2 Comments
User's avatar
David Kreth Allen's avatar

What about storing credentials to various services used by the tools? I see them in plain text in a .env file. Is there a more secure way to store them other than a plain text file? This one thing alone would prevent me from using it at work where I really would like to be able to use it.

Anthony Maio's avatar

Hi David - there are a LOT of good options for credential access by Hermes agent - secret managers that are compatible with Hermes include some open source options - I covered them here: https://anthonymaio.substack.com/p/mitigating-supply-chain-exploits