feat: add skill tool type and upload functionality

Author: liuruibin

apps/application/chat_pipeline/step/chat_step/i_chat_step.py

@@ -88,6 +88,7 @@ class InstanceSerializer(serializers.Serializer):
         mcp_source = serializers.CharField(label="MCP Source", required=False, default="referencing")
         tool_ids = serializers.JSONField(label="工具ID列表", required=False, default=list)
         application_ids = serializers.JSONField(label="应用ID列表", required=False, default=list)
+        skill_tool_ids = serializers.JSONField(label="技能ID列表", required=False, default=list)
         mcp_output_enable = serializers.BooleanField(label="MCP输出是否启用", required=False, default=True)
 
         def is_valid(self, *, raise_exception=False):
@@ -115,6 +116,6 @@ def execute(self, message_list: List[BaseMessage],
                 padding_problem_text: str = None, stream: bool = True, chat_user_id=None, chat_user_type=None,
                 no_references_setting=None, model_params_setting=None, model_setting=None,
                 mcp_tool_ids=None, mcp_servers='', mcp_source="referencing",
-                tool_ids=None, application_ids=None, mcp_output_enable=True,
+                tool_ids=None, application_ids=None, skill_tool_ids=None, mcp_output_enable=True,
                 **kwargs):
         pass

apps/application/chat_pipeline/step/chat_step/impl/base_chat_step.py

@@ -178,6 +178,7 @@ def execute(self, message_list: List[BaseMessage],
                 mcp_source="referencing",
                 tool_ids=None,
                 application_ids=None,
+                skill_tool_ids=None,
                 mcp_output_enable=True,
                 **kwargs):
         chat_model = get_model_instance_by_model_workspace_id(model_id, workspace_id,
@@ -190,6 +191,7 @@ def execute(self, message_list: List[BaseMessage],
                                        model_setting,
                                        mcp_tool_ids, mcp_servers, mcp_source, tool_ids,
                                        application_ids,
+                                       skill_tool_ids,
                                        mcp_output_enable)
         else:
             return self.execute_block(message_list, chat_id, problem_text, post_response_handler, chat_model,
@@ -198,6 +200,7 @@ def execute(self, message_list: List[BaseMessage],
                                       model_setting,
                                       mcp_tool_ids, mcp_servers, mcp_source, tool_ids,
                                       application_ids,
+                                      skill_tool_ids,
                                       mcp_output_enable)
 
     def get_details(self, manage, **kwargs):
@@ -225,7 +228,7 @@ def reset_message_list(message_list: List[BaseMessage], answer_text):
         return result
 
     def _handle_mcp_request(self, mcp_source, mcp_servers, mcp_tool_ids, tool_ids,
-                            application_ids, mcp_output_enable, chat_model, message_list, agent_id):
+                            application_ids, skill_tool_ids, mcp_output_enable, chat_model, message_list, agent_id):
 
         mcp_servers_config = {}
 
@@ -287,6 +290,27 @@ def _handle_mcp_request(self, mcp_source, mcp_servers, mcp_tool_ids, tool_ids,
                 app_config = executor.get_app_mcp_config(api_key)
                 mcp_servers_config[app.name] = app_config
 
