Owlibou/gnoma
2
0
Fork 0
Code Issues Pull Requests Actions 7 Packages Projects Releases Wiki Activity
Files
d5958203cb262e155dcccc285cef45de0965c9ff
gnoma/internal/tool/tool.go
T
vikingowl 176926924c feat(engine): M8 cleanup — Wave B skill enforcement 
- Add tool.PathSensitiveTool interface (ExtractPaths); implement on all 6 fs tools
- Add engine.TurnOptions.AllowedPaths: restricts tool filesystem access per skill invocation
- Bash is denied outright when AllowedPaths is active (unparseable command args)
- fs tools with empty path (cwd default) resolved via os.Getwd() and validated
- Add engine.TurnOptions.AllowedTools + AllowedPaths wiring in pipe mode (main.go) and TUI skill dispatch (tui/app.go)
- Remove TODO(M8.3) from skill.Frontmatter — enforcement is now complete
2026-05-07 15:29:33 +02:00

38 lines
1.3 KiB
Go
Raw Blame History

package tool
import (
"context"
"encoding/json"
)
// Tool is the interface every tool must implement.
type Tool interface {
// Name returns the tool's identifier (used in LLM tool schemas).
Name() string
// Description returns a human-readable description for the LLM.
Description() string
// Parameters returns the JSON Schema for the tool's input.
Parameters() json.RawMessage
// Execute runs the tool with the given JSON arguments.
Execute(ctx context.Context, args json.RawMessage) (Result, error)
// IsReadOnly returns true if the tool only reads (safe for concurrent execution).
IsReadOnly() bool
// IsDestructive returns true if the tool can cause irreversible changes.
IsDestructive() bool
}
// DeferrableTool is an optional interface for tools that can be excluded
// from initial requests and loaded on demand. Reduces token overhead
// for rarely-used tools with large schemas.
type DeferrableTool interface {
ShouldDefer() bool
}
// PathSensitiveTool is an optional interface for tools that access the filesystem.
// Engines enforcing skill path restrictions call ExtractPaths to validate each
// invocation before execution. An empty string in the returned slice means the
// tool will default to the current working directory.
type PathSensitiveTool interface {
ExtractPaths(args json.RawMessage) []string
}
Reference in New Issue View Git Blame Copy Permalink