openclaw/hermes-agent
1
0
Fork 0
Code Issues Pull Requests Actions 9 Packages Projects Releases Wiki Activity
Files
cae7537359c0ba8fceedc0a6423a4d9f30972100
hermes-agent/hermes_cli
History
teknium1 c4b8f5efee fix(kanban): harden corrupt-db backup against CodeQL path-injection findings 
Path.resolve() before any I/O and confine backup writes to the resolved
parent directory. Adds explicit parent-equality assertions so static
analyzers see the containment guarantee, and walks WAL/SHM sidecars
through the same resolved-parent path so accidental .. segments are
collapsed before shutil.copy2.

Functionally equivalent to the original PR; preserves the corrupt bytes
to <db>.corrupt.<ts>.bak in the same directory, still raises
KanbanDbCorruptError from connect(). E2E with Stefan's exact hex header
+ malformed pages still passes. 163/163 kanban tests still pass.
2026-05-23 05:51:33 -07:00
..
proxy
fix(security): validate Nous Portal inference_base_url against host allowlist
2026-05-22 14:17:40 -07:00
__init__.py
chore: release v0.14.0 (2026.5.16) (#26862)
2026-05-16 02:58:57 -07:00
_parser.py
fix: add dashboard to CLI help epilogue and Docker CI smoke test
2026-05-07 06:16:23 -07:00
_subprocess_compat.py
feat(windows): close remaining POSIX-only landmines — TUI crash, kanban waitpid, AF_UNIX sandbox, /bin/bash, npm .cmd shims, cwd tracking, detach flags
2026-05-08 14:27:40 -07:00
auth_commands.py
feat(cli): wire --manual-paste into `hermes auth add and hermes model`
2026-05-18 20:10:52 -07:00
auth.py
fix(minimax-oauth): refresh short-lived access tokens per request (#30619)
2026-05-22 15:16:15 -07:00
azure_detect.py
feat(azure-foundry): add Microsoft Entra ID auth
2026-05-18 10:14:38 -07:00
backup.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
banner.py
refactor: DRY cleanup from code review
2026-05-15 14:45:43 -07:00
browser_connect.py
feat: auto-launch Chromium-family browser for CDP
2026-05-19 22:34:05 -07:00
bundles.py
feat(skills): add skill bundles — alias /<name> loads multiple skills (#28373)
2026-05-18 21:38:05 -07:00
callbacks.py
fix: ESC cancels secret/sudo prompts, clearer skip messaging (#9902)
2026-04-14 16:11:37 -07:00
checkpoints.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
claw.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
cli_output.py
refactor: remove dead code — 1,784 lines across 77 files (#9180)
2026-04-13 16:32:04 -07:00
clipboard.py
fix(clipboard): only read PNG signature bytes, not entire file
2026-05-13 22:54:21 -07:00
codex_models.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
codex_runtime_plugin_migration.py
fix(codex-runtime): de-dup [plugins.X] tables and stop leaking HERMES_HOME into config.toml
2026-05-15 02:31:30 -07:00
codex_runtime_switch.py
chore: ruff auto-fix PLR6201 resweep — tuple → set in membership tests (#27355)
2026-05-17 02:29:41 -07:00
colors.py
feat: respect NO_COLOR env var and TERM=dumb (#4079)
2026-03-30 17:07:21 -07:00
commands.py
refactor(gateway): migrate Discord adapter to bundled plugin (full Teams parity)
2026-05-22 14:21:41 -07:00
completion.py
test(cli): strengthen zsh completion regression coverage
2026-05-13 09:34:15 -07:00
config.py
feat(secrets): Bitwarden Secrets Manager integration with lazy bws install (#30035)
2026-05-21 14:10:34 -07:00
copilot_auth.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
cron.py
feat: add cron job profile support
2026-05-18 17:39:50 +00:00
curator.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
