hermes-agent

mirror of https://github.com/NousResearch/hermes-agent.git synced 2026-05-30 06:41:51 +00:00

History

Teknium 552e9c7881 feat(secrets): Bitwarden Secrets Manager integration with lazy bws install (#30035 ) * feat(secrets): Bitwarden Secrets Manager integration with lazy bws install Pull API keys from Bitwarden Secrets Manager at process startup instead of storing them all in plaintext in ~/.hermes/.env. One bootstrap token (BWS_ACCESS_TOKEN) replaces N per-provider keys, and rotating a credential becomes a single change in the Bitwarden web app. Bitwarden defaults to source of truth: secrets pulled from BSM overwrite any matching env vars on startup so rotations actually take effect. Set secrets.bitwarden.override_existing: false in config.yaml to invert. The bws binary is auto-downloaded into ~/.hermes/bin/bws on first use (pinned to v2.0.0, SHA-256 verified against the GitHub release checksum file). No apt, brew, or sudo required. New surfaces: hermes secrets bitwarden setup — interactive wizard hermes secrets bitwarden status — config + binary + token state hermes secrets bitwarden sync — dry-run fetch / --apply exports hermes secrets bitwarden disable — flip enabled: false hermes secrets bitwarden install — just download the binary Failures (missing binary, bad token, no network) never block Hermes startup — they emit a one-line warning to stderr and continue with whatever credentials .env already had. Docs: website/docs/user-guide/secrets/{index,bitwarden}.md Tests: tests/test_bitwarden_secrets.py (26 tests, hermetic — bws subprocess and HTTP downloads fully mocked) * chore(infographic): add bitwarden-secrets-manager bento-grid retro-pop-grid Generated for PR #30035 — Bitwarden Secrets Manager integration. Style picked via pick_pr_infographic_style.py rotation: layout: bento-grid style: retro-pop-grid aspect: 1:1 square Saved at infographic/bitwarden-secrets-manager/infographic.png		2026-05-21 14:10:34 -07:00
..
features	fix(x_search): surface degraded results + validate dates	2026-05-21 02:38:45 +05:30
messaging	Observe unmentioned Telegram group messages	2026-05-20 22:55:31 -07:00
secrets	feat(secrets): Bitwarden Secrets Manager integration with lazy bws install (#30035 )	2026-05-21 14:10:34 -07:00
skills	docs: align kanban readiness docs and smoke tests	2026-05-18 21:07:03 -07:00
_category_.json	feat: add documentation website (Docusaurus)	2026-03-05 05:24:55 -08:00
checkpoints-and-rollback.md	feat(checkpoints): v2 single-store rewrite with real pruning + disk guardrails (#20709 )	2026-05-06 05:44:35 -07:00
cli.md	docs: comprehensive 2-week sweep of feature/PR coverage gaps (#28497 )	2026-05-18 23:55:25 -07:00
configuration.md	feat: auto-launch Chromium-family browser for CDP	2026-05-19 22:34:05 -07:00
configuring-models.md	docs(session_search): update all docs for the single-shape rewrite (#27840 )	2026-05-18 00:36:17 -07:00
docker.md	docs: comprehensive 2-week sweep of feature/PR coverage gaps (#28497 )	2026-05-18 23:55:25 -07:00
git-worktrees.md	docs: restructure site navigation — promote features and platforms to top-level (#4116 )	2026-03-30 18:39:51 -07:00
profile-distributions.md	docs(profiles): full user guide for profile distributions (#22017 )	2026-05-08 11:13:45 -07:00
profiles.md	feat(kanban): orchestrator-driven auto-decomposition on triage (#27572 )	2026-05-17 13:54:12 -07:00
security.md	docs: comprehensive 2-week sweep of feature/PR coverage gaps (#28497 )	2026-05-18 23:55:25 -07:00
sessions.md	docs(sessions): state.db is canonical for gateway messages	2026-05-20 13:00:57 -07:00
tui.md	docs: comprehensive 2-week sweep of feature/PR coverage gaps (#28497 )	2026-05-18 23:55:25 -07:00
windows-native.md	docs: comprehensive 2-week sweep of feature/PR coverage gaps (#28497 )	2026-05-18 23:55:25 -07:00
windows-wsl-quickstart.md	docs: deep audit — fix stale config keys, missing commands, and registry drift (#22784 )	2026-05-09 13:19:51 -07:00