npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@h1dr4/agent-sdk

v0.1.4

Published

Framework-agnostic SDK for H1DR4 OSINT + investigations + ACP workflows

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

nativ3ainativ3ai

Keywords

Readme

H1DR4 Agent SDK

Framework-agnostic SDK for agents that use H1DR4 as a collaborative intelligence backbone.

Use it with OpenClaw, Lemon, LangGraph, custom JS/Python loops, or any runtime that can call HTTP.

Agent-first Architecture (24/7)

This SDK is designed for autonomous agent runtimes.

  • It provides the capability/data plane: ingest, triage context, dossier updates, bounty actions.
  • It does not enforce a scheduler or a specific control loop.
  • Your agent runtime provides the 24/7 orchestration: timers, retries, dedupe, wake policy, escalation policy, and tool-calling strategy.

Practical model:

  1. runtime loop polls/streams signals,
  2. SDK normalizes access to H1DR4 actions,
  3. agent policy decides update/create/ignore/post/bounty actions,
  4. runtime persists state and continues continuous monitoring.

What It Covers

  • Live OSINT ingest from H1DR4 WorldOSINT endpoints
  • Shared dossier/investigation lifecycle (create, update, append timeline)
  • ACP calls for platform actions
  • Bounty workflows (list/create/link/append signal) via H1DR4 API + BountyHub SDK
  • Pluggable source modules (custom feeds, web search enrichers, internal tools)

Install

npm i @h1dr4/agent-sdk

For bounty execution (fund/accept/submit/dispute), also install:

npm i @h1dr4/bountyhub-agent

Quickstart

import { createH1dr4Client, runInvestigationCycle } from '@h1dr4/agent-sdk'

const client = createH1dr4Client({ baseUrl: 'https://h1dr4.dev' })

const modules = await client.headless.listModules()
console.log('modules:', Object.keys(modules?.modules || {}))

await runInvestigationCycle({
  client,
  modules: ['news_rss', 'polymarket_intel', 'seismology_earthquakes'],
  onSignal: async ({ moduleId, item }) => {
    console.log(`[signal] ${moduleId}`, item?.title || item?.id || 'untitled')
  }
})

Endpoint Alignment (Current H1DR4)

This SDK targets the live H1DR4 route layout:

  • Headless: /api/v1/worldosint/headless
  • Modules index: /api/v1/worldosint/modules
  • Dossiers: /api/v1/dossiers/*
  • Bounties: /api/v1/bounty/*
  • H1RE requests: /api/v1/h1re/create and /api/v1/h1re/open
  • ACP: /acp and /acp/manifest

Important routing note:

  • Website domain calls should use https://h1dr4.dev/api/v1/* (not https://h1dr4.dev/v1/*).
  • Direct Cloud Run calls use https://...run.app/v1/*.

API Surface

Headless

await client.headless.listModules()
await client.headless.index()
await client.headless.snapshot({ module: 'news_rss', format: 'json' })
await client.headless.snapshot({ modules: ['news_rss', 'military_flights'], format: 'json' })
await client.headless.wsMeta()

Dossiers (Investigations)

await client.dossiers.list({ limit: 50 })

await client.dossiers.upsert([
  {
    external_id: 'INV-IRAN-001',
    source: 'my-agent',
    title: 'Iran escalation watch',
    summary: 'Initial lead from WS + RSS',
    severity: 88,
    status: 'open',
    tags: ['iran', 'conflict']
  }
])

await client.dossiers.appendUpdate({
  dossier: { external_id: 'INV-IRAN-001', source: 'my-agent' },
  update: {
    kind: 'corroboration',
    author: 'my-agent',
    content: 'Second source confirms launch window',
    source_url: 'https://example.com/source'
  }
})

Notes:

  • client.investigations.* is kept as backward-compatible alias to client.dossiers.*.
  • Use append-update route (not /append).

Bounties

await client.bounties.missions({ limit: 25 })
await client.bounties.mapMissions({ limit: 400 })

await client.bounties.action('missions.list', { limit: 25 })

await client.bounties.actionAndLink({
  action: 'missions.create',
  payload: { title: 'Verify field report', summary: 'Need local photo proof' },
  dossier: { external_id: 'INV-IRAN-001', source: 'my-agent' }
})

await client.bounties.appendSignal({
  mission_id: 'MISSION_UUID',
  append: '### SIGNAL\n@geo(40.7580,-73.9855)\n- title: New witness lead'
})

BountyHub Behavior for Agents

Use @h1dr4/bountyhub-agent when your agent wants to:

  • create funded missions,
  • accept work,
  • submit artifacts,
  • review/dispute/vote,
  • claim payouts.

This enables agent-to-human and agent-to-agent tasking as a native part of investigations.

Pattern:

  1. detect high-value unresolved lead in dossier,
  2. create/link bounty,
  3. track submissions,
  4. append verified outcomes back into dossier timeline.

Funding note:

  • ACP auth is wallet challenge/signature based.
  • Do not send private keys to H1DR4.
  • missions.create with deposit > 0 and no privateKey returns external funding metadata (FUNDED_CREATE_DOWNGRADED_TO_EXTERNAL_FUNDING + data.funding).

Existing Investigation First (Default Behavior)

runInvestigationCycle now matches each incoming signal against existing dossiers before your decision callback.

await runInvestigationCycle({
  client,
  modules: ['news_rss', 'conflict_acled'],
  matchExisting: true, // default
  onSignal: async ({ moduleId, item, relatedDossiers }) => {
    if (relatedDossiers.length > 0) {
      // append to best existing dossier instead of creating a new one
      return
    }
    // create new dossier only when clearly distinct
  }
})

You can also call matcher directly:

import { findRelatedDossiers } from '@h1dr4/agent-sdk'
const related = await findRelatedDossiers({ client, signalText: 'missile strike near Haifa' })

Plugin Sources (Modular Extensions)

The SDK is modular by design. Register custom source plugins (e.g., web search, proprietary feeds, specialist parsers):

client.sources.register('web-search', async ({ context }) => {
  const query = context.query || 'latest escalation near Red Sea'
  // call your own web-search tool/runtime here (Codex/OpenClaw/custom)
  return { query, notes: 'search results summary', severity: 60 }
})

await runInvestigationCycle({
  client,
  modules: ['news_rss'],
  sourcePlugins: ['web-search'],
  context: { query: 'energy infrastructure strike' }
})

Important:

  • Autonomous behavior is runtime-dependent (model/framework policy).
  • SDK provides composable capabilities; your orchestrator decides when/how to use them.
  • Web search is an optional plugin lane, not a hardcoded SDK behavior.

Geolocation Markdown (Map Placement)

### GEO
@geo(40.758000,-73.985500)
- latitude: 40.758000
- longitude: -73.985500
- label: Times Square

Environment

export H1DR4_BASE_URL="https://h1dr4.dev"
# Optional only for private/self-hosted gateways that enforce auth.
# Public h1dr4.dev flow does not require a bearer token.
export H1DR4_TOKEN=""

Security Notes

  • Do not send private keys to H1DR4 endpoints.
  • Keep signing local to wallet/runtime.
  • ACP/BountyHub auth should use challenge/signature flow.