npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

palpal-core

v0.1.2

Published

High-safety, OpenAI Agents SDK-compatible TypeScript library with SafetyAgent, Skills, MCP, and Chat Completions providers.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

kitfactorykitfactory

Keywords

agentsopenaimcpskillstypescript

Readme

palpal-core

palpal-core is a high-safety, OpenAI Agents SDK-compatible npm library for TypeScript. It keeps the familiar Agents SDK style while adding practical runtime safety controls for MCP, Skills, and tool execution.

Positioning

  • OpenAI Agents SDK-compatible interface with minimal migration cost
  • Safety-first execution model (SafetyAgent + Guardrails + Approval flow)
  • Designed to make MCP/Skills easier to defend before execution

What problems it solves

In many current agent stacks:

  • MCP/tool safety checks are inconsistent or ad-hoc
  • Skills (SKILL.md) are hard to expose as executable tools
  • Human approval flows (pause -> resume) are fragmented
  • Chat Completions compatible backends are not unified

palpal-core addresses this with a single execution layer: SafetyAgent + Guardrails + Approval flow.

Design highlights

  • Agents SDK-like interface:
    • new Agent(...)
    • run(agent, input, options?)
    • tool(...), hostedMcpTool(...)
  • SafetyAgent:
    • derives Skills/MCP/Tools from the Agent at runner.run(...)
    • fail-closed Go/No-Go/needs_human decision
  • ModelSafetyAgent:
    • accepts a model + rubric (bullet-string rules)
    • evaluates tool/skill/MCP context from the target Agent
    • returns stable structured decision (allow|deny|needs_human)
    • defaults to includeUserIntent: false (raw user input is excluded)
  • MCP approval policy:
    • hostedMcpTool(..., { requireApproval: true }) forces needs_human before execution
  • General guardrails (OpenAI Agents SDK style) are also supported:
    • agent.guardrails.input/tool/output
    • independent deny path in addition to SafetyAgent
  • Skills:
    • loadSkills(...) -> Skill[]
    • toTools(skills) for function-tool conversion
    • listSkills / describeSkill / toIntrospectionTools
  • Providers:
    • getProvider("ollama").getModel("gpt-oss-20b")
    • listProviders() -> ProviderName[]
    • await getProvider("ollama").listModels({ baseUrl, apiKey })
    • await getProvider("openai").listModels({ BASE_URL, API_KEY })
    • config precedence: direct options > .env > process.env
    • missing provider suffix in baseUrl is auto-completed (/v1, /v1beta/openai, /api/v1, etc.)
    • model-list timeout precedence: direct timeout > AGENTS_MODEL_LIST_TIMEOUT_MS > AGENTS_REQUEST_TIMEOUT_MS > 2000ms
    • if /models is unreachable: fallback to configured -> default -> environment_dependent
    • fallback responses include runtimeApiFailure (code/message/status/statusText)
    • OpenAI / Ollama / LM Studio / Gemini / Anthropic / OpenRouter

Provider model-list diagnostics example:

const modelList = await getProvider("anthropic").listModels({
  baseUrl: "https://api.anthropic.com", // suffix (/v1) is auto-completed
  apiKey: process.env.AGENTS_ANTHROPIC_API_KEY
});

if (modelList.resolution !== "runtime_api") {
  console.warn(modelList.runtimeApiFailure);
  // { code: "http_error" | "timeout" | ..., message, status?, statusText? }
}

Install

npm install palpal-core

Minimal example

import {
  Agent,
  SafetyAgent,
  createRunner,
  tool,
  getProvider
} from "palpal-core";

const runner = createRunner({
  safetyAgent: new SafetyAgent(async (_agent, request) => {
    if (request.tool_kind === "mcp") {
      return { decision: "needs_human", reason: "MCP review required", risk_level: 4 };
    }
    return { decision: "allow", reason: "safe", risk_level: 1 };
  })
});

const agent = new Agent({
  name: "assistant",
  instructions: "be helpful",
  model: getProvider("ollama").getModel("gpt-oss-20b"),
  tools: [
    tool({
      name: "echo",
      description: "echo text",
      execute: async (args) => args
    })
  ],
  guardrails: {
    input: [
      ({ inputText }) => ({
        allow: !inputText.includes("forbidden"),
        reason: "forbidden input"
      })
    ]
  }
});

const result = await runner.run(agent, "hello", {
  extensions: {
    toolCalls: [{ toolName: "echo", args: { text: "hello" } }]
  }
});

Why MCP/Skills are easier to defend

  • SafetyAgent evaluates with capability snapshot derived from the actual Agent
  • guardrails are split by stage (input/tool/output) for concise policy rules
  • needs_human supports explicit approval and safe resume

Docs