hermes-studio

Name: hermes-studio
Author: EKKOLearnAI

by EKKOLearnAI

Issues

Web dashboard for Hermes Agent — multi-platform AI chat, session management, scheduled jobs, usage analytics

7,937stars

973forks

TypeScript

Added 6/15/2026

View on GitHub Download ZIP Scan for vulnerabilities

Requires a passing catalog security scan. Resolve the flagged issues and resubmit to enable featuring.

AI Agents Hermes Agent Hubagentai-agentchat-uidashboardhermeshermes-agenthermes-web-uillmmulti-modelmulti-platformself-hostedtypescriptvue3web-ui

Installation

# Add to your Claude Code skills
git clone https://github.com/EKKOLearnAI/hermes-studio

Getting Started

Guides for using ai agents skills like hermes-studio.

Security ReportIssues

Last scanned: 6/15/2026

{
  "issues": [
    {
      "type": "npm-audit",
      "message": "@vitest/coverage-v8: Vulnerability found",
      "severity": "critical"
    },
    {
      "type": "npm-audit",
      "message": "@vitest/mocker: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "concurrently: Vulnerability found",
      "severity": "critical"
    },
    {
      "type": "npm-audit",
      "message": "dompurify: DOMPurify contains a Cross-site Scripting vulnerability",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "esbuild: esbuild: Missing binary integrity verification in Deno module enables remote code execution via NPM_CONFIG_REGISTRY",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "monaco-editor: Vulnerability found",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "shell-quote: shell-quote quote() does not escape newlines in object .op values",
      "severity": "critical"
    },
    {
      "type": "npm-audit",
      "message": "vite: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "vite-node: Vulnerability found",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "vitest: Vulnerability found",
      "severity": "critical"
    },
    {
      "file": "packages/skills/apikey-image-gen/SKILL.md",
      "line": 31,
      "type": "secret-exfiltration",
      "message": "Instruction appears to send credentials/secrets to an external endpoint",
      "severity": "medium"
    },
    {
      "file": "packages/skills/apikey-image-gen/SKILL.md",
      "line": 155,
      "type": "secret-exfiltration",
      "message": "Instruction appears to send credentials/secrets to an external endpoint",
      "severity": "medium"
    }
  ],
  "status": "FAILED",
  "scannedAt": "2026-06-15T10:23:35.798Z",
  "npmAuditRan": true,
  "pipAuditRan": true,
  "promptInjectionRan": true
}

README.md

Core Capabilities

Area	What Hermes Studio does
Agent chat	Runs Hermes Agent conversations with streaming responses, tool traces, file upload/download, and persistent local sessions.
Local control plane	Manages profiles, providers, models, credentials, memory, skills, plugins, logs, and runtime settings from one dashboard.
Automation	Configures platform channels, cron jobs, Kanban tasks, group-chat rooms, and MCP servers around the same Hermes profiles.
Workspace tools	Provides a file browser, web terminal, voice input/output, coding-agent runners, device discovery, and performance views.
Distribution	Ships as a desktop app for Windows/macOS/Linux, an npm CLI package, and a Docker image.

Features

AI Chat

Real-time chat streaming over Socket.IO /chat-run; chat runs execute through the Hermes agent bridge
Multi-session management — create, rename, delete, switch between sessions
Self-built session database — local SQLite storage for Web UI sessions; Hermes state.db remains a read-only source for Hermes history APIs
Session grouping by source (Telegram, Discord, Slack, etc.) with collapsible accordion
Active session indicator — live sessions pin to top with spinner icon
Sessions sorted by latest message time
Markdown rendering with syntax highlighting and code copy
Tool call detail expansion (arguments / result)
Profile-scoped file uploads
File download support — download uploaded files and agent-generated files by resolved path across local, Docker, SSH, and Singularity backends
Session search — Ctrl+K search across the Web UI local session database; read-only Hermes history sessions are not included
Profile-aware model selector — discovers models available to the signed-in account through authorized Hermes profiles
Per-session model display badge and context token usage

Platform Channels

Unified configuration for 8 platforms in one page:

Platform	Features
Telegram	Bot token, mention control, reactions, free-response chats
Discord	Bot token, mention, auto-thread, reactions, channel allow/ignore lists
Slack	Bot token, mention control, bot message handling
WhatsApp	Enable/disable, mention control, mention patterns
Matrix	Access token, homeserver, auto-thread, DM mention threads
Feishu (Lark)	App ID / Secret, mention control
WeChat	QR code login (scan in browser, auto-save credentials)
WeCom	Bot ID / Secret

