{"id":13514082,"url":"https://github.com/stripe/stripe-cli","last_synced_at":"2026-06-09T02:01:29.824Z","repository":{"id":37484315,"uuid":"191848501","full_name":"stripe/stripe-cli","owner":"stripe","description":"A command-line tool for Stripe","archived":false,"fork":false,"pushed_at":"2026-06-01T21:05:58.000Z","size":20655,"stargazers_count":2063,"open_issues_count":189,"forks_count":487,"subscribers_count":48,"default_branch":"master","last_synced_at":"2026-06-01T22:07:21.385Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://stripe.com/docs/stripe-cli","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/stripe.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2019-06-14T00:01:21.000Z","updated_at":"2026-06-01T20:04:44.000Z","dependencies_parsed_at":"2023-12-18T16:55:16.536Z","dependency_job_id":"5a241ded-d49e-4e76-9e54-d42e8f7aa249","html_url":"https://github.com/stripe/stripe-cli","commit_stats":{"total_commits":597,"total_committers":82,"mean_commits":7.280487804878049,"dds":0.8073701842546064,"last_synced_commit":"4876ff10faeca38f13e53a40a11045426cef9bfc"},"previous_names":[],"tags_count":256,"template":false,"template_full_name":null,"purl":"pkg:github/stripe/stripe-cli","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stripe%2Fstripe-cli","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stripe%2Fstripe-cli/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stripe%2Fstripe-cli/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stripe%2Fstripe-cli/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/stripe","download_url":"https://codeload.github.com/stripe/stripe-cli/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stripe%2Fstripe-cli/sbom","scorecard":{"id":493033,"data":{"date":"2025-08-11","repo":{"name":"github.com/stripe/stripe-cli","commit":"e3a6d7da523f8aaaeea7c3749e89327cc125a3aa"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":6,"checks":[{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Maintained","score":8,"reason":"8 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 8","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":9,"reason":"Found 20/22 approved changesets -- score normalized to 9","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/install-test.yml:1","Warn: topLevel 'contents' permission set to 'write': .github/workflows/release.yml:9","Warn: no topLevel permission defined: .github/workflows/test-snapshot.yml:1","Warn: no topLevel permission defined: .github/workflows/test.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install-test.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/install-test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install-test.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/install-test.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/install-test.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/install-test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install-test.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/install-test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install-test.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/install-test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/install-test.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/install-test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:54: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:71: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/release.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-snapshot.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test-snapshot.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-snapshot.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test-snapshot.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-snapshot.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test-snapshot.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test-snapshot.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test-snapshot.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/test.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/stripe/stripe-cli/test.yml/master?