2026-02-02 19:01:51 -08:00
"""
Gateway subcommand for hermes CLI .
2026-03-03 18:57:33 -08:00
Handles : hermes gateway [ run | start | stop | restart | status | install | uninstall | setup ]
2026-02-02 19:01:51 -08:00
"""
import asyncio
import os
2026-03-17 15:11:28 +00:00
import shutil
2026-02-03 10:46:23 -08:00
import signal
2026-02-02 19:01:51 -08:00
import subprocess
import sys
2026-04-16 13:16:02 -04:00
from dataclasses import dataclass
2026-02-02 19:01:51 -08:00
from pathlib import Path
PROJECT_ROOT = Path ( __file__ ) . parent . parent . resolve ( )
2026-04-09 23:48:46 +03:00
from gateway . status import terminate_pid
2026-04-10 14:00:21 -07:00
from gateway . restart import (
DEFAULT_GATEWAY_RESTART_DRAIN_TIMEOUT ,
GATEWAY_SERVICE_RESTART_EXIT_CODE ,
parse_restart_drain_timeout ,
)
2026-04-10 10:19:17 -07:00
from hermes_cli . config import (
get_env_value ,
get_hermes_home ,
is_managed ,
managed_error ,
read_raw_config ,
save_env_value ,
)
2026-03-29 15:15:17 -07:00
# display_hermes_home is imported lazily at call sites to avoid ImportError
# when hermes_constants is cached from a pre-update version during `hermes update`.
2026-03-03 18:57:33 -08:00
from hermes_cli . setup import (
print_header , print_info , print_success , print_warning , print_error ,
prompt , prompt_choice , prompt_yes_no ,
)
from hermes_cli . colors import Colors , color
2026-02-02 19:01:51 -08:00
2026-02-03 10:46:23 -08:00
# =============================================================================
# Process Management (for manual gateway runs)
# =============================================================================
2026-04-16 13:16:02 -04:00
@dataclass ( frozen = True )
class GatewayRuntimeSnapshot :
manager : str
service_installed : bool = False
service_running : bool = False
gateway_pids : tuple [ int , . . . ] = ( )
service_scope : str | None = None
@property
def running ( self ) - > bool :
return self . service_running or bool ( self . gateway_pids )
@property
def has_process_service_mismatch ( self ) - > bool :
return self . service_installed and self . running and not self . service_running
2026-04-06 09:52:22 +05:30
def _get_service_pids ( ) - > set :
""" Return PIDs currently managed by systemd or launchd gateway services.
Used to avoid killing freshly - restarted service processes when sweeping
2026-04-06 10:09:04 +05:30
for stale manual gateway processes after a service restart . Relies on the
service manager having committed the new PID before the restart command
returns ( true for both systemd and launchd in practice ) .
2026-04-06 09:52:22 +05:30
"""
pids : set = set ( )
2026-04-06 10:09:04 +05:30
# --- systemd (Linux): user and system scopes ---
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-04-06 10:09:04 +05:30
for scope_args in [ [ " systemctl " , " --user " ] , [ " systemctl " ] ] :
try :
result = subprocess . run (
scope_args + [ " list-units " , " hermes-gateway* " ,
" --plain " , " --no-legend " , " --no-pager " ] ,
capture_output = True , text = True , timeout = 5 ,
)
for line in result . stdout . strip ( ) . splitlines ( ) :
parts = line . split ( )
if not parts or not parts [ 0 ] . endswith ( " .service " ) :
continue
svc = parts [ 0 ]
try :
show = subprocess . run (
scope_args + [ " show " , svc ,
" --property=MainPID " , " --value " ] ,
capture_output = True , text = True , timeout = 5 ,
)
pid = int ( show . stdout . strip ( ) )
if pid > 0 :
pids . add ( pid )
except ( ValueError , subprocess . TimeoutExpired ) :
pass
except ( FileNotFoundError , subprocess . TimeoutExpired ) :
pass
2026-04-06 09:52:22 +05:30
# --- launchd (macOS) ---
if is_macos ( ) :
try :
2026-04-06 10:09:04 +05:30
label = get_launchd_label ( )
2026-04-06 09:52:22 +05:30
result = subprocess . run (
2026-04-06 10:09:04 +05:30
[ " launchctl " , " list " , label ] ,
2026-04-06 09:52:22 +05:30
capture_output = True , text = True , timeout = 5 ,
)
if result . returncode == 0 :
2026-04-06 10:09:04 +05:30
# Output: "PID\tStatus\tLabel" header, then one data line
2026-04-06 09:52:22 +05:30
for line in result . stdout . strip ( ) . splitlines ( ) :
parts = line . split ( )
2026-04-06 10:09:04 +05:30
if len ( parts ) > = 3 and parts [ 2 ] == label :
2026-04-06 09:52:22 +05:30
try :
pid = int ( parts [ 0 ] )
if pid > 0 :
pids . add ( pid )
except ValueError :
pass
except ( FileNotFoundError , subprocess . TimeoutExpired ) :
pass
return pids
2026-04-10 13:51:23 -07:00
def _get_parent_pid ( pid : int ) - > int | None :
""" Return the parent PID for ``pid``, or ``None`` when unavailable. """
if pid < = 1 :
return None
try :
result = subprocess . run (
[ " ps " , " -o " , " ppid= " , " -p " , str ( pid ) ] ,
capture_output = True ,
text = True ,
timeout = 5 ,
)
except ( FileNotFoundError , subprocess . TimeoutExpired ) :
return None
if result . returncode != 0 :
return None
raw = result . stdout . strip ( )
if not raw :
return None
try :
parent_pid = int ( raw . splitlines ( ) [ - 1 ] . strip ( ) )
except ValueError :
return None
return parent_pid if parent_pid > 0 else None
def _is_pid_ancestor_of_current_process ( target_pid : int ) - > bool :
""" Return True when ``target_pid`` is this process or one of its ancestors. """
if target_pid < = 0 :
return False
pid = os . getpid ( )
seen : set [ int ] = set ( )
while pid and pid not in seen :
if pid == target_pid :
return True
seen . add ( pid )
pid = _get_parent_pid ( pid ) or 0
return False
def _request_gateway_self_restart ( pid : int ) - > bool :
""" Ask a running gateway ancestor to restart itself asynchronously. """
if not hasattr ( signal , " SIGUSR1 " ) :
return False
if not _is_pid_ancestor_of_current_process ( pid ) :
return False
try :
os . kill ( pid , signal . SIGUSR1 )
except ( ProcessLookupError , PermissionError , OSError ) :
return False
return True
2026-04-16 13:16:02 -04:00
def _append_unique_pid ( pids : list [ int ] , pid : int | None , exclude_pids : set [ int ] ) - > None :
if pid is None or pid < = 0 :
return
if pid == os . getpid ( ) or pid in exclude_pids or pid in pids :
return
pids . append ( pid )
2026-04-11 14:30:29 -07:00
2026-04-16 13:16:02 -04:00
def _scan_gateway_pids ( exclude_pids : set [ int ] , all_profiles : bool = False ) - > list [ int ] :
""" Best-effort process-table scan for gateway PIDs.
This supplements the profile - scoped PID file so status views can still spot
a live gateway when the PID file is stale / missing , and ` ` - - all ` ` sweeps can
discover gateways outside the current profile .
2026-04-11 14:30:29 -07:00
"""
2026-04-16 13:16:02 -04:00
pids : list [ int ] = [ ]
2026-03-02 22:03:29 -08:00
patterns = [
" hermes_cli.main gateway " ,
2026-04-11 17:31:22 -03:00
" hermes_cli.main --profile " ,
" hermes_cli.main -p " ,
2026-03-17 17:54:51 -05:00
" hermes_cli/main.py gateway " ,
2026-04-11 17:31:22 -03:00
" hermes_cli/main.py --profile " ,
" hermes_cli/main.py -p " ,
2026-03-02 22:03:29 -08:00
" hermes gateway " ,
" gateway/run.py " ,
]
2026-04-11 17:31:22 -03:00
current_home = str ( get_hermes_home ( ) . resolve ( ) )
current_profile_arg = _profile_arg ( current_home )
current_profile_name = current_profile_arg . split ( ) [ - 1 ] if current_profile_arg else " "
def _matches_current_profile ( command : str ) - > bool :
if current_profile_name :
return (
f " --profile { current_profile_name } " in command
or f " -p { current_profile_name } " in command
or f " HERMES_HOME= { current_home } " in command
)
if " --profile " in command or " -p " in command :
return False
if " HERMES_HOME= " in command and f " HERMES_HOME= { current_home } " not in command :
return False
return True
2026-03-02 22:03:29 -08:00
2026-02-03 10:46:23 -08:00
try :
2026-03-02 22:03:29 -08:00
if is_windows ( ) :
result = subprocess . run (
[ " wmic " , " process " , " get " , " ProcessId,CommandLine " , " /FORMAT:LIST " ] ,
2026-04-16 13:16:02 -04:00
capture_output = True ,
text = True ,
timeout = 10 ,
2026-03-02 22:03:29 -08:00
)
2026-04-16 13:16:02 -04:00
if result . returncode != 0 :
return [ ]
2026-03-02 22:03:29 -08:00
current_cmd = " "
2026-04-16 13:16:02 -04:00
for line in result . stdout . split ( " \n " ) :
2026-03-02 22:03:29 -08:00
line = line . strip ( )
if line . startswith ( " CommandLine= " ) :
current_cmd = line [ len ( " CommandLine= " ) : ]
elif line . startswith ( " ProcessId= " ) :
pid_str = line [ len ( " ProcessId= " ) : ]
2026-04-16 13:16:02 -04:00
if any ( p in current_cmd for p in patterns ) and (
all_profiles or _matches_current_profile ( current_cmd )
) :
2026-02-03 10:46:23 -08:00
try :
2026-04-16 13:16:02 -04:00
_append_unique_pid ( pids , int ( pid_str ) , exclude_pids )
2026-02-03 10:46:23 -08:00
except ValueError :
2026-03-02 22:03:29 -08:00
pass
current_cmd = " "
else :
result = subprocess . run (
2026-04-15 17:07:22 -07:00
[ " ps " , " -A " , " eww " , " -o " , " pid=,command= " ] ,
2026-03-02 22:03:29 -08:00
capture_output = True ,
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
text = True ,
timeout = 10 ,
2026-03-02 22:03:29 -08:00
)
2026-04-16 13:16:02 -04:00
if result . returncode != 0 :
return [ ]
for line in result . stdout . split ( " \n " ) :
2026-04-11 17:31:22 -03:00
stripped = line . strip ( )
2026-04-16 13:16:02 -04:00
if not stripped or " grep " in stripped :
2026-03-02 22:03:29 -08:00
continue
2026-04-11 17:31:22 -03:00
pid = None
command = " "
parts = stripped . split ( None , 1 )
if len ( parts ) == 2 :
try :
pid = int ( parts [ 0 ] )
command = parts [ 1 ]
except ValueError :
pid = None
if pid is None :
aux_parts = stripped . split ( )
if len ( aux_parts ) > 10 and aux_parts [ 1 ] . isdigit ( ) :
pid = int ( aux_parts [ 1 ] )
command = " " . join ( aux_parts [ 10 : ] )
if pid is None :
continue
2026-04-16 13:16:02 -04:00
if any ( pattern in command for pattern in patterns ) and (
all_profiles or _matches_current_profile ( command )
) :
_append_unique_pid ( pids , pid , exclude_pids )
2026-04-11 14:30:29 -07:00
except ( OSError , subprocess . TimeoutExpired ) :
2026-04-16 13:16:02 -04:00
return [ ]
return pids
def find_gateway_pids ( exclude_pids : set | None = None , all_profiles : bool = False ) - > list :
""" Find PIDs of running gateway processes.
Args :
exclude_pids : PIDs to exclude from the result ( e . g . service - managed
PIDs that should not be killed during a stale - process sweep ) .
all_profiles : When ` ` True ` ` , return gateway PIDs across * * all * *
profiles ( the pre - 7923 global behaviour ) . ` ` hermes update ` `
needs this because a code update affects every profile .
When ` ` False ` ` ( default ) , only PIDs belonging to the current
Hermes profile are returned .
"""
_exclude = set ( exclude_pids or set ( ) )
pids : list [ int ] = [ ]
if not all_profiles :
try :
from gateway . status import get_running_pid
2026-03-02 22:03:29 -08:00
2026-04-16 13:16:02 -04:00
_append_unique_pid ( pids , get_running_pid ( ) , _exclude )
except Exception :
pass
for pid in _get_service_pids ( ) :
_append_unique_pid ( pids , pid , _exclude )
for pid in _scan_gateway_pids ( _exclude , all_profiles = all_profiles ) :
_append_unique_pid ( pids , pid , _exclude )
2026-02-03 10:46:23 -08:00
return pids
2026-04-16 13:16:02 -04:00
def _probe_systemd_service_running ( system : bool = False ) - > tuple [ bool , bool ] :
selected_system = _select_systemd_scope ( system )
unit_exists = get_systemd_unit_path ( system = selected_system ) . exists ( )
if not unit_exists :
return selected_system , False
try :
result = _run_systemctl (
[ " is-active " , get_service_name ( ) ] ,
system = selected_system ,
capture_output = True ,
text = True ,
timeout = 10 ,
)
except ( RuntimeError , subprocess . TimeoutExpired ) :
return selected_system , False
return selected_system , result . stdout . strip ( ) == " active "
def _probe_launchd_service_running ( ) - > bool :
if not get_launchd_plist_path ( ) . exists ( ) :
return False
try :
result = subprocess . run (
[ " launchctl " , " list " , get_launchd_label ( ) ] ,
capture_output = True ,
text = True ,
timeout = 10 ,
)
except subprocess . TimeoutExpired :
return False
return result . returncode == 0
def get_gateway_runtime_snapshot ( system : bool = False ) - > GatewayRuntimeSnapshot :
""" Return a unified view of gateway liveness for the current profile. """
gateway_pids = tuple ( find_gateway_pids ( ) )
if is_termux ( ) :
return GatewayRuntimeSnapshot (
manager = " Termux / manual process " ,
gateway_pids = gateway_pids ,
)
from hermes_constants import is_container
if is_linux ( ) and is_container ( ) :
return GatewayRuntimeSnapshot (
manager = " docker (foreground) " ,
gateway_pids = gateway_pids ,
)
if supports_systemd_services ( ) :
selected_system , service_running = _probe_systemd_service_running ( system = system )
scope_label = _service_scope_label ( selected_system )
return GatewayRuntimeSnapshot (
manager = f " systemd ( { scope_label } ) " ,
service_installed = get_systemd_unit_path ( system = selected_system ) . exists ( ) ,
service_running = service_running ,
gateway_pids = gateway_pids ,
service_scope = scope_label ,
)
if is_macos ( ) :
return GatewayRuntimeSnapshot (
manager = " launchd " ,
service_installed = get_launchd_plist_path ( ) . exists ( ) ,
service_running = _probe_launchd_service_running ( ) ,
gateway_pids = gateway_pids ,
service_scope = " launchd " ,
)
return GatewayRuntimeSnapshot (
manager = " manual process " ,
gateway_pids = gateway_pids ,
)
def _format_gateway_pids ( pids : tuple [ int , . . . ] | list [ int ] , * , limit : int | None = 3 ) - > str :
rendered = [ str ( pid ) for pid in pids [ : limit ] if pid > 0 ] if limit is not None else [ str ( pid ) for pid in pids if pid > 0 ]
if limit is not None and len ( pids ) > limit :
rendered . append ( " ... " )
return " , " . join ( rendered )
def _print_gateway_process_mismatch ( snapshot : GatewayRuntimeSnapshot ) - > None :
if not snapshot . has_process_service_mismatch :
return
print ( )
print ( " ⚠ Gateway process is running for this profile, but the service is not active " )
print ( f " PID(s): { _format_gateway_pids ( snapshot . gateway_pids , limit = None ) } " )
print ( " This is usually a manual foreground/tmux/nohup run, so `hermes gateway` " )
print ( " can refuse to start another copy until this process stops. " )
2026-04-11 14:30:29 -07:00
def kill_gateway_processes ( force : bool = False , exclude_pids : set | None = None ,
all_profiles : bool = False ) - > int :
2026-04-06 09:52:22 +05:30
""" Kill any running gateway processes. Returns count killed.
Args :
2026-04-09 23:48:46 +03:00
force : Use the platform ' s force-kill mechanism instead of graceful terminate.
2026-04-06 09:52:22 +05:30
exclude_pids : PIDs to skip ( e . g . service - managed PIDs that were just
restarted and should not be killed ) .
2026-04-11 14:30:29 -07:00
all_profiles : When ` ` True ` ` , kill across all profiles . Passed
through to : func : ` find_gateway_pids ` .
2026-04-06 09:52:22 +05:30
"""
2026-04-11 14:30:29 -07:00
pids = find_gateway_pids ( exclude_pids = exclude_pids , all_profiles = all_profiles )
2026-02-03 10:46:23 -08:00
killed = 0
for pid in pids :
try :
2026-04-09 23:48:46 +03:00
terminate_pid ( pid , force = force )
2026-02-03 10:46:23 -08:00
killed + = 1
except ProcessLookupError :
# Process already gone
pass
except PermissionError :
print ( f " ⚠ Permission denied to kill PID { pid } " )
2026-04-09 23:48:46 +03:00
except OSError as exc :
print ( f " Failed to kill PID { pid } : { exc } " )
2026-02-03 10:46:23 -08:00
return killed
2026-04-03 14:21:25 -07:00
def stop_profile_gateway ( ) - > bool :
""" Stop only the gateway for the current profile (HERMES_HOME-scoped).
Uses the PID file written by start_gateway ( ) , so it only kills the
gateway belonging to this profile — not gateways from other profiles .
Returns True if a process was stopped , False if none was found .
"""
try :
from gateway . status import get_running_pid , remove_pid_file
except ImportError :
return False
pid = get_running_pid ( )
if pid is None :
return False
try :
os . kill ( pid , signal . SIGTERM )
except ProcessLookupError :
pass # Already gone
except PermissionError :
print ( f " ⚠ Permission denied to kill PID { pid } " )
return False
# Wait briefly for it to exit
import time as _time
for _ in range ( 20 ) :
try :
os . kill ( pid , 0 )
_time . sleep ( 0.5 )
except ( ProcessLookupError , PermissionError ) :
break
remove_pid_file ( )
return True
2026-02-02 19:01:51 -08:00
def is_linux ( ) - > bool :
return sys . platform . startswith ( ' linux ' )
2026-04-09 10:29:32 +02:00
2026-04-12 14:42:46 -07:00
from hermes_constants import is_container , is_termux , is_wsl
2026-04-10 21:15:47 -07:00
def _wsl_systemd_operational ( ) - > bool :
""" Check if systemd is actually running as PID 1 on WSL.
WSL2 with ` ` systemd = true ` ` in wsl . conf has working systemd .
WSL2 without it ( or WSL1 ) does not — systemctl commands fail .
"""
2026-04-17 17:03:26 -06:00
return _systemd_operational ( system = True )
def _systemd_operational ( system : bool = False ) - > bool :
""" Return True when the requested systemd scope is usable. """
2026-04-10 21:15:47 -07:00
try :
2026-04-17 17:03:26 -06:00
result = _run_systemctl (
[ " is-system-running " ] ,
system = system ,
capture_output = True ,
text = True ,
timeout = 5 ,
2026-04-10 21:15:47 -07:00
)
# "running", "degraded", "starting" all mean systemd is PID 1
status = result . stdout . strip ( ) . lower ( )
return status in ( " running " , " degraded " , " starting " , " initializing " )
2026-04-17 17:03:26 -06:00
except ( RuntimeError , subprocess . TimeoutExpired , OSError ) :
2026-04-10 21:15:47 -07:00
return False
2026-04-09 10:29:32 +02:00
2026-04-17 17:03:26 -06:00
def _container_systemd_operational ( ) - > bool :
""" Return True when a container exposes working user or system systemd. """
if _systemd_operational ( system = False ) :
return True
if _systemd_operational ( system = True ) :
return True
return False
2026-04-09 10:29:32 +02:00
def supports_systemd_services ( ) - > bool :
2026-04-17 17:03:26 -06:00
if not is_linux ( ) or is_termux ( ) :
2026-04-12 14:42:46 -07:00
return False
if shutil . which ( " systemctl " ) is None :
2026-04-10 21:15:47 -07:00
return False
if is_wsl ( ) :
return _wsl_systemd_operational ( )
2026-04-17 17:03:26 -06:00
if is_container ( ) :
return _container_systemd_operational ( )
2026-04-10 21:15:47 -07:00
return True
2026-04-09 10:29:32 +02:00
2026-02-02 19:01:51 -08:00
def is_macos ( ) - > bool :
return sys . platform == ' darwin '
def is_windows ( ) - > bool :
return sys . platform == ' win32 '
# =============================================================================
# Service Configuration
# =============================================================================
2026-03-16 04:42:46 -07:00
_SERVICE_BASE = " hermes-gateway "
2026-02-02 19:01:51 -08:00
SERVICE_DESCRIPTION = " Hermes Agent Gateway - Messaging Platform Integration "
2026-03-14 06:11:33 -07:00
2026-03-28 13:51:08 -07:00
def _profile_suffix ( ) - > str :
""" Derive a service-name suffix from the current HERMES_HOME.
2026-03-16 04:42:46 -07:00
2026-04-10 05:53:10 -07:00
Returns ` ` " " ` ` for the default root , the profile name for
` ` < root > / profiles / < name > ` ` , or a short hash for any other path .
Works correctly in Docker ( HERMES_HOME = / opt / data ) and standard deployments .
2026-03-16 04:42:46 -07:00
"""
import hashlib
2026-03-28 13:51:08 -07:00
import re
2026-04-10 05:53:10 -07:00
from hermes_constants import get_default_hermes_root
refactor: consolidate get_hermes_home() and parse_reasoning_effort() (#3062)
Centralizes two widely-duplicated patterns into hermes_constants.py:
1. get_hermes_home() — Path resolution for ~/.hermes (HERMES_HOME env var)
- Was copy-pasted inline across 30+ files as:
Path(os.getenv("HERMES_HOME", Path.home() / ".hermes"))
- Now defined once in hermes_constants.py (zero-dependency module)
- hermes_cli/config.py re-exports it for backward compatibility
- Removed local wrapper functions in honcho_integration/client.py,
tools/website_policy.py, tools/tirith_security.py, hermes_cli/uninstall.py
2. parse_reasoning_effort() — Reasoning effort string validation
- Was copy-pasted in cli.py, gateway/run.py, cron/scheduler.py
- Same validation logic: check against (xhigh, high, medium, low, minimal, none)
- Now defined once in hermes_constants.py, called from all 3 locations
- Warning log for unknown values kept at call sites (context-specific)
31 files changed, net +31 lines (125 insertions, 94 deletions)
Full test suite: 6179 passed, 0 failed
2026-03-25 15:54:28 -07:00
home = get_hermes_home ( ) . resolve ( )
2026-04-10 05:53:10 -07:00
default = get_default_hermes_root ( ) . resolve ( )
2026-03-16 04:42:46 -07:00
if home == default :
2026-03-28 13:51:08 -07:00
return " "
2026-04-10 05:53:10 -07:00
# Detect <root>/profiles/<name> pattern → use the profile name
2026-03-28 13:51:08 -07:00
profiles_root = ( default / " profiles " ) . resolve ( )
try :
rel = home . relative_to ( profiles_root )
parts = rel . parts
if len ( parts ) == 1 and re . match ( r " ^[a-z0-9][a-z0-9_-] { 0,63}$ " , parts [ 0 ] ) :
return parts [ 0 ]
except ValueError :
pass
# Fallback: short hash for arbitrary HERMES_HOME paths
return hashlib . sha256 ( str ( home ) . encode ( ) ) . hexdigest ( ) [ : 8 ]
2026-04-07 21:18:39 +02:00
def _profile_arg ( hermes_home : str | None = None ) - > str :
""" Return ``--profile <name>`` only when HERMES_HOME is a named profile.
For ` ` ~ / . hermes / profiles / < name > ` ` , returns ` ` " --profile <name> " ` ` .
For the default profile or hash - based custom paths , returns the empty string .
Args :
hermes_home : Optional explicit HERMES_HOME path . Defaults to the current
` ` get_hermes_home ( ) ` ` value . Should be passed when generating a
service definition for a different user ( e . g . system service ) .
"""
import re
2026-04-10 05:53:10 -07:00
from hermes_constants import get_default_hermes_root
2026-04-07 21:18:39 +02:00
home = Path ( hermes_home or str ( get_hermes_home ( ) ) ) . resolve ( )
2026-04-10 05:53:10 -07:00
default = get_default_hermes_root ( ) . resolve ( )
2026-04-07 21:18:39 +02:00
if home == default :
return " "
profiles_root = ( default / " profiles " ) . resolve ( )
try :
rel = home . relative_to ( profiles_root )
parts = rel . parts
if len ( parts ) == 1 and re . match ( r " ^[a-z0-9][a-z0-9_-] { 0,63}$ " , parts [ 0 ] ) :
return f " --profile { parts [ 0 ] } "
except ValueError :
pass
return " "
2026-03-28 13:51:08 -07:00
def get_service_name ( ) - > str :
""" Derive a systemd service name scoped to this HERMES_HOME.
Default ` ` ~ / . hermes ` ` returns ` ` hermes - gateway ` ` ( backward compatible ) .
Profile ` ` ~ / . hermes / profiles / coder ` ` returns ` ` hermes - gateway - coder ` ` .
Any other HERMES_HOME appends a short hash for uniqueness .
"""
suffix = _profile_suffix ( )
if not suffix :
2026-03-16 04:42:46 -07:00
return _SERVICE_BASE
return f " { _SERVICE_BASE } - { suffix } "
2026-03-14 20:54:51 -07:00
def get_systemd_unit_path ( system : bool = False ) - > Path :
2026-03-16 04:42:46 -07:00
name = get_service_name ( )
2026-03-14 20:54:51 -07:00
if system :
2026-03-16 04:42:46 -07:00
return Path ( " /etc/systemd/system " ) / f " { name } .service "
return Path . home ( ) / " .config " / " systemd " / " user " / f " { name } .service "
2026-02-02 19:01:51 -08:00
2026-03-14 06:11:33 -07:00
fix: auto-detect D-Bus session bus for systemctl --user on headless servers (#1601)
* fix: Anthropic OAuth compatibility — Claude Code identity fingerprinting
Anthropic routes OAuth/subscription requests based on Claude Code's
identity markers. Without them, requests get intermittent 500 errors
(~25% failure rate observed). This matches what pi-ai (clawdbot) and
OpenCode both implement for OAuth compatibility.
Changes (OAuth tokens only — API key users unaffected):
1. Headers: user-agent 'claude-cli/2.1.2 (external, cli)' + x-app 'cli'
2. System prompt: prepend 'You are Claude Code, Anthropic's official CLI'
3. System prompt sanitization: replace Hermes/Nous references
4. Tool names: prefix with 'mcp_' (Claude Code convention for non-native tools)
5. Tool name stripping: remove 'mcp_' prefix from response tool calls
Before: 9/12 OK, 1 hard fail, 4 needed retries (~25% error rate)
After: 16/16 OK, 0 failures, 0 retries (0% error rate)
* fix: auto-detect DBUS_SESSION_BUS_ADDRESS for systemctl --user on headless servers
On SSH sessions to headless servers, DBUS_SESSION_BUS_ADDRESS and
XDG_RUNTIME_DIR may not be set even when the user's systemd instance
is running via linger. This causes 'systemctl --user' to fail with
'Failed to connect to bus: No medium found', breaking gateway
restart/start/stop as a service and falling back to foreground mode.
Add _ensure_user_systemd_env() that detects the standard D-Bus socket
at /run/user/<UID>/bus and sets the env vars before any systemctl --user
call. Called from _systemctl_cmd() so all existing call sites benefit
automatically with zero changes.
Fixes: gateway restart falling back to foreground on headless servers
* fix: show linger guidance when gateway restart fails during update and gateway restart
When systemctl --user restart fails during 'hermes update' or
'hermes gateway restart', check linger status and tell the user
exactly what to run (sudo -S -p '' loginctl enable-linger) instead of
silently falling back to foreground mode.
Also applies _ensure_user_systemd_env() to the raw systemctl calls
in cmd_update so they work properly on SSH sessions where D-Bus
env vars are missing.
2026-03-16 17:45:48 -07:00
def _ensure_user_systemd_env ( ) - > None :
""" Ensure DBUS_SESSION_BUS_ADDRESS and XDG_RUNTIME_DIR are set for systemctl --user.
On headless servers ( SSH sessions ) , these env vars may be missing even when
the user ' s systemd instance is running (via linger). Without them,
` ` systemctl - - user ` ` fails with " Failed to connect to bus: No medium found " .
We detect the standard socket path and set the vars so all subsequent
subprocess calls inherit them .
"""
uid = os . getuid ( )
if " XDG_RUNTIME_DIR " not in os . environ :
runtime_dir = f " /run/user/ { uid } "
if Path ( runtime_dir ) . exists ( ) :
os . environ [ " XDG_RUNTIME_DIR " ] = runtime_dir
if " DBUS_SESSION_BUS_ADDRESS " not in os . environ :
xdg_runtime = os . environ . get ( " XDG_RUNTIME_DIR " , f " /run/user/ { uid } " )
bus_path = Path ( xdg_runtime ) / " bus "
if bus_path . exists ( ) :
os . environ [ " DBUS_SESSION_BUS_ADDRESS " ] = f " unix:path= { bus_path } "
2026-03-14 20:54:51 -07:00
def _systemctl_cmd ( system : bool = False ) - > list [ str ] :
fix: auto-detect D-Bus session bus for systemctl --user on headless servers (#1601)
* fix: Anthropic OAuth compatibility — Claude Code identity fingerprinting
Anthropic routes OAuth/subscription requests based on Claude Code's
identity markers. Without them, requests get intermittent 500 errors
(~25% failure rate observed). This matches what pi-ai (clawdbot) and
OpenCode both implement for OAuth compatibility.
Changes (OAuth tokens only — API key users unaffected):
1. Headers: user-agent 'claude-cli/2.1.2 (external, cli)' + x-app 'cli'
2. System prompt: prepend 'You are Claude Code, Anthropic's official CLI'
3. System prompt sanitization: replace Hermes/Nous references
4. Tool names: prefix with 'mcp_' (Claude Code convention for non-native tools)
5. Tool name stripping: remove 'mcp_' prefix from response tool calls
Before: 9/12 OK, 1 hard fail, 4 needed retries (~25% error rate)
After: 16/16 OK, 0 failures, 0 retries (0% error rate)
* fix: auto-detect DBUS_SESSION_BUS_ADDRESS for systemctl --user on headless servers
On SSH sessions to headless servers, DBUS_SESSION_BUS_ADDRESS and
XDG_RUNTIME_DIR may not be set even when the user's systemd instance
is running via linger. This causes 'systemctl --user' to fail with
'Failed to connect to bus: No medium found', breaking gateway
restart/start/stop as a service and falling back to foreground mode.
Add _ensure_user_systemd_env() that detects the standard D-Bus socket
at /run/user/<UID>/bus and sets the env vars before any systemctl --user
call. Called from _systemctl_cmd() so all existing call sites benefit
automatically with zero changes.
Fixes: gateway restart falling back to foreground on headless servers
* fix: show linger guidance when gateway restart fails during update and gateway restart
When systemctl --user restart fails during 'hermes update' or
'hermes gateway restart', check linger status and tell the user
exactly what to run (sudo -S -p '' loginctl enable-linger) instead of
silently falling back to foreground mode.
Also applies _ensure_user_systemd_env() to the raw systemctl calls
in cmd_update so they work properly on SSH sessions where D-Bus
env vars are missing.
2026-03-16 17:45:48 -07:00
if not system :
_ensure_user_systemd_env ( )
2026-03-14 20:54:51 -07:00
return [ " systemctl " ] if system else [ " systemctl " , " --user " ]
def _journalctl_cmd ( system : bool = False ) - > list [ str ] :
return [ " journalctl " ] if system else [ " journalctl " , " --user " ]
2026-04-12 14:42:46 -07:00
def _run_systemctl ( args : list [ str ] , * , system : bool = False , * * kwargs ) - > subprocess . CompletedProcess :
""" Run a systemctl command, raising RuntimeError if systemctl is missing.
Defense - in - depth : callers are gated by ` ` supports_systemd_services ( ) ` ` ,
but this ensures any future caller that bypasses the gate still gets a
clear error instead of a raw ` ` FileNotFoundError ` ` traceback .
"""
try :
return subprocess . run ( _systemctl_cmd ( system ) + args , * * kwargs )
except FileNotFoundError :
raise RuntimeError (
" systemctl is not available on this system "
) from None
2026-03-14 20:54:51 -07:00
def _service_scope_label ( system : bool = False ) - > str :
return " system " if system else " user "
2026-03-14 21:06:52 -07:00
def get_installed_systemd_scopes ( ) - > list [ str ] :
scopes = [ ]
seen_paths : set [ Path ] = set ( )
for system , label in ( ( False , " user " ) , ( True , " system " ) ) :
unit_path = get_systemd_unit_path ( system = system )
if unit_path in seen_paths :
continue
if unit_path . exists ( ) :
scopes . append ( label )
seen_paths . add ( unit_path )
return scopes
def has_conflicting_systemd_units ( ) - > bool :
return len ( get_installed_systemd_scopes ( ) ) > 1
fix(gateway): detect legacy hermes.service + mark --replace SIGTERM as planned (#11909)
* fix(gateway): detect legacy hermes.service units from pre-rename installs
Older Hermes installs used a different service name (hermes.service) before
the rename to hermes-gateway.service. When both units remain installed, they
fight over the same bot token — after PR #5646's signal-recovery change,
this manifests as a 30-second SIGTERM flap loop between the two services.
Detection is an explicit allowlist (no globbing) plus an ExecStart content
check, so profile units (hermes-gateway-<profile>.service) and unrelated
third-party services named 'hermes' are never matched.
Wired into systemd_install, systemd_status, gateway_setup wizard, and the
main hermes setup flow — anywhere we already warn about scope conflicts now
also warns about legacy units.
* feat(gateway): add migrate-legacy command + install-time removal prompt
- New hermes_cli.gateway.remove_legacy_hermes_units() removes legacy
unit files with stop → disable → unlink → daemon-reload. Handles user
and system scopes separately; system scope returns path list when not
running as root so the caller can tell the user to re-run with sudo.
- New 'hermes gateway migrate-legacy' subcommand (with --dry-run and -y)
routes to remove_legacy_hermes_units via gateway_command dispatch.
- systemd_install now offers to remove legacy units BEFORE installing
the new hermes-gateway.service, preventing the SIGTERM flap loop that
hits users who still have pre-rename hermes.service around.
Profile units (hermes-gateway-<profile>.service) remain untouched in
all paths — the legacy allowlist is explicit (_LEGACY_SERVICE_NAMES)
and the ExecStart content check further narrows matches.
* fix(gateway): mark --replace SIGTERM as planned so target exits 0
PR #5646 made SIGTERM exit the gateway with code 1 so systemd's
Restart=on-failure revives it after unexpected kills. But when a user has
two gateway units fighting for the same bot token (e.g. legacy
hermes.service + hermes-gateway.service from a pre-rename install), the
--replace takeover itself becomes the 'unexpected' SIGTERM — the loser
exits 1, systemd revives it 30s later, and the cycle flaps indefinitely.
Before calling terminate_pid(), --replace now writes a short-lived marker
file naming the target PID + start_time. The target's shutdown_signal_handler
consumes the marker and, when it names this process, leaves
_signal_initiated_shutdown=False so the final exit code stays 0.
Staleness defences:
- PID + start_time combo prevents PID reuse matching an old marker
- Marker older than 60s is treated as stale and discarded
- Marker is unlinked on first read even if it doesn't match this process
- Replacer clears the marker post-loop + on permission-denied give-up
2026-04-17 19:27:58 -07:00
# Legacy service names from older Hermes installs that predate the
# hermes-gateway rename. Kept as an explicit allowlist (NOT a glob) so
# profile units (hermes-gateway-*.service) and unrelated third-party
# "hermes" units are never matched.
_LEGACY_SERVICE_NAMES : tuple [ str , . . . ] = ( " hermes.service " , )
# ExecStart content markers that identify a unit as running our gateway.
# A legacy unit is only flagged when its file contains one of these.
_LEGACY_UNIT_EXECSTART_MARKERS : tuple [ str , . . . ] = (
" hermes_cli.main gateway " ,
" hermes_cli/main.py gateway " ,
" gateway/run.py " ,
" hermes gateway " ,
" /hermes gateway " ,
)
def _legacy_unit_search_paths ( ) - > list [ tuple [ bool , Path ] ] :
""" Return ``[(is_system, base_dir), ...]`` — directories to scan for legacy units.
Factored out so tests can monkeypatch the search roots without touching
real filesystem paths .
"""
return [
( False , Path . home ( ) / " .config " / " systemd " / " user " ) ,
( True , Path ( " /etc/systemd/system " ) ) ,
]
def _find_legacy_hermes_units ( ) - > list [ tuple [ str , Path , bool ] ] :
""" Return ``[(unit_name, unit_path, is_system)]`` for legacy Hermes gateway units.
Detects unit files installed by older Hermes versions that used a
different service name ( e . g . ` ` hermes . service ` ` before the rename to
` ` hermes - gateway . service ` ` ) . When both a legacy unit and the current
` ` hermes - gateway . service ` ` are active , they fight over the same bot
token — the PR #5646 signal-recovery change turns this into a 30-second
SIGTERM flap loop .
Safety guards :
* Explicit allowlist of legacy names ( no globbing ) . Profile units such
as ` ` hermes - gateway - coder . service ` ` and unrelated third - party
` ` hermes - * ` ` services are never matched .
