npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

claude-sfdx-iq

v2.0.0

Published

Salesforce DX plugin for Claude Code — self-contained commands with baked-in standards, specialized agents, hooks, and rules for Apex, LWC, Flows, and SFDX CI/CD

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

bobby91221bobby91221

Keywords

claude-codesalesforcesfdxapexlwcsoqlflowslightningdevopsagentshooksrulescode-reviewsecuritygovernor-limitsautomationbest-practices

Readme

claude-sfdx-iq

npm test License: MIT 19 commands 7 agents

This plugin gives Claude Code deep Salesforce expertise. When you install it, Claude understands Salesforce best practices -- security, governor limits, permission models, flows, deployments -- and applies them automatically to everything it builds or reviews for you.

Ask Claude to review your Apex code, design a data model, check your flows, build a trigger, or plan a feature -- and it will follow Salesforce platform rules without you having to remind it.

Who Is This For?

| If you are... | This plugin helps you... | |---|---| | A Salesforce Admin | Review flows, design permission sets, analyze data models, check org health -- all through plain English conversation with Claude | | A Salesforce Developer | Write bulkified Apex, build secure LWC, create triggers, catch governor limit violations, scaffold components with tests | | A DevOps / Release Manager | Plan deployments, manage packages, run CI/CD checks |

Installation

You can install this plugin two ways -- pick whichever you are most comfortable with.

Directly from Your Terminal

Add the marketplace (one-time)

claude plugin marketplace add bhanu91221/claude-sfdx-iq

Install the plugin

claude plugin install claude-sfdx-iq

Or install in Claude Code

Add the marketplace (one-time)

/plugin marketplace add bhanu91221/claude-sfdx-iq

Install the plugin

/plugin install claude-sfdx-iq

Setting Up Your Salesforce Project

After installing the plugin, copy the plugin configuration into each Salesforce project you work on. This is a one-time step per project.

Option 1 -- Run a command in your terminal (recommended)

Open a terminal, navigate to your Salesforce project folder, and run:

npx claude-sfdx-iq setup-project

Option 2 -- Use a slash command inside Claude Code

Open Claude Code cli in your Salesforce project and type:

/setup-project

This is a good option if npm is blocked on your network (corporate VPN).

Option 3 -- Copy files manually

Download the plugin files from GitHub, then copy the following into the .claude folder inside your Salesforce project:

your-salesforce-project/
  .claude/
    settings.json    <-- copy from plugin's .claude-project-template/ folder
    CLAUDE.md        <-- copy from plugin's .claude-project-template/ folder

For detailed manual copy commands, see the Installation Guide.

Quick Start

After installation and project setup, open your Salesforce project in Claude Code and try these commands.

For Admins

| Command | What it does | |---------|-------------| | /flow --review | Checks your flows for performance issues and missing fault paths | | /org-health | Analyzes your org's permissions, sharing rules, and metadata for technical debt | | /data-model | Helps design or analyze object relationships and field architecture | | /security-scan | Scans for CRUD/FLS, sharing, and injection vulnerabilities | | /status | Shows plugin status and org connection |

Try typing /org-health in Claude Code. The plugin will analyze your org's permission model, sharing rules, and metadata structure, then give you a report with specific recommendations.

For Developers

| Command | What it does | |---------|-------------| | /apex-class --review | Reviews Apex code for quality, bulkification, and security | | /trigger --new | Scaffolds a complete trigger + handler + test (3 files) | | /lwc --new | Scaffolds an LWC component with JS, HTML, CSS, meta, and test | | /security-scan | Scans for CRUD/FLS, sharing, and injection vulnerabilities | | /code-review --apex --all | Full Apex review with specialist agents running in parallel |

Run /help for the full command list, or see the Command Reference.

Note: If you see "Not an SFDX project", make sure you are in a directory with sfdx-project.json and you have run the setup-project step above.

What It Does

The plugin adds two layers of Salesforce intelligence to Claude:

Commands (19 self-contained tools) -- Each command includes its own domain standards inline. When you run /apex-class --review, the command already knows Apex bulkification rules, SOQL standards, governor limits, and error handling patterns. No context loading step required.

Agents (7 specialists) -- Think of these as 7 Salesforce consultants that Claude can call on. Commands invoke them automatically when deeper expertise is needed. You never call agents directly.

