Show HN: Turn any workflow diagram into compilable, running and stateful code (workflows.diagrid.io)

- Run shell commands on multiple servers (in parallel) - Push/pull files or directories with progress bars - Uses `~/.ssh/config` and lets you group hosts with YAML - Supports `--dry-run` mode to preview actions without executing - Outputs results using `rich` (tables, colors) - Built with `Typer`, `asyncssh`, and `rich`

There’s no daemon or extra setup, it reads your existing SSH config and just runs.

Would love feedback on general use and especially if there are ways to improve the `--dry-run` output.

Comments (34)

JulianWasTaken · 1h ago

To me GNU parallel is the top of the line here (as it is for most things parallel).

For the most common cases I have it aliased to just `p`: https://github.com/Julian/dotfiles/blob/main/.config/zsh/com...

Or https://github.com/Julian/dotfiles/blob/4d36e6b17e9804a887ba...

cbm-vic-20 · 27m ago

[citation needed]

naikrovek · 1h ago

what is the use case? why wouldn't you use something else (like ansible or puppet or something)? I do not understand why someone would do things like this.

No comments yet

proxysna · 3h ago

ansible my_servers -m shell -a 'fortune && reboot' -b

I know it is easy to be a hater, but sincerely do not see a reason to use something like that over Ansible or just pure sh, ssh and scp. All you have to do is to set up keys and the inventory. Takes 10 minutes, even if you are doing it for the first time. And you can expand it if you need it.

alerighi · 2h ago

I use pssh often (not this tool, but as I understand is similar).

The reasons I find it over Ansible are:

- takes the same syntax and options as plain SSH, just run over multiple hosts. So if you already know SSH, you know how to use pssh that is an extension of the command. Ansible requires to study it. The configuration format is trivial, just a file that contains on each line one host, no need to study complex formats like Ansible

- doesn't require dependencies on the target machine. Ansible, as far as I know, requires a python3 installation on the target machine. Something that, for example, is not granted in all settings (e.g. embedded devices, that are not strictly GNU/Linux machines, for example consider a lot of network devices that espose an SSH server, like Microtik devices, with PSSH is possible to configure them in batch), or in some settings you maybe need to work on legacy machines that have an outdated python version.

- sometimes simpler tool that just do one thing are just better. Especially for tools like pssh that are to me like a swiss army knife, the kind of tool that you use obviously when you are bodging something up to make something work because you are in an hurry and saves your day

Of course if you already use Ansible to manage your infrastructure you may as well use it to run a simple command. But if you have to run a command on some devices, that were not previously setup for Ansible, and devices trough which you may not have a lot of control (e.g. a bunch of embedded devices of some sort), pssh is a tool that can come handy.

pug23 · 5m ago

For clarity Ansible does allow to run commands on a target host without Python installed using the raw module

I do agree with your point, sometimes it's just easier to use native tools or simple wrappers around native tools. Use whatever makes your job easier

liamkearney · 3h ago

Ansible is one of the best examples of needless complexity I’ve ever interacted with.

proxysna · 2h ago

Ansible is the easiest tool for configuration management to onboard and start using. Great documentation, large community. It is as complex as you want it to be and it's complexity scales with your infra. ofc YMMV.

blackmamoth · 2h ago

I know ansible or even custom shell scripts are way better and optimized for such use cases. However, I just wanted to show something I built that might be useful to someone.

proxysna · 2h ago

My comparison is most likely unfair because i am looking at it through a distorted lens of running all sorts of configuration management in production or at home for years. So i might be the wrong person to make judgement on it and just being a hater for no good reason.

cynicalsecurity · 1h ago

Ansible requires python to be installed on all of the target computers.

revskill · 1h ago

Ansible doesn't work on windows.

Stop assuming your method works across the universe of edge cases.

proxysna · 29m ago

Ansible server does not work on windows, yes, but you can configure windows hosts with Ansible out of the box.

