|+jgUdZddlmZmZddlZddlZddlZddlmZddl m Z m Z ddl Z ddl Z ddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlZddlm Z ddl!m"Z"m#Z#m$Z$m%Z%m&Z&ddl'Z'e e(j)j)*Z+e,e+ej-vr$ej-.de,e+ddl/m0Z0m1Z1dd l2m3Z3m4Z4m5Z5m6Z6m7Z7m8Z8m9Z9m:Z:m;Z;mZ>m?Z?m@Z@mAZAmBZBdd lCmDZDmEZEdd lFmGZG dd lHmIZImJZJmKZKmLZLmMZMdd lNmOZOddlPmQZQmRZRmSZSmTZTddlUmVZVddlWmXZXni#eY$ra ddlZm[Z\e\dddd lHmIZImJZJmKZKmLZLmMZMdd lNmOZOddlPmQZQmRZRmSZSmTZTddlUmVZVddlWmXZXn#e]$re^dej_dwxYwYnwxYwdej`vre ej`dne e(j)dz ZaejbecZdddddeeddfdZfedd!Zgdd"ZheId#e0eg$Ziej`jd%pejkd&Zld'Zmd(ZngZoe$epeqd)<d*Zrd+ZseiteOd,d-gd-g.dd/lumvZwd0eKdexfd1Zyd0eKddfd2Zze{hd3Z|e{eqd4<d5e,d6exdexfd7Z}d8e,d9e,dexfd:Z~eid;d0eKfd<Zeid;d0eKfd=Zeid;d0eKfd>Zid?d@dAdBdCdDdEdFdBdCdGdHdIgdJdKdLdHdMdNdOgdKdPdHdQgdRdKdSdHdTgdUdKdVdHdWdXdYgdKdZdHd[gd\dKd]dHd^gd_dKd`dHdagdbdKdcdHddgdedKdfdHdgdhdigdKdjdHdkgdldKdmdHdndodpgdKdqdHdrgdsdKdtdHdugdvdKdwdHdxgdydKdHdzgd{dKdHd|d}d~gdKdZe#e,e#e,e"ffeqd<dddddddddddddBdddZe#e,e,feqd<gdZde"de,fdZ dde#e,e"fde,de#e,e#e,e"fffdZee4ZedDZiZe#e,e#e,e"ffeqd<eD]\ZZeee<ed?kreedD<eZGddeXZGddeXZGddeXZGddeXZGddeXZGddeXZGddeXZGddeXZGddeXZGddeXZGddeXZdddddddddddddd Ze#e,e,feqd<dZde,de,fdZGddeXZde,d?e,dee,e,ffdZ dddde,d?e,de,de,def dZejdZ epejddZn3#eef$r)eddejddZYnwxYwdeexedzffdZdddddddddȜZdZdZdZe d˦Zed(̦Gd̈́dΦZhdϣZdZdZdZiddԓdd֓ddؓddړddܓddޓddddԓddؓddddddddddddddddddddddddddddddddZiddddƓddddÓdd“dd“ddddd d dd dd dd ddddddœddddddiZde,de fdZde de,fdZdedexfdZde dee ejffdZde de,dzfdZde,fdZde,de,fd Zdee fd!Zeijd"de,fd#Zdd$de d%exde fd&Zde,e zde fd'Zd(e d)e dexfd*Zde,dzde,fd+Zd0eKdexfd,Zdexfd-Zd(d.d0eKd/exdefd0Zdd1de,dzd0eKd2exdeee e,ffd3Zǐd4ede#e,e"ffd5ZȐd4ed)e de#e,e"ffd6Zɐd7e,deee,ffd8Zeijd9dd0eKde%e,fd:Zeijd;d0eKde,fd<Zeid=d>ed0eKfd?Zeid@d>ed0eKfdAZeid9d>ed0eKfdBZeijdCde,fdDZeijdEde,fdFZeijdGde,fdHZeijdIde,fdJZeijdKdLZeijdMdNZאdOZؐdPe,dQe,de%eefdRZِdSe,dTe,dPe,dQe,de#e,e,ff dUZeijdVdWZeijdXdYZGdZd[eXZeid\d]efd^Zeid_d`Zdae,fdbZeijdcddZeidedfZeidgdhZeididjZGdkdleXZeidmdd]edzfdnZe8doz Ze eqdp<idqdrdsdtdudvdwdxdydzd{d|d}d~ddddddddddddddddddddZe#e,e,feqd<iZe#e,ejfeqd<iZe#e,e#e,e"ffeqd<dde,de,deeddfdZde$e,de,dejfdZde deede$e,fdZde&ejexffdZdee,e"ffdZeiddZeiddZddeede$e#e,e"ffdZeijdddexfdZeidd>efdZGddeXZde#e,e"fde,fdZeijddZeidd>efdZeijddde,deefdZeijd ddeedeedeede,de,de,de,fd„Zeijdæ ddeedeedeede,de,de,de,de,fdDŽZeijdȦdde,deefdʄZde#e,e"fde#e,e"ffd˄Zeijd̦dde%e,fd̈́ZeijdΦdτZeijdЦdфZdddddidҜZeeqd<eijdԦdde%e,fdՄZd֐Ze&e,dfeqd<eijd٦dde%e,fdڄZeijdۦdde,fd܄Zeijdݦdde%e,fdބZeidߦdd]ede%e,fdZ dde,de,d?e,de,de,de,f dZ de#e,e"fde#e,e"ffdZ eid̦dd]ede%e,fdZ eijddde%e,fdZ eiddd]ede%e,fdZdddddZee,ee,e,ffeqd<ddde$e,fdZeidd]ed0eKfdZeiddd]ede%e,fdZeid dd]ed0eKde%e,fdZidddddddddddddddddddddddd d d d dd dddddddddddddddddddddd d!d"d#d#dd$d%d&d'd(d(dd)d*d+d,d-d-dd.d/d0d1d2d2dd3d4d5d6d7d8dd9d:d;d<d=d>dd?d@dAdBdCdDddEdFdGdHdIdJddKdLdMdNdOdPddQdRdSdTdUdVddWdXdddYdZd[d'd\ddd]d^d_d`dddaZee,ee,e"ffeqdb<dcZee,dfeqdd<idedfdgddhdidjdkdldmdndodldpdqdrd(dsdtdudvd(dsdwdxdydldzd{d|dld}d~dd(dddddldddd(dddddlddddldddd,dhdddd(dddddldddd(dddddlddd(ddddldddlddd(ddddlddd(ddddldddlddd(dddd(dddd(ddddlddd(dd Zee,ee,e"ffeqd<deee,e"fdffdZde{e,fdZe{hdZde,dee,dffdZde,dee,dffdZde,dee,e"fde"dzdee,dffdZ dde,de"dzdee,e"ffdZde,dee,e"fdzfdZde,dee,e"ffd„Zde,fdÄZ dee,e"fdee,e,fdedzdee,e"ffdDŽZ!de,dexddfdɄZ"dʐZ#de0Z$ej%d̦Z&eGd̈́dΦZ'iZ(ee,e'feqd<ej)Z*de,fdЄZ+de,depfdфZ,dd҄Z-de"de,dzfdӄZ.de,de,de,fdքZ/dddלde,de,d]ee,e"fdzde,dzdee,e"ff dڄZ0dddלde,de,d]ee,e"fdzde,dzdee,e"ff dۄZ1eidܦd]efd݄Z2eijdަde,fdZ3dee,e"ffdZ4eidde,d]efdZ5eidަde,fdZ6eijddZ7eidde,d]efdZ8eidde,fdZ9dde%e,deede,fdZ:de#e,e"ffdZ;de#e,e"ffdZ<ddddddddddddddddddddddddddddddddddddd d d d e;dd dddde<dfZ=ee#e,e"fdfeqd<de,de#e,e"ffdZ>eijddZ?eidde,d0eKfdZ@dZAiZBe#e,e#e,e"ffeqd<ejCZD ddlEmFZGmHZImJZKmLZMmNZOd(ZPn#eY$rdZPYnwxYwdZQddZRde,de,dee,e#e,e"fffdZSde,d e,d!eeddfd"ZTde#e,e"ffd#ZUd$e,d%e,de#e,e"ffd&ZVde,de#e,e"ffd'ZWd(ZXde#e,e"ffd)ZYd$e,ddfd*ZZde,d e,de,d+e,ddf d,Z[d$e,ddfd-Z\d$e,ddfd.Z]d$e,ddfd/Z^eid0de,d0eKfd1Z_Gd2d3eXZ`eid4de,d]e`d0eKfd5Zaeijd6de,d$e,fd7Zbeid8d$e,d0eKfd9Zcd$e,fd:ZdGd;dZfeijd?d@ZgeidAdBZheijdCdDZide%e,fdEZjeijdFdd$e,de%e,fdGZkeijdHd$e,fdIZleijdJdd$e,de%e,fdKZmeidFdd$e,de%e,fdLZnGdMdNeXZoeipdFd$e,d]eofdOZqeijdPd$e,fdQZrGdRdSeXZseidTd]esfdUZteijdV d dXe,deedYe%e,dZe%e,d[e%e,f d\ZuGd]d^eXZvGd_d`eXZwej)Zxde$e#e,e"ffdaZyde%e,de&e,e ffdbZzdce#e,e"fde,dde de#e,e"ffdeZ{de%e,dfe,fdgZ|dhe,de%e,fdiZ}eijdjd de,fdkZ~eijdlddhe,de%e,fdmZeijdnd dhe,de%e,deefdoZeidjd d]evde,fdpZeijdqdrZeidlddhe,d]ewde%e,fdsZeidtddhe,de%e,fduZeidvddhe,de%e,fdwZeidxddhe,de%e,fdyZeidlddhe,de%e,fdzZGd{d|eXZeijd}d~Zeidd d]ede,fdZGddeXZde#e,e"fde#e,e,ffdZde,de#e,e"fde#e,e"ffdZeijddde%e,fdZeiddd]ede%e,fdZeiddde,de%e,fdZeiddde,de%e,fdZGddeXZeid dde,d]ede%e,fdZeijddde%e,fdZGddeXZeiddd]ede%e,fdZeddGddeXZGddeXZdZeijddZeidd]efdZeidd]efdZeiddZGddeXZde,de#e,e"fde,de#e,e"ffdZeijddZeiddZeidd]efdZeidde,fdZGddeXZeidde,d]efdZeiddZeiddZGddeXZde"deede#e,e"ffdZeijddZeidd]efdZeidde,deefd„ZGdÄdeXZGdńdeXZeijdǦdȄZeidɦd]efdʄZeid˦d]efd̄Zeidͦd΄ZeidϦdЄZGdфdeXZeidӦd]efdԄZGdՄdeXZeidצd]efd؄Zeijd٦dڄZGdۄdeXZeid٦d]efd݄ZGdބdeXZeid٦d]efdZeijddZeiddZGddeXZde%e,de$e,fdZeiddd]ede%e,fdZGddeXZeiddd]eÐde%e,fdZGddeXZeid d d]e%ede%e,fdZƐddddddddddd ZdefdZȐdde%e,defdZeijddde%e,fdZeijd dde,de,deede%e,fdZeijddde,fdZeijddde,fdZGdd eXZGd d eXZGd d eXZGddeXZGddeXZGddeXZGddeXZԐdde,doe"de"fdZde#e,e"ffdZde$e#e,e"ffdZאde,de fdZؐde,de,fdZِde de,d?e,ddfdZڐde de$ddeefdZېde de$e,deefd Zeijd!d"Zeid!d]efd#Zeijd$d%Zeid$d]efd&Zeijd'de,fd(Zeid)de,fd*Zeipd+de,d]efd,Zeid+de,fd-Zeijd.de,fd/Zeid.de,d]efd0Zeid1de,d]efd2Zeid3de,d]efd4Zeid5de,d]efd6Zej)Zede%e,fd7ZGd8d9eXZeijd:dde%e,fd;Zeid<dd]ede%e,fd=ZGd>d?eXZGd@dAeXZddBZeijdCdde,de%e,fdDZeid:d]efdEZeidCd]efdFZeijdGdde%e,fdHZGdIdJeXZeidKdde,d]ede%e,fdLZeijdMdde,de%e,fdNZGdOdPeXZeidQ dde,d]ede%e,fdRZGdSdTeXZeidUdde,d]ede%e,fdVZGdWdXeXZeidY dde,d]ede%e,fdZZGd[d\eXZeijd]dde%e,fd^Zeid]dd]ede%e,fd_Zeijd`ddaeefdbZeijdcddaeefddZejder6 ddflmZm Z d(Z nY#eY$rdZdZ Gdgdhe Z Yn:wxYw ddil mZm Z d(Z n##eY$rdZdZ Gdjdhe Z YnwxYwej%dkZ dlZej%dmZe{hdnZdodpde%e,fdqZdodpdexfdrZdodpde%e,fdsZdodpdexfdtZdodpde%e,fduZdodpdexfdvZde,fdwZdodpdee%e,e,ffdxZdodpdexfdyZ ddze%e,d{e%e,de%e,deee,e%e,e%effd|Zde%e,fd}Zd~e,de%e,fdZde"d~e,d>e,ddfdZdoeLde%e,fdZde,de,fdZei ddoeLddfdZ!ei ddoeLddfdZ"ei ddoeLddfdZ#ei ddoeLddfdZ$de%e,de,fdZ%deIfdZ&dodddddddddddddddddddddddddddddddgZ'dde"de,depde%e#e,e"ffdZ(ddddddZ)e#e,e,feqd<dddZ*e#e,e,feqd<hdZ+hdZ,hdZ-hdZ.dZ/de#e,e"fde%e#e,e"ffdZ0defdZ1eijddZ2GddeXZ3eidd]e3fd„Z4dÐZ5e{hdģZ6eijdŦdƄZ7GdDŽdeXZ8eidŦd]e8fdɄZ9de"de de%e,fd̄Z:defd̈́Z;daeijdӦdԄZ?GdՄdeXZ@de#e,e"fde#e,e"ffd؄ZAde#e,e"ffdلZBeijdڦd0eKfdۄZCeidܦd0eKd]e@fd݄ZDde,de,fdބZEeidߦd0eKde,fdZFeidd0eKde,fdZGeidd0eKde,fdZHeidd0eKde,fdZIGddeXZJeidd0eKd]eJfdZKGddeXZLeidd0eKde,d]eLfdZMeijdde,de,fdZNdZOeOddlPmQZReiSeRe&ei dd5e,deedexd6exde,f dZTdS(u7 Hermes Agent — Web UI server. Provides a FastAPI backend serving the Vite/React frontend and REST API endpoints for managing configuration, environment variables, and sessions. Usage: python -m hermes_cli.main web # Start on http://127.0.0.1:9119 python -m hermes_cli.main web --port 8080 )asynccontextmanagercontextmanagerN) dataclassdatetimetimezone)Path)AnyDictListOptionalTuple) __version____release_date__)cfg_getDEFAULT_CONFIGOPTIONAL_ENV_VARSget_config_path get_env_pathget_hermes_home load_configload_env save_configsave_env_valueremove_env_valuecheck_config_versiondetect_install_methodformat_docker_update_message%recommended_update_command_for_method redact_key)get_running_pidread_runtime_status)env_var_enabled)FastAPI HTTPExceptionRequest WebSocketWebSocketDisconnect)CORSMiddleware) FileResponse HTMLResponse JSONResponseResponse) StaticFiles) BaseModel)ensureztool.dashboardF)promptz3Web UI requires fastapi and uvicorn. Install with: z- -m pip install 'fastapi' 'uvicorn[standard]'HERMES_WEB_DISTweb_dist< stop_eventzthreading.EventintervalreturncHddlm}td||sl |ddn2#t $r%}td|Yd}~nd}~wwxYw|||jdSdS)uiTick the cron scheduler from inside the desktop dashboard backend. The scheduler tick loop normally lives in ``hermes gateway run`` — but the desktop app spawns a ``hermes dashboard`` backend, not a gateway, so a cron a user creates in the app would never fire. We run a minimal ticker here (no live adapters; delivery falls back to the per-platform send path). Cross-process safe: ``cron.scheduler.tick`` takes the ``cron/.tick.lock`` file lock, so this never double-fires alongside a real gateway on the same HERMES_HOME — whichever process grabs the lock first wins the tick. r)tickz*Desktop cron ticker started (interval=%ds)F)verbosesynczDesktop cron tick error: %sN)cron.schedulerr9_loginfois_set Exceptiondebugwait)r5r6 cron_tickes 4/usr/local/lib/hermes-agent/hermes_cli/web_server.py_start_desktop_cron_tickerrFks100000II:HEEE!!" 9 Ie% 0 0 0 0 0 9 9 9 JJ4a 8 8 8 8 8 8 8 8 9!!! !!"""""s A A4A//A4appr$cKi|j_tj|j_d}d}t jddkrEtj}tj t|fdd}|  dWV|| dSdS#|| wwxYw)NHERMES_DESKTOP1Tzdesktop-cron-tickertargetargsdaemonname) stateevent_channelsasyncioLock event_lockosgetenv threadingEventThreadrFstartset)rG cron_stop cron_threads rE _lifespanr^s!CI"<>>CI +/I-1K y!""c))O%% &-&       MMOOOOO ! 9 MMOOOO !s B--Cc |jj|jjfS#t$rDi|j_t j|j_|jj|jjfcYSwxYw)awReturn (event_channels, event_lock) from app.state. Lazily initialises the state if the lifespan hasn't run (e.g. when TestClient is constructed without a ``with`` block). The lifespan path is preferred because it guarantees the Lock is created on the correct event loop, but the lazy path lets existing non-``with`` TestClient usages keep working. )rPrQrTAttributeErrorrRrS)rGs rE_get_event_staterasl>y')=== >>>#%  &|~~ y')=====>sA A('A( Hermes Agent)titleversionlifespanHERMES_DASHBOARD_SESSION_TOKEN zX-Hermes-Session-TokenT_reveal_timestampsz*^https?://(localhost|127\.0\.0\.1)(:\d+)?$*)allow_origin_regex allow_methods allow_headers)PUBLIC_API_PATHSrequestc|jtd}|r@tj|t rdS|jdd}dt }tj||S)a=True if the request carries a valid dashboard session token. The dedicated session header avoids collisions with reverse proxies that already use ``Authorization`` (for example Caddy ``basic_auth``). We still accept the legacy Bearer path for backward compatibility with older dashboard bundles. T authorizationBearer )headersget_SESSION_HEADER_NAMEhmaccompare_digestencode_SESSION_TOKEN)rpsession_headerauthexpecteds rE_has_valid_session_tokenrs_(()=rBBN$-t ?   3 3D)))H  t{{}}hoo.?.? @ @@ct|jjddr)t|jdddStddt |stdddS)uQAuthorize a sensitive endpoint, raising 401 if the caller isn't allowed. Two auth schemes protect the dashboard, exactly one active per bind: * **Loopback / ``--insecure`` mode** (``auth_required`` False): the ephemeral ``_SESSION_TOKEN`` is injected into the SPA HTML and echoed back via ``X-Hermes-Session-Token`` (or the legacy ``Bearer`` header). Validate it here. * **Gated / OAuth mode** (``auth_required`` True): ``_SESSION_TOKEN`` is NOT injected (the SPA authenticates with a session cookie), so there is no token to check. The ``gated_auth_middleware`` has already verified the cookie before the request reached this handler — any non-public ``/api/`` route it lets through carries a verified ``request.state.session``. The legacy ``auth_middleware`` likewise short-circuits in this mode. Requiring the (absent) token here would 401 every cookie-authenticated request, making plugin install/enable/disable and the other ``_require_token`` endpoints permanently unreachable behind the gate. Defer to the gate. auth_requiredFsessionN Unauthorized status_codedetail)getattrrGrPr%r)rps rE_require_tokenrs|&w{ /599D 7=)T 2 2 > FNCCCC #G , ,DNCCCCDDr> localhost::1 127.0.0.1_LOOPBACK_HOST_VALUEShost allow_publicc|tvo| S)u\Return True iff the dashboard OAuth auth gate must be active. Truth table: host == loopback → False (no auth) host != loopback AND allow_public (--insecure)→ False (legacy escape hatch) host != loopback AND NOT allow_public → True (gate engages) "Loopback" matches the same set used by ``--insecure`` enforcement in ``start_server``: 127.0.0.1, localhost, ::1. RFC1918 / CGNAT / link-local are deliberately treated as PUBLIC — a hostile device on the same LAN is exactly the threat model the gate is designed for. )r)rrs rEshould_require_authr#s - - E 4DEr host_header bound_hostc|sdS|}|dr<|d}|dkr |d|}n8|d}n"d|vr|dddn|}|}|d vrd S|}|t vr |t vS||kS) a#True if the Host header targets the interface we bound to. Accepts: - Exact bound host (with or without port suffix) - Loopback aliases when bound to loopback - Any host when bound to 0.0.0.0 (explicit opt-in to non-loopback, no protection possible at this layer) F[]z[]:r>::0.0.0.0T)strip startswithfindrsplitlowerr)rrhclose host_onlybound_lcs rE_is_accepted_hostr3s u A||C;s  B;;!E' II II+.!88AHHS!$$Q'' !!I &&&t!!H(((111   rhttpcKttjdd}|r>|jdd}t ||st dddiS||d{VS) uReject requests whose Host header doesn't match the bound interface. Defends against DNS rebinding: a victim browser on a localhost dashboard is tricked into fetching from an attacker hostname that TTL-flips to 127.0.0.1. CORS and same-origin checks don't help — the browser now treats the attacker origin as same-origin with the dashboard. Host-header validation at the app layer catches it. See GHSA-ppp5-vxwm-4cf7. rNrrrrzVInvalid Host header. Dashboard requests must use the hostname the server was bound to.rcontent)rrGrPrurvrr,)rp call_nextrrs rEhost_header_middlewarer_sL$77J o))&"55  j99 @ 7## # # # # # ##rc6Kddlm}|||d{VS)Nr)gated_auth_middleware)$hermes_cli.dashboard_auth.middlewarer)rprrs rE_dashboard_auth_gaters=JJJJJJ&&w :: : : : : : ::rcKt|jjddr||d{VS|jj}|dr+|t vr"t|stdddiS||d{VS) zERequire the session token on all /api/ routes except the public list.rFNz/api/rrrr) rrGrPurlpathr_PUBLIC_API_PATHSrr,)rprrs rEauth_middlewarers w{ /599(Yw''''''''' ; D wD0A$A$A'00 !>2 7## # # # # # ##rmodelstringz0Default model (e.g. anthropic/claude-sonnet-4.6)generaltype descriptioncategorymodel_context_lengthnumberz=Context window override (0 = auto-detect from model metadata)zterminal.backendselectzTerminal execution backend)localdockersshmodaldaytona singularity)rroptionszterminal.modal_modezModal sandbox modesandboxfunctionz tts.providerzText-to-speech provider)edge elevenlabsopenaineuttsz stt.providerzSpeech-to-text provider)rgroqrxairzstt.elevenlabs.model_idzElevenLabs Scribe model scribe_v2 scribe_v1z display.skinzCLI visual theme)defaultaresmonoslatezdashboard.themezWeb dashboard visual theme)rmidnightemberr cyberpunkrosezdisplay.resume_displayz$How resumed sessions display history)minimalfulloffzdisplay.busy_input_modez%Input behavior while agent is running) interruptqueuesteerzmemory.providerzMemory provider pluginbuiltinhonchozapprovals.modezDangerous command approval mode)askyolodenyzcontext.enginezContext management enginercustomzhuman_delay.modezSimulated typing delay mode)rtypingfixedz logging.levelzLog level for agent.log)DEBUGINFOWARNINGERRORzagent.service_tierz#API service tier (OpenAI/Anthropic))rrautorflexz(Reasoning effort for delegated subagents)rrlowmediumhighzWhen the chat app / gateway updates Hermes (no terminal prompt), what to do with uncommitted local source edits. 'stash' keeps them and re-applies them after the update; 'discard' throws them away. Terminal updates always ask, regardless of this setting.stashdiscard)zdelegation.reasoning_effortz%updates.non_interactive_local_changes_SCHEMA_OVERRIDESsecurityagentdisplaydiscord)privacycontextskillscronnetwork checkpoints approvals human_delay dashboardcode_executionprompt_cachinggoalsupdates onboardingtelegram_CATEGORY_MERGE)rrterminalr delegationmemory compressionrbrowservoicettssttloggingr auxiliaryvaluect|trdSt|trdSt|trdSt|trdSt|t rdSdS)z*Infer a UI field type from a Python value.booleanrlistobjectr) isinstanceboolintfloatrdictrs rE _infer_typer-sz%y%x%x%v%x 8rrrconfigprefixci}|D],\}}|r|d|n|}|dvr|r|dd}nt|tr|}nd}t|tr$|t ||t ||dddd|d}|tvr |t|t |d |d |d <|||<.|S) uFWalk DEFAULT_CONFIG and produce a flat dot-path → field schema dict..>_config_versionrru → _ rr) itemssplitrrupdate_build_schema_from_configrreplacercrrrv)rrschemakeyrfull_keyrentrys rEr(r(<sk )+Fllnn%% U(.7f$$s$$$C + + +   !||C((+HH t $ $ !HH H eT " " % MM3E8DD E E E E$E**'//W==EEc3OOUUWW$%%E ,,, .x8999 / 3 3E*4EuZGX Y YE* $F8   Mr_ordered_schemac4eZdZUeed<dZeeed<dS) ConfigUpdaterNprofile)__name__ __module__ __qualname__r__annotations__r1r strrrEr0r0rs/ LLL!GXc]!!!!!rr0cLeZdZUeed<eed<dZeeed<dZeed<dS) EnvVarUpdater+rNr1rrapi_key)r2r3r4r6r5r1r r:r7rrEr9r9wsJ HHH JJJ!GXc]!!! GSrr9c4eZdZUeed<dZeeed<dS) EnvVarDeleter+Nr1r2r3r4r6r5r1r r7rrEr<r</ HHH!GXc]!!!!!rr<c4eZdZUeed<dZeeed<dS) EnvVarRevealr+Nr1r=r7rrEr@r@r>rr@cbeZdZUdZeeed<iZee e fed<gZ e e ed<dS)MessagingPlatformUpdateNenabledenv clear_env) r2r3r4rCr rr5rDr r6rEr r7rrErBrBsR"GXd^"""Cc3hItCyrrBc*eZdZUdZeeed<dS)TelegramOnboardingStartNbot_name)r2r3r4rHr r6r5r7rrErGrGs&"Hhsm"""""rrGc&eZdZUeeed<dS)TelegramOnboardingApplyallowed_user_idsNr2r3r4r r6r5r7rrErJrJs"3irrJc4eZdZUeed<dZeeed<dS)AudioTranscriptionRequestdata_urlN mime_type)r2r3r4r6r5rPr r7rrErNrNs/MMM#Ix}#####rrNc2eZdZUeed<eed<dZeed<dS)ManagedFileUploadrrOT overwriteN)r2r3r4r6r5rSrr7rrErRrRs4 IIIMMMItrrRceZdZUeed<dS)ManagedDirectoryCreaterNr2r3r4r6r5r7rrErUrU IIIIIrrUc(eZdZUeed<dZeed<dS)ManagedFileDeleterF recursiveN)r2r3r4r6r5rZrr7rrErYrYs+ IIIItrrYz.aac.flacz.m4a.mp3z.mp4.ogg.wav.webm) z audio/aac audio/flacz audio/m4az audio/mp3 audio/mp4 audio/mpeg audio/ogg audio/wavz audio/wave audio/webmz audio/x-m4az audio/x-wav video/webm_AUDIO_MIME_EXTENSIONSirPc|pdddd}t|dS)Nrr;rrr_)r&rrrgrv)rP normalizeds rE_audio_extension_for_mimerksN/r((a00399;;AACCJ ! % %j' : ::rceZdZUdZeed<eed<eed<dZeed<dZeed<dZeed<d Z e ed <d Z e eed <d S) ModelAssignmentuPayload for POST /api/model/set — assign a provider/model to a slot. scope="main" → writes model.provider + model.default scope="auxiliary" → writes auxiliary..provider + auxiliary..model scope="auxiliary" with task="" → applied to every auxiliary.* slot scope="auxiliary" with task="__reset__" → resets every slot to provider="auto" scopeproviderrrrtaskbase_urlr:Fconfirm_expensive_modelNr1) r2r3r4__doc__r6r5rprqr:rrrr1r r7rrErmrms JJJMMM JJJD#NNN Hc GS$)T)))!GXc]!!!!!rrmrocddlm}m}ddlm}|pd}|pd}||}||vrd|vr t di}t|trIt|ddpd nd} n#t$rd} YnwxYwddlm } | r|| | vr|| }| }nd }d }||vrU|d s@ |||} | r| }n.#t$r!td ||d YnwxYw||fS)uNormalize a main-slot (provider, model) pair before persisting. The Models page has two assignment paths and only one of them was safe: - The "Change" picker sends a real Hermes provider slug — fine. - The per-card "Use as → Main model" menu sends ``entry.provider`` from the analytics rows, falling back to the model's VENDOR prefix (``modelVendor("anthropic/claude-opus-4.6") == "anthropic"``) when the session row has no ``billing_provider`` (older sessions, NULL rows). That wrote ``provider: anthropic`` + ``default: anthropic/claude-opus-4.6`` to config — a vendor-prefixed OpenRouter slug on the NATIVE Anthropic provider. New sessions then 400 against api.anthropic.com ("model: anthropic/claude-opus-4.6 not found") and the user reads it as "changing models does nothing". Two repairs, both at this single chokepoint so every caller inherits: 1. Vendor-name → Hermes-provider mapping: when the provider string is not a known Hermes provider/alias (e.g. ``moonshotai``, ``x-ai`` is known but ``poolside`` isn't) but the model is a vendor-prefixed aggregator slug, keep the user's CURRENT aggregator if they're on one, else fall back to openrouter. 2. Model-format normalization for the resolved provider via ``normalize_model_for_provider`` (e.g. ``anthropic/claude-opus-4.6`` on native anthropic → ``claude-opus-4-6``). r)_KNOWN_PROVIDER_NAMESnormalize_provider)normalize_model_for_providerrr/rro)_AGGREGATOR_PROVIDERS openrouterrz$model normalization failed for %s/%sTexc_info)hermes_cli.modelsrurvhermes_cli.model_normalizerwrrrvrrr6rr@ryrr=rA) rorrurvrwprov_inmodel_in canonicalcur_cfg cur_providerrynormalized_models rE _normalize_main_model_assignmentrs6LKKKKKKKGGGGGG~2$$&&G ""$$H""7++I---#// !mm''44Ggt,,5GKK B//5266<<>>DDFFF24 L   LLL ;;;;;;  #..|<<@UUU**<88I"GG$I"G))))2F2Fx2P2P) a;;HiPP  ,+ a a a JJ=w[_J ` ` ` ` ` a H s%BC C! C!%D66(E! E! model_cfgr rqr:ct|tsi}t|dpd}|}||d<||d<|r||d<n |dr ||krd|d<|r||d<n |dr ||krd|d<|dd|S)uApply a main-slot model assignment to a ``model`` config dict in place. Sets ``provider``/``default``, then reconciles ``base_url``: - An explicitly supplied ``base_url`` is always persisted (covers ``custom``/local endpoints and any provider whose key is bound to a non-default host). - Otherwise, a stale ``base_url`` is cleared ONLY when switching to a *different* provider — that URL belonged to the old provider. When the provider is unchanged and no new URL is supplied, the existing ``base_url`` is preserved. This keeps a user's custom endpoint (e.g. a Xiaomi MiMo Token Plan host, ``https://token-plan-*.xiaomimimo.com/v1``) alive when they merely re-pick a model under the same provider — picking a model previously wiped it, forcing the registry default and breaking Token Plan keys. The runtime resolver reads ``model.base_url`` from config (it ignores ``OPENAI_BASE_URL``) and only honors it when the configured provider matches and the pool entry is on the registry default, so preserving it here is what lets the override actually route. The hardcoded ``context_length`` override is always dropped since the new model may have a different context window. Returns the same dict (coerced to a fresh dict if the input wasn't one) so callers can assign it straight back onto the model config. rorrrrqr:context_lengthN)rrr6rvrrpop)rrorrqr: prev_provider new_providers rE_apply_main_model_assignmentr%s=8 i & &  j117R88>>@@FFHHM>>##))++L$Ij Ii~~# ( 0 0 * z " "#|}'D'D!