Appearance
Configuration
Shiphook is configured via a YAML file and/or environment variables. The file defines the deployment Shiphook runs; env vars override the file. All options are optional; defaults are listed below.
Config file: shiphook.yaml
In your repo (or the directory you run shiphook from), add shiphook.yaml (or .shiphook.yaml, shiphook.yml, .shiphook.yml). Use it to define port, repo path, run script, path, and webhook secret.
Example:
yaml
port: 3141
repoPath: . # or absolute path, e.g. /var/www/my-app
runScript: npm run deploy
runTimeoutMs: 1800000 # max time for the deploy command (default: 30 minutes)
path: /
# secret: your-webhook-secret # optional; if omitted, CLI auto-generates and persists oneYou can use camelCase (repoPath, runScript) or snake_case (repo_path, run_script).
Config file lookup: Shiphook looks in the current working directory for the first file that exists: shiphook.yaml, shiphook.yml, .shiphook.yaml, .shiphook.yml. To use a different path, set SHIPHOOK_CONFIG (e.g. ./custom.yaml). If no file is found or the file is invalid, only env vars and defaults apply.
By default, Shiphook re-reads shiphook.yaml on every webhook POST, so edits to YAML are picked up without restarting shiphook.
Environment variables (override file)
Env vars take precedence over the YAML file. Use them for secrets or overrides without editing the file.
| Variable | Default | Purpose |
|---|---|---|
SHIPHOOK_PORT | 3141 | TCP port the server listens on. |
SHIPHOOK_REPO_PATH | (from file or cwd) | Directory where git pull and the run script execute. |
SHIPHOOK_RUN_SCRIPT | (from file or npm run deploy) | Command run after git pull. |
SHIPHOOK_RUN_TIMEOUT_MS | 1800000 | Max time (ms) to allow the run script to finish before timing out. |
SHIPHOOK_SECRET | (auto) | Secret is always required for matching POSTs. If omitted, the CLI auto-generates and persists it to .shiphook.secret. |
SHIPHOOK_PATH | / | URL path that accepts the webhook (e.g. /deploy). |
SHIPHOOK_CONFIG | (auto-detect) | Path to config file (e.g. ./shiphook.yaml). |
SHIPHOOK_SKIP_HTTPS_PROMPT | (unset) | Set to 1 to skip the interactive “set up HTTPS?” question when starting shiphook on Linux (useful for systemd/CI). |
After git pull on a webhook (or shiphook deploy), Shiphook reloads config from the repo tree when a YAML file exists under SHIPHOOK_REPO_PATH (auto-detected names, or SHIPHOOK_CONFIG as a path inside that directory). It then runs runScript / runTimeoutMs from that merged view (env vars above still override), so the same push can change the deploy command for that run. If SHIPHOOK_CONFIG points outside the repo (e.g. an absolute file under /etc), post-pull reload is skipped for that path—git pull does not update those files—so the run uses the script/timeout from the server’s already-loaded config. If there is no repo-local config file, the run also keeps the request-time or startup script/timeout.
Port and run script
In YAML:
yaml
port: 8080
runScript: pnpm run build && pm2 restart allMultiline scripts (YAML | / |+ blocks, or any value that contains a newline) run one non-empty, non-# line at a time in order; the run stops on the first failing line (exit code ≠ 0). Each line uses the system shell when that line has shell operators (&&, |, …) or common shell builtins (set, export, …); otherwise the line is spawned as a normal argv command. Single-line scripts follow the same rules without splitting.
Or with env:
bash
export SHIPHOOK_PORT=8080
export SHIPHOOK_RUN_SCRIPT="pnpm run build && pm2 restart all"
shiphookDeploy is then triggered with POST http://your-server:8080/.
Repo path and webhook path
In YAML:
yaml
repoPath: /var/www/my-app
path: /webhookOr with env:
bash
export SHIPHOOK_REPO_PATH=/var/www/my-app
export SHIPHOOK_PATH=/webhook
shiphookTrigger with POST http://your-server:3141/webhook. Shiphook runs git pull and the run script in /var/www/my-app.
Programmatic use
You can start the Shiphook server from your own Node.js (ES module) code.
Use file + env config (same as CLI):
ts
import { createShiphookServer, ensureWebhookSecret, loadConfig } from "shiphook";
const config = loadConfig();
await ensureWebhookSecret(config);
const server = createShiphookServer(config);
await server.start();Override config explicitly:
ts
import { createShiphookServer, ensureWebhookSecret } from "shiphook";
const config = {
port: 3141,
repoPath: "/app",
runScript: "npm run deploy",
secret: process.env.SHIPHOOK_SECRET ?? "",
path: "/",
};
await ensureWebhookSecret(config);
const server = createShiphookServer(config);
await server.start();The server object has start(), stop(), and a listening getter. Config shape matches the YAML keys (camelCase: repoPath, runScript, etc.).
Deploy logs
For every deploy (webhook POST or shiphook deploy), Shiphook writes:
.shiphook/logs/<UTC-date>_<id>.json(machine-readable; stem begins with deploy start time, UTC).shiphook/logs/<UTC-date>_<id>.log(human-readable)
When using the old buffered JSON response (?format=json), the server response includes log: { id, json, log } so you can correlate a request to a file.