github/langchain
1
0
Fork 0
mirror of https://github.com/hwchase17/langchain.git synced 2025-07-21 12:01:47 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add security notes to agent toolkits (#11989)

Browse Source 
Add more security notes to agent toolkits.
This commit is contained in:
Eugene Yurtsev 2023-10-18 14:36:29 -04:00 committed by GitHub
parent b81a4c1d94
commit 3d81c76160
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 73 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
libs/langchain/langchain/agents/agent_toolkits/ainetwork/toolkit.py
View File

@ -17,7 +17,14 @@ if TYPE_CHECKING:
class AINetworkToolkit(BaseToolkit): class AINetworkToolkit(BaseToolkit):
"""Toolkit for interacting with AINetwork Blockchain.""" """Toolkit for interacting with AINetwork Blockchain.
*Security Note*: This toolkit contains tools that can read and modify
the state of a service; e.g., by reading, creating, updating, deleting
data associated with this service.
See https://python.langchain.com/docs/security for more information.
"""
network: Optional[Literal["mainnet", "testnet"]] = "testnet" network: Optional[Literal["mainnet", "testnet"]] = "testnet"
interface: Optional[Ain] = None interface: Optional[Ain] = None

2
libs/langchain/langchain/agents/agent_toolkits/amadeus/toolkit.py
View File

@ -14,7 +14,7 @@ if TYPE_CHECKING:
class AmadeusToolkit(BaseToolkit): class AmadeusToolkit(BaseToolkit):
"""Toolkit for interacting with Office365.""" """Toolkit for interacting with Amadeus which offers APIs for travel search."""
client: Client = Field(default_factory=authenticate) client: Client = Field(default_factory=authenticate)

12
libs/langchain/langchain/agents/agent_toolkits/multion/toolkit.py
View File

@ -10,7 +10,17 @@ from langchain.tools.multion.update_session import MultionUpdateSession
class MultionToolkit(BaseToolkit): class MultionToolkit(BaseToolkit):
"""Toolkit for interacting with the Browser Agent""" """Toolkit for interacting with the Browser Agent.
**Security Note**: This toolkit contains tools that interact with the
user's browser via the multion API which grants an agent
access to the user's browser.
Please review the documentation for the multion API to understand
the security implications of using this toolkit.
See https://python.langchain.com/docs/security for more information.
"""
class Config: class Config:
"""Pydantic config.""" """Pydantic config."""

15
libs/langchain/langchain/agents/agent_toolkits/office365/toolkit.py
View File

@ -17,7 +17,20 @@ if TYPE_CHECKING:
class O365Toolkit(BaseToolkit): class O365Toolkit(BaseToolkit):
"""Toolkit for interacting with Office 365.""" """Toolkit for interacting with Office 365.
*Security Note*: This toolkit contains tools that can read and modify
the state of a service; e.g., by reading, creating, updating, deleting
data associated with this service.
For example, this toolkit can be used search through emails and events,
send messages and event invites, and create draft messages.
Please make sure that the permissions given by this toolkit
are appropriate for your use case.
See https://python.langchain.com/docs/security for more information.
"""
account: Account = Field(default_factory=authenticate) account: Account = Field(default_factory=authenticate)

15
libs/langchain/langchain/agents/agent_toolkits/openapi/base.py
View File

@ -30,7 +30,20 @@ def create_openapi_agent(
agent_executor_kwargs: Optional[Dict[str, Any]] = None, agent_executor_kwargs: Optional[Dict[str, Any]] = None,
**kwargs: Any, **kwargs: Any,
) -> AgentExecutor: ) -> AgentExecutor:
"""Construct an OpenAPI agent from an LLM and tools.""" """Construct an OpenAPI agent from an LLM and tools.
*Security Note*: When creating an OpenAPI agent, check the permissions
and capabilities of the underlying toolkit.
For example, if the default implementation of OpenAPIToolkit
uses the RequestsToolkit which contains tools to make arbitrary
network requests against any URL (e.g., GET, POST, PATCH, PUT, DELETE),
Control access to who can submit issue requests using this toolkit and
what network access it has.
See https://python.langchain.com/docs/security for more information.
"""
tools = toolkit.get_tools() tools = toolkit.get_tools()
prompt = ZeroShotAgent.create_prompt( prompt = ZeroShotAgent.create_prompt(
tools, tools,

27
libs/langchain/langchain/agents/agent_toolkits/openapi/toolkit.py
View File

@ -23,7 +23,22 @@ from langchain.utilities.requests import TextRequestsWrapper
class RequestsToolkit(BaseToolkit): class RequestsToolkit(BaseToolkit):
"""Toolkit for making REST requests.""" """Toolkit for making REST requests.
*Security Note*: This toolkit contains tools to make GET, POST, PATCH, PUT,
and DELETE requests to an API.
Exercise care in who is allowed to use this toolkit. If exposing
to end users, consider that users will be able to make arbitrary
requests on behalf of the server hosting the code. For example,
users could ask the server to make a request to a private API
that is only accessible from the server.
Control access to who can submit issue requests using this toolkit and
what network access it has.
See https://python.langchain.com/docs/security for more information.
"""
requests_wrapper: TextRequestsWrapper requests_wrapper: TextRequestsWrapper
@ -39,7 +54,15 @@ class RequestsToolkit(BaseToolkit):
class OpenAPIToolkit(BaseToolkit): class OpenAPIToolkit(BaseToolkit):
"""Toolkit for interacting with an OpenAPI API.""" """Toolkit for interacting with an OpenAPI API.
*Security Note*: This toolkit contains tools that can read and modify
the state of a service; e.g., by creating, deleting, or updating,
reading underlying data.
For example, this toolkit can be used to delete data exposed via
an OpenAPI compliant API.
"""
json_agent: AgentExecutor json_agent: AgentExecutor
requests_wrapper: TextRequestsWrapper requests_wrapper: TextRequestsWrapper