Tool registry
The controlled tool surface Voss exposes to the harness agent.
The harness exposes a local tool registry. Each tool is classified as read-only or mutating so permission modes can make reliable decisions.
Each entry is a capability in the broader registry — it also declares a group, network usage, scope requirements, and audit behavior. Roles grant capabilities by group, and the full normalized schema lives in the Capabilities reference.
The command shows registered tools and whether each one mutates state.