Add Claude AI integration with tools, agents, and REST API

[Copilot]

Adds Anthropic Claude support alongside existing OpenAI integration with a unified abstraction layer, autonomous AI agents, and production-ready REST endpoints.

Backend

AI Tools (ai_tools.py)

• AIToolsManager - unified interface for OpenAI/Claude with provider selection
• Chat completions, streaming, template-based generation
• Type-safe response handling for multi-part LangChain content

AI Agents (ai_agents.py)

• Web3AIAgent - LangChain-based agents with tool integration
• Pre-configured agents: code analysis, blockchain analyst, developer assistant
• Placeholder tools with TODO markers for Web3 integration

REST API (ai_routes.py)

POST /api/ai/chat          # Chat completions
POST /api/ai/chat/stream   # Streaming responses
POST /api/ai/generate      # Template-based generation
POST /api/ai/agent         # Run autonomous agents
GET  /api/ai/providers     # List available providers

Configuration

• AI_PROVIDER: openai | claude | both
• ANTHROPIC_API_KEY, CLAUDE_MODEL_NAME added to settings
• Runtime validation via Pydantic

Frontend

AI Client (ai-client.ts)

• TypeScript client for all AI endpoints
• Configurable default provider from environment
• Streaming support with async iterators

Configuration

• NEXT_PUBLIC_AI_PROVIDER, NEXT_PUBLIC_CLAUDE_MODEL_NAME added
• Zod schema validation

Security

• Patched LangChain template injection vulnerabilities (0.3.28 → 0.3.81)
• Patched LangChain XXE vulnerability (community 0.3.13 → 0.3.27)
• CodeQL: 0 alerts

Testing

28 tests covering AI tools, routes, config validation - all passing.

Usage Example

# Backend - chat with Claude
from app.ai_tools import ai_tools

response = await ai_tools.chat(
    messages=[{"role": "user", "content": "Explain Ethereum"}],
    provider="claude"
)

# Frontend - run blockchain analyst agent
import { aiClient } from '@/lib/ai-client';

const result = await aiClient.runAgent({
    input: "Analyze transaction 0x123...",
    agent_type: "blockchain_analyst",
    provider: "claude"
});

Original prompt

Add an AI full Stack of AI and AI tools and toolkits for Claude

---

💬 We'd love your input! Share your thoughts on Copilot coding agent in our 2 minute survey.

[Copilot]

Pull request overview

This pull request adds comprehensive Anthropic Claude integration alongside the existing OpenAI support, introducing a unified AI abstraction layer with autonomous agents, REST API endpoints, and a TypeScript frontend client. The PR successfully implements dual AI provider support with chat completions, streaming, template-based generation, and specialized AI agents for Web3 development tasks.

Changes:

• Added Claude AI provider support with unified AIToolsManager interface for OpenAI and Claude
• Implemented REST API endpoints for chat, streaming, template generation, and AI agent execution
• Created TypeScript AI client with support for all backend endpoints
• Added configuration validation for new AI provider settings on both frontend and backend

Reviewed changes

Copilot reviewed 15 out of 15 changed files in this pull request and generated 16 comments.

Show a summary per file

File	Description
backend/app/settings.py	Added Anthropic API key, Claude model name, and AI provider selection with validation
backend/app/ai_tools.py	New AIToolsManager class providing unified interface for OpenAI and Claude with chat, streaming, and template generation
backend/app/ai_routes.py	New REST API endpoints for AI operations including chat, streaming, template generation, and agent execution
backend/app/ai_agents.py	New Web3AIAgent class and AIToolkit with specialized agents for code analysis, blockchain analysis, and development assistance
backend/app/main.py	Integrated AI routes and exposed AI configuration in API info endpoint
backend/requirements.txt	Added langchain-anthropic, langchain-core, langchain-community, and anthropic SDK dependencies
backend/.env.example	Added example configuration for Anthropic API key, Claude model, and AI provider selection
frontend/lib/config.ts	Added validation for Claude model name and AI provider configuration
frontend/lib/ai-client.ts	New TypeScript client for all AI endpoints with streaming support
frontend/.env.example	Added frontend environment variables for Claude model and AI provider
backend/tests/test_config_validation.py	Added tests for Claude model name and AI provider validation
backend/tests/test_ai_tools.py	Comprehensive tests for AIToolsManager with both providers
backend/tests/test_ai_routes.py	Tests for all AI API endpoints including error cases
backend/README.md	Updated documentation with AI endpoints, usage examples, and project structure
README.md	Enhanced documentation with comprehensive AI/LLM configuration guide

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Missing validation to ensure the messages list is not empty. An empty messages array could cause unexpected behavior or errors in the AI model. Consider adding a Field validator with min_length=1 to ensure at least one message is provided.

