Timmy_Foundation/hermes-agent
15
0
Fork 0
Code Issues 287 Pull Requests 92 Actions 1 Packages Projects Releases Wiki Activity
Files
e3c008414075d82308f3ffb532bbf1f3bc9d1954
hermes-agent/tests/tools
History
Teknium e3c0084140 fix(skills-guard): allow agent-created dangerous verdicts without confirmation 
The security scanner is meant to protect against hostile external skills
pulled from GitHub via hermes skills install — trusted/community policies
block or ask on dangerous verdicts accordingly. But agent-created skills
(from skill_manage) run in the same process as the agent that wrote them.
The agent can already execute the same code paths via terminal() with no
gate, so the ask-on-dangerous policy adds friction without meaningful
security.

Concrete trigger: an agent writing a PR-review skill that describes
cache-busting or persistence semantics in prose gets blocked because
those words appear in the patterns list. The skill isn't actually doing
anything dangerous — it's just documenting what reviewers should watch
for in other PRs.

Change: agent-created dangerous verdict maps to 'allow' instead of 'ask'.
External hub installs (trusted/community) keep their stricter policies
intact. Tests updated: renamed test_dangerous_agent_created_asks →
test_dangerous_agent_created_allowed; renamed force-override test and
updated assertion since force is now a no-op for agent-created (the allow
branch returns first).
2026-04-23 05:18:44 -07:00
..
__init__.py
test: reorganize test structure and add missing unit tests
2026-02-26 03:20:08 +03:00
test_accretion_caps.py
fix(tools): bound _read_tracker sub-containers + prune _completion_consumed (#11839)
2026-04-17 15:53:57 -07:00
test_ansi_strip.py
fix: strip ANSI at the source — clean terminal output before it reaches the model
2026-03-23 07:43:12 -07:00
test_approval_heartbeat.py
fix(approval): heartbeat activity during gateway approval wait (#11245)
2026-04-16 14:48:50 -07:00
test_approval.py
fix(kimi): cover remaining fixed-temperature bypasses
2026-04-17 20:25:42 -07:00
test_base_environment.py
feat(environments): unified spawn-per-call execution layer
2026-04-08 17:23:15 -07:00
test_browser_camofox_persistence.py
docs: remove nonexistent CAMOFOX_PROFILE_DIR env var references (#10976)
2026-04-16 04:07:11 -07:00
test_browser_camofox_state.py
test: stop testing mutable data — convert change-detectors to invariants (#13363)
2026-04-20 23:20:33 -07:00
test_browser_camofox.py
fix(camofox): honor auxiliary vision temperature\n\n- forward auxiliary.vision.temperature in camofox screenshot analysis\n- add regression tests for configured and default behavior
2026-04-20 00:32:09 -07:00
test_browser_cdp_override.py
Support browser CDP URL from config
2026-04-17 16:05:04 -07:00
test_browser_cdp_tool.py
feat(browser): add browser_cdp raw DevTools Protocol passthrough (#12369)
2026-04-19 00:03:10 -07:00
test_browser_cleanup.py
fix(doctor): only check the active memory provider, not all providers unconditionally (#6285)
2026-04-08 13:44:58 -07:00
test_browser_cloud_fallback.py
fix(browser): runtime fallback to local Chromium when cloud provider fails
2026-04-16 04:19:34 -07:00
test_browser_console.py
fix(browser): honor auxiliary.vision.temperature for screenshot analysis\n\n- mirror the vision tool's config bridge in browser_vision
2026-04-20 00:32:09 -07:00
test_browser_content_none_guard.py
fix(browser): guard LLM response content against None in snapshot and vision (#3642)
2026-03-28 17:25:04 -07:00
