Independent scanner for Hermes WebUI operators

Hermes WebUI deployment readiness scanner

Scan a redacted Hermes WebUI install, Docker, WSL2, SSH tunnel, or gateway plan and get a launch score, risk receipt, and paid Team report before a self-hosted agent browser surface goes live.

Input: redacted config, compose, onboarding status, or launch notes Process: auth, workspace, provider, cron, gateway, and access-path checks Output: readiness score, blockers, launch receipt, and exportable plan

View pricing plans

Deployment target Access path

Password auth set State backup planned Workspace mount verified Provider chat-ready

82readiness

76security

88operations

Preview receipt

Warning: Gateway mode needs secret status verification before launch.
Pass: Localhost binding and password protection reduce exposure risk.
Next: Confirm provider chat readiness and state backup.

MIT upstreamCommercial use allowed by the open-source license.

Hermes-specificChecks memory, skills, cron, workspace, provider, and WebUI access assumptions.

Paid evidenceTeam reports include owner notes, export receipts, and launch sequence guidance.

Hermes Agent web UI

Turn a fragile self-hosted agent UI launch into a reviewable workflow.

Hermes WebUI is valuable because it brings browser access to a persistent agent. Launch Lab focuses on the operational edge cases that decide whether that browser surface is safe, reachable, and useful for the intended workspace.

Collect redacted evidence

Use non-secret config fragments, compose structure, health summaries, and onboarding status. Secrets stay out of the browser text area.

Score the launch path

Check host binding, password state, workspace mounts, provider readiness, gateway mode, cron expectations, and state backup.

Export a paid receipt

Team checkout unlocks a shareable launch receipt with blockers, owner notes, validation steps, and repeatable report history.

Hermes WebUI Launch Lab readiness dashboard

Sample output

Evidence that an operator can act on.

Every report follows a problem, check, evidence, and next action structure so a teammate can understand why a launch is blocked or ready.

Security gate

Flags direct public exposure, missing password protection, unsafe reverse proxy assumptions, and unclear tunnel behavior.

Score: 76 / 100

Runtime gate

Checks provider readiness, gateway API key presence, chat backend choice, and model/base URL consistency without revealing credentials.

Score: 82 / 100

Workspace gate

Reviews workspace mounts, state directory, memory path expectations, file preview reachability, and backup readiness.

Score: 88 / 100

Pricing

Plans for one launch, a team rollout, or a hosted fleet.

Prices are monthly USD. Annual billing is selected by default and saves 50%.

Solo operators

Starter

$39/mo

Annual billing saves 50%. Annual is $234/year.

3 readiness scans per month

Redacted config and log scan
Docker, WSL, and VM readiness checks
Security review with password and tunnel guidance
Downloadable launch receipt

Small agent teams

Team

$149/mo

Annual billing saves 50%. Team annual is $894/year.

30 scans plus shared reports

Everything in Starter
Gateway, provider, cron, and workspace risk scoring
Migration plan for Docker, WSL2, SSH tunnel, or reverse proxy setups
Team dashboard, issue owner notes, and paid report exports
Priority support for launch blockers

Hosted agent operators

Platform

$399/mo

Annual billing saves 50%. Annual is $2394/year.

Unlimited scans and API access

Everything in Team
Fleet workspace inventory
API access for CI and agent handoff receipts
Recurring readiness monitoring
Custom controls for multi-profile Hermes environments