0.1:8787",
  apiKey: process.env.AGENTROUTER_API_KEY!
});

try {
  await runAgent({
    client,
    task: "Run tests.",
    runtime: codex({ mode: "default" }),
    maxWaitMs: 60_000
  });
} catch (error) {
  if (error instanceof AgentRouterError) {
    console.error(error.code);
    console.error(error.statusCode);
    console.error(error.details);
  } else {
    throw error;
  }
}

Common SDK-side error codes:

| Code | Meaning | | --- | --- | | wait_timeout | A run did not reach a terminal state before maxWaitMs | | invalid_run_agent_request | runAgent received neither a new task nor a continuation message |

Server-side API errors keep the error code returned by the AgentRouter API.

Security notes

  • Keep AGENTROUTER_API_KEY on the server side. Do not ship it to an untrusted browser client.
  • Provider keys stay in the AgentRouter runtime environment, not in SDK calls.
  • fullStream exposes observable progress and final output, not hidden chain-of-thought.
  • Agent commands run inside the sandbox provider configured by your self-hosted runtime.

Links