Tool Design¶

Tools are where most production failures originate. The model decides which tool to call, what arguments to pass, and how to interpret the response — and it makes those decisions based on the tool's name, description, and parameter schema. Poor tool design gives the model ambiguous signals, which produces unreliable behavior.

Tool structure¶

Each tool lives in its own directory under cxas_app/tools/. The directory contains two files: a JSON config and a Python implementation.

tools/
└── check_availability/
    ├── check_availability.json   # Tool schema and metadata
    └── check_availability.py     # Python implementation

The JSON config defines the tool's name, description, and parameter schema:

{
  "name": "check_availability",
  "description": "Check whether a table is available at Bella Notte for a given date, time, and party size. Returns available=true and a slot ID if the time is open, or available=false with a reason if not.",
  "inputSchema": {
    "type": "object",
    "properties": {
      "date": {
        "type": "string",
        "description": "Reservation date in YYYY-MM-DD format."
      },
      "time": {
        "type": "string",
        "description": "Requested time in HH:MM 24-hour format."
      },
      "party_size": {
        "type": "integer",
        "description": "Number of guests. Must be between 1 and 12."
      }
    },
    "required": ["date", "time", "party_size"]
  }
}

The Python implementation is a function with a docstring, named parameters, and access to context.state for session state:

def check_availability(date: str, time: str, party_size: int, context) -> dict:
    """Check whether a table is available at Bella Notte for a given date, time,
    and party size. Returns available=true and a slot ID if the time is open,
    or available=false with a reason if not."""

    try:
        result = availability_api.query(date=date, time=time, covers=party_size)
        if result.is_available:
            return {"available": True, "slot_id": result.slot_id}
        return {"available": False, "reason": result.unavailability_reason}
    except Exception as e:
        return {"agent_action": f"check_availability failed: {e}. Ask the guest to try again."}

Naming¶

Tool names must be in snake_case. The name is the primary signal the model uses to decide whether to call a tool — it has to be unambiguous.

BadGood

tool1
handle_thing
process
reservation_helper

These names don't describe what the tool does. The model has to guess, and it will guess wrong.

check_availability
create_reservation
cancel_reservation
get_alternative_slots
send_confirmation_email

Each name is a verb phrase that describes one specific action. The model can infer when to call it from the name alone.

Docstrings¶

The tool docstring is injected into the model's context alongside the tool schema. It is not documentation for humans — it is a behavioral specification for the model.

BadGood

def check_availability(date: str, time: str, party_size: int, context) -> dict:
    """Checks availability."""
    ...

This is useless. The model already knows the tool "checks availability" from the name. The docstring should tell it what it returns and when to use it.

def check_availability(date: str, time: str, party_size: int, context) -> dict:
    """Check whether a table is available at Bella Notte for a given date, time,
    and party size. Returns available=true and a confirmed slot_id if open.
    Returns available=false and a reason string if the slot is unavailable.
    Call this before create_reservation — do not call create_reservation
    without a confirmed slot_id from this tool."""
    ...

This tells the model what the return structure looks like and establishes the required call order — both things the model needs to use the tool correctly.

Parameters¶

Use explicit named parameters. The model maps argument names to values, and it uses the parameter name as a semantic signal. Explicit names make this mapping reliable.

Never use **kwargs. When a tool accepts **kwargs, the model doesn't know what arguments exist. It will either pass nothing or make up argument names.

Never use None as a default. If the model omits an argument, a None default silently passes that through to your implementation. This produces bugs that are hard to trace. Make required arguments required.

BadGood

def create_reservation(**kwargs):
    """Create a reservation."""
    date = kwargs.get("date")
    time = kwargs.get("time")
    name = kwargs.get("name")
    ...

def create_reservation(
    date: str,
    time: str,
    party_size: int,
    guest_name: str,
    context
) -> dict:
    """Create a confirmed reservation at Bella Notte. Requires a valid slot_id
    from check_availability. Returns a confirmation_number on success."""
    ...

Common pitfalls¶

Pitfall	Problem	Fix
`**kwargs` parameters	Model can't see parameter schema; passes wrong or no args	Use explicit named parameters
`None` defaults	Silent failures when model omits an argument	Make required parameters required
Tool explosion	Too many tools overwhelm the model's selection	Merge tools that are always called together
High-cardinality string args	Model invents values for open-ended enums	Enumerate valid values in the schema description
Sequential calls in instructions	Brittle; instructions say "call A then B" but model skips steps	Use tool wrappers that call both internally
Ambiguous overlapping tools	Model picks the wrong tool	Rename or merge; make each tool's scope distinct

Tool wrappers¶

When a user-facing action always requires multiple internal calls in sequence, wrap them in a single tool. This moves the sequencing logic out of instructions (which the model may skip) and into Python (which always executes).

For example: scheduling a restaurant event requires checking availability, holding the slot, and creating the calendar entry. These three calls must happen in order and all succeed together.

Bad (three separate tools)Good (one wrapper tool)

# Instructions say: "Call check_availability, then hold_slot, then create_event"
# Model sometimes calls create_event without holding the slot first.

def check_availability(date, time, party_size, context): ...
def hold_slot(slot_id, context): ...
def create_event(slot_id, guest_name, context): ...

def schedule_event(date: str, time: str, party_size: int, guest_name: str, context) -> dict:
    """Reserve a table and create the calendar event in one atomic operation.
    Handles availability check, slot hold, and event creation internally.
    Returns confirmation_number on success."""

    slot = check_availability_internal(date, time, party_size)
    if not slot.is_available:
        return {"agent_action": f"No availability: {slot.reason}. Offer alternatives."}

    held = hold_slot_internal(slot.slot_id)
    if not held:
        return {"agent_action": "Failed to hold the slot. Ask the guest to try again."}

    event = create_event_internal(slot.slot_id, guest_name)
    return {"confirmation_number": event.confirmation_number}

The wrapper approach also makes testing simpler: you have one tool to test instead of three, and one failure surface to handle.

Accessing session state¶

Tools access session state through context.state, not as function parameters. The platform injects context automatically — do not include it in the JSON schema.

def create_reservation(date: str, time: str, party_size: int, guest_name: str, context) -> dict:
    """Create a confirmed reservation."""

    # Read session state
    session_id = context.state.get("session_id", "")
    existing_reservation = context.state.get("reservation_id", "")

    if existing_reservation:
        return {
            "agent_action": "Guest already has a reservation. Ask if they want to modify it."
        }

    # ... proceed with creation

context is not in the JSON schema

Include context in the Python function signature but never in the inputSchema in the JSON config file. The platform provides it automatically. If you include it in the schema, the model will attempt to pass a value for it, which will fail.