test_browser_hardening.py
fix(browser): hardening — dead code, caching, scroll perf, security, thread safety
2026-04-10 13:05:44 -07:00
test_browser_homebrew_paths.py
fix(browser): add termux PATH fallbacks
2026-04-14 16:55:55 -07:00
test_browser_orphan_reaper.py
fix: two process leaks (agent-browser daemons, paste.rs sleepers) (#11843)
2026-04-17 18:46:30 -07:00
test_browser_secret_exfil.py
fix: rewrite test mock secrets and add redaction fixture
2026-04-01 12:03:56 -07:00
test_browser_ssrf_local.py
fix(browser): skip SSRF check for local backends (Camofox, headless Chromium) (#4292)
2026-03-31 10:40:13 -07:00
test_budget_config.py
test(tools): add unit tests for budget_config module
2026-04-11 02:58:48 -07:00
test_checkpoint_manager.py
fix(checkpoints): isolate shadow git repo from user's global config (#11261)
2026-04-16 16:06:49 -07:00
test_clarify_tool.py
test(tools): add unit tests for clarify_tool.py
2026-02-27 03:29:26 -05:00
test_clipboard.py
feat: fix img pasting in new ink plus newline after tools
2026-04-11 13:14:32 -05:00
test_code_execution_modes.py
feat(execute_code): add project/strict execution modes, default to project (#11971)
2026-04-18 01:46:25 -07:00
test_code_execution.py
fix: follow-up for salvaged PR #10854
2026-04-16 06:42:45 -07:00
test_command_guards.py
fix: remove 115 verified dead code symbols across 46 production files
2026-04-10 03:44:43 -07:00
test_config_null_guard.py
fix: guard config.get() against YAML null values to prevent AttributeError (#3377)
2026-03-27 04:03:00 -07:00
test_credential_files.py
fix: remove 115 verified dead code symbols across 46 production files
2026-04-10 03:44:43 -07:00
test_cron_approval_mode.py
feat: configurable approval mode for cron jobs (approvals.cron_mode)
2026-04-18 19:24:35 -07:00
test_cron_prompt_injection.py
fix: cron prompt injection scanner bypass for multi-word variants
2026-02-26 13:55:54 +03:00
test_cronjob_tools.py
feat(skills): consolidate find-nearby into maps as a single location skill
2026-04-19 05:19:22 -07:00
test_daytona_environment.py
fix: update tests for unified spawn-per-call execution model
2026-04-08 17:23:15 -07:00
test_debug_helpers.py
fix(tests): isolate HERMES_HOME in tests and adjust log directory for debug session
2026-03-02 04:34:21 -08:00
test_delegate_toolset_scope.py
fix(security): restrict subagent toolsets to parent's enabled set (#3269)
2026-03-26 14:50:26 -07:00
test_delegate.py
fix(delegate): default inherit_mcp_toolsets=true, drop version bump
2026-04-22 17:45:48 -07:00
test_discord_tool.py
fix(ci): unblock test suite + cut ~2s of dead Z.AI probes from every AIAgent
2026-04-19 19:18:19 -07:00
test_docker_environment.py
fix(docker): add SETUID/SETGID caps so gosu drop in entrypoint succeeds
2026-04-22 18:13:14 -07:00
test_docker_find.py
feat: entry-level Podman support — find_docker() + rootless entrypoint (#10066)
2026-04-14 21:20:37 -07:00
test_env_passthrough.py
fix(env_passthrough): reject Hermes provider credentials from skill passthrough (#13523)
2026-04-21 06:14:25 -07:00
test_feishu_tools.py
feat: add Feishu document comment intelligent reply with 3-tier access control
2026-04-17 19:04:11 -07:00
test_file_operations_edge_cases.py
tools: normalize file tool pagination bounds
2026-04-22 06:11:41 -07:00
test_file_operations.py
tools: normalize file tool pagination bounds
2026-04-22 06:11:41 -07:00
test_file_ops_cwd_tracking.py
fix(file-ops): follow terminal env's live cwd in _exec instead of init-time cached cwd (#11912)