# * }}"&}} ) y ! !"lm&C&C! ) MM"D))) rGATEWAY_HEALTH_URLGATEWAY_HEALTH_TIMEOUT3u>Invalid GATEWAY_HEALTH_TIMEOUT value %r — using default 3.0sg@ctsdStd}|dr|dtd }n-|dr|dtd }|d|dfD]} tj|d}tj|t5}|j d kr8tj | }d |fcdddcS dddn #1swxYwY#t$rYwxYwdS) u>Probe the gateway via its HTTP health endpoint (cross-container). .. deprecated:: Driven by the deprecated ``GATEWAY_HEALTH_URL`` / ``GATEWAY_HEALTH_TIMEOUT`` env vars. Scheduled for removal alongside a move to a first-class dashboard config key. See :data:`_GATEWAY_HEALTH_URL` for context. Uses ``/health/detailed`` first (returns full state), falling back to the simpler ``/health`` endpoint. Returns ``(is_alive, body_dict)``. Accepts any of these as ``GATEWAY_HEALTH_URL``: - ``http://gateway:8642`` (base URL — recommended) - ``http://gateway:8642/health`` (explicit health path) - ``http://gateway:8642/health/detailed`` (explicit detailed path) This is a **blocking** call — run via ``run_in_executor`` from async code. )FNrxz/health/detailedNz/healthGET)methodtimeoutT)_GATEWAY_HEALTH_URLrstripendswithlenurllibrpr&urlopen_GATEWAY_HEALTH_TIMEOUTstatusjsonloadsreadr@)baserreqrespbodys rE_probe_gateway_healthrls& {  % %c * *D }}'(('.s-..../ y ! !'%s9~~o%&***t,<,<,<= .((e(< .hg.svn.next.venv.cache.turbodistvenvbuildrL __pycache__ node_modules.gitiiiz.ccz.confiniz.cppcpp.csscssz.csvcsvz.gogoz.graphqlgraphqlz.hz.hpp.htmlhtmlz.javajava.js javascript.jsonrz.jsxjsxz.ktkotlinz.lualuaz.mdmarkdownpythonrubyrustshellsqlxmltoml typescripttsxtextyaml).mjsz.pyz.rbz.rsz.shz.sqlrz.tomlz.tsz.tsxz.txtz.xmlz.yamlz.ymlz.zshz.avizvideo/x-msvideorr`rrrraz.mkvzvideo/x-matroskaz.movzvideo/quicktimerbz video/mp4rc.opuszaudio/ogg; codecs=opusrrrdrfrraw_pathct|pd}|stddd|vrtdd |drZt j|}|jr|jdvrtt j |j }t|}|stj|z }|d S#t$t&tf$rtddwxYw) NrrrzPath is requiredr Invalid pathzfile:>rrrFstrict)r6rr%rrrparseurlparsenetloc ValueErrorrp url2pathnamerr expanduser is_absolutecwdresolveOSError RuntimeError)rrawparsed candidates rE_fs_pathrsP hn"   # # % %C H4FGGGG s{{NCCCC D 99;; ! !' * * ;\**3//F} !6G!G!G  .--fk::CII((** $$&& / Y.I   ... \: .DDDNCCCCDs C!D//)Erc|j}|tvr t|Stjt |\}}|pdS)Napplication/octet-stream)suffixr_FS_MIME_TYPES mimetypes guess_typer6)rrguessedr#s rE _fs_mime_typer sQ [   F f%%%c$ii00JGQ  000rdatact|sdSd|vrdStd|D}|t|z dkS)NFTc3.K|]}|dk|dv dVdS)rg> rNr7).0bytes rE z#_fs_looks_binary..s4QQ44"99[9P9PQ9P9P9P9PQQrgQ?)sumr)r suspiciouss rE_fs_looks_binaryrsO u }}tQQ4QQQQQJ D !D ((rctt|} |}n#t$rt ddt $rt ddt $rt ddt$r%}t dt|pdd}~wwxYwtj|j rt ddtj |j st dd ||fS) NFile not foundrFile is not readablerrzPath points to a directoryzOnly regular files can be read) rr6statFileNotFoundErrorr%NotADirectoryErrorPermissionErrorrS_ISDIRst_modeS_ISREG)rrLstexcs rE_fs_regular_filersB c$ii F P [[]] FFF4DEEEE FFF4DEEEE LLL4JKKKK PPPCHH4NOOOOP |BJR4PQQQQ < # #V4TUUUU 2:s3AB0 B++B0rZc|}tdD]P} |dz rt|cSn#t$rYdSwxYw|j}||krdS|}QdS)N2r)rangeexistsr6rparent)rZ directoryr#r#s rE_fs_find_git_rootr%1sI 2YY   F"**,, &9~~%%% &   444 ! Y  44 4s%> A  A c tdpi}t|dp tjdpd}|ru|dvrq t |d}| rt|Sn#ttf$rYnwxYwtt j S)Nrr TERMINAL_CWDrr>rrr!Fr) rrvr6rUenvironrr rris_dirrrr) cfg_terminalrrs rE_fs_default_cwdr+@s==$$Z006BL lu%%M)G)GM2 N N T T V VC s... S ,,..66e6DDI!! &9~~% &&    D  txzz??sACC-,C-rc tjdd|ddgdddd}|jd kr|jnd S#t $rYd SwxYw) Ngit-Cbranchz--show-currentTF)capture_outputrrcheckrrr) subprocessrun returncodestdoutrr@)rresults rE_fs_git_branchr8Ms  D#x)9 :    )/(9Q(>(>v}""$$$BF rrsAA AAct}|dz |dz |dz g}g}|D]A} ||+#ttf$rY>wxYw|S)uDirectories ``GET /api/media`` is allowed to read from. Confined to where the agent and attach pipeline actually write media on the gateway host — its images dir and cache subtree. This stops an authenticated client from reading image-extension files anywhere on disk (e.g. a renamed key or a screenshot outside the cache) merely because the suffix passes the allowlist. images screenshotscache)rappendrrr)homerootsoutroots rE_media_serve_rootsrB[s   D H_d]2D7N CEC  JJt||~~ & & & &&    H  Js'A  A A z /api/mediacK t|n&#ttf$rt ddwxYwjtvrt ddt}tfd|Dst dd st d d  j tkrt d d tjd }ddtjd|iS)uReturn a gateway-local image file as a base64 data URL. Lets remote clients (the desktop app over the network, or the web dashboard in a browser) display images the agent wrote to *this* machine's filesystem — they can't read the gateway's local disk directly. Auth-gated by the session token like every other /api route. Restricted to an image-extension allowlist, a size cap, AND the gateway's own media roots (resolved, symlink-safe) so it can't be used to read arbitrary files. rrrizUnsupported media typec36K|]}|kp|jvVdSNparents)r rArLs rEr zget_media..s3JJDv~7!7JJJJJJrrzPath outside media rootsrrFile too largeasciirOdata:;base64,)r rrrrr%rr_MEDIA_CONTENT_TYPESrBanyis_filerst_size_MEDIA_MAX_BYTESbase64 b64encode read_bytesdecode)rr?encodedrLs @rE get_mediarWosDd&&((0022 \ "DDDNCCCCD}$8884LMMMM  E JJJJEJJJ J JP4NOOOO >>  F4DEEEE {{}}///4DEEEEv002233::7CCG ^ 4V]5H5H5J5J K^^U\^^ __s 39#Arequire_existsrYc ||S#t$r|rtddtt f$rtddwxYw)NrrPath not foundrrr)rrrr%rr)rrYs rE_canonical_pathr\sD  (((???   JC8HIII I \ "DDDNCCCCDs '*AA*cFt|} |dd|}n-#tt f$r}t dd|d}~wwxYw|st dd|S)NTrGexist_okz#Managed files root is unavailable: rz%Managed files root is not a directory)r rmkdirrrrr%r))rrAresolvedrs rE_ensure_managed_rootrcs >> $ $ & &Da 4$ ///<<>> \ "aaa4_Z]4_4_````a ??  ]4[\\\\ Os+AA9 A44A9rArLc ||kp||jvSrErF)rArLs rE_path_is_underres T> 3TV^33rcvt|pd}d|vrtdd|S)Nrrrrrr)r6rr%)rrs rE _path_textrgs@ x~2   $ $ & &D ~~NCCCC Krct|jjddrdS|jjpd}|jr |jjnd}hd}||vp||vS)NrFrr>rrr testclient testserverrr)rrGrPrhostnamerclientr)rpr client_host local_hostss rE_local_dashboard_requestros}w{ /599u K &B - - / /D*1.@7>&&bGGIIKSSSK ;  <+"<)rprvraw_forced_rootrAr>s rE_managed_files_policyrzsjnn%???Tn!tW\]]]] 49;; ' 'D 4TSW X X XXr for_writer|ct|}t|}|j}| |r|dvr|}n|s|j}nt |}|I|s5td|jDrtdd||z }n%|stddd|jvrtdd|r3| st|j }||j z }nt|| }|!t||std d ||t|fS) N>r!rxc3"K|] }|dkV dS)..Nr7)r parts rEr z(_resolve_managed_path..s&< >4UVVVV 8S]] **rrcR|jt|jnd}|||jdS)N)rArr)rr6r)rrs rE_managed_response_metars;-3-?-K#f()))QUK"!1  rc< |}n&#ttf$rtddwxYw|j&t |j|stdd |}n&#t$r}tdd|d}~wwxYw|}|rdn tj |j dpd }|j p|j pt|t|||rdn|j |j |d S) Nrrrrrr`zCould not stat path: rr)rOr is_directorysizemtimerP)rrrr%rrerr)rrrOr6rPst_mtime)rrLrbrrr)rPs rE_managed_file_entryrsSD>>## \ "DDDNCCCCD %nV=OQY.Z.Z%4UVVVVS ]]__ SSS4QC4Q4QRRRRS__  FjY%9(-%H%H%K%iOiI =x}=H H .BJ   s #:+B B# BB#rOc |pd}|drd|vrtdd|dd\}}|ddd dd pd }d |vrtdd  t j|d}n+#t jtf$rtddwxYwt|tkrtdd||fS)NrrrK,rz!Upload payload must be a data URLrrririrr;base64z%Upload payload must be base64 encodedTvalidatez"Upload payload is not valid base64rHFile is too large) rrr%r&rR b64decodebinasciiErrorrr_MANAGED_FILE_MAX_BYTES)rOrheaderrVrPrs rE_decode_data_urlrs- N ! ! # #D ??7 # #Ys$4WXXXXjja((OFGqrr   a((+I/II4[\\\\Z$777 NJ 'ZZZ4XYYYYZ 4yy***4GHHHH ?s B--(Cz /api/filesc@Kt||\}}|stdd|stdd fd|D}n@#t $rtddt $r}td d |d}~wwxYw|d j}d}|j |kr|||krt|j }|||d tS)Nrr[rrzPath is not a directoryc0g|]}t|Sr7)r)r childrs rE z&list_managed_files..8s$TTT%&vu55TTTrrzDirectory is not readabler`zCould not read directory: cb|d t|dfS)NrrO)r6ritems rEz$list_managed_files..>s+tN';#;Sf=N=N=T=T=V=V"Wrr+)rr#entries) rr"r%r)iterdirrrsortrr#r6r) rprrL display_pathrrrr#rs @rElist_managed_filesr/sw#8w#G#G FFL ==??F4DEEEE ==??O4MNNNNXTTTT6>>CSCSTTT QQQ4OPPPP XXX4VQT4V4VWWWWX LLWWLXXX$K F }K$76[;P;PV]##   ! ( (  s# B$C(B<<Cz/api/files/readcKt||\}}}|stdd|stdd |j}n&#t $r}tdd|d}~wwxYw|tkrtdd tj |j d pd } tj | d }n@#t$rtd dt $r}tdd|d}~wwxYw|j |||d|d|dt!|S)NrrrrzPath is not a filer`zCould not stat file: rHrrrrJrrzCould not read file: rKrL)rOrrrPrO)rr"r%rOrrPrrrrrOrRrSrTrUrr) rprrrLrrrrPrVs rEread_managed_filerKs#8w#G#G FFL ==??F4DEEEE >>  J4HIIIIS{{}}$ SSS4QC4Q4QRRRRS %%%4GHHHH$V[11!4R8RIS"6#4#4#6#677>>wGG LLL4JKKKK SSS4QC4Q4QRRRRS 8I88w88    ! ( (  s0"A<< BBB 9D$E>EEz/api/files/uploadpayloadc`Kt|j|d\}}}|r%|rt dd|r|jst ddt |j\}} |j dd| |n@#t$rt dd t$r}t d d |d}~wwxYwdt|||d t|S) NTr{z'A directory already exists at that pathrzFile already existsr^rzFile is not writabler`zCould not write file: okr-r)rrr"r)r%rSrrOr#ra write_bytesrrrr)rrprrLrr _mime_typers rEupload_managed_filerlst#8wZ^#_#_#_ FFL }}_6==??_4]^^^^ }}Kw0K4IJJJJ'(899D*T D48884    LLL4JKKKK TTT4RS4R4RSSSST$VV44   ! ( (  s1C $D 1DD z/api/files/mkdircKt|j|d\}}}|r%|st dd |ddn@#t $rt ddt$r}t d d |d}~wwxYwdt|||d t|S) NTr{rz"A file already exists at that pathrr^rzDirectory is not writabler`zCould not create directory: r) rrr"r)r%rarrrr)rrprrLrrs rEcreate_managed_directoryrs#8wZ^#_#_#_ FFL }}Zv}}Z4XYYYYZ TD 1111 QQQ4OPPPP ZZZ4XSV4X4XYYYYZ$VV44   ! ( (  sA00$B-B((B-chKt|j|\}}}|j||jkrtdd|j|krtdd|stdd |r1|jrtj |n)| n| nE#t$r8}|r |jsdnd}t|d |d}~wwxYwd |d t|S) Nrz$Cannot delete the managed files rootrz!Cannot delete the filesystem rootrr[rr`zCould not delete path: Trr)rrrr%r#r"r)rZshutilrmtreermdirunlinkrr)rrprrLrrrs rEdelete_managed_filers[#8w#O#O FFL %&F4F*F*F4Z[[[[ }4WXXXX ==??F4DEEEE ] ==??    f%%%%  MMOOO ]]]#]]__OW5FOccC  <[VY<[<[\\\\] O O0Fv0N0N OOsAC D%3DDz /api/fs/listc *Kt|} g}tj|5}|D]X}|jtvr||jt ||jz |ddY dddn #1swxYwY|dd|iS#t$rgddcYSt$rgd dcYSt$rgd dcYSt$r }gt|d dpd dcYd}~Sd}~wwxYw) NF)follow_symlinks)rOr isDirectorycV|d |d|dfS)NrrOrrs rErzfs_list..s,4 +>'>V @R@R@T@TVZ[aVb&crrrENOENT)rerrorENOTDIREACCESstrerrorz read-error)rrUscandirrO_FS_READDIR_HIDDENr=r6r)rrrrrr)rrLrscanr-rs rEfs_listrs d^^FX Z   4  :!333!J 344#(<<<#F#F                    cc ddd7## 22211111 333 22222 22211111 XXXZ(F(F(V,WWWWWWWWXsSB8AB B8BB8BB88D DD) D2D D Dz/api/fs/read-textc Ktt|\}}|jtkrt ddt |jt } |d5}||}dddn #1swxYwYnL#t$rt ddt$r%}t dt|pdd}~wwxYwt|dd |jt|jd t#|t||d d |jt kdS)NrHrIrrbrrrFile read failedirutf-8r)errors)binarybyteSizelanguagemimeTyperr truncated)rrrP_FS_TEXT_SOURCE_MAX_BYTESr%min_FS_TEXT_PREVIEW_MAX_BYTESopenrrrr6r_FS_PREVIEW_LANGUAGE_BY_EXTrvrrrrU)rrLr bytes_to_readhandlerrs rE fs_read_textrs!(4..11JFB z---4DEEEE $>??MT [[   .&;;}--D . . . . . . . . . . . . . . . LLL4JKKKK TTTCHH4R@RSSSST#4;//J/33FM4G4G4I4I6RR!&))F  GI 66Z"<<  s<B!3B B!BB!BB!!$C* C%%C*z/api/fs/read-data-urlcKtt|\}}|jtkrt dd t j|d}nL#t$rt ddt$r%}t dt|pdd}~wwxYwd d t|d |iS) NrHrIrrJrrrrdataUrlrKrL) rrrP_FS_DATA_URL_MAX_BYTESr%rRrSrTrUrrr6r)rrLrrVrs rEfs_read_data_urlrs!(4..11JFB z***4DEEEET"6#4#4#6#677>>wGG LLL4JKKKK TTTCHH4R@RSSSST G}V44GGgGG HHs9A>>$C" CCz/api/fs/git-rootcKt|} |}tj|jr|n|j}n#t $r|}YnwxYwdt |iS)NrA)rrrrr#rr%)rrLrrZs rE fs_git_rootrsy d^^F [[]],rz22E   %e,, --s6A AAz/api/fs/default-cwdcFKt}|t|dS)N)rr/)r+r8)rs rEfs_default_cwdrs'   C."5"5 6 66rz /api/statuscKt\}}t}|du}d}|sYtrRtj}|dt d{V\}}|rd}|r|d}d}i}d} d} d ddlm } | } d| Dn#t$rdYnwxYwt} | |r|dr|} | r| d}| dpi} fd| D}| d } | d } |s |d vr|nd }i}n |r||d vrd}|r||d}d} ddlm}|} |d}t#jt%fd|D}|n#|wxYwn#t$rYnwxYwt)t+t,jdd}g} ddlm}d|D}n#t$rYnwxYwidt4dt6dt9t;dt9t=dt9t?d|d|d|d|d td|d!|d"| d#| d$|d|d%|S)&NTpidr)load_gateway_configch|] }|j Sr7r)r platforms rE zget_status..$s'( ( ( 'HN( ( ( r gateway_state platformsc$i|] \}}|v || Sr7r7)r r+rconfigured_gateway_platformss rE zget_status..4s5!!!C666U666r exit_reason updated_at>stoppedstartup_failedr>Nrrunning SessionDBr limitc 3K|]L}|d5|d|ddz dkHdVMdS)ended_atN last_active started_atr,rrv)r snows rEr zget_status..Qsm""55$$,155lA0F0FGGG3NNNNNN""rrFlist_providerscg|] }|j Sr7rOr ps rErzget_status..cs<<*> '+ + % % % % % % !!  <"O! <044U;; M 48 ,666666,,..( ( +9+Q+Q+S+S( ( ( $$ ,,,'+$$$, "##G-2D2H2H2Y2Y$* O44 #KK 44: ' 3!!!!"3"9"9";";!!!  &kk-88$[[66 *-:>[-[-[MMajM "    *!3!? 111 ) "=05G5S! O ****** Y[[ ,,2,66H)++C!""""#"""O HHJJJJBHHJJJJJ      OUCCDDM "N OOOOOO<>  *?!?!?V# N G"   rz/api/system/statscKddl}it||||||||ttj d} ddl }| }|j|j|j|jd|d< |t't)}|j|j|j|jd|d<n#t,$rYnwxYw |d |d <t1|d d}|rt3||d <n#t,$rYnwxYw |}t7t9j|z |d<n#t,$rYnwxYw |}|j|j t7|!|"d|d<n#t,$rYnwxYwd|d<nQ#t,$rDd|d< t3tj#|d <n#tHtJf$rYnwxYwYnwxYw|S)a!Host + process system stats for the System page. OS / Python / host identity from stdlib; CPU / memory / disk / uptime from psutil when available, with graceful degradation when it isn't. Read-only and non-sensitive (no env values, no paths beyond the hermes home root). rN)r-r.rdr&)archrkpython_version python_implhermes_version cpu_count)total availableusedpercentr )r?rAfreerBdisk皙?)r6 cpu_percent getloadavgload_avguptime_seconds)rrss create_time num_threadsprocessTpsutilF)&rr8r-r.rdmachinenoder;python_implementationrrUr>rNvirtual_memoryr?r@rArB disk_usager6rrCr@rFrr boot_timerrProcessr memory_inforJrKrLrGrr`) _platformr>rNvmdulabootprocs rEget_system_statsr]s?!     "##%%%%''%%''$--//     !!##NN$$#2244 6688%\^^   D 2  " " $ $XGz   X ""3'8'8#9#9::B: DLL     D  "("4"4c"4"B"BD t44B .#'::Z     D  ##%%D%(t);%<%>##Dx''))-"4#3#3#5#566#//11 DOO     D X X #BMOO44D  (    D   Ks 6JA EJ EJEJ!AF('J( F52J4F55J9:G43J4 H>JHJA+I10J1 I>;J=I>>JK#J;:K;K KKKKz /api/curatorc K ddlm}n&#t$r}tdd|d}~wwxYw |}n#t$ri}YnwxYwt |ddt |dd t |d d|d t |d dt |d dt |dddS)Nrcuratorr`zCurator unavailable: r is_enabledT is_pausedFget_interval_hours last_run_atget_min_idle_hoursget_stale_after_daysget_archive_after_days)rCpausedinterval_hoursrdmin_idle_hoursstale_after_daysarchive_after_days)rr`r@r% load_state _safe_callrv)r`rrPs rEget_curator_statusrosS!!!!!!! SSS4QC4Q4QRRRRS""$$ g|T::Wk599$W.BDIIyy//$W.BDII&w0FMM(2JDQQ  s! .).A AAceZdZUeed<dS) CuratorPauserhNr2r3r4rr5r7rrErqrq LLLLLrrqz/api/curator/pausedrcKddlm}|t|jdt|jdS)Nrr_T)rrh)rr` set_pausedrrh)rr`s rEset_curator_pausedrvsN tDK(()))$t{"3"3 4 44rz/api/curator/runcK tddgd}n&#t$r}tdd|d}~wwxYwd|jdd S) zDTrigger a curator review now (backgrounded; tail via action status).r`r4 curator-runr`zFailed to run curator: rNTrrrO_spawn_hermes_actionr@r%rr\rs rE run_curatorr}#ssU#Y$6 FF UUU4Sc4S4STTTTUtx ? ?? :5:fn_namec t||d}t|r |n|S#t$r|cYSwxYwrE)rcallabler@)modrrfns rErnrn-sW S'4 ( (||0rrttt0 s +. ==z /api/portalcKtpi}i} ddlm}|pi}n#t$ri}YnwxYwg} ddlm}||}||D]}}t|ddrd}n@t|ddrt|ddr|j}nt|ddrd}nd }| t|d d |d ~n*#t$rt d YnwxYwt| dtr| dni}t| d| d| dt!|pi dpd d|dS)Nr)get_nous_auth_status)get_nous_subscription_featuresmanaged_by_nousFzvia Nous Portalactivecurrent_providerznot configuredlabelrr)rrPzportal features failedr logged_inportal_base_urlinference_base_urlroz3https://portal.nousresearch.com/manage-subscription)r portal_url inference_urlrosubscription_urlfeatures)rhermes_cli.authrr@hermes_cli.nous_subscriptionrr%rrr=r= exceptionrrvrrr6) cfgr}rrrfeatsfeatrPrs rEget_portal_statusr:s$ -- 2CD888888##%%+ H1OOOOOO..s33   W W4!2E::--EET8U33-FXZ^8_8_- 1EET8U33-$EE,E'$*D*Du U UVVVV 111 /000001%/swww/?/?$F$FN   BI$((;//00hh011"677b--j99?R@@Q   s) 88B%C$$$D  D z/api/ops/prompt-sizecK tdgd}n&#t$r}tdd|d}~wwxYwd|jddS)N prompt-sizer`Failed: rTryrzr|s rErun_prompt_sizerjspF#]O]CC FFF4Ds4D4DEEEEFtx ? ?? 949z /api/ops/dumpcK tdgd}n&#t$r}tdd|d}~wwxYwd|jddS)Ndumpr`rrTryrzr|s rErun_dumprsspF#VHf55 FFF4Ds4D4DEEEEFtx 8 88rz/api/ops/config-migratecK tddgd}n&#t$r}tdd|d}~wwxYwd|jddS) Nrmigrateconfig-migrater`rrTryrzr|s rErun_config_migrater|suF#Xy$9;KLL FFF4Ds4D4DEEEEFtx1A B BBr~c,eZdZUdZeed<dZeed<dS)DebugShareRequestTredactrlinesN)r2r3r4rrr5rrr7rrErrs4FDE3rrz/api/ops/debug-sharec Kddlm}|p t} tj|t dt t|jdt|j d{V}na#t$r}tdd| d}~wt$r3}td td d | d}~wwxYwd |j|j|j|jdS)aUpload a redacted debug report + full logs and return the paste URLs. Unlike the other diagnostics actions (doctor, dump, prompt-size) this is *synchronous*: the whole point of ``debug share`` is the set of shareable URLs it produces, so we run the upload in a worker thread and return the structured ``{urls, failures, redacted, ...}`` payload directly. The dashboard renders those as real, copyable links instead of scraping a log tail. Pastes auto-delete after 6 hours (handled inside the share core). r)build_debug_shareri) log_linesrNzUpload failed: rzdebug share failedr`rT)rurlsfailuresredactedauto_delete_seconds)hermes_cli.debugrrrR to_threadmaxrrrrrrr%r@r=rrrrr)rrrr7rs rErun_debug_share_endpointrsI322222  %#%%C F( !SSY6677 ##          MMM4Kc4K4KLLLL FFF +,,,4Ds4D4DEEEEF  OO%9   s$AA88 CB C#.CClogs_ACTION_LOG_DIRgateway-restartzgateway-restart.log gateway-startzgateway-start.log gateway-stopzgateway-stop.log hermes-updatezhermes-update.logdoctorzaction-doctor.logsecurity-auditzaction-security-audit.logbackupzaction-backup.logimportzaction-import.logcheckpoints-prunezaction-checkpoints-prune.logskills-installzaction-skills-install.logskills-uninstallzaction-skills-uninstall.log skills-updatezaction-skills-update.logrxzaction-curator-run.logrzaction-prompt-size.logrzaction-dump.logrzaction-config-migrate.logtools-post-setupzaction-tools-post-setup.log_ACTION_LOG_FILES _ACTION_PROCS_ACTION_RESULTSrrOmessage exit_codec 8t|}tddt|z }t|dd5}|d|dt jdd ||d d |d s|ddddn #1swxYwYt |d|ddt|<dS)zBRecord a non-spawned action result and write it to the action log.Tr^abr buffering === z completed %Y-%m-%d %H:%M:%S === rr)r  Nrr) rrrarwriterstrftimerzrrrr)rOrr log_file_namelog_pathlog_files rE_record_completed_actionrsU%d+M$666.H h * * *"h PT P Pdm4G&H&H P P P W W Y Y    w~~gi~@@AAA%% " NN5 ! ! ! """""""""""""""dD!!!*3DAAODsBC''C+.C+ subcommandct|}tddt|z }t|dd}|d|dt jdd tj d d g|}tttj |tjitjd d id}tjdkr'tjt'tddz|d<nd|d<tj|fi|}|t,|d|t0|<|S)zSpawn ``hermes `` detached and record the Popen handle. Uses the running interpreter's ``hermes_cli.main`` module so the action inherits the same venv/PYTHONPATH the web server is using. Tr^rrrrz started rrz-mzhermes_cli.mainHERMES_NONINTERACTIVErJ)rstdinr6stderrrDwin32DETACHED_PROCESS creationflagsstart_new_sessionN)rrrarrrrrzsys executabler6 PROJECT_ROOTr3DEVNULLSTDOUTrUr(rCREATE_NEW_PROCESS_GROUPrPopenrrrr)rrOrrrcmd popen_kwargsr\s rEr{r{sn &d+M$666.HHda000H NNJJJ .A B BJJJQQSS >4!2 @Z @C<  ##;"*;5s;; $$L |w  /j"4a88 9 _%% -1 ()  C 0 0< 0 0D NNd###M$ Krnc|sgS |dd}n#t$rgcYSwxYw|}|dkr || dn|S)uReturn the last ``n`` lines of ``path``. Reads the whole file — fine for our small per-action logs. Binary-decoded with ``errors='replace'`` so log corruption doesn't 500 the endpoint.rr))encodingrrN)r" read_textr splitlines)rrrrs rE _tail_linesrs ;;== ~~wy~AA   OO  EQ5!::E)s 0 ??ctd}|||dfStddgddfS)aSpawn ``hermes gateway restart``, reusing an in-flight restart. Multiple dashboard paths can request a restart in quick succession (restart button double-click, or a stale cached frontend firing its own restart after the server already auto-restarted post-onboarding). Two concurrent ``hermes gateway restart`` children race each other on the manual kill-and-start path, so reuse the live one instead. Returns ``(proc, reused)``. rNTgatewayrestartF)rrvpollr{)existings rE_spawn_gateway_restartr#sP  !233H  7~ I 68I J JE QQrc t\}}nC#t$r6}tddt |dcYd}~Sd}~wwxYw|r td|jdd|jdS) z@Best-effort gateway restart after enabling the webhook platform.z6Failed to auto-restart gateway after enabling webhooksFrestart_started restart_errorNz:Webhook enable: reusing in-flight gateway restart (pid %s)Trrrestart_action restart_pidrr@r=rr6r>rr\reusedrs rE%_restart_gateway_after_webhook_enabler4s -// ff     OPPP$ XX           H H    +x   A+A AAz/api/gateway/restartcK t\}}n@#t$r3}tdt dd|d}~wwxYwd|jddS) z8Kick off a ``hermes gateway restart`` in the background.zFailed to spawn gateway restartr`zFailed to restart gateway: rNTrry)rr@r=rr%r)r\_reusedrs rErestart_gatewayrJsY.00 gg YYY 89994WRU4W4WXXXXYx!   A.AAz/api/hermes/updatecbKtt}|dkr6t}td|ddddd|t |dS t d gd}n@#t $r3}td td d | d}~wwxYwd|j ddS)z-Kick off ``hermes update`` in the background.rrr)rFNdocker_update_unsupported)rrrOrrupdate_commandr'zFailed to spawn hermes updater`zFailed to start update: rTry) rrrrrr{r@r=rr%r)install_methodrr\rs rE update_hermesr Ys+<88N!!.00 'QGGGG#0CNSS    V#XJ@@ VVV 67774Ts4T4TUUUUVx  sA&& B#0.BB#c  tjddttddddt |gddd }|jd krgSg}|jD]q}|s| d gd zd d}|\}}}}| |d d||t |pd dr|S#t$rgcYSwxYw)u[Commits the local checkout is behind ``origin/main`` by, newest first. Logs the SAME range the behind-count uses (``HEAD..origin/main`` — see ``banner._check_via_local_git``), NOT the branch's ``@{upstream}``. On a feature-branch checkout ``@{upstream}`` is the branch's own tip (zero commits), which would leave the changelog empty even though the count is non-zero. Pinning to ``origin/main`` keeps count and changelog consistent. Best-effort: returns [] if not a git checkout, origin/main is unreachable, or git is unavailable. Never raises into the request path. r-r.logz--format=%H%x1f%s%x1f%an%x1f%ctzHEAD..origin/mainz-nTri)r1rrr)rrrrrr0N)shasummaryauthorat) r3r4r6rrr5r6rrr&r=r@) rr@rowslinerrrrrs rE_recent_upstream_commitsrusA!nL!!1#SVV        >Q  I%'J))++  D::<< ZZ''*;*;*;;RaR@E', $C&" KKrr7&$bgA,,       sA CBC C.-C.z/api/hermes/update/checkforcec6Ktt}t|}|tdd|dv|dd}|dkrt |d<|S ddlm}|r5 td z n#t$rYnwxYwtj |d{V}n,#t$rtd d}YnwxYw||d <|d |d<n7|dkrd |d<n+d|d<|dvr"tj td{V|d<|S)u}Report whether a Hermes update is available, without applying it. Powers the dashboard's "check before you update" flow: the System page shows the commit-behind count and asks the user to confirm before ``POST /api/hermes/update`` actually runs ``hermes update``. Returns: install_method: 'git' | 'pip' | 'docker' | 'nixos' | 'homebrew' | ... current_version: installed Hermes version string behind: commits behind upstream (>=1), 0 if up to date, -1 if behind by an unknown count (nix/pypi), or null if the check could not run (offline, no remote, etc.) update_available: convenience bool (behind is non-zero and not null) can_apply: True when the dashboard's update button can apply it in place (git/pip); False for docker/nix/homebrew where the user must update out-of-band update_command: the recommended command for this install method message: human-readable guidance for non-applyable methods commits: for git/pip installs that are behind, a list of the commits the local checkout is behind upstream by — each {sha, summary, author, at}. Absent/empty otherwise. The desktop's remote update overlay renders this as "what's changed". Additive: existing consumers ignore it. NF)r-pip)r current_versionbehindupdate_available can_applyr rrrr)check_for_updatesz .update_checkzUpdate check failedru5Couldn't reach the update source — try again later.zYou're on the latest version.Trcommits)rrrrrhermes_cli.bannerr!rrrrRrr@r=rr)rr r rr!rs rEcheck_hermes_updater$s4+<88N:>JJN)&!