npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

paubox-cli

v0.3.0

Published

Official CLI for the Paubox encrypted email API

Downloads

875

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jerry-pauboxjerry-paubox

Keywords

Readme

paubox-cli

Official CLI for the Paubox encrypted email API. Send HIPAA-compliant email, check delivery status, and manage your credentials from the terminal.

Installation

npm (all platforms)

npm install -g paubox-cli

Homebrew (macOS)

brew tap paubox/paubox
brew install paubox-cli

Windows

winget install Paubox.CLI

Or via npm:

npm install -g paubox-cli

Keytar (optional): The CLI uses the Windows Credential Vault for secure credential storage via the keytar native module. If keytar fails to build during install, credentials fall back to a config file automatically — no action required. To enable native keychain support, install Visual C++ Build Tools before running npm install -g paubox-cli.

Requirements

  • Node.js ≥ 20.12.0
  • On Linux: libsecret-1-dev is required for OS keychain support
    sudo apt-get install libsecret-1-dev
    Without it, credentials fall back to a local config file automatically (~/.config/paubox/config.json on Linux/macOS, %APPDATA%\paubox\config.json on Windows).

Quick Start

# Authenticate with your Paubox API credentials
paubox auth login

# Send an email
paubox send --to [email protected] --from [email protected] --subject "Hello" --text "Hi there!"

# Check delivery status
paubox status <trackingId>

Commands

paubox auth

Manage Paubox API credentials.

paubox auth login     # Prompt for API username and key; validate and store
paubox auth logout    # Remove stored credentials
paubox auth status    # Show current authentication state

Credentials are stored in the OS keychain (macOS Keychain, Windows Credential Vault, Linux Secret Service) when available. If the keychain is unavailable, they fall back to a local config file (~/.config/paubox/config.json on Linux/macOS, %APPDATA%\paubox\config.json on Windows).

paubox send

Send a secure email.

paubox send \
  --to [email protected] \
  --from [email protected] \
  --subject "Your subject" \
  --text "Plain text body" \
  --html "<p>HTML body</p>" \
  --attachment /path/to/file.pdf

| Flag | Required | Description | |------|----------|-------------| | --to <email...> | Yes | Recipient(s). Repeat for multiple: --to [email protected] --to [email protected] | | --from <email> | No* | Sender address. Defaults to defaultFrom config value | | --subject <text> | Yes | Email subject | | --text <body> | No† | Plain text body | | --html <body> | No† | HTML body | | --attachment <file...> | No | File path(s) to attach |

† At least one of --text or --html is required.

On success, prints the source tracking ID:

✓ Email sent. Tracking ID: abc123-def456

paubox status

Check the delivery status of a sent email.

paubox status <trackingId>

Outputs a table of recipients with delivery status and timestamps:

recipient              status     delivered at              opened  opened at
---------------------  ---------  ------------------------  ------  ---------
[email protected]         delivered  2026-01-01T12:00:00Z      opened  2026-01-01T13:00:00Z

paubox forms

Retrieve form metadata and submit responses to Paubox forms. These commands do not require authentication.

forms get <formId>

paubox forms get <formId>
paubox --json forms get <formId>

Prints the form's title, description, active status, submission count, and timestamps. With --json, returns the raw API response object.

forms submit <formId>

# Inline key=value pairs (repeatable)
paubox forms submit <formId> \
  --data "first_name=Jane" \
  --data "last_name=Doe" \
  --data "[email protected]"

# Read form fields from a JSON file
paubox forms submit <formId> --data-file ./fields.json

# Mix file and inline overrides (--data wins on matching keys)
paubox forms submit <formId> \
  --data-file ./base.json \
  --data "field=override"

# Attach a file with the submission
paubox forms submit <formId> \
  --data "name=Jane" \
  --attach /path/to/signed-consent.pdf

| Flag | Description | |------|-------------| | --data <key=value> | Form field as a key=value pair. Repeatable. Values may contain =. | | --data-file <path> | Path to a JSON file whose top-level string values are used as form_data. Merged with --data; --data takes precedence on matching keys. | | --attach <file> | File to include as an attachment. Repeatable. Total request size must not exceed 250 MB. |

On success:

✓ Form submitted successfully.

