Tool handlers & dispatch

Each AI Agent tool row has a handler_kind and handler_config JSON object. The dispatcher (ai_agent_tool_dispatch.py) executes tools during LLM turns — Playground, evals, and public embed all use the same path.

Studio UI

1. Open /app/agents/{slug}/tools.
2. Expand Handler on a tool row.
3. Choose handler kind and edit JSON config (templates provided per kind).
4. Save handler — PATCH /v1/ai-agents/{slug}/tools/{tool_id}.
5. Test dispatch — POST .../tools/{tool_id}/test with JSON tool_args (does not call the LLM).

Handler kinds

Secrets in handler config

Use {{secret:NAME}} anywhere in handler_config (URL, headers, signing_secret). Values resolve from the workspace encrypted secret store (GET/POST /v1/secrets) — never returned by the API after write.

{
  "url": "https://api.bank.com/v1/balance",
  "headers": { "Authorization": "Bearer {{secret:CORE_API_KEY}}" },
  "timeout_seconds": 15
}

Webhook signing

When signing_secret (or secret) is set, Convoship sends header X-Convoship-Signature: sha256=<hex> over the raw JSON body {"tool":"...","args":{...}}. Verify on your receiver with the same secret.

Runtime behavior

• Task allowlist — only tools listed on the matched Task are sent to the LLM schema.
• SENSITIVE tools require an active AUTH guardrail on the agent.
• Failures return ok: false to the model with error detail — dispatch never raises HTTP 500.
• Retries — http_post/webhook honor max_retries in config (default 1).
• Trace — tool events in playground/public traces show name, args, output, duration_ms.

API

PATCH /v1/ai-agents/{slug}/tools/{tool_id}
  { "handler_kind": "http_post", "handler_config": { ... } }

POST /v1/ai-agents/{slug}/tools/{tool_id}/test
  { "tool_args": { "account_id": "123" } }