Skip to content

feat(agentkit): add OSF action provider for sanctions/entity/CVE data#1356

Open
onefreeman1337 wants to merge 1 commit into
coinbase:mainfrom
onefreeman1337:feat/osf-action-provider
Open

feat(agentkit): add OSF action provider for sanctions/entity/CVE data#1356
onefreeman1337 wants to merge 1 commit into
coinbase:mainfrom
onefreeman1337:feat/osf-action-provider

Conversation

@onefreeman1337

Copy link
Copy Markdown

Description

Adds an OSF (Open Source Filings) action provider giving agents three paid, provenance-stamped data tools over x402 (USDC on Base mainnet):

  • lookup_entity ($0.01) — entity / counterparty verification (KYC/KYB) via CMS NPI, GLEIF LEI, FDIC, and SEC EDGAR.
  • screen_entity ($0.05) — sanctions screening against OFAC SDN, EU consolidated, and UK OFSI lists (AML/KYC).
  • check_cve_exploited ($0.02) — CVE exploitation check via CISA KEV, EPSS score, and CVSS severity (DevSecOps).

Every result carries a provenance URL to the authoritative primary source (and, for sanctions, an audit receipt), so an agent can justify a decision to an auditor or regulator. Payment is automatic per request via x402, with a per-call spend ceiling enforced by the max_amount policy. OSF settles on Base mainnet only.

How it works

Each action is a @create_action on OsfActionProvider(ActionProvider[EvmWalletProvider]). Paid calls use the x402 client (x402ClientSync + register_exact_evm_client + x402_requests); the OSF endpoint replies 402, the client signs and settles the USDC micropayment with the agent's wallet, then retries and returns the record plus the on-chain payment proof.

Testing

  • Unit tests included (tests/action_providers/osf/) — provider name, network support, action names, URL encoding, success/non-200/exception handling. All passing.
  • ruff format and ruff check clean.
  • Payment path verified live on Base mainnet: a real screen_entity call settled on-chain — settlement tx 0xb7426254fc4eaab16d0812fcd94ff5ef5feee9a740ec809667ba3edcc0eb161d (eip155:8453), returning a verified sanctions record with a provenance URL.

Network support

Base mainnet (base-mainnet / eip155:8453).

More on OSF: https://api.osf-master-server.com/mcp

@cb-heimdall

Copy link
Copy Markdown

🟡 Heimdall Review Status

Requirement Status More Info
Reviews 🟡 0/1
Denominator calculation
Show calculation
1 if user is bot 0
1 if user is external 0
2 if repo is sensitive 0
From .codeflow.yml 1
Additional review requirements
Show calculation
Max 0
0
From CODEOWNERS 0
Global minimum 0
Max 1
1
1 if commit is unverified 1
Sum 2

@github-actions github-actions Bot added documentation Improvements or additions to documentation action provider New action provider python labels Jul 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

action provider New action provider documentation Improvements or additions to documentation python

Development

Successfully merging this pull request may close these issues.

2 participants