guardvibe 3.0.26 → 3.0.28

package/README.md

@@ -6,7 +6,7 @@
 [![npm provenance](https://img.shields.io/badge/provenance-verified-brightgreen)](https://www.npmjs.com/package/guardvibe)
 [![codecov](https://codecov.io/gh/goklab/guardvibe/graph/badge.svg)](https://codecov.io/gh/goklab/guardvibe)
 
-**The security MCP built for vibe coding.** 335 security rules, 36 tools covering the entire AI-generated code journey — from first line to production deployment.
+**The security MCP built for vibe coding.** 365 security rules, 36 tools covering the entire AI-generated code journey — from first line to production deployment.
 
 Works with **Claude Code, Cursor, Gemini CLI, Codex, VS Code (Copilot), Windsurf**, and any MCP-compatible coding agent.
 
@@ -14,7 +14,7 @@ Works with **Claude Code, Cursor, Gemini CLI, Codex, VS Code (Copilot), Windsurf
 
 Most security tools are built for enterprise security teams. GuardVibe is built for **you** — the developer using AI to build and ship web apps fast.
 
-- **335 security rules, 36 tools** purpose-built for the stacks AI agents generate
+- **365 security rules, 36 tools** purpose-built for the stacks AI agents generate
 - **Zero setup friction** — `npx guardvibe` and you're scanning
 - **No account required** — runs 100% locally, no API keys, no cloud
 - **Understands your stack** — not generic SAST, but rules that know Next.js, Supabase, Stripe, Clerk, and the tools you actually use
@@ -50,7 +50,7 @@ GuardVibe is purpose-built for the AI coding workflow. Traditional tools are exc
 | CVE version detection | 23 packages | Extensive | Extensive |
 | Compliance mapping (SOC2, PCI-DSS, HIPAA) | Built-in | Paid tier | None |
 | SARIF CI/CD export | Yes | Yes | Limited |
-| Rule count | 335 (focused) | 5000+ (broad) | N/A |
+| Rule count | 365 (focused) | 5000+ (broad) | N/A |
 
 **When to use GuardVibe:** You're building with AI agents and want security scanning integrated into your coding workflow — no dashboard, no account, no CI setup.
 
@@ -235,7 +235,7 @@ Malicious postinstall scripts, unpinned GitHub Actions, typosquat detection
 
 All scanning tools support `format: "json"` for machine-readable output.
 
-## Security Rules (341 rules across 25 modules)
+## Security Rules (365 rules across 25 modules)
 
 | Category | Rules | Coverage |
 |----------|-------|----------|

package/build/cli/audit.js

@@ -6,6 +6,8 @@ import { writeFileSync, existsSync, mkdirSync } from "fs";
 import { resolve, dirname } from "path";
 import { parseArgs, getStringFlag, getOutputPath, shouldFail, validateFormat } from "./args.js";
 import { runFullAudit, formatAuditResult } from "../tools/full-audit.js";
+import { setRules } from "../utils/rule-registry.js";
+import { builtinRules } from "../data/rules/index.js";
 export async function runAudit(args) {
     const { flags, positional } = parseArgs(args);
     const targetPath = resolve(positional[0] ?? ".");
@@ -14,6 +16,7 @@ export async function runAudit(args) {
     const failOn = getStringFlag(flags, "fail-on") ?? "critical";
     const skipDeps = flags["skip-deps"] === true;
     const skipSecrets = flags["skip-secrets"] === true;
+    setRules(builtinRules);
     // Terminal format by default when outputting to TTY, unless --format is specified
     const isTerminal = !outputFile && process.stdout.isTTY && !flags["format"];
     const format = isTerminal ? "terminal" : rawFormat;

