gooneyryan/hermes-agent
0
0
Fork 0
mirror of https://github.com/NousResearch/hermes-agent.git synced 2026-05-21 03:39:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
dc3d0fe1489aebd5747fa620d9b2eec751a92a55
hermes-agent/tests/tools
T
History
Teknium 6ba35ec336 Inspired by Claude Code: tighten dangerous-command detection (#26829) 
Port three hardening patches from Claude Code 2.1.113's expanded deny
rules to hermes' detect_dangerous_command() pattern list.

1. macOS /private/{etc,var,tmp,home} system paths
   /etc, /var, /tmp, /home are symlinks to /private/<name> on macOS.
   A write to /private/etc/sudoers works identically to /etc/sudoers
   but bypassed the plain /etc/ pattern check. Extracted a shared
   _SYSTEM_CONFIG_PATH fragment so /etc/ and the /private/ mirror
   stay in sync across redirect / tee / cp / mv / install / sed -i
   patterns.

2. killall -9 / -KILL / -SIGKILL / -s KILL / -r <regex>
   Parallel to the existing pkill -9 pattern. killall -9 against
   non-hermes processes was previously unprotected, and killall -r
   can sweep unrelated processes matching a regex.

3. find -execdir rm
   Same destructive effect as find -exec rm but ran in each match's
   directory. The previous pattern required a literal '-exec ' so
   -execdir slipped through.

Guarded by 32 new test cases in 4 test classes:
  - TestMacOSPrivateSystemPaths  (11 cases)
  - TestKillallKillSignals       (9 cases)
  - TestFindExecdir              (4 cases)
  - TestEtcPatternsUnaffectedByRefactor  (6 regression guards on
    the existing /etc/ coverage after the _SYSTEM_CONFIG_PATH refactor)

Inspiration: https://github.com/anthropics/claude-code/releases
(Claude Code 2.1.113, April 17 2026 - "Enhanced deny rules" and
"Dangerous path protection")
2026-05-16 01:24:25 -07:00
..
__init__.py
test_accretion_caps.py
fix(ci): recover 38 failing tests on main (#17642)
2026-04-29 20:05:32 -07:00
test_ansi_strip.py
test_approval_heartbeat.py
test: remove 50 stale/broken tests to unblock CI (#22098)
2026-05-08 14:55:40 -07:00
test_approval_plugin_hooks.py
test: remove 50 stale/broken tests to unblock CI (#22098)
2026-05-08 14:55:40 -07:00
test_approval.py
Inspired by Claude Code: tighten dangerous-command detection (#26829)
2026-05-16 01:24:25 -07:00
test_base_environment.py
fix(env): pass -- to cd for hyphen-prefixed workdirs
2026-05-04 04:45:03 -07:00
test_browser_camofox_persistence.py
feat(browser): support externally managed Camofox sessions
2026-05-12 15:14:49 -07:00
test_browser_camofox_state.py
feat(browser): support externally managed Camofox sessions
2026-05-12 15:14:49 -07:00
test_browser_camofox.py
fix(tests): resolve 17 persistent CI test failures (#15084)
2026-04-24 03:46:46 -07:00
test_browser_cdp_override.py
test_browser_cdp_tool.py
fix(tests): resolve 17 persistent CI test failures (#15084)
2026-04-24 03:46:46 -07:00
test_browser_chromium_check.py
fix(install): skip browser download when system chromium exists
2026-05-13 22:07:02 -07:00
test_browser_cleanup.py
test_browser_cloud_fallback.py
test_browser_cloud_provider_cache.py
fix(browser_tool): fall through to autodetect on config read failure
2026-05-09 13:35:39 -07:00
test_browser_console.py
test_browser_content_none_guard.py
test_browser_eval_supervisor_path.py
perf(browser): route browser_console eval through supervisor's persistent CDP WS (180x faster) (#23226)
