
Security News
PolinRider: North Korea-Linked Supply Chain Campaign Expands Across Open Source Ecosystems
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.
@squadai/cli
Advanced tools
Command-line interface for Squad AI — manage product strategy (goals, opportunities, solutions, feedback, insights) from your terminal or AI agent workflows.
See the full documentation for detailed usage guides and examples.
npm install -g @squadai/cli
Requires Node.js 22+.
squad auth login # Opens browser for OAuth2 login
squad workspace list # List available workspaces
squad workspace select <orgId> <workspaceId>
| Command | Description |
|---|---|
squad auth login|logout|status | Authenticate via OAuth2 PKCE |
squad workspace list|select|get|update|summary | Manage workspaces |
squad opportunity list|get|create|update|delete | Track problem statements |
squad solution list|get|create|update|delete | Define and manage solutions |
squad goal list|get|create|update|delete | Set business objectives |
squad feedback list|get|create|delete | Capture customer feedback |
squad insight list|get|create|delete | Record insights |
squad knowledge list|get|create|delete | Manage knowledge base |
squad search <query> | Semantic search across workspace |
squad view strategy-context [--type --id] | Entity in strategy hierarchy |
squad view roadmap | Solutions by horizon (Now/Next/Later) |
squad opportunity generate-solutions <id> | AI-generated solutions |
squad solution prioritise --solution-ids <ids> | AI-powered prioritisation |
All commands support --format json|table.
Config is stored in ~/.config/squad/ (respects XDG_CONFIG_HOME):
auth.json — OAuth tokensclient.json — Registered OAuth client IDsworkspace.json — Selected workspace per environmentOverride auth with SQUAD_TOKEN env var. Select environment with SQUAD_ENV.
yarn install
yarn build # Build to dist/cli.js
yarn dev # Watch mode
Lint and format:
yarn format # Check (Biome)
yarn format:fix # Auto-fix
yarn knip # Dead code detection (Knip)
Regenerate the API client from the OpenAPI spec:
yarn openapi:squad
./scripts/smoke-test.sh <org-id> <workspace-id>
src/
├── cli.ts # Entry point (Commander.js)
├── commands/ # Command modules (auth, workspace, opportunity, etc.)
└── lib/
├── auth/ # OAuth2 PKCE flow + token storage
├── clients/ # API client with auth middleware
├── openapi/ # Generated TypeScript Fetch client
├── config.ts # Environment config
├── context.ts # Auth + workspace context resolution
├── errors.ts # Error handling
└── output.ts # JSON/table formatting
MIT
FAQs
Squad AI CLI - Product strategy management for AI agents and humans
We found that @squadai/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.