The latest articles on DEV Community by Tracepilot (@tracepilot_2841f1db6718a1). https://dev.to/tracepilot_2841f1db6718a1 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3953367%2F0ea4a13f-7aa4-4b2f-bb06-80891e0cb8bf.png https://dev.to/tracepilot_2841f1db6718a1 en Tracepilot Mon, 15 Jun 2026 23:11:35 +0000 https://dev.to/tracepilot_2841f1db6718a1/your-trending-repos-script-broke-again-42a https://dev.to/tracepilot_2841f1db6718a1/your-trending-repos-script-broke-again-42a <h1> Your Trending Repos Script Broke. Again. </h1> <p>You set up a GitHub Action to scrape trending TypeScript repos. It ran at 9 AM. You got an empty JSON array. No errors. Just <code>[]</code>.</p> <p>Sound familiar?</p> <p>Here's what happened: GitHub's trending page changed its HTML structure. Your cheerio selector stopped matching. The cron job ran happily, found zero repos, and overwrote your daily digest with nothing. Nobody noticed until someone asked "why wasn't X trending yesterday?"</p> <p>This sucks. I know. I've debugged this exact thing three times in the last year.</p> <h2> Why It Breaks </h2> <p>GitHub's trending page doesn't have an API. You're scraping HTML. The issue isn't your code — it's that you're parsing a document designed for humans, not machines.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Your current approach — fragile as hell</span> <span class="kd">const</span> <span class="nx">$</span> <span class="o">=</span> <span class="nx">cheerio</span><span class="p">.</span><span class="nf">load</span><span class="p">(</span><span class="nx">html</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">repos</span> <span class="o">=</span> <span class="nf">$</span><span class="p">(</span><span class="dl">'</span><span class="s1">.Box article.Box-row</span><span class="dl">'</span><span class="p">).</span><span class="nf">map</span><span class="p">((</span><span class="nx">i</span><span class="p">,</span> <span class="nx">el</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">name</span> <span class="o">=</span> <span class="nf">$</span><span class="p">(</span><span class="nx">el</span><span class="p">).</span><span class="nf">find</span><span class="p">(</span><span class="dl">'</span><span class="s1">h2 a</span><span class="dl">'</span><span class="p">).</span><span class="nf">text</span><span class="p">().</span><span class="nf">trim</span><span class="p">();</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">name</span> <span class="p">};</span> <span class="p">}).</span><span class="nf">get</span><span class="p">();</span> </code></pre> </div> <p>That selector worked in January. In February, GitHub added a wrapper div. In March, they changed <code>h2</code> to <code>h3</code>. Your script silently failed every time.</p> <p>The real problem: <strong>You have no feedback loop</strong>. The script runs, produces nothing, and you only find out when someone complains. No alert. No trace. Just silence.</p> <h2> Manual Fix — Make It Resilient </h2> <p>Let's fix this properly. First, add validation. Fail loudly.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">fetchTrending</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://github.com/trending/typescript?since=daily</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">html</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">res</span><span class="p">.</span><span class="nf">text</span><span class="p">();</span> <span class="c1">// Validate we got real content</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">html</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">'</span><span class="s1">trending</span><span class="dl">'</span><span class="p">))</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">HTML structure changed — trending section missing</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">$</span> <span class="o">=</span> <span class="nx">cheerio</span><span class="p">.</span><span class="nf">load</span><span class="p">(</span><span class="nx">html</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">repos</span> <span class="o">=</span> <span class="p">[];</span> <span class="c1">// Try multiple selectors — be defensive</span> <span class="kd">const</span> <span class="nx">articles</span> <span class="o">=</span> <span class="nf">$</span><span class="p">(</span><span class="dl">'</span><span class="s1">article.Box-row</span><span class="dl">'</span><span class="p">).</span><span class="nx">length</span> <span class="p">?</span> <span class="nf">$</span><span class="p">(</span><span class="dl">'</span><span class="s1">article.Box-row</span><span class="dl">'</span><span class="p">)</span> <span class="p">:</span> <span class="nf">$</span><span class="p">(</span><span class="dl">'</span><span class="s1">div[class*="Box-row"]</span><span class="dl">'</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">articles</span><span class="p">.</span><span class="nx">length</span> <span class="o">===</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">No repos found — selector likely broken</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="nx">articles</span><span class="p">.</span><span class="nf">each</span><span class="p">((</span><span class="nx">i</span><span class="p">,</span> <span class="nx">el</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">repos</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">name</span><span class="p">:</span> <span class="nf">$</span><span class="p">(</span><span class="nx">el</span><span class="p">).</span><span class="nf">find</span><span class="p">(</span><span class="dl">'</span><span class="s1">h2 a, h3 a</span><span class="dl">'</span><span class="p">).</span><span class="nf">first</span><span class="p">().</span><span class="nf">text</span><span class="p">().</span><span class="nf">trim</span><span class="p">(),</span> <span class="na">stars</span><span class="p">:</span> <span class="nf">$</span><span class="p">(</span><span class="nx">el</span><span class="p">).</span><span class="nf">find</span><span class="p">(</span><span class="dl">'</span><span class="s1">.octicon-star</span><span class="dl">'</span><span class="p">).</span><span class="nf">parent</span><span class="p">().</span><span class="nf">text</span><span class="p">().</span><span class="nf">trim</span><span class="p">(),</span> <span class="na">description</span><span class="p">:</span> <span class="nf">$</span><span class="p">(</span><span class="nx">el</span><span class="p">).</span><span class="nf">find</span><span class="p">(</span><span class="dl">'</span><span class="s1">p</span><span class="dl">'</span><span class="p">).</span><span class="nf">text</span><span class="p">().</span><span class="nf">trim</span><span class="p">()</span> <span class="p">});</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">repos</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>Now you get errors instead of silence. But you still don't know <em>why</em> it broke. You'll SSH into the box, run it manually, stare at the HTML, and curse.</p> <h2> The Better Way — TracePilot </h2> <p>Add one import. Wrap your fetch. Now every run is recorded, including the raw HTML that broke your parser.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">tp</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TracePilot</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">TRACEPILOT_API_KEY</span><span class="p">);</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">fetchTrending</span><span class="p">()</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">startTrace</span><span class="p">(</span><span class="dl">'</span><span class="s1">trending-repos-scraper</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://github.com/trending/typescript?since=daily</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">html</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">res</span><span class="p">.</span><span class="nf">text</span><span class="p">();</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">result</span><span class="p">,</span> <span class="nx">spanId</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">wrapToolCall</span><span class="p">(</span> <span class="dl">'</span><span class="s1">parse-trending-page</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">$</span> <span class="o">=</span> <span class="nx">cheerio</span><span class="p">.</span><span class="nf">load</span><span class="p">(</span><span class="nx">html</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">repos</span> <span class="o">=</span> <span class="p">[];</span> <span class="kd">const</span> <span class="nx">articles</span> <span class="o">=</span> <span class="nf">$</span><span class="p">(</span><span class="dl">'</span><span class="s1">article.Box-row</span><span class="dl">'</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">articles</span><span class="p">.</span><span class="nx">length</span> <span class="o">===</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">No repos found</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="nx">articles</span><span class="p">.</span><span class="nf">each</span><span class="p">((</span><span class="nx">i</span><span class="p">,</span> <span class="nx">el</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">repos</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">name</span><span class="p">:</span> <span class="nf">$</span><span class="p">(</span><span class="nx">el</span><span class="p">).</span><span class="nf">find</span><span class="p">(</span><span class="dl">'</span><span class="s1">h2 a</span><span class="dl">'</span><span class="p">).</span><span class="nf">text</span><span class="p">().</span><span class="nf">trim</span><span class="p">()</span> <span class="p">});</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">repos</span><span class="p">;</span> <span class="p">},</span> <span class="kc">null</span><span class="p">,</span> <span class="mi">1</span> <span class="p">);</span> <span class="k">return</span> <span class="nx">result</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>When it fails, open your dashboard. You'll see the exact HTML that was returned. Fork the trace. Edit the selector. Replay. No redeployment. No guessing.</p> <p>Guess what happens next? You can even set up alerts: "If zero repos returned, notify the team." Real feedback. Real debugging.</p> <p>The fix isn't better selectors. It's knowing exactly what happened the moment it broke.</p> <p><strong>Debugging AI agents shouldn't feel like reading The Matrix.</strong> <br> Join other engineers who are building reliable autonomous workflows in our community: <a href="https://discord.gg/KzXRAXFM8" rel="noopener noreferrer">TracePilot Discord</a></p> ai debugging python Tracepilot Mon, 15 Jun 2026 15:21:47 +0000 https://dev.to/tracepilot_2841f1db6718a1/langsmith-0379-has-5-cves-heres-what-actually-breaks-4bn9 https://dev.to/tracepilot_2841f1db6718a1/langsmith-0379-has-5-cves-heres-what-actually-breaks-4bn9 <h1> Langsmith 0.3.79 Has 5 CVEs. Here's What Actually Breaks. </h1> <p>You upgraded LangSmith to <code>0.3.79</code>. Now your security scanner screams: <strong>5 vulnerabilities. Highest severity: 9.8.</strong></p> <p>Your first instinct: panic-upgrade. Your second: ignore it because "it's just the client SDK."</p> <p>Both are wrong. Here's why.</p> <h2> The Problem </h2> <p>LangSmith is your LLM observability layer. It sends traces, logs, and evaluation data from your agents to LangSmith's platform. That <code>0.3.79.tgz</code> tarball? It pulls in dependencies with known issues.</p> <p>The 9.8 severity CVE? It's in <code>undici</code> — the HTTP client LangSmith uses internally. Undici had a <a href="https://github.com/nodejs/undici/security/advisories/GHSA-3g92-w8c5-73pq" rel="noopener noreferrer">request smuggling vulnerability</a> that lets an attacker inject headers into your requests.</p> <p>Sound familiar? This is the same class of bug that brought down major CDNs last year.</p> <p><strong>What actually happens:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Your Agent → LangSmith SDK → undici HTTP client → LangSmith API ↓ Attacker intercepts request Injects malicious headers Your trace data is compromised </code></pre> </div> <p>But here's the kicker: you probably don't call <code>undici</code> directly. It's buried three layers deep in LangSmith's dependency tree. Your <code>package-lock.json</code> has it locked at a vulnerable version, and <code>npm audit</code> can't fix it without a transitive update.