Model Routing & Provider Cascade
Vox uses a dynamic OpenRouter catalog as the primary cloud model source, with provider policy enforced in shipped surfaces via in-tree helpers (for example vox doctor under --features codex) and MCP / external vox-dei-d for full DeI routing. The vox-orchestrator crate is a workspace member but ships only a minimal lib.rs (Socrates floors); legacy sources on disk are not wired into that library—routing SSOT remains vox-dei-d, MCP, and vox-orchestrator.
Usage statistics and BYOK-style limits are persisted to Codex (Turso via vox-pm / vox-db) where wired; legacy docs may say vox-arca for the same storage plane.
For full runtime architecture and operational rollout details, also read:
docs/src/expl-context-runtime-architecture.mdcrates/vox-cli/src/dei_daemon.rs— stable RPC method id SSOT for the externalvox-dei-ddaemoncrates/vox-runtime/src/model_resolution.rs— OpenAI-compatible chat route resolution in the shipped runtime
Dynamic Catalog
The historical in-tree model_catalog narrative referred to the archival vox-orchestrator sources. Today, catalog refresh and normalization for CLI/MCP paths are owned by the daemon + MCP stack and vox-runtime / vox_config inference helpers. Conceptually the pipeline remains:
- Fetches models from
https://openrouter.ai/api/v1/models(public fetch; API key optional but recommended for consistent provider policy behavior) - Normalizes each entry to capability metadata (vision, cost, strengths) in the consumer
- Caches under
~/.vox/cache/where applicable - Falls back to cache, then static allowlists where implemented
API (if key) → Cache (if fresh) → Static fallback
Provider Cascade
┌─────────────────────────────────────────────────┐
│ Model Selection (catalog-driven) │
├─────────────────────────────────────────────────┤
│ Layer 1: Google AI Studio (direct) │
│ └── google/gemini-* from catalog (auto-selected)│
│ │
│ Layer 2: OpenRouter (requires free API key) │
│ └── :free models from catalog (Devstral, Qwen…) │
│ │
│ Layer 3: OpenRouter Paid (premium) │
│ └── SOTA models from catalog │
│ │
│ Layer 0: Ollama (always available, zero-auth) │
│ └── any locally pulled model │
└─────────────────────────────────────────────────┘
How Model Selection Works
vox chat (CLI)
The minimal vox binary does not ship the historical interactive vox chat subtree. Use Mens / MCP / vox-dei-d for chat-shaped flows, or wire a new chat module deliberately behind an explicit feature. When a chat stack is enabled, the cascade conceptually remains:
- Refresh or load catalog / model list (daemon or runtime)
- Check for Google AI Studio key → prefer Gemini-family routes where configured
- Check for OpenRouter key → respect
--free/ efficient vs paid routing in the active implementation - Check for Ollama → fall back to local inference (
vox_config::inference::local_ollama_populi_base_url) - No keys → guide the user to free-tier setup
Mens / Ollama base URL
Local inference uses a single resolution order: OLLAMA_URL → POPULI_URL → default http://localhost:11434, exposed as vox_config::inference::local_ollama_populi_base_url() (SSOT in crates/vox-config/src/inference.rs). The Mens client (vox_runtime::mens::MensConfig::from_env) uses the same precedence.
Hugging Face Inference Providers (router)
For OpenAI-compatible chat against the HF Inference Providers router, use:
- URL:
https://router.huggingface.co/v1/chat/completions(constantvox_runtime::inference_env::HF_ROUTER_CHAT_COMPLETIONS_URL) - Token:
HF_TOKENorHUGGING_FACE_HUB_TOKENviavox_config::inference::huggingface_hub_token() - Descriptor:
vox_runtime::inference_env::resolve_huggingface_router("org/model")returns model id, URL, and optional bearer token. - Dedicated endpoint:
vox_runtime::inference_env::resolve_huggingface_dedicated("https://….hf.space/v1/chat/completions", "model-id")for pinned Inference Endpoints (same token env vars). - Env shortcut (policy resolver):
HF_DEDICATED_CHAT_URL+HF_DEDICATED_CHAT_MODEL(seevox_config::inference::hf_dedicated_chat_completions_url/hf_dedicated_chat_model) are read by [vox_runtime::model_resolution::RouteResolutionInput::default] and take precedence over the shared router when an HF token is present.
Manual model pins and task overrides still win over automatic routing (see precedence below).
