Feature: Symphony-Style Autonomous Issue Resolution — Poll-Dispatch-Resolve-Land Workflow (inspired by OpenAI Symphony)

[teknium1]

Overview

OpenAI Symphony (Apache-2.0, released March 4 2026) is a daemon service that transforms project management into autonomous coding runs. It polls an issue tracker (Linear) for work items, spawns isolated coding agents per issue, manages the full lifecycle (Todo → In Progress → Human Review → Merging → Done), and provides "proof of work" before landing code. Teams manage work rather than supervising agents.

This issue proposes adapting Symphony's core orchestration pattern into a Hermes Agent skill: autonomous issue resolution driven by GitHub Issues (with optional Linear support). Hermes would poll a repo's issue tracker on a schedule, claim eligible issues, create isolated workspaces, work through each issue autonomously using a per-repo WORKFLOW.md configuration, and hand off with comprehensive proof of work (CI green, PR reviewed, workpad updated).

This is independently valuable from #344 (Multi-Agent Architecture). Symphony is single-agent-per-issue — each issue gets one agent working in isolation. The orchestration layer (polling, dispatching, lifecycle management) is orthogonal to multi-agent patterns. However, Phase 3+ could leverage #344's workflow DAG engine for complex issues that need decomposition.

---

Research Findings

How Symphony Works

Symphony is a six-layer architecture designed for portability:

1. Policy Layer — A repo-owned WORKFLOW.md file (YAML frontmatter for config, Markdown body for the agent prompt template). This is the primary team interface: version-controlled, dynamically reloaded, defines everything from polling cadence to agent behavior.

2. Configuration Layer — Typed getters for tracker (kind, project_slug, API key), polling (interval_ms), workspace (root path), hooks (shell scripts for lifecycle events), agent (max_concurrent, max_turns, retry backoff), and codex (command, sandbox, approval policies).

3. Coordination Layer (Orchestrator) — A GenServer (Elixir/OTP) that owns the poll loop and all scheduling state. Each issue transitions through: Unclaimed → Claimed → Running → RetryQueued → Released. The orchestrator handles:

   • Priority-based dispatch (priority ascending, oldest first, with per-state concurrency limits)
   • Blocker detection (Todo issues with non-terminal blockers are held)
   • Stall detection (kills agents inactive for >5min)
   • Active run reconciliation (terminates agents whose issues moved to terminal states)
   • Exponential backoff retries: delay = min(10000 * 2^(attempt-1), max_backoff)
   • Continuation retries: 1s delay after clean exit to re-check if issue is still active

4. Execution Layer — Per-issue workspace directories with lifecycle hooks (after_create, before_run, after_run, before_remove). Hooks are shell scripts run in the workspace context with configurable timeout. Safety invariants enforce CWD validation and root containment.

5. Integration Layer — Issue tracker adapters. Currently Linear only, but the spec is designed for pluggable tracker kinds. Issues are normalized into a stable model (id, identifier, title, description, priority, state, branch_name, labels, blocked_by).

6. Observability Layer — Structured logs + optional HTTP dashboard (/api/v1/state, /api/v1/refresh) for monitoring concurrent agent runs, token usage, and rate limits.

The WORKFLOW.md Contract

The most transferable pattern. A single file that defines:

---
tracker:
  kind: linear
  project_slug: "my-project"
  active_states: [Todo, In Progress, Merging, Rework]
  terminal_states: [Closed, Cancelled, Done]
polling:
  interval_ms: 30000
workspace:
  root: ~/code/workspaces
hooks:
  after_create: |
    git clone --depth 1 git@github.com:org/repo.git .
agent:
  max_concurrent_agents: 10
  max_turns: 20
---

You are working on ticket {{ issue.identifier }}
Title: {{ issue.title }}
Description: {{ issue.description }}

The Markdown body is a Liquid-compatible template with issue.* and attempt variables. Unknown variables/filters fail rendering (strict mode). Empty prompt body falls back to a minimal default. The file is hot-reloaded on change.

The Workpad Pattern

Symphony's WORKFLOW.md defines a structured "Codex Workpad" — a single persistent comment on the issue tracker that serves as the agent's scratchpad:

## Codex Workpad

\`\`\`text
devbox-01:/home/dev-user/code/workspaces/MT-32@7bdde33bc
\`\`\`

### Plan
- [ ] 1. Parent task
  - [ ] 1.1 Child task

### Acceptance Criteria
- [ ] Criterion 1

### Validation
- [ ] targeted tests: \`make test\`

### Notes
- short progress note with timestamp

### Confusions
- unclear aspects during execution

This comment is the single source of truth for progress. All updates go here — no separate completion comments. The agent updates it after every meaningful milestone.