* ExecStart content check — only flag units that invoke our gateway
entrypoint . A user - created ` ` hermes . service ` ` running an unrelated
binary is left untouched .
* Results are returned purely for caller inspection ; this function
never mutates or removes anything .
"""
results : list [ tuple [ str , Path , bool ] ] = [ ]
for is_system , base in _legacy_unit_search_paths ( ) :
for name in _LEGACY_SERVICE_NAMES :
unit_path = base / name
try :
if not unit_path . exists ( ) :
continue
text = unit_path . read_text ( encoding = " utf-8 " , errors = " ignore " )
except ( OSError , PermissionError ) :
continue
if not any ( marker in text for marker in _LEGACY_UNIT_EXECSTART_MARKERS ) :
# Not our gateway — leave alone
continue
results . append ( ( name , unit_path , is_system ) )
return results
def has_legacy_hermes_units ( ) - > bool :
""" Return True when any legacy Hermes gateway unit files exist. """
return bool ( _find_legacy_hermes_units ( ) )
def print_legacy_unit_warning ( ) - > None :
""" Warn about legacy Hermes gateway unit files if any are installed.
Idempotent : prints nothing when no legacy units are detected . Safe to
call from any status / install / setup path .
"""
legacy = _find_legacy_hermes_units ( )
if not legacy :
return
print_warning ( " Legacy Hermes gateway unit(s) detected from an older install: " )
for name , path , is_system in legacy :
scope = " system " if is_system else " user "
print_info ( f " { path } ( { scope } scope) " )
print_info ( " These run alongside the current hermes-gateway service and " )
print_info ( " cause SIGTERM flap loops — both try to use the same bot token. " )
print_info ( " Remove them with: " )
print_info ( " hermes gateway migrate-legacy " )
def remove_legacy_hermes_units (
interactive : bool = True ,
dry_run : bool = False ,
) - > tuple [ int , list [ Path ] ] :
""" Stop, disable, and remove legacy Hermes gateway unit files.
Iterates over whatever ` ` _find_legacy_hermes_units ( ) ` ` returns — which is
an explicit allowlist of legacy names ( not a glob ) . Profile units and
unrelated third - party services are never touched .
Args :
interactive : When True , prompt before removing . When False , remove
without asking ( used when another prompt has already confirmed ,
e . g . from the install flow ) .
dry_run : When True , list what would be removed and return .
Returns :
` ` ( removed_count , remaining_paths ) ` ` — remaining includes units we
couldn ' t remove (typically system-scope when not running as root).
"""
legacy = _find_legacy_hermes_units ( )
if not legacy :
print ( " No legacy Hermes gateway units found. " )
return 0 , [ ]
user_units = [ ( n , p ) for n , p , is_sys in legacy if not is_sys ]
system_units = [ ( n , p ) for n , p , is_sys in legacy if is_sys ]
print ( )
print ( " Legacy Hermes gateway unit(s) found: " )
for name , path , is_system in legacy :
scope = " system " if is_system else " user "
print ( f " { path } ( { scope } scope) " )
print ( )
if dry_run :
print ( " (dry-run — nothing removed) " )
return 0 , [ p for _ , p , _ in legacy ]
if interactive and not prompt_yes_no ( " Remove these legacy units? " , True ) :
print ( " Skipped. Run again with: hermes gateway migrate-legacy " )
return 0 , [ p for _ , p , _ in legacy ]
removed = 0
remaining : list [ Path ] = [ ]
# User-scope removal
for name , path in user_units :
try :
_run_systemctl ( [ " stop " , name ] , system = False , check = False , timeout = 90 )
_run_systemctl ( [ " disable " , name ] , system = False , check = False , timeout = 30 )
path . unlink ( missing_ok = True )
print ( f " ✓ Removed { path } " )
removed + = 1
except ( OSError , RuntimeError ) as e :
print ( f " ⚠ Could not remove { path } : { e } " )
remaining . append ( path )
if user_units :
try :
_run_systemctl ( [ " daemon-reload " ] , system = False , check = False , timeout = 30 )
except RuntimeError :
pass
# System-scope removal (needs root)
if system_units :
if os . geteuid ( ) != 0 :
print ( )
print_warning ( " System-scope legacy units require root to remove. " )
print_info ( " Re-run with: sudo hermes gateway migrate-legacy " )
for _ , path in system_units :
remaining . append ( path )
else :
for name , path in system_units :
try :
_run_systemctl ( [ " stop " , name ] , system = True , check = False , timeout = 90 )
_run_systemctl ( [ " disable " , name ] , system = True , check = False , timeout = 30 )
path . unlink ( missing_ok = True )
print ( f " ✓ Removed { path } " )
removed + = 1
except ( OSError , RuntimeError ) as e :
print ( f " ⚠ Could not remove { path } : { e } " )
remaining . append ( path )
try :
_run_systemctl ( [ " daemon-reload " ] , system = True , check = False , timeout = 30 )
except RuntimeError :
pass
print ( )
if remaining :
print_warning ( f " { len ( remaining ) } legacy unit(s) still present — see messages above. " )
else :
print_success ( f " Removed { removed } legacy unit(s). " )
return removed , remaining
2026-03-14 21:06:52 -07:00
def print_systemd_scope_conflict_warning ( ) - > None :
scopes = get_installed_systemd_scopes ( )
if len ( scopes ) < 2 :
return
rendered_scopes = " + " . join ( scopes )
print_warning ( f " Both user and system gateway services are installed ( { rendered_scopes } ). " )
print_info ( " This is confusing and can make start/stop/status behavior ambiguous. " )
print_info ( " Default gateway commands target the user service unless you pass --system. " )
print_info ( " Keep one of these: " )
print_info ( " hermes gateway uninstall " )
print_info ( " sudo hermes gateway uninstall --system " )
2026-03-14 20:54:51 -07:00
def _require_root_for_system_service ( action : str ) - > None :
if os . geteuid ( ) != 0 :
print ( f " System gateway { action } requires root. Re-run with sudo. " )
sys . exit ( 1 )
def _system_service_identity ( run_as_user : str | None = None ) - > tuple [ str , str , str ] :
import getpass
import grp
import pwd
username = ( run_as_user or os . getenv ( " SUDO_USER " ) or os . getenv ( " USER " ) or os . getenv ( " LOGNAME " ) or getpass . getuser ( ) ) . strip ( )
if not username :
raise ValueError ( " Could not determine which user the gateway service should run as " )
2026-04-03 01:14:21 -07:00
if username == " root " and not run_as_user :
raise ValueError ( " Refusing to install the gateway system service as root; pass --run-as-user root to override (e.g. in LXC containers) " )
2026-03-14 20:54:51 -07:00
if username == " root " :
2026-04-03 01:14:21 -07:00
print_warning ( " Installing gateway service to run as root. " )
print_info ( " This is fine for LXC/container environments but not recommended on bare-metal hosts. " )
2026-03-14 20:54:51 -07:00
try :
user_info = pwd . getpwnam ( username )
except KeyError as e :
raise ValueError ( f " Unknown user: { username } " ) from e
group_name = grp . getgrgid ( user_info . pw_gid ) . gr_name
return username , group_name , user_info . pw_dir
def _read_systemd_user_from_unit ( unit_path : Path ) - > str | None :
if not unit_path . exists ( ) :
return None
for line in unit_path . read_text ( encoding = " utf-8 " ) . splitlines ( ) :
if line . startswith ( " User= " ) :
value = line . split ( " = " , 1 ) [ 1 ] . strip ( )
return value or None
return None
2026-03-14 21:06:52 -07:00
def _default_system_service_user ( ) - > str | None :
for candidate in ( os . getenv ( " SUDO_USER " ) , os . getenv ( " USER " ) , os . getenv ( " LOGNAME " ) ) :
if candidate and candidate . strip ( ) and candidate . strip ( ) != " root " :
return candidate . strip ( )
return None
def prompt_linux_gateway_install_scope ( ) - > str | None :
choice = prompt_choice (
" Choose how the gateway should run in the background: " ,
[
" User service (no sudo; best for laptops/dev boxes; may need linger after logout) " ,
" System service (starts on boot; requires sudo; still runs as your user) " ,
" Skip service install for now " ,
] ,
default = 0 ,
)
return { 0 : " user " , 1 : " system " , 2 : None } [ choice ]
def install_linux_gateway_from_setup ( force : bool = False ) - > tuple [ str | None , bool ] :
scope = prompt_linux_gateway_install_scope ( )
if scope is None :
return None , False
if scope == " system " :
run_as_user = _default_system_service_user ( )
if os . geteuid ( ) != 0 :
print_warning ( " System service install requires sudo, so Hermes can ' t create it from this user session. " )
if run_as_user :
print_info ( f " After setup, run: sudo hermes gateway install --system --run-as-user { run_as_user } " )
else :
print_info ( " After setup, run: sudo hermes gateway install --system --run-as-user <your-user> " )
print_info ( " Then start it with: sudo hermes gateway start --system " )
return scope , False
if not run_as_user :
while True :
run_as_user = prompt ( " Run the system gateway service as which user? " , default = " " )
run_as_user = ( run_as_user or " " ) . strip ( )
2026-04-03 01:14:21 -07:00
if run_as_user :
2026-03-14 21:06:52 -07:00
break
2026-04-03 01:14:21 -07:00
print_error ( " Enter a username. " )
2026-03-14 21:06:52 -07:00
systemd_install ( force = force , system = True , run_as_user = run_as_user )
return scope , True
systemd_install ( force = force , system = False )
return scope , True
2026-03-14 06:11:33 -07:00
def get_systemd_linger_status ( ) - > tuple [ bool | None , str ] :
2026-04-09 10:29:32 +02:00
""" Return systemd linger status for the current user.
2026-03-14 06:11:33 -07:00
Returns :
( True , " " ) when linger is enabled .
( False , " " ) when linger is disabled .
( None , detail ) when the status could not be determined .
"""
2026-04-09 10:29:32 +02:00
if is_termux ( ) :
return None , " not supported in Termux "
2026-03-14 06:11:33 -07:00
if not is_linux ( ) :
return None , " not supported on this platform "
if not shutil . which ( " loginctl " ) :
return None , " loginctl not found "
username = os . getenv ( " USER " ) or os . getenv ( " LOGNAME " )
if not username :
try :
import pwd
username = pwd . getpwuid ( os . getuid ( ) ) . pw_name
except Exception :
return None , " could not determine current user "
try :
result = subprocess . run (
[ " loginctl " , " show-user " , username , " --property=Linger " , " --value " ] ,
capture_output = True ,
text = True ,
check = False ,
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
timeout = 10 ,
2026-03-14 06:11:33 -07:00
)
except Exception as e :
return None , str ( e )
if result . returncode != 0 :
detail = ( result . stderr or result . stdout or f " exit { result . returncode } " ) . strip ( )
return None , detail or " loginctl query failed "
value = ( result . stdout or " " ) . strip ( ) . lower ( )
if value in { " yes " , " true " , " 1 " } :
return True , " "
if value in { " no " , " false " , " 0 " } :
return False , " "
rendered = value or " <empty> "
return None , f " unexpected loginctl output: { rendered } "
def print_systemd_linger_guidance ( ) - > None :
""" Print the current linger status and the fix when it is disabled. """
linger_enabled , linger_detail = get_systemd_linger_status ( )
if linger_enabled is True :
print ( " ✓ Systemd linger is enabled (service survives logout) " )
elif linger_enabled is False :
print ( " ⚠ Systemd linger is disabled (gateway may stop when you log out) " )
print ( " Run: sudo loginctl enable-linger $USER " )
else :
print ( f " ⚠ Could not verify systemd linger ( { linger_detail } ) " )
print ( " If you want the gateway user service to survive logout, run: " )
print ( " sudo loginctl enable-linger $USER " )
2026-04-11 17:31:22 -03:00
def _launchd_user_home ( ) - > Path :
""" Return the real macOS user home for launchd artifacts.
Profile - mode Hermes often sets ` ` HOME ` ` to a profile - scoped directory , but
launchd user agents still live under the actual account home .
"""
import pwd
return Path ( pwd . getpwuid ( os . getuid ( ) ) . pw_dir )
2026-02-02 19:01:51 -08:00
def get_launchd_plist_path ( ) - > Path :
2026-03-28 13:51:08 -07:00
""" Return the launchd plist path, scoped per profile.
Default ` ` ~ / . hermes ` ` → ` ` ai . hermes . gateway . plist ` ` ( backward compatible ) .
Profile ` ` ~ / . hermes / profiles / coder ` ` → ` ` ai . hermes . gateway - coder . plist ` ` .
"""
suffix = _profile_suffix ( )
name = f " ai.hermes.gateway- { suffix } " if suffix else " ai.hermes.gateway "
2026-04-11 17:31:22 -03:00
return _launchd_user_home ( ) / " Library " / " LaunchAgents " / f " { name } .plist "
2026-02-02 19:01:51 -08:00
2026-03-24 07:05:57 -07:00
def _detect_venv_dir ( ) - > Path | None :
""" Detect the active virtualenv directory.
Checks ` ` sys . prefix ` ` first ( works regardless of the directory name ) ,
fix: stale agent timeout, uv venv detection, empty response after tools (#9051, #8620, #9400)
Three independent fixes:
1. Reset activity timestamp on cached agent reuse (#9051)
When the gateway reuses a cached AIAgent for a new turn, the
_last_activity_ts from the previous turn (possibly hours ago)
carried over. The inactivity timeout handler immediately saw
the agent as idle for hours and killed it.
Fix: reset _last_activity_ts, _last_activity_desc, and
_api_call_count when retrieving an agent from the cache.
2. Detect uv-managed virtual environments (#8620 sub-issue 1)
The systemd unit generator fell back to sys.executable (uv's
standalone Python) when running under 'uv run', because
sys.prefix == sys.base_prefix (uv doesn't set up traditional
venv activation). The generated ExecStart pointed to a Python
binary without site-packages, crashing the service on startup.
Fix: check VIRTUAL_ENV env var before falling back to
sys.executable. uv sets VIRTUAL_ENV even when sys.prefix
doesn't reflect the venv.
3. Nudge model to continue after empty post-tool response (#9400)
Weaker models (GLM-5, mimo-v2-pro) sometimes return empty
responses after tool calls instead of continuing to the next
step. The agent silently abandoned the remaining work with
'(empty)' or used prior-turn fallback text.
Fix: when the model returns empty after tool calls AND there's
no prior-turn content to fall back on, inject a one-time user
nudge message telling the model to process the tool results and
continue. The flag resets after each successful tool round so it
can fire again on later rounds.
Test plan: 97 gateway + CLI tests pass, 9 venv detection tests pass
2026-04-14 21:15:53 -07:00
then ` ` VIRTUAL_ENV ` ` env var ( covers uv - managed environments where
sys . prefix == sys . base_prefix ) , then falls back to probing common
directory names under PROJECT_ROOT .
2026-03-24 07:05:57 -07:00
Returns ` ` None ` ` when no virtualenv can be found .
"""
# If we're running inside a virtualenv, sys.prefix points to it.
if sys . prefix != sys . base_prefix :
venv = Path ( sys . prefix )
if venv . is_dir ( ) :
return venv
fix: stale agent timeout, uv venv detection, empty response after tools (#9051, #8620, #9400)
Three independent fixes:
1. Reset activity timestamp on cached agent reuse (#9051)
When the gateway reuses a cached AIAgent for a new turn, the
_last_activity_ts from the previous turn (possibly hours ago)
carried over. The inactivity timeout handler immediately saw
the agent as idle for hours and killed it.
Fix: reset _last_activity_ts, _last_activity_desc, and
_api_call_count when retrieving an agent from the cache.
2. Detect uv-managed virtual environments (#8620 sub-issue 1)
The systemd unit generator fell back to sys.executable (uv's
standalone Python) when running under 'uv run', because
sys.prefix == sys.base_prefix (uv doesn't set up traditional
venv activation). The generated ExecStart pointed to a Python
binary without site-packages, crashing the service on startup.
Fix: check VIRTUAL_ENV env var before falling back to
sys.executable. uv sets VIRTUAL_ENV even when sys.prefix
doesn't reflect the venv.
3. Nudge model to continue after empty post-tool response (#9400)
Weaker models (GLM-5, mimo-v2-pro) sometimes return empty
responses after tool calls instead of continuing to the next
step. The agent silently abandoned the remaining work with
'(empty)' or used prior-turn fallback text.
Fix: when the model returns empty after tool calls AND there's
no prior-turn content to fall back on, inject a one-time user
nudge message telling the model to process the tool results and
continue. The flag resets after each successful tool round so it
can fire again on later rounds.
Test plan: 97 gateway + CLI tests pass, 9 venv detection tests pass
2026-04-14 21:15:53 -07:00
# uv and some other tools set VIRTUAL_ENV without changing sys.prefix.
# This catches `uv run` where sys.prefix == sys.base_prefix but the
# environment IS a venv. (#8620)
_virtual_env = os . environ . get ( " VIRTUAL_ENV " )
if _virtual_env :
venv = Path ( _virtual_env )
if venv . is_dir ( ) :
return venv
2026-03-24 07:05:57 -07:00
# Fallback: check common virtualenv directory names under the project root.
for candidate in ( " .venv " , " venv " ) :
venv = PROJECT_ROOT / candidate
if venv . is_dir ( ) :
return venv
return None
2026-02-02 19:01:51 -08:00
def get_python_path ( ) - > str :
2026-03-24 07:05:57 -07:00
venv = _detect_venv_dir ( )
if venv is not None :
if is_windows ( ) :
venv_python = venv / " Scripts " / " python.exe "
else :
venv_python = venv / " bin " / " python "
if venv_python . exists ( ) :
return str ( venv_python )
2026-02-02 19:01:51 -08:00
return sys . executable
# =============================================================================
# Systemd (Linux)
# =============================================================================
2026-03-28 07:47:40 -07:00
def _build_user_local_paths ( home : Path , path_entries : list [ str ] ) - > list [ str ] :
""" Return user-local bin dirs that exist and aren ' t already in *path_entries*. """
candidates = [
str ( home / " .local " / " bin " ) , # uv, uvx, pip-installed CLIs
str ( home / " .cargo " / " bin " ) , # Rust/cargo tools
str ( home / " go " / " bin " ) , # Go tools
str ( home / " .npm-global " / " bin " ) , # npm global packages
]
return [ p for p in candidates if p not in path_entries and Path ( p ) . exists ( ) ]
2026-04-10 03:21:04 -07:00
def _remap_path_for_user ( path : str , target_home_dir : str ) - > str :
""" Remap *path* from the current user ' s home to *target_home_dir*.
If * path * lives under ` ` Path . home ( ) ` ` the corresponding prefix is swapped
to * target_home_dir * ; otherwise the path is returned unchanged .
/ root / . hermes / hermes - agent - > / home / alice / . hermes / hermes - agent
/ opt / hermes - > / opt / hermes ( kept as - is )
2026-04-11 13:14:40 +00:00
Note : this function intentionally does NOT resolve symlinks . A venv ' s
` ` bin / python ` ` is typically a symlink to the base interpreter ( e . g . a
uv - managed CPython at ` ` ~ / . local / share / uv / python / . . . / python3 .11 ` ` ) ;
resolving that symlink swaps the unit ' s ``ExecStart`` to a bare Python
that has none of the venv ' s site-packages, so the service crashes on
the first ` ` import ` ` . Keep the symlinked path so the venv activates
its own environment . Lexical expansion only via ` ` expanduser ` ` .
2026-04-10 03:21:04 -07:00
"""
2026-04-11 13:14:40 +00:00
current_home = Path . home ( )
p = Path ( path ) . expanduser ( )
2026-04-10 03:21:04 -07:00
try :
2026-04-11 13:14:40 +00:00
relative = p . relative_to ( current_home )
2026-04-10 03:21:04 -07:00
return str ( Path ( target_home_dir ) / relative )
except ValueError :
2026-04-11 13:14:40 +00:00
return str ( p )
2026-04-10 03:21:04 -07:00
2026-04-01 23:00:51 +11:00
def _hermes_home_for_target_user ( target_home_dir : str ) - > str :
""" Remap the current HERMES_HOME to the equivalent under a target user ' s home.
When installing a system service via sudo , get_hermes_home ( ) resolves to
root ' s home. This translates it to the target user ' s equivalent path :
/ root / . hermes → / home / alice / . hermes
/ root / . hermes / profiles / coder → / home / alice / . hermes / profiles / coder
/ opt / custom - hermes → / opt / custom - hermes ( kept as - is )
"""
current_hermes = get_hermes_home ( ) . resolve ( )
current_default = ( Path . home ( ) / " .hermes " ) . resolve ( )
target_default = Path ( target_home_dir ) / " .hermes "
# Default ~/.hermes → remap to target user's default
if current_hermes == current_default :
return str ( target_default )
# Profile or subdir of ~/.hermes → preserve the relative structure
try :
relative = current_hermes . relative_to ( current_default )
return str ( target_default / relative )
except ValueError :
# Completely custom path (not under ~/.hermes) — keep as-is
return str ( current_hermes )
2026-03-14 20:54:51 -07:00
def generate_systemd_unit ( system : bool = False , run_as_user : str | None = None ) - > str :
2026-02-02 19:01:51 -08:00
python_path = get_python_path ( )
working_dir = str ( PROJECT_ROOT )
2026-03-24 07:05:57 -07:00
detected_venv = _detect_venv_dir ( )
venv_dir = str ( detected_venv ) if detected_venv else str ( PROJECT_ROOT / " venv " )
venv_bin = str ( detected_venv / " bin " ) if detected_venv else str ( PROJECT_ROOT / " venv " / " bin " )
2026-03-08 04:36:23 -07:00
node_bin = str ( PROJECT_ROOT / " node_modules " / " .bin " )
2026-03-17 15:11:28 +00:00
path_entries = [ venv_bin , node_bin ]
resolved_node = shutil . which ( " node " )
if resolved_node :
resolved_node_dir = str ( Path ( resolved_node ) . resolve ( ) . parent )
if resolved_node_dir not in path_entries :
path_entries . append ( resolved_node_dir )
2026-03-14 20:54:51 -07:00
2026-03-28 07:47:40 -07:00
common_bin_paths = [ " /usr/local/sbin " , " /usr/local/bin " , " /usr/sbin " , " /usr/bin " , " /sbin " , " /bin " ]
2026-04-10 10:19:17 -07:00
restart_timeout = max ( 60 , int ( _get_restart_drain_timeout ( ) or 0 ) )
2026-03-28 07:47:40 -07:00
2026-03-14 20:54:51 -07:00
if system :
username , group_name , home_dir = _system_service_identity ( run_as_user )
2026-04-01 23:00:51 +11:00
hermes_home = _hermes_home_for_target_user ( home_dir )
2026-04-07 21:18:39 +02:00
profile_arg = _profile_arg ( hermes_home )
2026-04-10 03:21:04 -07:00
# Remap all paths that may resolve under the calling user's home
# (e.g. /root/) to the target user's home so the service can
# actually access them.
python_path = _remap_path_for_user ( python_path , home_dir )
working_dir = _remap_path_for_user ( working_dir , home_dir )
venv_dir = _remap_path_for_user ( venv_dir , home_dir )
venv_bin = _remap_path_for_user ( venv_bin , home_dir )
node_bin = _remap_path_for_user ( node_bin , home_dir )
path_entries = [ _remap_path_for_user ( p , home_dir ) for p in path_entries ]
2026-03-28 07:47:40 -07:00
path_entries . extend ( _build_user_local_paths ( Path ( home_dir ) , path_entries ) )
path_entries . extend ( common_bin_paths )
sane_path = " : " . join ( path_entries )
2026-03-14 20:54:51 -07:00
return f """ [Unit]
Description = { SERVICE_DESCRIPTION }
After = network - online . target
Wants = network - online . target
2026-03-21 09:26:39 -07:00
StartLimitIntervalSec = 600
StartLimitBurst = 5
2026-03-14 20:54:51 -07:00
[ Service ]
Type = simple
User = { username }
Group = { group_name }
2026-04-07 21:18:39 +02:00
ExecStart = { python_path } - m hermes_cli . main { f " { profile_arg } " if profile_arg else " " } gateway run - - replace
2026-03-14 20:54:51 -07:00
WorkingDirectory = { working_dir }
Environment = " HOME= {home_dir} "
Environment = " USER= {username} "
Environment = " LOGNAME= {username} "
Environment = " PATH= {sane_path} "
Environment = " VIRTUAL_ENV= {venv_dir} "
2026-03-16 04:42:46 -07:00
Environment = " HERMES_HOME= {hermes_home} "
2026-03-14 20:54:51 -07:00
Restart = on - failure
2026-03-21 09:26:39 -07:00
RestartSec = 30
2026-04-10 14:00:21 -07:00
RestartForceExitStatus = { GATEWAY_SERVICE_RESTART_EXIT_CODE }
2026-03-14 20:54:51 -07:00
KillMode = mixed
KillSignal = SIGTERM
2026-04-10 10:19:17 -07:00
ExecReload = / bin / kill - USR1 $ MAINPID
TimeoutStopSec = { restart_timeout }
2026-03-14 20:54:51 -07:00
StandardOutput = journal
StandardError = journal
[ Install ]
WantedBy = multi - user . target
"""
2026-04-01 23:00:51 +11:00
hermes_home = str ( get_hermes_home ( ) . resolve ( ) )
2026-04-07 21:18:39 +02:00
profile_arg = _profile_arg ( hermes_home )
2026-03-28 07:47:40 -07:00
path_entries . extend ( _build_user_local_paths ( Path . home ( ) , path_entries ) )
path_entries . extend ( common_bin_paths )
sane_path = " : " . join ( path_entries )
2026-02-02 19:01:51 -08:00
return f """ [Unit]
Description = { SERVICE_DESCRIPTION }
After = network . target
2026-03-21 09:26:39 -07:00
StartLimitIntervalSec = 600
StartLimitBurst = 5
2026-02-02 19:01:51 -08:00
[ Service ]
Type = simple
2026-04-07 21:18:39 +02:00
ExecStart = { python_path } - m hermes_cli . main { f " { profile_arg } " if profile_arg else " " } gateway run - - replace
2026-02-02 19:01:51 -08:00
WorkingDirectory = { working_dir }
2026-03-08 04:36:23 -07:00
Environment = " PATH= {sane_path} "
Environment = " VIRTUAL_ENV= {venv_dir} "
2026-03-16 04:42:46 -07:00
Environment = " HERMES_HOME= {hermes_home} "
2026-02-02 19:01:51 -08:00
Restart = on - failure
2026-03-21 09:26:39 -07:00
RestartSec = 30
2026-04-10 14:00:21 -07:00
RestartForceExitStatus = { GATEWAY_SERVICE_RESTART_EXIT_CODE }
2026-03-07 18:08:12 +00:00
KillMode = mixed
KillSignal = SIGTERM
2026-04-10 10:19:17 -07:00
ExecReload = / bin / kill - USR1 $ MAINPID
TimeoutStopSec = { restart_timeout }
2026-02-02 19:01:51 -08:00
StandardOutput = journal
StandardError = journal
[ Install ]
WantedBy = default . target
"""
2026-03-14 07:42:31 -07:00
def _normalize_service_definition ( text : str ) - > str :
return " \n " . join ( line . rstrip ( ) for line in text . strip ( ) . splitlines ( ) )
2026-04-11 17:31:22 -03:00
def _normalize_launchd_plist_for_comparison ( text : str ) - > str :
""" Normalize launchd plist text for staleness checks.
The generated plist intentionally captures a broad PATH assembled from the
invoking shell so user - installed tools remain reachable under launchd .
That makes raw text comparison unstable across shells , so ignore the PATH
payload when deciding whether the installed plist is stale .
"""
import re
normalized = _normalize_service_definition ( text )
return re . sub (
r ' (<key>PATH</key> \ s*<string>)(.*?)(</string>) ' ,
r ' \ 1__HERMES_PATH__ \ 3 ' ,
normalized ,
flags = re . S ,
)
2026-03-14 20:54:51 -07:00
def systemd_unit_is_current ( system : bool = False ) - > bool :
unit_path = get_systemd_unit_path ( system = system )
2026-03-14 07:42:31 -07:00
if not unit_path . exists ( ) :
return False
installed = unit_path . read_text ( encoding = " utf-8 " )
2026-03-14 20:54:51 -07:00
expected_user = _read_systemd_user_from_unit ( unit_path ) if system else None
expected = generate_systemd_unit ( system = system , run_as_user = expected_user )
2026-03-14 07:42:31 -07:00
return _normalize_service_definition ( installed ) == _normalize_service_definition ( expected )
2026-03-14 20:54:51 -07:00
def refresh_systemd_unit_if_needed ( system : bool = False ) - > bool :
""" Rewrite the installed systemd unit when the generated definition has changed. """
unit_path = get_systemd_unit_path ( system = system )
if not unit_path . exists ( ) or systemd_unit_is_current ( system = system ) :
2026-03-14 07:42:31 -07:00
return False
2026-03-14 20:54:51 -07:00
expected_user = _read_systemd_user_from_unit ( unit_path ) if system else None
unit_path . write_text ( generate_systemd_unit ( system = system , run_as_user = expected_user ) , encoding = " utf-8 " )
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " daemon-reload " ] , system = system , check = True , timeout = 30 )
2026-03-14 20:54:51 -07:00
print ( f " ↻ Updated gateway { _service_scope_label ( system ) } service definition to match the current Hermes install " )
2026-03-14 07:42:31 -07:00
return True
2026-03-12 12:35:43 +03:00
def _print_linger_enable_warning ( username : str , detail : str | None = None ) - > None :
print ( )
print ( " ⚠ Linger not enabled — gateway may stop when you close this terminal. " )
if detail :
print ( f " Auto-enable failed: { detail } " )
print ( )
print ( " On headless servers (VPS, cloud instances) run: " )
print ( f " sudo loginctl enable-linger { username } " )
print ( )
print ( " Then restart the gateway: " )
2026-03-16 04:42:46 -07:00
print ( f " systemctl --user restart { get_service_name ( ) } .service " )
2026-03-12 12:35:43 +03:00
print ( )
def _ensure_linger_enabled ( ) - > None :
""" Enable linger when possible so the user gateway survives logout. """
2026-04-09 10:29:32 +02:00
if is_termux ( ) or not is_linux ( ) :
2026-03-12 12:35:43 +03:00
return
import getpass
username = getpass . getuser ( )
linger_file = Path ( f " /var/lib/systemd/linger/ { username } " )
if linger_file . exists ( ) :
print ( " ✓ Systemd linger is enabled (service survives logout) " )
return
linger_enabled , linger_detail = get_systemd_linger_status ( )
if linger_enabled is True :
print ( " ✓ Systemd linger is enabled (service survives logout) " )
return
if not shutil . which ( " loginctl " ) :
_print_linger_enable_warning ( username , linger_detail or " loginctl not found " )
return
print ( " Enabling linger so the gateway survives SSH logout... " )
try :
result = subprocess . run (
[ " loginctl " , " enable-linger " , username ] ,
capture_output = True ,
text = True ,
check = False ,
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
timeout = 30 ,
2026-03-12 12:35:43 +03:00
)
except Exception as e :
_print_linger_enable_warning ( username , str ( e ) )
return
if result . returncode == 0 :
print ( " ✓ Linger enabled — gateway will persist after logout " )
return
detail = ( result . stderr or result . stdout or f " exit { result . returncode } " ) . strip ( )
_print_linger_enable_warning ( username , detail or linger_detail )
2026-03-14 20:54:51 -07:00
def _select_systemd_scope ( system : bool = False ) - > bool :
if system :
return True
return get_systemd_unit_path ( system = True ) . exists ( ) and not get_systemd_unit_path ( system = False ) . exists ( )
2026-04-10 10:19:17 -07:00
def _get_restart_drain_timeout ( ) - > float :
""" Return the configured gateway restart drain timeout in seconds. """
raw = os . getenv ( " HERMES_RESTART_DRAIN_TIMEOUT " , " " ) . strip ( )
if not raw :
cfg = read_raw_config ( )
agent_cfg = cfg . get ( " agent " , { } ) if isinstance ( cfg , dict ) else { }
2026-04-10 14:00:21 -07:00
raw = str (
agent_cfg . get (
" restart_drain_timeout " , DEFAULT_GATEWAY_RESTART_DRAIN_TIMEOUT
)
)
return parse_restart_drain_timeout ( raw )
2026-04-10 10:19:17 -07:00
2026-03-14 20:54:51 -07:00
def systemd_install ( force : bool = False , system : bool = False , run_as_user : str | None = None ) :
if system :
_require_root_for_system_service ( " install " )
fix(gateway): detect legacy hermes.service + mark --replace SIGTERM as planned (#11909)
* fix(gateway): detect legacy hermes.service units from pre-rename installs
Older Hermes installs used a different service name (hermes.service) before
the rename to hermes-gateway.service. When both units remain installed, they
fight over the same bot token — after PR #5646's signal-recovery change,
this manifests as a 30-second SIGTERM flap loop between the two services.
Detection is an explicit allowlist (no globbing) plus an ExecStart content
check, so profile units (hermes-gateway-<profile>.service) and unrelated
third-party services named 'hermes' are never matched.
Wired into systemd_install, systemd_status, gateway_setup wizard, and the
main hermes setup flow — anywhere we already warn about scope conflicts now
also warns about legacy units.
* feat(gateway): add migrate-legacy command + install-time removal prompt
- New hermes_cli.gateway.remove_legacy_hermes_units() removes legacy
unit files with stop → disable → unlink → daemon-reload. Handles user
and system scopes separately; system scope returns path list when not
running as root so the caller can tell the user to re-run with sudo.
- New 'hermes gateway migrate-legacy' subcommand (with --dry-run and -y)
routes to remove_legacy_hermes_units via gateway_command dispatch.
- systemd_install now offers to remove legacy units BEFORE installing
the new hermes-gateway.service, preventing the SIGTERM flap loop that
hits users who still have pre-rename hermes.service around.
Profile units (hermes-gateway-<profile>.service) remain untouched in
all paths — the legacy allowlist is explicit (_LEGACY_SERVICE_NAMES)
and the ExecStart content check further narrows matches.
* fix(gateway): mark --replace SIGTERM as planned so target exits 0
PR #5646 made SIGTERM exit the gateway with code 1 so systemd's
Restart=on-failure revives it after unexpected kills. But when a user has
two gateway units fighting for the same bot token (e.g. legacy
hermes.service + hermes-gateway.service from a pre-rename install), the
--replace takeover itself becomes the 'unexpected' SIGTERM — the loser
exits 1, systemd revives it 30s later, and the cycle flaps indefinitely.
Before calling terminate_pid(), --replace now writes a short-lived marker
file naming the target PID + start_time. The target's shutdown_signal_handler
consumes the marker and, when it names this process, leaves
_signal_initiated_shutdown=False so the final exit code stays 0.
Staleness defences:
- PID + start_time combo prevents PID reuse matching an old marker
- Marker older than 60s is treated as stale and discarded
- Marker is unlinked on first read even if it doesn't match this process
- Replacer clears the marker post-loop + on permission-denied give-up
2026-04-17 19:27:58 -07:00
# Offer to remove legacy units (hermes.service from pre-rename installs)
# before installing the new hermes-gateway.service. If both remain, they
# flap-fight for the Telegram bot token on every gateway startup.
# Only removes units matching _LEGACY_SERVICE_NAMES + our ExecStart
# signature — profile units are never touched.
if has_legacy_hermes_units ( ) :
print ( )
print_legacy_unit_warning ( )
print ( )
if prompt_yes_no ( " Remove the legacy unit(s) before installing? " , True ) :
remove_legacy_hermes_units ( interactive = False )
print ( )
2026-03-14 20:54:51 -07:00
unit_path = get_systemd_unit_path ( system = system )
scope_flag = " --system " if system else " "
2026-02-02 19:01:51 -08:00
if unit_path . exists ( ) and not force :
2026-03-17 11:05:28 +08:00
if not systemd_unit_is_current ( system = system ) :
print ( f " ↻ Repairing outdated { _service_scope_label ( system ) } systemd service at: { unit_path } " )
refresh_systemd_unit_if_needed ( system = system )
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " enable " , get_service_name ( ) ] , system = system , check = True , timeout = 30 )
2026-03-17 11:05:28 +08:00
print ( f " ✓ { _service_scope_label ( system ) . capitalize ( ) } service definition updated " )
return
2026-02-02 19:01:51 -08:00
print ( f " Service already installed at: { unit_path } " )
print ( " Use --force to reinstall " )
return
2026-03-14 20:54:51 -07:00
2026-02-02 19:01:51 -08:00
unit_path . parent . mkdir ( parents = True , exist_ok = True )
2026-03-14 20:54:51 -07:00
print ( f " Installing { _service_scope_label ( system ) } systemd service to: { unit_path } " )
unit_path . write_text ( generate_systemd_unit ( system = system , run_as_user = run_as_user ) , encoding = " utf-8 " )
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " daemon-reload " ] , system = system , check = True , timeout = 30 )
_run_systemctl ( [ " enable " , get_service_name ( ) ] , system = system , check = True , timeout = 30 )
2026-03-14 20:54:51 -07:00
2026-02-02 19:01:51 -08:00
print ( )
2026-03-14 20:54:51 -07:00
print ( f " ✓ { _service_scope_label ( system ) . capitalize ( ) } service installed and enabled! " )
2026-02-02 19:01:51 -08:00
print ( )
print ( " Next steps: " )
2026-03-14 20:54:51 -07:00
print ( f " { ' sudo ' if system else ' ' } hermes gateway start { scope_flag } # Start the service " )
print ( f " { ' sudo ' if system else ' ' } hermes gateway status { scope_flag } # Check status " )
2026-03-16 04:42:46 -07:00
print ( f " { ' journalctl ' if system else ' journalctl --user ' } -u { get_service_name ( ) } -f # View logs " )
2026-02-02 19:01:51 -08:00
print ( )
2026-03-14 20:54:51 -07:00
if system :
configured_user = _read_systemd_user_from_unit ( unit_path )
if configured_user :
print ( f " Configured to run as: { configured_user } " )
else :
_ensure_linger_enabled ( )
2026-03-14 21:06:52 -07:00
print_systemd_scope_conflict_warning ( )
fix(gateway): detect legacy hermes.service + mark --replace SIGTERM as planned (#11909)
* fix(gateway): detect legacy hermes.service units from pre-rename installs
Older Hermes installs used a different service name (hermes.service) before
the rename to hermes-gateway.service. When both units remain installed, they
fight over the same bot token — after PR #5646's signal-recovery change,
this manifests as a 30-second SIGTERM flap loop between the two services.