2026-04-17 19:26:40 -07:00
test_file_read_guards.py
refactor: remove dead code — 1,784 lines across 77 files (#9180)
2026-04-13 16:32:04 -07:00
test_file_staleness.py
refactor: remove dead code — 1,784 lines across 77 files (#9180)
2026-04-13 16:32:04 -07:00
test_file_state_registry.py
feat(delegate): cross-agent file state coordination for concurrent subagents (#13718)
2026-04-21 16:41:26 -07:00
test_file_sync_back.py
fix: harden sync_back — PID-suffix temp path, size cap, lifecycle guards
2026-04-16 19:39:21 -07:00
test_file_sync_perf.py
test: add reproducible perf benchmark for file sync overhead
2026-04-10 03:01:46 -07:00
test_file_sync.py
test(file_sync): add tests for bulk_upload_fn callback
2026-04-10 21:14:32 -07:00
test_file_tools_container_config.py
fix(docker): pass docker_mount_cwd_to_workspace and docker_forward_env to container_config in file_tools
2026-04-20 00:58:16 -07:00
test_file_tools_live.py
feat(environments): unified spawn-per-call execution layer
2026-04-08 17:23:15 -07:00
test_file_tools.py
tools: normalize file tool pagination bounds
2026-04-22 06:11:41 -07:00
test_file_write_safety.py
fix(file_tools): block /private/etc writes on macOS symlink bypass
2026-04-13 05:15:05 -07:00
test_force_dangerous_override.py
fix(skills): honor policy table for dangerous verdicts
2026-03-14 11:27:02 -07:00
test_fuzzy_match.py
fix(patch): gate 'did you mean?' to no-match + extend to v4a/skill_manage
2026-04-21 02:03:46 -07:00
test_hidden_dir_filter.py
fix: use Path.parts for hidden directory filter in skill listing
2026-03-04 18:34:16 +03:00
test_homeassistant_tool.py
fix: clean up description escaping, add string-data tests
2026-04-13 04:45:07 -07:00
test_image_generation_env.py
Normalize FAL_KEY env handling (ignore whitespace-only values)
2026-04-21 02:04:21 -07:00
test_image_generation_plugin_dispatch.py
fix(image-gen): force-refresh plugin providers in long-lived sessions
2026-04-23 03:01:18 -07:00
test_image_generation.py
feat(image-gen): add GPT Image 2 to FAL catalog (#13677)
2026-04-21 13:35:31 -07:00
test_interrupt.py
fix: resolve remaining 4 CI test failures (#9543)
2026-04-14 02:18:38 -07:00
test_llm_content_none_guard.py
fix: guard aux LLM calls against None content + reasoning fallback + retry (salvage #3389) (#3449)
2026-03-27 15:28:19 -07:00
test_local_background_child_hang.py
fix(environments): use incremental UTF-8 decoder in select-based drain
2026-04-19 11:27:50 -07:00
test_local_env_blocklist.py
fix(providers): complete NVIDIA NIM parity with other providers
2026-04-17 13:47:46 -07:00
test_local_interrupt_cleanup.py
fix(interrupt): propagate to concurrent-tool workers + opt-in debug trace (#11907)
2026-04-17 20:39:25 -07:00
test_local_shell_init.py
fix(terminal): auto-source ~/.profile and ~/.bash_profile so n/nvm PATH survives (#14534)
2026-04-23 05:15:37 -07:00
test_local_tempdir.py
fix(termux): honor temp dirs for local temp artifacts
2026-04-09 16:24:53 -07:00
test_managed_browserbase_and_modal.py
feat: ungate Tool Gateway — subscription-based access with per-tool opt-in
2026-04-16 12:36:49 -07:00
test_managed_media_gateways.py
feat: ungate Tool Gateway — subscription-based access with per-tool opt-in
2026-04-16 12:36:49 -07:00
test_managed_modal_environment.py
fix: add activity heartbeats to prevent false gateway inactivity timeouts (#10501)
2026-04-15 13:29:05 -07:00
test_managed_server_tool_support.py
fix(tests): fix several failing/flaky tests on main (#6777)
2026-04-09 13:17:06 -07:00
test_managed_tool_gateway.py
