The open-source AI agent landscape has a new frontrunner. As of May 10, 2026, Hermes Agent — developed by Nous Research — has surpassed OpenClaw to claim the top spot on OpenRouter’s global daily app and agent rankings. Hermes is now producing 224 billion tokens per day on OpenRouter, compared to OpenClaw’s 186 billion, making it the most actively used open-source AI agent by current inference volume.
This milestone represents more than just a leaderboard shuffle. OpenClaw’s founder, Peter Steinberger, moved to OpenAI in February 2026, while OpenClaw itself transitioned to an independent open-source foundation backed by OpenAI as a sponsor.
Two Different Visions for What an Agent Should Be
The competition between Hermes and OpenClaw stems from a core architectural difference. OpenClaw revolves around a central WebSocket Gateway — a persistent routing layer that links over 50 messaging channels (Telegram, Discord, Slack, WhatsApp, Signal, and others) to an agent runtime. Its architecture prioritizes breadth: how many platforms the agent can operate on at once.
Hermes Agent takes a fundamentally different path. Released under an MIT license, it’s built around a “do, learn, improve” execution cycle. After finishing a task, the agent enters a self-reflective phase where it evaluates its own performance and automatically creates reusable skill files for later use. Memory is managed through three distinct layers: a persistent snapshot of user and agent identity, a SQLite FTS5 full-text search database of every past session, and procedural skill files that encode repeatable task logic. The architecture is designed for compounding value — the longer you use Hermes, the better it gets at handling your specific workflows.
A Fast-Paced Release Schedule
Hermes has maintained a steady cadence of major releases since its February 2026 debut. The v0.9.0 “Everywhere” release added Android/Termux support, iMessage via BlueBubbles, WeChat and WeCom adapters, and a local web dashboard, bringing Hermes to 16 supported messaging platforms. The v0.11.0 “Interface” release introduced a complete React/Ink TUI overhaul, native AWS Bedrock support, five new inference paths including NVIDIA NIM and Vercel ai-gateway, GPT-5.5 access via Codex OAuth, and a 17th platform through QQBot — spanning 1,556 commits and 761 merged PRs.
The v0.13.0 “Tenacity” release, launched on May 7, 2026, is the most recent version. It brings Kanban as a persistent multi-agent task board with heartbeat monitoring, zombie detection, and hallucination recovery; a /goal command that keeps the agent focused on a target across multiple turns; Checkpoints v2 with real state pruning; gateway auto-resume after restart; and Google Chat as the 20th supported messaging platform.
Security: A Notable Contrast
OpenClaw’s widespread adoption has come with security trade-offs. CVE-2026-25253, assigned a CVSS score of 8.8, left the gateway vulnerable to remote exploitation. During a four-day span in March 2026, nine CVEs were disclosed — one scoring 9.9. A Koi Security audit of 2,857 ClawHub skills uncovered 341 malicious entries, with 335 linked to a single campaign, and broader third-party security scans flagged over 800 suspicious entries during the same period. SecurityScorecard reported tens of thousands of publicly exposed OpenClaw instances.
Hermes Agent’s security track record is shorter given its younger age, but it’s not without issues. NVD lists multiple CVEs published April 27–29, 2026, including CVE-2026-7113, a missing authentication flaw in the webhooks endpoint of version 0.8.0, rated 5.6 MEDIUM on CVSS 3.x and 2.9 LOW on CVSS 4.0. The v0.13.0 Tenacity release resolved 8 P0 security issues, including enabling redaction by default, guild-scoped Discord role allowlists, WhatsApp stranger rejection, and TOCTOU patches across auth.json and MCP OAuth flows.
Migration and What Lies Ahead
For developers currently running OpenClaw who want to try Hermes, the switch is designed to be straightforward. Hermes detects an existing ~/.openclaw directory during setup and offers to import settings, memories, skills, and API keys automatically. The hermes claw migrate command supports dry-run previews, selective migration presets, and conflict overwrite controls.
