SkillRepo
Sign InSign Up
Catalog
github/arize-ai-provider-integration

github

arize-ai-provider-integration

Creates, reads, updates, and deletes Arize AI integrations that store LLM provider credentials used by evaluators and other Arize features. Supports any LLM provider (e.g. OpenAI, Anthropic, Azure OpenAI, AWS Bedrock, Vertex AI, Gemini, NVIDIA NIM). Use when the user mentions AI integration, LLM provider credentials, create integration, list integrations, update credentials, delete integration, or connecting an LLM provider to Arize.

globalRequires the ax CLI and a configured Arize profile.
author:arize
version:1.0
New~2.6k
v1.0Saved Jun 26, 2026

Arize AI Integration Skill

SPACE — Most --space flags and the ARIZE_SPACE env var accept a space name (e.g., my-workspace) or a base64 space ID (e.g., U3BhY2U6...). Find yours with ax spaces list. Note: ai-integrations create does not accept --space — AI integrations are account-scoped. Use --space only with list, get, update, and delete.

Concepts

  • AI Integration = stored LLM provider credentials registered in Arize; used by evaluators to call a judge model and by other Arize features that need to invoke an LLM on your behalf
  • Provider = the LLM service backing the integration (e.g., openAI, anthropic, awsBedrock)
  • Integration ID = a base64-encoded global identifier for an integration (e.g., TGxtSW50ZWdyYXRpb246MTI6YUJjRA==); required for evaluator creation and other downstream operations
  • Scoping = visibility rules controlling which spaces or users can use an integration
  • Auth type = how Arize authenticates with the provider: default (provider API key), proxy_with_headers (proxy via custom headers), or bearer_token (bearer token auth)

Prerequisites

Proceed directly with the task — run the ax command you need. Do NOT check versions, env vars, or profiles upfront.

If an ax command fails, troubleshoot based on the error:

  • command not found or version error → see references/ax-setup.md
  • 401 Unauthorized / missing API key → run ax profiles show to inspect the current profile. If the profile is missing or the API key is wrong, follow references/ax-profiles.md to create/update it. If the user doesn't have their key, direct them to https://app.arize.com/admin > API Keys
  • Space unknown → run ax spaces list to pick by name, or ask the user
  • LLM provider call fails (missing OPENAI_API_KEY / ANTHROPIC_API_KEY) → run ax ai-integrations list --space SPACE to check for platform-managed credentials. If none exist, ask the user to provide the key or create an integration via the arize-ai-provider-integration skill
  • Security: Never read .env files or search the filesystem for credentials. Use ax profiles for Arize credentials and ax ai-integrations for LLM provider keys. If credentials are not available through these channels, ask the user.

List AI Integrations

List all integrations accessible in a space:

ax ai-integrations list --space SPACE

Filter by name (case-insensitive substring match):

ax ai-integrations list --space SPACE --name "openai"

Paginate large result sets:

# Get first page
ax ai-integrations list --space SPACE --limit 20 -o json

# Get next page using cursor from previous response
ax ai-integrations list --space SPACE --limit 20 --cursor CURSOR_TOKEN -o json

Key flags:

Flag Description
--space Space name or ID to filter integrations
--name Case-insensitive substring filter on integration name
--limit Max results (1–100, default 15)
--cursor Pagination token from a previous response
-o, --output Output format: table (default) or json

Response fields:

Field Description
id Base64 integration ID — copy this for downstream commands
name Human-readable name
provider LLM provider enum (see Supported Providers below)
has_api_key true if credentials are stored
model_names Allowed model list, or null if all models are enabled
enable_default_models Whether default models for this provider are allowed
function_calling_enabled Whether tool/function calling is enabled
auth_type Authentication method: default, proxy_with_headers, or bearer_token

Get a Specific Integration

ax ai-integrations get NAME_OR_ID
ax ai-integrations get NAME_OR_ID -o json
ax ai-integrations get NAME_OR_ID --space SPACE   # required when using name instead of ID

Use this to inspect an integration's full configuration or to confirm its ID after creation.

Create an AI Integration

Before creating, always list integrations first — the user may already have a suitable one:

ax ai-integrations list --space SPACE

If no suitable integration exists, create one. The required flags depend on the provider.

