npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

yespapa

v0.1.3

Published

TOTP-authenticated command gateway - intercept dangerous shell commands, require human approval

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

skyaiopsskyaiops

Keywords

totpsecurityclishellcommand-gatewayagent-safetyllmapproval

Readme

YesPaPa

TOTP-authenticated command gateway for AI agents and dangerous shell commands.

YesPaPa intercepts destructive shell commands (rm -rf, git push --force, chmod 777, etc.) and requires human approval via TOTP code before they execute. It prevents LLM agents, scripts, or accidental keystrokes from causing damage without your consent.

How It Works

$ rm -rf ./dist

  YesPaPa — Command requires approval
  rm -rf ./dist
  Rule: destructive/rm-rf

Enter TOTP code: 482901
Approved

Shell aliases route dangerous commands through a local daemon. The daemon checks each command against configurable rules and requires a 6-digit TOTP code (from any authenticator app) before allowing execution.

Two Rings of Protection

| | Inner Ring | Outer Ring | |---|---|---| | What | TOTP gate | Mobile app | | How | Type 6-digit code from authenticator | Tap "Approve" on your phone | | Requires | Nothing — fully offline | Remote server (free hosted or self-host) | | Speed | ~5 seconds | ~2 seconds (push notification) |

The Inner Ring works with zero infrastructure. The Outer Ring adds push notifications and one-tap approvals via the YesPaPa mobile app.

Install

npm (recommended)

npm install -g yespapa
yespapa init

Or run without installing:

npx yespapa init

Homebrew (macOS)

brew tap yespapa-cli/yespapa
brew install yespapa
yespapa init

Debian/Ubuntu (apt-get)

# Add the YesPaPa repository (one-time setup)
curl -fsSL https://yespapa-cli.github.io/homebrew-yespapa/gpg.key | sudo gpg --dearmor -o /usr/share/keyrings/yespapa.gpg
echo "deb [signed-by=/usr/share/keyrings/yespapa.gpg arch=amd64] https://yespapa-cli.github.io/homebrew-yespapa/apt stable main" | sudo tee /etc/apt/sources.list.d/yespapa.list

# Install
sudo apt-get update
sudo apt-get install yespapa
yespapa init

From source

git clone https://github.com/yespapa-cli/yespapa.git
cd yespapa
npm install && npm run build
npx yespapa init

Features

  • Zero infrastructure — works fully offline with any TOTP app (Google Authenticator, Authy, 1Password)
  • 10 built-in deny rulesrm -rf, git push --force, chmod 777, mkfs, dd, and more
  • Customizable rules — add your own deny/allow patterns
  • Grace periods — auto-approve trusted commands for a configurable window
  • Agent-safe — structured JSON output for LLM agents, justification support
  • Mobile app (optional) — push notifications and one-tap approve/deny via YesPaPa app
  • Tamper-resistant — heartbeat re-injects interceptors if removed, uninstall requires TOTP
  • Self-hostable — run your own remote server via Docker, or use the free hosted default

CLI

yespapa init                    # Initialize on this machine
yespapa status                  # Show daemon & interceptor status
yespapa rules list              # Show interception rules
yespapa rules add --pattern "docker rm *" --type deny
yespapa bypass activate --scope destructive --duration 1h
yespapa config list             # Show all config with defaults
yespapa config set allow_sudo_bypass false
yespapa exec -- rm -rf ./dist   # Programmatic execution (off by default)
yespapa approve cmd_abc123      # Approve from another terminal
yespapa test                    # Test mobile app connectivity
yespapa uninstall               # Remove (requires TOTP)

For AI Agent Developers

YesPaPa is designed to work with LLM agents that execute shell commands. Agents can:

# Pass justification with intercepted commands
rm -rf ./dist --justification "clearing build artifacts before rebuild"

# Or use the CLI directly for structured output
yespapa exec --justification "clearing old build" -- rm -rf ./dist

JSON events are emitted on stderr for all intercepted commands:

{"event":"approved","command":"rm -rf ./dist","source":"remote","message":"ok, go ahead"}

Security Model

| Threat | Mitigation | |--------|------------| | Agent removes interceptors | Heartbeat re-injects every 30s | | Agent uninstalls YesPaPa | Uninstall requires TOTP or master key | | Compromised remote server | TOTP validated locally — server cannot forge approvals | | Forged grace token | HMAC-signed with TOTP seed (never leaves machine) | | TOTP brute force | 3 attempts per command, then 30s cooldown | | Agent reads TOTP seed | Encrypted with AES-256-GCM, key derived from master password via Argon2 |

Requirements

  • Node.js >= 18
  • macOS or Linux
  • bash or zsh

Documentation

License

MIT