@skill-mine/complyment-connectors-sdk
v0.2.1
Published
Enterprise security tool connectors SDK by Skill-Mine Technology
Downloads
408
Maintainers
immanuveln11Readme
@skill-mine/complyment-connectors-sdk
Enterprise Security Tool Connectors SDK — built at Skill-Mine Technology
A TypeScript SDK that abstracts 8+ enterprise security tool integrations with built-in AI agent compatibility, circuit breakers, rate limiting, and human-in-the-loop controls.
Features
- 8 Connectors — Qualys, SentinelOne, Checkpoint, ManageEngine, Jira, Zoho, Tenable.io, Tenable.sc
- AI Agent Ready — MCP, LangChain, Vercel AI SDK, OpenAI Agents SDK
- Resilience — Circuit breaker, retry with backoff, rate limiting, caching
- Observability — OpenTelemetry tracing, structured logging, audit logs
- Security — Human-in-the-loop approvals for critical actions
- Normalization — Unified vulnerability, asset, threat schemas across connectors
- Semantic Search — TF-IDF based natural language queries on security data
- Dual Build — ESM + CJS, full TypeScript declarations
Installation
npm install @skill-mine/complyment-connectors-sdkQuick Start
import {
QualysConnector,
SentinelOneConnector,
JiraConnector,
registry,
} from '@skill-mine/complyment-connectors-sdk'
// Initialize connectors
const qualys = new QualysConnector({
name: 'qualys',
baseUrl: 'https://qualysapi.qualys.com',
auth: {
type: 'basic',
credentials: {
username: process.env.QUALYS_USERNAME!,
password: process.env.QUALYS_PASSWORD!,
},
},
})
// Register globally
registry.register('qualys', qualys)
// Fetch critical vulnerabilities
const vulns = await qualys.getCriticalVulnerabilities()
console.log(vulns.data)Connectors
Qualys
const qualys = new QualysConnector({ ...config })
await qualys.getAssets({ hostname: 'web-server-01' })
await qualys.getCriticalVulnerabilities()
await qualys.launchScan({ scannerName: 'External Scanner', title: 'Weekly Scan' })
await qualys.getNormalizedVulnerabilities()SentinelOne
const s1 = new SentinelOneConnector({ ...config })
await s1.getThreats({ severity: 'critical', status: 'active' })
await s1.quarantineThreat('threat-id-123')
await s1.killThreat('threat-id-123')
await s1.getInfectedAgents()Checkpoint
const checkpoint = new CheckpointConnector({ ...config })
await checkpoint.getPolicies()
await checkpoint.addRule({ layer: 'Network', position: 'top', action: 'Drop' })
await checkpoint.blockThreat('threat-id')
await checkpoint.installPolicy({ policyPackage: 'Standard', targets: ['gateway-1'] })ManageEngine
const me = new ManageEngineConnector({ ...config })
await me.getMissingPatches()
await me.getCriticalPatches()
await me.createDeployment({ patchIds: ['patch-1'], computerIds: ['pc-1'] })Jira
const jira = new JiraConnector({ ...config })
await jira.getIssues({ projectKey: 'SEC', status: 'Open' })
await jira.createSecurityTicket('SEC', 'Critical CVE Found', 'Details...', 'critical', 'qualys')
await jira.transitionIssue('SEC-123', 'transition-id')Zoho CRM
const zoho = new ZohoConnector({ ...config })
await zoho.getContacts()
await zoho.createLead({ lastName: 'Doe', company: 'Acme', email: '[email protected]' })
await zoho.getDeals({ stage: 'Qualification' })Tenable.io (Cloud)
import { TenableIoConnector } from '@skill-mine/complyment-connectors-sdk'
const tenableIo = new TenableIoConnector({
accessKey: process.env.TENABLE_IO_ACCESS_KEY!,
secretKey: process.env.TENABLE_IO_SECRET_KEY!,
})
// Assets & Vulnerabilities
await tenableIo.getAssets()
await tenableIo.exportVulnerabilitiesComplete({ severity: ['critical', 'high'] })
// Scans
await tenableIo.getScans()
await tenableIo.launchScan('scan-id')
await tenableIo.pauseScan('scan-id')