Credential management writes to ~/.hermes/.env
Channel behavior settings write to ~/.hermes/config.yaml
Per-platform configured/unconfigured status detection

Usage Analytics

Total token usage breakdown (input / output)
Session count with daily average
Estimated cost tracking & cache hit rate
Model usage distribution chart
30-day daily trend (bar chart + data table)

Scheduled Jobs

Create, edit, pause, resume, delete cron jobs
Trigger immediate execution
Cron expression quick presets

Kanban

Profile-aware Kanban board for planning and tracking agent work
Task creation, updates, and status movement from the dashboard
Shared with the same local Web UI state and authentication model

Model Management

Auto-discover models from credential pool (~/.hermes/auth.json)
Fetch available models from each provider endpoint (/v1/models)
Add, update, and delete providers (preset & custom OpenAI-compatible)
OpenAI Codex & Nous Portal OAuth login
Provider URL auto-detection for non-v1 API versions (e.g. /v4)
Provider-level model grouping with default model switching

Multi-Profile

Create, rename, delete, and switch between Hermes profiles
Clone existing profile or import from archive (.tar.gz)
Export profile for backup or sharing
Profile-scoped configuration, cache, uploads, sessions, jobs, usage, memory, skills, plugins, providers, and model visibility
Account-bound profile access: super administrators can manage every profile; regular administrators only see and use profiles assigned to their account

File Browser

Browse files on remote backends (local, Docker, SSH, Singularity)
Upload, download, rename, copy, move, and delete files
Store uploaded files under the selected/requested Hermes profile while keeping downloads path-based for agent-generated artifacts outside the upload directory
Create directories
View file content with syntax highlighting

Group Chat

Multi-agent chat rooms with real-time messaging via Socket.IO
@mention routing — mention an agent to trigger a contextual reply
Context compression — automatic conversation summarization when history exceeds token threshold
Typing status and reply progress indicators
Room creation, deletion, and invite code management
Agent management — add/remove agents from rooms with per-agent profiles
SQLite message persistence
Mobile responsive with collapsible sidebar

Coding Agents

Launch and monitor local coding-agent sessions from the web dashboard
Dedicated proxy routes for Codex and Claude Code integrations
Stores agent output and reasoning metadata for later inspection

Skills & Memory

Browse and search installed skills
View skill details and attached files
User notes and profile management

Logs

View agent / server / error logs
Filter by log level, log file, and keyword
Structured log parsing with HTTP access log highlighting

Admin & Runtime Management

Device and LAN peer views for local-network discovery and peer tooling
MCP manager for the managed hermes-studio MCP server and profile injection
Runtime version and version-preview tooling for testing newer builds in isolation
Performance monitor views for super administrators

Authentication

Token-based auth (auto-generated on first run or set via AUTH_TOKEN env var)
Username/password login with account management in Settings
Default bootstrap credentials are admin / 123456; users are prompted after login to change the default username and password
Super administrators can manage users and profile bindings; regular administrators can manage their own account details

CLI maintenance commands:

# Delete persisted login IP lock records
hermes-web-ui clear-login-locks

# Delete login locks and restart the running Web UI process
hermes-web-ui clear-login-locks --restart

# Create or reset the default super administrator login to admin / 123456
hermes-web-ui reset-default-login

clear-login-locks removes ${HERMES_WEB_UI_HOME:-~/.hermes-web-ui}/.login-lock.json. If the server is running, restart it to clear in-memory lock state. reset-default-login updates the Web UI account database; if an admin user already exists, its password is reset to 123456 and the account is enabled as a super administrator.

Settings

Display (streaming, compact mode, reasoning, cost display)
Agent (max turns, timeout, tool enforcement)
Memory (enable/disable, char limits)
Session reset (idle timeout, scheduled reset)
Privacy (PII redaction)
Model settings (default model & provider)
Profile and provider configuration

Voice / TTS / STT

Read assistant replies aloud from chat and group-chat messages.
Providers: browser Web Speech, built-in Edge TTS, OpenAI-compatible /audio/speech, custom OpenAI-compatible TTS endpoints, and MiMo.
MiMo supports preset voices, voice design prompts, and voice clone reference audio (.mp3/.wav, max 10 MB) with selectable auth header mode (Authorization, api-key, or both).
Edge/OpenAI-compatible/custom/MiMo playback uses the Web UI backend's unified /api/hermes/tts/synthesize endpoint, so stop/pause state is shared and in-flight fetches are aborted when possible.
Provider API keys and MiMo clone reference audio are saved in server-side TTS settings, with only masked secret status shown back to the browser.
Save provider settings in Settings → Voice before using OpenAI/custom/MiMo playback. Message playback sends text and non-secret playback options; the backend reads the stored per-user secret when synthesizing.
Turn-based voice input is available from the chat input mic control: start/stop a voice turn, transcribe it, stage the transcript in the curren

Frequently Asked Questions

What is hermes-studio?

hermes-studio is an open-source ai agents skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by EKKOLearnAI. Web dashboard for Hermes Agent — multi-platform AI chat, session management, scheduled jobs, usage analytics. It has 7,937 GitHub stars.

