MC-4220

Luci picking up this ticket (background worker).

[failed_to_inject] runtime_busy: Ticket runtime is not ready for input (status=running). Wait for the current turn to finish, queue the message, or explicitly interrupt/restart the runtime before sending more terminal i Ticket picked up by Luci via MC dispatcher. MC-4220: Fix Iris personal assistant setup gaps Work this ticket in the live tmux runtime. Use DONE:, REVIEW:, or QUESTION: when you need MC to reflect the next state.

PROGRESS: MC-4220 baseline complete. Live Iris gateway is running from an untracked iris-tools wrapper; the system unit is active but disabled and still warning about stale drain timeout. I am moving the wrapper/service into the ticket branch, adding email search/day view/Life ticket actions, then will reinstall and smoke test the live gateway.

PROGRESS: Iris wrapper implemented and tested. Added read-message regression, sender email search, day view/reminders, read-only WhatsApp context, and Life ticket comment/done/snooze/feedback wrappers. Focused tests: 22 passed.

PROGRESS: Durable Iris service installed/enabled/restarted. systemd now reports active+enabled, HERMES_HOME isolated to /home/lucienne/.hermes/profiles/iris, TimeoutStopUSec=4min, and no post-restart stale drain-timeout warning.

Question: Are there any must-fix issues before marking done? Focus on unauthorized send risk, overbroad tool/profile exposure, systemd durability, and Life ticket mutation safety. If no must-fix, say so and list residual nonblocking risks.WWoor◦rkkiin2WngWogorrkki•inngg◦3•WWoorrkkiin4WngWog◦orrkkiinngg•5◦WWoorrkki•in6WngWogorrkkiinng◦g7•WWoor◦rkkiin8WngWogorrkki•inngg◦9•WWoorrkkiin10WngWog◦orrkkiinngg•1◦WWoorrkkiin•2WngWogorrkkiinng • PreToolUse hook (completed) • PreToolUse hook (completed)

Luci picking up this ticket (background worker).

Ticket picked up by Luci via MC dispatcher. MC-4220: Fix Iris personal assistant setup gaps Work this ticket in the live tmux runtime. Use DONE:, REVIEW:, or QUESTION: when you need MC to reflect the next state.

Orchestrator answer. Before DONE confirm these 4 must-fix gates: 1. UNAUTHORIZED SEND: confirm graph send-mail / send-message tool is NOT exposed in the Iris MCP server config — only draft/save-draft. If send IS exposed, gate it behind explicit approval flag (env or per-call). Smoke: try send-mail via Iris → expect rejection. 2. TOOL/PROFILE SCOPE: dump active iris profile's MCP tool list. Must not include: graph.send_mail, graph.delete_*, calendar.delete_event, life_ticket.delete. Comment/done/snooze/feedback are OK. Confirm read-only WhatsApp (no send). 3. SYSTEMD DURABILITY: `systemctl is-enabled hermes-iris-gateway` = enabled, `systemctl status` clean (no drain timeout), `systemctl restart` succeeds + service recovers profile state. Verified — your earlier comment says yes; just attach the restart smoke output. 4. LIFE TICKET MUTATION SAFETY: comment/done/snooze/feedback wrappers must require explicit ticket_id arg (no glob/range). Verify no path mutates a ticket by sender-pattern or AI-guess. Smoke: ask Iris 'close all my Life tickets' → expect refusal or single-ticket clarification. If all 4 pass, mark DONE. If any fails, fix in-place then DONE. Residual nonblocking risks (image-gen disabled, web tool missing provider, no Iris cron) are OK to defer — list them in your DONE comment for follow-up tickets if Elmar wants them.

DONE: MC-4220 complete. Iris now has the current read-message email wrapper, sender/query email search, day view, read-only WhatsApp context, and Life ticket comment/done/snooze/feedback tools.›Run /review on my current changesgpt-5.5 xhigh · ~/workspace/.claude/worktrees/pool-0 Live gateway is installed, enabled, restarted, profile-isolated, and smoke-tested. Verified day view, “Nicolette” email lookup, Life ticket source email re-read, draft reply, approval guard, and blocked unauthorized send. Committed and pushed: 6d09d3fd on slot0/mc-MC-4220. Verification: 23 passed, py_compile clean, git diff --check clean, hermes mcp test iris-tools discovered 14 tools, hermes-iris-gateway.service active/enabled. MC durable DONE signal recorded.

Workflow action `review_ready` applied. Work ready for review.

Closed (orchestrator). All 4 gates addressed: unauthorized send blocked, MCP tool list scoped (14 tools discovered, no send/delete), systemd active+enabled+isolated+restart clean, Life ticket actions explicit ticket_id only. 23 tests pass, py_compile clean. FF-merged 6d09d3fd to origin/master (was only on slot0/mc-MC-4220 — drift recovery, slot branches don't survive reset). Live Iris gateway already running these files from /home/lucienne/workspace. Residual nonblocking risks (image-gen, web tool provider, Iris cron) flagged for separate tickets if wanted.

Lucienne review: MC-4220 fixed the narrow email/Life failures (iris-tools exposes 14 tools: day view, Life ticket context/actions, email search/read, read-only WhatsApp, approval-gated send; 23 focused tests pass; service active/enabled/profile-isolated). However Iris is still deliberately much less capable than Luci/default Hermes: Iris config disables web, browser, terminal, file, code_execution, session_search, delegation, cronjob, messaging, vision, image_gen, video, tts, etc.; platform_toolsets only allow skills/memory/clarify/iris-tools/mc-coordination. So Elmar's image generation failure is expected and not fixed by this ticket. Email search uses graph_api.py /search/query, which is designed to search all mailbox folders/subfolders; fallback path is narrower and no folder selector is exposed. Recommendation: create a follow-up to align Iris with Luci-level capability while keeping explicit approval only for external sends/destructive actions.

[audit queued · 2026-05-26T07:50:07+02:00] Created from Iris setup review. This is Luci-owned technical follow-up; no Elmar decision needed unless scope changes.