Skill Composition Pattern

Symphony's .codex/skills/ directory implements a composable workflow:

• commit: Conventional commits with Co-authored-by trailers, session-context-driven messages
• push: Push + PR creation, delegates to "pull" on non-fast-forward
• pull: Merge origin/main with zdiff3 conflict resolution, git rerere for conflict memory
• land: Shepherd PR through review → CI → squash-merge, with a 621-line async Python watcher (land_watch.py) that monitors reviews, CI checks, and head SHA changes in parallel
• linear: GraphQL operations reference guide
• debug: Log correlation and failure triage

The land skill is particularly sophisticated — it implements a full review feedback protocol with per-comment handling (accept, clarify, or pushback with [codex] prefix), async parallel monitoring of reviews + CI + head changes, and exponential backoff with jitter for rate limiting.

Key Design Decisions

1. Scheduler, not executor — Symphony reads trackers and runs agents but doesn't write to tickets directly. The agent does ticket writes via tools. Clean separation of concerns.
2. In-repo policy — WORKFLOW.md is version-controlled, so workflow changes are PRs, not config changes.
3. Workspace persistence — Workspaces survive across runs for the same issue, enabling continuation.
4. Status-driven routing — Agent behavior is determined by issue state (FSM), not arbitrary branching.
5. Fail immediately on user input — If an agent requests human input, the run fails. Symphony is for full automation.
6. Continuation turns — After a successful turn, the agent checks if the issue is still active and continues on the same thread (up to max_turns), avoiding cold-start overhead.

---

Current State in Hermes Agent

What we already have that's relevant:

• Cronjob system (cron/scheduler.py, schedule_cronjob tool) — Can poll on a schedule. Already supports recurring intervals, cron expressions, and delivery targets. This IS our polling mechanism.
• Sub-agent delegation (tools/delegate_tool.py) — Can spawn isolated child agents with restricted toolsets and separate terminal sessions. Batch mode supports up to 3 parallel tasks.
• Hermes agent spawning (skill: hermes-agent-spawning) — Can spawn full Hermes instances as subprocesses for independent long-running tasks.
• GitHub workflow skills (github-issues, github-pr-workflow, github-code-review) — Already know how to create/manage issues, PRs, and code reviews via gh CLI.
• Skills system — Our existing skills are already structured similarly to Symphony's .codex/skills/.
• Memory/session system — Hermes has persistent memory across sessions, useful for tracking orchestration state.

What's missing (the gap):

1. No automated issue claiming/dispatch — Hermes doesn't monitor issue trackers and auto-assign itself work. Everything is user-initiated.
2. No WORKFLOW.md convention — No per-repo configuration that tells Hermes how to behave on that repo's issues.
3. No workspace lifecycle hooks — No structured before_run/after_run/after_create hook system.
4. No workpad pattern — No convention for maintaining a persistent progress comment on issues.
5. No status-driven routing — No FSM for routing behavior based on issue state.
6. No proof-of-work protocol — No structured verification before handing off (CI check, review sweep, acceptance criteria validation).

Existing issues with partial overlap:

• Feature: Multi-Agent Architecture — Orchestration, Cooperation, Specialized Roles & Resilient Workflows #344 — Multi-Agent Architecture umbrella. Symphony is orthogonal (single-agent-per-issue orchestration) but could leverage Feature: Multi-Agent Architecture — Orchestration, Cooperation, Specialized Roles & Resilient Workflows #344's workflow engine for complex issues in Phase 3+.
• Feature: Acceptance Criteria & Independent Judge for Sub-agent Delegation (inspired by OpenPlanter) #356 — Acceptance Criteria & Independent Judge. Symphony's "completion bar" and workpad validation are a lighter-weight version of this.
• Feature: Batch Migration Skill — Parallel Code Migration Orchestration with Git Worktree Isolation (inspired by Claude Code /batch) #380 — Batch Migration with Git Worktree Isolation. Similar workspace isolation pattern but for a different use case (migrations vs issue resolution).

