Tools Reference
Zenus exposes tools to the orchestrator through a typed registry. Each tool maps to a class with discrete action methods. The orchestrator selects tools based on the validated IntentIR plan — tools never execute without a validated plan.
Privilege tiers:
- STANDARD — safe for all environments (default)
- PRIVILEGED — requires explicit
allow_privilegedin config or--allow-privilegedflag
FileOps
File system operations — read, write, move, copy, delete, search.
| Action | Description | Risk |
|---|---|---|
read_file | Read file contents | 0 |
write_file | Write or overwrite a file | 1 |
move_file | Move or rename a file | 1 |
copy_file | Copy a file | 1 |
delete_file | Delete a file (tracked, rollback-able) | 2 |
list_files | List directory contents | 0 |
search_files | Find files by name or content | 0 |
create_dir | Create directory tree | 1 |
SystemOps
Process management, disk usage, CPU/memory stats, service control.
| Action | Description | Risk |
|---|---|---|
get_cpu_usage | CPU usage by process | 0 |
get_memory_usage | Memory stats | 0 |
get_disk_usage | Disk usage for paths | 0 |
list_processes | Running processes | 0 |
kill_process | Kill a process by PID or name | 2 |
start_service | Start a systemd service | 2 |
stop_service | Stop a systemd service | 2 |
restart_service | Restart a systemd service | 2 |
get_service_status | Check service status | 0 |
GitOps
Git workflow — status, commit, branch, log, push, PR management.
| Action | Description | Risk |
|---|---|---|
git_status | Working tree status | 0 |
git_diff | Show changes | 0 |
git_log | Commit history | 0 |
git_add | Stage files | 1 |
git_commit | Create a commit | 1 |
git_push | Push to remote | 2 |
git_pull | Pull from remote | 1 |
git_branch | Create/list/delete branches | 1 |
git_checkout | Switch branches | 1 |
create_github_issue | Open a GitHub issue | 1 |
PackageOps
Package manager operations — install, remove, update (apt, dnf, pacman).
| Action | Description | Risk |
|---|---|---|
install_package | Install a package | 2 |
remove_package | Remove a package | 2 |
update_packages | Update all packages | 2 |
list_installed | List installed packages | 0 |
search_package | Search for packages | 0 |
NetworkOps
HTTP requests, file downloads, connectivity checks.
| Action | Description | Risk |
|---|---|---|
ping | Check host reachability | 0 |
curl | HTTP request (https:// and http:// only) | 1 |
wget | Download a file | 1 |
check_port | Test if a TCP port is open | 0 |
BrowserOps
Headless browser automation — screenshots, downloads, scraping.
| Action | Description | Risk |
|---|---|---|
screenshot | Take a screenshot of a URL | 0 |
scrape_text | Extract visible text from a page | 0 |
download_file | Download a resource via browser | 1 |
fill_form | Fill and submit a web form | 2 |
TextOps
Text manipulation — search, replace, transform, extract.
| Action | Description | Risk |
|---|---|---|
grep | Search text in files | 0 |
replace_in_file | Find and replace within a file | 1 |
count_lines | Count lines matching a pattern | 0 |
extract_json | Extract JSON fields | 0 |
ShellExecutor (PRIVILEGED)
Arbitrary shell commands. Excluded by default — requires allow_privileged: true.
mcp:
server:
allow_privileged: true
Or via CLI: zenus mcp-server --allow-privileged
CodeExec (PRIVILEGED)
Execute Python and Bash scripts in a restricted sandbox.
Excluded by default — requires allow_privileged: true.
WebSearch
Autonomous web search. Used internally by the orchestrator when IntentIR.search_provider == "web".
Not typically invoked directly.
Sources: Brave Search (primary) → Wikipedia → HackerNews → GitHub → Reddit → arXiv → RSS feeds.