[IMPROVEMENT] Skills in ~/.hermes/skills/ are unversioned hand-edited markdown

[ether-btc]

Severity: Medium

Problem: Skills stored in ~/.hermes/skills/ are hand-edited markdown files with no version history, no diff capability, and no rollback path. A bad skill patch silently corrupts future agent behavior — the agent just loads the wrong skill without warning. This is especially risky because skills encode exact tool commands, pitfalls, workflow conventions, and user preferences.

Proposed fix options:

1. Git-backed skills — make ~/.hermes/skills/ a git repo and commit on every skill write
2. Skill versioning in Mnemosyne — store skill versions as memories with timestamps, allow rollback via skill_manage
3. Signed skills — HMAC-tag skill content to detect silent corruption

Option 1 is simplest to implement; Option 2 leverages existing Mnemosyne infrastructure.

[sg-shag]

Sharing our approach as a practical workaround / alternative to Option 1:

We solved this today with a different pattern — instead of making ~/.hermes/skills/ itself a git repo (which conflicts with hermes update logic), we set up a separate git repo (my-hermes) with a daily sync script.

How it works:

• sync-my-skills.py reads .bundled_manifest (same hash algo as skills_sync.py) and copies only user-created and user-modified skills into my-hermes/my-skills/
• For each modified bundled skill it writes a bundled.diff alongside the skill
• A daily cron runs hermes-git-sync.sh which calls the sync, commits, and pushes
• Morning brief gets the git diff — shows exactly what changed

Benefits over Option 1:

• No conflict with hermes update logic (which manages ~/.hermes/skills/ directly)
• bundled.diff makes it clear what you changed vs upstream
• Clean separation: bundled skills are not in your personal repo
• Works today, no hermes code changes needed

Script available if useful for docs/examples.

[ether-btc]

Great workaround — clean separation without touching hermes internals is exactly the right trade-off. A few questions:

1. Does your sync script handle skill deletions (i.e., when a user removes a skill)?
2. What's the push destination — GitHub private repo, self-hosted git server, or something else?

If you're willing to share the script, I'd like to review it for the docs/examples section. The bundled.diff approach is particularly clever — it solves the "what did I change from upstream" problem without maintaining full copies.

[sg-shag]

Published as a standalone community skill: https://github.com/shared-goals/hermes-git-sync

Install via tap:

hermes skills tap add shared-goals/hermes-git-sync
hermes skills install hermes-git-sync

The skill repo itself lives at ~/.hermes/skills/devops/hermes-git-sync/ with .git inside — so the skill directory IS the git repo. Edit locally, push directly, no sync step needed.

[creationsunitassistant]

Cross-linking from the Hermes Masterclass Roadmap umbrella (#33418).

This issue is part of the "Skills should behave like a living library" theme — it addresses the lack of versioning for hand-edited skill markdown files, which makes it impossible to diff or roll back a bad skill patch.

Related issues in this theme: #27997 (protection policy), #26655 (archival bug), #29017 (curator docs), #28213 (lifecycle transparency), #33314 (post-update drift hooks).