</p> <h2> The Three Things That Actually Break </h2> <h3> 1. Request Smuggling (CVE-2024-30260 — 9.8) </h3> <p>An attacker can craft a malicious response that poisons subsequent requests. If you're running LangSmith in a shared process space (like a Next.js serverless function), one compromised trace can leak another user's data.</p> <p><strong>Real-world impact:</strong> Your customer support agent sends a user's PII to LangSmith. Attacker intercepts the connection, injects headers, and now they're reading someone else's session data.</p> <h3> 2. HTTP Request Splitting (CVE-2024-30261 — 7.5) </h3> <p>Same family. Different angle. Attacker terminates your request early, appends a fake one. Now LangSmith thinks your agent called a tool it never did.</p> <p><strong>This sucks for debugging:</strong> You look at your trace, see a tool call you never made, and spend hours trying to reproduce it. It's not a bug — it's an exploit.</p> <h3> 3. Memory Exposure (CVE-2024-30262 — 6.5) </h3> <p>Undici leaks heap memory under specific conditions. Your agent runs fine for hours, then OOMs. You blame the LLM. You blame the context window. You add more memory.</p> <p><strong>Guess what happens next?</strong> It OOMs again. Because the leak is in the tracing layer, not the agent.</p> <h2> The Manual Fix (No TracePilot) </h2> <p>You have two options:</p> <h3> Option A: Force LangSmith to use a patched undici </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>undici@6.6.2 </code></pre> </div> <p>Then add an override to your <code>package.json</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"overrides"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"undici"</span><span class="p">:</span><span class="w"> </span><span class="s2">"6.6.2"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>Run <code>npm install</code> again. Verify:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">ls </span>undici <span class="c"># → should show 6.6.2</span> </code></pre> </div> <h3> Option B: Pin LangSmith to a known-safe version </h3> <p>Check LangSmith's changelog. If <code>0.3.80</code> or later fixed the dependency, bump:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>langsmith@0.3.82 </code></pre> </div> <h3> Option C: If you can't upgrade (legacy, compliance, etc.) </h3> <p>Patch the vulnerable file directly. Find it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>find node_modules/undici <span class="nt">-name</span> <span class="s2">"*.js"</span> | xargs <span class="nb">grep</span> <span class="nt">-l</span> <span class="s2">"CRLF</span><span class="se">\|</span><span class="s2">split</span><span class="se">\|</span><span class="s2">smuggle"</span> </code></pre> </div> <p>Then manually replace the vulnerable parsing logic. Not fun. Works when you're stuck.</p> <h2> What TracePilot Does Differently </h2> <p>TracePilot doesn't use <code>undici</code>. We built our ingestion pipeline on raw Node.js <code>http</code> module with strict header validation. No transitive HTTP client dependencies.</p> <p><strong>One line change to swap LangSmith for TracePilot:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Before</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Client</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">langsmith</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">ls</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Client</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">LANGSMITH_API_KEY</span> <span class="p">});</span> <span class="c1">// After</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">tp</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TracePilot</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">TRACEPILOT_API_KEY</span><span class="p">);</span> </code></pre> </div> <p>That's it. Same tracing capabilities. Zero CVEs in the HTTP layer.</p> <p>But here's the real win: TracePilot captures every LLM call, every tool invocation, every token spent — and surfaces them in a live dashboard. When something breaks, you don't grep logs. You open the trace, fork the execution at the failing step, edit the prompt, and replay.</p> <p><strong>No redeployment. No "works on my machine."</strong></p> <h2> The Hook </h2> <p>You've got 5 CVEs sitting in your production agent right now. One of them is a 9.8. Your security team is going to ask about it.</p> <p>You can patch it. You can override it. Or you can swap the tracing layer for one that doesn't have this problem in the first place.</p> <p>TracePilot gives you the same observability — plus time-travel debugging — without the baggage.</p> <p><a href="https://tracepilotai.com" rel="noopener noreferrer">Get a free API key</a>. Fork your first failing trace in under 5 minutes.</p> <p>Or keep fighting with <code>undici</code> overrides. Your call.</p> <p><strong>Debugging AI agents shouldn't feel like reading The Matrix.</strong> <br> Join other engineers who are building reliable autonomous workflows in our community: <a href="https://discord.gg/KzXRAXFM8" rel="noopener noreferrer">TracePilot Discord</a></p> ai debugging python Tracepilot Fri, 12 Jun 2026 15:32:53 +0000 https://dev.to/tracepilot_2841f1db6718a1/building-an-agentic-authorization-observer-with-opentelemetry-semconv-179j https://dev.to/tracepilot_2841f1db6718a1/building-an-agentic-authorization-observer-with-opentelemetry-semconv-179j <h1> Building an Agentic Authorization Observer with OpenTelemetry SemConv </h1> <h2> What we're building </h2> <p>An observability layer that captures every authorization decision your AI agent makes — trust scores, drift detection, and FGA (Fine-Grained Authorization) context — using the proposed OpenTelemetry semantic conventions for agentic authorization.</p> <h2> Prerequisites </h2> <ul> <li>Node.js 18+</li> <li>An existing AI agent (or use the one we'll build)</li> <li>TracePilot API key (free at <a href="https://tracepilotai.com" rel="noopener noreferrer">tracepilotai.com</a>)</li> <li>Basic understanding of OpenTelemetry spans</li> </ul> <h2> Step 1: Set up your agent with authorization hooks </h2> <p>First, let's create a simple agent that makes decisions and checks permissions before executing tools.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>openai tracepilot-sdk uuid </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// agent.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">OpenAI</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">openai</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">tp</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TracePilot</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">TRACEPILOT_API_KEY</span><span class="o">!</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">openai</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">OpenAI</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">OPENAI_API_KEY</span> <span class="p">});</span> <span class="c1">// Simulated authorization context</span> <span class="kr">interface</span> <span class="nx">AuthContext</span> <span class="p">{</span> <span class="nl">userRole</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">resourceType</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">action</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">trustScore</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="nl">driftScore</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="p">}</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">checkAuthorization</span><span class="p">(</span><span class="nx">auth</span><span class="p">:</span> <span class="nx">AuthContext</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">allowed</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">reason</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">fgaDecision</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span><span class="o">&gt;</span> <span class="p">{</span> <span class="c1">// In production, this calls your FGA service (Auth0 FGA, OPA, etc.)</span> <span class="kd">const</span> <span class="nx">fgaDecision</span> <span class="o">=</span> <span class="nx">auth</span><span class="p">.</span><span class="nx">userRole</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">admin</span><span class="dl">'</span> <span class="p">?</span> <span class="dl">'</span><span class="s1">allow</span><span class="dl">'</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">deny</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">allowed</span> <span class="o">=</span> <span class="nx">fgaDecision</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">allow</span><span class="dl">'</span> <span class="o">&amp;&amp;</span> <span class="nx">auth</span><span class="p">.</span><span class="nx">trustScore</span> <span class="o">&gt;</span> <span class="mf">0.7</span><span class="p">;</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">allowed</span><span class="p">,</span> <span class="na">reason</span><span class="p">:</span> <span class="nx">allowed</span> <span class="p">?</span> <span class="dl">'</span><span class="s1">Authorized</span><span class="dl">'</span> <span class="p">:</span> <span class="s2">`Denied: role=</span><span class="p">${</span><span class="nx">auth</span><span class="p">.</span><span class="nx">userRole</span><span class="p">}</span><span class="s2">, trust=</span><span class="p">${</span><span class="nx">auth</span><span class="p">.</span><span class="nx">trustScore</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="nx">fgaDecision</span> <span class="p">};</span> <span class="p">}</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">runAgent</span><span class="p">(</span><span class="nx">userInput</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">startTrace</span><span class="p">(</span><span class="dl">'</span><span class="s1">authorized-agent</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">authContext</span><span class="p">:</span> <span class="nx">AuthContext</span> <span class="o">=</span> <span class="p">{</span> <span class="na">userRole</span><span class="p">:</span> <span class="dl">'</span><span class="s1">editor</span><span class="dl">'</span><span class="p">,</span> <span class="na">resourceType</span><span class="p">:</span> <span class="dl">'</span><span class="s1">document</span><span class="dl">'</span><span class="p">,</span> <span class="na">action</span><span class="p">:</span> <span class="dl">'</span><span class="s1">delete</span><span class="dl">'</span><span class="p">,</span> <span class="na">trustScore</span><span class="p">:</span> <span class="mf">0.85</span><span class="p">,</span> <span class="na">driftScore</span><span class="p">:</span> <span class="mf">0.12</span> <span class="p">};</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">result</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">wrapOpenAI</span><span class="p">(</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="na">model</span><span class="p">:</span> <span class="dl">'</span><span class="s1">gpt-4o-mini</span><span class="dl">'</span><span class="p">,</span> <span class="na">messages</span><span class="p">:</span> <span class="p">[{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">'</span><span class="s1">user</span><span class="dl">'</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nx">userInput</span> <span class="p">}]</span> <span class="p">}),</span> <span class="p">[{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">'</span><span class="s1">user</span><span class="dl">'</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nx">userInput</span> <span class="p">}]</span> <span class="p">);</span> <span class="k">return</span> <span class="nx">result</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h2> Step 2: Add authorization observability with SemConv attributes </h2> <p>Now we wrap every authorization check with structured observability. These attributes follow the proposed <code>agent.trust_score</code>, <code>agent.drift_score</code>, and <code>fga.*</code> conventions.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// authorization-observer.