#~5(G!!9;;  777777    ""_4<<>>>>    ():;;;;;;;;  ,---GH ~T  1< &*"# ^ + +'.'89Q'R'R!R!R!R!R!R!RGI  Ns6B)#A>=B)> B B) B  B))&CCz/api/audio/transcribecK|jpd}|drd|vrtdd|dd\}}d|vrtdd |jp%|d dd dd pd }|d dd }|ds|dkstdd tj|d}n+#tj tf$rtddwxYw|stddt|tkrtddd} t|}tjd|d5} | || j}dddn #1swxYwYd dlm} t+j} | d| |d{V} nJ#t$rt0$r3} t2dtdd| d} ~ wwxYw |r& t7j|n>#t:$rYn2wxYwn-#|r& t7j|w#t:$rYwwxYwwxYw| ds&td| dpd dt?| d!pd| d"d#S)$NrrrKrrzInvalid audio payloadrrrz$Audio payload must be base64 encodedririrrezaudio/rfz"Payload must be an audio recordingTrz!Audio payload is not valid base64zAudio recording is emptyrHzAudio recording is too largezhermes-desktop-voice-F)rrdelete)transcribe_audioz"Desktop voice transcription failedr`zTranscription failed: successrzTranscription failed transcriptro)rr)ro) rOrrr%r&rPrrRrrrrr_MAX_TRANSCRIPTION_UPLOAD_BYTESrktempfileNamedTemporaryFilerrOtools.transcription_toolsr'rRrrr@r=rrUrrrvr6)rrOrrVrPnormalized_mime_type audio_bytes temp_pathrtmpr'rr7rs rEtranscribe_audio_uploadr2sR &B--//H   w ' 'M3h+>+>4KLLLLnnS!,,OFG$J    HVABBZ--c155a8HL egg%??32215;;==''11 < / /$H    Y&w>>> NJ 'YYY4WXXXXY P4NOOOO ;9994RSSSSI*955  (*    ! IIk " " "I  ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ?>>>>>'))++D2BINNNNNNNN  TTT ;<<<4RS4R4RSSSST     )$$$$     9   )$$$$      ::i  ::g&&@*@    &**\228b99??AAJJz**  sD''(E&H"7G  H" G$$H"'G$(9H"!J"I)6.I$$I))J0J JJKJ/.K/ J<9K;J<<KceZdZUeed<dS)TTSSpeakRequestrNrVr7rrEr4r4; rWrr4r ct|dp|dpd}t|dpd}|r|d|dn|S)NrOvoice_idVoicerrrz ())r6rvr)r rOrs rE_elevenlabs_voice_labelr9? s uyy  DEIIj$9$9DW E E K K M MD599Z((.B//5577H%- 7d ! !h ! ! ! !47rz/api/audio/elevenlabs/voicesc Ktdp tjdpd}|sdgdSt jdd|d tj }d tttfffd }| d |d {V}n>#t$r1}td |t#d dd }~wwxYwg}|dpgD]}t%|t&st|dpd}|sQ||t|dp|t+|d|dd|dS)zReturn ElevenLabs voices when an API key is configured. The desktop UI uses this for the ``tts.elevenlabs.voice_id`` dropdown. Only non-secret voice metadata is returned; the API key stays server-side. ELEVENLABS_API_KEYrrF)r@voicesz#https://api.elevenlabs.io/v1/voicesapplication/json)Acceptz xi-api-keyrur7ctjd5}tj|dcdddS#1swxYwYdS)Nrrr)rrprrrrrU)responserps rE_fetchz%get_elevenlabs_voices.._fetch\ s'''<< Cz(--//"8"8"A"ABB C C C C C C C C C C C C C C C C C Cs9A))A-0A-Nz ElevenLabs voice list failed: %srz Could not load ElevenLabs voicesrr<r6rO)r6rOrcnt|dpdS)Nrrr)r6rvrrs rErz'get_elevenlabs_voices..t s+TXXg%6%6%<"!=!=!C!C!E!ErrT)rrvrUr(rrrpr&rRrr r6r rr@r=warningr%rrr=r9r) r:rrBrrr<r r6rps @rEget_elevenlabs_voicesrEF s1zz~~233arz~~FZ7[7[a_ahhjjG 2"b111n$$-(!  %G X')) CS#X C C C C C C,,T6:::::::: XXX 7===4VWWWWXFX&&,"   %&&  uyy,,23399;;     &))5X66,U33       KKEEKFFF 0 00sAC D,D  Dz/api/audio/speakcK|jpd}|stdd ddlm}t j}|d||d{V}n@#t$r3}t dtd d |d}~wwxYw t|trtj|n|}n#t$rtd d wxYw|d s&td|d pd|d}|rt j|std dt j|d}dddddd|d} t+|d5} | } dddn #1swxYwYn&#t.$r}td d|d}~wwxYw t!j|n:#t.$rYn.wxYw# t!j|w#t.$rYwwxYwxYwt3j| d} dd| d| | |ddS)aDSynthesize speech and return audio as base64 data URL. Used by the desktop voice-conversation mode to play back assistant responses without exposing the on-disk file path. Reuses the existing TTS provider chain (Edge / OpenAI / ElevenLabs / etc.) configured in ``~/.hermes/config.yaml`` under ``tts.``. rrrzText is requiredrr)text_to_speech_toolNzDesktop voice TTS failedr`zSpeech synthesis failed: zInvalid TTS responser(rzSpeech synthesis failed file_pathzAudio file missingrrbrcrdr`)r\r]rr^r[rzCould not read audio: rJTrKrLro)rrOrPro)rrr%tools.tts_toolrGrRrrr@r=rrr6rrrvrUrisfilesplitextrrrrrrRrSrU) rrrGr result_jsonrr7rHextrPfhr/rVs rE speak_textrOx s L B % % ' 'D H4FGGGGW666666')) 007JDQQQQQQQQ WWW 12224UPS4U4UVVVVWL,6{C,H,HYK(((k LLL4JKKKKL ::i  ::g&&C*C     ;''I JBGNN955J4HIIII '  9 % %a ( . . 0 0C   c#|   )T " " $b''))K $ $ $ $ $ $ $ $ $ $ $ $ $ $ $ TTT4RS4R4RSSSST  Ii     D   Ii     D {++227;;G8I88w88JJz**   s6A)) B&3.B!!B&*+CC2 HG<0 H<HHHHI H+H&&H++I/I III;I+*I;+ I85I;7I88I;z/api/actions/{name}/statusrrc Kt|}|tdd|t|z }t |t t |dd}t|}|Ot|}d}|r|dnd}|r|d nd} nq| }|du}|j } |P | d n#t$rYnwxYw|| d t|<t |d|||| |d S) zCTail an action log and report whether the process is still running.NrzUnknown action: rrFrrrr)rOrrrr)rrvr%rrrrrrrrrBr@r) rOrrrtailr\r7rrrs rEget_action_statusrS sx&))$//M4Mt4M4MNNNN.H xS]]D!9!9 : :D   T " "D | $$T**/5?FJJ{+++4 #)3fjjtIIKK t#h    ! $$$$    2;C$H$HOD !   dD ) ) )   s6D DDz /api/sessionsexcludecreatedroffset min_messagesarchivedordersourceexclude_sourcesc jK|dvrtdd|dvrtdd ddlm}|} td|} |d k} |d k} d |pd d D} ||pd| pd||| | | |dk} ||pd| pd| | | d}tj}| D]r}|dduo0||d|ddz dk|d<t|d|d<s| |||d| S#| wxYw#t$r,t dtddwxYw)aList sessions. ``archived`` controls how soft-archived sessions are treated: ``exclude`` (default) hides them, ``only`` returns just the archived ones (used by the desktop "Archived sessions" settings panel), and ``include`` returns both. ``order`` controls pagination order: ``created`` (default, by original start time) or ``recent`` (by latest activity across the compression chain). ``recent`` keeps a long-running conversation on the first page after it auto-compresses into a fresh continuation id. rTonlyincluder/archived must be one of: exclude, only, includerrUrecent%order must be one of: created, recentrrr^r_c:g|]}||Sr7rr rs rErz get_sessions.. s%WWW!QWWYYWAWWWrrrrNrbrZr[rrVmin_message_countinclude_archived archived_onlyorder_by_last_activeTrZr[rhrirjexclude_childrenrrrr is_activerX)r#r?rrVzGET /api/sessions failedr`Internal server error)r%rrrr&r session_countrrvrrr@r=r)rrVrWrXrYrZr[rr"rhrjri exclude_listr#r?rrs rE get_sessionsrr sI,555D     ))):    +M****** Y[[%  #A| 4 4 $.M'94  XW(=2'D'DS'I'IWWWL,,~ , 4"3!1+%*h%6-  H$$~ , 4"3!1+!% %E)++C 8 8EE*%%-Squu]AEE,4J4JKKKsR+ !%QUU:%6%6 7 7* (55TZ[[ HHJJJJBHHJJJJ MMM 12224KLLLLMs#E<DE#E<#E99E<<6F2z/api/profiles/sessionsrballr1c  K|dvrtdd|dvrtddddlm}dd lm} g} |r0|d kr*t |\} } | | | fnz | } d | D} n,#t$rt d g} YnwxYw| s*| d | d ftd|}|dk}|dk}|pd}d|pd dD}tt||z|d}g}d}i}g}tj}| D]\} } t!| dz }|s- ||d}n<#t$r/}|| t%|dYd}~pd}~wwxYw |||pd|d||||dk}|||pd|||d}||z }||| <|D]}| |d<| d k|d<|dduo0||d|d dz d!k|d"<t-|d#|d#<||n<#t$r/}|| t%|dYd}~nd}~wwxYw|#|wxYw|dkrdnd | fd$d%||||z}||||||d&S)'uUnified, read-only session list aggregated across ALL profiles. Intentionally process-light: this opens each profile's ``state.db`` directly from disk — it does NOT spawn a dashboard backend per profile. Each returned session is tagged with its owning ``profile`` so the desktop renders one browsable list and only spins up a profile's backend when the user actually interacts (sends a message). A user with a single (default) profile gets the same rows as ``/api/sessions``, just tagged ``profile="default"``. r]rr`rrarcrrprofilesrsc*g|]}|j|jfSr7)rOr)r r>s rErz)get_profiles_sessions..O s!@@@$ 49-@@@rz0GET /api/profiles/sessions: list_profiles failedrr^r_Nc:g|]}||Sr7rerfs rErz)get_profiles_sessions..] s%OOO!QWWYYOAOOOrrrrr`state.dbT)db_path read_only)r1rrbrgrlr1is_default_profilerrrrrnrXc\|p|dpdS)Nrrr)rsort_keys rErz'get_profiles_sessions.. s'aeeHooI|1D1DIrr+reverse)r#r?profile_totalsrrVr)r%rr hermes_clirv_cron_profile_homer= list_profilesr@r=rget_profile_dirrr&rrr r"r6rrprvrrr)!rrVrWrXrYr1rZr[r profiles_modtargetsrOr>infosrhrjri source_filterrq per_profilemergedr?rrrrzr"rr profile_totalrwindowr~s! @rEget_profiles_sessionsr, s(5554effff )))4[\\\\&&&&&&333333&(G Q7e##'00 dd|$$$$  ..00E@@%@@@GG    NNM N N NGGG  Q NNI|'C'CI'N'NO P P PA|,,&M9,NdMOO 52<> ? ? ? HHHH ! (($ , 4!"3!1+%*h%6)  D,,$ , 4"3!1+!% -M ] "E#0N4  ! !#) *.)*;&'EE*%%-Squu]AEE,4J4JKKKsR+!%QUU:%6%6 7 7*  a     ! @ @ @ MMdSXX>> ? ? ? ? ? ? ? ? @ HHJJJJBHHJJJJ % 1 1}}|H KKIIIISWKXXX F6E>) *F(   s[/ B&B98B9 F## G-%GG C"KL K< %K72L7K<<LL+z/api/sessions/searchqc jK|r|sdgiS ddlm}| tdt t |pddidt dt ffd id t dt ffd id t d tddffd }|dD]}| d}| dpd}|pd|}|||d| d| d| ddddl }g} |j d|D]Z} | ds| dr| | B| | dz[d| } tdzd} | | } | D]}t#krny||d| d!d| d"| d| d| d#ddt%iS#wxYw#t*$r,t,d$t1d%d&'wxYw)(aSSearch sessions by ID plus full-text message content using FTS5. Direct session-id matches are surfaced first, then FTS message-content matches. Results are deduped by compression lineage, not by raw ``session_id``. Auto-compression rotates a conversation onto a fresh session id (and leaves the old segment's messages in the FTS index), so one logical chat can own many ``sessions`` rows that all match the same query. Branches also use ``parent_session_id``, but they are real alternate conversations; don't collapse branch-specific hits back into the parent. resultsrrrr d session_idr7c|s|S| vr |Sg}|}t}|}|r(||vr#||||| vr |}n |}n#t$rd}YnwxYw|s|}nt |t r|dnd}|s|}n |}n#t$rd}YnwxYw|s|}n_|d}|d} |ddko |duo | duo| |k} | s|}n |}|r||v#|D]} | | <|S)Nparent_session_idrr end_reasonr )r[addr= get_sessionr@rrrv)rchaincurvisitedrArr#parent_sessionparent_ended_atris_compression_edgerPr" root_caches rEcompression_rootz)search_sessions..compression_root s!&%%++%j11 %%!#!c00KK$$$LL%%%j(()#!NN3//$!!! !";Ea;N;NXQUU#6777TXF!".)+)?)?$...)-.)"&4&8&8&D&DO!"|!4!4J&**<88MI:+47:&d2:'/9 ( /" CG#!c00H",,D'+Jt$$ s$&A<< B  B C C*)C*root_idc|vr|S|} |}|r|}n#t$rYnwxYw||<|SrE)get_compression_tipr@)rtiprbr" tip_caches rE lineage_tipz$search_sessions..lineage_tip ssi''$W--!55g>>H'& D%( '" s + 88raw_sidrNc|sdS|}|vstkrdSt|}||d<||d<||<dS)Nr lineage_root)rr)rrrArr safe_limitseens rEadd_lineage_resultz+search_sessions..add_lineage_result stF''004<<3t99 #:#:Fw--(3 D(9(9 %*.'$T rTrriidpreviewrrz Session ID: rZrr)snippetrolerZrsession_startedz "[^"]*"|\S+"rkr$rir )queryrrrrzGET /api/sessions/search failedr`z Search failedr)rrrrrrr6rsearch_sessions_by_idrvr(findallrrr=joinsearch_messagesrrvaluesrr@r=rr%)rrrrrowsidrrr(termstoken prefix_query fetch_limitmatchesmrr"rrrrrs @@@@@@@rEsearch_sessionsr s AGGII2RE****** Y[[L QC $4$4c : :;;J "J/ S/ S/ / / / / / / b!I S S       "D %C %$ %4 % % % % % % % % %//VZ/[[  ggdmm779--3::<<!9%9C%9%9""#* $"%''("3"3!$!1!1+.77<+@+@      IIIE#NAGGII>> . .##C((.ENN3,?,?.LL''''LL----88E??Lj1nb11K((|;(OOG  t99 **E""lO#$55B#7#7 !f "#%%//!"w+,551B+C+C     tDKKMM223 HHJJJJBHHJJJJ EEE 8999ODDDDEs#K<JK#K<#K99K<<6L2cBt|}|d}t|tr`|dd}|d|dd|d<t|tr|nd|d<nd|d<|S)aNormalize config for the web UI. Hermes supports ``model`` as either a bare string (``"anthropic/claude-sonnet-4"``) or a dict (``{default: ..., provider: ..., base_url: ...}``). The schema is built from DEFAULT_CONFIG where ``model`` is a string, but user configs often have the dict form. Normalize to the string form so the frontend schema matches. Also surfaces ``model_context_length`` as a top-level field so the web UI can display and edit it. A value of 0 means "auto-detect". rrrrrOrrr)rrvrr)r model_valctx_lens rE_normalize_config_for_webrF s&\\F 7##I)T""+-- 0!44#-- 9==3L3LMMw4>w4L4L)SRS%&&)*%& Mrz /api/configcKt|5tt}dddn #1swxYwYd|DS)NcDi|]\}}|d||Sr#rr kvs rErzget_config..b s/ E E ETQ1<<3D3D EAq E E Er)_profile_scoperrr%)r1rs rE get_configr] s  ::*;==99::::::::::::::: F EV\\^^ E E EEs :>>z/api/config/defaultscKtSrE)rr7rrE get_defaultsre s rz/api/config/schemac$KttdS)N)fieldscategory_order) CONFIG_SCHEMA_CATEGORY_ORDERr7rrE get_schemarj s# G GGrrroauto_context_lengthconfig_context_lengtheffective_context_length capabilities_EMPTY_MODEL_INFOz/api/model/infoc t|5t}dddn #1swxYwY|dd}t|trl|d|dd}|dd}|dd}|d}n|rt |nd}d}d}d}|st t | S d d lm}||||d }n#t$rd }YnwxYwd } t|tr|d kr|} | d kr| n|} i} d d l m } | ||} | '| j | j| j| j| j| jd} n#t$rYnwxYw|||| | | dS#t&$rt$r1t(dt t cYSwxYw)a.Return resolved model metadata for the currently configured model. Calls the same context-length resolution chain the agent uses, so the frontend can display "Auto-detected: 200K" alongside the override field. Also returns model capabilities (vision, reasoning, tools) when available. NrrrrrOrorqr)ror)get_model_context_length)rrqrorget_model_capabilitiesrorsupports_toolssupports_visionsupports_reasoningcontext_windowmax_output_tokens model_familyrzGET /api/model/info failed)rrrvrrr6ragent.model_metadatarr@ragent.models_devrrrrrrrr%r=r)r1rr model_namerorq config_ctxrauto_ctxconfig_ctx_int effective_ctxcapsrmcs rEget_model_infory sG' G $ $  --C               GGGR((  i & & "y)--2K2KLLJ }}Z44H }}Z44H"'788JJ+4<Y"JHHJ >)H=== =  E E E E E E// !!&* HH    HHH  j# & & (:>>'N+91*<*<(   ? ? ? ? ? ?''LLLB~&(&7')'9*,*?&(&7)+)=$&O     D   #+%3(5       ''' 3444%&&&&&'svF*, F*0F*0C F*DF* D%"F*$D%%.F*>>IJ //77=2"YY'8"==C       %K%Kw &&" 7+H*Gw$+++' <<&L%Kw &&" 7%.5IaLL2E &T)__UU U H H H NNM N N N &$GG G G G H BRRRRRRRR&&':':'<'<LLL;;{B// c cC37762&&''--//477**0b$(3N6!99B]abbbbb8!2DAAA BBB BCCC 2DAAAAABsO;C7,%BC7 B!C7 B!!AC77*D$#D$(BG?G*G32G3z/api/model/auxiliaryc 8 t|5t}dddn #1swxYwY|di}t|tsi}g}t D]}t||tr||ini}||t|ddpdt|ddpdt|ddpdd|di}t|tr`t|ddpdt|d |d dpdd }nd|rt|ndd }||d S#t$rt$r,t d tddwxYw)uReturn current auxiliary task assignments. Shape: { "tasks": [ {"task": "vision", "provider": "auto", "model": "", "base_url": ""}, ... ], "main": {"provider": "openrouter", "model": "anthropic/claude-opus-4.7"}, } ``profile`` scopes the read — without it, the Models page would show the dashboard profile's auxiliary pins while /api/model/set wrote the selected profile's (read/write asymmetry). Nrrorrrrrq)rprorrqrrOr)tasksmainzGET /api/model/auxiliary failedr`zFailed to read auxiliary configr) rrrvrrrr=r6r%r@r=r)r1raux_cfgrslotslot_cfgrrs rEget_auxiliary_modelsr!S sp"W G $ $  --C               ''+r**'4(( G#  D0:7;;t;L;Ld0S0S[w{{4,,,Y[H LL Z @ @ JFKKX\\'266<"== Z < < BCC     GGGR(( i & & R j" = = CDDY]]9immFB6O6OPPVTVWWDD !#y-PS^^^bQQD---  WWW 89994UVVVVWs(G, G0G0F$GAHz/api/model/setcB Kjpd jpdjpdjpd jpdjpd dvrtdd rOj sH ddl m }tj |d {V}n#t$rd }YnwxYw|d d |jd S fd }tj |d {VS#t$rt$r,t dtddwxYw)u!Assign a model to the main slot or an auxiliary task slot. Writes to ``~/.hermes/config.yaml`` — applies to **new** sessions only. The currently running chat PTY (if any) is not affected; use the ``/model`` slash command inside a chat to hot-swap that specific session. rr>rrrz#scope must be 'main' or 'auxiliary'rr)expensive_model_warning)rorqNFT)rrnrorconfirm_requiredconfirm_messagec tjp5tcdddS#1swxYwYdSrE)rr1_apply_model_assignment_sync)r:rqrrr1rornrpsrE_apply_assignmentz/set_model_assignment.._apply_assignment s 788  38UD(G                  s 9==zPOST /api/model/set failedr`zFailed to save model assignment)rnrrrorrprqr:r%rrhermes_cli.model_cost_guardr#rRrr@rr=r) rr1r#rDr(r:rqrrornrps `` @@@@@@rEset_model_assignmentr* sYZ 2 $ $ & & , , . .E #**,,H Z 2 $ $ & &E IO " " $ $ * * , ,D #**,,H|!r((**G )))4YZZZZ(W  5  OOOOOO!( 1+%% !!!     "" ("(,'.              &'8999999999  WWW 34444UVVVVWs7' E1$DE D%"E$D%%E8%EAFrnrpc t}|dkr|r|stddt||\}}t|di||||}||d<g}|dkre ddlm} dd l m } | |d d } | || d } t| }n,#t$rtdd YnwxYwt||dvrP|rN ddlm} m}||||| |n,#t$rtdd YnwxYw|}g}|di}t'|t(rt*D]}||}t'|t(s-t-|ddpd}|rj|dvrT||kr<|||t-|ddpddd d|||dd||dS|d}t'|t(si}|dkr_t*D]=}||}t'|t(si}d|d<d|d<|||<>||d<t|d dd dS|stdd|r|gnt1t*}|D]Z}|t*vrtdd |||}t'|t(si}||d<||d<|||<[||d<t|d d|||d!S)"uSynchronous body of POST /api/model/set. Runs inside ``_profile_scope`` (in a worker thread) so every load_config/save_config lands in the requested profile. Raises HTTPException for validation errors — the async wrapper re-raises them. rrz$provider and model required for mainrrr r)apply_nous_managed_defaults)_get_platform_toolscliFinclude_default_mcp_serversT)enabled_toolsetsrz#apply_nous_managed_defaults skippedr{>rr)_auto_provider_name_save_custom_providerrz%custom_providers registration skippedrrorr>rrr)rprorrq)rrnrorrq gateway_tools stale_aux __reset__r)rrnresetzprovider required for auxiliaryzunknown auxiliary task: )rrnrror)rr%rrrvrrrr,hermes_cli.tools_configr-sortedr@r=rArhermes_cli.mainr2r3rrrr6r=r)rnrorrprqr:rrr4r,r-rCchangedr2r3rr5rrr  slot_providerauxrs rEr'r' s --C  `u `C8^___ _:8UKK%0 GGGR (E8W  !G $& >>   ! ! # #v - - QTTTTTTGGGGGG--E65%, $ !'w  Q Q Q @4 PPPPP Q C >>   ! ! # #': : :x : SVVVVVVVV%%,,X66   S S S BT RRRRR S ~~''--// " ''+r** gt $ $ '  ";;t,,!(D11 #HLLR$@$@$FB G G M M O O ! %++--\AA%++--==$$ $$1!$X\\'2%>%>%D"!E!E&& ! j"55*"    ''+  C c4  {# ! !Dwwt}}Hh-- #)HZ "HW  CIIKC[4@@@ W4UVVVV7tff$"7"7G  & &C8YSW8Y8YZZZ Z774==(D)) H'!D C    s$7C&C87C85 E&E?>E?c\t|}|dd|dd}t|ts* t|}n#tt f$rd}YnwxYw|d}t|tr|r t}|d}t|tr-||d<|dkr||d<n|dd||d<n|dkr||d|d<n#t$rYnwxYw|S) u9Reverse _normalize_config_for_web before saving. Reconstructs ``model`` as a dict by reading the current on-disk config to recover model subkeys (provider, base_url, api_mode, etc.) that were stripped from the GET response. The frontend only sees model as a flat string; the rest is preserved transparently. Also handles ``model_context_length`` — writes it back into the model dict as ``context_length``. A value of 0 or absent means "auto-detect" (omitted from the dict so get_model_context_length() uses its normal resolution). _model_metaNrrrrr)rr) rrrr TypeErrorrrvr6rr@)r ctx_overrider disk_config disk_models rE_denormalize_config_from_webrD_ su&\\F JJ}d###::4a88L lC ( ( |,,LL:&   LLL  7##I)S!!i %--K$11J*d++ (1 9%!##3?J/00NN#3T:::",w!!(&2##w    D  Ms%A""A87A8(A3D D)(D)c4K t|jp|5tt|jdddn #1swxYwYddiS#t $rt $r,tdt ddwxYw)NrTzPUT /api/config failedr`ror) rr1rrDrr%r@r=r)rr1s rE update_configrF sM DL3G 4 4 C C 4T[AA B B B C C C C C C C C C C C C C C Cd|  MMM /0004KLLLLMs.A"A AA  AA AABz/api/envc <Kt|5t}dddn #1swxYwYt}i}tjD]\}}||}t ||rt|nd|dd|d|dd|dd|dg|dd||vd ||<|S) NrrrrrpasswordFtoolsadvanced) r?redacted_valuerrr is_passwordrIrJchannel_managed)rr_channel_managed_env_keysrr%rvrr )r1 env_on_disk channel_keysr7var_namer>rs rE get_env_varsrR sT  !!jj !!!!!!!!!!!!!!!,..L F+133  $))5kk38Bj///d88M26688E??R0088J66XXgr**U33 (<7   x M -11cvK t|jp|5t|j|jdddn #1swxYwYd|jdS#t $r$}t dt||d}~wt$r,t dt ddwxYw)NTrr+rrzPUT /api/env failedr`ro) rr1rr+rrr%r6r@r=r)rr1rs rE set_env_varrV s M DL3G 4 4 1 1 48TZ 0 0 0 1 1 1 1 1 1 1 1 1 1 1 1 1 1 148,,, GGG CHH===3F MMM ,---4KLLLLMs9AA AAAA A B8 A??9B8)z https://openrouter.ai/api/v1/keybearer)z https://api.openai.com/v1/modelsrW)zhttps://api.x.ai/v1/modelsrW)z7https://generativelanguage.googleapis.com/v1beta/modelsr)OPENROUTER_API_KEYOPENAI_API_KEY XAI_API_KEYGEMINI_API_KEY_CREDENTIAL_PROBESrc |jsgS|}n#t$rgcYSwxYwt|tr|dn|}t|t sgSg}|D]}t|tr7t|dpd}n#t|pd}|r| ||S)a1Extract model ids from an OpenAI-compatible ``/v1/models`` response. Tolerant of the common shapes: ``{"data": [{"id": ...}]}`` (OpenAI / vLLM / llama.cpp) and a bare ``{"data": ["id", ...]}``. Returns ``[]`` on any parse/HTTP error so a slightly non-standard endpoint never hard-blocks. rrrr) is_successrr@rrrvrr6rr=)rrridsrmids rE_parse_model_idsra s  I))++  ",Wd";"; H7;;v   D dD ! ! C dD ! ! *dhhtnn*++1133CCdjb//''))C   JJsOOO Js  //z/api/providers/validatecKt|ddl}|jpd}|jpd}|sddddS|dkr|d d z}|jpd}|rd d |ind} ||d 5}| ||} dddn #1swxYwYdddt| dS#t$r ddd|ddcYSwxYwt |} | sddddS| \}} ddi}i} | dkr d ||d <n|| d< ||d5}| ||| } dddn #1swxYwYn#t$r ddddcYSwxYw| j dvrddddS| j dks| jrddddSddd| j ddS)a]Live-probe a provider credential before it's saved. Returns {ok, reachable, message}. ok=True means the provider accepted the key; ok=False + reachable=True means the key is bad (caller should block); reachable=False means the network probe couldn't run (caller may save with a warning rather than hard-blocking offline users). rNrrFTzEnter a value first.)r reachablerOPENAI_BASE_URLrxz/models Authorizationrtg @rr?)rrcrrzCould not reach r!r>r=rWr+$@)ruparamsz/Could not reach the provider to verify the key.)rrz9That API key was rejected. Double-check it and try again.zProvider returned HTTP z for this key.)rhttpxr+rrrr:ClientTimeoutrvrar@r\rr^) rrprir+rrr:rurlrprober}rgs rEvalidate_provider_credentialrm sY7LLL 8>r " "C Z 2 $ $ & &E S$;QRRR  ll3)+<%2,,..