Detection is an explicit allowlist (no globbing) plus an ExecStart content
check, so profile units (hermes-gateway-<profile>.service) and unrelated
third-party services named 'hermes' are never matched.
Wired into systemd_install, systemd_status, gateway_setup wizard, and the
main hermes setup flow — anywhere we already warn about scope conflicts now
also warns about legacy units.
* feat(gateway): add migrate-legacy command + install-time removal prompt
- New hermes_cli.gateway.remove_legacy_hermes_units() removes legacy
unit files with stop → disable → unlink → daemon-reload. Handles user
and system scopes separately; system scope returns path list when not
running as root so the caller can tell the user to re-run with sudo.
- New 'hermes gateway migrate-legacy' subcommand (with --dry-run and -y)
routes to remove_legacy_hermes_units via gateway_command dispatch.
- systemd_install now offers to remove legacy units BEFORE installing
the new hermes-gateway.service, preventing the SIGTERM flap loop that
hits users who still have pre-rename hermes.service around.
Profile units (hermes-gateway-<profile>.service) remain untouched in
all paths — the legacy allowlist is explicit (_LEGACY_SERVICE_NAMES)
and the ExecStart content check further narrows matches.
* fix(gateway): mark --replace SIGTERM as planned so target exits 0
PR #5646 made SIGTERM exit the gateway with code 1 so systemd's
Restart=on-failure revives it after unexpected kills. But when a user has
two gateway units fighting for the same bot token (e.g. legacy
hermes.service + hermes-gateway.service from a pre-rename install), the
--replace takeover itself becomes the 'unexpected' SIGTERM — the loser
exits 1, systemd revives it 30s later, and the cycle flaps indefinitely.
Before calling terminate_pid(), --replace now writes a short-lived marker
file naming the target PID + start_time. The target's shutdown_signal_handler
consumes the marker and, when it names this process, leaves
_signal_initiated_shutdown=False so the final exit code stays 0.
Staleness defences:
- PID + start_time combo prevents PID reuse matching an old marker
- Marker older than 60s is treated as stale and discarded
- Marker is unlinked on first read even if it doesn't match this process
- Replacer clears the marker post-loop + on permission-denied give-up
2026-04-17 19:27:58 -07:00
print_legacy_unit_warning ( )
2026-03-14 21:06:52 -07:00
2026-03-14 20:54:51 -07:00
def systemd_uninstall ( system : bool = False ) :
system = _select_systemd_scope ( system )
if system :
_require_root_for_system_service ( " uninstall " )
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " stop " , get_service_name ( ) ] , system = system , check = False , timeout = 90 )
_run_systemctl ( [ " disable " , get_service_name ( ) ] , system = system , check = False , timeout = 30 )
2026-03-14 20:54:51 -07:00
unit_path = get_systemd_unit_path ( system = system )
2026-02-02 19:01:51 -08:00
if unit_path . exists ( ) :
unit_path . unlink ( )
print ( f " ✓ Removed { unit_path } " )
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " daemon-reload " ] , system = system , check = True , timeout = 30 )
2026-03-14 20:54:51 -07:00
print ( f " ✓ { _service_scope_label ( system ) . capitalize ( ) } service uninstalled " )
2026-02-02 19:01:51 -08:00
2026-03-14 07:42:31 -07:00
2026-03-14 20:54:51 -07:00
def systemd_start ( system : bool = False ) :
system = _select_systemd_scope ( system )
if system :
_require_root_for_system_service ( " start " )
refresh_systemd_unit_if_needed ( system = system )
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " start " , get_service_name ( ) ] , system = system , check = True , timeout = 30 )
2026-03-14 20:54:51 -07:00
print ( f " ✓ { _service_scope_label ( system ) . capitalize ( ) } service started " )
2026-02-02 19:01:51 -08:00
2026-03-14 07:42:31 -07:00
2026-02-02 19:01:51 -08:00
2026-03-14 20:54:51 -07:00
def systemd_stop ( system : bool = False ) :
system = _select_systemd_scope ( system )
if system :
_require_root_for_system_service ( " stop " )
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " stop " , get_service_name ( ) ] , system = system , check = True , timeout = 90 )
2026-03-14 20:54:51 -07:00
print ( f " ✓ { _service_scope_label ( system ) . capitalize ( ) } service stopped " )
def systemd_restart ( system : bool = False ) :
system = _select_systemd_scope ( system )
if system :
_require_root_for_system_service ( " restart " )
refresh_systemd_unit_if_needed ( system = system )
2026-04-10 13:51:23 -07:00
from gateway . status import get_running_pid
pid = get_running_pid ( )
if pid is not None and _request_gateway_self_restart ( pid ) :
2026-04-14 17:12:12 -07:00
# SIGUSR1 sent — the gateway will drain active agents, exit with
# code 75, and systemd will restart it after RestartSec (30s).
# Wait for the old process to die and the new one to become active
# so the CLI doesn't return while the service is still restarting.
import time
scope_label = _service_scope_label ( system ) . capitalize ( )
svc = get_service_name ( )
scope_cmd = _systemctl_cmd ( system )
# Phase 1: wait for old process to exit (drain + shutdown)
print ( f " ⏳ { scope_label } service draining active work... " )
deadline = time . time ( ) + 90
while time . time ( ) < deadline :
try :
os . kill ( pid , 0 )
time . sleep ( 1 )
except ( ProcessLookupError , PermissionError ) :
break # old process is gone
else :
print ( f " ⚠ Old process (PID { pid } ) still alive after 90s " )
# Phase 2: wait for systemd to start the new process
print ( f " ⏳ Waiting for { svc } to restart... " )
deadline = time . time ( ) + 60
while time . time ( ) < deadline :
try :
result = subprocess . run (
scope_cmd + [ " is-active " , svc ] ,
capture_output = True , text = True , timeout = 5 ,
)
if result . stdout . strip ( ) == " active " :
# Verify it's a NEW process, not the old one somehow
new_pid = get_running_pid ( )
if new_pid and new_pid != pid :
print ( f " ✓ { scope_label } service restarted (PID { new_pid } ) " )
return
except ( subprocess . TimeoutExpired , FileNotFoundError ) :
pass
time . sleep ( 2 )
# Timed out — check final state
try :
result = subprocess . run (
scope_cmd + [ " is-active " , svc ] ,
capture_output = True , text = True , timeout = 5 ,
)
if result . stdout . strip ( ) == " active " :
print ( f " ✓ { scope_label } service restarted " )
return
except Exception :
pass
print (
f " ⚠ { scope_label } service did not become active within 60s. \n "
f " Check status: { ' sudo ' if system else ' ' } hermes gateway status \n "
f " Check logs: journalctl { ' --user ' if not system else ' ' } -u { svc } --since ' 2 min ago ' "
)
2026-04-10 13:51:23 -07:00
return
2026-04-12 14:42:46 -07:00
_run_systemctl ( [ " reload-or-restart " , get_service_name ( ) ] , system = system , check = True , timeout = 90 )
2026-03-14 20:54:51 -07:00
print ( f " ✓ { _service_scope_label ( system ) . capitalize ( ) } service restarted " )
def systemd_status ( deep : bool = False , system : bool = False ) :
system = _select_systemd_scope ( system )
unit_path = get_systemd_unit_path ( system = system )
scope_flag = " --system " if system else " "
2026-03-14 07:42:31 -07:00
2026-02-02 19:01:51 -08:00
if not unit_path . exists ( ) :
print ( " ✗ Gateway service is not installed " )
2026-03-14 20:54:51 -07:00
print ( f " Run: { ' sudo ' if system else ' ' } hermes gateway install { scope_flag } " )
2026-02-02 19:01:51 -08:00
return
2026-03-14 06:11:33 -07:00
2026-03-14 21:06:52 -07:00
if has_conflicting_systemd_units ( ) :
print_systemd_scope_conflict_warning ( )
print ( )
fix(gateway): detect legacy hermes.service + mark --replace SIGTERM as planned (#11909)
* fix(gateway): detect legacy hermes.service units from pre-rename installs
Older Hermes installs used a different service name (hermes.service) before
the rename to hermes-gateway.service. When both units remain installed, they
fight over the same bot token — after PR #5646's signal-recovery change,
this manifests as a 30-second SIGTERM flap loop between the two services.
Detection is an explicit allowlist (no globbing) plus an ExecStart content
check, so profile units (hermes-gateway-<profile>.service) and unrelated
third-party services named 'hermes' are never matched.
Wired into systemd_install, systemd_status, gateway_setup wizard, and the
main hermes setup flow — anywhere we already warn about scope conflicts now
also warns about legacy units.
* feat(gateway): add migrate-legacy command + install-time removal prompt
- New hermes_cli.gateway.remove_legacy_hermes_units() removes legacy
unit files with stop → disable → unlink → daemon-reload. Handles user
and system scopes separately; system scope returns path list when not
running as root so the caller can tell the user to re-run with sudo.
- New 'hermes gateway migrate-legacy' subcommand (with --dry-run and -y)
routes to remove_legacy_hermes_units via gateway_command dispatch.
- systemd_install now offers to remove legacy units BEFORE installing
the new hermes-gateway.service, preventing the SIGTERM flap loop that
hits users who still have pre-rename hermes.service around.
Profile units (hermes-gateway-<profile>.service) remain untouched in
all paths — the legacy allowlist is explicit (_LEGACY_SERVICE_NAMES)
and the ExecStart content check further narrows matches.
* fix(gateway): mark --replace SIGTERM as planned so target exits 0
PR #5646 made SIGTERM exit the gateway with code 1 so systemd's
Restart=on-failure revives it after unexpected kills. But when a user has
two gateway units fighting for the same bot token (e.g. legacy
hermes.service + hermes-gateway.service from a pre-rename install), the
--replace takeover itself becomes the 'unexpected' SIGTERM — the loser
exits 1, systemd revives it 30s later, and the cycle flaps indefinitely.
Before calling terminate_pid(), --replace now writes a short-lived marker
file naming the target PID + start_time. The target's shutdown_signal_handler
consumes the marker and, when it names this process, leaves
_signal_initiated_shutdown=False so the final exit code stays 0.
Staleness defences:
- PID + start_time combo prevents PID reuse matching an old marker
- Marker older than 60s is treated as stale and discarded
- Marker is unlinked on first read even if it doesn't match this process
- Replacer clears the marker post-loop + on permission-denied give-up
2026-04-17 19:27:58 -07:00
if has_legacy_hermes_units ( ) :
print_legacy_unit_warning ( )
print ( )
2026-03-14 20:54:51 -07:00
if not systemd_unit_is_current ( system = system ) :
2026-03-14 07:42:31 -07:00
print ( " ⚠ Installed gateway service definition is outdated " )
2026-03-14 20:54:51 -07:00
print ( f " Run: { ' sudo ' if system else ' ' } hermes gateway restart { scope_flag } # auto-refreshes the unit " )
2026-03-14 07:42:31 -07:00
print ( )
2026-03-14 20:54:51 -07:00
2026-04-12 14:42:46 -07:00
_run_systemctl (
[ " status " , get_service_name ( ) , " --no-pager " ] ,
system = system ,
2026-03-14 20:54:51 -07:00
capture_output = False ,
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
timeout = 10 ,
2026-02-02 19:01:51 -08:00
)
2026-03-14 06:11:33 -07:00
2026-04-12 14:42:46 -07:00
result = _run_systemctl (
[ " is-active " , get_service_name ( ) ] ,
system = system ,
2026-02-02 19:01:51 -08:00
capture_output = True ,
2026-03-14 20:54:51 -07:00
text = True ,
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
timeout = 10 ,
2026-02-02 19:01:51 -08:00
)
2026-03-14 06:11:33 -07:00
2026-02-02 19:01:51 -08:00
status = result . stdout . strip ( )
2026-03-14 06:11:33 -07:00
2026-02-02 19:01:51 -08:00
if status == " active " :
2026-03-14 20:54:51 -07:00
print ( f " ✓ { _service_scope_label ( system ) . capitalize ( ) } gateway service is running " )
2026-02-02 19:01:51 -08:00
else :
2026-03-14 20:54:51 -07:00
print ( f " ✗ { _service_scope_label ( system ) . capitalize ( ) } gateway service is stopped " )
print ( f " Run: { ' sudo ' if system else ' ' } hermes gateway start { scope_flag } " )
configured_user = _read_systemd_user_from_unit ( unit_path ) if system else None
if configured_user :
print ( f " Configured to run as: { configured_user } " )
2026-03-14 06:11:33 -07:00
2026-03-14 12:11:23 -07:00
runtime_lines = _runtime_health_lines ( )
if runtime_lines :
print ( )
print ( " Recent gateway health: " )
for line in runtime_lines :
print ( f " { line } " )
2026-03-14 20:54:51 -07:00
if system :
print ( " ✓ System service starts at boot without requiring systemd linger " )
elif deep :
2026-03-14 06:11:33 -07:00
print_systemd_linger_guidance ( )
else :
linger_enabled , _ = get_systemd_linger_status ( )
if linger_enabled is True :
print ( " ✓ Systemd linger is enabled (service survives logout) " )
elif linger_enabled is False :
print ( " ⚠ Systemd linger is disabled (gateway may stop when you log out) " )
print ( " Run: sudo loginctl enable-linger $USER " )
2026-02-02 19:01:51 -08:00
if deep :
print ( )
print ( " Recent logs: " )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( _journalctl_cmd ( system ) + [ " -u " , get_service_name ( ) , " -n " , " 20 " , " --no-pager " ] , timeout = 10 )
2026-02-02 19:01:51 -08:00
# =============================================================================
# Launchd (macOS)
# =============================================================================
2026-03-28 13:51:08 -07:00
def get_launchd_label ( ) - > str :
""" Return the launchd service label, scoped per profile. """
suffix = _profile_suffix ( )
return f " ai.hermes.gateway- { suffix } " if suffix else " ai.hermes.gateway "
2026-04-03 15:46:23 -07:00
def _launchd_domain ( ) - > str :
return f " gui/ { os . getuid ( ) } "
2026-02-02 19:01:51 -08:00
def generate_launchd_plist ( ) - > str :
python_path = get_python_path ( )
working_dir = str ( PROJECT_ROOT )
2026-03-28 13:51:08 -07:00
hermes_home = str ( get_hermes_home ( ) . resolve ( ) )
fix(cli): respect HERMES_HOME in all remaining hardcoded ~/.hermes paths
Several files resolved paths via Path.home() / ".hermes" or
os.path.expanduser("~/.hermes/..."), bypassing the HERMES_HOME
environment variable. This broke isolation when running multiple
Hermes instances with distinct HERMES_HOME directories.
Replace all hardcoded paths with calls to get_hermes_home() from
hermes_cli.config, consistent with the rest of the codebase.
Files fixed:
- tools/process_registry.py (processes.json)
- gateway/pairing.py (pairing/)
- gateway/sticker_cache.py (sticker_cache.json)
- gateway/channel_directory.py (channel_directory.json, sessions.json)
- gateway/config.py (gateway.json, config.yaml, sessions_dir)
- gateway/mirror.py (sessions/)
- gateway/hooks.py (hooks/)
- gateway/platforms/base.py (image_cache/, audio_cache/, document_cache/)
- gateway/platforms/whatsapp.py (whatsapp/session)
- gateway/delivery.py (cron/output)
- agent/auxiliary_client.py (auth.json)
- agent/prompt_builder.py (SOUL.md)
- cli.py (config.yaml, images/, pastes/, history)
- run_agent.py (logs/)
- tools/environments/base.py (sandboxes/)
- tools/environments/modal.py (modal_snapshots.json)
- tools/environments/singularity.py (singularity_snapshots.json)
- tools/tts_tool.py (audio_cache)
- hermes_cli/status.py (cron/jobs.json, sessions.json)
- hermes_cli/gateway.py (logs/, whatsapp session)
- hermes_cli/main.py (whatsapp/session)
Tests updated to use HERMES_HOME env var instead of patching Path.home().
Closes #892
(cherry picked from commit 78ac1bba43b8b74a934c6172f2c29bb4d03164b9)
2026-03-11 07:31:41 +01:00
log_dir = get_hermes_home ( ) / " logs "
2026-02-02 19:01:51 -08:00
log_dir . mkdir ( parents = True , exist_ok = True )
2026-03-28 13:51:08 -07:00
label = get_launchd_label ( )
2026-04-07 21:18:39 +02:00
profile_arg = _profile_arg ( hermes_home )
2026-03-28 14:23:26 -07:00
# Build a sane PATH for the launchd plist. launchd provides only a
# minimal default (/usr/bin:/bin:/usr/sbin:/sbin) which misses Homebrew,
# nvm, cargo, etc. We prepend venv/bin and node_modules/.bin (matching
# the systemd unit), then capture the user's full shell PATH so every
# user-installed tool (node, ffmpeg, …) is reachable.
detected_venv = _detect_venv_dir ( )
venv_bin = str ( detected_venv / " bin " ) if detected_venv else str ( PROJECT_ROOT / " venv " / " bin " )
venv_dir = str ( detected_venv ) if detected_venv else str ( PROJECT_ROOT / " venv " )
node_bin = str ( PROJECT_ROOT / " node_modules " / " .bin " )
# Resolve the directory containing the node binary (e.g. Homebrew, nvm)
# so it's explicitly in PATH even if the user's shell PATH changes later.
priority_dirs = [ venv_bin , node_bin ]
resolved_node = shutil . which ( " node " )
if resolved_node :
resolved_node_dir = str ( Path ( resolved_node ) . resolve ( ) . parent )
if resolved_node_dir not in priority_dirs :
priority_dirs . append ( resolved_node_dir )
sane_path = " : " . join (
dict . fromkeys ( priority_dirs + [ p for p in os . environ . get ( " PATH " , " " ) . split ( " : " ) if p ] )
)
2026-04-07 21:18:39 +02:00
# Build ProgramArguments array, including --profile when using a named profile
prog_args = [
f " <string> { python_path } </string> " ,
" <string>-m</string> " ,
" <string>hermes_cli.main</string> " ,
]
if profile_arg :
for part in profile_arg . split ( ) :
prog_args . append ( f " <string> { part } </string> " )
prog_args . extend ( [
" <string>gateway</string> " ,
" <string>run</string> " ,
" <string>--replace</string> " ,
] )
prog_args_xml = " \n " . join ( prog_args )
2026-02-02 19:01:51 -08:00
return f """ <?xml version= " 1.0 " encoding= " UTF-8 " ?>
< ! DOCTYPE plist PUBLIC " -//Apple//DTD PLIST 1.0//EN " " http://www.apple.com/DTDs/PropertyList-1.0.dtd " >
< plist version = " 1.0 " >
< dict >
< key > Label < / key >
2026-03-28 13:51:08 -07:00
< string > { label } < / string >
2026-04-07 21:18:39 +02:00
2026-02-02 19:01:51 -08:00
< key > ProgramArguments < / key >
< array >
2026-04-07 21:18:39 +02:00
{ prog_args_xml }
2026-02-02 19:01:51 -08:00
< / array >
< key > WorkingDirectory < / key >
< string > { working_dir } < / string >
2026-03-28 13:51:08 -07:00
< key > EnvironmentVariables < / key >
< dict >
2026-03-28 14:23:26 -07:00
< key > PATH < / key >
< string > { sane_path } < / string >
< key > VIRTUAL_ENV < / key >
< string > { venv_dir } < / string >
2026-03-28 13:51:08 -07:00
< key > HERMES_HOME < / key >
< string > { hermes_home } < / string >
< / dict >
2026-02-02 19:01:51 -08:00
< key > RunAtLoad < / key >
< true / >
< key > KeepAlive < / key >
< dict >
< key > SuccessfulExit < / key >
< false / >
< / dict >
< key > StandardOutPath < / key >
< string > { log_dir } / gateway . log < / string >
< key > StandardErrorPath < / key >
< string > { log_dir } / gateway . error . log < / string >
< / dict >
< / plist >
"""
fix: hermes update causes dual gateways on macOS (launchd) (#1567)
* feat: add optional smart model routing
Add a conservative cheap-vs-strong routing option that can send very short/simple turns to a cheaper model across providers while keeping the primary model for complex work. Wire it through CLI, gateway, and cron, and document the config.yaml workflow.
* fix(gateway): remove recursive ExecStop from systemd units, extend TimeoutStopSec to 60s
* fix(gateway): avoid recursive ExecStop in user systemd unit
* fix: extend ExecStop removal and TimeoutStopSec=60 to system unit
The cherry-picked PR #1448 fix only covered the user systemd unit.
The system unit had the same TimeoutStopSec=15 and could benefit
from the same 60s timeout for clean shutdown. Also adds a regression
test for the system unit.
---------
Co-authored-by: Ninja <ninja@local>
* feat(skills): add blender-mcp optional skill for 3D modeling
Control a running Blender instance from Hermes via socket connection
to the blender-mcp addon (port 9876). Supports creating 3D objects,
materials, animations, and running arbitrary bpy code.
Placed in optional-skills/ since it requires Blender 4.3+ desktop
with a third-party addon manually started each session.
* feat(acp): support slash commands in ACP adapter (#1532)
Adds /help, /model, /tools, /context, /reset, /compact, /version
to the ACP adapter (VS Code, Zed, JetBrains). Commands are handled
directly in the server without instantiating the TUI — each command
queries agent/session state and returns plain text.
Unrecognized /commands fall through to the LLM as normal messages.
/model uses detect_provider_for_model() for auto-detection when
switching models, matching the CLI and gateway behavior.
Fixes #1402
* fix(logging): improve error logging in session search tool (#1533)
* fix(gateway): restart on retryable startup failures (#1517)
* feat(email): add skip_attachments option via config.yaml
* feat(email): add skip_attachments option via config.yaml
Adds a config.yaml-driven option to skip email attachments in the
gateway email adapter. Useful for malware protection and bandwidth
savings.
Configure in config.yaml:
platforms:
email:
skip_attachments: true
Based on PR #1521 by @an420eth, changed from env var to config.yaml
(via PlatformConfig.extra) to match the project's config-first pattern.
* docs: document skip_attachments option for email adapter
* fix(telegram): retry on transient TLS failures during connect and send
Add exponential-backoff retry (3 attempts) around initialize() to
handle transient TLS resets during gateway startup. Also catches
TimedOut and OSError in addition to NetworkError.
Add exponential-backoff retry (3 attempts) around send_message() for
NetworkError during message delivery, wrapping the existing Markdown
fallback logic.
Both imports are guarded with try/except ImportError for test
environments where telegram is mocked.
Based on PR #1527 by cmd8. Closes #1526.
* feat: permissive block_anchor thresholds and unicode normalization (#1539)
Salvaged from PR #1528 by an420eth. Closes #517.
Improves _strategy_block_anchor in fuzzy_match.py:
- Add unicode normalization (smart quotes, em/en-dashes, ellipsis,
non-breaking spaces → ASCII) so LLM-produced unicode artifacts
don't break anchor line matching
- Lower thresholds: 0.10 for unique matches (was 0.70), 0.30 for
multiple candidates — if first/last lines match exactly, the
block is almost certainly correct
- Use original (non-normalized) content for offset calculation to
preserve correct character positions
Tested: 3 new scenarios fixed (em-dash anchors, non-breaking space
anchors, very-low-similarity unique matches), zero regressions on
all 9 existing fuzzy match tests.
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
* feat(cli): add file path autocomplete in the input prompt (#1545)
When typing a path-like token (./ ../ ~/ / or containing /),
the CLI now shows filesystem completions in the dropdown menu.
Directories show a trailing slash and 'dir' label; files show
their size. Completions are case-insensitive and capped at 30
entries.
Triggered by tokens like:
edit ./src/ma → shows ./src/main.py, ./src/manifest.json, ...
check ~/doc → shows ~/docs/, ~/documents/, ...
read /etc/hos → shows /etc/hosts, /etc/hostname, ...
open tools/reg → shows tools/registry.py
Slash command autocomplete (/help, /model, etc.) is unaffected —
it still triggers when the input starts with /.
Inspired by OpenCode PR #145 (file path completion menu).
Implementation:
- hermes_cli/commands.py: _extract_path_word() detects path-like
tokens, _path_completions() yields filesystem Completions with
size labels, get_completions() routes to paths vs slash commands
- tests/hermes_cli/test_path_completion.py: 26 tests covering
path extraction, prefix filtering, directory markers, home
expansion, case-insensitivity, integration with slash commands
* feat(privacy): redact PII from LLM context when privacy.redact_pii is enabled
Add privacy.redact_pii config option (boolean, default false). When
enabled, the gateway redacts personally identifiable information from
the system prompt before sending it to the LLM provider:
- Phone numbers (user IDs on WhatsApp/Signal) → hashed to user_<sha256>
- User IDs → hashed to user_<sha256>
- Chat IDs → numeric portion hashed, platform prefix preserved
- Home channel IDs → hashed
- Names/usernames → NOT affected (user-chosen, publicly visible)
Hashes are deterministic (same user → same hash) so the model can
still distinguish users in group chats. Routing and delivery use
the original values internally — redaction only affects LLM context.
Inspired by OpenClaw PR #47959.
* fix(privacy): skip PII redaction on Discord/Slack (mentions need real IDs)
Discord uses <@user_id> for mentions and Slack uses <@U12345> — the LLM
needs the real ID to tag users. Redaction now only applies to WhatsApp,
Signal, and Telegram where IDs are pure routing metadata.
Add 4 platform-specific tests covering Discord, WhatsApp, Signal, Slack.
* feat: smart approvals + /stop command (inspired by OpenAI Codex)
* feat: smart approvals — LLM-based risk assessment for dangerous commands
Adds a 'smart' approval mode that uses the auxiliary LLM to assess
whether a flagged command is genuinely dangerous or a false positive,
auto-approving low-risk commands without prompting the user.
Inspired by OpenAI Codex's Smart Approvals guardian subagent
(openai/codex#13860).
Config (config.yaml):
approvals:
mode: manual # manual (default), smart, off
Modes:
- manual — current behavior, always prompt the user
- smart — aux LLM evaluates risk: APPROVE (auto-allow), DENY (block),
or ESCALATE (fall through to manual prompt)
- off — skip all approval prompts (equivalent to --yolo)
When smart mode auto-approves, the pattern gets session-level approval
so subsequent uses of the same pattern don't trigger another LLM call.
When it denies, the command is blocked without user prompt. When
uncertain, it escalates to the normal manual approval flow.
The LLM prompt is carefully scoped: it sees only the command text and
the flagged reason, assesses actual risk vs false positive, and returns
a single-word verdict.
* feat: make smart approval model configurable via config.yaml
Adds auxiliary.approval section to config.yaml with the same
provider/model/base_url/api_key pattern as other aux tasks (vision,
web_extract, compression, etc.).
Config:
auxiliary:
approval:
provider: auto
model: '' # fast/cheap model recommended
base_url: ''
api_key: ''
Bridged to env vars in both CLI and gateway paths so the aux client
picks them up automatically.
* feat: add /stop command to kill all background processes
Adds a /stop slash command that kills all running background processes
at once. Currently users have to process(list) then process(kill) for
each one individually.
Inspired by OpenAI Codex's separation of interrupt (Ctrl+C stops current
turn) from /stop (cleans up background processes). See openai/codex#14602.
Ctrl+C continues to only interrupt the active agent turn — background
dev servers, watchers, etc. are preserved. /stop is the explicit way
to clean them all up.
* feat: first-class plugin architecture + hide status bar cost by default (#1544)
The persistent status bar now shows context %, token counts, and
duration but NOT $ cost by default. Cost display is opt-in via:
display:
show_cost: true
in config.yaml, or: hermes config set display.show_cost true
The /usage command still shows full cost breakdown since the user
explicitly asked for it — this only affects the always-visible bar.
Status bar without cost:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ 15m
Status bar with show_cost: true:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ $0.06 │ 15m
* feat: improve memory prioritization + aggressive skill updates (inspired by OpenAI Codex)
* feat: improve memory prioritization — user preferences over procedural knowledge
Inspired by OpenAI Codex's memory prompt improvements (openai/codex#14493)
which focus memory writes on user preferences and recurring patterns
rather than procedural task details.
Key insight: 'Optimize for reducing future user steering — the most
valuable memory prevents the user from having to repeat themselves.'
Changes:
- MEMORY_GUIDANCE (prompt_builder.py): added prioritization hierarchy
and the core principle about reducing user steering
- MEMORY_SCHEMA (memory_tool.py): reordered WHEN TO SAVE list to put
corrections first, added explicit PRIORITY guidance
- Memory nudge (run_agent.py): now asks specifically about preferences,
corrections, and workflow patterns instead of generic 'anything'
- Memory flush (run_agent.py): now instructs to prioritize user
preferences and corrections over task-specific details
* feat: more aggressive skill creation and update prompting
Press harder on skill updates — the agent should proactively patch
skills when it encounters issues during use, not wait to be asked.
Changes:
- SKILLS_GUIDANCE: 'consider saving' → 'save'; added explicit instruction
to patch skills immediately when found outdated/wrong
- Skills header: added instruction to update loaded skills before finishing
if they had missing steps or wrong commands
- Skill nudge: more assertive ('save the approach' not 'consider saving'),
now also prompts for updating existing skills used in the task
- Skill nudge interval: lowered default from 15 to 10 iterations
- skill_manage schema: added 'patch it immediately' to update triggers
* feat: first-class plugin architecture (#1555)
Plugin system for extending Hermes with custom tools, hooks, and
integrations — no source code changes required.
Core system (hermes_cli/plugins.py):
- Plugin discovery from ~/.hermes/plugins/, .hermes/plugins/, and
pip entry_points (hermes_agent.plugins group)
- PluginContext with register_tool() and register_hook()
- 6 lifecycle hooks: pre/post tool_call, pre/post llm_call,
on_session_start/end
- Namespace package handling for relative imports in plugins
- Graceful error isolation — broken plugins never crash the agent
Integration (model_tools.py):
- Plugin discovery runs after built-in + MCP tools
- Plugin tools bypass toolset filter via get_plugin_tool_names()
- Pre/post tool call hooks fire in handle_function_call()
CLI:
- /plugins command shows loaded plugins, tool counts, status
- Added to COMMANDS dict for autocomplete
Docs:
- Getting started guide (build-a-hermes-plugin.md) — full tutorial
building a calculator plugin step by step
- Reference page (features/plugins.md) — quick overview + tables
- Covers: file structure, schemas, handlers, hooks, data files,
bundled skills, env var gating, pip distribution, common mistakes
Tests: 16 tests covering discovery, loading, hooks, tool visibility.
* fix: hermes update causes dual gateways on macOS (launchd)
Three bugs worked together to create the dual-gateway problem:
1. cmd_update only checked systemd for gateway restart, completely
ignoring launchd on macOS. After killing the PID it would print
'Restart it with: hermes gateway run' even when launchd was about
to auto-respawn the process.
2. launchd's KeepAlive.SuccessfulExit=false respawns the gateway
after SIGTERM (non-zero exit), so the user's manual restart
created a second instance.
3. The launchd plist lacked --replace (systemd had it), so the
respawned gateway didn't kill stale instances on startup.
Fixes:
- Add --replace to launchd ProgramArguments (matches systemd)
- Add launchd detection to cmd_update's auto-restart logic
- Print 'auto-restart via launchd' instead of manual restart hint
* fix: add launchd plist auto-refresh + explicit restart in cmd_update
Two integration issues with the initial fix:
1. Existing macOS users with old plist (no --replace) would never
get the fix until manual uninstall/reinstall. Added
refresh_launchd_plist_if_needed() — mirrors the existing
refresh_systemd_unit_if_needed(). Called from launchd_start(),
launchd_restart(), and cmd_update.
2. cmd_update relied on KeepAlive respawn after SIGTERM rather than
explicit launchctl stop/start. This caused races: launchd would
respawn the old process before the PID file was cleaned up.
Now does explicit stop+start (matching how systemd gets an
explicit systemctl restart), with plist refresh first so the
new --replace flag is picked up.
---------
Co-authored-by: Ninja <ninja@local>
Co-authored-by: alireza78a <alireza78a@users.noreply.github.com>
Co-authored-by: Oktay Aydin <113846926+aydnOktay@users.noreply.github.com>
Co-authored-by: JP Lew <polydegen@protonmail.com>
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
2026-03-16 12:36:29 -07:00
def launchd_plist_is_current ( ) - > bool :
""" Check if the installed launchd plist matches the currently generated one. """
plist_path = get_launchd_plist_path ( )
if not plist_path . exists ( ) :
return False
installed = plist_path . read_text ( encoding = " utf-8 " )
expected = generate_launchd_plist ( )
2026-04-11 17:31:22 -03:00
return _normalize_launchd_plist_for_comparison ( installed ) == _normalize_launchd_plist_for_comparison ( expected )
fix: hermes update causes dual gateways on macOS (launchd) (#1567)
* feat: add optional smart model routing
Add a conservative cheap-vs-strong routing option that can send very short/simple turns to a cheaper model across providers while keeping the primary model for complex work. Wire it through CLI, gateway, and cron, and document the config.yaml workflow.
* fix(gateway): remove recursive ExecStop from systemd units, extend TimeoutStopSec to 60s
* fix(gateway): avoid recursive ExecStop in user systemd unit
* fix: extend ExecStop removal and TimeoutStopSec=60 to system unit
The cherry-picked PR #1448 fix only covered the user systemd unit.
The system unit had the same TimeoutStopSec=15 and could benefit
from the same 60s timeout for clean shutdown. Also adds a regression
test for the system unit.
---------
Co-authored-by: Ninja <ninja@local>
* feat(skills): add blender-mcp optional skill for 3D modeling
Control a running Blender instance from Hermes via socket connection
to the blender-mcp addon (port 9876). Supports creating 3D objects,
materials, animations, and running arbitrary bpy code.
Placed in optional-skills/ since it requires Blender 4.3+ desktop
with a third-party addon manually started each session.
* feat(acp): support slash commands in ACP adapter (#1532)
Adds /help, /model, /tools, /context, /reset, /compact, /version
to the ACP adapter (VS Code, Zed, JetBrains). Commands are handled
directly in the server without instantiating the TUI — each command
queries agent/session state and returns plain text.
Unrecognized /commands fall through to the LLM as normal messages.
/model uses detect_provider_for_model() for auto-detection when
switching models, matching the CLI and gateway behavior.
Fixes #1402
* fix(logging): improve error logging in session search tool (#1533)
* fix(gateway): restart on retryable startup failures (#1517)
* feat(email): add skip_attachments option via config.yaml
* feat(email): add skip_attachments option via config.yaml
Adds a config.yaml-driven option to skip email attachments in the
gateway email adapter. Useful for malware protection and bandwidth
savings.
Configure in config.yaml:
platforms:
email:
skip_attachments: true
Based on PR #1521 by @an420eth, changed from env var to config.yaml
(via PlatformConfig.extra) to match the project's config-first pattern.
* docs: document skip_attachments option for email adapter
* fix(telegram): retry on transient TLS failures during connect and send
Add exponential-backoff retry (3 attempts) around initialize() to
handle transient TLS resets during gateway startup. Also catches
TimedOut and OSError in addition to NetworkError.
Add exponential-backoff retry (3 attempts) around send_message() for
NetworkError during message delivery, wrapping the existing Markdown
fallback logic.
Both imports are guarded with try/except ImportError for test
environments where telegram is mocked.
Based on PR #1527 by cmd8. Closes #1526.
* feat: permissive block_anchor thresholds and unicode normalization (#1539)
Salvaged from PR #1528 by an420eth. Closes #517.
Improves _strategy_block_anchor in fuzzy_match.py:
- Add unicode normalization (smart quotes, em/en-dashes, ellipsis,
non-breaking spaces → ASCII) so LLM-produced unicode artifacts
don't break anchor line matching
- Lower thresholds: 0.10 for unique matches (was 0.70), 0.30 for
multiple candidates — if first/last lines match exactly, the
block is almost certainly correct
- Use original (non-normalized) content for offset calculation to
preserve correct character positions
Tested: 3 new scenarios fixed (em-dash anchors, non-breaking space
anchors, very-low-similarity unique matches), zero regressions on
all 9 existing fuzzy match tests.
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
* feat(cli): add file path autocomplete in the input prompt (#1545)
When typing a path-like token (./ ../ ~/ / or containing /),
the CLI now shows filesystem completions in the dropdown menu.
Directories show a trailing slash and 'dir' label; files show
their size. Completions are case-insensitive and capped at 30
entries.
Triggered by tokens like:
edit ./src/ma → shows ./src/main.py, ./src/manifest.json, ...
check ~/doc → shows ~/docs/, ~/documents/, ...
read /etc/hos → shows /etc/hosts, /etc/hostname, ...
open tools/reg → shows tools/registry.py
Slash command autocomplete (/help, /model, etc.) is unaffected —
it still triggers when the input starts with /.
Inspired by OpenCode PR #145 (file path completion menu).
