bytelyst/bytelyst-devops-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(dashboard): close Phase 6 (trend cards + theme toggle), drop-root scaffold, Agents inventory, Phase 0 reconfirm

Browse Source 
Closes the remaining tractable items from the carry-forward queue.

1. Drop-root scaffold for the backend container (P2 mitigation)
   `backend/Dockerfile` adds non-root `app` user (uid 1001) + `docker`
   group (gid via `DOCKER_GID` build arg, default 999). `BACKEND_USER`
   build arg defaults to `root` so existing deployments keep working;
   set it to `app` plus `DOCKER_GID=$(getent group docker | cut -d: -f3)`
   to flip the runtime non-root. `dashboard/DEPLOYMENT.md` gets a new
   "Running non-root" section with the exact `chgrp`/`chmod` recipe
   for the bind-mounted log files (the host-side prep that pairs with
   the build flip). DEPLOYMENT.md mitigation roadmap updated.

2. Phase 6 trend cards
   `lib/hermes-ops-history.ts` keeps the last 24 ops snapshots in
   localStorage (de-duped on `generatedAt`, schema-guarded on read,
   degrades silently on quota exceeded). Three trend cards in the
   ops panel:
     - Warning-volume sparkline + current count
     - Healthy-instance count sparkline (X/2)
     - Per-instance "minutes since last backup commit" with a 30m
       stale threshold
   SVG polyline sparklines, no chart library — `<svg viewBox="0 0
   100 100" preserveAspectRatio="none">` with `vector-effect:
   non-scaling-stroke` so the line stays 2px regardless of the
   parent's width.

3. Phase 6 theme toggle
   `components/theme-toggle.tsx` Sun/Moon button mounted in the
   Hermes layout next to the instance switcher. Persists in
   localStorage `bytelyst.theme.v1`. The design system already
   defined `[data-theme="light"]` overrides in `styles/tokens.css`;
   the toggle just sets the attribute. FOUC-prevention inline script
   in the root layout reads the same key BEFORE React hydrates so
   the first paint matches the user's last choice.

4. Phase 3 partial close: Agents pane → telemetry inventory
   `/hermes/agents` now renders a "Memory & Skills inventory (live)"
   SectionCard backed by the Phase 3 telemetry endpoint per instance
   — `hermes memory list` and `hermes skills list` rendered with
   per-section probe-status badges (`up`/`unknown`), item counts,
   and the first N entries each. Agent **health** statuses (latency,
   failure rate, last-success/failure) stay seed-data — observability
   for those needs a separate ingestion contract that the telemetry
   endpoint doesn't provide today.

5. Phase 0 reconfirmation
   Roadmap Phase 0 ticked with explicit verification notes for each
   guardrail (no public listener, manual approvals, secret hygiene,
   Caddy review). Remains "must hold throughout" — the ticks reflect
   today's verified state, not single-checkbox completion.

Verified: backend typecheck , 74/74 backend unit tests , web
typecheck , 7/7 E2E , lint 0 errors, build green, coverage gate
≥95% lines on every gated file.

Generated with [Devin](https://cli.devin.ai/docs)

Co-Authored-By: Devin <158243242+devin-ai-integration[bot]@users.noreply.github.com>
This commit is contained in:
Hermes VM 2026-05-30 08:26:26 +00:00
parent 74a8ee0993
commit eaaa545e6c
9 changed files with 451 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

43
dashboard/DEPLOYMENT.md
View File

@ -452,12 +452,51 @@ constructs `docker ...` shell strings directly with `execAsync`.
entity id (`docker-cleanup:<type>` etc.), and a sanitized details payload. entity id (`docker-cleanup:<type>` etc.), and a sanitized details payload.
Audit writes are best-effort — a Cosmos hiccup logs a warn but never Audit writes are best-effort — a Cosmos hiccup logs a warn but never
fails the request.)* fails the request.)*
- [ ] **P2:** Run the backend container as a non-root user with `docker` group - [x] **P2:** Run the backend container as a non-root user with `docker` group
membership; rebuild the Dockerfile accordingly. membership; rebuild the Dockerfile accordingly. *(Dockerfile scaffolds
a non-root `app` user (uid 1001) with `docker` group membership at a
build-arg-configurable GID. Default `BACKEND_USER=root` preserves the
current behaviour so existing deployments don't break; set
`BACKEND_USER=app` and `DOCKER_GID=$(getent group docker | cut -d: -f3)`
to flip it on. Requires host-side prep on the bind-mounted log files —
see "Running non-root" below for the exact `chmod`/`chgrp` recipe.)*
- [ ] **P3:** Move from `docker.sock` to a thin daemon (`docker-proxy`-style) - [ ] **P3:** Move from `docker.sock` to a thin daemon (`docker-proxy`-style)
that exposes only the verbs the dashboard actually needs (`stats`, that exposes only the verbs the dashboard actually needs (`stats`,
`restart`, `logs`, the four `prune` variants). `restart`, `logs`, the four `prune` variants).
### Running non-root
Concrete recipe to flip the backend off root:
```bash
# 1. Find the host's docker group GID
DOCKER_GID=$(getent group docker | cut -d: -f3)
# 2. Make the bind-mounted log files group-owned by docker and group-writable
# so the in-container `app` user (gid=$DOCKER_GID) can read/write them.
sudo chgrp docker /var/log/vm-cleanup.log /var/log/vm-health-check.log /var/log/docker-watchdog.log
sudo chmod g+rw /var/log/vm-cleanup.log /var/log/vm-health-check.log /var/log/docker-watchdog.log
# 3. Confirm the VM scripts mount is world-readable (it's read-only inside
# the container, so 0o755 on the directory is enough).
sudo chmod -R o+rX /opt/bytelyst/learning_ai_devops_tools/scripts
# 4. Rebuild the backend image with BACKEND_USER=app and the host's GID.
cd /opt/bytelyst/learning_ai_devops_tools/dashboard
docker compose build --build-arg BACKEND_USER=app --build-arg DOCKER_GID=$DOCKER_GID backend
# 5. Restart and verify
docker compose up -d backend
docker exec devops-backend whoami # → app
docker exec devops-backend id # uid=1001(app) gid=$DOCKER_GID(docker)
curl -fsS http://localhost:4004/health
```
If the backend can't reach the docker socket after the flip, double-check
the in-container `id` matches `getent group docker` on the host. The
`docker.sock` bind-mount carries its host ownership into the container,
so the in-container gid must match.
Operators reviewing whether to grant a new admin should read this whole section Operators reviewing whether to grant a new admin should read this whole section
before doing so. Adding a new shell-out path in code is a **privilege change** before doing so. Adding a new shell-out path in code is a **privilege change**
and must update this table in the same commit. and must update this table in the same commit.

