Generates deterministic Hermes posture attestations, verifies them with fail-closed integrity checks, and compares current state against authenticated baselines to detect drift. It provides operator-focused commands to generate, verify, and refresh advisory feeds, and includes guarded verification gates to prevent installing untrusted skill releases.
Use this skill when you operate Hermes-managed gateways or agent runtimes and need cryptographic assurance of runtime posture, release authenticity, or baseline drift detection. Ideal for operators who must enforce signed release installs and automated attestation-based monitoring.
scripts/*.mjs utilities for generate_attestation, verify_attestation, refresh_advisory_feed, check_advisories, guarded_skill_verify, and scheduler helpers (has_scripts=true)Compatible with Hermes/NanoClaw/OpenClaw operator toolchains; requires node runtime for scripts. It is operator-focused and not a runtime hook for OpenClaw agents.
This skill has not been reviewed by our automated audit pipeline yet.
