The OpenAgent SDK is the launch developer surface. It wraps OAS identity, Arsenal credentials, AEGIS verification, L1feID provisioning hooks, wallet derivation, and skills governance behind one import.
The current public facade is Rust and TypeScript at 0.1.0. Older OAS-only pages for Python, Go, Swift, Kotlin, and vanilla JavaScript are not the current OpenAgent SDK launch surface.

Install

npm install github:OpenAgentID/openagent-sdk

Public facade

CapabilityTypeScriptRust
Create agentOpenAgent.createAgent(...)OpenAgent::create_agent(...)
Authenticate requestOpenAgent.authenticate(request)authenticate_with_verifier(&verifier, did)
Broker credentialsagent.credentialsFor(provider)agent.credentials_for(provider)
Skills policyagent.skillsPolicy()agent.check_skill(...) / SkillsPolicyHandle
Escape hatchesruntime.identity(), runtime.arsenal(), runtime.verification()re-exported oas_sdk, arsenal_sdk, aegis_sdk

What the facade wraps

OAS

DID minting, DID resolution, local signatures, lineage, and Sigil-backed authority verification.

Arsenal

ACTs, route-to-capability grants, scoped credential proxying, and audit.

AEGIS

Request verification, trust tiers, revocation, liveness, delegation, and policy.

Skills governance

Runtime skill allow, deny, consent, rate limit, argument validation, and audit.

Typical request flow

1

Authenticate

OpenAgent.authenticate(request) verifies the token or signature and returns an AuthContext.
2

Authorize

The handler checks required scopes or passes requiredScopes to the verifier.
3

Broker

The agent calls credentialsFor("openai"). Arsenal keeps the raw provider key.
4

Audit

Verification, grants, denials, proxy use, and skills decisions emit structured audit records.

Next

TypeScript SDK

Node, Bun, Deno, Workers, browser, and edge usage.

Rust SDK

Rust services, Axum/Tower wiring, and builder pattern.