Is hermes-studio safe to use?

hermes-studio failed SkillsLLM's automated security scan, which flagged one or more high-severity issues. Review the Security Report section carefully before using it.

How do I install hermes-studio?

Clone the repository with "git clone https://github.com/EKKOLearnAI/hermes-studio" and add it to your Claude Code skills directory (see the Installation section above).

What programming language is hermes-studio written in?

hermes-studio is primarily written in TypeScript. It is open-source under EKKOLearnAI on GitHub, so you can review or fork the full source.

Are there alternatives to hermes-studio?

Yes. SkillsLLM lists many other AI Agents skills you can browse and compare side by side. Open the AI Agents category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh hermes-studio against similar tools.

Agentic AI for Beginners

Build your first AI agent from scratch - tool use, ReAct pattern, memory, deployment

41 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

ECC

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

215,726

33,155

JavaScript

AI Agentsai-agentsanthropic

The agent that grows with you

193,893

33,936

Python

AI Agentsaiai-agent

View details

Compare

n8n

by n8n-io

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

192,574

58,559

TypeScript

MCP Serversaiapis

View details

Compare

everything-claude-code

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

185,940

28,768

JavaScript

AI Agentsai-agentsanthropic

View details

Compare

claude-code

by anthropics

Claude Code is an agentic coding tool that lives in your terminal, understands your codebase, and helps you code faster by executing routine tasks, explaining complex code, and handling git workflows - all through natural language commands.

120,031

19,897

Shell

AI Agents

An open-source AI agent that brings the power of Gemini directly into your terminal.

105,291

14,068

TypeScript

AI Agentsaiai-agents

View details

Compare

Browse all AI Agents skills

QuantDinger hermes-web-ui

Core Capabilities

Area	What Hermes Studio does
Agent chat	Runs Hermes Agent conversations with streaming responses, tool traces, file upload/download, and persistent local sessions.
Local control plane	Manages profiles, providers, models, credentials, memory, skills, plugins, logs, and runtime settings from one dashboard.
Automation	Configures platform channels, cron jobs, Kanban tasks, group-chat rooms, and MCP servers around the same Hermes profiles.
Workspace tools	Provides a file browser, web terminal, voice input/output, coding-agent runners, device discovery, and performance views.
Distribution	Ships as a desktop app for Windows/macOS/Linux, an npm CLI package, and a Docker image.

Features

AI Chat

Real-time chat streaming over Socket.IO /chat-run; chat runs execute through the Hermes agent bridge
Multi-session management — create, rename, delete, switch between sessions
Self-built session database — local SQLite storage for Web UI sessions; Hermes state.db remains a read-only source for Hermes history APIs
Session grouping by source (Telegram, Discord, Slack, etc.) with collapsible accordion
Active session indicator — live sessions pin to top with spinner icon
Sessions sorted by latest message time
Markdown rendering with syntax highlighting and code copy
Tool call detail expansion (arguments / result)
Profile-scoped file uploads
File download support — download uploaded files and agent-generated files by resolved path across local, Docker, SSH, and Singularity backends
Session search — Ctrl+K search across the Web UI local session database; read-only Hermes history sessions are not included
Profile-aware model selector — discovers models available to the signed-in account through authorized Hermes profiles
Per-session model display badge and context token usage

Platform Channels

Unified configuration for 8 platforms in one page:

Platform	Features
Telegram	Bot token, mention control, reactions, free-response chats
Discord	Bot token, mention, auto-thread, reactions, channel allow/ignore lists
Slack	Bot token, mention control, bot message handling
WhatsApp	Enable/disable, mention control, mention patterns
Matrix	Access token, homeserver, auto-thread, DM mention threads
Feishu (Lark)	App ID / Secret, mention control
WeChat	QR code login (scan in browser, auto-save credentials)
WeCom	Bot ID / Secret

