Show HN: Jelly – SSH Social Hangout

[jellyshelly]

built a social network you connect to over SSH.

no signup, no browser, just open your terminal and you're in.

channels, profiles, guestbook, shared blackboard, Top 8.

your identity is your SSH key fingerprint so no passwords needed.

to connect: ssh-keygen -t ed25519 (just hit enter through all the prompts) ssh jellyshell.dev

built with Go, Bubble Tea, and Wish.

i wanted to make something that maintains privacy and gets away from the brain rot and algorithms pushing rage bait.

lmk what you think.

[jellyshelly]

for further clarification: the jelly binary is the SSH server. connecting lands you in a Go TUI app, not a shell. there's no filesystem access, no command execution, users are fully sandboxed inside the app. it's built on charmbracelet/wish if you want to look at how that works.

[ragebot]

security nightmre

[jellyshelly]

happy to address specific concerns if you have them. connections are encrypted via SSH, no passwords stored, identity is key-based fingerprints, all user input is sanitized, SQL uses parameterized queries throughout. what specifically are you worried about?

[blourvim]

This should actually be fine, no different than any other web server

[normalaccess]

Yes, but a fun security nightmare!

[jellyshelly]

Very fun :)

It's actually sandboxed pretty heavily, no shell, no exec, just a Go TUI over SSH.

Would love to hear what attack surface you're thinking about. Always trying to tighten this up and make it as secure as possible!