>>IC+,G F x#4U#4#4  u o \\%--"5"5\ 6 6 C&::c76:BBD C C C C C C C C C C C C C C C ooo%.UsIII1a&jjQjjjrNrhz,Too many reveal requests. Try again shortly.rrrozenv/reveal: %s)r+r)rr_REVEAL_WINDOW_SECONDSrhr_REVEAL_MAX_PER_WINDOWr%r=rr1rrvr+r=r>)rrpr1rrOrrus @rEreveal_env_varrxDsb7 )++C ) )FIIII(:IIIqqq "8884bccccc"""  / 0 0!!jj !!!!!!!!!!!!!!! OODH % %E }tx4S4S4STTTTII)))8e , ,,s+CC  C rTelegramz1Run Hermes from Telegram DMs, groups, and topics.z1https://core.telegram.org/bots/features#botfather)TELEGRAM_BOT_TOKENTELEGRAM_ALLOWED_USERSTELEGRAM_PROXY)rz)rOrdocs_urlenv_vars required_envDiscordz5Connect Hermes to Discord DMs, channels, and threads.z+https://discord.com/developers/applications)DISCORD_BOT_TOKENDISCORD_ALLOWED_USERSDISCORD_REPLY_TO_MODE)rslackSlackz&Use Hermes from Slack via Socket Mode.zhttps://api.slack.com/apps)SLACK_BOT_TOKENSLACK_APP_TOKEN mattermost Mattermostz:Connect Hermes to Mattermost channels and direct messages.zhttps://mattermost.com/deploy/)MATTERMOST_URLMATTERMOST_TOKENMATTERMOST_ALLOWED_USERS)rrmatrixMatrixz/Use Hermes in Matrix rooms and direct messages.z%https://matrix.org/ecosystem/servers/)MATRIX_HOMESERVERMATRIX_ACCESS_TOKENMATRIX_USER_IDMATRIX_ALLOWED_USERS)rrrsignalSignalz)Connect through a signal-cli REST bridge.z0https://github.com/bbernhard/signal-cli-rest-api)SIGNAL_HTTP_URLSIGNAL_ACCOUNTSIGNAL_ALLOWED_USERS)rrwhatsappWhatsAppzBUse Hermes through the bundled WhatsApp bridge with QR-based auth.z"https://github.com/tulir/whatsmeow)WHATSAPP_ENABLED WHATSAPP_MODEWHATSAPP_ALLOWED_USERSr7 homeassistantzHome Assistantz7Control your smart home from Hermes via Home Assistant.z2https://www.home-assistant.io/docs/authentication/)HASS_URL HASS_TOKENemailEmailz,Talk to Hermes through an IMAP/SMTP mailbox.z@https://hermes-agent.nousresearch.com/docs/user-guide/messaging/) EMAIL_ADDRESSEMAIL_PASSWORDEMAIL_IMAP_HOSTEMAIL_SMTP_HOSTsmsz SMS (Twilio)z*Send and receive text messages via Twilio.zhttps://www.twilio.com/console)TWILIO_ACCOUNT_SIDTWILIO_AUTH_TOKENdingtalkDingTalku+Connect Hermes to DingTalk groups (钉钉).zGhttps://open.dingtalk.com/document/orgapp/the-robot-development-process)DINGTALK_CLIENT_IDDINGTALK_CLIENT_SECRETfeishuz Feishu / Larkz Use Hermes inside Feishu / Lark.zKhttps://open.feishu.cn/document/uAjLw4CM/ukTMukTMukTM/reference/im-v1/intro) FEISHU_APP_IDFEISHU_APP_SECRETFEISHU_ENCRYPT_KEYFEISHU_VERIFICATION_TOKEN)rrwecomzWeCom (group bot)z&Send-only WeCom group bot via webhook.z8https://developer.work.weixin.qq.com/document/path/91770) WECOM_BOT_ID WECOM_SECRET)rwecom_callbackz WeCom (app)z+Two-way WeCom integration via callback app.z8https://developer.work.weixin.qq.com/document/path/90930)WECOM_CALLBACK_CORP_IDWECOM_CALLBACK_CORP_SECRETWECOM_CALLBACK_AGENT_IDWECOM_CALLBACK_TOKENWECOM_CALLBACK_ENCODING_AES_KEY)rrrweixinzWeChat (Official Account)z"Connect a WeChat Official Account.zNhttps://developers.weixin.qq.com/doc/offiaccount/Getting_Started/Overview.html)WEIXIN_ACCOUNT_ID WEIXIN_TOKENWEIXIN_BASE_URL)rr bluebubbleszBlueBubbles (iMessage)z5Use Hermes through iMessage via a BlueBubbles server.zhttps://bluebubbles.app/)BLUEBUBBLES_SERVER_URLBLUEBUBBLES_PASSWORDBLUEBUBBLES_ALLOWED_USERS)rrqqbotzQQ Botz5Connect Hermes to a QQ Bot from the QQ Open Platform.zhttps://q.qq.com) QQ_APP_IDQQ_CLIENT_SECRETQQ_ALLOWED_USERS)rruYuanbao (元宝)z"Connect Hermes to Tencent Yuanbao.)rOrr}rz API serverzIExpose Hermes as an OpenAI-compatible HTTP API for tools like Open WebUI.)API_SERVER_ENABLEDAPI_SERVER_KEYAPI_SERVER_PORTAPI_SERVER_HOSTAPI_SERVER_MODEL_NAMEWebhooksz>Receive events from GitHub, GitLab, and other webhook sources.zIhttps://hermes-agent.nousresearch.com/docs/user-guide/messaging/webhooks/)WEBHOOK_ENABLED WEBHOOK_PORTWEBHOOK_SECRET)yuanbao api_serverwebhook_PLATFORM_OVERRIDES)rrrrrrrrrrrrrrrrrrrr_PLATFORM_ORDERrz8signal-cli REST API base URL, e.g. http://127.0.0.1:8080zSignal bridge URL)rr1rrz6Signal account phone number registered with the bridgezSignal account)rr1rz3Comma-separated Signal users allowed to use the botzAllowed Signal usersrz#Enable the WhatsApp gateway adapterzEnable WhatsApp)rr1rJrzWhatsApp bridge modez WhatsApp moderz5Comma-separated WhatsApp users allowed to use the botzAllowed WhatsApp usersrz>Home Assistant base URL, e.g. https://homeassistant.local:8123zHome Assistant URLruBLong-lived access token from Home Assistant (Profile → Security)zHome Assistant access token)rr1rHrz&Email address to send and receive fromz Email addressrz&Email account password or app passwordzEmail passwordrz&IMAP server host (e.g. imap.gmail.com)z IMAP hostrz&SMTP server host (e.g. smtp.gmail.com)z SMTP hostrzTwilio Account SIDrzTwilio Auth TokenrzWeCom group bot IDz WeCom Bot IDrzWeCom group bot secretz WeCom Secretrz WeCom corp IDz WeCom Corp IDzWeCom app corp secretzWeCom Corp SecretzWeCom app agent IDzWeCom Agent IDz!WeCom callback verification tokenz WeCom TokenzWeCom callback AES encoding keyz WeCom AES KeyzWeChat Official Account IDz Account IDzWeChat callback tokenTokenzWeChat platform base URLzBase URLzFeishu / Lark app IDzApp IDzFeishu / Lark app secretz App secretzFeishu / Lark encrypt keyz Encrypt keyz Feishu / Lark verification tokenzVerification tokenzDingTalk client ID (App key)z Client IDz#DingTalk client secret (App secret)z Client secret) rrrrrrrrrrrrr_MESSAGING_ENV_FALLBACKScddlm}t}g}|jD]Y}|jdkr|j|vr||j|t|jZ ddl m }| D]N}|j |vr ||j |t|j |On,#t$rtddYnwxYwdt!t"D|fd  t'|S) aBuild the messaging catalog from the gateway's Platform enum + plugin registry. Built-in platforms come from ``gateway.config.Platform`` (LOCAL is excluded). Plugin platforms come from ``gateway.platform_registry.plugin_entries()``, which lets newly installed adapters (e.g. IRC) appear without a code change here. Per-platform UI metadata (description, docs URL, env-var picks) lives in :data:`_PLATFORM_OVERRIDES`; anything not overridden gets reasonable defaults derived from the platform id and required_env. r)Platformr)platform_registryz$plugin platform registry unavailableTr{ci|]\}}|| Sr7r7)r idxrs rErz/_messaging_platform_catalog..s A A A(#sS# A A Arc|dtt|dfS)NrrO)rvrrr)rDrYs rErz-_messaging_platform_catalog..s4uyy4#o*>*>??6ARARSrr)rrr[ __members__rrrr=_build_catalog_entrygateway.platform_registryrplugin_entriesrOr@r=rA enumeraterrtuple)rrrmemberr plugin_entryrYs @rE_messaging_platform_catalogrs('''''UUD$&G&--//;; <7 " "  <4    +FL99:::: J??????-<<>> R RL D(( HH\& ' ' ' NN/ 0A<PP Q Q Q Q  R JJJ 9D IIIIIJ B Ai&@&@ A A AE LL S S S S >>s A)C66&DDc& t}tD]+}||dd,t |S#t $r-t ddt cYSwxYw)aEnv-var keys owned by a Channels page platform card. The Channels page is the canonical surface for configuring messaging platform credentials (with connection status, test, enable toggle and gateway restart). The Keys/Env page consults this set to hide those vars so the same fields aren't duplicated in a plainer UI. Best-effort: if the gateway catalog can't be built, nothing is flagged and Keys shows it all. r~r7z+could not build channel-managed env key setTr{)r[rr'rv frozensetr@r=rA)keysr-s rErNrNs022 3 3E KK *b11 2 2 2 2  @4 PPP{{sAA4BB>GATEWAY_PROXY_KEYGATEWAY_PROXY_URLGATEWAY_ALLOW_ALL_USERS platform_idcddddddd}||vr||S|dd d zfS) z4Env-var prefixes owned by a messaging platform card.)EMAIL_)HASS_)QQ_QQBOT_)TWILIO_) WECOM_BOT_r)WECOM_CALLBACK_)rrrrrr-r#)upperr))raliasess rE_platform_env_prefixesr sd#"/. ++Gg{##      ' 'S 1 1C 7 99rcTt|}g}tjD]Z\}|ddkrtvr)t fd|DsE|[ttt|S)zLAll messaging-category env vars for a platform (override + plugin + prefix).r messagingc3BK|]}|VdSrEr)r rrOs rEr z._discover_platform_env_vars..!s/BBv4??6**BBBBBBr) rrr%rv_MESSAGING_KEYS_PAGE_KEYSrNr=rr9r[)rprefixesrr>rOs @rE_discover_platform_env_varsrs%k22HD'-// d 88J  ; . .  , , , BBBBBBBBB   D D "" # ##roverriderct|}d|vr2ttg|d|RS|E|jr>ttgt|j|RS|S)z5Canonical env-var list for a messaging platform card.r~)rrrfromkeysr)rrr discovereds rE_merge_platform_env_varsr's -[99JXT]]#GXj%9#GJ#G#GHHIIIL$=T]]#SU<+D%E%E#S #S#STTUUU rct|i}t|||}d|vrt|d}n|t|jpd}nd}|dr |d}n9||jr|j}n(|dd}|d}|s | |jpd}|||pd|dd||d S) Nrr7rOr#r$rrrr})rrOrr}r~r) rrvrrrrr)rc install_hint)rrrr~rrOrs rErr5s%#&&{B77H' X|LLH!!Xn566  !\6<"==  ||F5  !l&8 !!""3,,2244,,}--K 6<3"/52 "(bLLR00$   rcHtD]}|d|kr|cSdS)Nr)r)rr-s rE_catalog_lookuprXs9,.. ;+ % %LLL & 4rr+c8tj|pt|pi}|dd|d||d|dd|dddS) Nrrrr1rrHFrJ)rr1rrLrJ)rrvr)r+r>s rE_messaging_env_infor _s   % % P)A)E)Ec)J)J PbDxx r22((8S))xxxx E22HHZ//   rczddlm}m}|}||}|j|}|||fS)Nr)rr)rrrrrv)rrrrrplatform_configs rE_gateway_platform_configr jsZ<<<<<<<< " "Fx $$H&**844O 8_ ,,rr-rOr!c|d}tdu}|r|dni}t|tr||ini}g}|dD]{}|pt j|d} ||||dvt| | rt| nddt|| t|\} } } t| o| j } t| o| | | }| r | j r| j nd}n5#t$r(d} t!fd|dD}d}YnwxYwt|tr|d nd}| sd }n|sd }n |r|sd }n|s|sd }||d|d|d| |||t|tr|dndt|tr|dndt|tr|dnd||d S)Nrrr~rrr)r+requiredr?rKFc3lK|].}|ptj|dV/dS)rrN)rvrUrV)r r+rOs rEr z._messaging_platform_payload..sQ  ;>KOOC 6BIc2$6$6      rrPdisablednot_configuredpending_restartgateway_stoppedrOrr} error_code error_messager) rrOrr}rC configuredr rPrrr home_channelr~)r!rvrrrUrVr=rr r r rC_is_platform_connectedrto_dictr@rs)r-rOr!rr runtime_platformsruntime_platformr~r+rr rr rCrrrPs ` rE_messaging_platform_payloadrssC+K%''t3O4;C K000 ' . . k2...  HZ   $$: #r(:(:5#88u++7<"F*U"3"3"3$    &c**      4L 5 5 1/B?+BCC  Q55hPP   #2#? O ( 0 0 2 2 2      BGBW      *44Dd)K)KUW%%%QU  " "  ""! "U"!f ]+*% **D11    . . .*D11    1 1 1*D11    . . .$3  s'A2E/F  F rCct}|di}t|tsi}||d<||i}t|tsi}|||<||d<t |dS)NrrC)r setdefaultrrr)rrCrrr s rE_write_platform_enabledrs ]]F!!+r22I i & &( '{**;;;O ot , ,1!0 +!(OIrz+https://setup.hermes-agent.nousresearch.comzHermesDashboard/z^\d+$cjeZdZUeed<eed<eed<dZedzed<dZedzed<dZedzed<dS)_TelegramOnboardingPairing poll_token expires_at expires_at_tsN bot_token bot_username owner_user_id) r2r3r4r6r5rr%r&r'r7rrEr!r!slOOOOOO IsTz   #L#*### $M3:$$$$$rr!_telegram_onboarding_pairingsctjdtdS)NTELEGRAM_ONBOARDING_URLrx)rUrV _TELEGRAM_ONBOARDING_DEFAULT_URLrrr7rrE_telegram_onboarding_base_urlr,s, +-MNN  rc |dd}tj|}|j |tj}|S#t$rtjdzcYSwxYw)NZ+00:00)tzinfoiX) r)r fromisoformatr0rutc timestampr@r)rrjrs rE_parse_expiry_tsr4s!]]311 ' 33 = ^^8<^88F!!! !!!y{{S    !sA$A'' B  B ctjfdtD}|D]}t|ddS)Nc0g|]\}}|jk|Sr7)r$)r  pairing_idrecordrs rErz7_prune_telegram_onboarding_pairings..s5 J  3 & &  & & &r)rr(r%r)expiredr7rs @rE#_prune_telegram_onboarding_pairingsr:sv )++C"?"E"E"G"GG << %))*d;;;;< s@U[b!!''))J%%j11 4rrfallbackc<ddddddd||S)Nz2Telegram pairing was not found. Start a new setup.z*Telegram setup expired. Start a new setup.z6Telegram setup was already claimed. Start a new setup.z-Telegram setup service rejected this request.z)Telegram setup service is not configured.z/Telegram could not finish bot setup. Try again.) not_foundr9claimed unauthorized)telegram_manager_bot_token_not_configuredtelegram_token_fetch_failedr)rr?s rE"_telegram_onboarding_error_messagerFs4I?KG5`'X    c%rr bearer_tokenrrHcddl}dtd}i}| d|d<||d<|rd||d<t|} ||d 5}|j||fd |i|} | dddn #1swxYwYn#|j$r} | j } n#t$ri} YnwxYwt| d p| d pd } t| d} | jjdkrdnd}| dvrd}t|| | d} ~ w|j$r} tdd| d} ~ wt$r} tdd| d} ~ wwxYw | } n$#t$r} tdd| d} ~ wwxYwt#| t$stdd| S)Nrr=)r> User-Agent Content-Typerrtrerfrrurrrrz)Telegram setup service returned an error.rr>rBr9rz9Telegram setup service is unavailable. Try again shortly.z4Telegram setup service returned an invalid response.)ri_TELEGRAM_ONBOARDING_USER_AGENTr,rjrkrpraise_for_statusHTTPStatusErrorrArr@r6rvrFrr% RequestErrorrr)rrrrHrirurequest_kwargsrrlrArrrrrs rE!_telegram_onboarding_request_syncrRsLLL%5G&(N "4!%v<#;\#;#; * , , 4d 4 4C  \\%--"5"5\ 6 6 (&%v~ ! H  % % ' ' ' ( ( ( ( ( ( ( ( ( ( ( ( ( ( (  M M M \&&((FF   FFF FJJw''E6::h+?+?E2FF3  7  !\5<>D"EEKKMM  Z z  L    #  +---4N!!*:665 5 5 %j1               !0    s6G  G$'G$z//api/messaging/telegram/onboarding/{pairing_id}r7cKt5tt|}|st dd|jr"d|j|j|jdcdddS|j }dddn #1swxYwYtddtj |d | d{V}t|d pd}|d krIt5t|}|r|jnd}dddn #1swxYwYd |d S|dkrt|dpd}t|dpd}|st ddt!|d} t5t|}|st dd||_|pd|_| |_d|j|j|jdcdddS#1swxYwY|dvrYt5t|ddddn #1swxYwYt dt%|dt dd)Nr8Telegram setup session was not found. Start a new setup.rready)rr&r'r#rz/v1/telegram/pairings/rr)safe)rHrwaiting)rr#rr&rrZr'>rBr9rLz9Telegram setup is no longer available. Start a new setup.z2Telegram setup service returned an unknown status.)r[r:r(rvr%r%r&r'r#r"rTrrquoter6rr>rrF) r7r8r"rrcurrentr#r%r&r's rEget_telegram_onboarding_statusrdsu "''+---.22:>> Q    ! & 3!'!5$/ ''''''''& '''''''''''''''"1 J!3!3JR!3!H!HJJG X&&," - - 3 3 5 5F  & ? ?377 CCG/6>++BJ ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?$:>>>  G,,23399;; 7;;~66<"==CCEE  P 4GKK4P4PQQ &  266zBBF # #U )F "."6$F #0F ! & 3!'!5$/                 "''' & @ @ ) - -j$ ? ? ? @ @ @ @ @ @ @ @ @ @ @ @ @ @ @5K     C   sOAB/BB B &D<<EE;AI""I&)I&8J  J$'J$c t\}}nC#t$r6}tddt |dcYd}~Sd}~wwxYw|r td|jdd|jdS) azBest-effort gateway restart after saving Telegram QR onboarding. The QR flow naturally pulls users into Telegram on another device. If the saved token waits on a separate dashboard restart click, Hermes appears broken from the chat side. Keep the config save authoritative, but report restart failures so the UI can fall back to the existing manual banner. z8Failed to auto-restart gateway after Telegram onboardingFrNz?Telegram onboarding: reusing in-flight gateway restart (pid %s)Trrrrs rE*_restart_gateway_after_telegram_onboardingrfs -// ff     QRRR$ XX           M H    +x  rz5/api/messaging/telegram/onboarding/{pairing_id}/applycKg}t}|jD]R}t|}|stdd||vr*||||S|stddt 5tt |}|stdd|j }|j }|stdd dddn #1swxYwY td |td d |td d nj#t$r$} tdt!| | d} ~ wt"$r1} t$dtdd| d} ~ wwxYwt 5t|ddddn #1swxYwYt+} d d || d d| S)Nrz*Allowed Telegram user IDs must be numeric.rz*Add at least one allowed Telegram user ID.rr^rz Telegram setup is not ready yet.rzr{rrTz Telegram onboarding apply failedr`zFailed to save Telegram setup.r)rrr& needs_restart)r[rKr>r%rr=r[r:r(rvr%r&rrrrr6r@r=rrrf) r7rrKrraw_idrjr8r%r&rrestart_results rEapply_telegram_onboardingrks 55D' 0 0088  C  T ! ! HHZ  # #J / / /  ?    #+---.22:>> Q $ *  9   +Y777/:J1K1KLLL D1111 GGGCHH===3F  9:::3     #<<%))*d;;;<<<<<<<<<<<<<<<@AAN$+,=>>      sJAC11C58C5=AE F( E** F(7,F##F(2GG!GcKt5t|ddddn #1swxYwYddiS)NrT)r[r(r)r7s rEcancel_telegram_onboardingrm>s "<<%))*d;;;<<<<<<<<<<<<<<< $<s 266z/api/messaging/platformsc|KttdfdtDiS)Nrc2g|]}t|Sr7)r)r r-rOr!s rErz+get_messaging_platforms..Js5    ({G D D   r)rr"r)rOr!s@@rEget_messaging_platformsrpEsZ**K!##G     466    rz&/api/messaging/platforms/{platform_id}cKt|}|stdd|t|d} |jD]1}||vrtd|d|dt |2|jD]K\}}||vrtd|d|d|}|rt||L|j t||j d|d S#t$rt$r-t d |td d wxYw) NrUnknown messaging platform: rr~rz is not configurable for rOT)rrz&PUT /api/messaging/platforms/%s failedr`ro)rr%r[rErrDr%rrrCrr@r=r)rrr- allowed_envr+rtrimmeds rEupdate_messaging_platformruQs K ( (E  $P;$P$P    eJ'((KM> " "C+%%# #!KKE&MKK S ! ! ! !(..** - -JC+%%# #!KKE&MKKkkmmG -sG,,, < # #K > > > 444  MMM ?MMM4KLLLLMs B>C==AD>z+/api/messaging/platforms/{platform_id}/testc8Kt|}|stdd|t}t||t }|ds|dd}d|d|d S|d s:d |d D}|rd d|nd}d|d|d S|ds d|ddd S|ddkrd|d|ddd S|drd|d|dd Sd|ddd S)NrrrrrCrOz2 is disabled. Enable it, then restart the gateway.FrP)rrPrrc>g|]}|d |d|dS)rr?r+r7)r fields rErz+test_messaging_platform..sE   Z  */x %L   rr~zMissing required setup: , zPlatform setup is incomplete.r zEGateway is not running. Restart the gateway to connect this platform. connectedTz is connected.rz]Setup looks complete, but the gateway has not reported a connection yet. Restart the gateway.)rr%rrr"rrv)rr-rOrrmissings rEtest_messaging_platformr|xs K ( (E  $P;$P$P    **K)%>Q>S>STTG 9 L6]VVVgg&67KKK < L   ,    1 ;tyy'9'9 ; ; ;0  gg&67KKK $ % W%^   w;&&W%-777   {{?## W%/   !r  rvisiblec,|sdSt|rt|tsdSt|}d|vr5|ddkr|ddd}t ||kr|Sd|| dS) uReturn ``...XXXXXX`` (last N chars) for safe display in the UI. We never expose more than the trailing ``visible`` characters of an OAuth access token. JWT prefixes (the part before the first dot) are stripped first when present so the visible suffix is always part of the signing region rather than a meaningless header chunk. Returns the Entra-ID placeholder when handed a callable (Azure Foundry bearer provider) — the callable is NEVER invoked here. rrzr!r0rru…N)rrr6r2rr)rr~rs rE_truncate_tokenrs r#z%55#"" E A axxAGGCLLA%% HHS!  R  1vv G899  rc  ddlm}m}n#t$rd}d}YnwxYwd}|r |}n#t$rd}YnwxYw|ru|dr`ddd|dt |d|d t|d d Sd } dd lm }|dj }n#ttf$rYnwxYw ddl m }n#t$rd}YnwxYw ddlm}n#t$rd}YnwxYw|D]R}|r ||ndpt!j|}|s(|r ||nd} dd|| t |ddd cSdddS)u/Status for the "Anthropic API Key" catalog entry. Two sources, in priority order: 1. ``~/.hermes/.anthropic_oauth.json`` — Hermes-managed PKCE flow (what this entry's Connect button writes) 2. ``ANTHROPIC_API_KEY`` → ``ANTHROPIC_TOKEN`` → ``CLAUDE_CODE_OAUTH_TOKEN`` env vars (registry order) — from ``.env``, the shell, or an external secret source like Bitwarden (whose keys are injected into the process env during ``load_hermes_dotenv()``, so the same check covers them) Claude Code's ``~/.claude/.credentials.json`` is deliberately NOT read here — it has its own dedicated catalog entry (``claude-code`` → ``_claude_code_only_status``). Reporting it under the API-key entry double-counts the token and shadows a real ANTHROPIC_API_KEY. r)read_hermes_oauth_credentials_HERMES_OAUTH_FILEN accessTokenT hermes_pkcez Hermes PKCE (r8 expiresAt refreshTokenrrZ source_label token_previewr#has_refresh_token)ANTHROPIC_API_KEYANTHROPIC_TOKENCLAUDE_CODE_OAUTH_TOKEN)PROVIDER_REGISTRY anthropic get_env_value)format_secret_source_suffixrrenv_varFrrZ)agent.anthropic_adapterrr ImportErrorr@rvrrrrapi_key_env_varsKeyErrorhermes_cli.configrhermes_cli.env_loaderrrUrV) rr hermes_creds env_var_orderrrrvarrrs rE_anthropic_oauth_statusrs "          """(,%!"L$  88::LL   LLL  ((77 #A,>AAA,\-=-=m-L-LMM&**;77!%l&6&6~&F&F!G!G    _M 555555)+6G  "     3333333  +EEEEEEE +++&*###+   '4>s###$Q29S>>  5PX,,S111VX",F,,,U33!&      $ / //sN  / >>;CC#"C#'C.. C=<C=D DDc : ddlm}|}n#t$rd}YnwxYw|rq|dr\dddt |d|dt |d d Sd dd S) aSurface Claude Code CLI credentials as their own provider entry. Independent of the Anthropic entry above so users can see whether their Claude Code subscription tokens are actively flowing into Hermes even when they also have a separate Hermes-managed PKCE login. r)read_claude_code_credentialsNrTclaude_code_cliz~/.claude/.credentials.jsonrrrFr)rrr@rvrr)rcredss rE_claude_code_only_statusrsHHHHHH,,..   =)) '9,UYY}-E-EFF))K00!%eii&?&?!@!@    $ / //s  ""r  Nous Portal device_codezhermes auth add nouszhttps://portal.nousresearch.com)rrOflow cli_commandr} status_fn openai-codexzOpenAI OAuth (ChatGPT)zhermes auth add openai-codexz https://platform.openai.com/docs qwen-oauthzQwen (via Qwen CLI)externalzhermes auth add qwen-oauthz#https://github.com/QwenLM/qwen-code minimax-oauthzMiniMax (OAuth)zhermes auth add minimax-oauthzhttps://www.minimax.io xai-oauthz%xAI Grok OAuth (SuperGrok / Premium+)loopbackzhermes auth add xai-oauthz@https://hermes-agent.nousresearch.com/docs/guides/xai-grok-oauthrzAnthropic API Keypkcezhermes auth add anthropicz.https://docs.claude.com/en/api/getting-started claude-codezAAnthropic OAuth: Required Extra Usage Credits to Use Subscriptionzclaude setup-tokenz+https://docs.claude.com/en/docs/claude-code_OAUTH_PROVIDER_CATALOG provider_idc |4 |S#t$r}dt|dcYd}~Sd}~wwxYw ddlm}|dkr|}t |dd|d pd t|d |d t |d dS|dkr|}t |d|dpd|dpdt|ddd|ddS|dkr| }t |dd|dpdt|d |dt |d dS|dkrh| }t |ddd|dd d!d|dd"dS|d#kr| }t |d|dpd$|d%p|dpd&t|ddd"|ddSn)#t$r}dt|dcYd}~Sd}~wwxYwddiS)'z@Dispatch to the right status helper for an OAuth provider entry.NF)rrrr}r r nous_portalrr access_tokenaccess_expires_atrrrrZ openai_codex auth_modez OpenAI Codexr: last_refresh)rrZrrr#rrrqwen_cliauth_store_pathzQwen CLIr#r minimax_oauthz MiniMax (regionglobalr8Tr xai_oauth auth_storezxAI Grok OAuth) r@r6rr}rrrvrget_codex_auth_statusget_qwen_auth_statusget_minimax_oauth_auth_statusget_xai_oauth_auth_status)rrrDhauthrs rE_resolve_provider_statusrs 99;;  9 9 9!&Q88 8 8 8 8 8 8 9:5,,,,,, & ,,..C!#''+"6"677' #(9 : : Km!01H1H!I!I!gg&9::%)#''2E*F*F%G%G   . ( (--//C!#''+"6"677''(++=~ # 4 4 F!01C1C!D!D"%* # 7 7  , & &,,..C!#''+"6"677$ #(9 : : Hj!01H1H!I!I!ggl33%)#''2E*F*F%G%G   / ) )5577C!#''+"6"677) JCGGHh,G,G J J J!%!ggl33%)   + % %1133C "#''+"6"677''(++:{ # 5 5 ^9J9J ^N^!01C1C!D!D"%) # 7 7  & 555"SVV444444445  sN  4/44B0M)B M B*M5A-M#B5M N$M;5N;Nz/api/providers/oauthc Kg}tD]e}t|d|d}||d|d|d|d|d|dfd|iS) u0Enumerate every OAuth-capable LLM provider with current status. Response shape (per provider): id stable identifier (used in DELETE path) name human label flow "pkce" | "device_code" | "external" | "loopback" cli_command fallback CLI command for users to run manually docs_url external docs/portal link for the "Learn more" link status: logged_in bool — currently has usable creds source short slug ("hermes_pkce", "claude_code", ...) source_label human-readable origin (file path, env var name) token_preview last N chars of the token, never the full token expires_at ISO timestamp string or null has_refresh_token bool rrrOrrr})rrOrrr}rr)rrrvr=)rrrs rElist_oauth_providersrs$I $   )!D'1553E3EFFD'fIfI]+*          ##rz"/api/providers/oauth/{provider_id}c Kt|dtD}||vr7tdd|ddt ||dvr dd lm}|r|n#t$rYnwxYw dd l m }|d n#t$rYnwxYwt d |d |dS dd l m }||}t d||t||dS#t$r>}td|tdt!|d}~wwxYw)zDDisconnect an OAuth provider. Token-protected (matches /env/reveal).ch|] }|d Srr7rs rErz,disconnect_oauth_provider..s:::Q4:::rrzUnknown provider: . Available: ryr>rrrr)clear_provider_authrzoauth/disconnect: %sT)rroz!oauth/disconnect: %s (cleared=%s)zdisconnect %s failedr`N)rrr%rr9rrr"rr@rrr=r>rrr6)rrp valid_idsrrclearedrDs rEdisconnect_oauth_providerrs7::"9:::I)##@ @@!%6)+<+D%% E-/9E((E-_oauth_sessions)_OAUTH_CLIENT_ID_OAUTH_TOKEN_URL_OAUTH_REDIRECT_URI _OAUTH_SCOPES_generate_pkcez!https://claude.ai/oauth/authorizec tjtz t5fdtD}|D]}t|d ddddS#1swxYwYdS)z:Drop expired sessions. Called opportunistically on /start.c2g|]\}}|dk|S) created_atr7)r rsessrus rErz&_gc_oauth_sessions..Ys-]]]dlASV\A\A\A\A\A\rN)r_OAUTH_SESSION_TTL_SECONDS_oauth_sessions_lockrr%r)stalerrus @rE_gc_oauth_sessionsrUs Y[[5 5F ++]]]]o&;&;&=&=]]] + +C   T * * * * +++++++++++++++++++sAA88A<?A<rctjd}|||tjddd}t5|t|<dddn #1swxYwY||fS)zICreate + register a new OAuth session, return (session_id, session_dict).pendingN)rrorrrr)secrets token_urlsaferrr)rrrrs rE_new_oauth_sessionr^s   # #Cikk   D $$#$$$$$$$$$$$$$$$ 9s A  AAr refresh_token expires_at_msc ddlm}|||d}|jdd||jdt jdtj d} | d d 5}| tj |d |t j|dddn #1swxYwYt j|| |t&jt&jzn#t,$rYnwxYw |r|nO#t,$rYnCwxYw# |r|ww#t,$rYwwxYwxYw ddlm}m}m} mddl} |d} fd| D} | D]7} | tC| dd(#tD$rY4wxYw|d| #j$ddd| dd||| }| %|dS#tD$r&} tL'd| Yd} ~ dSd} ~ wwxYw)zPersist Anthropic PKCE creds to both Hermes file AND credential pool. Mirrors what auth_commands.add_command does so the dashboard flow leaves the system in the same state as ``hermes auth add anthropic``. rr)rrrTr^z.tmp.r!wrrr0)indentNPooledCredential load_poolAUTH_TYPE_OAUTH SOURCE_MANUALrcbg|]+}t|ddd)|,S)rZrr:dashboard_pkcerrr rDrs rErz/_save_anthropic_oauth_creds..sBxxx!Hb1I1I1T1TXeUvUvUv1w1wxAxxxrrrrr}dashboard PKCEr) rorr auth_typepriorityrZrrrz)anthropic pool add (dashboard) failed: %s)(rrr#ra with_namerOrUgetpidr token_hexrrrdumpsflushfsyncfilenor)chmodrS_IRUSRS_IWUSRrr"ragent.credential_poolrrrruuidr remove_entryrr@uuid4hex add_entryr=rD)rrrrrtmp_pathrrrrrpoolrrDr-rs @rE_save_anthropic_oauth_credsrns ;:::::#%"G ##D4#@@@!++  "MMMMw7H7K7KMMH ]]3] 1 1 &V LLGA666 7 7 7 LLNNN HV]]__ % % % & & & & & & & & & & & & & & & 8/000   $ $T\DL%@ A A A A    D     "!!!    D     "!!!! "    D  E             y%%xxxxt||~~xxx  A !!'!T2"6"67777       zz||#"%#444%''     u EEE @!DDDDDDDDDEs0FA$C7+ F7C;;F>C;?F,EF EFEF(E?? F  F G (F;9G ; GG GG ?J$H43J4 I>JIAJ KJ<<Kc ,tstddt\}}tdd\}}||d<||d<dtd t t |d |d }td tj |}|d|td S)z9Begin PKCE flow. Returns the auth URL the UI should open.iz/Anthropic OAuth not available (missing adapter)rrrverifierrPtruecodeS256)r client_id response_type redirect_urirncode_challengecode_challenge_methodrP?rrauth_url expires_in) _ANTHROPIC_OAUTH_AVAILABLEr%_generate_pkce_pairr_ANTHROPIC_OAUTH_CLIENT_ID_ANTHROPIC_OAUTH_REDIRECT_URI_ANTHROPIC_OAUTH_SCOPES_ANTHROPIC_OAUTH_AUTHORIZE_URLrr urlencoder)r challengerrrgrs rE_start_anthropic_pkcer%s %g4effff-//Hi";77ICDDM/5(#!'  F1SS6<3I3I&3Q3QSSH0   rr code_inputc t5t|}dddn #1swxYwY|r|ddks |ddkrtdd|d d krd |d |d d S|dd}|d}|sd ddd St |dkr|dnd}tjdt||p|dt|dd }tj t|dddd} tj |d5}tj|} dddn #1swxYwYnO#t($rB} t5d|d <d| |d <dddn #1swxYwYd d|d d cYd} ~ Sd} ~ wwxYw| d d} | d!d} t+| d"pd#} | s5t5d|d <d$|d <dddn #1swxYwYd d|d d St+t-jd%z| d%zz} t/| | |nO#t($rB} t5d|d <d&| |d <dddn #1swxYwYd d|d d cYd} ~ Sd} ~ wwxYwt5d'|d <dddn #1swxYwYt0d(|d)d'd*S)+z)rr&rrrstate_from_callback exchange_datarrr7rDrrrrs rE_submit_anthropic_pkcer1s //"":../////////////// R4 #{22d6lf6L6L4PQQQQ H~""tH~$((?B[B[\\\      $ $S! , ,E 8>>  D Ow;MNNN&)%jj1nn%(("J*/$5W 5j)   vxx . " .0   !  