invoke_discovered_tool
Execute a discovered tool by submitting its discoveryToken, with automatic validation of token, permissions, and risk level.
Instructions
v0.8.1: Invoke a previously discovered tool using a discoveryToken. The token must be obtained from discover_tools first. Enforces 10 security checks: token validity, toolName match, profile allowance, risk ceiling, sensitive path guard, assessment requirement, command whitelist, release confirmation, credential block, and invocation logging. Cannot call itself recursively.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| toolName | Yes | Name of the tool to invoke (must match the discoveryToken's toolName). | |
| arguments | Yes | Arguments to pass to the tool. Must match the tool's inputSchema. | |
| assessmentId | No | Required for workspace_write/release risk tools. Obtained from the assessment flow. | |
| discoveryToken | Yes | Token id from discover_tools. Single-use, expires after 10 minutes. |