Implementation:
- hermes_cli/commands.py: _extract_path_word() detects path-like
tokens, _path_completions() yields filesystem Completions with
size labels, get_completions() routes to paths vs slash commands
- tests/hermes_cli/test_path_completion.py: 26 tests covering
path extraction, prefix filtering, directory markers, home
expansion, case-insensitivity, integration with slash commands
* feat(privacy): redact PII from LLM context when privacy.redact_pii is enabled
Add privacy.redact_pii config option (boolean, default false). When
enabled, the gateway redacts personally identifiable information from
the system prompt before sending it to the LLM provider:
- Phone numbers (user IDs on WhatsApp/Signal) → hashed to user_<sha256>
- User IDs → hashed to user_<sha256>
- Chat IDs → numeric portion hashed, platform prefix preserved
- Home channel IDs → hashed
- Names/usernames → NOT affected (user-chosen, publicly visible)
Hashes are deterministic (same user → same hash) so the model can
still distinguish users in group chats. Routing and delivery use
the original values internally — redaction only affects LLM context.
Inspired by OpenClaw PR #47959.
* fix(privacy): skip PII redaction on Discord/Slack (mentions need real IDs)
Discord uses <@user_id> for mentions and Slack uses <@U12345> — the LLM
needs the real ID to tag users. Redaction now only applies to WhatsApp,
Signal, and Telegram where IDs are pure routing metadata.
Add 4 platform-specific tests covering Discord, WhatsApp, Signal, Slack.
* feat: smart approvals + /stop command (inspired by OpenAI Codex)
* feat: smart approvals — LLM-based risk assessment for dangerous commands
Adds a 'smart' approval mode that uses the auxiliary LLM to assess
whether a flagged command is genuinely dangerous or a false positive,
auto-approving low-risk commands without prompting the user.
Inspired by OpenAI Codex's Smart Approvals guardian subagent
(openai/codex#13860).
Config (config.yaml):
approvals:
mode: manual # manual (default), smart, off
Modes:
- manual — current behavior, always prompt the user
- smart — aux LLM evaluates risk: APPROVE (auto-allow), DENY (block),
or ESCALATE (fall through to manual prompt)
- off — skip all approval prompts (equivalent to --yolo)
When smart mode auto-approves, the pattern gets session-level approval
so subsequent uses of the same pattern don't trigger another LLM call.
When it denies, the command is blocked without user prompt. When
uncertain, it escalates to the normal manual approval flow.
The LLM prompt is carefully scoped: it sees only the command text and
the flagged reason, assesses actual risk vs false positive, and returns
a single-word verdict.
* feat: make smart approval model configurable via config.yaml
Adds auxiliary.approval section to config.yaml with the same
provider/model/base_url/api_key pattern as other aux tasks (vision,
web_extract, compression, etc.).
Config:
auxiliary:
approval:
provider: auto
model: '' # fast/cheap model recommended
base_url: ''
api_key: ''
Bridged to env vars in both CLI and gateway paths so the aux client
picks them up automatically.
* feat: add /stop command to kill all background processes
Adds a /stop slash command that kills all running background processes
at once. Currently users have to process(list) then process(kill) for
each one individually.
Inspired by OpenAI Codex's separation of interrupt (Ctrl+C stops current
turn) from /stop (cleans up background processes). See openai/codex#14602.
Ctrl+C continues to only interrupt the active agent turn — background
dev servers, watchers, etc. are preserved. /stop is the explicit way
to clean them all up.
* feat: first-class plugin architecture + hide status bar cost by default (#1544)
The persistent status bar now shows context %, token counts, and
duration but NOT $ cost by default. Cost display is opt-in via:
display:
show_cost: true
in config.yaml, or: hermes config set display.show_cost true
The /usage command still shows full cost breakdown since the user
explicitly asked for it — this only affects the always-visible bar.
Status bar without cost:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ 15m
Status bar with show_cost: true:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ $0.06 │ 15m
* feat: improve memory prioritization + aggressive skill updates (inspired by OpenAI Codex)
* feat: improve memory prioritization — user preferences over procedural knowledge
Inspired by OpenAI Codex's memory prompt improvements (openai/codex#14493)
which focus memory writes on user preferences and recurring patterns
rather than procedural task details.
Key insight: 'Optimize for reducing future user steering — the most
valuable memory prevents the user from having to repeat themselves.'
Changes:
- MEMORY_GUIDANCE (prompt_builder.py): added prioritization hierarchy
and the core principle about reducing user steering
- MEMORY_SCHEMA (memory_tool.py): reordered WHEN TO SAVE list to put
corrections first, added explicit PRIORITY guidance
- Memory nudge (run_agent.py): now asks specifically about preferences,
corrections, and workflow patterns instead of generic 'anything'
- Memory flush (run_agent.py): now instructs to prioritize user
preferences and corrections over task-specific details
* feat: more aggressive skill creation and update prompting
Press harder on skill updates — the agent should proactively patch
skills when it encounters issues during use, not wait to be asked.
Changes:
- SKILLS_GUIDANCE: 'consider saving' → 'save'; added explicit instruction
to patch skills immediately when found outdated/wrong
- Skills header: added instruction to update loaded skills before finishing
if they had missing steps or wrong commands
- Skill nudge: more assertive ('save the approach' not 'consider saving'),
now also prompts for updating existing skills used in the task
- Skill nudge interval: lowered default from 15 to 10 iterations
- skill_manage schema: added 'patch it immediately' to update triggers
* feat: first-class plugin architecture (#1555)
Plugin system for extending Hermes with custom tools, hooks, and
integrations — no source code changes required.
Core system (hermes_cli/plugins.py):
- Plugin discovery from ~/.hermes/plugins/, .hermes/plugins/, and
pip entry_points (hermes_agent.plugins group)
- PluginContext with register_tool() and register_hook()
- 6 lifecycle hooks: pre/post tool_call, pre/post llm_call,
on_session_start/end
- Namespace package handling for relative imports in plugins
- Graceful error isolation — broken plugins never crash the agent
Integration (model_tools.py):
- Plugin discovery runs after built-in + MCP tools
- Plugin tools bypass toolset filter via get_plugin_tool_names()
- Pre/post tool call hooks fire in handle_function_call()
CLI:
- /plugins command shows loaded plugins, tool counts, status
- Added to COMMANDS dict for autocomplete
Docs:
- Getting started guide (build-a-hermes-plugin.md) — full tutorial
building a calculator plugin step by step
- Reference page (features/plugins.md) — quick overview + tables
- Covers: file structure, schemas, handlers, hooks, data files,
bundled skills, env var gating, pip distribution, common mistakes
Tests: 16 tests covering discovery, loading, hooks, tool visibility.
* fix: hermes update causes dual gateways on macOS (launchd)
Three bugs worked together to create the dual-gateway problem:
1. cmd_update only checked systemd for gateway restart, completely
ignoring launchd on macOS. After killing the PID it would print
'Restart it with: hermes gateway run' even when launchd was about
to auto-respawn the process.
2. launchd's KeepAlive.SuccessfulExit=false respawns the gateway
after SIGTERM (non-zero exit), so the user's manual restart
created a second instance.
3. The launchd plist lacked --replace (systemd had it), so the
respawned gateway didn't kill stale instances on startup.
Fixes:
- Add --replace to launchd ProgramArguments (matches systemd)
- Add launchd detection to cmd_update's auto-restart logic
- Print 'auto-restart via launchd' instead of manual restart hint
* fix: add launchd plist auto-refresh + explicit restart in cmd_update
Two integration issues with the initial fix:
1. Existing macOS users with old plist (no --replace) would never
get the fix until manual uninstall/reinstall. Added
refresh_launchd_plist_if_needed() — mirrors the existing
refresh_systemd_unit_if_needed(). Called from launchd_start(),
launchd_restart(), and cmd_update.
2. cmd_update relied on KeepAlive respawn after SIGTERM rather than
explicit launchctl stop/start. This caused races: launchd would
respawn the old process before the PID file was cleaned up.
Now does explicit stop+start (matching how systemd gets an
explicit systemctl restart), with plist refresh first so the
new --replace flag is picked up.
---------
Co-authored-by: Ninja <ninja@local>
Co-authored-by: alireza78a <alireza78a@users.noreply.github.com>
Co-authored-by: Oktay Aydin <113846926+aydnOktay@users.noreply.github.com>
Co-authored-by: JP Lew <polydegen@protonmail.com>
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
2026-03-16 12:36:29 -07:00
def refresh_launchd_plist_if_needed ( ) - > bool :
""" Rewrite the installed launchd plist when the generated definition has changed.
2026-04-03 15:46:23 -07:00
Unlike systemd , launchd picks up plist changes on the next ` ` launchctl kill ` ` /
` ` launchctl kickstart ` ` cycle — no daemon - reload is needed . We still bootout /
bootstrap to make launchd re - read the updated plist immediately .
fix: hermes update causes dual gateways on macOS (launchd) (#1567)
* feat: add optional smart model routing
Add a conservative cheap-vs-strong routing option that can send very short/simple turns to a cheaper model across providers while keeping the primary model for complex work. Wire it through CLI, gateway, and cron, and document the config.yaml workflow.
* fix(gateway): remove recursive ExecStop from systemd units, extend TimeoutStopSec to 60s
* fix(gateway): avoid recursive ExecStop in user systemd unit
* fix: extend ExecStop removal and TimeoutStopSec=60 to system unit
The cherry-picked PR #1448 fix only covered the user systemd unit.
The system unit had the same TimeoutStopSec=15 and could benefit
from the same 60s timeout for clean shutdown. Also adds a regression
test for the system unit.
---------
Co-authored-by: Ninja <ninja@local>
* feat(skills): add blender-mcp optional skill for 3D modeling
Control a running Blender instance from Hermes via socket connection
to the blender-mcp addon (port 9876). Supports creating 3D objects,
materials, animations, and running arbitrary bpy code.
Placed in optional-skills/ since it requires Blender 4.3+ desktop
with a third-party addon manually started each session.
* feat(acp): support slash commands in ACP adapter (#1532)
Adds /help, /model, /tools, /context, /reset, /compact, /version
to the ACP adapter (VS Code, Zed, JetBrains). Commands are handled
directly in the server without instantiating the TUI — each command
queries agent/session state and returns plain text.
Unrecognized /commands fall through to the LLM as normal messages.
/model uses detect_provider_for_model() for auto-detection when
switching models, matching the CLI and gateway behavior.
Fixes #1402
* fix(logging): improve error logging in session search tool (#1533)
* fix(gateway): restart on retryable startup failures (#1517)
* feat(email): add skip_attachments option via config.yaml
* feat(email): add skip_attachments option via config.yaml
Adds a config.yaml-driven option to skip email attachments in the
gateway email adapter. Useful for malware protection and bandwidth
savings.
Configure in config.yaml:
platforms:
email:
skip_attachments: true
Based on PR #1521 by @an420eth, changed from env var to config.yaml
(via PlatformConfig.extra) to match the project's config-first pattern.
* docs: document skip_attachments option for email adapter
* fix(telegram): retry on transient TLS failures during connect and send
Add exponential-backoff retry (3 attempts) around initialize() to
handle transient TLS resets during gateway startup. Also catches
TimedOut and OSError in addition to NetworkError.
Add exponential-backoff retry (3 attempts) around send_message() for
NetworkError during message delivery, wrapping the existing Markdown
fallback logic.
Both imports are guarded with try/except ImportError for test
environments where telegram is mocked.
Based on PR #1527 by cmd8. Closes #1526.
* feat: permissive block_anchor thresholds and unicode normalization (#1539)
Salvaged from PR #1528 by an420eth. Closes #517.
Improves _strategy_block_anchor in fuzzy_match.py:
- Add unicode normalization (smart quotes, em/en-dashes, ellipsis,
non-breaking spaces → ASCII) so LLM-produced unicode artifacts
don't break anchor line matching
- Lower thresholds: 0.10 for unique matches (was 0.70), 0.30 for
multiple candidates — if first/last lines match exactly, the
block is almost certainly correct
- Use original (non-normalized) content for offset calculation to
preserve correct character positions
Tested: 3 new scenarios fixed (em-dash anchors, non-breaking space
anchors, very-low-similarity unique matches), zero regressions on
all 9 existing fuzzy match tests.
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
* feat(cli): add file path autocomplete in the input prompt (#1545)
When typing a path-like token (./ ../ ~/ / or containing /),
the CLI now shows filesystem completions in the dropdown menu.
Directories show a trailing slash and 'dir' label; files show
their size. Completions are case-insensitive and capped at 30
entries.
Triggered by tokens like:
edit ./src/ma → shows ./src/main.py, ./src/manifest.json, ...
check ~/doc → shows ~/docs/, ~/documents/, ...
read /etc/hos → shows /etc/hosts, /etc/hostname, ...
open tools/reg → shows tools/registry.py
Slash command autocomplete (/help, /model, etc.) is unaffected —
it still triggers when the input starts with /.
Inspired by OpenCode PR #145 (file path completion menu).
Implementation:
- hermes_cli/commands.py: _extract_path_word() detects path-like
tokens, _path_completions() yields filesystem Completions with
size labels, get_completions() routes to paths vs slash commands
- tests/hermes_cli/test_path_completion.py: 26 tests covering
path extraction, prefix filtering, directory markers, home
expansion, case-insensitivity, integration with slash commands
* feat(privacy): redact PII from LLM context when privacy.redact_pii is enabled
Add privacy.redact_pii config option (boolean, default false). When
enabled, the gateway redacts personally identifiable information from
the system prompt before sending it to the LLM provider:
- Phone numbers (user IDs on WhatsApp/Signal) → hashed to user_<sha256>
- User IDs → hashed to user_<sha256>
- Chat IDs → numeric portion hashed, platform prefix preserved
- Home channel IDs → hashed
- Names/usernames → NOT affected (user-chosen, publicly visible)
Hashes are deterministic (same user → same hash) so the model can
still distinguish users in group chats. Routing and delivery use
the original values internally — redaction only affects LLM context.
Inspired by OpenClaw PR #47959.
* fix(privacy): skip PII redaction on Discord/Slack (mentions need real IDs)
Discord uses <@user_id> for mentions and Slack uses <@U12345> — the LLM
needs the real ID to tag users. Redaction now only applies to WhatsApp,
Signal, and Telegram where IDs are pure routing metadata.
Add 4 platform-specific tests covering Discord, WhatsApp, Signal, Slack.
* feat: smart approvals + /stop command (inspired by OpenAI Codex)
* feat: smart approvals — LLM-based risk assessment for dangerous commands
Adds a 'smart' approval mode that uses the auxiliary LLM to assess
whether a flagged command is genuinely dangerous or a false positive,
auto-approving low-risk commands without prompting the user.
Inspired by OpenAI Codex's Smart Approvals guardian subagent
(openai/codex#13860).
Config (config.yaml):
approvals:
mode: manual # manual (default), smart, off
Modes:
- manual — current behavior, always prompt the user
- smart — aux LLM evaluates risk: APPROVE (auto-allow), DENY (block),
or ESCALATE (fall through to manual prompt)
- off — skip all approval prompts (equivalent to --yolo)
When smart mode auto-approves, the pattern gets session-level approval
so subsequent uses of the same pattern don't trigger another LLM call.
When it denies, the command is blocked without user prompt. When
uncertain, it escalates to the normal manual approval flow.
The LLM prompt is carefully scoped: it sees only the command text and
the flagged reason, assesses actual risk vs false positive, and returns
a single-word verdict.
* feat: make smart approval model configurable via config.yaml
Adds auxiliary.approval section to config.yaml with the same
provider/model/base_url/api_key pattern as other aux tasks (vision,
web_extract, compression, etc.).
Config:
auxiliary:
approval:
provider: auto
model: '' # fast/cheap model recommended
base_url: ''
api_key: ''
Bridged to env vars in both CLI and gateway paths so the aux client
picks them up automatically.
* feat: add /stop command to kill all background processes
Adds a /stop slash command that kills all running background processes
at once. Currently users have to process(list) then process(kill) for
each one individually.
Inspired by OpenAI Codex's separation of interrupt (Ctrl+C stops current
turn) from /stop (cleans up background processes). See openai/codex#14602.
Ctrl+C continues to only interrupt the active agent turn — background
dev servers, watchers, etc. are preserved. /stop is the explicit way
to clean them all up.
* feat: first-class plugin architecture + hide status bar cost by default (#1544)
The persistent status bar now shows context %, token counts, and
duration but NOT $ cost by default. Cost display is opt-in via:
display:
show_cost: true
in config.yaml, or: hermes config set display.show_cost true
The /usage command still shows full cost breakdown since the user
explicitly asked for it — this only affects the always-visible bar.
Status bar without cost:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ 15m
Status bar with show_cost: true:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ $0.06 │ 15m
* feat: improve memory prioritization + aggressive skill updates (inspired by OpenAI Codex)
* feat: improve memory prioritization — user preferences over procedural knowledge
Inspired by OpenAI Codex's memory prompt improvements (openai/codex#14493)
which focus memory writes on user preferences and recurring patterns
rather than procedural task details.
Key insight: 'Optimize for reducing future user steering — the most
valuable memory prevents the user from having to repeat themselves.'
Changes:
- MEMORY_GUIDANCE (prompt_builder.py): added prioritization hierarchy
and the core principle about reducing user steering
- MEMORY_SCHEMA (memory_tool.py): reordered WHEN TO SAVE list to put
corrections first, added explicit PRIORITY guidance
- Memory nudge (run_agent.py): now asks specifically about preferences,
corrections, and workflow patterns instead of generic 'anything'
- Memory flush (run_agent.py): now instructs to prioritize user
preferences and corrections over task-specific details
* feat: more aggressive skill creation and update prompting
Press harder on skill updates — the agent should proactively patch
skills when it encounters issues during use, not wait to be asked.
Changes:
- SKILLS_GUIDANCE: 'consider saving' → 'save'; added explicit instruction
to patch skills immediately when found outdated/wrong
- Skills header: added instruction to update loaded skills before finishing
if they had missing steps or wrong commands
- Skill nudge: more assertive ('save the approach' not 'consider saving'),
now also prompts for updating existing skills used in the task
- Skill nudge interval: lowered default from 15 to 10 iterations
- skill_manage schema: added 'patch it immediately' to update triggers
* feat: first-class plugin architecture (#1555)
Plugin system for extending Hermes with custom tools, hooks, and
integrations — no source code changes required.
Core system (hermes_cli/plugins.py):
- Plugin discovery from ~/.hermes/plugins/, .hermes/plugins/, and
pip entry_points (hermes_agent.plugins group)
- PluginContext with register_tool() and register_hook()
- 6 lifecycle hooks: pre/post tool_call, pre/post llm_call,
on_session_start/end
- Namespace package handling for relative imports in plugins
- Graceful error isolation — broken plugins never crash the agent
Integration (model_tools.py):
- Plugin discovery runs after built-in + MCP tools
- Plugin tools bypass toolset filter via get_plugin_tool_names()
- Pre/post tool call hooks fire in handle_function_call()
CLI:
- /plugins command shows loaded plugins, tool counts, status
- Added to COMMANDS dict for autocomplete
Docs:
- Getting started guide (build-a-hermes-plugin.md) — full tutorial
building a calculator plugin step by step
- Reference page (features/plugins.md) — quick overview + tables
- Covers: file structure, schemas, handlers, hooks, data files,
bundled skills, env var gating, pip distribution, common mistakes
Tests: 16 tests covering discovery, loading, hooks, tool visibility.
* fix: hermes update causes dual gateways on macOS (launchd)
Three bugs worked together to create the dual-gateway problem:
1. cmd_update only checked systemd for gateway restart, completely
ignoring launchd on macOS. After killing the PID it would print
'Restart it with: hermes gateway run' even when launchd was about
to auto-respawn the process.
2. launchd's KeepAlive.SuccessfulExit=false respawns the gateway
after SIGTERM (non-zero exit), so the user's manual restart
created a second instance.
3. The launchd plist lacked --replace (systemd had it), so the
respawned gateway didn't kill stale instances on startup.
Fixes:
- Add --replace to launchd ProgramArguments (matches systemd)
- Add launchd detection to cmd_update's auto-restart logic
- Print 'auto-restart via launchd' instead of manual restart hint
* fix: add launchd plist auto-refresh + explicit restart in cmd_update
Two integration issues with the initial fix:
1. Existing macOS users with old plist (no --replace) would never
get the fix until manual uninstall/reinstall. Added
refresh_launchd_plist_if_needed() — mirrors the existing
refresh_systemd_unit_if_needed(). Called from launchd_start(),
launchd_restart(), and cmd_update.
2. cmd_update relied on KeepAlive respawn after SIGTERM rather than
explicit launchctl stop/start. This caused races: launchd would
respawn the old process before the PID file was cleaned up.
Now does explicit stop+start (matching how systemd gets an
explicit systemctl restart), with plist refresh first so the
new --replace flag is picked up.
---------
Co-authored-by: Ninja <ninja@local>
Co-authored-by: alireza78a <alireza78a@users.noreply.github.com>
Co-authored-by: Oktay Aydin <113846926+aydnOktay@users.noreply.github.com>
Co-authored-by: JP Lew <polydegen@protonmail.com>
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
2026-03-16 12:36:29 -07:00
"""
plist_path = get_launchd_plist_path ( )
if not plist_path . exists ( ) or launchd_plist_is_current ( ) :
return False
plist_path . write_text ( generate_launchd_plist ( ) , encoding = " utf-8 " )
2026-04-03 15:46:23 -07:00
label = get_launchd_label ( )
# Bootout/bootstrap so launchd picks up the new definition
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " bootout " , f " { _launchd_domain ( ) } / { label } " ] , check = False , timeout = 90 )
subprocess . run ( [ " launchctl " , " bootstrap " , _launchd_domain ( ) , str ( plist_path ) ] , check = False , timeout = 30 )
fix: hermes update causes dual gateways on macOS (launchd) (#1567)
* feat: add optional smart model routing
Add a conservative cheap-vs-strong routing option that can send very short/simple turns to a cheaper model across providers while keeping the primary model for complex work. Wire it through CLI, gateway, and cron, and document the config.yaml workflow.
* fix(gateway): remove recursive ExecStop from systemd units, extend TimeoutStopSec to 60s
* fix(gateway): avoid recursive ExecStop in user systemd unit
* fix: extend ExecStop removal and TimeoutStopSec=60 to system unit
The cherry-picked PR #1448 fix only covered the user systemd unit.
The system unit had the same TimeoutStopSec=15 and could benefit
from the same 60s timeout for clean shutdown. Also adds a regression
test for the system unit.
---------
Co-authored-by: Ninja <ninja@local>
* feat(skills): add blender-mcp optional skill for 3D modeling
Control a running Blender instance from Hermes via socket connection
to the blender-mcp addon (port 9876). Supports creating 3D objects,
materials, animations, and running arbitrary bpy code.
Placed in optional-skills/ since it requires Blender 4.3+ desktop
with a third-party addon manually started each session.
* feat(acp): support slash commands in ACP adapter (#1532)
Adds /help, /model, /tools, /context, /reset, /compact, /version
to the ACP adapter (VS Code, Zed, JetBrains). Commands are handled
directly in the server without instantiating the TUI — each command
queries agent/session state and returns plain text.
Unrecognized /commands fall through to the LLM as normal messages.
/model uses detect_provider_for_model() for auto-detection when
switching models, matching the CLI and gateway behavior.
Fixes #1402
* fix(logging): improve error logging in session search tool (#1533)
* fix(gateway): restart on retryable startup failures (#1517)
* feat(email): add skip_attachments option via config.yaml
* feat(email): add skip_attachments option via config.yaml
Adds a config.yaml-driven option to skip email attachments in the
gateway email adapter. Useful for malware protection and bandwidth
savings.
Configure in config.yaml:
platforms:
email:
skip_attachments: true
Based on PR #1521 by @an420eth, changed from env var to config.yaml
(via PlatformConfig.extra) to match the project's config-first pattern.
* docs: document skip_attachments option for email adapter
* fix(telegram): retry on transient TLS failures during connect and send
Add exponential-backoff retry (3 attempts) around initialize() to
handle transient TLS resets during gateway startup. Also catches
TimedOut and OSError in addition to NetworkError.
Add exponential-backoff retry (3 attempts) around send_message() for
NetworkError during message delivery, wrapping the existing Markdown
fallback logic.
Both imports are guarded with try/except ImportError for test
environments where telegram is mocked.
Based on PR #1527 by cmd8. Closes #1526.
* feat: permissive block_anchor thresholds and unicode normalization (#1539)
Salvaged from PR #1528 by an420eth. Closes #517.
Improves _strategy_block_anchor in fuzzy_match.py:
- Add unicode normalization (smart quotes, em/en-dashes, ellipsis,
non-breaking spaces → ASCII) so LLM-produced unicode artifacts
don't break anchor line matching
- Lower thresholds: 0.10 for unique matches (was 0.70), 0.30 for
multiple candidates — if first/last lines match exactly, the
block is almost certainly correct
- Use original (non-normalized) content for offset calculation to
preserve correct character positions
Tested: 3 new scenarios fixed (em-dash anchors, non-breaking space
anchors, very-low-similarity unique matches), zero regressions on
all 9 existing fuzzy match tests.
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
* feat(cli): add file path autocomplete in the input prompt (#1545)
When typing a path-like token (./ ../ ~/ / or containing /),
the CLI now shows filesystem completions in the dropdown menu.
Directories show a trailing slash and 'dir' label; files show
their size. Completions are case-insensitive and capped at 30
entries.
Triggered by tokens like:
edit ./src/ma → shows ./src/main.py, ./src/manifest.json, ...
check ~/doc → shows ~/docs/, ~/documents/, ...
read /etc/hos → shows /etc/hosts, /etc/hostname, ...
open tools/reg → shows tools/registry.py
Slash command autocomplete (/help, /model, etc.) is unaffected —
it still triggers when the input starts with /.
Inspired by OpenCode PR #145 (file path completion menu).
Implementation:
- hermes_cli/commands.py: _extract_path_word() detects path-like
tokens, _path_completions() yields filesystem Completions with
size labels, get_completions() routes to paths vs slash commands
- tests/hermes_cli/test_path_completion.py: 26 tests covering
path extraction, prefix filtering, directory markers, home
expansion, case-insensitivity, integration with slash commands
* feat(privacy): redact PII from LLM context when privacy.redact_pii is enabled
Add privacy.redact_pii config option (boolean, default false). When
enabled, the gateway redacts personally identifiable information from
the system prompt before sending it to the LLM provider:
- Phone numbers (user IDs on WhatsApp/Signal) → hashed to user_<sha256>
- User IDs → hashed to user_<sha256>
- Chat IDs → numeric portion hashed, platform prefix preserved
- Home channel IDs → hashed
- Names/usernames → NOT affected (user-chosen, publicly visible)
Hashes are deterministic (same user → same hash) so the model can
still distinguish users in group chats. Routing and delivery use
the original values internally — redaction only affects LLM context.
Inspired by OpenClaw PR #47959.
* fix(privacy): skip PII redaction on Discord/Slack (mentions need real IDs)
Discord uses <@user_id> for mentions and Slack uses <@U12345> — the LLM
needs the real ID to tag users. Redaction now only applies to WhatsApp,
Signal, and Telegram where IDs are pure routing metadata.
Add 4 platform-specific tests covering Discord, WhatsApp, Signal, Slack.
* feat: smart approvals + /stop command (inspired by OpenAI Codex)
* feat: smart approvals — LLM-based risk assessment for dangerous commands
Adds a 'smart' approval mode that uses the auxiliary LLM to assess
whether a flagged command is genuinely dangerous or a false positive,
auto-approving low-risk commands without prompting the user.
Inspired by OpenAI Codex's Smart Approvals guardian subagent
(openai/codex#13860).
Config (config.yaml):
approvals:
mode: manual # manual (default), smart, off
Modes:
- manual — current behavior, always prompt the user
- smart — aux LLM evaluates risk: APPROVE (auto-allow), DENY (block),
or ESCALATE (fall through to manual prompt)
- off — skip all approval prompts (equivalent to --yolo)
When smart mode auto-approves, the pattern gets session-level approval
so subsequent uses of the same pattern don't trigger another LLM call.
When it denies, the command is blocked without user prompt. When
uncertain, it escalates to the normal manual approval flow.
The LLM prompt is carefully scoped: it sees only the command text and
the flagged reason, assesses actual risk vs false positive, and returns
a single-word verdict.
* feat: make smart approval model configurable via config.yaml
Adds auxiliary.approval section to config.yaml with the same
provider/model/base_url/api_key pattern as other aux tasks (vision,
web_extract, compression, etc.).
Config:
auxiliary:
approval:
provider: auto
model: '' # fast/cheap model recommended
base_url: ''
api_key: ''
Bridged to env vars in both CLI and gateway paths so the aux client
picks them up automatically.
* feat: add /stop command to kill all background processes
Adds a /stop slash command that kills all running background processes
at once. Currently users have to process(list) then process(kill) for
each one individually.
Inspired by OpenAI Codex's separation of interrupt (Ctrl+C stops current
turn) from /stop (cleans up background processes). See openai/codex#14602.
Ctrl+C continues to only interrupt the active agent turn — background
dev servers, watchers, etc. are preserved. /stop is the explicit way
to clean them all up.
* feat: first-class plugin architecture + hide status bar cost by default (#1544)
The persistent status bar now shows context %, token counts, and
duration but NOT $ cost by default. Cost display is opt-in via:
display:
show_cost: true
in config.yaml, or: hermes config set display.show_cost true
The /usage command still shows full cost breakdown since the user
explicitly asked for it — this only affects the always-visible bar.
Status bar without cost:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ 15m
Status bar with show_cost: true:
⚕ claude-sonnet-4 │ 12K/200K │ 6% │ $0.06 │ 15m
* feat: improve memory prioritization + aggressive skill updates (inspired by OpenAI Codex)
* feat: improve memory prioritization — user preferences over procedural knowledge
Inspired by OpenAI Codex's memory prompt improvements (openai/codex#14493)
which focus memory writes on user preferences and recurring patterns
rather than procedural task details.
Key insight: 'Optimize for reducing future user steering — the most
valuable memory prevents the user from having to repeat themselves.'
Changes:
- MEMORY_GUIDANCE (prompt_builder.py): added prioritization hierarchy
and the core principle about reducing user steering
- MEMORY_SCHEMA (memory_tool.py): reordered WHEN TO SAVE list to put
corrections first, added explicit PRIORITY guidance
- Memory nudge (run_agent.py): now asks specifically about preferences,
corrections, and workflow patterns instead of generic 'anything'
- Memory flush (run_agent.py): now instructs to prioritize user
preferences and corrections over task-specific details
* feat: more aggressive skill creation and update prompting
Press harder on skill updates — the agent should proactively patch
skills when it encounters issues during use, not wait to be asked.
Changes:
- SKILLS_GUIDANCE: 'consider saving' → 'save'; added explicit instruction
to patch skills immediately when found outdated/wrong
- Skills header: added instruction to update loaded skills before finishing
if they had missing steps or wrong commands
- Skill nudge: more assertive ('save the approach' not 'consider saving'),
now also prompts for updating existing skills used in the task
- Skill nudge interval: lowered default from 15 to 10 iterations
- skill_manage schema: added 'patch it immediately' to update triggers
* feat: first-class plugin architecture (#1555)
Plugin system for extending Hermes with custom tools, hooks, and
integrations — no source code changes required.
Core system (hermes_cli/plugins.py):
- Plugin discovery from ~/.hermes/plugins/, .hermes/plugins/, and
pip entry_points (hermes_agent.plugins group)
- PluginContext with register_tool() and register_hook()
- 6 lifecycle hooks: pre/post tool_call, pre/post llm_call,
on_session_start/end
- Namespace package handling for relative imports in plugins
- Graceful error isolation — broken plugins never crash the agent
Integration (model_tools.py):
- Plugin discovery runs after built-in + MCP tools
- Plugin tools bypass toolset filter via get_plugin_tool_names()
- Pre/post tool call hooks fire in handle_function_call()
CLI:
- /plugins command shows loaded plugins, tool counts, status
- Added to COMMANDS dict for autocomplete
Docs:
- Getting started guide (build-a-hermes-plugin.md) — full tutorial
building a calculator plugin step by step
- Reference page (features/plugins.md) — quick overview + tables
- Covers: file structure, schemas, handlers, hooks, data files,
bundled skills, env var gating, pip distribution, common mistakes
Tests: 16 tests covering discovery, loading, hooks, tool visibility.
* fix: hermes update causes dual gateways on macOS (launchd)
Three bugs worked together to create the dual-gateway problem:
1. cmd_update only checked systemd for gateway restart, completely
ignoring launchd on macOS. After killing the PID it would print
'Restart it with: hermes gateway run' even when launchd was about
to auto-respawn the process.
2. launchd's KeepAlive.SuccessfulExit=false respawns the gateway
after SIGTERM (non-zero exit), so the user's manual restart
created a second instance.
3. The launchd plist lacked --replace (systemd had it), so the
respawned gateway didn't kill stale instances on startup.
Fixes:
- Add --replace to launchd ProgramArguments (matches systemd)
- Add launchd detection to cmd_update's auto-restart logic
- Print 'auto-restart via launchd' instead of manual restart hint
* fix: add launchd plist auto-refresh + explicit restart in cmd_update
Two integration issues with the initial fix:
1. Existing macOS users with old plist (no --replace) would never
get the fix until manual uninstall/reinstall. Added
refresh_launchd_plist_if_needed() — mirrors the existing
refresh_systemd_unit_if_needed(). Called from launchd_start(),
launchd_restart(), and cmd_update.
2. cmd_update relied on KeepAlive respawn after SIGTERM rather than
explicit launchctl stop/start. This caused races: launchd would
respawn the old process before the PID file was cleaned up.
Now does explicit stop+start (matching how systemd gets an
explicit systemctl restart), with plist refresh first so the
new --replace flag is picked up.
---------
Co-authored-by: Ninja <ninja@local>
Co-authored-by: alireza78a <alireza78a@users.noreply.github.com>
Co-authored-by: Oktay Aydin <113846926+aydnOktay@users.noreply.github.com>
Co-authored-by: JP Lew <polydegen@protonmail.com>
Co-authored-by: an420eth <an420eth@users.noreply.github.com>
2026-03-16 12:36:29 -07:00
print ( " ↻ Updated gateway launchd service definition to match the current Hermes install " )
return True
2026-02-02 19:01:51 -08:00
def launchd_install ( force : bool = False ) :
plist_path = get_launchd_plist_path ( )
if plist_path . exists ( ) and not force :
2026-03-17 11:05:28 +08:00
if not launchd_plist_is_current ( ) :
print ( f " ↻ Repairing outdated launchd service at: { plist_path } " )
refresh_launchd_plist_if_needed ( )
print ( " ✓ Service definition updated " )
return
2026-02-02 19:01:51 -08:00
print ( f " Service already installed at: { plist_path } " )
print ( " Use --force to reinstall " )
return
plist_path . parent . mkdir ( parents = True , exist_ok = True )
print ( f " Installing launchd service to: { plist_path } " )
plist_path . write_text ( generate_launchd_plist ( ) )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " bootstrap " , _launchd_domain ( ) , str ( plist_path ) ] , check = True , timeout = 30 )
2026-02-02 19:01:51 -08:00
print ( )
print ( " ✓ Service installed and loaded! " )
print ( )
print ( " Next steps: " )
print ( " hermes gateway status # Check status " )
2026-03-29 15:15:17 -07:00
from hermes_constants import display_hermes_home as _dhh
print ( f " tail -f { _dhh ( ) } /logs/gateway.log # View logs " )
2026-02-02 19:01:51 -08:00
def launchd_uninstall ( ) :
plist_path = get_launchd_plist_path ( )
2026-04-03 15:46:23 -07:00
label = get_launchd_label ( )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " bootout " , f " { _launchd_domain ( ) } / { label } " ] , check = False , timeout = 90 )
2026-02-02 19:01:51 -08:00
if plist_path . exists ( ) :
plist_path . unlink ( )
print ( f " ✓ Removed { plist_path } " )
print ( " ✓ Service uninstalled " )
def launchd_start ( ) :
2026-03-17 11:05:28 +08:00
plist_path = get_launchd_plist_path ( )
2026-03-28 13:51:08 -07:00
label = get_launchd_label ( )
2026-03-28 14:48:55 -07:00
# Self-heal if the plist is missing entirely (e.g., manual cleanup, failed upgrade)
if not plist_path . exists ( ) :
print ( " ↻ launchd plist missing; regenerating service definition " )
plist_path . parent . mkdir ( parents = True , exist_ok = True )
plist_path . write_text ( generate_launchd_plist ( ) , encoding = " utf-8 " )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " bootstrap " , _launchd_domain ( ) , str ( plist_path ) ] , check = True , timeout = 30 )
subprocess . run ( [ " launchctl " , " kickstart " , f " { _launchd_domain ( ) } / { label } " ] , check = True , timeout = 30 )
2026-03-28 14:48:55 -07:00
print ( " ✓ Service started " )
return
refresh_launchd_plist_if_needed ( )
2026-03-17 11:05:28 +08:00
try :
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " kickstart " , f " { _launchd_domain ( ) } / { label } " ] , check = True , timeout = 30 )
2026-03-17 11:05:28 +08:00
except subprocess . CalledProcessError as e :
2026-04-06 10:00:24 -04:00
if e . returncode not in ( 3 , 113 ) :
2026-03-17 11:05:28 +08:00
raise
print ( " ↻ launchd job was unloaded; reloading service definition " )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " bootstrap " , _launchd_domain ( ) , str ( plist_path ) ] , check = True , timeout = 30 )
subprocess . run ( [ " launchctl " , " kickstart " , f " { _launchd_domain ( ) } / { label } " ] , check = True , timeout = 30 )
2026-02-02 19:01:51 -08:00
print ( " ✓ Service started " )
def launchd_stop ( ) :
2026-03-28 13:51:08 -07:00
label = get_launchd_label ( )
2026-04-10 03:45:34 -07:00
target = f " { _launchd_domain ( ) } / { label } "
# bootout unloads the service definition so KeepAlive doesn't respawn
# the process. A plain `kill SIGTERM` only signals the process — launchd
# immediately restarts it because KeepAlive.SuccessfulExit = false.
# `hermes gateway start` re-bootstraps when it detects the job is unloaded.
try :
subprocess . run ( [ " launchctl " , " bootout " , target ] , check = True , timeout = 90 )
except subprocess . CalledProcessError as e :
if e . returncode in ( 3 , 113 ) :
pass # Already unloaded — nothing to stop.
else :
raise
_wait_for_gateway_exit ( timeout = 10.0 , force_after = 5.0 )
2026-02-02 19:01:51 -08:00
print ( " ✓ Service stopped " )
2026-04-10 10:19:17 -07:00
def _wait_for_gateway_exit ( timeout : float = 10.0 , force_after : float | None = 5.0 ) - > bool :
2026-03-18 02:54:18 -07:00
""" Wait for the gateway process (by saved PID) to exit.