OpenAI

ax ai-integrations create \
  --name "My OpenAI Integration" \
  --provider openAI \
  --api-key $OPENAI_API_KEY

Anthropic

ax ai-integrations create \
  --name "My Anthropic Integration" \
  --provider anthropic \
  --api-key $ANTHROPIC_API_KEY

Azure OpenAI

ax ai-integrations create \
  --name "My Azure OpenAI Integration" \
  --provider azureOpenAI \
  --api-key $AZURE_OPENAI_API_KEY \
  --base-url "https://my-resource.openai.azure.com/"

AWS Bedrock

AWS Bedrock uses IAM role-based auth. Provide the ARN of the role Arize should assume via --provider-metadata:

ax ai-integrations create \
  --name "My Bedrock Integration" \
  --provider awsBedrock \
  --provider-metadata '{"role_arn": "arn:aws:iam::123456789012:role/ArizeBedrockRole"}'

Vertex AI

Vertex AI uses GCP service account credentials. Provide the GCP project and region via --provider-metadata:

ax ai-integrations create \
  --name "My Vertex AI Integration" \
  --provider vertexAI \
  --provider-metadata '{"project_id": "my-gcp-project", "location": "us-central1"}'

Gemini

ax ai-integrations create \
  --name "My Gemini Integration" \
  --provider gemini \
  --api-key $GEMINI_API_KEY

NVIDIA NIM

ax ai-integrations create \
  --name "My NVIDIA NIM Integration" \
  --provider nvidiaNim \
  --api-key $NVIDIA_API_KEY \
  --base-url "https://integrate.api.nvidia.com/v1"

Custom (OpenAI-compatible endpoint)

ax ai-integrations create \
  --name "My Custom Integration" \
  --provider custom \
  --base-url "https://my-llm-proxy.example.com/v1" \
  --api-key $CUSTOM_LLM_API_KEY

Supported Providers

Provider Required extra flags
openAI --api-key <key>
anthropic --api-key <key>
azureOpenAI --api-key <key>, --base-url <azure-endpoint>
awsBedrock --provider-metadata '{"role_arn": "<arn>"}'
vertexAI --provider-metadata '{"project_id": "<gcp-project>", "location": "<region>"}'
gemini --api-key <key>
nvidiaNim --api-key <key>, --base-url <nim-endpoint>
custom --base-url <endpoint>

Optional flags for any provider

Flag Description
--model-name Allowed model name (repeat for multiple, e.g. --model-name gpt-4o --model-name gpt-4o-mini); omit to allow all models
--enable-default-models Enable the provider's default model list
--function-calling-enabled Enable tool/function calling support
--auth-type Authentication type: default, proxy_with_headers, or bearer_token
--headers Custom headers as JSON object or file path (for proxy auth)
--provider-metadata Provider-specific metadata as JSON object or file path

After creation

Capture the returned integration ID (e.g., TGxtSW50ZWdyYXRpb246MTI6YUJjRA==) — it is needed for evaluator creation and other downstream commands. If you missed it, retrieve it:

ax ai-integrations list --space SPACE -o json
# or by name/ID directly:
ax ai-integrations get NAME_OR_ID

Update an AI Integration

update is a partial update — only the flags you provide are changed. Omitted fields stay as-is.

# Rename
ax ai-integrations update NAME_OR_ID --name "New Name"

# Rotate the API key
ax ai-integrations update NAME_OR_ID --api-key $OPENAI_API_KEY

# Change the model list (replaces all existing model names)
ax ai-integrations update NAME_OR_ID --model-name gpt-4o --model-name gpt-4o-mini

# Update base URL (for Azure, custom, or NIM)
ax ai-integrations update NAME_OR_ID --base-url "https://new-endpoint.example.com/v1"

Add --space SPACE when using a name instead of ID. Any flag accepted by create can be passed to update.

Delete an AI Integration

Warning: Deletion is permanent. Evaluators that reference this integration will no longer be able to run.

ax ai-integrations delete NAME_OR_ID --force
ax ai-integrations delete NAME_OR_ID --space SPACE --force   # required when using name instead of ID

Omit --force to get a confirmation prompt instead of deleting immediately.

Troubleshooting

Problem Solution
ax: command not found See references/ax-setup.md
401 Unauthorized API key may not have access to this space. Verify key and space ID at https://app.arize.com/admin > API Keys
No profile found Run ax profiles show --expand; set ARIZE_API_KEY env var or write ~/.arize/config.toml
Integration not found Verify with ax ai-integrations list --space SPACE
has_api_key: false after create Credentials were not saved — re-run update with the correct --api-key or --provider-metadata
Evaluator runs fail with LLM errors Check integration credentials with ax ai-integrations get INT_ID; rotate the API key if needed
provider mismatch Cannot change provider after creation — delete and recreate with the correct provider

Related Skills

  • arize-evaluator: Create LLM-as-judge evaluators that use an AI integration → use arize-evaluator
  • arize-experiment: Run experiments that use evaluators backed by an AI integration → use arize-experiment

Save Credentials for Future Use

See references/ax-profiles.md § Save Credentials for Future Use.

