Timmy_Foundation/hermes-agent
15
0
Fork 0
Code Issues 288 Pull Requests 93 Actions Packages Projects Releases Wiki Activity
Files
8f24d43c085d86fe2c4868b7e767e8df1652e169
hermes-agent/tests
History
Alexander Whitestone 8f24d43c08
Some checks failed
Docker Build and Publish / build-and-push (pull_request) Has been skipped
Details
Contributor Attribution Check / check-attribution (pull_request) Failing after 31s
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 37s
Details
Tests / e2e (pull_request) Successful in 2m27s
Details
Tests / test (pull_request) Failing after 37m0s
Details
feat: ML-inspired risk scoring for command approval (#681) 
Current tier detection uses keyword matching and regex patterns.
This adds path-aware and context-aware risk scoring.

New tools/risk_scoring.py:
- classify_path_risk(): system paths (90), sensitive user paths (75),
  safe paths (10), user paths (50)
- detect_context(): execution vs comment vs documentation vs code block
  (documentation contexts reduce risk score)
- get_operation_risk(): read-only ops (cat/grep/find = 5-10) vs
  destructive ops (rm=70, mkfs=95, kill=45)
- score_command_risk(): multi-factor RiskScore with tier classification
  (SAFE/LOW/MEDIUM/HIGH/CRITICAL), factors list, recommendation
- compare_commands(): side-by-side risk comparison

Key improvements:
- 'cat /etc/passwd' is SAFE (read operation, path irrelevant)
- 'rm /etc/passwd' is CRITICAL (destructive + system path)
- 'rm /tmp/build.log' is MEDIUM (destructive but safe path)
- '# rm -rf /' is LOW (comment context reduces risk)
- 'curl ... | bash' is HIGH (pipe to shell pattern)

