ling/hermes-agent
1
0
Fork 0
mirror of https://github.com/NousResearch/hermes-agent.git synced 2026-04-30 16:01:49 +08:00
Code Issues Packages Projects Releases Wiki Activity

feat(secrets): add phase 1 secrets tool and redaction hardening

Browse Source 
Implements the first pragmatic slice of issue #3627 / #410:
- add agent-facing  tool with list/check/request/delete/inject
  actions
- reuse existing secure CLI secret capture path via getpass-backed callback
  so secret values never enter model context
- support  as an alias for the existing
   skill frontmatter
- redact execute_code stdout/stderr before returning tool output
- expand redaction patterns for Twilio SIDs and JWTs
- register the new tool in discovery/core toolsets and add regression tests

Gateway DM+delete secret capture remains scoped as follow-up work per the
Phase 1 issue discussion.
This commit is contained in:
Shannon Sands
2026-03-29 09:44:17 +10:00
parent f007284d05
commit c1ef64a0ac
13 changed files with 544 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
tests/test_model_tools.py
View File

@@ -88,6 +88,7 @@ class TestBackwardCompat:
# Should contain well-known tools
assert "web_search" in names
assert "terminal" in names
assert "secrets" in names
def test_get_toolset_for_tool(self):
result = get_toolset_for_tool("web_search")