---

Implementation Plan

Skill vs. Tool Classification

This should be a skill because:

• The capability can be expressed entirely as instructions + shell commands + existing tools (gh CLI for GitHub, git for workspaces, Hermes cronjobs for polling)
• It wraps external CLIs (gh, git) that the agent calls via terminal
• No custom Python integration or API key management is needed beyond what gh auth already provides
• The orchestration logic is agent behavior (what to do when), not deterministic processing

Bundled vs Skills Hub: This is borderline. Autonomous issue resolution is a power-user workflow, not something every user needs on day one. Recommend bundled because it's broadly applicable — anyone with a GitHub repo and issues can use it, and it represents a major capability evolution (reactive → proactive agent).

What We'd Need

1. Symphony orchestration skill — The main skill file teaching Hermes the poll-dispatch-resolve-land workflow
2. WORKFLOW.md template — A reference template users can copy into their repos
3. Helper scripts (optional) — Workspace lifecycle scripts (clone, cleanup, etc.)
4. Workpad template — Markdown template for the persistent progress comment

Phased Rollout

Phase 1: Single-Repo Issue Resolution (MVP)

• Skill that teaches Hermes to work on a single GitHub Issue end-to-end:
  • Read issue context (title, description, labels, comments)
  • Create isolated workspace (git worktree or fresh clone)
  • Execute the WORKFLOW.md instructions
  • Maintain a workpad comment on the issue for progress tracking
  • Run the git workflow (branch, commit, push, PR)
  • Verify CI + address review feedback before moving to Human Review
  • Status-driven routing: Todo → In Progress → Human Review → Done
• This phase is fully manual trigger (user tells Hermes "work on issue #N")
• Deliverables: symphony skill + WORKFLOW.md template

Phase 2: Automated Polling and Dispatch

• Add cronjob-based polling: Hermes periodically checks for new issues matching configurable criteria (labels, assignee, state)
• Claim mechanism: Hermes adds a label/comment to claim an issue before working on it
• Concurrency control: respect max_concurrent_agents from WORKFLOW.md
• Retry logic: exponential backoff on failures, continuation on clean exits
• Stall detection: monitor workspace activity, kill stalled runs
• Deliverables: Polling cronjob setup script + claim/release protocol

Phase 3: Full Lifecycle Management

• Workspace lifecycle hooks (after_create, before_run, after_run, before_remove)
• Multi-issue concurrent processing via hermes-agent-spawning or delegate_task
• Land skill: sophisticated PR merge workflow with review monitoring
• WORKFLOW.md hot-reload: detect changes and apply to future runs
• GitHub Issue state reconciliation (terminate runs for closed/done issues)
• Observability: structured logging, optional status dashboard
• Linear adapter (optional, for teams using Linear)
• Leverages Feature: Multi-Agent Architecture — Orchestration, Cooperation, Specialized Roles & Resilient Workflows #344 workflow DAG engine when available for complex multi-step issues

---

Pros & Cons

Pros

• Paradigm shift — Moves Hermes from reactive (user asks) to proactive (Hermes finds and does work). This is the natural evolution for agent systems.
• Achievable incrementally — Phase 1 alone (single-issue resolution skill) delivers immediate value with existing infrastructure. Each phase is independently useful.
• Uses existing infrastructure — Cronjobs for polling, delegate_task for isolation, gh CLI for GitHub, git for workspaces. No new tools needed.
• Apache-2.0 source — Symphony is fully open, spec is language-agnostic. We can adapt patterns freely.
• Strong patterns to borrow — WORKFLOW.md convention, workpad pattern, status-driven FSM, proof-of-work protocol, and skill composition are all well-designed and battle-tested at OpenAI.
• Harness engineering alignment — The broader "harness engineering" philosophy (making repos agent-ready with AGENTS.md, structured docs, linting for agents) is the future of development.
• Differentiator — Few agent systems offer structured autonomous issue resolution. This would be a major capability differentiator.

Cons / Risks

• Trust boundary — Autonomous code generation + PR creation + merge is high-stakes. Misconfigured workflows could land broken code. The "Human Review" gate is critical and must be non-bypassable by default.
• Cost — Each issue resolution could burn significant tokens (20+ turns per issue, multiple retries). At scale (10 concurrent agents), costs multiply fast.
• Scope creep risk — Symphony's WORKFLOW.md is 327 lines of detailed instructions. The skill could become unwieldy. Need to keep Phase 1 focused.
• GitHub API rate limits — Polling + issue reads + PR creation + CI checks + review monitoring = lots of API calls. Need to respect rate limits.
• Linear dependency — Symphony is designed around Linear. Adapting for GitHub Issues requires mapping concepts (Linear states → GitHub labels/milestones, Linear project → GitHub repo).
• Workspace disk usage — Per-issue workspaces accumulate. Need cleanup logic.
• Overlap with existing skills — The symphony skill would need to coordinate with github-issues, github-pr-workflow, and github-code-review skills rather than duplicate them.

