d0ffb111c2
Comprehensive cleanup across 80 files based on automated (ruff, pyflakes, vulture)
and manual analysis of the entire codebase.
Changes by category:
Unused imports removed (~95 across 55 files):
- Removed genuinely unused imports from all major subsystems
- agent/, hermes_cli/, tools/, gateway/, plugins/, cron/
- Includes imports in try/except blocks that were truly unused
(vs availability checks which were left alone)
Unused variables removed (~25):
- Removed dead variables: connected, inner, channels, last_exc,
source, new_server_names, verify, pconfig, default_terminal,
result, pending_handled, temperature, loop
- Dropped unused argparse subparser assignments in hermes_cli/main.py
(12 instances of add_parser() where result was never used)
Dead code removed:
- run_agent.py: Removed dead ternary (None if False else None) and
surrounding unreachable branch in identity fallback
- run_agent.py: Removed write-only attribute _last_reported_tool
- hermes_cli/providers.py: Removed dead @property decorator on
module-level function (decorator has no effect outside a class)
- gateway/run.py: Removed unused MCP config load before reconnect
- gateway/platforms/slack.py: Removed dead SessionSource construction
Undefined name bugs fixed (would cause NameError at runtime):
- batch_runner.py: Added missing logger = logging.getLogger(__name__)
- tools/environments/daytona.py: Added missing Dict and Path imports
Unnecessary global statements removed (14):
- tools/terminal_tool.py: 5 functions declared global for dicts
they only mutated via .pop()/[key]=value (no rebinding)
- tools/browser_tool.py: cleanup thread loop only reads flag
- tools/rl_training_tool.py: 4 functions only do dict mutations
- tools/mcp_oauth.py: only reads the global
- hermes_time.py: only reads cached values
Inefficient patterns fixed:
- startswith/endswith tuple form: 15 instances of
x.startswith('a') or x.startswith('b') consolidated to
x.startswith(('a', 'b'))
- len(x)==0 / len(x)>0: 13 instances replaced with pythonic
truthiness checks (not x / bool(x))
- in dict.keys(): 5 instances simplified to in dict
- Redefined unused name: removed duplicate _strip_mdv2 import in
send_message_tool.py
Other fixes:
- hermes_cli/doctor.py: Replaced undefined logger.debug() with pass
- hermes_cli/config.py: Consolidated chained .endswith() calls
Test results: 3934 passed, 17 failed (all pre-existing on main),
19 skipped. Zero regressions.
283 lines
9.6 KiB
Python
283 lines
9.6 KiB
Python
"""Website access policy helpers for URL-capable tools.
|
|
|
|
This module loads a user-managed website blocklist from ~/.hermes/config.yaml
|
|
and optional shared list files. It is intentionally lightweight so web/browser
|
|
tools can enforce URL policy without pulling in the heavier CLI config stack.
|
|
|
|
Policy is cached in memory with a short TTL so config changes take effect
|
|
quickly without re-reading the file on every URL check.
|
|
"""
|
|
|
|
from __future__ import annotations
|
|
|
|
import fnmatch
|
|
import logging
|
|
import threading
|
|
import time
|
|
from pathlib import Path
|
|
from typing import Any, Dict, List, Optional, Tuple
|
|
from urllib.parse import urlparse
|
|
|
|
from hermes_constants import get_hermes_home
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
_DEFAULT_WEBSITE_BLOCKLIST = {
|
|
"enabled": False,
|
|
"domains": [],
|
|
"shared_files": [],
|
|
}
|
|
|
|
# Cache: parsed policy + timestamp. Avoids re-reading config.yaml on every
|
|
# URL check (a web_crawl with 50 pages would otherwise mean 51 YAML parses).
|
|
_CACHE_TTL_SECONDS = 30.0
|
|
_cache_lock = threading.Lock()
|
|
_cached_policy: Optional[Dict[str, Any]] = None
|
|
_cached_policy_path: Optional[str] = None
|
|
_cached_policy_time: float = 0.0
|
|
|
|
|
|
def _get_default_config_path() -> Path:
|
|
return get_hermes_home() / "config.yaml"
|
|
|
|
|
|
class WebsitePolicyError(Exception):
|
|
"""Raised when a website policy file is malformed."""
|
|
|
|
|
|
def _normalize_host(host: str) -> str:
|
|
return (host or "").strip().lower().rstrip(".")
|
|
|
|
|
|
def _normalize_rule(rule: Any) -> Optional[str]:
|
|
if not isinstance(rule, str):
|
|
return None
|
|
value = rule.strip().lower()
|
|
if not value or value.startswith("#"):
|
|
return None
|
|
if "://" in value:
|
|
parsed = urlparse(value)
|
|
value = parsed.netloc or parsed.path
|
|
value = value.split("/", 1)[0].strip().rstrip(".")