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="kr">interface</span> <span class="nx">AuthorizationSpan</span> <span class="p">{</span> <span class="nl">trustScore</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="nl">driftScore</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="nl">fgaType</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">fgaDecision</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">fgaReason</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">resourceType</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">action</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">userRole</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">AuthorizationObserver</span> <span class="p">{</span> <span class="k">private</span> <span class="nx">tp</span><span class="p">:</span> <span class="nx">TracePilot</span><span class="p">;</span> <span class="nf">constructor</span><span class="p">(</span><span class="nx">tp</span><span class="p">:</span> <span class="nx">TracePilot</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">tp</span> <span class="o">=</span> <span class="nx">tp</span><span class="p">;</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">observeAuthorization</span><span class="p">(</span> <span class="nx">authCheck</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">allowed</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">reason</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">fgaDecision</span><span class="p">:</span> <span class="kr">string</span> <span class="p">}</span><span class="o">&gt;</span><span class="p">,</span> <span class="nx">context</span><span class="p">:</span> <span class="nx">AuthorizationSpan</span> <span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">allowed</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">reason</span><span class="p">:</span> <span class="kr">string</span> <span class="p">}</span><span class="o">&gt;</span> <span class="p">{</span> <span class="c1">// Record authorization decision as a span with SemConv attributes</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">result</span><span class="p">,</span> <span class="nx">spanId</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">tp</span><span class="p">.</span><span class="nf">wrapToolCall</span><span class="p">(</span> <span class="dl">'</span><span class="s1">authorization-check</span><span class="dl">'</span><span class="p">,</span> <span class="nx">authCheck</span><span class="p">,</span> <span class="kc">undefined</span><span class="p">,</span> <span class="c1">// parent span — will be linked when called from agent</span> <span class="mi">1</span><span class="p">,</span> <span class="c1">// step order</span> <span class="kc">false</span> <span class="c1">// not destructive</span> <span class="p">);</span> <span class="c1">// Add custom attributes to the span</span> <span class="c1">// These follow the proposed SemConv naming convention</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">tp</span><span class="p">.</span><span class="nf">addSpanAttributes</span><span class="p">(</span><span class="nx">spanId</span><span class="p">,</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">agent.trust_score</span><span class="dl">'</span><span class="p">:</span> <span class="nx">context</span><span class="p">.</span><span class="nx">trustScore</span><span class="p">,</span> <span class="dl">'</span><span class="s1">agent.drift_score</span><span class="dl">'</span><span class="p">:</span> <span class="nx">context</span><span class="p">.</span><span class="nx">driftScore</span><span class="p">,</span> <span class="dl">'</span><span class="s1">fga.type</span><span class="dl">'</span><span class="p">:</span> <span class="nx">context</span><span class="p">.</span><span class="nx">fgaType</span><span class="p">,</span> <span class="dl">'</span><span class="s1">fga.decision</span><span class="dl">'</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">fgaDecision</span><span class="p">,</span> <span class="dl">'</span><span class="s1">fga.reason</span><span class="dl">'</span><span class="p">:</span> <span class="nx">context</span><span class="p">.</span><span class="nx">fgaReason</span> <span class="o">||</span> <span class="nx">result</span><span class="p">.</span><span class="nx">reason</span><span class="p">,</span> <span class="dl">'</span><span class="s1">fga.resource_type</span><span class="dl">'</span><span class="p">:</span> <span class="nx">context</span><span class="p">.</span><span class="nx">resourceType</span><span class="p">,</span> <span class="dl">'</span><span class="s1">fga.action</span><span class="dl">'</span><span class="p">:</span> <span class="nx">context</span><span class="p">.</span><span class="nx">action</span><span class="p">,</span> <span class="dl">'</span><span class="s1">fga.subject_role</span><span class="dl">'</span><span class="p">:</span> <span class="nx">context</span><span class="p">.</span><span class="nx">userRole</span> <span class="p">});</span> <span class="k">return</span> <span class="p">{</span> <span class="na">allowed</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">allowed</span><span class="p">,</span> <span class="na">reason</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">reason</span> <span class="p">};</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Step 3: Wire it all together — agent with authorization observability </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// authorized-agent.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">OpenAI</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">openai</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">AuthorizationObserver</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./authorization-observer</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">tp</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TracePilot</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">TRACEPILOT_API_KEY</span><span class="o">!</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">openai</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">OpenAI</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">OPENAI_API_KEY</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">authObserver</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">AuthorizationObserver</span><span class="p">(</span><span class="nx">tp</span><span class="p">);</span> <span class="kr">interface</span> <span class="nx">ToolCall</span> <span class="p">{</span> <span class="nl">name</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">args</span><span class="p">:</span> <span class="nb">Record</span><span class="o">&lt;</span><span class="kr">string</span><span class="p">,</span> <span class="nx">unknown</span><span class="o">&gt;</span><span class="p">;</span> <span class="nl">userRole</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">trustScore</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="nl">driftScore</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="p">}</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">executeToolWithAuthorization</span><span class="p">(</span><span class="nx">toolCall</span><span class="p">:</span> <span class="nx">ToolCall</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Step 1: Check authorization</span> <span class="kd">const</span> <span class="nx">authResult</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">authObserver</span><span class="p">.</span><span class="nf">observeAuthorization</span><span class="p">(</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nf">checkAuthorization</span><span class="p">({</span> <span class="na">userRole</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">userRole</span><span class="p">,</span> <span class="na">resourceType</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">name</span><span class="p">,</span> <span class="na">action</span><span class="p">:</span> <span class="dl">'</span><span class="s1">execute</span><span class="dl">'</span><span class="p">,</span> <span class="na">trustScore</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">trustScore</span><span class="p">,</span> <span class="na">driftScore</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">driftScore</span> <span class="p">}),</span> <span class="p">{</span> <span class="na">trustScore</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">trustScore</span><span class="p">,</span> <span class="na">driftScore</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">driftScore</span><span class="p">,</span> <span class="na">fgaType</span><span class="p">:</span> <span class="dl">'</span><span class="s1">role_based</span><span class="dl">'</span><span class="p">,</span> <span class="na">fgaDecision</span><span class="p">:</span> <span class="dl">'</span><span class="s1">pending</span><span class="dl">'</span><span class="p">,</span> <span class="na">fgaReason</span><span class="p">:</span> <span class="dl">''</span><span class="p">,</span> <span class="na">resourceType</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">name</span><span class="p">,</span> <span class="na">action</span><span class="p">:</span> <span class="dl">'</span><span class="s1">execute</span><span class="dl">'</span><span class="p">,</span> <span class="na">userRole</span><span class="p">:</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">userRole</span> <span class="p">}</span> <span class="p">);</span> <span class="c1">// Step 2: Execute or deny based on authorization</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">authResult</span><span class="p">.</span><span class="nx">allowed</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">error</span><span class="p">:</span> <span class="nx">authResult</span><span class="p">.</span><span class="nx">reason</span><span class="p">,</span> <span class="na">authorized</span><span class="p">:</span> <span class="kc">false</span> <span class="p">};</span> <span class="p">}</span> <span class="c1">// Step 3: Execute the tool (wrapped for observability)</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">result</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">wrapToolCall</span><span class="p">(</span> <span class="nx">toolCall</span><span class="p">.</span><span class="nx">name</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nf">simulateToolExecution</span><span class="p">(</span><span class="nx">toolCall</span><span class="p">),</span> <span class="kc">undefined</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="kc">true</span> <span class="c1">// destructive — marks with ⚠ in dashboard</span> <span class="p">);</span> <span class="k">return</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">result</span><span class="p">,</span> <span class="na">authorized</span><span class="p">:</span> <span class="kc">true</span> <span class="p">};</span> <span class="p">}</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">simulateToolExecution</span><span class="p">(</span><span class="nx">toolCall</span><span class="p">:</span> <span class="nx">ToolCall</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="kr">string</span><span class="o">&gt;</span> <span class="p">{</span> <span class="c1">// Simulate actual tool execution</span> <span class="k">return</span> <span class="s2">`Executed </span><span class="p">${</span><span class="nx">toolCall</span><span class="p">.</span><span class="nx">name</span><span class="p">}</span><span class="s2"> with args: </span><span class="p">${</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">toolCall</span><span class="p">.