Summary
Add the ability to configure tool allow/deny policies at the group level, not just the agent level.
Current Behavior
Tool restrictions are configured per-agent:
{
agents: {
list: [{
id: "my-bot",
tools: {
allow: ["read", "message"],
deny: ["exec", "write", "browser"]
}
}]
}
}To have different tool access for different groups, you must:
- Create multiple agents with different tool profiles
- Use bindings to route each group to the appropriate agent
Proposed Behavior
Allow tool policies to be specified per-group within channels.*.groups:
{
channels: {
whatsapp: {
groups: {
"120363000000000001@g.us": {
requireMention: true,
tools: {
allow: ["read", "write", "exec", "browser"],
deny: []
}
},
"120363000000000002@g.us": {
requireMention: true,
tools: {
allow: ["read", "message"],
deny: ["exec", "write", "browser", "gateway"]
}
},
"*": {
requireMention: true,
tools: {
allow: ["read"],
deny: ["exec", "write", "browser", "gateway", "nodes"]
}
}
}
}
}
}Use Cases
- Trusted internal group — Full tool access for a team workspace
- Semi-trusted partner group — Read + messaging tools only
- Public/open groups — Minimal tools, no filesystem/shell access
- Default fallback — Restrictive baseline for any unlisted group
Why This Matters
The current workaround (multiple agents + bindings) works but adds complexity:
- Each agent needs its own config, workspace, potentially auth
- Bindings scale poorly with many groups
- Mental overhead of mapping "which agent handles which group"
Per-group tool policies would keep a single agent while varying permissions by context — closer to how admins think about access control.
Alternatives Considered
- Multi-agent bindings — Works today, but complex
- Sandbox tool policies for non-main — Gives one "restricted" tier, but no granularity between groups
- groupAllowFrom — Controls who triggers, not what tools they can use
Additional Context
This would complement existing group config options (requireMention, groupAllowFrom) and fit naturally in the channels.*.groups.* schema.
Summary
Add the ability to configure tool allow/deny policies at the group level, not just the agent level.
Current Behavior
Tool restrictions are configured per-agent:
To have different tool access for different groups, you must:
Proposed Behavior
Allow tool policies to be specified per-group within
channels.*.groups:Use Cases
Why This Matters
The current workaround (multiple agents + bindings) works but adds complexity:
Per-group tool policies would keep a single agent while varying permissions by context — closer to how admins think about access control.
Alternatives Considered
Additional Context
This would complement existing group config options (
requireMention,groupAllowFrom) and fit naturally in thechannels.*.groups.*schema.