handle readonly case

malhotra5 · malhotra5 · commit 4b3e8170ef3a · 2025-11-07T10:31:38.000-05:00
diff --git a/openhands-sdk/openhands/sdk/agent/agent.py b/openhands-sdk/openhands/sdk/agent/agent.py
@@ -308,8 +308,16 @@ def _requires_user_confirmation(
         return False
 
     def _extract_security_risk(
-        self, arguments: dict, tool_name: str
+        self,
+        arguments: dict,
+        tool_name: str,
+        readOnlyHint: bool,
     ) -> risk.SecurityRisk:
+        # Default risk value for action event
+        # Tool is marked as read-only so security risk can be ignored
+        if readOnlyHint:
+            return risk.SecurityRisk.UNKNOWN
+
         requires_sr = isinstance(self.security_analyzer, LLMSecurityAnalyzer)
         raw = arguments.pop("security_risk", None)
 
@@ -380,7 +388,11 @@ def _get_action_event(
 
             # Fix malformed arguments (e.g., JSON strings for list/dict fields)
             arguments = fix_malformed_tool_arguments(arguments, tool.action_type)
-            security_risk = self._extract_security_risk(arguments, tool.name)
+            security_risk = self._extract_security_risk(
+                arguments,
+                tool.name,
+                tool.annotations.readOnlyHint if tool.annotations else False,
+            )
             assert "security_risk" not in arguments, (
                 "Unexpected 'security_risk' key found in tool arguments"
             )
