[EPIC] Harden Gemini Sovereign Infrastructure Suite after merge #418 #432

New Issue

Open

opened 2026-04-09 14:32:35 +00:00 by Timmy · 0 comments

Timmy commented 2026-04-09 14:32:35 +00:00

Owner

Copy Link

Context

• PR #418 merged the Gemini Sovereign Infrastructure Suite that closed epic #398.
• The suite is directionally strong, but the merged code still contains trust shortcuts that need post-merge hardening.
• This epic tracks the work needed to keep the systematization while removing unsafe operational posture.

Merged-code evidence that motivated this backlog

• scripts/agent_dispatch.py: hard-coded host IPs, StrictHostKeyChecking=no, and user task text interpolated into a remote command string.
• scripts/fleet_llama.py, scripts/self_healing.py, scripts/telemetry.py, and scripts/provision_wizard.py: disabled SSH host verification and/or shell-string execution patterns.
• scripts/self_healing.py: main() runs a healing cycle unconditionally, so --help is not side-effect safe.
• scripts/architecture_linter_v2.py: rule logic depends on repo basename and currently diverges from the suite it ships with.

Desired outcome

• The Gemini suite remains in timmy-config as sovereign infrastructure.
• Fleet topology, trust policy, and execution contracts move out of ad-hoc script literals and into explicit configuration + tested interfaces.
• Unsafe defaults are removed before more autonomous behavior is layered on top.

Child issues

• #433 [GEMINI-HARDEN-01] Replace hard-coded fleet inventory with repo-native config
• #434 [GEMINI-HARDEN-02] Enforce verified SSH trust and safe remote execution in scripts/
• #435 [GEMINI-HARDEN-03] Make self_healing.py safe-by-default, dry-run-first, and --help-safe
• #436 [GEMINI-HARDEN-04] Build an authenticated webhook runner instead of a print-only payload parser
• #437 [GEMINI-HARDEN-05] Make architecture_linter_v2 repo-aware, test-backed, and CI-enforced
• #438 [GEMINI-HARDEN-06] Add a common CLI safety/test harness for the scripts/ suite

Related existing work

• #238 source-controlled cron/deadman hardening
• #288 Gitea webhook setup across org repos
• #290 verified admin SSH access for Allegro
• #356 agent dispatcher capability
• #423 dead man switch fallback implementation
• PR #430 fleet behaviour hardening / guardrails

Recommended order

1. #433 inventory/path centralization
2. #434 SSH trust + remote execution safety
3. #435 self-healing safety contract
4. #436 authenticated webhook runner
5. #437 linter correctness + CI enforcement
6. #438 suite-wide CLI/test harness

Context - PR #418 merged the Gemini Sovereign Infrastructure Suite that closed epic #398. - The suite is directionally strong, but the merged code still contains trust shortcuts that need post-merge hardening. - This epic tracks the work needed to keep the systematization while removing unsafe operational posture. Merged-code evidence that motivated this backlog - `scripts/agent_dispatch.py`: hard-coded host IPs, `StrictHostKeyChecking=no`, and user task text interpolated into a remote command string. - `scripts/fleet_llama.py`, `scripts/self_healing.py`, `scripts/telemetry.py`, and `scripts/provision_wizard.py`: disabled SSH host verification and/or shell-string execution patterns. - `scripts/self_healing.py`: `main()` runs a healing cycle unconditionally, so `--help` is not side-effect safe. - `scripts/architecture_linter_v2.py`: rule logic depends on repo basename and currently diverges from the suite it ships with. Desired outcome - The Gemini suite remains in `timmy-config` as sovereign infrastructure. - Fleet topology, trust policy, and execution contracts move out of ad-hoc script literals and into explicit configuration + tested interfaces. - Unsafe defaults are removed before more autonomous behavior is layered on top. Child issues - [ ] #433 [GEMINI-HARDEN-01] Replace hard-coded fleet inventory with repo-native config - [ ] #434 [GEMINI-HARDEN-02] Enforce verified SSH trust and safe remote execution in scripts/ - [ ] #435 [GEMINI-HARDEN-03] Make self_healing.py safe-by-default, dry-run-first, and --help-safe - [ ] #436 [GEMINI-HARDEN-04] Build an authenticated webhook runner instead of a print-only payload parser - [ ] #437 [GEMINI-HARDEN-05] Make architecture_linter_v2 repo-aware, test-backed, and CI-enforced - [ ] #438 [GEMINI-HARDEN-06] Add a common CLI safety/test harness for the scripts/ suite Related existing work - #238 source-controlled cron/deadman hardening - #288 Gitea webhook setup across org repos - #290 verified admin SSH access for Allegro - #356 agent dispatcher capability - #423 dead man switch fallback implementation - PR #430 fleet behaviour hardening / guardrails Recommended order 1. #433 inventory/path centralization 2. #434 SSH trust + remote execution safety 3. #435 self-healing safety contract 4. #436 authenticated webhook runner 5. #437 linter correctness + CI enforcement 6. #438 suite-wide CLI/test harness