CR ^ # #C # 4 4 6Z 2 2 4 455F 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 RRR ! B B$DN$Aa$A$AD ! B B B B B B B B B B B B B B Bw4;PQQQQQQQQ R ::nb11LJJ33MVZZ --566J R ! ? ?$DN$>D ! ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?w4;PQQQ d*++zD/@AMR#L-OOOO RRR ! 8 8$DN$7A$7$7D ! 8 8 8 8 8 8 8 8 8 8 8 8 8 8 8w4;PQQQQQQQQ R $$#X$$$$$$$$$$$$$$$IIBJOOO* - --s/33(!G 9G GGGGG H&$H!+H9 H!H H! H H!H&!H& JJ JK,, L86L3=L L3L L3L L3-L83L8MMMc K|dkrddlmm}ddl|d}t jdpt jdp|jd|j|j fd}tj d|d{V\}}tdd \}}t|d |d <t|d |d <t!jt|d z|d <|d <|d<||d<t#jt&|fdd|dd|d t|dt|dt|d t|d dS|dkrtdd \}}t#jt*|fdd|ddt!jdz} t!j| krt.5t0|} dddn #1swxYwY| r"| ds | ddkrn1tjdd{Vt!j| kt.5t0|i} dddn #1swxYwY| ddkr&t7d| dpd !| dst7d"d#!|d | d| d$t| d pd%t| d pd&dS|d'krdd(lm} mmm} ddl| \} t jd)p| dfd*}tj d|d{V}td'd \}}|d }|t|nd|d+<t|d|d<| |d,<|d-<|d <|d<d.|d/<t|d0}||d1<|d2kr7|d3z }tCdt|t!jz }nt!j|z}|}||d <t#jtD|fdd|dd|d t|dt|d4|tCd5|d+pd6d7zdSt7d8d9|d:!);aInitiate a device-code flow (Nous, OpenAI Codex, or MiniMax). Calls the provider's device-auth endpoint via the existing CLI helpers, then spawns a background poller. Returns the user-facing display fields so the UI can render the verification page link + user code. r r)_request_device_coderNHERMES_PORTAL_BASE_URLNOUS_PORTAL_BASE_URLrxcdddi5}|fcdddS#1swxYwYdS)N.@r>r=rru)rlrrrnrjrk)rlr3rrirrns rE_do_nous_device_requestz8_start_device_code_flow.._do_nous_device_request$s d++!#56 ((%(7"+#                    sA  AArr6rr#rrrnTz oauth-poll-r}rK user_codeverification_uri_complete)rrr;verification_urlr poll_intervalrz oauth-codex-rrrrErr`rzdevice-auth failedriz2device-auth timed out before returning a user coder=rrir)_minimax_pkce_pair_minimax_request_user_codeMINIMAX_OAUTH_CLIENT_IDMINIMAX_OAUTH_GLOBAL_BASEMINIMAX_PORTAL_BASE_URLcdddid5}|cdddS#1swxYwYdS)Nr7r>r=Trrufollow_redirects)rlrrrrPr9)rlrAr@r$rirrPs rE_do_minimax_requestz4_start_device_code_flow.._do_minimax_request~s d++!#56!% 11!$35#,                   sA  AA interval_msr+rPrr expired_inexpired_in_rawlJ)g@@verification_urir0rQr,rz Provider z" does not support device-code flow)#rr3rrirUrVrrrrnrRrrrr6rrrWrY _nous_pollerrZ_codex_full_login_worker monotonicrrrvsleepr%r?r@rArBget_event_loopr_minimax_poller)rrpconfigr: device_dataeffective_scoperrr#deadlinerr?rBrrG interval_rawrJr$expires_in_secondsrAr@r3r$rrirrnrPs @@@@@@@@@rE_start_device_code_flowrXsf          #F+ I. / / 'y/00 '& &++  %           .5-E-G-G-W-W ). . ( ( ( ( ( ( $ _'v}== T!+m"<==]{:677Z!Y[[3{##b(n))% - -#'',, - - - - - - - - - - - - - - - aeeK(( AhK9,D,D-$$ $ $ $ $ $ $ $ n)) " - -##C,,A - - - - - - - - - - - - - - - 55??g % %Co8N8N8fRfggg guu[!! nC8lmmm m!; !"4 5aeeL118S99 z!2!2!7a88    o%%             %7%7%9%9")U I/ 0 0 M4M &++           $244DD %        ' FF T#z22 !-!9C   t ] K 899[ (_W "1 3[!X [677!/  - - -*V3M!$QMDIKK,G(H(H!I!I   IKK.8M!/ *\"(s2A2w((    %'''![566 #K0B$C D D, T-%8%@DT$IJJ     C0kK0k0k0k l l lls$I..I25I2K==LLgr@c ddlm}|}|\}}}} |||}||}tjd}tjd} | |d|||| } nq#t$rd | | n#t$rYnwxYw | dn#t$rYnwxYwwxYwtdd \} } || d <|| d <|| d <|| d <|| d<|| d<|| d<|d| d<|| d<tjt z| d<t#jt&| fdd| dd| d | t+t dS)aBegin the xAI loopback PKCE flow. Binds the local callback server, builds the authorize URL, and spawns a background worker that waits for the redirect and finishes the exchange. Returns the authorize URL for the client to open in the browser. rrrauthorization_endpoint)rZrrrPnonce?rrrserverthreadcallback_resultrrr$rPtoken_endpoint discoveryr#Tz oauth-xai-Nr}rKr)rr}_xai_oauth_discovery_xai_start_callback_server#_xai_validate_loopback_redirect_uri_oauth_pkce_code_verifier_oauth_pkce_code_challengerr_xai_oauth_build_authorize_urlr@shutdown server_closerrr_XAI_LOOPBACK_TIMEOUT_SECONDSrWrY_xai_loopback_workerrZr) rrar]r^r_rrr$rPr[ authorize_urlrrs rE_start_xai_loopback_flowrmsa)(((((**,,I494T4T4V4V1FFO\ 11,???224444X>> !"%%!"%%<<#,-E#F%$ =        OO       ! ! ! !    D   KKK $ $ $ $    D   #; ;;ICDNDN-D 'DD!DDM&'78D !D'DDD #3& ##bqb' # # eggg!788   sTBB<< D*(C0/D*0 C=:D*<C==D*DD* D%"D*$D%%D*c ddlm}m}ddlm}t5t }dddn #1swxYwY|sdSdtddffd }dtffd } | |d |d |d t }n&#t$r}|d |Yd}~dSd}~wwxYw|rdS|dr-|dp|d} |d| dS|d|dkr |ddSt|dpd } | s |ddS | |d| |d|d|d} t| ddpd } t| ddpd } | r| s |ddS|tjdd dp9tjd d d|j!}|j|jd"d#}| | t| d$dpd | d%t| d&pd' pd'd(}|rdS|||d)|d|*t1| | ||n&#t$r}|d+|Yd}~dSd}~wwxYwt5t }|d,|d-<dddn #1swxYwYt2d.dS)/zFWait for the xAI loopback callback, exchange the code, persist tokens.rrrNrr7ct5t}| d|d<||d<ddddS#1swxYwYdS)Nrrr)rrrv)rrrs rE_failz#_xai_loopback_worker.._fail s ! - -##J//A}%( %,/"  - - - - - - - - - - - - - - - - - -s'=AAcXt5tvcdddS#1swxYwYdSrE)rr)rsrE _cancelledz(_xai_loopback_worker.._cancelledsw " 5 5_4 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5s ##r]r^r_)timeout_secondszxAI authorization timed out: rerror_descriptionzxAI authorization failed: rPz)xAI authorization failed: state mismatch.rrrz5xAI authorization failed: missing authorization code.r`rrr$)r`rrr+rrrz6xAI token exchange did not return the expected tokens.HERMES_XAI_BASE_URLrx XAI_BASE_URL)r?r/r.id_tokenr token_typeBearer)rrrwrrxra)rarrzxAI token exchange failed: r-rz6oauth/loopback: xai-oauth login completed (session=%s))rrrr}rrrvr6r_xai_wait_for_callbackrjr@r#_xai_oauth_exchange_code_for_tokens _xai_validate_inference_base_urlrUrVrDEFAULT_XAI_OAUTH_BASE_URLrr2 isoformatr)_save_xai_oauth_tokens_add_xai_oauth_pool_entryr=r>)rrrrrrprrcallbackrrrrrrrqrtokensrs` rErkrks++++++++(((((( //"":../////////////// -s-t------5555555 // N N " #9 0    3c33444z||||G122Ghw6G 3633444||GW -- 9::: x||F##)r * * 0 0 2 2D  EFFF%;; 01n-z* , <  7;;~r::@bAAGGII GKK<<BCCIIKK  =  EJ K K K F99 I+R 0 0 6 6 8 8 ? ? D D Ay,,2244;;C@@5:   $x|HL11;;==EEhPSTT (*GKK B77=2>>DDFF!++l33gkk,77C8DDJJLLXPX    :<<  F $$ hh{++n-% %   ", xVVVV  1C11222 %%    + + =$AhK%%%%%%%%%%%%%%% IIF SSSSSs`>AA*0B B>%B99B>B/O2EO AO O5O00O5?"P--P14P1rc  ddl}ddlm}m}m}m |d} fd|D} | D]7} |t| dd(#t$rY4wxYw|d| j ddd |d d |||| } | | dS#t$r&} td | Yd} ~ dSd} ~ wwxYw) zMirror `hermes auth add xai-oauth`'s credential-pool insert. Best-effort: the auth-store write in _save_xai_oauth_tokens is the source of truth for runtime resolution; the pool entry only matters for the rotation strategy. rNrrcbg|]+}t|ddd)|,S)rZrr:dashboard_xai_pkcerrs rErz-_add_xai_oauth_pool_entry..wsR   q(B''22m3X3X3XYY    rrrrr}rr) rorrrrrZrrrqrz)xai-oauth pool add (dashboard) failed: %s)rrrrrrrrrr@r r r r=rD) rrrqrrrrrr rrDr-rs @rErrds!E             y%%    ||~~     A !!'!T2"6"67777       zz||#"%#888%'%     u EEE @!DDDDDDDDDEs<?C$A('C( A52C4A55AC C6C11C6c ddlm}m}ddlm}m}ddl}t 5t|}dddn #1swxYwY|sdS|d}|d}|d} |d} |d } td t|d tj z } | | d d di5} || ||| | | }dddn #1swxYwY|j|j}t|dpd}||d||d p| |dd|d|d||r>|j||z|jnd|d }||d d}ddlm}||t 5d|d<dddn #1swxYwYt(d|dS#t,$rc}t(d||t 5d |d<t1||d!<dddn#1swxYwYYd}~dSYd}~dSd}~wwxYw)"zDBackground poller that drives a Nous device-code flow to completion.r)_poll_for_tokenrefresh_nous_oauth_from_staterNrrrr6rnr4r#r7r>r=r8)rlrrrrr>rrrxryrrtz) rrrrnrxrr obtained_atr#rF)rs force_refresh)persist_nous_credentialsr-rz/oauth/device: nous login completed (session=%s)z-nous device-code poll failed (session=%s): %srr)rrrrrrirrrvrrrrjrkrr2r~ fromtimestampr3rr=r>r@rDr6)rrrrrrirrrrr6rnrrl token_datar token_ttl auth_state full_staterrDs rErLrLs],+++++++LLL //"":../////////////// ,-O[!I}%KJH HHW  ERT,/$)++=>>??J*+ \\%--"5"5J\?]\ ^ ^ bh( /#'%& J               hl8<(( |449:: .",..1E"F"F"^^G,,5$..x@@&~6'^^O<<==??'&&s}}'Bx|TTT^^```"&#  32     =<<<<<  ,,, ! ( ('DN ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( CZPPPPP +++ DjRSTTT ! + +$DN$'FFD ! + + + + + + + + + + + + + + + + + + + + + + + + + + ++sAA A?,I!+D = I! D  I!D DI!'H9- I!9H==I!H=I!! K+#K J2& K 2J6 6K 9J6 :K  Kc@ddlm}m}m}m}m}ddlm}m}ddl}t5t |} dddn #1swxYwY| sdS| d} | d} | d} | d} | d }| d } | | d d d id5}||| | | | ||}dddn #1swxYwY|j|j}|t!|d|}t#dt!||z }d| dd| || || dd|d|d| d||j||j|d }||t5d| d<dddn #1swxYwYt*d|dS#t.$rc}t*d ||t5d!| d<t3|| d"<dddn#1swxYwYYd}~dSYd}~dSd}~wwxYw)#u Background poller that drives a MiniMax OAuth flow to completion. Mirrors `_nous_poller` but calls the MiniMax-specific token endpoint, which uses a PKCE-style ``code_verifier`` + ``user_code`` rather than the ``device_code`` field used by Nous. On success, builds the same auth_state dict that ``_minimax_oauth_login`` (the CLI flow) builds and persists via ``_minimax_save_auth_state`` — so the dashboard path leaves the system in the same state as ``hermes auth add minimax-oauth``. r)_minimax_poll_token"_minimax_resolve_token_expiry_unix_minimax_save_auth_stateMINIMAX_OAUTH_GLOBAL_INFERENCEMINIMAX_OAUTH_SCOPErNrrr;r+rHrJr7r>r=TrE)rlrrr;r+rIrHrI)rrrrrxryrr resource_urlr) rorrrrrnrxrrrrr#rr-rz2oauth/device: minimax login completed (session=%s)z0minimax device-code poll failed (session=%s): %srr)rrrrrrrrrirrrvrjrkrr2rrr3r~rr=r>r@rDr6)rrrrrrrrrirrrr;r+rHrJrlrrr$ expires_in_srrDs rErQrQsS,+++++++LLL //"":../////////////// ,-O[!I[!I)M((=))K*+N2+ \\MM$''12!  ,, /##+)'J               &hl8<((::  <( ) )s   1c-#--//"ABBCC 'hhx22."@"($..x@@&~6'8&NN>::==??0(0(,ikk&  " ! ,,, ! ( ('DN ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( F SSSSS +++ GUVWWW ! + +$DN$'FFD ! + + + + + + + + + + + + + + + + + + + + + + + + + + ++sA  A A -H0C" H0"C&&H0)C&*D H06H< H0H  H0H H00 J:#JJ5 JJ JJ JJc Z ddl}ddlm}m}m}d}||d5}||dd|id d i }dddn #1swxYwY|jd krtd |j| }| dd} | dd} tdt| dd} | r| std|d} t5t |} | s ddddS| | d<| | d<| | d<| | d<d| d<t!j| dz| d<dddn #1swxYwYt!j| dz}d}||d5}t!j|krut!j| ||d| | dd d i }|jd kr| }n!|jdvrutd|jdddn #1swxYwY|+t5d| d<d | d!<dddn #1swxYwYdS| d"d}| d#d}|r|std$||d5}||d"||d%||d&d d'i(}dddn #1swxYwY|jd krtd)|j| }| d*d}| d+d}|std,dd-lm}|||d.t5d/| d<dddn #1swxYwYt(d0|dS#t,$r}t(d1||t5t |}|rd2|d<t1||d!<dddn#1swxYwYYd}~dSYd}~dSd}~wwxYw)3uRun the complete OpenAI Codex device-code flow. Codex doesn't use the standard OAuth device-code endpoints; it has its own ``/api/accounts/deviceauth/usercode`` (JSON body, returns ``device_auth_id``) and ``/api/accounts/deviceauth/token`` (JSON body polled until 200). On success the response carries an ``authorization_code`` + ``code_verifier`` that get exchanged at CODEX_OAUTH_TOKEN_URL with grant_type=authorization_code. The flow is replicated inline (rather than calling _codex_device_code_login) because that helper prints/blocks/polls in a single function — we need to surface the user_code to the dashboard the moment we receive it, well before polling completes. rN)CODEX_OAUTH_CLIENT_IDCODEX_OAUTH_TOKEN_URLDEFAULT_CODEX_BASE_URLzhttps://auth.openai.comr7rz!/api/accounts/deviceauth/usercoderrKr=)rrurzdeviceauth/usercode returned r;rrdevice_auth_idr65z8device-code response missing user_code or device_auth_idz /codex/devicer=rrr#z/api/accounts/deviceauth/token)rr;>rrzdeviceauth/token poll returned r9rz#Device code expired before approvalrr)r+z=device-auth response missing authorization_code/code_verifierz/deviceauth/callback)r*rrrr+z!application/x-www-form-urlencoded)rruztoken exchange returned rrz*token exchange did not return access_token)_save_codex_tokens)rrr-z7oauth/device: openai-codex login completed (session=%s)z0codex device-code worker failed (session=%s): %sr)rirrrrrjrkpostrrrrvrrrrrrNrOrr=r>r@rDr6)rrirrrissuerrlrrSr;rr>r=rrU code_resprr)r+ token_resprrrrrDrs rErMrM#sd,           +\\%--"5"5\ 6 6 &;;<<<!#89');<D                 s " "Qt?OQQRR Riikk OOK44 $)92>>As;??:s#C#CDDEE  [ [YZZ Z$333 ! B B"&&z22D  B B B B B B B B!*D '7D# $%3D! ",D !(D !%tL/A!AD  B B B B B B B B B B B B B B B>##d<&88 \\%--"5"5\ 6 6 Y&.""X-- =))){{===,:SS+-?@# #s** $ I#z11"#WTEU#W#WXXX Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y  % N N!*X(M_% N N N N N N N N N N N N N N N F']]+?DD! or:: ! ` `^__ _ \\%--"5"5\ 6 6 &%"6.'-$C$C$C!6%2 ()LM%  J                 !S ( (R*:PRRSS S""zz."55  ?B77  MKLL L666666(*     " ( ('DN ( ( ( ( ( ( ( ( ( ( ( ( ( ( ( KZXXXXX ,,, GUVWWW ! , ,##J//A ,%( %(VV/"  , , , , , , , , , , , , , , , , , , , , , , , , , , ,,s)9P! A' P!'A++P!.A+/B5P!$F P!8F P!FP!FA P!%B I>2 P!>JP!J P! J) P!)J--P!0J-1P!6A(P!$M P!MP!MBP!'O9- P!9O==P!O=P!! R*+#R%4R R%R R%R R%%R*z(/api/providers/oauth/{provider_id}/startcKt|tdtD}|vrtddt fdtD}|ddkrtdd|d d  |dd krd krt S|dd krt d{VS|ddkr8dkr2tj dtd{VSnU#t$rt$r>}t dtdt|d}~wwxYwtdd)z.Initiate an OAuth login flow. Token-protected.ch|] }|d Srr7rs rErz$start_oauth_login..s 6 6 6QtW 6 6 6rrzUnknown provider rc34K|]}|dk|VdS)rNr7)r rrs rEr z$start_oauth_login..s1VVqqw+?U?U?U?U?U?UVVrrrz uses an external CLI; run `rz ` manuallyrrrNrrzoauth/start %s failedr`zUnsupported flow)rrrr%nextr%rXrRrrrmr@r=rr6)rrpvalid catalog_entryrDs` rEstart_oauth_loginrs7 6 65 6 6 6E%4U 4U4UVVVVVVVV$;VVVVVMV **!gg}]?[ggg    <  F * *{k/I/I(** *  M 1 10======== =  J . .;+3M3M 133CC.   <<< . <<<CFF;;;;< C0B C C CCs%D4 DADE,.9E''E,c$eZdZUeed<eed<dS)OAuthSubmitBodyrrNrVr7rrErrs"OOO IIIIIrrz)/api/providers/oauth/{provider_id}/submitcKt||dkr>tjdt|j|jd{VStdd|)z5Submit the auth code for PKCE flows. Token-protected.rNrzsubmit not supported for r)rrRrrr1rrr%)rrrps rEsubmit_oauth_coders7k!!-//?? ($/49          C0YK0Y0Y Z Z ZZrz4/api/providers/oauth/{provider_id}/poll/{session_id}c>Kt5t|}dddn #1swxYwY|stdd|d|krtdd||d|d |d d S) u*Poll a session's status (no auth — read-only state). Shared by the device-code flows (Nous, OpenAI Codex, MiniMax) and the loopback flow (xAI Grok). Both surface progress through the same background-worker-updated ``status`` field, so a single poll endpoint serves them all. NrzSession not found or expiredrrorzProvider mismatch for sessionrrr#)rrrr#)rrrvr%)rrrs rEpoll_oauth_sessionrs //"":../////////////// T4RSSSS J;&&4STTTT x./22hh|,,   s 155z*/api/providers/oauth/sessions/{session_id}cKt|t5t|d}dddn #1swxYwY|dddS|ddkr|d}t |t r|dpd |d<|d }|d } |(||n#t$rYnwxYw || d n#t$rYnwxYwd|dS)z0Cancel a pending OAuth session. Token-protected.NFzsession not found)rrrrr_r cancelledr]r^r\rT)rr) rrrrrvrrrhrir@r)rrprr7r]r^s rEcancel_oauth_sessionrs7 55"":t44555555555555555 |(;<<<  xx:%%+,, fd # # A$jj11@[F7O(##(## !!!!##%%%    D  ! C (((    D j 1 11s5AAA*D DDD00 D=<D=c ddlm}d}|} ||}|r||sdgf|St |ddp2t |ddp!t |ddpt |dd}g}|g|d }|D]<}|||d d||d d ||d dd=n| dd}i} |D]Y}| d } | d } | r+| r)| | g|Zd} |} |g}|h| | r{fd| | D}|snd| | d|dd } ||  | | | {| |f|S#|wxYw)zResolve a session id to the newest child leaf session. /model may create child sessions. Dashboard refresh should continue the newest child instead of reopening the old parent. rrct|tr||S ||S#t$r ||cYS#t$rYYdSwxYwwxYwrE)rrrvr@)rr+indexs rErow_getz+_session_latest_descendant..row_gets c4  773<<  s8O    5z!!!   ttt  s,4 AA A AAAANconn_conn connection _connectionz6SELECT id, parent_session_id, started_at FROM sessionsrrrrr0)rrr'rrVcn t|dpdS#t$rYdSwxYw)Nrr)rrvr@)rs rEstartedz+_session_latest_descendant..startedFsH SWW\227a888   ss s #& 44cBg|]}|dv|Srr)r rrs rErz._session_latest_descendant..Qs-RRR!%%++T:Q:Q!:Q:Q:QrTr)rrresolve_session_idrrrexecutefetchallr=rrvrrr)rrrr"rrrraw_rowsrchildrenridr#rrcr candidatesrs @rE_session_latest_descendantrs '&&&&&    B6##J// "..-- 8f  a B % % 0r7D)) 0r<.. 0r=$//   ||Hhjj     !'#tQ//)06I1)M)M")'#|Q"?"? ((uQ(??D < Az/api/sessions/emptycKddlm}|} |}d|d|S#|wxYw)uXDelete every empty (``message_count == 0``), ended, non-archived session in a single transaction. Safety contract mirrors :meth:`SessionDB.delete_empty_sessions`: * Active sessions are skipped (``ended_at IS NULL``) so a live agent isn't yanked mid-handshake. * Archived sessions are skipped — the user explicitly chose to keep those rows. * Children of deleted parents are orphaned, not cascade-deleted. Like the single-session ``DELETE /api/sessions/{id}`` endpoint below, this doesn't pass a ``sessions_dir`` through — the on-disk transcript / request-dump cleanup is wired at the CLI/agent layer but the web server historically leaves file cleanup to the next prune-on-startup pass. Matching that pre-existing trade-off keeps the two delete endpoints' DB-vs-disk behaviour consistent. rrTr)rrdelete_empty_sessionsr)rr"rs rEdelete_empty_sessions_endpointrsg('&&&&& B**,,w//   s AAz/api/sessions/statscKddlm}|} |d}|d}|d}|}i} |ddD]B}t |d pd }||dd z||<Cn#t$rYnwxYw|||||d |S#|wxYw) zSession-store statistics for the Sessions page (mirrors `hermes sessions stats`). Registered before ``/api/sessions/{session_id}`` so the literal ``stats`` path isn't captured as a session id by the parameterized route. rrT)riF)rjrrrZr.r)r? active_storerXmessages by_source) rrrp message_countrr6rvr@r) rr"r?rrXrrrsrcs rEget_session_statsrsH'&&&&& B  $ 77'''?? ##$#77##%%$&  ***NN ; ;!%%//2U33!*sA!6!6!: # ;    D (  "      s1AC4-ACC4 CC4C C44D cddlm}|s |St|\}}|t|dz S)ukOpen a SessionDB for read paths, optionally for another profile. ``profile`` None/empty → this process's own ``state.db`` (the common, single-profile case). A named profile opens that profile's on-disk ``state.db`` directly so the primary backend can serve cross-profile reads (transcripts, detail) without spawning that profile's backend. rrry)rz)rrrr )r1r_namer>s rE_open_session_db_for_profilersY'&&&&& y{{$W--KE4 9T$ZZ*4 5 5 55rz/api/sessions/{session_id}c:Kt|} ||}|r||nd}|stdd|rt |d|d<||S#|wxYw)NrSession not foundrrr1)rrrr%rr)rr1r"rrs rEget_session_detailrs %g . .B ##J//),6"..%%%$ MC8KLLL L  @!3G!>BcKt|} ||stddddi|S#|wxYw)NrrrrT)rdelete_sessionr%r)rr1r"s rEdelete_session_endpointr&sm &g . .B  ,, MC8KLLL Ld|   s )AA'c^eZdZUdZeeed<dZeeed<dZ eeed<dS) SessionRenameNrcrXr1) r2r3r4rcr r6r5rXrr1r7rrErr4sPE8C=#Hhtn###"GXc]!!!!!rrc|Kt|j} ||}|stdd|j|jtdd|jO |||jpdn0#t$r#}tdt|d}~wwxYw|j| ||jd| |pdd }|jt|j|d <|| S#| wxYw) aUpdate a session: rename (or clear its title) and/or archive it. ``title`` renames (empty/null clears the title); ``archived`` soft-hides or restores the session. Either field may be omitted. ``profile`` targets another profile's session. rrrNrz5Nothing to update; provide 'title' and/or 'archived'.rrT)rrcrX) rr1rr%rcrXset_session_titlerr6set_session_archivedget_session_titlerr)rrr"rrDr7s rErename_session_endpointr<sf &dl 3 3B##J// MC8KLLL L : $-"7N  : ! D$$S$**:;;;; D D D#CFFCCCC D = $  # #C 7 7 7r';';C'@'@'FBGG = $!%dm!4!4F:    s1AD%'BD% B2B--B22AD%%D;z!/api/sessions/{session_id}/exportc&Kddlm}|} ||}|stdd||}|tdd||S#|wxYw)z6Export a single session (metadata + messages) as JSON.rrrrr)rrrr%export_sessionr)rrr"rrs rEexport_session_endpointr^s'&&&&& B ##J// MC8KLLL L  %% <C8KLLL L   s AA::Bc8eZdZUdZeed<dZeeed<dS) SessionPruneZolder_than_daysNrZ) r2r3r4rrr5rZr r6r7rrErrps6OS FHSM     rrz/api/sessions/prunecZK|jdkrtddddlm}|} t dz }||j|jpd|r|nd }d |d |S#|wxYw) zJDelete ended sessions older than N days (mirrors `hermes sessions prune`).rrzolder_than_days must be >= 1rrrr#N)rrZ sessions_dirT)rrp) rr%rrrprune_sessionsrZr"r)rrr"rrps rEprune_sessions_endpointrus a4RSSSS&&&&&& B &((:5 ## 0K'4)5)<)<)>)>HD$   w//   s ABB*z /api/logsrfilelevel componentr)c Kddlm}m}||}|st dd|t dz |z }|s|gdS ddlm} n#t$ri} YnwxYw|r| d kr|nd} |rg| d krO| |} | 7t dd |d d t| nd} t| p| p|} |||st|dnd| | | } |r9| fd| Dt|d d} || dS)Nr) _read_tail LOG_FILESrzUnknown log file: rr)rr)COMPONENT_PREFIXESALLrszUnknown component: rryr`rQ) has_filters min_levelcomponent_prefixesc@g|]}|v|Sr7r)r lneedles rErzget_logs..s+;;;v':':!':':':r)hermes_cli.logsr r rvr%rr"hermes_loggingr rrrrr9rr)rrrrr)r r log_namerr r comp_prefixesr r7rs @rEget_logsrs#65555555}}T""H Q4O4O4OPPPP  6)H4H ??  +r*** 5555555     C5;;==E#9#9tI Y__&&%//*..y99  MYMM%)YYv6H/I/I%J%JMM  ! y;M;V<.s!JJJ ##JJJrzJFailed to list profiles for cron dashboard; falling back to directory scanrrvrr@r=r_fallback_profile_dictsrs rE_cron_profile_dictsr&s{3333335JJ\-G-G-I-IJJJJ 555 cddd&|444445s&3AAcxddlm}|pdpd} ||}||n0#t $r#}t dt|d}~wwxYw||st dd|d || |fS) z=Resolve a profile query value to (profile_name, HERMES_HOME).rrurrrNr Profile '' does not exist.) rrvrnormalize_profile_namevalidate_profile_namerr%r6profile_existsr)r1rrcanonrDs rErrs333333  i & & ( ( 5IC<33C88**51111 <<<CFF;;;;<  & &u - -Z4X4X4X4XYYYY ,..u55 55s*A A8A33A8jobr>cnt|}||d<||d<t||d<|dk|d<|S)Nr1 profile_namerrr|)rr6)r.r1r> annotateds rE_annotate_cron_jobr2sGS I"Ii 'In"4yyIm&-&:I"# r func_namec t|\ t5ddlm}|j}|j}|j} dz |_|jdz |_|jdz |_ t|||i|}||_||_||_n#||_||_||_wxYw dddn #1swxYwYt|tr fd|DSt|trt| S|S)azRun cron.jobs helpers against the selected profile's cron directory. cron.jobs keeps CRON_DIR/JOBS_FILE/OUTPUT_DIR as module globals resolved from the process HERMES_HOME at import time. The dashboard is a single process that can inspect many profiles, so temporarily retarget those globals while holding a lock and restore them immediately after the call. r)jobsrz jobs.jsonoutputNc2g|]}t|Sr7)r2)r jr>r0s rErz*_call_cron_for_profile..s&JJJa"1lD99JJJr) r_CRON_PROFILE_LOCKrr5CRON_DIR JOBS_FILE OUTPUT_DIRrrrrr2) r1r3rMkwargs cron_jobs old_cron_dir old_jobs_fileold_output_dirr7r>r0s @@rE_call_cron_for_profilerBs,G44L$ 22****** ) !+ "-!F] '0;> (1H<  22WY 22DCFCCF!-I "/I #1I ".I "/I #1I 1 1 1 1 222222222222222 &$KJJJJJ6JJJJ&$>!&,=== Ms*AB4!B 7B4 B$$B44B8;B8job_idctD]Y}t|dpd}|s)t|dd}t fd|Dr|cSZdS)NrOrr list_jobsTc3|K|]6}|dkp|dkV7dS)rrONr)r r8rCs rEr z)_find_cron_job_profile..sFNNAquuT{{f$?f (?NNNNNNr)r&r6rvrBrN)rCr1rOr5s` rE_find_cron_job_profilerGs&((7;;v&&,"--  %dK>> NNNNNNN N N KKK  4rz/api/cron/jobscK|pd}|dkrt|ddSg}tD]y}t |dpd}|s) |t|ddO#t$rt d|YvwxYw|S)NrsrETrOrrz'Failed to list cron jobs for profile %s) rrrBr&r6rvextendr@r=r)r1 requestedr5rrOs rElist_cron_jobsrK$s!E((**IE!!%idCCC!#D#%%LL488F##)r**   L KK.t[$GG H H H H L L L NNDd K K K K K L Ks<$B!!