KAMSPioneer · 1h ago

I mean, Ansible isn't the best choice for Windows configuration, I would agree, but you're not strictly correct: https://docs.ansible.com/ansible/latest/os_guide/windows_usa...

nasretdinov · 4h ago

Around 10 years ago I was supporting infrastructure at a PHP shop and we needed a similar thing, but for ~3000 servers, and the library that we were using (libpssh) didn't support async SSH agent authentication, so I built this small tool in Go to allow to implement such tooling in any language (PHP, Python, whatever) in a simple way: https://github.com/YuriyNasretdinov/GoSSHa

It's main advantage is that it allows you to do SSH agent forwarding that actually works at scale, since it limits concurrency when talking to SSH agent to a configurable amount (by default 128, the default connection backlog in OpenSSH ssh-agent)

blackmamoth · 2h ago

Hey man that's really cool, I never really thought of making this interactive.

Joker_vD · 1h ago

Looks interesting; my klunky script for doing something similar has been something along the lines of

    printf 'started: %s\n' "$(utcdate)"

    (
        trap 'kill 0' SIGINT
        for REMOTE in "${REMOTES[@]}"
        do
            ssh -- "$REMOTE" "$COMMAND" "$@" &
        done
        wait
    )

    printf 'ended: %s\n' "$(utcdate)"

but twiddling with it has been quite annoying, so I'll look into this tool.

andrewchilds · 38m ago

I built (and still use) a similar tool called Overcast 10 years ago: https://github.com/andrewchilds/overcast

mkayokay · 4h ago

How are commands handled, that require user input? E.g. password for sudo in your example:

  sshsync group web-servers "sudo systemctl restart nginx"

I like that you included a demo in the README, but it is too long for a gif, as I can't pause/rewind/forward. So splitting into multiple short gifs or converting into a video (if GitHub supports them) could improve the experience.

blackmamoth · 2h ago

As of now there is no way to take user input in transit, so either the user is required to have the privilege to execute the specified command or have passwordless sudo available.

And Yeah, now that you've mentioned it multiple shorter gifs would be better.

gamedna · 4h ago

Curious to understand the need to create this over using tools like pssh, etc.

https://linux.die.net/man/1/pssh

blackmamoth · 2h ago

I was getting bored, this seemed like a cool project to work on outside of work, that's why. One of my colleagues found it useful for his needs, so I figured there might be other people who'd find this useful too.

monster_truck · 3h ago

Have you looked at what powershell does? Invoke-Command (and the Job stuff it meshes perfectly with via AsJob) is really nice

I only needed a very small fraction of what it can do to bail a client out of a problem their customer caused on several hundred computers the night before an event, but it absolutely saved the day and a lot of money.

N2yhWNXQN3k9 · 3h ago

The dry-run option is nice, but you can do this easily in a normal environment without special tooling (GNU parallel, etc).

I have made scripts to do this with filter parameters over VMs on cloud providers, which is very valuable. Maybe you can extend this to have those options, so potential users are more attracted to it?

strzibny · 3h ago

If you deploy with Kamal you practically get this, except maybe the file push, that's a nice touch.

ahofmann · 4h ago

This looks great. I've used ansible in the past, is this tool like a stripped down (and thus simpler to use) version of ansible?

XorNot · 4h ago

Given that ansible can be installed via "pip install ansible" I'm not sure how much simpler you can get?

Like a basic list of servers can also have this done via "ansible -m shell -a 'echo something' <server group>"

N2yhWNXQN3k9 · 3h ago

yeah, ansible is very nice also in that it can have multiple inventories across cloud providers for running whatever, with minimal setup, and without needing to modify your ssh host config

darrenf · 3h ago

See also: fabric. https://docs.fabfile.org/en/latest/

shaunpud · 2h ago

See also: pyinfra. https://docs.pyinfra.com/en/latest/

kachapopopow · 3h ago

This would only be interesting if it wasn't written in python, but native instead.

blackmamoth · 2h ago

Originally I was going to write the prototype in python and than later reimplement it in Golang, but right now I'm not sure if it's needed

deva502 · 3h ago

The lack of research, the AI-generated README and comments, and the "Pythonic" approach (while Ansible exists) made me laugh. I guess it's a good CS50 project, but it's not presentable at all and doesn't have real-world usage.

blackmamoth · 2h ago

Hey, yeah I admit i should've written the README myself, but I'm kinda lazy , so I let gpt handle both readme and the post. And I do know there are other tools way better than this and battle tested, but I just built this for fun and not to compete with any of them.

