mirrors/hermes-agent
1
0
Fork 0
mirror of https://github.com/NousResearch/hermes-agent.git synced 2026-06-09 08:21:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 10
hermes-agent/plugins/platforms/photon
History
Teknium 3a0f6ac3d4 fix(photon): satisfy Windows footgun + CodeQL checks 
CI red on three blocking checks; all addressed:

1. Windows footguns: os.killpg() flagged as POSIX-only despite the
   sys.platform != 'win32' guard. Static scanner doesn't see flow.
   Added the documented '# windows-footgun: ok' suppression.

2. test (3): tests/plugins/platforms/photon/__init__.py shadowed the
   real plugin's __init__.py because test_plugin_platform_interface.py
   looks at PROJECT_ROOT/plugins/platforms/<name>/__init__.py with
   PROJECT_ROOT=tests/ (pre-existing bug in that test, made visible
   by the new test directory layout). Dropping the empty test
   __init__.py restores the prior NOTSET parametrize behavior.

3. CodeQL (7 alerts in new code):
   - cli.py: stop printing the first 8 chars of the bearer token after
     login — even prefixes are partial credentials.
   - cli.py: stop printing the first 8 chars of project_secret after
     setup, same reason.
   - cli.py 'hermes photon webhook register': stop dumping the raw
     register-webhook response (contained signingSecret) and stop
     echoing PHOTON_WEBHOOK_SECRET to stdout. Write it directly to
     ~/.hermes/.env (0o600), preserving existing entries; fall back
     to manual instructions only if the file write fails. Photon
     still only returns the secret once; this just doesn't put it
     in scrollback / shell history.
   - cli.py setup + status: rename project_id/project_secret/token
     locals to has_* booleans before printing, breaking CodeQL's
     taint flow through f-string interpolations. Drop diagnostic
     prints of phone / assignedPhoneNumber that flagged as
     'sensitive data' false positives.
   - sidecar/index.mjs: stop returning the raw error message
     (potentially containing stack trace) in HTTP 500 responses;
     supervisor logs the real error to stderr, client only sees
     a generic 'internal sidecar error'.

Validation:
- scripts/check-windows-footguns.py --all → 0 footguns (518 files)
- tests/plugins/platforms/photon/ → 22/22 pass
- tests/gateway/test_plugin_platform_interface.py → 7/7 pass, collects
  NOTSET (matches pre-PR state)
- tests/gateway/test_platform_registry.py → 50/50 pass
- node --check sidecar/index.mjs clean
2026-06-08 13:38:30 -07:00
..
sidecar fix(photon): satisfy Windows footgun + CodeQL checks 2026-06-08 13:38:30 -07:00
__init__.py feat(gateway): add Photon Spectrum (iMessage) platform plugin 2026-06-08 13:38:30 -07:00
adapter.py fix(photon): satisfy Windows footgun + CodeQL checks 2026-06-08 13:38:30 -07:00
auth.py feat(gateway): add Photon Spectrum (iMessage) platform plugin 2026-06-08 13:38:30 -07:00
cli.py fix(photon): satisfy Windows footgun + CodeQL checks 2026-06-08 13:38:30 -07:00
plugin.yaml feat(gateway): add Photon Spectrum (iMessage) platform plugin 2026-06-08 13:38:30 -07:00
README.md feat(gateway): add Photon Spectrum (iMessage) platform plugin 2026-06-08 13:38:30 -07:00

README.md

Photon iMessage platform plugin

This plugin connects Hermes Agent to iMessage (and WhatsApp Business + future Spectrum interfaces) through Photon — a managed service that handles the iMessage line allocation, delivery, and abuse-prevention layer so users don't have to run their own Mac relay.

The free tier uses Photon's shared iMessage line pool (type: shared) and is the path we recommend for everyone who doesn't already pay for a dedicated number.

Architecture

┌─────────────────────────┐    HMAC-signed POSTs      ┌──────────────────┐
│  Photon Spectrum cloud  │ ──────────────────────►   │  Hermes Agent    │
│  (iMessage line owner)  │                           │  (Python)        │
└─────────────────────────┘    JSON over loopback     │                  │
        ▲                  ◄──────────────────────    │  PhotonAdapter   │
        │                                             │  + aiohttp recv  │
        │  spectrum-ts                                │                  │
        │  SDK (Node)                                 │  spawns + super- │
        ▼                                             │  vises ▼         │
┌─────────────────────────┐                           ├──────────────────┤
│  Node sidecar           │   ◄────  X-Hermes-      ─ │  Node sidecar    │
│  (plugins/.../sidecar)  │       Sidecar-Token       │  child process   │
└─────────────────────────┘                           └──────────────────┘

Inbound traffic is webhook-only — Hermes runs an aiohttp listener that verifies X-Spectrum-Signature and dedupes on message.id.

Outbound traffic goes through a tiny Node sidecar that runs the spectrum-ts SDK. Photon does not currently expose an HTTP send-message endpoint; their own docs say:

Pass space.id to Space.send(...) from a separate spectrum-ts SDK instance to reply. No public HTTP send endpoint exists today.https://photon.codes/docs/webhooks/events

When Photon ships an HTTP send endpoint, _sidecar_send is the one function that swaps and the sidecar disappears. The rest of the plugin stays the same.

First-time setup

# 1. Log in via the device-code flow (opens browser)
hermes photon login

# 2. Full setup: project, user, sidecar deps
hermes photon setup --phone +15551234567

# 3. Expose your webhook URL to the public internet
#    (cloudflared, ngrok, your gateway's public hostname, etc.)
#    Then register it with Photon:
hermes photon webhook register https://your-host.example.com/photon/webhook

# 4. Save the signing secret it prints to ~/.hermes/.env
#    as PHOTON_WEBHOOK_SECRET=...
#    Photon only returns it ONCE.

# 5. Start the gateway
hermes gateway start --platform photon

Credentials

Stored in ~/.hermes/auth.json under credential_pool:

{
  "credential_pool": {
    "photon": [
      { "access_token": "<dashboard-bearer>", "issued_at": ... }
    ],
    "photon_project": [
      { "project_id": "...", "project_secret": "...", "name": "Hermes Agent" }
    ]
  }
}

The per-URL webhook signing secret is treated like an API key and lives in ~/.hermes/.env as PHOTON_WEBHOOK_SECRET.

Configuration knobs

All env vars are documented in plugin.yaml. The most important are:

Env var Default Meaning
PHOTON_PROJECT_ID from auth.json Spectrum project ID
PHOTON_PROJECT_SECRET from auth.json Spectrum project secret (HTTP Basic)
PHOTON_WEBHOOK_SECRET (unset) Signing secret returned at register
PHOTON_WEBHOOK_PORT 8788 Local port for the aiohttp listener
PHOTON_WEBHOOK_PATH /photon/webhook Path under which the listener mounts
PHOTON_SIDECAR_PORT 8789 Loopback port for sidecar control
PHOTON_HOME_CHANNEL (unset) Default space ID for cron delivery
PHOTON_ALLOWED_USERS (unset) Comma-separated E.164 allowlist

Limitations (current Photon API)

  • Attachments are metadata only. Inbound webhooks include the filename + MIME type but no download URL. The plugin surfaces a text marker ([Photon attachment received: …]) so the agent knows something arrived, but cannot read the bytes. Photon's docs note an attachment retrieval endpoint is on the roadmap.
  • Outbound attachments are not supported yet. Adding them is straightforward once the sidecar wires up attachment(...) / space.send(attachment(...)) from spectrum-ts.
  • Reactions, message effects, polls — not exposed yet; the spectrum-ts SDK supports them, and the sidecar is the natural place to add them when the agent has reason to use them.