The same agent can use different tools depending on the workflow. Example: IT-Security Agent uses the full security toolset for a Security Review, but a lighter set for a Full Proposal.
Tool assignments — Security Review Workflow
IT-Security Agent
Full security toolset.Security policy RAGCompliance checklistVulnerability databaseRisk scannerSOC/SIEM logs
Tool catalog
| Tool | Category | Type | Description | Input | Output | Permission | Allowed agents | Approval | Risk | Example |
|---|---|---|---|---|---|---|---|---|---|---|
| Security policy RAG | Knowledge | RAG | Internal security policies, ISO 27001, SOC2 mappings. | Question / control id | Policy excerpt + citation | Read | IT-Security Agent, Legal Agent | No | Low | Lookup MFA policy for SaaS access. |
| Compliance checklist | Governance | Document | Checklist generator for SOC2 / ISO / GDPR. | Framework name | Checklist with status | Read | IT-Security Agent | No | Low | Generate SOC2 readiness checklist. |
| Vulnerability database | Security | API | CVE / CVSS lookup. | Component / CVE id | Vulnerability detail | Read | IT-Security Agent | No | Medium | Check CVEs for nginx 1.21. |
| Risk scanner | Security | API | Scans architecture diagrams for risk. | Architecture spec | Risk findings | Read | IT-Security Agent | No | Medium | Scan proposed AWS topology. |
| SOC/SIEM logs | Security | Database | Read SIEM events for an asset. | Asset id, range | Event list | Restricted | IT-Security Agent | Yes | High | Pull last 24h alerts for prod cluster. |
| Data privacy checklist | Governance | Document | DPIA / data-residency checklist. | Data category | DPIA status | Read | IT-Security Agent, Legal Agent | No | Low | DPIA for EU customer PII. |
| Architecture risk review | Security | Sub-agent | Sub-agent reviews proposed architecture. | Architecture doc | Risk summary | Read | IT-Security Agent, Pre-Sales Agent | No | Medium | Review hybrid-cloud reference design. |
| Contract repository RAG | Knowledge | RAG | Master library of MSAs, NDAs, DPAs. | Clause / topic | Reference clause | Read | Legal Agent | No | Low | Find standard liability cap clause. |
| Clause library RAG | Knowledge | RAG | Approved clause variants. | Clause type | Variant + risk score | Read | Legal Agent | No | Low | Pull fallback indemnity wording. |
| Redline diff tool | Productivity | API | Diff two contract versions. | Doc A, Doc B | Redlined diff | Read | Legal Agent | No | Low | Diff customer redline vs MSA v4. |
| Pricing calculator | Commercial | API | Computes price, margin, discount. | Solution + costs | Quote scenarios | Read/Write | Finance Agent, Sales Agent | No | Medium | Quote 3-year SaaS deal. |
| Margin policy RAG | Commercial | RAG | Margin and discount policy. | Deal type | Policy threshold | Read | Finance Agent, MD / Leadership Agent | No | Low | Discount cap for renewals. |
| ERP | Enterprise | API | Read/write financial entries. | Entry | Booking id | Restricted | Finance Agent | Yes | High | Post invoice draft. |
| Cloud cost analyzer | Operations | API | Analyzes cloud spend & DR posture. | Account id | Cost + savings | Read | Operations Agent | No | Low | AWS spend optimization view. |
| Resource availability | Operations | Database | Engineer availability and skills. | Skill set | Availability matrix | Read | Operations Agent, HR Agent | No | Low | Check senior cloud engineers. |
| Delivery risk calculator | Operations | API | Models timeline / capacity risk. | Plan | Risk score | Read | Operations Agent | No | Medium | Score 12-week plan. |
| SLA repository RAG | Knowledge | RAG | Standard SLA library. | Service tier | SLA template | Read | Operations Agent, Legal Agent | No | Low | Find 99.9% SLA template. |
| Solution templates RAG | Knowledge | RAG | Approved solution blueprints. | Use case | Reference architecture | Read | Pre-Sales Agent, Product Agent | No | Low | Reference AI platform blueprint. |
| CRM | Enterprise | API | Customer & opportunity data. | Account id | Account 360 | Read | Sales Agent | No | Low | Pull last 18 months of activity. |
| HR policy RAG | Knowledge | RAG | Employee handbook & HR policy. | Topic | Policy excerpt | Read | HR Agent | No | Low | Onboarding policy for contractors. |
| Human approval gate | Governance | Human approval | Route to a human approver. | Decision packet | Approve / reject | Restricted | MD / Leadership Agent, Coordinator Agent | Yes | High | Final proposal sign-off. |
| Workflow tracker | Orchestration | Workflow | Tracks multi-agent task graph. | Workflow id | Status | Read/Write | Coordinator Agent | No | Low | Track RFP across 7 agents. |