HeyBrian v4 Architecture — as of 2026-05-09

HeyBrian v4 Architecture — as of 2026-05-09

Authoritative snapshot of the v4 control center as it stands after
Jonah's overnight push. Source files live at /opt/agent/hey-brian-mac
(deployed to /Applications/HeyBrian.app on Mac) and /opt/agent/mac
(Lua reference, ~/.hammerspoon/brian_controller_ui_v2.lua live).

Mission

HeyBrian.app on Jonah's Mac is the single host of every Brian-on-Mac
function — UI, cpanel, voice, wake-word, executors. mac.jonahtebaa.com
is the same product viewed remotely. Hammerspoon Lua module retires.
App closed → system down.

Topology

Hetzner agent stack (89.167.17.183)
    ├─→ MacAccessGateway (mac_access_gateway.py) — opens session via /v2 lifecycle
    │       │
    │       ↓  HMAC over Tailscale
    │       │
Mac ┌───────┴────────────┬───────────────────┐
    │                    │                   │
    │  HeyBrian.app  ←──── /v2/* + /cpanel/*  │
    │     :9100         (master proxy)        │
    │       │                                 │
    │       ├─→ native Swift executors        │
    │       │     (12/12 caps native today)   │
    │       │                                 │
    │       └─→ proxyToLua (fallback for any  │
    │           cap with backend=proxy)       │
    │                    │                    │
    │  Hammerspoon  ←────┘                    │
    │     :8765 (Lua control center           │
    │            v3, retiring at 1.11)        │
    │       │                                 │
    │       └─→ DMS: self-shut if HeyBrian    │
    │           dead 15s (gemini ask, 1.8)    │
    │                                         │
    └─────────────────────────────────────────┘

Public web (mac.jonahtebaa.com)
    └─→ Caddy reverse_proxy → 100.79.172.24:9100
        only /cpanel + /cpanel/* + /health
        /api/mac/* and /(PWA) still gate-auth-protected

Components

HeyBrian.app — /Applications/HeyBrian.app/Contents/MacOS/HeyBrian

Source: /opt/agent/hey-brian-mac/Sources/. Built via ./build.sh
(cross-compiles on Mac via SSH, code-signs with stable Brian Local Dev
cert, deploys atomically).

Listens on TCP :9100 (HTTP/1.1, raw socket). Routes:

Source modules (Swift)

• AppDelegate.swift — app boot, wake-word daemon launch, orb wiring
• HMACGuard.swift — HMAC-SHA256 over body, ts ±60s window, nonce LRU 256, persisted at ~/.brian/nonce_lru.jsonl (mode 0600)
• HTTPServer.swift — raw TCP socket, accept loop, per-connection 4KB-chunk read until headers+Content-Length received, route dispatch
• CPanelAuth.swift — one middleware, two principals: token (X-Brian-Cpanel-Token, 32-hex at ~/.brian/cpanel_token) OR HMAC (X-Brian-Sig)
• CapabilityRegistry.swift — ~/.brian/capabilities.json mirror, mtime reload, atomic patch preserves unknown JSON fields (codex review fix). Phase 1.12-C: Cap.riskTier (low/medium/high) — metadata today, behavioral hooks pending
• BackendOverrides.swift — Swift-only ~/.brian/backend_overrides.json (mode 0600). Per-cap proxy|swift|lua flag; Lua doesn't see this file
• AuditLog.swift — ~/Library/Logs/Brian/control_center.jsonl append-only, 10MB rotate, 100-entry in-memory ring for /cpanel/api/state.recent_audit. Phase 1.12-B: every entry chained via prev_hash + hash (sha256 of canonical JSON). verifyChain() walks the file and returns first broken link
• Metrics.swift — seenBySource, usedByCap, callsByCap, failsByCap. Daily reset at local-TZ midnight
• SessionState.swift — /v2 lifecycle state machine. Singleton holds the active session. 60s stale-heartbeat watchdog auto-stops. Drives the three overlays (border / status box / pill)
• Executors.swift — 12 native cap implementations (notify, chrome.url, screencap, file.read, file.write, applescript, chrome.eval, run, say, click, type, keystroke). Phase 1.10 added TCC graceful degradation. Phase 1.12-A added file-path deny-list (~/.ssh, ~/.gnupg, Keychains, /etc, browser profiles, ~/.brian) with symlink + .. resolution
• BorderOverlay.swift — breathing cyan border. Per-edge gradient locations precomputed at install. Period 4.2s, fade-in/out 500ms. Three crashes caught + fixed: layer ownership, fade-out flash, teardown autorelease
• StatusBoxOverlay.swift — bottom-mid translucent panel, title (cyan) + step (dim white)
• PillOverlay.swift — top-right "Brian: running"/"paused", green/amber dot
• Permissions.swift — TCC probe (Accessibility / Screen Recording / Automation / FDA). check() and warmup() variants
• SettingsWindow.swift (Phase 1.6) — singleton WKWebView host (980×720) for the in-app cpanel. Loads http://127.0.0.1:9100/cpanel#t=<token>; cpanel JS persists token to localStorage and strips the hash. Menubar entry "Open Settings…" (Cmd-,)
• Resource: cpanel.html — bundled UI, hostname-aware (works direct on :9100, proxied via mac.jonahtebaa.com, OR inside the in-app WKWebView). Phase 1.12-C: per-cap risk-tier badge

