When to Use File-Based vs Tool-Based Skills in AI Agent Platforms

Mar 25, 2026

Cowrie

Dev @ Bswen

The Architectural Choice

When I design AI agent platforms, one decision shows up early: how should skills be implemented? Should they be files the agent reads, or tools the agent calls?

This choice affects who can write skills, how skills compose, and how the platform scales. After building with both approaches, I found the decision comes down to a few concrete factors.

Two Approaches, Different Tradeoffs

File-Based Skills (OpenClaw Style)

File-based skills live as markdown files in a directory. The agent reads them as context and follows their instructions.

skills/code-review/SKILL.md

# Code Review Skill

You are a code reviewer. When activated:

1. Read the code file provided
2. Check for:
   - Logic errors
   - Security vulnerabilities
   - Performance issues
3. Provide a structured review with severity ratings

Output format:
- CRITICAL: Issues that break functionality
- HIGH: Issues that may cause problems
- MEDIUM: Style and best practice suggestions

The agent sees this content in its context window and acts accordingly. No special infrastructure required.

Tool-Based Skills (Claude Code Style)

Tool-based skills are functions the agent calls through a tool interface.

skills/code-review/index.ts

import { Tool } from '@anthropic-ai/sdk';

export const codeReviewTool: Tool = {
  name: 'code_review',
  description: 'Review code for issues and improvements',
  inputSchema: {
    type: 'object',
    properties: {
      filePath: { type: 'string', description: 'Path to code file' },
      focusAreas: {
        type: 'array',
        items: { type: 'string' },
        description: 'Areas to focus on: security, performance, style'
      }
    },
    required: ['filePath']
  }
};

export async function executeCodeReview(
  filePath: string,
  focusAreas?: string[]
): Promise<ReviewResult> {
  const code = await readFile(filePath);
  const issues = await analyzeCode(code, focusAreas);

  return {
    filePath,
    issues,
    summary: generateSummary(issues)
  };
}

The agent calls this tool and receives a structured response.

File-Based Advantages

Implementation Simplicity

File-based skills reuse the existing tool-loop. Your agent already reads context; skills are just more context.

agent_with_file_skills.py

def load_skills(skill_dir: str) -> str:
    """Load all skill files into context."""
    skills = []
    for file in Path(skill_dir).glob("**/SKILL.md"):
        skills.append(file.read_text())
    return "\n\n".join(skills)

# Just add skills to your existing context
context = load_skills("~/.agent/skills")
response = agent.chat(user_message, context=context)

No new interfaces, no new protocols. Skills are content, not code.

Low Authoring Barrier

Anyone who can write markdown can write a skill. This matters when:

• Business analysts need to encode SOPs
• Domain experts want to share knowledge
• Non-developers maintain the skill library

skills/customer-support/SKILL.md

# Customer Support Protocol

When handling customer complaints:

1. Acknowledge the issue first
2. Apologize without admitting fault
3. Offer a solution or escalation path
4. Confirm the customer is satisfied

Example response:
"I understand this is frustrating. Let me look into this right away..."

A customer success manager wrote this without touching code.

Skills as File Assets

Files work with your existing tools:

Terminal

# Version control
git add skills/new-feature/SKILL.md
git commit -m "Add new-feature skill"

# Code review
gh pr create --title "New skill for feature X"

# CI/CD
- name: Validate skills
  run: ./scripts/validate-skills.sh

Skills flow through the same pipeline as code.

Observable Execution

All skill execution happens in one session. You see the agent reasoning through the skill instructions.

[Context includes code-review skill]
User: Review this file
Agent: I'll apply the code review skill. Let me check for logic errors...
       [Found issue on line 23]
       [Checking security...]
       [Checking performance...]
       Review complete. Found 2 CRITICAL, 3 HIGH issues.

File-Based Limitations

No Execution Boundary

Skills mix into the message flow. You can’t isolate skill execution.

# What the model sees
[All skill content concatenated]
[All conversation history]
[Current user message]

# The model must sort through everything

This creates problems when skills conflict or when you need to track which skill produced which output.