25
dashboard/backend/Dockerfile
View File

@ -47,11 +47,34 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
curl bash docker.io python3 \ curl bash docker.io python3 \
&& rm -rf /var/lib/apt/lists/* && rm -rf /var/lib/apt/lists/*
COPY --from=builder /app/backend/dist ./dist # Non-root user setup (Phase 5 P2 mitigation roadmap, item #4).
# The backend doesn't strictly need root — its only privileged action is
# talking to the docker daemon, which group membership covers. We create
# the user + a docker group at a build-arg-configurable GID so the GID
# can match the host's docker group (`getent group docker` on the host).
#
# Default `BACKEND_USER=root` keeps the current behaviour so existing
# deployments don't break. Set `BACKEND_USER=app` to run non-root; this
# requires the bind-mounted log files in `/var/log/vm-*.log` and
# `/var/log/docker-watchdog.log` to be group-readable+writable by the
# matching docker GID (or world-readable for read-only paths). See
# `dashboard/DEPLOYMENT.md` Privilege Surface → "Running non-root".
ARG BACKEND_USER=root
ARG DOCKER_GID=999
RUN groupadd --system --gid "${DOCKER_GID}" docker || true \
&& useradd --system --create-home --uid 1001 --gid "${DOCKER_GID}" --shell /sbin/nologin app \
&& chown -R app:"${DOCKER_GID}" /app
COPY --from=builder --chown=app:${DOCKER_GID} /app/backend/dist ./dist
ENV NODE_ENV=production ENV NODE_ENV=production
ENV PORT=4004 ENV PORT=4004
EXPOSE 4004 EXPOSE 4004
# Switch to non-root only when explicitly opted in via build arg. If the
# arg is `app`, the next two layers actually drop privileges; if `root`,
# they're a no-op.
USER ${BACKEND_USER}
CMD ["node", "dist/server.js"] CMD ["node", "dist/server.js"]

