ilia/atlas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
atlas/docs/TOOL_CALLING_POLICY.md
ilia bdbf09a9ac feat: Implement voice I/O services (TICKET-006, TICKET-010, TICKET-014) 
 TICKET-006: Wake-word Detection Service
- Implemented wake-word detection using openWakeWord
- HTTP/WebSocket server on port 8002
- Real-time detection with configurable threshold
- Event emission for ASR integration
- Location: home-voice-agent/wake-word/

 TICKET-010: ASR Service
- Implemented ASR using faster-whisper
- HTTP endpoint for file transcription
- WebSocket endpoint for streaming transcription
- Support for multiple audio formats
- Auto language detection
- GPU acceleration support
- Location: home-voice-agent/asr/

 TICKET-014: TTS Service
- Implemented TTS using Piper
- HTTP endpoint for text-to-speech synthesis
- Low-latency processing (< 500ms)
- Multiple voice support
- WAV audio output
- Location: home-voice-agent/tts/

 TICKET-047: Updated Hardware Purchases
- Marked Pi5 kit, SSD, microphone, and speakers as purchased
- Updated progress log with purchase status

📚 Documentation:
- Added VOICE_SERVICES_README.md with complete testing guide
- Each service includes README.md with usage instructions
- All services ready for Pi5 deployment

🧪 Testing:
- Created test files for each service
- All imports validated
- FastAPI apps created successfully
- Code passes syntax validation

🚀 Ready for:
- Pi5 deployment
- End-to-end voice flow testing
- Integration with MCP server

Files Added:
- wake-word/detector.py
- wake-word/server.py
- wake-word/requirements.txt
- wake-word/README.md
- wake-word/test_detector.py
- asr/service.py
- asr/server.py
- asr/requirements.txt
- asr/README.md
- asr/test_service.py
- tts/service.py
- tts/server.py
- tts/requirements.txt
- tts/README.md
- tts/test_service.py
- VOICE_SERVICES_README.md

Files Modified:
- tickets/done/TICKET-047_hardware-purchases.md

Files Moved:
- tickets/backlog/TICKET-006_prototype-wake-word-node.md → tickets/done/
- tickets/backlog/TICKET-010_streaming-asr-service.md → tickets/done/
- tickets/backlog/TICKET-014_tts-service.md → tickets/done/
2026-01-12 22:22:38 -05:00

