
Research
/Security News
jscrambler npm Package Compromised in Supply Chain Attack
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.
Create Stripe products and prices with generated TypeScript constants from a simple JSON file
Productize is a tool that automates the process of creating and syncing Stripe products and prices from a single JSON configuration file. It generates TypeScript constants for safe product and price references in your codebase.
bun add -g productize
# or
npm install -g productize
You can use this tool directly from the command line:
# Set stripe key
export STRIPE_SECRET_KEY=sk_your_stripe_secret_key
# Add productize cli tool
bun add -g productize
# Run the CLI
productize [input-file] [output-file]
Or run one-shot with bunx:
bunx productize [input-file] [output-file]
Arguments:
input-file: Path to your JSON file with product data (default: products.json)output-file: Path where the TypeScript file will be generated (default: products.ts)You can also use this tool programmatically in your Node.js/Bun/Deno projects:
import { syncStripeProductConfig } from 'productize';
await syncStripeProductConfig({
stripeSecretKey: 'your_stripe_secret_key',
inputFilePath: 'path/to/your/products.json',
outputFilePath: 'path/to/output/products.ts'
});
console.log('Stripe products synced successfully.');
Or without top-level await / import:
require('productize').syncStripeProductConfig({
stripeSecretKey: 'your_stripe_secret_key',
inputFilePath: 'path/to/your/products.json',
outputFilePath: 'path/to/output/products.ts'
}).then(() => console.log('Stripe products synced successfully'));
Your products input JSON file should have the following structure:
[
{
"name": "Basic Plan",
"description": "Basic features for individuals",
"prices": [
{
"name": "Monthly",
"unit_amount": 999,
"currency": "usd",
"recurring": {
"interval": "month"
}
},
{
"name": "Yearly",
"unit_amount": 9990,
"currency": "usd",
"recurring": {
"interval": "year"
}
}
]
},
// Add more products as needed
]
The tool will generate a TypeScript file with SNAKE_CASE constants for your Stripe products and prices:
// This file is auto-generated. Do not edit manually.
export const STRIPE_PRODUCTS = {
BASIC_PLAN: {
ID: 'prod_Qc1gQZpb89FTYN',
PRICES: {
MONTHLY: {
ID: 'price_1PkndDBUsi1mfR0LbGg1Nwtk',
AMOUNT: '$9.99 USD',
},
YEARLY: {
ID: 'price_1PkndEBUsi1mfR0L3qMxfCMh',
AMOUNT: '$99.90 USD',
},
},
},
};
products.json and auto-generated TypeScript file in version control.STRIPE_SECRET_KEY environment variables to target test and live mode Stripe data.Issues, pull requests, and forks are welcome, but this free side project may become unmaintained at any time.
MIT
FAQs
Create Stripe products and prices with generated TypeScript constants from a simple JSON file
We found that productize demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.

Research
/Security News
A malicious .NET package is typosquatting the Braintree SDK to steal live payment card data, merchant API keys, and host secrets from production apps.

Security News
/Research
Compromised Injective SDK npm version 1.20.21 exfiltrates wallet private keys and mnemonics through fake telemetry functionality.