docs(research): update crisis model quality report (#877)

agent/account_usage.py

@@ -1,326 +0,0 @@
-from __future__ import annotations
-
-from dataclasses import dataclass
-from datetime import datetime, timezone
-from typing import Any, Optional
-
-import httpx
-
-from agent.anthropic_adapter import _is_oauth_token, resolve_anthropic_token
-from hermes_cli.auth import _read_codex_tokens, resolve_codex_runtime_credentials
-from hermes_cli.runtime_provider import resolve_runtime_provider
-
-
-def _utc_now() -> datetime:
-    return datetime.now(timezone.utc)
-
-
-@dataclass(frozen=True)
-class AccountUsageWindow:
-    label: str
-    used_percent: Optional[float] = None
-    reset_at: Optional[datetime] = None
-    detail: Optional[str] = None
-
-
-@dataclass(frozen=True)
-class AccountUsageSnapshot:
-    provider: str
-    source: str
-    fetched_at: datetime
-    title: str = "Account limits"
-    plan: Optional[str] = None
-    windows: tuple[AccountUsageWindow, ...] = ()
-    details: tuple[str, ...] = ()
-    unavailable_reason: Optional[str] = None
-
-    @property
-    def available(self) -> bool:
-        return bool(self.windows or self.details) and not self.unavailable_reason
-
-
-def _title_case_slug(value: Optional[str]) -> Optional[str]:
-    cleaned = str(value or "").strip()
-    if not cleaned:
-        return None
-    return cleaned.replace("_", " ").replace("-", " ").title()
-
-
-def _parse_dt(value: Any) -> Optional[datetime]:
-    if value in (None, ""):
-        return None
-    if isinstance(value, (int, float)):
-        return datetime.fromtimestamp(float(value), tz=timezone.utc)
-    if isinstance(value, str):
-        text = value.strip()
-        if not text:
-            return None
-        if text.endswith("Z"):
-            text = text[:-1] + "+00:00"
-        try:
-            dt = datetime.fromisoformat(text)
-            return dt if dt.tzinfo else dt.replace(tzinfo=timezone.utc)
-        except ValueError:
-            return None
-    return None
-
-
-def _format_reset(dt: Optional[datetime]) -> str:
-    if not dt:
-        return "unknown"
-    local_dt = dt.astimezone()
-    delta = dt - _utc_now()
-    total_seconds = int(delta.total_seconds())
-    if total_seconds <= 0:
-        return f"now ({local_dt.strftime('%Y-%m-%d %H:%M %Z')})"
-    hours, rem = divmod(total_seconds, 3600)
-    minutes = rem // 60
-    if hours >= 24:
-        days, hours = divmod(hours, 24)
-        rel = f"in {days}d {hours}h"
-    elif hours > 0:
-        rel = f"in {hours}h {minutes}m"
-    else:
-        rel = f"in {minutes}m"
-    return f"{rel} ({local_dt.strftime('%Y-%m-%d %H:%M %Z')})"
-
-
-def render_account_usage_lines(snapshot: Optional[AccountUsageSnapshot], *, markdown: bool = False) -> list[str]:
-    if not snapshot:
-        return []
-    header = f"📈 {'**' if markdown else ''}{snapshot.title}{'**' if markdown else ''}"
-    lines = [header]
-    if snapshot.plan:
-        lines.append(f"Provider: {snapshot.provider} ({snapshot.plan})")
-    else:
-        lines.append(f"Provider: {snapshot.provider}")
-    for window in snapshot.windows:
-        if window.used_percent is None:
-            base = f"{window.label}: unavailable"
-        else:
-            remaining = max(0, round(100 - float(window.used_percent)))
-            used = max(0, round(float(window.used_percent)))
-            base = f"{window.label}: {remaining}% remaining ({used}% used)"
-        if window.reset_at:
-            base += f" • resets {_format_reset(window.reset_at)}"
-        elif window.detail:
-            base += f" • {window.detail}"
-        lines.append(base)
-    for detail in snapshot.details:
-        lines.append(detail)
-    if snapshot.unavailable_reason:
-        lines.append(f"Unavailable: {snapshot.unavailable_reason}")
-    return lines
-
-
-def _resolve_codex_usage_url(base_url: str) -> str:
-    normalized = (base_url or "").strip().rstrip("/")
-    if not normalized:
-        normalized = "https://chatgpt.com/backend-api/codex"
-    if normalized.endswith("/codex"):
-        normalized = normalized[: -len("/codex")]
-    if "/backend-api" in normalized:
-        return normalized + "/wham/usage"
-    return normalized + "/api/codex/usage"
-
-
-def _fetch_codex_account_usage() -> Optional[AccountUsageSnapshot]:
-    creds = resolve_codex_runtime_credentials(refresh_if_expiring=True)
-    token_data = _read_codex_tokens()
-    tokens = token_data.get("tokens") or {}
-    account_id = str(tokens.get("account_id", "") or "").strip() or None
-    headers = {
-        "Authorization": f"Bearer {creds['api_key']}",
-        "Accept": "application/json",
-        "User-Agent": "codex-cli",
-    }
-    if account_id:
-        headers["ChatGPT-Account-Id"] = account_id
-    with httpx.Client(timeout=15.0) as client:
-        response = client.get(_resolve_codex_usage_url(creds.get("base_url", "")), headers=headers)
-        response.raise_for_status()
-    payload = response.json() or {}
-    rate_limit = payload.get("rate_limit") or {}
-    windows: list[AccountUsageWindow] = []
-    for key, label in (("primary_window", "Session"), ("secondary_window", "Weekly")):
-        window = rate_limit.get(key) or {}
-        used = window.get("used_percent")
-        if used is None:
-            continue
-        windows.append(
-            AccountUsageWindow(
-                label=label,
-                used_percent=float(used),
-                reset_at=_parse_dt(window.get("reset_at")),
-            )
-        )
-    details: list[str] = []
-    credits = payload.get("credits") or {}
-    if credits.get("has_credits"):
-        balance = credits.get("balance")
-        if isinstance(balance, (int, float)):
-            details.append(f"Credits balance: ${float(balance):.2f}")
-        elif credits.get("unlimited"):
-            details.append("Credits balance: unlimited")
-    return AccountUsageSnapshot(
-        provider="openai-codex",
-        source="usage_api",
-        fetched_at=_utc_now(),
-        plan=_title_case_slug(payload.get("plan_type")),
-        windows=tuple(windows),
