Instantly publish files and folders to the web with a live, shareable URL.
Works with
Supports any file type: HTML sites, images, PDFs, videos, and raw files with auto-generated viewers and directory listings
Anonymous sites expire in 24 hours; authenticated sites (with API key) are permanent
Single command workflow: ./scripts/publish.sh {file-or-dir} creates a live URL; use --slug flag to update existing sites
Includes optional handles (user-owned subdomains) and custom domain support for a
AI-first code editor with Composer
Before installing skills in Cursor, ensure your development environment meets these requirements:
node --versionhere-nowExecute the skills CLI command in your project's root directory to begin installation:
Fetches here-now from heredotnow/skill and configures it for Cursor.
The CLI shows a list of agents. Use arrow keys and space to select Cursor:
Confirm successful installation by checking the skill directory location:
Restart Cursor to activate here-now. Access via /here-now in your agent's command palette.
We perform automated surface-level scans (Gen AI Scanner, Socket, Snyk) during installation. These checks detect common vulnerabilities but do not guarantee complete security. Always review skill source code and verify the publisher's reputation before production use.
Skills execute code in your environment. Always review source, verify the publisher, and test in isolation before production.
Submit your Claude Code skill and start earning
Create detailed user stories, acceptance criteria, and feature specs
Example
Generate user stories for 'password reset feature' with acceptance criteria, edge cases, and test scenarios
Reduce spec writing time by 50%, ensure comprehensive coverage
Research competitors, compare features, identify gaps
Example
Analyze 5 competitor products, create feature comparison matrix, suggest differentiation opportunities
Complete competitive research in 2 hours instead of 2 days
Evaluate features using frameworks (RICE, ICE, Kano) and create prioritized backlogs
Example
Score 20 feature ideas using RICE framework, generate prioritized roadmap with rationale
0
total installs
0
this week
16
GitHub stars
0
upvotes
Run in your terminal
0
installs
0
this week
16
stars
Skill version: 1.11.0
Create a live URL from any file or folder. Static hosting with optional proxy routes for calling external APIs server-side.
To install or update (recommended): npx skills add heredotnow/skill --skill here-now -g
For repo-pinned/project-local installs, run the same command without -g.
curl, file, jq$HERENOW_API_KEY~/.herenow/credentials./scripts/publish.sh {file-or-dir}
Outputs the live URL (e.g. https://bright-canvas-a7k2.here.now/).
Under the hood this is a three-step flow: create/update -> upload files -> finalize. A site is not live until finalize succeeds.
Without an API key this creates an anonymous site that expires in 24 hours. With a saved API key, the site is permanent.
File structure: For HTML sites, place index.html at the root of the directory you publish, not inside a subdirectory. The directory's contents become the site root. For example, publish my-site/ where my-site/index.html exists — don't publish a parent folder that contains my-site/.
You can also publish raw files without any HTML. Single files get a rich auto-viewer (images, PDF, video, audio). Multiple files get an auto-generated directory listing with folder navigation and an image gallery.
./scripts/publish.sh {file-or-dir} --slug {slug}
The script auto-loads the claimToken from .herenow/state.json when updating anonymous sites. Pass --claim-token {token} to override.
Authenticated updates require a saved API key.
Pass --client so here.now can track reliability by agent:
./scripts/publish.sh {file-or-dir} --client cursor
This sends X-HereNow-Client: cursor/publish-sh on publish API calls.
If omitted, the script sends a fallback value.
The publish script reads the API key from these sources (first match wins):
--api-key {key} flag (CI/scripting only — avoid in interactive use)$HERENOW_API_KEY environment variable~/.herenow/credentials file (recommended for agents)To store a key, write it to the credentials file:
mkdir -p ~/.herenow && echo "{API_KEY}" > ~/.herenow/credentials && chmod 600 ~/.herenow/credentials
IMPORTANT: After receiving an API key, save it immediately — run the command above yourself. Do not ask the user to run it manually. Avoid passing the key via CLI flags (e.g. --api-key) in interactive sessions; the credentials file is the preferred storage method.
Never commit credentials or local state files (~/.herenow/credentials, .herenow/state.json) to source control.
