Timmy_Foundation/hermes-agent
15
0
Fork 0
Code Issues 41 Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
76ed15dd4decd88aaa56019ee728a096722a97a1
hermes-agent/tests/tools
History
Teknium 76ed15dd4d fix(security): normalize input before dangerous command detection (#3260) 
detect_dangerous_command() ran regex patterns against raw command strings
without normalization, allowing bypass via Unicode fullwidth chars,
ANSI escape codes, null bytes, and 8-bit C1 controls.

Adds _normalize_command_for_detection() that:
- Strips ANSI escapes using the full ECMA-48 strip_ansi() from
  tools/ansi_strip (CSI, OSC, DCS, 8-bit C1, nF sequences)
- Removes null bytes
- Normalizes Unicode via NFKC (fullwidth Latin → ASCII, etc.)

Includes 12 regression tests covering fullwidth, ANSI, C1, null byte,
and combined obfuscation bypasses.

Salvaged from PR #3089 by thakoreh — improved ANSI stripping to use
existing comprehensive strip_ansi() instead of a weaker hand-rolled
regex, and added test coverage.

Co-authored-by: Hiren <hiren.thakore58@gmail.com>
2026-03-26 14:33:18 -07:00
..
__init__.py
test_ansi_strip.py
fix: strip ANSI at the source — clean terminal output before it reaches the model
2026-03-23 07:43:12 -07:00
test_approval.py
fix(security): normalize input before dangerous command detection (#3260)
2026-03-26 14:33:18 -07:00
test_browser_cdp_override.py
fix: normalize live Chrome CDP endpoints for browser tools
2026-03-19 10:17:03 -07:00
test_browser_cleanup.py
test_browser_console.py
fix: add browser_console to browser toolset and core tools list (#1084)
2026-03-17 02:02:57 -07:00
test_browser_homebrew_paths.py
fix: add macOS Homebrew paths to browser and terminal PATH resolution
2026-03-23 22:45:55 -07:00
test_checkpoint_manager.py
test_clarify_tool.py
test_clipboard.py
test_code_execution.py
refactor: remove mini-swe-agent dependency — inline Docker/Modal backends (#2804)
2026-03-24 07:30:25 -07:00
test_command_guards.py
test_cron_prompt_injection.py
test_cronjob_tools.py
fix(tools): remove unnecessary crontab requirement from cronjob tool (#1638)
2026-03-17 01:40:02 -07:00
test_daytona_environment.py
fix(daytona): migrate sandbox lookup from find_one to get/list
2026-03-19 17:54:46 +01:00
test_debug_helpers.py
test_delegate.py
fix(delegate): move _saved_tool_names assignment to correct scope
2026-03-19 09:26:05 -07:00
test_docker_environment.py
refactor: remove mini-swe-agent dependency — inline Docker/Modal backends (#2804)
2026-03-24 07:30:25 -07:00
test_docker_find.py
test_env_passthrough.py
feat: env var passthrough for skills and user config (#2807)
2026-03-24 08:19:34 -07:00
test_file_operations.py
test_file_tools_live.py
test_file_tools.py
fix: strip ANSI at the source — clean terminal output before it reaches the model
2026-03-23 07:43:12 -07:00
test_file_write_safety.py
fix(security): harden terminal safety and sandbox file writes (#1653)
2026-03-17 02:22:12 -07:00
test_force_dangerous_override.py
test_fuzzy_match.py
test_hidden_dir_filter.py
test_homeassistant_tool.py
test_honcho_tools.py
fix(honcho): isolate session routing for multi-user gateway (#1500)
2026-03-16 00:23:47 -07:00
test_interrupt.py
test_local_env_blocklist.py
fix: add macOS Homebrew paths to browser and terminal PATH resolution
2026-03-23 22:45:55 -07:00
test_local_persistent.py
test_mcp_oauth.py
fix(mcp-oauth): port mismatch, path traversal, and shared handler state (salvage #2521) (#2552)
2026-03-22 15:02:26 -07:00
test_mcp_probe.py
feat: interactive MCP tool configuration in hermes tools (#1694)
2026-03-17 03:48:44 -07:00
test_mcp_tool_issue_948.py
test_mcp_tool.py
fix: add MCP tool name collision protection (#3077)
2026-03-25 16:52:04 -07:00
test_memory_tool.py
test_mixture_of_agents_tool.py
test_modal_sandbox_fixes.py