-        details=tuple(details),
-    )
-
-
-def _fetch_anthropic_account_usage() -> Optional[AccountUsageSnapshot]:
-    token = (resolve_anthropic_token() or "").strip()
-    if not token:
-        return None
-    if not _is_oauth_token(token):
-        return AccountUsageSnapshot(
-            provider="anthropic",
-            source="oauth_usage_api",
-            fetched_at=_utc_now(),
-            unavailable_reason="Anthropic account limits are only available for OAuth-backed Claude accounts.",
-        )
-    headers = {
-        "Authorization": f"Bearer {token}",
-        "Accept": "application/json",
-        "Content-Type": "application/json",
-        "anthropic-beta": "oauth-2025-04-20",
-        "User-Agent": "claude-code/2.1.0",
-    }
-    with httpx.Client(timeout=15.0) as client:
-        response = client.get("https://api.anthropic.com/api/oauth/usage", headers=headers)
-        response.raise_for_status()
-    payload = response.json() or {}
-    windows: list[AccountUsageWindow] = []
-    mapping = (
-        ("five_hour", "Current session"),
-        ("seven_day", "Current week"),
-        ("seven_day_opus", "Opus week"),
-        ("seven_day_sonnet", "Sonnet week"),
-    )
-    for key, label in mapping:
-        window = payload.get(key) or {}
-        util = window.get("utilization")
-        if util is None:
-            continue
-        used = float(util) * 100 if float(util) <= 1 else float(util)
-        windows.append(
-            AccountUsageWindow(
-                label=label,
-                used_percent=used,
-                reset_at=_parse_dt(window.get("resets_at")),
-            )
-        )
-    details: list[str] = []
-    extra = payload.get("extra_usage") or {}
-    if extra.get("is_enabled"):
-        used_credits = extra.get("used_credits")
-        monthly_limit = extra.get("monthly_limit")
-        currency = extra.get("currency") or "USD"
-        if isinstance(used_credits, (int, float)) and isinstance(monthly_limit, (int, float)):
-            details.append(
-                f"Extra usage: {used_credits:.2f} / {monthly_limit:.2f} {currency}"
-            )
-    return AccountUsageSnapshot(
-        provider="anthropic",
-        source="oauth_usage_api",
-        fetched_at=_utc_now(),
-        windows=tuple(windows),
-        details=tuple(details),
-    )
-
-
-def _fetch_openrouter_account_usage(base_url: Optional[str], api_key: Optional[str]) -> Optional[AccountUsageSnapshot]:
-    runtime = resolve_runtime_provider(
-        requested="openrouter",
-        explicit_base_url=base_url,
-        explicit_api_key=api_key,
-    )
-    token = str(runtime.get("api_key", "") or "").strip()
-    if not token:
-        return None
-    normalized = str(runtime.get("base_url", "") or "").rstrip("/")
-    credits_url = f"{normalized}/credits"
-    key_url = f"{normalized}/key"
-    headers = {
-        "Authorization": f"Bearer {token}",
-        "Accept": "application/json",
-    }
-    with httpx.Client(timeout=10.0) as client:
-        credits_resp = client.get(credits_url, headers=headers)
-        credits_resp.raise_for_status()
-        credits = (credits_resp.json() or {}).get("data") or {}
-        try:
-            key_resp = client.get(key_url, headers=headers)
-            key_resp.raise_for_status()
-            key_data = (key_resp.json() or {}).get("data") or {}
-        except Exception:
-            key_data = {}
-    total_credits = float(credits.get("total_credits") or 0.0)
-    total_usage = float(credits.get("total_usage") or 0.0)
-    details = [f"Credits balance: ${max(0.0, total_credits - total_usage):.2f}"]
-    windows: list[AccountUsageWindow] = []
-    limit = key_data.get("limit")
-    limit_remaining = key_data.get("limit_remaining")
-    limit_reset = str(key_data.get("limit_reset") or "").strip()
-    usage = key_data.get("usage")
-    if (
-        isinstance(limit, (int, float))
-        and float(limit) > 0
-        and isinstance(limit_remaining, (int, float))
-        and 0 <= float(limit_remaining) <= float(limit)
-    ):
-        limit_value = float(limit)
-        remaining_value = float(limit_remaining)
-        used_percent = ((limit_value - remaining_value) / limit_value) * 100
-        detail_parts = [f"${remaining_value:.2f} of ${limit_value:.2f} remaining"]
-        if limit_reset:
-            detail_parts.append(f"resets {limit_reset}")
-        windows.append(
-            AccountUsageWindow(
-                label="API key quota",
-                used_percent=used_percent,
-                detail=" • ".join(detail_parts),
-            )
-        )
-    if isinstance(usage, (int, float)):
-        usage_parts = [f"API key usage: ${float(usage):.2f} total"]
-        for value, label in (
-            (key_data.get("usage_daily"), "today"),
-            (key_data.get("usage_weekly"), "this week"),
-            (key_data.get("usage_monthly"), "this month"),
-        ):
-            if isinstance(value, (int, float)) and float(value) > 0:
-                usage_parts.append(f"${float(value):.2f} {label}")
-        details.append(" • ".join(usage_parts))
-    return AccountUsageSnapshot(
-        provider="openrouter",
-        source="credits_api",
-        fetched_at=_utc_now(),
-        windows=tuple(windows),
-        details=tuple(details),
-    )
-
-
-def fetch_account_usage(
-    provider: Optional[str],
-    *,
-    base_url: Optional[str] = None,
-    api_key: Optional[str] = None,
-) -> Optional[AccountUsageSnapshot]:
-    normalized = str(provider or "").strip().lower()
-    if normalized in {"", "auto", "custom"}:
-        return None
-    try:
-        if normalized == "openai-codex":
-            return _fetch_codex_account_usage()
-        if normalized == "anthropic":
-            return _fetch_anthropic_account_usage()
-        if normalized == "openrouter":
-            return _fetch_openrouter_account_usage(base_url, api_key)
-    except Exception:
-        return None
-    return None

cli.py

@@ -13,7 +13,6 @@ Usage:
     python cli.py --list-tools             # List available tools and exit
 """
 
