Configuration
Customize exactly what VibeGuard scans and how strict it acts using a .vibeguard.yaml file.
Example Configuration File
Place this .vibeguard.yaml file in the root of your project:
minSeverity: low
scoreThreshold: 70
ignore:
- "**/node_modules/**"
- "**/dist/**"
- "**/*.test.ts"
extensions:
- ".js"
- ".ts"
- ".jsx"
- ".tsx"
- ".py"
- ".env"
detectors:
secrets: true
sql: true
auth: true
cmdInjection: true
ssrf: true
astTaint: true
outputFormat: text
showBadge: trueConfiguration Options
| Property | Type | Description |
|---|---|---|
| minSeverity | string | Minimum severity level to flag (low, medium, high, critical) |
| scoreThreshold | number | The scan will exit with a non-zero code if the score drops below this. |
| ignore | string[] | Glob patterns of files and directories to skip entirely. |
| extensions | string[] | Only files matching these extensions will be scanned. |
| detectors | object | Toggle specific vulnerability detectors on or off. |