A mesh-native remote-execution daemon and MCP server. Per-node Ed25519 authentication, TLS 1.3 with raw-key pinning, per-key policy and hash-chained audit — no shared secret anywhere.
curl -fsSL https://raw.githubusercontent.com/zeus-kim/vssh/main/install.sh | bash
pip install vssh · checksum-verified · Linux (x86-64, arm64, arm, 386, riscv64, ppc64le, s390x) & macOSPer-node Ed25519 challenge–response (VAUTH1) over TLS 1.3 with raw-public-key pinning. No shared secret, no HMAC, no PKI — authorization is your authorized_keys.
First-class tools for AI operators: exec, facts, capability routing, multi-target fan-out, and tunnels — every call policy-checked and audited.
Per-key capabilities, command allow/deny with anchored matching, path scoping, rate limits, and a tamper-evident hash-chained audit log.
Local (-L), reverse (-R) and dynamic SOCKS (-D) forwards, each individually authenticated and audited — managed straight from the MCP layer.
Host-identity verification self-provisions on first use, so a fresh controller is ready with no manual setup step.
Built for WireGuard/Tailscale meshes. Single static binary across seven Linux architectures and macOS.
curl -fsSL https://raw.githubusercontent.com/zeus-kim/vssh/main/install.sh | bash$HOME/bin.vssh serverecho "ssh-ed25519 AAAA… operator" >> ~/.vssh/authorized_keyscaps= / policy= tags).vssh run node1 'uptime'vssh mcp into your AI client for tools.