// Workbench (Quick Queries)
await tenableIo.getWorkbenchVulnerabilities({ date_range: 30 })
await tenableIo.getWorkbenchAssets()
// Statistics
await tenableIo.getStats()Tenable.sc (On-Premises)
import { TenableScConnector } from '@skill-mine/complyment-connectors-sdk'
const tenableSc = new TenableScConnector({
baseUrl: process.env.TENABLE_SC_BASE_URL!,
accessKey: process.env.TENABLE_SC_ACCESS_KEY!,
secretKey: process.env.TENABLE_SC_SECRET_KEY!,
})
// Assets & Vulnerabilities
await tenableSc.getAssets()
await tenableSc.getVulnerabilities({ severity: '4' }) // Critical
await tenableSc.getCriticalVulnerabilities()
// Policies & Users
await tenableSc.getPolicies()
await tenableSc.getUsers()
await tenableSc.createUser({ username: 'analyst', role: { id: 4 } })
// Scans & Results
await tenableSc.getScans()
await tenableSc.getScanResults()
// Statistics
await tenableSc.getStats()AI Agent Integration
MCP (Model Context Protocol)
import { MCPServer, createQualysMCPTools } from '@skill-mine/complyment-connectors-sdk'
const mcp = new MCPServer({ name: 'security-mcp' })
mcp.registerConnectorTools('qualys', createQualysMCPTools(qualys))
// Expose to AI agents
const manifest = mcp.generateManifest()
const result = await mcp.executeTool('qualys_get_critical_vulnerabilities', {})LangChain
import { LangChainAdapter } from '@skill-mine/complyment-connectors-sdk'
const tools = LangChainAdapter.createAllTools({ qualys, sentinelone, jira })
// Use with LangChain agent
const agent = createReactAgent({ llm, tools })Vercel AI SDK
import { VercelAIAdapter } from '@skill-mine/complyment-connectors-sdk'
const tools = VercelAIAdapter.createFullToolSet({ qualys, sentinelone, jira })
const result = await generateText({
model: openai('gpt-4o'),
tools,
prompt: 'What critical vulnerabilities need immediate attention?',
})OpenAI Agents SDK
import { OpenAIAgentsAdapter } from '@skill-mine/complyment-connectors-sdk'
const agent = OpenAIAgentsAdapter.createSecurityAnalystAgent({
qualys, sentinelone, jira,
})
// agent.tools ready for OpenAI Agents SDKHuman-in-the-Loop (HITL)
import { HITLManager } from '@skill-mine/complyment-connectors-sdk'
const hitl = new HITLManager({
autoApproveRiskLevels: ['low'],
onApprovalRequired: (req) => {
// Send Slack/email notification to security team
notifyTeam(req)
},
})
hitl.registerHandler('threat.quarantine', async ({ threatId }) => {
return s1.quarantineThreat(threatId as string)
})
// AI agent requests approval
const request = await hitl.requestApproval({
actionType: 'threat.quarantine',
connector: 'sentinelone',
description: 'Quarantine ransomware on DESKTOP-XYZ',
riskLevel: 'high',
params: { threatId: 'threat-123' },
requestedBy: 'SecurityAgent',
})
// Human approves via dashboard
await hitl.approve(request.id, '[email protected]')Resilience Features
Circuit Breaker
// Built into BaseConnector - automatic
// Opens after 5 failures, recovers after 60s
const qualys = new QualysConnector({
...config,
circuitBreaker: {
failureThreshold: 5,
recoveryTimeMs: 60000,
},
})Rate Limiting
const qualys = new QualysConnector({
...config,
rateLimit: {
maxRequests: 100,
windowMs: 60000, // 100 req/min
},
})Retry with Backoff
const qualys = new QualysConnector({
...config,
retry: {
maxRetries: 3,
initialDelayMs: 1000,
backoffMultiplier: 2,
},
})Caching
const qualys = new QualysConnector({
...config,
cache: {
enabled: true,
ttlMs: 300000, // 5 minutes
maxSize: 1000,
},
})Normalization
import { normalizationEngine } from '@skill-mine/complyment-connectors-sdk'
// Normalize across multiple connectors
const result = normalizationEngine.normalizeVulnerabilities([
{ connector: 'qualys', data: qualysVulns, mapper: qualysMapper },
