vibecurb | Security for AI-Generated Code

Now Available: v0.2.0

Security layer for vibe-coded apps. Prevent insecure code before it reaches production. Not just scanning—prevention.

GET STARTED arrow_forward star VIEW ON GITHUB

vibecurb scan

$ vibecurb scan ./src

Scanning for secrets...

❌ ERROR Line 15:8 - API key detected

❌ ERROR Line 42:12 - Database URL found

⚠️ WARNING Line 8:5 - Email address found

✅ Use --fix to auto-extract to .env

Security Features

key

Secret Detection

Detects 14+ secret types: API keys, tokens, database URLs, private keys, passwords, and more.

network_check

Network Security

Scans for logging sensitive data, API exposure, hardcoded auth headers, and insecure CORS.

auto_fix

Auto-Fix

Automatically extracts secrets to .env files and replaces code with secure environment variables.

terminal Installation

Get started in seconds. Install globally and start securing your vibe-coded apps immediately.

check_circle

Global CLI

Use vibecurb from any directory.

speed

Lightning Fast

Scans thousands of files in seconds.

psychology

AI Integration

Works with Cursor, Copilot, Claude, and more.

Install via NPM

$ npm install -g vibecurb

Or use npx (no install)

$ npx vibecurb scan

Usage Examples

Secret Scanning

$ vibecurb scan

$ vibecurb scan ./src --fix

$ vibecurb scan --json

Network Security

$ vibecurb scan-network

$ vibecurb scan-network ./api

$ vibecurb scan-network --json

lightbulb Pro Tip

Use vibe as a shorter alias. Example: vibe scan

14+

Secret Patterns

0ms

Cloud Latency

100%

Open Source

∞

Free Scans

AI Integration

vibecurb works seamlessly with your favorite AI coding assistants to prevent insecure code at generation time.

Cursor

.cursorrules

GitHub Copilot

copilot-instructions.md

Claude

AI_INSTRUCTIONS.md

Any AI

Universal support