package/build/index.js

@@ -60,7 +60,7 @@ function mergeStatsIntoOutput(results, summary, format) {
 const server = new McpServer({
     name: "guardvibe",
     version: pkg.version,
-    description: "Security MCP for vibe coding — single source of truth for AI assistants. 335 security rules and 36 tools. Use full_audit for a comprehensive PASS/FAIL/WARN verdict with deterministic result hash, coverage %, and unified report across code, secrets, dependencies, config, taint analysis, and auth coverage. IMPORTANT: When full_audit returns FAIL/WARN, call remediation_plan to get a mandatory section-by-section fix checklist covering ALL 6 sections (not just code). After fixing, call verify_remediation to confirm all sections were addressed. Same code = same hash = same results regardless of which AI assistant runs it. Covers OWASP, Next.js, Supabase, Stripe, Clerk, Prisma, Hono, AI SDK, MCP server security, host hardening. Maps to SOC2, PCI-DSS, HIPAA, GDPR, ISO27001, EU AI Act. Runs 100% locally with zero configuration.",
+    description: "Security MCP for vibe coding — single source of truth for AI assistants. 365 security rules and 36 tools. Use full_audit for a comprehensive PASS/FAIL/WARN verdict with deterministic result hash, coverage %, and unified report across code, secrets, dependencies, config, taint analysis, and auth coverage. IMPORTANT: When full_audit returns FAIL/WARN, call remediation_plan to get a mandatory section-by-section fix checklist covering ALL 6 sections (not just code). After fixing, call verify_remediation to confirm all sections were addressed. Same code = same hash = same results regardless of which AI assistant runs it. Covers OWASP, Next.js, Supabase, Stripe, Clerk, Prisma, Hono, AI SDK, MCP server security, host hardening. Maps to SOC2, PCI-DSS, HIPAA, GDPR, ISO27001, EU AI Act. Runs 100% locally with zero configuration.",
 });
 // Tool 1: Analyze code for security vulnerabilities
 server.tool("check_code", "Analyze inline code for security vulnerabilities (OWASP Top 10, XSS, SQL injection, insecure patterns). Pass code as a string parameter. For scanning files on disk, use scan_file instead. Example: check_code({code: 'app.get(...)', language: 'javascript'})", {
@@ -884,7 +884,7 @@ server.tool("deep_scan", "LLM-powered deep security analysis for vulnerabilities
     return { content: [{ type: "text", text: output }] };
 });
 // Tool 33: Full audit — single source of truth
-server.tool("full_audit", "Single command that runs ALL checks: code scan (341 rules), secret detection, dependency CVEs, config audit, taint analysis, and auth coverage. Returns PASS/FAIL/WARN verdict with deterministic hash. IMPORTANT: If verdict is FAIL or WARN, you MUST call remediation_plan next to get a section-by-section fix checklist — do NOT skip any section. After fixing, call verify_remediation to confirm ALL sections are addressed. Example: full_audit({path: '.'})", {
+server.tool("full_audit", "Single command that runs ALL checks: code scan (365 rules), secret detection, dependency CVEs, config audit, taint analysis, and auth coverage. Returns PASS/FAIL/WARN verdict with deterministic hash. IMPORTANT: If verdict is FAIL or WARN, you MUST call remediation_plan next to get a section-by-section fix checklist — do NOT skip any section. After fixing, call verify_remediation to confirm ALL sections are addressed. Example: full_audit({path: '.'})", {
     path: z.string().default(".").describe("Project root directory"),
     format: z.enum(["markdown", "json"]).default("markdown").describe("Output format"),
     skipDeps: z.boolean().default(false).describe("Skip dependency vulnerability check"),

