Skip to content
Dotweave Dotweave v0.39.7
Docs
How It Works

How It Works

The mental model, data flow, and design decisions behind dotweave.

Understanding what happens under the hood makes dotweave feel predictable. This guide covers the mental model, the data flow for push and pull, and the design decisions that shape the tool.

Mental model

Section titled “Mental model”

Think of dotweave as a two-way mirror between your local config files and a Git-tracked sync directory:

  • Local files are the source of truth while you work.
  • The sync directory is a mirror that can be pushed to a Git remote and pulled down on another machine.

dotweave never modifies files behind your back — you explicitly run push to update the mirror or pull to apply changes from it.

Data flow

Section titled “Data flow”
editor → local files → dotweave push → sync directory → git push → remote
                                                                     
other machine ← dotweave pull ← sync directory ← git pull ← remote

There are two distinct operations. Git transport sits between them but is entirely in your hands.

Push flow

Section titled “Push flow”

  1. Load manifest.jsonc — dotweave reads the sync config to discover every tracked file and its settings.

  2. Walk local files — for each entry it reads the file at the resolved localPath for the current platform.

  3. Compare with existing artifacts — if the file in the sync directory is already identical, nothing is written.

  4. Encrypt secrets — entries marked as secret are encrypted with age before being written.

  5. Write artifacts — the (possibly encrypted) content is written to repoPath inside the sync directory.

Pull flow

Section titled “Pull flow”

  1. Load manifest.jsonc — same config, same resolution logic.

  2. Read artifacts — dotweave reads each file from the sync directory.

  3. Decrypt secrets — encrypted files are decrypted using your local age key.

  4. Write to local paths — content is written to the resolved localPath.

  5. Apply permissions — file permissions recorded in the config are restored so nothing ends up world-readable by accident.

Design decisions

Section titled “Design decisions”

Local-first

Section titled “Local-first”

Your editor writes to real files on disk, and dotweave reads from those same files. There’s no database, no daemon, and no background watcher. You decide when to sync.

Section titled “No symlinks”

Some dotfile managers replace your config files with symlinks pointing into the repository. dotweave deliberately copies files instead. This avoids permission headaches, cross-filesystem issues, and surprises when a tool doesn’t follow symlinks.

age encryption

Section titled “age encryption”

Secrets are encrypted at rest in the sync directory using age. age was chosen for its simplicity — a single key file, no key servers, no expiry management. Your private key never leaves the machine.

Git as transport

Section titled “Git as transport”

dotweave piggybacks on Git instead of inventing its own sync protocol. You get branching, history, merge conflict tooling, and hosting (GitHub, GitLab, etc.) for free.

Sync directory structure

Section titled “Sync directory structure”

The sync directory is a regular Git repository with a predictable layout. For the full breakdown, see the Directory Structure guide.

At a glance:

~/dotfiles/          ← sync directory root (Git repo)
├── manifest.jsonc   ← sync config listing every tracked file
├── .age-key         ← your age private key (git-ignored)
├── .age-recipients  ← age public key(s) for encryption
└── ...              ← artifacts written by dotweave push
Dotweave · MIT License · GitHub
Home

Overview

Dotweave Getting Started

Guides

Directory Structure Tracking Files Sync Modes Syncing Secrets Profiles Platform-Specific Paths Multi-Device Workflow How It Works Shell Autocomplete

Command Reference

dotweave init dotweave track dotweave push dotweave pull dotweave status dotweave untrack dotweave cd dotweave profile dotweave doctor dotweave autocomplete