CLI reference

At a glance

stack ships with 22 top-level commands. The core loop is init → add → doctor — everything else is context, migration, or ops.

Global behaviour

• Commands that mutate state (add, remove, import) refuse to run unless Phantom is on PATH.
• Interactive commands auto-detect TTY. In non-interactive contexts (CI, an MCP tool call) they fall through to a sensible default or exit with a structured error instead of prompting.
• All output honours NO_COLOR. Structured JSON is available on stack doctor --json for CI.
• Exit codes: 0 on success, 1 on any failure that wasn't a cancellation, 127 if a required dependency (Phantom, git) isn't installed.

stack init

Scaffold a .stack.toml in the current directory.

Warns (but proceeds) if Phantom isn't on $PATH. `stack add` requires Phantom; `stack init` does not.

Synopsis

stack init [--template <name>] [--force] [--noInteractive]

Flags

Examples

stack init

# apply a starter template up front
stack init --template nextjs-supabase-posthog

# CI-safe blank init
stack init --noInteractive

stack import

Import an existing .env into Phantom + .stack.toml.

Routes every secret into Phantom, then best-guesses which provider each belongs to and writes matching service entries into .stack.toml.

Synopsis

stack import [--from <path>] [--dryRun]

Flags

Examples

stack import

stack import --from .env.local --dryRun

stack scan

Detect providers used by this repo (package.json, config files, .env.example).

Synopsis

stack scan [--path <dir>] [--auto] [--confidence low|medium|high]

Flags

Examples

stack scan

# auto-wire only signals we're sure about
stack scan --auto --confidence high

stack clone

Clone a GitHub repo and auto-detect its Stack services.

After cloning, runs `stack scan` automatically. If the repo already ships a committed .stack.toml, it prints next-step guidance instead.

Synopsis

stack clone <git-url> [dir]

Flags

Examples

stack clone https://github.com/acme/webapp

stack clone git@github.com:acme/webapp.git my-app

stack add

Provision a service and wire its secrets + MCP entry.

Requires Phantom to be on $PATH. Runs the provider's four-step lifecycle: login → provision → materialize → persist.

Synopsis

stack add [service] [--use <id>] [--region <r>] [--dryRun]

Flags

Examples

stack add supabase

stack add neon --region us-east-2

# attach to an existing Vercel project
stack add vercel --use prj_abc123

stack add --dryRun

stack remove

Remove a service from the stack (vault entries and MCP config).

Synopsis

stack remove [service] [--all] [--keepRemote]

Flags

Examples

stack remove supabase

stack remove --all --keepRemote

stack list

List services configured in this stack.

Synopsis

stack list

Examples

stack list

stack info

Show everything Stack knows about a configured service.

Prints provider, resource id, region, secret slots (with vault presence), MCP wiring, dashboard URL, and runs a fresh healthcheck.

Synopsis

stack info <service>

Flags

Examples

stack info supabase

stack status

Show stack health at a glance.

Synopsis

stack status

Examples

stack status

stack env

Inspect the effective env-var map for this stack.

Synopsis

stack env <show|diff>

Subcommands

stack env show [--env <name>]

stack env show

stack env show --env prod

stack env diff

stack env diff

stack deps

Show the service dependency graph for this stack.

Renders an ASCII tree grouped by category, with every secret slot annotated beneath its service.

Synopsis

stack deps

Examples

stack deps

stack doctor

Verify every service is reachable and credentials are valid.

Synopsis

stack doctor [--fix] [--all] [--json]

Flags

Examples

stack doctor

stack doctor --fix

# CI-friendly
stack doctor --json > report.json

# every Stack project on this box
stack doctor --all

stack exec

Run a command with Phantom's secret proxy active.

Thin wrapper over `phantom exec` so env vars with phm_ tokens get swapped for real secrets at the network layer.

Synopsis

stack exec -- <command>

Examples

stack exec -- bun dev

stack exec -- npm test

stack sync

Push secrets to a deployment platform (via phantom sync).

Synopsis

stack sync --platform <vercel|railway|fly>

Flags

Examples

stack sync --platform vercel

stack open

Open a service's dashboard in your browser.

Synopsis

stack open <service>

Flags

Examples

stack open supabase

stack open vercel

stack login

Refresh OAuth / PAT credentials for a specific provider.

Synopsis

stack login <service>

Flags

Examples

stack login github

stack login supabase

stack templates

List or apply starter stack templates.

Synopsis

stack templates <list|apply>

Subcommands

stack templates list

stack templates list

stack templates apply <name> [--continueOnError]

stack templates apply nextjs-supabase-posthog

stack providers

List every curated provider Stack can wire up.

Synopsis

stack providers

Examples

stack providers

stack projects

Manage the cross-project registry at ~/.stack/projects.json.

Synopsis

stack projects <list|register|remove|where>

Subcommands

stack projects list

stack projects list

stack projects register

stack projects register

stack projects remove <name|path>

stack projects remove my-app

stack projects where <name>

# jump into a project by name
cd $(stack projects where my-app)

stack upgrade

Check npm for a newer @ashlr/stack release.

Checks the npm registry for a newer version, prints an install hint — does not auto-install.

Synopsis

stack upgrade

Examples

stack upgrade

stack completion

Emit shell completion for bash, zsh, or fish.

Synopsis

stack completion <bash|zsh|fish>

Flags

Examples

stack completion zsh > ~/.local/share/zsh/site-functions/_stack

stack completion bash | sudo tee /etc/bash_completion.d/stack

stack completion fish > ~/.config/fish/completions/stack.fish

stack ci

Scaffold CI integrations that run `stack doctor` on pushes + nightly.

Synopsis

stack ci <init>

Subcommands

stack ci init [--force]

stack ci init