Self-Hosted Agent • Nous Research

Security for
Hermes
Agent

Hermes Agent gives your AI access to terminals, browsers, databases, and 40+ live tools. SupraWall wraps every tool call with a deterministic ALLOW/DENY gate, PII scrubber, and credential vault — all from a single plugin install. Your agent can't exfiltrate data, blow your budget, or go rogue without you knowing.

WhatAnswer
What is it?A runtime security plugin for Hermes Agent (by Nous Research).
Integration methodNative Hermes plugin via pre_tool_call and post_tool_call hooks.
Install commandpip install suprawall-hermes
Fail modeFail-closed by default. Blocks all tool calls if SupraWall is unreachable.
Setup timeUnder 2 minutes. One environment variable required.
Secure My Agent Read the Docs

One-Command Install

Works on any Hermes Agent v0.3.0+ deployment

# 1. Install the plugin

pip install suprawall-hermes

# 2. Enable in ~/.hermes/config.yaml

plugins:

enabled:

- suprawall-security

# 3. Set your key and restart

export SUPRAWALL_API_KEY=sw_your_key_here

Hook Architecture

SupraWall registers two hooks directly into the Hermes plugin system. Every tool call passes through pre_tool_call before execution and post_tool_call after.

Pre-Execution Gate

Every tool call is evaluated against your ALLOW/DENY policies before any compute is consumed.

Terminal & Browser Tools

Blocks destructive shell commands and credential-exfiltration attempts before they execute.

Credential Vault

Hermes calls suprawall_vault_get to retrieve secrets. API keys never appear in tool arguments.

PII Scrubbing

Emails, SSNs, and credit card numbers are redacted locally from tool results before reaching the LLM.

Integration Surface

CapabilityIntegration MethodStatus
Pre-execution ALLOW/DENYpre_tool_call hook✅ Live
Audit trailspost_tool_call hook → JSONL✅ Live
PII scrubbingpost_tool_call result wrapper✅ Live
Vault credential injectionsuprawall_vault_get tool✅ Live
Budget capsBudgetTracker + post_tool_call✅ Live
HITL approvals/suprawall command + dashboard✅ Live
Bundled security skillsuprawall:security-policy✅ Live
Full inline interceptionPre-execution hook (issue #7344)🔜 Upstream

Slash Commands

# Check shield status

/suprawall status

→ Shield: ACTIVE | Budget: $0.42/$5.00 | Audited: 38 tool calls

# View last 10 tool calls

/suprawall audit

# Check current spend

/suprawall budget

Production Security Checklist

Set SUPRAWALL_FAIL_MODE=fail-closed in production
Configure SUPRAWALL_MAX_COST_USD to cap runaway agent spend
Enable SUPRAWALL_LOOP_DETECTION to stop infinite tool loops
Use suprawall_vault_get for all credentials — never pass keys in prompts
Review /suprawall audit daily for unexpected tool call patterns

Hermes has the tools.
SupraWall has the rules.

Start for FreeRead the Docs