Timmy added the enhancementepic labels 2026-04-09 14:32:35 +00:00

Timmy referenced this issue 2026-04-09 14:32:35 +00:00

[GEMINI-HARDEN-01] Replace hard-coded fleet inventory with repo-native config #433

Timmy referenced this issue 2026-04-09 14:32:36 +00:00

[GEMINI-HARDEN-02] Enforce verified SSH trust and safe remote execution in scripts/ #434

Timmy referenced this issue 2026-04-09 14:32:37 +00:00

[GEMINI-HARDEN-03] Make self_healing.py safe-by-default, dry-run-first, and --help-safe #435

Timmy referenced this issue 2026-04-09 14:32:39 +00:00

[GEMINI-HARDEN-04] Build an authenticated webhook runner instead of a print-only payload parser #436

Timmy referenced this issue 2026-04-09 14:32:40 +00:00

[GEMINI-HARDEN-05] Make architecture_linter_v2 repo-aware, test-backed, and CI-enforced #437

Timmy referenced this issue 2026-04-09 14:32:41 +00:00

[GEMINI-HARDEN-06] Add a common CLI safety/test harness for the scripts/ suite #438

Timmy referenced this issue 2026-04-09 14:32:42 +00:00

[OPS] Source-control the bounded overnight burn lineup and fix deadman/no-op semantics #238

Timmy referenced this issue 2026-04-09 14:32:42 +00:00

[ADMIN] Create Gitea webhooks for Allegro on all org repos #288

Timmy referenced this issue 2026-04-09 14:32:43 +00:00

[OPS] Restore verified admin SSH access to Allegro VPS for fleet maintenance #290

Timmy referenced this issue 2026-04-09 14:32:44 +00:00

[ORCHESTRATOR-2] Build agent dispatcher — route issues to the right agent #356

Timmy referenced this issue 2026-04-09 14:32:45 +00:00

🛡️ Dead Man Switch Config Fallbacks - Bezalel Agent Autonomous Recovery System #423

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

burn/20260409-1926-linter-v2

burn/20260409-1923-ssh-trust

timmy/pr-proof-template

ansible-iac

perplexity/purge-anthropic

burn/20260409-1247-self-healing-safe

burn/20260409-1240-cli-test-harness

perplexity/ci-validation-pipeline

perplexity/fleet-behaviour-hardening

timmy/deadman-fallback

timmy/v7.0.0-checkin

allegro/m2-commit-or-abort-845

feat/gemini-epic-398-1775648372708

feat/gemini-epic-398-1775648300443

perplexity/pr-checklist-ci

perplexity/soul-md-disambiguation

perplexity/wire-enforcer-sovereign-store

perplexity/mempalace-architecture-doc

timmy/fleet-phase3-5

feat/bezalel-wizard-sidecar-v2

timmy/gallery-submission

perplexity/sovereign-memory-store

timmy/sovereign-orchestrator-v1

groq/issue-371

harden-soul-anti-claude

timmy/mempalace-integration

timmy/fleet-capacity-inventory

timmy/orchestrator-fix

ezra/issue-358

timmy/fleet-resources-tracker

timmy/japanese-wisdom-guards

master

codex/workflow-pr-review

backup/main-before-reset-20260328-000322

gemini/issue-20

gemini/issue-21

gemini/issue-22

gemini/issue-9

gemini/issue-10

gemini/issue-11

gemini/issue-12

gemini/issue-13

manus/dpo-data-pipeline

feature/dpo-training-pipeline

v7.0.0

Golden-Allegro-v6-Sonnet4

burnup-20260405-infra

SonOfTimmy-v5-FINAL

SonOfTimmy-v4

GoldenRockachopa

pre-agent-workers-v1

Labels

Clear labels

assigned-claw-code

Queued for Code Claw (qwen/openrouter)

assigned-kimi

Dispatched to Kimi via OpenClaw

assigned-sonnet

claw-code-done

Code Claw completed this task

claw-code-in-progress

Code Claw is actively working

enhancement

epic

kimi-done

Kimi completed this task

kimi-in-progress

Kimi is actively working on this

lazzyPit

Lazarus Pit automated recovery system

research

sonnet-ready

velocity-engine

Auto-generated by velocity engine

No Label enhancement epic

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

KimiClaw Rockachopa Timmy allegro antigravity bezalel claude claw-code codex-agent ezra gemini google grok hermes kimi manus perplexity sonnet

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: Timmy_Foundation/timmy-config#432