PyPI - strix-agent - Versions diffs - 0.4.0__py3-none-any.whl - Mend

strix-agent 0.4.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (118) hide show

strix/__init__.py +0 -0
strix/agents/StrixAgent/__init__.py +4 -0
strix/agents/StrixAgent/strix_agent.py +89 -0
strix/agents/StrixAgent/system_prompt.jinja +404 -0
strix/agents/__init__.py +10 -0
strix/agents/base_agent.py +518 -0
strix/agents/state.py +163 -0
strix/interface/__init__.py +4 -0
strix/interface/assets/tui_styles.tcss +694 -0
strix/interface/cli.py +230 -0
strix/interface/main.py +500 -0
strix/interface/tool_components/__init__.py +39 -0
strix/interface/tool_components/agents_graph_renderer.py +123 -0
strix/interface/tool_components/base_renderer.py +62 -0
strix/interface/tool_components/browser_renderer.py +120 -0
strix/interface/tool_components/file_edit_renderer.py +99 -0
strix/interface/tool_components/finish_renderer.py +31 -0
strix/interface/tool_components/notes_renderer.py +108 -0
strix/interface/tool_components/proxy_renderer.py +255 -0
strix/interface/tool_components/python_renderer.py +34 -0
strix/interface/tool_components/registry.py +72 -0
strix/interface/tool_components/reporting_renderer.py +53 -0
strix/interface/tool_components/scan_info_renderer.py +64 -0
strix/interface/tool_components/terminal_renderer.py +131 -0
strix/interface/tool_components/thinking_renderer.py +29 -0
strix/interface/tool_components/user_message_renderer.py +43 -0
strix/interface/tool_components/web_search_renderer.py +28 -0
strix/interface/tui.py +1274 -0
strix/interface/utils.py +559 -0
strix/llm/__init__.py +15 -0
strix/llm/config.py +20 -0
strix/llm/llm.py +465 -0
strix/llm/memory_compressor.py +212 -0
strix/llm/request_queue.py +87 -0
strix/llm/utils.py +87 -0
strix/prompts/README.md +64 -0
strix/prompts/__init__.py +109 -0
strix/prompts/cloud/.gitkeep +0 -0
strix/prompts/coordination/root_agent.jinja +41 -0
strix/prompts/custom/.gitkeep +0 -0
strix/prompts/frameworks/fastapi.jinja +142 -0
strix/prompts/frameworks/nextjs.jinja +126 -0
strix/prompts/protocols/graphql.jinja +215 -0
strix/prompts/reconnaissance/.gitkeep +0 -0
strix/prompts/technologies/firebase_firestore.jinja +177 -0
strix/prompts/technologies/supabase.jinja +189 -0
strix/prompts/vulnerabilities/authentication_jwt.jinja +147 -0
strix/prompts/vulnerabilities/broken_function_level_authorization.jinja +146 -0
strix/prompts/vulnerabilities/business_logic.jinja +171 -0
strix/prompts/vulnerabilities/csrf.jinja +174 -0
strix/prompts/vulnerabilities/idor.jinja +195 -0
strix/prompts/vulnerabilities/information_disclosure.jinja +222 -0
strix/prompts/vulnerabilities/insecure_file_uploads.jinja +188 -0
strix/prompts/vulnerabilities/mass_assignment.jinja +141 -0
strix/prompts/vulnerabilities/open_redirect.jinja +177 -0
strix/prompts/vulnerabilities/path_traversal_lfi_rfi.jinja +142 -0
strix/prompts/vulnerabilities/race_conditions.jinja +164 -0
strix/prompts/vulnerabilities/rce.jinja +154 -0
strix/prompts/vulnerabilities/sql_injection.jinja +151 -0
strix/prompts/vulnerabilities/ssrf.jinja +135 -0
strix/prompts/vulnerabilities/subdomain_takeover.jinja +155 -0
strix/prompts/vulnerabilities/xss.jinja +169 -0
strix/prompts/vulnerabilities/xxe.jinja +184 -0
strix/runtime/__init__.py +19 -0
strix/runtime/docker_runtime.py +399 -0
strix/runtime/runtime.py +29 -0
strix/runtime/tool_server.py +205 -0
strix/telemetry/__init__.py +4 -0
strix/telemetry/tracer.py +337 -0
strix/tools/__init__.py +64 -0
strix/tools/agents_graph/__init__.py +16 -0
strix/tools/agents_graph/agents_graph_actions.py +621 -0
strix/tools/agents_graph/agents_graph_actions_schema.xml +226 -0
strix/tools/argument_parser.py +121 -0
strix/tools/browser/__init__.py +4 -0
strix/tools/browser/browser_actions.py +236 -0
strix/tools/browser/browser_actions_schema.xml +183 -0
strix/tools/browser/browser_instance.py +533 -0
strix/tools/browser/tab_manager.py +342 -0
strix/tools/executor.py +305 -0
strix/tools/file_edit/__init__.py +4 -0
strix/tools/file_edit/file_edit_actions.py +141 -0
strix/tools/file_edit/file_edit_actions_schema.xml +128 -0
strix/tools/finish/__init__.py +4 -0
strix/tools/finish/finish_actions.py +174 -0
strix/tools/finish/finish_actions_schema.xml +45 -0