102
dashboard/web/src/app/hermes/agents/page.tsx
View File

@ -1,13 +1,14 @@
'use client'; 'use client';
import Link from 'next/link'; import Link from 'next/link';
import { ArrowLeft, Gauge, ShieldAlert, ServerCog } from 'lucide-react'; import { ArrowLeft, Brain, Gauge, ShieldAlert, ServerCog, Wand2 } from 'lucide-react';
import { Badge, Button } from '@/components/ui/Primitives'; import { Badge, Button } from '@/components/ui/Primitives';
import { useMemo } from 'react'; import { useEffect, useMemo, useState } from 'react';
import { HermesShell, MetricCard, SectionCard } from '@/components/hermes-shell'; import { HermesShell, MetricCard, SectionCard } from '@/components/hermes-shell';
import { HermesInstanceBadge } from '@/components/hermes-instance-switcher'; import { HermesInstanceBadge } from '@/components/hermes-instance-switcher';
import { useHermesInstance } from '@/lib/hermes-instance-context'; import { useHermesInstance } from '@/lib/hermes-instance-context';
import { getHermesAgents } from '@/lib/hermes'; import { getHermesAgents, HERMES_INSTANCES, type HermesInstanceId } from '@/lib/hermes';
import { api, type HermesTelemetrySnapshot } from '@/lib/api';
export default function HermesAgentsPage() { export default function HermesAgentsPage() {
const { selectedInstance } = useHermesInstance(); const { selectedInstance } = useHermesInstance();
@ -16,6 +17,33 @@ export default function HermesAgentsPage() {
const degraded = agents.filter((agent) => agent.status === 'degraded').length; const degraded = agents.filter((agent) => agent.status === 'degraded').length;
const offline = agents.filter((agent) => agent.status === 'offline').length; const offline = agents.filter((agent) => agent.status === 'offline').length;
// Real per-instance memory + skills inventory from the Phase 3 telemetry
// endpoint. The agent statuses above remain seed-data (status observability
// needs a separate ingestion contract); the inventory below is genuine
// when the `hermes` CLI is reachable, status:'unknown' otherwise.
const [telemetry, setTelemetry] = useState<Record<HermesInstanceId, HermesTelemetrySnapshot | null>>({ vijay: null, bheem: null });
const [telemetryError, setTelemetryError] = useState<string | null>(null);
useEffect(() => {
const controller = new AbortController();
const load = async () => {
try {
const [vijay, bheem] = await Promise.all([
api.getHermesTelemetry('vijay'),
api.getHermesTelemetry('bheem'),
]);
if (controller.signal.aborted) return;
setTelemetry({ vijay, bheem });
setTelemetryError(null);
} catch (err) {
if (controller.signal.aborted) return;
setTelemetryError(err instanceof Error ? err.message : String(err));
}
};
void load();
return () => controller.abort();
}, []);
return ( return (
<HermesShell <HermesShell
title="Agent & Tool Observability" title="Agent & Tool Observability"
@ -54,6 +82,74 @@ export default function HermesAgentsPage() {
</div> </div>
</SectionCard> </SectionCard>
{/* --- Real memory + skills inventory from /api/hermes/telemetry --- */}
<SectionCard
title="Memory & Skills inventory (live)"
subtitle="Read directly from `hermes memory list` / `hermes skills list` per instance. Sections marked unknown couldn't probe the source on the current host (CLI missing or non-zero exit)."
actions={<Badge variant={telemetryError ? 'error' : 'success'}>{telemetryError ? 'Probe failed' : 'Live data'}</Badge>}
>
{telemetryError ? (
<p className="rounded-2xl border border-[var(--bl-border)] bg-[var(--bl-surface-muted)] p-4 text-sm text-[var(--bl-warning)]">
Could not load telemetry: {telemetryError}
</p>
) : (
<div className="grid gap-4 lg:grid-cols-2">
{HERMES_INSTANCES.filter((inst) => selectedInstance === 'all' || selectedInstance === inst.id).map((inst) => {
const snapshot = telemetry[inst.id];
const memory = snapshot?.memory;
const skills = snapshot?.skills;
return (
<div key={inst.id} className="rounded-2xl border border-[var(--bl-border)] bg-[var(--bl-surface-muted)] p-4">
<div className="flex items-start justify-between gap-3">
<div>
<p className="text-base font-semibold text-[var(--bl-text-primary)]">{inst.label}</p>
<p className="text-xs text-[var(--bl-text-secondary)]">{inst.description}</p>
</div>
<HermesInstanceBadge instanceId={inst.id} />
</div>
<div className="mt-4 space-y-3">
<div className="rounded-xl border border-[var(--bl-border)] bg-[var(--bl-surface-card)] p-3">
<div className="flex items-center justify-between gap-2 text-sm">
<span className="inline-flex items-center gap-2 font-medium text-[var(--bl-text-primary)]"><Brain className="h-4 w-4" />Memory items</span>
<Badge variant={memory?.status === 'up' ? 'success' : memory?.status === 'unknown' ? 'warning' : 'neutral'}>
{snapshot ? `${memory?.items.length ?? 0} · ${memory?.status ?? 'loading'}` : 'loading'}
</Badge>
</div>
{memory && memory.items.length > 0 ? (
<ul className="mt-2 space-y-1 text-xs text-[var(--bl-text-secondary)]">
{memory.items.slice(0, 5).map((m) => (
<li key={m.id} className="truncate"><span className="text-[var(--bl-text-tertiary)]">{m.type}:</span> {m.key} {m.summary}</li>
))}
{memory.items.length > 5 ? <li className="text-[var(--bl-text-tertiary)]">+ {memory.items.length - 5} more</li> : null}
</ul>
) : null}
</div>
<div className="rounded-xl border border-[var(--bl-border)] bg-[var(--bl-surface-card)] p-3">
<div className="flex items-center justify-between gap-2 text-sm">
<span className="inline-flex items-center gap-2 font-medium text-[var(--bl-text-primary)]"><Wand2 className="h-4 w-4" />Skills</span>
<Badge variant={skills?.status === 'up' ? 'success' : skills?.status === 'unknown' ? 'warning' : 'neutral'}>
{snapshot ? `${skills?.items.length ?? 0} · ${skills?.status ?? 'loading'}` : 'loading'}
</Badge>
</div>
{skills && skills.items.length > 0 ? (
<ul className="mt-2 grid gap-1 text-xs text-[var(--bl-text-secondary)] md:grid-cols-2">
{skills.items.slice(0, 8).map((s) => (
<li key={s.id} className="truncate"><Badge variant={s.enabled ? 'success' : 'neutral'}>{s.enabled ? 'on' : 'off'}</Badge> {s.name}</li>
))}
{skills.items.length > 8 ? <li className="text-[var(--bl-text-tertiary)]">+ {skills.items.length - 8} more</li> : null}
</ul>
) : null}
</div>
</div>
</div>
);
})}
</div>
)}
</SectionCard>
<SectionCard title="Ecosystem coverage" subtitle="The dashboard should make each subsystem accountable and observable."> <SectionCard title="Ecosystem coverage" subtitle="The dashboard should make each subsystem accountable and observable.">
<div className="grid gap-3 md:grid-cols-2 xl:grid-cols-3"> <div className="grid gap-3 md:grid-cols-2 xl:grid-cols-3">
{['Hermes core', 'GitHub integration', 'Local VM runner', 'CLI runner', 'Scheduler / cron', 'Deployment tools', 'Monitoring tools', 'Notification tools', 'Model / LLM provider', 'Secrets / config health', 'OpenClaw integration placeholder', 'Telemetry ingest'].map((item) => ( {['Hermes core', 'GitHub integration', 'Local VM runner', 'CLI runner', 'Scheduler / cron', 'Deployment tools', 'Monitoring tools', 'Notification tools', 'Model / LLM provider', 'Secrets / config health', 'OpenClaw integration placeholder', 'Telemetry ingest'].map((item) => (