2026-05-10 07:37:55 -07:00
test_browser_hardening.py
test_browser_homebrew_paths.py
feat(windows): close remaining POSIX-only landmines — TUI crash, kanban waitpid, AF_UNIX sandbox, /bin/bash, npm .cmd shims, cwd tracking, detach flags
2026-05-08 14:27:40 -07:00
test_browser_hybrid_routing.py
feat(browser): auto-spawn local Chromium for LAN/localhost URLs in cloud mode (#16136)
2026-04-26 09:57:58 -07:00
test_browser_lightpanda.py
fix(browser): tighten Lightpanda fallback edge cases
2026-05-06 03:41:21 -07:00
test_browser_orphan_reaper.py
test: migrate stale os.kill monkeypatches to gateway.status._pid_exists
2026-05-08 14:27:40 -07:00
test_browser_secret_exfil.py
test_browser_ssrf_local.py
fix(browser): enforce cloud-metadata SSRF floor in hybrid routing (#16234) (#21228)
2026-05-07 05:38:05 -07:00
test_browser_supervisor_healthcheck.py
test(browser_supervisor): cover cache-hit healthcheck on dead thread/loop
2026-04-30 20:33:33 -07:00
test_browser_supervisor.py
perf(browser): route browser_console eval through supervisor's persistent CDP WS (180x faster) (#23226)
2026-05-10 07:37:55 -07:00
test_budget_config.py
test_checkpoint_manager.py
fix(checkpoint): guard _touch_project against non-dict project metadata
2026-05-09 17:53:13 -07:00
test_clarify_gateway.py
fix(gateway): enable text-intercept for multi-choice clarify fallback (#25567)
2026-05-14 07:59:12 -07:00
test_clarify_tool.py
test_clipboard.py
fix(clipboard): reject non-png clipboard images when png normalization fails
2026-05-13 22:54:21 -07:00
test_code_execution_modes.py
tests: skip POSIX-venv-layout tests on Windows
2026-05-08 14:27:40 -07:00
test_code_execution_windows_env.py
execute_code: set PYTHONIOENCODING=utf-8 + PYTHONUTF8=1 in child env
2026-05-08 14:27:40 -07:00
test_code_execution.py
fix(windows): enable execute_code — stale AF_UNIX gate was blocking the tool
2026-05-08 14:27:40 -07:00
test_command_guards.py
test: remove 50 stale/broken tests to unblock CI (#22098)
2026-05-08 14:55:40 -07:00
test_computer_use.py
fix(agent): keep image tool results from poisoning text-only sessions
2026-05-14 14:52:15 -07:00
test_config_null_guard.py
test_credential_files.py
test_credential_pool_env_fallback.py
test: remove 50 stale/broken tests to unblock CI (#22098)
2026-05-08 14:55:40 -07:00
test_cron_approval_mode.py
fix(approval): cron jobs must not be treated as gateway context
2026-05-08 07:30:14 -07:00
test_cron_prompt_injection.py
test_cronjob_tools.py
fix(env-flags): widen truthy-only session env checks to sibling sites
2026-05-15 12:35:07 -07:00
test_daytona_environment.py
fix(daytona): migrate legacy-sandbox lookup to cursor-based list() (#24587)
2026-05-12 16:31:46 -07:00
test_debug_helpers.py
test_delegate_composite_toolsets.py
fix(delegate): expand composite toolsets before intersection in delegate_task
2026-05-07 06:41:42 -07:00
test_delegate_subagent_timeout_diagnostic.py
feat(delegate): diagnostic dump when a subagent times out with 0 API calls (#15105)
2026-04-24 04:58:32 -07:00
test_delegate_toolset_scope.py
test_delegate.py
fix(delegation): honor api_mode + auto-detect anthropic_messages URLs (#26824)
2026-05-16 01:00:27 -07:00
test_discord_tool.py
feat: add Discord message deletion action
2026-05-07 05:11:09 -07:00
test_docker_environment.py
feat(docker): run container as host user to avoid root-owned bind mounts
