Skip to content
Hermes Agent edited this page Jul 11, 2026 · 3 revisions

MiniCISO

MiniCISO is a public, reproducible security overlay for Hermes Agent. It packages a security-focused operating model, a coordinator profile, specialized SMEs, templates, and guardrails for evidence-driven engagements.

This page is explanatory. The canonical project files are maintained in the main repository: README.md and docs/.

What MiniCISO is

MiniCISO is:

  • a reproducible overlay, not a fork of Hermes;
  • a public profile set for structured security work;
  • an operating model with explicit delegation, evidence discipline, and QA gates;
  • a documentation and tooling layer that stays versioned with the overlay.

What problem it solves

Security work often degrades when context is incomplete, evidence is mixed with inference, or intermediate analysis bypasses quality review. MiniCISO tries to reduce those failure modes by making the workflow explicit:

  • intake and scoping before conclusions;
  • evidence collection before narrative;
  • SME specialization instead of one undifferentiated generalist;
  • mandatory Security QA before final delivery.

What it is not

MiniCISO is not:

  • a replacement for human authorization or accountable judgment;
  • a blanket license for offensive activity;
  • a promise that scanner output is automatically a finding;
  • a Hermes core fork.

Relationship to Hermes Agent

MiniCISO runs on top of Hermes Agent. The runtime is pinned by version and commit, and the overlay adds:

  • profile definitions;
  • prompts and policies;
  • templates and playbooks;
  • public documentation and safe export patterns.

Key capabilities

  • coordinated security assessments through chief-of-staff
  • specialized SMEs for threat modeling, architecture, code review, AppSec, compliance, recon, offensive validation, and QA
  • KAG-oriented pre-submission finding validation
  • post-submission follow-up workflow
  • Headroom/KAG selective retrieval for structured artifact handling
  • safe public self-update of selected non-secret artifacts

Security staff at a glance

MiniCISO uses this high-level flow:

User -> chief-of-staff -> specialized SME(s) -> security-qa -> chief-of-staff -> user

See Meet the Staff for the public profile catalog.

Start here

Clone this wiki locally