npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

jumpserver-cli

v0.1.1

Published

OpenAPI-driven CLI for JumpServer.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

elriclielricli

Keywords

jumpservercliopenapi

Readme

jumpserver-cli

OpenAPI-driven CLI for JumpServer.

Requirements

  • Node.js 22 or newer
  • TypeScript 7.0 Beta via @typescript/native-preview@beta and the tsgo CLI.

Installation

After the package is published to npm:

npm install -g jumpserver-cli
jms --help

Authentication

Access Key authentication is the primary API auth mode:

jms auth access-key \
  --host jumpserver.example.test \
  --access-key-id "..." \
  --access-key-secret "..." \
  --org "00000000-0000-0000-0000-000000000002"

Successful auth access-key validates the credentials by reading the current user profile, then persists the host, Access Key, and organization to the CLI config file. Later commands can use the saved auth settings directly:

jms users profile read

The signature follows the JumpServer documentation: (request-target), accept, and date are signed with HMAC-SHA256 and sent as an HTTP Signature Authorization header.

Bearer and Private Token auth are also available:

export JMS_TOKEN="..."
export JMS_PRIVATE_TOKEN="..."

Successful auth token also persists the host and returned Bearer token. The config file path is resolved in this order:

  1. JMS_CONFIG
  2. $XDG_CONFIG_HOME/jms/config.json
  3. ~/.config/jms/config.json

Runtime precedence is: command-line flags, environment variables, then saved config. A host is required unless it has already been saved by auth token or auth access-key.

Usage

npm install
npm run build

npx tsx src/cli.ts api list --search profile
npx tsx src/cli.ts api describe users_profile_read
npx tsx src/cli.ts users profile read --dry-run
npx tsx src/cli.ts assets favorite-assets read --path id=asset-1 --query search=prod --dry-run

auth token supports both interactive prompts and argument-driven usage:

npx tsx src/cli.ts auth token
npx tsx src/cli.ts auth token --host jumpserver.example.test --username alice --password 'secret'
npx tsx src/cli.ts auth token --host jumpserver.example.test --username alice --password 'secret' --token-only
npx tsx src/cli.ts auth access-key --host jumpserver.example.test --access-key-id "$JMS_ACCESS_KEY_ID" --access-key-secret "$JMS_ACCESS_KEY_SECRET"

Successful auth token and auth access-key commands print 认证完成 without dumping profile or token details. Use --token-only only when another agent or script needs the Bearer token value.

OpenAPI operations are exposed as gh/glab-style module commands. The command path is derived from the operation tag and action:

jms assets favorite-assets list
jms assets favorite-assets read --path id=asset-1
jms users profile password update --body '{"old_password":"old","new_password":"new","new_password_again":"new"}'
jms authentication connection-token client-url read --path id=token-1

The generic operationId form is available under api call:

npx tsx src/cli.ts api call assets_favorite-assets_read --path id=asset-1

API calls print successful JSON arrays and paginated results as ASCII tables by default, without truncating rows. Tables include a mycli/pgcli-style row count such as 2 rows in set. Asset tables focus on useful fields such as ID, name, address, platform, protocols, type, connectivity, and active state; noisy fields such as raw nodes, labels, certificates, and automation config are hidden from the default view. Long cells are shortened to keep the table readable. Use --json when you need the raw complete response. Failed requests print a short error message to stderr.

Request options:

  • --path name=value: path template parameter.
  • --query name=value: query string parameter.
  • --param name=value: path parameter if the name appears in the path template, otherwise query parameter.
  • --limit 20: result count for APIs that declare limit/offset pagination.
  • --offset 40: starting result offset for APIs that declare limit/offset pagination.
  • --body '{"name":"value"}': JSON body.
  • --body @payload.json: JSON body from file.
  • --body -: JSON body from stdin.
  • --header name=value: extra request header.
  • --dry-run: print a concise request preview without sending the request or exposing auth signatures.
  • --include-headers: include the HTTP status line.
  • --json: print the raw JSON response instead of the compact table.

Verification

npm run verify
npm run build

The raw Swagger/OpenAPI export is intentionally not tracked or published. If you need to refresh the command catalog, place a local api.json in the repository root and run:

npm run generate:operations

To test locally without touching your real config:

export JMS_CONFIG="$(mktemp)"
npx tsx src/cli.ts auth access-key --host jumpserver.example.test --access-key-id "..." --access-key-secret "..."
npx tsx src/cli.ts users profile read --dry-run
cat "$JMS_CONFIG"

Publishing

Before the first public release, choose a license and add it to package.json and a LICENSE file if the package should be open source.

This repository publishes to npm from the GitHub Release workflow in .github/workflows/npm-publish.yml. Configure the repository secret first:

  1. Create an npm automation token from the npm account that owns the package.
  2. Add it to GitHub repository secrets as NPM_TOKEN.
  3. Create a GitHub Release whose tag matches package.json version, for example v0.1.0.
npm login
npm whoami
npm view jumpserver-cli name version # Expected to return 404 before the first publish.
npm run verify
npm pack --dry-run

prepublishOnly runs npm run verify before a real publish, and prepack builds dist before the tarball is created. Use npm version patch, npm version minor, or npm version major before publishing subsequent releases, then push the generated tag and publish a GitHub Release for that tag. Prereleases are published with the npm next dist-tag; normal releases use latest.

The workflow can also be run manually from GitHub Actions by choosing a tag such as v0.1.0 and an npm dist-tag (latest or next).