Skip to content

feat(tools): add ToolPolicy for governance and compliance controls#191

Open
imran-siddique wants to merge 2 commits into
oracle:mainfrom
imran-siddique:feat/tool-usage-policies
Open

feat(tools): add ToolPolicy for governance and compliance controls#191
imran-siddique wants to merge 2 commits into
oracle:mainfrom
imran-siddique:feat/tool-usage-policies

Conversation

@imran-siddique
Copy link
Copy Markdown

@imran-siddique imran-siddique commented May 18, 2026

Summary

Implements the Tool Usage Policies proposal (formerly PR #174) as accepted by @dhilloulinoracle and @cesarebernardis.

This adds governance and compliance controls to the Agent Spec tool model, enabling declarative policy enforcement for tool invocations.

Changes

File Change
tools/toolpolicy.py New module: ToolPolicy, RateLimitGuard, ApprovalGuard, JustificationGuard models
tools/tool.py Added optional tool_policy field with version gating (>= 26.2.0)
tools/toolbox.py Added optional tool_policy field with version gating (>= 26.2.0)
tools/init.py Export new types
init.py Export ToolPolicy from top-level package
tracing/events/policy.py PolicyViolation event for audit trails
tests/serialization/test_tool_policy.py 16 tests covering model validation, serialization, round-trip

Design Decisions

  • Used Literal types (not enums) for data_classification and on_violation to match existing serialization patterns (RetryPolicy, jitter)
  • ToolPolicy is a non-Component BaseModel (like RetryPolicy) embedded via field reference
  • Guards use a discriminated union on the type field
  • Version gated to 26.2.0 (current version) so older specs are unaffected
  • Composition rules documented in docstrings (stricter wins for classification, union for guards, intersection for allowed_callers)

Testing

All 16 new tests pass. Existing tool serialization tests unaffected (13/14 pass; 1 pre-existing crewai sandbox failure unrelated to this change).

@imran-siddique imran-siddique requested a review from a team May 18, 2026 18:23
@imran-siddique
Copy link
Copy Markdown
Author

imran-siddique commented May 18, 2026

cc @dhilloulinoracle @cesarebernardis - this implements the Tool Usage Policies proposal you both approved in #174. Fresh implementation PR as discussed. Let me know if you'd like any changes.

This was referenced May 18, 2026
Open
Open
Open
@imran-siddique imran-siddique force-pushed the feat/tool-usage-policies branch from 98a4679 to 85d2ff6 Compare May 19, 2026 19:57
@oracle-contributor-agreement
Copy link
Copy Markdown

oracle-contributor-agreement Bot commented May 19, 2026

Thank you for your pull request and welcome to our community! To contribute, please sign the Oracle Contributor Agreement (OCA).
The following contributors of this PR have not signed the OCA:

To sign the OCA, please create an Oracle account and sign the OCA in Oracle's Contributor Agreement Application.

When signing the OCA, please provide your GitHub username. After signing the OCA and getting an OCA approval from Oracle, this PR will be automatically updated.

If you are an Oracle employee, please make sure that you are a member of the main Oracle GitHub organization, and your membership in this organization is public.

@oracle-contributor-agreement oracle-contributor-agreement Bot added the OCA Required At least one contributor does not have an approved Oracle Contributor Agreement. label May 19, 2026
@imran-siddique imran-siddique force-pushed the feat/tool-usage-policies branch 4 times, most recently from 2db22ce to 3729d90 Compare May 20, 2026 23:24
@imran-siddique
feat(tools): add ToolPolicy for governance and compliance controls
5964ac2 
Implement the Tool Usage Policies proposal (PR oracle#174) as accepted by
Oracle maintainers. This adds:

- ToolPolicy model with data_classification, requires_justification,
  allowed_callers, and guards fields
- ExecutionGuard discriminated union: RateLimitGuard, ApprovalGuard,
  JustificationGuard
- PolicyViolation tracing event for audit trails
- tool_policy field on both Tool and ToolBox base classes
- Version gating to agentspec_version >= 26.2.0
- Composition semantics documented (stricter classification wins,
  guards union, allowed_callers intersection)

Signed-off-by: Imran Siddique <imran.siddique@microsoft.com>
@imran-siddique imran-siddique force-pushed the feat/tool-usage-policies branch from 3729d90 to 5964ac2 Compare May 20, 2026 23:25
@imran-siddique
Copy link
Copy Markdown
Author

imran-siddique commented May 21, 2026

@sonleoracle I signed the OCA about 24 hours ago at oca.opensource.oracle.com with GitHub username \imran-siddique. The check is still showing as not approved. Could you help verify the OCA status or point me to someone who can expedite the approval? Happy to re-sign if something went wrong on my end.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cesarebernardis cesarebernardis Awaiting requested review from cesarebernardis

@paul-cayet paul-cayet Awaiting requested review from paul-cayet

@dhilloulinoracle dhilloulinoracle Awaiting requested review from dhilloulinoracle

At least 3 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

OCA Required At least one contributor does not have an approved Oracle Contributor Agreement.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@imran-siddique