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:1: pin your Docker image by updating alpine to alpine@sha256:4bcff63911fcb4448bd4fdacec207030997caf25e9bea4045fa6c8c44de311d1","Warn: goCommand not pinned by hash: .github/workflows/test.yml:33","Warn: goCommand not pinned by hash: .github/workflows/test.yml:34","Info:   0 out of  16 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   9 third-party GitHubAction dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   1 out of   3 goCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Branch-Protection","score":8,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'allow deletion' disabled on branch 'master'","Info: 'force pushes' disabled on branch 'master'","Info: 'branch protection settings apply to administrators' is required to merge on branch 'master'","Warn: required approving review count is 1 on branch 'master'","Info: codeowner review is required on branch 'master'","Info: status check found to merge onto on branch 'master'","Info: PRs are required in order to make changes on branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/stripe/.github/SECURITY.md:1","Info: Found linked content: github.com/stripe/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/stripe/.github/SECURITY.md:1","Info: Found text in security policy: github.com/stripe/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v1.29.0 not signed: https://api.github.com/repos/stripe/stripe-cli/releases/236402584","Warn: release artifact v1.28.0 not signed: https://api.github.com/repos/stripe/stripe-cli/releases/229547106","Warn: release artifact v1.27.0 not signed: https://api.github.com/repos/stripe/stripe-cli/releases/216267677","Warn: release artifact v1.26.1 not signed: https://api.github.com/repos/stripe/stripe-cli/releases/210248886","Warn: release artifact v1.26.0 not signed: https://api.github.com/repos/stripe/stripe-cli/releases/209926003","Warn: release artifact v1.29.0 does not have provenance: https://api.github.com/repos/stripe/stripe-cli/releases/236402584","Warn: release artifact v1.28.0 does not have provenance: https://api.github.com/repos/stripe/stripe-cli/releases/229547106","Warn: release artifact v1.27.0 does not have provenance: https://api.github.com/repos/stripe/stripe-cli/releases/216267677","Warn: release artifact v1.26.1 does not have provenance: https://api.github.com/repos/stripe/stripe-cli/releases/210248886","Warn: release artifact v1.26.0 does not have provenance: https://api.github.com/repos/stripe/stripe-cli/releases/209926003"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/release.yml:67"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 28 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":9,"reason":"1 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2025-3787 / GHSA-fv92-fjc5-jj9h"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-19T19:44:13.393Z","repository_id":37484315,"created_at":"2025-08-19T19:44:13.393Z","updated_at":"2025-08-19T19:44:13.393Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34088013,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-09T02:00:06.510Z","response_time":63,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-01T05:00:45.864Z","updated_at":"2026-06-09T02:01:29.818Z","avatar_url":"https://github.com/stripe.png","language":"Go","funding_links":[],"categories":["Go","Payments and Finance","Developer CLIs"],"sub_categories":["Community"],"readme":"# Stripe CLI\n\n![GitHub release (latest by date)](https://img.shields.io/github/v/release/stripe/stripe-cli)\n![Build Status](https://github.com/stripe/stripe-cli/actions/workflows/release.yml/badge.svg)\n\nThe Stripe CLI helps you build, test, and manage your Stripe integration right from the terminal.\n\n**With the CLI, you can:**\n\n- Securely test webhooks without relying on 3rd party software\n- Trigger webhook events or resend events for easy testing\n- Tail your API request logs in real-time\n- Create, retrieve, update, or delete API objects.\n\n![demo](docs/demo.gif)\n\n## Installation\n\nStripe CLI is available for macOS, Windows, and Linux for distros like Ubuntu, Debian, RedHat and CentOS.\n\n### npm (macOS, Linux, Windows)\n\nIf you have Node.js \u003e= 18 installed, you can install via `npm`:\n\n```sh\nnpm install -g @stripe/cli\n```\n\nYou can also directly execute commands via `npx`, although this won't add `stripe` to your `PATH`:\n\n```sh\nnpx @stripe/cli login\n```\n\n### macOS\n\nStripe CLI is available on macOS via [Homebrew](https://brew.sh/):\n\n```sh\nbrew install stripe/stripe-cli/stripe\n```\n\n### Linux\n\nRefer to the [installation instructions](https://stripe.com/docs/stripe-cli#install) for available Linux installation options.