Timmy_Foundation/hermes-agent
16
0
Fork 0
Code Issues 37 Pull Requests 2 Actions 18 Packages Projects Releases Wiki Activity
2,995 Commits 35 Branches 1 Tag

Default Branch

main
Some checks are pending
Docker Build and Publish / build-and-push (push) Waiting to run
Details
Nix / nix (macos-latest) (push) Waiting to run
Details
Nix / nix (ubuntu-latest) (push) Waiting to run
Details
Tests / test (push) Waiting to run
Details

af9db00d24 · security(pre-commit): add secret leak scanner for prompts and credentials (#384) · Updated 2026-04-05 16:15:26 +00:00
 ZIP  TAR.GZ

Branches

epic-999-phase-ii-forge
Some checks are pending
Docker Build and Publish / build-and-push (pull_request) Waiting to run
Details
Docs Site Checks / docs-site-checks (pull_request) Waiting to run
Details
Nix / nix (macos-latest) (pull_request) Waiting to run
Details
Nix / nix (ubuntu-latest) (pull_request) Waiting to run
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Waiting to run
Details
Tests / test (pull_request) Waiting to run
Details
Tests / e2e (pull_request) Waiting to run
Details

ab7fd52ae3 · [EPIC-999] Phase II — The Forge: claw_runtime scaffold + forge pipeline · Updated 2026-04-05 23:32:53 +00:00    ezra

73
279
 #108 Open
 ZIP  TAR.GZ
epic-999-phase-i
Some checks are pending
Docker Build and Publish / build-and-push (pull_request) Waiting to run
Details
Docs Site Checks / docs-site-checks (pull_request) Waiting to run
Details
Nix / nix (macos-latest) (pull_request) Waiting to run
Details
Nix / nix (ubuntu-latest) (pull_request) Waiting to run
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Waiting to run
Details
Tests / test (pull_request) Waiting to run
Details
Tests / e2e (pull_request) Waiting to run
Details

c266661bff · [EPIC-999] Phase I — add call graph, test stubs, and AIAgent decomposition plan · Updated 2026-04-05 23:30:28 +00:00    ezra

73
278
 #107 Open
 ZIP  TAR.GZ
feature/syntax-guard-pre-receive-hook

d272ca36c8 · fix(agent): correct syntax error in InjectionType enum and optimize pattern matching · Updated 2026-04-05 14:55:51 +00:00    allegro

73
284
 ZIP  TAR.GZ
security/v-011-skills-guard-bypass
Some checks failed
Docker Build and Publish / build-and-push (push) Has been cancelled
Details
Nix / nix (macos-latest) (push) Has been cancelled
Details
Nix / nix (ubuntu-latest) (push) Has been cancelled
Details
Tests / test (push) Has been cancelled
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Has been cancelled
Details
Docker Build and Publish / build-and-push (pull_request) Has been cancelled
Details
Nix / nix (macos-latest) (pull_request) Has been cancelled
Details
Nix / nix (ubuntu-latest) (pull_request) Has been cancelled
Details
Tests / test (pull_request) Has been cancelled
Details

66ce1000bc · config: add Timmy and Ezra fallback configs for kimi-coding (Issue #186) · Updated 2026-03-31 19:57:31 +00:00    allegro

11
0
 #78 Closed
 ZIP  TAR.GZ
gemini/security-hardening
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 23s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 40s
Details
Nix / nix (ubuntu-latest) (push) Failing after 7s
Details
Docker Build and Publish / build-and-push (push) Failing after 30s
Details
Nix / nix (macos-latest) (push) Has been cancelled
Details
Tests / test (push) Has been cancelled
Details
Tests / test (pull_request) Failing after 12m59s
Details

30c6ceeaa5 · [security] Resolve all validation failures and secret leaks · Updated 2026-03-31 16:28:40 +00:00    gemini

17
0
 #77 Closed
 ZIP  TAR.GZ
gemini/sovereign-gitea-client
Some checks failed
Docker Build and Publish / build-and-push (pull_request) Failing after 27s
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Failing after 24s
Details
Tests / test (pull_request) Failing after 21s
Details

7b7428a1d9 · [sovereign] The Orchestration Client Timmy Deserves · Updated 2026-03-31 11:52:56 +00:00    gemini

55
0
 #76 Merged
 ZIP  TAR.GZ
timmy-custom

422f447149 · feat: Sovereign Evolution Redistribution — hermes-agent · Updated 2026-03-31 02:26:58 +00:00    allegro

56
26
 ZIP  TAR.GZ
security/fix-oauth-session-fixation
Some checks failed
Nix / nix (ubuntu-latest) (pull_request) Failing after 15s
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Failing after 19s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 28s
Details
Tests / test (pull_request) Failing after 9m43s
Details
Nix / nix (macos-latest) (pull_request) Has been cancelled
Details

cb0cf51adf · security: Fix V-006 MCP OAuth Deserialization (CVSS 8.8 CRITICAL) · Updated 2026-03-31 00:37:14 +00:00    allegro