2026-04-29 16:16:43 +10:00
test_docker_find.py
test_dockerfile_node_modules_perms.py
fix(docker): chown runtime node_modules trees to hermes user (#18800)
2026-05-07 06:17:49 -07:00
test_dockerfile_pid1_reaping.py
test(docker): align Dockerfile contract tests with simplified TUI flow
2026-05-07 04:53:10 -07:00
test_env_passthrough.py
test_feishu_tools.py
test_file_operations_edge_cases.py
feat(file_tools): post-write delta lint on write_file + patch, add JSON/YAML/TOML/Python in-process linters (#20191)
2026-05-05 04:54:17 -07:00
test_file_operations.py
fix(file-ops): allow file search in hidden roots
2026-05-04 12:37:09 -07:00
test_file_ops_cwd_tracking.py
test_file_read_guards.py
fix(file-tools): escalate to BLOCKED on repeated read_file dedup stubs (#16382)
2026-04-27 00:17:26 -07:00
test_file_staleness.py
fix(file_tools): resolve bookkeeping paths against live terminal cwd
2026-04-23 15:11:52 -07:00
test_file_state_registry.py
test_file_sync_back.py
fix: move pytest.importorskip below pytest import in skip-guarded tests
2026-05-09 11:12:03 -07:00
test_file_sync_perf.py
test_file_sync.py
test_file_tools_container_config.py
test_file_tools_live.py
test_file_tools.py
test(patch-tool): collapse 9 schema-shape tests into 2 invariants
2026-05-08 16:59:24 -07:00
test_file_write_safety.py
test_force_dangerous_override.py
test_fuzzy_match.py
test_hardline_blocklist.py
fix(terminal): block sudo -S password guessing when SUDO_PASSWORD is not set
2026-05-11 06:56:30 -07:00
test_heartbeat_stale_thresholds.py
test: add unit tests for heartbeat stale threshold increase
2026-05-04 05:08:51 -07:00
test_hidden_dir_filter.py
test_homeassistant_tool.py
test_image_generation_env.py
feat(image-gen): actionable setup message when no FAL backend is reachable (#26222)
2026-05-15 01:33:13 -07:00
test_image_generation_plugin_dispatch.py
fix(image-gen): force-refresh plugin providers in long-lived sessions
2026-04-23 03:01:18 -07:00
test_image_generation.py
test_init_session_cwd_respect.py
fix(cli): respect terminal.cwd config in local terminal backend
2026-04-28 22:16:08 -07:00
test_interrupt.py
test_kanban_tools.py
fix(tools): clarify kanban_complete phantom-card retry guidance
2026-05-10 16:14:43 -07:00
test_lazy_deps.py
fix(update): refresh lazy-installed backends on hermes update (#25766)
2026-05-14 08:03:40 -07:00
test_llm_content_none_guard.py
test_local_background_child_hang.py
test_local_env_blocklist.py
feat: add Vercel Sandbox backend
2026-04-29 07:22:33 -07:00
test_local_env_cwd_recovery.py
fix(local): test root as ancestor candidate; use real pipe for fake stdout
2026-05-04 15:31:47 -07:00
test_local_env_windows_msys.py
fix(windows): stop spamming cwd-missing + tirith-spawn warnings on every terminal call
2026-05-15 16:25:31 -07:00
test_local_interrupt_cleanup.py
fix(ci): stabilize main test suite regressions (#17660)
2026-04-29 23:18:55 -07:00
test_local_shell_init.py
fix(terminal): auto-source ~/.profile and ~/.bash_profile so n/nvm PATH survives (#14534)
2026-04-23 05:15:37 -07:00
test_local_tempdir.py
test_managed_browserbase_and_modal.py
test_managed_media_gateways.py
test_managed_modal_environment.py
test_managed_tool_gateway.py
test_mcp_cancelled_error_propagation.py
fix(mcp): re-raise CancelledError explicitly in MCPServerTask.run (#21318)
2026-05-07 07:04:38 -07:00
test_mcp_circuit_breaker.py
