{"id":27078838,"url":"https://github.com/bulletdev/vibe-check","last_synced_at":"2025-09-07T02:03:35.971Z","repository":{"id":284997445,"uuid":"956738476","full_name":"Bulletdev/vibe-check","owner":"Bulletdev","description":"O `vibe-check` ajuda times DevOps e de segurança a lidar com o \"vibe coding\"","archived":false,"fork":false,"pushed_at":"2025-03-28T19:53:30.000Z","size":14,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-28T20:33:23.748Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Bulletdev.png","metadata":{"files":{"readme":"readme.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-03-28T19:18:44.000Z","updated_at":"2025-03-28T19:53:34.000Z","dependencies_parsed_at":"2025-03-28T20:33:26.787Z","dependency_job_id":"0a4baf75-79f5-4848-9426-55fa3c534fde","html_url":"https://github.com/Bulletdev/vibe-check","commit_stats":null,"previous_names":["bulletdev/vibe-check"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bulletdev%2Fvibe-check","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bulletdev%2Fvibe-check/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bulletdev%2Fvibe-check/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bulletdev%2Fvibe-check/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Bulletdev","download_url":"https://codeload.github.com/Bulletdev/vibe-check/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247420208,"owners_count":20936075,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-04-06T01:18:34.917Z","updated_at":"2025-04-06T01:18:35.414Z","avatar_url":"https://github.com/Bulletdev.png","language":"Go","readme":"# vibe-check\n\nUma ferramenta CLI e web em Go para escanear código gerado por IA (ou não) \ne identificar problemas de segurança e boas práticas. \nSuporta Go, Python, Java, JavaScript e integração com CI/CD.\n\n## Propósito\n\nO `vibe-check` ajuda times DevOps e de segurança a lidar com o \"vibe coding\", detectando vulnerabilidades como SQL Injection, chamadas inseguras e strings hardcoded.\n\n## Funcionalidades\n\n- **Linguagens suportadas**: Go (`.go`), Python (`.py`), Java (`.java`), JavaScript (`.js`).\n- **Regras de checagem**: \n    - **Go**: `http.Get` sem HTTPS, `os/exec`, SQL inseguro, strings hardcoded, erros não tratados.\n    - **Python**: `os.system`, `eval/exec`, SQL inseguro, strings hardcoded.\n    - **Java**: `Runtime.exec`, JDBC sem SSL, SQL inseguro, strings hardcoded.\n    - **JavaScript**: `eval`, `child_process.exec`, SQL inseguro, strings hardcoded.\n- **Escaneamento de pastas**: Analisa múltiplos arquivos recursivamente.\n- **Saída**: Texto, JSON ou interface web.\n- **Configuração**: Via `.vibe-check.yaml`.\n- **CI/CD**: Integração com GitHub Actions.\n- **Web**: Visualize relatórios em `http://localhost:4444`.\n\n## Instalação\n\n1. **Pré-requisitos**:\n    - Go 1.20+\n    - Git\n\n2. **Clone**:\n   ```bash\n   git clone https://github.com/bulletdev/vibe-check.git\n   cd vibe-check\n   \n3. **Dependências**\n\n````bash\ngo mod init vibe-check\ngo get github.com/smacker/go-tree-sitter\ngo get github.com/smacker/go-tree-sitter/python\ngo get github.com/smacker/go-tree-sitter/java\ngo get github.com/smacker/go-tree-sitter/javascript\ngo get github.com/gin-gonic/gin\ngo get gopkg.in/yaml.v2\n````\n\n4. **Compile**\n\n````bash\ngo build -o vibe-check main.go\n````\n\n5. ***Uso***\n\n````bash\n./vibe-check scan --path \u003ccaminho\u003e [--json] [--lang go|py|java|js]\n````\n\n6. **WEB**\n - Iniciar o Servidor\n`````bash\n./vibe-check web [--path \u003ccaminho\u003e]\n`````` \n\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbulletdev%2Fvibe-check","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbulletdev%2Fvibe-check","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbulletdev%2Fvibe-check/lists"}