hermes-agent

Author	SHA1	Message	Date
Allegro	cb0cf51adf	security: Fix V-006 MCP OAuth Deserialization (CVSS 8.8 CRITICAL) Some checks failed Nix / nix (ubuntu-latest) (pull_request) Failing after 15s Details Supply Chain Audit / Scan PR for supply chain risks (pull_request) Failing after 19s Details Docker Build and Publish / build-and-push (pull_request) Failing after 28s Details Tests / test (pull_request) Failing after 9m43s Details Nix / nix (macos-latest) (pull_request) Has been cancelled Details - Replace pickle with JSON + HMAC-SHA256 state serialization - Add constant-time signature verification - Implement replay attack protection with nonce expiration - Add comprehensive security test suite (54 tests) - Harden token storage with integrity verification Resolves: V-006 (CVSS 8.8)	2026-03-31 00:37:14 +00:00