README
ยถ
HotPlex Internal: Core Subsystems & Utilities
The internal directory contains the foundational subsystems of HotPlex. These packages are not accessible outside of the HotPlex codebase (per Go's internal conventions), ensuring a clean boundary between public APIs and implementation details.
๐ Architecture Overview
The internal layer provides the critical infrastructure that supports the Engine, ChatApps, and CLI providers.
graph TD
Engine[Engine Package] --> IE[internal/engine]
Engine --> IS[internal/security]
Server[Main Server] --> ISRV[internal/server]
ISRV --> IE
ISRV --> IT[internal/telemetry]
IE --> ISYS[internal/sys]
ISYS --> OS[OS Processes]
Key Subsystems
internal/engine(Session Lifecycle): Implements theSessionPoolandSessionlogic. It handles the low-level management of hot-multiplexed processes, including process group (PGID) cleanup and asynchronous I/O piping.internal/security(WAF & Audit): The core security engine. It features the Danger Detector, which uses high-performance regex matching to prevent commands likerm -rf /or credential exfiltration before they are executed.internal/server(Transport Layer): Contains the core HTTP/WebSocket handlers. It bridges web clients to the HotPlex Engine and provides specific endpoints for OpenCode-style HTTP compatibility.internal/telemetry(Observability): Manages Prometheus metrics and internal tracing. It tracks session duration, token usage, and security blocks globally.internal/sys(System Utils): Provides low-level OS utilities for signal handling, terminal emulation, and process management.
๐ Developer Guide for Internal Packages
1. Modifying the Session Pool (internal/engine)
If you need to change how CLI processes are recycled or how stdout is parsed asynchronously:
- Look at
pool.gofor theSessionPoolimplementation. session.gohandles individual process lifecycle and I/O wait-loops.- Important: Always ensure
PGIDis killed to avoid zombie processes when a session times out.
2. Updating Security Rules (internal/security)
To add new protection patterns to the regex firewall:
- Navigate to
internal/security/detector.goor the relevantrules/subdirectory. - Define a new detection regex and specify its severity (Warning vs. Block).
- Verify your rule using the extensive test suite in
detector_test.go.
3. Adding New Metrics (internal/telemetry)
HotPlex uses Prometheus for real-time monitoring:
- Register new counters or histograms in
telemetry.go. - Invoke the tracking methods from the Engine or Internal Server.
- The metrics are automatically exposed via the server's telemetry endpoint.
โ๏ธ Design Principles
- Process Graceful Shutdown: All internal components must respect contexts and termination signals.
- No Zombie Guarantee: The
internal/sysandinternal/enginepackages work together to ensure that even if a parent process crashes, the underlying CLI agents (and their children) are swept. - Zero Allocation Paths: Critical paths like regex scanning in
internal/securityare optimized to minimize garbage collection overhead.
Package Path: github.com/hrygo/hotplex/internal
Core Components: SessionPool, DangerDetector, WebSocketHandler, TelemetrySystem
Directories
ยถ
| Path | Synopsis |
|---|---|
|
Package engine provides the core session management and process pool for HotPlex.
|
Package engine provides the core session management and process pool for HotPlex. |
|
Package panicx provides panic recovery utilities for goroutine safety.
|
Package panicx provides panic recovery utilities for goroutine safety. |
|
Package persistence provides session marker storage abstractions.
|
Package persistence provides session marker storage abstractions. |
|
Package security provides WAF-like protection for the HotPlex engine.
|
Package security provides WAF-like protection for the HotPlex engine. |
|
Package sys provides cross-platform process management utilities.
|
Package sys provides cross-platform process management utilities. |
Click to show internal directories.
Click to hide internal directories.