---

Open Questions

1. GitHub Issues mapping — How to represent Symphony's issue states (Todo, In Progress, Human Review, Merging, Done) in GitHub? Labels? Milestones? Project board columns? Labels are simplest (symphony:todo, symphony:in-progress, etc.) but project boards are more natural.
2. Claim mechanism — How does Hermes "claim" an issue to prevent duplicate dispatch? Assignee field? A claimed-by-hermes label? A comment?
3. WORKFLOW.md location — Should it be in the repo root (like Symphony) or in .hermes/WORKFLOW.md? Root is more visible; .hermes/ is cleaner.
4. Scope of Phase 1 — Should Phase 1 support both new feature issues and bug fix issues, or focus on one type first?
5. Safety defaults — Should the skill default to Human Review gate (never auto-merge) or allow configurable auto-merge for trivial issues?
6. Integration with existing skills — Should the symphony skill import/reference existing Hermes skills (github-pr-workflow, etc.) or be self-contained?
7. Multi-repo support — Should one Hermes instance be able to orchestrate across multiple repos (each with its own WORKFLOW.md)?

---

References

• openai/symphony — Symphony source (Apache-2.0)
• Symphony SPEC.md — Language-agnostic protocol specification (2110 lines)
• Harness Engineering blog post — OpenAI's "humans steer, agents execute" philosophy
• Symphony WORKFLOW.md — Reference workflow configuration (327 lines)
• Feature: Multi-Agent Architecture — Orchestration, Cooperation, Specialized Roles & Resilient Workflows #344 — Multi-Agent Architecture umbrella issue (complementary, not overlapping)
• Feature: Acceptance Criteria & Independent Judge for Sub-agent Delegation (inspired by OpenPlanter) #356 — Acceptance Criteria & Independent Judge (related pattern)
• Feature: Batch Migration Skill — Parallel Code Migration Orchestration with Git Worktree Isolation (inspired by Claude Code /batch) #380 — Batch Migration with workspace isolation (similar isolation pattern)
• Hermes cron/scheduler.py — Existing cronjob infrastructure for polling
• Hermes tools/delegate_tool.py — Existing sub-agent delegation for workspace isolation
• Hermes skills: github-issues, github-pr-workflow, github-code-review — Existing GitHub workflow capabilities

[teknium1]

Deep Integration Architecture: GitHub Issues Polling + Hermes Subsystems

After a deep dive into the Hermes codebase, here is a concrete integration plan that wires Symphony-style orchestration into existing Hermes infrastructure: cronjobs, hooks, config.yaml, delegate_task, and the GitHub Issues skill.

---

Architecture Overview

~/.hermes/config.yaml (symphony section)
        │
        ▼
┌──────────────────────────────────────┐
│  Polling Cronjob ("every 5m")        │
│  Created by: hermes symphony start   │
│  Runs: AIAgent with poll prompt      │
│                                      │
│  1. gh issue list --label "hermes"   │
│  2. Filter unclaimed issues          │
│  3. For each eligible issue:         │
│     → schedule_cronjob (one-shot)    │
│       for immediate per-issue work   │
│  4. Reconcile in-progress issues     │
│     (check for closed/done/stale)    │
└───────────┬──────────────────────────┘
            │ spawns one-shot cronjobs
            ▼
┌──────────────────────────────────────┐
│  Per-Issue Worker (one-shot cronjob) │
│  Fresh AIAgent, clean context        │
│                                      │
│  1. Read issue #N details            │
│  2. Read WORKFLOW.md from repo       │
│  3. Emit hook: symphony:claim        │
│  4. git worktree add (workspace)     │
│  5. Execute workflow (code changes)  │
│  6. delegate_task → verifier (#406)  │
│  7. git commit + push + gh pr create │
│  8. Update issue labels/comments     │
│  9. Emit hook: symphony:complete     │
│ 10. Report result to delivery target │
└──────────────────────────────────────┘