test_mcp_dynamic_discovery.py
fix(ci): recover 38 failing tests on main (#17642)
2026-04-29 20:05:32 -07:00
test_mcp_empty_error_message.py
fix(mcp): include exception type in error messages when str(exc) is empty
2026-05-07 06:33:57 -07:00
test_mcp_image_content.py
fix(mcp): surface image tool results as MEDIA tags instead of dropping them (#21328)
2026-05-07 07:14:16 -07:00
test_mcp_oauth_bidirectional.py
test_mcp_oauth_cold_load_expiry.py
test_mcp_oauth_integration.py
test_mcp_oauth_manager.py
test_mcp_oauth_metadata.py
fix(mcp-oauth): persist OAuth server metadata across process restarts (#21226)
2026-05-07 05:35:33 -07:00
test_mcp_oauth.py
fix(security): close TOCTOU window when saving MCP OAuth credentials
2026-05-07 04:56:13 -07:00
test_mcp_probe.py
fix(async): close unscheduled coroutines in all threadsafe bridges (#26584)
2026-05-15 14:00:01 -07:00
test_mcp_reconnect_signal.py
test_mcp_sse_transport.py
fix(mcp): forward OAuth auth and bump sse_read_timeout on SSE transport (#21323)
2026-05-07 07:08:04 -07:00
test_mcp_stability.py
test: migrate stale os.kill monkeypatches to gateway.status._pid_exists
2026-05-08 14:27:40 -07:00
test_mcp_structured_content.py
fix(async): close unscheduled coroutines in all threadsafe bridges (#26584)
2026-05-15 14:00:01 -07:00
test_mcp_tool_401_handling.py
test_mcp_tool_issue_948.py
test_mcp_tool_session_expired.py
fix(mcp): retry stale pipe transport failures
2026-05-07 06:32:45 -07:00
test_mcp_tool.py
feat: add supports_parallel_tool_calls for MCP servers (#26825)
2026-05-16 01:04:28 -07:00
test_mcp_utility_capability_gating.py
fix(mcp): gate utility stubs on server-advertised capabilities (#21347)
2026-05-07 07:39:50 -07:00
test_memory_tool_import_fallback.py
test_memory_tool_schema.py
fix(memory): remove dead allOf schema block at the source
2026-05-07 07:03:21 -07:00
test_memory_tool.py
test_microsoft_graph_auth.py
test(msgraph): cover concurrent token cache reuse
2026-05-08 09:27:26 -07:00
test_microsoft_graph_client.py
fix(msgraph): stream download_to_file body instead of buffering
2026-05-08 09:27:26 -07:00
test_mixture_of_agents_tool.py
chore(release): map devorun author + convert MoA defaults test to invariant
2026-04-23 15:14:11 -07:00
test_modal_bulk_upload.py
test_modal_sandbox_fixes.py
feat: add Vercel Sandbox backend
2026-04-29 07:22:33 -07:00
test_modal_snapshot_isolation.py
test_notify_on_complete.py
test_osv_check.py
test_parse_env_var.py
guard terminal_tool import-time env parsing
2026-04-22 14:45:50 -07:00
test_patch_parser.py
test_process_registry.py
fix(tui): autonomous background process completion notifications (#26071) (#26327)
2026-05-15 19:31:00 +05:30
test_read_loop_detection.py
test_registry.py
test(ci): stabilize shared optional dependency baselines
2026-05-13 17:32:22 -07:00
test_resolve_path.py
fix(file_tools): resolve bookkeeping paths against live terminal cwd
2026-04-23 15:11:52 -07:00
test_schema_sanitizer.py
fix: strip Codex-hostile top-level schema combinators
2026-05-07 07:03:21 -07:00
test_search_hidden_dirs.py
test_send_message_missing_platforms.py
test_send_message_tool.py
chore: remove unused sentinel in test_send_message_tool
2026-05-11 06:44:58 -07:00
test_session_search.py
fix: make session search initialize session db
2026-05-09 14:36:58 -07:00
test_shared_container_task_id.py
feat(terminal): collapse subagent task_ids to shared container (#16177)