Credential management writes to ~/.hermes/.env
Channel behavior settings write to ~/.hermes/config.yaml
Per-platform configured/unconfigured status detection

Usage Analytics

Total token usage breakdown (input / output)
Session count with daily average
Estimated cost tracking & cache hit rate
Model usage distribution chart
30-day daily trend (bar chart + data table)

Scheduled Jobs

Create, edit, pause, resume, delete cron jobs
Trigger immediate execution
Cron expression quick presets

Kanban

Profile-aware Kanban board for planning and tracking agent work
Task creation, updates, and status movement from the dashboard
Shared with the same local Web UI state and authentication model

Model Management

Auto-discover models from credential pool (~/.hermes/auth.json)
Fetch available models from each provider endpoint (/v1/models)
Add, update, and delete providers (preset & custom OpenAI-compatible)
OpenAI Codex & Nous Portal OAuth login
Provider URL auto-detection for non-v1 API versions (e.g. /v4)
Provider-level model grouping with default model switching

Multi-Profile

Create, rename, delete, and switch between Hermes profiles
Clone existing profile or import from archive (.tar.gz)
Export profile for backup or sharing
Profile-scoped configuration, cache, uploads, sessions, jobs, usage, memory, skills, plugins, providers, and model visibility
Account-bound profile access: super administrators can manage every profile; regular administrators only see and use profiles assigned to their account

File Browser

Browse files on remote backends (local, Docker, SSH, Singularity)
Upload, download, rename, copy, move, and delete files
Store uploaded files under the selected/requested Hermes profile while keeping downloads path-based for agent-generated artifacts outside the upload directory
Create directories
View file content with syntax highlighting

Group Chat

Multi-agent chat rooms with real-time messaging via Socket.IO
@mention routing — mention an agent to trigger a contextual reply
Context compression — automatic conversation summarization when history exceeds token threshold
Typing status and reply progress indicators
Room creation, deletion, and invite code management
Agent management — add/remove agents from rooms with per-agent profiles
SQLite message persistence
Mobile responsive with collapsible sidebar

Coding Agents

Launch and monitor local coding-agent sessions from the web dashboard
Dedicated proxy routes for Codex and Claude Code integrations
Stores agent output and reasoning metadata for later inspection

Skills & Memory

Browse and search installed skills
View skill details and attached files
User notes and profile management

Logs

View agent / server / error logs
Filter by log level, log file, and keyword
Structured log parsing with HTTP access log highlighting

Admin & Runtime Management

Device and LAN peer views for local-network discovery and peer tooling
MCP manager for the managed hermes-studio MCP server and profile injection
Runtime version and version-preview tooling for testing newer builds in isolation
Performance monitor views for super administrators

Authentication

Token-based auth (auto-generated on first run or set via AUTH_TOKEN env var)
Username/password login with account management in Settings
Default bootstrap credentials are admin / 123456; users are prompted after login to change the default username and password
Super administrators can manage users and profile bindings; regular administrators can manage their own account details

CLI maintenance commands:

# Delete persisted login IP lock records
hermes-web-ui clear-login-locks

# Delete login locks and restart the running Web UI process
hermes-web-ui clear-login-locks --restart

# Create or reset the default super administrator login to admin / 123456
hermes-web-ui reset-default-login

Settings

Display (streaming, compact mode, reasoning, cost display)
Agent (max turns, timeout, tool enforcement)
Memory (enable/disable, char limits)
Session reset (idle timeout, scheduled reset)
Privacy (PII redaction)
Model settings (default model & provider)
Profile and provider configuration

Voice / TTS / STT

Read assistant replies aloud from chat and group-chat messages.
Providers: browser Web Speech, built-in Edge TTS, OpenAI-compatible /audio/speech, custom OpenAI-compatible TTS endpoints, and MiMo.
MiMo supports preset voices, voice design prompts, and voice clone reference audio (.mp3/.wav, max 10 MB) with selectable auth header mode (Authorization, api-key, or both).
Edge/OpenAI-compatible/custom/MiMo playback uses the Web UI backend's unified /api/hermes/tts/synthesize endpoint, so stop/pause state is shared and in-flight fetches are aborted when possible.
Provider API keys and MiMo clone reference audio are saved in server-side TTS settings, with only masked secret status shown back to the browser.
Save provider settings in Settings → Voice before using OpenAI/custom/MiMo playback. Message playback sends text and non-secret playback options; the backend reads the stored per-user secret when synthesizing.
Turn-based voice input is available from the chat input mic control: start/stop a voice turn, transcribe it, stage the transcript in the curren