Lookups vs actions
Lookups and actions behave differently when you connect an integration:| Tool type | Behavior |
|---|---|
| Lookups | Automatically available from connected integrations. Can be authorized or unauthorized. |
| Actions | Only available when explicitly configured in Action Hub. Cannot be unauthorized. |
Authorized vs unauthorized lookups
When you connect an integration (MCP server, Composio, etc.), all its lookup tools become available to the AI Agent:| Type | Description |
|---|---|
| Authorized | Added to Knowledge Hub. No approval required. |
| Unauthorized | Available but not added to Knowledge Hub. Require Human Agent approval for all subsequent actions and messages. |
Why unauthorized lookups exist
Many actions need supporting data to work. For example, an MCP action “Create support ticket” might require a project ID. The AI Agent can fetch that ID using a lookup – but if you haven’t explicitly added that lookup to Knowledge Hub, it’s unauthorized. Rather than block the AI or require you to manually configure every dependency, unauthorized lookups let the AI gather what it needs. The trade-off: a Human Agent must approve before anything acts on that data.How approval works
Example: You configure an MCP action called “Create support ticket” that requires a project ID.- Customer asks to log an issue
- AI Agent calls
get_projectsto find the project ID – this lookup isn’t in Knowledge Hub, so it’s unauthorized - The lookup returns the project ID
- AI Agent prepares to create the ticket
- Human Agent sees: “Action approval required: We need your approval since we had to perform additional lookups to get information for this action.”
- Human Agent clicks Yes to approve or Takeover to handle manually
The lookup completes – the AI gets the data it needs. Approval is required
before the AI acts on that data or sends messages to the customer. This lets
the AI work while you maintain oversight.
Add a lookup to Knowledge Hub
Adding a lookup authorizes it – the AI Agent can use it without triggering approval workflows.Open Knowledge Hub
Go to Knowledge Hub and click Add source.
Choose integration
Select the integration containing your lookup (for example, Linear or
Salesforce).
When to authorize lookups
Authorize a lookup when:- It retrieves non-sensitive data (project names, status lists)
- You want fully autonomous AI operation
- The lookup supports frequently used actions
- It retrieves sensitive customer data
- You want Human Agents to review each usage
- You’re still evaluating the integration
Configuration
| Field | Description |
|---|---|
| Lookup | The lookup tool from the connected integration (for example, get_customer_details). |
| Action description | What the lookup does – helps the AI Agent decide when to use it. |
| Access level | Controls whether data can be shared with customers or used only internally. See Access levels. |
| Secure inputs | Protected input fields from trusted sources. See Security & Verification. |
See also
- Access levels – control data sharing and visibility
- AI actions – configure actions that modify data
- MCP – connect custom MCP servers
- Security & Verification – verified parameters and guardrails