hermes-agent/website/docs/user-guide/features/skills.md

sidebar_position, title, description

sidebar_position	title	description
2	Skills System	On-demand knowledge documents — progressive disclosure, agent-managed skills, and the Skills Hub

Skills System

Skills are on-demand knowledge documents the agent can load when needed. They follow a progressive disclosure pattern to minimize token usage and are compatible with the agentskills.io open standard.

All skills live in ~/.hermes/skills/ — the primary directory and source of truth. On fresh install, bundled skills are copied from the repo. Hub-installed and agent-created skills also go here. The agent can modify or delete any skill.

You can also point Hermes at external skill directories — additional folders scanned alongside the local one. See External Skill Directories below.

See also:

• Bundled Skills Catalog
• Official Optional Skills Catalog

Using Skills

Every installed skill is automatically available as a slash command:

# In the CLI or any messaging platform:
/gif-search funny cats
/axolotl help me fine-tune Llama 3 on my dataset
/github-pr-workflow create a PR for the auth refactor
/plan design a rollout for migrating our auth provider

# Just the skill name loads it and lets the agent ask what you need:
/excalidraw

The bundled plan skill is a good example of a skill-backed slash command with custom behavior. Running /plan [request] tells Hermes to inspect context if needed, write a markdown implementation plan instead of executing the task, and save the result under .hermes/plans/ relative to the active workspace/backend working directory.

You can also interact with skills through natural conversation:

hermes chat --toolsets skills -q "What skills do you have?"
hermes chat --toolsets skills -q "Show me the axolotl skill"

Progressive Disclosure

Skills use a token-efficient loading pattern:

Level 0: skills_list()           → [{name, description, category}, ...]   (~3k tokens)
Level 1: skill_view(name)        → Full content + metadata       (varies)
Level 2: skill_view(name, path)  → Specific reference file       (varies)

The agent only loads the full skill content when it actually needs it.

SKILL.md Format

---
name: my-skill
description: Brief description of what this skill does
version: 1.0.0
platforms: [macos, linux]     # Optional — restrict to specific OS platforms
metadata:
  hermes:
    tags: [python, automation]
    category: devops
    fallback_for_toolsets: [web]    # Optional — conditional activation (see below)
    requires_toolsets: [terminal]   # Optional — conditional activation (see below)
---

# Skill Title

## When to Use
Trigger conditions for this skill.

## Procedure
1. Step one
2. Step two

## Pitfalls
- Known failure modes and fixes

## Verification
How to confirm it worked.

Platform-Specific Skills

Skills can restrict themselves to specific operating systems using the platforms field:

Value	Matches
macos	macOS (Darwin)
linux	Linux
windows	Windows

platforms: [macos]            # macOS only (e.g., iMessage, Apple Reminders, FindMy)
platforms: [macos, linux]     # macOS and Linux

When set, the skill is automatically hidden from the system prompt, skills_list(), and slash commands on incompatible platforms. If omitted, the skill loads on all platforms.

Conditional Activation (Fallback Skills)

Skills can automatically show or hide themselves based on which tools are available in the current session. This is most useful for fallback skills — free or local alternatives that should only appear when a premium tool is unavailable.

metadata:
  hermes:
    fallback_for_toolsets: [web]      # Show ONLY when these toolsets are unavailable
    requires_toolsets: [terminal]     # Show ONLY when these toolsets are available
    fallback_for_tools: [web_search]  # Show ONLY when these specific tools are unavailable
    requires_tools: [terminal]        # Show ONLY when these specific tools are available

Field	Behavior
fallback_for_toolsets	Skill is hidden when the listed toolsets are available. Shown when they're missing.
fallback_for_tools	Same, but checks individual tools instead of toolsets.
requires_toolsets	Skill is hidden when the listed toolsets are unavailable. Shown when they're present.
requires_tools	Same, but checks individual tools.

Example: The built-in duckduckgo-search skill uses fallback_for_toolsets: [web]. When you have FIRECRAWL_API_KEY set, the web toolset is available and the agent uses web_search — the DuckDuckGo skill stays hidden. If the API key is missing, the web toolset is unavailable and the DuckDuckGo skill automatically appears as a fallback.

Skills without any conditional fields behave exactly as before — they're always shown.

Secure Setup on Load

Skills can declare required environment variables without disappearing from discovery:

required_environment_variables:
  - name: TENOR_API_KEY
    prompt: Tenor API key
    help: Get a key from https://developers.google.com/tenor
    required_for: full functionality

When a missing value is encountered, Hermes asks for it securely only when the skill is actually loaded in the local CLI. You can skip setup and keep using the skill. Messaging surfaces never ask for secrets in chat — they tell you to use hermes setup or ~/.hermes/.env locally instead.