|
|
if value.startswith("www."):
|
|
value = value[4:]
|
|
return value or None
|
|
|
|
|
|
def _iter_blocklist_file_rules(path: Path) -> List[str]:
|
|
"""Load rules from a shared blocklist file.
|
|
|
|
Missing or unreadable files log a warning and return an empty list
|
|
rather than raising — a bad file path should not disable all web tools.
|
|
"""
|
|
try:
|
|
raw = path.read_text(encoding="utf-8")
|
|
except FileNotFoundError:
|
|
logger.warning("Shared blocklist file not found (skipping): %s", path)
|
|
return []
|
|
except (OSError, UnicodeDecodeError) as exc:
|
|
logger.warning("Failed to read shared blocklist file %s (skipping): %s", path, exc)
|
|
return []
|
|
|
|
rules: List[str] = []
|
|
for line in raw.splitlines():
|
|
stripped = line.strip()
|
|
if not stripped or stripped.startswith("#"):
|
|
continue
|
|
normalized = _normalize_rule(stripped)
|
|
if normalized:
|
|
rules.append(normalized)
|
|
return rules
|
|
|
|
|
|
def _load_policy_config(config_path: Optional[Path] = None) -> Dict[str, Any]:
|
|
config_path = config_path or _get_default_config_path()
|
|
if not config_path.exists():
|
|
return dict(_DEFAULT_WEBSITE_BLOCKLIST)
|
|
|
|
try:
|
|
import yaml
|
|
except ImportError:
|
|
logger.debug("PyYAML not installed — website blocklist disabled")
|
|
return dict(_DEFAULT_WEBSITE_BLOCKLIST)
|
|
|
|
try:
|
|
with open(config_path, encoding="utf-8") as f:
|
|
config = yaml.safe_load(f) or {}
|
|
except yaml.YAMLError as exc:
|
|
raise WebsitePolicyError(f"Invalid config YAML at {config_path}: {exc}") from exc
|
|
except OSError as exc:
|
|
raise WebsitePolicyError(f"Failed to read config file {config_path}: {exc}") from exc
|
|
if not isinstance(config, dict):
|
|
raise WebsitePolicyError("config root must be a mapping")
|
|
|
|
security = config.get("security", {})
|
|
if security is None:
|
|
security = {}
|
|
if not isinstance(security, dict):
|
|
raise WebsitePolicyError("security must be a mapping")
|
|
|
|
website_blocklist = security.get("website_blocklist", {})
|
|
if website_blocklist is None:
|
|
website_blocklist = {}
|
|
if not isinstance(website_blocklist, dict):
|
|
raise WebsitePolicyError("security.website_blocklist must be a mapping")
|
|
|
|
policy = dict(_DEFAULT_WEBSITE_BLOCKLIST)
|
|
policy.update(website_blocklist)
|
|
return policy
|
|
|
|
|
|
def load_website_blocklist(config_path: Optional[Path] = None) -> Dict[str, Any]:
|
|
"""Load and return the parsed website blocklist policy.
|
|
|
|
Results are cached for ``_CACHE_TTL_SECONDS`` to avoid re-reading
|
|
config.yaml on every URL check. Pass an explicit ``config_path``
|
|
to bypass the cache (used by tests).
