fix: dont default to default user id when executing custom tools #1889
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…equire it to be explicit
haxzie
requested changes
Sep 8, 2025
| """Call the custom tool.""" | ||
| user_id = kwargs.pop("user_id", None) or "default" | ||
| user_id = kwargs.pop("user_id", None) | ||
| # For toolkit-backed custom tools, an explicit user_id is required to |
There was a problem hiding this comment.
Can we make it a mandatory field while calling custom tools?
This comment was marked as duplicate.
This comment was marked as duplicate.
Sorry, something went wrong.
There was a problem hiding this comment.
Review Summary
Thank you for the update! This PR modifies the behavior in CustomTool calls to require an explicit user_id when invoking toolkit-backed custom tools, instead of defaulting to 'default' if a user_id is not provided. This change improves safety by preventing unexpected account usage.
Pros:
- Eliminates the risk of unintentionally using the default account for sensitive tool executions.
- Raises clear exceptions when required parameters are missing, improving robustness.
Suggestions:
- Consider adding or updating unit tests for this path to ensure that the
ValueErroris raised in the correct scenario and that backwards compatibility is maintained where expected. - Add a note to the relevant documentation (or docstrings) about this breaking change, especially if there are scripts or clients that might rely on the previous default behavior.
I will leave inline comments for specific lines below.
This comment was marked as off-topic.
This comment was marked as off-topic.
Sorry, something went wrong.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fix: Require explicit
user_idfor toolkit-backed custom toolsSummary
Removes unsafe default-fallback behavior in custom tool execution and clarifies CrewAI integration patterns.
Changes
Security fix in
python/composio/core/models/custom_tools.py:"default"inCustomTool.__call__ValueError("user_id is required when invoking toolkit-backed custom tools")whenuser_idis missingProblem solved
"default"user whenuser_idwas omitted, potentially accessing wrong connected accountsBreaking change
user_iduser_idincomposio.tools.get(user_id=...)callsFiles changed
python/composio/core/models/custom_tools.py- Enforce explicituser_id, remove default fallbackNote
Enforces explicit user_id for toolkit-backed custom tools and raises an error if missing, removing the previous "default" fallback.
python/composio/core/models/custom_tools.py):CustomTool.__call__: remove fallback to"default"foruser_id.user_idwhentoolkitis set; raiseValueErrorif omitted.Written by Cursor Bugbot for commit 444bfb9. This will update automatically on new commits. Configure here.