Configuration

Handoff has no config file. Behaviour is controlled by environment variables set before running handoff new.

Environment Variables

Variable	Default	Purpose
`HANDOFF_RELAY`	`https://handoff.whyknot.dev`	Relay base URL. Override to use a self-hosted relay. Include the scheme; do not include a trailing slash.

Audit Log

Every command that runs during a session is appended to a JSONL file at:

%PROGRAMDATA%\whyknot\handoff\audit\handoff-YYYY-MM-DD.jsonl

On a default Windows install this expands to:

C:\ProgramData\whyknot\handoff\audit\handoff-2026-05-22.jsonl

One file per UTC day; new days roll automatically. If PROGRAMDATA is unset, the log falls back to %TEMP%\whyknot\handoff\audit\.

Each line is a JSON object with fields: ts, sid, op, cap, args, consent, result, elapsed_ms, and (when an error occurred) detail.

Risky Command Prompt

Risky commands no longer use an environment-variable opt-in. The first risky command in a handoff new session opens a yes/no warning popup on the host. Choosing Yes allows risky commands for the remainder of that session. Choosing No blocks risky commands for the remainder of that session.

Risky commands include arbitrary PowerShell execution, filesystem writes and deletes, process termination, service control, and Pico state-changing commands.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Configuration

Configuration

Environment Variables

Audit Log

Risky Command Prompt

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally