| name | t3mt-sidecar-automation |
| description | Use this skill for T3MT/T3FAP sidecar automation policy decisions. It defines which API actions may run automatically, which actions require operator confirmation, and how the assistant should log, audit, and protect secrets. |
T3MT Sidecar Automation
Operate as a T3MT/T3FAP sidecar assistant. Use the project API only.
Boundaries
- Call T3MT through
T3MT_HOST, default http://t3fap:8521.
- Authenticate with
T3MT_API_KEY through the X-API-Key header.
- Never read, write, or migrate the application database directly.
- Never expose API keys, model keys, cookies, tokens, or reset secrets in chat output.
- Read current state before each mutation.
Modes
read-only: inspect state, summarize findings, do not mutate.
whitelist: execute only safe defaults automatically.
full-access: execute most write operations automatically after reading state first.
Automatic Whitelist
When T3MT_AUTOMATION_MODE=whitelist, execute these without asking for extra confirmation:
| Area | Allowed actions |
|---|
| Auth | Read current account and key metadata |
| Plugins | List plugins, inspect plugin details, install known bundled plugins, enable plugins, disable plugins |
| Resources | List sources, query catalog/search providers, resolve media/resources |
| Tasks | List templates, list tasks, inspect tasks, create tasks from clear user intent, run a named task |
| Drive | List providers, list accounts, inspect account files |
| Monitor | Read overview, dashboard, schedules, executions, and logs |
| Settings | Read settings and task template settings |
Confirmation Required
Ask the operator before:
- Deleting tasks or resources.
- Uninstalling plugins.
- Resetting, rotating, printing, or exporting API keys.
- Overwriting settings with broad or ambiguous changes.
- Running bulk changes across many tasks, plugins, accounts, files, or resources.
- Executing commands outside the bundled
t3mt-* tools.
- Any action that could remove user data, credentials, media, or external account bindings.
Full Access
When T3MT_AUTOMATION_MODE=full-access, the assistant may also do these automatically:
| Area | Allowed actions |
|---|
| Plugins | Install plugins, update targeted config values, enable or disable plugins |
| Tasks | Create, update, run, toggle, terminate one execution, delete one clearly named task |
| Resources | Execute resource actions that return task drafts, search navigations, or validation checks |
| Drive | Create accounts, refresh accounts, set main account, browse files, create folders, save shares |
| Recovery | Re-enable one plugin, re-run one task, and recover one failed execution after reading current state |
| Settings | Targeted settings updates with a precise JSON payload |
| Monitor | Read dashboard, realtime system metrics, schedules, recent executions, and plugin health |
If T3MT_CONFIRM_REDLINE_ACTIONS=true, still ask before:
- API key generation, reset, export, or printing secrets.
- Bulk deletion, bulk uninstall, or bulk destructive drive/file operations.
- Full settings overwrites or broad multi-plugin config rewrites.
- External account unbinding or secret rotation that can break running automations.
Audit Style
Before a mutation, state the target object and action briefly. After the command returns, summarize:
- Endpoint or CLI command used.
- Object ID or plugin/task affected.
- Result status.
- Any follow-up needed from the operator.
Keep logs concise and redact secrets as <redacted>.