npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

teleprompt-cli

v0.2.1

Published

Secure remote device management CLI for SSH & Telnet, optimized for AI agents and developer workflows

Downloads

1,081

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

eryrizaleryrizal

Keywords

sshtelnetcliagentaicredentialsremoteexecutionsecuritycommand-runnerautomationdevops

Readme

Teleprompt CLI

A secure, agent-friendly remote execution and connection manager for SSH and Telnet.

[!WARNING] DO NOT use Teleprompt CLI in "Yolo mode" (fully autonomous mode without human confirmation/supervision) on AI agents. The author/maintainer assumes no responsibility for any operating system damage, data loss, or misconfigurations caused by the execution of AI agents. Always verify agent actions in a sandbox or require explicit human approval before execution.

Teleprompt CLI allows developers and AI agents to connect to and execute commands on remote servers, switches, and other devices via SSH or Telnet. It stores credentials locally in an encrypted database, keeping passwords and private keys secure and preventing them from leaking into shell histories or LLM context prompts.

Key Features

  • Zero-Exposure Credentials: All device credentials (passwords, private keys, passphrases) are encrypted locally using AES-256-GCM (Argon2id key derivation) in a local database (~/.teleprompt/credentials.enc).
  • Bypass Interactive Prompts: Load the TELEPROMPT_KEY environment variable in your automation or AI agent context to retrieve credentials and execute commands without interactive password prompts.
  • Encrypted SSH Key Support: Use password-protected SSH private keys — Teleprompt now prompts for and securely stores the key passphrase alongside the key path.
  • Host Key Verification: Prevents MITM attacks by verifying server host keys against a local known_hosts file. Three policies: Strict, AcceptNew (default), or Off.
  • Automatic Sudo Password Injection: Detects remote sudo prompts automatically and securely injects the sudo password to prevent script hangs.
  • SSH and Telnet Support: Connect to modern SSH servers (passwords or private keys with optional passphrase) and legacy Telnet systems.

Installation

NPM (Recommended)

Install globally to make the teleprompt command available system-wide:

npm install -g teleprompt-cli

Note: The installer automatically downloads the precompiled binary for your operating system and architecture. If a precompiled binary is not available, it compiles from source using Cargo.

Cargo (Rust)

Compile from source:

cargo install --git https://github.com/EryrizalH/teleprompt-cli.git

Quick Start Guide

Step 1: Initialize the Secure Store

Initialize the database and configure your master password:

teleprompt init

This creates the encrypted store at ~/.teleprompt/credentials.enc. Keep your master password safe; it is required to decrypt your credentials.

Step 2: Set the Master Password Environment Variable

Export your master password to run commands non-interactively (ideal for automation and AI agent workflows):

  • Linux / macOS:
    export TELEPROMPT_KEY="your-master-password"
  • Windows (PowerShell):
    $env:TELEPROMPT_KEY="your-master-password"

Step 3: Add a Remote Device

Register a new remote device configuration interactively:

teleprompt add

Step 4: List Registered Devices

List your configured remote devices (passwords and private keys are masked):

teleprompt list

Step 5: Execute Remote Commands

Run commands on your registered devices:

# Run a single command
teleprompt <device-name> uname -a

# Run chained commands (enclosed in quotes)
teleprompt <device-name> "cd /var/log && cat syslog | tail -n 20"

Command Reference

| Command | Description | | :--- | :--- | | teleprompt init | Initialize the secure encrypted credential database. | | teleprompt add | Interactively register a new remote device (SSH/Telnet). | | teleprompt list | View all registered devices. | | teleprompt remove <name> | Delete a device configuration. | | teleprompt edit <name> | Interactively modify a device configuration. | | teleprompt test <name> | Test connectivity and credential validation. | | teleprompt install-skill | Copy the AI Agent instructions (TELEPROMPT_SKILL.md) to the current directory. | | teleprompt <name> <command...> | Run a command on the remote device. |

Global Options

  • --timeout <seconds>: Override execution timeout (default is 30 seconds).
  • --verbose / -v: Print detailed connection diagnostics (TCP, handshake, auth stages).
  • --db-path <path>: Specify a custom database path (default is ~/.teleprompt/credentials.enc).

Example:

teleprompt --verbose --timeout 60 --db-path ./custom.db my-device "df -h"

Security Details

Auto-Sudo Prompt Interception

When running remote commands, Teleprompt monitors stream outputs. If it detects a password prompt (e.g. [sudo] password for ...:), it automatically sends the stored sudo password (or connection password if no separate sudo password is set) followed by a newline, avoiding interactive hangs.

Encryption Standards

  • Key Derivation: Key derived from your Master Password using Argon2id.
  • Cipher: AES-256-GCM encrypts and decrypts the credential database.
  • Memory Safety: Sensitive credentials and keys are zeroed out of memory when no longer needed using the zeroize Rust crate.

AI Agent Integration Guidelines

If you are equipping an AI agent (such as Claude Code, ChatGPT, or Gemini) with this tool, you can install the agent-specific instructions (TELEPROMPT_SKILL.md) in your workspace automatically by running:

teleprompt install-skill

This will create TELEPROMPT_SKILL.md in the current directory, which instructs the AI agent on how to:

  • Detect the target operating system using teleprompt list.
  • Adapt its command syntax based on the OS Type (Linux, Windows, RouterOS, Cisco IOS, JunOS).
  • Run commands securely and process stdout/stderr and exit codes programmatically.

[!WARNING] Disclaimer on AI Agent Execution: Never allow AI agents to run commands in fully autonomous "Yolo mode" without human supervision and explicit approval. The author/maintainer of Teleprompt CLI is not responsible for any system damage, configuration issues, or data loss resulting from commands executed by AI agents.

[!TIP] Quick AI Agent Tips:

  • To check configured servers and their OS types, run teleprompt list.
  • Ensure the TELEPROMPT_KEY environment variable is loaded in your execution context before running commands.
  • When running commands with pipes (|), redirects (>), or multiple instructions, group them in a single string, e.g., teleprompt server-name "command1 && command2 | grep foo".
  • Check exit codes: a non-zero exit code represents a remote command failure or connection loss.

License

This project is licensed under the MIT License. See LICENSE for details.