Skill Manifest

The manifest.json format for Sophon skills.

Overview

Every skill requires a manifest.json that declares its tools, permissions, and dependencies.

Schema

{
  "name": "my-skill",
  "version": "1.0.0",
  "description": "What this skill does",
  "category": "utility",
  "tools": [
    {
      "name": "my_tool",
      "description": "What this tool does",
      "riskLevel": "low",
      "parameters": {
        "query": { "type": "string", "required": true }
      }
    }
  ],
  "credentials": [
    {
      "service": "github",
      "scopes": ["repo"],
      "required": true,
      "access": "proxy"
    }
  ],
  "runtime": "python",
  "entrypoint": "main.py",
  "network": {
    "allowed": ["api.github.com"]
  }
}

Risk Levels

none — Read-only, auto-approved
low — Reversible writes
medium — Potentially impactful (requires review by default)
high — Irreversible (always requires review)
critical — Destructive (requires review + confirmation)

Skill Manifest

Overview

Schema

Risk Levels

On this page