getbased-agent-stack 0.4.0__tar.gz → 0.4.1__tar.gz

{getbased_agent_stack-0.4.0/src/getbased_agent_stack.egg-info → getbased_agent_stack-0.4.1}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: getbased-agent-stack
-Version: 0.4.0
+Version: 0.4.1
 Summary: One-command install of the full getbased agent stack — getbased-mcp + getbased-rag + getbased-dashboard
 License-Expression: GPL-3.0-only
 Requires-Python: >=3.10

{getbased_agent_stack-0.4.0 → getbased_agent_stack-0.4.1}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "getbased-agent-stack"
-version = "0.4.0"
+version = "0.4.1"
 description = "One-command install of the full getbased agent stack — getbased-mcp + getbased-rag + getbased-dashboard"
 readme = "README.md"
 license = "GPL-3.0-only"

{getbased_agent_stack-0.4.0 → getbased_agent_stack-0.4.1}/src/getbased_agent_stack/__init__.py

@@ -5,4 +5,4 @@ plus a small CLI that proxies to the real binaries. Everything
 interesting lives in the sibling repos.
 """
 
-__version__ = "0.4.0"
+__version__ = "0.4.1"

{getbased_agent_stack-0.4.0 → getbased_agent_stack-0.4.1}/src/getbased_agent_stack/systemd/getbased-dashboard.service

@@ -16,7 +16,9 @@ ExecStart=%h/.local/bin/getbased-dashboard serve
 Restart=always
 RestartSec=5s
 
-# Hardening — the dashboard is a localhost-only HTTP server.
+# User-mode-compatible hardening only — see getbased-rag.service for
+# the list of CAP_SYS_ADMIN-requiring directives that fail with
+# 218/CAPABILITIES under `systemctl --user` and are deliberately omitted.
 NoNewPrivileges=true
 ProtectSystem=strict
 ProtectHome=read-only
@@ -24,13 +26,7 @@ ProtectHome=read-only
 # the shared env file when the user edits the token in the MCP tab.
 ReadWritePaths=%h/.local/state/getbased %h/.config/getbased
 PrivateTmp=true
-ProtectKernelTunables=true
-ProtectKernelModules=true
-ProtectControlGroups=true
-RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX
-RestrictNamespaces=true
 LockPersonality=true
-RestrictRealtime=true
 
 [Install]
 WantedBy=default.target

{getbased_agent_stack-0.4.0 → getbased_agent_stack-0.4.1}/src/getbased_agent_stack/systemd/getbased-rag.service

@@ -22,20 +22,19 @@ ExecStart=%h/.local/bin/lens serve
 Restart=always
 RestartSec=5s
 
-# Hardening — the server only needs its data dir + a network socket.
+# User-mode-compatible hardening only. Directives that require
+# CAP_SYS_ADMIN (ProtectKernelTunables, ProtectKernelModules,
+# ProtectControlGroups, RestrictNamespaces, RestrictAddressFamilies,
+# RestrictRealtime, MemoryDenyWriteExecute) fail with 218/CAPABILITIES
+# under `systemctl --user` on a non-privileged bus and are omitted.
+# For a hardened system-service deployment, promote this unit to
+# /etc/systemd/system/ and re-add those directives.
 NoNewPrivileges=true
 ProtectSystem=strict
 ProtectHome=read-only
 ReadWritePaths=%h/.local/share/getbased
 PrivateTmp=true
-ProtectKernelTunables=true
-ProtectKernelModules=true
-ProtectControlGroups=true
-RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX
-RestrictNamespaces=true
 LockPersonality=true
-MemoryDenyWriteExecute=false  # ONNX Runtime needs W^X exception
-RestrictRealtime=true
 
 [Install]
 WantedBy=default.target

{getbased_agent_stack-0.4.0 → getbased_agent_stack-0.4.1/src/getbased_agent_stack.egg-info}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: getbased-agent-stack
-Version: 0.4.0
+Version: 0.4.1
 Summary: One-command install of the full getbased agent stack — getbased-mcp + getbased-rag + getbased-dashboard
 License-Expression: GPL-3.0-only
 Requires-Python: >=3.10

{getbased_agent_stack-0.4.0 → getbased_agent_stack-0.4.1}/src/getbased_agent_stack.egg-info/SOURCES.txt

