86: Add default limit for tools completions

[rhys117]

Resolves #86

Purpose

Introduces a configurable limit on tool completions to prevent infinite loops and excessive API usage. This feature adds protection against scenarios where AI responses might trigger continuous tool calls.

Implementation Details

• Added max_tool_llm_calls configuration option (default: 25 calls)
• Per-chat override capability through existing contexts
• Implemented ToolCallLimitReachedError when limit is exceeded
• Added tracking of tool llm calls via number_of_tool_completions counter
• Can be overridden for unlimited tool completions with nil

Usage Example

# Global configuration
RubyLLM.configure do |config|
  config.max_tool_llm_calls = 10  # Set default limit
end

Testing

• Added RSpec test cases for OpenAI + Claude + Openrouter
• Verified both global configuration and per-chat override functionality
• Confirmed error raised when limit is reached

Documentation

• Added section in tools.md guide explaining the feature
• Included examples for both global and per-chat configuration

TODO

• Add VCR cassettes for testing with additional providers (I do not have API keys for these providers)

[rhys117]

It might be worth discussing if this should be handled via the chat instead of raising an unhandled error.

[crmne]

changing the whole interface to chat is a bit heavy handed. this should be a simple config change.

[crmne]

changing the whole interface to chat is a bit heavy handed. this should be a simple config change.

[rhys117]

Thanks for the feedback @crmne. I've adjusted things so the chat interface isn't modified, and instead, a single instance can use an override from the config using with_max_tool_completions.

Please let me know what you think?

[bborn]

@crmne would love an update here ... I'm getting looping tool calls as well, and would like to avoid implementing my own solution.

[crmne]

Thank you for your work!

Left you some comments + I'm not a big fan of the naming. max_tool_calls is less wordy. Same thing for all the instances of the name, like the error name and the documentation.

[crmne]

I think we can come up with a fake title instead of adding a dependency for these three lines of code.

[crmne]

We now have configuration Contexts so we don't need the per-chat max tool completions method.

[crmne]

No need to have it as attr_reader.

[crmne]

We now have configuration Contexts so we don't need the per-chat max tool completions method.

[rhys117]

👌 Much nicer for overridding

[crmne]

Shouldn't this be at the top of the method? Say max_tool_completions is 0, that would mean that we should process 0 tool completions, right?

[rhys117]

Thanks for the review @crmne, you're right, this should have been before the max_tool_completions_reached? check. I've amended this now along with your other feedback.

I haven't manually tested the new changes yet, but the test cases are passing for the providers I have keys for.

Please let me know what you think.

[rhys117]

Wrapped this in a conditional to ensure that the config was present on the context. This more closely aligns with the assignment in the initialiser (@config = context&.config || RubyLLM.config)|

If I've made a mistake here, please let me know.

[viktorianer]

Isn't 25 a bit too high? I'm thinking of a case where you'd need 25 attempts before succeeding. Wouldn't 5 be sufficient?

[rhys117]

Personally, I'd err on the side of caution and allow a higher limit, seeing as these changes will affect existing implementations if not released with a major version bump.

That said, I'd be overriding this with something more conservative myself though.

[viktorianer]

I think we can—and should—limit it to what’s appropriate and what we consider a sensible default.

In my case, I even use a max limit of 3.

I believe that in most scenarios, the limit will lean toward the lower side. But I could be wrong.

If we provide an option to override with a higher limit when needed (e.g., via ask), then a low default should be sufficient.

[rhys117]

If these changes were only counting consecutive errors, I'd agree with you here.

However, this implementation counts all LLM provider calls regardless of success or error. I chose this approach to prevent runaway loops where tools return valid responses but trigger unintended cascading calls, like a search tool that keeps finding "relevant" results that spawn more searches.

[tpaulshippy]

Is this maximum scoped to a particular tool/call or global for all tool calls? We have situations where we design the prompt to call a tool 5-10 times so we can get a bunch of different things done in one request. Would this limit apply in those situations? Is there any way to get the maximum to only apply after it starts looping?

[rhys117]

Is this maximum scoped to a particular tool/call or global for all tool calls? We have situations where we design the prompt to call a tool 5-10 times so we can get a bunch of different things done in one request. Would this limit apply in those situations? Is there any way to get the maximum to only apply after it starts looping?

I've designed it to limit the number of turns with the LLM provider per '.ask' call (turns are referred to as 'completions' throughout this merge request and the repository). I've included some documentation as part of these changes -
https://github.com/crmne/ruby_llm/blob/397438e096358bbca8ad28c3a3fb9aa31b4ec5e7/docs/guides/tools.md#maximum-tool-llm-requests

Please let me know if you think the docs could be clearer. It's always good to see it from someone else's perspective!

[tpaulshippy]

Ok makes sense. Would be a cool feature to just limit the endless looping though.

[rhys117]

Ok makes sense. Would be a cool feature to just limit the endless looping though.

Out of curiosity, for my understanding, do you have ruby code that loops rather than back and forth requests to the LLM provider?

[tpaulshippy]

Ok makes sense. Would be a cool feature to just limit the endless looping though.

Out of curiosity, for my understanding, do you have ruby code that loops rather than back and forth requests to the LLM provider?

I'm talking about situations where the tool call fails but not in a fatal way, like a validation error. In these cases, we make the execute method return a hash with an error key. The library sends the validation error back to the LLM and it just keeps doing it over and over.

[tpaulshippy]

See https://rubyllm.com/guides/error-handling#handling-errors-within-tools

[rhys117]

See https://rubyllm.com/guides/error-handling#handling-errors-within-tools

Got it, this should work to prevent those loops if they're done in a single 'ask' call.

Are you suggesting there be an option to only count the tools that 'error' when counting the number of turns?

[tpaulshippy]

See https://rubyllm.com/guides/error-handling#handling-errors-within-tools

Got it, this should work to prevent those loops if they're done in a single 'ask' call.

Are you suggesting there be an option to only count the tools that 'error' when counting the number of turns?

Yeah that might do it, especially if it were scoped by tool. So tool A could have a max error count of X and tool B could have a max error count of Y.