[Bug]: Auxiliary auto fallback fails on OpenRouter 403 credit/key-limit errors and may not skip the concrete failed backend

[AllardQuek]

Bug Description

When auxiliary tasks run with provider=auto, and face 403 responses due to OpenRouter key/spend limits, auxiliary requests may raise immediately instead of triggering provider fallback to the next backend.”

A related issue is that the fallback can skip the wrong backend (or skip nothing useful), causing ineffective retries, as there does not seem to be a concrete label passed by the caller

Steps to Reproduce

1. Configure auxiliary resolution as auto (default).
2. Set an OpenRouter key/account in a depleted/key-limited state so requests return 403 with text like Key limit exceeded, spending limit, or total limit.
3. Ensure another provider is available (for example Codex OAuth, Nous, or custom endpoint) so fallback is possible.
4. Trigger an auxiliary call (for example compression/session search/web extract).
5. Observe request handling in call_llm/async_call_llm.

Expected Behavior

1. 403 spend/key-limit responses should be treated as fallback-eligible payment exhaustion (same class as 402 for this purpose).
2. Auxiliary fallback should skip the actual failed backend and continue to the next available provider in the chain.
3. Auxiliary task should succeed on a downstream provider when one is available.

Actual Behavior

1. 403 OpenRouter key-limit/spend-limit errors do not seem to be classified as payment exhaustion, and thus not triggering fallback.
2. In fallback-triggered paths, failed-backend identity may be too coarse if concrete backend metadata is not propagated, which can lead to poor skip behavior.
3. Auxiliary calls can fail even when another provider is configured and healthy.

Screenshot below shows 3 tries with the same model and same error instead of trying a fallback provider:

Affected Component

Agent Core (conversation loop, context compression, memory)

Messaging Platform (if gateway-related)

No response

Debug Report

Debug report uploaded:
  Report     https://paste.rs/JyerH
  agent.log  https://paste.rs/z2GhQ

Operating System

MacOS 26.4

Python Version

No response

Hermes Version

No response

Additional Logs / Traceback (optional)

Root Cause Analysis (optional)

1. Payment-error classification was too narrow and focused on 402/generic patterns, missing common OpenRouter 403 key-limit wording.
2. _try_payment_fallback() itself only skips what it is told (failed_provider string); it does not discover backend identity on its own.
3. Call sites previously could pass a non-concrete provider value (for example coarse auto/provider context) instead of the concrete resolved backend label, so skip logic could be imprecise.
4. Because auxiliary fallback is chain-based, incorrect failed-backend identity undermines the main purpose of “advance past the backend that just failed.”

Proposed Fix (optional)

1. Extend _is_payment_error() to treat OpenRouter 403 key/spend-limit responses as payment exhaustion signals.
2. Persist concrete resolved backend metadata on clients and thread it through cache/call paths.
3. Use that resolved provider label in call_llm and async_call_llm when invoking _try_payment_fallback().
4. Keep fallback scoped to auto mode and to backend-unavailable classes (payment exhaustion + connection errors), so we do not hide request-shape or model/config bugs.
5. Add regression tests for:

• OpenRouter 403 key-limit path triggers fallback
• fallback receives concrete failed backend label
• async path mirrors sync behavior

Are you willing to submit a PR for this?

• I'd like to fix this myself and submit a PR

[AllardQuek]

Actually, I think this is no longer an issue. Previously when I set auxiliary model to "auto", hermes seemed to be trying OpenRouter first all the time, but now it "auto" should default to the main model (if I'm not mistaken).

I tested with the following settings and was unable to reproduce the issue:

1. main model: OpenRouter with exhausted limited (i.e. $0 spend limit)
2. auxiliary model for session_search: auto (i.e. session_search will default to main model which is invalid in this case)
3. fallback provider for main model: any active, valid model (e.g. Nous free model in my case)

Note that 3 is important otherwise the main agent loop would already fail and not trigger the auxiliary model via an auxiliary task like session_search

It appears _get_cached_client is key in caching the main fallback model so that the auxiliary task (session_search) can fallback to it in _resolve_auto ("Step 2: aggregator / fallback chain").

Note: the logs WARNING agent.auxiliary_client: resolve_provider_client: openrouter requested but OPENROUTER_API_KEY not set is misleading in this case as a key is actually set

Sample logs:

2026-04-23 23:35:43,326 INFO run_agent: Loaded environment variables from /Users/allard/.hermes/.env
2026-04-23 23:35:45,305 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:35:45,306 WARNING agent.auxiliary_client: resolve_provider_client: openrouter requested but OPENROUTER_API_KEY not set
2026-04-23 23:35:47,367 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:35:47,368 WARNING agent.auxiliary_client: resolve_provider_client: openrouter requested but OPENROUTER_API_KEY not set
2026-04-23 23:35:58,112 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:35:58,149 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:35:58,244 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:35:58,244 WARNING agent.auxiliary_client: resolve_provider_client: openrouter requested but OPENROUTER_API_KEY not set
2026-04-23 23:35:58,856 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:35:58,856 WARNING agent.auxiliary_client: resolve_provider_client: openrouter requested but OPENROUTER_API_KEY not set
2026-04-23 23:35:58,864 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:35:58,880 INFO agent.auxiliary_client: Auxiliary auto-detect: using nous (google/gemini-3-flash-preview) — skipped: openrouter
2026-04-23 23:35:59,631 INFO [20260423_233545_499199] root: Fallback activated: nvidia/nemotron-3-super-120b-a12b → stepfun/step-3.5-flash (nous)
2026-04-23 23:36:04,150 INFO [20260423_233545_499199] agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:36:04,151 WARNING [20260423_233545_499199] agent.auxiliary_client: resolve_provider_client: openrouter requested but OPENROUTER_API_KEY not set
2026-04-23 23:36:04,174 INFO [20260423_233545_499199] agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:36:04,206 INFO [20260423_233545_499199] agent.auxiliary_client: Auxiliary auto-detect: using nous (google/gemini-3-flash-preview) — skipped: openrouter
2026-04-23 23:36:20,453 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:36:20,454 WARNING agent.auxiliary_client: resolve_provider_client: openrouter requested but OPENROUTER_API_KEY not set
2026-04-23 23:36:20,463 INFO agent.credential_pool: credential pool: no available entries (all exhausted or empty)
2026-04-23 23:36:20,483 INFO agent.auxiliary_client: Auxiliary auto-detect: using nous (google/gemini-3-flash-preview) — skipped: openrouter
2026-04-23 23:36:20,483 INFO agent.auxiliary_client: Auxiliary title_generation: using auto (google/gemini-3-flash-preview) at https://inference-api.nousresearch.com/v1/

---

That said, OpenRouter does return 403 which is not handled in _is_payment_error from auxiliary_client.py. The potential relevant scenarios and implications are unclear, but regardless this issue's description is not fully accurate, so new, more targeted issues should be created if required.