|
|
"""
|
|
global _cached_policy, _cached_policy_path, _cached_policy_time
|
|
|
|
resolved_path = str(config_path) if config_path else "__default__"
|
|
now = time.monotonic()
|
|
|
|
# Return cached policy if still fresh and same path
|
|
if config_path is None:
|
|
with _cache_lock:
|
|
if (
|
|
_cached_policy is not None
|
|
and _cached_policy_path == resolved_path
|
|
and (now - _cached_policy_time) < _CACHE_TTL_SECONDS
|
|
):
|
|
return _cached_policy
|
|
|
|
config_path = config_path or _get_default_config_path()
|
|
policy = _load_policy_config(config_path)
|
|
|
|
raw_domains = policy.get("domains", []) or []
|
|
if not isinstance(raw_domains, list):
|
|
raise WebsitePolicyError("security.website_blocklist.domains must be a list")
|
|
|
|
raw_shared_files = policy.get("shared_files", []) or []
|
|
if not isinstance(raw_shared_files, list):
|
|
raise WebsitePolicyError("security.website_blocklist.shared_files must be a list")
|
|
|
|
enabled = policy.get("enabled", True)
|
|
if not isinstance(enabled, bool):
|
|
raise WebsitePolicyError("security.website_blocklist.enabled must be a boolean")
|
|
|
|
rules: List[Dict[str, str]] = []
|
|
seen: set[Tuple[str, str]] = set()
|
|
|
|
for raw_rule in raw_domains:
|
|
normalized = _normalize_rule(raw_rule)
|
|
if normalized and ("config", normalized) not in seen:
|
|
rules.append({"pattern": normalized, "source": "config"})
|
|
seen.add(("config", normalized))
|
|
|
|
for shared_file in raw_shared_files:
|
|
if not isinstance(shared_file, str) or not shared_file.strip():
|
|
continue
|
|
path = Path(shared_file).expanduser()
|
|
if not path.is_absolute():
|
|
path = (get_hermes_home() / path).resolve()
|
|
for normalized in _iter_blocklist_file_rules(path):
|
|
key = (str(path), normalized)
|
|
if key in seen:
|
|
continue
|
|
rules.append({"pattern": normalized, "source": str(path)})
|
|
seen.add(key)
|
|
|
|
result = {"enabled": enabled, "rules": rules}
|
|
|
|
# Cache the result (only for the default path — explicit paths are tests)
|
|
if config_path == _get_default_config_path():
|
|
with _cache_lock:
|
|
_cached_policy = result
|
|
_cached_policy_path = "__default__"
|
|
_cached_policy_time = now
|
|
|
|
return result
|
|
|
|
|
|
def invalidate_cache() -> None:
|
|
"""Force the next ``check_website_access`` call to re-read config."""
|
|
global _cached_policy
|
|
with _cache_lock:
|
|
_cached_policy = None
|
|
|
|
|
|
def _match_host_against_rule(host: str, pattern: str) -> bool:
|
|
if not host or not pattern:
|
|
return False
|
|
if pattern.startswith("*."):
|
|
return fnmatch.fnmatch(host, pattern)
|
|
return host == pattern or host.endswith(f".{pattern}")
|
|
|
|
|
|
def _extract_host_from_urlish(url: str) -> str:
|
|
parsed = urlparse(url)
|
|
host = _normalize_host(parsed.hostname or parsed.netloc)
|
|
if host:
|
|
return host
|
|
|
|
if "://" not in url:
|
|
schemeless = urlparse(f"//{url}")
|
|
host = _normalize_host(schemeless.hostname or schemeless.netloc)
|
|
if host:
|
|
return host
|
|
|
|
return ""
|
|
|
|
|
|
def check_website_access(url: str, config_path: Optional[Path] = None) -> Optional[Dict[str, str]]:
|
|
"""Check whether a URL is allowed by the website blocklist policy.
|
|
|
|
Returns ``None`` if access is allowed, or a dict with block metadata
|
|
(``host``, ``rule``, ``source``, ``message``) if blocked.
|
|
|
|
Never raises on policy errors — logs a warning and returns ``None``
|
|
(fail-open) so a config typo doesn't break all web tools. Pass
|
|
``config_path`` explicitly (tests) to get strict error propagation.
|
|
"""
|
|
# Fast path: if no explicit config_path and the cached policy is disabled
|
|
# or empty, skip all work (no YAML read, no host extraction).
|
|
if config_path is None:
|
|
with _cache_lock:
|
|
if _cached_policy is not None and not _cached_policy.get("enabled"):
|
|
return None
|
|
|
|
host = _extract_host_from_urlish(url)
|
|
if not host:
|
|
return None
|
|
|
|
try:
|
|
policy = load_website_blocklist(config_path)
|
|
except WebsitePolicyError as exc:
|
|
if config_path is not None:
|
|
raise # Tests pass explicit paths — let errors propagate
|
|
logger.warning("Website policy config error (failing open): %s", exc)
|
|
return None
|
|
except Exception as exc:
|
|
logger.warning("Unexpected error loading website policy (failing open): %s", exc)
|
|
return None
|
|
|
|
if not policy.get("enabled"):
|
|
return None
|
|
|
|
for rule in policy.get("rules", []):
|
|
pattern = rule.get("pattern", "")
|
|
if _match_host_against_rule(host, pattern):
|
|
logger.info("Blocked URL %s — matched rule '%s' from %s",
|
|
url, pattern, rule.get("source", "config"))
|
|
return {
|
|
"url": url,
|
|
"host": host,
|
|
"rule": pattern,
|
|
"source": rule.get("source", "config"),
|
|
"message": (
|
|
f"Blocked by website policy: '{host}' matched rule '{pattern}'"
|
|
f" from {rule.get('source', 'config')}"
|
|
),
|
|
}
|
|
return None
|