strix/tools/notes/__init__.py +14 -0
strix/tools/notes/notes_actions.py +191 -0
strix/tools/notes/notes_actions_schema.xml +150 -0
strix/tools/proxy/__init__.py +20 -0
strix/tools/proxy/proxy_actions.py +101 -0
strix/tools/proxy/proxy_actions_schema.xml +267 -0
strix/tools/proxy/proxy_manager.py +785 -0
strix/tools/python/__init__.py +4 -0
strix/tools/python/python_actions.py +47 -0
strix/tools/python/python_actions_schema.xml +131 -0
strix/tools/python/python_instance.py +172 -0
strix/tools/python/python_manager.py +131 -0
strix/tools/registry.py +196 -0
strix/tools/reporting/__init__.py +6 -0
strix/tools/reporting/reporting_actions.py +63 -0
strix/tools/reporting/reporting_actions_schema.xml +30 -0
strix/tools/terminal/__init__.py +4 -0
strix/tools/terminal/terminal_actions.py +35 -0
strix/tools/terminal/terminal_actions_schema.xml +146 -0
strix/tools/terminal/terminal_manager.py +151 -0
strix/tools/terminal/terminal_session.py +447 -0
strix/tools/thinking/__init__.py +4 -0
strix/tools/thinking/thinking_actions.py +18 -0
strix/tools/thinking/thinking_actions_schema.xml +52 -0
strix/tools/web_search/__init__.py +4 -0
strix/tools/web_search/web_search_actions.py +80 -0
strix/tools/web_search/web_search_actions_schema.xml +83 -0
strix_agent-0.4.0.dist-info/LICENSE +201 -0
strix_agent-0.4.0.dist-info/METADATA +282 -0
strix_agent-0.4.0.dist-info/RECORD +118 -0
strix_agent-0.4.0.dist-info/WHEEL +4 -0
strix_agent-0.4.0.dist-info/entry_points.txt +3 -0

strix/runtime/docker_runtime.py ADDED Viewed

@@ -0,0 +1,399 @@
+import contextlib
+import logging
+import os
+import secrets
+import socket
+import time
+from pathlib import Path
+from typing import cast
+import docker
+from docker.errors import DockerException, ImageNotFound, NotFound
+from docker.models.containers import Container
+from .runtime import AbstractRuntime, SandboxInfo
+STRIX_IMAGE = os.getenv("STRIX_IMAGE", "ghcr.io/usestrix/strix-sandbox:0.1.10")
+logger = logging.getLogger(__name__)
+class DockerRuntime(AbstractRuntime):
+    def __init__(self) -> None:
+        try:
+            self.client = docker.from_env()
+        except DockerException as e:
+            logger.exception("Failed to connect to Docker daemon")
+            raise RuntimeError("Docker is not available or not configured correctly.") from e
+        self._scan_container: Container | None = None
+        self._tool_server_port: int | None = None
+        self._tool_server_token: str | None = None
+    def _generate_sandbox_token(self) -> str:
+        return secrets.token_urlsafe(32)
+    def _find_available_port(self) -> int:
+        with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
+            s.bind(("", 0))
+            return cast("int", s.getsockname()[1])
+    def _get_scan_id(self, agent_id: str) -> str:
+        try:
+            from strix.telemetry.tracer import get_global_tracer
+            tracer = get_global_tracer()
+            if tracer and tracer.scan_config:
+                return str(tracer.scan_config.get("scan_id", "default-scan"))
+        except ImportError:
+            logger.debug("Failed to import tracer, using fallback scan ID")
+        except AttributeError:
+            logger.debug("Tracer missing scan_config, using fallback scan ID")
+        return f"scan-{agent_id.split('-')[0]}"
+    def _verify_image_available(self, image_name: str, max_retries: int = 3) -> None:
+        def _validate_image(image: docker.models.images.Image) -> None:
+            if not image.id or not image.attrs:
+                raise ImageNotFound(f"Image {image_name} metadata incomplete")
+        for attempt in range(max_retries):
+            try:
+                image = self.client.images.get(image_name)
+                _validate_image(image)
+            except ImageNotFound:
+                if attempt == max_retries - 1:
+                    logger.exception(f"Image {image_name} not found after {max_retries} attempts")
+                    raise
+                logger.warning(f"Image {image_name} not ready, attempt {attempt + 1}/{max_retries}")
+                time.sleep(2**attempt)
+            except DockerException:
+                if attempt == max_retries - 1:
+                    logger.exception(f"Failed to verify image {image_name}")
+                    raise
+                logger.warning(f"Docker error verifying image, attempt {attempt + 1}/{max_retries}")
+                time.sleep(2**attempt)
+            else:
+                logger.debug(f"Image {image_name} verified as available")
+                return
+    def _create_container_with_retry(self, scan_id: str, max_retries: int = 3) -> Container:
+        last_exception = None
+        container_name = f"strix-scan-{scan_id}"
+        for attempt in range(max_retries):
+            try:
+                self._verify_image_available(STRIX_IMAGE)
+                try:
+                    existing_container = self.client.containers.get(container_name)
+                    logger.warning(f"Container {container_name} already exists, removing it")
+                    with contextlib.suppress(Exception):
+                        existing_container.stop(timeout=5)
+                    existing_container.remove(force=True)
+                    time.sleep(1)
+                except NotFound:
+                    pass
+                except DockerException as e:
+                    logger.warning(f"Error checking/removing existing container: {e}")
+                caido_port = self._find_available_port()
+                tool_server_port = self._find_available_port()
+                tool_server_token = self._generate_sandbox_token()
+                self._tool_server_port = tool_server_port
+                self._tool_server_token = tool_server_token
+                container = self.client.containers.run(
+                    STRIX_IMAGE,
+                    command="sleep infinity",
+                    detach=True,
+                    name=container_name,
+                    hostname=f"strix-scan-{scan_id}",
+                    ports={
+                        f"{caido_port}/tcp": caido_port,
+                        f"{tool_server_port}/tcp": tool_server_port,
+                    },
+                    cap_add=["NET_ADMIN", "NET_RAW"],
+                    labels={"strix-scan-id": scan_id},
+                    environment={
+                        "PYTHONUNBUFFERED": "1",
+                        "CAIDO_PORT": str(caido_port),
+                        "TOOL_SERVER_PORT": str(tool_server_port),
+                        "TOOL_SERVER_TOKEN": tool_server_token,
+                    },
+                    tty=True,
+                )
+                self._scan_container = container
+                logger.info("Created container %s for scan %s", container.id, scan_id)
+                self._initialize_container(
+                    container, caido_port, tool_server_port, tool_server_token
+                )
+            except DockerException as e:
+                last_exception = e
+                if attempt == max_retries - 1:
+                    logger.exception(f"Failed to create container after {max_retries} attempts")
+                    break
+                logger.warning(f"Container creation attempt {attempt + 1}/{max_retries} failed")
+                self._tool_server_port = None
+                self._tool_server_token = None
+                sleep_time = (2**attempt) + (0.1 * attempt)
+                time.sleep(sleep_time)
+            else:
+                return container
+        raise RuntimeError(
+            f"Failed to create Docker container after {max_retries} attempts: {last_exception}"
+        ) from last_exception
+    def _get_or_create_scan_container(self, scan_id: str) -> Container:  # noqa: PLR0912
+        container_name = f"strix-scan-{scan_id}"
+        if self._scan_container:
+            try:
+                self._scan_container.reload()
+                if self._scan_container.status == "running":
+                    return self._scan_container
+            except NotFound:
+                self._scan_container = None
+                self._tool_server_port = None
+                self._tool_server_token = None
+        try:
+            container = self.client.containers.get(container_name)
+            container.reload()
+            if (
+                "strix-scan-id" not in container.labels