What the plugin enforces

  • Governor limits first -- Prevents code patterns that would hit Salesforce platform limits (like too many database queries)
  • Security by default -- Ensures proper access checks, data security, and protection against injection attacks
  • Bulk-safe code -- All code handles large volumes of records, not just one at a time
  • Test coverage -- Targets 90%+ test coverage with meaningful test scenarios

Domain Commands

Each domain command covers the full lifecycle of a Salesforce artifact. Use flags to select the workflow.

Apex & Backend

| Command | Flags | What it does | |---------|-------|-------------| | /apex-class | --new, --review, --refine, --bug-fix | General Apex classes -- service layers, controllers, utilities | | /trigger | --new, --review, --refine, --bug-fix | Triggers + handler delegation (one-per-object pattern) | | /async-apex | --new, --refine, --bug-fix | Batch, Queueable, Schedulable, @future classes | | /integration-apex | --new, --refine, --bug-fix | REST/SOAP callouts and inbound web services |

Frontend

| Command | Flags | What it does | |---------|-------|-------------| | /lwc | --new, --explain, --refine, --bug-fix | Lightning Web Components |

Flow & Process

| Command | Flags | What it does | |---------|-------|-------------| | /flow | --new, --review, --refine, --explain | Screen Flows, Record-Triggered Flows, Scheduled Flows |

Cross-Domain

| Command | Flags | What it does | |---------|-------|-------------| | /code-review | --apex [file\|--all], --lwc [comp\|--all], --flow [name\|--all] | Full review with specialist agents running in parallel | | /explain | --apex [file], --lwc [comp], --flow [name], --deep | Explain what code does; --deep traces behavior across files | | /security-scan | (no flags -- scans all) | CRUD/FLS, sharing model, SOQL injection, CSP, guest user security |

Flag behaviors:

  • --new -- gather requirements → scaffold artifact + test class → explain what was generated
  • --review -- identify files → check against domain standards → delegate to agent → severity report
  • --refine -- understand change request → apply modification → update tests
  • --bug-fix -- gather symptoms → diagnose root cause → fix → explain
  • --explain -- describe purpose, data flow, key behaviors, dependencies

Utility Commands

| Command | What it does | |---------|-------------| | /setup-project | Copy plugin configuration to your SFDX project | | /doctor | Diagnose plugin and org configuration issues | | /status | Show plugin status and org connection | | /org-health | Org health check: security score, limits, technical debt, metadata | | /data-model | ER design, object relationships, best practices | | /plan | Implementation planning with phased roadmap | | /package | 2GP package versioning and management | | /debug-log | Retrieve and analyze Salesforce debug logs | | /repair | Auto-fix common configuration problems |

The 7 Agents

The plugin includes 7 specialist agents. Commands invoke them automatically -- you do not call them directly.

| Agent | What they help with | |-------|-------------| | apex-code-reviewer | Apex quality -- bulkification, SOQL selectivity, governor limits, N+1 detection, naming, security | | solution-designer | Solution architecture, phased implementation plans, integration design, risk assessment | | devops-coordinator | Deployment strategy, test patterns, org health analysis, CI/CD pipelines, metadata debt | | lwc-reviewer | LWC components -- wire usage, events, accessibility, performance, security | | security-auditor | Security -- CRUD/FLS, sharing model, SOQL injection, XSS, CSP, guest user risks | | flow-analyst | Flows -- DML in loops, fault paths, recursion prevention, before/after save decisions | | integration-specialist | REST/SOAP callouts, Named Credentials, platform events, Change Data Capture |

Troubleshooting

| Problem | Solution | |---------|----------| | Plugin not loading | Run npx claude-sfdx-iq doctor or /doctor to diagnose environment issues | | "Not an SFDX project" error | Make sure you are in a folder with sfdx-project.json and have run the setup-project step | | Org not connected | Run npx claude-sfdx-iq status or /status to check your connection, then re-authenticate with sf org login web | | Something seems broken | Run npx claude-sfdx-iq repair or /repair to auto-fix common configuration problems |

For more troubleshooting steps, see the Installation Guide.

Documentation

| Document | Description | |----------|-------------| | Installation Guide | Detailed installation, prerequisites, and environment setup | | Architecture | Technical architecture and component flow | | Command Reference | All 19 commands with flags and examples | | Customization | How to add custom agents, commands, and hooks | | Contributing | Contribution guidelines | | Privacy Policy | What data the plugin accesses and what it does not | | Security Policy | How to report vulnerabilities |

License

MIT -- see LICENSE for details.

This plugin is not officially affiliated with or endorsed by Salesforce, Inc. "Salesforce," "Apex," "Lightning," "Visualforce," and related marks are trademarks of Salesforce, Inc.