Uses the PID from the gateway . pid file — not launchd labels — so this
works correctly when multiple gateway instances run under separate
HERMES_HOME directories .
Args :
timeout : Total seconds to wait before giving up .
2026-04-09 23:48:46 +03:00
force_after : Seconds of graceful waiting before escalating to force - kill .
2026-03-18 02:54:18 -07:00
"""
import time
from gateway . status import get_running_pid
deadline = time . monotonic ( ) + timeout
2026-04-10 10:19:17 -07:00
force_deadline = ( time . monotonic ( ) + force_after ) if force_after is not None else None
2026-03-18 02:54:18 -07:00
force_sent = False
while time . monotonic ( ) < deadline :
pid = get_running_pid ( )
if pid is None :
2026-04-10 10:19:17 -07:00
return True # Process exited cleanly.
2026-03-18 02:54:18 -07:00
2026-04-10 10:19:17 -07:00
if force_after is not None and not force_sent and time . monotonic ( ) > = force_deadline :
2026-03-18 02:54:18 -07:00
# Grace period expired — force-kill the specific PID.
try :
2026-04-09 23:48:46 +03:00
terminate_pid ( pid , force = True )
2026-03-18 02:54:18 -07:00
print ( f " ⚠ Gateway PID { pid } did not exit gracefully; sent SIGKILL " )
2026-04-09 23:48:46 +03:00
except ( ProcessLookupError , PermissionError , OSError ) :
2026-04-10 10:19:17 -07:00
return True # Already gone or we can't touch it.
2026-03-18 02:54:18 -07:00
force_sent = True
time . sleep ( 0.3 )
2026-04-09 23:48:46 +03:00
# Timed out even after force-kill.
2026-03-18 02:54:18 -07:00
remaining_pid = get_running_pid ( )
if remaining_pid is not None :
print ( f " ⚠ Gateway PID { remaining_pid } still running after { timeout } s — restart may fail " )
2026-04-10 10:19:17 -07:00
return False
return True
2026-03-18 02:54:18 -07:00
2026-02-02 19:01:51 -08:00
def launchd_restart ( ) :
2026-04-04 21:00:19 -07:00
label = get_launchd_label ( )
target = f " { _launchd_domain ( ) } / { label } "
2026-04-10 10:19:17 -07:00
drain_timeout = _get_restart_drain_timeout ( )
from gateway . status import get_running_pid
2026-03-17 11:05:28 +08:00
try :
2026-04-10 10:19:17 -07:00
pid = get_running_pid ( )
2026-04-10 13:51:23 -07:00
if pid is not None and _request_gateway_self_restart ( pid ) :
print ( " ✓ Service restart requested " )
return
2026-04-10 10:19:17 -07:00
if pid is not None :
try :
terminate_pid ( pid , force = False )
except ( ProcessLookupError , PermissionError , OSError ) :
pid = None
if pid is not None :
exited = _wait_for_gateway_exit ( timeout = drain_timeout , force_after = None )
if not exited :
print ( f " ⚠ Gateway drain timed out after { drain_timeout : .0f } s — forcing launchd restart " )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " kickstart " , " -k " , target ] , check = True , timeout = 90 )
2026-04-04 21:00:19 -07:00
print ( " ✓ Service restarted " )
2026-03-17 11:05:28 +08:00
except subprocess . CalledProcessError as e :
2026-04-06 10:00:24 -04:00
if e . returncode not in ( 3 , 113 ) :
2026-03-17 11:05:28 +08:00
raise
2026-04-04 21:00:19 -07:00
# Job not loaded — bootstrap and start fresh
print ( " ↻ launchd job was unloaded; reloading " )
plist_path = get_launchd_plist_path ( )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " launchctl " , " bootstrap " , _launchd_domain ( ) , str ( plist_path ) ] , check = True , timeout = 30 )
subprocess . run ( [ " launchctl " , " kickstart " , target ] , check = True , timeout = 30 )
2026-04-04 21:00:19 -07:00
print ( " ✓ Service restarted " )
2026-02-02 19:01:51 -08:00
def launchd_status ( deep : bool = False ) :
2026-03-17 11:05:28 +08:00
plist_path = get_launchd_plist_path ( )
2026-03-28 13:51:08 -07:00
label = get_launchd_label ( )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
try :
result = subprocess . run (
[ " launchctl " , " list " , label ] ,
capture_output = True ,
text = True ,
timeout = 10 ,
)
loaded = result . returncode == 0
loaded_output = result . stdout
except subprocess . TimeoutExpired :
loaded = False
loaded_output = " "
2026-03-17 11:05:28 +08:00
print ( f " Launchd plist: { plist_path } " )
if launchd_plist_is_current ( ) :
print ( " ✓ Service definition matches the current Hermes install " )
else :
print ( " ⚠ Service definition is stale relative to the current Hermes install " )
print ( " Run: hermes gateway start " )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
if loaded :
2026-02-02 19:01:51 -08:00
print ( " ✓ Gateway service is loaded " )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
print ( loaded_output )
2026-02-02 19:01:51 -08:00
else :
print ( " ✗ Gateway service is not loaded " )
2026-03-17 11:05:28 +08:00
print ( " Service definition exists locally but launchd has not loaded it. " )
print ( " Run: hermes gateway start " )
2026-02-02 19:01:51 -08:00
if deep :
fix(cli): respect HERMES_HOME in all remaining hardcoded ~/.hermes paths
Several files resolved paths via Path.home() / ".hermes" or
os.path.expanduser("~/.hermes/..."), bypassing the HERMES_HOME
environment variable. This broke isolation when running multiple
Hermes instances with distinct HERMES_HOME directories.
Replace all hardcoded paths with calls to get_hermes_home() from
hermes_cli.config, consistent with the rest of the codebase.
Files fixed:
- tools/process_registry.py (processes.json)
- gateway/pairing.py (pairing/)
- gateway/sticker_cache.py (sticker_cache.json)
- gateway/channel_directory.py (channel_directory.json, sessions.json)
- gateway/config.py (gateway.json, config.yaml, sessions_dir)
- gateway/mirror.py (sessions/)
- gateway/hooks.py (hooks/)
- gateway/platforms/base.py (image_cache/, audio_cache/, document_cache/)
- gateway/platforms/whatsapp.py (whatsapp/session)
- gateway/delivery.py (cron/output)
- agent/auxiliary_client.py (auth.json)
- agent/prompt_builder.py (SOUL.md)
- cli.py (config.yaml, images/, pastes/, history)
- run_agent.py (logs/)
- tools/environments/base.py (sandboxes/)
- tools/environments/modal.py (modal_snapshots.json)
- tools/environments/singularity.py (singularity_snapshots.json)
- tools/tts_tool.py (audio_cache)
- hermes_cli/status.py (cron/jobs.json, sessions.json)
- hermes_cli/gateway.py (logs/, whatsapp session)
- hermes_cli/main.py (whatsapp/session)
Tests updated to use HERMES_HOME env var instead of patching Path.home().
Closes #892
(cherry picked from commit 78ac1bba43b8b74a934c6172f2c29bb4d03164b9)
2026-03-11 07:31:41 +01:00
log_file = get_hermes_home ( ) / " logs " / " gateway.log "
2026-02-02 19:01:51 -08:00
if log_file . exists ( ) :
print ( )
print ( " Recent logs: " )
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
subprocess . run ( [ " tail " , " -20 " , str ( log_file ) ] , timeout = 10 )
2026-02-02 19:01:51 -08:00
# =============================================================================
# Gateway Runner
# =============================================================================
2026-04-01 11:27:23 -03:00
def run_gateway ( verbose : int = 0 , quiet : bool = False , replace : bool = False ) :
2026-03-07 18:08:12 +00:00
""" Run the gateway in foreground.
Args :
2026-04-01 11:27:23 -03:00
verbose : Stderr log verbosity count added on top of default WARNING ( 0 = WARNING , 1 = INFO , 2 + = DEBUG ) .
quiet : Suppress all stderr log output .
2026-03-07 18:08:12 +00:00
replace : If True , kill any existing gateway instance before starting .
This prevents systemd restart loops when the old process
hasn ' t fully exited yet.
"""
2026-02-02 19:01:51 -08:00
sys . path . insert ( 0 , str ( PROJECT_ROOT ) )
from gateway . run import start_gateway
print ( " ┌─────────────────────────────────────────────────────────┐ " )
2026-02-20 21:25:04 -08:00
print ( " │ ⚕ Hermes Gateway Starting... │ " )
2026-02-02 19:01:51 -08:00
print ( " ├─────────────────────────────────────────────────────────┤ " )
2026-02-21 16:21:19 -08:00
print ( " │ Messaging platforms + cron scheduler │ " )
2026-02-02 19:01:51 -08:00
print ( " │ Press Ctrl+C to stop │ " )
print ( " └─────────────────────────────────────────────────────────┘ " )
print ( )
2026-02-10 16:01:00 -08:00
# Exit with code 1 if gateway fails to connect any platform,
# so systemd Restart=on-failure will retry on transient errors
2026-04-01 11:27:23 -03:00
verbosity = None if quiet else verbose
success = asyncio . run ( start_gateway ( replace = replace , verbosity = verbosity ) )
2026-02-10 16:01:00 -08:00
if not success :
sys . exit ( 1 )
2026-02-02 19:01:51 -08:00
2026-03-03 18:57:33 -08:00
# =============================================================================
# Gateway Setup (Interactive Messaging Platform Configuration)
# =============================================================================
# Per-platform config: each entry defines the env vars, setup instructions,
# and prompts needed to configure a messaging platform.
_PLATFORMS = [
{
" key " : " telegram " ,
" label " : " Telegram " ,
" emoji " : " 📱 " ,
" token_var " : " TELEGRAM_BOT_TOKEN " ,
2026-03-03 20:05:15 -08:00
" setup_instructions " : [
" 1. Open Telegram and message @BotFather " ,
" 2. Send /newbot and follow the prompts to create your bot " ,
" 3. Copy the bot token BotFather gives you " ,
" 4. To find your user ID: message @userinfobot — it replies with your numeric ID " ,
] ,
2026-03-03 18:57:33 -08:00
" vars " : [
{ " name " : " TELEGRAM_BOT_TOKEN " , " prompt " : " Bot token " , " password " : True ,
2026-03-03 20:05:15 -08:00
" help " : " Paste the token from @BotFather (step 3 above). " } ,
2026-03-03 19:55:06 -08:00
{ " name " : " TELEGRAM_ALLOWED_USERS " , " prompt " : " Allowed user IDs (comma-separated) " , " password " : False ,
" is_allowlist " : True ,
2026-03-03 20:05:15 -08:00
" help " : " Paste your user ID from step 4 above. " } ,
2026-03-03 18:57:33 -08:00
{ " name " : " TELEGRAM_HOME_CHANNEL " , " prompt " : " Home channel ID (for cron/notification delivery, or empty to set later with /set-home) " , " password " : False ,
" help " : " For DMs, this is your user ID. You can set it later by typing /set-home in chat. " } ,
] ,
} ,
{
" key " : " discord " ,
" label " : " Discord " ,
" emoji " : " 💬 " ,
" token_var " : " DISCORD_BOT_TOKEN " ,
2026-03-03 20:05:15 -08:00
" setup_instructions " : [
" 1. Go to https://discord.com/developers/applications → New Application " ,
" 2. Go to Bot → Reset Token → copy the bot token " ,
" 3. Enable: Bot → Privileged Gateway Intents → Message Content Intent " ,
" 4. Invite the bot to your server: " ,
" OAuth2 → URL Generator → check BOTH scopes: " ,
" - bot " ,
" - applications.commands (required for slash commands!) " ,
" Bot Permissions: Send Messages, Read Message History, Attach Files " ,
" Copy the URL and open it in your browser to invite. " ,
" 5. Get your user ID: enable Developer Mode in Discord settings, " ,
" then right-click your name → Copy ID " ,
] ,
2026-03-03 18:57:33 -08:00
" vars " : [
{ " name " : " DISCORD_BOT_TOKEN " , " prompt " : " Bot token " , " password " : True ,
2026-03-03 20:05:15 -08:00
" help " : " Paste the token from step 2 above. " } ,
2026-03-03 19:55:06 -08:00
{ " name " : " DISCORD_ALLOWED_USERS " , " prompt " : " Allowed user IDs or usernames (comma-separated) " , " password " : False ,
" is_allowlist " : True ,
2026-03-03 20:05:15 -08:00
" help " : " Paste your user ID from step 5 above. " } ,
2026-03-03 18:57:33 -08:00
{ " name " : " DISCORD_HOME_CHANNEL " , " prompt " : " Home channel ID (for cron/notification delivery, or empty to set later with /set-home) " , " password " : False ,
" help " : " Right-click a channel → Copy Channel ID (requires Developer Mode). " } ,
] ,
} ,
{
" key " : " slack " ,
" label " : " Slack " ,
" emoji " : " 💼 " ,
" token_var " : " SLACK_BOT_TOKEN " ,
2026-03-03 20:05:15 -08:00
" setup_instructions " : [
" 1. Go to https://api.slack.com/apps → Create New App → From Scratch " ,
2026-03-09 14:31:19 -07:00
" 2. Enable Socket Mode: Settings → Socket Mode → Enable " ,
" Create an App-Level Token with scope: connections:write → copy xapp-... token " ,
" 3. Add Bot Token Scopes: Features → OAuth & Permissions → Scopes " ,
" Required: chat:write, app_mentions:read, channels:history, channels:read, " ,
2026-04-13 17:06:37 -06:00
" groups:history, im:history, im:read, im:write, users:read, files:read, files:write " ,
2026-03-09 14:31:19 -07:00
" 4. Subscribe to Events: Features → Event Subscriptions → Enable " ,
" Required events: message.im, message.channels, app_mention " ,
" Optional: message.groups (for private channels) " ,
" ⚠ Without message.channels the bot will ONLY work in DMs! " ,
" 5. Install to Workspace: Settings → Install App → copy xoxb-... token " ,
" 6. Reinstall the app after any scope or event changes " ,
2026-03-03 20:05:15 -08:00
" 7. Find your user ID: click your profile → three dots → Copy member ID " ,
2026-03-09 14:31:19 -07:00
" 8. Invite the bot to channels: /invite @YourBot " ,
2026-03-03 20:05:15 -08:00
] ,
2026-03-03 18:57:33 -08:00
" vars " : [
{ " name " : " SLACK_BOT_TOKEN " , " prompt " : " Bot Token (xoxb-...) " , " password " : True ,
2026-03-03 20:05:15 -08:00
" help " : " Paste the bot token from step 3 above. " } ,
2026-03-03 18:57:33 -08:00
{ " name " : " SLACK_APP_TOKEN " , " prompt " : " App Token (xapp-...) " , " password " : True ,
2026-03-03 20:05:15 -08:00
" help " : " Paste the app-level token from step 4 above. " } ,
2026-03-03 19:55:06 -08:00
{ " name " : " SLACK_ALLOWED_USERS " , " prompt " : " Allowed user IDs (comma-separated) " , " password " : False ,
" is_allowlist " : True ,
2026-03-03 20:05:15 -08:00
" help " : " Paste your member ID from step 7 above. " } ,
2026-03-03 18:57:33 -08:00
] ,
} ,
2026-03-17 02:59:36 -07:00
{
" key " : " matrix " ,
" label " : " Matrix " ,
" emoji " : " 🔐 " ,
" token_var " : " MATRIX_ACCESS_TOKEN " ,
" setup_instructions " : [
" 1. Works with any Matrix homeserver (self-hosted Synapse/Conduit/Dendrite or matrix.org) " ,
" 2. Create a bot user on your homeserver, or use your own account " ,
" 3. Get an access token: Element → Settings → Help & About → Access Token " ,
" Or via API: curl -X POST https://your-server/_matrix/client/v3/login \\ " ,
" -d ' { \" type \" : \" m.login.password \" , \" user \" : \" @bot:server \" , \" password \" : \" ... \" } ' " ,
" 4. Alternatively, provide user ID + password and Hermes will log in directly " ,
refactor(matrix): rewrite adapter from matrix-nio to mautrix-python
Translate all nio SDK calls to mautrix equivalents while preserving the
adapter structure, business logic, and all features (E2EE, reactions,
threading, mention gating, text batching, media caching, voice MSC3245).
Key changes:
- nio.AsyncClient -> mautrix.client.Client + HTTPAPI + MemoryStateStore
- Manual E2EE key management -> OlmMachine with auto key lifecycle
- isinstance(resp, nio.XxxResponse) -> mautrix returns values directly
- add_event_callback per type -> single ROOM_MESSAGE handler with
msgtype dispatch
- Room state (member_count, display_name) via async state store lookups
- Upload/download return ContentURI/bytes directly (no wrapper objects)
2026-04-11 06:51:43 +05:30
" 5. For E2EE: set MATRIX_ENCRYPTION=true (requires pip install ' mautrix[encryption] ' ) " ,
2026-03-17 02:59:36 -07:00
" 6. To find your user ID: it ' s @username:your-server (shown in Element profile) " ,
] ,
" vars " : [
{ " name " : " MATRIX_HOMESERVER " , " prompt " : " Homeserver URL (e.g. https://matrix.example.org) " , " password " : False ,
" help " : " Your Matrix homeserver URL. Works with any self-hosted instance. " } ,
{ " name " : " MATRIX_ACCESS_TOKEN " , " prompt " : " Access token (leave empty to use password login instead) " , " password " : True ,
" help " : " Paste your access token, or leave empty and provide user ID + password below. " } ,
{ " name " : " MATRIX_USER_ID " , " prompt " : " User ID (@bot:server — required for password login) " , " password " : False ,
" help " : " Full Matrix user ID, e.g. @hermes:matrix.example.org " } ,
{ " name " : " MATRIX_ALLOWED_USERS " , " prompt " : " Allowed user IDs (comma-separated, e.g. @you:server) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Matrix user IDs who can interact with the bot. " } ,
{ " name " : " MATRIX_HOME_ROOM " , " prompt " : " Home room ID (for cron/notification delivery, or empty to set later with /set-home) " , " password " : False ,
" help " : " Room ID (e.g. !abc123:server) for delivering cron results and notifications. " } ,
] ,
} ,
{
" key " : " mattermost " ,
" label " : " Mattermost " ,
" emoji " : " 💬 " ,
" token_var " : " MATTERMOST_TOKEN " ,
" setup_instructions " : [
" 1. In Mattermost: Integrations → Bot Accounts → Add Bot Account " ,
" (System Console → Integrations → Bot Accounts must be enabled) " ,
" 2. Give it a username (e.g. hermes) and copy the bot token " ,
" 3. Works with any self-hosted Mattermost instance — enter your server URL " ,
" 4. To find your user ID: click your avatar (top-left) → Profile " ,
" Your user ID is displayed there — click it to copy. " ,
" ⚠ This is NOT your username — it ' s a 26-character alphanumeric ID. " ,
" 5. To get a channel ID: click the channel name → View Info → copy the ID " ,
] ,
" vars " : [
{ " name " : " MATTERMOST_URL " , " prompt " : " Server URL (e.g. https://mm.example.com) " , " password " : False ,
" help " : " Your Mattermost server URL. Works with any self-hosted instance. " } ,
{ " name " : " MATTERMOST_TOKEN " , " prompt " : " Bot token " , " password " : True ,
" help " : " Paste the bot token from step 2 above. " } ,
{ " name " : " MATTERMOST_ALLOWED_USERS " , " prompt " : " Allowed user IDs (comma-separated) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Your Mattermost user ID from step 4 above. " } ,
{ " name " : " MATTERMOST_HOME_CHANNEL " , " prompt " : " Home channel ID (for cron/notification delivery, or empty to set later with /set-home) " , " password " : False ,
" help " : " Channel ID where Hermes delivers cron results and notifications. " } ,
{ " name " : " MATTERMOST_REPLY_MODE " , " prompt " : " Reply mode — ' off ' for flat messages, ' thread ' for threaded replies (default: off) " , " password " : False ,
" help " : " off = flat channel messages, thread = replies nest under your message. " } ,
] ,
} ,
2026-03-03 18:57:33 -08:00
{
" key " : " whatsapp " ,
" label " : " WhatsApp " ,
" emoji " : " 📲 " ,
" token_var " : " WHATSAPP_ENABLED " ,
} ,
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
{
" key " : " signal " ,
" label " : " Signal " ,
" emoji " : " 📡 " ,
" token_var " : " SIGNAL_HTTP_URL " ,
} ,
feat: add email gateway platform (IMAP/SMTP)
Allow users to interact with Hermes by sending and receiving emails.
Uses IMAP polling for incoming messages and SMTP for replies with
proper threading (In-Reply-To, References headers).
Integrates with all 14 gateway extension points: config, adapter
factory, authorization, send_message tool, cron delivery, toolsets,
prompt hints, channel directory, setup wizard, status display, and
env example.
65 tests covering config, parsing, dispatch, threading, IMAP fetch,
SMTP send, attachments, and all integration points.
2026-03-10 03:15:38 +03:00
{
" key " : " email " ,
" label " : " Email " ,
" emoji " : " 📧 " ,
" token_var " : " EMAIL_ADDRESS " ,
" setup_instructions " : [
" 1. Use a dedicated email account for your Hermes agent " ,
" 2. For Gmail: enable 2FA, then create an App Password at " ,
" https://myaccount.google.com/apppasswords " ,
" 3. For other providers: use your email password or app-specific password " ,
" 4. IMAP must be enabled on your email account " ,
] ,
" vars " : [
{ " name " : " EMAIL_ADDRESS " , " prompt " : " Email address " , " password " : False ,
" help " : " The email address Hermes will use (e.g., hermes@gmail.com). " } ,
{ " name " : " EMAIL_PASSWORD " , " prompt " : " Email password (or app password) " , " password " : True ,
" help " : " For Gmail, use an App Password (not your regular password). " } ,
{ " name " : " EMAIL_IMAP_HOST " , " prompt " : " IMAP host " , " password " : False ,
" help " : " e.g., imap.gmail.com for Gmail, outlook.office365.com for Outlook. " } ,
{ " name " : " EMAIL_SMTP_HOST " , " prompt " : " SMTP host " , " password " : False ,
" help " : " e.g., smtp.gmail.com for Gmail, smtp.office365.com for Outlook. " } ,
{ " name " : " EMAIL_ALLOWED_USERS " , " prompt " : " Allowed sender emails (comma-separated) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Only emails from these addresses will be processed. " } ,
] ,
} ,
feat: add SMS (Twilio) platform adapter
Add SMS as a first-class messaging platform via the Twilio API.
Shares credentials with the existing telephony skill — same
TWILIO_ACCOUNT_SID, TWILIO_AUTH_TOKEN, TWILIO_PHONE_NUMBER env vars.
Adapter (gateway/platforms/sms.py):
- aiohttp webhook server for inbound (Twilio form-encoded POSTs)
- Twilio REST API with Basic auth for outbound
- Markdown stripping, smart chunking at 1600 chars
- Echo loop prevention, phone number redaction in logs
Integration (13 files):
- gateway config, run, channel_directory
- agent prompt_builder (SMS platform hint)
- cron scheduler, cronjob tools
- send_message_tool (_send_sms via Twilio API)
- toolsets (hermes-sms + hermes-gateway)
- gateway setup wizard, status display
- pyproject.toml (sms optional extra)
- 21 tests
Docs:
- website/docs/user-guide/messaging/sms.md (full setup guide)
- Updated messaging index (architecture, toolsets, security, links)
- Updated environment-variables.md reference
Inspired by PR #1575 (@sunsakis), rewritten for Twilio.
2026-03-17 03:14:53 -07:00
{
" key " : " sms " ,
" label " : " SMS (Twilio) " ,
" emoji " : " 📱 " ,
" token_var " : " TWILIO_ACCOUNT_SID " ,
" setup_instructions " : [
" 1. Create a Twilio account at https://www.twilio.com/ " ,
" 2. Get your Account SID and Auth Token from the Twilio Console dashboard " ,
" 3. Buy or configure a phone number capable of sending SMS " ,
" 4. Set up your webhook URL for inbound SMS: " ,
" Twilio Console → Phone Numbers → Active Numbers → your number " ,
" → Messaging → A MESSAGE COMES IN → Webhook → https://your-server:8080/webhooks/twilio " ,
] ,
" vars " : [
{ " name " : " TWILIO_ACCOUNT_SID " , " prompt " : " Twilio Account SID " , " password " : False ,
" help " : " Found on the Twilio Console dashboard. " } ,
{ " name " : " TWILIO_AUTH_TOKEN " , " prompt " : " Twilio Auth Token " , " password " : True ,
" help " : " Found on the Twilio Console dashboard (click to reveal). " } ,
{ " name " : " TWILIO_PHONE_NUMBER " , " prompt " : " Twilio phone number (E.164 format, e.g. +15551234567) " , " password " : False ,
" help " : " The Twilio phone number to send SMS from. " } ,
{ " name " : " SMS_ALLOWED_USERS " , " prompt " : " Allowed phone numbers (comma-separated, E.164 format) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Only messages from these phone numbers will be processed. " } ,
{ " name " : " SMS_HOME_CHANNEL " , " prompt " : " Home channel phone number (for cron/notification delivery, or empty) " , " password " : False ,
" help " : " Phone number to deliver cron job results and notifications to. " } ,
] ,
} ,
2026-03-17 03:19:45 -07:00
{
" key " : " dingtalk " ,
" label " : " DingTalk " ,
" emoji " : " 💬 " ,
" token_var " : " DINGTALK_CLIENT_ID " ,
" setup_instructions " : [
" 1. Go to https://open-dev.dingtalk.com → Create Application " ,
" 2. Under ' Credentials ' , copy the AppKey (Client ID) and AppSecret (Client Secret) " ,
" 3. Enable ' Stream Mode ' under the bot settings " ,
" 4. Add the bot to a group chat or message it directly " ,
] ,
" vars " : [
{ " name " : " DINGTALK_CLIENT_ID " , " prompt " : " AppKey (Client ID) " , " password " : False ,
" help " : " The AppKey from your DingTalk application credentials. " } ,
{ " name " : " DINGTALK_CLIENT_SECRET " , " prompt " : " AppSecret (Client Secret) " , " password " : True ,
" help " : " The AppSecret from your DingTalk application credentials. " } ,
] ,
} ,
feat(gateway): add Feishu/Lark platform support (#3817)
Adds Feishu (ByteDance's enterprise messaging platform) as a gateway
platform adapter with full feature parity: WebSocket + webhook transports,
message batching, dedup, rate limiting, rich post/card content parsing,
media handling (images/audio/files/video), group @mention gating,
reaction routing, and interactive card button support.
Cherry-picked from PR #1793 by penwyp with:
- Moved to current main (PR was 458 commits behind)
- Fixed _send_with_retry shadowing BasePlatformAdapter method (renamed to
_feishu_send_with_retry to avoid signature mismatch crash)
- Fixed import structure: aiohttp/websockets imported independently of
lark_oapi so they remain available when SDK is missing
- Fixed get_hermes_home import (hermes_constants, not hermes_cli.config)
- Added skip decorators for tests requiring lark_oapi SDK
- All 16 integration points added surgically to current main
New dependency: lark-oapi>=1.5.3,<2 (optional, pip install hermes-agent[feishu])
Fixes #1788
Co-authored-by: penwyp <penwyp@users.noreply.github.com>
2026-03-29 18:17:42 -07:00
{
" key " : " feishu " ,
" label " : " Feishu / Lark " ,
" emoji " : " 🪽 " ,
" token_var " : " FEISHU_APP_ID " ,
" setup_instructions " : [
" 1. Go to https://open.feishu.cn/ (or https://open.larksuite.com/ for Lark) " ,
" 2. Create an app and copy the App ID and App Secret " ,
" 3. Enable the Bot capability for the app " ,
" 4. Choose WebSocket (recommended) or Webhook connection mode " ,
" 5. Add the bot to a group chat or message it directly " ,
" 6. Restrict access with FEISHU_ALLOWED_USERS for production use " ,
] ,
" vars " : [
{ " name " : " FEISHU_APP_ID " , " prompt " : " App ID " , " password " : False ,
" help " : " The App ID from your Feishu/Lark application. " } ,
{ " name " : " FEISHU_APP_SECRET " , " prompt " : " App Secret " , " password " : True ,
" help " : " The App Secret from your Feishu/Lark application. " } ,
{ " name " : " FEISHU_DOMAIN " , " prompt " : " Domain — feishu or lark (default: feishu) " , " password " : False ,
" help " : " Use ' feishu ' for Feishu China, or ' lark ' for Lark international. " } ,
{ " name " : " FEISHU_CONNECTION_MODE " , " prompt " : " Connection mode — websocket or webhook (default: websocket) " , " password " : False ,
" help " : " websocket is recommended unless you specifically need webhook mode. " } ,
{ " name " : " FEISHU_ALLOWED_USERS " , " prompt " : " Allowed user IDs (comma-separated, or empty) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Restrict which Feishu/Lark users can interact with the bot. " } ,
{ " name " : " FEISHU_HOME_CHANNEL " , " prompt " : " Home chat ID (optional, for cron/notifications) " , " password " : False ,
" help " : " Chat ID for scheduled results and notifications. " } ,
] ,
} ,
2026-03-29 21:29:13 -07:00
{
" key " : " wecom " ,
" label " : " WeCom (Enterprise WeChat) " ,
" emoji " : " 💬 " ,
" token_var " : " WECOM_BOT_ID " ,
" setup_instructions " : [
" 1. Go to WeCom Admin Console → Applications → Create AI Bot " ,
" 2. Copy the Bot ID and Secret from the bot ' s credentials page " ,
" 3. The bot connects via WebSocket — no public endpoint needed " ,
" 4. Add the bot to a group chat or message it directly in WeCom " ,
" 5. Restrict access with WECOM_ALLOWED_USERS for production use " ,
] ,
" vars " : [
{ " name " : " WECOM_BOT_ID " , " prompt " : " Bot ID " , " password " : False ,
" help " : " The Bot ID from your WeCom AI Bot. " } ,
{ " name " : " WECOM_SECRET " , " prompt " : " Secret " , " password " : True ,
" help " : " The secret from your WeCom AI Bot. " } ,
{ " name " : " WECOM_ALLOWED_USERS " , " prompt " : " Allowed user IDs (comma-separated, or empty) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Restrict which WeCom users can interact with the bot. " } ,
{ " name " : " WECOM_HOME_CHANNEL " , " prompt " : " Home chat ID (optional, for cron/notifications) " , " password " : False ,
" help " : " Chat ID for scheduled results and notifications. " } ,
] ,
} ,
2026-04-11 14:25:18 -07:00
{
" key " : " wecom_callback " ,
" label " : " WeCom Callback (Self-Built App) " ,
" emoji " : " 💬 " ,
" token_var " : " WECOM_CALLBACK_CORP_ID " ,
" setup_instructions " : [
" 1. Go to WeCom Admin Console → Applications → Create Self-Built App " ,
" 2. Note the Corp ID (top of admin console) and create a Corp Secret " ,
" 3. Under Receive Messages, configure the callback URL to point to your server " ,
" 4. Copy the Token and EncodingAESKey from the callback configuration " ,
" 5. The adapter runs an HTTP server — ensure the port is reachable from WeCom " ,
" 6. Restrict access with WECOM_CALLBACK_ALLOWED_USERS for production use " ,
] ,
" vars " : [
{ " name " : " WECOM_CALLBACK_CORP_ID " , " prompt " : " Corp ID " , " password " : False ,
" help " : " Your WeCom enterprise Corp ID. " } ,
{ " name " : " WECOM_CALLBACK_CORP_SECRET " , " prompt " : " Corp Secret " , " password " : True ,
" help " : " The secret for your self-built application. " } ,
{ " name " : " WECOM_CALLBACK_AGENT_ID " , " prompt " : " Agent ID " , " password " : False ,
" help " : " The Agent ID of your self-built application. " } ,
{ " name " : " WECOM_CALLBACK_TOKEN " , " prompt " : " Callback Token " , " password " : True ,
" help " : " The Token from your WeCom callback configuration. " } ,
{ " name " : " WECOM_CALLBACK_ENCODING_AES_KEY " , " prompt " : " Encoding AES Key " , " password " : True ,
" help " : " The EncodingAESKey from your WeCom callback configuration. " } ,
{ " name " : " WECOM_CALLBACK_PORT " , " prompt " : " Callback server port (default: 8645) " , " password " : False ,
" help " : " Port for the HTTP callback server. " } ,
{ " name " : " WECOM_CALLBACK_ALLOWED_USERS " , " prompt " : " Allowed user IDs (comma-separated, or empty) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Restrict which WeCom users can interact with the app. " } ,
] ,
} ,
2026-04-10 05:20:20 -07:00
{
" key " : " weixin " ,
" label " : " Weixin / WeChat " ,
" emoji " : " 💬 " ,
" token_var " : " WEIXIN_ACCOUNT_ID " ,
} ,
feat(gateway): add BlueBubbles iMessage platform adapter (#6437)
Adds Apple iMessage as a gateway platform via BlueBubbles macOS server.
Architecture:
- Webhook-based inbound (event-driven, no polling/dedup needed)
- Email/phone → chat GUID resolution for user-friendly addressing
- Private API safety (checks helper_connected before tapback/typing)
- Inbound attachment downloading (images, audio, documents cached locally)
- Markdown stripping for clean iMessage delivery
- Smart progress suppression for platforms without message editing
Based on PR #5869 by @benjaminsehl (webhook architecture, GUID resolution,
Private API safety, progress suppression) with inbound attachment downloading
from PR #4588 by @1960697431 (attachment cache routing).
Integration points: Platform enum, env config, adapter factory, auth maps,
cron delivery, send_message routing, channel directory, platform hints,
toolset definition, setup wizard, status display.
27 tests covering config, adapter, webhook parsing, GUID resolution,
attachment download routing, toolset consistency, and prompt hints.