After every site create/update, the script writes to .herenow/state.json in the working directory:
{
"publishes": {
"bright-canvas-a7k2": {
"siteUrl": "https://bright-canvas-a7k2.here.now/",
"claimToken": "abc123",
"claimUrl": "https://here.now/claim?slug=bright-canvas-a7k2&token=abc123",
"expiresAt": "2026-02-18T01:00:00.000Z"
}
}
}
Before creating or updating sites, you may check this file to find prior slugs.
Treat .herenow/state.json as internal cache only.
Never present this local file path as a URL, and never use it as source of truth for auth mode, expiry, or claim URL.
siteUrl from the current script run.publish_result.* lines from script stderr to determine auth mode.publish_result.auth_mode=authenticated: tell the user the site is permanent and saved to their account. No claim URL is needed.publish_result.auth_mode=anonymous: tell the user the site expires in 24 hours. Share the claim URL (if publish_result.claim_url is non-empty and starts with https://) so they can keep it permanently. Warn that claim tokens are only returned once and cannot be recovered..herenow/state.json for claim URLs or auth status.| Anonymous | Authenticated | |
|---|---|---|
| Max file size | 250 MB | 5 GB |
| Expiry | 24 hours | Permanent (or custom TTL) |
| Rate limit | 5 / hour / IP | 60 / hour free, 200 / hour hobby |
| Account needed | No | Yes (get key at here.now) |
To upgrade from anonymous (24h) to permanent sites:
curl -sS https://here.now/api/auth/agent/request-code \
-H "content-type: application/json" \
-d '{"email": "[email protected]"}'
curl -sS https://here.now/api/auth/agent/verify-code \
-H "content-type: application/json" \
-d '{"email":"[email protected]","code":"ABCD-2345"}'
apiKey yourself (do not ask the user to do this):mkdir -p ~/.herenow && echo "{API_KEY}" > ~/.herenow/credentials && chmod 600 ~/.herenow/credentials
| Flag | Description |
|---|---|
--slug {slug} |
Update an existing site instead of creating |
--claim-token {token} |
Override claim token for anonymous updates |
--title {text} |
Viewer title (non-HTML sites) |
--description {text} |
Viewer description |
--ttl {seconds} |
Set expiry (authenticated only) |
--client {name} |
Agent name for attribution (e.g. cursor) |
--base-url {url} |
API base URL (default: https://here.now) |
--allow-nonherenow-base-url |
Allow sending auth to non-default --base-url |
--api-key {key} |
API key override (prefer credentials file) |
--spa |
Enable SPA routing (serve index.html for unknown paths) |
--forkable |
Allow others to fork this site |
For React, Vue, Svelte, and other single-page applications, pass --spa when publishing:
./scripts/publish.sh ./dist --spa
This tells here.now to serve index.html for any path that doesn't match a real file, so client-side routing works on refresh and direct links. Without --spa, unknown paths return 404.
You can also toggle SPA mode on an existing site without re-publishing:
curl -sS -X PATCH https://here.now/api/v1/publish/{slug}/metadata \
-H "Authorization: Bearer {API_KEY}" \
-H "Content-Type: application/json" \
-d '{"spaMode": true}'
Asset paths: Make sure the build uses root-relative paths (/assets/app.js) not bare relative paths (assets/app.js). Vite and Create React App do this by default.
curl -sS -X POST https://here.now/api/v1/publish/{slug}/duplicate \
-H "Authorization: Bearer {API_KEY}" \
-H "Content-Type: application/json" \
-d '{}'
Creates a full copy of the site under a new slug. All files are copied server-side — no upload needed. The new site is immediately live. Requires authentication and ownership of the source site.
Optionally override viewer metadata (shallow-merged with the source):
curl -sS -X POST https://here.now/api/v1/publish/{slug}/duplicate \
-H "Authorization: Bearer {API_KEY}" \
-H "Content-Type: application/json" \
-d '{"viewer": {"title": "My Copy"}}'
Publishers can allow others to fork their sites. When a site has forkable: true, its file manifest is exposed and visitors see a fork button.
Publishing a forkable site:
./scripts/publish.sh ./dist --forkable
Or toggle on an existing site:
curl -sS -X PATCH https://here.now/api/v1/publish/{slug}/metadata \
-H "Authorization: Bearer {API_KEY}" \
-H "Content-Type: application/json" \
-d '{"forkable": true}'
Forking an existing forkable site:
GET https://{slug}.here.now/.herenow/manifest.jsonGET https://{slug}.here.now/.herenow/raw/{path}--forkable to keep the fork chain goingThe manifest returns a JSON object with files (array of {path, size}), spaMode, and requiredVariables (variables needed for proxy routes, with upstream domains).
