npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

eric-sdk

v0.1.7

Published

Official SDK for enforcing policy-governed AI execution using the Eric AI governance layer

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

american1510american1510

Keywords

Readme

Eric SDK (JavaScript / TypeScript)

Official SDK for Eric AI — the execution control plane for production AI systems.

Every request is evaluated against declared policy before any capability executes. No model is invoked until intent is classified, policy is cleared, and a registered capability is matched. Every execution — allowed or blocked — is logged with an immutable audit trail.

Built for environments where AI behavior must be controlled, deterministic, and auditable.

Installation

npm install eric-sdk

Requires an Eric-issued API key. Request access →

Quick start

import { EricSDK } from "eric-sdk";

const eric = new EricSDK({
  apiKey: process.env.ERIC_API_KEY!,
  client: "your-app-id",
});

const result = await eric.decide({
  text: "Summarize the provided patient record",
  requestType: "clinicalSummary",
});

// result.flow     — resolved capability
// result.type     — "structured" | "text"
// result.data     — schema-validated output

API keys are scoped and governed server-side. Never embed them in client-side code or public repositories.

How it works

Your application calls decide(). Eric handles the rest:

  1. Intent classification — the request is classified before any routing occurs
  2. Policy gate — declared policy is evaluated in code, not in prompts
  3. Capability routing — the request is routed deterministically to a registered capability
  4. Output validation — the response is validated against a typed schema before it is returned
  5. Audit log — every execution is recorded at the moment it occurs, immutably

If any check fails, execution stops. No fallbacks. No silent substitutions. No model is invoked.

Restricting execution to specific capabilities

Use allowedFlows to restrict which capabilities are eligible for a given request.

await eric.decide({
  text: "Generate a structured daily summary for the provided input",
  allowedFlows: ["dailySummary"],
});

When allowedFlows is provided:

  • Only capabilities in the allowed set are eligible
  • If no match is found, execution is denied and logged
  • No fallback or automatic substitution occurs

This is equivalent to registering a capability restriction at the request level. For deployment-level restrictions, capability registration is handled during onboarding.

Response shape

{
  flow: string;                     // resolved capability name
  type: "structured" | "text";      // output format
  data: unknown;                    // schema-validated output
}

All responses conform to pre-approved output contracts defined at the capability level. Every field is guaranteed to be present according to the executed capability's schema.

Security

  • Policy is enforced server-side. The SDK cannot bypass or override execution controls.
  • API keys are scoped per client and governed server-side.
  • All executions — including blocked ones — are logged with a structured, timestamped, attributable record.
  • Customer data is not used to train third-party models.
  • BYOK (Bring Your Own Key) is supported for model providers. See onboarding documentation.

Design principles

  • Policy-first — no direct model calls, no bypassed executions
  • Deterministic — the same request under the same policy produces the same routing decision
  • Auditable — every decision is logged at execution time, not reconstructed after
  • Infrastructure-grade — built for regulated production systems, not prototypes
  • Intent-based — clients describe what they want; the control plane decides what runs

Versioning

The Eric SDK follows semantic versioning.

Breaking changes reflect deliberate updates to governance and safety guarantees, not implementation convenience.

Pre-1.0 versions were experimental and are not supported.

See CHANGELOG.md for details.

Support

For access, onboarding, or documentation: https://ericaicontrol.dev