---

1. Config Integration (~/.hermes/config.yaml)

Add a new top-level symphony section to config.yaml:

symphony:
  enabled: false  # Must be explicitly enabled

  repos:
    - owner: myorg
      repo: myproject
      # Which issues to pick up
      labels:
        trigger: "hermes"           # Issues labeled with this get picked up
        claimed: "hermes:claimed"   # Applied when Hermes starts working
        in_progress: "hermes:wip"   # Applied during implementation
        review: "hermes:review"     # Applied when PR is ready for human review
      # Filters
      assignee: ""                  # Optional: only pick up issues assigned to this user
      exclude_labels: ["wontfix", "question"]
      # Limits
      max_concurrent: 2            # Max parallel issue workers for this repo
      poll_interval: "every 5m"    # Polling frequency
      # Workflow
      workflow_path: "WORKFLOW.md" # Path in repo (or "" for default behavior)

  defaults:
    human_review_required: true    # Always require human approval before merge
    auto_merge: false              # Never auto-merge (Phase 1 safety)
    verification: true             # Run independent verification (#406)
    max_turns: 30                  # Max agent turns per issue
    workspace_root: "~/hermes-workspaces"
    cleanup_after_merge: true      # Delete workspace after PR is merged

  delivery: "origin"               # Where to report results (origin, telegram, etc.)

Implementation: Add a load_symphony_config() function in a new symphony/config.py module that reads and validates this section from config.yaml. The existing config loading patterns in hermes_cli/config.py and gateway/config.py provide the blueprint.

---

2. Cronjob Integration (cron/scheduler.py + cron/jobs.py)

The polling mechanism uses the existing cronjob system — no new scheduler infrastructure needed.

Setup command: hermes symphony start creates the polling cronjob:

# Equivalent to what the agent does internally:
create_job(
    prompt=POLL_PROMPT,  # Self-contained prompt (see below)
    schedule="every 5m",
    name="symphony-poll",
    deliver="local",     # Polling results saved to files, not sent to chat
)

The poll prompt is fully self-contained (cronjobs run in fresh sessions with no memory):

You are the Symphony orchestrator for Hermes Agent. Your job is to poll
GitHub Issues and dispatch workers.

Read ~/.hermes/config.yaml and find the symphony section.
For each configured repo:

1. Run: gh issue list --repo {owner}/{repo} --label "{trigger_label}"
        --state open --json number,title,labels,assignees,body

2. Filter out issues that already have the "{claimed_label}" label.

3. For each unclaimed issue (up to max_concurrent - currently_running):
   a. Add label "{claimed_label}" to the issue
   b. Post a comment: "🤖 Hermes Agent claiming this issue."
   c. Use schedule_cronjob to create an immediate one-shot job:
      - schedule: "1m"
      - name: "symphony-{owner}-{repo}-{issue_number}"
      - prompt: [WORKER_PROMPT with issue details baked in]
      - deliver: [from config]

4. Check for stale claimed issues (claimed > 2 hours with no PR):
   - Remove the claimed label
   - Post a comment noting the timeout

5. Check for merged PRs on claimed issues:
   - Close the issue if PR merged
   - Remove workspace if cleanup enabled

Per-issue worker prompt (also self-contained, baked at dispatch time):

You are a Symphony worker. Work on this GitHub issue autonomously.

ISSUE: {owner}/{repo}#{number}
TITLE: {title}
BODY: {body}

WORKFLOW:
1. Create workspace: cd ~/hermes-workspaces && git clone --depth 1 ...
   OR git worktree add if the repo is already cloned
2. Read WORKFLOW.md from the repo root if it exists
3. Analyze the issue and create a plan
4. Implement the solution (branch: hermes/issue-{number})
5. Run tests to verify nothing is broken
6. Use delegate_task to run independent verification on the diff (#406)
7. Commit, push, create PR with "Closes #{number}" in the body
8. Add label "{review_label}" to the issue
9. Remove label "{claimed_label}"
10. Post a workpad comment on the issue with your plan, changes, and verification results

SAFETY RULES:
- NEVER merge the PR yourself. Always leave for human review.
- If stuck, remove the claimed label and post what you tried.
- Git checkpoint before every major change.

Why cronjobs over delegate_task for workers: Each cronjob creates a completely fresh AIAgent via run_job() in cron/scheduler.py (line 203). This gives perfect context isolation between issues — no shared conversation history, no bleed between workers. delegate_task has a depth limit of 2 and a 3-child concurrency cap. Cronjobs have no such limits and each worker runs independently.

---

3. Hooks Integration (gateway/hooks.py)

Add new Symphony-specific hook events to the event taxonomy. These fire from within the poll/worker prompts using a small helper, or from a Symphony-specific module.

