SDK Reference

The OpenBox SDK integrates with Temporal workflows. It handles event capture, telemetry collection, and trust evaluation with a single function call.

What the SDK Does

The SDK's primary job is to wrap your Temporal worker and send workflow/activity events to the OpenBox platform. All trust logic, policies, and UI management happens on the platform - not in the SDK.

Philosophy

The SDK is intentionally minimal:

One function call to wrap your worker (create_openbox_worker)
Zero code changes to your workflows and activities
Automatic telemetry - captures HTTP, database, and file I/O operations

Supported Engines

Engine	Language	Status
Temporal	Python	✅ Supported

Installation and Setup

See:

Quick Start - Wrap an existing Temporal worker
Temporal (Python) - End-to-end setup from scratch
Configuration - All SDK options for create_openbox_worker

What the SDK Captures

The SDK automatically captures and sends to OpenBox:

Workflow Events

Workflow started/completed/failed
Signal received
Query executed

Activity Events

Activity started (with input)
Activity completed (with output and duration)
Activity failed (with error)

HTTP Telemetry

Request/response bodies (for LLM calls, external requests)
Headers and status codes
Request duration and timing

Database Operations (Optional)

SQL queries (PostgreSQL, MySQL)
NoSQL operations (MongoDB, Redis)

File I/O (Optional)

File read/write operations
File paths and sizes

All captured data is evaluated against your trust policies on the OpenBox platform.

How It Works

┌─────────────────────────────────────────────────────────────┐
│                     Your Temporal Worker                     │
│                                                              │
│  ┌────────────────────┐      ┌──────────────────────────┐  │
│  │   Your Workflow    │      │    Your Activity         │  │
│  │   (unchanged)      │      │    (unchanged)           │  │
│  └────────────────────┘      └──────────────────────────┘  │
│           │                              │                  │
│           ▼                              ▼                  │
│  ┌────────────────────────────────────────────────────┐    │
│  │         OpenBox SDK (Interceptors)                 │    │
│  │  - Captures events                                 │    │
│  │  - Collects HTTP/DB/File telemetry                │    │
│  │  - Sends events to OpenBox                        │    │
│  └────────────────────────────────────────────────────┘    │
└─────────────────────────────────────────────────────────────┘
                           │
                           ▼
              ┌────────────────────────────┐
              │        OpenBox             │
              │       Trust Engine        │
              │                            │
              │   Returns:                 │
              │   - continue/stop          │
              │   - guardrails_result      │
              └────────────────────────────┘

Configuration

See Configuration for all options including:

Environment variables
Governance timeout and fail policies
Event filtering (skip workflows/activities)
Database and file I/O instrumentation

Error Handling

See Error Handling for how to handle:

GovernanceStop - Policy blocked the operation
ApprovalPending - Waiting for human approval
GuardrailsValidationFailed - Input/output validation failed

Next Steps

Quick Start Guide - Wrap an existing Temporal agent
Configuration - Configure timeouts, fail policies, and exclusions
Error Handling - Handle trust decisions in your code

Philosophy​

Supported Engines​

Installation and Setup​

What the SDK Captures​

Workflow Events​

Activity Events​

HTTP Telemetry​

Database Operations (Optional)​

File I/O (Optional)​

How It Works​

Configuration​

Error Handling​

Next Steps​