feat: ungate Tool Gateway — subscription-based access with per-tool opt-in
2026-04-16 12:36:49 -07:00
test_mcp_circuit_breaker.py
test(mcp): add failing tests for circuit-breaker recovery
2026-04-21 05:19:03 -07:00
test_mcp_dynamic_discovery.py
fix(mcp): make server aliases explicit
2026-04-14 17:19:20 -07:00
test_mcp_oauth_bidirectional.py
fix(mcp-oauth): bidirectional auth_flow bridge + absolute expires_at (salvage #12025) (#12717)
2026-04-19 16:31:07 -07:00
test_mcp_oauth_cold_load_expiry.py
fix(mcp-oauth): bidirectional auth_flow bridge + absolute expires_at (salvage #12025) (#12717)
2026-04-19 16:31:07 -07:00
test_mcp_oauth_integration.py
fix(mcp): consolidate OAuth handling, pick up external token refreshes (#11383)
2026-04-16 21:57:10 -07:00
test_mcp_oauth_manager.py
fix(mcp): consolidate OAuth handling, pick up external token refreshes (#11383)
2026-04-16 21:57:10 -07:00
test_mcp_oauth.py
fix(mcp): consolidate OAuth handling, pick up external token refreshes (#11383)
2026-04-16 21:57:10 -07:00
test_mcp_probe.py
fix: remove stale test skips, fix regex backtracking, file search bug, and test flakiness
2026-04-04 10:18:57 -07:00
test_mcp_reconnect_signal.py
fix(mcp): consolidate OAuth handling, pick up external token refreshes (#11383)
2026-04-16 21:57:10 -07:00
test_mcp_stability.py
fix: add vLLM/local server error patterns + MCP initial connection retry (#9281)
2026-04-13 18:46:14 -07:00
test_mcp_structured_content.py
fix(mcp): combine content and structuredContent when both present (#7118)
2026-04-10 03:44:35 -07:00
test_mcp_tool_401_handling.py
fix(mcp): consolidate OAuth handling, pick up external token refreshes (#11383)
2026-04-16 21:57:10 -07:00
test_mcp_tool_issue_948.py
fix: remove stale test skips, fix regex backtracking, file search bug, and test flakiness
2026-04-04 10:18:57 -07:00
test_mcp_tool.py
fix(mcp): make server aliases explicit
2026-04-14 17:19:20 -07:00
test_memory_tool_import_fallback.py
fix(tools): keep memory tool available when fcntl is unavailable
2026-04-14 10:18:05 -07:00
test_memory_tool.py
refactor: remove dead code — 1,784 lines across 77 files (#9180)
2026-04-13 16:32:04 -07:00
test_mixture_of_agents_tool.py
refactor: tighten MoA traceback logging scope (#1307)
2026-03-14 07:53:56 -07:00
test_modal_bulk_upload.py
perf(ssh,modal): bulk file sync via tar pipe and tar/base64 archive (#8014)
2026-04-12 06:18:05 +05:30
test_modal_sandbox_fixes.py
fix: update tests for unified spawn-per-call execution model
2026-04-08 17:23:15 -07:00
test_modal_snapshot_isolation.py
fix(tests): update mocks for file sync changes
2026-04-10 03:01:46 -07:00
test_notify_on_complete.py
fix: suppress duplicate completion notifications when agent already consumed output via wait/poll/log (#8228)
2026-04-12 00:36:22 -07:00
test_osv_check.py
feat: OSV malware check for MCP extension packages (#5305)
2026-04-05 12:46:07 -07:00
test_parse_env_var.py
guard terminal_tool import-time env parsing
2026-04-22 14:45:50 -07:00
test_patch_parser.py
fix(patch): harden V4A patch parser and fuzzy match — 9 correctness bugs
2026-04-10 16:47:44 -07:00
test_process_registry.py
fix(gateway): propagate user identity through process watcher pipeline
2026-04-11 13:46:16 -07:00
test_read_loop_detection.py
refactor: remove dead code — 1,784 lines across 77 files (#9180)
2026-04-13 16:32:04 -07:00
test_registry.py
fix(tests): unstick CI — sweep stale tests from recent merges (#12670)
2026-04-19 12:39:58 -07:00
test_resolve_path.py
