log-stripe-issues
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
Chinese/log-stripe-issues
/log-stripe-issues
Run Stripe integration audit and create GitHub issues for all findings.
运行Stripe集成审计并为所有检测结果创建GitHub issues。
What This Does
功能说明
- Invoke to audit Stripe integration
/check-stripe - Parse findings by priority (P0-P3)
- Check existing issues to avoid duplicates
- Create GitHub issues for each finding
This is an issue-creator. It creates work items, not fixes. Use to fix issues.
/fix-stripe- 调用 对Stripe集成进行审计
/check-stripe - 按优先级(P0-P3)解析检测结果
- 检查现有issues以避免重复
- 为每个检测结果创建GitHub issues
**这是一个问题创建工具。**它仅创建工作项,不修复问题。如需修复问题,请使用 。
/fix-stripeProcess
流程
1. Run Primitive
1. 调用基础工具
Invoke skill to get structured findings.
/check-stripe调用 技能以获取结构化检测结果。
/check-stripe2. Check Existing Issues
2. 检查现有问题
bash
gh issue list --state open --label "domain/stripe" --limit 50bash
gh issue list --state open --label "domain/stripe" --limit 503. Create Issues
3. 创建问题
For each finding:
bash
gh issue create \
--title "[P0] Webhook signature not verified" \
--body "$(cat <<'EOF'针对每个检测结果:
bash
gh issue create \
--title "[P0] Webhook signature not verified" \
--body "$(cat <<'EOF'Problem
问题
Stripe webhook endpoint does not verify signatures. Security vulnerability.
Stripe webhook端点未验证签名,存在安全漏洞。
Impact
影响
- Attackers can forge webhook events
- Fake payment confirmations possible
- Customer data manipulation risk
- PCI compliance violation
- 攻击者可伪造webhook事件
- 可能出现虚假付款确认
- 存在客户数据被篡改风险
- 违反PCI合规要求
Location
位置
app/api/webhooks/stripe/route.tsapp/api/webhooks/stripe/route.tsSuggested Fix
建议修复方案
Run or manually add:
/fix-stripetypescript
const event = stripe.webhooks.constructEvent(
body,
signature,
process.env.STRIPE_WEBHOOK_SECRET!
);Created by
EOF
)"
--label "priority/p0,domain/stripe,type/bug"
/log-stripe-issues--label "priority/p0,domain/stripe,type/bug"
undefined运行 或手动添加:
/fix-stripetypescript
const event = stripe.webhooks.constructEvent(
body,
signature,
process.env.STRIPE_WEBHOOK_SECRET!
);Created by
EOF
)"
--label "priority/p0,domain/stripe,type/bug"
/log-stripe-issues--label "priority/p0,domain/stripe,type/bug"
undefined4. Issue Format
4. Issue格式
Title:
[P{0-3}] Stripe issue descriptionLabels:
- |
priority/p0|priority/p1|priority/p2priority/p3 domain/stripe- |
type/bug|type/enhancementtype/chore
Body:
markdown
undefined标题:
[P{0-3}] Stripe问题描述标签:
- |
priority/p0|priority/p1|priority/p2priority/p3 domain/stripe- |
type/bug|type/enhancementtype/chore
正文模板:
markdown
undefinedProblem
问题
What's wrong with Stripe integration
Stripe集成存在的问题
Impact
影响
Business/security/user impact
业务/安全/用户影响
Location
位置
File:line if applicable
文件:行号(如有)
Suggested Fix
建议修复方案
Code snippet or skill to run
Created by
/log-stripe-issuesundefined代码片段或可调用的技能
Created by
/log-stripe-issuesundefinedPriority Mapping
优先级映射
| Gap | Priority |
|---|---|
| Missing webhook secret | P0 |
| Hardcoded keys | P0 |
| Webhook verification missing | P1 |
| No customer portal | P1 |
| Subscription status not checked | P1 |
| No idempotency keys | P2 |
| Poor error handling | P2 |
| CLI profile issues | P2 |
| Advanced features | P3 |
| 问题 | 优先级 |
|---|---|
| 缺少webhook密钥 | P0 |
| 硬编码密钥 | P0 |
| 缺少webhook验证 | P1 |
| 无客户门户 | P1 |
| 未检查订阅状态 | P1 |
| 缺少幂等键 | P2 |
| 错误处理不完善 | P2 |
| CLI配置文件问题 | P2 |
| 缺少高级功能 | P3 |
Output
输出
After running:
Stripe Issues Created:
- P0: 1 (webhook verification)
- P1: 3 (portal, subscription checks)
- P2: 2 (idempotency, error handling)
- P3: 2 (advanced features)
Total: 8 issues created
View: gh issue list --label domain/stripe运行后输出示例:
Stripe Issues Created:
- P0: 1 (webhook verification)
- P1: 3 (portal, subscription checks)
- P2: 2 (idempotency, error handling)
- P3: 2 (advanced features)
Total: 8 issues created
View: gh issue list --label domain/stripeRelated
相关工具
- - The primitive (audit only)
/check-stripe - - Fix Stripe issues
/fix-stripe - - Full Stripe lifecycle
/stripe - - Webhook diagnostics
/stripe-health - - Full backlog grooming
/groom
- - 基础工具(仅审计)
/check-stripe - - 修复Stripe问题
/fix-stripe - - 完整Stripe生命周期管理
/stripe - - Webhook诊断
/stripe-health - - 完整待办事项梳理
/groom