Tool Configuration
Step 4: Enable the capabilities your agent needs.
Tools give your agent the ability to interact with the world. Each tool has an associated risk level that indicates its potential impact.
Risk Levels
| Level | Description | Examples |
|---|---|---|
| Low | Read-only operations with no side effects | read-file, find-files, web-search |
| Medium | Write operations with safeguards | write-file, edit-file, database-query |
| High | Unrestricted system access | run-command |
Available Tools
File Operations
| Tool | Risk | Description |
|---|---|---|
read-file | Low | Read contents of files |
write-file | Medium | Create new files |
edit-file | Medium | Modify existing files |
find-files | Low | Search files by glob patterns |
search-files | Low | Search file contents |
Command Execution
| Tool | Risk | Description |
|---|---|---|
run-command | High | Execute shell commands |
git-operations | Medium | Git version control operations |
High-risk tool warning
The run-command tool can execute arbitrary shell commands. Only enable this when necessary and ensure you understand the security implications.
Web Operations
| Tool | Risk | Description |
|---|---|---|
web-search | Low | Search the web |
web-fetch | Low | Fetch and analyze web pages |
Database
| Tool | Risk | Description |
|---|---|---|
database-query | Medium | Execute SQL queries |
Integrations
| Tool | Risk | Description |
|---|---|---|
api-client | Medium | Make HTTP API requests |
doc-ingest | Medium | Extract text from PDFs, DOCX, and other documents |
table-extract | Medium | Extract tables to CSV/JSON format |
source-notes | Low | Track citations and sources |
local-rag | Low | Semantic search over local documents |
Permission Levels
Permission levels provide quick presets for tool selection:
Restrictive
Read-only operations only. Enables:
- read-file
- find-files
- search-files
- web-search
Balanced
Read operations plus controlled writes. Enables:
- All restrictive tools
- write-file
- git-operations
- web-fetch
- api-client
Permissive
All tools enabled, including high-risk operations.
Best practice
Start with Restrictive or Balanced permissions. Enable additional tools only as needed for your specific use case.
Category Toggles
You can enable or disable entire categories of tools at once using the category toggle buttons. This is useful for quickly configuring related tools.
Tool Dependencies
When you enable certain tools, the generator automatically includes the required npm dependencies:
find-filesrequiresglobweb-fetchrequiresaxiosandcheeriodatabase-queryrequiresbetter-sqlite3doc-ingestrequirespdf-parseandmammoth