Hugging Face Hub catalog (text-generation)
vox_runtime::inference_env::fetch_hf_hub_text_generation_models(limit) calls the Hub /api/models listing (pipeline_tag=text-generation, sorted by downloads) and normalizes rows with parse_hf_hub_models_array. Use this for adapters and tooling that need a fresh allowlist without hardcoding model ids in business logic.
Runtime SSOT resolver (OpenAI-compatible chat)
vox_runtime::model_resolution::resolve_chat_provider_route applies fixed precedence: manual → Mens (GPU-prefer) → HF dedicated (token + dedicated env) → HF router (token + HF_CHAT_MODEL) → OpenRouter (key) → any Mens → OpenRouter bootstrap (OPENROUTER_AUTO). Map the result with chat_route_to_llm_config before vox_runtime::llm::llm_chat.
Unified four-lane backend semantics (orchestrator / MCP / runtime chat)
Registry-backed work (vox-orchestrator ModelSpec + route_backend_for_model) and HTTP chat routing share four normalized backend lanes for telemetry and dashboards:
| Lane | Orchestrator (ModelRouteBackend) | Runtime chat (ChatRouteBackend) | Telemetry (family, choice) |
|---|---|---|---|
| Google direct | GeminiDirect | GeminiDirect when manual base_url contains generativelanguage.googleapis.com; registry ProviderType::GoogleDirect maps here in MCP | ("google", "direct") |
| OpenRouter | OpenRouter | OpenRouter for ChatProviderRouteKind::OpenRouter and manual model id without base (OpenRouter id) | ("openrouter", "openrouter") |
| Local Ollama / Mens | Ollama | Ollama for PopuliLocal | ("mens", "populi_local") |
| Cascade / other | CascadeFallback (and Groq/Mistral/… per route_backend_for_model rules) | CascadeFallback for HF router/dedicated, BYOK OpenAI-compatible manual URLs (non-Google), and other non-native HTTP lanes | ("custom", "cascade") |
SSOT for telemetry strings: vox_runtime::model_resolution::backend_telemetry_labels. MCP mcp_provider_telemetry_labels delegates to it so labels cannot drift.
Residual divergence (by design):
- Precedence vs lane: Runtime chat resolution still prefers HF dedicated/router when an HF token is present (see precedence above); those routes are labeled cascade for backend-family purposes, not as separate HF enum variants.
- Gemini without Generative Language URL: A pinned Gemini model delivered only through OpenRouter (OpenRouter-shaped URL/model id) is labeled openrouter, not google/direct, until the chat stack uses a Google direct endpoint URL.
- Orchestrator
route_backend_for_modelnuance: Non-OpenRouter third-partyProviderTypes map toOpenRoutervsCascadeFallbackbased on model id heuristics (e.g.org/model→ OpenRouter lane); runtime chat has no equivalent until a concreteChatProviderRouteKindis built for that call.
Helpers: route_backend_for_chat_route, route_telemetry_labels (derived from the backend). Structured logs from routers may still use different tracing targets; filter RUST_LOG by the binary you run.
Mens capability probe (GPU / health)
vox_runtime::inference_env::probe_populi_capabilities(base_url) (and PopuliClient::probe_capabilities) call Ollama-compatible /api/tags and /api/version. gpu_capable is Some(true) only when version JSON (string match) suggests CUDA, ROCm, or Metal; otherwise None if unknown.
Multi-agent / DeI (external daemon)
Full multi-agent model registry behavior (task categories, complexity bands, economy vs performance, research stage picks) lives in the vox-dei-d / MCP plane, not in the minimal compiled vox-orchestrator crate or its unwired legacy files. The in-tree vox-orchestrator crate handles affinity, routing metadata, and session layout for MCP and the vox live demo bus.
Dei task inference (precedence)
For orchestrator-attached tasks, treat precedence as task override → per-agent config → mode profile / env / Vox.toml → MCP model override, matching the semantics documented for MCP vox_submit_task / vox_set_model_override. Exact function names in archived vox-orchestrator sources are not authoritative for the slim CLI build.
MCP chat / inline / ghost override
Tools vox_set_active_model and vox_get_active_model pin the model used by vox_chat_message, vox_inline_edit, and vox_ghost_text to a registry id (must exist in vox_list_models). Pass an empty model_id to vox_set_active_model to clear the override and restore automatic best_for_config resolution (same path as chat when no override is set).
Route telemetry
Structured logs for route telemetry are emitted from the daemon / MCP implementation; use RUST_LOG filters documented for the binary you run (vox-mcp, vox-dei-d, etc.) rather than assuming a vox_orchestrator::... target in minimal workspace crates.