10
dashboard/web/src/app/hermes/layout.tsx
View File

@ -2,6 +2,7 @@
import { SidebarNav } from '@/components/sidebar-nav'; import { SidebarNav } from '@/components/sidebar-nav';
import { HermesInstanceSwitcher } from '@/components/hermes-instance-switcher'; import { HermesInstanceSwitcher } from '@/components/hermes-instance-switcher';
import { ThemeToggle } from '@/components/theme-toggle';
import { HermesInstanceProvider } from '@/lib/hermes-instance-context'; import { HermesInstanceProvider } from '@/lib/hermes-instance-context';
export default function HermesLayout({ children }: { children: React.ReactNode }) { export default function HermesLayout({ children }: { children: React.ReactNode }) {
@ -11,11 +12,12 @@ export default function HermesLayout({ children }: { children: React.ReactNode }
<SidebarNav /> <SidebarNav />
<main className="flex-1 min-w-0 overflow-y-auto"> <main className="flex-1 min-w-0 overflow-y-auto">
<div className="p-4 lg:p-8"> <div className="p-4 lg:p-8">
{/* Global instance switcher every Mission Control pane reads {/* Global instance switcher + theme toggle every Mission
from the same `useHermesInstance()` hook, so this filter Control pane reads from the same hooks so these controls
propagates everywhere. */} propagate everywhere. */}
<div className="mb-4 flex items-center justify-end"> <div className="mb-4 flex items-center justify-end gap-2">
<HermesInstanceSwitcher /> <HermesInstanceSwitcher />
<ThemeToggle />
</div> </div>
{children} {children}
</div> </div>

15
dashboard/web/src/app/layout.tsx
View File

@ -28,6 +28,21 @@ export default function RootLayout({
}>) { }>) {
return ( return (
<html lang="en"> <html lang="en">
<head>
{/*
FOUC guard: apply the persisted theme to <html> BEFORE React
hydrates so the first paint matches the user's last choice.
Mirrors `STORAGE_KEY` and the allowed values in
`components/theme-toggle.tsx`. Inline-string is intentional; no
interpolation, no data exfil just two literal strings.
*/}
<script
dangerouslySetInnerHTML={{
__html:
"(function(){try{var t=localStorage.getItem('bytelyst.theme.v1');if(t==='dark'||t==='light'){document.documentElement.setAttribute('data-theme',t);}}catch(e){}})();",
}}
/>
</head>
<body> <body>
<a <a
href="#main-content" href="#main-content"

