@anthropic-ai/claude-agent-sdk
SDK for building AI agents with Claude Code's capabilities. Programmatically interact with Claude to build autonomous agents that can understand codebases, edit files, and execute workflows.
1
Versions
SEE LICENSE IN README.md
License
No
Install Scripts
Missing
Provenance
Supply chain provenance
Status for the latest visible version.
No SLSA provenance
npm registry signatures
No source commit
Without SLSA provenance there is no cryptographic link between this tarball and the public source — the axios compromise (March 2026) relied on exactly this gap.
Maintainers
zak-anthropicdylanc-anthropicbenjmannnikhil-anthropicejlangev-antjv-anthropicollie-ant-2025packy-anthropicnoahz-anthropicsbidasariawolffiexigorkofmanfelixrieseberg-anthropicjoan-anthropic
Keywords
aiagentsdkclaudeanthropicautomationcode-generation
Accepted risks
Findings the reviewer chose to accept rather than block on.
| Source | Rule | Reason | Accepted by | When |
|---|---|---|---|---|
| source-diff | obfuscated-file:bridge.mjs | AI (source-diff): Standard bundler output for bridge module; copyright header matches Anthropic; expected for SDK bundle. | ai | |
| source-diff | net-exec-file:bridge.mjs | AI (source-diff): Agent SDK bridge module legitimately requires network and execution capabilities; official Anthropic package. | ai | |
| source-diff | obfuscated-file:browser-sdk.js | AI (source-diff): browser-sdk.js is a legitimate bundled/minified browser entry point with Anthropic copyright header; standard for browser-targeted SDK bundles. | ai | |
| source-diff | net-exec-file:browser-sdk.js | AI (source-diff): Browser SDK bundle naturally contains network calls (API client) and dynamic code patterns from bundled validators (Ajv/Zod); not malicious. | ai | |
| semgrep | semgrep:api-obfuscation-reflect | AI (semgrep): Reflect.get() in minified SDK bundle is standard JavaScript bundler output; no malicious context. Stable false positive for this package. | ai | |
| semgrep | semgrep:new-function-constructor | AI (semgrep): Bundled AJV JSON schema validator uses new Function() for compiled validators — well-known pattern, not a risk. | ai | |
| semgrep | semgrep:env-spread | AI (semgrep): Standard pattern for spawning Claude Code subprocess with inherited environment. Expected for this SDK. | ai | |
| source-diff | encoded-string-file:cli.js | AI (source-diff): Bundled/minified CLI code with standard tool-parsing and utility logic; not obfuscated malicious payloads. Stable for this package. | ai | |
| npm-metadata | bundled-binaries | AI (npm-metadata): Bundled ripgrep and audio-capture binaries are expected for a code agent SDK needing fast search and audio input across platforms. Official Anthropic package. | ai | |
| source-diff | encoded-string-file:bridge.mjs | AI (source-diff): Bundled/minified SDK output containing git utility code. Standard for this package's build process. | ai | |
| source-diff | encoded-string-file:assistant.mjs | AI (source-diff): Bundled/minified SDK output containing inlined dependencies like mime-types. Standard for this package's build process. | ai | |
| provenance | no-provenance | AI (provenance): Established Anthropic package; no provenance is a minor gap, not a risk signal. | ai |
Versions (showing 1 of 201)
| Version | Deps | Published |
|---|---|---|
| 0.0.4 | 0 / 0 |
v0.0.4
1 finding
INFO
No provenance attestation
provenance
[Accepted risk] Package was published without Sigstore provenance. Only ~12% of npm packages have provenance, so this is common but not ideal.