curses_ui.py
fix(cli): clamp curses color 8 for 8-color terminals (Docker)
2026-05-21 23:40:58 -07:00
debug.py
fix(debug): redact log content at upload time in hermes debug share
2026-05-03 11:42:20 -07:00
default_soul.py
fix: reset default SOUL.md to baseline identity text (#3159)
2026-03-26 01:34:27 -07:00
dep_ensure.py
feat(dep_ensure): complete Windows bootstrap — dep_ensure + install.ps1 + detection (#27845)
2026-05-18 16:34:24 +05:30
dingtalk_auth.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
doctor.py
feat(doctor): surface xAI model retirement in hermes doctor
2026-05-20 09:18:23 -07:00
dump.py
fix(skills): prune dependency/venv dirs from all skill scanners (#30042)
2026-05-21 14:18:02 -07:00
env_loader.py
feat(secrets): label detected credentials with their source (Bitwarden) (#30364)
2026-05-22 03:32:58 -07:00
fallback_cmd.py
fix(fallback): merge fallback_providers with legacy fallback_model configurations
2026-05-23 05:24:57 -07:00
fallback_config.py
fix(fallback): merge fallback_providers with legacy fallback_model configurations
2026-05-23 05:24:57 -07:00
gateway_windows.py
fix(gateway-windows): atomic write for .cmd and startup launcher scripts
2026-05-23 02:30:41 -07:00
gateway.py
fix(gateway,discord-plugin): _platform_status must respect is_connected=False, not silently fall back to check_fn
2026-05-22 14:21:41 -07:00
goals.py
feat: inject current time into goal judge prompt
2026-05-16 23:05:27 -07:00
hooks.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
inventory.py
refactor(inventory): extract shared ConfigContext + build_models_payload
2026-05-13 22:31:11 -07:00
kanban_db.py
fix(kanban): harden corrupt-db backup against CodeQL path-injection findings
2026-05-23 05:51:33 -07:00
kanban_decompose.py
fix: assign single-task kanban decompositions
2026-05-18 20:26:02 -07:00
kanban_diagnostics.py
fix(kanban): honor severity thresholds in diagnostics
2026-05-18 20:47:01 -07:00
kanban_specify.py
fix(cli): make kanban specify max_tokens configurable
2026-05-18 20:15:20 -07:00
kanban_swarm.py
feat(cli): add kanban swarm topology helper
2026-05-18 21:10:12 -07:00
kanban.py
feat(kanban): add scheduled status for delayed follow-ups
2026-05-18 21:39:03 -07:00
logs.py
feat: component-separated logging with session context and filtering (#7991)
2026-04-11 17:23:36 -07:00
main.py
feat(portal): one-shot setup, status CLI, and Nous-included markers (#30860)
2026-05-23 02:39:09 -07:00
mcp_config.py
fix(mcp): pre-compile env-var regex and unify interpolation
2026-05-15 01:43:54 -07:00
memory_setup.py
fix: restrict .env file permissions to 0600
2026-05-14 07:59:38 -07:00
migrate.py
feat(cli): hermes migrate xai [--apply] [--no-backup]
2026-05-20 09:18:23 -07:00
model_catalog.py
codebase: add encoding='utf-8' to all bare open() calls (PLW1514)
2026-05-08 14:27:40 -07:00
model_normalize.py
fix(opencode-go): keep users on opencode-go instead of hijacking to native providers (#20802)
2026-05-06 09:08:33 -07:00
model_switch.py
fix(model-switch): mark bare custom provider as current
2026-05-19 10:57:35 -07:00
models.py
fix: detect gh-copilot deprecation and improve GitHub Models 413 errors (#10648)
2026-05-16 02:24:48 -07:00
nous_subscription.py
feat(web): add SearXNG as a native search-only backend
2026-05-06 10:05:29 -07:00
oneshot.py
fix(fallback): merge fallback_providers with legacy fallback_model configurations
2026-05-23 05:24:57 -07:00
pairing.py
fix(pairing): enforce lockout on approve_code, not just generate_code (#10195) (#21325)