package/build/tools/check-code.js

@@ -304,6 +304,20 @@ export function analyzeCode(code, language, framework, filePath, configDir, rule
             continue;
         if (rule.id.startsWith("VG21") && !filePath && language !== "yaml")
             continue;
+        // Skip credential rules in test files — fixtures and assertions intentionally use fake values.
+        const isTestFile = filePath && /(?:\.(?:spec|test|e2e|stories)\.(?:ts|tsx|js|jsx|mjs|cjs)$|\/__tests__\/|\/tests?\/|\/cypress\/|\/playwright\/)/i.test(filePath);
+        if (isTestFile && (rule.id === "VG001" || rule.id === "VG062"))
+            continue;
+        // Skip Expo-specific rule (VG708) when project is not an Expo app.
+        // The rule's regex incorrectly matches the literal strings "app.json"/"app.config.ts"
+        // appearing in unrelated configs (e.g. angular.json's tsConfig field).
+        if (rule.id === "VG708" && filePath) {
+            const fileName = filePath.split("/").pop() ?? "";
+            const isExpoConfigFile = /^app\.(json|config\.(js|ts|mjs|cjs))$/.test(fileName);
+            const importsExpo = /(?:from\s+['"]expo[\w-]*['"]|require\s*\(\s*['"]expo[\w-]*['"])/i.test(code);
+            if (!isExpoConfigFile && !importsExpo)
+                continue;
+        }
         // ── Context-aware rule skipping (pattern-agnostic) ──────────────
         const authRuleIds = new Set(["VG420", "VG952", "VG002", "VG402"]);
         const adminRoleRuleIds = new Set(["VG426", "VG957"]);
@@ -538,6 +552,28 @@ export function analyzeCode(code, language, framework, filePath, configDir, rule
                 if (isHumanReadableString(lines, lineNumber))
                     continue;
             }
+            // Skip credential rules when the variable name signals test/example/mock intent.
+            // e.g. `testingPassword`, `examplePassword`, `mockApiKey`, `placeholderSecret`.
+            if (rule.id === "VG001" || rule.id === "VG062") {
+                const matchedLine = lines[lineNumber - 1] ?? "";
+                if (/(?:^|\s|\b)(?:testing|example|mock|placeholder|sample|demo|fake|dummy|stub|fixture)[A-Z_]/.test(matchedLine))
+                    continue;
+            }
+            // Skip VG010 (SQL injection) on Angular HTTP service calls — http.get/post/etc.
+            // are HTTP client methods, not SQL. The existing pattern's `get` keyword catches them.
+            if (rule.id === "VG010") {
+                const matchedLine = lines[lineNumber - 1] ?? "";
+                const isHttpClientCall = /(?:this\.)?(?:http|httpClient|httpService|api|client)\.(?:get|post|put|delete|patch|head|options)\s*\(/i.test(matchedLine);
+                const importsHttpClient = /from\s+['"]@angular\/common\/http['"]/i.test(code) || /import\s+.*HttpClient/i.test(code);
+                const fileIsAngularService = filePath ? /\.(?:service|component|directive|pipe|guard|resolver|interceptor)\.ts$/i.test(filePath) : false;
+                if (isHttpClientCall && (importsHttpClient || fileIsAngularService))
+                    continue;
+                // Also skip when matched call has no SQL keyword anywhere on the line — covers fetch/axios template-literal URLs.
+                const hasSqlKeyword = /\b(?:SELECT|INSERT|UPDATE|DELETE|FROM|WHERE|JOIN|UNION|DROP|TRUNCATE|ALTER|CREATE\s+TABLE)\b/i.test(matchedLine);
+                const isFetchOrAxios = /(?:fetch|axios|got|ky|undici|request)\s*[.\(]|axios\.(?:get|post|put|delete|patch)/i.test(matchedLine);
+                if (isFetchOrAxios && !hasSqlKeyword)
+                    continue;
+            }
             // Skip supply chain rules for known legitimate packages
             if (["VG872", "VG873"].includes(rule.id)) {
                 const pkgMatch = /"([\w@/-]+)"/.exec(match[0]);
@@ -594,9 +630,21 @@ export function analyzeCode(code, language, framework, filePath, configDir, rule
  * Prefers framework-specific rules (VG4xx, VG9xx) over generic core rules (VG0xx).
  */
 function deduplicateFindings(findings) {
+    // First pass: drop exact duplicates — same rule firing on the same line.
+    // Happens when a rule has multiple regex variants that all match the same position,
+    // typical on minified single-line files where many patterns hit line 2 or 3.
+    const seenExact = new Set();
+    const exactDeduped = [];
+    for (const f of findings) {
+        const key = `${f.rule.id}:${f.line}`;
+        if (seenExact.has(key))
+            continue;
+        seenExact.add(key);
+        exactDeduped.push(f);
+    }
     // Group findings by line number
     const byLine = new Map();
-    for (const f of findings) {
+    for (const f of exactDeduped) {
         const group = byLine.get(f.line);
         if (group)
             group.push(f);
@@ -637,6 +685,11 @@ function isDuplicatePair(a, b) {
     // Same rule name = same vulnerability
     if (a.rule.name === b.rule.name)
         return true;
+    // Both are SQL injection variants — VG010 (generic) and VG123 (template literal specific) overlap.
+    // VG123 is more specific so it should dominate. isMoreSpecific handles the prefix order.
+    const sqlInjectionRules = new Set(["VG010", "VG123"]);
+    if (sqlInjectionRules.has(a.rule.id) && sqlInjectionRules.has(b.rule.id))
+        return true;
     // Both are XSS/innerHTML related — the core VG012+VG408 duplicate case
     if (a.rule.name.includes("innerHTML") && b.rule.name.includes("innerHTML"))
         return true;