</span><span class="nx">args</span><span class="p">)}</span><span class="s2">`</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Usage</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">main</span><span class="p">()</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">startTrace</span><span class="p">(</span><span class="dl">'</span><span class="s1">authorized-agent-run</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">toolCall</span><span class="p">:</span> <span class="nx">ToolCall</span> <span class="o">=</span> <span class="p">{</span> <span class="na">name</span><span class="p">:</span> <span class="dl">'</span><span class="s1">delete-document</span><span class="dl">'</span><span class="p">,</span> <span class="na">args</span><span class="p">:</span> <span class="p">{</span> <span class="na">documentId</span><span class="p">:</span> <span class="dl">'</span><span class="s1">doc-123</span><span class="dl">'</span> <span class="p">},</span> <span class="na">userRole</span><span class="p">:</span> <span class="dl">'</span><span class="s1">editor</span><span class="dl">'</span><span class="p">,</span> <span class="na">trustScore</span><span class="p">:</span> <span class="mf">0.85</span><span class="p">,</span> <span class="na">driftScore</span><span class="p">:</span> <span class="mf">0.12</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">executeToolWithAuthorization</span><span class="p">(</span><span class="nx">toolCall</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">result</span><span class="p">);</span> <span class="c1">// → { data: "Executed delete-document with args: {\"documentId\":\"doc-123\"}", authorized: true }</span> <span class="p">}</span> <span class="nf">main</span><span class="p">();</span> </code></pre> </div> <h2> Adding observability with TracePilot </h2> <p>Here's where TracePilot makes debugging authorization decisions obvious. Install the SDK and add one line to see every authorization check in your dashboard.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>tracepilot-sdk </code></pre> </div> <p>The <code>AuthorizationObserver</code> class we built above already uses TracePilot's <code>wrapToolCall</code> and <code>addSpanAttributes</code> methods. Open your <a href="https://tracepilotai.com/dashboard" rel="noopener noreferrer">TracePilot Dashboard</a> and you'll see:</p> <ul> <li> <strong>Every authorization decision</strong> as a separate span with full context</li> <li> <strong>Trust and drift scores</strong> tracked per decision</li> <li> <strong>FGA attributes</strong> (type, decision, reason, resource, action, subject)</li> <li> <strong>The full execution tree</strong> — which agent step triggered which authorization check</li> </ul> <p>To see a failed authorization in action, change the trust score:</p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> typescript const failedAuth = await executeToolWithAuthorization({ name: 'delete-document', args: { documentId: --- **Debugging AI agents shouldn't feel like reading The Matrix.** Join other engineers who are building reliable autonomous workflows in our community: [TracePilot Discord](https://discord.gg/KzXRAXFM8) </code></pre> </div> ai debugging python Tracepilot Mon, 08 Jun 2026 15:57:02 +0000 https://dev.to/tracepilot_2841f1db6718a1/your-aws-npm-package-has-8-vulnerabilities-heres-whats-actually-happening-3fjn https://dev.to/tracepilot_2841f1db6718a1/your-aws-npm-package-has-8-vulnerabilities-heres-whats-actually-happening-3fjn <h1> Your <code>aws</code> npm package has 8 vulnerabilities. Here's what's actually happening. </h1> <p>That GitHub issue you're looking at? <code>aws-0.1.15.tgz</code> with 8 vulnerabilities, highest severity 9.8. CVSS 9.8 is "critical" — the kind that wakes you up at 3 AM.</p> <p>Here's the thing nobody tells you: <strong>that package hasn't been updated since 2016.</strong> It's a 300-line wrapper around the actual AWS SDK that someone published a decade ago and abandoned. But your dependency tree pulled it in anyway.</p> <h2> Why this keeps happening </h2> <p>Your <code>package.json</code> looks clean. You're using <code>@aws-sdk/client-s3</code> v3.600.0. Everything's modern. Then you run <code>npm ls aws</code> and find this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>your-project@1.0.0 └─┬ some-old-tool@2.3.1 └── aws@0.1.15 </code></pre> </div> <p>Some transitive dependency — probably a build tool someone added in 2019 and forgot about — depends on the ancient <code>aws</code> package. npm doesn't care. It installs what's asked.</p> <p>The 8 vulnerabilities? They're in <code>aws</code>'s dependency on <code>xml2js</code> v0.4.x, which has an XXE vulnerability (CVE-2023-0842, score 9.8). Attackers can send malicious XML payloads through your S3 operations and read arbitrary files from your server.</p> <h2> The manual fix (do this first) </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Find who's pulling it in</span> npm <span class="nb">ls </span>aws <span class="c"># Force override the vulnerable dependency</span> <span class="c"># Add to package.json:</span> <span class="s2">"overrides"</span>: <span class="o">{</span> <span class="s2">"aws"</span>: <span class="o">{</span> <span class="s2">"xml2js"</span>: <span class="s2">"0.6.2"</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <p>Or better — rip it out entirely:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check if anything actually uses it</span> <span class="nb">grep</span> <span class="nt">-r</span> <span class="s2">"require('aws')"</span> node_modules/ <span class="nt">--include</span><span class="o">=</span><span class="s2">"*.js"</span> | <span class="nb">grep</span> <span class="nt">-v</span> <span class="s2">"aws-sdk"</span> <span class="nb">grep</span> <span class="nt">-r</span> <span class="s2">"from 'aws'"</span> node_modules/ <span class="nt">--include</span><span class="o">=</span><span class="s2">"*.js"</span> | <span class="nb">grep</span> <span class="nt">-v</span> <span class="s2">"aws-sdk"</span> </code></pre> </div> <p>90% of the time, nothing imports it. The package is just sitting there, being vulnerable, doing nothing.</p> <p>If it's truly unused:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Delete it and pray nothing breaks</span> <span class="nb">rm</span> <span class="nt">-rf</span> node_modules/aws npm <span class="nb">install</span> <span class="nt">--no-save</span> <span class="c"># regenerates node_modules without it</span> </code></pre> </div> <p>If something breaks, you found the dead code. Time to update that old tool.</p> <h2> The real problem: dependency archaeology </h2> <p>This isn't about one npm package. It's about the fact that your dependency tree is a fossil record of every bad decision made in the last 5 years.</p> <p>I've seen teams spend 3 days chasing a vulnerability in <code>aws@0.1.15</code> only to discover it was pulled in by <code>grunt-aws-s3</code> — a package last updated in 2017, used by one build script that hasn't run since 2020.</p> <p><strong>Sound familiar?</strong></p> <p>You need two things:</p> <ol> <li>Visibility into <em>why</em> a dependency exists</li> <li>The ability to trace the exact path</li> </ol> <h2> Here's where TracePilot comes in </h2> <p>Not for this specific npm problem — but for the same class of debugging hell. Your AI agents have the same issue. Something deep in the call chain fails, and you have no idea what happened.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Before: blind agent</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="na">model</span><span class="p">:</span> <span class="dl">'</span><span class="s1">gpt-4o</span><span class="dl">'</span><span class="p">,</span> <span class="nx">messages</span> <span class="p">});</span> <span class="c1">// After: traced agent</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">tp</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TracePilot</span><span class="p">(</span><span class="dl">'</span><span class="s1">tp_live_YOUR_KEY</span><span class="dl">'</span><span class="p">);</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">startTrace</span><span class="p">(</span><span class="dl">'</span><span class="s1">agent-debug</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">result</span><span class="p">,</span> <span class="nx">spanId</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">wrapOpenAI</span><span class="p">(</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="na">model</span><span class="p">:</span> <span class="dl">'</span><span class="s1">gpt-4o</span><span class="dl">'</span><span class="p">,</span> <span class="nx">messages</span> <span class="p">}),</span> <span class="nx">messages</span> <span class="p">);</span> </code></pre> </div> <p>One line change. Now every call is tracked. When something fails — and it will — you open the dashboard, find the failing span, and fork it. Change the prompt. Replay. Done.</p> <p>No more guessing what happened inside your agent. No more "works on my machine." No more 3-day archaeology projects.</p> <p>Just like you'd use <code>npm ls</code> to find where <code>aws@0.1.15</code> came from, TracePilot shows you the exact execution path of every LLM call, tool invocation, and decision your agent made.</p> <p>The npm problem taught us one thing: <strong>you can't fix what you can't see.</strong> Your AI agents deserve better.</p> <p><strong>Debugging AI agents shouldn't feel like reading The Matrix.</strong> <br> Join other engineers who are building reliable autonomous workflows in our community: <a href="https://discord.gg/KzXRAXFM8" rel="noopener noreferrer">TracePilot Discord</a></p> ai debugging python Tracepilot Fri, 05 Jun 2026 15:14:12 +0000 https://dev.to/tracepilot_2841f1db6718a1/build-a-dependency-dashboard-with-automated-updates-using-renovate-3llh https://dev.to/tracepilot_2841f1db6718a1/build-a-dependency-dashboard-with-automated-updates-using-renovate-3llh <h1> Build a Dependency Dashboard with Automated Updates Using Renovate </h1> <p><strong>What we're building:</strong> A fully automated dependency management system that tracks every package in your project, opens PRs for updates, and gives you a single dashboard to review everything.</p> <h2> Prerequisites </h2> <ul> <li>A GitHub repository with a JavaScript/TypeScript project (Node.js 18+)</li> <li>A GitHub account (free tier works)</li> <li>Basic familiarity with <code>package.json</code> and Git workflows</li> <li>10 minutes of your time</li> </ul> <h2> Step 1: Add Renovate to Your Repository </h2> <p>Renovate is the most popular automated dependency update tool for GitHub. It detects outdated packages, creates PRs, and keeps everything in one dashboard.</p> <p>First, install the Renovate GitHub App:</p> <ol> <li>Go to <a href="https://github.com/apps/renovate" rel="noopener noreferrer">github.com/apps/renovate</a> </li> <li>Click "Install" and select your repository</li> <li>That's it — Renovate will scan your repo within minutes</li> </ol> <p>Renovate automatically detects dependencies from <code>package.json</code>, <code>Dockerfile</code>, GitHub Actions, and 100+ other file types. No configuration required to start.</p> <h2> Step 2: See Your First Dependency Dashboard </h2> <p>Once installed, Renovate creates a GitHub Issue called <strong>"Dependency Dashboard"</strong> in your repository. This is your command center.</p> <p>Here's what it looks like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight markdown"><code><span class="gh"># Dependency Dashboard</span> <span class="gu">## Detected Dependencies</span> <span class="p">-</span> ⬆️ express (4.18.2 → 4.19.0) <span class="p">-</span> ⬆️ react (18.2.0 → 19.0.0) <span class="p">-</span> ⬆️ typescript (5.3.3 → 5.4.2) <span class="gu">## Rate-Limited Updates</span> <span class="p">-</span> ⏳ next (14.0.4 → 14.1.0) <span class="gu">## Repository Problems</span> <span class="p">-</span> ⚠️ Package lookup failures: @internal/legacy-utils </code></pre> </div> <p>The dashboard shows:</p> <ul> <li> <strong>Pending updates</strong> — PRs ready for review</li> <li> <strong>Rate-limited updates</strong> — blocked by API limits</li> <li> <strong>Problems</strong> — packages that failed to resolve</li> </ul> <p>You got this. Open that issue and see what Renovate found.