fix(agent-runner): authorize external runner tools

2026-06-02 12:05:54 +00:00 · 2026-05-30 09:48:27 +08:00
parent 768d52f509
commit 95b859c55d
2 changed files with 47 additions and 1 deletions
--- a/src/langbot/pkg/pipeline/preproc/preproc.py
+++ b/src/langbot/pkg/pipeline/preproc/preproc.py
@@ -189,6 +189,12 @@ class PreProcessor(stage.PipelineStage):
                and query.variables.get('_fallback_model_uuids')
            ):
                query.use_funcs = await self.ap.tool_mgr.get_all_tools(bound_plugins, bound_mcp_servers)
+        elif config_schema.uses_host_tools(descriptor):
+            query.use_funcs = await self.ap.tool_mgr.get_all_tools(bound_plugins, bound_mcp_servers)
+
+            self.ap.logger.debug(f'Bound plugins: {bound_plugins}')
+            self.ap.logger.debug(f'Bound MCP servers: {bound_mcp_servers}')
+            self.ap.logger.debug(f'Use funcs: {query.use_funcs}')

        sender_name = ''

--- a/tests/unit_tests/agent/test_resource_builder.py
+++ b/tests/unit_tests/agent/test_resource_builder.py
@@ -38,7 +38,13 @@ def make_model(model_type='llm', provider='test-provider'):
    )


-def make_query(runner_config: dict, *, variables: dict | None = None, use_llm_model_uuid=None):
+def make_query(
+    runner_config: dict,
+    *,
+    variables: dict | None = None,
+    use_llm_model_uuid=None,
+    use_funcs: list | None = None,
+):
    return SimpleNamespace(
        pipeline_config={
            'ai': {
@@ -48,6 +54,7 @@ def make_query(runner_config: dict, *, variables: dict | None = None, use_llm_mo
        },
        variables=variables or {},
        use_llm_model_uuid=use_llm_model_uuid,
+        use_funcs=use_funcs or [],
        pipeline_uuid='pipeline_001',
    )

@@ -157,3 +164,36 @@ async def test_build_models_deduplicates_query_and_config_models(app):
    resources = await build_resources(app, query, descriptor)

    assert [model['model_id'] for model in resources['models']] == ['primary', 'fallback']
+
+
+@pytest.mark.asyncio
+async def test_build_tools_authorizes_query_declared_tools(app):
+    """Tools discovered by Pipeline preprocessing become run-scoped authorized resources."""
+    descriptor = make_descriptor(
+        permissions={
+            'models': [],
+            'tools': ['detail', 'call'],
+        },
+    )
+    query = make_query(
+        {},
+        use_funcs=[
+            {'name': 'qa_plugin_echo', 'description': 'Echo test tool'},
+            SimpleNamespace(name='qa_mcp_echo'),
+        ],
+    )
+
+    resources = await build_resources(app, query, descriptor)
+
+    assert resources['tools'] == [
+        {
+            'tool_name': 'qa_plugin_echo',
+            'tool_type': None,
+            'description': None,
+        },
+        {
+            'tool_name': 'qa_mcp_echo',
+            'tool_type': None,
+            'description': None,
+        },
+    ]