feat: add Hermes worker anchor and provisioning script for Paperclip employees

- Add x-hermes-worker YAML anchor template in compose.yml (CPU-only workers, no GPU passthrough, OpenCode Go provider) - Add commented worker example with env vars placeholder - Create scripts/provision-hermes-worker.sh for automated worker provisioning (generates port, API key, volume dir, appends service) - Workers connect to Discord only, isolated per container - Volumes under /mnt/HoardingCow_docker_data/Hermes/<name>/
2026-05-19 14:13:02 -04:00
parent 29ae32a1c5
commit b1dbdb9f2d
2 changed files with 184 additions and 0 deletions
--- a/ai/compose.yml
+++ b/ai/compose.yml
@@ -1,4 +1,35 @@
 version: "3.8"
+
+# ── Hermes Worker Template ──────────────────────────────────
+# Used by paperclip-worker-* Hermes containers via YAML anchor.
+# Each worker = one isolated Hermes agent for a Paperclip employee.
+# Override at service level: container_name, API_SERVER_PORT,
+# API_SERVER_KEY, DISCORD_BOT_TOKEN, volumes.
+# Workers have NO GPU — they use OpenCode Go or remote providers.
+x-hermes-worker: &hermes-worker
+  build:
+    context: ./hermes
+    ssh:
+      - default
+  entrypoint: ["/bin/bash", "-c",
+    "bash /opt/data/hermes-tools/install.sh && exec /usr/bin/tini -g -- /opt/hermes/docker/entrypoint.sh \"$@\"",
+    "hermes-entrypoint"]
+  command: gateway run
+  restart: always
+  environment:
+    API_SERVER_ENABLED: "true"
+    API_SERVER_HOST: "0.0.0.0"
+    OLLAMA_HOST: "http://ollama:11434"
+    OPENROUTER_API_KEY: ${OPENROUTER_API_KEY}
+    # Each worker needs its own OpenCode Go API key in .env
+    OPENCODE_GO_API_KEY: ${OPENCODE_GO_API_KEY}
+    GATEWAY_ALLOW_ALL_USERS: "true"
+    TZ: "America/Montreal"
+  networks:
+    ai_backend:
+  # NO devices — workers are CPU-only, no GPU passthrough
+# ─────────────────────────────────────────────────────────────
+
 services:

  # webui:
@@ -96,6 +127,24 @@ services:
      - "303"
      - "26"

+# ── Paperclip Worker Hermes Agents ──────────────────────────
+# Each worker is an isolated Hermes agent for a Paperclip employee.
+# Add new workers with: ./scripts/provision-hermes-worker.sh <name> <discord-token>
+# The API server key and port are generated automatically.
+# Workers are CPU-only — they use OpenCode Go or remote providers.
+
+  # ── Worker Template (commented — uncomment + configure to activate) ──
+  # hermes-worker-1:
+  #   <<: *hermes-worker
+  #   container_name: hermes-worker-1
+  #   environment:
+  #     API_SERVER_PORT: "8651"
+  #     API_SERVER_KEY: "generated-by-provision-script"
+  #     DISCORD_BOT_TOKEN: ${WORKER_1_DISCORD_BOT_TOKEN}
+  #   volumes:
+  #     - /mnt/HoardingCow_docker_data/Hermes/worker-1:/opt/data
+# ─────────────────────────────────────────────────────────────
+
 networks:
  ai_net:
    external: true