</p> <h2> Step 3: Configure Renovate for Your Workflow </h2> <p>Create a <code>renovate.json</code> file in your repo root to customize behavior:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"$schema"</span><span class="p">:</span><span class="w"> </span><span class="s2">"https://docs.renovatebot.com/renovate-schema.json"</span><span class="p">,</span><span class="w"> </span><span class="nl">"extends"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"config:recommended"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"labels"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"dependencies"</span><span class="p">],</span><span class="w"> </span><span class="nl">"schedule"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"before 9am on Monday"</span><span class="p">],</span><span class="w"> </span><span class="nl">"packageRules"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"matchUpdateTypes"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"minor"</span><span class="p">,</span><span class="w"> </span><span class="s2">"patch"</span><span class="p">],</span><span class="w"> </span><span class="nl">"automerge"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"matchDepTypes"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"devDependencies"</span><span class="p">],</span><span class="w"> </span><span class="nl">"automerge"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"prConcurrentLimit"</span><span class="p">:</span><span class="w"> </span><span class="mi">5</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>This config:</p> <ul> <li>Auto-merges minor and patch updates (safe)</li> <li>Auto-merges dev dependencies (low risk)</li> <li>Limits to 5 open PRs at a time</li> <li>Runs weekly on Monday morning</li> </ul> <p><strong>Pro tip:</strong> Start with <code>automerge: false</code> for major updates. You want eyes on breaking changes.</p> <h2> Step 4: The Real Power — Grouped Updates </h2> <p>When you have 50+ dependencies, individual PRs get noisy. Group related updates:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"packageRules"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"matchPackageNames"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"eslint*"</span><span class="p">,</span><span class="w"> </span><span class="s2">"@typescript-eslint/*"</span><span class="p">],</span><span class="w"> </span><span class="nl">"groupName"</span><span class="p">:</span><span class="w"> </span><span class="s2">"ESLint packages"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"matchPackageNames"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"react"</span><span class="p">,</span><span class="w"> </span><span class="s2">"react-dom"</span><span class="p">,</span><span class="w"> </span><span class="s2">"@types/react"</span><span class="p">,</span><span class="w"> </span><span class="s2">"@types/react-dom"</span><span class="p">],</span><span class="w"> </span><span class="nl">"groupName"</span><span class="p">:</span><span class="w"> </span><span class="s2">"React ecosystem"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"matchPackageNames"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"next"</span><span class="p">,</span><span class="w"> </span><span class="s2">"next-auth"</span><span class="p">],</span><span class="w"> </span><span class="nl">"groupName"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Next.js"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>Now instead of 12 PRs for ESLint plugins, you get 1 PR titled "chore(deps): update ESLint packages". Clean. Reviewable. Ship it.</p> <h2> Step 5: Handle Major Updates Safely </h2> <p>Major versions need manual review. Configure Renovate to create separate PRs with clear labels:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"packageRules"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"matchUpdateTypes"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"major"</span><span class="p">],</span><span class="w"> </span><span class="nl">"labels"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"major-update"</span><span class="p">,</span><span class="w"> </span><span class="s2">"needs-review"</span><span class="p">],</span><span class="w"> </span><span class="nl">"assignees"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"your-github-username"</span><span class="p">],</span><span class="w"> </span><span class="nl">"prBodyNotes"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"⚠️ **Major version update** — please review breaking changes before merging."</span><span class="w"> </span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>When React 19 drops, you'll get a PR with a big red label. No surprises.</p> <h2> Adding Observability — Here's Where TracePilot Comes In </h2> <p>Dependency updates are automated, but what about the <em>agent</em> that manages them? If you're running automated CI scripts or AI-powered dependency bots, you need to trace their decisions.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>tracepilot-sdk </code></pre> </div> <p>Wrap your Renovate automation script:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">tp</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TracePilot</span><span class="p">(</span><span class="dl">'</span><span class="s1">tp_live_YOUR_KEY</span><span class="dl">'</span><span class="p">);</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">checkDependencies</span><span class="p">()</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">startTrace</span><span class="p">(</span><span class="dl">'</span><span class="s1">dependency-checker</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">deps</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetchOutdatedPackages</span><span class="p">();</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">dep</span> <span class="k">of</span> <span class="nx">deps</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">result</span><span class="p">,</span> <span class="nx">spanId</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">wrapToolCall</span><span class="p">(</span> <span class="dl">'</span><span class="s1">evaluate-update</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nf">evaluatePackage</span><span class="p">(</span><span class="nx">dep</span><span class="p">.</span><span class="nx">name</span><span class="p">,</span> <span class="nx">dep</span><span class="p">.</span><span class="nx">currentVersion</span><span class="p">,</span> <span class="nx">dep</span><span class="p">.</span><span class="nx">latestVersion</span><span class="p">),</span> <span class="kc">null</span><span class="p">,</span> <span class="mi">1</span> <span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">breaking</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`⚠️ </span><span class="p">${</span><span class="nx">dep</span><span class="p">.</span><span class="nx">name</span><span class="p">}</span><span class="s2"> has breaking changes — manual review needed`</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Now every dependency check is traced. Open your <a href="https://tracepilotai.com/dashboard" rel="noopener noreferrer">TracePilot Dashboard</a> and see exactly which packages were evaluated, why decisions were made, and where failures occurred.</p> <p><strong>Why this matters:</strong> When a dependency update breaks your build at 3 AM, you don't guess. You fork the trace, change the version, and replay. No redeployment. No "works on my machine."</p> <h2> Next Steps </h2> <ol> <li> <strong>Add <code>renovate.json</code> to your repo</strong> — start with the config above</li> <li> <strong>Review your Dependency Dashboard</strong> — it appears within minutes</li> <li> <strong>Merge a few Renovate PRs</strong> — build confidence in the automation</li> <li> <strong>Install TracePilot</strong> — <code>npm install tracepilot-sdk</code> and instrument your CI pipeline</li> <li> <strong>Set up alerts</strong> — get notified when major updates arrive</li> </ol> <p>You now have a production-grade dependency management system. No more manual <code>npm outdated</code> checks. No more forgotten security patches. Your dependencies update themselves, and when something breaks, you trace it in seconds.</p> <p><strong>Your repo is now self-maintaining.</strong> Go build something that matters.</p> <p><strong>Debugging AI agents shouldn't feel like reading The Matrix.</strong> <br> Join other engineers who are building reliable autonomous workflows in our community: <a href="https://discord.gg/KzXRAXFM8" rel="noopener noreferrer">TracePilot Discord</a></p> ai debugging python Tracepilot Mon, 01 Jun 2026 18:40:07 +0000 https://dev.to/tracepilot_2841f1db6718a1/skills-are-a-mess-lets-fix-that-5glh https://dev.to/tracepilot_2841f1db6718a1/skills-are-a-mess-lets-fix-that-5glh <h1> Skills Are a Mess. Let's Fix That. </h1> <p>Here's the problem: you write a skill for zeroclaw. It works locally. You push it. Someone else tries to install it. Nothing works. The error says "missing dependency" but doesn't say which one. Or it installs but the audit fails silently. Or the test harness just... doesn't run.</p> <p>Sound familiar?</p> <p>I've been watching the zeroclaw skills ecosystem grow. More people are authoring skills. More people are hitting the same walls. The v0.7.6 release is about tearing those walls down.</p> <h2> What Actually Breaks </h2> <p>Let's get specific. Three failure modes I see every week:</p> <p><strong>1. Install hell</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zeroclaw skills <span class="nb">install </span>my-skill <span class="c"># → Error: Failed to resolve dependency graph</span> <span class="c"># → (no other output)</span> </code></pre> </div> <p>You're left guessing. Is it a peer dependency conflict? A missing Python version? A circular reference in the skill manifest? The loader gives you nothing.</p> <p><strong>2. Audit blindness</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zeroclaw skills audit ./my-skill <span class="c"># → Audit complete. 0 issues found.</span> <span class="c"># → (skill crashes immediately on first use)</span> </code></pre> </div> <p>The audit passed. But it didn't check for the actual runtime errors — missing environment variables, incompatible tool signatures, malformed output schemas. It checked the manifest format. That's it.</p> <p><strong>3. Test harness that doesn't test</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zeroclaw skills <span class="nb">test</span> ./my-skill <span class="c"># → Running 3 test cases...</span> <span class="c"># → All passed.</span> <span class="c"># → (skill still hallucinates in production)</span> </code></pre> </div> <p>The test harness runs your skill against mock data. But the mock data doesn't match real tool outputs. Your skill passes locally, fails in the wild.</p> <h2> Why This Happens </h2> <p>The current architecture treats skills as static packages. You define metadata in a <code>skill.json</code>, point to some functions, and assume it works. But skills are dynamic. They call tools. They depend on runtime state. They interact with the sandbox.</p> <p>The loader doesn't validate the runtime contract. The audit doesn't simulate execution. The test harness doesn't fuzz inputs.</p> <p>So you get false positives everywhere. "Works on my machine" becomes "works in my specific environment with my specific tools and my specific data."</p> <h2> The v0.7.6 Fix </h2> <p>We're shipping three improvements. They're not revolutionary. They're just the things that should have been there from the start.</p> <h3> 1. Install with dependency resolution </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zeroclaw skills <span class="nb">install</span> ./my-skill <span class="nt">--resolve</span> <span class="nt">--verbose</span> <span class="c"># → Resolving dependencies...</span> <span class="c"># → Found python&gt;=3.10 (system: 3.11.2 ✓)</span> <span class="c"># → Found zeroclaw-tools&gt;=2.1.0 (installed: 2.1.3 ✓)</span> <span class="c"># → Missing: requests&gt;=2.28.0</span> <span class="c"># → Installing requests 2.31.0...</span> <span class="c"># → Skill installed. 3 dependencies resolved.</span> </code></pre> </div> <p>The loader walks the dependency tree before installing. If something's missing, it tells you <em>what</em> and <em>why</em>. No more silent failures.</p> <h3> 2. Audit with runtime validation </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zeroclaw skills audit ./my-skill <span class="nt">--deep</span> <span class="c"># → Manifest: valid</span> <span class="c"># → Tool signatures: 3/3 match runtime schema</span> <span class="c"># → Environment: 2 required vars missing (API_KEY, DB_URL)</span> <span class="c"># → Output schemas: 1 mismatch (search_results expects 'items' array, gets 'results' object)</span> <span class="c"># → ⚠ 3 issues found. Use --fix to auto-correct output schemas.</span> </code></pre> </div> <p>The audit now actually runs your skill's tools against their declared schemas. It catches the mismatch between what you wrote and what the runtime expects. No more "passed audit, failed production."