2026-04-26 11:55:02 -07:00
test_signal_media.py
test_singularity_preflight.py
test_skill_env_passthrough.py
test_skill_improvements.py
test_skill_manager_tool.py
fix(skills): pin protects against deletion only, not edits (#20220)
2026-05-05 05:43:10 -07:00
test_skill_provenance.py
test: remove 50 stale/broken tests to unblock CI (#22098)
2026-05-08 14:55:40 -07:00
test_skill_size_limits.py
test_skill_usage.py
fix(skills): lock usage telemetry updates
2026-05-07 06:13:37 -07:00
test_skill_view_path_check.py
test_skill_view_traversal.py
test_skills_guard.py
feat(skills-guard): gate agent-created scanner on config.skills.guard_agent_created (default off)
2026-04-23 06:20:47 -07:00
test_skills_hub_clawhub.py
fix(skills-hub): cover remaining SSRF fetch paths after #10029
2026-05-09 17:52:12 -07:00
test_skills_hub.py
fix(skills-hub): cover remaining SSRF fetch paths after #10029
2026-05-09 17:52:12 -07:00
test_skills_sync.py
feat(skills_sync): surface collision with reset-hint
2026-04-23 05:09:08 -07:00
test_skills_tool.py
fix(tools): refuse skill_view name collisions instead of guessing
2026-05-13 13:29:28 -07:00
test_slash_confirm.py
feat(gateway,cli): confirm /reload-mcp to warn about prompt cache invalidation
2026-04-29 21:56:47 -07:00
test_spotify_client.py
refactor(spotify): convert to built-in bundled plugin under plugins/spotify (#15174)
2026-04-24 07:06:11 -07:00
test_ssh_bulk_upload.py
test(ssh): update tar pipe assertion for --no-overwrite-dir
2026-04-30 04:32:28 -07:00
test_ssh_environment.py
test_symlink_prefix_confusion.py
test_sync_back_backends.py
test_terminal_compound_background.py
test_terminal_config_env_sync.py
fix(terminal): bridge docker_env config to TERMINAL_DOCKER_ENV
2026-05-09 17:53:35 -07:00
test_terminal_exit_semantics.py
test_terminal_foreground_timeout_cap.py
test_terminal_none_command_guard.py
test_terminal_output_transform_hook.py
test_terminal_requirements.py
feat: add Vercel Sandbox backend
2026-04-29 07:22:33 -07:00
test_terminal_task_cwd.py
fix(acp): honor task cwd for foreground terminal commands
2026-05-09 14:46:34 -07:00
test_terminal_timeout_output.py
test_terminal_tool_pty_fallback.py
test_terminal_tool_requirements.py
feat: add Vercel Sandbox backend
2026-04-29 07:22:33 -07:00
test_terminal_tool.py
fix(terminal): skip sudo prompt when local NOPASSWD sudo works
2026-04-30 20:38:09 -07:00
test_threaded_process_handle.py
test_tirith_security.py
fix(windows): silence tirith-unavailable banner + skip install/spawn attempts on unsupported platforms (#26718)
2026-05-15 20:29:28 -07:00
test_todo_tool.py
test_tool_backend_helpers.py
fix(cli): coerce use_gateway config flags in tool routing
2026-04-26 19:02:55 -07:00
test_tool_output_limits.py
feat(skills): add design-md skill for Google's DESIGN.md spec (#14876)
2026-04-23 21:51:19 -07:00
test_tool_result_storage.py
fix(tool-result-storage): persist via stdin to bypass 128 KB exec-arg cap (#22913)
2026-05-09 18:44:58 -07:00
test_transcription_dotenv_fallback.py
fix(xai-http): preserve ~/.hermes/.env fallback and XAI_STT_BASE_URL precedence
2026-05-15 12:11:32 -07:00
test_transcription_tools.py
fix(security): reduce unnecessary shell=True in subprocess calls
2026-05-13 10:31:22 -07:00
test_transcription.py
test(ci): stabilize shared optional dependency baselines
2026-05-13 17:32:22 -07:00
