Add OSuite tool plugin#2709
Open
jw-ond wants to merge 1 commit into
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Plugin Submission
Plugin information
Submission type
What changed
Adds the OSuite tool plugin for Dify workflows and agents. The plugin lets a Dify workflow create an OSuite governed action checkpoint before consequential work, check approval state, record the final outcome, and read a runtime exposure summary.
Included tools:
review_planned_workcheck_if_approvedrecord_final_outcomesummarize_runtime_exposureRisk level
The plugin calls a fixed, user-configured OSuite HTTPS endpoint and sends user-provided workflow/action context to OSuite for governance review and audit recording. It does not execute code, run shell commands, query databases, browse the web, proxy arbitrary URLs, or operate on local files.
Required checks
.envfiles,.gitdirectories, virtual environments, caches, logs, or IDE files.PRIVACY.mdor a hosted privacy policy, andmanifest.yamlreferences it.Security and privacy notes
The plugin requires an OSuite API key and OSuite Studio base URL. It transmits the action goal, proposed action, systems touched, risk estimate, optional decision context, optional compact tool input summary, and final outcome fields to the configured OSuite workspace. API keys are used only in the
x-api-keyrequest header and are not returned in tool outputs.Sensitive capabilities: sends user-provided workflow/action context to an external service configured by the user and writes governance/audit records in that service. No command execution, code execution, SQL, SSH/SFTP, filesystem access, browser automation, arbitrary URL fetching, proxying, crawling, or bundled executables.
Local validation
Ran the following local checks:
Results:
.env,.git, venv, caches, pyc,.DS_Store: passedplugin version not found, soondco/osuite/0.1.0appears availableLimitation: local machine has Python 3.11, while the package declares Python 3.12 and
dify_plugin>=0.9.0, matching the repository's CI runtime. I also ran an import smoke test withdify_plugin==0.7.4on Python 3.11 to catch basic import/class issues.Reviewer notes
This is a governance checkpoint plugin for Dify. Dify owns workflow execution; OSuite records the proposed action, policy decision, approval state, outcome, and audit trail.