2026-04-08 23:54:03 -07:00
{
" key " : " bluebubbles " ,
" label " : " BlueBubbles (iMessage) " ,
" emoji " : " 💬 " ,
" token_var " : " BLUEBUBBLES_SERVER_URL " ,
" setup_instructions " : [
" 1. Install BlueBubbles on a Mac that will act as your iMessage server: " ,
" https://bluebubbles.app/ " ,
" 2. Complete the BlueBubbles setup wizard — sign in with your Apple ID " ,
" 3. In BlueBubbles Settings → API, note the Server URL and password " ,
" 4. The server URL is typically http://<your-mac-ip>:1234 " ,
" 5. Hermes connects via the BlueBubbles REST API and receives " ,
" incoming messages via a local webhook " ,
" 6. To authorize users, use DM pairing: hermes pairing generate bluebubbles " ,
" Share the code — the user sends it via iMessage to get approved " ,
] ,
" vars " : [
{ " name " : " BLUEBUBBLES_SERVER_URL " , " prompt " : " BlueBubbles server URL (e.g. http://192.168.1.10:1234) " , " password " : False ,
" help " : " The URL shown in BlueBubbles Settings → API. " } ,
{ " name " : " BLUEBUBBLES_PASSWORD " , " prompt " : " BlueBubbles server password " , " password " : True ,
" help " : " The password shown in BlueBubbles Settings → API. " } ,
{ " name " : " BLUEBUBBLES_ALLOWED_USERS " , " prompt " : " Pre-authorized phone numbers or iMessage IDs (comma-separated, or leave empty for DM pairing) " , " password " : False ,
" is_allowlist " : True ,
" help " : " Optional — pre-authorize specific users. Leave empty to use DM pairing instead (recommended). " } ,
{ " name " : " BLUEBUBBLES_HOME_CHANNEL " , " prompt " : " Home channel (phone number or iMessage ID for cron/notifications, or empty) " , " password " : False ,
" help " : " Phone number or Apple ID to deliver cron results and notifications to. " } ,
] ,
} ,
feat: add QQ Bot platform adapter (Official API v2)
Add full QQ Bot integration via the Official QQ Bot API (v2):
- WebSocket gateway for inbound events (C2C, group, guild, DM)
- REST API for outbound text/markdown/media messages
- Voice transcription (Tencent ASR + configurable STT provider)
- Attachment processing (images, voice, files)
- User authorization (allowlist + allow-all + DM pairing)
Integration points:
- gateway: Platform.QQ enum, adapter factory, allowlist maps
- CLI: setup wizard, gateway config, status display, tools config
- tools: send_message cross-platform routing, toolsets
- cron: delivery platform support
- docs: QQ Bot setup guide
2026-04-13 21:56:38 +08:00
{
2026-04-14 01:33:06 +08:00
" key " : " qqbot " ,
feat: add QQ Bot platform adapter (Official API v2)
Add full QQ Bot integration via the Official QQ Bot API (v2):
- WebSocket gateway for inbound events (C2C, group, guild, DM)
- REST API for outbound text/markdown/media messages
- Voice transcription (Tencent ASR + configurable STT provider)
- Attachment processing (images, voice, files)
- User authorization (allowlist + allow-all + DM pairing)
Integration points:
- gateway: Platform.QQ enum, adapter factory, allowlist maps
- CLI: setup wizard, gateway config, status display, tools config
- tools: send_message cross-platform routing, toolsets
- cron: delivery platform support
- docs: QQ Bot setup guide
2026-04-13 21:56:38 +08:00
" label " : " QQ Bot " ,
2026-04-14 01:33:06 +08:00
" emoji " : " 🐧 " ,
feat: add QQ Bot platform adapter (Official API v2)
Add full QQ Bot integration via the Official QQ Bot API (v2):
- WebSocket gateway for inbound events (C2C, group, guild, DM)
- REST API for outbound text/markdown/media messages
- Voice transcription (Tencent ASR + configurable STT provider)
- Attachment processing (images, voice, files)
- User authorization (allowlist + allow-all + DM pairing)
Integration points:
- gateway: Platform.QQ enum, adapter factory, allowlist maps
- CLI: setup wizard, gateway config, status display, tools config
- tools: send_message cross-platform routing, toolsets
- cron: delivery platform support
- docs: QQ Bot setup guide
2026-04-13 21:56:38 +08:00
" token_var " : " QQ_APP_ID " ,
" setup_instructions " : [
2026-04-14 01:33:06 +08:00
" 1. Register a QQ Bot application at q.qq.com " ,
" 2. Note your App ID and App Secret from the application page " ,
" 3. Enable the required intents (C2C, Group, Guild messages) " ,
" 4. Configure sandbox or publish the bot " ,
feat: add QQ Bot platform adapter (Official API v2)
Add full QQ Bot integration via the Official QQ Bot API (v2):
- WebSocket gateway for inbound events (C2C, group, guild, DM)
- REST API for outbound text/markdown/media messages
- Voice transcription (Tencent ASR + configurable STT provider)
- Attachment processing (images, voice, files)
- User authorization (allowlist + allow-all + DM pairing)
Integration points:
- gateway: Platform.QQ enum, adapter factory, allowlist maps
- CLI: setup wizard, gateway config, status display, tools config
- tools: send_message cross-platform routing, toolsets
- cron: delivery platform support
- docs: QQ Bot setup guide
2026-04-13 21:56:38 +08:00
] ,
" vars " : [
2026-04-14 01:33:06 +08:00
{ " name " : " QQ_APP_ID " , " prompt " : " QQ Bot App ID " , " password " : False ,
" help " : " Your QQ Bot App ID from q.qq.com. " } ,
{ " name " : " QQ_CLIENT_SECRET " , " prompt " : " QQ Bot App Secret " , " password " : True ,
" help " : " Your QQ Bot App Secret from q.qq.com. " } ,
{ " name " : " QQ_ALLOWED_USERS " , " prompt " : " Allowed user OpenIDs (comma-separated, leave empty for open access) " , " password " : False ,
feat: add QQ Bot platform adapter (Official API v2)
Add full QQ Bot integration via the Official QQ Bot API (v2):
- WebSocket gateway for inbound events (C2C, group, guild, DM)
- REST API for outbound text/markdown/media messages
- Voice transcription (Tencent ASR + configurable STT provider)
- Attachment processing (images, voice, files)
- User authorization (allowlist + allow-all + DM pairing)
Integration points:
- gateway: Platform.QQ enum, adapter factory, allowlist maps
- CLI: setup wizard, gateway config, status display, tools config
- tools: send_message cross-platform routing, toolsets
- cron: delivery platform support
- docs: QQ Bot setup guide
2026-04-13 21:56:38 +08:00
" is_allowlist " : True ,
2026-04-14 01:33:06 +08:00
" help " : " Optional — restrict DM access to specific user OpenIDs. " } ,
2026-04-15 23:46:50 +08:00
{ " name " : " QQBOT_HOME_CHANNEL " , " prompt " : " Home channel (user/group OpenID for cron delivery, or empty) " , " password " : False ,
2026-04-14 01:33:06 +08:00
" help " : " OpenID to deliver cron results and notifications to. " } ,
feat: add QQ Bot platform adapter (Official API v2)
Add full QQ Bot integration via the Official QQ Bot API (v2):
- WebSocket gateway for inbound events (C2C, group, guild, DM)
- REST API for outbound text/markdown/media messages
- Voice transcription (Tencent ASR + configurable STT provider)
- Attachment processing (images, voice, files)
- User authorization (allowlist + allow-all + DM pairing)
Integration points:
- gateway: Platform.QQ enum, adapter factory, allowlist maps
- CLI: setup wizard, gateway config, status display, tools config
- tools: send_message cross-platform routing, toolsets
- cron: delivery platform support
- docs: QQ Bot setup guide
2026-04-13 21:56:38 +08:00
] ,
} ,
2026-03-03 18:57:33 -08:00
]
def _platform_status ( platform : dict ) - > str :
2026-03-03 19:04:32 -08:00
""" Return a plain-text status string for a platform.
Returns uncolored text so it can safely be embedded in
simple_term_menu items ( ANSI codes break width calculation ) .
"""
2026-03-03 18:57:33 -08:00
token_var = platform [ " token_var " ]
val = get_env_value ( token_var )
if token_var == " WHATSAPP_ENABLED " :
if val and val . lower ( ) == " true " :
fix(cli): respect HERMES_HOME in all remaining hardcoded ~/.hermes paths
Several files resolved paths via Path.home() / ".hermes" or
os.path.expanduser("~/.hermes/..."), bypassing the HERMES_HOME
environment variable. This broke isolation when running multiple
Hermes instances with distinct HERMES_HOME directories.
Replace all hardcoded paths with calls to get_hermes_home() from
hermes_cli.config, consistent with the rest of the codebase.
Files fixed:
- tools/process_registry.py (processes.json)
- gateway/pairing.py (pairing/)
- gateway/sticker_cache.py (sticker_cache.json)
- gateway/channel_directory.py (channel_directory.json, sessions.json)
- gateway/config.py (gateway.json, config.yaml, sessions_dir)
- gateway/mirror.py (sessions/)
- gateway/hooks.py (hooks/)
- gateway/platforms/base.py (image_cache/, audio_cache/, document_cache/)
- gateway/platforms/whatsapp.py (whatsapp/session)
- gateway/delivery.py (cron/output)
- agent/auxiliary_client.py (auth.json)
- agent/prompt_builder.py (SOUL.md)
- cli.py (config.yaml, images/, pastes/, history)
- run_agent.py (logs/)
- tools/environments/base.py (sandboxes/)
- tools/environments/modal.py (modal_snapshots.json)
- tools/environments/singularity.py (singularity_snapshots.json)
- tools/tts_tool.py (audio_cache)
- hermes_cli/status.py (cron/jobs.json, sessions.json)
- hermes_cli/gateway.py (logs/, whatsapp session)
- hermes_cli/main.py (whatsapp/session)
Tests updated to use HERMES_HOME env var instead of patching Path.home().
Closes #892
(cherry picked from commit 78ac1bba43b8b74a934c6172f2c29bb4d03164b9)
2026-03-11 07:31:41 +01:00
session_file = get_hermes_home ( ) / " whatsapp " / " session " / " creds.json "
2026-03-03 18:57:33 -08:00
if session_file . exists ( ) :
2026-03-03 19:04:32 -08:00
return " configured + paired "
return " enabled, not paired "
return " not configured "
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
if platform . get ( " key " ) == " signal " :
account = get_env_value ( " SIGNAL_ACCOUNT " )
if val and account :
return " configured "
if val or account :
return " partially configured "
return " not configured "
feat: add email gateway platform (IMAP/SMTP)
Allow users to interact with Hermes by sending and receiving emails.
Uses IMAP polling for incoming messages and SMTP for replies with
proper threading (In-Reply-To, References headers).
Integrates with all 14 gateway extension points: config, adapter
factory, authorization, send_message tool, cron delivery, toolsets,
prompt hints, channel directory, setup wizard, status display, and
env example.
65 tests covering config, parsing, dispatch, threading, IMAP fetch,
SMTP send, attachments, and all integration points.
2026-03-10 03:15:38 +03:00
if platform . get ( " key " ) == " email " :
pwd = get_env_value ( " EMAIL_PASSWORD " )
imap = get_env_value ( " EMAIL_IMAP_HOST " )
smtp = get_env_value ( " EMAIL_SMTP_HOST " )
if all ( [ val , pwd , imap , smtp ] ) :
return " configured "
if any ( [ val , pwd , imap , smtp ] ) :
return " partially configured "
return " not configured "
2026-03-17 02:59:36 -07:00
if platform . get ( " key " ) == " matrix " :
homeserver = get_env_value ( " MATRIX_HOMESERVER " )
password = get_env_value ( " MATRIX_PASSWORD " )
if ( val or password ) and homeserver :
e2ee = get_env_value ( " MATRIX_ENCRYPTION " )
suffix = " + E2EE " if e2ee and e2ee . lower ( ) in ( " true " , " 1 " , " yes " ) else " "
return f " configured { suffix } "
if val or password or homeserver :
return " partially configured "
return " not configured "
2026-04-10 05:20:20 -07:00
if platform . get ( " key " ) == " weixin " :
token = get_env_value ( " WEIXIN_TOKEN " )
if val and token :
return " configured "
if val or token :
return " partially configured "
return " not configured "
2026-03-03 18:57:33 -08:00
if val :
2026-03-03 19:04:32 -08:00
return " configured "
return " not configured "
2026-03-03 18:57:33 -08:00
2026-03-14 12:11:23 -07:00
def _runtime_health_lines ( ) - > list [ str ] :
""" Summarize the latest persisted gateway runtime health state. """
try :
from gateway . status import read_runtime_status
except Exception :
return [ ]
state = read_runtime_status ( )
if not state :
return [ ]
lines : list [ str ] = [ ]
gateway_state = state . get ( " gateway_state " )
exit_reason = state . get ( " exit_reason " )
2026-04-10 10:19:17 -07:00
active_agents = state . get ( " active_agents " )
restart_requested = state . get ( " restart_requested " )
2026-03-14 12:11:23 -07:00
platforms = state . get ( " platforms " , { } ) or { }
for platform , pdata in platforms . items ( ) :
if pdata . get ( " state " ) == " fatal " :
message = pdata . get ( " error_message " ) or " unknown error "
lines . append ( f " ⚠ { platform } : { message } " )
if gateway_state == " startup_failed " and exit_reason :
lines . append ( f " ⚠ Last startup issue: { exit_reason } " )
2026-04-10 10:19:17 -07:00
elif gateway_state == " draining " :
action = " restart " if restart_requested else " shutdown "
count = int ( active_agents or 0 )
lines . append ( f " ⏳ Gateway draining for { action } ( { count } active agent(s)) " )
2026-03-14 12:11:23 -07:00
elif gateway_state == " stopped " and exit_reason :
lines . append ( f " ⚠ Last shutdown reason: { exit_reason } " )
return lines
2026-03-03 18:57:33 -08:00
def _setup_standard_platform ( platform : dict ) :
""" Interactive setup for Telegram, Discord, or Slack. """
emoji = platform [ " emoji " ]
label = platform [ " label " ]
token_var = platform [ " token_var " ]
print ( )
print ( color ( f " ─── { emoji } { label } Setup ─── " , Colors . CYAN ) )
2026-03-03 20:05:15 -08:00
# Show step-by-step setup instructions if this platform has them
instructions = platform . get ( " setup_instructions " )
if instructions :
print ( )
for line in instructions :
print_info ( f " { line } " )
2026-03-03 18:57:33 -08:00
existing_token = get_env_value ( token_var )
if existing_token :
print ( )
print_success ( f " { label } is already configured. " )
if not prompt_yes_no ( f " Reconfigure { label } ? " , False ) :
return
2026-03-03 19:55:06 -08:00
allowed_val_set = None # Track if user set an allowlist (for home channel offer)
2026-03-03 18:57:33 -08:00
for var in platform [ " vars " ] :
print ( )
print_info ( f " { var [ ' help ' ] } " )
existing = get_env_value ( var [ " name " ] )
if existing and var [ " name " ] != token_var :
print_info ( f " Current: { existing } " )
2026-03-03 19:55:06 -08:00
# Allowlist fields get special handling for the deny-by-default security model
if var . get ( " is_allowlist " ) :
chore: fix 154 f-strings, simplify getattr/URL patterns, remove dead code (#3119)
Three categories of cleanup, all zero-behavioral-change:
1. F-strings without placeholders (154 fixes across 29 files)
- Converted f'...' to '...' where no {expression} was present
- Heaviest files: run_agent.py (24), cli.py (20), honcho_integration/cli.py (34)
2. Simplify defensive patterns in run_agent.py
- Added explicit self._is_anthropic_oauth = False in __init__ (before
the api_mode branch that conditionally sets it)
- Replaced 7x getattr(self, '_is_anthropic_oauth', False) with direct
self._is_anthropic_oauth (attribute always initialized now)
- Added _is_openrouter_url() and _is_anthropic_url() helper methods
- Replaced 3 inline 'openrouter' in self._base_url_lower checks
3. Remove dead code in small files
- hermes_cli/claw.py: removed unused 'total' computation
- tools/fuzzy_match.py: removed unused strip_indent() function and
pattern_stripped variable
Full test suite: 6184 passed, 0 failures
E2E PTY: banner clean, tool calls work, zero garbled ANSI
2026-03-25 19:47:58 -07:00
print_info ( " The gateway DENIES all users by default for security. " )
print_info ( " Enter user IDs to create an allowlist, or leave empty " )
print_info ( " and you ' ll be asked about open access next. " )
2026-03-03 19:55:06 -08:00
value = prompt ( f " { var [ ' prompt ' ] } " , password = False )
if value :
cleaned = value . replace ( " " , " " )
2026-03-13 09:35:39 -07:00
# For Discord, strip common prefixes (user:123, <@123>, <@!123>)
if " DISCORD " in var [ " name " ] :
parts = [ ]
for uid in cleaned . split ( " , " ) :
uid = uid . strip ( )
if uid . startswith ( " <@ " ) and uid . endswith ( " > " ) :
uid = uid . lstrip ( " <@! " ) . rstrip ( " > " )
if uid . lower ( ) . startswith ( " user: " ) :
uid = uid [ 5 : ]
if uid :
parts . append ( uid )
cleaned = " , " . join ( parts )
2026-03-03 19:55:06 -08:00
save_env_value ( var [ " name " ] , cleaned )
chore: fix 154 f-strings, simplify getattr/URL patterns, remove dead code (#3119)
Three categories of cleanup, all zero-behavioral-change:
1. F-strings without placeholders (154 fixes across 29 files)
- Converted f'...' to '...' where no {expression} was present
- Heaviest files: run_agent.py (24), cli.py (20), honcho_integration/cli.py (34)
2. Simplify defensive patterns in run_agent.py
- Added explicit self._is_anthropic_oauth = False in __init__ (before
the api_mode branch that conditionally sets it)
- Replaced 7x getattr(self, '_is_anthropic_oauth', False) with direct
self._is_anthropic_oauth (attribute always initialized now)
- Added _is_openrouter_url() and _is_anthropic_url() helper methods
- Replaced 3 inline 'openrouter' in self._base_url_lower checks
3. Remove dead code in small files
- hermes_cli/claw.py: removed unused 'total' computation
- tools/fuzzy_match.py: removed unused strip_indent() function and
pattern_stripped variable
Full test suite: 6184 passed, 0 failures
E2E PTY: banner clean, tool calls work, zero garbled ANSI
2026-03-25 19:47:58 -07:00
print_success ( " Saved — only these users can interact with the bot. " )
2026-03-03 19:55:06 -08:00
allowed_val_set = cleaned
else :
# No allowlist — ask about open access vs DM pairing
print ( )
access_choices = [
" Enable open access (anyone can message the bot) " ,
" Use DM pairing (unknown users request access, you approve with ' hermes pairing approve ' ) " ,
" Skip for now (bot will deny all users until configured) " ,
]
access_idx = prompt_choice ( " How should unauthorized users be handled? " , access_choices , 1 )
if access_idx == 0 :
save_env_value ( " GATEWAY_ALLOW_ALL_USERS " , " true " )
print_warning ( " Open access enabled — anyone can use your bot! " )
elif access_idx == 1 :
print_success ( " DM pairing mode — users will receive a code to request access. " )
2026-04-10 05:33:48 -07:00
print_info ( " Approve with: hermes pairing approve <platform> <code> " )
2026-03-03 19:55:06 -08:00
else :
print_info ( " Skipped — configure later with ' hermes gateway setup ' " )
continue
2026-03-03 18:57:33 -08:00
value = prompt ( f " { var [ ' prompt ' ] } " , password = var . get ( " password " , False ) )
if value :
2026-03-03 19:55:06 -08:00
save_env_value ( var [ " name " ] , value )
2026-03-03 18:57:33 -08:00
print_success ( f " Saved { var [ ' name ' ] } " )
elif var [ " name " ] == token_var :
print_warning ( f " Skipped — { label } won ' t work without this. " )
return
else :
chore: fix 154 f-strings, simplify getattr/URL patterns, remove dead code (#3119)
Three categories of cleanup, all zero-behavioral-change:
1. F-strings without placeholders (154 fixes across 29 files)
- Converted f'...' to '...' where no {expression} was present
- Heaviest files: run_agent.py (24), cli.py (20), honcho_integration/cli.py (34)
2. Simplify defensive patterns in run_agent.py
- Added explicit self._is_anthropic_oauth = False in __init__ (before
the api_mode branch that conditionally sets it)
- Replaced 7x getattr(self, '_is_anthropic_oauth', False) with direct
self._is_anthropic_oauth (attribute always initialized now)
- Added _is_openrouter_url() and _is_anthropic_url() helper methods
- Replaced 3 inline 'openrouter' in self._base_url_lower checks
3. Remove dead code in small files
- hermes_cli/claw.py: removed unused 'total' computation
- tools/fuzzy_match.py: removed unused strip_indent() function and
pattern_stripped variable
Full test suite: 6184 passed, 0 failures
E2E PTY: banner clean, tool calls work, zero garbled ANSI
2026-03-25 19:47:58 -07:00
print_info ( " Skipped (can configure later) " )
2026-03-03 18:57:33 -08:00
2026-03-03 19:55:06 -08:00
# If an allowlist was set and home channel wasn't, offer to reuse
# the first user ID (common for Telegram DMs).
2026-03-03 18:57:33 -08:00
home_var = f " { label . upper ( ) } _HOME_CHANNEL "
home_val = get_env_value ( home_var )
2026-03-03 19:55:06 -08:00
if allowed_val_set and not home_val and label == " Telegram " :
first_id = allowed_val_set . split ( " , " ) [ 0 ] . strip ( )
2026-03-03 18:57:33 -08:00
if first_id and prompt_yes_no ( f " Use your user ID ( { first_id } ) as the home channel? " , True ) :
save_env_value ( home_var , first_id )
print_success ( f " Home channel set to { first_id } " )
print ( )
print_success ( f " { emoji } { label } configured! " )
def _setup_whatsapp ( ) :
""" Delegate to the existing WhatsApp setup flow. """
from hermes_cli . main import cmd_whatsapp
import argparse
cmd_whatsapp ( argparse . Namespace ( ) )
2026-04-11 14:44:51 -07:00
def _setup_email ( ) :
""" Configure Email via the standard platform setup. """
email_platform = next ( p for p in _PLATFORMS if p [ " key " ] == " email " )
_setup_standard_platform ( email_platform )
def _setup_sms ( ) :
""" Configure SMS (Twilio) via the standard platform setup. """
sms_platform = next ( p for p in _PLATFORMS if p [ " key " ] == " sms " )
_setup_standard_platform ( sms_platform )
def _setup_dingtalk ( ) :
2026-04-13 12:57:25 +08:00
""" Configure DingTalk — QR scan (recommended) or manual credential entry. """
from hermes_cli . setup import (
prompt_choice , prompt_yes_no , print_info , print_success , print_warning ,
)
2026-04-11 14:44:51 -07:00
dingtalk_platform = next ( p for p in _PLATFORMS if p [ " key " ] == " dingtalk " )
2026-04-13 12:57:25 +08:00
emoji = dingtalk_platform [ " emoji " ]
label = dingtalk_platform [ " label " ]
print ( )
print ( color ( f " ─── { emoji } { label } Setup ─── " , Colors . CYAN ) )
existing = get_env_value ( " DINGTALK_CLIENT_ID " )
if existing :
print ( )
print_success ( f " { label } is already configured (Client ID: { existing } ). " )
if not prompt_yes_no ( f " Reconfigure { label } ? " , False ) :
return
print ( )
method = prompt_choice (
" Choose setup method " ,
[
" QR Code Scan (Recommended, auto-obtain Client ID and Client Secret) " ,
" Manual Input (Client ID and Client Secret) " ,
] ,
default = 0 ,
)
if method == 0 :
# ── QR-code device-flow authorization ──
try :
from hermes_cli . dingtalk_auth import dingtalk_qr_auth
except ImportError as exc :
print_warning ( f " QR auth module failed to load ( { exc } ), falling back to manual input. " )
_setup_standard_platform ( dingtalk_platform )
return
result = dingtalk_qr_auth ( )
if result is None :
print_warning ( " QR auth incomplete, falling back to manual input. " )
_setup_standard_platform ( dingtalk_platform )
return
client_id , client_secret = result
save_env_value ( " DINGTALK_CLIENT_ID " , client_id )
save_env_value ( " DINGTALK_CLIENT_SECRET " , client_secret )
save_env_value ( " DINGTALK_ALLOW_ALL_USERS " , " true " )
print ( )
print_success ( f " { emoji } { label } configured via QR scan! " )
else :
# ── Manual entry ──
_setup_standard_platform ( dingtalk_platform )
# Also enable allow-all by default for convenience
if get_env_value ( " DINGTALK_CLIENT_ID " ) :
save_env_value ( " DINGTALK_ALLOW_ALL_USERS " , " true " )
2026-04-11 14:44:51 -07:00
def _setup_wecom ( ) :
""" Configure WeCom (Enterprise WeChat) via the standard platform setup. """
wecom_platform = next ( p for p in _PLATFORMS if p [ " key " ] == " wecom " )
_setup_standard_platform ( wecom_platform )
2026-03-03 18:57:33 -08:00
def _is_service_installed ( ) - > bool :
""" Check if the gateway is installed as a system service. """
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-14 20:54:51 -07:00
return get_systemd_unit_path ( system = False ) . exists ( ) or get_systemd_unit_path ( system = True ) . exists ( )
2026-03-03 18:57:33 -08:00
elif is_macos ( ) :
return get_launchd_plist_path ( ) . exists ( )
return False
def _is_service_running ( ) - > bool :
""" Check if the gateway service is currently running. """
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-14 21:06:52 -07:00
user_unit_exists = get_systemd_unit_path ( system = False ) . exists ( )
system_unit_exists = get_systemd_unit_path ( system = True ) . exists ( )
if user_unit_exists :
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
try :
2026-04-12 14:42:46 -07:00
result = _run_systemctl (
[ " is-active " , get_service_name ( ) ] ,
system = False , capture_output = True , text = True , timeout = 10 ,
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
)
if result . stdout . strip ( ) == " active " :
return True
2026-04-12 14:42:46 -07:00
except ( RuntimeError , subprocess . TimeoutExpired ) :
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
pass
2026-03-14 21:06:52 -07:00
if system_unit_exists :
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
try :
2026-04-12 14:42:46 -07:00
result = _run_systemctl (
[ " is-active " , get_service_name ( ) ] ,
system = True , capture_output = True , text = True , timeout = 10 ,
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
)
if result . stdout . strip ( ) == " active " :
return True
2026-04-12 14:42:46 -07:00
except ( RuntimeError , subprocess . TimeoutExpired ) :
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
pass
2026-03-14 21:06:52 -07:00
return False
2026-03-03 18:57:33 -08:00
elif is_macos ( ) and get_launchd_plist_path ( ) . exists ( ) :
fix(cli): add missing subprocess.run() timeouts in gateway CLI (#5424)
All 35 subprocess.run() calls in hermes_cli/gateway.py lacked timeout
parameters. If systemctl, launchctl, loginctl, wmic, or ps blocks,
hermes gateway start/stop/restart/status/install/uninstall hangs
indefinitely with no feedback.
Timeouts tiered by operation type:
- 10s: instant queries (is-active, status, list, ps, tail, journalctl)
- 30s: fast lifecycle (daemon-reload, enable, start, bootstrap, kickstart)
- 90s: graceful shutdown (stop, restart, bootout, kickstart -k) — exceeds
our TimeoutStopSec=60 to avoid premature timeout during shutdown
Special handling: _is_service_running() and launchd_status() catch
TimeoutExpired and treat it as not-running/not-loaded, consistent with
how non-zero return codes are already handled.
Inspired by PR #3732 (dlkakbs) and issue #4057 (SHL0MS).
Reimplemented on current main which has significantly changed launchctl
handling (bootout/bootstrap/kickstart vs legacy load/unload/start/stop).
2026-04-05 22:41:42 -07:00
try :
result = subprocess . run (
[ " launchctl " , " list " , get_launchd_label ( ) ] ,
capture_output = True , text = True , timeout = 10 ,
)
return result . returncode == 0
except subprocess . TimeoutExpired :
return False
2026-03-03 18:57:33 -08:00
# Check for manual processes
return len ( find_gateway_pids ( ) ) > 0
2026-04-10 05:20:20 -07:00
def _setup_weixin ( ) :
""" Interactive setup for Weixin / WeChat personal accounts. """
print ( )
print ( color ( " ─── 💬 Weixin / WeChat Setup ─── " , Colors . CYAN ) )
print ( )
print_info ( " 1. Hermes will open Tencent iLink QR login in this terminal. " )
print_info ( " 2. Use WeChat to scan and confirm the QR code. " )
print_info ( " 3. Hermes will store the returned account_id/token in ~/.hermes/.env. " )
print_info ( " 4. This adapter supports native text, image, video, and document delivery. " )
existing_account = get_env_value ( " WEIXIN_ACCOUNT_ID " )
existing_token = get_env_value ( " WEIXIN_TOKEN " )
if existing_account and existing_token :
print ( )
print_success ( " Weixin is already configured. " )
if not prompt_yes_no ( " Reconfigure Weixin? " , False ) :
return
try :
from gateway . platforms . weixin import check_weixin_requirements , qr_login
except Exception as exc :
print_error ( f " Weixin adapter import failed: { exc } " )
print_info ( " Install gateway dependencies first, then retry. " )
return
if not check_weixin_requirements ( ) :
print_error ( " Missing dependencies: Weixin needs aiohttp and cryptography. " )
print_info ( " Install them, then rerun `hermes gateway setup`. " )
return
print ( )
if not prompt_yes_no ( " Start QR login now? " , True ) :
print_info ( " Cancelled. " )
return
import asyncio
try :
credentials = asyncio . run ( qr_login ( str ( get_hermes_home ( ) ) ) )
except KeyboardInterrupt :
print ( )
print_warning ( " Weixin setup cancelled. " )
return
except Exception as exc :
print_error ( f " QR login failed: { exc } " )
return
if not credentials :
print_warning ( " QR login did not complete. " )
return
account_id = credentials . get ( " account_id " , " " )
token = credentials . get ( " token " , " " )
base_url = credentials . get ( " base_url " , " " )
user_id = credentials . get ( " user_id " , " " )
save_env_value ( " WEIXIN_ACCOUNT_ID " , account_id )
save_env_value ( " WEIXIN_TOKEN " , token )
if base_url :
save_env_value ( " WEIXIN_BASE_URL " , base_url )
save_env_value ( " WEIXIN_CDN_BASE_URL " , get_env_value ( " WEIXIN_CDN_BASE_URL " ) or " https://novac2c.cdn.weixin.qq.com/c2c " )
print ( )
access_choices = [
" Use DM pairing approval (recommended) " ,
" Allow all direct messages " ,
" Only allow listed user IDs " ,
" Disable direct messages " ,
]
access_idx = prompt_choice ( " How should direct messages be authorized? " , access_choices , 0 )
if access_idx == 0 :
save_env_value ( " WEIXIN_DM_POLICY " , " pairing " )
save_env_value ( " WEIXIN_ALLOW_ALL_USERS " , " false " )
save_env_value ( " WEIXIN_ALLOWED_USERS " , " " )
print_success ( " DM pairing enabled. " )
print_info ( " Unknown DM users can request access and you approve them with `hermes pairing approve`. " )
elif access_idx == 1 :
save_env_value ( " WEIXIN_DM_POLICY " , " open " )
save_env_value ( " WEIXIN_ALLOW_ALL_USERS " , " true " )
save_env_value ( " WEIXIN_ALLOWED_USERS " , " " )
print_warning ( " Open DM access enabled for Weixin. " )
elif access_idx == 2 :
default_allow = user_id or " "
allowlist = prompt ( " Allowed Weixin user IDs (comma-separated) " , default_allow , password = False ) . replace ( " " , " " )
save_env_value ( " WEIXIN_DM_POLICY " , " allowlist " )
save_env_value ( " WEIXIN_ALLOW_ALL_USERS " , " false " )
save_env_value ( " WEIXIN_ALLOWED_USERS " , allowlist )
print_success ( " Weixin allowlist saved. " )
else :
save_env_value ( " WEIXIN_DM_POLICY " , " disabled " )
save_env_value ( " WEIXIN_ALLOW_ALL_USERS " , " false " )
save_env_value ( " WEIXIN_ALLOWED_USERS " , " " )
print_warning ( " Direct messages disabled. " )
print ( )
group_choices = [
" Disable group chats (recommended) " ,
" Allow all group chats " ,
" Only allow listed group chat IDs " ,
]
group_idx = prompt_choice ( " How should group chats be handled? " , group_choices , 0 )
if group_idx == 0 :
save_env_value ( " WEIXIN_GROUP_POLICY " , " disabled " )
save_env_value ( " WEIXIN_GROUP_ALLOWED_USERS " , " " )
print_info ( " Group chats disabled. " )
elif group_idx == 1 :
save_env_value ( " WEIXIN_GROUP_POLICY " , " open " )
save_env_value ( " WEIXIN_GROUP_ALLOWED_USERS " , " " )
print_warning ( " All group chats enabled. " )
else :
allow_groups = prompt ( " Allowed group chat IDs (comma-separated) " , " " , password = False ) . replace ( " " , " " )
save_env_value ( " WEIXIN_GROUP_POLICY " , " allowlist " )
save_env_value ( " WEIXIN_GROUP_ALLOWED_USERS " , allow_groups )
print_success ( " Group allowlist saved. " )
if user_id :
print ( )
if prompt_yes_no ( f " Use your Weixin user ID ( { user_id } ) as the home channel? " , True ) :
save_env_value ( " WEIXIN_HOME_CHANNEL " , user_id )
print_success ( f " Home channel set to { user_id } " )
print ( )
print_success ( " Weixin configured! " )
print_info ( f " Account ID: { account_id } " )
if user_id :
print_info ( f " User ID: { user_id } " )
feat(feishu): add scan-to-create onboarding for Feishu / Lark
Add a QR-based onboarding flow to `hermes gateway setup` for Feishu / Lark.
Users scan a QR code with their phone and the platform creates a fully
configured bot application automatically — matching the existing WeChat
QR login experience.
Setup flow:
- Choose between QR scan-to-create (new app) or manual credential input (existing app)
- Connection mode selection (WebSocket / Webhook)
- DM security policy (pairing / open / allowlist / disabled)
- Group chat policy (open with @mention / disabled)
Implementation:
- Onboard functions (init/begin/poll/QR/probe) in gateway/platforms/feishu.py
- _setup_feishu() in hermes_cli/gateway.py with manual fallback
- probe_bot uses lark_oapi SDK when available, raw HTTP fallback otherwise
- qr_register() catches expected errors (network/protocol), propagates bugs
- Poll handles HTTP 4xx JSON responses and feishu/lark domain auto-detection
Tests:
- 25 tests for onboard module (registration, QR, probe, contract, negative paths)
- 16 tests for setup flow (credentials, connection mode, DM policy, group policy,
adapter integration verifying env vars produce valid FeishuAdapterSettings)
Change-Id: I720591ee84755f32dda95fbac4b26dc82cbcf823
2026-04-11 16:57:16 +08:00
def _setup_feishu ( ) :
""" Interactive setup for Feishu / Lark — scan-to-create or manual credentials. """
print ( )
print ( color ( " ─── 🪽 Feishu / Lark Setup ─── " , Colors . CYAN ) )
existing_app_id = get_env_value ( " FEISHU_APP_ID " )
existing_secret = get_env_value ( " FEISHU_APP_SECRET " )
if existing_app_id and existing_secret :
print ( )
print_success ( " Feishu / Lark is already configured. " )
if not prompt_yes_no ( " Reconfigure Feishu / Lark? " , False ) :
return
# ── Choose setup method ──
print ( )
method_choices = [
" Scan QR code to create a new bot automatically (recommended) " ,
" Enter existing App ID and App Secret manually " ,
]
method_idx = prompt_choice ( " How would you like to set up Feishu / Lark? " , method_choices , 0 )
credentials = None
used_qr = False
if method_idx == 0 :
# ── QR scan-to-create ──
try :
from gateway . platforms . feishu import qr_register
except Exception as exc :
print_error ( f " Feishu / Lark onboard import failed: { exc } " )
qr_register = None
if qr_register is not None :
try :
credentials = qr_register ( )
except KeyboardInterrupt :
print ( )
print_warning ( " Feishu / Lark setup cancelled. " )
return
except Exception as exc :
print_warning ( f " QR registration failed: { exc } " )
if credentials :
used_qr = True
if not credentials :
print_info ( " QR setup did not complete. Continuing with manual input. " )
# ── Manual credential input ──
if not credentials :
print ( )
print_info ( " Go to https://open.feishu.cn/ (or https://open.larksuite.com/ for Lark) " )
print_info ( " Create an app, enable the Bot capability, and copy the credentials. " )
print ( )
app_id = prompt ( " App ID " , password = False )
if not app_id :
print_warning ( " Skipped — Feishu / Lark won ' t work without an App ID. " )
return
app_secret = prompt ( " App Secret " , password = True )
if not app_secret :
print_warning ( " Skipped — Feishu / Lark won ' t work without an App Secret. " )
return
domain_choices = [ " feishu (China) " , " lark (International) " ]
domain_idx = prompt_choice ( " Domain " , domain_choices , 0 )
domain = " lark " if domain_idx == 1 else " feishu "
# Try to probe the bot with manual credentials
bot_name = None
try :
from gateway . platforms . feishu import probe_bot
bot_info = probe_bot ( app_id , app_secret , domain )
if bot_info :
bot_name = bot_info . get ( " bot_name " )
print_success ( f " Credentials verified — bot: { bot_name or ' unnamed ' } " )
else :
print_warning ( " Could not verify bot connection. Credentials saved anyway. " )
except Exception as exc :
print_warning ( f " Credential verification skipped: { exc } " )
credentials = {
" app_id " : app_id ,
" app_secret " : app_secret ,
" domain " : domain ,
" open_id " : None ,
" bot_name " : bot_name ,
}
# ── Save core credentials ──
app_id = credentials [ " app_id " ]
app_secret = credentials [ " app_secret " ]
domain = credentials . get ( " domain " , " feishu " )
open_id = credentials . get ( " open_id " )
bot_name = credentials . get ( " bot_name " )
save_env_value ( " FEISHU_APP_ID " , app_id )
save_env_value ( " FEISHU_APP_SECRET " , app_secret )
save_env_value ( " FEISHU_DOMAIN " , domain )
# Bot identity is resolved at runtime via _hydrate_bot_identity().
# ── Connection mode ──
if used_qr :
connection_mode = " websocket "
else :
print ( )
mode_choices = [
" WebSocket (recommended — no public URL needed) " ,
" Webhook (requires a reachable HTTP endpoint) " ,
]
mode_idx = prompt_choice ( " Connection mode " , mode_choices , 0 )
connection_mode = " webhook " if mode_idx == 1 else " websocket "
if connection_mode == " webhook " :
print_info ( " Webhook defaults: 127.0.0.1:8765/feishu/webhook " )
print_info ( " Override with FEISHU_WEBHOOK_HOST / FEISHU_WEBHOOK_PORT / FEISHU_WEBHOOK_PATH " )
print_info ( " For signature verification, set FEISHU_ENCRYPT_KEY and FEISHU_VERIFICATION_TOKEN " )
save_env_value ( " FEISHU_CONNECTION_MODE " , connection_mode )
if bot_name :
print ( )
print_success ( f " Bot created: { bot_name } " )
# ── DM security policy ──
print ( )
access_choices = [
" Use DM pairing approval (recommended) " ,
" Allow all direct messages " ,
" Only allow listed user IDs " ,
]
access_idx = prompt_choice ( " How should direct messages be authorized? " , access_choices , 0 )
if access_idx == 0 :
save_env_value ( " FEISHU_ALLOW_ALL_USERS " , " false " )
save_env_value ( " FEISHU_ALLOWED_USERS " , " " )
print_success ( " DM pairing enabled. " )
print_info ( " Unknown users can request access; approve with `hermes pairing approve`. " )
elif access_idx == 1 :
save_env_value ( " FEISHU_ALLOW_ALL_USERS " , " true " )
save_env_value ( " FEISHU_ALLOWED_USERS " , " " )
print_warning ( " Open DM access enabled for Feishu / Lark. " )
2026-04-12 13:02:55 -07:00
else :
feat(feishu): add scan-to-create onboarding for Feishu / Lark
Add a QR-based onboarding flow to `hermes gateway setup` for Feishu / Lark.
Users scan a QR code with their phone and the platform creates a fully
configured bot application automatically — matching the existing WeChat
QR login experience.