The two frameworks are also increasingly being run side by side, with OpenClaw handling orchestration and multi-channel routing while Hermes manages repeatable task loops — coordinated through the Agent Communication Protocol (ACP).
The broader takeaway from the OpenRouter rankings is that the open-source agent market isn’t converging on a single tool. It’s splitting along two different philosophies: breadth of reach versus depth of learning. Hermes Agent’s rise to #1 in daily usage indicates that, at least for now, a significant portion of the developer community is placing its bets on depth.
224B
Hermes Daily Tokens
#1 on OpenRouter
186B
OpenClaw Daily Tokens
#2 on OpenRouter
6.35T
Hermes All-Time
vs 9.17T OpenClaw
v0.13.0
Latest Release
May 7, 2026
Head-to-Head
| Hermes Agent | OpenClaw | |
|---|---|---|
| Creator | Nous Research (MIT) | Peter Steinberger / Foundation (OpenAI sponsor) |
| Launched | February 2026 | Late 2025 |
| GitHub Stars | 114,000+ | 370,000+ |
| Daily Tokens | 224B (#1 OpenRouter) | 186B (#2 OpenRouter) |
| All-Time Tokens | 6.35T | 9.17T |
| Architecture | Self-improving execution loop; do–learn–improve | WebSocket Gateway; central routing controller |
| Memory | SQLite FTS5 + persistent identity + auto-generated skills | Markdown-based; human-authored skills via ClawHub |
| Skill Ecosystem | 40+ built-in tools; agentskills.io standard; auto-generates skills | 44,000+ ClawHub skills (April 2026) |
| Platforms | 20 (incl. Google Chat, QQBot, WeChat, iMessage) | 50+ channels |
| Model Support | 200+ via OpenRouter; NVIDIA NIM; AWS Bedrock; Ollama; local | OpenAI-compatible; OpenRouter; Ollama |
| Latest Version | v0.13.0 — May 7, 2026 | Active (LTS announced May 2026) |
| CVE Count | 4 CVEs (Apr 27–29; affect v0.8.0) | 9 CVEs in 4 days (Mar 2026); one CVSS 9.9 |
| Migration | hermes claw migrate imports OpenClaw config automatically | — |
Hermes Agent Release Cadence
v0.13.0 — The Tenacity Release
Latest
May 7, 2026
Kanban multi-agent board with zombie detection and hallucination recovery. /goal locks agent on target across turns. Checkpoints v2 with real state pruning. Gateway auto-resumes after restart. 8 P0 security fixes: redaction on by default, Discord guild-scoped allowlists, WhatsApp stranger rejection, TOCTOU patches. Google Chat = 20th platform. Seven i18n locales ship.
v0.12.0 — The Curator Release
Apr 30, 2026
Autonomous background Curator grades, prunes, and consolidates the skill library. Four new inference providers. Teams plugin = 19th platform. Native Spotify and Google Meet integrations. ComfyUI and TouchDesigner-MCP bundled. ~57% reduction in TUI cold start time.
v0.11.0 — The Interface Release
Apr 23, 2026
Full React/Ink TUI rewrite. Native AWS Bedrock support. 5 new inference paths: NVIDIA NIM, Arcee AI, Google Gemini CLI OAuth, Vercel ai-gateway, Step Plan. GPT-5.5 via Codex OAuth. QQBot = 17th platform. Plugin surface dramatically expanded. Dashboard with i18n (English + Chinese).
v0.10.0 — The Tool Gateway Release
Apr 16, 2026
Nous Portal subscribers get web search (Firecrawl), image generation (FAL/FLUX 2 Pro), TTS (OpenAI TTS), and browser automation (Browser Use) — zero additional API keys required.
v0.9.0 — The Everywhere Release
Apr 13, 2026
Android/Termux support. iMessage via BlueBubbles. WeChat and WeCom adapters. Local web dashboard. Fast Mode for OpenAI and Anthropic priority queues. Background process monitoring via watch_patterns. 16 supported platforms. Deep security hardening pass.