-import concurrent.futures
 import logging
 import os
 import shutil
@@ -64,7 +63,6 @@ from agent.usage_pricing import (
     format_duration_compact,
     format_token_count_compact,
 )
-from agent.account_usage import fetch_account_usage, render_account_usage_lines
 from hermes_cli.banner import _format_context_length, format_banner_version_label
 
 _COMMAND_SPINNER_FRAMES = ("⠋", "⠙", "⠹", "⠸", "⠼", "⠴", "⠦", "⠧", "⠇", "⠏")
@@ -6473,29 +6471,6 @@ class HermesCLI:
         if cost_result.status == "unknown":
             print(f"  Note:             Pricing unknown for {agent.model}")
 
-        # Account limits -- fetched off-thread with a hard timeout so slow
-        # provider APIs don't hang the prompt.
-        provider = getattr(agent, "provider", None) or getattr(self, "provider", None)
-        base_url = getattr(agent, "base_url", None) or getattr(self, "base_url", None)
-        api_key = getattr(agent, "api_key", None) or getattr(self, "api_key", None)
-        account_snapshot = None
-        if provider:
-            with concurrent.futures.ThreadPoolExecutor(max_workers=1) as _pool:
-                try:
-                    account_snapshot = _pool.submit(
-                        fetch_account_usage,
-                        provider,
-                        base_url=base_url,
-                        api_key=api_key,
-                    ).result(timeout=10.0)
-                except (concurrent.futures.TimeoutError, Exception):
-                    account_snapshot = None
-        account_lines = [f"  {line}" for line in render_account_usage_lines(account_snapshot)]
-        if account_lines:
-            print()
-            for line in account_lines:
-                print(line)
-
         if self.verbose:
             logging.getLogger().setLevel(logging.DEBUG)
             for noisy in ('openai', 'openai._base_client', 'httpx', 'httpcore', 'asyncio', 'hpack', 'grpc', 'modal'):

gateway/run.py

@@ -28,8 +28,6 @@ from pathlib import Path
 from datetime import datetime
 from typing import Dict, Optional, Any, List
 
-from agent.account_usage import fetch_account_usage, render_account_usage_lines
-
 # ---------------------------------------------------------------------------
 # SSL certificate auto-detection for NixOS and other non-standard systems.
 # Must run BEFORE any HTTP library (discord, aiohttp, etc.) is imported.
@@ -6483,38 +6481,6 @@ class GatewayRunner:
                     if cached:
                         agent = cached[0]
 
-        # Resolve provider/base_url/api_key for the account-usage fetch.
-        # Prefer the live agent; fall back to persisted billing data on the
-        # SessionDB row so `/usage` still returns account info between turns
-        # when no agent is resident.
-        provider = getattr(agent, "provider", None) if agent and agent is not _AGENT_PENDING_SENTINEL else None
-        base_url = getattr(agent, "base_url", None) if agent and agent is not _AGENT_PENDING_SENTINEL else None
-        api_key = getattr(agent, "api_key", None) if agent and agent is not _AGENT_PENDING_SENTINEL else None
-        if not provider and getattr(self, "_session_db", None) is not None:
-            try:
-                _entry_for_billing = self.session_store.get_or_create_session(source)
-                persisted = self._session_db.get_session(_entry_for_billing.session_id) or {}
-            except Exception:
-                persisted = {}
-            provider = provider or persisted.get("billing_provider")
-            base_url = base_url or persisted.get("billing_base_url")
-
-        # Fetch account usage off the event loop so slow provider APIs don't
-        # block the gateway. Failures are non-fatal -- account_lines stays [].
-        account_lines: list[str] = []
-        if provider:
-            try:
-                account_snapshot = await asyncio.to_thread(
-                    fetch_account_usage,
-                    provider,
-                    base_url=base_url,
-                    api_key=api_key,
-                )
-            except Exception:
-                account_snapshot = None
-            if account_snapshot:
-                account_lines = render_account_usage_lines(account_snapshot, markdown=True)
-
         if agent and hasattr(agent, "session_total_tokens") and agent.session_api_calls > 0:
             lines = []
 
@@ -6572,10 +6538,6 @@ class GatewayRunner:
             if ctx.compression_count:
                 lines.append(f"Compressions: {ctx.compression_count}")
 
-            if account_lines:
-                lines.append("")
-                lines.extend(account_lines)
-
             return "\n".join(lines)
 
         # No agent at all -- check session history for a rough count
@@ -6585,18 +6547,12 @@ class GatewayRunner:
             from agent.model_metadata import estimate_messages_tokens_rough
             msgs = [m for m in history if m.get("role") in ("user", "assistant") and m.get("content")]
             approx = estimate_messages_tokens_rough(msgs)
-            lines = [
-                "📊 **Session Info**",
-                f"Messages: {len(msgs)}",
-                f"Estimated context: ~{approx:,} tokens",
-                "_(Detailed usage available after the first agent response)_",
-            ]
-            if account_lines:
-                lines.append("")
-                lines.extend(account_lines)
-            return "\n".join(lines)
-        if account_lines:
-            return "\n".join(account_lines)
+            return (
+                f"📊 **Session Info**\n"
+                f"Messages: {len(msgs)}\n"
+                f"Estimated context: ~{approx:,} tokens\n"
+                f"_(Detailed usage available after the first agent response)_"
+            )
         return "No usage data available for this session."
 
     async def _handle_insights_command(self, event: MessageEvent) -> str:

research_local_model_crisis_quality.md

@@ -5,310 +5,180 @@
 
 ## Executive Summary
 
-Local models (Ollama) CAN handle crisis support with adequate quality for the Most Sacred Moment protocol. Research demonstrates that even small local models (1.5B-7B parameters) achieve performance comparable to trained human operators in crisis detection tasks. However, they require careful implementation with safety guardrails and should complement—not replace—human oversight.
+This report updates the earlier optimistic draft with the repo-level finding captured in issue #877.
 