</p> <h3> 3. Test harness with fuzzing </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zeroclaw skills <span class="nb">test</span> ./my-skill <span class="nt">--fuzz</span> <span class="nt">--iterations</span> 50 <span class="c"># → Running test cases...</span> <span class="c"># → case "search with valid query": passed</span> <span class="c"># → case "search with empty string": passed</span> <span class="c"># → case "search with special characters": FAILED</span> <span class="c"># → → Tool returned 500 on input: "'; DROP TABLE users;--"</span> <span class="c"># → case "search with null input": FAILED</span> <span class="c"># → → Skill crashed with TypeError: Cannot read property 'length' of null</span> <span class="c"># → 2/4 passed. 2 failures identified.</span> </code></pre> </div> <p>The test harness generates edge cases. Empty strings. Null inputs. SQL injection attempts. Unicode overflow. If your skill breaks on bad data, you'll know <em>before</em> someone sends it in production.</p> <h2> How the Sandbox Changes </h2> <p>The sandbox gets smarter too. Previously, it isolated execution but didn't validate skill boundaries. Now it tracks:</p> <ul> <li> <strong>Tool call permissions</strong>: Does this skill have access to the tools it's calling?</li> <li> <strong>Resource limits</strong>: Is the skill respecting its memory/cpu budget?</li> <li> <strong>Output validation</strong>: Does the skill's output match its declared schema? </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zeroclaw sandbox run ./my-skill <span class="nt">--query</span> <span class="s2">"find docs"</span> <span class="c"># → Sandbox: isolated ✓</span> <span class="c"># → Tools allowed: 5/5 (web_search, read_file, write_file, execute_code, send_email)</span> <span class="c"># → Resource limit: 512MB / 2 vCPU</span> <span class="c"># → Running skill...</span> <span class="c"># → Output: { results: [...] }</span> <span class="c"># → Schema validation: passed (matches search_output schema)</span> <span class="c"># → Execution time: 1.2s (within 5s limit)</span> </code></pre> </div> <p>If a skill tries to call a tool it doesn't have permission for, the sandbox blocks it and logs the violation. No more "my skill mysteriously stopped working" because someone changed permissions.</p> <h2> What This Means for Skill Authors </h2> <p>You write a skill once. You test it with fuzzing. You audit it with runtime validation. You install it with dependency resolution. You ship it knowing it won't break on someone else's machine.</p> <p>The v0.7.6 release isn't about new features. It's about making the existing ones not suck. The CLI should tell you what's wrong. The loader should catch issues before they reach production. The test harness should actually test.</p> <p>If you've been avoiding <code>zeroclaw skills</code> because it felt fragile — try again. The friction is getting removed. And if something still breaks, file an issue. We're listening.</p> <p><strong>Debugging AI agents shouldn't feel like reading The Matrix.</strong> <br> Join other engineers who are building reliable autonomous workflows in our community: <a href="https://discord.gg/KzXRAXFM8" rel="noopener noreferrer">TracePilot Discord</a></p> ai debugging python Tracepilot Mon, 01 Jun 2026 18:35:21 +0000 https://dev.to/tracepilot_2841f1db6718a1/the-rl-flywheel-that-actually-works-1gi1 https://dev.to/tracepilot_2841f1db6718a1/the-rl-flywheel-that-actually-works-1gi1 <h1> The RL Flywheel That Actually Works </h1> <p>Here's what's breaking: You've got a reinforcement learning setup that trains, validates, deploys, and then... nothing. No feedback loop. No automatic retraining. No safety gates. Just a model that gets stale the moment it hits production.</p> <p>Sound familiar?</p> <p>I've been building RL systems for a decade. The pattern is always the same: great training pipeline, terrible deployment loop. You spend weeks getting 95% validation accuracy, push to prod, and three days later the distribution shifts. Your agent starts making garbage decisions. You scramble to retrain. Rinse. Repeat.</p> <p>This sucks. I know.</p> <h2> The Real Problem </h2> <p>The issue isn't training. It's the <strong>feedback loop</strong>. Most RL systems have:</p> <ol> <li>Training pipeline — works fine</li> <li>Validation — mostly works</li> <li>Deployment — fire and forget</li> <li>Observation — maybe some metrics</li> <li>Strategy update — manual, if ever</li> </ol> <p>Step 4 and 5 are broken. You're flying blind after deployment.</p> <h2> The Flywheel Architecture </h2> <p>Here's what a real RL flywheel looks like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Train → Simulate → Validate → Gate → Deploy → Observe → Analyze → Train </code></pre> </div> <p>Every arrow is automated. Every gate is a hard check. Every observation feeds back into training strategy.</p> <p>Let me show you the actual implementation.</p> <h3> The Training Loop </h3> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">class</span> <span class="nc">RLFlywheel</span><span class="p">:</span> <span class="k">def</span> <span class="nf">__init__</span><span class="p">(</span><span class="n">self</span><span class="p">):</span> <span class="n">self</span><span class="p">.</span><span class="n">model</span> <span class="o">=</span> <span class="nc">Model</span><span class="p">()</span> <span class="n">self</span><span class="p">.</span><span class="nb">buffer</span> <span class="o">=</span> <span class="nc">ReplayBuffer</span><span class="p">(</span><span class="mi">1_000_000</span><span class="p">)</span> <span class="n">self</span><span class="p">.</span><span class="n">safety_gate</span> <span class="o">=</span> <span class="nc">SafetyGate</span><span class="p">()</span> <span class="n">self</span><span class="p">.</span><span class="n">observer</span> <span class="o">=</span> <span class="nc">OnlineObserver</span><span class="p">()</span> <span class="k">def</span> <span class="nf">train_epoch</span><span class="p">(</span><span class="n">self</span><span class="p">,</span> <span class="n">episodes</span><span class="o">=</span><span class="mi">1000</span><span class="p">):</span> <span class="k">for</span> <span class="n">ep</span> <span class="ow">in</span> <span class="nf">range</span><span class="p">(</span><span class="n">episodes</span><span class="p">):</span> <span class="n">states</span><span class="p">,</span> <span class="n">actions</span><span class="p">,</span> <span class="n">rewards</span> <span class="o">=</span> <span class="n">self</span><span class="p">.</span><span class="nf">simulate_episode</span><span class="p">()</span> <span class="n">self</span><span class="p">.</span><span class="nb">buffer</span><span class="p">.</span><span class="nf">store</span><span class="p">(</span><span class="n">states</span><span class="p">,</span> <span class="n">actions</span><span class="p">,</span> <span class="n">rewards</span><span class="p">)</span> <span class="n">batch</span> <span class="o">=</span> <span class="n">self</span><span class="p">.</span><span class="nb">buffer</span><span class="p">.</span><span class="nf">sample</span><span class="p">(</span><span class="mi">256</span><span class="p">)</span> <span class="n">loss</span> <span class="o">=</span> <span class="n">self</span><span class="p">.</span><span class="n">model</span><span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="n">batch</span><span class="p">)</span> <span class="c1"># Validate against known failure modes </span> <span class="n">validation_score</span> <span class="o">=</span> <span class="n">self</span><span class="p">.</span><span class="n">safety_gate</span><span class="p">.</span><span class="nf">validate</span><span class="p">(</span><span class="n">self</span><span class="p">.</span><span class="n">model</span><span class="p">)</span> <span class="k">return</span> <span class="n">loss</span><span class="p">,</span> <span class="n">validation_score</span> </code></pre> </div> <p>Notice the validation happens <em>during</em> training, not after. That's the first gate.</p> <h3> The Safety Gate </h3> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">class</span> <span class="nc">SafetyGate</span><span class="p">:</span> <span class="k">def</span> <span class="nf">__init__</span><span class="p">(</span><span class="n">self</span><span class="p">,</span> <span class="n">thresholds</span><span class="p">):</span> <span class="n">self</span><span class="p">.</span><span class="n">thresholds</span> <span class="o">=</span> <span class="n">thresholds</span> <span class="n">self</span><span class="p">.</span><span class="n">history</span> <span class="o">=</span> <span class="p">[]</span> <span class="k">def</span> <span class="nf">validate</span><span class="p">(</span><span class="n">self</span><span class="p">,</span> <span class="n">model</span><span class="p">):</span> <span class="c1"># Run 100 sims, check for failure patterns </span> <span class="n">failures</span> <span class="o">=</span> <span class="mi">0</span> <span class="k">for</span> <span class="n">_</span> <span class="ow">in</span> <span class="nf">range</span><span class="p">(</span><span class="mi">100</span><span class="p">):</span> <span class="n">sim</span> <span class="o">=</span> <span class="nc">Simulator</span><span class="p">()</span> <span class="n">trajectory</span> <span class="o">=</span> <span class="n">sim</span><span class="p">.</span><span class="nf">run</span><span class="p">(</span><span class="n">model</span><span class="p">)</span> <span class="k">if</span> <span class="n">self</span><span class="p">.</span><span class="nf">detect_failure</span><span class="p">(</span><span class="n">trajectory</span><span class="p">):</span> <span class="n">failures</span> <span class="o">+=</span> <span class="mi">1</span> <span class="n">failure_rate</span> <span class="o">=</span> <span class="n">failures</span> <span class="o">/</span> <span class="mi">100</span> <span class="c1"># Deploy only if failure rate is below threshold </span> <span class="k">if</span> <span class="n">failure_rate</span> <span class="o">&gt;</span> <span class="n">self</span><span class="p">.</span><span class="n">thresholds</span><span class="p">.</span><span class="n">max_failure_rate</span><span class="p">:</span> <span class="k">return</span> <span class="bp">False</span><span class="p">,</span> <span class="n">failure_rate</span> <span class="c1"># Check for regression against previous model </span> <span class="k">if</span> <span class="n">self</span><span class="p">.</span><span class="nf">is_regression</span><span class="p">(</span><span class="n">model</span><span class="p">):</span> <span class="k">return</span> <span class="bp">False</span><span class="p">,</span> <span class="n">failure_rate</span> <span class="k">return</span> <span class="bp">True</span><span class="p">,</span> <span class="n">failure_rate</span> </code></pre> </div> <p>This is where most systems fail. They validate once, get a good number, and deploy forever. The safety gate needs to check:</p> <ul> <li>Absolute failure rate</li> <li>Regression against previous model</li> <li>Coverage of edge cases</li> <li>Computational cost</li> </ul> <h3> The Observer </h3> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">class</span> <span class="nc">OnlineObserver</span><span class="p">:</span> <span class="k">def</span> <span class="nf">__init__</span><span class="p">(</span><span class="n">self</span><span class="p">,</span> <span class="n">feedback_queue</span><span class="p">):</span> <span class="n">self</span><span class="p">.</span><span class="n">queue</span> <span class="o">=</span> <span class="n">feedback_queue</span> <span class="n">self</span><span class="p">.</span><span class="n">metrics</span> <span class="o">=</span> <span class="nf">defaultdict</span><span class="p">(</span><span class="nb">list</span><span class="p">)</span> <span class="k">def</span> <span class="nf">observe</span><span class="p">(</span><span class="n">self</span><span class="p">,</span> <span class="n">model_id</span><span class="p">,</span> <span class="n">episode</span><span class="p">):</span> <span class="c1"># Real-time metrics </span> <span class="n">self</span><span class="p">.