%C C z/api/cron/jobs/{job_id}cK|pt|}|stddt|d|}|stdd|S)Nr Job not foundrget_jobrGr%rBrCr1selectedr.s rE get_cron_jobrR6sg8088H EODDDD 9f = =C EODDDD Jrz/api/cron/jobs/{job_id}/runsc K|pt|}|}|r=t|d|}|r*|drt|d} t dt t |d}n#ttf$rd}YnwxYwt|} | ||d}tj } |D]y} | dd uo0| | d | d dz d k| d <t| d| d<|r|| d<z||d| S#| wxYw)uRun sessions produced by a cron job, newest first. Cron runs are stored as ordinary sessions whose id is ``cron_{job_id}_{timestamp}`` (see cron/scheduler.run_job). A job's history is therefore every session whose id carries that prefix; ``source='cron'`` narrows it and the id prefix binds it to this job. Powers the run-history list under each job in the desktop cron detail. Same row shape as ``/api/sessions`` so the frontend can reuse SessionInfo. Backed by ``SessionDB.list_cron_job_runs`` — a bounded ``[prefix, hi)`` id-range scan, not the compression-chain CTE used for the recents list, so the cost scales with the requested window and not the (unbounded) total cron history. rNrrrr rrrNrrrrnrXr1)runsr)rGrBrvr6rrrr@rrlist_cron_job_runsrrr) rCr1rrQrr.limit_nr"rTrrs rErUrUAs 8088HI'$Xy&AA  '3774== 'CIIaSZZ--.. z " &h / /B $$Yga$HHikk ( (Aj!!T)O155lA0F0FGGG3N kN!z!2!233AjM (') w//   s+BBB+B+E++Fc K t|d|j|j|j|j|jS#t $r=}tdtdt|d}~wwxYw)N create_job)r1rrOrrzPOST /api/cron/jobs failedrr) rBr1rrOrrr@r=rr%r6)rr1rDs rEcreate_cron_jobrYos <%  ;]L;     <<< 3444CFF;;;;?????@ w s#0$AAc K|pt|}|stdd t|d||j}n1#t$r$}tdt ||d}~wwxYw|stdd|S)NrrMr update_jobr)rGr%rBrrr6)rCrr1rQr.rs rEupdate_cron_jobrbs8088H EODDDDG$X|VT\RR GGGCHH===3FG EODDDD JsA A. A))A.z/api/cron/jobs/{job_id}/pausecK|pt|}|stddt|d|}|stdd|S)NrrMr pause_jobrOrPs rEpause_cron_jobresg8088H EODDDD ; ? ?C EODDDD Jrz/api/cron/jobs/{job_id}/resumecK|pt|}|stddt|d|}|stdd|S)NrrMr resume_jobrOrPs rEresume_cron_jobrhsg8088H EODDDD < @ @C EODDDD Jrz/api/cron/jobs/{job_id}/triggercK|pt|}|stddt|d|}|stdd|S)NrrMr trigger_jobrOrPs rEtrigger_cron_jobrksg8088H EODDDD =& A AC EODDDD JrcK|pt|}|stdd t|d|}n1#t$r$}tdt ||d}~wwxYw|stddddiS)NrrMr remove_jobrrT)rGr%rBrr6)rCr1rQrprs rEdelete_cron_jobrns8088H EODDDDG(<HH GGGCHH===3FG EODDDD $<s: A(A##A(c8eZdZUeed<iZeeefed<dS)AutomationBlueprintInstantiate blueprintrN)r2r3r4r6r5rr r r7rrErprps3NNNFDcNrrpz/api/cron/blueprintscK ddlm}m}d} ddlm}d|D}ddg|}n,#t $rt dd YnwxYwg}|D][}||}|r7|d gD] }|d d kr||d<!| |\d|iS#t $r=} t dtdt| d} ~ wwxYw)aReturn the blueprint catalog as form schemas for the dashboard gallery. The ``deliver`` slot's options are rewritten from the user's actually configured gateway platforms (plus the universal origin/local/all), so the form never offers a platform that isn't connected. r)CATALOGblueprint_catalog_entryNr]cHg|]}|d|d Srr)r rts rErz(list_cron_blueprints..s+QQQQQUU4[[Q4QQQroriginrz?cron_delivery_targets unavailable; using static deliver optionsTr{rrOrr blueprintszGET /api/cron/blueprints failedr`r) cron.blueprint_catalogrsrtr<r^r@r=rArvr=rr%r6) rsrtdeliver_optionsr^rrrr-frDs rElist_cron_blueprintsr{s<KKKKKKKK i < < < < < <QQ*?*?*A*AQQQI'=9=OO i i i JJXcgJ h h h h h i " "A++A..E 78R0077AuuV}} 11'6) NN5 ! ! ! !g&& <<< 8999CFF;;;;)T[99DD! K K KCCAAAs J K 4   %g|DDtDDD  <<< EFFFCFF;;;;.Vs4   /8tS c * *   r)hermes_cli.mcp_configrrr9r%)r1rrs rElist_mcp_serversrOs666666  %%""$$%%%%%%%%%%%%%%%   }t dt dt%||d}~wwxYwt'||S)Nr)r_save_mcp_serverrrrzServer name is requiredrrServer 'z' already existszBProvide either a URL (HTTP/SSE server) or a command (stdio server)rrrMrDr}zPOST /api/mcp/servers failed)rrrrOrr%rr1rrrMrrDrr}r@r=rr6r)rr1rrrOr server_configrs rEadd_mcp_serverr\sHHHHHHHH IO " " $ $D O4MNNNN  / 0 0&&##%%&&&&&&&&&&&&&&& x4Ut4U4U4UVVVV 8 DL W    %'M x0#x~~// e |4#'<#5#5#7#7 i 9 4$(OOM& ! x.#DH~~ e y* $ fG DL3G 4 4 2 2  T= 1 1 1 2 2 2 2 2 2 2 2 2 2 2 2 2 2 2  GGG 5666CHH===3FG t] 3 33sN A&&A*-A*?E: E." E:.E22E:5E26E::G 9GG z/api/mcp/servers/{name}cKddlm}t|5||}dddn #1swxYwY|stdd|dddiS) Nr)_remove_mcp_serverrr ' not foundrrT)rrrr%)rOr1rrps rEremove_mcp_serverrs888888  ++$$T**+++++++++++++++ R4Pt4P4P4PQQQQ $<s 044z/api/mcp/servers/{name}/testclKddlm}mt5|dddn #1swxYwYvrt dddfd} t j|d{V}n*#t$r}d t|gd cYd}~Sd}~wwxYwd d |Dd S)zFConnect to the server, list its tools, disconnect. Returns tool list.r)r_probe_single_serverNrrrrczt5cdddS#1swxYwYdSrE)r)rrOr1rsrE _probe_scopedz&test_mcp_server.._probe_scopedsG $ $ = =''gdm<< = = = = = = = = = = = = = = = = = =s 044F)rrrITcg|] \}}||d S)rOrr7)r rtds rErz#test_mcp_server..s$BBBDAq1Q//BBBr)rrI) rrrrr%rRrr@r6)rOr1rrrIrrrs`` @@rEtest_mcp_serverrsMLLLLLLL  %%""$$%%%%%%%%%%%%%%% 74Pt4P4P4PQQQQ = = = = = = = =  ' 66666666    XX         BBEBBB  s* 599"A== B$BB$B$c4eZdZUeed<dZeeed<dS)MCPEnabledTogglerCNr1r2r3r4rr5r1r r6r7rrErr/ MMM!GXc]!!!!!rrz/api/mcp/servers/{name}/enabledcKt|jp|5t}|d}t |t r||vrt dd|dt ||t st ddt|j||d<t|d d d n #1swxYwYd |t|jd S) u$Enable or disable an MCP server (takes effect on next session/gateway). Toggles the ``enabled`` key on the server's config.yaml entry — the same flag the agent reads at startup. Disabled servers stay in config so they can be re-enabled without re-entering their settings. mcp_serversrrrrrzMalformed server configrCNTrrOrC) rr1rrvrrr%rrCr)rOrr1rrs rEset_mcp_server_enabledrs5  / 0 0mm''-(('4(( VD,?,?C8T48T8T8TUUU U'$-.. SC8QRRR R#' #5#5 i Cdl1C1C D DDsB*CCCz/api/mcp/catalogcK ddlmn@#t$r3}tdt dd|d}~wwxYwg} t |5t}fd|D}dddn #1swxYwY|D]}|j }| |j |j |j |jjt!|d d d t!|d gpgD|jdu||j d d||j d dd n4#t $rt$rtdYnwxYwg} dD}n#t$rYnwxYw||dS)aBrowse the Nous-approved MCP catalog (the optional-mcps/ manifests). Each entry reports whether it's already installed and enabled so the UI can show install / enabled state inline. This is the same catalog `hermes mcp catalog` / `hermes mcp install` read. ``profile`` scopes the installed/enabled annotations (the catalog itself is repo-shipped and identical for every profile). r mcp_catalogzmcp_catalog import failedr`zCatalog unavailable: rNci|]<}|j|j|jf=Sr7)rO is_installedra)r rDrs rErz$list_mcp_catalog..sT11!&99;;Q;QRSRX;Y;YZrrnonec8g|]}|j|j|jdS)rOr1rrr rDs rErz$list_mcp_catalog..s8!!!VqxQZPP!!!rrD)FFr) rOrrZrrr needs_install installedrCzlist_mcp_catalog failedc"g|] \}}}|||d S))rOkindrr7)r rrrs rErz$list_mcp_catalog..s8   Aqa 0 0   r)r diagnostics)rrr@r=rr%rr list_catalogr}r=rOrrZrrrinstallrvcatalog_diagnostics) r1rrcatalog_entriesinstalled_stater-r}rrs @rElist_mcp_catalogrsS******* SSS 23334QC4Q4QRRRRSG2 G $ $  ";#;#;#=#=>>O(O                %  E:D NN $0,"_1$T66::!!$T5"55;!!!"'d!:,00^LLQO*..uz>JJ1M     "  222 0111112K   (<<>>         { ; ;;s] A .AA E0B EBE!B"B6E.F  F F// F<;F<c`eZdZUeed<iZeeefed<dZeed<dZ e eed<dS)MCPCatalogInstallrOrDTenableNr1) r2r3r4r6r5rDr rrr1r r7rrErrsW IIICc3hFD!GXc]!!!!!rrz/api/mcp/catalog/installc< Kddlm jpd} | t dd|djp|jrYt5j D]\}}|rt|| dddn #1swxYwY j \ ttd d |gzd }n0#t $rt$r}t d d |d}~wwxYwd|dd dS fd} tj|d{VnT#t $rt$r=}t"dt dt'|d}~wwxYwd|ddS)aJInstall a catalog MCP into config.yaml. For HTTP/stdio entries with required env vars, those are written to .env via the standard env path so the agent can read them at session start. Entries that need a git bootstrap (``needs_install``) are installed via the CLI action path because the clone can take time. rrrrNrzNo catalog entry ''rrr mcp-installr`zInstall failed: T)rrO backgroundactionct5jddddS#1swxYwYdS)N)r)r install_entryr)reffective_profiler-rsrE_install_scopedz2install_mcp_catalog_entry.._install_scopedDs - . . A A  % %eDK % @ @ @ A A A A A A A A A A A A A A A A A As ;??z install_mcp_catalog_entry failedrF)rrOr)rrrOr get_entryr%r1rDrr%rrr{_profile_cli_argsr@rRrr=rr6) rr1rOrrr\rrrr-rs ` @@@rEinstall_mcp_catalog_entryrs'&&&&& IO " " $ $D  ! !$ ' 'E }4P4P4P4PQQQQ / x) - . . ) )(( ) )1)"1a((( ) ) ) ) ) ) ) ) ) ) ) ) ) ) ) ) }  R'!"344y$7OODD     R R RC8P38P8PQQQ Q RD VVVAAAAAAAA>0000000000  >>> 9:::CHH====>E : ::sB32B22B69B6#C))D=DD)EF8FFrzaction-mcp-install.logc$eZdZUeed<eed<dS)PairingApproverrNrVr7rrErr^s"MMM IIIIIrrc$eZdZUeed<eed<dS) PairingRevokeruser_idNrVr7rrErrcs"MMM LLLLLrrc"ddlm}|S)Nr PairingStore)gateway.pairingrrs rE_pairing_storerhs ,,,,,, <>>rz /api/pairingctKt}||dS)N)rr-)r list_pending list_approved)stores rE list_pairingrns>   E%%''''))  rz/api/pairing/approvecKt}|jpd}|jpd}|r|st dd|||}|rd|dS||rt dd|d t d d |d |d )Nrrrzplatform and code are requiredrT)ruserrhz Platform 'z0' is locked out after too many failed approvals.rzCode 'z%' not found or expired for platform 'z'.) rrrrrrr% approve_code_is_locked_out)rrrrr7s rEapprove_pairingrws   E #**,,2244H IO " " $ $ * * , ,D V4V4TUUUU   $ / /F ,F+++ H%% ZZZZ     OOO8OOO   rz/api/pairing/revokec(Kt}|jpd}|r|jst dd|||jrddiSt dd|jd |d ) Nrrrz!platform and user_id are requiredrrTrzUser z not found in approved list for r!)rrrrrr%revoke)rrrs rErevoke_pairingrs   E #**,,2244H Y4<Y4WXXXX ||Hdl++d| Pt|PPXPPP   rz/api/pairing/clear-pendingcTKt}|}d|dS)NT)rr)r clear_pending)rr2s rEclear_pending_pairingrs0   E    ! !E5 ) ))rceZdZUeed<dZeeed<gZeeed<dZ eeed<gZ eeed<dZ eed<d Z e ed <dZeeed <dZeeed <dS) WebhookCreaterONreventsr1rrrF deliver_onlydeliver_chat_idsecret)r2r3r4r6r5rr rr r1rrrrrrr7rrErrs III!%K#%%%FDI FHSM   FDIGSL$%)OXc]))) FHSM     rrroutec||ddt|dpg|ddt|d|ddt|dpg|d |d |t|d |d d dud S)Nrrrrrrrr1rrz /webhooks/rrCTF) rOrrrrr1rrr secret_setrC)rvrr)rOrrqs rE_webhook_route_summaryrsyy33uyy**0b1199Y..UYY~6677))Hb))uyy**0b11ii --,,d,,599X..//99Y--U:  rz /api/webhookscKddlm}||}|fd|DdS)Nrc8g|]\}}t||Sr7)r)r rOrrqs rErz!list_webhooks..s9   e #4 9 9   r)rCrq subscriptions)hermes_cli.webhookr_get_webhook_base_url_load_subscriptions_is_webhook_enabledr%)whsubsrqs @rE list_webhooksrs######''))H ! ! # #D))++    #zz||     rz/api/webhooks/enablecK tddn>#t$r1}tdt dd|d}~wwxYwt }ddd|d d|S) NrTz0Failed to enable webhook platform from dashboardr`z"Failed to enable webhook platform.rr)rrrCrh)rr@r=rr%r)rrjs rEenable_webhooksrs 40000  IJJJ7    ;<>      s A,A  Ac Kddl}ddl}ddl}ddlm}|st dd|jpd dd}| d|st dd |j r|j d krt dd |jp|d }|jpd |d|jD||jpdd|jD|j pd |d|d}|j rd|d<|jr d|ji|d<|}|||<|||} t5||| } || d<| S)NrrzHWebhook platform is not enabled. Enable it from the Webhooks page first.rrrr$rz^[a-z0-9][a-z0-9_-]*$zBInvalid name. Use lowercase alphanumeric with hyphens/underscores.ruKDirect delivery requires a real target (telegram, discord, …), not 'log'.rgz Dashboard-created subscription: c^g|]*}||+Sr7rers rErz"create_webhook.. -???QWWYY?17799???rc^g|]*}||+Sr7rerfs rErz"create_webhook..r rz%Y-%m-%dT%H:%M:%SZ)rrrr1rrrTrchat_id deliver_extrar)r(rrrrrr%rOrrr)r+rrrrrrr1rrgmtimerr_save_subscriptionsrr) r_re_secrets_timerrOrrrrqrs rEcreate_webhookr s3###### ! ! # # ]    IO " " $ $ * * , , 4 4S# > >D 99-t 4 4 W      T\U22`    [ 6H22266F'T+Td+T+T??dk???+#??dk???<(5nn%95<<>>JJE % $n C"+T-A!Bo ! ! # #DDJ4   ''))H$T5(;;GGH Nrz/api/webhooks/{name}cKddlm}|pd}|}||vrt dd|d||=||ddiS) NrrrrNo subscription named 'rrrT)rrrrrr%r )rOrr+rs rEdelete_webhookr #s###### :2     $ $ & &C ! ! # #D $4Tc4T4T4TUUUU S 4   $<rceZdZUeed<dS)WebhookEnabledTogglerCNrrr7rrEr r 0rrr z/api/webhooks/{name}/enabledcPKddlm}|pd}|}||vrt dd|dt |j||d<||d |t |jd S) a Enable or disable a webhook route. Disabled routes stay in the subscriptions file (so they can be re-enabled) but the gateway rejects incoming events with 403. The gateway hot-reloads the subscriptions file, so this takes effect on the next event without a restart. rNrrrr rrrCTr) rrrrrr%rrCr )rOrrr+rs rEset_webhook_enabledr 4s$##### :2     $ $ & &C ! ! # #D $4Tc4T4T4TUUUU --DIi4   T\0B0B C CCrz/api/gateway/startcK tddgd}n@#t$r3}tdt dd|d}~wwxYwd|jdd S) NrrZrzFailed to spawn gateway startr`zFailed to start gateway: rTryr{r@r=rr%rr|s rE start_gatewayr RsW#Y$8/JJ WWW 67774UPS4U4UVVVVWtx A AA A.AAz/api/gateway/stopcK tddgd}n@#t$r3}tdt dd|d}~wwxYwd|jdd S) NrstoprzFailed to spawn gateway stopr`zFailed to stop gateway: rTryr r|s rE stop_gatewayr \sV#Y$7HH VVV 56664Ts4T4TUUUUVtx @ @@r c>eZdZUeed<eed<dZeeed<dS)CredentialPoolAddror:Nr)r2r3r4r6r5rr r7rrEr r os:MMMLLLE8C=rr rcnt|ddpd}|t|ddt|ddt|ddt|ddt|dd t|d dt|d d |rt|ndtt|d dd S)z{Redacted, display-safe view of one PooledCredential. ``index`` is 1-based to match CredentialPool.remove_index(). rrrrNrrrZrr last_status request_countr) rrrrrZrr r r has_refresh)rr r)r-rrs rE_pool_entry_summaryr ws E>2 . . 4"EeT4((..UK66%400E:q11umT:: ;;.3;E***GE?DAABB   rz/api/credentials/poolc Kddlm}ddlm}g}|}t |D]} ||}n+#t $rtd|Y6wxYw| }|sQ| |dt|dDdd |iS) Nrr)read_credential_poolzload_pool(%s) failedc4g|]\}}t||Sr7)r )r irDs rErz(list_credential_pool..s4.2a#Aq))rr)rZ)rorr) rrrr! r9rr@r=rrr=r)rr! rraw_poolrr rs rElist_credential_poolr% s#//////444444I$#%%Hhmmoo..   9[))DD    NN1; ? ? ? H ,,..  #6?q6Q6Q6Q       ##s A  %A32A3c Kddl}ddlm}m}m}m}|jpd}|j pd}|r|stdd ||}|j pdp&dt| dz} |||jdd | |d|| } || nK#t"$r>} t$d tdt)| | d} ~ wwxYwd |t| d S)Nr)rrAUTH_TYPE_API_KEYrrrrz!provider and api_key are requiredrzkey #rr})rorrrrrZrz!POST /api/credentials/pool failedTrror2)rrrrr' rrorrr:r%rrrr r r r@r=rr6) r_uuidrrr' rror:r rr-rs rEadd_credential_pool_entryr* s #**,,2244H|!r((**G Y7Y4WXXXXGy""!r((**O.Oc$,,..6I6IA6M.O.O  {{}} !$'      u GGG :;;;CHH===3FGHs4<<>>7J7J K KKs1BD E 9EE z(/api/credentials/pool/{provider}/{index}cKddlm}|pd} ||}||}nK#t $r>}t dtdt||d}~wwxYw|tdd d |t| d S) zGRemove a pool entry. ``index`` is 1-based (matches the list response).rr rrz#DELETE /api/credentials/pool failedrrNrzNo pool entry at that indexTr( ) rrrr remove_indexr@r=rr%r6rr)rorrr rprs rEremove_credential_pool_entryr- s0/////B%%''--//HGy""##E** GGG <===CHH===3FG4QRRRRHs4<<>>7J7J K KKs A B9BBceZdZUeed<dS)MemoryProviderSelectroNrVr7rrEr/ r/ sMMMMMrr/ ceZdZUdZeed<dS) MemoryResetrsrLN)r2r3r4rLr6r5r7rrEr1 r1 s"FCrr1 z /api/memorycHKddlm}t}d}|d}t |t r$t |dpd}g} |D],\}}}|||t|d-n*#t$rt dYnwxYwtdz }i} d D]<\} } || z } | r| jnd| | <=||| d S) Nrdiscover_memory_providersrrr ro)rOrrz discover_memory_providers failedmemories)) MEMORY.mdr )USER.mdr)rr builtin_files)plugins.memoryr4 rrvrrr6r=rr@r=rrr"rrP) r4 rrmemrrOrrmem_dirfilesfnamer+rs rEget_memory_statusr> sz888888 --C F ''(  C#t0SWWZ((.B//I;-F-F-H-H   )D+z   *":..      ;;; 9:::::;*,G EDAA s,0KKMM@TYY[[((qc   s*7B""$C C z/api/memory/providercK|jpd}|dvrd}|r3ddlm}d|D}||vrt dd|d t }t|d tsi|d <||d d <t|d |d S)Nrr>built-inrrrr3 ch|]\}}}| Sr7r7)r rO_d_cs rErz&set_memory_provider..sFFF,$BFFFrrzUnknown memory provider 'z4'. Run `hermes memory setup` to configure a new one.rr roTrr) rorrr9 r4 r%rrrvrr)rror4 rrs rEset_memory_providerrE s #**,,H~~:::<<<<<<FF*C*C*E*EFFF 5 q8qqq  --C cggh'' . .H (CM*( + ++rz/api/memory/resetc K|jpd}|dvrtddt dz }g}g}|dvr|d|d vr|d |D]o}||z }|rT |||F#t$r}td d |d |d}~wwxYwpd|dS)Nrs>rsrr rz#target must be all, memory, or userrr5 >rsr r6 >rsrr7 r`zCould not delete : Tr) rLrrr%rr=r"rr)rrLr; rrr= rrs rE reset_memoryrH )sQk"U ) ) + + 1 1 3 3F ...4YZZZZ*,GGG """{###   y!!!`` ;;== ` ` u%%%% ` ` `#<^PU<^<^Y\<^<^____ `  ` 7 + ++s*)C C:C55C:z/api/ops/doctorcK tdgd}n@#t$r3}tdt dd|d}~wwxYwd|jddS)NrzFailed to spawn doctorr`zFailed to run doctor: rTryr r|s rE run_doctorrJ NsT#XJ99 TTT /0004RS4R4RSSSSTtx : ::rz/api/ops/security-auditcK tddgd}n@#t$r3}tdt dd|d}~wwxYwd|jdd S) NrauditrzFailed to spawn security auditr`zFailed to run security audit: rTryr r|s rErun_security_auditrM Xs\#Z$9;KLL \\\ 78884ZUX4Z4Z[[[[\tx1A B BBr c*eZdZUdZeeed<dS) BackupRequestNr6)r2r3r4r6r r6r5r7rrErO rO bs& FHSM     rrO z/api/ops/backupc,Kdg}|jr,||j t|d}n@#t$r3}t dtdd|d}~wwxYwd|jddS)NrzFailed to spawn backupr`zFailed to run backup: rTry) r6r=rr{r@r=rr%r)rrMr\rs rE run_backuprQ gs :D {) DK%%''(((T#D(33 TTT /0004RS4R4RSSSSTtx : ::sA B.BBc(eZdZUeed<dZeed<dS) ImportRequestarchiveFrN)r2r3r4r6r5rrr7rrErS rS ts- LLLE4rrS z/api/ops/importcK|jpd}|stddtj|stdd|d|g}|jr|d t|d}n@#t$r3}t d td d |d}~wwxYwd |j dd S)Nrrrzarchive path is requiredrrzArchive not found: rz--forcezFailed to spawn importr`zFailed to run import: Try) rT rr%rUrrJrr=r{r@r=rr)rrT rMr\rs rE run_importrV s|!r((**G P4NOOOO 7>>' " "U4S'4S4STTTT g D z IT#D(33 TTT /0004RS4R4RSSSSTtx : ::sB C .CCz/api/ops/hooksc rKddlm}ddlm} ddlm}t |}n#t$rg}YnwxYwg} ||}n*#t$rt dYnwxYwg}|D]}d} | |j |j }n#t$rYnwxYwd} ||j }n#t$rYnwxYw||j |j|j |j|du|pid|d ||d S) zList configured shell hooks from config.yaml with consent + health. Reports each hook's allowlist (consent) status and whether the script is currently executable, plus the set of valid hook events so the create form can offer them. r)r shell_hooks VALID_HOOKSziter_configured_hooks failedNF approved_at)eventmatcherrrallowedr\ r)hooks valid_events)rrrrY hermes_cli.pluginsr[ r9r@iter_configured_hooksr=rallowlist_entry_forr] rscript_is_executabler=r^ rrv) _load_configrY r[ ra specsr@rr-rs rE list_hooksrh s>=====!!!!!!222222k**   E711,,..AA 777 5666667 C   33DJ MMEE    D   $99$,GGJJ    D  Z|||D(!KR,,];;$      , 7 77sA& 55A$B?B B-- B:9B:C C('C(cfeZdZUeed<eed<dZeeed<dZeeed<dZ e ed<dS) HookCreater] rNr^ rTapprove) r2r3r4r6r5r^ r rrrk rr7rrErj rj s^ JJJ LLL!GXc]!!!!GXc]!!!GTrrj c Kddlm}|jpd}|jpd}|r|st dd ddlm}||vr7t dd|d d t|n#t $rt$rYnwxYwt}| d }t|tsi}||d <| |}t|tsg}|||<d |i}|jr |j|d <|jt%|j|d<||t)|d} |jrD |||d} n*#t$rt.dYnwxYwd||| dS)aOAdd a shell hook to config.yaml (and optionally approve it). Shell hooks run arbitrary commands, so this is a privileged action: it writes to the ``hooks:`` config block and, when ``approve`` is set, records consent in the allowlist so the hook actually fires. Takes effect on the next session / gateway restart. rrX rrrevent and command are requiredrrZ zUnknown event 'z '. Valid: ryr` rr^ NrFTzhook consent record failed)rr] rr-)rrY r] rrr%rb r[ rr9r@rrvrrrr^ rrr=rrk _record_approvalr=r) rrY r] rr[ r hooks_cfgr new_entryr-s rE create_hookrq sQ"!!!!! Z 2 $ $ & &E|!r((**G VV4TUUUU  222222  # #ZZZ$))F;DWDW:X:XZZ  $        --C  I i & &!  G mmE""G gt $ $#" %!*G 4I |,#| ) |"4<00 ) NN9H |9 9  ( ( 8 8 8HH 9 9 9 NN7 8 8 8 8 8 97 Q QQs%ABB.-B.F$GGc$eZdZUeed<eed<dS) HookDeleter] rNrVr7rrErs rs s" JJJ LLLLLrrs cKddlm}|jpd}|jpd|rst ddt }|d}d}t|trt||trwt||}fd ||D||<t|||k}||s||=|s| dd t| |n#t$rYnwxYw|st d d d diS)zFRemove a hook from config.yaml and revoke its consent allowlist entry.rrX rrrrm rr` Fcpg|]2}t|tr|dk0|3S)r)rrrv)r rDrs rErzdelete_hook..sL   q$'' ,-EE),<,<,G,G ,G,G,GrNrzNo matching hook foundrT)rrY r] rrr%rrvrrrrrrrr@)rrY r] rro rpbeforers @rE delete_hookrw s"!!!!! Z 2 $ $ & &E|!r((**G VV4TUUUU --C  IG)T"" z)--2F2F'M'M Yu%&&     '   %i&''&0 !%  # GGGT " " "C 7####       N4LMMMM $<s/E EEz/api/ops/checkpointscKtdz }g}d}|rt|D]}|sd}d}|dD]I}|r3 ||jz }|dz }9#t$rYEwxYwJ||z }| |j ||d||dS)z8List the /rollback shadow store checkpoints (read-only).rrrkr)rr< bytes)r# total_bytes) rr)r9rrglobrOrrPrr=rO)cp_dirr#rz rrr2rzs rElist_checkpointsr} 0s1   .FHK }}FNN,,--  E<<>> DE[[%%  99;; 00 "  4 K OO :     ! = ==s!B66 CCz/api/ops/checkpoints/prunecK tddgd}n@#t$r3}tdt dd|d}~wwxYwd|jdd S) Nrprunerz!Failed to spawn checkpoints pruner`zFailed to prune checkpoints: rTryr r|s rEprune_checkpointsr Ps[#]G$<>QRR [[[ :;;;4YTW4Y4YZZZZ[tx1D E EEr c4eZdZUeed<dZeeed<dS)SkillInstallRequest identifierNr1r=r7rrEr r ds/OOO!GXc]!!!!!rr c|pd}|r|dkrgSddlm}t |d||gS)uReturn ``["-p", ]`` for a validated non-default profile. Hub install/uninstall/update run in a fresh ``hermes`` subprocess, and ``_apply_profile_override()`` reads ``-p`` from argv in the child — the only mechanism that reaches import-time-bound globals like ``skills_hub.SKILLS_DIR``. Empty/"current" means the dashboard's own profile (no args, legacy behavior). rrrcrru-p)rrrrv_resolve_profile_dirr*)r1rJrs rErrissB%%''I  ))Y66 333333### ,55i@@ AArz/api/skills/hub/installcdK|jpd}|stdd tt |jp|dd|gzd}nJ#t$rt $r3}tdtd d |d}~wwxYwd |j dd S) Nrrridentifier is requiredrrrrzFailed to spawn skills installr`zFailed to install skill: Try) r rr%r{rr1r@r=rr)rr1r r\rs rEinstall_skill_hubr zs/'R..00J N4LMMMM W# dl5g 6 6(Iz9Z Z     WWW 78884UPS4U4UVVVVWtx1A B BBs*AB$1.BB$c4eZdZUeed<dZeeed<dS)SkillUninstallRequestrONr1r=r7rrEr r s/ III!GXc]!!!!!rr z/api/skills/hub/uninstallcfK|jpd}|stdd tt |jp|dd|dgzd}nJ#t$rt $r3}td td d |d}~wwxYwd |j dd S)Nrrrzname is requiredrr uninstallz--yesrz Failed to spawn skills uninstallr`zFailed to uninstall skill: Try) rOrr%r{rr1r@r=rr)rr1rOr\rs rEuninstall_skill_hubr s IO " " $ $D H4FGGGG Y# dl5g 6 6(KQUW^9_ _     YYY 9:::4WRU4W4WXXXXYtx1C D DDs+AB%2.B  B%c*eZdZUdZeeed<dS)SkillsUpdateRequestNr1)r2r3r4r1r r6r5r7rrEr r s&!GXc]!!!!!rr z/api/skills/hub/updatecK |r|jndp|}tt|ddgzd}nJ#t$rt$r3}t dtdd|d}~wwxYwd|jdd S) Nrr'rzFailed to spawn skills updater`zFailed to update skills: rTry)r1r{rr%r@r=rr)rr1 effectiver\rs rEupdate_skills_hubr s W%)3T\\t? # i ( (Hh+? ?    WWW 67774UPS4U4UVVVVWtx A AAs/4A;.A66A;zOfficial (Nous)z Hermes Indexz skills.shz Well-Knownz Direct URLGitHubClawHubzClaude MarketplaceLobeHubz browse.sh) official hermes-indexz skills-shz well-knownrgithubclawhubzclaude-marketplacelobehubz browse-shc z|j|j|j|j|j|jt |jpgdS)N)rOrrZr trust_levelrepotags)rOrrZr r r rr )rs rE_skill_meta_to_payloadr s@}(l}QV\r""  rc ddlm}|pd}|r<|dkr$t |}||dz dz dz }n |}i}|D][}|d}|rB|d |d |d d ||<\|S#t$ricYSwxYw) ahMap identifier -> installed lock entry for hub-installed skills. Lets the UI mark search results that are already installed. Scoped to ``profile``'s skills/.hub/lock.json when provided (HubLockFile takes an explicit path, sidestepping the import-time LOCK_FILE binding). Best-effort: returns an empty dict if the lock file can't be read. r) HubLockFilerrrcrz.hubz lock.jsonr rOr scan_verdict)rOr r )tools.skills_hubr rrr list_installedrvr@)r1r rJ profile_dirlockr@r-idents rE_installed_hub_identifiersr s$000000]))++  !**i77.y99K;{X5>LMMDD;==D((**  EIIl++E !IIf--#(99]#;#;$)IIn$=$=E   sCC C)(C)z/api/skills/hub/sourcescKfd} tj|d{VS#t$rt$r3}tdtdd|d}~wwxYw)uList the configured skill-hub sources and installed-skill provenance. Gives the dashboard something to show BEFORE a search runs — which hubs are wired up, their trust tier, and a set of featured skills pulled from the centralized index (zero extra API calls). Without this the Browse-hub tab is a blank page with no indication it's even connected to anything. ``profile`` scopes the installed-skill provenance to that profile. cTddlm}|}g}d}g}|D]}|}|t||d}|dkr8 t t |dd|d<n#t$rd|d<YnwxYw|dkrn t t |d d}n#t$rd}YnwxYw||d <|r5 d |d d D}n#t$rg}YnwxYw| ||||tdS)Nrcreate_source_routerF)rrr is_rate_limited rate_limitedr is_availabler@c,g|]}t|Sr7r r rs rErz9list_skills_hub_sources.._run.. s.