CLI or dashboardRun a setup or test command against one workspace service instead of opening an unscoped runtime session.
Docs / Service command history
Use envforge workspace commands [workspace] --service <service>to review recent service command receipts for a branch workspace. The output is intentionally metadata-only: it can be filtered by status, limited for readability, or emitted as JSON without printing payloads, results, or error text.
$envforge workspace commands signed-links --service api --status failed --limit 5
workspace: signed-links; service: api
filter: status failed; limit 5
visible: command receipt metadata
hidden: payloads, results, error text
Command execution
From the CLI or dashboard, choose a workspace service and request a setup or test command. EnvForge turns that request into a queued runtime command, captures logs and result state, then shows the evidence with declared secrets masked.
CLI or dashboardRun a setup or test command against one workspace service instead of opening an unscoped runtime session.
runtime commandEnvForge queues the request for that service, wakes the runtime when needed, and records who asked for the command.
logs + resultCommand logs, exit status, timing, and result state stay attached to the command receipt for later CLI and dashboard review.
masked outputSecret values are redacted before logs, results, or receipts are shown in the CLI, dashboard, or handoff text.
Command history boundary
Command history should answer which service command ran and how it ended. It should not become another place where request payloads, result bodies, or provider error text escape into handoffs.
--service <service>Start from the workspace and service that ran the command so the history stays tied to the runtime surface someone is debugging.
--status <status>Narrow the list to the status you need before pasting the receipt into an issue, PR, or agent handoff.
--limit <n>Keep command history short enough for review notes and support threads without dumping a full workspace timeline.
--jsonUse JSON for scripts and agents. The structured output follows the same safety boundary as the terminal view.
Failed command handoff
When a setup, smoke, or service command fails, the safe artifact is a receipt that points authenticated operators to the evidence and names the next decision without publishing raw output.
receipt: cmd_01HX8M4W; workspace: signed-links
service: api; command: smoke; status: failed; exit: 1
started: 16:04Z; finished: 16:05Z; runtime: Small
visible: metadata, timing, status, exit code
private: payload, raw output, exception detail, provider message
next: inspect authenticated logs before retry
cmd_01HX...A failed-command handoff should name the receipt id, workspace, service, status, started time, finished time, and exit code.
logs behind authUse the receipt to find authenticated logs or result detail instead of copying raw exception detail, payloads, or provider messages into public review notes.
retry / block / escalateThe handoff should say whether the command is safe to retry, blocked on resource readiness, or needs a human owner before another runtime wake.
runtime may wakeRetrying a service command can wake the runtime, so command handoffs should include the selected size and cap posture when the run is not trivial.
Review checklist
Treat command history as an operator receipt. It should help humans and agents decide what to retry or inspect next while leaving raw command data behind authenticated logs and runtime access.
receipt metadataWorkspace, service, status, timing, and command receipt metadata are safe for handoffs.
Reviewers can see what ran and whether it completed.payload / result / error textThe command history view does not print command payloads, result bodies, or raw error text.
Failures stay diagnosable without leaking request data or logs.filtered historyUse status and limit filters before sharing command history outside the operator context.
Handoffs stay focused on the service state someone can act on.