Single-Skill Limit

Most file-based implementations load one skill at a time. Multi-skill orchestration requires workarounds.

single_skill_limitation.py

# Typical file-based implementation
def run_with_skill(task: str, skill_name: str) -> str:
    skill = load_skill(skill_name)  # One skill
    return agent.run(task, context=skill)

# Want to use code-review AND security-review?
# You have to concatenate them and hope the model handles it

No Result Encapsulation

You can’t treat file-based skills as units with inputs and outputs.

# File-based skills produce:
Agent's interpretation of instructions

# Not:
{
  skill: "code-review",
  inputs: { file: "app.ts" },
  outputs: { issues: [...], summary: "..." }
}

This makes governance and audit harder.

Quality Depends on Descriptions

The model selects skills based on their descriptions. Vague descriptions cause wrong selections.

skills/data/SKILL.md

# Data Skill

Helps with data tasks.

This skill activates for everything data-related, whether relevant or not.

Tool-Based Advantages

Clear Input/Output Boundaries

Tool-based skills have explicit contracts.

skill_contract.ts

interface SkillInput {
  filePath: string;
  options?: ReviewOptions;
}

interface SkillOutput {
  issues: Issue[];
  summary: string;
  metadata: {
    duration: number;
    filesScanned: number;
  };
}

function execute(input: SkillInput): SkillOutput {
  // Implementation
}

You know exactly what goes in and what comes out.

Isolated Execution Contexts

Each skill runs in its own context.

isolated_execution.py

# Skill A runs independently
result_a = await skill_a.execute(input_a)

# Skill B runs independently
result_b = await skill_b.execute(input_b)

# Combine results
combined = merge(result_a, result_b)

No context pollution, no skill interference.

Natural Multi-Skill Composition

Tools compose naturally through their outputs.

skill_composition.ts

async function reviewPipeline(filePath: string) {
  // Skill 1: Code review
  const reviewResult = await codeReviewTool.execute({ filePath });

  // Skill 2: Security scan (uses review output)
  const securityResult = await securityTool.execute({
    filePath,
    focusAreas: reviewResult.issues.map(i => i.area)
  });

  // Skill 3: Generate report
  const report = await reportTool.execute({
    reviews: [reviewResult, securityResult]
  });

  return report;
}

Easier Governance and Audit

Each skill execution is traceable.

audit_log.json

{
  "timestamp": "2026-03-25T10:30:00Z",
  "skill": "code-review",
  "input": { "filePath": "src/auth.ts" },
  "output": {
    "issues": [
      { "severity": "HIGH", "line": 45, "message": "SQL injection risk" }
    ]
  },
  "duration": 1.2,
  "model": "claude-3-opus"
}

You can audit every skill call independently.

Tool-Based Costs

More Infrastructure

Tool-based skills require:

infrastructure.yaml

components:
  - Tool registry
  - Execution engine
  - Input validation layer
  - Output serialization
  - Error handling
  - Logging and monitoring

This is non-trivial infrastructure.

Higher Authoring Barrier

Writing tool skills requires programming knowledge.

skill_authoring.ts

// Non-developers can't write this
export class DataValidationSkill implements Skill {
  name = 'data-validation';

  inputSchema = z.object({
    dataset: z.string(),
    rules: z.array(z.string())
  });

  async execute(input: z.infer<typeof this.inputSchema>) {
    // Implementation logic
  }
}

You need developers for every skill.

More Complex Debugging

When tools fail, debugging spans multiple systems.

User message -> Agent reasoning -> Tool selection ->
  Tool execution (separate process) ->
    Result serialization ->
      Agent continues reasoning

A bug could be in any of these layers.