94
dashboard/web/src/components/hermes-ops-panel.tsx
View File

@ -6,6 +6,7 @@ import { AlertTriangle, BookOpen, CheckCircle2, Cloud, Copy, DatabaseBackup, Ext
import { Badge, Button } from '@/components/ui/Primitives'; import { Badge, Button } from '@/components/ui/Primitives';
import { SectionCard } from '@/components/hermes-shell'; import { SectionCard } from '@/components/hermes-shell';
import { api, type HermesOpsInstance, type HermesOpsSnapshot } from '@/lib/api'; import { api, type HermesOpsInstance, type HermesOpsSnapshot } from '@/lib/api';
import { getHermesOpsHistory, recordHermesOpsSnapshot, type HermesOpsHistoryEntry } from '@/lib/hermes-ops-history';
function boolTone(value: boolean): 'success' | 'error' { function boolTone(value: boolean): 'success' | 'error' {
return value ? 'success' : 'error'; return value ? 'success' : 'error';
@ -213,9 +214,95 @@ function RecentAlerts({ alerts }: { alerts: string[] }) {
); );
} }
// Tiny inline sparkline — no chart library, just an SVG polyline. Width
// scales to fill its parent; height is fixed. `values` is rendered in
// order; if all values are equal the line sits in the middle.
function Sparkline({ values, accent = 'var(--bl-accent)' }: { values: number[]; accent?: string }) {
if (values.length < 2) return <div className="h-8 text-xs text-[var(--bl-text-tertiary)]">Need 2 samples for a trend.</div>;
const min = Math.min(...values);
const max = Math.max(...values);
const span = max - min || 1;
const points = values.map((v, i) => {
const x = (i / (values.length - 1)) * 100;
const y = 100 - ((v - min) / span) * 100;
return `${x.toFixed(1)},${y.toFixed(1)}`;
}).join(' ');
return (
<svg className="h-8 w-full" viewBox="0 0 100 100" preserveAspectRatio="none" aria-hidden="true">
<polyline points={points} fill="none" stroke={accent} strokeWidth="2" vectorEffect="non-scaling-stroke" />
</svg>
);
}
function TrendCards({ history }: { history: HermesOpsHistoryEntry[] }) {
if (history.length === 0) {
return (
<div className="rounded-2xl border border-[var(--bl-border)] bg-[var(--bl-surface-muted)] p-4 text-sm text-[var(--bl-text-secondary)]">
No history yet. Trend cards populate after the first one or two refreshes (we keep up to 24 in localStorage).
</div>
);
}
const warningSeries = history.map((h) => h.warningCount);
const healthySeries = history.map((h) => h.healthyInstances);
// Backup-freshness in minutes-since-last-commit, per instance, latest entry only.
const latest = history.at(-1)!;
const nowMs = Date.now();
const backupRows = Object.entries(latest.backupFreshness).map(([instance, iso]) => ({
instance,
minutesAgo: iso ? Math.max(0, Math.round((nowMs - new Date(iso).getTime()) / 60_000)) : null,
}));
return (
<div className="grid gap-4 xl:grid-cols-3">
<div className="rounded-2xl border border-[var(--bl-border)] bg-[var(--bl-surface-muted)] p-4">
<div className="flex items-center justify-between text-sm">
<span className="font-medium text-[var(--bl-text-primary)]">Warning volume</span>
<Badge variant={latest.warningCount === 0 ? 'success' : 'warning'}>{latest.warningCount} now</Badge>
</div>
<p className="mt-1 text-xs text-[var(--bl-text-tertiary)]">Last {history.length} refresh{history.length === 1 ? '' : 'es'}</p>
<div className="mt-3"><Sparkline values={warningSeries} accent="var(--bl-warning)" /></div>
</div>
<div className="rounded-2xl border border-[var(--bl-border)] bg-[var(--bl-surface-muted)] p-4">
<div className="flex items-center justify-between text-sm">
<span className="font-medium text-[var(--bl-text-primary)]">Healthy instances</span>
<Badge variant={latest.healthyInstances >= 2 ? 'success' : 'warning'}>{latest.healthyInstances}/2 now</Badge>
</div>
<p className="mt-1 text-xs text-[var(--bl-text-tertiary)]">Trend across recent refreshes</p>
<div className="mt-3"><Sparkline values={healthySeries} accent="var(--bl-success)" /></div>
</div>
<div className="rounded-2xl border border-[var(--bl-border)] bg-[var(--bl-surface-muted)] p-4">
<div className="flex items-center justify-between text-sm">
<span className="font-medium text-[var(--bl-text-primary)]">Backup freshness</span>
<Badge variant="info">Per instance</Badge>
</div>
<ul className="mt-3 space-y-2 text-sm">
{backupRows.map(({ instance, minutesAgo }) => {
const stale = minutesAgo === null || minutesAgo > 30;
return (
<li key={instance} className="flex items-center justify-between gap-2">
<span className="text-[var(--bl-text-secondary)]">{instance}</span>
<Badge variant={stale ? 'warning' : 'success'}>
{minutesAgo === null ? 'unknown' : `${minutesAgo}m ago`}
</Badge>
</li>
);
})}
{backupRows.length === 0 ? (
<li className="text-[var(--bl-text-secondary)]">No instances reported.</li>
) : null}
</ul>
</div>
</div>
);
}
export function HermesOpsPanel() { export function HermesOpsPanel() {
const [snapshot, setSnapshot] = useState<HermesOpsSnapshot | null>(null); const [snapshot, setSnapshot] = useState<HermesOpsSnapshot | null>(null);
const [previousSnapshot, setPreviousSnapshot] = useState<HermesOpsSnapshot | null>(null); const [previousSnapshot, setPreviousSnapshot] = useState<HermesOpsSnapshot | null>(null);
const [history, setHistory] = useState<HermesOpsHistoryEntry[]>([]);
const [loading, setLoading] = useState(true); const [loading, setLoading] = useState(true);
const [error, setError] = useState<string | null>(null); const [error, setError] = useState<string | null>(null);
const latestSnapshotRef = useRef<HermesOpsSnapshot | null>(null); const latestSnapshotRef = useRef<HermesOpsSnapshot | null>(null);
@ -228,6 +315,9 @@ export function HermesOpsPanel() {
setPreviousSnapshot(latestSnapshotRef.current); setPreviousSnapshot(latestSnapshotRef.current);
latestSnapshotRef.current = nextSnapshot; latestSnapshotRef.current = nextSnapshot;
setSnapshot(nextSnapshot); setSnapshot(nextSnapshot);
// Record the snapshot in client-side rolling history (last 24).
// Used by the trend cards below.
setHistory(recordHermesOpsSnapshot(nextSnapshot));
} catch (err) { } catch (err) {
setError(err instanceof Error ? err.message : 'Unable to load Hermes operations status'); setError(err instanceof Error ? err.message : 'Unable to load Hermes operations status');
} finally { } finally {
@ -236,6 +326,8 @@ export function HermesOpsPanel() {
}; };
useEffect(() => { useEffect(() => {
// Seed from localStorage so the trend cards aren't empty on first paint.
setHistory(getHermesOpsHistory());
void load(); void load();
const id = window.setInterval(() => void load(), 60_000); const id = window.setInterval(() => void load(), 60_000);
return () => window.clearInterval(id); return () => window.clearInterval(id);
@ -479,6 +571,8 @@ export function HermesOpsPanel() {
</div> </div>
</div> </div>
<TrendCards history={history} />
<div className="grid gap-4 xl:grid-cols-2"> <div className="grid gap-4 xl:grid-cols-2">
{snapshot.instances.map((instance) => ( {snapshot.instances.map((instance) => (
<InstanceCard key={instance.id} instance={instance} tailscaleIp={snapshot.tailscaleIp} /> <InstanceCard key={instance.id} instance={instance} tailscaleIp={snapshot.tailscaleIp} />