test_tts_command_providers.py
feat(tts): add Piper as a native local TTS provider (closes #8508) (#17885)
2026-04-30 02:53:20 -07:00
test_tts_dotenv_fallback.py
fix(xai-http): preserve ~/.hermes/.env fallback and XAI_STT_BASE_URL precedence
2026-05-15 12:11:32 -07:00
test_tts_gemini.py
test_tts_kittentts.py
test(ci): stabilize shared optional dependency baselines
2026-05-13 17:32:22 -07:00
test_tts_max_text_length.py
test_tts_mistral.py
fix(deps): unbreak [all] install — drop mistralai while PyPI quarantined (#24205)
2026-05-11 23:02:15 -07:00
test_tts_piper.py
feat(tts): add Piper as a native local TTS provider (closes #8508) (#17885)
2026-04-30 02:53:20 -07:00
test_tts_speed.py
fix(tts): align MiniMax TTS defaults with current API and add GroupId support
2026-05-13 22:04:28 -07:00
test_url_safety.py
fix(url-safety): allow only http and https schemes
2026-05-15 01:52:48 -07:00
test_vercel_sandbox_environment.py
test: remove 50 stale/broken tests to unblock CI (#22098)
2026-05-08 14:55:40 -07:00
test_video_analyze.py
feat: add video_analyze tool for native video understanding (#19301)
2026-05-04 00:04:36 +05:30
test_video_generation_dispatch.py
feat(video_gen): unified video_generate tool with pluggable provider backends (#25126)
2026-05-13 16:39:41 -07:00
test_video_generation_dynamic_schema.py
feat(video_gen): unified video_generate tool with pluggable provider backends (#25126)
2026-05-13 16:39:41 -07:00
test_video_generation_tool_surface_matrix.py
feat(video_gen): unified video_generate tool with pluggable provider backends (#25126)
2026-05-13 16:39:41 -07:00
test_vision_native_fast_path.py
fix(dashboard): UI polish — modals, layout, consistency, test fixes
2026-05-12 13:59:22 -04:00
test_vision_tools.py
test_voice_cli_integration.py
fix(cli): avoid voice TTS restart race
2026-05-04 01:36:07 -07:00
test_voice_mode.py
test_watch_patterns.py
fix(terminal): three-layer defense against watch_patterns notification spam (#15642)
2026-04-25 06:41:58 -07:00
test_web_providers_brave_free.py
refactor(web): remove legacy in-tree provider modules
2026-05-13 22:31:28 -07:00
test_web_providers_ddgs.py
refactor(web): remove legacy in-tree provider modules
2026-05-13 22:31:28 -07:00
test_web_providers_searxng.py
refactor(web): remove legacy in-tree provider modules
2026-05-13 22:31:28 -07:00
test_web_providers.py
fix(web): preserve top-level error envelope on unconfigured systems
2026-05-13 22:31:28 -07:00
test_web_tools_config.py
refactor(web): dispatch all three tools through web_search_registry
2026-05-13 22:31:28 -07:00
test_web_tools_tavily.py
test_website_policy.py
feat(web): firecrawl plugin natively supports crawl; delete legacy inline path
2026-05-13 22:31:28 -07:00
test_windows_compat.py
test_windows_native_support.py
feat(security): supply-chain advisory checker + lazy-install framework + tiered install fallback (#24220)
2026-05-12 01:02:25 -07:00
test_write_deny.py
fix(tests): resolve 17 persistent CI test failures (#15084)
2026-04-24 03:46:46 -07:00
test_x_search_tool.py
feat(x_search): gated X (Twitter) search tool with OAuth-or-API-key auth (#26763)
2026-05-16 00:58:27 -07:00
test_yolo_mode.py
fix(approval): harden YOLO mode env parsing against quoted-bool strings
2026-04-30 20:37:37 -07:00
test_zombie_process_cleanup.py
fix(tests): resolve 17 persistent CI test failures (#15084)
2026-04-24 03:46:46 -07:00