If the site has proxy routes, the .herenow/proxy.json file is included in the download. The forker needs to set up their own variables for the proxy routes to work. Check requiredVariables in the manifest for what's needed.
Forkable is mutually exclusive with password protection and payment gating — disable one before enabling the other.
For delete, metadata patch (including password protection and payment gating), duplicate, claim, list, and other operations, see references/REFERENCE.md.
Sites can require stablecoin payment on the Tempo network before granting access. Payments go directly from the visitor's wallet to the publisher's wallet.
To receive payments you need a Tempo wallet address. Get one at wallet.tempo.xyz or by running npx mppx account create.
CLI commands:
# Set your Tempo wallet address (once)
herenow wallet set 0xYOUR_ADDRESS --api-key $HERENOW_API_KEY
# Require payment on a site (or change an existing price)
herenow price set <slug> 0.50 --api-key $HERENOW_API_KEY
# Use a different wallet for a specific site
herenow price set <slug> 1.00 --wallet 0xOTHER_ADDRESS --api-key $HERENOW_API_KEY
# Remove payment requirement
herenow price remove <slug> --api-key $HERENOW_API_KEY
# Check your wallet address
herenow wallet --api-key $HERENOW_API_KEY
Payment gating and password protection are mutually exclusive. You can also manage payments from the dashboard (Wallet tab for address, site menu for pricing).
If you fetch a here.now URL and get a 402 Payment Required response, the site requires payment.
If you have Tempo wallet + mppx installed: payment is handled automatically. No action needed.
If you have the Tempo CLI: run tempo request <url> to pay and retrieve the content.
If you don't have Tempo: use the payment session flow. The 402 response body includes paymentSession URLs:
{
"price": { "amount": "0.10", "currency": "USD" },
"paymentSession": {
"createUrl": "https://here.now/api/pay/<slug>/session",
"pollUrl": "https://here.now/api/pay/<slug>/poll",
"grantUrl": "https://here.now/api/pay/<slug>/grant"
},
"walletUrl": "https://wallet.tempo.xyz/"
}
Steps:
POST <createUrl> to get a unique deposit address and session IDhttps://wallet.tempo.xyz/)POST <pollUrl> with {"sessionId": "<id>"} every 3 seconds"found": true, call POST <grantUrl> with {"sessionId": "<id>", "txHash": "<hash>"}token. Fetch the original URL with ?__hn_grant=<token> to get the content.Example message to the user:
This site requires payment of $0.10 (USD) on the Tempo network. Send $0.10 to: 0xBd46...DbB6 If you need a Tempo wallet: https://wallet.tempo.xyz/
The agent should poll silently and present the content once payment is detected.
Sites can make authenticated API calls to external services without exposing secrets in client
Make data-driven prioritization decisions faster
Draft PRDs, status updates, and stakeholder presentations
Example
Create executive summary of Q3 roadmap, monthly progress report, feature launch announcement
Save 3-5 hours/week on communication overhead
Prerequisites
Time Estimate
30-60 minutes to see productivity improvements
Steps
Common Pitfalls
✓ Do
✗ Don't
💡 Pro Tips
✓ Use when
Use for user story writing, competitive research, roadmap prioritization, stakeholder communication, and PRD drafting. Best for reducing repetitive documentation and research work.
✗ Avoid when
Avoid for strategic product vision (requires deep customer empathy), pricing decisions (needs market and financial expertise), or when face-to-face customer discovery is more valuable than speed.
mattpocock/skills
parcadei/continuous-claude-v3
cursor/plugins
ailabs-393/ai-labs-claude-skills
pproenca/dot-skills
mattpocock/skills
I recommend here-now for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
Useful defaults in here-now — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
here-now fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
here-now reduced setup friction for our internal harness; good balance of opinion and flexibility.
Keeps context tight: here-now is the kind of skill you can hand to a new teammate without a long onboarding doc.
here-now is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
here-now is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
Registry listing for here-now matched our evaluation — installs cleanly and behaves as described in the markdown.
here-now fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
Keeps context tight: here-now is the kind of skill you can hand to a new teammate without a long onboarding doc.
showing 1-10 of 51