mirror of
https://github.com/NousResearch/hermes-agent.git
synced 2026-05-30 06:41:51 +00:00
66827f8947
Remove unused imports (F401) and duplicate/shadowed import redefinitions (F811) across the codebase using ruff's safe autofixes. No behavioral changes -- imports only. - ~1400 safe autofixes applied across 644 files (net -1072 lines) - __init__.py re-exports preserved (excluded from F401 removal so public re-export surfaces stay intact) - Re-exports that are imported or monkeypatched by tests but look unused in their defining module are kept with explicit # noqa: F401 (gateway/run.py load_dotenv; run_agent re-exports from agent.message_sanitization, agent.context_compressor, agent.retry_utils, agent.prompt_builder, agent.process_bootstrap, agent.codex_responses_adapter) - Unsafe F841 (unused-variable) fixes deliberately skipped -- those can change behavior when the RHS has side effects - ruff lints remain disabled in pyproject.toml (only PLW1514 is selected); this is a one-time cleanup, not a config change Verification: - python -m compileall: clean - pytest --collect-only: all 27161 tests collect (zero import errors) - core entry points import clean (run_agent, model_tools, cli, toolsets, hermes_state, batch_runner, gateway) - static scan: every name any test imports directly from an edited module still resolves
65 lines
2.6 KiB
Python
65 lines
2.6 KiB
Python
"""Tests for delegate_tool toolset scoping.
|
|
|
|
Verifies that subagents cannot gain tools that the parent does not have.
|
|
The LLM controls the `toolsets` parameter — without intersection with the
|
|
parent's enabled_toolsets, it can escalate privileges by requesting
|
|
arbitrary toolsets.
|
|
"""
|
|
|
|
from types import SimpleNamespace
|
|
|
|
from tools.delegate_tool import _strip_blocked_tools
|
|
|
|
|
|
class TestToolsetIntersection:
|
|
"""Subagent toolsets must be a subset of parent's enabled_toolsets."""
|
|
|
|
def test_requested_toolsets_intersected_with_parent(self):
|
|
"""LLM requests toolsets parent doesn't have — extras are dropped."""
|
|
parent = SimpleNamespace(enabled_toolsets=["terminal", "file"])
|
|
|
|
# Simulate the intersection logic from _build_child_agent
|
|
parent_toolsets = set(parent.enabled_toolsets)
|
|
requested = ["terminal", "file", "web", "browser", "rl"]
|
|
scoped = [t for t in requested if t in parent_toolsets]
|
|
|
|
assert sorted(scoped) == ["file", "terminal"]
|
|
assert "web" not in scoped
|
|
assert "browser" not in scoped
|
|
assert "rl" not in scoped
|
|
|
|
def test_all_requested_toolsets_available_on_parent(self):
|
|
"""LLM requests subset of parent tools — all pass through."""
|
|
parent = SimpleNamespace(enabled_toolsets=["terminal", "file", "web", "browser"])
|
|
|
|
parent_toolsets = set(parent.enabled_toolsets)
|
|
requested = ["terminal", "web"]
|
|
scoped = [t for t in requested if t in parent_toolsets]
|
|
|
|
assert sorted(scoped) == ["terminal", "web"]
|
|
|
|
def test_no_toolsets_requested_inherits_parent(self):
|
|
"""When toolsets is None/empty, child inherits parent's set."""
|
|
parent_toolsets = ["terminal", "file", "web"]
|
|
child = _strip_blocked_tools(parent_toolsets)
|
|
assert "terminal" in child
|
|
assert "file" in child
|
|
assert "web" in child
|
|
|
|
def test_strip_blocked_removes_delegation(self):
|
|
"""Blocked toolsets (delegation, clarify, etc.) are always removed."""
|
|
child = _strip_blocked_tools(["terminal", "delegation", "clarify", "memory"])
|
|
assert "delegation" not in child
|
|
assert "clarify" not in child
|
|
assert "memory" not in child
|
|
assert "terminal" in child
|
|
|
|
def test_empty_intersection_yields_empty_toolsets(self):
|
|
"""If parent has no overlap with requested, child gets nothing extra."""
|
|
parent = SimpleNamespace(enabled_toolsets=["terminal"])
|
|
|
|
parent_toolsets = set(parent.enabled_toolsets)
|
|
requested = ["web", "browser"]
|
|
scoped = [t for t in requested if t in parent_toolsets]
|
|
|
|
assert scoped == []
|