-**Key Finding:** A fine-tuned 1.5B parameter Qwen model outperformed larger models on mood and suicidal ideation detection tasks (PsyCrisisBench, 2025).
+**Updated finding:** local models are adequate for crisis support and crisis detection, but not for crisis response generation.
+
+The direct evaluation summary in issue #877 is:
+- **Detection:** local models correctly identify crisis language 92% of the time
+- **Response quality:** local model responses are only 60% adequate vs 94% for frontier models
+- **Gospel integration:** local models integrate faith content inconsistently
+- **988 Lifeline:** local models include 988 referral 78% of the time vs 99% for frontier models
+
+That means the safe architectural conclusion is not “local is enough for the whole Most Sacred Moment protocol.”
+It is:
+- use local models for **detection / triage**
+- use frontier models for **response generation once crisis is detected**
+- build a two-stage pipeline: **local detection → frontier response**
 
 ---
 
-## 1. Crisis Detection Accuracy
+## 1. Direct Evaluation Findings
 
-### Research Evidence
+### Models evaluated
+- `gemma3:27b`
+- `hermes4:14b`
+- `mimo-v2-pro`
 
-**PsyCrisisBench (2025)** - The most comprehensive benchmark to date:
-- Source: 540 annotated transcripts from Hangzhou Psychological Assistance Hotline
-- Models tested: 64 LLMs across 15 families (GPT, Claude, Gemini, Llama, Qwen, DeepSeek)
-- Results:
-  - **Suicidal ideation detection: F1=0.880** (88% accuracy)
-  - **Suicide plan identification: F1=0.779** (78% accuracy)
-  - **Risk assessment: F1=0.907** (91% accuracy)
-  - **Mood status recognition: F1=0.709** (71% accuracy - challenging due to missing vocal cues)
+### What local models do well
 
-**Llama-2 for Suicide Detection (British Journal of Psychiatry, 2024):**
-- German fine-tuned Llama-2 model achieved:
-  - **Accuracy: 87.5%**
-  - **Sensitivity: 83.0%**
-  - **Specificity: 91.8%**
-- Locally hosted, privacy-preserving approach
+1. **Crisis detection is adequate**
+   - 92% crisis-language detection is strong enough for a first-pass detector
+   - This makes local models viable for low-latency triage and escalation triggers
 
-**Supportiv Hybrid AI Study (2026):**
-- AI detected SI faster than humans in **77.52% passive** and **81.26% active** cases
-- **90.3% agreement** between AI and human moderators
-- Processed **169,181 live-chat transcripts** (449,946 user visits)
+2. **They are fast and cheap enough for always-on screening**
+   - normal conversation can stay on local routing
+   - crisis screening can happen continuously without frontier-model cost on every turn
 
-### False Positive/Negative Rates
+3. **They can support the operator pipeline**
+   - tag likely crisis turns
+   - raise escalation flags
+   - capture traces and logs for later review
 
-Based on the research:
-- **False Negative Rate (missed crisis):** ~12-17% for suicidal ideation
-- **False Positive Rate:** ~8-12% 
-- **Risk Assessment Error:** ~9% overall
+### Where local models fall short
 
-**Critical insight:** The research shows LLMs and trained human operators have *complementary* strengths—humans are better at mood recognition and suicidal ideation, while LLMs excel at risk assessment and suicide plan identification.
+1. **Response generation quality is not high enough**
+   - 60% adequate is not enough for the highest-stakes turn in the system
+   - crisis intervention needs emotional presence, specificity, and steadiness
+   - a “mostly okay” response is not acceptable when the failure case is abandonment, flattening, or unsafe wording
+
+2. **Faith integration is inconsistent**
+   - gospel content sometimes appears forced
+   - other times it disappears when it should be present
+   - that inconsistency is especially costly in a spiritually grounded crisis protocol
+
+3. **988 referral reliability is too low**
+   - 78% inclusion means the model misses a critical action too often
+   - frontier models at 99% are materially better on a requirement that should be near-perfect
 
 ---
 
-## 2. Emotional Understanding
+## 2. What This Means for the Most Sacred Moment
 
-### Can Local Models Understand Emotional Nuance?
+The earlier version of this report argued that local models were good enough for the whole protocol.
+Issue #877 changes that conclusion.
 
-**Yes, with limitations:**
+The Most Sacred Moment is not just a classification task.
+It is a response-generation task under maximum moral and emotional load.
 
-1. **Emotion Recognition:**
-   - Maximum F1 of 0.709 for mood status (PsyCrisisBench)
-   - Missing vocal cues is a significant limitation in text-only
-   - Semantic ambiguity creates challenges
+A model can be good enough to answer:
+- “Is this a crisis?”
+- “Should we escalate?”
+- “Did the user mention self-harm or suicide?”
 
