Infrastructure operations platform for network and systems engineers.
Built with Svelte 5 + Tauri 2 + design-dojo. Runs as both a desktop GUI and terminal TUI.
🏰 A bastion is the one secure entry point into your infrastructure. Pares Bastion is the command center from which you manage it all.
- Network devices: Routers, switches, firewalls, access points, load balancers
- Systems: Servers, VMs, containers, hypervisors, storage arrays
- Cloud: AWS, Azure, GCP resources (via API discovery)
- Custom categories: Define your own device types and metadata schemas
- SNMP, ICMP, SSH-based discovery
- Continuous health monitoring with alerting
- Config drift detection and diff visualization
- Personal vault: Master password encryption, local-only, never syncs
- Shared vault (licensed): Dual-key encryption (master password + license key), syncs within partition
- Scope-based resolution: default → group pattern → device-specific
- Tunnel profiles with bastion host / jump box support
- Credential integration from vault
- Multi-hop tunneling
- xterm.js (GUI) / direct PTY (TUI)
- Multi-tab, split panes
- Session recording and playback
- Config backup and versioning
- Side-by-side diff with syntax highlighting
- Bulk config push with dry-run preview
- Pin runbooks, SOPs, and reference docs to devices or device groups
- Inline markdown viewer
- Version-tracked documentation per device category
- Excel export with formatting (powered by
rust_xlsxwriter) - CSV, JSON export
- Free tier: 10 rows; licensed: unlimited
- Billing unit: partitions (not seats) — unlimited users per partition
- Tiers: Free (local-only), Pro (1 synced), Team (5 synced), Enterprise (configurable)
- Offline-signed Ed25519 license files
- See Admin Guide for full details
See docs/screenshots/ for GUI and TUI views.
# Install dependencies
npm install
# Development
npm run dev # Svelte dev server
npm run tauri:dev # Tauri + Svelte
# Build
npm run build # Svelte build
npm run tauri:build # Tauri release build
# Quality
npm run lint # ESLint
npm run check # TypeScript type check
npm test # Vitest (33 tests)src/ # Svelte 5 frontend
├── lib/
│ ├── domain/ # Business logic (entitlements, licensing, partitions)
│ ├── stores/ # Svelte 5 rune stores
│ ├── guards/ # Data isolation (partition guard)
│ ├── services/ # Tauri invoke wrappers
│ ├── components/ # UI components (imports from @plures/design-dojo)
│ └── types/ # TypeScript types
├── routes/ # SvelteKit pages
src-tauri/ # Rust backend
├── src/
│ ├── licensing/ # Ed25519 license verification
│ ├── partitions/ # Partition CRUD + limit enforcement
│ └── policy/ # Feature matrix + entitlement checks
Router, Switch, Firewall, Access Point, Load Balancer, WAN Optimizer, Wireless Controller, Network TAP, Packet Broker
Server (Physical), Virtual Machine, Hypervisor, Container Host, Storage Array, Backup Appliance, UPS/PDU, KVM/Console Server, BMC/IPMI
Cloud VPC/VNet, Cloud Instance, Cloud Load Balancer, Cloud Gateway, Cloud Storage, Cloud Database
User-defined categories with custom metadata schemas, health checks, and credential templates.
Dual-licensed under BSL-1.1 and MIT. You may choose either license at your option.