Suggested change

	messages: list[ChatMessage] = Field(..., description="List of chat messages")
	messages: list[ChatMessage] = Field(
	..., description="List of chat messages", min_length=1
	)

[Copilot]

Missing validation to ensure the template string is not empty. An empty template could cause unexpected behavior. Consider adding a Field validator with min_length=1 to ensure a valid template is provided.

Suggested change

	template: str = Field(..., description="Prompt template with variables")
	template: str = Field(
	..., description="Prompt template with variables", min_length=1
	)

[Copilot]

The role field accepts any string value but should be validated to only allow valid message roles. Consider using a union type of string literals ('user' | 'assistant' | 'system') to enforce valid role values and improve type safety.

Suggested change

	export interface ChatMessage {
	role: string;
	export type ChatMessageRole = 'user' | 'assistant' | 'system';
	export interface ChatMessage {
	role: ChatMessageRole;

[Copilot]

The template string is passed directly from user input to ChatPromptTemplate.from_template without sanitization. While the PR mentions security patches for LangChain (0.3.81), consider adding validation to restrict template complexity or implementing a whitelist of allowed templates to prevent potential template injection attacks. At minimum, add rate limiting and consider restricting this endpoint to authenticated users only.

[Copilot]

The AgentExecutor is initialized with verbose=True which will log detailed execution information to stdout. This could expose sensitive information (API keys, user inputs, internal reasoning) in production logs. Consider making verbose configurable via settings or defaulting to False in production environments.

[Copilot]

The provider field accepts any string value but should be validated against available providers. Consider using a Literal type or adding validation to restrict values to 'openai' or 'claude' only, preventing invalid provider names from being accepted by the API.

[Copilot]

The provider field accepts any string value but should be validated against available providers. Consider using a Literal type or adding validation to restrict values to 'openai' or 'claude' only, preventing invalid provider names from being accepted by the API.

[Copilot]

The defaultProvider logic doesn't handle the 'both' configuration properly. When NEXT_PUBLIC_AI_PROVIDER is 'both', the code defaults to 'claude', but it should either select one of the available providers intelligently or throw an error requiring explicit provider selection. Consider documenting this behavior or changing the logic to be more explicit about how 'both' is handled.

Suggested change

	// Use configured AI provider or default to Claude
	const config = getConfig();
	this.defaultProvider = defaultProvider || (config.NEXT_PUBLIC_AI_PROVIDER === 'openai' ? 'openai' : 'claude');
	// Use explicitly provided provider, or derive from configuration when valid
	const config = getConfig();
	if (defaultProvider) {
	this.defaultProvider = defaultProvider;
	} else {
	const configuredProvider = config.NEXT_PUBLIC_AI_PROVIDER;
	if (configuredProvider === 'openai' || configuredProvider === 'claude') {
	this.defaultProvider = configuredProvider;
	} else {
	throw new Error(
	`Invalid NEXT_PUBLIC_AI_PROVIDER "${configuredProvider}". Expected "openai" or "claude". ` +
	'When using a different value (e.g., "both"), you must select a provider explicitly when creating AIClient.'
	);
	}
	}

[Copilot]

Missing validation to ensure the input string is not empty. An empty input could cause unexpected behavior when running the agent. Consider adding a Field validator with min_length=1 to ensure valid input is provided.

Suggested change

	input: str = Field(..., description="User input for the agent")
	input: str = Field(..., min_length=1, description="User input for the agent")

[Copilot]

All AI endpoints are publicly accessible without authentication or authorization. This exposes the OpenAI and Claude API keys to potential abuse and could result in significant costs. Consider implementing authentication (e.g., API keys, JWT tokens) and rate limiting to protect these endpoints from unauthorized access.