Description
Agent prompts encode tool whitelists alongside Agentfile TOOL directives. The deliberator-system.md said 'DO NOT use bash, find, or grep' independent of the Agentfile's TOOL set. When the Agentfile cage came off, the prompt cage remained. The agent then bounced between tools the prompt told it not to use, never produced output. Prompts must be regenerated or audited whenever the agent's tool surface changes. Worker pool item: heal.prompt_tool_drift — diff each agent's TOOL set against its prompt's tool mentions, flag drift.
Type
enhancement
Filed via
ostk should v6.0.5
Description
Agent prompts encode tool whitelists alongside Agentfile TOOL directives. The deliberator-system.md said 'DO NOT use bash, find, or grep' independent of the Agentfile's TOOL set. When the Agentfile cage came off, the prompt cage remained. The agent then bounced between tools the prompt told it not to use, never produced output. Prompts must be regenerated or audited whenever the agent's tool surface changes. Worker pool item: heal.prompt_tool_drift — diff each agent's TOOL set against its prompt's tool mentions, flag drift.
Type
enhancement
Filed via
ostk shouldv6.0.5