Product
Introducing Webhook Events for Pull Request Scans
Add real-time Socket webhook events to your workflows to automatically receive pull request scan results and security alerts in real time.
By Jeppe Hasseriis -  Oct 22, 2025
🚀 DAY 3 OF LAUNCH WEEK: Introducing Webhook Events for Pull Request Scans.Learn more →
sfdx-oss-plugin
Advanced tools
sfdx-oss-plugin
A plugin for the SFDX CLI that makes it easy to consume open source code.
sfdx-oss-plugins 
A plugin for the SFDX CLI with a number of useful commands.
Setup
Install from source
-
Install the SDFX CLI.
-
Clone the repository:
git clone git@github.com:wadewegner/sfdx-oss-plugin.git -
Install npm modules:
npm install -
Link the plugin:
sfdx plugins:link .
Install as plugin
- Install plugin:
sfdx plugins:install sfdx-oss-plugin
Create a Connected App
Simple example: sfdx waw:connectedapp:create -u <username|alias> -n <ConnectedAppName>
With a self-signed certificate: sfdx waw:connectedapp:create -u <username|alias> -n <ConnectedAppName> -r
Lots of options available:
-> sfdx waw:connectedapp:create --help
Usage: sfdx waw:connectedapp:create
Create a connected app in your org
-c, --callbackurl CALLBACKURL # callbackUrl (default is "sfdx://success")
-r, --certificate # create and register a certificate
-d, --description DESCRIPTION # connected app description
-n, --name NAME # connected app name
-s, --scopes SCOPES # scopes separated by commas (defaut: Basic, Api, Web, Refresh; valid: Basic, Api, Web, Full, Chatter, CustomApplications, RefreshToken, OpenID, CustomPermissions, Wave, Eclair)
-u, --targetusername TARGETUSERNAME # username or alias for the target org
List a Connected App
List a Connected App: sfdx waw:connectedapp:list -u <username|alias> -n <ConnectedAppName>
Display the details of the project
Display project: sfdx waw:project:display
Display package directories: sfdx waw:project:display -p
Set a default package directory
Set default package: sfdx waw:project:pdir:set -p <directory>
Create a package directory in the project file
Create: sfdx waw:project:pdir:create -p <directory>
Create as default: sfdx waw:project:pdir:create -p <directory> -d
Delete a package directory in the project file
Delete: sfdx waw:project:pdir:delete -p <directory>
Pull open source into your project
-
Create a new workspace:
sfdx force:workspace:create -n yourname -
Get open source:
sfdx waw:source:oss -r WadeWegner/Strike-Components -p force-app/main/default/
Create a manifest file to add to your open source project
- Create a manifest:
sfdx waw:source:create -p force-app/main/default/
List all trace flags
sfdx waw:trace:list
sfdx waw:trace:list -u <targetusername>
Create a trace flag
sfdx waw:trace:create
sfdx waw:trace:create -u <targetusername>
Delete the trace flag
sfdx waw:trace:delete
sfdx waw:trace:delete -u <targetusername>
FAQs
A plugin for the SFDX CLI that makes it easy to consume open source code.
We found that sfdx-oss-plugin demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 04 Sep 2017
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Malicious NuGet Packages Typosquat Nethereum to Exfiltrate Wallet Keys
The Socket Threat Research Team uncovered malicious NuGet packages typosquatting the popular Nethereum project to steal wallet keys.
By Kirill Boychenko -  Oct 22, 2025
Product
Unify Your Security Stack with Socket Basics
A single platform for static analysis, secrets detection, container scanning, and CVE checks—built on trusted open source tools, ready to run out of the box.
By Douglas Coburn, Eli Insua -  Oct 21, 2025