Setup flow:
- Choose between QR scan-to-create (new app) or manual credential input (existing app)
- Connection mode selection (WebSocket / Webhook)
- DM security policy (pairing / open / allowlist / disabled)
- Group chat policy (open with @mention / disabled)
Implementation:
- Onboard functions (init/begin/poll/QR/probe) in gateway/platforms/feishu.py
- _setup_feishu() in hermes_cli/gateway.py with manual fallback
- probe_bot uses lark_oapi SDK when available, raw HTTP fallback otherwise
- qr_register() catches expected errors (network/protocol), propagates bugs
- Poll handles HTTP 4xx JSON responses and feishu/lark domain auto-detection
Tests:
- 25 tests for onboard module (registration, QR, probe, contract, negative paths)
- 16 tests for setup flow (credentials, connection mode, DM policy, group policy,
adapter integration verifying env vars produce valid FeishuAdapterSettings)
Change-Id: I720591ee84755f32dda95fbac4b26dc82cbcf823
2026-04-11 16:57:16 +08:00
save_env_value ( " FEISHU_ALLOW_ALL_USERS " , " false " )
default_allow = open_id or " "
allowlist = prompt ( " Allowed user IDs (comma-separated) " , default_allow , password = False ) . replace ( " " , " " )
save_env_value ( " FEISHU_ALLOWED_USERS " , allowlist )
print_success ( " Allowlist saved. " )
# ── Group policy ──
print ( )
group_choices = [
" Respond only when @mentioned in groups (recommended) " ,
" Disable group chats " ,
]
group_idx = prompt_choice ( " How should group chats be handled? " , group_choices , 0 )
if group_idx == 0 :
save_env_value ( " FEISHU_GROUP_POLICY " , " open " )
print_info ( " Group chats enabled (bot must be @mentioned). " )
else :
save_env_value ( " FEISHU_GROUP_POLICY " , " disabled " )
print_info ( " Group chats disabled. " )
# ── Home channel ──
print ( )
home_channel = prompt ( " Home chat ID (optional, for cron/notifications) " , password = False )
if home_channel :
save_env_value ( " FEISHU_HOME_CHANNEL " , home_channel )
print_success ( f " Home channel set to { home_channel } " )
print ( )
print_success ( " 🪽 Feishu / Lark configured! " )
print_info ( f " App ID: { app_id } " )
print_info ( f " Domain: { domain } " )
if bot_name :
print_info ( f " Bot: { bot_name } " )
2026-04-15 23:46:50 +08:00
def _setup_qqbot ( ) :
""" Interactive setup for QQ Bot — scan-to-configure or manual credentials. """
print ( )
print ( color ( " ─── 🐧 QQ Bot Setup ─── " , Colors . CYAN ) )
existing_app_id = get_env_value ( " QQ_APP_ID " )
existing_secret = get_env_value ( " QQ_CLIENT_SECRET " )
if existing_app_id and existing_secret :
print ( )
print_success ( " QQ Bot is already configured. " )
if not prompt_yes_no ( " Reconfigure QQ Bot? " , False ) :
return
2026-04-17 18:26:47 +08:00
# ── Choose setup method ──
print ( )
method_choices = [
" Scan QR code to add bot automatically (recommended) " ,
" Enter existing App ID and App Secret manually " ,
]
method_idx = prompt_choice ( " How would you like to set up QQ Bot? " , method_choices , 0 )
2026-04-15 23:46:50 +08:00
credentials = None
used_qr = False
2026-04-17 18:26:47 +08:00
if method_idx == 0 :
# ── QR scan-to-configure ──
2026-04-15 23:46:50 +08:00
try :
credentials = _qqbot_qr_flow ( )
except KeyboardInterrupt :
print ( )
print_warning ( " QQ Bot setup cancelled. " )
return
if credentials :
used_qr = True
if not credentials :
print_info ( " QR setup did not complete. Continuing with manual input. " )
# ── Manual credential input ──
if not credentials :
print ( )
print_info ( " Go to https://q.qq.com to register a QQ Bot application. " )
print_info ( " Note your App ID and App Secret from the application page. " )
print ( )
app_id = prompt ( " App ID " , password = False )
if not app_id :
print_warning ( " Skipped — QQ Bot won ' t work without an App ID. " )
return
app_secret = prompt ( " App Secret " , password = True )
if not app_secret :
print_warning ( " Skipped — QQ Bot won ' t work without an App Secret. " )
return
credentials = { " app_id " : app_id . strip ( ) , " client_secret " : app_secret . strip ( ) , " user_openid " : " " }
# ── Save core credentials ──
save_env_value ( " QQ_APP_ID " , credentials [ " app_id " ] )
save_env_value ( " QQ_CLIENT_SECRET " , credentials [ " client_secret " ] )
user_openid = credentials . get ( " user_openid " , " " )
# ── DM security policy ──
print ( )
access_choices = [
" Use DM pairing approval (recommended) " ,
" Allow all direct messages " ,
" Only allow listed user OpenIDs " ,
]
access_idx = prompt_choice ( " How should direct messages be authorized? " , access_choices , 0 )
if access_idx == 0 :
save_env_value ( " QQ_ALLOW_ALL_USERS " , " false " )
2026-04-16 23:11:22 +08:00
if user_openid :
print ( )
2026-04-16 23:34:25 +08:00
if prompt_yes_no ( f " Add yourself ( { user_openid } ) to the allow list? " , True ) :
2026-04-16 23:11:22 +08:00
save_env_value ( " QQ_ALLOWED_USERS " , user_openid )
print_success ( f " Allow list set to { user_openid } " )
else :
save_env_value ( " QQ_ALLOWED_USERS " , " " )
else :
save_env_value ( " QQ_ALLOWED_USERS " , " " )
2026-04-15 23:46:50 +08:00
print_success ( " DM pairing enabled. " )
print_info ( " Unknown users can request access; approve with `hermes pairing approve`. " )
elif access_idx == 1 :
save_env_value ( " QQ_ALLOW_ALL_USERS " , " true " )
save_env_value ( " QQ_ALLOWED_USERS " , " " )
print_warning ( " Open DM access enabled for QQ Bot. " )
else :
default_allow = user_openid or " "
allowlist = prompt ( " Allowed user OpenIDs (comma-separated) " , default_allow , password = False ) . replace ( " " , " " )
save_env_value ( " QQ_ALLOW_ALL_USERS " , " false " )
save_env_value ( " QQ_ALLOWED_USERS " , allowlist )
print_success ( " Allowlist saved. " )
# ── Home channel ──
2026-04-16 23:11:22 +08:00
if user_openid :
print ( )
2026-04-16 23:34:25 +08:00
if prompt_yes_no ( f " Use your QQ user ID ( { user_openid } ) as the home channel? " , True ) :
2026-04-16 23:11:22 +08:00
save_env_value ( " QQBOT_HOME_CHANNEL " , user_openid )
print_success ( f " Home channel set to { user_openid } " )
else :
print ( )
home_channel = prompt ( " Home channel OpenID (for cron/notifications, or empty) " , password = False )
if home_channel :
save_env_value ( " QQBOT_HOME_CHANNEL " , home_channel . strip ( ) )
print_success ( f " Home channel set to { home_channel . strip ( ) } " )
2026-04-15 23:46:50 +08:00
print ( )
print_success ( " 🐧 QQ Bot configured! " )
print_info ( f " App ID: { credentials [ ' app_id ' ] } " )
def _qqbot_render_qr ( url : str ) - > bool :
""" Try to render a QR code in the terminal. Returns True if successful. """
try :
import qrcode as _qr
2026-04-17 18:43:11 +08:00
qr = _qr . QRCode ( border = 1 , error_correction = _qr . constants . ERROR_CORRECT_L )
2026-04-15 23:46:50 +08:00
qr . add_data ( url )
qr . make ( fit = True )
qr . print_ascii ( invert = True )
return True
except Exception :
return False
def _qqbot_qr_flow ( ) :
""" Run the QR-code scan-to-configure flow.
Returns a dict with app_id , client_secret , user_openid on success ,
or None on failure / cancel .
"""
try :
from gateway . platforms . qqbot import (
create_bind_task , poll_bind_result , build_connect_url ,
decrypt_secret , BindStatus ,
)
from gateway . platforms . qqbot . constants import ONBOARD_POLL_INTERVAL
except Exception as exc :
print_error ( f " QQBot onboard import failed: { exc } " )
return None
import asyncio
import time
MAX_REFRESHES = 3
refresh_count = 0
while refresh_count < = MAX_REFRESHES :
loop = asyncio . new_event_loop ( )
# ── Create bind task ──
try :
task_id , aes_key = loop . run_until_complete ( create_bind_task ( ) )
except Exception as e :
print_warning ( f " Failed to create bind task: { e } " )
loop . close ( )
return None
url = build_connect_url ( task_id )
# ── Display QR code + URL ──
print ( )
if _qqbot_render_qr ( url ) :
print ( f " Scan the QR code above, or open this URL directly: \n { url } " )
else :
print ( f " Open this URL in QQ on your phone: \n { url } " )
print_info ( " Tip: pip install qrcode to show a scannable QR code here " )
# ── Poll loop (silent — keep QR visible at bottom) ──
try :
while True :
try :
status , app_id , encrypted_secret , user_openid = loop . run_until_complete (
poll_bind_result ( task_id )
)
except Exception :
time . sleep ( ONBOARD_POLL_INTERVAL )
continue
if status == BindStatus . COMPLETED :
client_secret = decrypt_secret ( encrypted_secret , aes_key )
print ( )
print_success ( f " QR scan complete! (App ID: { app_id } ) " )
if user_openid :
print_info ( f " Scanner ' s OpenID: { user_openid } " )
return {
" app_id " : app_id ,
" client_secret " : client_secret ,
" user_openid " : user_openid ,
}
if status == BindStatus . EXPIRED :
refresh_count + = 1
if refresh_count > MAX_REFRESHES :
print ( )
print_warning ( f " QR code expired { MAX_REFRESHES } times — giving up. " )
return None
print ( )
print_warning ( f " QR code expired, refreshing... ( { refresh_count } / { MAX_REFRESHES } ) " )
loop . close ( )
break # outer while creates a new task
time . sleep ( ONBOARD_POLL_INTERVAL )
except KeyboardInterrupt :
loop . close ( )
raise
finally :
loop . close ( )
return None
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
def _setup_signal ( ) :
""" Interactive setup for Signal messenger. """
import shutil
print ( )
print ( color ( " ─── 📡 Signal Setup ─── " , Colors . CYAN ) )
existing_url = get_env_value ( " SIGNAL_HTTP_URL " )
existing_account = get_env_value ( " SIGNAL_ACCOUNT " )
if existing_url and existing_account :
print ( )
print_success ( " Signal is already configured. " )
if not prompt_yes_no ( " Reconfigure Signal? " , False ) :
return
# Check if signal-cli is available
print ( )
if shutil . which ( " signal-cli " ) :
print_success ( " signal-cli found on PATH. " )
else :
print_warning ( " signal-cli not found on PATH. " )
print_info ( " Signal requires signal-cli running as an HTTP daemon. " )
print_info ( " Install options: " )
2026-04-06 21:08:28 -07:00
print_info ( " Linux: download from https://github.com/AsamK/signal-cli/releases " )
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
print_info ( " macOS: brew install signal-cli " )
print_info ( " Docker: bbernhard/signal-cli-rest-api " )
print ( )
print_info ( " After installing, link your account and start the daemon: " )
print_info ( " signal-cli link -n \" HermesAgent \" " )
print_info ( " signal-cli --account +YOURNUMBER daemon --http 127.0.0.1:8080 " )
print ( )
# HTTP URL
print ( )
print_info ( " Enter the URL where signal-cli HTTP daemon is running. " )
default_url = existing_url or " http://127.0.0.1:8080 "
try :
url = input ( f " HTTP URL [ { default_url } ]: " ) . strip ( ) or default_url
except ( EOFError , KeyboardInterrupt ) :
print ( " \n Setup cancelled. " )
return
# Test connectivity
print_info ( " Testing connection... " )
try :
import httpx
resp = httpx . get ( f " { url . rstrip ( ' / ' ) } /api/v1/check " , timeout = 10.0 )
if resp . status_code == 200 :
print_success ( " signal-cli daemon is reachable! " )
else :
print_warning ( f " signal-cli responded with status { resp . status_code } . " )
if not prompt_yes_no ( " Continue anyway? " , False ) :
return
except Exception as e :
print_warning ( f " Could not reach signal-cli at { url } : { e } " )
if not prompt_yes_no ( " Save this URL anyway? (you can start signal-cli later) " , True ) :
return
save_env_value ( " SIGNAL_HTTP_URL " , url )
# Account phone number
print ( )
print_info ( " Enter your Signal account phone number in E.164 format. " )
print_info ( " Example: +15551234567 " )
default_account = existing_account or " "
try :
account = input ( f " Account number { f ' [ { default_account } ] ' if default_account else ' ' } : " ) . strip ( )
if not account :
account = default_account
except ( EOFError , KeyboardInterrupt ) :
print ( " \n Setup cancelled. " )
return
if not account :
print_error ( " Account number is required. " )
return
save_env_value ( " SIGNAL_ACCOUNT " , account )
# Allowed users
print ( )
print_info ( " The gateway DENIES all users by default for security. " )
print_info ( " Enter phone numbers or UUIDs of allowed users (comma-separated). " )
existing_allowed = get_env_value ( " SIGNAL_ALLOWED_USERS " ) or " "
default_allowed = existing_allowed or account
try :
allowed = input ( f " Allowed users [ { default_allowed } ]: " ) . strip ( ) or default_allowed
except ( EOFError , KeyboardInterrupt ) :
print ( " \n Setup cancelled. " )
return
save_env_value ( " SIGNAL_ALLOWED_USERS " , allowed )
fix: Signal adapter parity pass — integration gaps, clawdbot features, env var simplification
Integration gaps fixed (7 files missing Signal):
- cron/scheduler.py: Signal in platform_map (cron delivery was broken)
- agent/prompt_builder.py: PLATFORM_HINTS for Signal (agent knows it's on Signal)
- toolsets.py: hermes-signal toolset + added to hermes-gateway composite
- hermes_cli/status.py: Signal + Slack in platform status display
- tools/send_message_tool.py: Signal example in target description
- tools/cronjob_tools.py: Signal in delivery option docs + schema
- gateway/channel_directory.py: Signal in session-based channel discovery
Clawdbot parity features added to signal.py:
- Self-message filtering: prevents reply loops by checking sender != account
- SyncMessage filtering: ignores sync envelopes (sent transcripts, read receipts)
- Edit message support: reads dataMessage from editMessage envelope
- Mention rendering: replaces \uFFFC placeholders with @identifier text
- Jitter in SSE reconnection backoff (20% randomization, prevents thundering herd)
Env var simplification (7 → 4):
- Removed SIGNAL_DM_POLICY (DM auth follows standard platform pattern via
SIGNAL_ALLOWED_USERS + DM pairing, same as Telegram/Discord)
- Removed SIGNAL_GROUP_POLICY (derived from SIGNAL_GROUP_ALLOWED_USERS:
not set = disabled, set with IDs = allowlist, set with * = open)
- Removed SIGNAL_DEBUG (was setting root logger, removed entirely)
- Remaining: SIGNAL_HTTP_URL, SIGNAL_ACCOUNT (required),
SIGNAL_ALLOWED_USERS, SIGNAL_GROUP_ALLOWED_USERS (optional)
Updated all docs (website, AGENTS.md, signal.md) to match.
2026-03-08 21:00:21 -07:00
# Group messaging
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
print ( )
fix: Signal adapter parity pass — integration gaps, clawdbot features, env var simplification
Integration gaps fixed (7 files missing Signal):
- cron/scheduler.py: Signal in platform_map (cron delivery was broken)
- agent/prompt_builder.py: PLATFORM_HINTS for Signal (agent knows it's on Signal)
- toolsets.py: hermes-signal toolset + added to hermes-gateway composite
- hermes_cli/status.py: Signal + Slack in platform status display
- tools/send_message_tool.py: Signal example in target description
- tools/cronjob_tools.py: Signal in delivery option docs + schema
- gateway/channel_directory.py: Signal in session-based channel discovery
Clawdbot parity features added to signal.py:
- Self-message filtering: prevents reply loops by checking sender != account
- SyncMessage filtering: ignores sync envelopes (sent transcripts, read receipts)
- Edit message support: reads dataMessage from editMessage envelope
- Mention rendering: replaces \uFFFC placeholders with @identifier text
- Jitter in SSE reconnection backoff (20% randomization, prevents thundering herd)
Env var simplification (7 → 4):
- Removed SIGNAL_DM_POLICY (DM auth follows standard platform pattern via
SIGNAL_ALLOWED_USERS + DM pairing, same as Telegram/Discord)
- Removed SIGNAL_GROUP_POLICY (derived from SIGNAL_GROUP_ALLOWED_USERS:
not set = disabled, set with IDs = allowlist, set with * = open)
- Removed SIGNAL_DEBUG (was setting root logger, removed entirely)
- Remaining: SIGNAL_HTTP_URL, SIGNAL_ACCOUNT (required),
SIGNAL_ALLOWED_USERS, SIGNAL_GROUP_ALLOWED_USERS (optional)
Updated all docs (website, AGENTS.md, signal.md) to match.
2026-03-08 21:00:21 -07:00
if prompt_yes_no ( " Enable group messaging? (disabled by default for security) " , False ) :
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
print ( )
fix: Signal adapter parity pass — integration gaps, clawdbot features, env var simplification
Integration gaps fixed (7 files missing Signal):
- cron/scheduler.py: Signal in platform_map (cron delivery was broken)
- agent/prompt_builder.py: PLATFORM_HINTS for Signal (agent knows it's on Signal)
- toolsets.py: hermes-signal toolset + added to hermes-gateway composite
- hermes_cli/status.py: Signal + Slack in platform status display
- tools/send_message_tool.py: Signal example in target description
- tools/cronjob_tools.py: Signal in delivery option docs + schema
- gateway/channel_directory.py: Signal in session-based channel discovery
Clawdbot parity features added to signal.py:
- Self-message filtering: prevents reply loops by checking sender != account
- SyncMessage filtering: ignores sync envelopes (sent transcripts, read receipts)
- Edit message support: reads dataMessage from editMessage envelope
- Mention rendering: replaces \uFFFC placeholders with @identifier text
- Jitter in SSE reconnection backoff (20% randomization, prevents thundering herd)
Env var simplification (7 → 4):
- Removed SIGNAL_DM_POLICY (DM auth follows standard platform pattern via
SIGNAL_ALLOWED_USERS + DM pairing, same as Telegram/Discord)
- Removed SIGNAL_GROUP_POLICY (derived from SIGNAL_GROUP_ALLOWED_USERS:
not set = disabled, set with IDs = allowlist, set with * = open)
- Removed SIGNAL_DEBUG (was setting root logger, removed entirely)
- Remaining: SIGNAL_HTTP_URL, SIGNAL_ACCOUNT (required),
SIGNAL_ALLOWED_USERS, SIGNAL_GROUP_ALLOWED_USERS (optional)
Updated all docs (website, AGENTS.md, signal.md) to match.
2026-03-08 21:00:21 -07:00
print_info ( " Enter group IDs to allow, or * for all groups. " )
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
existing_groups = get_env_value ( " SIGNAL_GROUP_ALLOWED_USERS " ) or " "
try :
fix: Signal adapter parity pass — integration gaps, clawdbot features, env var simplification
Integration gaps fixed (7 files missing Signal):
- cron/scheduler.py: Signal in platform_map (cron delivery was broken)
- agent/prompt_builder.py: PLATFORM_HINTS for Signal (agent knows it's on Signal)
- toolsets.py: hermes-signal toolset + added to hermes-gateway composite
- hermes_cli/status.py: Signal + Slack in platform status display
- tools/send_message_tool.py: Signal example in target description
- tools/cronjob_tools.py: Signal in delivery option docs + schema
- gateway/channel_directory.py: Signal in session-based channel discovery
Clawdbot parity features added to signal.py:
- Self-message filtering: prevents reply loops by checking sender != account
- SyncMessage filtering: ignores sync envelopes (sent transcripts, read receipts)
- Edit message support: reads dataMessage from editMessage envelope
- Mention rendering: replaces \uFFFC placeholders with @identifier text
- Jitter in SSE reconnection backoff (20% randomization, prevents thundering herd)
Env var simplification (7 → 4):
- Removed SIGNAL_DM_POLICY (DM auth follows standard platform pattern via
SIGNAL_ALLOWED_USERS + DM pairing, same as Telegram/Discord)
- Removed SIGNAL_GROUP_POLICY (derived from SIGNAL_GROUP_ALLOWED_USERS:
not set = disabled, set with IDs = allowlist, set with * = open)
- Removed SIGNAL_DEBUG (was setting root logger, removed entirely)
- Remaining: SIGNAL_HTTP_URL, SIGNAL_ACCOUNT (required),
SIGNAL_ALLOWED_USERS, SIGNAL_GROUP_ALLOWED_USERS (optional)
Updated all docs (website, AGENTS.md, signal.md) to match.
2026-03-08 21:00:21 -07:00
groups = input ( f " Group IDs [ { existing_groups or ' * ' } ]: " ) . strip ( ) or existing_groups or " * "
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
except ( EOFError , KeyboardInterrupt ) :
print ( " \n Setup cancelled. " )
return
fix: Signal adapter parity pass — integration gaps, clawdbot features, env var simplification
Integration gaps fixed (7 files missing Signal):
- cron/scheduler.py: Signal in platform_map (cron delivery was broken)
- agent/prompt_builder.py: PLATFORM_HINTS for Signal (agent knows it's on Signal)
- toolsets.py: hermes-signal toolset + added to hermes-gateway composite
- hermes_cli/status.py: Signal + Slack in platform status display
- tools/send_message_tool.py: Signal example in target description
- tools/cronjob_tools.py: Signal in delivery option docs + schema
- gateway/channel_directory.py: Signal in session-based channel discovery
Clawdbot parity features added to signal.py:
- Self-message filtering: prevents reply loops by checking sender != account
- SyncMessage filtering: ignores sync envelopes (sent transcripts, read receipts)
- Edit message support: reads dataMessage from editMessage envelope
- Mention rendering: replaces \uFFFC placeholders with @identifier text
- Jitter in SSE reconnection backoff (20% randomization, prevents thundering herd)
Env var simplification (7 → 4):
- Removed SIGNAL_DM_POLICY (DM auth follows standard platform pattern via
SIGNAL_ALLOWED_USERS + DM pairing, same as Telegram/Discord)
- Removed SIGNAL_GROUP_POLICY (derived from SIGNAL_GROUP_ALLOWED_USERS:
not set = disabled, set with IDs = allowlist, set with * = open)
- Removed SIGNAL_DEBUG (was setting root logger, removed entirely)
- Remaining: SIGNAL_HTTP_URL, SIGNAL_ACCOUNT (required),
SIGNAL_ALLOWED_USERS, SIGNAL_GROUP_ALLOWED_USERS (optional)
Updated all docs (website, AGENTS.md, signal.md) to match.
2026-03-08 21:00:21 -07:00
save_env_value ( " SIGNAL_GROUP_ALLOWED_USERS " , groups )
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
print ( )
print_success ( " Signal configured! " )
print_info ( f " URL: { url } " )
print_info ( f " Account: { account } " )
chore: fix 154 f-strings, simplify getattr/URL patterns, remove dead code (#3119)
Three categories of cleanup, all zero-behavioral-change:
1. F-strings without placeholders (154 fixes across 29 files)
- Converted f'...' to '...' where no {expression} was present
- Heaviest files: run_agent.py (24), cli.py (20), honcho_integration/cli.py (34)
2. Simplify defensive patterns in run_agent.py
- Added explicit self._is_anthropic_oauth = False in __init__ (before
the api_mode branch that conditionally sets it)
- Replaced 7x getattr(self, '_is_anthropic_oauth', False) with direct
self._is_anthropic_oauth (attribute always initialized now)
- Added _is_openrouter_url() and _is_anthropic_url() helper methods
- Replaced 3 inline 'openrouter' in self._base_url_lower checks
3. Remove dead code in small files
- hermes_cli/claw.py: removed unused 'total' computation
- tools/fuzzy_match.py: removed unused strip_indent() function and
pattern_stripped variable
Full test suite: 6184 passed, 0 failures
E2E PTY: banner clean, tool calls work, zero garbled ANSI
2026-03-25 19:47:58 -07:00
print_info ( " DM auth: via SIGNAL_ALLOWED_USERS + DM pairing " )
fix: Signal adapter parity pass — integration gaps, clawdbot features, env var simplification
Integration gaps fixed (7 files missing Signal):
- cron/scheduler.py: Signal in platform_map (cron delivery was broken)
- agent/prompt_builder.py: PLATFORM_HINTS for Signal (agent knows it's on Signal)
- toolsets.py: hermes-signal toolset + added to hermes-gateway composite
- hermes_cli/status.py: Signal + Slack in platform status display
- tools/send_message_tool.py: Signal example in target description
- tools/cronjob_tools.py: Signal in delivery option docs + schema
- gateway/channel_directory.py: Signal in session-based channel discovery
Clawdbot parity features added to signal.py:
- Self-message filtering: prevents reply loops by checking sender != account
- SyncMessage filtering: ignores sync envelopes (sent transcripts, read receipts)
- Edit message support: reads dataMessage from editMessage envelope
- Mention rendering: replaces \uFFFC placeholders with @identifier text
- Jitter in SSE reconnection backoff (20% randomization, prevents thundering herd)
Env var simplification (7 → 4):
- Removed SIGNAL_DM_POLICY (DM auth follows standard platform pattern via
SIGNAL_ALLOWED_USERS + DM pairing, same as Telegram/Discord)
- Removed SIGNAL_GROUP_POLICY (derived from SIGNAL_GROUP_ALLOWED_USERS:
not set = disabled, set with IDs = allowlist, set with * = open)
- Removed SIGNAL_DEBUG (was setting root logger, removed entirely)
- Remaining: SIGNAL_HTTP_URL, SIGNAL_ACCOUNT (required),
SIGNAL_ALLOWED_USERS, SIGNAL_GROUP_ALLOWED_USERS (optional)
Updated all docs (website, AGENTS.md, signal.md) to match.
2026-03-08 21:00:21 -07:00
print_info ( f " Groups: { ' enabled ' if get_env_value ( ' SIGNAL_GROUP_ALLOWED_USERS ' ) else ' disabled ' } " )
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
2026-03-03 18:57:33 -08:00
def gateway_setup ( ) :
""" Interactive setup for messaging platforms + gateway service. """
feat: nix flake — uv2nix build, NixOS module, persistent container mode (#20)
* feat: nix flake, uv2nix build, dev shell and home manager
* fixed nix run, updated docs for setup
* feat(nix): NixOS module with persistent container mode, managed guards, checks
- Replace homeModules.nix with nixosModules.nix (two deployment modes)
- Mode A (native): hardened systemd service with ProtectSystem=strict
- Mode B (container): persistent Ubuntu container with /nix/store bind-mount,
identity-hash-based recreation, GC root protection, symlink-based updates
- Add HERMES_MANAGED guards blocking CLI config mutation (config set, setup,
gateway install/uninstall) when running under NixOS module
- Add nix/checks.nix with build-time verification (binary, CLI, managed guard)
- Remove container.nix (no Nix-built OCI image; pulls ubuntu:24.04 at runtime)
- Simplify packages.nix (drop fetchFromGitHub submodules, PYTHONPATH wrappers)
- Rewrite docs/nixos-setup.md with full options reference, container
architecture, secrets management, and troubleshooting guide
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* Update config.py
* feat(nix): add CI workflow and enhanced build checks
- GitHub Actions workflow for nix flake check + build on linux/macOS
- Entry point sync check to catch pyproject.toml drift
- Expanded managed-guard check to cover config edit
- Wrap hermes-acp binary in Nix package
- Fix Path type mismatch in is_managed()
* Update MCP server package name; bundled skills support
* fix reading .env. instead have container user a common mounted .env file
* feat(nix): container entrypoint with privilege drop and sudo provisioning
Container was running as non-root via --user, which broke apt/pip installs
and caused crashes when $HOME didn't exist. Replace --user with a Nix-built
entrypoint script that provisions the hermes user, sudo (NOPASSWD), and
/home/hermes inside the container on first boot, then drops privileges via
setpriv. Writable layer persists so setup only runs once.
Also expands MCP server options to support HTTP transport and sampling.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* fix group and user creation in container mode
* feat(nix): persistent /home/hermes and MESSAGING_CWD in container mode
Container mode now bind-mounts ${stateDir}/home to /home/hermes so the
agent's home directory survives container recreation. Previously it lived
in the writable layer and was lost on image/volume/options changes.
Also passes MESSAGING_CWD to the container so the agent finds its
workspace and documents, matching native mode behavior.
Other changes:
- Extract containerDataDir/containerHomeDir bindings (no more magic strings)
- Fix entrypoint chown to run unconditionally (volume mounts always exist)
- Add schema field to container identity hash for auto-recreation
- Add idempotency test (Scenario G) to config-roundtrip check
* docs: add Nix & NixOS setup guide to docs site
Add comprehensive Nix documentation to the Docusaurus site at
website/docs/getting-started/nix-setup.md, covering nix run/profile
install, NixOS module (native + container modes), declarative settings,
secrets management, MCP servers, managed mode, container architecture,
dev shell, flake checks, and full options reference.
- Register nix-setup in sidebar after installation page
- Add Nix callout tip to installation.md linking to new guide
- Add canonical version pointer in docs/nixos-setup.md
* docs: remove docs/nixos-setup.md, consolidate into website docs
Backfill missing details (restart/restartSec in full example,
gateway.pid, 0750 permissions, docker inspect commands) into
the canonical website/docs/getting-started/nix-setup.md and
delete the old standalone file.
* fix(nix): add compression.protect_last_n and target_ratio to config-keys.json
New keys were added to DEFAULT_CONFIG on main, causing the
config-drift check to fail in CI.
* fix(nix): skip checks on aarch64-darwin (onnxruntime wheel missing)
The full Python venv includes onnxruntime (via faster-whisper/STT)
which lacks a compatible uv2nix wheel on aarch64-darwin. Gate all
checks behind stdenv.hostPlatform.isLinux. The package and devShell
still evaluate on macOS.
* fix(nix): skip flake check and build on macOS CI
onnxruntime (transitive dep via faster-whisper) lacks a compatible
uv2nix wheel on aarch64-darwin. Run full checks and build on Linux
only; macOS CI verifies the flake evaluates without building.
* fix(nix): preserve container writable layer across nixos-rebuild
The container identity hash included the entrypoint's Nix store path,
which changes on every nixpkgs update (due to runtimeShell/stdenv
input-addressing). This caused false-positive identity mismatches,
triggering container recreation and losing the persistent writable layer.
- Use stable symlink (current-entrypoint) like current-package already does
- Remove entrypoint from identity hash (only image/volumes/options matter)
- Add GC root for entrypoint so nix-collect-garbage doesn't break it
- Remove global HERMES_HOME env var from addToSystemPackages (conflicted
with interactive CLI use, service already sets its own)
---------
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 01:08:02 +05:30
if is_managed ( ) :
managed_error ( " run gateway setup " )
return
2026-03-03 18:57:33 -08:00
print ( )
print ( color ( " ┌─────────────────────────────────────────────────────────┐ " , Colors . MAGENTA ) )
print ( color ( " │ ⚕ Gateway Setup │ " , Colors . MAGENTA ) )
print ( color ( " ├─────────────────────────────────────────────────────────┤ " , Colors . MAGENTA ) )
print ( color ( " │ Configure messaging platforms and the gateway service. │ " , Colors . MAGENTA ) )
print ( color ( " │ Press Ctrl+C at any time to exit. │ " , Colors . MAGENTA ) )
print ( color ( " └─────────────────────────────────────────────────────────┘ " , Colors . MAGENTA ) )
# ── Gateway service status ──
print ( )
service_installed = _is_service_installed ( )
service_running = _is_service_running ( )
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) and has_conflicting_systemd_units ( ) :
2026-03-14 21:06:52 -07:00
print_systemd_scope_conflict_warning ( )
print ( )
fix(gateway): detect legacy hermes.service + mark --replace SIGTERM as planned (#11909)
* fix(gateway): detect legacy hermes.service units from pre-rename installs
Older Hermes installs used a different service name (hermes.service) before
the rename to hermes-gateway.service. When both units remain installed, they
fight over the same bot token — after PR #5646's signal-recovery change,
this manifests as a 30-second SIGTERM flap loop between the two services.
Detection is an explicit allowlist (no globbing) plus an ExecStart content
check, so profile units (hermes-gateway-<profile>.service) and unrelated
third-party services named 'hermes' are never matched.
Wired into systemd_install, systemd_status, gateway_setup wizard, and the
main hermes setup flow — anywhere we already warn about scope conflicts now
also warns about legacy units.
* feat(gateway): add migrate-legacy command + install-time removal prompt
- New hermes_cli.gateway.remove_legacy_hermes_units() removes legacy
unit files with stop → disable → unlink → daemon-reload. Handles user
and system scopes separately; system scope returns path list when not
running as root so the caller can tell the user to re-run with sudo.
- New 'hermes gateway migrate-legacy' subcommand (with --dry-run and -y)
routes to remove_legacy_hermes_units via gateway_command dispatch.
- systemd_install now offers to remove legacy units BEFORE installing
the new hermes-gateway.service, preventing the SIGTERM flap loop that
hits users who still have pre-rename hermes.service around.
Profile units (hermes-gateway-<profile>.service) remain untouched in
all paths — the legacy allowlist is explicit (_LEGACY_SERVICE_NAMES)
and the ExecStart content check further narrows matches.
* fix(gateway): mark --replace SIGTERM as planned so target exits 0
PR #5646 made SIGTERM exit the gateway with code 1 so systemd's
Restart=on-failure revives it after unexpected kills. But when a user has
two gateway units fighting for the same bot token (e.g. legacy
hermes.service + hermes-gateway.service from a pre-rename install), the
--replace takeover itself becomes the 'unexpected' SIGTERM — the loser
exits 1, systemd revives it 30s later, and the cycle flaps indefinitely.
Before calling terminate_pid(), --replace now writes a short-lived marker
file naming the target PID + start_time. The target's shutdown_signal_handler
consumes the marker and, when it names this process, leaves
_signal_initiated_shutdown=False so the final exit code stays 0.
Staleness defences:
- PID + start_time combo prevents PID reuse matching an old marker
- Marker older than 60s is treated as stale and discarded
- Marker is unlinked on first read even if it doesn't match this process
- Replacer clears the marker post-loop + on permission-denied give-up
2026-04-17 19:27:58 -07:00
if supports_systemd_services ( ) and has_legacy_hermes_units ( ) :
print_legacy_unit_warning ( )
print ( )
2026-03-03 18:57:33 -08:00
if service_installed and service_running :
print_success ( " Gateway service is installed and running. " )
elif service_installed :
print_warning ( " Gateway service is installed but not running. " )
if prompt_yes_no ( " Start it now? " , True ) :
try :
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-03 18:57:33 -08:00
systemd_start ( )
elif is_macos ( ) :
launchd_start ( )
except subprocess . CalledProcessError as e :
print_error ( f " Failed to start: { e } " )
else :
2026-03-03 19:30:05 -08:00
print_info ( " Gateway service is not installed yet. " )
print_info ( " You ' ll be offered to install it after configuring platforms. " )
2026-03-03 18:57:33 -08:00
# ── Platform configuration loop ──
while True :
print ( )
print_header ( " Messaging Platforms " )
menu_items = [ ]
for plat in _PLATFORMS :
status = _platform_status ( plat )
2026-03-03 19:04:32 -08:00
menu_items . append ( f " { plat [ ' label ' ] } ( { status } ) " )
menu_items . append ( " Done " )
2026-03-03 18:57:33 -08:00
choice = prompt_choice ( " Select a platform to configure: " , menu_items , len ( menu_items ) - 1 )
if choice == len ( _PLATFORMS ) :
break
platform = _PLATFORMS [ choice ]
if platform [ " key " ] == " whatsapp " :
_setup_whatsapp ( )
feat: add Signal messenger gateway platform (#405)
Complete Signal adapter using signal-cli daemon HTTP API.
Based on PR #268 by ibhagwan, rebuilt on current main with bug fixes.
Architecture:
- SSE streaming for inbound messages with exponential backoff (2s→60s)
- JSON-RPC 2.0 for outbound (send, typing, attachments, contacts)
- Health monitor detects stale SSE connections (120s threshold)
- Phone number redaction in all logs and global redact.py
Features:
- DM and group message support with separate access policies
- DM policies: pairing (default), allowlist, open
- Group policies: disabled (default), allowlist, open
- Attachment download with magic-byte type detection
- Typing indicators (8s refresh interval)
- 100MB attachment size limit, 8000 char message limit
- E.164 phone + UUID allowlist support
Integration:
- Platform.SIGNAL enum in gateway/config.py
- Signal in _is_user_authorized() allowlist maps (gateway/run.py)
- Adapter factory in _create_adapter() (gateway/run.py)
- user_id_alt/chat_id_alt fields in SessionSource for UUIDs
- send_message tool support via httpx JSON-RPC (not aiohttp)
- Interactive setup wizard in 'hermes gateway setup'
- Connectivity testing during setup (pings /api/v1/check)
- signal-cli detection and install guidance
Bug fixes from PR #268:
- Timestamp reads from envelope_data (not outer wrapper)
- Uses httpx consistently (not aiohttp in send_message tool)
- SIGNAL_DEBUG scoped to signal logger (not root)
- extract_images regex NOT modified (preserves group numbering)
- pairing.py NOT modified (no cross-platform side effects)
- No dual authorization (adapter defers to run.py for user auth)
- Wildcard uses set membership ('*' in set, not list equality)
- .zip default for PK magic bytes (not .docx)
No new Python dependencies — uses httpx (already core).
External requirement: signal-cli daemon (user-installed).
Tests: 30 new tests covering config, init, helpers, session source,
phone redaction, authorization, and send_message integration.
Co-authored-by: ibhagwan <ibhagwan@users.noreply.github.com>
2026-03-08 20:20:35 -07:00
elif platform [ " key " ] == " signal " :
_setup_signal ( )
2026-04-10 05:20:20 -07:00
elif platform [ " key " ] == " weixin " :
_setup_weixin ( )
2026-04-13 12:57:25 +08:00
elif platform [ " key " ] == " dingtalk " :
_setup_dingtalk ( )
feat(feishu): add scan-to-create onboarding for Feishu / Lark
Add a QR-based onboarding flow to `hermes gateway setup` for Feishu / Lark.