New events:

Event	When	Context
symphony:poll	Each polling cycle	{repos, found_issues, dispatched}
symphony:claim	Issue claimed	{owner, repo, issue_number, title}
symphony:start	Worker begins	{owner, repo, issue_number, workspace}
symphony:verify	Verification runs	{owner, repo, issue_number, passed, issues}
symphony:pr	PR created	{owner, repo, issue_number, pr_number, pr_url}
symphony:complete	Worker finishes	{owner, repo, issue_number, success, duration}
symphony:timeout	Worker stalled	{owner, repo, issue_number, elapsed}

Implementation approach: Since the worker runs as a cronjob (not inside the gateway), it doesnt have direct access to the HookRegistry. Two options:

Option A (Simple): The worker writes a JSON event file to ~/.hermes/symphony/events/. The polling cronjob (or a gateway startup hook) processes these on the next cycle. Works with existing infrastructure.

Option B (Better): Add a symphony/hooks.py module that loads the HookRegistry independently and fires events. Since hooks are just Python files in ~/.hermes/hooks/, they can be loaded and executed from any context:

# symphony/hooks.py
from gateway.hooks import HookRegistry
import asyncio

_registry = None

def get_registry():
    global _registry
    if _registry is None:
        _registry = HookRegistry()
        _registry.discover_and_load()
    return _registry

def emit_sync(event_type, context=None):
    registry = get_registry()
    try:
        loop = asyncio.get_event_loop()
        if loop.is_running():
            loop.create_task(registry.emit(event_type, context))
        else:
            asyncio.run(registry.emit(event_type, context))
    except RuntimeError:
        asyncio.run(registry.emit(event_type, context))

Example user hook (~/.hermes/hooks/symphony-notify/):

# HOOK.yaml
name: symphony-notify
description: Notify me on Telegram when issues are completed
events:
  - symphony:complete
  - symphony:timeout

# handler.py
async def handle(event_type, context):
    if event_type == "symphony:complete":
        # The hook can use send_message or any custom notification
        print(f"[symphony] Issue #{context['issue_number']} completed!")
    elif event_type == "symphony:timeout":
        print(f"[symphony] Issue #{context['issue_number']} timed out!")

---

4. WORKFLOW.md Contract (Per-Repo Configuration)

Adapting Symphony's WORKFLOW.md for GitHub Issues instead of Linear.

Location: Repo root /WORKFLOW.md or /.hermes/WORKFLOW.md (configurable per repo in config.yaml).

Format: YAML frontmatter + Markdown prompt template (same as Symphony):

---
labels:
  trigger: "hermes"
  review: "hermes:review"
agent:
  max_turns: 25
  verification: true
hooks:
  after_clone: |
    npm install
    npm run build
  before_pr: |
    npm test
    npm run lint
---

You are working on GitHub issue #{{ issue.number }}

Title: {{ issue.title }}
Body: {{ issue.body }}

## Project Context
This is a TypeScript/React web application.
Always run `npm test` before committing.
Use conventional commits (feat:, fix:, etc.).

## Workflow
1. Understand the issue thoroughly before coding
2. Create a feature branch: hermes/issue-{{ issue.number }}
3. Implement the fix/feature
4. Write or update tests
5. Run the full test suite
6. Create a PR with a clear description

Template variables (injected at render time):

• {{ issue.number }}, {{ issue.title }}, {{ issue.body }}
• {{ issue.labels }}, {{ issue.assignees }}
• {{ issue.comments }} (latest 5 comments)
• {{ repo.owner }}, {{ repo.name }}
• {{ workspace }} (absolute workspace path)
• {{ attempt }} (retry attempt number, null on first try)

Hooks in WORKFLOW.md (executed as shell scripts in the workspace):

• after_clone — runs once when workspace is first created (like Symphony's after_create)
• before_run — runs before each agent attempt
• after_run — runs after each attempt (success or failure)
• before_pr — runs before creating the PR (gate: must exit 0)

Parsing: Use Python's yaml module for frontmatter, Jinja2 (already available) or simple string replacement for template variables. The Symphony spec requires strict template rendering (unknown variables fail) — we should do the same.

Hot reload: The polling cronjob re-reads WORKFLOW.md on every cycle (it's fetched from the repo HEAD). Changes take effect on the next dispatched issue without restarting anything.

---

5. Workspace Management

Strategy: Git worktrees for efficiency, with fallback to full clones.