67
dashboard/web/src/components/theme-toggle.tsx Normal file
View File

@ -0,0 +1,67 @@
'use client';
import { useCallback, useEffect, useState } from 'react';
import { Moon, Sun } from 'lucide-react';
import { Button } from '@/components/ui/Primitives';
// Theme toggle (Phase 6 polish). The design system already defines
// `[data-theme="light"]` overrides in `styles/tokens.css`; we just need a
// way to switch the attribute on `<html>` and persist the choice.
//
// FOUC: a tiny inline script in the root layout reads the same key BEFORE
// React mounts so the first paint is in the chosen theme. See
// `app/layout.tsx`.
const STORAGE_KEY = 'bytelyst.theme.v1';
type Theme = 'dark' | 'light';
const THEMES: Theme[] = ['dark', 'light'];
function readPersisted(): Theme {
if (typeof window === 'undefined') return 'dark';
try {
const raw = window.localStorage.getItem(STORAGE_KEY);
if (raw && (THEMES as string[]).includes(raw)) return raw as Theme;
} catch {
// localStorage may be unavailable; fall through.
}
return 'dark';
}
function applyTheme(theme: Theme) {
if (typeof document === 'undefined') return;
document.documentElement.setAttribute('data-theme', theme);
}
export function ThemeToggle() {
// Mirror the SSR-safe default the inline FOUC-prevention script also uses.
const [theme, setTheme] = useState<Theme>('dark');
useEffect(() => {
setTheme(readPersisted());
}, []);
const toggle = useCallback(() => {
setTheme((prev) => {
const next = prev === 'dark' ? 'light' : 'dark';
try {
if (typeof window !== 'undefined') window.localStorage.setItem(STORAGE_KEY, next);
} catch {
// ignore
}
applyTheme(next);
return next;
});
}, []);
return (
<Button
variant="ghost"
size="sm"
onClick={toggle}
aria-label={`Switch to ${theme === 'dark' ? 'light' : 'dark'} theme`}
title={`Switch to ${theme === 'dark' ? 'light' : 'dark'} theme`}
>
{theme === 'dark' ? <Sun className="h-4 w-4" /> : <Moon className="h-4 w-4" />}
</Button>
);
}

93
dashboard/web/src/lib/hermes-ops-history.ts Normal file
View File

@ -0,0 +1,93 @@
'use client';
// Client-side rolling history of `HermesOpsSnapshot`s — Phase 6 trend cards.
// We keep just a handful of derived metrics per snapshot (warning count,
// healthy-instance count, the freshest backup-commit timestamp per
// instance) so the localStorage payload stays tiny. Capped at 24 entries
// (24 minutes of 1-minute polls — long enough to spot a trend, short
// enough that an old entry doesn't pollute "what's happening right now").
import type { HermesOpsSnapshot } from './api';
export interface HermesOpsHistoryEntry {
/** ISO-8601 generation time, unique enough for a key. */
generatedAt: string;
/** Total warning count from the snapshot. */
warningCount: number;
/** Number of instances passing all five health checks (matches the panel). */
healthyInstances: number;
/** Per-instance freshest-backup-commit ISO timestamp, or null when unknown. */
backupFreshness: Record<string, string | null>;
}
const STORAGE_KEY = 'bytelyst.hermesOpsHistory.v1';
const MAX_ENTRIES = 24;
function safeRead(): HermesOpsHistoryEntry[] {
if (typeof window === 'undefined') return [];
try {
const raw = window.localStorage.getItem(STORAGE_KEY);
if (!raw) return [];
const parsed = JSON.parse(raw);
if (!Array.isArray(parsed)) return [];
// Guard each entry shape so a stale schema doesn't crash callers.
return parsed.filter(
(e) =>
e && typeof e.generatedAt === 'string' && typeof e.warningCount === 'number' && typeof e.healthyInstances === 'number',
);
} catch {
return [];
}
}
function safeWrite(entries: HermesOpsHistoryEntry[]): void {
if (typeof window === 'undefined') return;
try {
window.localStorage.setItem(STORAGE_KEY, JSON.stringify(entries));
} catch {
// Quota exceeded / private mode — drop silently. Trend cards degrade
// gracefully to "no history yet".
}
}
/**
* Record a new snapshot's derived metrics. Returns the trimmed history
* AFTER the new entry is appended. De-dupes on `generatedAt` so the same
* snapshot rendered twice (cache hit) doesn't double-count.
*/
export function recordHermesOpsSnapshot(snapshot: HermesOpsSnapshot): HermesOpsHistoryEntry[] {
const existing = safeRead();
if (existing.some((e) => e.generatedAt === snapshot.generatedAt)) {
return existing;
}
const healthyInstances = snapshot.instances.filter(
(instance) =>
instance.gateway.active &&
instance.dashboard.active &&
instance.backup.timer.active &&
instance.backup.repo.clean &&
instance.google.workspaceToken,
).length;
const backupFreshness: Record<string, string | null> = {};
for (const instance of snapshot.instances) {
backupFreshness[instance.id] = instance.backup.repo.lastCommitAt ?? null;
}
const entry: HermesOpsHistoryEntry = {
generatedAt: snapshot.generatedAt,
warningCount: snapshot.warnings.length,
healthyInstances,
backupFreshness,
};
const next = [...existing, entry].slice(-MAX_ENTRIES);
safeWrite(next);
return next;
}
/** Read the current history (no side effects). */
export function getHermesOpsHistory(): HermesOpsHistoryEntry[] {
return safeRead();
}

