feat: Rich Approval Mechanism for Human in the loop Tool Approvals #711
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
calvingiles
force-pushed
the
feature/approval-mechanism
branch
from
4bcc449 to
c4305eb
Compare
|
This PR is now significantly updated from its initial version - we are using it day to day with our UI and it is working well. I have simplified the design, but it still requires changes to the core logic - implementing it using only callbacks would be challenging as it relies on logic in the content preprocessor before the before_model_callback and it would be very hard to replicate this entirely after that preprocessor has run. |
calvingiles
force-pushed
the
feature/approval-mechanism
branch
from
4afd578 to
bc77db3
Compare
|
@calvingiles thanks for your contribution. We will evaluate it in the upcoming weeks. |
calvingiles
force-pushed
the
feature/approval-mechanism
branch
from
e272c56 to
d0d1865
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is an initial proposal seeking feedback adds an Approval Mechanism.
This is a fully working implementation that we have begun using in our internal agents.
This mechanism allows tools to be annotated like:
when you then try to use the agent, you will receive an approval request in response with the challenges that need to be granted in order to call the tool:
{ "id": "adk-38e8d3c6-a14c-4673-b4e8-cc2e2908d64a", "args": { "grantee": { "id": "tool:list_directory:adk-6b26eed9-2fa7-496e-ba8f-9d75362d0e0a", "type": "tool", "on_behalf_of": { "id": "3a0400f2-d9d9-4909-8ec3-41f8f28c76fe", "type": "agent", "on_behalf_of": { "id": "calvingiles", "type": "user" } } }, "challenges": [ { "actions": [ "tool:local_file:read" ], "resources": [ "tool:local_file:/Users/calvingiles/eng/repos/adk-python" ] } ], "function_call": { "id": "adk-6b26eed9-2fa7-496e-ba8f-9d75362d0e0a", "args": { "dir_path": "/Users/calvingiles/eng/repos/adk-python" }, "name": "list_directory" } }, "name": "adk_request_approval" }This can then be granted by sending a message like:
{ "name": "adk_request_approval", "response": { "grants": [ { "effect": "allow", "actions": [ "tool:local_file:read" ], "grantee": { "id": "tool:list_directory:*", "type": "tool", "on_behalf_of": { "id": "3a0400f2-d9d9-4909-8ec3-41f8f28c76fe", "type": "agent", "on_behalf_of": { "id": "calvingiles", "type": "user" } } }, "grantor": { "id": "calvingiles", "type": "user" }, "resources": [ "tool:local_file:/Users/calvingiles/eng/repos/adk-python" ] } ] } }Where the grant can include wildcards so that )for example, in this case) any function call that matches these actions and resources called by this agent will be approved in the future.
This is working in our internal service, but I am interested in whether this would be suitable to include in adk directly.
Relates to the issue #640