ClawHub

Hermes Minimax Oauth

v1.0.1

Add MiniMax OAuth authentication support to Hermes Agent. Use when integrating MiniMax OAuth into Hermes, fixing MiniMax auth issues, or adding new OAuth pro...

0· 157·0 current·0 all-time
by@eddieguan801-oss

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for eddieguan801-oss/hermes-minimax-oauth.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Hermes Minimax Oauth" (eddieguan801-oss/hermes-minimax-oauth) from ClawHub.
Skill page: https://clawhub.ai/eddieguan801-oss/hermes-minimax-oauth
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install hermes-minimax-oauth

ClawHub CLI

Package manager switcher

npx clawhub@latest install hermes-minimax-oauth
Security Scan
Capability signals
Requires OAuth tokenRequires sensitive credentials
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description describe adding MiniMax OAuth and the SKILL.md only discusses adding OAuth-related constants, functions, and provider entries to Hermes source files — these requirements are coherent with the stated purpose. No unrelated binaries, env vars, or services are requested.
Instruction Scope
The instructions are scoped to implementing a specific OAuth flow (user_code + PKCE) and modifying Hermes code paths; referenced files (e.g., ~/.hermes/auth.json) and endpoints are consistent with an auth implementation. There are no instructions to read unrelated system files, access other credentials, or transmit data to unexpected endpoints.
Install Mechanism
There is no install spec and no code files — this is a textual implementation guide only, which is low-risk because it does not write or execute code by itself.
Credentials
The skill declares no required environment variables or credentials. It documents a public client_id and specific MiniMax endpoints, which is appropriate for implementing OAuth. No excessive or unrelated secrets are requested.
Persistence & Privilege
The skill does not request 'always' presence or system-wide configuration changes. It describes storing tokens in the agent's own auth file (~/.hermes/auth.json), which is expected for an auth provider implementation.
Assessment
This SKILL.md is a developer-facing implementation guide rather than executable code. If you plan to apply these changes: review any code changes before merging, confirm the client_id and endpoints with MiniMax documentation, ensure all requests use HTTPS and PKCE S256 as described, securely store tokens (restrict file permissions for ~/.hermes/auth.json), implement safe refresh/expiry handling, and test in a staging environment. Because the skill is instruction-only, it cannot act on your machine by itself, but any code you add following it will change the agent's authentication behavior — perform normal code review and security checks.

Like a lobster shell, security has layers — review code before you run it.

hermesvk97exznxc0tzjvt5zfza506a1x85mwahlatestvk97exznxc0tzjvt5zfza506a1x85mwahminimaxvk97exznxc0tzjvt5zfza506a1x85mwahoauthvk97exznxc0tzjvt5zfza506a1x85mwah
157downloads
0stars
2versions
Updated 9h ago
v1.0.1
MIT-0
@eddieguan801-oss
hermeslatestminimaxoauth
Download

Hermes MiniMax OAuth Skill

为 Hermes Agent 添加 MiniMax OAuth 登录支持。

功能

通过 hermes auth add minimax-oauth 命令实现 MiniMax 全球版或中国区 OAuth 登录。

工作原理

OAuth 流程(user_code + PKCE)

MiniMax 使用非标准的 user_code OAuth 流程,区别于常见的 device_code 流程:

1. POST /oauth/code          → 获取 user_code + verification_uri
2. 用户在浏览器打开 verification_uri,输入 user_code
3. POST /oauth/token         → 用 user_code + PKCE verifier 兑换 access_token
4. access_token 保存到 ~/.hermes/auth.json

关键差异:

  • 端点:/oauth/code/oauth/token(不是 /v1/oauth/*
  • grant_type:urn:ietf:params:oauth:grant-type:user_code
  • 需要 PKCE(S256 code_challenge)
  • scope:group_id profile model.completion

修改的文件

hermes_cli/auth.py

  • 新增常量DEFAULT_MINIMAX_OAUTH_*(portal URL、端点、client_id、scope)
  • 新增函数
    • _generate_pkce_pair() — 生成 PKCE verifier/challenge
    • _minimax_device_code_login() — 完整 OAuth 流程
    • resolve_minimax_oauth_runtime_credentials() — 运行时凭证解析
    • get_minimax_oauth_auth_status() — 登录状态查询
    • _refresh_minimax_access_token() — access_token 刷新
    • _is_minimax_token_expiring() — 过期检查
  • 新增 ProviderRegistry 条目minimax-oauthminimax-cn-oauth

hermes_cli/runtime_provider.py

  • _resolve_explicit_runtime() 中添加 minimax-oauth / minimax-cn-oauth 处理块

agent/auxiliary_client.py

  • OAuth provider 路由中添加 MiniMax 处理路径

hermes_cli/auth_commands.py

  • auth_add_command 支持 hermes auth add minimax-oauthhermes auth add minimax-cn-oauth

使用方法

# 全球版
hermes auth add minimax-oauth

# 中国版
hermes auth add minimax-cn-oauth

# 查看状态
hermes auth list

端点信息

区域Portal BaseCode EndpointToken Endpoint
Globalhttps://api.minimax.io/oauth/code/oauth/token
Chinahttps://api.minimaxi.com/oauth/code/oauth/token
  • Client ID: 78257093-7e40-4613-99e0-527b14b39113
  • Scope: group_id profile model.completion
  • Inference URL: https://api.minimax.io/v1 (global) / https://api.minimaxi.com/v1 (CN)

注意事项

  • MiniMax 没有标准的 device_code OAuth(/v1/oauth/* 是错的)
  • 必须使用 PKCE S256,user_code 需配合 code_verifier 使用
  • 登录后 token 通过 refresh_token 刷新,无需每次重新授权

Comments

Loading comments...