CVE Tracker
CVE-2026-25253 — OpenClaw
CVSS 8.8 HIGH
Remote exploitation of the OpenClaw gateway. A single malicious link could hand over full machine control. Patched; update required. SecurityScorecard reported tens of thousands of exposed instances.
March 2026 Cluster — OpenClaw
9 CVEs / 4 Days
Mar 18–21, 2026: nine CVEs disclosed in four days. One scored CVSS 9.9. Koi Security audit of 2,857 ClawHub skills found 341 malicious entries (11.9%), with 335 tied to a single campaign. Broader scans flagged 800+ suspicious entries.
CVE-2026-7113 — Hermes Agent
CVSS 3.x: 5.6 MEDIUM
CVSS 4.0: 2.9 LOW
Missing authentication in webhooks endpoint (gateway/platforms/webhook.py). Affects hermes-agent v0.8.0 only. High attack complexity; difficult to exploit. Published Apr 27, 2026. Verify your version before assuming you’re unaffected.
v0.13.0 Security Wave — Hermes
8 P0 Fixes
The Tenacity release (May 7) resolved 8 P0 security issues: redaction enabled by default, Discord role-allowlists now scoped to guilds, WhatsApp blocks unknown senders by default, and TOCTOU race conditions closed across auth.json and MCP OAuth flows.
Choose Your Stack
Hermes Agent
Nous Research — MIT License
▶You want an agent that gets better at repeated workflows over time
▶Long-running tasks where remembering past sessions is critical
▶You need AWS Bedrock, NVIDIA NIM, or access to 200+ models
▶Security-first deployment matters (fewer CVEs, stricter defaults)
▶You’re migrating from OpenClaw (hermes claw migrate)
▶Serverless, SSH, or HPC deployment environments
OpenClaw
Independent Foundation — OpenAI Sponsor
▶Broadest messaging channel coverage (50+ platforms)
▶Immediate access to 44,000+ community-built skills through ClawHub
▶Multi-agent orchestration as the core workflow
▶Large-scale team deployments requiring proven, production-ready infrastructure
▶You want the larger community ecosystem right now, not long-term compounding value
Key Takeaways
- Hermes Agent tops OpenRouter’s worldwide daily rankings with 224B daily tokens compared to OpenClaw’s 186B as of May 10, 2026; OpenClaw leads in cumulative all-time usage at 9.17T versus 6.35T
- OpenClaw founder Peter Steinberger moved to OpenAI in February 2026; OpenClaw now functions as an independent open-source foundation with OpenAI serving as a sponsor
- Hermes Agent: 114,000 GitHub stars, MIT license, 40+ built-in tools, 20 supported messaging platforms as of v0.13.0
- OpenClaw: 370,000 GitHub stars, 44,000+ ClawHub skills (April 2026), 50+ messaging channels
- Most recent Hermes release: v0.13.0 “Tenacity” (May 7, 2026) — 864 commits, 588 PRs, 295 contributors, 8 P0 security fixes
- CVE-2026-25253 (CVSS 8.8) and a group of nine CVEs from March 2026 continue to be the main OpenClaw security risk indicators; Hermes CVE-2026-7113 (CVSS 3.x: 5.6 MEDIUM) impacts only version 0.8.0
Be sure to follow us on Twitter and remember to join our 150k+ ML SubReddit and subscribe to our Newsletter. Still on the fence? You can now join us on Telegram too.
Looking to collaborate with us to promote your GitHub Repo, Hugging Face Page, Product Release, Webinar, or more? Get in touch with us
Michal Sutter is a data science professional holding a Master of Science in Data Science from the University of Padova. With deep expertise in statistical analysis, machine learning, and data engineering, Michal specializes in turning complex datasets into meaningful, actionable insights.
