From d132536284f9dfe42c7b9bc6e9cd8237f069c4f0 Mon Sep 17 00:00:00 2001
From: rarebuffalo <info.krishnasingh.codes@gmail.com>
Date: Mon, 15 Jun 2026 02:54:16 +0530
Subject: [PATCH] spoof User-Agent for Agent Router calls to bypass
 unauthorized client detection

---
 app/services/ai.py            |  4 ++++
 cli/securelens/ai/__init__.py |  4 ++++
 tests/test_cli_api_base.py    | 18 ++++++++++++++++++
 3 files changed, 26 insertions(+)

diff --git a/app/services/ai.py b/app/services/ai.py
index 3167677..32eeabc 100644
--- a/app/services/ai.py
+++ b/app/services/ai.py
@@ -76,6 +76,10 @@ async def call_ai(
 
     if settings.ai_api_base:
         kwargs["api_base"] = settings.ai_api_base
+        if "agentrouter.org" in settings.ai_api_base.lower():
+            kwargs["extra_headers"] = {
+                "User-Agent": "claude-code/0.2.9",
+            }
 
     # JSON mode: supported natively by OpenAI and LiteLLM proxied Gemini.
     # For providers that don't support it, LiteLLM silently ignores the flag.
diff --git a/cli/securelens/ai/__init__.py b/cli/securelens/ai/__init__.py
index 33244e0..4d7b724 100644
--- a/cli/securelens/ai/__init__.py
+++ b/cli/securelens/ai/__init__.py
@@ -53,6 +53,10 @@ async def call_ai(
 
     if api_base:
         kwargs["api_base"] = api_base
+        if "agentrouter.org" in api_base.lower():
+            kwargs["extra_headers"] = {
+                "User-Agent": "claude-code/0.2.9",
+            }
 
     if json_mode:
         kwargs["response_format"] = {"type": "json_object"}
diff --git a/tests/test_cli_api_base.py b/tests/test_cli_api_base.py
index 1a871a2..cd66c67 100644
--- a/tests/test_cli_api_base.py
+++ b/tests/test_cli_api_base.py
@@ -94,3 +94,21 @@ async def test_analyze_file_passes_api_base():
             mock_call_ai_json.assert_called_once()
             called_kwargs = mock_call_ai_json.call_args[1]
             assert called_kwargs["api_base"] == "https://agentrouter.org/v1"
+
+@pytest.mark.asyncio
+async def test_call_ai_injects_agentrouter_headers():
+    with patch("litellm.acompletion", new_callable=AsyncMock) as mock_acompletion:
+        mock_acompletion.return_value.choices = [
+            AsyncMock(message=AsyncMock(content="Mock response"))
+        ]
+        
+        await call_ai(
+            prompt="Hello",
+            api_key="mock_key",
+            model="openai/deepseek-chat",
+            api_base="https://agentrouter.org/v1"
+        )
+        
+        mock_acompletion.assert_called_once()
+        called_kwargs = mock_acompletion.call_args[1]
+        assert called_kwargs["extra_headers"] == {"User-Agent": "claude-code/0.2.9"}