npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@onecli-sdk/node

v0.1.3

Published

Official Node.js SDK for OneCLI. Connect AI agents to external services via the OneCLI proxy.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

guyb1guyb1

Keywords

oneclisdkproxyai-agentsclitypescript

Readme

Installation

pnpm add @onecli-sdk/node

Requirements

| SDK version | Node.js version | | ----------- | --------------- | | >= 0.1.0 | >= 20 |

Quick Start

Standalone function (simplest)

A single function that fetches config from OneCLI and injects Docker flags:

import { applyOneCLIConfig } from "@onecli-sdk/node";

const args = ["run", "-i", "--rm", "--name", "my-agent"];

// Fetches container config and pushes -e / -v flags onto args
const active = await applyOneCLIConfig(args, process.env.ONECLI_KEY);

// args now contains proxy env vars and CA certificate mounts
console.log(active); // true if OneCLI was reachable

Class-based client

For more control:

import { OneCLI } from "@onecli-sdk/node";

const oc = new OneCLI({
  apiKey: "oc_...",                    // required: from OneCLI dashboard
  url: "http://localhost:3000",        // optional: defaults to https://app.onecli.sh
});

// Get raw container configuration
const config = await oc.getContainerConfig();
console.log(config.env);              // { HTTPS_PROXY: "...", HTTP_PROXY: "...", ... }
console.log(config.caCertificate);    // PEM content

// Or apply directly to Docker run args
const args = ["run", "-i", "--rm", "my-image"];
const active = await oc.applyContainerConfig(args);

Environment variable

Instead of passing url explicitly, set the ONECLI_URL environment variable:

export ONECLI_URL=http://localhost:3000
const oc = new OneCLI({ apiKey: "oc_..." });
// Automatically reads from ONECLI_URL, falls back to https://app.onecli.sh

API Reference

OneCLI

Main SDK client.

new OneCLI(options: OneCLIOptions)

| Option | Type | Required | Default | Description | | --------- | -------- | -------- | ----------------------------------- | ------------------------------- | | apiKey | string | Yes | — | User API key (oc_...) | | url | string | No | ONECLI_URL or https://app.onecli.sh | Base URL of the OneCLI instance | | timeout | number | No | 5000 | Request timeout in milliseconds |

oc.getContainerConfig()

Fetch the raw container configuration from OneCLI.

const config = await oc.getContainerConfig();
// Returns: { env, caCertificate, caCertificateContainerPath }

Throws OneCLIRequestError on non-200 response.

oc.applyContainerConfig(args, options?)

Fetch config and push Docker flags onto the args array. Returns true on success, false on failure (graceful degradation).

const active = await oc.applyContainerConfig(args, {
  combineCaBundle: true,  // Merge system + OneCLI CAs (default: true)
  addHostMapping: true,   // Add --add-host on Linux (default: true)
});

| Option | Type | Default | Description | | ---------------- | --------- | ------- | ---------------------------------------------- | | combineCaBundle| boolean | true | Build combined CA bundle for system-wide trust | | addHostMapping | boolean | true | Add host.docker.internal mapping on Linux |

What it does:

  1. Fetches /api/container-config with Authorization: Bearer {apiKey}
  2. Pushes -e KEY=VALUE for each server-controlled environment variable
  3. Writes CA certificate to a temp file and mounts it into the container
  4. Builds a combined CA bundle (system CAs + OneCLI CA) so curl, Python, Go, etc. also trust OneCLI
  5. Adds --add-host host.docker.internal:host-gateway on Linux

applyOneCLIConfig(args, apiKey, url?)

Standalone convenience function. Creates an OneCLI client internally.

import { applyOneCLIConfig } from "@onecli-sdk/node";

const active = await applyOneCLIConfig(args, process.env.ONECLI_KEY);
// Pass undefined/null apiKey to skip (returns false immediately)

Error Classes

OneCLIError

General SDK error (e.g. missing apiKey).

import { OneCLIError } from "@onecli-sdk/node";

OneCLIRequestError

HTTP request error with url and statusCode properties.

import { OneCLIRequestError } from "@onecli-sdk/node";

try {
  await oc.getContainerConfig();
} catch (error) {
  if (error instanceof OneCLIRequestError) {
    console.error(error.url);        // Request URL
    console.error(error.statusCode); // HTTP status code
  }
}

Types

import type {
  OneCLIOptions,
  ContainerConfig,
  ApplyContainerConfigOptions,
} from "@onecli-sdk/node";

How It Works

OneCLI acts as a MITM proxy for containerized agents. When a container makes HTTPS requests to intercepted domains (e.g. api.anthropic.com), OneCLI:

  1. Terminates TLS using a local CA certificate
  2. Inspects the request and injects real credentials
  3. Forwards the request to the upstream service

Containers never see real API keys. The SDK configures containers with the right environment variables (HTTPS_PROXY, HTTP_PROXY, NODE_EXTRA_CA_CERTS) and CA certificate mounts so this works automatically.

Development

pnpm install       # Install dependencies
pnpm run build     # Build CJS + ESM
pnpm run typecheck # Type-check without emitting
pnpm run test      # Run tests
pnpm run dev       # Watch mode

License

MIT