feat: support remote Claude Code sessions via BUDDI_HOST env var#7
Conversation
Adds optional BUDDI_HOST and BUDDI_SOCKET environment variables to buddi-hook.py. When BUDDI_HOST is set (e.g. "localhost:9999"), the hook connects over TCP instead of the Unix socket, enabling Claude Code on a remote VM to forward hook events to Buddi on a local Mac via SSH reverse port-forwarding (typically bridged with socat on the Mac). Behavior is unchanged when neither variable is set. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
|
Please feel free to discard the PR and take it up as a feature request to support remote SSH connections for buddi. I realley liked to concept and built this for personal use and felt this could be shared with the community! |
![cubic-dev-ai[bot]](https://avatars.githubusercontent.com/in/1082092?s=60&v=4){kind=small}
There was a problem hiding this comment.
1 issue found across 1 file
Confidence score: 3/5
- Unhandled exceptions on invalid
BUDDI_HOSTport values inbuddi/Buddi/Resources/buddi-hook.pycould crash the hook and affect user workflows. - Score reflects a concrete, user-impacting failure mode with medium severity, but limited to input validation.
- Pay close attention to
buddi/Buddi/Resources/buddi-hook.py- add port validation or error handling to avoid crashes.
Prompt for AI agents (unresolved issues)
Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.
<file name="buddi/Buddi/Resources/buddi-hook.py">
<violation number="1" location="buddi/Buddi/Resources/buddi-hook.py:34">
P2: Invalid `BUDDI_HOST` port values can raise uncaught exceptions and crash the hook.</violation>
</file>
Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.
Non-numeric or out-of-range port values would raise ValueError or OverflowError uncaught by send_event, crashing the hook with a traceback. Convert both to OSError so the existing handler silently drops the event the same way other connection failures do. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
|
@grayashh I have started the AI code review. It will take a few minutes to complete. |
There was a problem hiding this comment.
1 issue found across 1 file
Confidence score: 4/5
- This PR looks safe to merge overall, with one moderate portability concern rather than a broad functional break.
- In
buddi/Buddi/Resources/buddi-hook.py, theBUDDI_HOSTconnect path uses IPv4-onlyAF_INET; in IPv6-only or some dual-stack setups this can fail and silently drop events. - Because the issue is environment-specific (severity 5/10, high confidence) and not a universal runtime failure, the merge risk appears limited but worth addressing soon.
- Pay close attention to
buddi/Buddi/Resources/buddi-hook.py- IPv4-only socket handling may cause missed event delivery on IPv6-capable networks.
Prompt for AI agents (unresolved issues)
Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.
<file name="buddi/Buddi/Resources/buddi-hook.py">
<violation number="1" location="buddi/Buddi/Resources/buddi-hook.py:38">
P2: `BUDDI_HOST` TCP connect path is IPv4-only (`AF_INET`), which can fail in IPv6-only/dual-stack environments and silently drop events.</violation>
</file>
Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.
|
Thanks for the contribution — the TCP fallback is clean and the input validation is solid. One small ask before merge: a non-loopback guard for If someone accidentally sets Suggested guard (stderr warning, non-blocking — keeps the env var as an advanced escape hatch): if BUDDI_HOST:
_host = BUDDI_HOST.rpartition(":")[0].strip("[]")
if _host not in ("localhost", "127.0.0.1", "::1"):
print(
f"buddi-hook: warning: BUDDI_HOST={BUDDI_HOST!r} is not a loopback "
"address; events contain prompts and tool inputs — only use over "
"an SSH tunnel.",
file=sys.stderr,
)Place it once at module load (right after the |
grayashh
added
type: feature
Sending hook events (which include prompts and tool inputs) over an untunneled non-loopback link is a data-exposure footgun. Print a non-blocking stderr warning at module load if BUDDI_HOST resolves to anything other than localhost / 127.0.0.1 / ::1, keeping the env var as an advanced escape hatch while flagging the risk. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2 participants
Adds optional BUDDI_HOST and BUDDI_SOCKET environment variables to buddi-hook.py. When BUDDI_HOST is set (e.g. "localhost:9999"), the hook connects over TCP instead of the Unix socket, enabling Claude Code on a remote VM to forward hook events to Buddi on a local Mac via SSH reverse port-forwarding (typically bridged with socat on the Mac).
Behavior is unchanged when neither variable is set.
Description
Type of change
Checklist
Screenshots