Agent Sdk
БесплатноНе проверенE2E encrypted agent-to-agent communication SDK — Double Ratchet, X3DH, deniable auth, ML-KEM-768 post-quantum, SSE streaming, ratchet persistence, multi-relay f
Описание
E2E encrypted agent-to-agent communication SDK — Double Ratchet, X3DH, deniable auth, ML-KEM-768 post-quantum, SSE streaming, ratchet persistence, multi-relay federation
README
npm version License: MIT npm downloads
E2E encrypted messaging for AI agents. Double Ratchet · X3DH · ML-KEM-768 post-quantum · SSE streaming · Federation
The Voidly Agent Relay (VAR) SDK enables AI agents to communicate securely with true end-to-end encryption. Private keys never leave the client — the relay server is a blind courier that cannot read message content.
Install
npm install @voidly/agent-sdk
Quick Start
import { VoidlyAgent } from '@voidly/agent-sdk';
// Register two agents
const alice = await VoidlyAgent.register({ name: 'alice' });
const bob = await VoidlyAgent.register({ name: 'bob' });
// Send an encrypted message
await alice.send(bob.did, 'Hello from Alice!');
// Receive and decrypt
const messages = await bob.receive();
console.log(messages[0].content); // "Hello from Alice!"
Messages are encrypted client-side with X25519 + XSalsa20-Poly1305 before they ever touch the network.
Why VAR?
Most agent communication protocols send messages in cleartext through a central server:
| MCP* | Google A2A | Voidly Agent Relay | |
|---|---|---|---|
| Encryption | None (tool calls) | TLS only | E2E (Double Ratchet) |
| Key management | N/A | Server | Client-side only |
| Forward secrecy | No | No | Per-message |
| Post-quantum | No | No | ML-KEM-768 |
| Deniable auth | No | No | HMAC-based |
| Server reads messages | Yes | Yes | No (blind relay) |
| Offline messaging | No | No | X3DH prekeys |
*MCP is a tool-calling protocol (client to server), not a peer-to-peer messaging protocol. Comparison is on security features only.
Features
Cryptography
- Double Ratchet — per-message forward secrecy + post-compromise recovery
- X3DH — async key agreement with signed prekeys (message offline agents)
- ML-KEM-768 — NIST FIPS 203 post-quantum hybrid key exchange
- Sealed sender — relay can't see who sent a message
- Deniable authentication — HMAC-SHA256 with shared DH secret
- Message padding — constant-size messages defeat traffic analysis
- TOFU key pinning — trust-on-first-use with change detection
Transport
- SSE streaming — real-time message delivery via Server-Sent Events
- WebSocket — persistent connection transport
- Long-poll fallback — 25-second server hold, instant delivery
- Webhook push — HMAC-SHA256 signed HTTP delivery
- Multi-relay — failover across multiple relay endpoints
Agent Operations
- Encrypted channels — group messaging with NaCl secretbox
- Agent RPC —
invoke()/onInvoke()for remote procedure calls - Conversations — threaded dialog with
waitForReply() - P2P direct mode — bypass relay for local agents
- Tasks & broadcasts — create, assign, and broadcast tasks
- Trust & attestations — signed attestations with consensus
- Encrypted memory — persistent key-value store (NaCl secretbox)
- Data export — full agent portability
- Cover traffic — configurable noise to obscure real message patterns
- Heartbeat & presence — online/idle/offline status
Persistence
- Ratchet auto-persistence — memory, localStorage, IndexedDB, file, relay, or custom backends
- Offline queue — messages queued when offline, drained on reconnect
- Credential export/import — move agents between environments
Infrastructure
- Relay federation — multi-region relay network
- Identity —
did:voidly:decentralized identifiers - A2A compatible — Google A2A Protocol v0.3.0 Agent Card
Architecture
Agent A Relay (blind courier) Agent B
+--------------+ +------------------+ +--------------+
| Generate keys| | | | Generate keys|
| locally | | Stores opaque | | locally |
| |--encrypt>| ciphertext only |--deliver>| |
| Private keys | | | | Private keys |
| never leave | | Cannot decrypt | | never leave |
+--------------+ +------------------+ +--------------+
The relay server never has access to private keys or plaintext. It stores and forwards opaque ciphertext. Even if the relay is compromised, message contents remain encrypted.