test: add _resolve_path tests + AUTHOR_MAP entry for aniruddhaadak80
2026-04-20 12:29:31 -07:00
test_rl_training_tool.py
fix: call _stop_training_run on early-return failure paths
2026-03-10 17:09:51 -07:00
test_search_hidden_dirs.py
fix: exclude hidden directories from find/grep search backends (#1558)
2026-03-17 02:02:57 -07:00
test_send_message_missing_platforms.py
fix(send_message): deliver Matrix media via adapter
2026-04-15 17:37:43 -07:00
test_send_message_tool.py
fix(send_message): accept E.164 phone numbers for signal/sms/whatsapp (#12936)
2026-04-20 03:02:44 -07:00
test_session_search.py
fix(aux): add session_search extra_body and concurrency controls
2026-04-20 00:47:39 -07:00
test_signal_media.py
feat(send_message): add media delivery support for Signal
2026-04-20 13:24:15 -07:00
test_singularity_preflight.py
fix(tests): use case-insensitive regex in singularity preflight tests
2026-03-16 19:01:39 +03:00
test_skill_env_passthrough.py
fix: remove 115 verified dead code symbols across 46 production files
2026-04-10 03:44:43 -07:00
test_skill_improvements.py
feat(skills): size limits for agent writes + fuzzy matching for patch (#4414)
2026-04-01 04:19:19 -07:00
test_skill_manager_tool.py
refactor: extract shared helpers to deduplicate repeated code patterns (#7917)
2026-04-11 13:59:52 -07:00
test_skill_size_limits.py
feat(skills): size limits for agent writes + fuzzy matching for patch (#4414)
2026-04-01 04:19:19 -07:00
test_skill_view_path_check.py
refactor: use Path.is_relative_to() for skill_view boundary check
2026-03-04 05:30:43 -08:00
test_skill_view_traversal.py
fix(security): block path traversal in skill_view file_path (fixes #220)
2026-03-02 02:00:09 -08:00
test_skills_guard.py
fix(skills-guard): allow agent-created dangerous verdicts without confirmation
2026-04-23 05:18:44 -07:00
test_skills_hub_clawhub.py
fix: improve clawhub skill search matching
2026-03-14 23:15:04 -07:00
test_skills_hub.py
fix: update 6 test files broken by dead code removal
2026-04-10 03:44:43 -07:00
test_skills_sync.py
feat(skills_sync): surface collision with reset-hint
2026-04-23 05:09:08 -07:00
test_skills_tool.py
test: remove 8 flaky tests that fail under parallel xdist scheduling (#12784)
2026-04-19 19:38:02 -07:00
test_ssh_bulk_upload.py
perf(ssh,modal): bulk file sync via tar pipe and tar/base64 archive (#8014)
2026-04-12 06:18:05 +05:30
test_ssh_environment.py
fix(tools): keep SSH ControlMaster socket path under macOS 104-byte limit
2026-04-20 03:07:32 -07:00
test_symlink_prefix_confusion.py
fix: use is_relative_to() for symlink boundary check in skills_guard
2026-03-04 17:23:23 +03:00
test_sync_back_backends.py
fix: harden sync_back — PID-suffix temp path, size cap, lifecycle guards
2026-04-16 19:39:21 -07:00
test_terminal_compound_background.py
fix(terminal): rewrite A && B & to A && { B & } to prevent subshell leak
2026-04-19 16:53:11 -07:00
test_terminal_exit_semantics.py
feat: add exit code context for common CLI tools in terminal results (#5144)
2026-04-04 16:57:24 -07:00
test_terminal_foreground_timeout_cap.py
terminal: steer long-lived server commands to background mode
2026-04-19 16:47:20 -07:00
test_terminal_none_command_guard.py
fix(terminal): guard invalid command values
2026-04-08 21:37:51 -07:00
test_terminal_output_transform_hook.py
test: stop testing mutable data — convert change-detectors to invariants (#13363)
2026-04-20 23:20:33 -07:00
test_terminal_requirements.py
feat: ungate Tool Gateway — subscription-based access with per-tool opt-in
