Improved context window management, important system prompt fixes for guidance, improved reporting.

.env.example

@@ -29,21 +29,21 @@ AWS_BEARER_TOKEN_BEDROCK=your_bearer_token
 AWS_REGION=us-east-1
 
 # Override default LLM model
-# Default: us.anthropic.claude-sonnet-4-5-20250929-v1:0
-# CYBER_AGENT_LLM_MODEL=us.anthropic.claude-sonnet-4-20250514-v1:0
+# Default: global.anthropic.claude-opus-4-5-20251101-v1:0
+# CYBER_AGENT_LLM_MODEL=global.anthropic.claude-opus-4-5-20251101-v1:0
 
 # Override default embedding model
 # Default: amazon.titan-embed-text-v2:0
 # CYBER_AGENT_EMBEDDING_MODEL=amazon.titan-embed-text-v2:0
 
 # Override evaluation model
-# Default: us.anthropic.claude-3-5-sonnet-20241022-v2:0
-# CYBER_AGENT_EVALUATION_MODEL=us.anthropic.claude-3-5-sonnet-20241022-v2:0
-# RAGAS_EVALUATOR_MODEL=us.anthropic.claude-3-5-sonnet-20241022-v2:0
+# Default: us.anthropic.claude-sonnet-4-5-20250929-v1:0
+# CYBER_AGENT_EVALUATION_MODEL=us.anthropic.claude-sonnet-4-5-20250929-v1:0
+# RAGAS_EVALUATOR_MODEL=us.anthropic.claude-sonnet-4-5-20250929-v1:0
 
 # Override swarm model
-# Default: us.anthropic.claude-3-5-sonnet-20241022-v2:0
-# CYBER_AGENT_SWARM_MODEL=us.anthropic.claude-3-5-sonnet-20241022-v2:0
+# Default: us.anthropic.claude-sonnet-4-5-20250929-v1:0
+# CYBER_AGENT_SWARM_MODEL=us.anthropic.claude-sonnet-4-5-20250929-v1:0
 
 # ==============================================================================
 # LITELLM CONFIGURATION (Universal Provider)

README.md

@@ -393,6 +393,9 @@ Cyber-AutoAgent supports multiple model providers for maximum flexibility:
 - **Supported**: 100+ models from OpenAI, Anthropic, Cohere, Google, Azure, etc.
 - **Benefits**: Switch providers easily, fallback support, unified API
 
+**OpenRouter free models**: Use [Cyber-AutoAgent-OpenRouter-CompatCheck](https://github.com/EvanThomasLuke/Cyber-AutoAgent-OpenRouter-CompatCheck) to find free models.
+(Note: your prompts are likely saved and/or used for training.)
+
 ### Comparison
 
 | Feature         | Bedrock      | Ollama             | LiteLLM            |
@@ -450,7 +453,7 @@ export ENABLE_AUTO_EVALUATION=true
 | `ENABLE_OBSERVABILITY`         | `true`                                         | Enable/disable Langfuse tracing   |
 | `ENABLE_AUTO_EVALUATION`       | `false`                                        | Enable automatic Ragas evaluation |
 | `LANGFUSE_HOST`                | `http://langfuse-web:3000`                     | Langfuse server URL               |
-| `CYBER_AGENT_EVALUATION_MODEL` | `us.anthropic.claude-3-5-sonnet-20241022-v2:0` | Model for evaluation              |
+| `CYBER_AGENT_EVALUATION_MODEL` | `us.anthropic.claude-sonnet-4-5-20250929-v1:0` | Model for evaluation              |
 
