Add Discord-native hybrid front-end for Jarvis (bot + bridge)

Transform isair/jarvis into a Discord-controlled voice assistant running on the Ubuntu VNC desktop, keeping the mature ~39k-line Python brain intact. - bot/ (Node + bun, discord.js): /자비스 slash commands (ephemeral), voice channel join + voice receive/playback, pluggable VNC screen broadcast (selfbot live / noVNC / screenshot) - bridge/ (Python, Flask): wraps jarvis STT + run_reply_engine + Piper TTS behind a thin localhost HTTP API - .env.example, scripts/ (start_bridge/start_bot/dev), README rewrite, docs/language-comparison.md and docs/vnc-xfce-setup.md Language decision: hybrid (Python brain + Node/bun Discord layer) because Discord blocks bot video; native screen broadcast only works via a Node selfbot library.
2026-06-09 14:51:05 +09:00
parent a5bf8d1826
commit c4abf63f38
308 changed files with 94135 additions and 1 deletions
--- a/tests/test_redact_extended.py
+++ b/tests/test_redact_extended.py
@@ -0,0 +1,86 @@
+"""Tests for the extended structural-redaction rules added so tool-output
+carryover and recall-gate debug logs cannot leak credentials.
+"""
+
+import pytest
+
+from src.jarvis.utils.redact import redact, scrub_secrets
+
+
+@pytest.mark.unit
+class TestVendorAccessKeys:
+    def test_aws_akia_key_redacted(self):
+        out = redact("key=AKIAIOSFODNN7EXAMPLE rest")
+        assert "AKIAIOSFODNN7EXAMPLE" not in out
+        assert "[REDACTED_AWS_KEY]" in out
+
+    def test_aws_asia_key_redacted(self):
+        out = redact("ASIAIOSFODNN7EXAMPLE")
+        assert "ASIAIOSFODNN7EXAMPLE" not in out
+        assert "[REDACTED_AWS_KEY]" in out
+
+    def test_stripe_live_secret_redacted(self):
+        token = "sk_live_" + "a" * 24
+        out = redact(f"see {token} please")
+        assert token not in out
+        assert "[REDACTED_STRIPE_KEY]" in out
+
+    def test_stripe_test_publishable_redacted(self):
+        token = "pk_test_" + "Z" * 24
+        out = redact(token)
+        assert token not in out
+        assert "[REDACTED_STRIPE_KEY]" in out
+
+    def test_github_pat_redacted(self):
+        token = "ghp_" + "A" * 36
+        out = redact(token)
+        assert token not in out
+        assert "[REDACTED_GH_TOKEN]" in out
+
+    def test_openai_key_redacted(self):
+        token = "sk-" + "A" * 40
+        out = redact(token)
+        assert token not in out
+        assert "[REDACTED_OPENAI_KEY]" in out
+
+    def test_google_api_key_redacted(self):
+        token = "AIza" + "B" * 35
+        out = redact(token)
+        assert token not in out
+        assert "[REDACTED_GOOG_KEY]" in out
+
+
+@pytest.mark.unit
+class TestAuthorizationHeaders:
+    def test_bearer_header_redacted(self):
+        out = scrub_secrets("Authorization: Bearer abc.def.ghi")
+        assert "abc.def.ghi" not in out
+        assert "Authorization: Bearer [REDACTED]" in out
+
+    def test_basic_header_redacted(self):
+        out = scrub_secrets("Authorization: Basic dXNlcjpwYXNz")
+        assert "dXNlcjpwYXNz" not in out
+        assert "Authorization: Basic [REDACTED]" in out
+
+
+@pytest.mark.unit
+class TestKeywordAnchoredCredentials:
+    def test_refresh_token_keyword_redacted(self):
+        out = redact("refresh_token=abcdef123456")
+        assert "abcdef123456" not in out
+        assert "refresh_token=[REDACTED]" in out
+
+    def test_access_token_keyword_redacted(self):
+        out = redact("access_token: zzz999")
+        assert "zzz999" not in out
+        assert "access_token=[REDACTED]" in out
+
+    def test_session_id_redacted(self):
+        out = redact("session_id=deadbeefcafe")
+        assert "deadbeefcafe" not in out
+        assert "session_id=[REDACTED]" in out
+
+    def test_oauth_token_redacted(self):
+        out = redact("oauth_token=qwertyuiop")
+        assert "qwertyuiop" not in out
+        assert "oauth_token=[REDACTED]" in out