Security and Governance

Keep every agent inside a controlled runtime boundary

Bewize frames security around tenant isolation, runtime identity, managed secrets, access controls, policy APIs, storage boundaries, browser sidecar isolation, evaluation evidence, and redacted metrics. Public copy should stay specific and avoid unsupported blanket guarantees.

Hermes Hub secrets and tenant environment screen showing managed secret metadata and tenant environment key management.

Governance controls

The current source-backed implementation includes per-tenant runtime isolation, one Unix user per tenant in production provisioning, managed secrets, tenant environment secret APIs, agent policy APIs, access blocking, restricted rsync access, and tenant-safe launch patterns.

Hermes Hub policy and skills screen showing tenant policy, installed skill inventory, hub policy, and tenant override state.

Tenant isolation

Separate runtime state for employees, teams, and agents.

Managed secrets

Keep tenant credentials under central operational control.

Policy APIs

Control features and runtime behavior centrally and per tenant.

Operational outcome

Enterprise adoption can scale without merging agent identities or private state.

Secret metadata without secret exposure

The latest admin proof creates a tenant OAuth secret and a tenant environment key, then verifies that raw secret markers are absent from both UI text and returned API metadata. Public claims should stay this specific: secret values are not shown in the admin surface used by the proof.

Hermes Hub secrets and environment screen showing OAuth secret metadata, provider status, next refresh, and tenant environment key controls without raw secret values.

Managed secret metadata

The UI shows name, scope, provider, status, next refresh, and refresh/delete controls.

Tenant env keys

Operators can write tenant environment keys while the stored value is not rendered back into the UI.

Tenant scope

Secrets and environment keys are shown against the selected tenant boundary.

Redaction proof

The Playwright proof checked that raw secret markers were absent from UI text and API metadata.

Operational outcome

Operations can manage tenant credentials without turning the admin UI into a place where secret values are casually copied.

Discuss agent governance

+1 332 2081410
[email protected]

By submitting this form you accept our Privacy Policy and Terms of Use.