20
docs/hermes_dashboard_v2_roadmap.md
View File

@ -67,10 +67,14 @@ A single private dashboard where, for **both Vijay and Bheem**, S can see at a g
## Phase 0 — Guardrails (must hold throughout) ## Phase 0 — Guardrails (must hold throughout)
- [ ] No public Caddy route or public listener for **any** Hermes dashboard, the `hermes-ops` API, or the DevOps dashboard's hermes data. Private-only via Tailscale / SSH tunnel / loopback. > Reconfirmation pass 2026-05-30 (this session): all four guardrails still
- [ ] Keep Hermes command approvals at `manual` or `smart`; no gateway approval bypass. > hold. Each item below carries the current verification state — they remain
- [ ] No raw secrets, tokens, OAuth files, `state.db`, or SQLite WAL/SHM in any git backup or in this repo. > "must hold throughout", not single-checkbox completions.
- [ ] Re-run the Caddy/port review (`docs/hermes-operations.md`) before adding any route or hostname.
- [x] No public Caddy route or public listener for **any** Hermes dashboard, the `hermes-ops` API, or the DevOps dashboard's hermes data. Private-only via Tailscale / SSH tunnel / loopback. *(Verified: `dashboard/docker-compose.yml` binds backend `127.0.0.1:4004:4004` and web `127.0.0.1:3049:3000` (loopback only). The backend listens on `0.0.0.0:4004` **inside the container** — that's the standard pattern and isn't reachable from outside the host. `/api/hermes/ops` and `/api/hermes/telemetry/:instance` both gate on `requireAdmin` (Phase 7). No new Caddy/Traefik label exposes a hermes path publicly.)*
- [x] Keep Hermes command approvals at `manual` or `smart`; no gateway approval bypass. *(Out of scope for this codebase — gateway approval lives in Hermes itself, not the dashboard. The dashboard never originates an approval bypass; the new `/code-quality/check` change tightened auth + path validation rather than loosening any approval flow.)*
- [x] No raw secrets, tokens, OAuth files, `state.db`, or SQLite WAL/SHM in any git backup or in this repo. *(`pnpm secret-scan` runs on every CI build (`.gitea/workflows/ci.yml` "Secret scan" step). Backend's `lib/logger.ts` redacts `Authorization`/`Cookie`/`*.token`/`JWT_SECRET`/`COSMOS_KEY`/`AZURE_CLIENT_SECRET` from any logged object. No `.env`/`state.db` tracked. Telegram convention doc explicitly says "don't paste tokens".)*
- [x] Re-run the Caddy/port review (`docs/hermes-operations.md`) before adding any route or hostname. *(No new public routes/hostnames added this session. The `dashboard/DEPLOYMENT.md` "Ports — quick reference" table is the single source of truth and matches `docker-compose.yml`. If Phase 4 (Bheem/Uma parity) introduces a new Uma dashboard URL, the brief explicitly requires updating this section in the same change.)*
## Phase 1 — Make the unified backend authoritative and hardened (G3) ## Phase 1 — Make the unified backend authoritative and hardened (G3)
@ -104,7 +108,7 @@ Define the ingestion contract first, then convert panes. Keep any pane with no r
- [x] Watchdog alerts feed (tails `~/.hermes/logs/hermes-health-watchdog.log`, severity-bucketed `info`/`warn`/`critical`). - [x] Watchdog alerts feed (tails `~/.hermes/logs/hermes-health-watchdog.log`, severity-bucketed `info`/`warn`/`critical`).
- [x] Backup history (`git -C <repo> log` — last 20 commits per backup repo). - [x] Backup history (`git -C <repo> log` — last 20 commits per backup repo).
- [ ] Convert **Task Ledger** (`/hermes/tasks`) + **Task Detail** to the real task/event source. *(Deferred: needs the JSONL/SQLite session-events pipeline that Decision #1 marked as optional. Task Ledger remains seed-data; flip when a real source ships.)* - [ ] Convert **Task Ledger** (`/hermes/tasks`) + **Task Detail** to the real task/event source. *(Deferred: needs the JSONL/SQLite session-events pipeline that Decision #1 marked as optional. Task Ledger remains seed-data; flip when a real source ships.)*
- [ ] Convert **Agents** (`/hermes/agents`) to real toolset/integration status per instance. *(Deferred: agent statuses are currently seed; the telemetry endpoint exposes the raw memory/skills inventory but agent health observability needs a separate ingestion contract.)* - [~] Convert **Agents** (`/hermes/agents`) to real toolset/integration status per instance. *(Partial: `/hermes/agents` now renders a "Memory & Skills inventory (live)" SectionCard backed by the Phase 3 telemetry endpoint per instance — `hermes memory list` / `hermes skills list` rendered with per-section probe-status badges, item counts, and the first N entries each. Agent **health** statuses (latency, failure rate, last-success/failure) are still seed-data; lighting those up needs a separate observability contract — telemetry only exposes inventory today.)*
- [ ] Convert **History** (`/hermes/history`) to real session/cron/backup trends. *(Deferred: depends on real session timeseries.)* - [ ] Convert **History** (`/hermes/history`) to real session/cron/backup trends. *(Deferred: depends on real session timeseries.)*
- [x] **Products** (`/hermes/products`): repoint at the real service registry (`backend/src/modules/services/`) + health module (Decision #3); drop the fabricated 50-item mock. Optional manual entries for not-yet-deployed products come later. *(Page rewritten: top "Live services" section sources from `api.getServices()` joined with `api.getHealth()` (real Cosmos-backed registry + 30s-cached health probes), with per-service status, response time, last deploy, last health check. The 50-item seed remains below in a clearly-labelled "Planned products (seed data)" section per the roadmap's "optional manual entries for not-yet-deployed products come later" note. New E2E mocks for `/api/services` + `/api/health` keep the suite deterministic.)* - [x] **Products** (`/hermes/products`): repoint at the real service registry (`backend/src/modules/services/`) + health module (Decision #3); drop the fabricated 50-item mock. Optional manual entries for not-yet-deployed products come later. *(Page rewritten: top "Live services" section sources from `api.getServices()` joined with `api.getHealth()` (real Cosmos-backed registry + 30s-cached health probes), with per-service status, response time, last deploy, last health check. The 50-item seed remains below in a clearly-labelled "Planned products (seed data)" section per the roadmap's "optional manual entries for not-yet-deployed products come later" note. New E2E mocks for `/api/services` + `/api/health` keep the suite deterministic.)*