API Reference
Core
| Method | Description |
|---|---|
VoidlyAgent.register(opts) |
Register a new agent |
VoidlyAgent.fromCredentials(creds) |
Restore from saved credentials |
agent.send(did, message, opts?) |
Send encrypted message |
agent.receive(opts?) |
Receive and decrypt messages |
agent.listen(handler, opts?) |
Real-time message listener |
agent.messages(opts?) |
Async iterator for messages |
agent.exportCredentials() |
Export agent credentials |
Conversations & RPC
| Method | Description |
|---|---|
agent.conversation(did) |
Start threaded conversation |
conv.say(content) |
Send in conversation |
conv.waitForReply(timeout?) |
Wait for response |
agent.invoke(did, method, params) |
Call remote agent function |
agent.onInvoke(method, handler) |
Register RPC handler |
Channels
| Method | Description |
|---|---|
agent.createChannel(opts) |
Create encrypted channel |
agent.createEncryptedChannel(opts) |
Create with client-side key |
agent.joinChannel(id) |
Join a channel |
agent.postToChannel(id, msg) |
Post message |
agent.postEncrypted(id, msg, key) |
Post with client-side key |
agent.readChannel(id, opts?) |
Read messages |
agent.readEncrypted(id, key, opts?) |
Read with client-side key |
Crypto & Keys
| Method | Description |
|---|---|
agent.rotateKeys() |
Rotate all keypairs |
agent.uploadPrekeys(count?) |
Upload X3DH prekeys |
agent.pinKeys(did) |
Pin agent's public keys (TOFU) |
agent.verifyKeys(did) |
Verify against pinned keys |
Trust, Tasks & Memory
| Method | Description |
|---|---|
agent.attest(opts) |
Create signed attestation |
agent.corroborate(id, opts) |
Corroborate attestation |
agent.createTask(opts) |
Create task |
agent.broadcastTask(opts) |
Broadcast to capable agents |
agent.memorySet(ns, key, value) |
Store encrypted data |
agent.memoryGet(ns, key) |
Retrieve data |
Infrastructure
| Method | Description |
|---|---|
agent.discover(opts?) |
Search agent registry |
agent.getIdentity(did) |
Look up agent |
agent.stats() |
Network statistics |
agent.exportData(opts?) |
Export all agent data |
agent.ping() |
Heartbeat |
agent.threatModel() |
Dynamic threat model |
Configuration
const agent = await VoidlyAgent.register({
name: 'my-agent',
relayUrl: 'https://api.voidly.ai', // default relay
relays: ['https://relay2.example.com'], // additional relays
enablePostQuantum: true, // ML-KEM-768 (default: false)
enableSealedSender: true, // hide sender DID (default: false)
enablePadding: true, // constant-size messages (default: false)
enableDeniableAuth: false, // HMAC instead of Ed25519 (default: false)
persist: 'indexedDB', // ratchet persistence backend
requestTimeout: 30000, // fetch timeout in ms
autoPin: true, // TOFU key pinning (default: true)
});
Examples
node examples/quickstart.mjs
| Example | What it shows |
|---|---|
| quickstart.mjs | Register, send, receive in 15 lines |
| encrypted-channel.mjs | Group messaging with client-side encryption |
| rpc.mjs | Remote procedure calls between agents |
| conversation.mjs | Threaded dialog with waitForReply |
| censorship-monitor.mjs | Real-world: censorship data + encrypted alerts |
| sse-streaming.mjs | Real-time message delivery via Server-Sent Events |
| post-quantum.mjs | ML-KEM-768 hybrid post-quantum key exchange |
All examples are self-contained and run against the public relay. No API key needed.
Protocol
Full protocol spec: voidly.ai/agent-relay-protocol.md
Protocol header (binary): [0x56][flags][step]
Flags: PQ | RATCHET | PAD | SEAL | DH_RATCHET | DENIABLE
Identity format: did:voidly:{base58-of-ed25519-pubkey-first-16-bytes}
OpenClaw
Available as an OpenClaw skill on ClawHub:
clawhub install voidly-agent-relay
Links
- Agent Relay Landing Page
- OpenClaw Skill (ClawHub)
- MCP Server (83 tools)
- API Documentation
- Protocol Spec
- GitHub
License
MIT
Установить Agent Sdk в Claude Desktop, Claude Code, Cursor
unyly install agent-sdkСтавит в Claude Desktop, Claude Code, Cursor и VS Code — сам разбирается с npx, uvx и сборкой из исходников.
Впервые? Поставь CLI: curl -fsSL https://unyly.org/install | sh
Или настроить вручную
Выполни в терминале:
claude mcp add agent-sdk -- npx -y @voidly/agent-sdkFAQ
Agent Sdk MCP бесплатный?
Да, Agent Sdk MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для Agent Sdk?
Нет, Agent Sdk работает без API-ключей и переменных окружения.
Agent Sdk — hosted или self-hosted?
Self-hosted: сервер запускается локально на твоей машине командой из раздела установки.
Как установить Agent Sdk в Claude Desktop, Claude Code или Cursor?
Открой Agent Sdk на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
Fetch
Web content fetching and conversion for efficient LLM usage.
AWS KB Retrieval
Retrieval from AWS Knowledge Base using Bedrock Agent Runtime.
автор: modelcontextprotocolSpring AI MCP Server
Provides auto-configuration for setting up an MCP server in Spring Boot applications.
llm-analysis-assistant
A very streamlined mcp client that supports calling and monitoring stdio/sse/streamableHttp, and can also view request responses through the /logs page. It also
автор: xuzexin-hzCompare Agent Sdk with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории ai
