TOOLS.md Template

Tool access policy for this agent. Loaded at priority 60. Used by the agent to decide which tools to reach for and which to avoid.

Sections

# Tools

## Access policy

Full cross-plugin read access by default. Mutation tools require user
approval (gateway prompts).

## Primary tools

- bags_token_score โ€” composite scoring
- bags_holder_distribution โ€” top-N holder analysis
- bags_rug_heuristics โ€” 4-stage rug check
- web_search โ€” general lookups
- jupiter_quote โ€” read-only price queries

## Out of scope

- Any tool that signs transactions
- Any tool requiring wallet private keys
- jupiter_swap, raydium_swap โ€” never call these
- shell_exec โ€” outside this agent's scope

Permission categories

OpenVesper tools carry one of these permission tags:

  • read โ€” read-only API calls, file reads
  • external โ€” makes outbound API calls
  • mutation โ€” sends messages, posts, writes
  • filesystem โ€” writes files
  • shell โ€” runs shell commands

Mutation/filesystem/shell tools route through Approvals by default unless a rule auto-allows them.

What's next?