$$$:;2155$$$rrr r)sourcesindex_availablefeaturedr) r r source_id_SKILL_HUB_SOURCE_LABELSrvrrr@r)r=r ) r r r@r r rrr-r1s rE_runz%list_skills_hub_sources.._runs999999&&((  C--//C155c3??E h2,0>OQV1W1W,X,XE.)) 222,1E.)))2n$$,&*73+N+N&O&OOO ,,,&+OOO,%4k""&&$$?Bzz"TVz?W?W$$$%&&&#%& JJu    . 3G<<    s6!A77B B B22 CC !C.. C=<C=Nz!skills hub sources listing failedrzHub sources failed: r)rRrr%r@r=r)r1r rs` rElist_skills_hub_sourcesr s' ' ' ' ' RR&t,,,,,,,,,  RRR :;;;4P34P4PQQQQRs$A+.A&&A+z/api/skills/hub/searchc&K|pdsgigidSfd} tj|d{VS#t$rt$r3}t dtdd|d}~wwxYw) aKSearch the skill hub across all configured sources. Network-bound (parallel source search); runs in a thread so the FastAPI loop isn't blocked. Returns structured results the UI installs by identifier via POST /api/skills/hub/install, previews via /api/skills/hub/preview, and scans via /api/skills/hub/scan. rrr source_counts timed_outrcddlm}m}|}tt dd}|| pdd\}}}dddd }i}|D]c} | j|vr | || j<|| jd||| jjdkr | || j<dt| d|} d | D||t d S) Nr)r parallel_search_sourcesrr rsrj)rroverall_timeoutr0)rtrusted communityc,g|]}t|Sr7r r s rErz3search_skills_hub.._run..S s!CCCa.q11CCCrr ) r r r rrr rvr rrr )r r r capped all_resultsr r _rankrrdedupedrr1rrZs rEr zsearch_skills_hub.._run? s@RRRRRRRR&&((S]]B''0G0G 5%QS1 1 1 - ]I !!<< ' 'A|4''%&Q\""1=!,,uyyal9K9WYZ/[/[[[%&Q\"t{{}}%%gvg.DC7CCC*"3G<<    rNzskills hub search failedrzHub search failed: r)rrRrr%r@r=r)rrZrr1r rrs ``` @rEsearch_skills_hubr 0 sW"OO  E VRTUUU        4Q&t,,,,,,,,,  QQQ 12224O#4O4OPPPPQsA B.B  Bz/api/skills/hub/previewr cLK|pdstddfd} tj|d{V}n@#t$r3}t dtdd |d}~wwxYw|td d |S) arFetch a hub skill's SKILL.md content + metadata for in-dashboard reading. Resolves the identifier across configured sources (same path the CLI installer uses), then returns the rendered SKILL.md text and the file manifest WITHOUT installing anything. This is the 'read the actual skill before installing' affordance the Browse-hub tab was missing. rrrr rc ddlm}ddlm}|}| |\}}}|s|sdSi}d}|r|jpiD]N\}} t | tr/ | d||<4#t$rd||<YEwxYw| ||<O| ddpd}|p|} t| d t| d dpdt| d dpdt| d p t| d d pd t| ddtt| ddpg|t|d S)Nr_resolve_source_meta_and_bundler rrrz (binary file)SKILL.mdrOrrZr r r r r ) rOrrZr r r r skill_mdr< )hermes_cli.skills_hubr r r r< r%rry rUUnicodeDecodeErrorrvrrr9r) r r r metabundle_srcr< r relrrr s rEr zpreview_skill_hub.._runo sIIIIII999999&&((<Ba2..4"!!\599BU"1m[AAP[Avt,,FD117R88 EJJLL))   s*BBBNzskills hub preview failedrzHub preview failed: rSkill not found: rr%rRrr@r=rr r r7rr s @rEpreview_skill_hubr b s 2 $ $ & &E N4LMMMM$ $ $ $ $ LR(........ RRR 23334P34P4PQQQQR~4O4O4OPPPP MA B .BB z/api/skills/hub/scancLK|pdstddfd} tj|d{V}n@#t$r3}t dtdd |d}~wwxYw|td d |S) uRun the install-time security scan on a hub skill WITHOUT installing it. Fetches the bundle, quarantines it, and runs the same `scan_skill` / `should_allow_install` pipeline the CLI installer uses — then cleans up the quarantine. Returns the verdict, per-finding detail, trust tier, and the install-policy decision so the dashboard can show a visual safety result on demand (the 'scan' button the Browse-hub tab was missing). rrrr rc ddl}ddlm}ddlm}m}ddlm}m}|}||\}}} |sdS|j dkrd} n$t|ddpt|ddp} d} ||} || | } | | | d n#| | | d wwxYw|| d \} }| d urd }n| d}nd}d| j D}ddddd}| j D] }|j |vr||j xxdz cc<!| j| j | j| j| j||||d S)Nrr )r quarantine_bundle) scan_skillshould_allow_installr r rr)rZT) ignore_errorsF)rallowrblockcPg|]#}|j|j|j|j|jd$S)severityrrrrr )r rzs rErz0scan_skill_hub.._run.. sJ     JJ }       r)criticalrrrr) rOr rZr verdictrr policy_reasonfindingsseverity_counts)rr r r r r tools.skills_guardr r rZrrr r skill_namer r r)_shutilr r r r r r r r r scan_sourceq_pathr7r_ reasonrr countsrzr s rEr zscan_skill_hub.._run s+    IIIIIILLLLLLLLGGGGGGGG&&((<rOrs rE _profile_attrr 6!s;tT""" s  !!cdt|ddtt|ddtt|ddt|dt|dtt|ddtt|d d pd tt|d dt|d dpdtt|d dt|dt|dt|dt|ddudS)NrOrrr is_defaultFrrohas_env skill_countrr rdescription_autodistribution_namedistribution_versiondistribution_source alias_pathrOrr rror r r rr r r r has_alias)r r6rr)r>s rEr"r"=!sdFB//M$3344=|UCCDDtW--!$ 33 dIu==>>=}a@@EAFF d4Eu M MNN$T="==C t5G!O!OPP*41DEE -d4J K K,T3HII"466dB  rcd}g}r|fdd\}}|dtd||dz |fdd|fd d |fd d |fd d dddd d}|rt |D]}|rj |j s6||ffd d\}}||j t|d |||dz ||ffd d||ffd d ||ffd d ||ffd d dddd d|S)Nc< |S#t$r|cYSwxYwrE)r@) callable_rs rE_safez&_fallback_profile_dicts.._safeQ!s7 9;;    NNN s c.SrE_read_config_model default_homersrErz)_fallback_profile_dicts..Z!s (G(G (U(UrNNrTz.envc.SrE _count_skillsr srErz)_fallback_profile_dicts..b!s)C)CL)Q)Qrrc.SrE_check_gateway_runningr srErz)_fallback_profile_dicts..c!s\-P-PQ]-^-^rFcVddSNrrrread_profile_metarvr srErz)_fallback_profile_dicts..d!s')G)G )U)U)Y)YZgik)l)lrrrcVddSNr Fr( r srErz)_fallback_profile_dicts..e!s'l.L.L\.Z.Z.^.^_qsx.y.yrr c.|SrEr r-rs rErz)_fallback_profile_dicts..q!s 8W8WX]8^8^rc.|SrEr! r- s rErz)_fallback_profile_dicts..y!s9S9STY9Z9Zrc.|SrEr$ r- s rErz)_fallback_profile_dicts..z!s\=`=`af=g=grcV|ddSr' r( r- s rErz)_fallback_profile_dicts..{!s(9W9WX]9^9^9b9bcprt9u9urcV|ddSr+ r( r- s rErz)_fallback_profile_dicts..|!s2l>\>\]b>c>c>g>ghz}B?C?Cr) _get_default_hermes_homer)r=r6r"_get_profiles_rootr9r_PROFILE_ID_REr+rO)rr rvrro profiles_rootr-r s` @rEr$r$P!s &(H88::L % U U U U UWcddx %% $v-5577 5!Q!Q!Q!Q!QSTUU$u%^%^%^%^%^`eff 5!l!l!l!l!lnpqq %&y&y&y&y&y|A!B!B!%$(#'     "!3355MM113344  E<<>> )D)J)J5:)V)V #e$^$^$^$^$^`lmmOE8 OO E #$!FN2244$u%%Z%Z%Z%Z%Z\]^^#(5e)g)g)g)g)gin#o#o$u%%u%u%u%u%uwyzz$)Eu+C+C+C+C+CEJ%K%K%)(,'+"    " Orcddlm} ||n0#t$r#}t dt |d}~wwxYw||st dd|d||S) zIValidate ``name`` and resolve to its directory or raise an HTTPException.rrurrNrr(r))rrvr+rr%r6r,r)rOrrDs rEr r !s333333<**40000 <<<CFF;;;;<  & &t , ,Y4W4W4W4WXXXX  ' ' - --s A AA c:t||dkrdn|dS)z@Return the shell command used to configure a profile in the CLI.rz hermes setupz setup)r rs rE_profile_setup_commandr8 !s*!Y..>>tOOOCrr c.ddlm}m}|t|} t ||\}}t }t |di|||d<t|||dS#||wxYw)aWrite the main model assignment into a specific profile's config.yaml. Scopes ``load_config``/``save_config`` to ``profile_dir`` via the context-local HERMES_HOME override so the write lands in the target profile's config rather than the dashboard process's active profile. Clears any stale ``base_url`` / ``context_length`` the same way ``POST /api/model/set`` does, since the new model may differ. rset_hermes_home_overridereset_hermes_home_overriderN) rsr; r< r6rrrrvr)r rorr; r< rrs rE_write_profile_modelr= !sVUUUUUUU $ $S%5%5 6 6E*:8UKK%mm3CGGGR4H4H(TYZZG C""5)))))""5))))s AB Brcddlm}m}d}|t|} t }|di}|D]}|jpd} | s i} |jr |j| d<|j r |j | d<|j rt|j | d<|j rt|j | d<|jr |j| d <| s| || <|d z }|rt|n'|s%|dd t|||n#||wxYw|S) aWrite MCP server entries into a specific profile's config.yaml. Scopes ``load_config``/``save_config`` to ``profile_dir`` via the context-local HERMES_HOME override (same mechanism as ``_write_profile_model``) so the entries land in the target profile's config rather than the dashboard process's active profile. Mirrors the per-server shape the ``POST /api/mcp/servers`` endpoint builds, but batched so the whole profile-create write is a single config save. Returns the number of servers written. rr: rrrrrrMrDr}rN)rsr; r< r6rrrOrrrrMrrDrr}rr) r rr; r< writtenrrrr]rOr-s rE_write_profile_mcp_serversr@ !sVUUUUUUUG $ $S%5%5 6 6E *mmnn]B//  FK%2,,..D $&Ez *%ze ~ 2#)>i { 2 $V[ 1 1f z 0#FJ//e { , & f  CI qLGG         GGM4 ( ( (    ""5))))""5)))) Ns C>D.. D;keepcddlm}m}ddlm}m}d|D}d}|t |} g} |dz } | r7| dD]!} | | j j "t} || } | D]$}||vr|| vr| ||dz }%|r || | ||n#||wxYw|S)uADisable every installed skill in ``profile_dir`` not in ``keep``. Profiles manage skill activation via a *disabled* list — all installed skills are active by default and users opt out. The builder's skill step uses "replace" semantics: the user picks exactly which seeded built-in / optional skills stay active, and everything else gets added to the disabled list. (Hub skills are installed separately via subprocess and are active on install.) Scoped to the profile via the HERMES_HOME override. Returns the number of skills newly disabled. rr: get_disabled_skillssave_disabled_skillscbh|],}|||-Sr7rerfs rErz-_disable_unselected_skills..!s2;;;a1;; ;;;rrr r)rsr; r< hermes_cli.skills_configrD rE r6r)r{ r=r#rOrr)r rA r; r< rD rE keep_setdisabled_countrr skills_rootmdrrrOs rE_disable_unselected_skillsrL !slVUUUUUUURRRRRRRR;;4;;;HN $ $S%5%5 6 6E*! !H,      1!'' 33 1 1  0000mm&&s++ $ $D8##H(<(< T"""!#  0 h / / /""5))))""5)))) s B C$$ C1z /api/profilescKddlm} dd|DiS#t$r.tddt |icYSwxYw)Nrrurvc,g|]}t|Sr7r!rs rErz*list_profiles_endpoint.. "s!WWWQ-a00WWWrz@GET /api/profiles failed; falling back to profile directory scanr#r%s rElist_profiles_endpointrO "s333333CWW,:T:T:V:VWWWXX CCC YZZZ3LAABBBBCs*5A"!A"cvKddlm}|jpd}|r d}|}|j }n#|jp|j}|rdnd}|jo|j } ||j||j||j|j }|s| |d| |j}|s| |jn#tttf$r#}t!dt#| d}~wt$$r=}t&d t!d t#| d}~wwxYw|jpd} |jpd} d } | rG| rE t/|| | d} n0#t$$r#t&d |jYnwxYwd} |jrG t3||j} n0#t$$r#t&d|jYnwxYwd} |jrG t7||j} n0#t$$r#t&d|jYnwxYwg}|jD]}|pd}|s t;d|jdd|gd}|||jdT#t$$r<t&d||j||ddYwxYwd|jt#|| | | |dS)NrrurrTr)rOr r clone_configr r)quietrrzPOST /api/profiles failedr`Fz'Setting model for new profile %s failedz-Writing MCP servers for new profile %s failedz2Applying skill selection for new profile %s failedr rrr)r rz7Spawning hub-skill install %s for new profile %s failed)rrOr model_set mcp_writtenskills_disabled hub_installs) rrvr rr r create_profilerOr rseed_profile_skillscheck_alias_collisioncreate_wrapper_scriptrFileExistsErrorrr%r6r@r=rrorr= rr@ r rL r r{r=r)rrexplicit_sourcecloner rQ r collisionrDrorrS rT rU rV r r r\s rEcreate_profile_endpointr_ "s$333333,"3355O F$ >) '94>"'1YYT .Et~3E <**!n%n( +   ?  , ,T , > > >!66tyAA  :  . .ty 9 9 9 ): ;<<<CFF;;;; <<< 2333CFF;;;;< #**,,H Z 2 $ $ & &EIQEQ Q x 7 7 7II Q Q Q NNDdi P P P P P QK W W4T4;KLLKK W W W NNJDI V V V V V W O \ \8t?OPPOO \ \ \ NNOQUQZ [ [ [ [ [ \ *,LoDD !r((**   D'ty(Iu= D   uTX F F G G G G D D D NNI       uT B B C C C C C  D D "*$  snA>CE-D  E8EEF))*GG#G99*H&%H&3I *I65I67KALLz/api/profiles/activecKddlm} |pd}n#t$rd}YnwxYw |pd}n#t$rd}YnwxYw||dS)uHReturn the sticky active profile and the profile this dashboard process is currently running as. ``active`` is the sticky default written by ``hermes profile use`` — the profile new CLI invocations pick up. ``current`` is the profile the running dashboard/gateway is scoped to (derived from HERMES_HOME). rrur)rrc)rrvget_active_profiler@get_active_profile_name)rrrcs rEget_active_profile_endpointrc z"s4333330022?i 6688EI  1 11s! 00A AAcKddlm} ||jn#t$r#}t dt |d}~wt$r#}t dt |d}~wt$r=}t dt dt |d}~wwxYwd | |jd S) uSet the sticky active profile (mirrors ``hermes profile use``). Note: this does not retarget the already-running dashboard process — it changes which profile subsequent CLI commands and gateways use. rrurrNrz POST /api/profiles/active failedr`TrD ) rrvset_active_profilerOrr%r6rr@r=rr*)rrrDs rEset_active_profile_endpointrf "s433333<'' 2222 <<<CFF;;;; <<<CFF;;;; <<< 9:::CFF;;;;<,"E"Edi"P"P Q QQs,% CA  CA88 C8B==Cz"/api/profiles/{name}/setup-commandc(Kdt|iS)Nr)r8 rs rEget_profile_setup_commandrh "s -d33 44rz"/api/profiles/{name}/open-terminalcK t|}tjdrt jdddd|gntjdkrH|ddd d }d |d }t jd d|gnddddd|gfddddd|gfddddd|gfdddd|dgfdddd|dgfdddd|dgfddddd|gfddddd|gfdddd|gfddddd|gfg }|D]L\}}t jd|gtjtjd krt j|nMtd!d"#n#t$r#}td$t|#d}~wt$r#}td!t|#d}~wt$rt$r>}td%|td&t|#d}~wwxYwd'|d(S))Nwinzcmd.exez/crZrrdarwin\z\\rz\"z0tell application "Terminal" activate do script "z " end tell osascriptz-ezx-terminal-emulatorshz-lczgnome-terminalz--konsolezxfce4-terminalzsh -lc 'rz mate-terminal lxterminaltilix alacrittykittyxtermwhich)r6rrrz$No supported terminal emulator foundrrz*POST /api/profiles/%s/open-terminal failedr`T)rr)r8 rrrr3rr)callrr%rr6rr@r=r)rOrescaped applescriptterminal_commandsr popen_argsrDs rEopen_profile_terminal_endpointr{ "s0<(.. < " "5 ) )$   iwGD E E E E \X % %oodF33;;CGGG%   k4= > > > >')>dESZ([\!$4dD%#QRYdE7CD!$4d}t d|t dt |d}~wwxYwd|jt |d S) NrrurrrzPATCH /api/profiles/%s failedr`T)rrOr) rrvrename_profiler rr%r6rr[ r@r=r)rOrrrrDs rErename_profile_endpointr~ "s333333<**4?? <<<CFF;;;;  (<<<CFF;;;; <<< 6===CFF;;;;< s4yy A AAs,& C AC "B C  9CC cKddlm} ||d}n#t$r#}t dt |d}~wt $r#}t dt |d}~wt$r>}t d |t d t |d}~wwxYwdt |d S) zDelete a profile. The dashboard collects the user's confirmation in its own dialog before this request, so we always pass ``yes=True`` to skip the CLI's interactive prompt.rruT)yesrrNrzDELETE /api/profiles/%s failedr`r) rrvdelete_profilerr%r6rr@r=r)rOrrrDs rEdelete_profile_endpointr "s 433333<**4T*:: <<<CFF;;;; <<<CFF;;;; <<< 7>>>CFF;;;;<D * **s," CA  CA55 C9B;;Cz/api/profiles/{name}/soulcKt|dz }|r@ |dddS#t$r}t dd|d}~wwxYwd d dS) NSOUL.mdrrT)rr"r`zCould not read SOUL.md: rrrF)r r"rrr%)rO soul_pathrDs rEget_profile_soulr "s$T**Y6IX X(22G2DDPTUU U X X XC8VST8V8VWWW W XU + ++sA A& A!!A&cKt|dz } ||jdnA#t$r4}td|t dd|d}~wwxYwdd iS) Nr rrz PUT /api/profiles/%s/soul failedr`zCould not write SOUL.md: rrT)r write_textrrr=rr%)rOrr rDs rEupdate_profile_soulr #s$T**Y6IUT\G<<<< UUU 94@@@4SPQ4S4STTTTU $<s3 A1/A,,A1z /api/profiles/{name}/descriptionc<Kddlm}t|}|jpd} |||dnK#t $r>}td|tdt|d }~wwxYwd |dd S) zSet or clear a profile's role description (kanban routing signal). Empty string clears the description. Non-empty stores it as a user-authored description (``description_auto: false``) so the auto-describer won't overwrite it on a sweep. rrurrF)rr z'PUT /api/profiles/%s/description failedr`rNT)rrr ) rrvr rrwrite_profile_metar@r=rr%r6)rOrrr rrDs rE#update_profile_description_endpointr #s433333&t,,K   " ) ) + +D<'' " (    <<< @$GGGCFF;;;;<t G GGsA B9BBz/api/profiles/{name}/modelcKt|}|jpd}|jpd}|r|st dd t |||nK#t $r>}td|t dt|d}~wwxYwd||d S) aSet the main model (``model.default`` + ``model.provider``) for a specific profile's config.yaml, without touching the dashboard's own active profile. Mirrors ``POST /api/model/set`` (main scope) but scoped to the named profile via the HERMES_HOME override. rrrzprovider and model are requiredrz!PUT /api/profiles/%s/model failedr`NT)rror) r rorrr%r= r@r=rr6)rOrr rorrDs rEupdate_profile_model_endpointr ,#s't,,K #**,,H Z 2 $ $ & &E W5W4UVVVV<[(E:::: <<< :DAAACFF;;;;<Hu = ==sA00 B8:9B33B8z"/api/profiles/{name}/describe-autocKt| ddlm}||t |j}nK#t $r>}td|tdt|d}~wwxYwt |j |j |j t |j dS) uoAuto-generate a profile's description via the auxiliary LLM (``auxiliary.profile_describer``). Mirrors ``hermes profile describe --auto``. A failed generation (no aux client, LLM error, …) is returned as ``ok: false`` with a reason rather than an HTTP error so the UI can surface it inline and let the operator fix config and retry. r)r)rSz*POST /api/profiles/%s/describe-auto failedr`rN)rr rr )r rrdescribe_profilerrSr@r=rr%r6rr r)rOrroutcomerDs rEdescribe_profile_auto_endpointr @#s<000000#44TT$.EYEY4ZZ <<< CTJJJCFF;;;;<7:.*!,,  s/A B  9BB c#~K|pd}ddlm}m}m}ddlm}ddlm}d}|r|dkr |}n't|}|t|}t5|j } |j } |j } |j } ||_ |dz |_ ||_ |dz |_ ||ndV| |_ | |_ | |_ | |_ | ||n/#| |_ | |_ | |_ | |_ | ||wwxYwddddS#1swxYwYdS) uScope config + skill-directory resolution to ``profile`` for one request. Two seams must be redirected for skills/toolsets endpoints: 1. ``load_config``/``save_config`` resolve ``get_hermes_home()`` at call time — the context-local override from ``set_hermes_home_override`` reaches them (same pattern as ``_write_profile_model``). 2. ``tools.skills_tool`` and ``tools.skill_manager_tool`` bind ``SKILLS_DIR`` at import time, so the override CANNOT reach them. Like ``_call_cron_for_profile`` does for cron's module globals, temporarily retarget both under a lock and restore them immediately after. ``profile`` of None/""/"current" means "the dashboard's own profile" — config resolution is untouched, but the skill-module globals are still retargeted to the *current* ``get_hermes_home()`` so writes land in the live home even when the import-time binding is stale (e.g. the process imported the modules before a HERMES_HOME override, or under test isolation). rrr)rr; r< ) skills_tool)skill_manager_toolNrcr)rrsrr; r< rIr r rr r6_SKILLS_PROFILE_LOCKrq SKILLS_DIR) r1rJrr; r< _skills_tool _skill_mgrrr old_homeold_skills_dir old_mgr_homeold_mgr_skills_dirs rErrl#s,B%%''I 211111666666 E ; ))Y66%o'' *955 (([)9)9:: 22+%0!- '2#.  "-"8 !,  +h 6  2!&!2++ < < <'/L $&4L #%1J "$6J ! **5111 (0L $&4L #%1J "$6J ! **51111!!222222222222222222s*?D2C6 *D26,D""D22D69D6c>eZdZUeed<eed<dZeeed<dS) SkillTogglerOrCNr1)r2r3r4r6r5rr1r r7rrEr r #s8 III MMM!GXc]!!!!!rr z /api/skillscKddlm}ddlm}t |5t }||}|d}dddn #1swxYwY|D]}|d|v|d<|S)Nr)_find_all_skills)rD T) skip_disabledrOrC)tools.skills_toolr rG rD rr)r1r rD rrrrs rE get_skillsr #s222222<<<<<<  66&&v..!!55566666666666666611y0) Ms&AAAz/api/skills/togglecTKddlm}m}t|jp|5t }||}|jr||jn| |j|||dddn #1swxYwYd|j|jdS)NrrC Tr) rG rD rE rr1rrCrrOr)rr1rD rE rrs rE toggle_skillr #sRRRRRRRR  / 0 0//&&v.. < $   TY ' ' ' ' LL # # #VX.../////////////// dl C CCsA"BBBcXeZdZUeed<eed<dZeeed<dZeeed<dS) SkillCreaterOrNrr1)r2r3r4r6r5rr r1r7rrEr r #sL III LLL"Hhsm"""!GXc]!!!!!rr c>eZdZUeed<eed<dZeeed<dS)SkillContentUpdaterOrNr1r=r7rrEr r #s8 III LLL!GXc]!!!!!rr cN ddlm}|ddS#t$rYdSwxYw)zBest-effort: invalidate the skills system-prompt snapshot after a write. Mirrors what ``skill_manage`` does so a dashboard-authored skill is picked up by the next session without a manual cache reset. r clear_skills_system_prompt_cacheT)clear_snapshotN)agent.prompt_builderr r@r s rE_clear_skills_prompt_cacher #sU  IIIIII((======      s  $$z/api/skills/contentcKddlm}t|5||}|stdd|d|ddz }|stdd|d  |d }n1#t $r$}td t||d }~wwxYw||t|dcd d d S#1swxYwYd S)zCReturn the raw SKILL.md text for a skill, for the dashboard editor.r) _find_skillrzSkill 'z ' not found.rrr z' has no SKILL.md.rrr`N)rOrr)tools.skill_manager_toolr rr%r"rrr6)rOr1r foundr rrs rEget_skill_contentr #s544444  I I D!! VC8T$8T8T8TUUU U=:-   \C8Z$8Z8Z8Z[[[ [ K(('(::GG K K KCCAAAs J K#h--HH I I I I I I I I I I I I I I I I I Is6AC0BC B5B00B55CCCc:Kddlm}t|j5||j|j|jpd}dddn #1swxYwY|ds%td|ddt|S) ukCreate a new custom skill (SKILL.md) from the dashboard editor. Calls the same validated write path as the agent's ``skill_manage`` tool (frontmatter validation, name/category validation, size limit, optional security scan) — but bypasses the agent write-approval gate: a write from the authenticated dashboard IS the user acting directly. r) _create_skillNr(rrzFailed to create skill.r) r r rr1rOrrrvr%r )rr r7s rE create_skillr #s766666  % %OOty$, 8MNNOOOOOOOOOOOOOOO ::i dFJJwHa4b4bcccc   MsAA A c|Kddlm}t|j5||j|j}dddn #1swxYwY|dsN|dd}dt|vrdnd }t|| t|S) zIReplace the SKILL.md of an existing skill (full rewrite) from the editor.r) _edit_skillNr(rzFailed to update skill. not foundrrr) r r rr1rOrrvr6rr%r )rr r7errrs rEupdate_skill_contentr $s544444  % %66TY 55666666666666666 ::i <jj";<<#s3xx~~'7'777Ss;;;;   MsAAAz/api/tools/toolsetsc Kddlm}m}m}m}ddlm}t|5t}||dd}dddn #1swxYwYg}|D]s\} } } tt|| } n#t$rg} YnwxYw| |v} | | || | | | || || dt|S)Nr)$_get_effective_configurable_toolsetsr-_toolset_has_keysgui_toolset_label)resolve_toolsetr.Fr/)rOrrrCr@rrI) r8r r-r r toolsetsr rrr9r[r@r=)r1r r-r r r rr1r7rOrdescrIras rE get_toolsetsr $s )(((((    ..  (-                  FAACC  eT 3t445566EE   EEE --  &&u--!#++D&99       Ms#A  AA+%B B B c4eZdZUeed<dZeeed<dS) ToolsetTogglerCNr1rr7rrEr r ;$rrr z/api/tools/toolsets/{name}cKddlm}m}m}d|D}||vrt dd|t |jp|5t}t||dd }|j r| |n| |||d|d d d n #1swxYwYd ||j d S) aIEnable/disable a configurable toolset for the desktop (cli) platform. Persists to ``platform_toolsets.cli`` via the same ``_save_platform_tools`` helper the CLI ``hermes tools`` picker uses, so the GUI and CLI stay in lockstep. Scoped to ``body.profile`` when provided. Returns 400 for unknown toolset keys. r)r r-_save_platform_toolsch|]\}}}| Sr7r7r ts_keyr#s rErz!toggle_toolset..O$ O O O 1V O O OrrUnknown toolset: rr.Fr/NTr) r8r r-r r%rr1rr[rCrr) rOrr1r r-r rrrCs rEtoggle_toolsetr @$sr P O(L(L(N(N O O OE 54N4N4NOOOO  / 0 0 5 5  5 Q Q Q   < " KK     OOD ! ! !VUG444 5 5 5 5 5 5 5 5 5 5 5 5 5 5 5 > >>sA)CC Cz!/api/tools/toolsets/{name}/configcKddlm}m}m}m}ddlmd|D}||vrtdd|t|5t}| |}g} d} |r|||d D]} fd | d gD} || |d } | r | | d } | | d | dd| dd| | dt| d| ddddn #1swxYwY||du| | dS)aReturn the provider matrix + key status for a toolset's config panel. Surfaces the same provider rows the CLI ``hermes tools`` picker shows (via ``_visible_providers``), each with its ``env_vars`` annotated with current ``is_set`` state so the GUI can render provider selection + key entry. Toolsets without a ``TOOL_CATEGORIES`` entry return an empty provider list and ``has_category: false``. Returns 400 for unknown keys. r)TOOL_CATEGORIESr _is_provider_active_visible_providersrch|]\}}}| Sr7r7r s rErz%get_toolset_config..r$r rrr rNTrc g|]l}|d|d|d|d|dt|ddmS)r+r1rr)r+r1rrr?)rvr)r rDrs rErz&get_toolset_config..}$s    !x"#%%!E(";"; uuU||#$55#3#3"&}}QuX'>'>"?"?    rr~rObadgerrtag post_setuprequires_nous_auth)rOr r r~r r rn)rO has_categoryractive_provider) r8r r r r rrr%rrrvr=r)rOr1r r r r rrcatrr provr~rnrs @rEget_toolset_configr `$sS 0///// O O(L(L(N(N O O OE 54N4N4NOOOO   !!$''   **3DIII      "XXj"55   0/f$OOO 3!8&*6lO   L!XXgr2288E2.. ("&((<"8"8*.txx8L/M/M*N*N!*""1               D4*   sC5EEEc4eZdZUeed<dZeeed<dS)ToolsetProviderSelectroNr1r=r7rrEr r $s/MMM!GXc]!!!!!rr z#/api/tools/toolsets/{name}/providercKddlm}m}d|D}||vrtdd|t |jp|5t } |||j|nC#t$r6}tdt| dd}~wwxYwt|dddn #1swxYwYd ||jd S) uPersist a provider selection for a toolset (no key prompting). Delegates to ``apply_provider_selection`` — the shared, non-interactive core extracted from the CLI configurator — so the GUI and ``hermes tools`` write identical config keys (``web.backend``, ``tts.provider``, etc.). API keys and post-setup flows are handled by separate endpoints. Returns 400 for unknown toolset or provider names. r)apply_provider_selectionr ch|]\}}}| Sr7r7r s rErz*select_toolset_provider..$r rrr rrNT)rrOro) r8r r r%rr1rrorr6rr)rOrr1r r rrrs rEselect_toolset_providerr $sr P O(L(L(N(N O O OE 54N4N4NOOOO  / 0 0 M $ $T4=& A A A A M M MCCs8K8KLLL L MF $- @ @@s6 CA0/C0 B0:1B++B00CCCcDeZdZUeeefed<dZeeed<dS)ToolsetEnvUpdaterDNr1)r2r3r4r r6r5r1r r7rrEr r $s: c3h!GXc]!!!!!rr z/api/tools/toolsets/{name}/envc Kddlm}m}m}ddlmm}d|D}||vrtdd|t|j p|5t}| |} t| rE|| |d D]6} | d gD]}  | d 7fd |jD} | r7tdd |ddt!