Files3
3 files · 7.0 KB

Select a file to preview

Overall Score

84/100

Grade

B

Good

Safety

82

Quality

87

Clarity

86

Completeness

78

Summary

The Arize AI Integration Skill guides agents to create, read, update, and delete LLM provider credentials (integrations) stored in Arize's platform. It provides detailed command syntax for multiple LLM providers (OpenAI, Anthropic, Azure, AWS Bedrock, Vertex AI, Gemini, NVIDIA NIM, and custom endpoints) and includes security guidance to never read .env files or search for credentials on disk.

Static Analysis Findings

2 findings

Patterns detected by deterministic static analysis before AI scoring. Hover over any finding code for detailed information and remediation guidance.

Credential Exposure
SEC-020Direct .env File Access

Direct .env file access

SKILL.md.env
85% confidenceCWE-538: Sensitive Info in Externally-Accessible File
Environment Access
SEC-050Sensitive Environment Variable3x in 1 file

Environment variable read for sensitive values

SKILL.md$OPENAI_API_KEY$ANTHROPIC_API_KEY3x
90% confidenceCWE-526: Sensitive Info in Environment Variables

Detected Capabilities

shell execution (ax CLI commands)environment variable reference ($OPENAI_API_KEY, $ANTHROPIC_API_KEY, etc.)HTTP/REST API interaction via ax CLI wrapperconfiguration file reading (ax profiles)credential management (API keys, role ARNs, service account metadata)

Trigger Keywords

Phrases that MCP clients use to match this skill to user intent.

llm provider integrationarize credentials setupcreate ai integrationrotate api keyconnect openai arizebedrock iam authupdate evaluator model

Risk Signals

INFO

Direct .env file access discouraged

SKILL.md, Security section
WARNING

Environment variable references for LLM provider API keys ($OPENAI_API_KEY, $ANTHROPIC_API_KEY, $AZURE_OPENAI_API_KEY, $GEMINI_API_KEY, $NVIDIA_API_KEY)

SKILL.md, Create commands section
WARNING

Environment variable reference for Arize credentials ($ARIZE_API_KEY)

references/ax-profiles.md, credential setup
INFO

Explicit security guidance: 'Never read .env files or search the filesystem for credentials'

SKILL.md, Prerequisites section

Referenced Domains

External domains referenced in skill content, detected by static analysis.

app.arize.comintegrate.api.nvidia.commy-llm-proxy.example.commy-resource.openai.azure.comnew-endpoint.example.com

Use Cases

  • Connect OpenAI API key to Arize for use by evaluators
  • Set up Azure OpenAI endpoint with credentials for Arize evaluators
  • Create AWS Bedrock integration using IAM role assumption
  • Rotate or update LLM provider API keys stored in Arize
  • List and filter existing LLM integrations across Arize spaces
  • Delete expired or unused LLM provider integrations
  • Configure custom or proxy LLM endpoints with Arize

Quality Notes

  • Skill explicitly forbids direct .env file access and filesystem credential search — excellent security boundary
  • Clear prerequisites section addresses auth failures upfront with troubleshooting paths
  • Comprehensive provider support matrix with command syntax for 8 distinct LLM providers
  • Tables documenting flags, response fields, and provider-specific metadata reduce ambiguity
  • Security guidance in ax-profiles.md emphasizes use of environment variables and never inlining raw API key values
  • Instructions clearly separate optional vs. required flags for each provider
  • Edge cases documented: pagination, name vs. ID scoping, partial vs. full updates
  • Related skills section explicitly links to downstream consumers (arize-evaluator, arize-experiment)
  • Troubleshooting table covers common failures: 401 auth, missing profile, integration not found, provider mismatch
  • Reference materials (ax-setup.md, ax-profiles.md) provide deeper context for auth failures without bloating main skill
Model: claude-haiku-4-5-20251001Analyzed: Jun 26, 2026

Reviews

Add this skill to your library to leave a review.

No reviews yet

Be the first to share your experience.

Add github/arize-ai-provider-integration to your library

Get Started Free

Command Palette

Search for a command to run...