+        if skill_tool_ids and len(skill_tool_ids) > 0:
+            self.context['skill_tool_ids'] = skill_tool_ids
+            skill_file_items = []
+
+            for tool_id in skill_tool_ids:
+                tool = QuerySet(Tool).filter(id=tool_id, is_active=True).first()
+                if tool is None or tool.is_active is False:
+                    continue
+                if tool.init_params is not None:
+                    params = json.loads(rsa_long_decrypt(tool.init_params))
+                    tool_init_params = json.loads(rsa_long_decrypt(tool.init_params))
+                else:
+                    params = {}
+
+                skill_file_items.append({
+                    'tool_id': str(tool.id),
+                    'file_id': tool.code,
+                    'params': params
+                })
+            mcp_servers_config['skills'] = skill_file_items
+
         if len(mcp_servers_config) > 0:
             source_id = agent_id
             source_type = 'APPLICATION'
@@ -305,6 +329,7 @@ def get_stream_result(self, message_list: List[BaseMessage],
                           mcp_source="referencing",
                           tool_ids=None,
                           application_ids=None,
+                          skill_tool_ids=None,
                           mcp_output_enable=True,
                           agent_id=None
                           ):
@@ -326,7 +351,7 @@ def get_stream_result(self, message_list: List[BaseMessage],
             # 处理 MCP 请求
             mcp_result = self._handle_mcp_request(
                 mcp_source, mcp_servers, mcp_tool_ids, tool_ids,
-                application_ids, mcp_output_enable, chat_model,
+                application_ids, skill_tool_ids, mcp_output_enable, chat_model,
                 message_list, agent_id
             )
             if mcp_result:
@@ -349,11 +374,12 @@ def execute_stream(self, message_list: List[BaseMessage],
                        mcp_source="referencing",
                        tool_ids=None,
                        application_ids=None,
+                       skill_tool_ids=None,
                        mcp_output_enable=True):
         chat_result, is_ai_chat = self.get_stream_result(message_list, chat_model, paragraph_list,
                                                          no_references_setting, problem_text, mcp_tool_ids,
                                                          mcp_servers, mcp_source, tool_ids,
-                                                         application_ids,
+                                                         application_ids, skill_tool_ids,
                                                          mcp_output_enable, manage.context.get('application_id'))
         chat_record_id = self.context.get('step_args', {}).get('chat_record_id') if self.context.get('step_args',
                                                                                                      {}).get(
@@ -378,6 +404,7 @@ def get_block_result(self, message_list: List[BaseMessage],
                          mcp_source="referencing",
                          tool_ids=None,
                          application_ids=None,
+                         skill_tool_ids=None,
                          mcp_output_enable=True,
                          application_id=None
                          ):
@@ -398,7 +425,7 @@ def get_block_result(self, message_list: List[BaseMessage],
             # 处理 MCP 请求
             mcp_result = self._handle_mcp_request(
                 mcp_source, mcp_servers, mcp_tool_ids, tool_ids,
-                application_ids, mcp_output_enable,
+                application_ids, skill_tool_ids, mcp_output_enable,
                 chat_model, message_list, application_id
             )
             if mcp_result:
@@ -420,6 +447,7 @@ def execute_block(self, message_list: List[BaseMessage],
                       mcp_source="referencing",
                       tool_ids=None,
                       application_ids=None,
+                      skill_tool_ids=None,
                       mcp_output_enable=True):
         reasoning_content_enable = model_setting.get('reasoning_content_enable', False)
         reasoning_content_start = model_setting.get('reasoning_content_start', '<think>')
@@ -432,7 +460,7 @@ def execute_block(self, message_list: List[BaseMessage],
             chat_result, is_ai_chat = self.get_block_result(message_list, chat_model, paragraph_list,
                                                             no_references_setting, problem_text,
                                                             mcp_tool_ids, mcp_servers, mcp_source,
-                                                            tool_ids, application_ids,
+                                                            tool_ids, application_ids, skill_tool_ids,
                                                             mcp_output_enable, manage.context.get('application_id'))
             if is_ai_chat:
                 request_token = chat_model.get_num_tokens_from_messages(message_list)

apps/application/flow/backend/__init__.py

@@ -0,0 +1,29 @@
+import getpass
+
+from deepagents.backends import LocalShellBackend
+from deepagents.backends.protocol import ExecuteResponse
+
+from maxkb.const import CONFIG
+
+_enable_sandbox = bool(CONFIG.get('SANDBOX', 0))
+_run_user = 'sandbox' if _enable_sandbox else getpass.getuser()
+
+
+class SandboxShellBackend(LocalShellBackend):
+    def __init__(self, root_dir: str, **kwargs):
+        super().__init__(root_dir=root_dir, **kwargs)
+
+    def execute(
+            self,
+            command: str,
+            *,
+            timeout: int | None = None,
+    ) -> ExecuteResponse:
+        if _enable_sandbox:
+            # 用 runuser 在子进程里切换用户，父进程凭据保持不变，
+            # 避免父进程 ruid/euid 不一致导致 execve 报 Permission denied
+            command = f"runuser -u {_run_user} -- env -i LD_PRELOAD=/opt/maxkb-app/sandbox/lib/sandbox.so PATH=${{PATH}} {command}"
+            # command = f"runuser -u {_run_user} -- env -i PATH=${{PATH}} {command}"
+
+        # print(f"Executing command in sandbox: {command}")
+        return super().execute(command=command, timeout=timeout)

apps/application/flow/backend/sandbox_shell.py

@@ -42,6 +42,8 @@ class ChatNodeSerializer(serializers.Serializer):
                                      label=_("Tool IDs"), )
     application_ids = serializers.ListField(child=serializers.UUIDField(), required=False, allow_empty=True,
                                      label=_("App IDs"), )
+    skill_tool_ids = serializers.ListField(child=serializers.UUIDField(), required=False, allow_empty=True,
+                                     label=_("Skill IDs"), )
     mcp_output_enable = serializers.BooleanField(required=False, default=True, label=_("Whether to enable MCP output"))
 