\n\n### Windows\n\nStripe CLI is available on Windows via the [Scoop](https://scoop.sh/) package manager:\n\n```sh\nscoop bucket add stripe https://github.com/stripe/scoop-stripe-cli.git\nscoop install stripe\n```\n\n### Docker\n\nThe CLI is also available as a Docker image: [`stripe/stripe-cli`](https://hub.docker.com/r/stripe/stripe-cli).\n\n```sh\ndocker run --rm -it stripe/stripe-cli version\nstripe version x.y.z (beta)\n```\n\n**Password Store Setup with Docker**\n\nWhile test mode doesn’t require password store, you will need to set it up if you wish to perform live mode requests.\n\n\u003e You can also make live mode requests on a per command basis by attaching the `--api-key` flag.\n\n1. Create `entrypoint.sh`\n\n```sh\n#!/bin/sh\nif ! [ -f ~/.gnupg/trustdb.gpg ] ; then\n  chmod 700 ~/.gnupg/\n  gpg --quick-generate-key stripe-live # This will generate a gpg key called \"stripe-live\"\nfi\nif ! [ -f ~/.password-store/.gpg-id ] ; then\n  pass init stripe-live # This will initialize a password store record named \"stripe-live\", using the gpg key above\n  pass insert stripe-live # This will insert value for the password store \"stripe-live\", which we will put Stripe Live Secret Key in\nfi\n\nstring=\"$@\"\nliveflag=\"--live\"\n\nif [ -z \"${string##*$liveflag*}\" ] ;then\n  OPTS=\"--api-key $(pass show stripe-live)\" # This will use the content of the password store \"stripe-live\" which was inserted in line 8\nfi\n\n#pass insert stripe-live\n/bin/stripe  $@ $OPTS\n```\n\n2. Create a docker file `Dockerfile-cli`\n\n```sh\nFROM  stripe/stripe-cli:vx.x.x\nRUN  apk  add  pass  gpg-agent\nCOPY  ./entrypoint.sh  /entrypoint.sh\nENTRYPOINT  [ \"/entrypoint.sh\" ]\n```\n\n3. Build the docker image\n\n```sh\ndocker build -t stripe-cli -f Dockerfile-cli .\n```\n\n4. Run the docker image with password volumes, replacing `$command` with the appropraite Stripe CLI command (i.e `customers list`)\n\n```sh\ndocker run --rm -it -v stripe-config://root/.config/stripe/ -v stripe-gpg://root/.gnupg/ -v stripe-pass://root/.password-store/ stripe-cli $command\n```\n\n\u003e For live mode requests append `--live` after `$command`.\n\n### Without package managers\n\nInstructions are also available for installing and using the CLI [without a package manager](https://github.com/stripe/stripe-cli/wiki/Installing-and-updating#without-a-package-manager).\n\n## Usage\n\nInstalling the CLI provides access to the `stripe` command.\n\n```sh-session\nstripe [command]\n\n# Run `--help` for detailed information about CLI commands\nstripe [command] help\n```\n\n## Commands\n\nThe Stripe CLI supports a broad range of commands. Below are some of the most used ones:\n- [`login`](https://stripe.com/docs/cli/login)\n- [`listen`](https://stripe.com/docs/cli/listen)\n- [`trigger`](https://stripe.com/docs/cli/trigger)\n- [`logs tail`](https://stripe.com/docs/cli/logs/tail)\n- [`events resend`](https://stripe.com/docs/cli/events/resend)\n- [`samples`](https://stripe.com/docs/cli/intro_stripe_samples)\n- [`serve`](https://stripe.com/docs/cli/serve)\n- [`status`](https://stripe.com/docs/cli/status)\n- [`config`](https://stripe.com/docs/cli/config)\n- [`open`](https://stripe.com/docs/cli/open)\n- [`get`, `post` \u0026 `delete` commands](https://stripe.com/docs/cli/get)\n- [`resource` commands](https://stripe.com/docs/cli/resources)\n\n## Documentation\n\nFor a full reference, see the [CLI reference site](https://stripe.com/docs/cli)\n\n## Telemetry\n\nThe Stripe CLI includes a telemetry feature that collects some usage data. See our [telemetry reference](https://stripe.com/docs/cli/telemetry) for details.\n\n## Feedback\n\nGot feedback for us? Please don't hesitate to tell us on [feedback](https://stri.pe/cli-feedback).\n\n## Contributing\n\nSee [Developing the Stripe CLI](../../wiki/developing-the-stripe-cli) for more info on how to make contributions to this project.\n\n## License\nCopyright (c) Stripe. All rights reserved.\n\nLicensed under the [Apache License 2.0 license](blob/master/LICENSE).\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fstripe%2Fstripe-cli","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fstripe%2Fstripe-cli","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fstripe%2Fstripe-cli/lists"}