package/build/tools/full-audit.js

@@ -210,25 +210,36 @@ export async function runFullAudit(path, options) {
                 const depsJson = await scanDependencies(manifestPath, "json");
                 const parsed = safeJsonParse(depsJson);
                 if (parsed) {
-                    const vuln = parsed.summary?.vulnerable ?? 0;
-                    const counts = { findings: vuln, critical: parsed.summary?.critical ?? 0, high: parsed.summary?.high ?? 0, medium: parsed.summary?.medium ?? 0 };
+                    const vulnPackages = parsed.summary?.vulnerable ?? 0;
                     const depFindings = [];
+                    let depCritical = 0, depHigh = 0, depMedium = 0;
                     for (const pkg of parsed.packages ?? []) {
                         for (const v of pkg.vulnerabilities ?? []) {
                             const vuln2 = v;
+                            const sev = (vuln2.severity ?? "high");
+                            if (sev === "critical")
+                                depCritical++;
+                            else if (sev === "high")
+                                depHigh++;
+                            else
+                                depMedium++;
                             depFindings.push({
                                 ruleId: `DEP:${(vuln2.id ?? "CVE")}`,
-                                severity: (vuln2.severity ?? "high"),
+                                severity: sev,
                                 file: "package.json",
                                 line: 0,
                                 name: `${pkg.name ?? "unknown"}: ${(vuln2.id ?? "CVE")}`,
                                 description: (vuln2.summary ?? vuln2.details ?? ""),
                                 fix: `Run: npm update ${pkg.name ?? ""}`,
                             });
-                            allFindings.push({ ruleId: `DEP:${vuln2.id ?? "CVE"}`, severity: vuln2.severity, file: "package.json", line: 0 });
+                            allFindings.push({ ruleId: `DEP:${vuln2.id ?? "CVE"}`, severity: sev, file: "package.json", line: 0 });
                         }
                     }
-                    sections.push({ name: "dependencies", status: "ok", ...counts, details: vuln === 0 ? "No known CVEs" : `${vuln} vulnerable package(s)`, sectionFindings: depFindings });
+                    const counts = { findings: depFindings.length, critical: depCritical, high: depHigh, medium: depMedium };
+                    const detailText = depFindings.length === 0
+                        ? "No known CVEs"
+                        : `${depFindings.length} CVE(s) across ${vulnPackages} vulnerable package(s)`;
+                    sections.push({ name: "dependencies", status: "ok", ...counts, details: detailText, sectionFindings: depFindings });
                 }
             }
             catch {
@@ -339,7 +350,7 @@ export async function runFullAudit(path, options) {
     const totalHigh = sections.reduce((s, sec) => s + sec.high, 0);
     const totalMedium = sections.reduce((s, sec) => s + sec.medium, 0);
     const totalFindings = sections.reduce((s, sec) => s + sec.findings, 0);
-    const rulesApplied = rules.length > 0 ? rules.length : 335;
+    const rulesApplied = rules.length > 0 ? rules.length : 365;
     // Adjust score to reflect ALL sections, not just code
     // Each critical finding deducts 5 points, high deducts 3, medium deducts 1
     // Score from code scan is the baseline, other sections reduce it further

