feature/hermes-agent #18

Merged

mixel merged 42 commits from feature/hermes-agent into main 2026-05-30 17:08:44 +02:00

Conversation 0 Commits 42 Files changed 82 +3915 -218

mixel commented 2026-05-30 17:08:40 +02:00

Owner

Copy link

No description provided.

mixel added 42 commits 2026-05-30 17:08:40 +02:00

wip: disable openclaw whatsapp 45813ba00f

wip: extract shared hardening roles 0734a13071

wip: hermes opentofu setup 5cc0692130

wip: wire hermes ansible skeleton 76efb45195

wip: install hermes runtime ce4b45cdcc

wip: render hermes config 56c1c8456d

wip: add hermes gateway service 9c597073dd

wip: add hermes dashboard 2268a7261e

wip: back up hermes state f211548d4f

wip: migrate openclaw user data c01aac7a5d

wip: add hermes personas da245694be

wip: personas imported from openclaw bf162a23c1

wip: disable openclaw whatsapp explicitly d035d508b4

wip: enable hermes whatsapp 97d1ace7a6

wip: extract signal-cli role 0888aa0e72

wip: hand off signal to hermes 66ff988210

wip: avoid signal link check hang a16ab5e448

ansible: validate hermes role inputs 70c5c20955

Merge pull request 'ansible: validate hermes role inputs' (#17) from lumi/hermes-validate-guardrails into feature/hermes-agent ... 2f7adf138d

Reviewed-on: #17

docs: add agent workflow policies for ansible and remote access ... d212c59a8f

Define explicit guardrails for ansible operations (dry-run allowed,
full apply requires consent) and least-privilege remote file access
(sudo -u instead of bare sudo).

ansible/hermes: add approvals, security, compression, voice, and tuning ... 96ce913fcb

Expand hermes config templates with production-ready defaults:

- Smart approvals with 60s timeout and auxiliary LLM risk classification
- Security hardening: credential redaction, tirith pre-exec scanning,
  SSRF protection for local services (ComfyUI)
- Privacy: PII redaction (hash user IDs before LLM)
- Context compression via glm-4.7-flash auxiliary model
- Approval auxiliary via glm-5
- Memory char limits (2200/1375) and tool output caps (50K/2000/2000)
- Display streaming and runtime footer for CLI/TUI
- STT: local faster-whisper (base model) for voice message transcription
- TTS: Edge TTS with German voice (de-DE-KatjaNeural) for Ari profile
- Extra pip package install task for venv dependencies

All new settings support per-profile overrides via item.* variables.

ansible/hermes: switch TTS from Edge to Gemini for natural voice quality ... 36a0cd8c3e

Edge TTS German voice (de-DE-KatjaNeural) sounded robotic.
Gemini TTS (gemini-2.5-flash-preview-tts, Kore voice) provides
multilingual support with natural German and English pronunciation.

- Add Gemini API key vault var and resolve step in config.yml
- Render GEMINI_API_KEY in both main and profile env templates
- Update config templates with conditional gemini/edge TTS blocks
- Switch Ari profile from edge/KatjaNeural to gemini/Kore

feat: add hermes-tui 5f8b5c5e9c

ansible/hermes: add codex kanban profiles fc305c1e8f

fix: ari wrong provider 0462f21364

feat: add deepseek provider and API key for it & fix: all gateways not restarting fbd533a12b

ansible/hermes: enable hindsight memory 31ab10264a

ansible/hermes: use lean hindsight embeddings 898107b8c2

chore: add explicit node safety to agents.md ab19f02269

feat: add hindsight memory provider 8bb5e3dfb4

feat: add hermes to HA and prefer minis bafe4924d9

chore: deprecate old session search tool 078bb10d5f

chore: centralize VM defaults and host state 4d594e6053

ansible/hermes: use codex oauth for hindsight 1c85f73dac

fix fragile relative path 638080e6f5

feat(hermes): add chrome-devtools-mcp browser integration ... 92ecdf9bbc

Installs chrome-devtools-mcp via npm and exposes it via Hermes config, mapping to the 127.0.0.1:9223 SSH remote forward for host Chrome CDP.

fix fragile relative path 182cb7b524

Feat: per host overrides in opentofu and fix mosquitto password being exposed while deploying on LXC 77a029ab0c

feat(hermes): update LLM provider and models to DeepSeek b053cec597

patch hindsight and enable deepseek again b0e2dd8982

add role limit to taskfile 4070b7d801

better SSH handling via public keys 8f6c99dca2

mixel merged commit 508c16a6ab into main 2026-05-30 17:08:44 +02:00

mixel referenced this pull request from a commit 2026-05-30 17:08:46 +02:00

Merge pull request 'feature/hermes-agent' (#18) from feature/hermes-agent into main

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

mixel/infrastructure!18

No description provided.