</span><span class="n">metrics</span><span class="p">[</span><span class="sh">'</span><span class="s">reward</span><span class="sh">'</span><span class="p">].</span><span class="nf">append</span><span class="p">(</span><span class="n">episode</span><span class="p">.</span><span class="n">reward</span><span class="p">)</span> <span class="n">self</span><span class="p">.</span><span class="n">metrics</span><span class="p">[</span><span class="sh">'</span><span class="s">steps</span><span class="sh">'</span><span class="p">].</span><span class="nf">append</span><span class="p">(</span><span class="n">episode</span><span class="p">.</span><span class="n">steps</span><span class="p">)</span> <span class="n">self</span><span class="p">.</span><span class="n">metrics</span><span class="p">[</span><span class="sh">'</span><span class="s">failures</span><span class="sh">'</span><span class="p">].</span><span class="nf">append</span><span class="p">(</span><span class="n">episode</span><span class="p">.</span><span class="n">failed</span><span class="p">)</span> <span class="c1"># Detect distribution shift </span> <span class="k">if</span> <span class="n">self</span><span class="p">.</span><span class="nf">detect_shift</span><span class="p">():</span> <span class="n">self</span><span class="p">.</span><span class="n">queue</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="sh">'</span><span class="s">type</span><span class="sh">'</span><span class="p">:</span> <span class="sh">'</span><span class="s">shift_detected</span><span class="sh">'</span><span class="p">,</span> <span class="sh">'</span><span class="s">model_id</span><span class="sh">'</span><span class="p">:</span> <span class="n">model_id</span><span class="p">,</span> <span class="sh">'</span><span class="s">timestamp</span><span class="sh">'</span><span class="p">:</span> <span class="n">time</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="p">})</span> <span class="c1"># Detect performance degradation </span> <span class="k">if</span> <span class="n">self</span><span class="p">.</span><span class="nf">detect_degradation</span><span class="p">():</span> <span class="n">self</span><span class="p">.</span><span class="n">queue</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="sh">'</span><span class="s">type</span><span class="sh">'</span><span class="p">:</span> <span class="sh">'</span><span class="s">degradation</span><span class="sh">'</span><span class="p">,</span> <span class="sh">'</span><span class="s">model_id</span><span class="sh">'</span><span class="p">:</span> <span class="n">model_id</span><span class="p">,</span> <span class="sh">'</span><span class="s">current_avg</span><span class="sh">'</span><span class="p">:</span> <span class="n">self</span><span class="p">.</span><span class="n">metrics</span><span class="p">[</span><span class="sh">'</span><span class="s">reward</span><span class="sh">'</span><span class="p">][</span><span class="o">-</span><span class="mi">100</span><span class="p">:].</span><span class="nf">mean</span><span class="p">(),</span> <span class="sh">'</span><span class="s">expected_avg</span><span class="sh">'</span><span class="p">:</span> <span class="n">self</span><span class="p">.</span><span class="n">expected_reward</span> <span class="p">})</span> </code></pre> </div> <p>The observer doesn't just log. It <strong>analyzes and triggers actions</strong>.</p> <h3> The Feedback Loop </h3> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">class</span> <span class="nc">FeedbackLoop</span><span class="p">:</span> <span class="k">def</span> <span class="nf">__init__</span><span class="p">(</span><span class="n">self</span><span class="p">):</span> <span class="n">self</span><span class="p">.</span><span class="n">flywheel</span> <span class="o">=</span> <span class="nc">RLFlywheel</span><span class="p">()</span> <span class="n">self</span><span class="p">.</span><span class="n">observer</span> <span class="o">=</span> <span class="nc">OnlineObserver</span><span class="p">()</span> <span class="n">self</span><span class="p">.</span><span class="n">strategy</span> <span class="o">=</span> <span class="nc">TrainingStrategy</span><span class="p">()</span> <span class="k">def</span> <span class="nf">run</span><span class="p">(</span><span class="n">self</span><span class="p">):</span> <span class="k">while</span> <span class="bp">True</span><span class="p">:</span> <span class="c1"># Train </span> <span class="n">loss</span><span class="p">,</span> <span class="n">validation</span> <span class="o">=</span> <span class="n">self</span><span class="p">.</span><span class="n">flywheel</span><span class="p">.</span><span class="nf">train_epoch</span><span class="p">()</span> <span class="c1"># Gate check </span> <span class="k">if</span> <span class="ow">not</span> <span class="n">validation</span><span class="p">:</span> <span class="n">self</span><span class="p">.</span><span class="n">strategy</span><span class="p">.</span><span class="nf">adjust</span><span class="p">(</span><span class="sh">'</span><span class="s">increase_exploration</span><span class="sh">'</span><span class="p">)</span> <span class="k">continue</span> <span class="c1"># Deploy </span> <span class="n">model_id</span> <span class="o">=</span> <span class="n">self</span><span class="p">.</span><span class="nf">deploy</span><span class="p">(</span><span class="n">self</span><span class="p">.</span><span class="n">flywheel</span><span class="p">.</span><span class="n">model</span><span class="p">)</span> <span class="c1"># Observe for N episodes </span> <span class="n">feedback</span> <span class="o">=</span> <span class="n">self</span><span class="p">.</span><span class="n">observer</span><span class="p">.</span><span class="nf">collect</span><span class="p">(</span><span class="n">model_id</span><span class="p">,</span> <span class="n">episodes</span><span class="o">=</span><span class="mi">100</span><span class="p">)</span> <span class="c1"># Analyze feedback </span> <span class="k">if</span> <span class="n">feedback</span><span class="p">[</span><span class="sh">'</span><span class="s">shift_detected</span><span class="sh">'</span><span class="p">]:</span> <span class="n">self</span><span class="p">.</span><span class="n">strategy</span><span class="p">.</span><span class="nf">adjust</span><span class="p">(</span><span class="sh">'</span><span class="s">retrain_prioritize_recent</span><span class="sh">'</span><span class="p">)</span> <span class="k">elif</span> <span class="n">feedback</span><span class="p">[</span><span class="sh">'</span><span class="s">degradation</span><span class="sh">'</span><span class="p">]:</span> <span class="n">self</span><span class="p">.</span><span class="n">strategy</span><span class="p">.</span><span class="nf">adjust</span><span class="p">(</span><span class="sh">'</span><span class="s">rollback_and_retrain</span><span class="sh">'</span><span class="p">)</span> <span class="k">else</span><span class="p">:</span> <span class="n">self</span><span class="p">.</span><span class="n">strategy</span><span class="p">.</span><span class="nf">adjust</span><span class="p">(</span><span class="sh">'</span><span class="s">continue_training</span><span class="sh">'</span><span class="p">)</span> </code></pre> </div> <h2> What Changes With TracePilot </h2> <p>Here's where TracePilot makes this trivial instead of a nightmare.</p> <p>Without TracePilot, debugging a failed deployment means:</p> <ol> <li>Check logs (if you have them)</li> <li>Reproduce locally (good luck)</li> <li>Guess what went wrong</li> <li>Patch and redeploy</li> </ol> <p>With TracePilot, one line change:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># Before </span><span class="n">result</span> <span class="o">=</span> <span class="n">model</span><span class="p">.</span><span class="nf">predict</span><span class="p">(</span><span class="n">state</span><span class="p">)</span> <span class="c1"># After — TracePilot wraps the prediction </span><span class="k">with</span> <span class="n">tp</span><span class="p">.</span><span class="nf">trace</span><span class="p">(</span><span class="sh">'</span><span class="s">rl-deployment</span><span class="sh">'</span><span class="p">)</span> <span class="k">as</span> <span class="n">span</span><span class="p">:</span> <span class="n">result</span> <span class="o">=</span> <span class="n">model</span><span class="p">.</span><span class="nf">predict</span><span class="p">(</span><span class="n">state</span><span class="p">)</span> <span class="n">span</span><span class="p">.</span><span class="nf">log_metric</span><span class="p">(</span><span class="sh">'</span><span class="s">prediction_value</span><span class="sh">'</span><span class="p">,</span> <span class="n">result</span><span class="p">)</span> <span class="n">span</span><span class="p">.</span><span class="nf">log_metric</span><span class="p">(</span><span class="sh">'</span><span class="s">state_hash</span><span class="sh">'</span><span class="p">,</span> <span class="nf">hash</span><span class="p">(</span><span class="n">state</span><span class="p">))</span> </code></pre> </div> <p>When the flywheel detects a shift, you don't guess. You open the dashboard, find the exact episode where it started diverging, fork it, and replay with different parameters. <strong>No redeployment. Seconds.</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># Fork and replay with TracePilot </span><span class="n">fork</span> <span class="o">=</span> <span class="n">tp</span><span class="p">.</span><span class="nf">fork_episode</span><span class="p">(</span><span class="sh">'</span><span class="s">episode_847</span><span class="sh">'</span><span class="p">)</span> <span class="n">fork</span><span class="p">.</span><span class="nf">edit_parameter</span><span class="p">(</span><span class="sh">'</span><span class="s">exploration_rate</span><span class="sh">'</span><span class="p">,</span> <span class="mf">0.1</span><span class="p">)</span> <span class="n">result</span> <span class="o">=</span> <span class="n">fork</span><span class="p">.</span><span class="nf">replay</span><span class="p">()</span> </code></pre> </div> <h2> The Real Flywheel </h2> <p>The flywheel isn't just about training and deploying. It's about <strong>closing the loop with evidence</strong>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Train → Sim → Validate → Gate → Deploy → Observe → Analyze → Train ↓ TracePilot captures: - Every episode trace - Every failure mode - Every distribution shift ↓ Fork. Fix. Replay. </code></pre> </div> <p>This is what "ALL IN RL" actually means. Not more training. Not better hyperparameters. A system that learns from its own failures automatically.</p> <h2> What You Do Monday </h2> <ol> <li> <strong>Add the safety gate</strong> — 50 lines of code. Saves weeks of bad deployments.</li> <li> <strong>Build the observer</strong> — detect shifts before they crash your agent.</li> <li> <strong>Close the loop</strong> — every deployment feeds back into training strategy.</li> <li> <strong>Add TracePilot</strong> — one import. Fork and replay when things break.</li> </ol> <p>The flywheel works. The question is whether you're building it or debugging it.</p> <p>I know which one I'm doing.</p> <p><strong>Debugging AI agents shouldn't feel like reading The Matrix.</strong> <br> Join other engineers who are building reliable autonomous workflows in our community: <a href="https://discord.gg/KzXRAXFM8" rel="noopener noreferrer">TracePilot Discord</a></p> ai debugging python Tracepilot Thu, 28 May 2026 15:55:37 +0000 https://dev.to/tracepilot_2841f1db6718a1/that-openai-call-from-your-browser-is-failing-heres-why-3p3c https://dev.to/tracepilot_2841f1db6718a1/that-openai-call-from-your-browser-is-failing-heres-why-3p3c <h1> That OpenAI Call From Your Browser Is Failing. Here's Why. </h1> <p>You're fetching from <code>https://api.openai.com/v1/chat/completions</code> directly in the browser.<br><br> It works in dev. Then production hits you with a CORS error. Or a 401. Or worse — a silent failure where the request goes out but never comes back.</p> <p>Sound familiar?</p> <p>Let's cut through the noise. Here's what's actually breaking.