{ connector: 'sentinelone', data: s1Threats, mapper: s1Mapper },
])
// Deduplicated by CVE, highest severity wins
console.log(result.data) // NormalizedVulnerability[]
console.log(result.sources) // ['qualys', 'sentinelone']
// Severity stats
const stats = normalizationEngine.getSeverityStats(result.data)
// { critical: 3, high: 7, medium: 12, low: 5, info: 2 }Semantic Search
import { semanticSearch } from '@skill-mine/complyment-connectors-sdk'
// Index connector data
semanticSearch.indexVulnerabilities(qualysVulns)
semanticSearch.indexThreats(s1Threats)
semanticSearch.indexAssets(qualysAssets)
// Natural language queries
const results = await semanticSearch.search('critical ransomware on windows server')
const threats = await semanticSearch.findCriticalThreats()
const vulns = await semanticSearch.findVulnerableAssets('web-server-01')Audit Logging
import { auditLogger } from '@skill-mine/complyment-connectors-sdk'
auditLogger.logSuccess('data.fetch', 'qualys', { count: 42 }, 320)
auditLogger.logFailure('auth.login', 'sentinelone', 'Invalid token')
const stats = auditLogger.getStats('qualys')
// { total: 100, success: 95, failure: 5, successRate: '95.00%' }
// Export for compliance
const csv = auditLogger.exportAsCsv()
const json = auditLogger.exportAsJson()Environment Variables
# Qualys
COMPLYMENT_QUALYS_BASE_URL=https://qualysapi.qualys.com
COMPLYMENT_QUALYS_USERNAME=your_username
COMPLYMENT_QUALYS_PASSWORD=your_password
# SentinelOne
COMPLYMENT_SENTINELONE_BASE_URL=https://your-instance.sentinelone.net
COMPLYMENT_SENTINELONE_API_TOKEN=your_api_token
# Jira
COMPLYMENT_JIRA_BASE_URL=https://your-org.atlassian.net
[email protected]
COMPLYMENT_JIRA_API_TOKEN=your_api_token
# ManageEngine
COMPLYMENT_MANAGEENGINE_BASE_URL=https://your-manageengine
COMPLYMENT_MANAGEENGINE_CLIENT_ID=your_client_id
COMPLYMENT_MANAGEENGINE_CLIENT_SECRET=your_client_secret
COMPLYMENT_MANAGEENGINE_REFRESH_TOKEN=your_refresh_token
# Tenable.io (Cloud)
TENABLE_IO_ACCESS_KEY=your_access_key
TENABLE_IO_SECRET_KEY=your_secret_key
# Tenable.sc (On-Premises)
TENABLE_SC_BASE_URL=https://your-tenable-sc-server
TENABLE_SC_ACCESS_KEY=your_access_key
TENABLE_SC_SECRET_KEY=your_secret_keyBuilt Output
dist/
├── index.js 163 KB (CJS - Node.js)
├── index.mjs 159 KB (ESM - Bundlers)
├── index.d.ts 74 KB (TypeScript)
└── index.d.mts 74 KB (TypeScript ESM)Architecture
@skill-mine/complyment-connectors-sdk
├── Connectors (Qualys, SentinelOne, Checkpoint, ManageEngine, Jira, Zoho, Tenable.io, Tenable.sc)
├── Core (BaseConnector, Registry, Types, Errors)
├── Middleware (CircuitBreaker, RateLimiter, RetryHandler, CacheLayer)
├── Telemetry (Logger, OpenTelemetry Tracer)
├── Normalization (Cross-connector unified schemas)
├── Audit (Compliance audit logging)
├── Streaming (Paginated streaming, real-time polling)
├── Secrets (Vault + Env based credential management)
├── Webhook (Inbound webhook processing with HMAC verification)
└── AI
├── MCP (Model Context Protocol server)
├── LangChain (LangChain tool adapters)
├── Vercel AI (Vercel AI SDK tool adapters)
├── OpenAI Agents (OpenAI Agents SDK adapters)
├── HITL (Human-in-the-loop approval system)
├── Orchestration (Multi-agent workflow orchestration)
├── Semantic (TF-IDF semantic search on security data)
└── Workflows (Pre-built security automation workflows)Tech Stack
- TypeScript 5.x strict mode
- tsup — ESM + CJS dual build
- axios — HTTP client
- zod — Runtime schema validation
Author
Immanuvel — Backend Developer, Skill-Mine Technology Consulting Built as internal tooling for the Complyment compliance platform serving 50+ enterprise clients.
License
MIT