Once set, declared env vars are automatically passed through to execute_code and terminal sandboxes — the skill's scripts can use $TENOR_API_KEY directly. For non-skill env vars, use the terminal.env_passthrough config option. See Environment Variable Passthrough for details.

Skill Directory Structure

~/.hermes/skills/                  # Single source of truth
├── mlops/                         # Category directory
│   ├── axolotl/
│   │   ├── SKILL.md               # Main instructions (required)
│   │   ├── references/            # Additional docs
│   │   ├── templates/             # Output formats
│   │   ├── scripts/               # Helper scripts callable from the skill
│   │   └── assets/                # Supplementary files
│   └── vllm/
│       └── SKILL.md
├── devops/
│   └── deploy-k8s/                # Agent-created skill
│       ├── SKILL.md
│       └── references/
├── .hub/                          # Skills Hub state
│   ├── lock.json
│   ├── quarantine/
│   └── audit.log
└── .bundled_manifest              # Tracks seeded bundled skills

External Skill Directories

If you maintain skills outside of Hermes — for example, a shared ~/.agents/skills/ directory used by multiple AI tools — you can tell Hermes to scan those directories too.

Add external_dirs under the skills section in ~/.hermes/config.yaml:

skills:
  external_dirs:
    - ~/.agents/skills
    - /home/shared/team-skills
    - ${SKILLS_REPO}/skills

Paths support ~ expansion and ${VAR} environment variable substitution.

How it works

• Read-only: External dirs are only scanned for skill discovery. When the agent creates or edits a skill, it always writes to ~/.hermes/skills/.
• Local precedence: If the same skill name exists in both the local dir and an external dir, the local version wins.
• Full integration: External skills appear in the system prompt index, skills_list, skill_view, and as /skill-name slash commands — no different from local skills.
• Non-existent paths are silently skipped: If a configured directory doesn't exist, Hermes ignores it without errors. Useful for optional shared directories that may not be present on every machine.

Example

~/.hermes/skills/               # Local (primary, read-write)
├── devops/deploy-k8s/
│   └── SKILL.md
└── mlops/axolotl/
    └── SKILL.md

~/.agents/skills/               # External (read-only, shared)
├── my-custom-workflow/
│   └── SKILL.md
└── team-conventions/
    └── SKILL.md

All four skills appear in your skill index. If you create a new skill called my-custom-workflow locally, it shadows the external version.

Agent-Managed Skills (skill_manage tool)

The agent can create, update, and delete its own skills via the skill_manage tool. This is the agent's procedural memory — when it figures out a non-trivial workflow, it saves the approach as a skill for future reuse.

When the Agent Creates Skills

• After completing a complex task (5+ tool calls) successfully
• When it hit errors or dead ends and found the working path
• When the user corrected its approach
• When it discovered a non-trivial workflow

Actions

Action	Use for	Key params
create	New skill from scratch	name, content (full SKILL.md), optional category
patch	Targeted fixes (preferred)	name, old_string, new_string
edit	Major structural rewrites	name, content (full SKILL.md replacement)
delete	Remove a skill entirely	name
write_file	Add/update supporting files	name, file_path, file_content
remove_file	Remove a supporting file	name, file_path

:::tip The patch action is preferred for updates — it's more token-efficient than edit because only the changed text appears in the tool call. :::

Skills Hub

Browse, search, install, and manage skills from online registries, skills.sh, direct well-known skill endpoints, and official optional skills.

Common commands

hermes skills browse                              # Browse all hub skills (official first)
hermes skills browse --source official            # Browse only official optional skills
hermes skills search kubernetes                   # Search all sources
hermes skills search react --source skills-sh     # Search the skills.sh directory
hermes skills search https://mintlify.com/docs --source well-known
hermes skills inspect openai/skills/k8s           # Preview before installing
hermes skills install openai/skills/k8s           # Install with security scan
hermes skills install official/security/1password
hermes skills install skills-sh/vercel-labs/json-render/json-render-react --force
hermes skills install well-known:https://mintlify.com/docs/.well-known/skills/mintlify
hermes skills list --source hub                   # List hub-installed skills
hermes skills check                               # Check installed hub skills for upstream updates
hermes skills update                              # Reinstall hub skills with upstream changes when needed
hermes skills audit                               # Re-scan all hub skills for security
hermes skills uninstall k8s                       # Remove a hub skill
hermes skills publish skills/my-skill --to github --repo owner/repo
hermes skills snapshot export setup.json          # Export skill config
hermes skills tap add myorg/skills-repo           # Add a custom GitHub source

Supported hub sources

Source	Example	Notes
official	official/security/1password	Optional skills shipped with Hermes.
skills-sh	skills-sh/vercel-labs/agent-skills/vercel-react-best-practices	Searchable via hermes skills search <query> --source skills-sh. Hermes resolves alias-style skills when the skills.sh slug differs from the repo folder.
well-known	well-known:https://mintlify.com/docs/.well-known/skills/mintlify	Skills served directly from /.well-known/skills/index.json on a website. Search using the site or docs URL.
github	openai/skills/k8s	Direct GitHub repo/path installs and custom taps.
clawhub, lobehub, claude-marketplace	Source-specific identifiers	Community or marketplace integrations.