2026-05-07 07:18:21 -07:00
platforms.py
feat: complete plugin platform parity — all 12 integration points
2026-04-29 21:56:51 -07:00
plugins_cmd.py
fix(plugins): widen _sanitize_plugin_name for category-namespaced names
2026-05-22 19:50:32 -07:00
plugins.py
feat(browser): add BrowserProvider ABC mirroring web_search_provider template
2026-05-17 04:04:15 -07:00
portal_cli.py
feat(portal): one-shot setup, status CLI, and Nous-included markers (#30860)
2026-05-23 02:39:09 -07:00
profile_describer.py
fix(skills): prune dependency/venv dirs from all skill scanners (#30042)
2026-05-21 14:18:02 -07:00
profile_distribution.py
fix(skills): prune dependency/venv dirs from all skill scanners (#30042)
2026-05-21 14:18:02 -07:00
profiles.py
fix(skills): prune dependency/venv dirs from all skill scanners (#30042)
2026-05-21 14:18:02 -07:00
providers.py
fix: add default base_url_override for ollama-cloud provider
2026-05-18 14:31:37 -07:00
pt_input_extras.py
fix(cli): make Ctrl+Enter insert newline on WSL/SSH/Windows Terminal (#22777)
2026-05-09 12:48:14 -07:00
pty_bridge.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
relaunch.py
fix(windows): prefer npm.cmd over npm.ps1, skip .py argv0 in relaunch
2026-05-08 14:27:40 -07:00
runtime_provider.py
fix(custom): pass custom provider extra body
2026-05-21 07:48:53 -07:00
secrets_cli.py
feat(secrets): Bitwarden Secrets Manager integration with lazy bws install (#30035)
2026-05-21 14:10:34 -07:00
security_advisories.py
feat(security): supply-chain advisory checker + lazy-install framework + tiered install fallback (#24220)
2026-05-12 01:02:25 -07:00
send_cmd.py
fix(review): address Copilot follow-up on sanitizer and file decode errors
2026-05-16 23:00:58 -05:00
session_recap.py
chore: ruff auto-fix PLR6201 resweep — tuple → set in membership tests (#27355)
2026-05-17 02:29:41 -07:00
setup.py
feat(portal): one-shot setup, status CLI, and Nous-included markers (#30860)
2026-05-23 02:39:09 -07:00
skills_config.py
refactor(config): migrate remaining 33 cfg_get call sites (#17311)
2026-04-29 04:03:03 -07:00
skills_hub.py
fix(skills): prune dependency/venv dirs from all skill scanners (#30042)
2026-05-21 14:18:02 -07:00
skin_engine.py
fix(tui): improve charizard completion menu contrast
2026-05-18 20:05:23 -07:00
slack_cli.py
fix(slack): enable writable app home DMs in manifest
2026-05-08 17:01:12 -07:00
status.py
feat(status): show xAI OAuth login state in hermes status
2026-05-17 11:35:57 -07:00
stdio.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
timeouts.py
perf(agent-loop): cut 47% of per-conversation function calls via 3 targeted hot-path optimizations (#28866)
2026-05-19 14:25:10 -07:00
tips.py
feat: auto-launch Chromium-family browser for CDP
2026-05-19 22:34:05 -07:00
tools_config.py
feat(portal): one-shot setup, status CLI, and Nous-included markers (#30860)
2026-05-23 02:39:09 -07:00
uninstall.py
docs(windows): avoid piping installer directly into iex
2026-05-18 20:05:47 -07:00
vercel_auth.py
feat: add Vercel Sandbox backend
2026-04-29 07:22:33 -07:00
voice.py
fix(tui): restore voice push-to-talk parity (#20897)
2026-05-06 15:49:59 -07:00
web_server.py
fix(plugins): block plugin-api path traversal + project RCE (#29156)
2026-05-23 01:43:52 -07:00
webhook.py
chore: ruff auto-fix PLR6201 — tuple → set in membership tests (#23937)
2026-05-11 11:13:25 -07:00
xai_retirement.py
fix(xai): align migrate retirement map with docs
2026-05-20 09:18:23 -07:00