192 lines
7.0 KiB
Markdown
Raw Permalink Blame History

# Tool-Calling Policy
This document defines the policy for when and how LLM agents should call tools in the Atlas voice agent system.
## Overview
The tool-calling policy ensures that:
- Tools are used appropriately and safely
- High-risk actions require confirmation
- Agents understand when to use tools vs. respond directly
- Tool permissions are clearly defined
## Tool Risk Categories
### Low-Risk Tools (Always Allowed)
These tools provide information or perform safe operations that don't modify data or have external effects:
- `get_current_time` - Read-only time information
- `get_date` - Read-only date information
- `get_timezone_info` - Read-only timezone information
- `convert_timezone` - Read-only timezone conversion
- `weather` - Read-only weather information (external API, but read-only)
- `list_tasks` - Read-only task listing
- `list_timers` - Read-only timer listing
- `list_notes` - Read-only note listing
- `read_note` - Read-only note reading
- `search_notes` - Read-only note searching
**Policy**: These tools can be called automatically without user confirmation.
### Medium-Risk Tools (Require Context Confirmation)
These tools modify local data but don't have external effects:
- `add_task` - Creates a new task
- `update_task_status` - Moves tasks between columns
- `create_timer` - Creates a timer
- `create_reminder` - Creates a reminder
- `cancel_timer` - Cancels a timer/reminder
- `create_note` - Creates a new note
- `append_to_note` - Modifies an existing note
**Policy**:
- Can be called when the user explicitly requests the action
- Should confirm what will be done before execution (e.g., "I'll add 'buy milk' to your todo list")
- No explicit user approval token required, but agent should be confident about user intent
### High-Risk Tools (Require Explicit Confirmation)
These tools have external effects or significant consequences:
- **Future tools** (not yet implemented):
- `send_email` - Sends email to external recipients
- `create_calendar_event` - Creates calendar events
- `modify_calendar_event` - Modifies existing events
- `set_smart_home_device` - Controls smart home devices
- `purchase_item` - Makes purchases
- `execute_shell_command` - Executes system commands
**Policy**:
- **MUST** require explicit user confirmation token
- Agent should explain what will happen
- User must approve via client interface (not just LLM decision)
- Confirmation token must be signed/validated
## Tool Permission Matrix
| Tool | Family Agent | Work Agent | Confirmation Required |
|------|--------------|------------|----------------------|
| `get_current_time` | ✅ | ✅ | No |
| `get_date` | ✅ | ✅ | No |
| `get_timezone_info` | ✅ | ✅ | No |
| `convert_timezone` | ✅ | ✅ | No |
| `weather` | ✅ | ✅ | No |
| `add_task` | ✅ (home only) | ✅ (work only) | Context |
| `update_task_status` | ✅ (home only) | ✅ (work only) | Context |
| `list_tasks` | ✅ (home only) | ✅ (work only) | No |
| `create_timer` | ✅ | ✅ | Context |
| `create_reminder` | ✅ | ✅ | Context |
| `list_timers` | ✅ | ✅ | No |
| `cancel_timer` | ✅ | ✅ | Context |
| `create_note` | ✅ (home only) | ✅ (work only) | Context |
| `read_note` | ✅ (home only) | ✅ (work only) | No |
| `append_to_note` | ✅ (home only) | ✅ (work only) | Context |
| `search_notes` | ✅ (home only) | ✅ (work only) | No |
| `list_notes` | ✅ (home only) | ✅ (work only) | No |
## Tool-Calling Guidelines
### When to Call Tools
**Always call tools when:**
1. User explicitly requests information that requires a tool (e.g., "What time is it?")
2. User explicitly requests an action that requires a tool (e.g., "Add a task")
3. Tool would provide significantly better information than guessing
4. Tool is necessary to complete the user's request
**Don't call tools when:**
1. You can answer directly from context
2. User is asking a general question that doesn't require specific data
3. Tool call would be redundant (e.g., calling weather twice in quick succession)
4. User hasn't explicitly requested the action
### Tool Selection
**Choose the most specific tool:**
- If user asks "What time is it?", use `get_current_time` (not `get_date`)
- If user asks "Set a timer", use `create_timer` (not `create_reminder`)
- If user asks "What's on my todo list?", use `list_tasks` with status filter
**Combine tools when helpful:**
- If user asks "What's the weather and what time is it?", call both `weather` and `get_current_time`
- If user asks "What tasks do I have and what reminders?", call both `list_tasks` and `list_timers`
### Error Handling
**When a tool fails:**
1. Explain what went wrong in user-friendly terms
2. Suggest alternatives if available
3. Don't retry automatically unless it's a transient error
4. If it's a permission error, explain the limitation clearly
**Example**: "I couldn't access that file because it's outside my allowed directories. I can only access files in the home notes directory."
## Confirmation Flow
### For Medium-Risk Tools
1. **Agent explains action**: "I'll add 'buy groceries' to your todo list."
2. **Agent calls tool**: Execute the tool call
3. **Agent confirms completion**: "Done! I've added it to your todo list."
### For High-Risk Tools (Future)
1. **Agent explains action**: "I'm about to send an email to john@example.com with subject 'Meeting Notes'. Should I proceed?"
2. **Agent requests confirmation**: Wait for user approval token
3. **If approved**: Execute tool call
4. **If rejected**: Acknowledge and don't execute
## Tool Argument Validation
**Before calling a tool:**
- Validate required arguments are present
- Validate argument types match schema
- Validate argument values are reasonable (e.g., duration > 0)
- Sanitize user input if needed
**If validation fails:**
- Don't call the tool
- Explain what's missing or invalid
- Ask user to provide correct information
## Rate Limiting
Some tools have rate limits:
- `weather`: 60 requests/hour (enforced by tool)
- Other tools: No explicit limits, but use reasonably
**Guidelines:**
- Don't call the same tool repeatedly in quick succession
- Cache results when appropriate
- If rate limit is hit, explain and suggest waiting
## Tool Result Handling
**After tool execution:**
1. **Parse result**: Extract relevant information from tool response
2. **Format for user**: Present result in user-friendly format
3. **Provide context**: Add relevant context or suggestions
4. **Handle empty results**: If no results, explain clearly
**Example**:
- Tool returns: `{"tasks": []}`
- Agent says: "You don't have any tasks in your todo list right now. Would you like me to add one?"
## Escalation Rules
**If user requests something you cannot do:**
1. Explain the limitation clearly
2. Suggest alternatives if available
3. Don't attempt to bypass restrictions
4. Be helpful about what you CAN do
**Example**: "I can't access work files, but I can help you with home tasks and notes. Would you like me to create a note about what you need to do?"
## Version
**Version**: 1.0
**Last Updated**: 2026-01-06
**Applies To**: Both Family Agent and Work Agent
Reference in New Issue View Git Blame Copy Permalink