[Bug]: Anthropic SDK path missing large-integer precision guard (tool_use input)

[abczsl520]

Summary

The quoteUnsafeIntegerLiterals fix from #23170 only covers Ollama/llama.cpp JSON parsing paths. The Anthropic Messages API streaming path has the same precision loss bug for tool_use input arguments containing large integers (e.g., Discord snowflake IDs).

Root Cause

When streaming Anthropic responses, tool_use input is built by incrementally appending input_json_delta fragments into a buffer (jsonBuf), then parsed via the vendored partial-json-parser:

@anthropic-ai/sdk/_vendor/partial-json-parser/parser.mjs

The final line:

partialParse = (input) => JSON.parse(generate(unstrip(strip(tokenize(input)))));

The tokenize() step correctly identifies large numbers as type: "number" tokens, and generate() outputs them verbatim. But the final JSON.parse() converts them to IEEE 754 doubles, losing precision for integers > Number.MAX_SAFE_INTEGER.

Example:

• Model outputs: {"to": 1481220477346119781}
• tokenize() → {type: "number", value: "1481220477346119781"}
• generate() → {"to": 1481220477346119781} (string, precision intact)
• JSON.parse() → {to: 1481220477346119700} ← precision lost

Impact

• Discord messages fail with "Unknown Channel" (288 failures in 3 days on one channel alone)
• Any tool_call argument with a large integer is silently corrupted
• Models that output IDs as bare numbers (even Claude does this occasionally) are affected
• The existing quoteUnsafeIntegerLiterals in OpenClaw's own JSON parsing paths does NOT help here because the Anthropic SDK parses tool input internally before OpenClaw sees it

Suggested Fix

Apply the same quoteUnsafeIntegerLiterals treatment to the Anthropic SDK's tool_use input parsing path. Options:

1. Monkey-patch the vendored partial-json-parser to quote numbers > MAX_SAFE_INTEGER in generate() before JSON.parse()
2. Post-process tool_use content blocks after MessageStream emits them — walk the parsed input object looking for rounded numbers and cross-reference with the raw jsonBuf string
3. Intercept at the contentBlock event — before the parsed input is used, re-parse the raw JSON buffer using parseJsonPreservingUnsafeIntegers

Option 3 seems cleanest since jsonBuf (stored as JSON_BUF_PROPERTY) still contains the original string with full precision.

Version

• OpenClaw: 2026.3.13 (61d171a)
• @anthropic-ai/sdk: (bundled version)
• Node: v25.6.1
• Platform: macOS Darwin 25.2.0 (arm64)

Related

• Tool call JSON parser loses precision on large integer arguments (Discord snowflake IDs) #23170 — Fixed Ollama path (same bug, different code path)
• [Bug]: Discord Application ID Precision Loss #29608 — Discord Application ID precision loss (config parsing path)

[openclaw-barnacle]

This issue has been automatically marked as stale due to inactivity.
Please add updates or it will be closed.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Workflow note: Future ClawSweeper reviews update this same comment in place.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

Summary
Keep open: current main still routes Anthropic streamed tool-use JSON through parseStreamingJson, which uses JSON.parse for complete JSON and can round unsafe integer IDs. The linked fix is open and draft, so this issue should close only after #83063 or an equivalent fix merges.

Reproducibility: yes. Current main routes Anthropic streamed tool-use argument buffers through parseStreamingJson, and the pinned dependency uses JSON.parse for complete JSON, which does not preserve unsafe integer literals.

Next step
An open draft PR already targets this issue with closing syntax, so ClawSweeper should not queue a duplicate fix PR.

Review details

Best possible solution:

Land #83063 or an equivalent Anthropic parser guard with regression coverage, then close this issue as implemented.

Do we have a high-confidence way to reproduce the issue?

Yes. Current main routes Anthropic streamed tool-use argument buffers through parseStreamingJson, and the pinned dependency uses JSON.parse for complete JSON, which does not preserve unsafe integer literals.

Is this the best way to solve the issue?

Yes. The narrow maintainable fix is a core unsafe-integer-preserving JSON helper applied at the Anthropic transport assignment points with regression coverage; monkey-patching the dependency would be less maintainable.

Label changes:

• remove clawsweeper:no-new-fix-pr: Current issue advisory state no longer selects this label.
• remove clawsweeper:linked-pr-open: Current issue advisory state no longer selects this label.

Label justifications:

• P1: The bug can silently corrupt channel IDs in Anthropic tool arguments and break real message delivery workflows.
• impact:message-loss: Rounded Discord snowflake IDs can route tool calls to nonexistent targets, causing outbound channel messages to fail.

What I checked:

• Current main Anthropic parse path: Current main imports parseStreamingJson and assigns block.arguments = parseStreamingJson(block.partialJson) for both Anthropic input_json_delta updates and final content_block_stop handling. (src/agents/anthropic-transport-stream.ts:1271, 8284c035a096)
• Pinned parser dependency: OpenClaw pins @earendil-works/pi-ai to 0.75.3, and the lockfile resolves that package with partial-json in its dependency set. (package.json:1773, 8284c035a096)
• Dependency parser behavior: The @earendil-works/pi-ai 0.75.3 package source shows parseStreamingJson first calls parseJsonWithRepair, whose first successful path is JSON.parse(json) for complete JSON before the partial parser fallback. (@earendil-works/pi-ai@0.75.3 package/dist/utils/json-parse.js:71)
• Existing unsafe-integer helper is plugin-local: The unsafe-integer-preserving helper exists in the Ollama plugin, while searches found no core Anthropic use of parseJsonPreservingUnsafeIntegers or quoteUnsafeIntegerLiterals. (extensions/ollama/src/ollama-json.ts:73, 8284c035a096)
• Open linked fix PR: Live GitHub data shows fix(anthropic): preserve unsafe integer tool inputs #83063 is open, draft, unmerged, and lists this issue in closingIssuesReferences; it targets the Anthropic parser path and adds regression coverage. (53b2ff132063)
• Canonical search: Searches for the Anthropic unsafe-integer terms found this issue and the linked open fix PR as the active Anthropic-specific items; older related results cover Ollama or Discord configuration paths.

Likely related people:

• steipete: Recent GitHub history shows multiple Anthropic transport fixes in this file and the merged Ollama unsafe-integer helper precedent in the related plugin path. (role: recent adjacent contributor; confidence: high; commits: 102e4f2c9da2, 993fee406601, 87abcfd6a6b8; files: src/agents/anthropic-transport-stream.ts, src/agents/anthropic-transport-stream.test.ts, extensions/ollama/src/ollama-json.ts)
• vincentkoc: Recent history includes Anthropic reasoning replay coverage in the same transport and test surface. (role: recent area contributor; confidence: high; commits: 54c9820ed9c2; files: src/agents/anthropic-transport-stream.ts, src/agents/anthropic-transport-stream.test.ts)
• InTheCloudDan: Recent merged history includes Anthropic thinking stream handling in the same transport area, making this a plausible review route for stream behavior. (role: adjacent stream contributor; confidence: medium; commits: 8f173563926b; files: src/agents/anthropic-transport-stream.ts, src/agents/anthropic-transport-stream.test.ts)

Remaining risk / open question:

• No live Anthropic plus Discord run was executed in this read-only review; the reproduction is source-level plus dependency-source evidence.
• The linked fix PR is still draft and unmerged, so current main remains affected until that or an equivalent fix lands.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 8284c035a096.