npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@qrauth/cli

v0.1.0

Published

Official command-line interface for QRAuth — QR scan login, QR code management

Readme

@qrauth/cli

Official command-line interface for QRAuth — scan-to-authenticate login and QR code management from your terminal.

The CLI earns its place where it beats both the dashboard and the raw @qrauth/node SDK: automation (scriptable, pipe-able with --json), secret-free auth (no raw API keys in .env files or CI logs — credentials land in the OS keyring), and speed under pressure (revoke a leaked session faster than clicking through the dashboard).

Install

npm i -g @qrauth/cli

Requires Node.js 20 or newer.

Quick start

qrauth login            # scan the QR with the QRAuth app to authenticate
qrauth whoami           # show the active org, role, and key prefix
qrauth qr list          # list QR codes for the active organization

qrauth login runs a PKCE scan-to-authenticate flow (ADR-0002): it prints a QR code and a short verification code to the terminal. Scan the QR with the QRAuth app, confirm the verification code matches, and a role-bounded API key is stored locally — no key is ever pasted into a file or CI log.

Commands

Authentication & context

| Command | Description | | --- | --- | | qrauth login | Authenticate by scanning a QR code with the QRAuth app | | qrauth logout [--all] | Revoke and remove the stored credential (--all for every org) | | qrauth whoami | Show the active credential (organization, role, key prefix) | | qrauth orgs | List organizations with stored credentials | | qrauth org use <slug> | Set the active organization context |

QR codes

| Command | Description | | --- | --- | | qrauth qr create <destination> [--label <label>] | Create a signed QR code for a destination URL | | qrauth qr list | List QR codes for the active organization | | qrauth qr get <token> | Show a QR code by token | | qrauth qr rm <token> | Revoke a QR code by token |

Ephemeral delegated access

| Command | Description | | --- | --- | | qrauth ephemeral create <scopes...> [--ttl <dur>] [--max-uses <n>] [--device-binding] | Create an ephemeral session with one or more scopes | | qrauth ephemeral list | List ephemeral sessions for the active organization | | qrauth ephemeral revoke <sessionId> | Revoke an ephemeral session by id |

Global flags

| Flag | Description | | --- | --- | | --json | Output machine-readable JSON (progress UI goes to stderr, so stdout carries only the result) | | --org <slug> | Override the active organization context for one command | | --api-url <url> | QRAuth API base URL (also via QRAUTH_API_URL; defaults to the production API) |

Scripting

Every command supports --json, making the CLI pipe-able in CI/CD:

# Batch-mint signed codes in a release job
cat skus.txt | while read sku; do
  qrauth qr create "https://shop.example/p/$sku" --label "$sku" --json
done

# Drive an ephemeral access session from a test stage
qrauth ephemeral create read:profile --ttl 10m --json

License

MIT © Gernard Cerma / ProgressNet