| g} g}|jD]\}}|rz|rf |||n0#t&$r#}tdt)|d}~wwxYw| |||fdD}dddn #1swxYwYd|| ||dS)uXPersist API keys for a toolset's provider env vars. Writes each ``key: value`` to ``~/.hermes/.env`` via ``save_env_value`` — the same store ``hermes tools`` writes when it prompts for keys. Keys are validated against the env-var allowlist for the toolset's category (the union of every visible provider's ``env_vars``), so the GUI can't write an arbitrary env var through this endpoint. A blank value is treated as "leave unchanged" and skipped. Returns the saved/skipped key lists and the refreshed ``is_set`` status. Returns 400 for unknown toolset or env keys. r)r r r )rrch|]\}}}| Sr7r7r s rErz#save_toolset_env..$RRR<61aRRRrrr rTrr~r+cg|]}|v| Sr7r7)r rr_ s rErz$save_toolset_env..$s#;;;!7*:*:1*:*:*:rzUnknown env var(s) for toolset rG ryNcBi|]}|t|Sr7)r)r rrs rErz$save_toolset_env..$s-===!T--**++===r)rrOsavedskippedr?)r8r r r rrrr%rr1rrvr[rrDrr9r%rrr6r=)rOrr1r r r rvalid_tsrr r rDrr r r+rrrr_ rs @@rEsave_toolset_envr $s @???????RR+O+O+Q+QRRRH 84N4N4NOOOO  / 0 0>>!!$''EE  ***3DIII * **b11**AKK%))))*<;;;dh;;;  ]]]6RY??A[A[]]  (..** $ $JC $ $J"N3 6666!JJJ'CCIIIIJ S!!!!s####====W===9>>>>>>>>>>>>>>>:uTZ [ [[s7C=G,E65G,6 F#FF##=G,,G03G0c4eZdZUeed<dZeeed<dS)ToolsetPostSetupr+Nr1r=r7rrEr r $r>rr z%/api/tools/toolsets/{name}/post-setupcKddlm}m}d|D}||vrtdd||j|vrtdd|j t t |jp|dd |jgzd }nJ#t$rt$r3}t d td d |d}~wwxYwd|j d |jdS)uSpawn a provider's post-setup install hook as a background action. Post-setup hooks (npm install for browser/Camofox, pip install for KittenTTS/Piper/ddgs, cua-driver fetch, etc.) are long-running and text-output, so this follows the spawn-action pattern: it launches ``hermes tools post-setup `` and the frontend tails the log via ``GET /api/actions/tools-post-setup/status``. The ``key`` is validated against the declared post-setup allowlist before spawning. Returns 400 for unknown toolset or post-setup key. ``profile`` spawns the hook as ``hermes -p tools post-setup``. Most hooks install machine-level artifacts (repo node_modules, shared pip packages) where the scope is inert, but hooks that read config or write per-profile state must see the same HERMES_HOME the rest of the drawer's writes targeted — so the scope is threaded for consistency. r)r valid_post_setup_keysch|]\}}}| Sr7r7r s rErz)run_toolset_post_setup..%r rrr rzUnknown post-setup key: rIz post-setuprz Failed to spawn tools post-setupr`zFailed to run post-setup: NT)rrrOr+) r8r r r%r+r{rr1r@r=rr)rOrr1r r r r\rs rErun_toolset_post_setupr %sv( SR+O+O+Q+QRRRH 84N4N4NOOOO x,,....$Itx$I$I      # dl5g 6 6 dh/ 0         9:::$F$F$F     tx1CDH U UUs"/BC&.CCc4eZdZUeed<dZeeed<dS)RawConfigUpdate yaml_textNr1r=r7rrEr r ;%s/NNN!GXc]!!!!!rr z/api/config/rawcKt|5t}dddn #1swxYwY|sdt|dS|dt|dS)ucRaw config.yaml text plus its resolved path. ``path`` is resolved inside ``_profile_scope`` so the Config page header shows the file the switched profile actually reads/writes — /api/status's ``config_path`` is machine-global and always reports the dashboard process's own profile, which is wrong under the global profile switcher. Nrr)rrrr)rrr"r6r)r1rs rEget_config_rawr @%s  !!  !!!!!!!!!!!!!!! ;;==/CII...NNGN44c$ii H HHrSc^K tj|j}t|tst ddt |jp|5t|dddn #1swxYwYddiS#tj $r}t dd|d}~wwxYw)NrzYAML must be a mappingrrTzInvalid YAML: ) r safe_loadr rrr%rr1r YAMLError)rr1rrDs rEupdate_config_rawr P%sJ//&$'' RC8PQQQ Q DL3G 4 4                    d| >JJJ4HQ4H4HIIIIJs<ABA5) B5A99B<A9=BB,B''B,z/api/analytics/usagedayscKddlm}ddlm}|} t j|dzz }|jd|f}d|D}|jd|f}d|D}|jd |f} t| } || | } | d ddddd gd } ||| || d| S#| wxYw)Nrr)InsightsEngineQa} SELECT date(started_at, 'unixepoch') as day, SUM(input_tokens) as input_tokens, SUM(output_tokens) as output_tokens, SUM(cache_read_tokens) as cache_read_tokens, SUM(reasoning_tokens) as reasoning_tokens, COALESCE(SUM(estimated_cost_usd), 0) as estimated_cost, COALESCE(SUM(actual_cost_usd), 0) as actual_cost, COUNT(*) as sessions, SUM(COALESCE(api_call_count, 0)) as api_calls FROM sessions WHERE started_at > ? GROUP BY day ORDER BY day c,g|]}t|Sr7rr rs rErz'get_usage_analytics..w%s111Qa111ra SELECT model, SUM(input_tokens) as input_tokens, SUM(output_tokens) as output_tokens, COALESCE(SUM(estimated_cost_usd), 0) as estimated_cost, COUNT(*) as sessions, SUM(COALESCE(api_call_count, 0)) as api_calls FROM sessions WHERE started_at > ? AND model IS NOT NULL GROUP BY model ORDER BY SUM(input_tokens) + SUM(output_tokens) DESC c,g|]}t|Sr7r r s rErz'get_usage_analytics..%s555DGG555ra2 SELECT SUM(input_tokens) as total_input, SUM(output_tokens) as total_output, SUM(cache_read_tokens) as total_cache_read, SUM(reasoning_tokens) as total_reasoning, COALESCE(SUM(estimated_cost_usd), 0) as total_estimated_cost, COALESCE(SUM(actual_cost_usd), 0) as total_actual_cost, COUNT(*) as total_sessions, SUM(COALESCE(api_call_count, 0)) as total_api_calls FROM sessions WHERE started_at > ? )r r)total_skill_loadstotal_skill_editstotal_skill_actionsdistinct_skills_used)r top_skills)dailyby_modeltotals period_daysr) rragent.insightsr rrrrrfetchonegeneratervr) r rr r"rurr cur2r cur3r insights_reportrs rEget_usage_analyticsr b%s&&&&&&------ B<u -h Y  21#,,..111x ! Y  65T]]__555x ! Y  dmmoo&&(.,,5545@@ $$X%&%&'(()  0 0          s DD==Ez/api/analytics/modelscfKddlm}|} tj|dzz }|jd|f}d|D}g}|D]}|dpd}|d} i} dd lm} | || } | '| j | j | j | j | j | jd } n#t$rYnwxYw|| ||d |d|d|d|d|d|d|d|d|d|d| d|jd|f} t#| }|||d|S#|wxYw)zRich per-model analytics for the Models dashboard page. Returns token/cost/session breakdown per model plus capability metadata from models.dev (context window, vision, tools, reasoning, etc.). rrr a SELECT model, billing_provider, SUM(input_tokens) as input_tokens, SUM(output_tokens) as output_tokens, SUM(cache_read_tokens) as cache_read_tokens, SUM(reasoning_tokens) as reasoning_tokens, COALESCE(SUM(estimated_cost_usd), 0) as estimated_cost, COALESCE(SUM(actual_cost_usd), 0) as actual_cost, COUNT(*) as sessions, SUM(COALESCE(api_call_count, 0)) as api_calls, SUM(tool_call_count) as tool_calls, MAX(started_at) as last_used_at, AVG(input_tokens + output_tokens) as avg_tokens_per_session FROM sessions WHERE started_at > ? AND model IS NOT NULL AND model != '' GROUP BY model, billing_provider ORDER BY SUM(input_tokens) + SUM(output_tokens) DESC c,g|]}t|Sr7r r s rErz(get_models_analytics..%s000AQ000rbilling_providerrrrrrNr input_tokens output_tokenscache_read_tokensreasoning_tokensestimated_cost actual_costr# api_calls tool_calls last_used_atavg_tokens_per_session)rror r r r r r r#r r! r" r# ra SELECT COUNT(DISTINCT model) as distinct_models, SUM(input_tokens) as total_input, SUM(output_tokens) as total_output, SUM(cache_read_tokens) as total_cache_read, SUM(reasoning_tokens) as total_reasoning, COALESCE(SUM(estimated_cost_usd), 0) as total_estimated_cost, COALESCE(SUM(actual_cost_usd), 0) as total_actual_cost, COUNT(*) as total_sessions, SUM(COALESCE(api_call_count, 0)) as total_api_calls FROM sessions WHERE started_at > ? AND model IS NOT NULL AND model != '' )rr r )rrrrrrrvrrrrrrrrr@r=rr r)r rr"rurrrrrorrrr totals_curr s rEget_models_analyticsr% %s>'&&&&& BPu -h "Y#$10000" " Cww1228bHWJD CCCCCC++XZPPP>*,*;+-+=.0.C*,*;-/-A(* D     MM#$ #N 3!$_!5%()<%=$'(:$;"%&6"7"=1 O -!,/ #N 3*-.F*G $    "X%% ' Y   j))++,,    s1A:F > Drr' ) PtyBridger' ceZdZdZdS)r' z5Stub on platforms where pty_bridge can't be imported.Nr) r7rrEr' r' )&s G G Drs\x1b\[RESIZE:(\d+);(\d+)\]g?z^[A-Za-z0-9._-]{1,128}$>rrirrwsr'c4ttjddrdSttjddpd}|r |t vrdS|jr |jjnd}|sdS|t vrdSd|d|pdS) a_Return a rejection reason for the client IP, or None when allowed. Reasons are short machine-parseable tokens logged on the rejection path so a "WS keeps closing" report can be diagnosed from agent.log without a repro. ``None`` means the peer IP passed this gate. See :func:`_ws_client_is_allowed` for the full policy rationale. rFNrrrzpeer_not_loopback peer= bound=rrrGrPrr_LOOPBACK_HOSTSrlrr, rrms rE_ws_client_reasonr2 5&ssy/511t#)\266<"CCEEKKMMJj77t$&I5")..2K to%%t L[ L L9Js L LLrcttjddrdSttjddpd}|r |t vrdS|jr |jjnd}|sdS|t vS)uCheck if the WebSocket client IP is acceptable. Loopback bind: only loopback clients allowed — the legacy ``?token=<_SESSION_TOKEN>`` path is the only auth we have, so we don't want LAN hosts guessing tokens. Explicit non-loopback bind (``--host 0.0.0.0``, ``--host ::``, or a specific address such as a Tailscale/LAN IP, always with ``--insecure``): allow any peer. The operator explicitly opted into non-loopback exposure, so the loopback-only peer restriction does not apply. DNS-rebinding is still blocked by the Host/Origin guard in :func:`_ws_host_origin_is_allowed`, which mirrors the HTTP layer and requires the Host header to match the bound interface — the same defence ``_is_accepted_host`` applies to non-loopback HTTP requests. Gated mode: any peer is allowed — uvicorn's ``proxy_headers=True`` (enabled when the OAuth gate is active so cookies can pick up ``X-Forwarded-Proto``) rewrites ``ws.client.host`` to the X-Forwarded-For value, which is the real internet client IP. The OAuth gate + single-use ``?ticket=`` is the auth at that point; the Host/Origin guard in :func:`_ws_host_origin_is_allowed` is what blocks DNS-rebinding here, not the peer IP. rFTrrrr/ r1 s rE_ws_client_is_allowedr4 K&s0sy/511t #)\266<"CCEEKKMMJj77t$&I5")..2K t / ))rcttjdd}|sdS|jdd}t ||s d|pdd|S|jdd}|sdSt j|}|j d vrdS|j sd |d|St |j |sd |d|SdS) uReturn a Host/Origin rejection reason, or None when allowed. Mirrors :func:`_ws_host_origin_is_allowed` but yields a short machine-parseable token (``host_mismatch …`` / ``origin_mismatch …``) on rejection so the close path can log *why* the upgrade was refused. rNrrrzhost_mismatch host=rr. rv>rhttpszorigin_mismatch origin=) rrGrPrurvrrrrschemer)r, rrrvrs rE_ws_host_origin_reasonr8 s&sL$77J t*..,,K [* 5 5ML[%7CLL LLL Z^^Hb ) )F t \ " "6 * *F }---t =EDDD DDD V]J 7 7EDDD DDD 4rc$t|duS)aApply the dashboard Host/Origin guard to WebSocket upgrades. FastAPI HTTP middleware does not run for WebSocket routes, so the DNS-rebinding Host check used for normal dashboard HTTP requests must be repeated here before accepting the upgrade. Browsers also send an Origin header on WebSocket handshakes; when present, require it to target the same bound dashboard host. N)r8 r, s rE_ws_host_origin_is_allowedr; &s "" % % --rc>t|pt|S)zDFirst Host/Origin or peer-IP rejection reason, or None when allowed.)r8 r2 r: s rE_ws_request_reasonr= &s !" % % >):2)>)>>rc>t|ot|S)zDReturn True when the WebSocket upgrade matches dashboard boundaries.)r; r4 r: s rE_ws_request_is_allowedr? &s %b ) ) G.CB.G.GGrcttjddrdSttjddpd}|r |t vrdSdS)uGShort label for the active WS auth mode — logged on every connection.rFgatedrrrinsecurer)rrGrPrrr0 )rs rE _ws_auth_moderC &sisy/511w#)\266<"CCEEKKMMJj77z :rctttjdd}|rddlm}m}ddlm}m }m }|j dd}|rU ||dS#|$r?}||j d ||jr |jjnd|jj Yd }~d Sd }~wwxYw|j d d} | sdS || dS#|$rI}||j t%||jr |jjnd|jj Yd }~dSd }~wwxYw|j dd} | sdSt'j| t,rdSdS)uValidate WS-upgrade auth; return ``(reason, credential)``. ``reason`` is None when the credential is accepted, else a short machine-parseable token explaining the rejection (``no_credential``, ``token_mismatch``, ``ticket_invalid``, ``internal_invalid``). ``credential`` names which credential type was presented (``ticket``, ``internal``, ``token``, or ``none``) so the accepted path can log *how* a peer authed, not just that it did. Loopback / ``--insecure``: legacy ``?token=<_SESSION_TOKEN>`` query parameter, constant-time compared. Gated (public bind, no ``--insecure``): one of two credentials — * ``?ticket=`` — a browser-minted, single-use, 30s-TTL ticket consumed against the dashboard-auth ticket store. This is what the SPA (and native clients) use. * ``?internal=`` — the process-lifetime internal credential, used only by WS clients the server spawns itself (the embedded-TUI PTY child attaching to ``/api/ws`` and ``/api/pub``). It is multi-use and never expires so the child can reconnect, and is never injected into the SPA — see ``dashboard_auth.ws_tickets`` for the threat model. The legacy ``?token=`` path is unconditionally rejected in gated mode (the SPA bundle isn't carrying the token any longer, and a leaked ``_SESSION_TOKEN`` must not grant WS access once the gate is engaged). Audit-logs the rejection so operators can debug "WS keeps closing" issues from the log. rFr) AuditEvent audit_log) TicketInvalidconsume_internal_credentialconsume_ticketinternalrr)NrJ z internal: )r iprN)internal_invalidrJ ticket) no_credentialr)NrM )ticket_invalidrM r)Nr)token_mismatchr)rrrGrPhermes_cli.dashboard_auth.auditrE rF $hermes_cli.dashboard_auth.ws_ticketsrG rH rI query_paramsrvWS_TICKET_REJECTEDrlrrrr6rxryrzr{) r, rrE rF rG rH rI rJ rrM rs rE_ws_auth_reasonrU &s8@OUCCDDM). JIIIIIII          ?&&z266  6 6++H555''  6 6 6 1---*,);   655555 6$$Xr22 +** . N6 " " "!> . . . I-3xx&(i7BINNRV[      .----- . O   , ,E '&& 5<<>>>+@+@+B+BCC} $ $s0 A))B-.4B((B- CD+">D&&D+c0t|dduS)zETrue when the WS-upgrade credential is accepted. See _ws_auth_reason.rN)rU r: s rE _ws_auth_okrW 's 2  q !T ))rresume sidecar_urlcddlm}m}d}|pd}|r'|dkrt |}||dz d\}}t j} dd l m } | | n,#t$rt d d YnwxYw| dd| dd| dd|t|| d<|rt!|\} } | r| }|| d<|r|| d<|t#x} r| | d<t%||rt|nd| fS)uResolve the argv + cwd + env for the chat PTY. Default: whatever ``hermes --tui`` would run. Tests monkeypatch this function to inject a tiny fake command (``cat``, ``sh -c 'printf …'``) so nothing has to build Node or the TUI bundle. Session resume is propagated via the ``HERMES_TUI_RESUME`` env var — matching what ``hermes_cli.main._launch_tui`` does for the CLI path. Appending ``--resume `` to argv doesn't work because ``ui-tui`` does not parse its argv. ``HERMES_TUI_GATEWAY_URL`` is injected so the PTY child can attach to this process's in-memory ``tui_gateway`` instance instead of spawning its own Python gateway subprocess. `sidecar_url` (when set) is forwarded as ``HERMES_TUI_SIDECAR_URL`` so the spawned ``tui_gateway.entry`` can mirror dispatcher emits to the dashboard's ``/api/pub`` endpoint (see :func:`pub_ws`). `profile` (when set) scopes the ENTIRE chat to that profile by pointing ``HERMES_HOME`` at the profile dir in the child env. Every spawned process (the TUI and the ``tui_gateway.entry`` it launches) resolves ``get_hermes_home()`` from that env var at its own import, so the child binds the profile's config, skills, memory, and state.db from the start — the same propagation ``hermes -p `` performs. The in-process ``HERMES_TUI_GATEWAY_URL`` attach is SKIPPED for scoped chats: the dashboard's in-memory gateway runs under the dashboard's own profile, so a profile-scoped chat must spawn its own gateway subprocess. r)r_make_tui_argvNrrrczui-tuiF)tui_dev)apply_terminal_config_to_env)rDz9Failed to apply terminal config bridge for dashboard chatTr{NODE_ENV productionHERMES_TUI_DISABLE_MOUSErJHERMES_TUI_INLINErqHERMES_TUI_RESUMEHERMES_TUI_SIDECAR_URLHERMES_TUI_GATEWAY_URL)r:rr[ rrr rUr(copyrr] r@r=rArr6r_build_gateway_ws_urlr)rX rY r1rr[ r rJargvrrDr] latest_resume _latest_pathgateway_ws_urls rE_resolve_chat_argvrk 'sD=<<<<<<<"&KB%%''I6Y__&&)33*955 |h6FFFID# *//  C_BBBBBB$$----- ___ NY] ^^^^^_NN:|,,,NN-s333NN&,,, --M *&@&H&H# |  #"F#)  4(3 $% 244 4> ;,:C( ) ::30s3xxxD# 55s<B&B87B8cttjdd}ttjdd}|r|sdSd|vr|dsd|d|n|d|}ttjddr0d d lm}t jd |i}n&t jd ti}d |d|S)a ws:// URL the PTY child should attach to for JSON-RPC gateway traffic. Loopback / ``--insecure``: ``?token=<_SESSION_TOKEN>``. Gated mode: the legacy token path is rejected by ``_ws_auth_ok``, so the server-spawned PTY child authenticates with the process-lifetime internal credential (``?internal=``). It must NOT use a single-use browser ticket: the child reads this URL once at startup and reuses it on every reconnect, and a 30s-TTL ticket can expire before a slow cold boot even dials. rN bound_portrr]:rFrinternal_ws_credentialrJ rws://z/api/ws? rrGrPrrR rp rrr#r{)rportrrp qss rErf rf e's 39lD 1 1D 39lD 1 1D tt $;;ts33; DD  t   sy/511?OOOOOO \ # #Z1G1G1I1I$J K K \ # #Wn$= > > '6 ' '2 ' ''rchannelcttjdd}ttjdd}|r|sdSd|vr|dsd|d|n|d|}ttjddr1d d lm}t j||d }n't jt|d }d |d|S)aws:// URL the PTY child should publish events to, or None when unbound. Loopback / ``--insecure``: uses ``?token=<_SESSION_TOKEN>``. Gated mode: authenticates with the process-lifetime internal credential (``?internal=``), the same one ``_build_gateway_ws_url`` uses. The PTY child is a server-spawned process we trust; the credential is multi-use and never expires, so the child can reconnect ``/api/pub`` without a new URL. (This previously minted a single-use 30s ticket, which meant the child could not reconnect and could miss the window on a slow cold boot.) Connections authenticated this way are recorded under the ``server-internal`` identity in the audit log. rNrm rrrn rFrro )rJ ru )rru rq z /api/pub?rr )ru rrs rrp rt s rE_build_sidecar_urlrw 's 39lD 1 1D 39lD 1 1D tt#&$;;ts7K7K;      TXQaQa[_QaQaFsy/511 S POOOOO \ # #//11g F F  \ # #n$Q$Q R R (6 ( (B ( ((rchKt|\}}|4d{Vt||d}dddd{Vn#1d{VswxYwY|D]K} ||d{V#t$r t d|dYHwxYwdS)z=Fan out one publisher frame to every subscriber on `channel`.Nr7z*broadcast send failed for subscriber on %sTr{)rarrv send_textr@r=rD)rGru rrQrTrr7s rE_broadcast_eventrz 'sw!1#!6!6NJ55555555N&&w3344555555555555555555555555555__ _--(( ( ( ( ( ( ( ( ( _ _ _ LLEwY]L ^ ^ ^ ^ ^ ___s#$A A A)B'B/.B/ct|jdd}t|r|ndS)z?Return the channel id from the query string or None if invalid.ru rrN)rS rv_VALID_CHANNEL_REr+r, ru s rE_channel_or_close_coder~ 's6o!!)R00G'--g66 @77D@rc|dd}t|dkr|S|dddddzS)aClamp a WS close reason to the protocol's 123-byte UTF-8 limit. RFC 6455 caps the close-frame reason at 123 bytes; uvicorn raises if a longer string is passed. Our reasons embed an attacker-controlled origin, so truncate defensively rather than crash the close handler. rr){Nxignorez...)rzrrU)rrVs rE_ws_close_reasonr 'sPkk'9--G 7||s 4C4=   2 2U ::rz/api/ptyc Kjr jjnd}ts:td|ddd{VdSt \}}t}|Mtd||||dtd|d{VdSt}|Htd ||d t|d{VdSt}|Gtd |d t|d{VdS d{Vtd |||ts9dd{Vdd{VdSjdpd}jdpd}t#} | rt%| nd} t'|| |\} } } n#t($rK}d|jdd{Vdd{VYd}~dSd}~wt,$rF}d|dd{Vdd{VYd}~dSd}~wwxYw t/j| | | n#t2$rF}d|dd{Vdd{VYd}~dSd}~wt4t6f$rF}d|dd{Vdd{VYd}~dSd}~wwxYwt9jd$fd }t9j|} d{V}|d}|dkrn|d}|A|d}tA|tBr|"dnd }|stF$|}|r|%tM|kr]tO|(d!}tO|(d"})||#1*|Gn#tV$rYnwxYw|, |d{Vn#t8j-t\f$rYnwxYwdS#|, |d{Vn#t8j-t\f$rYnwxYwwxYw)%Nrz+pty refused: embedded chat disabled peer=%si4zembedded chat disabled)rr z3pty auth rejected reason=%s mode=%s cred=%s peer=%s1zauth: zpty refused: %s peer=%s3zpty refused: %si8z$pty accepted peer=%s mode=%s cred=%su Chat unavailable: the embedded terminal requires a POSIX PTY, which native Windows Python doesn't provide. Install Hermes inside WSL2 to use the dashboard's /chat tab — the rest of the dashboard works here. irrX r1)rX rY r1z Chat unavailable: z )rrDz Chat failed to start: r7cK djtd{V}|dS|stjdd{VI |d{Vn#t $rYdSwxYww)NTr)rr_PTY_READ_CHUNK_TIMEOUTrRrO send_bytesr@)chunkbridgerr, s rEpump_pty_to_wszpty_ws..pump_pty_to_ws%(s ..fk#:E} mA&&&&&&&&& mmE**********     sA** A87A8Trzwebsocket.disconnectry rrrrr0)colsrr7N)/rlr _DASHBOARD_EMBEDDED_CHAT_ENABLEDr=r>rrU rC rDr r8 r2 accept_PTY_BRIDGE_AVAILABLEry rS rvr~ rw rk r%r SystemExitr* spawnr' rrrRr create_taskreceiverr6rz _RESIZE_REr+endrrr*resizerr(cancelCancelledErrorr@)r, peer auth_reasoncredmodehost_origin_reason client_reasonrX r1ru rY rg rrDrr reader_taskmsgmsg_typerrr+r rr rs` @@rEpty_wsr 's|Y /29>>CD + ?FFFhhD)AhBBBBBBBBB(++K ??D A tT   hhD)9:P;:P:P)Q)QhRRRRRRRRR/33% .0BDIIIhhD)9:L)M)MhNNNNNNNNN%b))M  & 666hhD)9-)H)HhIIIIIIIII ))++II4dD$GGG !ll G         hhDh!!!!!!!!!_  * * 2dFo!!),,4G$R((G18B$W---dK +{G   c33 llSCJSSSTTTTTTTTThhDh!!!!!!!!! llLCLLLMMMMMMMMMhhDh!!!!!!!!!  3C888 llLCLLLMMMMMMMMMhhDh!!!!!!!!! w 'llPPPPQQQQQQQQQhhDh!!!!!!!!!  # % %D        %nn&6&677K  $$$$$$CwwvH111'''""C{wwv.8s.C.CLdkk'*** $$S))E C005;;q>>**5;;q>>** 4d 333 LL   ) "                & 2    D            & 2    D  sI%% L/AJ55 L;LL L$$ O .;M//O ;OO EU V- UV-UV-2U;;VV-W=W  W= W%"W=$W%%W=z/api/wsc6Kts|dd{VdSt|s|dd{VdSt|s|dd{VdSddlm}||d{VdS)Nr r r r) handle_ws)r rrW r? tui_gateway.wsr )r, r s rE gateway_wsr c(s +hhDh!!!!!!!!! r??hhDh!!!!!!!!! !" % %hhDh!!!!!!!!!(((((( )B--rz/api/pubc&Kts|dd{VdSt|s|dd{VdSt|s|dd{VdSt |}|s|dd{VdS|d{V t |j||d{Vd{V5#t$rYdSwxYwNr r r i0) r rrW r? r~ r rz rG receive_textr(r} s rEpub_wsr (s +hhDh!!!!!!!!! r??hhDh!!!!!!!!! !" % %hhDh!!!!!!!!!$R((G hhDh!!!!!!!!! ))++  M"267"//:K:K4K4K4K4K4K4KLL L L L L L L L M      s 6D DDz /api/eventscKts|dd{VdSt|s|dd{VdSt|s|dd{VdSt |}|s|dd{VdS|d{Vt |j\}}|4d{V||t |dddd{Vn#1d{VswxYwY | d{V#t$rYnwxYw |4d{V| |}|-|||s||ddddd{VdS#1d{VswxYwYdS#|4d{V| |}|-|||s||ddddd{Vw#1d{VswxYwYwxYwr )r rrW r? r~ r rarGrr[rr r(rvrr)r, ru rQrTrs rE events_wsr (si +hhDh!!!!!!!!! r??hhDh!!!!!!!!! !" % %hhDh!!!!!!!!!$R((G hhDh!!!!!!!!! ))++!1"&!9!9NJ::::::::!!'3551155b999:::::::::::::::::::::::::::6 $//## # # # # # # #  $        6 6 6 6 6 6 6 6!%%g..D R   6"&&w555 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6: 6 6 6 6 6 6 6 6!%%g..D R   6"&&w555 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6sn*6D22 D<?D<E E-*G$,E--G$9AG GG$ I-AI2I I II Irc$ddlm}||S)uANormalise an X-Forwarded-Prefix header value. Thin re-export of :func:`hermes_cli.dashboard_auth.prefix.normalise_prefix` — the single source of truth lives in the dashboard_auth package so the gate middleware, the OAuth routes, the cookie helpers, and the SPA mount all agree on validation rules. r)normalise_prefix) hermes_cli.dashboard_auth.prefixr )rr s rE_normalise_prefixr (s(BAAAAA  C  r applicationcts(|ddtfd}dStdz ddtffd |d d td tfd }|d t tdz d|ddtd tffd }dS)aMount the built SPA. Falls back to index.html for client-side routing. The session token is injected into index.html via a ``z)