← Back to Skills Marketplace

hermes-traffic-guardian

Name: hermes-traffic-guardian
Author: davida-ps

by davida-ps · GitHub ↗ · v0.0.1-beta3 · MIT-0

cross-platform ✓ Security Clean

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install clawsec-hermes-traffic-guardian

Description

Hermes runtime traffic monitoring baseline for opt-in proxy inspection, egress detection, and attestation-aware traffic posture.

README (SKILL.md)

Hermes Traffic Guardian

This is a baseline specification skill. It intentionally does not ship a proxy or runtime implementation yet.

Vercel Skills Installation

Install with the Vercel Skills CLI for this harness:

npx skills add prompt-security/clawsec --skill hermes-traffic-guardian -a hermes-agent -y

Release Artifact Verification

For standalone installs, verify the signed release manifest before trusting SKILL.md, skill.json, or the archive. The skill.json file is the package metadata/SBOM source, and the release pipeline signs checksums.json with the ClawSec release key.

set -euo pipefail

SKILL_NAME="hermes-traffic-guardian"
VERSION="0.0.1-beta3"
REPO="prompt-security/clawsec"
TAG="${SKILL_NAME}-v${VERSION}"
BASE="https://github.com/${REPO}/releases/download/${TAG}"
ZIP_NAME="${SKILL_NAME}-v${VERSION}.zip"
TMP_DIR="$(mktemp -d)"
trap 'rm -rf "$TMP_DIR"' EXIT

RELEASE_PUBKEY_SHA256="711424e4535f84093fefb024cd1ca4ec87439e53907b305b79a631d5befba9c8"

curl -fsSL "$BASE/checksums.json" -o "$TMP_DIR/checksums.json"
curl -fsSL "$BASE/checksums.sig" -o "$TMP_DIR/checksums.sig"
curl -fsSL "$BASE/signing-public.pem" -o "$TMP_DIR/signing-public.pem"
curl -fsSL "$BASE/$ZIP_NAME" -o "$TMP_DIR/$ZIP_NAME"
curl -fsSL "$BASE/SKILL.md" -o "$TMP_DIR/SKILL.md"
curl -fsSL "$BASE/skill.json" -o "$TMP_DIR/skill.json"

ACTUAL_PUBKEY_SHA256="$(openssl pkey -pubin -in "$TMP_DIR/signing-public.pem" -outform DER | shasum -a 256 | awk '{print $1}')"
if [ "$ACTUAL_PUBKEY_SHA256" != "$RELEASE_PUBKEY_SHA256" ]; then
  echo "ERROR: signing-public.pem fingerprint mismatch" >&2
  exit 1
fi

openssl base64 -d -A -in "$TMP_DIR/checksums.sig" -out "$TMP_DIR/checksums.sig.bin"
openssl pkeyutl -verify -rawin -pubin \
  -inkey "$TMP_DIR/signing-public.pem" \
  -sigfile "$TMP_DIR/checksums.sig.bin" \
  -in "$TMP_DIR/checksums.json" >/dev/null

hash_file() {
  if command -v shasum >/dev/null 2>&1; then
    shasum -a 256 "$1" | awk '{print $1}'
  else
    sha256sum "$1" | awk '{print $1}'
  fi
}

verify_manifest_file() {
  asset="$1"
  path="$2"
  expected="$(jq -r --arg asset "$asset" '.files[$asset].sha256 // empty' "$TMP_DIR/checksums.json")"
  if [ -z "$expected" ]; then
    echo "ERROR: checksums.json missing $asset" >&2
    exit 1
  fi
  actual="$(hash_file "$path")"
  if [ "$actual" != "$expected" ]; then
    echo "ERROR: checksum mismatch for $asset" >&2
    exit 1
  fi
}

expected_archive="$(jq -r '.archive.sha256 // empty' "$TMP_DIR/checksums.json")"
if [ -z "$expected_archive" ]; then
  echo "ERROR: checksums.json missing archive.sha256" >&2
  exit 1
fi
actual_archive="$(hash_file "$TMP_DIR/$ZIP_NAME")"
if [ "$actual_archive" != "$expected_archive" ]; then
  echo "ERROR: archive checksum mismatch" >&2
  exit 1
fi

verify_manifest_file "SKILL.md" "$TMP_DIR/SKILL.md"
verify_manifest_file "skill.json" "$TMP_DIR/skill.json"

echo "Signed release manifest, archive, SKILL.md, and skill.json verified."