Integrated hubs and registries

Hermes currently integrates with these skills ecosystems and discovery sources:

1. Official optional skills (official)

These are maintained in the Hermes repository itself and install with builtin trust.

• Catalog: Official Optional Skills Catalog
• Source in repo: optional-skills/
• Example:

hermes skills browse --source official
hermes skills install official/security/1password

2. skills.sh (skills-sh)

This is Vercel's public skills directory. Hermes can search it directly, inspect skill detail pages, resolve alias-style slugs, and install from the underlying source repo.

• Directory: skills.sh
• CLI/tooling repo: vercel-labs/skills
• Official Vercel skills repo: vercel-labs/agent-skills
• Example:

hermes skills search react --source skills-sh
hermes skills inspect skills-sh/vercel-labs/json-render/json-render-react
hermes skills install skills-sh/vercel-labs/json-render/json-render-react --force

3. Well-known skill endpoints (well-known)

This is URL-based discovery from sites that publish /.well-known/skills/index.json. It is not a single centralized hub — it is a web discovery convention.

• Example live endpoint: Mintlify docs skills index
• Reference server implementation: vercel-labs/skills-handler
• Example:

hermes skills search https://mintlify.com/docs --source well-known
hermes skills inspect well-known:https://mintlify.com/docs/.well-known/skills/mintlify
hermes skills install well-known:https://mintlify.com/docs/.well-known/skills/mintlify

4. Direct GitHub skills (github)

Hermes can install directly from GitHub repositories and GitHub-based taps. This is useful when you already know the repo/path or want to add your own custom source repo.

Default taps (browsable without any setup):

• openai/skills

• anthropics/skills

• VoltAgent/awesome-agent-skills

• garrytan/gstack

• Example:

hermes skills install openai/skills/k8s
hermes skills tap add myorg/skills-repo

5. ClawHub (clawhub)

A third-party skills marketplace integrated as a community source.

• Site: clawhub.ai
• Hermes source id: clawhub

6. Claude marketplace-style repos (claude-marketplace)

Hermes supports marketplace repos that publish Claude-compatible plugin/marketplace manifests.

Known integrated sources include:

• anthropics/skills
• aiskillstore/marketplace

Hermes source id: claude-marketplace

7. LobeHub (lobehub)

Hermes can search and convert agent entries from LobeHub's public catalog into installable Hermes skills.

• Site: LobeHub
• Public agents index: chat-agents.lobehub.com
• Backing repo: lobehub/lobe-chat-agents
• Hermes source id: lobehub

Security scanning and --force

All hub-installed skills go through a security scanner that checks for data exfiltration, prompt injection, destructive commands, supply-chain signals, and other threats.

hermes skills inspect ... now also surfaces upstream metadata when available:

• repo URL
• skills.sh detail page URL
• install command
• weekly installs
• upstream security audit statuses
• well-known index/endpoint URLs

Use --force when you have reviewed a third-party skill and want to override a non-dangerous policy block:

hermes skills install skills-sh/anthropics/skills/pdf --force

Important behavior:

• --force can override policy blocks for caution/warn-style findings.
• --force does not override a dangerous scan verdict.
• Official optional skills (official/...) are treated as builtin trust and do not show the third-party warning panel.

Trust levels

Level	Source	Policy
builtin	Ships with Hermes	Always trusted
official	optional-skills/ in the repo	Builtin trust, no third-party warning
trusted	Trusted registries/repos such as openai/skills, anthropics/skills	More permissive policy than community sources
community	Everything else (skills.sh, well-known endpoints, custom GitHub repos, most marketplaces)	Non-dangerous findings can be overridden with --force; dangerous verdicts stay blocked

Update lifecycle

The hub now tracks enough provenance to re-check upstream copies of installed skills:

hermes skills check          # Report which installed hub skills changed upstream
hermes skills update         # Reinstall only the skills with updates available
hermes skills update react   # Update one specific installed hub skill

This uses the stored source identifier plus the current upstream bundle content hash to detect drift.

Slash commands (inside chat)

All the same commands work with /skills:

/skills browse
/skills search react --source skills-sh
/skills search https://mintlify.com/docs --source well-known
/skills inspect skills-sh/vercel-labs/json-render/json-render-react
/skills install openai/skills/skill-creator --force
/skills check
/skills update
/skills list

Official optional skills still use identifiers like official/security/1password and official/migration/openclaw-migration.