The foundation CLI tool for shelltime.xyz - a platform for tracking DevOps work.
AnnatarHe:
curl -sSL https://raw.githubusercontent.com/malamtime/installation/master/install.bash | bashThe CLI stores its configuration in $HOME/.shelltime/config.toml.
| Field | Type | Default | Description |
|---|---|---|---|
token |
string | "" |
Your authentication token for shelltime.xyz |
apiEndpoint |
string | "https://api.shelltime.xyz" |
The API endpoint URL for shelltime.xyz |
webEndpoint |
string | "https://shelltime.xyz" |
The web interface URL for shelltime.xyz |
flushCount |
integer | 10 |
Number of records to accumulate before syncing to server |
gcTime |
integer | 14 |
Number of days to keep tracked data before garbage collection |
dataMasking |
boolean | true |
Enable/disable masking of sensitive data in tracked commands |
enableMetrics |
boolean | false |
Enable detailed command metrics tracking (WARNING: May impact performance) |
endpoints |
array | [] |
Additional API endpoints for development or testing |
Example configuration:
token = "your-token-here"
apiEndpoint = "https://api.shelltime.xyz"
webEndpoint = "https://shelltime.xyz"
flushCount = 10
gcTime = 14
dataMasking = true
enableMetrics = falseenableMetrics to true will track detailed metrics for every command execution. Only enable this when requested by developers for debugging purposes, as it may impact shell performance.
shelltime auth [--token <your-token>]Initializes the CLI with your shelltime.xyz authentication token. This command needs to be run before using other features.
Options:
--token: Your personal access token from shelltime.xyz. if omit, you can also redirect to website to auth
Example:
shelltime auth --token abc123xyzshelltime track [options]Tracks your shells activities and sends them to shelltime.xyz.
Options:
- TODO: List track command options
Example:
shelltime track # TODO: Add exampleshelltime syncManually triggers synchronization of locally tracked commands to the shelltime.xyz server. This command can be useful when:
- You want to force an immediate sync without waiting for the automatic sync threshold
- You're troubleshooting data synchronization issues
- You need to ensure all local data is uploaded before system maintenance
Example:
shelltime syncThere are no additional options for this command as it simply processes and uploads any pending tracked commands according to your configuration settings.
shelltime gc [options]Performs cleanup of old tracking data and temporary files.
Options:
- TODO: List GC command options
Example:
shelltime gc # TODO: Add exampleNote
- Linux: Uses
systemdfor service management - macOS: Uses
launchctlfor service management
By default, the CLI performs synchronization directly which may impact shell responsiveness in certain scenarios:
- Standard command saving: <8ms (local file I/O only)
- Network synchronization:
- Southeast Asia (Singapore servers): ~100ms
- Other regions: Can vary significantly based on location
If you experience latency issues, we strongly recommend using daemon mode for better performance:
sudo ~/.shelltime/bin/shelltime daemon installBenefits of daemon mode:
- Asynchronous command tracking (shell blocking time <8ms)
- Background synchronization handling
- No impact on shell responsiveness
- Reliable data delivery even during network issues
The daemon service:
- Runs in the background as a system service
- Handles all network synchronization operations
- Buffers commands during connectivity issues
- Automatically retries failed synchronizations
For users experiencing high latency, daemon mode is the recommended configuration. You can also adjust FlushCount in the config for additional optimization:
FlushCount = 100 # Increased buffer size for less frequent syncsNote: Even without the daemon, all commands are still preserved locally first, ensuring no data loss during network issues.
Important
This feature is only available from version 0.1.12 and requires daemon mode operation.
ShellTime supports end-to-end encryption for command tracking data, providing an additional layer of security for sensitive environments.
- Request a new open token that supports encryption (existing tokens need to be replaced)
- Enable encryption in your config file:
# ~/.shelltime/config.toml
encrypted = true- Ensure daemon mode is active (encryption only works with daemon mode)
The encryption process uses a hybrid RSA/AES-GCM approach for optimal security and performance:
- Client retrieves the public key associated with your open token
- For each request:
- Generates a new AES-GCM key
- Encrypts the AES-GCM key using RSA public key
- Encrypts the actual payload using AES-GCM
- Sends both encrypted key and payload to server
Server-side:
- Decrypts the AES-GCM key using the open token's private key
- Uses the decrypted AES-GCM key to decrypt the payload
- Processes the decrypted command data
This hybrid approach provides:
- Strong security through asymmetric encryption (RSA)
- Efficient payload encryption through symmetric encryption (AES-GCM)
- Perfect forward secrecy with unique keys per request
{
"encrypted": "<aes-gcm encrypted payload>",
"aes_key": "<rsa encrypted aes-gcm key>",
"nonce": "<aes-gcm nonce>"
}Note
- Encryption adds minimal overhead (~5-10ms per request)
- All encryption/decryption happens automatically when enabled
- Local data remains unencrypted for performance
To stop and remove the daemon service from your system:
sudo ~/.shelltime/bin/shelltime daemon uninstallThis command will:
- Stop the currently running daemon
- Remove the service configuration from systemd/launchctl
- Clean up any daemon-specific temporary files
After uninstallation, the CLI will revert to direct synchronization mode. You can reinstall the daemon at any time using the install command if needed.
Use shelltime --version or shelltime -v to display the current version of the CLI.
For support, please contact: [email protected]
Copyright (c) 2024 shelltime.xyz Team