# Pseudocode shape (actual types live in DeI daemon / MCP, not in the minimal vox-orchestrator library)
registry.resolve_for_task(task_category, complexity, cost_preference, inference_config)
Escalation Chain
If a model fails (rate limit, error), chat-shaped surfaces escalate using catalog-driven fallback lists in the active DeI implementation. The chain is catalog-driven, not a hardcoded short list in vox-cli:
| Provider | Source |
|---|---|
google/gemini-* models from catalog, ordered by capability | |
| OpenRouter | Free codegen models from catalog |
| Ollama | Local model (e.g. llama3.2) |
Catalog Refresh
Force-refresh the OpenRouter catalog (e.g. after new models are added):
vox status --refresh-catalog # Refresh before showing provider status
The orchestrator-side registry also performs periodic refresh merges using:
VOX_OPENROUTER_CATALOG_MIN_REFRESH_INTERVAL_SECSVOX_OPENROUTER_CATALOG_REFRESH_JITTER_MS
with a refresh marker in the Vox config directory to avoid excessive fetch churn.
Key Management
Keys are managed via the unified vox auth system:
vox auth login --registry google YOUR_KEY # Google AI Studio
vox auth login --registry openrouter YOUR_KEY # OpenRouter
# Keys stored in ~/.vox/auth.json
# Also reads from env vars: GEMINI_API_KEY, OPENROUTER_API_KEY
Cost Tracking
When using paid models, Vox tracks costs in Codex. You can check your current usage and estimated costs for the day:
Quota rollups that depended on the excluded in-tree DeI crate are not shipped in the default vox binary; inspect provider dashboards or Codex tables directly until a daemon-backed quota API is wired.
Cost data may still be persisted as provider-specific usage rows in Codex (Arca schema on Turso) where integrations exist.
Repository Context Controls (Rollout)
Add these keys under [dei] in Vox.toml for repo-aware chat/index/A2A behavior.
(Legacy: [orchestrator] is also supported for backward compatibility.)
[dei]
context_window_soft_ratio = 0.80
context_window_hard_ratio = 0.95
repo_index_max_files = 12000
repo_index_max_file_bytes = 262144
provider_tool_calls_enabled = true
provider_tool_calls_max_per_turn = 5
provider_tool_calls_read_only_mode = false
repo_index_incremental = false # set true for monorepos (vox repo enables it)
context_window_chars_per_token = 4
a2a_context_packet_enabled = true
Equivalent environment variables (prefer vox_orchestrator_*; VOX_DEUS_* and VOX_ORCHESTRATOR_* are legacy):
vox_orchestrator_CONTEXT_WINDOW_SOFT_RATIOvox_orchestrator_CONTEXT_WINDOW_HARD_RATIOvox_orchestrator_REPO_INDEX_MAX_FILESvox_orchestrator_REPO_INDEX_MAX_FILE_BYTESvox_orchestrator_PROVIDER_TOOL_CALLS_ENABLEDvox_orchestrator_PROVIDER_TOOL_CALLS_MAX_PER_TURNvox_orchestrator_PROVIDER_TOOL_CALLS_READ_ONLY_MODEvox_orchestrator_A2A_CONTEXT_PACKET_ENABLED
Operational MCP tools for rollout verification:
vox_repo_index_status/vox_repo_index_refreshvox_context_sourcesvox_context_budget_snapshot/vox_compaction_history
Migration and environment compatibility
| Concern | Guidance |
|---|---|
Agent model: | Optional in .vox/agents/*.md. Use a catalog id (openrouter/..., google/gemini-...). MCP task submit refreshes inference from the file each time so you do not need to respawn agents after edits. |
| Efficient / free-only | vox_orchestrator_MODE_PROFILE=efficient or MCP mode_profile: efficient keeps free_only routing; OpenRouter defaults stay on free/auto when the usage tracker runs with free_only. |
| Local Ollama URL | vox_config::inference::local_ollama_populi_base_url() — OLLAMA_URL → POPULI_URL → http://localhost:11434. |
| OpenRouter key | vox_config::inference::openrouter_api_key() (env OPENROUTER_API_KEY). |
| Hugging Face token | vox_config::inference::huggingface_hub_token() (HF_TOKEN / HUGGING_FACE_HUB_TOKEN). |
| Research stage models | Defaults come from ModelRegistry::best_for_config per stage (research::model_select::resolve_research_models). Last-resort string fallbacks exist only if the registry returns no candidate. |