agent-fetch 0.1.10

A sandboxed HTTP client for AI agents with SSRF protection, domain policies, rate limiting, and resource controls
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

use std::sync::Mutex;
use std::time::Instant;

use tokio::sync::Semaphore;

use crate::error::FetchError;

/// Simple sliding-window rate limiter with a concurrency semaphore.
pub struct RateLimiter {
    global_max_per_minute: u32,
    state: Mutex<Vec<Instant>>,
    concurrency: Semaphore,
}

impl RateLimiter {
    pub fn new(max_per_minute: u32, max_concurrent: usize) -> Self {
        Self {
            global_max_per_minute: max_per_minute,
            state: Mutex::new(Vec::new()),
            concurrency: Semaphore::new(max_concurrent),
        }
    }

    /// Check whether a request to `domain` is allowed.
    /// Returns a permit that must be held for the duration of the request.
    pub async fn acquire(
        &self,
        _domain: &str,
    ) -> Result<tokio::sync::SemaphorePermit<'_>, FetchError> {
        let permit = self
            .concurrency
            .try_acquire()
            .map_err(|_| FetchError::RateLimitExceeded)?;

        {
            let mut timestamps = self.state.lock().unwrap();
            let now = Instant::now();
            let one_minute_ago = now - std::time::Duration::from_secs(60);

            timestamps.retain(|t| *t > one_minute_ago);

            if timestamps.len() as u32 >= self.global_max_per_minute {
                drop(permit);
                return Err(FetchError::RateLimitExceeded);
            }

            timestamps.push(now);
        }

        Ok(permit)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[tokio::test]
    async fn allows_within_limit() {
        let rl = RateLimiter::new(10, 5);
        for _ in 0..10 {
            assert!(rl.acquire("example.com").await.is_ok());
        }
    }

    #[tokio::test]
    async fn rejects_over_limit() {
        let rl = RateLimiter::new(3, 100);
        for _ in 0..3 {
            let _permit = rl.acquire("example.com").await.unwrap();
            // permit is dropped immediately, freeing concurrency slot
        }
        assert!(rl.acquire("example.com").await.is_err());
    }

    #[tokio::test]
    async fn rejects_over_concurrency() {
        let rl = RateLimiter::new(100, 2);
        let _p1 = rl.acquire("a.com").await.unwrap();
        let _p2 = rl.acquire("b.com").await.unwrap();
        // Third should fail — concurrency limit reached
        assert!(rl.acquire("c.com").await.is_err());
    }
}