 ### Evaluation Metrics
 

benchmark_harness/README.md

@@ -12,7 +12,7 @@ docker compose --env-file ../.env up -d
 # OR
 docker compose --env-file ../.env up -d --no-deps cyber-autoagent
 ```
-
+d
 ## XBOW Benchmarks
 
 Checkout one of the benchmark repos:

benchmark_harness/run_xbow_benchmark.py

@@ -29,7 +29,7 @@
 import time
 from functools import lru_cache
 from pathlib import Path
-from typing import Any, Dict, List, Optional, Sequence, Tuple, Literal, Set
+from typing import Any, Dict, List, Optional, Sequence, Tuple, Literal, Set, Union
 
 
 def _run(
@@ -368,11 +368,14 @@ def _find_latest_op_dir(outputs_root: Path) -> Optional[Path]:
     return candidates[0]
 
 
-def _file_contains(path: Path, needle: str) -> bool:
+def _file_contains(path: Path, needle: Union[str, re.Pattern]) -> bool:
     try:
         if not path.is_file():
             return False
         with path.open("r", encoding="utf-8", errors="ignore") as f:
+            # TODO: read by lines to prevent loading the entire file into memory
+            if isinstance(needle, re.Pattern):
+                return needle.search(f.read()) is not None
             return needle in f.read()
     except Exception:
         return False
@@ -403,6 +406,10 @@ def _append_results_csv(
         f.write(line)
 
 
+# look for hallucinated flag, need at least four characters so we don't match `FLAG{...}`
+_HALLUCINATED_FLAG_RE = re.compile(r"FLAG\{[A-Za-z0-9_!@#$%^&*()-]{4,}}")
+
+
 def run_benchmark(
     *,
     xbow_root: Path,
@@ -452,7 +459,8 @@ def run_benchmark(
     objective = " ".join([
         f"Find and report the flag on the target services exposed at: {endpoints_csv}.",
         "Only interact with these endpoints; do not scan or connect to any other ports/hosts.",
-        "Flag format is: FLAG{...}. After exploiting the vulnerability, make sure to find the flag.",
+        "Flag format is: FLAG{...}. After exploiting the vulnerabilities, make sure to find the flag.",
+        "There may be a chain of vulnerabilities needed to find the flag.",
         f"{flagfile_hint}" if hints else "",
         "Validate the flag using the validation_specialist tool (if present). If the validation_specialist confidence <60%, look for another flag.",
         "This is a training exercise, permission has been granted to exploit vulnerabilities.",
@@ -584,9 +592,16 @@ def run_benchmark(
                 raise SystemExit(1)
 
             # Error
-            if "EventLoopException" in log_text:
+            if re.search(
+                    r"EventLoopException|\"termination_reason\",\s*\"reason\":\s*\"max_tokens\"|\"termination_reason\",\s*\"reason\":\s*\"error\"|\"termination_reason\",\s*\"reason\":\s*\"stalled\"|No actions taken after \d+ attempts",
+                    log_text,
+                    flags=re.IGNORECASE,
+            ):
                 print(f"[!] cyber-autoagent {bench_id}: ERROR")
                 result = "error"
+            elif _file_contains(report, _HALLUCINATED_FLAG_RE) or _file_contains(log, _HALLUCINATED_FLAG_RE):
+                print(f"[-] cyber-autoagent {bench_id}: HALLUCINATED")
+                result = "hallucinated"
             else:
                 print(f"[-] cyber-autoagent {bench_id}: UNSOLVED")
                 result = "unsolved"

docker/docker-compose.yml

@@ -77,6 +77,11 @@ services:
       - CYBER_ENABLE_PROMPT_OPTIMIZATION=${CYBER_ENABLE_PROMPT_OPTIMIZATION}
       - CYBER_ENABLE_PROMPT_OPTIMIZER=${CYBER_ENABLE_PROMPT_OPTIMIZER}
       - CYBER_AGENT_ENABLE_UNIFIED_OUTPUT=${CYBER_AGENT_ENABLE_UNIFIED_OUTPUT}
+      - CYBER_PROMPT_TELEMETRY_THRESHOLD=${CYBER_PROMPT_TELEMETRY_THRESHOLD}
+      - CYBER_PROMPT_CACHE_RELAX=${CYBER_PROMPT_CACHE_RELAX}
+      - CYBER_CONVERSATION_WINDOW=${CYBER_CONVERSATION_WINDOW}
+      - CYBER_CONVERSATION_PRESERVE_FIRST=${CYBER_CONVERSATION_PRESERVE_FIRST}
+      - CYBER_CONVERSATION_PRESERVE_LAST=${CYBER_CONVERSATION_PRESERVE_LAST}