 
@@ -72,6 +74,7 @@ def execute(self, model_id, system, prompt, dialogue_number, history_chat_record
                 mcp_source=None,
                 tool_ids=None,
                 application_ids=None,
+                skill_tool_ids=None,
                 mcp_output_enable=True,
                 **kwargs) -> NodeResult:
         pass

apps/application/flow/step_node/ai_chat_step_node/i_chat_node.py

@@ -159,6 +159,7 @@ def execute(self, model_id, system, prompt, dialogue_number, history_chat_record
                 mcp_source=None,
                 tool_ids=None,
                 application_ids=None,
+                skill_tool_ids=None,
                 mcp_output_enable=True,
                 **kwargs) -> NodeResult:
         if dialogue_type is None:
@@ -187,7 +188,7 @@ def execute(self, model_id, system, prompt, dialogue_number, history_chat_record
         # 处理 MCP 请求
         mcp_result = self._handle_mcp_request(
             mcp_source, mcp_servers, mcp_tool_id, mcp_tool_ids, tool_ids,
-            application_ids, mcp_output_enable,
+            application_ids, skill_tool_ids, mcp_output_enable,
             chat_model, message_list, history_message, question
         )
         if mcp_result:
@@ -207,7 +208,7 @@ def execute(self, model_id, system, prompt, dialogue_number, history_chat_record
                               _write_context=write_context)
 
     def _handle_mcp_request(self, mcp_source, mcp_servers, mcp_tool_id, mcp_tool_ids, tool_ids,
-                            application_ids,
+                            application_ids, skill_tool_ids,
                             mcp_output_enable, chat_model, message_list, history_message, question):
 
         mcp_servers_config = {}
@@ -273,6 +274,27 @@ def _handle_mcp_request(self, mcp_source, mcp_servers, mcp_tool_id, mcp_tool_ids
                 app_config = executor.get_app_mcp_config(api_key)
                 mcp_servers_config[app.name] = app_config
 
+        if skill_tool_ids and len(skill_tool_ids) > 0:
+            self.context['skill_tool_ids'] = skill_tool_ids
+            skill_file_items = []
+
+            for tool_id in skill_tool_ids:
+                tool = QuerySet(Tool).filter(id=tool_id, is_active=True).first()
+                if tool is None or tool.is_active is False:
+                    continue
+                if tool.init_params is not None:
+                    params = json.loads(rsa_long_decrypt(tool.init_params))
+                    tool_init_params = json.loads(rsa_long_decrypt(tool.init_params))
+                else:
+                    params = {}
+
+                skill_file_items.append({
+                    'tool_id': str(tool.id),
+                    'file_id': tool.code,
+                    'params': params
+                })
+            mcp_servers_config['skills'] = skill_file_items
+
         if len(mcp_servers_config) > 0:
             # 安全获取 application
             application_id = None

apps/application/flow/step_node/ai_chat_step_node/impl/base_chat_node.py

@@ -7,24 +7,32 @@
     @desc:
 """
 import asyncio
+import io
 import json
+import os
 import queue
 import re
+import shutil
+import tempfile
 import threading
+import zipfile
 from functools import reduce
 from typing import Iterator
 
 import uuid_utils.compat as uuid
 from asgiref.sync import sync_to_async
+from deepagents import create_deep_agent
 from django.db.models import QuerySet
 from django.http import StreamingHttpResponse
 from langchain_core.messages import BaseMessageChunk, BaseMessage, ToolMessage, AIMessageChunk
 from langchain_mcp_adapters.client import MultiServerMCPClient
-from langgraph.prebuilt import create_react_agent
+from langgraph.checkpoint.memory import MemorySaver
 
+from application.flow.backend.sandbox_shell import SandboxShellBackend
 from application.flow.i_step_node import WorkFlowPostHandler
 from common.result import result
 from common.utils.logger import maxkb_logger
+from knowledge.models import File
 from knowledge.models.knowledge_action import State
 from maxkb.const import CONFIG
 from tools.models import ToolRecord, Tool
@@ -321,15 +329,59 @@ def _extract_tool_id(raw_id):
     return tool_id or raw_id
 
