Chat SDK 纳入 AI SDK Tools：Agent 功能应先设计权限边界

这次整合降低了把 agent tool 接入聊天产品的成本。但执行变得更容易，也意味着权限、审批、审计日志和回滚路径必须更早设计。

开发者社区的信号很一致：哪些 tool 可以开放，什么时候必须用户确认，失败后如何解释和恢复。这些问题应写进产品策略。

What changed

Vercel announced on May 20, 2026 that Chat SDK now includes an AI SDK toolset. The important pieces are chat/ai and createChatTools(chat), which make chat state and agent actions easier to connect.

Practical takeaway

• Separate read-only tools from write tools.
• Require approval for actions that change external systems.
• Log inputs, actor, approver, result, and failure reason.
• Design rollback or human escalation before launch.
• Keep hard restrictions in server policy, not only prompts.

Risk

The risk is not tool calling itself. The risk is giving a model product authority without a visible control surface. Good agent UX automates low-risk work and slows down only where trust requires it.

Sources

• Vercel changelog: Chat SDK now includes AI SDK tools
• AI SDK documentation: Tools