@ -133,10 +137,10 @@ This is the biggest operational asymmetry and the reason half the ops-panel warn
## Phase 6 — Mission Control UX polish (G6) ## Phase 6 — Mission Control UX polish (G6)
- [x] Severity-tag warnings (info/warn/critical) and add a severity filter to the ops panel. *(`RecentAlerts` component classifies each warning by leading token (CRITICAL/ERROR/FATAL → critical; INFO/OK → info; default → warn) and renders a colour-coded badge; a per-severity radiogroup filter sits in the panel header with live counts. UI-only — no backend contract change.)* - [x] Severity-tag warnings (info/warn/critical) and add a severity filter to the ops panel. *(`RecentAlerts` component classifies each warning by leading token (CRITICAL/ERROR/FATAL → critical; INFO/OK → info; default → warn) and renders a colour-coded badge; a per-severity radiogroup filter sits in the panel header with live counts. UI-only — no backend contract change.)*
- [ ] Trend cards: alert volume and backup-freshness across recent refreshes (per instance). *(Deferred — needs client-side history persistence across refreshes; not enough value yet to justify the localStorage state machine.)* - [x] Trend cards: alert volume and backup-freshness across recent refreshes (per instance). *(`lib/hermes-ops-history.ts` keeps the last 24 snapshots in localStorage (de-duped on `generatedAt`, schema-guarded on read); the ops panel renders three trend cards inline — warning-volume sparkline, healthy-instance sparkline, per-instance "minutes since last backup commit" with a 30-minute stale threshold. SVG polyline sparklines, no chart library.)*
- [x] Deep links from the ops panel → Task Ledger filtered to the relevant instance/most-recent work. *(Per-instance "View tasks" button on each ops-panel `InstanceCard` links to `/hermes/tasks?instance=<id>`. `HermesInstanceProvider` now hydrates from the `?instance=` URL param on mount (winning over the persisted localStorage selection) and keeps the param meaningful for back/forward + copy-paste.)* - [x] Deep links from the ops panel → Task Ledger filtered to the relevant instance/most-recent work. *(Per-instance "View tasks" button on each ops-panel `InstanceCard` links to `/hermes/tasks?instance=<id>`. `HermesInstanceProvider` now hydrates from the `?instance=` URL param on mount (winning over the persisted localStorage selection) and keeps the param meaningful for back/forward + copy-paste.)*
- [x] Per-instance action rows beyond copy-link/open-dashboard: open-runbook, copy SSH/tunnel command, "how to restart this gateway". *(InstanceCard now exposes "Copy SSH command" (Tailscale-scoped: `tailscale ssh root@<tailscale-ip>` for Vijay, `tailscale ssh uma@<tailscale-ip>` for Bheem — never raw `ssh`), "View tasks" deep link, and "Open runbook" pointing at `docs/hermes-operations.md`. "How to restart this gateway" is intentionally a runbook link rather than a button — restarting is a privileged action that should go through the runbook, not the dashboard.)* - [x] Per-instance action rows beyond copy-link/open-dashboard: open-runbook, copy SSH/tunnel command, "how to restart this gateway". *(InstanceCard now exposes "Copy SSH command" (Tailscale-scoped: `tailscale ssh root@<tailscale-ip>` for Vijay, `tailscale ssh uma@<tailscale-ip>` for Bheem — never raw `ssh`), "View tasks" deep link, and "Open runbook" pointing at `docs/hermes-operations.md`. "How to restart this gateway" is intentionally a runbook link rather than a button — restarting is a privileged action that should go through the runbook, not the dashboard.)*
- [ ] Optional dark/light theme toggle if the shell supports it. *(Deferred — design system uses CSS custom properties throughout (`var(--bl-*)`) so a toggle is feasible, but the shell doesn't expose a switch primitive yet.)* - [x] Optional dark/light theme toggle if the shell supports it. *(`components/theme-toggle.tsx` Sun/Moon button mounted in the Hermes layout next to the instance switcher. Persists in localStorage `bytelyst.theme.v1`; an inline FOUC-prevention script in the root layout reads the same key and applies `data-theme` to `<html>` before React hydrates so the first paint matches the user's last choice. The design system already had `[data-theme="light"]` overrides in `styles/tokens.css`; the toggle just flips them on.)*
- [ ] Unified alerts feed across both instances on the overview. *(Partially achieved by `recentAlerts` + the new severity filter on the ops panel; full per-instance roll-up of telemetry watchdog alerts is queued behind a UI consumer for the new `/api/hermes/telemetry/:instance` endpoint.)* - [ ] Unified alerts feed across both instances on the overview. *(Partially achieved by `recentAlerts` + the new severity filter on the ops panel; full per-instance roll-up of telemetry watchdog alerts is queued behind a UI consumer for the new `/api/hermes/telemetry/:instance` endpoint.)*
## Phase 7 — Security & access (G8) ## Phase 7 — Security & access (G8)
@ -188,7 +192,7 @@ This roadmap is complete when:
Update only with evidence (source review, tests, build output, or browser/VM verification). Update only with evidence (source review, tests, build output, or browser/VM verification).
- [ ] Phase 0 — Guardrails reconfirmed - [x] Phase 0 — Guardrails reconfirmed (2026-05-30 pass; remains "must hold throughout")
- [x] Phase 1 — `hermes-ops` hardened + tested - [x] Phase 1 — `hermes-ops` hardened + tested
- [x] Phase 2 — Instance dimension + switcher - [x] Phase 2 — Instance dimension + switcher
- [x] Phase 3 — Real telemetry ingestion + Products pane converted (Task Ledger / Agents / History deferred — depend on JSONL session pipeline, see Phase 3 notes) - [x] Phase 3 — Real telemetry ingestion + Products pane converted (Task Ledger / Agents / History deferred — depend on JSONL session pipeline, see Phase 3 notes)