test: parallelize test suite with pytest-xdist#802
Merged
Conversation
~2min sequential runs were painful. Added pytest-xdist and -n auto to run across all available cores. Tests already isolate state via tmp_path fixtures so no changes needed to test code. Local: 2677 passed in ~30s. CI gets 4 vCPUs on ubuntu-latest.
Contributor
|
Merged in 1dfa544. Thanks @OutThisLife — nice quality-of-life improvement for the test suite! 🚀 |
lmsanch
added a commit
to lmsanch/hermes-agent
that referenced
this pull request
Apr 22, 2026
…play protection (NousResearch#718) (#6) Operationalizes the A2A cryptographic identity spec in docs/strategic/A2A_CRYPTO_IDENTITY.md (filed as toryx-private#820). This is the module downstream issues NousResearch#801, NousResearch#802, and NousResearch#812 integrate against; it replaces the env-var trust shim in research_mcp whitelist. New module `tools/agent_identity.py`: - generate_identity(profile_name, force=False) Writes an Ed25519 private key (PKCS8 PEM) to ~/.hermes/profiles/<profile>/keys/ed25519_private.pem (chmod 600) and registers the raw public key in ~/.hermes/identity_registry.yaml. Refuses overwrite without force=True so rotation is explicit. - sign_envelope(profile_name, recipient, body, host=None) Canonical-JSON envelope per spec §4: sender_agent, sender_host, recipient_agent, nonce (128 bit hex), timestamp (ISO8601 UTC), body_sha256, body, signature. Signature covers everything except the signature field itself. - verify_envelope(envelope) Per spec §5 verification flow: missing-fields check → timestamp window (5 min) → body_sha256 integrity → nonce LRU replay (10k entries) → pubkey lookup → Ed25519 verify. On ANY failure returns non-valid result — callers drop silently, no reply (prevents loop amplification + reply-ack exfil per NousResearch#716 lessons). - canonical_json(obj) Exposed utility — sorted keys, UTF-8, no whitespace. Same shape as the toryx-openratings anchor payload canonical form. Tests: - Round-trip sign/verify - Replay rejection (same nonce twice) - Timestamp-out-of-window rejection - Unknown sender rejection - Bad signature rejection - Tampered body rejection (body_sha256 integrity catch) - Missing fields rejection - Canonical JSON is deterministic across key orderings - Two-agent talk (cross-identity verification) - Nonce LRU eviction semantics Not in scope (v2): - Key rotation with 30-day pubkey overlap - HSM-backed private key storage - Transport bindings (telegram X-header, email header, consult_colleague inline field) — those land in each platform adapter Closes lmsanch/toryx-private#718
angelburgosrosado
pushed a commit
to angelburgosrosado/hermes-agent
that referenced
this pull request
Apr 27, 2026
…dist Adds pytest-xdist to dev dependencies and -n auto to default pytest addopts for parallel test execution across CPU cores. Authored by OutThisLife. Co-authored-by: OutThisLife <OutThisLife@users.noreply.github.com>
02356abc
pushed a commit
to 02356abc/hermes-agent
that referenced
this pull request
May 14, 2026
…dist Adds pytest-xdist to dev dependencies and -n auto to default pytest addopts for parallel test execution across CPU cores. Authored by OutThisLife. Co-authored-by: OutThisLife <OutThisLife@users.noreply.github.com>
olympus-terminal
pushed a commit
to olympus-terminal/hermes-agent
that referenced
this pull request
May 16, 2026
…dist Adds pytest-xdist to dev dependencies and -n auto to default pytest addopts for parallel test execution across CPU cores. Authored by OutThisLife. Co-authored-by: OutThisLife <OutThisLife@users.noreply.github.com>
lmsanch
added a commit
to lmsanch/hermes-agent
that referenced
this pull request
May 23, 2026
…play protection (NousResearch#718) (#6) Operationalizes the A2A cryptographic identity spec in docs/strategic/A2A_CRYPTO_IDENTITY.md (filed as toryx-private#820). This is the module downstream issues NousResearch#801, NousResearch#802, and NousResearch#812 integrate against; it replaces the env-var trust shim in research_mcp whitelist. New module `tools/agent_identity.py`: - generate_identity(profile_name, force=False) Writes an Ed25519 private key (PKCS8 PEM) to ~/.hermes/profiles/<profile>/keys/ed25519_private.pem (chmod 600) and registers the raw public key in ~/.hermes/identity_registry.yaml. Refuses overwrite without force=True so rotation is explicit. - sign_envelope(profile_name, recipient, body, host=None) Canonical-JSON envelope per spec §4: sender_agent, sender_host, recipient_agent, nonce (128 bit hex), timestamp (ISO8601 UTC), body_sha256, body, signature. Signature covers everything except the signature field itself. - verify_envelope(envelope) Per spec §5 verification flow: missing-fields check → timestamp window (5 min) → body_sha256 integrity → nonce LRU replay (10k entries) → pubkey lookup → Ed25519 verify. On ANY failure returns non-valid result — callers drop silently, no reply (prevents loop amplification + reply-ack exfil per NousResearch#716 lessons). - canonical_json(obj) Exposed utility — sorted keys, UTF-8, no whitespace. Same shape as the toryx-openratings anchor payload canonical form. Tests: - Round-trip sign/verify - Replay rejection (same nonce twice) - Timestamp-out-of-window rejection - Unknown sender rejection - Bad signature rejection - Tampered body rejection (body_sha256 integrity catch) - Missing fields rejection - Canonical JSON is deterministic across key orderings - Two-agent talk (cross-identity verification) - Nonce LRU eviction semantics Not in scope (v2): - Key rotation with 30-day pubkey overlap - HSM-backed private key storage - Transport bindings (telegram X-header, email header, consult_colleague inline field) — those land in each platform adapter Closes lmsanch/toryx-private#718
Egavasyug
pushed a commit
to Egavasyug/hermes-agent
that referenced
this pull request
Jun 10, 2026
…dist Adds pytest-xdist to dev dependencies and -n auto to default pytest addopts for parallel test execution across CPU cores. Authored by OutThisLife. Co-authored-by: OutThisLife <OutThisLife@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What does this PR do?
Adds pytest-xdist to run the test suite in parallel across all CPU cores. Cuts wall-clock time from ~2min to ~30s locally.
Type of Change
Changes Made
pyproject.toml: addedpytest-xdistto[dev]deps, added-n autoto defaultaddopts.github/workflows/tests.yml: added-n autoto CI pytest invocationHow to Test
uv pip install -e ".[all,dev]"pytest tests/ -q --ignore=tests/integration --tb=shortChecklist
Code
pytest tests/ -qand all tests passDocumentation & Housekeeping