+                or container.labels["strix-scan-id"] != scan_id
+            ):
+                logger.warning(
+                    f"Container {container_name} exists but missing/wrong label, updating"
+                )
+            if container.status != "running":
+                logger.info(f"Starting existing container {container_name}")
+                container.start()
+                time.sleep(2)
+            self._scan_container = container
+            for env_var in container.attrs["Config"]["Env"]:
+                if env_var.startswith("TOOL_SERVER_PORT="):
+                    self._tool_server_port = int(env_var.split("=")[1])
+                elif env_var.startswith("TOOL_SERVER_TOKEN="):
+                    self._tool_server_token = env_var.split("=")[1]
+            logger.info(f"Reusing existing container {container_name}")
+        except NotFound:
+            pass
+        except DockerException as e:
+            logger.warning(f"Failed to get container by name {container_name}: {e}")
+        else:
+            return container
+        try:
+            containers = self.client.containers.list(
+                all=True, filters={"label": f"strix-scan-id={scan_id}"}
+            )
+            if containers:
+                container = cast("Container", containers[0])
+                if container.status != "running":
+                    container.start()
+                    time.sleep(2)
+                self._scan_container = container
+                for env_var in container.attrs["Config"]["Env"]:
+                    if env_var.startswith("TOOL_SERVER_PORT="):
+                        self._tool_server_port = int(env_var.split("=")[1])
+                    elif env_var.startswith("TOOL_SERVER_TOKEN="):
+                        self._tool_server_token = env_var.split("=")[1]
+                logger.info(f"Found existing container by label for scan {scan_id}")
+                return container
+        except DockerException as e:
+            logger.warning("Failed to find existing container by label for scan %s: %s", scan_id, e)
+        logger.info("Creating new Docker container for scan %s", scan_id)
+        return self._create_container_with_retry(scan_id)
+    def _initialize_container(
+        self, container: Container, caido_port: int, tool_server_port: int, tool_server_token: str
+    ) -> None:
+        logger.info("Initializing Caido proxy on port %s", caido_port)
+        result = container.exec_run(
+            f"bash -c 'export CAIDO_PORT={caido_port} && /usr/local/bin/docker-entrypoint.sh true'",
+            detach=False,
+        )
+        time.sleep(5)
+        result = container.exec_run(
+            "bash -c 'source /etc/profile.d/proxy.sh && echo $CAIDO_API_TOKEN'", user="pentester"
+        )
+        caido_token = result.output.decode().strip() if result.exit_code == 0 else ""
+        container.exec_run(
+            f"bash -c 'source /etc/profile.d/proxy.sh && cd /app && "
+            f"STRIX_SANDBOX_MODE=true CAIDO_API_TOKEN={caido_token} CAIDO_PORT={caido_port} "
+            f"poetry run python strix/runtime/tool_server.py --token {tool_server_token} "
+            f"--host 0.0.0.0 --port {tool_server_port} &'",
+            detach=True,
+            user="pentester",
+        )
+        time.sleep(5)
+    def _copy_local_directory_to_container(
+        self, container: Container, local_path: str, target_name: str | None = None
+    ) -> None:
+        import tarfile
+        from io import BytesIO
+        try:
+            local_path_obj = Path(local_path).resolve()
+            if not local_path_obj.exists() or not local_path_obj.is_dir():
+                logger.warning(f"Local path does not exist or is not directory: {local_path_obj}")
+                return
+            if target_name:
+                logger.info(
+                    f"Copying local directory {local_path_obj} to container at "
+                    f"/workspace/{target_name}"
+                )
+            else:
+                logger.info(f"Copying local directory {local_path_obj} to container")
+            tar_buffer = BytesIO()
+            with tarfile.open(fileobj=tar_buffer, mode="w") as tar:
+                for item in local_path_obj.rglob("*"):
+                    if item.is_file():
+                        rel_path = item.relative_to(local_path_obj)
+                        arcname = Path(target_name) / rel_path if target_name else rel_path
+                        tar.add(item, arcname=arcname)
+            tar_buffer.seek(0)
+            container.put_archive("/workspace", tar_buffer.getvalue())
+            container.exec_run(
+                "chown -R pentester:pentester /workspace && chmod -R 755 /workspace",
+                user="root",
+            )
+            logger.info("Successfully copied local directory to /workspace")
+        except (OSError, DockerException):
+            logger.exception("Failed to copy local directory to container")
+    async def create_sandbox(
+        self,
+        agent_id: str,
+        existing_token: str | None = None,
+        local_sources: list[dict[str, str]] | None = None,
+    ) -> SandboxInfo:
+        scan_id = self._get_scan_id(agent_id)
+        container = self._get_or_create_scan_container(scan_id)
+        source_copied_key = f"_source_copied_{scan_id}"
+        if local_sources and not hasattr(self, source_copied_key):
+            for index, source in enumerate(local_sources, start=1):
+                source_path = source.get("source_path")
+                if not source_path:
+                    continue
+                target_name = source.get("workspace_subdir")
+                if not target_name:
+                    target_name = Path(source_path).name or f"target_{index}"
+                self._copy_local_directory_to_container(container, source_path, target_name)
+            setattr(self, source_copied_key, True)
+        container_id = container.id
+        if container_id is None:
+            raise RuntimeError("Docker container ID is unexpectedly None")
+        token = existing_token if existing_token is not None else self._tool_server_token
+        if self._tool_server_port is None or token is None:
+            raise RuntimeError("Tool server not initialized or no token available")
+        api_url = await self.get_sandbox_url(container_id, self._tool_server_port)
+        await self._register_agent_with_tool_server(api_url, agent_id, token)
+        return {
+            "workspace_id": container_id,
+            "api_url": api_url,
+            "auth_token": token,
+            "tool_server_port": self._tool_server_port,
+            "agent_id": agent_id,
+        }
+    async def _register_agent_with_tool_server(
+        self, api_url: str, agent_id: str, token: str
+    ) -> None:
+        import httpx
+        try:
+            async with httpx.AsyncClient(trust_env=False) as client:
+                response = await client.post(
+                    f"{api_url}/register_agent",
+                    params={"agent_id": agent_id},
+                    headers={"Authorization": f"Bearer {token}"},
+                    timeout=30,
+                )
+                response.raise_for_status()
+                logger.info(f"Registered agent {agent_id} with tool server")
+        except (httpx.RequestError, httpx.HTTPStatusError) as e:
+            logger.warning(f"Failed to register agent {agent_id}: {e}")
+    async def get_sandbox_url(self, container_id: str, port: int) -> str:
+        try:
+            container = self.client.containers.get(container_id)
+            container.reload()
+            host = self._resolve_docker_host()
+        except NotFound:
+            raise ValueError(f"Container {container_id} not found.") from None
+        except DockerException as e:
+            raise RuntimeError(f"Failed to get container URL for {container_id}: {e}") from e
+        else:
+            return f"http://{host}:{port}"
+    def _resolve_docker_host(self) -> str:
+        docker_host = os.getenv("DOCKER_HOST", "")
+        if not docker_host:
+            return "127.0.0.1"
+        from urllib.parse import urlparse
+        parsed = urlparse(docker_host)
+        if parsed.scheme in ("tcp", "http", "https") and parsed.hostname:
+            return parsed.hostname
+        return "127.0.0.1"
+    async def destroy_sandbox(self, container_id: str) -> None:
+        logger.info("Destroying scan container %s", container_id)
+        try:
+            container = self.client.containers.get(container_id)
+            container.stop()
+            container.remove()
+            logger.info("Successfully destroyed container %s", container_id)
+            self._scan_container = None
+            self._tool_server_port = None
+            self._tool_server_token = None
+        except NotFound:
+            logger.warning("Container %s not found for destruction.", container_id)
+        except DockerException as e:
+            logger.warning("Failed to destroy container %s: %s", container_id, e)

strix/runtime/runtime.py ADDED Viewed

@@ -0,0 +1,29 @@
+from abc import ABC, abstractmethod
+from typing import TypedDict
+class SandboxInfo(TypedDict):
+    workspace_id: str
+    api_url: str
+    auth_token: str | None
+    tool_server_port: int
+    agent_id: str
+class AbstractRuntime(ABC):
+    @abstractmethod
+    async def create_sandbox(
+        self,
+        agent_id: str,
+        existing_token: str | None = None,
+        local_sources: list[dict[str, str]] | None = None,
+    ) -> SandboxInfo:
+        raise NotImplementedError
+    @abstractmethod
+    async def get_sandbox_url(self, container_id: str, port: int) -> str:
+        raise NotImplementedError
+    @abstractmethod
+    async def destroy_sandbox(self, container_id: str) -> None:
+        raise NotImplementedError

strix/runtime/tool_server.py ADDED Viewed

@@ -0,0 +1,205 @@
+from __future__ import annotations
+import argparse
+import asyncio
+import logging
+import os
+import signal
+import sys
+from multiprocessing import Process, Queue
+from typing import Any
+import uvicorn
+from fastapi import Depends, FastAPI, HTTPException, status
+from fastapi.security import HTTPAuthorizationCredentials, HTTPBearer
+from pydantic import BaseModel, ValidationError
+SANDBOX_MODE = os.getenv("STRIX_SANDBOX_MODE", "false").lower() == "true"
+if not SANDBOX_MODE:
+    raise RuntimeError("Tool server should only run in sandbox mode (STRIX_SANDBOX_MODE=true)")
+parser = argparse.ArgumentParser(description="Start Strix tool server")
+parser.add_argument("--token", required=True, help="Authentication token")
+parser.add_argument("--host", default="0.0.0.0", help="Host to bind to")  # nosec
+parser.add_argument("--port", type=int, required=True, help="Port to bind to")
+args = parser.parse_args()
+EXPECTED_TOKEN = args.token
+app = FastAPI()
+security = HTTPBearer()
+security_dependency = Depends(security)
+agent_processes: dict[str, dict[str, Any]] = {}
+agent_queues: dict[str, dict[str, Queue[Any]]] = {}
+def verify_token(credentials: HTTPAuthorizationCredentials) -> str:
+    if not credentials or credentials.scheme != "Bearer":
+        raise HTTPException(
+            status_code=status.HTTP_401_UNAUTHORIZED,
+            detail="Invalid authentication scheme. Bearer token required.",
+            headers={"WWW-Authenticate": "Bearer"},
+        )
+    if credentials.credentials != EXPECTED_TOKEN:
+        raise HTTPException(
+            status_code=status.HTTP_401_UNAUTHORIZED,
+            detail="Invalid authentication token",
+            headers={"WWW-Authenticate": "Bearer"},
+        )
+    return credentials.credentials
+class ToolExecutionRequest(BaseModel):
+    agent_id: str
+    tool_name: str
+    kwargs: dict[str, Any]
+class ToolExecutionResponse(BaseModel):
+    result: Any | None = None
+    error: str | None = None
+def agent_worker(_agent_id: str, request_queue: Queue[Any], response_queue: Queue[Any]) -> None:
+    null_handler = logging.NullHandler()
+    root_logger = logging.getLogger()
+    root_logger.handlers = [null_handler]
+    root_logger.setLevel(logging.CRITICAL)
+    from strix.tools.argument_parser import ArgumentConversionError, convert_arguments
+    from strix.tools.registry import get_tool_by_name
+    while True:
+        try:
+            request = request_queue.get()
+            if request is None:
+                break
+            tool_name = request["tool_name"]
+            kwargs = request["kwargs"]
+            try:
+                tool_func = get_tool_by_name(tool_name)
