Vault Mac Mini

--- name: machine-vault-mac description: Detailed inventory and status reference for the Mac Mini (Vault), the primary API key repository and LLM routing hub. metadata: author: skynet version: 1.0.0 --- # Vault Mac Mini (Vault) The **Vault** is a dedicated Mac Mini (Apple M4) serving as the secure repository for all API keys, secrets, and the central routing logic for LLM requests across the fleet. ## Quick Reference: Access & Networking | Metric | Value | Status | | :--- | :--- | :--- | | **Local IP** | `192.168.86.27` | Online | | **Tailscale IP** | `100.97.225.121` | **OFFLINE** (50+ days) | | **SSH Command** | `ssh vault` | Functional | | **Barrier Server** | `192.168.86.48:24800` (Spark) | Connected | | **Primary Role** | API Key Vault / LLM Routing | Active | ## Hardware Specifications | Component | Specification | | :--- | :--- | | **Model** | Mac Mini (2024) | | **Processor** | Apple M4 | | **Memory** | 16 GB Unified Memory | | **Storage** | 228 GB SSD | | **Disk Usage** | 34% Used (~77 GB) | | **OS** | macOS 15.7 (Sequoia) | ## Software Inventory ### Development Tools | Tool | Version | Manager | | :--- | :--- | :--- | | **Python** | 3.12.8 | `uv` / Homebrew | | **uv** | 0.11.2 | Native | | **Node.js** | 25.6.0 | `nvm` / Homebrew | | **Docker** | Colima (Latest) | Homebrew | | **Git** | Standard Apple/Homebrew | System | | **Homebrew** | Latest | `/opt/homebrew` | ### LLM Command Line Interfaces | CLI | Version | Notes | | :--- | :--- | :--- | | **Kimi CLI** | 1.x | Installed via `brew kimi-cli` | | **Claude CLI** | N/A | **NOT INSTALLED** | | **Codex CLI** | N/A | **NOT INSTALLED** | | **Gemini CLI** | N/A | **NOT INSTALLED** | ## Services & Ports ### Active Launchd Agents - `com.cloudflare.vault-tunnel`: Cloudflare tunnel for external vault access. - `com.bots.mac-control`: Remote management agent for fleet orchestration. - `com.barrier.client`: KVM sharing client (Target: Spark). - `com.bots.worker`: Background task processor. - `com.cloudflare.worker-tunnel`: Dedicated tunnel for worker processes. ### Port Map | Port | Service | Status | | :--- | :--- | :--- | | **8100** | `com.bots.worker` | Listening | | **8200** | `com.bots.mac-control` | Listening | | **8020** | **Vault Backend (Uvicorn)** | **DOWN** | ## Critical Issues & Maintenance ### ⚠️ Vault Service Failure The primary Vault API service (running via `uvicorn` on port **8020**) is currently **DOWN**. - The Cloudflare tunnel (`com.cloudflare.vault-tunnel`) is running, but it has no backend to proxy to. - LLM routing and secret retrieval will fail until this service is restored. ### ⚠️ Tailscale Connectivity The Tailscale interface (`100.97.225.121`) has been reported as **OFFLINE** for 50 days. - Use local IP `192.168.86.27` for all internal operations. - Avoid using Tailscale hostnames in scripts targeting this machine. ## Common Operations ### Restarting the Vault Service To attempt a manual restart of the Python-based vault backend: ```bash cd ~/infra/vault uv run uvicorn main:app --port 8020 --host 0.0.0.0 ``` ### Checking Service Logs ```bash # View mac-control logs tail -f ~/Library/Logs/com.bots.mac-control.log # View worker logs tail -f ~/Library/Logs/com.bots.worker.log ``` ### Software Updates ```bash # Update Homebrew and Kimi CLI brew update && brew upgrade kimi-cli # Update uv-managed Python environment uv self update ``` ## Browser & Account Context The machine maintains active sessions for: - **Anthropic Console**: Primary routing for Claude models. - **OpenAI Platform**: Key management for GPT-4/o1. - **Google AI Studio**: Gemini API configuration. - **Kimi/Moonshot**: Integration via the `kimi-cli`. --- *Last Inventory Audit: 2026-04-01*