Only install or extract the archive after this verification succeeds.

Scope

Builders should use this skill as the Hermes landing zone for runtime traffic monitoring:

operator-scoped HTTP proxy inspection
optional HTTPS inspection with per-process CA trust
outbound exfiltration detection
inbound injection detection
redacted local threat logs
status export for hermes-attestation-guardian

Do not add proxy runtime ownership to hermes-attestation-guardian. That skill should attest this monitor's status and configuration, not run it.

Safety Contract

Opt-in only.
Detect-and-log by default.
No automatic system CA installation.
No global proxy environment changes.
No blocking in the first implementation.
Redact secrets before logs, summaries, or attestation-linked outputs.
Keep all state under HERMES_TRAFFIC_GUARDIAN_HOME or $HERMES_HOME/security/traffic-guardian.

Builder Entry Points

Read SPEC.md before implementing. Use the placeholder folders as follows:

Path	Intended use
`lib/`	Detector rules, redaction, posture export, report formatting
`scripts/`	Start, stop, status, config validation, log query, attestation export helpers
`test/`	Unit tests, proxy fixture tests, redaction tests, attestation export tests

Required First Implementation Behavior

Validate config without starting the proxy.
Start monitor in foreground or explicit background mode.
Scope proxy environment variables to the target Hermes service or CLI process.
Inspect HTTP request/response text up to a bounded byte limit.
Support optional HTTPS MITM only when the operator supplies per-process trust configuration.
Emit JSONL findings with redacted snippets.
Export a small posture JSON file that hermes-attestation-guardian can include as a trust anchor or watched file.

Out of Scope for v0.0.1 Implementation

automatic system trust-store mutation
transparent network interception
default blocking
sending traffic to external services
collecting full request/response bodies

Usage Guidance

Install only if you intend to run self-testing or security-check workflows. Use it on projects you control, review any generated findings before acting, and avoid pointing it at third-party systems without authorization.

Capability Tags

cryptorequires-walletrequires-sensitive-credentials

Capability Assessment

✓ Purpose & Capability

The available metadata and diagnostics describe a self-pen-testing skill with supporting JavaScript helpers and tests; that capability is coherent with its stated purpose.

ℹ Instruction Scope

Because self-testing and security-audit guidance can involve probing code or running helper scripts, users should keep it scoped to systems and files they own or are authorized to test.

✓ Install Mechanism

No hidden installer, obfuscated setup, automatic persistence hook, or unexpected package-management behavior was evident from the supplied scan context and available diagnostics.

ℹ Credentials

Local script execution and project inspection are proportionate for a self-pen-testing helper, provided the user intentionally runs it in the target project.

✓ Persistence & Privilege

There is no artifact-backed evidence of credential harvesting, background workers, privilege escalation, destructive actions, or outbound data exfiltration.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install clawsec-hermes-traffic-guardian
After installation, invoke the skill by name or use /clawsec-hermes-traffic-guardian
Provide required inputs per the skill's parameter spec and get structured output

Version History

v0.0.1-beta3

Release 0.0.1-beta3 via CI

Metadata

Slug clawsec-hermes-traffic-guardian

Version 0.0.1-beta3

License MIT-0

All-time Installs 0

Active Installs 0

Total Versions 1

Frequently Asked Questions

What is hermes-traffic-guardian?

Hermes runtime traffic monitoring baseline for opt-in proxy inspection, egress detection, and attestation-aware traffic posture. It is an AI Agent Skill for Claude Code / OpenClaw, with 32 downloads so far.

How do I install hermes-traffic-guardian?

Run "/install clawsec-hermes-traffic-guardian" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is hermes-traffic-guardian free?

Yes, hermes-traffic-guardian is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does hermes-traffic-guardian support?

hermes-traffic-guardian is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created hermes-traffic-guardian?

It is built and maintained by davida-ps (@davida-ps); the current version is v0.0.1-beta3.

More Skills