Source-backed facts for citing this resource, derived directly from the registry — also available as plain text for AI assistants.
- Source URLs
- https://openai.github.io/openai-agents-python/, https://github.com/openai/openai-agents-python, https://developers.openai.com/api/docs/guides/agents
- Brand
- OpenAI
- Brand domain
- openai.com
- Brand asset source
- brandfetch
- Safety notes
- Agents SDK applications can call tools, MCP servers, sandboxes, hosted tools, realtime connections, or custom functions that read, write, execute, or spend money. Treat tool permissions and side effects as the real risk boundary., Handoffs can transfer conversation history and context to another agent. Use input filters and explicit ownership rules when a downstream specialist should not see the full prior transcript., Guardrails are stage-specific. Input guardrails, output guardrails, and tool guardrails should be reviewed separately so a safety check is not assumed to cover the wrong agent, tool call, or final output., Sessions persist conversation history across runs. Review tenant isolation, storage backend, retention, encryption, and whether client-side sessions should be combined with any server-managed continuation mechanism., Long-running workers should flush traces when immediate export matters, and production agents should have cost limits, rate-limit handling, timeouts, canary plans, and rollback criteria.
- Privacy notes
- Prompts, instructions, chat history, tool arguments, tool results, handoff payloads, session history, traces, spans, and sandbox files can contain sensitive user data, credentials, internal code, operational metadata, or regulated records., Agents SDK tracing is enabled by default in the Python docs, and generation and function spans can include model inputs, model outputs, tool inputs, and tool outputs unless sensitive-data capture is disabled., Session backends such as SQLite, Redis, SQLAlchemy, Dapr, MongoDB, or encrypted session stores have different retention, access-control, backup, and incident-response implications., OpenAI organization policies, provider choices, trace processors, external observability sinks, MCP servers, and sandbox clients can move data outside the original application boundary.
- Author
- oktofeesh1
- Submitted by
- oktofeesh1
- Claim status
- unclaimed
- Last verified
- 2026-06-04