#credentials

2 articles

Your Cron Jobs Were Leaking Secrets — Hermes Just Fixed the Security Hole

Hermes cron jobs were running under the wrong secret scope. A fix ensures every scheduled task uses the correct profile credential…

Hermes Just Plugged a Secret Leak You Probably Didn't Notice

Hermes added a case-insensitive .env file guard. If you thought naming a file '.ENV' would bypass detection — it won't anymore.