
Security News
Suno Breached via Shai-Hulud Worm, Leaked Code Exposes AI Music Scraping
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.
Mobile app store automation platform - Screenshots, ASO, Compliance, and Deployment
The intelligent mobile app deployment tool.
# Install globally
npm install -g stora-sh
# Capture screenshots (requires Maestro CLI and running simulator)
stora screenshots com.example.app --max-screenshots 10
# Check compliance
stora compliance ./my-app --platform ios
# Verify setup
stora doctor
GOOGLE_GENERATIVE_AI_API_KEY environment variablestora screenshots <bundleId>Capture App Store-ready screenshots using AI-powered exploration.
stora screenshots com.example.app
stora screenshots com.example.app --max-screenshots 10 --output ./screenshots
stora screenshots com.example.app --max-steps 30 --model gemini-2.0-flash
Options:
| Option | Default | Description |
|---|---|---|
--max-steps <n> | 50 | Maximum exploration steps |
--max-screenshots <n> | 10 | Target number of screenshots |
--output <path> | ./store-screenshots | Output directory |
--save-eval | false | Save evaluation screenshots for debugging |
--model <model> | gemini-2.0-flash | AI model to use |
stora compliance [path]Check your app for compliance issues before submission.
stora compliance ./my-app
stora compliance ./my-app --platform ios
stora compliance ./my-app --platform android --no-ai
stora compliance --strict
Options:
| Option | Default | Description |
|---|---|---|
-p, --platform <platform> | both | Target platform (ios, android, both) |
--no-ai | false | Disable AI-powered analysis |
--strict | false | Use strict checking mode |
stora doctorCheck if all dependencies are installed correctly.
stora doctor
Use the CLI for the full experience, or install individual packages for programmatic use:
| Package | Description | Install |
|---|---|---|
stora-sh | Main CLI tool | npm i -g stora-sh |
@stora/screenshots | AI screenshot automation | npm i @stora/screenshots |
@stora/compliance | Compliance checking | npm i @stora/compliance |
@stora/shared | Shared utilities | npm i @stora/shared |
# Required for AI features
export GOOGLE_GENERATIVE_AI_API_KEY=your-api-key
# Clone the repo
git clone https://github.com/storasource/stora.git
cd stora
# Install dependencies
pnpm install
# Build all packages
pnpm build
# Run development mode
pnpm dev
stora/
├── apps/
│ └── cli/ # stora-sh CLI package
├── packages/
│ ├── screenshots/ # @stora/screenshots
│ ├── compliance/ # @stora/compliance
│ ├── shared/ # @stora/shared
│ ├── aso/ # @stora/aso (in development)
│ ├── analyzer/ # @stora/analyzer (in development)
│ ├── deployment/ # @stora/deployment (in development)
│ ├── build/ # @stora/build (in development)
│ └── assets/ # @stora/assets (in development)
├── docs/ # Documentation
└── .github/workflows/ # CI/CD
MIT
FAQs
Mobile app store automation platform - Screenshots, ASO, Compliance, and Deployment
We found that stora-sh demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.

Security News
Vercel is formalizing a monthly release program for Next.js. The change follows React2Shell and a sharp rise in AI-assisted vulnerability discovery.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.