2026-04-16 12:36:49 -07:00
test_terminal_timeout_output.py
fix(terminal): preserve partial output when command times out (#3868)
2026-03-29 21:51:44 -07:00
test_terminal_tool_pty_fallback.py
feat: add tested Termux install path and EOF-aware gh auth
2026-04-09 16:24:53 -07:00
test_terminal_tool_requirements.py
feat: ungate Tool Gateway — subscription-based access with per-tool opt-in
2026-04-16 12:36:49 -07:00
test_terminal_tool.py
fix terminal workdir validation for Windows paths
2026-04-15 15:06:51 -07:00
test_threaded_process_handle.py
feat(environments): unified spawn-per-call execution layer
2026-04-08 17:23:15 -07:00
test_tirith_security.py
fix: send_animation metadata, MarkdownV2 inline code splitting, tirith cosign-free install (#1626)
2026-03-16 23:39:41 -07:00
test_todo_tool.py
fix(tools): enforce ID uniqueness in TODO store during replace operations
2026-04-11 16:22:50 -07:00
test_tool_backend_helpers.py
feat: ungate Tool Gateway — subscription-based access with per-tool opt-in
2026-04-16 12:36:49 -07:00
test_tool_call_parsers.py
refactor(tests): re-architect tests + fix CI failures (#5946)
2026-04-07 17:19:07 -07:00
test_tool_result_storage.py
fix(tools): neutralize shell injection in _write_to_sandbox via path quoting (#7940)
2026-04-11 14:26:11 -07:00
test_transcription_tools.py
review(stt-xai): address cetej's nits
2026-04-23 01:57:33 -07:00
test_transcription.py
fix(stt): map cloud-only model names to valid local size for faster-whisper (#2544)
2026-04-20 05:18:48 -07:00
test_tts_gemini.py
feat(tts): add Google Gemini TTS provider (#11229)
2026-04-16 14:23:16 -07:00
test_tts_kittentts.py
feat(tts): complete KittenTTS integration (tools/setup/docs/tests)
2026-04-21 01:28:32 -07:00
test_tts_max_text_length.py
fix(tts): use per-provider input-character caps instead of global 4000 (#13743)
2026-04-21 17:49:39 -07:00
test_tts_mistral.py
test: remove 8 flaky tests that fail under parallel xdist scheduling (#12784)
2026-04-19 19:38:02 -07:00
test_tts_speed.py
test(tts): add speed config tests for Edge, OpenAI, and MiniMax
2026-04-12 16:46:18 -07:00
test_url_safety.py
feat(security): add global toggle to allow private/internal URL resolution
2026-04-22 14:38:59 -07:00
test_vision_tools.py
test: cover vision config temperature wiring\n\n- add regression tests for auxiliary.vision.temperature and timeout\n- add bugkill3r to AUTHOR_MAP for the salvaged commit
2026-04-20 00:32:09 -07:00
test_voice_cli_integration.py
feat(voice): add cli beep toggle
2026-04-21 00:29:29 -07:00
test_voice_mode.py
fix(termux): tighten voice setup and mobile chat UX
2026-04-09 16:24:53 -07:00
test_watch_patterns.py
fix(gateway): route synthetic background events by session
2026-04-15 11:16:01 -07:00
test_web_tools_config.py
test: remove 169 change-detector tests across 21 files (#11472)
2026-04-17 01:05:09 -07:00
test_web_tools_tavily.py
fix(tests): fix several failing/flaky tests on main (#6777)
2026-04-09 13:17:06 -07:00
test_website_policy.py
fix: resolve 7 failing CI tests (#3936)
2026-03-30 08:10:14 -07:00
test_windows_compat.py
fix: guard POSIX-only process functions for Windows compatibility
2026-03-01 01:54:27 +03:00
test_write_deny.py
fix: resolve symlink bypass in write deny list on macOS
2026-02-26 13:30:55 +03:00
test_yolo_mode.py
fix(gateway): scope /yolo to the active session
2026-04-10 03:38:44 -07:00
test_zombie_process_cleanup.py
fix(tests): fix 78 CI test failures and remove dead test (#9036)
2026-04-13 10:50:24 -07:00