+                if not tool_func:
+                    response_queue.put({"error": f"Tool '{tool_name}' not found"})
+                    continue
+                converted_kwargs = convert_arguments(tool_func, kwargs)
+                result = tool_func(**converted_kwargs)
+                response_queue.put({"result": result})
+            except (ArgumentConversionError, ValidationError) as e:
+                response_queue.put({"error": f"Invalid arguments: {e}"})
+            except (RuntimeError, ValueError, ImportError) as e:
+                response_queue.put({"error": f"Tool execution error: {e}"})
+        except (RuntimeError, ValueError, ImportError) as e:
+            response_queue.put({"error": f"Worker error: {e}"})
+def ensure_agent_process(agent_id: str) -> tuple[Queue[Any], Queue[Any]]:
+    if agent_id not in agent_processes:
+        request_queue: Queue[Any] = Queue()
+        response_queue: Queue[Any] = Queue()
+        process = Process(
+            target=agent_worker, args=(agent_id, request_queue, response_queue), daemon=True
+        )
+        process.start()
+        agent_processes[agent_id] = {"process": process, "pid": process.pid}
+        agent_queues[agent_id] = {"request": request_queue, "response": response_queue}
+    return agent_queues[agent_id]["request"], agent_queues[agent_id]["response"]
+@app.post("/execute", response_model=ToolExecutionResponse)
+async def execute_tool(
+    request: ToolExecutionRequest, credentials: HTTPAuthorizationCredentials = security_dependency
+) -> ToolExecutionResponse:
+    verify_token(credentials)
+    request_queue, response_queue = ensure_agent_process(request.agent_id)
+    request_queue.put({"tool_name": request.tool_name, "kwargs": request.kwargs})
+    try:
+        loop = asyncio.get_event_loop()
+        response = await loop.run_in_executor(None, response_queue.get)
+        if "error" in response:
+            return ToolExecutionResponse(error=response["error"])
+        return ToolExecutionResponse(result=response.get("result"))
+    except (RuntimeError, ValueError, OSError) as e:
+        return ToolExecutionResponse(error=f"Worker error: {e}")
+@app.post("/register_agent")
+async def register_agent(
+    agent_id: str, credentials: HTTPAuthorizationCredentials = security_dependency
+) -> dict[str, str]:
+    verify_token(credentials)
+    ensure_agent_process(agent_id)
+    return {"status": "registered", "agent_id": agent_id}
+@app.get("/health")
+async def health_check() -> dict[str, Any]:
+    return {
+        "status": "healthy",
+        "sandbox_mode": str(SANDBOX_MODE),
+        "environment": "sandbox" if SANDBOX_MODE else "main",
+        "auth_configured": "true" if EXPECTED_TOKEN else "false",
+        "active_agents": len(agent_processes),
+        "agents": list(agent_processes.keys()),
+    }
+def cleanup_all_agents() -> None:
+    for agent_id in list(agent_processes.keys()):
+        try:
+            agent_queues[agent_id]["request"].put(None)
+            process = agent_processes[agent_id]["process"]
+            process.join(timeout=1)
+            if process.is_alive():
+                process.terminate()
+                process.join(timeout=1)
+            if process.is_alive():
+                process.kill()
+        except (BrokenPipeError, EOFError, OSError):
+            pass
+        except (RuntimeError, ValueError) as e:
+            logging.getLogger(__name__).debug(f"Error during agent cleanup: {e}")
+def signal_handler(_signum: int, _frame: Any) -> None:
+    signal.signal(signal.SIGPIPE, signal.SIG_IGN) if hasattr(signal, "SIGPIPE") else None
+    cleanup_all_agents()
+    sys.exit(0)
+if hasattr(signal, "SIGPIPE"):
+    signal.signal(signal.SIGPIPE, signal.SIG_IGN)
+signal.signal(signal.SIGTERM, signal_handler)
+signal.signal(signal.SIGINT, signal_handler)
+if __name__ == "__main__":
+    try:
+        uvicorn.run(app, host=args.host, port=args.port, log_level="info")
+    finally:
+        cleanup_all_agents()

strix/telemetry/__init__.py ADDED Viewed

@@ -0,0 +1,4 @@
+from .tracer import Tracer, get_global_tracer, set_global_tracer
+__all__ = ["Tracer", "get_global_tracer", "set_global_tracer"]