Show HN: Goboscript, text-based programming language, compiles to Scratch (github.com)

Show HN: Sshsync – CLI tool to run shell commands across multiple remote servers (github.com)

Show HN: Cogitator – A Python Toolkit for Chain-of-Thought Prompting (github.com)

Show HN: Find startup founders near you (foundersaround.com)

Show HN: Job board aggregator for best paying remote SWE jobs in the U.S. (remoteswe.fyi)

Show HN: I modeled the Voynich Manuscript with SBERT to test for structure (github.com)

Show HN: Open-Source AlphaEvolve Clone Using GPT-4.1 and Genetic Programming

Show HN: I reinvented PHP in TypeScript (demo) (github.com)

Show HN: A platform to find tech conferences, discounts, and ticket giveaways (tech.tickets)

Show HN: Vaev – A browser engine built from scratch (It renders google.com) (github.com)

Show HN: Berlin Swapfest #2 – Electronics flea market (July 20th, 2025) (swapfest.berlin)

Show HN: Python Simulator of David Deutsch’s “Constructor Theory of Time” (github.com)

Show HN: Hardtime.nvim – break bad habits and master Vim motions (github.com)

Show HN: Buckaroo – Data table UI for Notebooks (github.com)

Show HN: Chat with 19 years of HN (app.camelai.com)

Show HN: A web browser agent in your Chrome side panel (github.com)

Show HN: Model2vec-Rs – Fast Static Text Embeddings in Rust (github.com)

Show HN: Turn any workflow diagram into compilable, running and stateful code (workflows.diagrid.io)

Show HN: A Wolfenstein3D-like raycaster made in Windows Batch (github.com)

Show HN: Stack Error – ergonomic error handling for Rust (github.com)

Show HN: Racketmeter – Measure Badminton String Tension Using Sound Frequency (racketmeter.com)

Show HN: Datetime.app – open-source alternative to time.is (datetime.app)

Show HN: I built a knife steel comparison tool (new.knife.day)

Show HN: Grace – Orchestrate Hybrid Mainframe and Cloud Workflows with YAML (graceinfra.org)

Show HN: Merliot – plugging physical devices into LLMs (github.com)

Show HN: Pixelagent – Build your Stateful Agent Framework in 200 lines of code (github.com)

Show HN: Commander – AI-Powered Browser Automation (commander-ai.com)

Show HN: AI web scraper (no selectors, $2/1k pages, built by 1 dev) (web.instantapi.ai)

Show HN: Muscle-Mem, a behavior cache for AI agents (github.com)

Show HN: Visual flow-based programming for Erlang, inspired by Node-RED (github.com)

Show HN: Solidis – Tiny TS Redis client, no deps, for serverless (github.com)

Show HN: Fahmatrix – A Lightweight, Pandas-Like DataFrame Library for Java (github.com)

Show HN: Kameo – a toolkit for creating interactive web forms in rich text (github.com)

Show HN: SQL-tString a t-string SQL builder in Python (github.com)

Show HN: I cloned a YC funded app in a day as an MVP (ai-tutor.mvpwrappers.com)

Show HN: Real-Time Gaussian Splatting (github.com)

Show HN: HelixDB – Open-source vector-graph database for AI applications (Rust) (github.com)

Show HN: DeepShot – an open-source NBA predictor with ML, EWMA, and live UI (github.com)

Show HN: Rv, a Package Manager for R (github.com)

Show HN: Workflow Use – Deterministic, self-healing browser automation (RPA 2.0) (github.com)

Show HN: Undetectag, track stolen items with AirTag (undetectag.com)

Show HN: Easel – Code multiplayer games like singleplayer (easel.games)

Show HN: HTML QR Codes (Animated, Interactive, Programmable) (qrbrd.com)

Show HN: Public database of sites for backlinks (backlinksitesdb.com)

Show HN: Build XML-style prompts visually (xmlprompt.dev)

Show HN: I built a site to binge the best engineering blog posts (codecrawl.co)

Show HN: We created a new protocol and wallet that supports it for Bitcoin (akron.io)

Show HN: Min.js style compression of tech docs for LLM context (github.com)

Show HN: MCP Server for secure code execution (Python, Ruby, C, and more) (github.com)

Show HN: KVSplit – Run 2-3x longer contexts on Apple Silicon (github.com)

Show HN: Sshsync – CLI tool to run shell commands across multiple remote servers

Comments (34)