Users scan a QR code with their phone and the platform creates a fully
configured bot application automatically — matching the existing WeChat
QR login experience.
Setup flow:
- Choose between QR scan-to-create (new app) or manual credential input (existing app)
- Connection mode selection (WebSocket / Webhook)
- DM security policy (pairing / open / allowlist / disabled)
- Group chat policy (open with @mention / disabled)
Implementation:
- Onboard functions (init/begin/poll/QR/probe) in gateway/platforms/feishu.py
- _setup_feishu() in hermes_cli/gateway.py with manual fallback
- probe_bot uses lark_oapi SDK when available, raw HTTP fallback otherwise
- qr_register() catches expected errors (network/protocol), propagates bugs
- Poll handles HTTP 4xx JSON responses and feishu/lark domain auto-detection
Tests:
- 25 tests for onboard module (registration, QR, probe, contract, negative paths)
- 16 tests for setup flow (credentials, connection mode, DM policy, group policy,
adapter integration verifying env vars produce valid FeishuAdapterSettings)
Change-Id: I720591ee84755f32dda95fbac4b26dc82cbcf823
2026-04-11 16:57:16 +08:00
elif platform [ " key " ] == " feishu " :
_setup_feishu ( )
2026-04-15 23:46:50 +08:00
elif platform [ " key " ] == " qqbot " :
_setup_qqbot ( )
2026-03-03 18:57:33 -08:00
else :
_setup_standard_platform ( platform )
# ── Post-setup: offer to install/restart gateway ──
any_configured = any (
bool ( get_env_value ( p [ " token_var " ] ) )
for p in _PLATFORMS
if p [ " key " ] != " whatsapp "
) or ( get_env_value ( " WHATSAPP_ENABLED " ) or " " ) . lower ( ) == " true "
if any_configured :
print ( )
print ( color ( " ─ " * 58 , Colors . DIM ) )
service_installed = _is_service_installed ( )
service_running = _is_service_running ( )
if service_running :
if prompt_yes_no ( " Restart the gateway to pick up changes? " , True ) :
try :
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-03 18:57:33 -08:00
systemd_restart ( )
elif is_macos ( ) :
launchd_restart ( )
else :
2026-04-03 14:21:25 -07:00
stop_profile_gateway ( )
2026-03-03 18:57:33 -08:00
print_info ( " Start manually: hermes gateway " )
except subprocess . CalledProcessError as e :
print_error ( f " Restart failed: { e } " )
elif service_installed :
if prompt_yes_no ( " Start the gateway service? " , True ) :
try :
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-03 18:57:33 -08:00
systemd_start ( )
elif is_macos ( ) :
launchd_start ( )
except subprocess . CalledProcessError as e :
print_error ( f " Start failed: { e } " )
else :
print ( )
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) or is_macos ( ) :
platform_name = " systemd " if supports_systemd_services ( ) else " launchd "
2026-04-10 21:15:47 -07:00
wsl_note = " (note: services may not survive WSL restarts) " if is_wsl ( ) else " "
if prompt_yes_no ( f " Install the gateway as a { platform_name } service? { wsl_note } (runs in background, starts on boot) " , True ) :
2026-03-03 19:30:05 -08:00
try :
2026-03-14 21:06:52 -07:00
installed_scope = None
did_install = False
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-14 21:06:52 -07:00
installed_scope , did_install = install_linux_gateway_from_setup ( force = False )
2026-03-03 19:30:05 -08:00
else :
2026-03-14 21:06:52 -07:00
launchd_install ( force = False )
did_install = True
2026-03-03 19:30:05 -08:00
print ( )
2026-03-14 21:06:52 -07:00
if did_install and prompt_yes_no ( " Start the service now? " , True ) :
2026-03-03 19:30:05 -08:00
try :
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-14 21:06:52 -07:00
systemd_start ( system = installed_scope == " system " )
2026-03-03 19:30:05 -08:00
else :
launchd_start ( )
except subprocess . CalledProcessError as e :
print_error ( f " Start failed: { e } " )
except subprocess . CalledProcessError as e :
print_error ( f " Install failed: { e } " )
print_info ( " You can try manually: hermes gateway install " )
else :
print_info ( " You can install later: hermes gateway install " )
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
2026-03-14 21:06:52 -07:00
print_info ( " Or as a boot-time service: sudo hermes gateway install --system " )
2026-04-10 21:15:47 -07:00
print_info ( " Or run in foreground: hermes gateway run " )
elif is_wsl ( ) :
print_info ( " WSL detected but systemd is not running. " )
print_info ( " Run in foreground: hermes gateway run " )
print_info ( " For persistence: tmux new -s hermes ' hermes gateway run ' " )
print_info ( " To enable systemd: add systemd=true to /etc/wsl.conf, then ' wsl --shutdown ' " )
2026-03-03 19:30:05 -08:00
else :
2026-04-09 10:29:32 +02:00
if is_termux ( ) :
from hermes_constants import display_hermes_home as _dhh
print_info ( " Termux does not use systemd/launchd services. " )
2026-04-10 21:15:47 -07:00
print_info ( " Run in foreground: hermes gateway run " )
print_info ( f " Or start it manually in the background (best effort): nohup hermes gateway run > { _dhh ( ) } /logs/gateway.log 2>&1 & " )
2026-04-09 10:29:32 +02:00
else :
print_info ( " Service install not supported on this platform. " )
2026-04-10 21:15:47 -07:00
print_info ( " Run in foreground: hermes gateway run " )
2026-03-03 18:57:33 -08:00
else :
print ( )
print_info ( " No platforms configured. Run ' hermes gateway setup ' when ready. " )
print ( )
2026-02-02 19:01:51 -08:00
# =============================================================================
# Main Command Handler
# =============================================================================
def gateway_command ( args ) :
""" Handle gateway subcommands. """
subcmd = getattr ( args , ' gateway_command ' , None )
# Default to run if no subcommand
if subcmd is None or subcmd == " run " :
2026-04-01 11:27:23 -03:00
verbose = getattr ( args , ' verbose ' , 0 )
quiet = getattr ( args , ' quiet ' , False )
2026-03-07 18:08:12 +00:00
replace = getattr ( args , ' replace ' , False )
2026-04-01 11:27:23 -03:00
run_gateway ( verbose , quiet = quiet , replace = replace )
2026-02-02 19:01:51 -08:00
return
2026-03-03 18:57:33 -08:00
if subcmd == " setup " :
gateway_setup ( )
return
2026-02-02 19:01:51 -08:00
# Service management commands
if subcmd == " install " :
feat: nix flake — uv2nix build, NixOS module, persistent container mode (#20)
* feat: nix flake, uv2nix build, dev shell and home manager
* fixed nix run, updated docs for setup
* feat(nix): NixOS module with persistent container mode, managed guards, checks
- Replace homeModules.nix with nixosModules.nix (two deployment modes)
- Mode A (native): hardened systemd service with ProtectSystem=strict
- Mode B (container): persistent Ubuntu container with /nix/store bind-mount,
identity-hash-based recreation, GC root protection, symlink-based updates
- Add HERMES_MANAGED guards blocking CLI config mutation (config set, setup,
gateway install/uninstall) when running under NixOS module
- Add nix/checks.nix with build-time verification (binary, CLI, managed guard)
- Remove container.nix (no Nix-built OCI image; pulls ubuntu:24.04 at runtime)
- Simplify packages.nix (drop fetchFromGitHub submodules, PYTHONPATH wrappers)
- Rewrite docs/nixos-setup.md with full options reference, container
architecture, secrets management, and troubleshooting guide
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* Update config.py
* feat(nix): add CI workflow and enhanced build checks
- GitHub Actions workflow for nix flake check + build on linux/macOS
- Entry point sync check to catch pyproject.toml drift
- Expanded managed-guard check to cover config edit
- Wrap hermes-acp binary in Nix package
- Fix Path type mismatch in is_managed()
* Update MCP server package name; bundled skills support
* fix reading .env. instead have container user a common mounted .env file
* feat(nix): container entrypoint with privilege drop and sudo provisioning
Container was running as non-root via --user, which broke apt/pip installs
and caused crashes when $HOME didn't exist. Replace --user with a Nix-built
entrypoint script that provisions the hermes user, sudo (NOPASSWD), and
/home/hermes inside the container on first boot, then drops privileges via
setpriv. Writable layer persists so setup only runs once.
Also expands MCP server options to support HTTP transport and sampling.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* fix group and user creation in container mode
* feat(nix): persistent /home/hermes and MESSAGING_CWD in container mode
Container mode now bind-mounts ${stateDir}/home to /home/hermes so the
agent's home directory survives container recreation. Previously it lived
in the writable layer and was lost on image/volume/options changes.
Also passes MESSAGING_CWD to the container so the agent finds its
workspace and documents, matching native mode behavior.
Other changes:
- Extract containerDataDir/containerHomeDir bindings (no more magic strings)
- Fix entrypoint chown to run unconditionally (volume mounts always exist)
- Add schema field to container identity hash for auto-recreation
- Add idempotency test (Scenario G) to config-roundtrip check
* docs: add Nix & NixOS setup guide to docs site
Add comprehensive Nix documentation to the Docusaurus site at
website/docs/getting-started/nix-setup.md, covering nix run/profile
install, NixOS module (native + container modes), declarative settings,
secrets management, MCP servers, managed mode, container architecture,
dev shell, flake checks, and full options reference.
- Register nix-setup in sidebar after installation page
- Add Nix callout tip to installation.md linking to new guide
- Add canonical version pointer in docs/nixos-setup.md
* docs: remove docs/nixos-setup.md, consolidate into website docs
Backfill missing details (restart/restartSec in full example,
gateway.pid, 0750 permissions, docker inspect commands) into
the canonical website/docs/getting-started/nix-setup.md and
delete the old standalone file.
* fix(nix): add compression.protect_last_n and target_ratio to config-keys.json
New keys were added to DEFAULT_CONFIG on main, causing the
config-drift check to fail in CI.
* fix(nix): skip checks on aarch64-darwin (onnxruntime wheel missing)
The full Python venv includes onnxruntime (via faster-whisper/STT)
which lacks a compatible uv2nix wheel on aarch64-darwin. Gate all
checks behind stdenv.hostPlatform.isLinux. The package and devShell
still evaluate on macOS.
* fix(nix): skip flake check and build on macOS CI
onnxruntime (transitive dep via faster-whisper) lacks a compatible
uv2nix wheel on aarch64-darwin. Run full checks and build on Linux
only; macOS CI verifies the flake evaluates without building.
* fix(nix): preserve container writable layer across nixos-rebuild
The container identity hash included the entrypoint's Nix store path,
which changes on every nixpkgs update (due to runtimeShell/stdenv
input-addressing). This caused false-positive identity mismatches,
triggering container recreation and losing the persistent writable layer.
- Use stable symlink (current-entrypoint) like current-package already does
- Remove entrypoint from identity hash (only image/volumes/options matter)
- Add GC root for entrypoint so nix-collect-garbage doesn't break it
- Remove global HERMES_HOME env var from addToSystemPackages (conflicted
with interactive CLI use, service already sets its own)
---------
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 01:08:02 +05:30
if is_managed ( ) :
managed_error ( " install gateway service (managed by NixOS) " )
return
2026-02-02 19:01:51 -08:00
force = getattr ( args , ' force ' , False )
2026-03-14 20:54:51 -07:00
system = getattr ( args , ' system ' , False )
run_as_user = getattr ( args , ' run_as_user ' , None )
2026-04-09 10:29:32 +02:00
if is_termux ( ) :
print ( " Gateway service installation is not supported on Termux. " )
print ( " Run manually: hermes gateway " )
sys . exit ( 1 )
if supports_systemd_services ( ) :
2026-04-10 21:15:47 -07:00
if is_wsl ( ) :
print_warning ( " WSL detected — systemd services may not survive WSL restarts. " )
print_info ( " Consider running in foreground instead: hermes gateway run " )
print_info ( " Or use tmux/screen for persistence: tmux new -s hermes ' hermes gateway run ' " )
print ( )
2026-03-14 20:54:51 -07:00
systemd_install ( force = force , system = system , run_as_user = run_as_user )
2026-02-02 19:01:51 -08:00
elif is_macos ( ) :
launchd_install ( force )
2026-04-10 21:15:47 -07:00
elif is_wsl ( ) :
print ( " WSL detected but systemd is not running. " )
print ( " Either enable systemd (add systemd=true to /etc/wsl.conf and restart WSL) " )
print ( " or run the gateway in foreground mode: " )
print ( )
print ( " hermes gateway run # direct foreground " )
print ( " tmux new -s hermes ' hermes gateway run ' # persistent via tmux " )
print ( " nohup hermes gateway run > ~/.hermes/logs/gateway.log 2>&1 & # background " )
sys . exit ( 1 )
2026-04-12 14:42:46 -07:00
elif is_container ( ) :
print ( " Service installation is not needed inside a Docker container. " )
print ( " The container runtime is your service manager — use Docker restart policies instead: " )
print ( )
print ( " docker run --restart unless-stopped ... # auto-restart on crash/reboot " )
print ( " docker restart <container> # manual restart " )
print ( )
print ( " To run the gateway: hermes gateway run " )
sys . exit ( 0 )
2026-02-02 19:01:51 -08:00
else :
print ( " Service installation not supported on this platform. " )
print ( " Run manually: hermes gateway run " )
sys . exit ( 1 )
elif subcmd == " uninstall " :
feat: nix flake — uv2nix build, NixOS module, persistent container mode (#20)
* feat: nix flake, uv2nix build, dev shell and home manager
* fixed nix run, updated docs for setup
* feat(nix): NixOS module with persistent container mode, managed guards, checks
- Replace homeModules.nix with nixosModules.nix (two deployment modes)
- Mode A (native): hardened systemd service with ProtectSystem=strict
- Mode B (container): persistent Ubuntu container with /nix/store bind-mount,
identity-hash-based recreation, GC root protection, symlink-based updates
- Add HERMES_MANAGED guards blocking CLI config mutation (config set, setup,
gateway install/uninstall) when running under NixOS module
- Add nix/checks.nix with build-time verification (binary, CLI, managed guard)
- Remove container.nix (no Nix-built OCI image; pulls ubuntu:24.04 at runtime)
- Simplify packages.nix (drop fetchFromGitHub submodules, PYTHONPATH wrappers)
- Rewrite docs/nixos-setup.md with full options reference, container
architecture, secrets management, and troubleshooting guide
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* Update config.py
* feat(nix): add CI workflow and enhanced build checks
- GitHub Actions workflow for nix flake check + build on linux/macOS
- Entry point sync check to catch pyproject.toml drift
- Expanded managed-guard check to cover config edit
- Wrap hermes-acp binary in Nix package
- Fix Path type mismatch in is_managed()
* Update MCP server package name; bundled skills support
* fix reading .env. instead have container user a common mounted .env file
* feat(nix): container entrypoint with privilege drop and sudo provisioning
Container was running as non-root via --user, which broke apt/pip installs
and caused crashes when $HOME didn't exist. Replace --user with a Nix-built
entrypoint script that provisions the hermes user, sudo (NOPASSWD), and
/home/hermes inside the container on first boot, then drops privileges via
setpriv. Writable layer persists so setup only runs once.
Also expands MCP server options to support HTTP transport and sampling.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
* fix group and user creation in container mode
* feat(nix): persistent /home/hermes and MESSAGING_CWD in container mode
Container mode now bind-mounts ${stateDir}/home to /home/hermes so the
agent's home directory survives container recreation. Previously it lived
in the writable layer and was lost on image/volume/options changes.
Also passes MESSAGING_CWD to the container so the agent finds its
workspace and documents, matching native mode behavior.
Other changes:
- Extract containerDataDir/containerHomeDir bindings (no more magic strings)
- Fix entrypoint chown to run unconditionally (volume mounts always exist)
- Add schema field to container identity hash for auto-recreation
- Add idempotency test (Scenario G) to config-roundtrip check
* docs: add Nix & NixOS setup guide to docs site
Add comprehensive Nix documentation to the Docusaurus site at
website/docs/getting-started/nix-setup.md, covering nix run/profile
install, NixOS module (native + container modes), declarative settings,
secrets management, MCP servers, managed mode, container architecture,
dev shell, flake checks, and full options reference.
- Register nix-setup in sidebar after installation page
- Add Nix callout tip to installation.md linking to new guide
- Add canonical version pointer in docs/nixos-setup.md
* docs: remove docs/nixos-setup.md, consolidate into website docs
Backfill missing details (restart/restartSec in full example,
gateway.pid, 0750 permissions, docker inspect commands) into
the canonical website/docs/getting-started/nix-setup.md and
delete the old standalone file.
* fix(nix): add compression.protect_last_n and target_ratio to config-keys.json
New keys were added to DEFAULT_CONFIG on main, causing the
config-drift check to fail in CI.
* fix(nix): skip checks on aarch64-darwin (onnxruntime wheel missing)
The full Python venv includes onnxruntime (via faster-whisper/STT)
which lacks a compatible uv2nix wheel on aarch64-darwin. Gate all
checks behind stdenv.hostPlatform.isLinux. The package and devShell
still evaluate on macOS.
* fix(nix): skip flake check and build on macOS CI
onnxruntime (transitive dep via faster-whisper) lacks a compatible
uv2nix wheel on aarch64-darwin. Run full checks and build on Linux
only; macOS CI verifies the flake evaluates without building.
* fix(nix): preserve container writable layer across nixos-rebuild
The container identity hash included the entrypoint's Nix store path,
which changes on every nixpkgs update (due to runtimeShell/stdenv
input-addressing). This caused false-positive identity mismatches,
triggering container recreation and losing the persistent writable layer.
- Use stable symlink (current-entrypoint) like current-package already does
- Remove entrypoint from identity hash (only image/volumes/options matter)
- Add GC root for entrypoint so nix-collect-garbage doesn't break it
- Remove global HERMES_HOME env var from addToSystemPackages (conflicted
with interactive CLI use, service already sets its own)
---------
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 01:08:02 +05:30
if is_managed ( ) :
managed_error ( " uninstall gateway service (managed by NixOS) " )
return
2026-03-14 20:54:51 -07:00
system = getattr ( args , ' system ' , False )
2026-04-09 10:29:32 +02:00
if is_termux ( ) :
print ( " Gateway service uninstall is not supported on Termux because there is no managed service to remove. " )
print ( " Stop manual runs with: hermes gateway stop " )
sys . exit ( 1 )
if supports_systemd_services ( ) :
2026-03-14 20:54:51 -07:00
systemd_uninstall ( system = system )
2026-02-02 19:01:51 -08:00
elif is_macos ( ) :
launchd_uninstall ( )
2026-04-12 14:42:46 -07:00
elif is_container ( ) :
print ( " Service uninstall is not applicable inside a Docker container. " )
print ( " To stop the gateway, stop or remove the container: " )
print ( )
print ( " docker stop <container> " )
print ( " docker rm <container> " )
sys . exit ( 0 )
2026-02-02 19:01:51 -08:00
else :
print ( " Not supported on this platform. " )
sys . exit ( 1 )
2026-04-12 14:42:46 -07:00
2026-02-02 19:01:51 -08:00
elif subcmd == " start " :
2026-03-14 20:54:51 -07:00
system = getattr ( args , ' system ' , False )
2026-04-14 20:52:18 -07:00
start_all = getattr ( args , ' all ' , False )
if start_all :
# Kill all stale gateway processes across all profiles before starting
killed = kill_gateway_processes ( all_profiles = True )
if killed :
print ( f " ✓ Killed { killed } stale gateway process(es) across all profiles " )
_wait_for_gateway_exit ( timeout = 10.0 , force_after = 5.0 )
2026-04-09 10:29:32 +02:00
if is_termux ( ) :
print ( " Gateway service start is not supported on Termux because there is no system service manager. " )
print ( " Run manually: hermes gateway " )
sys . exit ( 1 )
if supports_systemd_services ( ) :
2026-03-14 20:54:51 -07:00
systemd_start ( system = system )
2026-02-02 19:01:51 -08:00
elif is_macos ( ) :
launchd_start ( )
2026-04-10 21:15:47 -07:00
elif is_wsl ( ) :
print ( " WSL detected but systemd is not available. " )
print ( " Run the gateway in foreground mode instead: " )
print ( )
print ( " hermes gateway run # direct foreground " )
print ( " tmux new -s hermes ' hermes gateway run ' # persistent via tmux " )
print ( " nohup hermes gateway run > ~/.hermes/logs/gateway.log 2>&1 & # background " )
print ( )
print ( " To enable systemd: add systemd=true to /etc/wsl.conf and run ' wsl --shutdown ' from PowerShell. " )
sys . exit ( 1 )
2026-04-12 14:42:46 -07:00
elif is_container ( ) :
print ( " Service start is not applicable inside a Docker container. " )
print ( " The gateway runs as the container ' s main process. " )
print ( )
print ( " docker start <container> # start a stopped container " )
print ( " docker restart <container> # restart a running container " )
print ( )
print ( " Or run the gateway directly: hermes gateway run " )
sys . exit ( 0 )
2026-02-02 19:01:51 -08:00
else :
print ( " Not supported on this platform. " )
sys . exit ( 1 )
2026-04-12 14:42:46 -07:00
2026-02-02 19:01:51 -08:00
elif subcmd == " stop " :
2026-04-03 14:21:25 -07:00
stop_all = getattr ( args , ' all ' , False )
2026-03-14 20:54:51 -07:00
system = getattr ( args , ' system ' , False )
2026-03-14 07:42:31 -07:00
2026-04-03 14:21:25 -07:00
if stop_all :
# --all: kill every gateway process on the machine
service_available = False
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) and ( get_systemd_unit_path ( system = False ) . exists ( ) or get_systemd_unit_path ( system = True ) . exists ( ) ) :
2026-04-03 14:21:25 -07:00
try :
systemd_stop ( system = system )
service_available = True
except subprocess . CalledProcessError :
pass
elif is_macos ( ) and get_launchd_plist_path ( ) . exists ( ) :
try :
launchd_stop ( )
service_available = True
except subprocess . CalledProcessError :
pass
2026-04-11 14:30:29 -07:00
killed = kill_gateway_processes ( all_profiles = True )
2026-04-03 14:21:25 -07:00
total = killed + ( 1 if service_available else 0 )
if total :
print ( f " ✓ Stopped { total } gateway process(es) across all profiles " )
2026-02-03 10:46:23 -08:00
else :
print ( " ✗ No gateway processes found " )
2026-04-03 14:21:25 -07:00
else :
# Default: stop only the current profile's gateway
service_available = False
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) and ( get_systemd_unit_path ( system = False ) . exists ( ) or get_systemd_unit_path ( system = True ) . exists ( ) ) :
2026-04-03 14:21:25 -07:00
try :
systemd_stop ( system = system )
service_available = True
except subprocess . CalledProcessError :
pass
elif is_macos ( ) and get_launchd_plist_path ( ) . exists ( ) :
try :
launchd_stop ( )
service_available = True
except subprocess . CalledProcessError :
pass
if not service_available :
# No systemd/launchd — use profile-scoped PID file
if stop_profile_gateway ( ) :
print ( " ✓ Stopped gateway for this profile " )
else :
print ( " ✗ No gateway running for this profile " )
else :
print ( f " ✓ Stopped { get_service_name ( ) } service " )
2026-02-02 19:01:51 -08:00
elif subcmd == " restart " :
2026-02-03 10:46:23 -08:00
# Try service first, fall back to killing and restarting
service_available = False
2026-03-14 20:54:51 -07:00
system = getattr ( args , ' system ' , False )
2026-04-14 20:52:18 -07:00
restart_all = getattr ( args , ' all ' , False )
2026-03-17 11:05:28 +08:00
service_configured = False
2026-04-14 20:52:18 -07:00
if restart_all :
# --all: stop every gateway process across all profiles, then start fresh
service_stopped = False
if supports_systemd_services ( ) and ( get_systemd_unit_path ( system = False ) . exists ( ) or get_systemd_unit_path ( system = True ) . exists ( ) ) :
try :
systemd_stop ( system = system )
service_stopped = True
except subprocess . CalledProcessError :
pass
elif is_macos ( ) and get_launchd_plist_path ( ) . exists ( ) :
try :
launchd_stop ( )
service_stopped = True
except subprocess . CalledProcessError :
pass
killed = kill_gateway_processes ( all_profiles = True )
total = killed + ( 1 if service_stopped else 0 )
if total :
print ( f " ✓ Stopped { total } gateway process(es) across all profiles " )
_wait_for_gateway_exit ( timeout = 10.0 , force_after = 5.0 )
# Start the current profile's service fresh
print ( " Starting gateway... " )
if supports_systemd_services ( ) and ( get_systemd_unit_path ( system = False ) . exists ( ) or get_systemd_unit_path ( system = True ) . exists ( ) ) :
systemd_start ( system = system )
elif is_macos ( ) and get_launchd_plist_path ( ) . exists ( ) :
launchd_start ( )
else :
run_gateway ( verbose = 0 )
return
2026-02-03 10:46:23 -08:00
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) and ( get_systemd_unit_path ( system = False ) . exists ( ) or get_systemd_unit_path ( system = True ) . exists ( ) ) :
2026-03-17 11:05:28 +08:00
service_configured = True
2026-02-03 10:46:23 -08:00
try :
2026-03-14 20:54:51 -07:00
systemd_restart ( system = system )
2026-02-03 10:46:23 -08:00
service_available = True
except subprocess . CalledProcessError :
pass
elif is_macos ( ) and get_launchd_plist_path ( ) . exists ( ) :
2026-03-17 11:05:28 +08:00
service_configured = True
2026-02-03 10:46:23 -08:00
try :
launchd_restart ( )
service_available = True
except subprocess . CalledProcessError :
pass
if not service_available :
fix: auto-detect D-Bus session bus for systemctl --user on headless servers (#1601)
* fix: Anthropic OAuth compatibility — Claude Code identity fingerprinting
Anthropic routes OAuth/subscription requests based on Claude Code's
identity markers. Without them, requests get intermittent 500 errors
(~25% failure rate observed). This matches what pi-ai (clawdbot) and
OpenCode both implement for OAuth compatibility.
Changes (OAuth tokens only — API key users unaffected):
1. Headers: user-agent 'claude-cli/2.1.2 (external, cli)' + x-app 'cli'
2. System prompt: prepend 'You are Claude Code, Anthropic's official CLI'
3. System prompt sanitization: replace Hermes/Nous references
4. Tool names: prefix with 'mcp_' (Claude Code convention for non-native tools)
5. Tool name stripping: remove 'mcp_' prefix from response tool calls
Before: 9/12 OK, 1 hard fail, 4 needed retries (~25% error rate)
After: 16/16 OK, 0 failures, 0 retries (0% error rate)
* fix: auto-detect DBUS_SESSION_BUS_ADDRESS for systemctl --user on headless servers
On SSH sessions to headless servers, DBUS_SESSION_BUS_ADDRESS and
XDG_RUNTIME_DIR may not be set even when the user's systemd instance
is running via linger. This causes 'systemctl --user' to fail with
'Failed to connect to bus: No medium found', breaking gateway
restart/start/stop as a service and falling back to foreground mode.
Add _ensure_user_systemd_env() that detects the standard D-Bus socket
at /run/user/<UID>/bus and sets the env vars before any systemctl --user
call. Called from _systemctl_cmd() so all existing call sites benefit
automatically with zero changes.
Fixes: gateway restart falling back to foreground on headless servers
* fix: show linger guidance when gateway restart fails during update and gateway restart
When systemctl --user restart fails during 'hermes update' or
'hermes gateway restart', check linger status and tell the user
exactly what to run (sudo -S -p '' loginctl enable-linger) instead of
silently falling back to foreground mode.
Also applies _ensure_user_systemd_env() to the raw systemctl calls
in cmd_update so they work properly on SSH sessions where D-Bus
env vars are missing.
2026-03-16 17:45:48 -07:00
# systemd/launchd restart failed — check if linger is the issue
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) :
fix: auto-detect D-Bus session bus for systemctl --user on headless servers (#1601)
* fix: Anthropic OAuth compatibility — Claude Code identity fingerprinting
Anthropic routes OAuth/subscription requests based on Claude Code's
identity markers. Without them, requests get intermittent 500 errors
(~25% failure rate observed). This matches what pi-ai (clawdbot) and
OpenCode both implement for OAuth compatibility.
Changes (OAuth tokens only — API key users unaffected):
1. Headers: user-agent 'claude-cli/2.1.2 (external, cli)' + x-app 'cli'
2. System prompt: prepend 'You are Claude Code, Anthropic's official CLI'
3. System prompt sanitization: replace Hermes/Nous references
4. Tool names: prefix with 'mcp_' (Claude Code convention for non-native tools)
5. Tool name stripping: remove 'mcp_' prefix from response tool calls
Before: 9/12 OK, 1 hard fail, 4 needed retries (~25% error rate)
After: 16/16 OK, 0 failures, 0 retries (0% error rate)
* fix: auto-detect DBUS_SESSION_BUS_ADDRESS for systemctl --user on headless servers
On SSH sessions to headless servers, DBUS_SESSION_BUS_ADDRESS and
XDG_RUNTIME_DIR may not be set even when the user's systemd instance
is running via linger. This causes 'systemctl --user' to fail with
'Failed to connect to bus: No medium found', breaking gateway
restart/start/stop as a service and falling back to foreground mode.
Add _ensure_user_systemd_env() that detects the standard D-Bus socket
at /run/user/<UID>/bus and sets the env vars before any systemctl --user
call. Called from _systemctl_cmd() so all existing call sites benefit
automatically with zero changes.
Fixes: gateway restart falling back to foreground on headless servers
* fix: show linger guidance when gateway restart fails during update and gateway restart
When systemctl --user restart fails during 'hermes update' or
'hermes gateway restart', check linger status and tell the user
exactly what to run (sudo -S -p '' loginctl enable-linger) instead of
silently falling back to foreground mode.
Also applies _ensure_user_systemd_env() to the raw systemctl calls
in cmd_update so they work properly on SSH sessions where D-Bus
env vars are missing.
2026-03-16 17:45:48 -07:00
linger_ok , _detail = get_systemd_linger_status ( )
if linger_ok is not True :
import getpass
_username = getpass . getuser ( )
print ( )
print ( " ⚠ Cannot restart gateway as a service — linger is not enabled. " )
print ( " The gateway user service requires linger to function on headless servers. " )
print ( )
print ( f " Run: sudo loginctl enable-linger { _username } " )
print ( )
print ( " Then restart the gateway: " )
print ( " hermes gateway restart " )
return
2026-03-17 11:05:28 +08:00
if service_configured :
print ( )
print ( " ✗ Gateway service restart failed. " )
print ( " The service definition exists, but the service manager did not recover it. " )
print ( " Fix the service, then retry: hermes gateway start " )
sys . exit ( 1 )
2026-04-03 14:21:25 -07:00
# Manual restart: stop only this profile's gateway
if stop_profile_gateway ( ) :
print ( " ✓ Stopped gateway for this profile " )
2026-03-18 02:54:18 -07:00
_wait_for_gateway_exit ( timeout = 10.0 , force_after = 5.0 )
2026-02-03 10:46:23 -08:00
# Start fresh
print ( " Starting gateway... " )
2026-04-01 10:56:12 -07:00
run_gateway ( verbose = 0 )
2026-02-02 19:01:51 -08:00
elif subcmd == " status " :
deep = getattr ( args , ' deep ' , False )
2026-03-14 20:54:51 -07:00
system = getattr ( args , ' system ' , False )
2026-04-16 13:16:02 -04:00
snapshot = get_gateway_runtime_snapshot ( system = system )
2026-02-03 10:46:23 -08:00
# Check for service first
2026-04-09 10:29:32 +02:00
if supports_systemd_services ( ) and ( get_systemd_unit_path ( system = False ) . exists ( ) or get_systemd_unit_path ( system = True ) . exists ( ) ) :
2026-03-14 20:54:51 -07:00
systemd_status ( deep , system = system )
2026-04-16 13:16:02 -04:00
_print_gateway_process_mismatch ( snapshot )
2026-02-03 10:46:23 -08:00
elif is_macos ( ) and get_launchd_plist_path ( ) . exists ( ) :
2026-02-02 19:01:51 -08:00
launchd_status ( deep )
2026-04-16 13:16:02 -04:00
_print_gateway_process_mismatch ( snapshot )
2026-02-02 19:01:51 -08:00
else :
2026-02-03 10:46:23 -08:00
# Check for manually running processes
2026-04-16 13:16:02 -04:00
pids = list ( snapshot . gateway_pids )
2026-02-03 10:46:23 -08:00
if pids :
print ( f " ✓ Gateway is running (PID: { ' , ' . join ( map ( str , pids ) ) } ) " )
print ( " (Running manually, not as a system service) " )
2026-03-14 12:11:23 -07:00
runtime_lines = _runtime_health_lines ( )
if runtime_lines :
print ( )
print ( " Recent gateway health: " )
for line in runtime_lines :
print ( f " { line } " )
2026-02-03 10:46:23 -08:00
print ( )
2026-04-09 10:29:32 +02:00
if is_termux ( ) :
print ( " Termux note: " )
print ( " Android may stop background jobs when Termux is suspended " )
2026-04-10 21:15:47 -07:00
elif is_wsl ( ) :
print ( " WSL note: " )
print ( " The gateway is running in foreground/manual mode (recommended for WSL). " )
print ( " Use tmux or screen for persistence across terminal closes. " )
2026-04-09 10:29:32 +02:00
else :
print ( " To install as a service: " )
print ( " hermes gateway install " )
print ( " sudo hermes gateway install --system " )
2026-02-03 10:46:23 -08:00
else :
print ( " ✗ Gateway is not running " )
2026-03-14 12:11:23 -07:00
runtime_lines = _runtime_health_lines ( )
if runtime_lines :
print ( )
print ( " Recent gateway health: " )
for line in runtime_lines :
print ( f " { line } " )
2026-02-03 10:46:23 -08:00
print ( )
print ( " To start: " )
2026-04-10 21:15:47 -07:00
print ( " hermes gateway run # Run in foreground " )
2026-04-09 10:29:32 +02:00
if is_termux ( ) :
2026-04-10 21:15:47 -07:00
print ( " nohup hermes gateway run > ~/.hermes/logs/gateway.log 2>&1 & # Best-effort background start " )
elif is_wsl ( ) :
print ( " tmux new -s hermes ' hermes gateway run ' # persistent via tmux " )
print ( " nohup hermes gateway run > ~/.hermes/logs/gateway.log 2>&1 & # background " )
2026-04-09 10:29:32 +02:00
else :
print ( " hermes gateway install # Install as user service " )
print ( " sudo hermes gateway install --system # Install as boot-time system service " )
fix(gateway): detect legacy hermes.service + mark --replace SIGTERM as planned (#11909)
* fix(gateway): detect legacy hermes.service units from pre-rename installs
Older Hermes installs used a different service name (hermes.service) before
the rename to hermes-gateway.service. When both units remain installed, they
fight over the same bot token — after PR #5646's signal-recovery change,
this manifests as a 30-second SIGTERM flap loop between the two services.
Detection is an explicit allowlist (no globbing) plus an ExecStart content
check, so profile units (hermes-gateway-<profile>.service) and unrelated
third-party services named 'hermes' are never matched.
Wired into systemd_install, systemd_status, gateway_setup wizard, and the
main hermes setup flow — anywhere we already warn about scope conflicts now
also warns about legacy units.
* feat(gateway): add migrate-legacy command + install-time removal prompt
- New hermes_cli.gateway.remove_legacy_hermes_units() removes legacy
unit files with stop → disable → unlink → daemon-reload. Handles user
and system scopes separately; system scope returns path list when not
running as root so the caller can tell the user to re-run with sudo.
- New 'hermes gateway migrate-legacy' subcommand (with --dry-run and -y)
routes to remove_legacy_hermes_units via gateway_command dispatch.
- systemd_install now offers to remove legacy units BEFORE installing
the new hermes-gateway.service, preventing the SIGTERM flap loop that
hits users who still have pre-rename hermes.service around.
Profile units (hermes-gateway-<profile>.service) remain untouched in
all paths — the legacy allowlist is explicit (_LEGACY_SERVICE_NAMES)
and the ExecStart content check further narrows matches.
* fix(gateway): mark --replace SIGTERM as planned so target exits 0
PR #5646 made SIGTERM exit the gateway with code 1 so systemd's
Restart=on-failure revives it after unexpected kills. But when a user has
two gateway units fighting for the same bot token (e.g. legacy
hermes.service + hermes-gateway.service from a pre-rename install), the
--replace takeover itself becomes the 'unexpected' SIGTERM — the loser
exits 1, systemd revives it 30s later, and the cycle flaps indefinitely.
Before calling terminate_pid(), --replace now writes a short-lived marker
file naming the target PID + start_time. The target's shutdown_signal_handler
consumes the marker and, when it names this process, leaves
_signal_initiated_shutdown=False so the final exit code stays 0.
Staleness defences:
- PID + start_time combo prevents PID reuse matching an old marker
- Marker older than 60s is treated as stale and discarded
- Marker is unlinked on first read even if it doesn't match this process
- Replacer clears the marker post-loop + on permission-denied give-up
2026-04-17 19:27:58 -07:00
elif subcmd == " migrate-legacy " :
# Stop, disable, and remove legacy Hermes gateway unit files from
# pre-rename installs (e.g. hermes.service). Profile units and
# unrelated third-party services are never touched.
dry_run = getattr ( args , ' dry_run ' , False )
yes = getattr ( args , ' yes ' , False )
if not supports_systemd_services ( ) and not is_macos ( ) :
print ( " Legacy unit migration only applies to systemd-based Linux hosts. " )
return
remove_legacy_hermes_units ( interactive = not yes , dry_run = dry_run )