# First issue for a repo: clone the base
git clone --bare https://github.com/{owner}/{repo}.git \
  ~/hermes-workspaces/{owner}-{repo}.git

# Per-issue workspace: git worktree
cd ~/hermes-workspaces/{owner}-{repo}.git
git worktree add ../workspaces/{owner}-{repo}-issue-{number} \
  -b hermes/issue-{number} origin/main

Advantages of worktrees:

• Shared git objects (saves disk space and clone time)
• Each workspace has its own branch and working tree
• Changes in one workspace don't affect others
• Fast creation (~1 second vs 30+ seconds for full clone)
• git worktree remove for cleanup

Per-project locking: Like Nightwire's pattern, use a file lock per repo to prevent concurrent git operations (fetches, worktree creation) from racing. Per-workspace operations (within a worktree) don't need locking.

Cleanup: Configurable via cleanup_after_merge: true in config.yaml. When a PR is merged:

1. git worktree remove ~/hermes-workspaces/workspaces/{owner}-{repo}-issue-{number}
2. git branch -d hermes/issue-{number}

---

6. Issue State Machine (GitHub Labels as States)

Mapping Symphony's Linear states to GitHub labels:

                    ┌──────────┐
                    │ "hermes" │ (trigger label, applied by user)
                    └────┬─────┘
                         │ poll picks it up
                         ▼
               ┌──────────────────┐
               │ "hermes:claimed" │ (Hermes is working on it)
               └────────┬─────── ┘
                        │ implementation
                        ▼
               ┌──────────────────┐
               │ "hermes:wip"     │ (work in progress)
               └────────┬─────── ┘
                        │ PR created
                        ▼
               ┌──────────────────┐
               │ "hermes:review"  │ (PR ready, waiting on human)
               └────────┬─────── ┘
                        │ human approves + merges
                        ▼
                   Issue closed
                   Workspace cleaned

Reconciliation (handled by the polling cronjob):

• Issue closed by human → remove claimed/wip labels, clean workspace, cancel any running worker
• Issue reopened → eligible for re-claiming on next poll cycle
• PR rejected → remove review label, re-add to eligible pool (or apply "hermes:rework" label for fresh attempt)

Label auto-creation: On first run, the polling agent creates the required labels if they don't exist:

gh label create "hermes" --description "Ready for Hermes Agent" --color "0075ca"
gh label create "hermes:claimed" --description "Hermes is working on this" --color "e4e669"
gh label create "hermes:wip" --description "Hermes work in progress" --color "fbca04"
gh label create "hermes:review" --description "PR ready for human review" --color "0e8a16"

---

7. Integration with #406 (Verification + Quality Gates)

After the worker implements changes, it invokes the verification skill:

# Inside the worker's prompt:
# "Before creating the PR, run verification:"
#
# 1. Run the project's test suite (from WORKFLOW.md hooks.before_pr or auto-detect)
# 2. Use delegate_task to spawn an independent verifier:

delegate_task(
    goal="Review this git diff for security issues, logic errors, and regressions.",
    context="""
    TASK: {issue_title}
    GIT DIFF:
    {git_diff}
    
    Return JSON: {passed: bool, security_concerns: [...], logic_errors: [...], suggestions: [...]}
    Be critical. Do NOT rubber-stamp. Fail-closed: if unsure, fail.
    """,
    toolsets=["terminal", "file"]
)

If verification fails, the worker attempts auto-fix (up to 2 attempts per #406 Phase 3), then either succeeds and creates the PR, or reports the failure and unclaims the issue.

---

8. CLI Commands

New subcommand group: hermes symphony

Command	Description
hermes symphony start	Create the polling cronjob and start orchestration
hermes symphony stop	Remove the polling cronjob
hermes symphony status	Show active workers, claimed issues, workspace usage
hermes symphony add <owner/repo>	Add a repo to the symphony config
hermes symphony remove <owner/repo>	Remove a repo from config
hermes symphony logs [issue]	Show worker logs for an issue or all issues
hermes symphony clean	Remove completed workspaces

Implementation: New hermes_cli/symphony.py module, registered in the Fire CLI in cli.py. The start command creates a recurring cronjob with the poll prompt; stop removes it by name. status reads from ~/.hermes/symphony/state.json (updated by workers).