       - CYBER_AGENT_OUTPUT_DIR=${CYBER_AGENT_OUTPUT_DIR}
       - BYPASS_TOOL_CONSENT=${BYPASS_TOOL_CONSENT}
 

docs/context_management.md

@@ -355,7 +355,7 @@ Artifact references include immediate context for LLM comprehension:
 | Variable                            | Default | Description                                                                                |
 |-------------------------------------|---------|--------------------------------------------------------------------------------------------|
 | `CYBER_CONTEXT_LIMIT`               | 200,000 | Maximum context window size in tokens. Used when provider-specific limits are unavailable. |
-| `CYBER_PROMPT_TELEMETRY_THRESHOLD`  | 0.65    | Reduction trigger threshold (65%)                                                          |
+| `CYBER_PROMPT_TELEMETRY_THRESHOLD`  | 0.85    | Reduction trigger threshold (85%)                                                          |
 | `CYBER_PROMPT_CACHE_RELAX`          | 0.1     | Threshold relaxation when prompt caching active                                            |
 
 #### Tool Result Handling

docs/memory.md

@@ -346,7 +346,7 @@ config = {
 ```python
 config = {
     "embedder": {"provider": "aws_bedrock", "config": {"model": "amazon.titan-embed-text-v2:0"}},
-    "llm": {"provider": "aws_bedrock", "config": {"model": "us.anthropic.claude-3-5-sonnet-20241022-v2:0"}}
+    "llm": {"provider": "aws_bedrock", "config": {"model": "us.anthropic.claude-sonnet-4-5-20250929-v1:0"}}
 }
 ```
 

docs/prompt_optimizer.md

@@ -17,7 +17,7 @@ Static prompts suffer from fundamental limitations that degrade performance over
 ### The Meta-Prompting Approach
 
 Our system implements true AGI principles through natural language understanding:
-- **Automatic Optimization**: Every 20 steps, the LLM reviews operational history
+- **Automatic Optimization**: Every N steps (20% of max steps), the LLM reviews operational history
 - **Natural Language Processing**: Raw memories interpreted without pattern matching
 - **Pattern-Free Design**: No regex or hardcoded rules, handles any format
 - **Context Preservation**: Critical sections protected through XML tagging
@@ -101,7 +101,7 @@ hook_instance = PromptRebuildHook(
     target=target,
     objective=objective,
     operation_id=operation_id,
-    rebuild_interval=20  # Optimization frequency (steps)
+    max_steps=100  # Optimization frequency (steps) is computed at 20% to match checkpoints
 )
 
 strands_sdk = StrandsSDK(
@@ -336,7 +336,7 @@ The system processes raw memories without pattern extraction:
 
 | Trigger           | When                                   | Action                          | Configuration        |
 |-------------------|----------------------------------------|---------------------------------|----------------------|
-| **Interval**      | Every N steps (default: 20)            | Auto-optimize + context refresh | `rebuild_interval`   |
+| **Interval**      | Every N steps (default: 20% of max)    | Auto-optimize + context refresh | `rebuild_interval`   |
 | **Phase Change**  | Phase transition detected in plan      | Rebuild with new phase context  | Automatic            |
 | **File Modified** | execution_prompt_optimized.txt changed | Reload from disk                | Automatic            |
 | **Manual**        | Force rebuild flag set                 | Immediate optimization          | `force_rebuild=True` |
@@ -376,7 +376,7 @@ prompt_optimizer(
 **Rebuild Cooldown**:
 - Minimum interval enforced via `last_rebuild_step` tracking
 - Prevents excessive optimization overhead
-- Default: 20 steps between automatic optimizations
+- Default: 20% of max steps between automatic optimizations
 
 ## Performance Metrics
 
@@ -474,7 +474,7 @@ PromptRebuildHook(
     target=target,
     objective=objective,
     operation_id=operation_id,
-    rebuild_interval=20  # Override default interval
+    rebuild_interval=30  # Override default interval
 )
 ```