Paybond integrates with LangGraph at the ToolNode boundary — Harbor verify runs before side-effecting tools execute, then auto-evidence fires after success. Model inference stays on your provider client; Paybond guards paid and side-effecting tool calls only.
TypeScript and Python parity — use the tab matching your kit below.
Install
Install
npm install @paybond/langgraph @langchain/langgraph @langchain/coreImport from @paybond/langgraph
import {
createPaybondLangGraphHooks,
paybondAwrapToolCall,
} from "@paybond/langgraph";- Equivalent subpath on the core package: `@paybond/kit/langgraph` — use `@paybond/kit` when you need multiple adapters in one app.
Recommended wiring
One-liner (sandbox): paybond.instrument({ policy, framework: "langgraph", tools, sandbox: true }) or paybond.agent({ policy, framework: "langgraph", tools }) returns awrapToolCall / createToolNode hooks. Production: omit sandbox and call instrumented.bind() per session.
TypeScript
import { Paybond } from "@paybond/kit"; const paybond = await Paybond.open({ apiKey: process.env.PAYBOND_API_KEY! }); const { awrapToolCall, createToolNode } = await paybond.instrument({ policy: "./paybond.policy.yaml", // or preset id "travel" framework: "langgraph", tools: [bookHotelTool, searchWebTool], }); const node = createToolNode!(tools, { awrapToolCall });
Python
from paybond_kit import Paybond paybond = await Paybond.open(api_key=os.environ["PAYBOND_API_KEY"]) result = await paybond.instrument( policy="./paybond.policy.yaml", framework="langgraph", tools=[book_hotel_tool, search_web_tool], ) node = result.create_tool_node(tools)
Already bound a run? Use createPaybondLangGraphHooks(run) / create_paybond_langgraph_hooks(run) — LangGraph does not wrap tools in place via wrapTools.
See Agent middleware for run binding, registry rules, and tenant isolation.
Advanced / manual wiring
When you need step-by-step control over registry and bind:
- Bind a
PaybondAgentRunwith a tool registry (sandbox bootstrap or production attach). - Register side-effecting tools on the registry so spend resolvers read tool args (for example
price_centsfromrequest.tool_call["args"]). - Wrap
ToolNodewith Paybond hooks so authorization and evidence run on every side-effecting call.
Python
from langgraph.prebuilt import ToolNode from paybond_kit.langgraph_hooks import paybond_awrap_tool_call node = ToolNode( tools, awrap_tool_call=paybond_awrap_tool_call(run), )
Legacy paybond_awrap_tool_call_capability(binding) is deprecated (emits DeprecationWarning); use paybond_awrap_tool_call(run) with a bound tool registry.
TypeScript
import { paybondAwrapToolCall, paybondToolNode } from "@paybond/kit/langgraph"; // Option A: hook only (when LangGraph JS exposes awrapToolCall on ToolNode) const node = new ToolNode(tools, { awrapToolCall: paybondAwrapToolCall(run), }); // Option B: convenience factory (works today — subclasses ToolNode) const node = paybondToolNode(tools, run);
paybondLangGraphToolSpendGuard is a deprecated alias for manual guardTool wiring; migrate to @paybond/kit/langgraph or per-tool guardTool only for single-handler escape hatches.
Approval holds vs hard denials
When Harbor returns an approval hold, surface it to operators, approve in the tenant console, then retry with the same operation, amount, metadata, and approvalToken. Hard denials must not execute the tool.
See Agent integrations — approval holds for the full retry pattern.
Policy-as-code
Load paybond.policy.yaml before bind so registry and intent alignment stay reviewable in Git:
paybond agent run bind --policy-file paybond.policy.yaml --format json
See Agent policy-as-code and Policy hot-reload for long-lived graphs that need runtime policy updates without re-binding intents.
Scaffold and smoke
paybond init agent-middleware --framework langgraph --out paybond-langgraph.ts paybond agent demo langgraph smoke \ --operation paid-tool \ --requested-spend-cents 100 \ --evidence-preset cost_and_completion \ --format json
The smoke command exercises authorize → execute → auto-evidence without a live LLM.
Example apps: examples/paybond-kit-langgraph-python, examples/paybond-kit-langgraph-typescript.
Related
- Agent-agnostic adapter — default when not using LangGraph
- Agent middleware —
PaybondAgentRun, registry, interceptor - Vercel AI adapter — TypeScript
toolApproval+ wrapped execute - Agent integrations — runtime-neutral patterns and scaffolds
- Support matrix — install surfaces and smoke commands