---

9. Observability & State

State file (~/.hermes/symphony/state.json):

{
  "active_workers": {
    "NousResearch/hermes-agent#42": {
      "claimed_at": "2026-03-04T15:00:00",
      "workspace": "~/hermes-workspaces/workspaces/NousResearch-hermes-agent-issue-42",
      "cronjob_id": "abc123def456",
      "status": "implementing",
      "last_activity": "2026-03-04T15:12:00"
    }
  },
  "completed": {
    "NousResearch/hermes-agent#40": {
      "completed_at": "2026-03-04T14:30:00",
      "pr_number": 123,
      "duration_minutes": 18,
      "result": "success"
    }
  },
  "stats": {
    "total_claimed": 15,
    "total_completed": 12,
    "total_failed": 3,
    "avg_duration_minutes": 22
  }
}

Worker logs: Each worker writes structured logs to ~/.hermes/symphony/logs/{owner}-{repo}-{number}/. The polling cronjob saves its output to ~/.hermes/cron/output/ as usual.

---

Revised Phased Rollout

Phase 1: Manual Single-Issue Resolution (skill only, no infrastructure)

• symphony skill teaching Hermes to work on a single issue end-to-end
• User invokes manually: "Work on issue fix: gateway provider resolution and model config parity with CLI #42 in owner/repo"
• Skill handles: read issue → workspace → implement → verify → PR → workpad comment
• No polling, no config, no hooks — just a skill
• Delivers: symphony skill + WORKFLOW.md template

Phase 2: Automated Polling (cronjob + config.yaml)

• symphony section in config.yaml
• hermes symphony start/stop CLI commands
• Polling cronjob watches for trigger-labeled issues
• Per-issue one-shot cronjobs for worker dispatch
• Label-based state machine (claimed → wip → review)
• Stale issue reconciliation
• Delivers: hermes_cli/symphony.py CLI module + poll prompt + state tracking

Phase 3: Full Lifecycle + Hooks (hooks + WORKFLOW.md + workspaces)

• WORKFLOW.md per-repo configuration with template rendering
• Symphony hook events (symphony:claim, symphony:complete, etc.)
• Git worktree workspace management with cleanup
• Integration with Feature: Independent Code Verification & Quality Gates — Fail-Closed Review, Baseline Regression Detection, and Auto-Fix Loop (inspired by Nightwire) #406 verification + auto-fix
• Multi-repo concurrent orchestration
• Delivers: symphony/ module + hook events + WORKFLOW.md parser

Phase 4: Advanced (integration with #344 multi-agent)

• Complex issue decomposition (PRD → tasks, inspired by Nightwire)
• Parallel sub-task workers via Feature: Multi-Agent Architecture — Orchestration, Cooperation, Specialized Roles & Resilient Workflows #344 workflow DAG engine
• Learning accumulation (inspired by Nightwire's learning system)
• Rework handling (PR rejected → fresh attempt)
• Cross-platform notifications (hook-driven)

[andrueandersoncs]

Fix Complete: Strategic Color Added to Grocery List ✓

Changes Made

Added category-based color coding per the COLORIZE skill to the GroceryListView component:

Category	Left Border	Icon Color	Background Tint
Protein	Rose/coral (4px)	Rose-500	Rose-50/50
Produce	Emerald/green (4px)	Emerald-500	Emerald-50/50
Carbs	Amber/gold (4px)	Amber-500	Amber-50/50
Sauces + extras	Violet (4px)	Violet-500	Violet-50/50
Pantry staples	Orange (4px)	Orange-500	Orange-50/50
Other	Slate (4px)	Slate-500	Slate-50/50

Implementation Details

• Each category card gets a 4px left border accent in its signature color
• Icons are now colored per-category instead of generic primary
• Subtle background tints (50% for cards, 30% for items) add warmth
• All changes use standard Tailwind colors for WCAG compliance
• Grid layout remains responsive for mobile viewports

Verification

• ✅ All 11 grocery-list-view tests passing
• ✅ Build clean (no TypeScript errors)
• ✅ 0 new lint errors
• ✅ Screenshot captured and validated (1280x1079 PNG, 293KB)
• ✅ Merged to main and deployed to production

Screenshot Evidence

Screenshot captured at: /Users/andrue/.hermes/browser_screenshots/browser_screenshot_a4e1fcea45f8481ebce2fd23635d1e44.png

Screenshot validation results:

• File type: PNG image data, 1280 x 1079, 8-bit/color RGB
• Size: 293KB (valid 1KB-10MB range)
• Content: Grocery page empty state with preview cards

QA Summary

• Tests: 11/11 passing
• Build: Clean (no TypeScript errors)
• Lint: 0 new errors
• Browser console: No errors (only SW registration log)
• Main branch commit: 28b2cb7

The grocery list is now warm and scannable — no longer a grayscale wall of text!