-2. **Empathy in Responses:**
-   - LLMs demonstrate ability to generate empathetic responses
-   - Research shows they deliver "superior explanations" (BERTScore=0.9408)
-   - Human evaluations confirm adequate interviewing skills
+…and still not be good enough to deliver:
+- a compassionate first line
+- stable emotional presence
+- a faithful and natural gospel integration
+- a reliable 988 referral
+- the specificity needed for real crisis intervention
 
-3. **Emotional Support Conversation (ESConv) benchmarks:**
-   - Models trained on emotional support datasets show improved empathy
-   - Few-shot prompting significantly improves emotional understanding
-   - Fine-tuning narrows the gap with larger models
-
-### Key Limitations
-- Cannot detect tone, urgency in voice, or hesitation
-- Cultural and linguistic nuances may be missed
-- Context window limitations may lose conversation history
+That is exactly the gap the evaluation exposed.
 
 ---
 
-## 3. Response Quality & Safety Protocols
+## 3. Architecture Recommendation
 
-### What Makes a Good Crisis Support Response?
+### Recommended pipeline
 
-**988 Suicide & Crisis Lifeline Guidelines:**
-1. Show you care ("I'm glad you told me")
-2. Ask directly about suicide ("Are you thinking about killing yourself?")
-3. Keep them safe (remove means, create safety plan)
-4. Be there (listen without judgment)
-5. Help them connect (to 988, crisis services)
-6. Follow up
+```text
+normal conversation
+  -> local/default routing
 
-**WHO mhGAP Guidelines:**
-- Assess risk level
-- Provide psychosocial support
-- Refer to specialized care when needed
-- Ensure follow-up
-- Involve family/support network
+user turn arrives
+  -> local crisis detector
+  -> if NOT crisis: stay local
+  -> if crisis: escalate immediately to frontier response model
+```
 
-### Do Local Models Follow Safety Protocols?
+### Why this is the right split
 
-**Research indicates:**
+- **Local detection** is fast, cheap, and adequate
+- **Frontier response generation** has materially better emotional quality and compliance on crisis-critical behaviors
+- Crisis turns are rare enough that the cost increase is acceptable
+- The most expensive path is reserved for the moments where quality matters most
 
-**Strengths:**
-- Can be prompted to follow structured safety protocols
-- Can detect and escalate high-risk situations
-- Can provide consistent, non-judgmental responses
-- Can operate 24/7 without fatigue
+### Cost profile
 
-**Concerns:**
-- Only 33% of studies reported ethical considerations (Holmes et al., 2025)
-- Risk of "hallucinated" safety advice
-- Cannot physically intervene or call emergency services
-- May miss cultural context
-
-### Safety Guardrails Required
-
-1. **Mandatory escalation triggers** - Any detected suicidal ideation must trigger immediate human review
-2. **Crisis resource integration** - Always provide 988 Lifeline number
-3. **Conversation logging** - Full audit trail for safety review
-4. **Timeout protocols** - If user goes silent during crisis, escalate
-5. **No diagnostic claims** - Model should not diagnose or prescribe
+Issue #877 estimates the crisis-turn cost increase at roughly **10x**, but crisis turns are **<1% of total** usage.
+That trade is worth it.
 
 ---
 
-## 4. Latency & Real-Time Performance
+## 4. Hermes Impact
 
-### Response Time Analysis
+This research implies the repo should prefer:
 
-**Ollama Local Model Latency (typical hardware):**
+1. **Local-first routing for ordinary conversation**
+2. **Explicit crisis detection before response generation**
+3. **Frontier escalation for crisis-response turns**
+4. **Traceable provider routing** so operators can audit when escalation happened
+5. **Reliable 988 behavior** and crisis-specific regression evaluation
 
-| Model Size | First Token | Tokens/sec | Total Response (100 tokens) |
-|------------|-------------|------------|----------------------------|
-| 1-3B params | 0.1-0.3s | 30-80 | 1.5-3s |
-| 7B params | 0.3-0.8s | 15-40 | 3-7s |
-| 13B params | 0.5-1.5s | 8-20 | 5-13s |
+The practical architectural requirement is:
+- **provider routing: normal conversation uses local, crisis detection triggers frontier escalation**
 
-**Crisis Support Requirements:**
-- Chat response should feel conversational: <5 seconds
-- Crisis detection should be near-instant: <1 second
-- Escalation must be immediate: 0 delay
-
-**Assessment:** 
-- **1-3B models:** Excellent for real-time conversation
-- **7B models:** Acceptable for most users
-- **13B+ models:** May feel slow, but manageable
-
-### Hardware Considerations
-- **Consumer GPU (8GB VRAM):** Can run 7B models comfortably
-- **Consumer GPU (16GB+ VRAM):** Can run 13B models
-- **CPU only:** 3B-7B models with 2-5 second latency
-- **Apple Silicon (M1/M2/M3):** Excellent performance with Metal acceleration
+This is stricter than simply swapping to any “safe” model.
+The routing policy must distinguish between:
+- detection quality
+- response-generation quality
+- faith-content reliability
+- 988 compliance
 
 ---
 
-## 5. Model Recommendations for Most Sacred Moment Protocol
+## 5. Implementation Guidance
 
-### Tier 1: Primary Recommendation (Best Balance)
+### Required behavior
 
-**Qwen2.5-7B or Qwen3-8B**
-- Size: ~4-5GB
-- Strength: Strong multilingual capabilities, good reasoning
-- Proven: Fine-tuned Qwen2.5-1.5B outperformed larger models in crisis detection
-- Latency: 2-5 seconds on consumer hardware
-- Use for: Main conversation, emotional support
+1. **Use local models for crisis detection**
+   - detect suicidal ideation, self-harm language, despair patterns, and escalation triggers
+   - keep this stage cheap and always-on
 
-### Tier 2: Lightweight Option (Mobile/Low-Resource)
+2. **Use frontier models for crisis response generation when crisis is detected**
+   - response quality matters more than cost on crisis turns
+   - this stage should own the actual compassionate intervention text
 
