Tools

Extend your agents with built-in and custom tools

What Are Tools?

Tools are executable actions that agents can invoke during conversations. They connect agents to external systems, databases, and APIs.

Each tool has a defined interface (name, description, parameters) and a security level that determines whether human approval is needed before execution.

Think of it this way If skills are what an agent knows, tools are what an agent can do. A Support Agent with the "Ticket Management" skill uses the "CRM Lookup" and "Send Email" tools to actually resolve issues.

Built-in Tools

InnFuse includes a set of built-in tools that cover common business operations.

Tool	Description	Security Level
Knowledge Base Search	Semantic search across all knowledge base articles using RAG	Safe
Web Search	Search the web for real-time information and current events	Safe
Send Email	Compose and send emails via the configured mail service	Elevated
Calendar	Check availability and book appointments in connected calendar systems	Elevated
CRM Lookup	Search and retrieve customer records from the CRM	Safe
CRM Update	Create or update customer records in the CRM	Elevated
Order Create	Create new orders or quotes in connected commerce systems	Dangerous
Data Export	Export conversation data, analytics, or reports in CSV/JSON format	Dangerous

Security Levels

Every tool is classified with a security level that governs how it can be executed.

Safe

Read-only operations with no side effects (e.g., knowledge base search, data lookup). No approval required.

Elevated

Actions that modify external data (e.g., CRM updates, email sending). May require approval based on policy.

Dangerous

Destructive or irreversible actions (e.g., data deletion, payment processing). Always requires human approval.

Approval Workflow

Tools with Elevated or Dangerous security levels require human approval before execution.

The agent determines that a tool call is needed to fulfill the user's request.
InnFuse checks the tool's security level against the approval policy.
If approval is required, a notification is sent to designated approvers.
An approver reviews the tool call parameters and approves or rejects the execution.
The result is returned to the agent, which continues the conversation accordingly.

Important Approval requests expire after 15 minutes. If no approver responds, the agent informs the user that the action could not be completed.

Custom Tools

Extend InnFuse by creating custom tools that connect to your own APIs and services.

Defining Custom Tools

Define the tool's interface so agents know how to use it.

{
    "name": "check_inventory",
    "description": "Check product stock levels in the warehouse system",
    "parameters": {
        "product_id": {
            "type": "string",
            "required": true,
            "description": "The product SKU or ID"
        },
        "warehouse": {
            "type": "string",
            "required": false,
            "description": "Specific warehouse code (default: all)"
        }
    },
    "endpoint": "https://api.example.com/inventory/{product_id}",
    "method": "GET",
    "security_level": "safe"
}

Name A unique identifier for the tool (e.g., "check_inventory", "lookup_warranty")
Description A clear explanation of what the tool does, used by the agent to decide when to call it
Parameters JSON Schema defining the input parameters the tool accepts
Endpoint URL The HTTPS endpoint that InnFuse calls when the tool is invoked
Security Level The security classification (Safe, Elevated, or Dangerous) that determines approval requirements

Tip Write clear, detailed tool descriptions. The agent uses the description to decide when and how to call the tool. Vague descriptions lead to incorrect tool usage.