With --json:

{ "status": "ok", "formId": "<formId>" }

paubox config

Manage CLI configuration stored in ~/.config/paubox/config.json (Linux/macOS) or %APPDATA%\paubox\config.json (Windows).

paubox config set defaultFrom [email protected]
paubox config get defaultFrom
paubox config list
paubox config reset

| Key | Description | |-----|-------------| | defaultFrom | Default sender address used when --from is omitted |

Global Options

These flags work with any command:

| Flag | Description | |------|-------------| | --json | Output result as JSON (useful for scripting) | | -q, --quiet | Suppress non-essential output | | -v, --version | Print version | | --help | Show help |

JSON output example

paubox --json send --to [email protected] --from [email protected] --subject Hi --text Hello
# {"sourceTrackingId":"abc123-def456"}

Homebrew Tap Setup

After publishing to npm, create the Homebrew tap in a separate repository named homebrew-paubox:

homebrew-paubox/
└── Formula/
    └── paubox-cli.rb
class PauboxCli < Formula
  desc "Official CLI for the Paubox encrypted email API"
  homepage "https://github.com/Paubox/paubox-cli"
  url "https://registry.npmjs.org/paubox-cli/-/paubox-cli-0.1.0.tgz"
  sha256 "<sha256 of the npm tarball>"
  license "Apache-2.0"

  depends_on "node"

  def install
    system "npm", "install", *std_npm_args
    bin.install_symlink libexec/"bin/paubox"
  end

  test do
    assert_match "paubox", shell_output("#{bin}/paubox --version")
  end
end

To get the SHA256: curl -s https://registry.npmjs.org/paubox-cli/0.1.0 | jq -r .dist.shasum

Development

git clone https://github.com/Paubox/paubox-cli.git
cd paubox-cli
npm install
npm test          # Run tests
npm run lint      # Lint
npm run build     # Compile TypeScript
npm run dev -- auth status  # Run without building

Project structure

src/
  commands/       auth, send, status, config, forms command handlers
  lib/            api client, forms API client, credential storage, config store, output helpers
  index.ts        Library entry — exports createProgram() and run()
  cli.ts          Runtime entry — invokes run() (used by bin/ and `npm run dev`)
bin/
  paubox.js       Shebang wrapper (ships in npm package)
test/             Jest unit tests mirroring src/ structure

Releasing

Releases are fully automated through Release Please and npm Trusted Publishers. No local commands, no tokens, no manual tagging.

Flow

  1. Land changes on master using Conventional Commits:
    • fix: ... → patch bump (e.g. 0.1.0 → 0.1.1)
    • feat: ... → minor bump (e.g. 0.1.0 → 0.2.0)
    • feat!: ... or BREAKING CHANGE: in the body → minor bump pre-1.0, major bump after 1.0
    • chore: ..., docs: ..., refactor: ..., test: ... → no version bump
  2. The release-please workflow opens (or updates) a PR titled chore(master): release <next-version> with a generated CHANGELOG.md entry and the version bump in package.json and .release-please-manifest.json.
  3. When that PR is merged, the same workflow creates the paubox-cli-v<version> git tag + GitHub Release, then immediately runs a dependent publish job that validates the build and publishes to npm with provenance via OIDC.

Release-please and the publish job live in the same workflow file (release-please.yml) on purpose: a separate workflow listening for tag pushes would never fire, because tags created by GITHUB_TOKEN deliberately don't trigger downstream workflows. Chaining the jobs via needs: keeps the entire release in one run, no PAT required.

If the publish job ever fails for a transient reason (registry hiccup, OIDC rotation, etc.), recover by re-running just the failed job from the Actions UI — the release-please job already created the tag and Release, so re-running the publish job picks them up unchanged.

Setup requirements (one-time)

  • Repository setting: Settings → Actions → General → Workflow permissions → Allow GitHub Actions to create and approve pull requests (so release-please can open the release PR).
  • npm package setting: a trusted publisher must be configured at npmjs.com/package/paubox-cli/access, pointing at this repo and release-please.yml.

License

Apache 2.0 — see LICENSE