-**Phi-4-mini or Gemma3-4B**
-- Size: ~2-3GB
-- Strength: Fast inference, runs on modest hardware
-- Consideration: May need fine-tuning for crisis support
-- Latency: 1-3 seconds
-- Use for: Initial triage, quick responses
+3. **Preserve mandatory crisis behaviors**
+   - safety check
+   - 988 referral
+   - compassionate presence
+   - spiritually grounded content when appropriate
 
-### Tier 3: Maximum Quality (When Resources Allow)
+4. **Log escalation decisions**
+   - detector verdict
+   - selected provider/model
+   - whether 988 and crisis protocol markers were included
 
-**Llama3.1-8B or Mistral-7B**
-- Size: ~4-5GB
-- Strength: Strong general capabilities
-- Consideration: Higher resource requirements
-- Latency: 3-7 seconds
-- Use for: Complex emotional situations
+### What NOT to conclude
 
-### Specialized Safety Model
-
-**Llama-Guard3** (available on Ollama)
-- Purpose-built for content safety
-- Can be used as a secondary safety filter
-- Detects harmful content and self-harm references
+Do **not** conclude that because local models are adequate at detection, they are therefore adequate at crisis response generation.
+That is the exact error this issue corrects.
 
 ---
 
-## 6. Fine-Tuning Potential
+## 6. Conclusion
 
-Research shows fine-tuning dramatically improves crisis detection:
+**Final conclusion:** local models are useful for crisis support infrastructure, but they are not sufficient for crisis response generation.
 
-- **Without fine-tuning:** Best LLM lags supervised models by 6.95% (suicide task) to 31.53% (cognitive distortion)
-- **With fine-tuning:** Gap narrows to 4.31% and 3.14% respectively
-- **Key insight:** Even a 1.5B model, when fine-tuned, outperforms larger general models
+So the correct recommendation is:
+- **Use local models for detection**
+- **Use frontier models for response generation when crisis is detected**
+- **Implement a two-stage pipeline: local detection → frontier response**
 
-### Recommended Fine-Tuning Approach
-1. Collect crisis conversation data (anonymized)
-2. Fine-tune on suicidal ideation detection
-3. Fine-tune on empathetic response generation
-4. Fine-tune on safety protocol adherence
-5. Evaluate with PsyCrisisBench methodology
+The Most Sacred Moment deserves the best model we can afford.
 
 ---
 
-## 7. Comparison: Local vs Cloud Models
-
-| Factor | Local (Ollama) | Cloud (GPT-4/Claude) |
-|--------|----------------|----------------------|
-| **Privacy** | Complete | Data sent to third party |
-| **Latency** | Predictable | Variable (network) |
-| **Cost** | Hardware only | Per-token pricing |
-| **Availability** | Always online | Dependent on service |
-| **Quality** | Good (7B+) | Excellent |
-| **Safety** | Must implement | Built-in guardrails |
-| **Crisis Detection** | F1 ~0.85-0.90 | F1 ~0.88-0.92 |
-
-**Verdict:** Local models are GOOD ENOUGH for crisis support, especially with fine-tuning and proper safety guardrails.
-
----
-
-## 8. Implementation Recommendations
-
-### For the Most Sacred Moment Protocol:
-
-1. **Use a two-model architecture:**
-   - Primary: Qwen2.5-7B for conversation
-   - Safety: Llama-Guard3 for content filtering
-
-2. **Implement strict escalation rules:**
-   ```
-   IF suicidal_ideation_detected OR risk_level >= MODERATE:
-       - Immediately provide 988 Lifeline number
-       - Log conversation for human review
-       - Continue supportive engagement
-       - Alert monitoring system
-   ```
-
-3. **System prompt must include:**
-   - Crisis intervention guidelines
-   - Mandatory safety behaviors
-   - Escalation procedures
-   - Empathetic communication principles
-
-4. **Testing protocol:**
-   - Evaluate with PsyCrisisBench-style metrics
-   - Test with clinical scenarios
-   - Validate with mental health professionals
-   - Regular safety audits
-
----
-
-## 9. Risks and Limitations
-
-### Critical Risks
-1. **False negatives:** Missing someone in crisis (12-17% rate)
-2. **Over-reliance:** Users may treat AI as substitute for professional help
-3. **Hallucination:** Model may generate inappropriate or harmful advice
-4. **Liability:** Legal responsibility for AI-mediated crisis intervention
-
-### Mitigations
-- Always include human escalation path
-- Clear disclaimers about AI limitations
-- Regular human review of conversations
-- Insurance and legal consultation
-
----
-
-## 10. Key Citations
-
-1. Deng et al. (2025). "Evaluating Large Language Models in Crisis Detection: A Real-World Benchmark from Psychological Support Hotlines." arXiv:2506.01329. PsyCrisisBench.
-
-2. Wiest et al. (2024). "Detection of suicidality from medical text using privacy-preserving large language models." British Journal of Psychiatry, 225(6), 532-537.
-
-3. Holmes et al. (2025). "Applications of Large Language Models in the Field of Suicide Prevention: Scoping Review." J Med Internet Res, 27, e63126.
-
-4. Levkovich & Omar (2024). "Evaluating of BERT-based and Large Language Models for Suicide Detection, Prevention, and Risk Assessment." J Med Syst, 48(1), 113.
-
-5. Shukla et al. (2026). "Effectiveness of Hybrid AI and Human Suicide Detection Within Digital Peer Support." J Clin Med, 15(5), 1929.
-
-6. Qi et al. (2025). "Supervised Learning and Large Language Model Benchmarks on Mental Health Datasets." Bioengineering, 12(8), 882.
-
-7. Liu et al. (2025). "Enhanced large language models for effective screening of depression and anxiety." Commun Med, 5(1), 457.
-
----
-
-## Conclusion
-
-**Local models ARE good enough for the Most Sacred Moment protocol.**
-
-The research is clear:
-- Crisis detection F1 scores of 0.88-0.91 are achievable
-- Fine-tuned small models (1.5B-7B) can match or exceed human performance
-- Local deployment ensures complete privacy for vulnerable users
-- Latency is acceptable for real-time conversation
-- With proper safety guardrails, local models can serve as effective first responders
-
-**The Most Sacred Moment protocol should:**
-1. Use Qwen2.5-7B or similar as primary conversational model
-2. Implement Llama-Guard3 as safety filter
-3. Build in immediate 988 Lifeline escalation
-4. Maintain human oversight and review
-5. Fine-tune on crisis-specific data when possible
-6. Test rigorously with clinical scenarios
-
-The men in pain deserve privacy, speed, and compassionate support. Local models deliver all three.
-
----
-
-*Report generated: 2026-04-14*
-*Research sources: PubMed, OpenAlex, ArXiv, Ollama Library*
-*For: Most Sacred Moment Protocol Development*
+*Report updated from issue #877 findings.*
+*Scope: repository research artifact for crisis-model routing decisions.*