refactor: remove mini-swe-agent dependency — inline Docker/Modal backends (#2804)
2026-03-24 07:30:25 -07:00
test_parse_env_var.py
fix(docker): add explicit env allowlist for container credentials (#1436)
2026-03-17 02:34:35 -07:00
test_patch_parser.py
test_process_registry.py
fix(gateway): persist watcher metadata in checkpoint for crash recovery (#1706)
2026-03-17 03:52:15 -07:00
test_read_loop_detection.py
fix: remove post-compression file-read history injection (#2226)
2026-03-20 14:54:25 -07:00
test_registry.py
feat(tools): centralize tool emoji metadata in registry + skin integration
2026-03-15 20:21:21 -07:00
test_rl_training_tool.py
test_search_hidden_dirs.py
fix: exclude hidden directories from find/grep search backends (#1558)
2026-03-17 02:02:57 -07:00
test_send_message_tool.py
test: replace real-looking WhatsApp jid in regression test
2026-03-17 15:38:37 +00:00
test_session_search.py
fix(session_search): exclude current session lineage
2026-03-20 21:07:48 -07:00
test_singularity_preflight.py
fix(tests): use case-insensitive regex in singularity preflight tests
2026-03-16 19:01:39 +03:00
test_skill_env_passthrough.py
feat: env var passthrough for skills and user config (#2807)
2026-03-24 08:19:34 -07:00
test_skill_manager_tool.py
test_skill_view_path_check.py
test_skill_view_traversal.py
test_skills_guard.py
fix(skills): preserve trust for skills-sh identifiers + reduce resolution churn (#3251)
2026-03-26 13:40:21 -07:00
test_skills_hub_clawhub.py
fix: improve clawhub skill search matching
2026-03-14 23:15:04 -07:00
test_skills_hub.py
fix(skills): preserve trust for skills-sh identifiers + reduce resolution churn (#3251)
2026-03-26 13:40:21 -07:00
test_skills_sync.py
feat: nix flake — uv2nix build, NixOS module, persistent container mode (#20)
2026-03-26 01:08:02 +05:30
test_skills_tool.py
fix: disabled skills respected across banner, system prompt, slash commands, and skill_view (#1897)
2026-03-18 03:17:37 -07:00
test_ssh_environment.py
merge: resolve conflicts with origin/main (SSH preflight check)
2026-03-15 21:13:40 -07:00
test_symlink_prefix_confusion.py
test_terminal_disk_usage.py
fix(terminal): log disk warning check failures at debug level (salvage #2372) (#2394)
2026-03-21 17:10:17 -07:00
test_terminal_requirements.py
refactor: remove mini-swe-agent dependency — inline Docker/Modal backends (#2804)
2026-03-24 07:30:25 -07:00
test_terminal_tool_requirements.py
refactor: remove mini-swe-agent dependency — inline Docker/Modal backends (#2804)
2026-03-24 07:30:25 -07:00
test_tirith_security.py
fix: send_animation metadata, MarkdownV2 inline code splitting, tirith cosign-free install (#1626)
2026-03-16 23:39:41 -07:00
test_todo_tool.py
test_transcription_tools.py
fix(stt): respect explicit provider config instead of env-var fallback (#1775)
2026-03-17 10:30:58 -07:00
test_transcription.py
fix(stt): respect explicit provider config instead of env-var fallback (#1775)
2026-03-17 10:30:58 -07:00
test_url_safety.py
fix(security): add SSRF protection to vision_tools and web_tools (hardened)
2026-03-23 15:40:42 -07:00
test_vision_tools.py
fix(security): add SSRF protection to vision_tools and web_tools (hardened)
2026-03-23 15:40:42 -07:00
test_voice_cli_integration.py
test_voice_mode.py
test_web_tools_config.py
feat(web): add Tavily as web search/extract/crawl backend (#1731)
2026-03-17 04:28:03 -07:00
test_web_tools_tavily.py
feat(web): add Tavily as web search/extract/crawl backend (#1731)
2026-03-17 04:28:03 -07:00
test_website_policy.py
fix(security): add SSRF protection to browser_navigate (#3058)
2026-03-25 15:16:57 -07:00
test_windows_compat.py
test_write_deny.py
test_yolo_mode.py
fix(security): harden terminal safety and sandbox file writes (#1653)
2026-03-17 02:22:12 -07:00