npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@grepture/sdk

v0.1.7

Published

Grepture proxy SDK — drop-in fetch wrapper for AI API governance

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

b3nm4nnb3nm4nn

Keywords

greptureproxypiiredactionaillmopenaidata-protectioncompliancefetch

Readme

@grepture/sdk

Drop-in fetch wrapper for routing AI API calls through Grepture. Zero dependencies — works in Node, Bun, Deno, and edge runtimes.

Install

npm install @grepture/sdk

Quick Start

Direct fetch

Use grepture.fetch() as a drop-in replacement for fetch. The SDK handles all proxy header plumbing automatically.

import { Grepture } from "@grepture/sdk";

const grepture = new Grepture({
  apiKey: "gpt_abc123",
  proxyUrl: "https://proxy.grepture.com",
});

const res = await grepture.fetch("https://api.openai.com/v1/chat/completions", {
  method: "POST",
  headers: {
    Authorization: "Bearer sk-openai-key",
    "Content-Type": "application/json",
  },
  body: JSON.stringify({
    model: "gpt-4o",
    messages: [{ role: "user", content: "hi" }],
  }),
});

console.log(res.status);       // 200
console.log(res.requestId);    // "uuid"
console.log(res.rulesApplied); // ["rule-uuid-1"]
console.log(await res.json()); // parsed response body

OpenAI SDK integration

Use grepture.clientOptions() to get a config object compatible with any OpenAI-shaped SDK constructor.

import OpenAI from "openai";
import { Grepture } from "@grepture/sdk";

const grepture = new Grepture({
  apiKey: "gpt_abc123",
  proxyUrl: "https://proxy.grepture.com",
});

const client = new OpenAI(
  grepture.clientOptions({
    apiKey: "sk-openai-key",
    baseURL: "https://api.openai.com/v1",
  })
);

// Works exactly like normal — requests flow through Grepture
const completion = await client.chat.completions.create({
  model: "gpt-4o",
  messages: [{ role: "user", content: "hi" }],
});

Modes

The SDK supports two operating modes:

| Mode | Default | Traffic flow | Use case | |------|---------|-------------|----------| | "proxy" | Yes | App → Grepture → Provider | PII redaction, blocking, prompt management | | "trace" | No | App → Provider (direct) | Observability and cost tracking without latency overhead |

In proxy mode (default), requests route through the Grepture proxy where detection rules are applied. In trace mode, requests go directly to the provider — the SDK captures metadata (tokens, model, latency, cost) asynchronously and sends it to the dashboard in the background.

// Trace mode — direct to provider, traces sent async
const grepture = new Grepture({
  apiKey: "gpt_abc123",
  proxyUrl: "https://proxy.grepture.com",
  mode: "trace",
});

// Same API — clientOptions() and fetch() work identically
const client = new OpenAI(
  grepture.clientOptions({
    apiKey: "sk-openai-key",
    baseURL: "https://api.openai.com/v1",
  })
);

In serverless environments, call flush() before the function exits to send any pending traces:

await grepture.flush();

Tracing

Group related requests into a trace, label each step, attach metadata, and log custom events.

const grepture = new Grepture({
  apiKey: "gpt_abc123",
  proxyUrl: "https://proxy.grepture.com",
  traceId: "agent-run-42",
});

const client = new OpenAI(
  grepture.clientOptions({
    apiKey: "sk-openai-key",
    baseURL: "https://api.openai.com/v1",
  })
);

// Attach metadata to all requests in this trace
grepture.setMetadata({ userId: "u_123", environment: "prod" });

// Label each step
grepture.setLabel("extract-facts");
await client.chat.completions.create({ model: "gpt-4o", messages: [...] });

// Log a custom event between AI calls
grepture.log("extract-facts-done", { tokens: 174 });

grepture.setLabel("draft-response");
await client.chat.completions.create({ model: "gpt-4o", messages: [...] });

// Flush before exit in serverless environments
await grepture.flush();

Labels identify individual requests within a trace. Set globally with setLabel() or per-request via FetchOptions:

await grepture.fetch(url, { body, label: "summarize" });

Metadata attaches arbitrary key-value tags. Per-request metadata merges with (and overrides) global defaults:

grepture.setMetadata({ userId: "u_123" });
await grepture.fetch(url, { body, metadata: { feature: "chat" } });
// Request gets { userId: "u_123", feature: "chat" }

Custom log events record non-AI events in the trace timeline:

grepture.log("cache-hit", { key: "embedding-abc" });
grepture.log("tool-executed", { tool: "web-search", query: "latest news" });

All trace data (labels, metadata, log events) is visible in the Grepture dashboard under Traffic Log > Traces, and on the dedicated trace detail page.

API

new Grepture(config)

| Parameter | Type | Description | |-----------|------|-------------| | config.apiKey | string | Your Grepture API key (gpt_xxx) | | config.proxyUrl | string | Grepture proxy URL (e.g. https://proxy.grepture.com) | | config.mode | "proxy" \| "trace" | Operating mode (default: "proxy") | | config.traceId | string? | Default trace ID for conversation tracing |

grepture.fetch(targetUrl, init?)

Same signature as the standard fetch. Returns a GreptureResponse with additional metadata:

  • res.requestId — unique request ID from the proxy
  • res.rulesApplied — array of rule IDs that were applied
  • res.status, res.ok, res.headers, res.json(), res.text() — standard Response properties

If you pass an Authorization header (for the target API), the SDK automatically moves it to X-Grepture-Auth-Forward and sets the Grepture auth header instead.

grepture.clientOptions(input)

Returns { baseURL, apiKey, fetch } for use with OpenAI-shaped SDK constructors.

| Parameter | Type | Description | |-----------|------|-------------| | input.apiKey | string | Target API key (e.g. sk-openai-key) | | input.baseURL | string | Target base URL (e.g. https://api.openai.com/v1) |

grepture.setLabel(label?) / grepture.getLabel()

Set or clear the default label for all subsequent requests. Override per-request via FetchOptions.label.

grepture.setMetadata(metadata?) / grepture.getMetadata()

Set or clear default metadata (Record<string, string>) for all subsequent requests. Override per-request via FetchOptions.metadata (values merge, per-request wins on conflicts).

grepture.log(event, data?)

Log a custom event into the current trace. event is the event name (string), data is an optional payload (object). Events appear in the trace timeline alongside AI calls.

grepture.flush()

Flushes any pending trace and log data. Call before process exit in serverless or short-lived environments.

Error Handling

The SDK throws typed errors on non-OK responses from the proxy:

import { Grepture, AuthError, BlockedError } from "@grepture/sdk";

try {
  const res = await grepture.fetch(url, init);
} catch (e) {
  if (e instanceof BlockedError) {
    // Request blocked by a Grepture rule (403)
  } else if (e instanceof AuthError) {
    // Invalid Grepture API key (401)
  }
}

| Error Class | Status | When | |-------------|--------|------| | BadRequestError | 400 | Malformed request | | AuthError | 401 | Invalid Grepture API key | | BlockedError | 403 | Request blocked by a rule | | ProxyError | 502/504 | Target unreachable or timed out | | GreptureError | other | Any other non-OK status |