Are people really giving Hermes access to all their personal accounts?
I am having a hard time finding posts that address this topic.
How do we safely integrate tools and give hermes account access to personal accounts?
Things like, email, reddit, social media, to do list apps - basically anything that we can use for automations?
Surely giving it the username and password is a bad idea lol. How much control does it have over MCP?
I keep hearing about Agent Vault but thats only for APIs. What about login credentials like username and passwords?
I see people connecting their phones, letting it get access to personal accounts everywhere. Are you guys not even a little worried about security?
Prompt injections can expose all that can it not?
How are you sane people handling things like this?