hermes-agent-optimization

SUSPICIOUS. Most content is legitimate Hermes administration guidance, but the trust model is weak: a raw GitHub bootstrap script from a different publisher runs as root, and unpinned external MCP tools receive sensitive credentials. Combined with broad autonomous action surfaces and untrusted inbound content, the skill is high risk even without clear evidence of confirmed malware.