26
0
 #70 Closed
 ZIP  TAR.GZ
security/fix-skills-path-traversal
Some checks failed
Nix / nix (ubuntu-latest) (pull_request) Failing after 15s
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Failing after 19s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 28s
Details
Tests / test (pull_request) Failing after 9m43s
Details
Nix / nix (macos-latest) (pull_request) Has been cancelled
Details

cb0cf51adf · security: Fix V-006 MCP OAuth Deserialization (CVSS 8.8 CRITICAL) · Updated 2026-03-31 00:37:14 +00:00    allegro

26
0
 #69 Closed
 ZIP  TAR.GZ
security/fix-file-toctou
Some checks failed
Docker Build and Publish / build-and-push (pull_request) Failing after 1m11s
Details
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 33s
Details
Tests / test (pull_request) Failing after 31s
Details

49097ba09e · security: add atomic write utilities for TOCTOU protection (V-015) · Updated 2026-03-31 00:08:54 +00:00    allegro

27
0
 #71 Closed
 ZIP  TAR.GZ
security/fix-error-disclosure
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 30s
Details
Tests / test (pull_request) Failing after 27s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 38s
Details

5d0cf71a8b · security: prevent error information disclosure (V-013, CVSS 7.5) · Updated 2026-03-31 00:06:58 +00:00    allegro

29
0
 #67 Merged
 ZIP  TAR.GZ
security/add-rate-limiting
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 31s
Details
Tests / test (pull_request) Failing after 32s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 59s
Details

4e3f5072f6 · security: add rate limiting to API server (V-016, CVSS 7.3) · Updated 2026-03-31 00:04:56 +00:00    allegro

31
0
 #66 Merged
 ZIP  TAR.GZ
security/fix-browser-cdp
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 27s
Details
Tests / test (pull_request) Failing after 25s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 37s
Details

cfaf6c827e · security: validate CDP URLs to prevent SSRF (V-010, CVSS 8.4) · Updated 2026-03-30 23:57:22 +00:00    allegro

33
0
 #65 Merged
 ZIP  TAR.GZ
security/fix-docker-privilege
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 28s
Details
Tests / test (pull_request) Failing after 29s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 42s
Details

ed32487cbe · security: block dangerous Docker volume mounts (V-012, CVSS 8.7) · Updated 2026-03-30 23:55:45 +00:00    allegro

35
0
 #64 Merged
 ZIP  TAR.GZ
security/fix-auth-bypass
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 27s
Details
Tests / test (pull_request) Failing after 24s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 35s
Details

cfcffd38ab · security: fix auth bypass and CORS misconfiguration (V-008, V-009) · Updated 2026-03-30 23:54:58 +00:00    allegro

37
0
 #63 Merged
 ZIP  TAR.GZ
fix/sqlite-contention
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 32s
Details
Tests / test (pull_request) Failing after 28s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 40s
Details

ffa8405cfb · fix: add cross-process locking for SQLite contention (Issue #52) · Updated 2026-03-30 23:51:00 +00:00    allegro

39
0
 #62 Merged
 ZIP  TAR.GZ
tests/security-coverage
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 29s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 37s
Details
Tests / test (pull_request) Failing after 28s
Details

e2e88b271d · test: add comprehensive security test coverage · Updated 2026-03-30 23:49:20 +00:00    allegro

41
0
 #61 Merged
 ZIP  TAR.GZ
security/fix-race-condition
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 29s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 38s
Details
Tests / test (pull_request) Failing after 28s
Details

13265971df · security: fix race condition in interrupt propagation (V-007) · Updated 2026-03-30 23:47:04 +00:00    allegro

43
0
 #60 Merged
 ZIP  TAR.GZ
security/fix-ssrf
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 32s
Details
Tests / test (pull_request) Failing after 28s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 55s
Details

0019381d75 · security: add connection-level SSRF protection (CVSS 9.4) · Updated 2026-03-30 23:43:58 +00:00    allegro

45
0
 #59 Merged
 ZIP  TAR.GZ
security/fix-secret-leakage
Some checks failed
Supply Chain Audit / Scan PR for supply chain risks (pull_request) Successful in 32s
Details
Tests / test (pull_request) Failing after 30s
Details
Docker Build and Publish / build-and-push (pull_request) Failing after 55s
Details

08abea4905 · security: fix secret leakage via whitelist-only env vars (CVSS 9.3) · Updated 2026-03-30 23:42:43 +00:00    allegro

47
0
 #58 Merged
 ZIP  TAR.GZ