Skip to main content

Module toolscope

Module toolscope 

Source
Expand description

Tool-scope sandboxing aspect for agentic systems.

Restricts an agent invocation to a declared tool allowlist. Wraps a tool-dispatch join point and rejects calls whose tool name is not in the per-session allowlist before the dispatch happens.

The aspect is novel relative to classical AOP catalogues (logging, caching, rate-limiting): it encodes a capability boundary that is specific to agentic AI architectures, where an LLM may emit tool calls that escape the intended scope of a session.

Structs§

ToolCall
Per-call context that the host system must populate before the guarded function runs.
ToolScopeSandboxAspect
Sandbox aspect that enforces a per-session tool allowlist.

Type Aliases§

SessionId
Identifier for a session whose tool calls are being scoped.