package/build/tools/scan-secrets.js

@@ -3,6 +3,7 @@ import { basename, dirname, extname, join, relative, resolve } from "path";
 import { execFileSync } from "child_process";
 import { secretPatterns, calculateEntropy } from "../data/secret-patterns.js";
 import { loadConfig } from "../utils/config.js";
+import { isExcludedFilename } from "../utils/constants.js";
 const DEFAULT_SECRET_EXCLUDES = new Set(["node_modules", ".git", "build", "dist"]);
 const SOURCE_FILE_EXTENSIONS = new Set([
     ".js", ".jsx", ".mjs", ".cjs",
@@ -75,6 +76,8 @@ function walkForSecrets(dir, recursive, results, excludes) {
         if (!entry.isFile())
             continue;
         const name = entry.name;
+        if (isExcludedFilename(name))
+            continue;
         const ext = extname(name).toLowerCase();
         if (name.startsWith(".env") || CONFIG_FILE_EXTENSIONS.has(ext) || SOURCE_FILE_EXTENSIONS.has(ext)) {
             results.push(fullPath);

package/build/utils/constants.d.ts

@@ -8,3 +8,6 @@ export declare const EXTENSION_MAP: Record<string, string>;
 export declare const CONFIG_FILE_MAP: Record<string, string>;
 /** Directory names excluded from filesystem scans by default. */
 export declare const DEFAULT_EXCLUDES: Set<string>;
+/** File-name patterns excluded from scans — minified bundles, vendor libs, generated artifacts. */
+export declare const DEFAULT_FILE_PATTERN_EXCLUDES: RegExp[];
+export declare function isExcludedFilename(name: string): boolean;

package/build/utils/constants.js

@@ -32,3 +32,15 @@ export const DEFAULT_EXCLUDES = new Set([
     ".vercel", ".clerk", ".wrangler", ".netlify", ".amplify",
     ".serverless", ".firebase", ".expo", ".output",
 ]);
+/** File-name patterns excluded from scans — minified bundles, vendor libs, generated artifacts. */
+export const DEFAULT_FILE_PATTERN_EXCLUDES = [
+    /\.min\.(js|mjs|cjs|css)$/i,
+    /\.bundle\.(js|mjs|cjs)$/i,
+    /-bundle\.(js|mjs|cjs)$/i,
+    /\.production(\.min)?\.(js|mjs|cjs)$/i,
+    /\.umd(\.min)?\.(js|mjs|cjs)$/i,
+    /\.esm(\.min)?\.(js|mjs|cjs)$/i,
+];
+export function isExcludedFilename(name) {
+    return DEFAULT_FILE_PATTERN_EXCLUDES.some((pattern) => pattern.test(name));
+}

package/build/utils/walk-directory.js

@@ -4,7 +4,7 @@
  */
 import { readdirSync } from "fs";
 import { join, extname } from "path";
-import { EXTENSION_MAP, CONFIG_FILE_MAP } from "./constants.js";
+import { EXTENSION_MAP, CONFIG_FILE_MAP, isExcludedFilename } from "./constants.js";
 /**
  * Recursively walk a directory, collecting file paths that match
  * known source extensions, Dockerfiles, or config file names.
@@ -31,6 +31,8 @@ export function walkDirectory(dir, recursive, excludes, results, unsupportedResu
             walkDirectory(fullPath, recursive, excludes, results, unsupportedResults);
         }
         else if (entry.isFile()) {
+            if (isExcludedFilename(entry.name))
+                continue;
             const ext = extname(entry.name).toLowerCase();
             let matched = false;
             if (EXTENSION_MAP[ext]) {

package/package.json

@@ -1,8 +1,8 @@
 {
   "name": "guardvibe",
-  "version": "3.0.26",
+  "version": "3.0.28",
   "mcpName": "io.github.goklab/guardvibe",
-  "description": "Security MCP for vibe coding. 341 rules, 36 tools, CLI + doctor. Host security, auth coverage mapping, LLM-powered deep scan (IDOR/business logic), taint analysis. Plus Next.js, Supabase, Clerk, Stripe, Prisma, tRPC, Hono, GraphQL, Convex, Turso, Uploadthing, AI SDK, and the full AI-generated stack.",
+  "description": "Security MCP for vibe coding. 365 rules, 36 tools, CLI + doctor. Host security, auth coverage mapping, LLM-powered deep scan (IDOR/business logic), taint analysis. Plus Next.js, Supabase, Clerk, Stripe, Prisma, tRPC, Hono, GraphQL, Convex, Turso, Uploadthing, AI SDK, and the full AI-generated stack.",
   "type": "module",
   "bin": {
     "guardvibe": "build/cli.js",