Tests: tests/test_risk_scoring.py

Closes #681
2026-04-14 19:20:50 -04:00
..
acp
fix(acp): declare session load and resume capabilities in initialize response (#6985)
2026-04-10 03:45:36 -07:00
agent
fix: detect qwen-oauth provider via CLI tokens in /model picker
2026-04-14 11:16:26 -07:00
cli
fix: resolve CI test failures — add missing functions, fix stale tests (#9483)
2026-04-14 01:43:45 -07:00
cron
feat(cron): support Discord thread_id in deliver targets
2026-04-10 03:20:05 -07:00
e2e
refactor: extract shared helpers to deduplicate repeated code patterns (#7917)
2026-04-11 13:59:52 -07:00
environments/benchmarks
fix(security): consolidated security hardening — SSRF, timing attack, tar traversal, credential leakage (#5944)
2026-04-07 17:28:37 -07:00
fakes
fix: streaming tool call parsing, error handling, and fake HA state mutation
2026-03-14 14:27:20 +03:00
gateway
fix: update existing webhook tests to use _webhook_register_url
2026-04-14 11:02:48 -07:00
hermes_cli
fix(security): harden dashboard API against unauthenticated access (#9800)
2026-04-14 10:57:56 -07:00
honcho_plugin
feat(honcho): add opt-in initOnSessionStart for tools mode and respect explicit peerName (#6995)
2026-04-11 00:43:27 -07:00
integration
refactor: remove dead code — 1,784 lines across 77 files (#9180)
2026-04-13 16:32:04 -07:00
plugins
feat: sort tool search results by score and add corresponding unit test
2026-04-14 10:49:35 -07:00
run_agent
fix: clamp 'minimal' reasoning effort to 'low' on Responses API (#9429)
2026-04-13 23:11:13 -07:00
skills
fix(migration): don't auto-archive OpenClaw source directory
2026-04-12 00:33:54 -07:00
tools
fix(tools): keep memory tool available when fcntl is unavailable
2026-04-14 10:18:05 -07:00
__init__.py
A bit of restructuring for simplicity and organization
2025-10-01 23:29:25 +00:00
conftest.py
fix(tests): fix several failing/flaky tests on main (#6777)
2026-04-09 13:17:06 -07:00
run_interrupt_test.py
fix: thread safety for concurrent subagent delegation (#1672)
2026-03-17 02:53:33 -07:00
test_batch_runner_checkpoint.py
fix: sanitize chat payloads and provider precedence
2026-03-13 23:59:12 -07:00
test_cli_file_drop.py
fix(gateway): reject file paths in get_command() + file-drop tests (#7356)
2026-04-10 13:06:02 -07:00
test_cli_skin_integration.py
fix: CLI/UX batch — ChatConsole errors, curses scroll, skin-aware banner, git state banner (#5974)
2026-04-07 17:59:42 -07:00
test_ctx_halving_fix.py
fix(tests): fix 78 CI test failures and remove dead test (#9036)
2026-04-13 10:50:24 -07:00
test_empty_model_fallback.py
fix: fall back to provider's default model when model config is empty (#8303)
2026-04-12 03:53:30 -07:00
test_evidence_store.py
feat: add OSS Security Forensics skill (Skills Hub) (#1482)
2026-03-15 21:59:53 -07:00
test_hermes_constants.py
fix(gateway): harden Docker/container gateway pathway
2026-04-12 16:36:11 -07:00
test_hermes_logging.py
fix(tests): fix 78 CI test failures and remove dead test (#9036)
2026-04-13 10:50:24 -07:00
test_hermes_state.py
fix(state): orphan children instead of cascade-deleting in prune/delete (#6513)
2026-04-09 02:41:56 -07:00
test_honcho_client_config.py
feat(memory): pluggable memory provider interface with profile isolation, review fixes, and honcho CLI restoration (#4623)
2026-04-02 15:33:51 -07:00
test_ipv4_preference.py
feat: add network.force_ipv4 config to fix IPv6 timeout issues (#8196)
2026-04-11 23:12:11 -07:00
test_mcp_serve.py
feat: add MCP server mode — hermes mcp serve (#3795)
2026-03-29 15:47:19 -07:00
test_minisweagent_path.py
chore: remove all remaining mini-swe-agent references
2026-03-24 08:19:23 -07:00
test_model_picker_scroll.py
fix: CLI/UX batch — ChatConsole errors, curses scroll, skin-aware banner, git state banner (#5974)
2026-04-07 17:59:42 -07:00
test_model_tools_async_bridge.py
fix: use per-thread persistent event loops in worker threads
2026-03-20 15:41:06 -04:00
test_model_tools.py
feat(plugins): let pre_tool_call hooks block tool execution
2026-04-13 22:01:49 -07:00
test_ollama_num_ctx.py
fix: provider/model resolution — salvage 4 PRs + MiniMax aux URL fix (#5983)
2026-04-07 22:23:28 -07:00
test_packaging_metadata.py
chore: prepare Hermes for Homebrew packaging (#4099)
2026-03-30 17:34:43 -07:00
test_plugin_skills.py
feat(plugins): namespaced skill registration for plugin skill bundles
2026-04-14 10:42:58 -07:00
test_project_metadata.py
refactor(matrix): swap matrix-nio for mautrix-python dependency
2026-04-10 21:15:59 -07:00
test_retry_utils.py
feat(agent): add jittered retry backoff
2026-04-08 00:41:36 -07:00
test_risk_scoring.py
feat: ML-inspired risk scoring for command approval (#681)
2026-04-14 19:20:50 -04:00
test_sql_injection.py
fix(security): eliminate SQL string formatting in execute() calls
2026-03-19 15:16:35 +01:00
test_subprocess_home_isolation.py
fix: per-profile subprocess HOME isolation (#4426) (#7357)
2026-04-10 13:37:45 -07:00
test_timezone.py
fix: remove 115 verified dead code symbols across 46 production files
2026-04-10 03:44:43 -07:00
test_toolset_distributions.py
test: add unit tests for 8 modules (batch 2)
2026-02-26 13:54:20 +03:00
test_toolsets.py
fix: make tool registry reads thread-safe
2026-04-13 23:52:32 -07:00
test_trajectory_compressor_async.py
fix(tests): fix 78 CI test failures and remove dead test (#9036)
2026-04-13 10:50:24 -07:00
test_trajectory_compressor.py
fix: load credentials from HERMES_HOME .env in trajectory_compressor
2026-04-14 10:24:19 -07:00
test_utils_truthy_values.py
Gate tool-gateway behind an env var, so it's not in users' faces until we're ready. Even if users enable it, it'll be blocked server-side for now, until we unlock for non-admin users on tool-gateway.
2026-03-30 13:28:10 +09:00