From abc77957442bf5cb03b4d1ccc72f74ca798a9e19 Mon Sep 17 00:00:00 2001 From: Andrey Avtomonov Date: Fri, 15 May 2026 17:00:23 +0200 Subject: [PATCH] docs: clarify claude-code host discovery metadata --- docs-site/content/docs/guides/building-context.mdx | 5 +++-- docs-site/content/docs/guides/llm-configuration.mdx | 7 +++++-- 2 files changed, 8 insertions(+), 4 deletions(-) diff --git a/docs-site/content/docs/guides/building-context.mdx b/docs-site/content/docs/guides/building-context.mdx index 1bbfc8ec..d3af6f86 100644 --- a/docs-site/content/docs/guides/building-context.mdx +++ b/docs-site/content/docs/guides/building-context.mdx @@ -59,8 +59,9 @@ Deep ingest needs LLM and embedding readiness. If those providers are not configured, run `ktx setup` or use `--fast`. When you use `claude-code`, KTX still controls the tool surface for ingest and -memory capture. Claude Code built-in tools, discovered MCP servers, hooks, -skills, plugins, agents, and slash commands are not exposed to KTX agent loops. +memory capture. Claude Code built-in tools, discovered MCP servers, plugins, +skills, agents, and slash commands are not invokable by KTX agent loops unless +they are exact KTX MCP tools for the current run. ## Query history diff --git a/docs-site/content/docs/guides/llm-configuration.mdx b/docs-site/content/docs/guides/llm-configuration.mdx index 82eb756a..5b7a4a72 100644 --- a/docs-site/content/docs/guides/llm-configuration.mdx +++ b/docs-site/content/docs/guides/llm-configuration.mdx @@ -37,8 +37,11 @@ llm: ``` `claude-code` keeps KTX tool boundaries intact. KTX exposes only the MCP tools -needed for the current KTX agent loop and disables Claude Code built-in tools, -filesystem settings, skills, plugins, agents, hooks, and slash commands. +needed for the current KTX agent loop, disables Claude Code built-in tools, +keeps plugins empty, and denies every non-KTX tool request through +`canUseTool`. The Claude Agent SDK may still report host-discovered slash +commands, skills, and subagent names in init metadata; that metadata is not an +execution grant for KTX agent loops. ## Prompt caching