← All integrations
Hermes Integration · Beta

Hermes connects over OAuth. No token on disk.

Hermes is a full MCP client, so it talks to AgentValet the way it already talks to any MCP server. Connect it over OAuth and the agent is issued an identity, not raw credentials - then every platform call runs through scoped credentials, deny-by-default rules, and a full audit trail. This integration is in beta. The connect flow is proven; want early access? Talk to us.

Setup

Copy one snippet. Approve in the browser.

In the AgentValet dashboard, the Add to Hermes action builds your connection snippet from your owner id alone. There is nothing secret to copy: the snippet is a config.yaml block with auth: oauth plus a matching hermes mcp add command. No token, no bearer, no api key in the output.

~/.hermes/config.yaml 
mcp_servers:
  agentvalet:
    url: https://api.agentvalet.ai/mcp/v1/<your-owner-id>
    auth: oauth
    timeout: 60
1
Sign in at app.agentvalet.ai (it's free) and open the Agents page.
2
Click Add to Hermes. Paste the config.yaml block, or run the hermes mcp add command it gives you. Both are built from your owner id - no key to handle.
3
Start Hermes. On first use it connects over OAuth and you approve a fresh agent in your browser. The agent gets an identity, not a stored credential.
4
Approve platforms in the dashboard. Set what the agent can call. Every request is then scoped, checked, and logged.
Identity, not credentials - because Hermes connects over OAuth, the agent never holds a long-lived token on disk. AgentValet's consent flow provisions the agent its own signing identity, and stamps it with the hermes agent type so its actions are attributable in the audit log.
Prefer the command line?

The dashboard snippet is the recommended path. If you'd rather wire it up from the terminal, the Add to Hermes action also gives you the equivalent hermes mcp add agentvalet --url … command, built from the same owner id. Either way the connection uses OAuth, so no secret ever lands in your config.

What changes

Autonomous agent, governed platform access

No token on disk
Hermes connects over OAuth and is provisioned an identity, not raw credentials. There is no long-lived bearer or api key sitting in a config file to leak.
Permission matrix
Each platform call is validated against the permission matrix you set in the dashboard - deny-by-default, explicit allow required per scope.
Human approval on risk
Destructive and financial calls can require a human to approve before they run. The agent waits; nothing risky happens behind your back.
Full audit trail
Every call is logged: which agent, which platform, which action, exact timestamp. The Hermes agent type ties each row back to a verifiable identity.

Govern Hermes in under 5 minutes.

Copy one snippet. Approve in the browser. Free to start, no credit card.

Connect AgentValet to Hermes →