#410 Fixed

Feature: Secure Secrets Management Tool — API Key Ingestion, Scoped Access, Redaction, and Skill Requirements

This umbrella issue described the lack of secure secret handling in Hermes: secrets stored as plaintext env vars fully exposed to subprocesses and file tools, with no mechanism for skills to safely request credentials; the issue is now closed.