Decision Framework

Choose File-Based When

1. Team has many non-developer skill authors

   • Business analysts, domain experts, operations staff
   • They need to encode knowledge without learning to code

2. Primary goal is injecting SOPs and process knowledge

   • Skills are primarily guidance, not executable procedures
   • You want the model to “know about” processes

3. Skill count will stay under ~100

   • More skills increase context management complexity
   • Selection quality degrades with too many options

4. Simple sequential workflows suffice

   • One skill at a time
   • No need for skill-to-skill communication

5. You need fast iteration with low infra investment

   • Prototype quickly
   • Minimal engineering overhead

Choose Tool-Based When

1. Skills are executable business subroutines

   • Skills perform real work, not just provide guidance
   • Output quality must be consistent and measurable

2. You need isolated execution and separate audit

   • Compliance requirements
   • Each skill call must be traceable

3. Tasks require multi-skill orchestration

   • Skills call other skills
   • Complex workflows with branching logic

4. Governance requires input/output contracts

   • You need to validate skill inputs
   • Outputs must match expected schemas

5. Skill count will scale to hundreds+

   • Tool registry handles scale
   • Selection stays reliable with many tools

Red Flags

Red Flags for File-Based

- "We need skills to call other skills"
- "Each skill needs its own permissions"
- "We need to audit skill results separately"
- "Skills will number in the hundreds"
- "Non-technical authors need to write executable procedures"

These requirements point toward tool-based.

Red Flags for Tool-Based

- "Business users need to write skills themselves"
- "We just need to inject our SOPs into the agent"
- "Skills are mostly documentation, not code"
- "We have one developer supporting the platform"
- "We need to ship something this week"

These requirements point toward file-based.

Hybrid Approach

Some platforms benefit from both.

hybrid_config.yaml

skills:
  knowledge_skills:
    type: file-based
    purpose: Read-only guidance
    examples:
      - coding-standards
      - domain-knowledge
      - process-documentation

  action_skills:
    type: tool-based
    purpose: Executable procedures
    examples:
      - code-review
      - data-validation
      - report-generation

Knowledge skills provide context. Action skills perform work.

hybrid_agent.py

class HybridAgent:
    def __init__(self):
        self.file_skills = FileSkillLoader("./knowledge_skills")
        self.tool_registry = ToolRegistry("./action_skills")

    def run(self, task: str):
        # Load relevant knowledge
        knowledge = self.file_skills.load_relevant(task)

        # Execute with tools available
        return self.agent.run(
            task,
            context=knowledge,
            tools=self.tool_registry.available_tools()
        )

Decision Checklist

decision_checklist.md

## Questions to Ask

1. Who writes skills?
   - Developers only -> Tool-based viable
   - Mixed team -> File-based easier

2. How many skills expected?
   - < 50 -> File-based fine
   - 200+ -> Tool-based safer

3. Need multi-skill workflows?
   - No -> File-based ok
   - Yes -> Tool-based better

4. Audit requirements?
   - Basic logging -> File-based
   - Strict compliance -> Tool-based

5. Execution isolation needed?
   - No -> File-based
   - Yes -> Tool-based

6. Time to first working version?
   - Days -> File-based
   - Weeks -> Tool-based viable

Summary

In this post, I showed how to choose between file-based and tool-based skills for AI agent platforms. File-based skills work best when you need simplicity, non-developer authors, and rapid iteration. Tool-based skills work best when you need execution isolation, multi-skill orchestration, and strict governance.

The key insight is that these are not competing approaches but different tools for different problems. File-based skills excel at knowledge injection. Tool-based skills excel at executable procedures. Some platforms need both.

Start with your requirements: who writes skills, how many you need, what orchestration looks like. The answers point clearly to one approach or the other.

Final Words + More Resources

My intention with this article was to help others share my knowledge and experience. If you want to contact me, you can contact by email: Email me

Here are also the most important links from this article along with some further resources that will help you in this scope:

• 👨‍💻 Claude Code Documentation
• 👨‍💻 OpenClaw GitHub
• 👨‍💻 Model Context Protocol

Oh, and if you found these resources useful, don’t forget to support me by starring the repo on GitHub!

Comments

Tags:

• ai-coding
• ai
• ai-agents
• llm
• automation

Is Domain Expertise More Valuable Than Coding Skills With AI?

What Git Workflow Should You Use With AI Coding Tools?