Native overlay opt-out

Set ~/.heybrian/config.json to {"native_overlays_enabled": false}
+ relaunch HeyBrian. The /v2 lifecycle still updates SessionState
(so /cpanel/api/state.session still shows live), but no overlays
mount. Useful if a regression appears in the wild.

Lua control center — ~/.hammerspoon/brian_controller_ui_v2.lua

Reference at /opt/agent/mac/brian_controller_ui.lua. ~1400 LOC.
Listens on :8765. Used as the proxy fallback for any cap with
backend=proxy. With 12/12 native caps + backend_overrides.json
flipping all 12 to swift, Lua's executor path is inactive.

Phase 1.8 dead-man's switch: every 5s, pgrep for HeyBrian. After 3
consecutive misses (~15s), state.server:stop() and dismount UI.
Closes the "Lua ghosting" hole gemini flagged in the 1.1c round-table.

Hetzner-side glue

• MacAccessGateway — /opt/agent/scripts/mac_access_gateway.py. Opens a session by sending /v2 start (HMAC) to Mac, polls /v2 heartbeat every 30s during work. PreToolUse hook /root/.claude/hooks/brian-mac-access-gateway-guard.py blocks raw SSH unless via this gateway. Whitelisted helpers: mac_ssh, heybrian_relaunch.sh, hammerspoon_reload.sh.
• Watchdog — /opt/agent/scripts/heybrian_mac_watchdog.py. Cron * * * * *. Probes :9100 + :8765, alerts LOGS after 3 consecutive misses (level=low, never SIP).
• Contract test harness — /opt/agent/scripts/heybrian_contract_test.py + heybrian_contract_corpus.json. Replays envelopes against both backends, diffs responses. Currently 22 cases covering 12 caps. Run anytime.

Caddy — /opt/agent/caddy/Caddyfile

mac.jonahtebaa.com block proxies /cpanel + /cpanel/* + /health
to 100.79.172.24:9100. forward_auth matcher excludes those paths
so cookie-based gate_auth doesn't intercept the cpanel surface (the
panel uses its own X-Brian-Cpanel-Token).

Data files on Mac

Deployment

• cd /opt/agent/hey-brian-mac && ./build.sh — cross-compiles + scp + codesign + atomic deploy. Compile-fail = no deploy = previous app intact. Backups at /tmp/heybrian/backups/ keep N=last few.
• Restart after deploy: /opt/agent/scripts/heybrian_relaunch.sh (allowlisted in gateway hook for chicken-and-egg recovery).
• Reload Lua: /opt/agent/scripts/hammerspoon_reload.sh.

Phase status

See /opt/agent/hey-brian-mac/PLAN_STATUS.md for the live ledger.

Outstanding for v4 phase 1

• 1.4 — Secrets to Keychain (deferred until post-cutover; dual-port phase needs file-readable secret for Lua)
• 1.6 — Settings WKWebView ✅ shipped 2026-05-10 (commit 15fe1bd)
• 1.11 — Cutover (HeyBrian rebinds :8765, Lua tarballs) — needs week of dual-port shadow first
• 1.12 — Hardening sweep ✅ shipped (1.12 d26086d, 1.12-A 603a589, 1.12-B fca4c70, 1.12-C 16f0c88)

After phase 1: phase 2 absorbs the Mac Access Gateway UI surface from
Hammerspoon (gemini's "single app" path), phase 3 hotkeys + panel/prompt
webviews, phase 4 retires Hammerspoon entirely.