gooneyryan/hermes-webui
1
0
Fork 0
mirror of https://github.com/nesquena/hermes-webui.git synced 2026-05-25 03:00:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
f4bfd9dca7504c4124b3bf75f397fb1f6e19975a
hermes-webui/api
T
History
bergeouss f4bfd9dca7 fix: address PR #1402 review feedback — cron sort, path traversal, OAuth robustness 
- Cron history: sort by mtime instead of lexicographic filename (more robust)
- Path traversal: use resolve() + is_relative_to() instead of brittle string checks
- _cron_output_snippet: document the contract for response heading extraction
- _read_auth_json: catch JSONDecodeError specifically, log warning instead of silent swallow
- OAuth timestamps: use ISO strings consistently (created_at, updated_at)
- Credential id: use uuid4 instead of time-based truncated int (collision-safe)
2026-05-01 13:38:14 +00:00
..
__init__.py
Hermes Web UI — Sprints 11-14: multi-provider models, settings, session QoL, alerts, polish
2026-03-31 07:02:47 +00:00
agent_sessions.py
release: apply Opus SHOULD-FIX 1+2 + add #1372 manual-cron persistence
2026-04-30 23:17:54 +00:00
auth.py
fix(auth): persist sessions across restarts via STATE_DIR/.sessions.json (#962)
2026-04-24 11:21:41 -07:00
background.py
feat(commands): /background, /btw slash commands + undo button + reasoning chip
2026-04-24 01:24:51 +00:00
clarify.py
feat(clarify): SSE long-connection for real-time clarify notifications (#1355)
2026-04-30 21:32:51 +00:00
commands.py
feat: slash command parity + skill autocomplete — v0.50.91 (PR #711)
2026-04-19 05:37:44 +00:00
config.py
Heal 'provider: local' mid-conversation crash for local-model users (#1388, fixes #1384)
2026-05-01 05:29:42 +00:00
gateway_watcher.py
release: v0.50.241 (#1293)
2026-04-29 19:54:07 -07:00
helpers.py
Apply Opus pre-release follow-ups (force redaction, log profile fallback)
2026-05-01 05:07:09 +00:00
metering.py
v0.50.207: batch of 10 PRs — TPS stat, SSE guard, session polish, cron UX, folder create, model errors, session speed, title gen (#1031)
2026-04-25 13:07:35 -07:00
models.py
feat: P2 improvements — cron history, toolsets per session, Codex OAuth
2026-05-01 12:42:21 +00:00
oauth.py
fix: address PR #1402 review feedback — cron sort, path traversal, OAuth robustness
2026-05-01 13:38:14 +00:00
onboarding.py
absorb: address Opus review findings (security + correctness)
2026-04-29 05:06:34 +00:00
profiles.py
fix(cancel-stream): rename tool_calls to _partial_tool_calls (Opus MUST-FIX)
2026-04-30 23:43:23 +00:00
providers.py
Fix MiniMax China provider visibility
2026-04-29 15:50:32 +08:00
routes.py
fix: address PR #1402 review feedback — cron sort, path traversal, OAuth robustness
2026-05-01 13:38:14 +00:00
session_ops.py
Show profile home in /status command (refs #463) (#1380)
2026-05-01 04:46:37 +00:00
startup.py
fix(security): gate auto-install behind HERMES_WEBUI_AUTO_INSTALL=1 — v0.50.156
2026-04-22 20:49:28 +00:00
state_sync.py
security: bandit fixes B310/B324/B110 + QuietHTTPServer (#354)
2026-04-13 11:11:56 -07:00
streaming.py
feat: P2 improvements — cron history, toolsets per session, Codex OAuth
2026-05-01 12:42:21 +00:00
terminal.py
absorb: address Opus review findings (security + correctness)
2026-04-29 05:06:34 +00:00
updates.py
fix: update banner — conflict recovery path + server self-restart after update (#816)
2026-04-21 17:10:41 -07:00
upload.py
Merge remote-tracking branch 'refs/remotes/pr/1229' into stage/batch-v0.50.238
2026-04-29 15:17:57 +00:00
workspace.py
fix: batch v0.50.234-235 — XSS hardening, workspace validation, profile switch fixes (#1206)
2026-04-27 21:39:30 -07:00