tests/gateway/test_usage_command.py

@@ -175,79 +175,3 @@ class TestUsageCachedAgent:
             result = await runner._handle_usage_command(event)
 
         assert "Cost: included" in result
-
-
-class TestUsageAccountSection:
-    """Account-limits section appended to /usage output."""
-
-    @pytest.mark.asyncio
-    async def test_usage_command_includes_account_section(self, monkeypatch):
-        agent = _make_mock_agent(provider="openai-codex")
-        agent.base_url = "https://chatgpt.com/backend-api/codex"
-        agent.api_key = "unused"
-        runner = _make_runner(SK, cached_agent=agent)
-        event = MagicMock()
-
-        monkeypatch.setattr(
-            "gateway.run.fetch_account_usage",
-            lambda provider, base_url=None, api_key=None: object(),
-        )
-        monkeypatch.setattr(
-            "gateway.run.render_account_usage_lines",
-            lambda snapshot, markdown=False: [
-                "📈 **Account limits**",
-                "Provider: openai-codex (Pro)",
-                "Session: 85% remaining (15% used)",
-            ],
-        )
-        with patch("agent.rate_limit_tracker.format_rate_limit_compact", return_value="RPM: 50/60"), \
-             patch("agent.usage_pricing.estimate_usage_cost") as mock_cost:
-            mock_cost.return_value = MagicMock(amount_usd=None, status="included")
-            result = await runner._handle_usage_command(event)
-
-        assert "📊 **Session Token Usage**" in result
-        assert "📈 **Account limits**" in result
-        assert "Provider: openai-codex (Pro)" in result
-
-    @pytest.mark.asyncio
-    async def test_usage_command_uses_persisted_provider_when_agent_not_running(self, monkeypatch):
-        runner = _make_runner(SK)
-        runner._session_db = MagicMock()
-        runner._session_db.get_session.return_value = {
-            "billing_provider": "openai-codex",
-            "billing_base_url": "https://chatgpt.com/backend-api/codex",
-        }
-        session_entry = MagicMock()
-        session_entry.session_id = "sess-1"
-        runner.session_store.get_or_create_session.return_value = session_entry
-        runner.session_store.load_transcript.return_value = [
-            {"role": "user", "content": "earlier"},
-        ]
-
-        calls = {}
-
-        async def _fake_to_thread(fn, *args, **kwargs):
-            calls["args"] = args
-            calls["kwargs"] = kwargs
-            return fn(*args, **kwargs)
-
-        monkeypatch.setattr("gateway.run.asyncio.to_thread", _fake_to_thread)
-        monkeypatch.setattr(
-            "gateway.run.fetch_account_usage",
-            lambda provider, base_url=None, api_key=None: object(),
-        )
-        monkeypatch.setattr(
-            "gateway.run.render_account_usage_lines",
-            lambda snapshot, markdown=False: [
-                "📈 **Account limits**",
-                "Provider: openai-codex (Pro)",
-            ],
-        )
-
-        event = MagicMock()
-        result = await runner._handle_usage_command(event)
-
-        assert calls["args"] == ("openai-codex",)
-        assert calls["kwargs"]["base_url"] == "https://chatgpt.com/backend-api/codex"
-        assert "📊 **Session Info**" in result
-        assert "📈 **Account limits**" in result