 
+async def _initialize_skills(mcp_servers, temp_dir):
+    skills_dir = os.path.join(temp_dir, 'skills')
+    mcp_config = json.loads(mcp_servers)
+    if "skills" in mcp_config:
+        skill_file_items = mcp_config.pop('skills')
+        for skill_file in skill_file_items:
+            # 使用 sync_to_async 包装 ORM 查询
+            file = await sync_to_async(lambda: QuerySet(File).filter(id=skill_file['file_id']).first())()
+            if not file:
+                continue
+            # get_bytes 可能也涉及 IO，也用 sync_to_async 包装
+            file_bytes = await sync_to_async(file.get_bytes)()
+            with zipfile.ZipFile(io.BytesIO(file_bytes), 'r') as zip_ref:
+                members = [
+                    m for m in zip_ref.namelist()
+                    if not m.startswith('__MACOSX/') and '__MACOSX' not in m
+                ]
+                for member in members:
+                    if ".." in member or member.startswith("/"):
+                        raise ValueError(f"非法路径: {member}")
+                zip_ref.extractall(skills_dir, members=members)
+
+        os.system("chmod -R g+rx " + temp_dir)  # 确保技能目录可访问
+
+    client = MultiServerMCPClient(mcp_config)
+
+    return client, skills_dir
+
+
 async def _yield_mcp_response(chat_model, message_list, mcp_servers, mcp_output_enable=True, tool_init_params={},
-                              source_id=None, source_type=None):
+                              source_id=None, source_type=None, temp_dir=None):
     try:
-        client = MultiServerMCPClient(json.loads(mcp_servers))
+        checkpointer = MemorySaver()
+        client, skills_dir = await _initialize_skills(mcp_servers, temp_dir)
         tools = await client.get_tools()
-        agent = create_react_agent(chat_model, tools)
+        agent = create_deep_agent(
+            model=chat_model,
+            backend=SandboxShellBackend(root_dir=temp_dir, virtual_mode=False),
+            skills=[skills_dir],
+            tools=tools,
+            interrupt_on={
+                "write_file": False,  # Default: approve, edit, reject
+                "read_file": False,  # No interrupts needed
+                "edit_file": False  # Default: approve, edit, reject
+            },
+            checkpointer=checkpointer,  # Required!
+        )
         recursion_limit = int(CONFIG.get("LANGCHAIN_GRAPH_RECURSION_LIMIT", '25'))
-        response = agent.astream({"messages": message_list}, config={"recursion_limit": recursion_limit},
-                                 stream_mode='messages')
+        response = agent.astream(
+            {"messages": message_list},
+            config={"recursion_limit": recursion_limit, "configurable": {"thread_id": str(uuid.uuid7())}},
+            stream_mode='messages'
+        )
 
         # 用于存储工具调用信息
         tool_calls_info = {}  # tool_id -> {'name': ..., 'input': ...}
@@ -466,11 +518,17 @@ def mcp_response_generator(chat_model, message_list, mcp_servers, mcp_output_ena
     """使用全局事件循环，不创建新实例"""
     result_queue = queue.Queue()
     loop = get_global_loop()  # 使用共享循环
+    # 创建临时文件夹
+    temp_dir = tempfile.mkdtemp(dir='/tmp')
+    skills_dir = os.path.join(temp_dir, 'skills')
+    os.makedirs(skills_dir, exist_ok=True)
+
+    print(f"Initializing skills in temporary directory: {skills_dir}")
 
     async def _run():
         try:
             async_gen = _yield_mcp_response(chat_model, message_list, mcp_servers, mcp_output_enable, tool_init_params,
-                                            source_id, source_type)
+                                            source_id, source_type, temp_dir)
             async for chunk in async_gen:
                 result_queue.put(('data', chunk))
         except Exception as e:
@@ -485,8 +543,12 @@ async def _run():
     while True:
         msg_type, data = result_queue.get()
         if msg_type == 'done':
+            # 清理临时文件夹
+            shutil.rmtree(temp_dir, ignore_errors=True)
             break
         if msg_type == 'error':
+            # 清理临时文件夹
+            shutil.rmtree(temp_dir, ignore_errors=True)
             raise data
         yield data
 

apps/application/flow/tools.py

@@ -0,0 +1,23 @@
+# Generated by Django 5.2.11 on 2026-02-27 07:03
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('application', '0010_chatsharelink'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='application',
+            name='skill_tool_ids',
+            field=models.JSONField(default=list, verbose_name='技能ID列表'),
+        ),
+        migrations.AddField(
+            model_name='applicationversion',
+            name='skill_tool_ids',
+            field=models.JSONField(default=list, verbose_name='技能ID列表'),
+        ),
+    ]