SAFE AGENT CONTRACT

QuantDB Agent Access

How agents should interact with QuantDB: through approved, audited, read-only API endpoints on data.quantclaw.org, never through direct database credentials or arbitrary SQL.

Skill

Install/use quantdb-agent-access in agent workspaces for safe access rules and request format.

Swagger

Download OpenAPI YAML or use the existing QuantDB Swagger UI.

Existing APIs

Use /v2/instruments, /v2/prices, /v2/factors, /v2/signals, /v2/portfolio, and metadata endpoints first.

Forbidden

Agents connecting directly to PostgreSQL or receiving QuantDB credentials/DSNs.
Arbitrary SQL endpoints like POST /sql, POST /query, or raw exports.
Swagger examples containing real rows, PII, passwords, tokens, or connection strings.
Unbounded result sets or client/profile/user/account samples.

Required named-query request shape

{
  "request_id": "uuid-or-stable-id",
  "caller_claw_id": "quantclaw",
  "purpose": "why this data is needed",
  "expected_output_shape": "fields and row limits expected",
  "params": {}
}

Safe defaults

Read-only, bounded, parameterized API calls.
Point-in-time handling for research/backtests.
PII-gated and field-allowlisted responses.
Audit metadata logged without sensitive payloads.