Skip to main content

Overview

Parsaa’s agent works by calling tools — to read code, edit files, run builds, and more. You control this on two independent axes:
  • Permissions — whether a category of action runs freely, prompts you, or is blocked.
  • Enabled tools — which individual tools are available at all.

Capabilities

Every tool belongs to a capability bucket. Permissions are set per capability, not per tool.
CapabilityWhat it covers
Read & searchRead files, grep, search, symbols, git status/diff
Edit codeWrite changes to files (create_file, edit_file, rewrite_file, delete_file)
GitGit commits
Run commandsRun shell commands (execute_command)
Build & run appCompile, run, test, and control simulators/devices
MCP toolsTools from connected MCP servers

Permission Modes

Each capability is set to one of three modes:
ModeBehavior
AllowRuns immediately, no prompt
AskPrompts you before running
DenyNever runs — the tool isn’t even offered to the model
Defaults are safe: Read & search is Allow (read-only runs freely), and every mutating capability (edit, git, run commands, build) defaults to Ask.

The approval prompt

When a capability set to Ask is invoked, Parsaa pauses and shows an inline approval card with a preview of the exact action (e.g. the shell command or file path). You choose:
ChoiceEffect
DenyReject this call
Allow for sessionAllow this capability for the rest of the chat session
Allow onceAllow just this single call
“Allow for session” upgrades Ask → Allow for that capability until the session ends.

Enabling & Disabling Tools

Separately from permissions, you can turn individual tools on or off in Settings → Extensions → Tools:
  • Built-in tab — toggle each built-in tool; a ? shows its description. New tools appear automatically.
  • MCP tab — tools grouped by server (see MCP Tools).
  • Bulk Enable All / Disable All, plus search.
A disabled tool is never offered to the agent, regardless of its capability’s permission mode.

Built-in Tool Reference

CapabilityTools
Read & searchfile_tree, read_files, grep_project, globs, search_file_names, get_symbol_info, semantic_search, git_status, git_diff, list_schemes, list_simulators, list_devices, show_build_settings, get_app_bundle_id
Edit codecreate_file, edit_file, rewrite_file, delete_file
Gitgit_commit
Run commandsexecute_command
Build & run appcompile_app, run_app, test_app, boot_simulator, install_app, launch_app, stop_app
MCP toolsany mcp_* tool from a connected server
Sub-agents get their own tool allowlist and their own per-capability permission matrix, so you can make a sub-agent stricter than the main agent. See Sub-agents.