@@ -18,4 +18,5 @@ tests/test_cli.py
 tests/test_env_file.py
 tests/test_integration.py
 tests/test_mcp_configs.py
+tests/test_systemd_units.py
 tests/test_units.py

getbased_agent_stack-0.4.1/tests/test_systemd_units.py

@@ -0,0 +1,109 @@
+"""Regression tests for the bundled systemd unit files.
+
+Found during the Hermes 0.4.0 clean-install smoke test: several hardening
+directives (ProtectKernelTunables, RestrictNamespaces, etc.) require
+CAP_SYS_ADMIN and fail with 218/CAPABILITIES under `systemctl --user`.
+Inline `# comment` on a directive line also breaks parsing (systemd
+appends the comment to the value).
+
+These tests lock in both fixes by asserting on unit-file content."""
+from __future__ import annotations
+
+import pytest
+
+from getbased_agent_stack import units
+
+
+# Capability-requiring directives that fail under `systemctl --user`.
+# Any of these in a bundled unit would bring back the CAPABILITIES 218
+# error on a user install.
+FORBIDDEN_USER_MODE_DIRECTIVES = (
+    "ProtectKernelTunables",
+    "ProtectKernelModules",
+    "ProtectControlGroups",
+    "RestrictNamespaces",
+    "RestrictAddressFamilies",
+    "RestrictRealtime",
+    "MemoryDenyWriteExecute",
+    "SystemCallFilter",
+    "SystemCallArchitectures",
+    "CapabilityBoundingSet",
+    "AmbientCapabilities",
+)
+
+
+def _directive_values(text: str) -> "list[tuple[str, str]]":
+    """Return (key, value) pairs for every `KEY=VALUE` line that is not a
+    comment, preserving order. Section headers excluded."""
+    out: "list[tuple[str, str]]" = []
+    for line in text.splitlines():
+        stripped = line.strip()
+        if not stripped or stripped.startswith(("#", "[")):
+            continue
+        if "=" not in stripped:
+            continue
+        key, _, val = stripped.partition("=")
+        out.append((key.strip(), val))
+    return out
+
+
+@pytest.mark.parametrize("name,text", units.bundled_units())
+def test_no_user_mode_forbidden_directives(name, text):
+    """Capability-requiring directives must not appear in bundled units —
+    they're incompatible with `systemctl --user` and prevent first start."""
+    for key, _ in _directive_values(text):
+        assert key not in FORBIDDEN_USER_MODE_DIRECTIVES, (
+            f"{name} has {key}= which fails under systemctl --user "
+            f"(needs CAP_SYS_ADMIN, causes 218/CAPABILITIES)"
+        )
+
+
+@pytest.mark.parametrize("name,text", units.bundled_units())
+def test_no_inline_comments_on_directives(name, text):
+    """systemd does not strip inline `# comments` from directive values.
+    A line like `MemoryDenyWriteExecute=false  # needed for ONNX` parses
+    the full string (including '# needed for ONNX') as the value, which
+    breaks boolean directives and was a real Hermes install bug."""
+    for key, val in _directive_values(text):
+        # An '#' AFTER meaningful content on a directive line is an inline
+        # comment. Leading-# lines were filtered already by _directive_values.
+        assert "#" not in val, (
+            f"{name} directive {key}= has an inline comment; systemd won't "
+            f"strip it. Move the comment to its own line."
+        )
+
+
+@pytest.mark.parametrize("name,text", units.bundled_units())
+def test_restart_always_not_on_failure(name, text):
+    """Restart=always (not on-failure) so a clean SIGTERM triggers restart.
+    `on-failure` was the exact bug that kept lens-rag.service dead on Hermes
+    for 5 hours — don't regress that."""
+    restart_values = [val for key, val in _directive_values(text) if key == "Restart"]
+    assert restart_values, f"{name} has no Restart= directive"
+    assert restart_values[-1] == "always", (
+        f"{name} has Restart={restart_values[-1]}; must be `always` so clean "
+        f"SIGTERM still brings the service back."
+    )
+
+
+@pytest.mark.parametrize("name,text", units.bundled_units())
+def test_reads_shared_env_file(name, text):
+    """Every unit must source the shared env file via EnvironmentFile=
+    so the GETBASED_STACK_MANAGED flag + token + paths are available."""
+    values = [val for key, val in _directive_values(text) if key == "EnvironmentFile"]
+    assert any(
+        "getbased/env" in v for v in values
+    ), f"{name} does not source %h/.config/getbased/env via EnvironmentFile="
+
+
+@pytest.mark.parametrize("name,text", units.bundled_units())
+def test_sets_stack_managed_flag(name, text):
+    """The opt-in flag must be set via Environment= so the Python loader
+    inside the binary picks up the shared file. Without this, services
+    run without the shared config and every user has to duplicate env
+    into the unit file manually."""
+    envs = [val for key, val in _directive_values(text) if key == "Environment"]
+    flag_set = any(e.startswith("GETBASED_STACK_MANAGED=1") for e in envs)
+    assert flag_set, (
+        f"{name} does not set GETBASED_STACK_MANAGED=1 via Environment="
+    )