</p> <h2> The Problem </h2> <p>Browser JavaScript can't call OpenAI directly. OpenAI's API doesn't set <code>Access-Control-Allow-Origin</code> headers for browser origins. That's by design — they don't want API keys sitting in client-side code.</p> <p>But you already know that. The issue is deeper.</p> <p>When you do this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// ❌ This will fail in production</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://api.openai.com/v1/chat/completions</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Authorization</span><span class="dl">'</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">NEXT_PUBLIC_OPENAI_KEY</span><span class="p">}</span><span class="s2">`</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">model</span><span class="p">:</span> <span class="dl">'</span><span class="s1">gpt-4o-mini</span><span class="dl">'</span><span class="p">,</span> <span class="na">messages</span><span class="p">:</span> <span class="p">[...]</span> <span class="p">})</span> <span class="p">});</span> </code></pre> </div> <p>Three things happen:</p> <ol> <li> <strong>The browser sends a preflight OPTIONS request</strong> — OpenAI's server doesn't respond with the right CORS headers → blocked.</li> <li> <strong>Your API key is exposed</strong> — anyone can open DevTools and steal it.</li> <li> <strong>Rate limiting hits your client IP</strong> — every user shares the same rate limit bucket.</li> </ol> <p>The fix isn't "just use a proxy." The fix is understanding <em>why</em> your specific setup is failing.</p> <h2> Why It Breaks (The Real Details) </h2> <p>OpenAI's API response headers include:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight http"><code><span class="err">access-control-allow-origin: * </span></code></pre> </div> <p>Wait, that looks fine. So why does it fail?</p> <p>Because the <em>preflight</em> request — the OPTIONS call the browser sends first — doesn't get past OpenAI's CDN. Cloudflare blocks it. The browser never sees the <code>access-control-allow-origin</code> header on the actual response because the preflight never completed.</p> <p>Check your browser's network tab. You'll see:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight console"><code><span class="go">OPTIONS https://api.openai.com/v1/chat/completions → 403 </span></code></pre> </div> <p>That's Cloudflare. Not OpenAI. Not your code.</p> <h2> The Manual Fix </h2> <p>You need a backend endpoint. Period. Here's the minimal Express proxy:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// server.js</span> <span class="k">import</span> <span class="nx">express</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">express</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">fetch</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">node-fetch</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">express</span><span class="p">();</span> <span class="nx">app</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/chat</span><span class="dl">'</span><span class="p">,</span> <span class="nx">express</span><span class="p">.</span><span class="nf">json</span><span class="p">(),</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://api.openai.com/v1/chat/completions</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Authorization</span><span class="dl">'</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">OPENAI_API_KEY</span><span class="p">}</span><span class="s2">`</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">)</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="nx">data</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">500</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">});</span> <span class="p">}</span> <span class="p">});</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="mi">3001</span><span class="p">);</span> </code></pre> </div> <p>This works. But now you're managing a proxy server. You need to handle streaming. You need to handle errors. You need to handle rate limiting.</p> <h2> Where It Gets Annoying </h2> <p>The proxy works. But now you can't see <em>why</em> your agent is failing. The proxy logs say <code>200 OK</code>. The response is garbage. What happened inside?</p> <p>You don't know if:</p> <ul> <li>The prompt was too long and got truncated</li> <li>The model hallucinated a tool call</li> <li>Token limits were hit</li> <li>The temperature setting caused randomness</li> </ul> <p>This is where TracePilot comes in. One line change.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Before — you're blind</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="nx">model</span><span class="p">,</span> <span class="nx">messages</span> <span class="p">});</span> <span class="c1">// After — you see everything</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">result</span><span class="p">,</span> <span class="nx">spanId</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">wrapOpenAI</span><span class="p">(</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="nx">model</span><span class="p">,</span> <span class="nx">messages</span> <span class="p">}),</span> <span class="nx">messages</span> <span class="p">);</span> </code></pre> </div> <p>That's it. Now every call is traced. You open the dashboard, see the exact prompt that was sent, the exact output, the tokens used, the latency. If it fails, you fork the trace, edit the prompt, and replay.</p> <p>No more guessing. No more "works on my machine."</p> <h2> The Real Fix </h2> <p>Don't call OpenAI from the browser. Use a backend route. Instrument it with TracePilot. Now you have:</p> <ul> <li> <strong>No CORS issues</strong> — backend-to-backend calls don't need CORS</li> <li> <strong>No exposed keys</strong> — your API key stays server-side</li> <li> <strong>Full visibility</strong> — every LLM call is traced, forkable, replayable</li> </ul> <p>The proxy solves the network problem. TracePilot solves the debugging problem. Together, they solve the actual problem: your agent fails and you have no idea why.</p> <p><em>That CORS error? It's a symptom. The real bug is you can't see what your agent is doing. Fix the visibility, and the network problems become trivial.</em></p> <p><strong>Debugging AI agents shouldn't feel like reading The Matrix.</strong> <br> Join other engineers who are building reliable autonomous workflows in our community: <a href="https://discord.gg/KzXRAXFM8" rel="noopener noreferrer">TracePilot Discord</a></p> ai debugging python Tracepilot Wed, 27 May 2026 03:44:49 +0000 https://dev.to/tracepilot_2841f1db6718a1/debugging-distributed-systems-the-pain-of-deterministic-allreduce-e6b https://dev.to/tracepilot_2841f1db6718a1/debugging-distributed-systems-the-pain-of-deterministic-allreduce-e6b <h1> Debugging Distributed Systems: The Pain of Deterministic AllReduce </h1> <p>Ever been knee-deep in debugging a distributed system, only to find yourself lost in a sea of environment variables and shell scripts? Sound familiar? Let's talk about a real-world headache: ensuring deterministic behavior in distributed training environments. Specifically, making sure your AllReduce operations don't decide to go rogue.</p> <h2> The Pain </h2> <p>You're setting up an environment for distributed training on Ascend hardware. You've got a script filled with environment variables to ensure deterministic behavior. But guess what? Your AllReduce operations still produce inconsistent results. You tweak a variable, rerun the script, and hope for the best. Hours pass. Your patience wears thin. This cost me 3 hours last Tuesday.</p> <p>Here's the problem: You need deterministic behavior. But the setup is a minefield of environment variables. One wrong setting, and you're back to square one.</p> <h2> Why It Happens </h2> <p>Distributed systems are complex. They involve multiple nodes communicating over a network. AllReduce is a collective operation used to aggregate data across these nodes. For deterministic results, every node must perform operations in the same order and with the same data.</p> <p>The environment variables in your script are supposed to enforce this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">export </span><span class="nv">LCCL_DETERMINISTIC</span><span class="o">=</span>1 <span class="c"># AllReduce确定性</span> <span class="nb">export </span><span class="nv">HCCL_DETERMINISTIC</span><span class="o">=</span><span class="nb">true</span> <span class="c"># 归约通信确定性</span> </code></pre> </div> <p>These settings are meant to ensure that operations are performed in a consistent manner across all nodes. But if there's a mismatch, or if other variables aren't set correctly, you'll get non-deterministic behavior. That's where the frustration kicks in.</p> <h2> The Manual Workaround </h2> <p>Let's get our hands dirty. Here's a typical manual setup script:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">source</span> /home/l00942881/Ascend/cann/set_env.sh <span class="nb">source</span> /home/l00942881/Ascend/vendors/omni_training_custom_transformer/bin/set_env.bash <span class="nb">export </span><span class="nv">LCCL_DETERMINISTIC</span><span class="o">=</span>1 <span class="nb">export </span><span class="nv">HCCL_DETERMINISTIC</span><span class="o">=</span><span class="nb">true export </span><span class="nv">ATB_MATMUL_SHUFFLE_K_ENABLE</span><span class="o">=</span>0 </code></pre> </div> <p>You run this script, then execute your training job. If results aren't consistent, you start tweaking:</p> <ol> <li>Double-check the paths in your <code>source</code> commands.</li> <li>Ensure all nodes have the same environment setup.</li> <li>Manually verify each environment variable.</li> </ol> <p>It's a tedious process. One wrong setting, and you're back to debugging. You might even start adding <code>echo</code> statements to check variable values. It's messy and error-prone.</p> <h2> The Real Solution </h2> <p>Enter TracePilot. What if you could see exactly what your distributed system was doing? What if you could replay a failed run, tweak a setting, and rerun it without redeploying everything?</p> <p>TracePilot makes this possible. Here's how you can use it to solve the AllReduce determinism problem:</p> <h3> Step 1: Install TracePilot SDK </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>tracepilot-sdk </code></pre> </div> <h3> Step 2: Wrap Your Code </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">TracePilot</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">tracepilot-sdk</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">tp</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TracePilot</span><span class="p">(</span><span class="dl">'</span><span class="s1">tp_live_YOUR_KEY</span><span class="dl">'</span><span class="p">);</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">runTraining</span><span class="p">()</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">startTrace</span><span class="p">(</span><span class="dl">'</span><span class="s1">distributed-training</span><span class="dl">'</span><span class="p">);</span> <span class="c1">// Your training code here</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">tp</span><span class="p">.</span><span class="nf">wrapToolCall</span><span class="p">(</span> <span class="dl">'</span><span class="s1">allreduce-operation</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nf">performAllReduce</span><span class="p">(),</span> <span class="kc">null</span><span class="p">,</span> <span class="c1">// No parent span for the initial call</span> <span class="mi">1</span> <span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">result</span><span class="p">);</span> <span class="p">}</span> <span class="nf">runTraining</span><span class="p">();</span> </code></pre> </div> <h3> Step 3: Debug with TracePilot </h3> <p>Open your <a href="https://tracepilotai.com/dashboard" rel="noopener noreferrer">TracePilot Dashboard</a>. You can:</p> <ul> <li> <strong>Fork</strong> the execution at the point of failure.</li> <li> <strong>Replay</strong> the operation with different settings.</li> <li> <strong>Inspect</strong> each step to see what went wrong.</li> </ul> <p>No more guessing. No more manual tweaks. You see exactly what happened and fix it in seconds.</p> <h2> The Hook </h2> <p>Tired of playing detective with your distributed systems? TracePilot lets you debug like a pro. Want more?</p> ai debugging llm observability