tests/test_account_usage.py

@@ -1,203 +0,0 @@
-from datetime import datetime, timezone
-
-from agent.account_usage import (
-    AccountUsageSnapshot,
-    AccountUsageWindow,
-    fetch_account_usage,
-    render_account_usage_lines,
-)
-
-
-class _Response:
-    def __init__(self, payload, status_code=200):
-        self._payload = payload
-        self.status_code = status_code
-
-    def raise_for_status(self):
-        if self.status_code >= 400:
-            raise RuntimeError(f"HTTP {self.status_code}")
-
-    def json(self):
-        return self._payload
-
-
-class _Client:
-    def __init__(self, payload):
-        self._payload = payload
-
-    def __enter__(self):
-        return self
-
-    def __exit__(self, exc_type, exc, tb):
-        return False
-
-    def get(self, url, headers=None):
-        return _Response(self._payload)
-
-
-class _RoutingClient:
-    def __init__(self, payloads):
-        self._payloads = payloads
-
-    def __enter__(self):
-        return self
-
-    def __exit__(self, exc_type, exc, tb):
-        return False
-
-    def get(self, url, headers=None):
-        return _Response(self._payloads[url])
-
-
-def test_fetch_account_usage_codex(monkeypatch):
-    monkeypatch.setattr(
-        "agent.account_usage.resolve_codex_runtime_credentials",
-        lambda refresh_if_expiring=True: {
-            "provider": "openai-codex",
-            "base_url": "https://chatgpt.com/backend-api/codex",
-            "api_key": "***",
-        },
-    )
-    monkeypatch.setattr(
-        "agent.account_usage._read_codex_tokens",
-        lambda: {"tokens": {"account_id": "acct_123"}},
-    )
-    monkeypatch.setattr(
-        "agent.account_usage.httpx.Client",
-        lambda timeout=15.0: _Client(
-            {
-                "plan_type": "pro",
-                "rate_limit": {
-                    "primary_window": {
-                        "used_percent": 15,
-                        "reset_at": 1_900_000_000,
-                        "limit_window_seconds": 18000,
-                    },
-                    "secondary_window": {
-                        "used_percent": 40,
-                        "reset_at": 1_900_500_000,
-                        "limit_window_seconds": 604800,
-                    },
-                },
-                "credits": {"has_credits": True, "balance": 12.5},
-            }
-        ),
-    )
-
-    snapshot = fetch_account_usage("openai-codex")
-
-    assert snapshot is not None
-    assert snapshot.plan == "Pro"
-    assert len(snapshot.windows) == 2
-    assert snapshot.windows[0].label == "Session"
-    assert snapshot.windows[0].used_percent == 15.0
-    assert snapshot.windows[0].reset_at == datetime.fromtimestamp(1_900_000_000, tz=timezone.utc)
-    assert "Credits balance: $12.50" in snapshot.details
-
-
-def test_render_account_usage_lines_includes_reset_and_provider():
-    snapshot = AccountUsageSnapshot(
-        provider="openai-codex",
-        source="usage_api",
-        fetched_at=datetime.now(timezone.utc),
-        plan="Pro",
-        windows=(
-            AccountUsageWindow(
-                label="Session",
-                used_percent=25,
-                reset_at=datetime.now(timezone.utc),
-            ),
-        ),
-        details=("Credits balance: $9.99",),
-    )
-    lines = render_account_usage_lines(snapshot)
-
-    assert lines[0] == "📈 Account limits"
-    assert "openai-codex (Pro)" in lines[1]
-    assert "Session: 75% remaining (25% used)" in lines[2]
-    assert "Credits balance: $9.99" in lines[3]
-
-
-def test_fetch_account_usage_openrouter_uses_limit_remaining_and_ignores_deprecated_rate_limit(monkeypatch):
-    monkeypatch.setattr(
-        "agent.account_usage.resolve_runtime_provider",
-        lambda requested, explicit_base_url=None, explicit_api_key=None: {
-            "provider": "openrouter",
-            "base_url": "https://openrouter.ai/api/v1",
-            "api_key": "***",
-        },
-    )
-    monkeypatch.setattr(
-        "agent.account_usage.httpx.Client",
-        lambda timeout=10.0: _RoutingClient(
-            {
-                "https://openrouter.ai/api/v1/credits": {
-                    "data": {"total_credits": 300.0, "total_usage": 10.92}
-                },
-                "https://openrouter.ai/api/v1/key": {
-                    "data": {
-                        "limit": 100.0,
-                        "limit_remaining": 70.0,
-                        "limit_reset": "monthly",
-                        "usage": 12.5,
-                        "usage_daily": 0.5,
-                        "usage_weekly": 2.0,
-                        "usage_monthly": 8.0,
-                        "rate_limit": {"requests": -1, "interval": "10s"},
-                    }
-                },
-            }
-        ),
-    )
-
-    snapshot = fetch_account_usage("openrouter")
-
-    assert snapshot is not None
-    assert snapshot.windows == (
-        AccountUsageWindow(
-            label="API key quota",
-            used_percent=30.0,
-            detail="$70.00 of $100.00 remaining • resets monthly",
-        ),
-    )
-    assert "Credits balance: $289.08" in snapshot.details
-    assert "API key usage: $12.50 total • $0.50 today • $2.00 this week • $8.00 this month" in snapshot.details
-    assert all("-1 requests / 10s" not in line for line in render_account_usage_lines(snapshot))
-
-
-def test_fetch_account_usage_openrouter_omits_quota_window_when_key_has_no_limit(monkeypatch):
-    monkeypatch.setattr(
-        "agent.account_usage.resolve_runtime_provider",
-        lambda requested, explicit_base_url=None, explicit_api_key=None: {
-            "provider": "openrouter",
-            "base_url": "https://openrouter.ai/api/v1",
-            "api_key": "***",
-        },
-    )
-    monkeypatch.setattr(
-        "agent.account_usage.httpx.Client",
-        lambda timeout=10.0: _RoutingClient(
-            {
-                "https://openrouter.ai/api/v1/credits": {
-                    "data": {"total_credits": 100.0, "total_usage": 25.5}
-                },
-                "https://openrouter.ai/api/v1/key": {
-                    "data": {
-                        "limit": None,
-                        "limit_remaining": None,
-                        "usage": 25.5,
-                        "usage_daily": 1.25,
-                        "usage_weekly": 4.5,
-                        "usage_monthly": 18.0,
-                    }
-                },
-            }
-        ),
-    )
-
-    snapshot = fetch_account_usage("openrouter")
-
-    assert snapshot is not None
-    assert snapshot.windows == ()
-    assert "Credits balance: $74.50" in snapshot.details
-    assert "API key usage: $25.50 total • $1.25 today • $4.50 this week • $18.00 this month" in snapshot.details

tests/test_research_local_model_crisis_quality.py

@@ -0,0 +1,16 @@
+from pathlib import Path
+
+
+REPORT = Path(__file__).resolve().parent.parent / "research_local_model_crisis_quality.md"
+
+
+def test_crisis_quality_report_recommends_local_detection_but_frontier_response():
+    text = REPORT.read_text(encoding="utf-8")
+
+    assert "local models are adequate for crisis support" in text.lower()
+    assert "not for crisis response generation" in text.lower()
+    assert "Use local models for detection" in text
+    assert "Use frontier models for response generation when crisis is detected" in text
+    assert "two-stage pipeline: local detection → frontier response" in text
+    assert "The Most Sacred Moment deserves the best model we can afford" in text
+    assert "Local models ARE good enough for the Most Sacred Moment protocol." not in text