From 726b0b7abfe82a4ff3c840e83e43beafe15aece0 Mon Sep 17 00:00:00 2001 From: Dean Schmigelski Date: Wed, 19 Nov 2025 17:08:12 -0500 Subject: [PATCH] security(tool_loader): add note about shared responsiblity in auto tool loading --- docs/user-guide/concepts/tools/tools_overview.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/docs/user-guide/concepts/tools/tools_overview.md b/docs/user-guide/concepts/tools/tools_overview.md index bc1b619c..371b15f2 100644 --- a/docs/user-guide/concepts/tools/tools_overview.md +++ b/docs/user-guide/concepts/tools/tools_overview.md @@ -52,6 +52,9 @@ from strands import Agent agent = Agent(load_tools_from_directory=True) ``` +!!! note "Tool Loading Implications" + When enabling automatic tool loading, any Python file placed in the `./tools/` directory will be executed by the agent. Under the shared responsibility model, it is your responsibility to ensure that only safe, trusted code is written to the tool loading directory, as the agent will automatically pick up and execute any tools found there. + ## Using Tools Tools can be invoked in two primary ways.