02 Commands
Simple, powerful scanning
One command to scan. Flags to customize output format and behavior.
$ vexlit scan .Scan current directory$ vexlit scan src/ lib/utils.tsScan specific files or directories$ vexlit scan . --jsonOutput results as JSON$ vexlit scan . --sarif > results.sarifExport SARIF for GitHub Security tab$ vexlit scan . --fail-on warningFail CI if any vuln >= medium severity$ vexlit scan --diffScan only git-changed files (staged + unstaged)$ vexlit scan . --llm --api-key sk-ant-...Enable AI-powered verification$ vexlit fixShow all vulnerabilities with suggested fixes$ vexlit fix -iInteractively choose which fixes to apply$ vexlit fix --scaFix dependency vulnerabilities via npm audit fix$ vexlit fix --auto --dry-runPreview auto-fixes without making changes$ vexlit fix --explain --api-key sk-ant-...AI-powered explanation for each vulnerability03 Output
Clear, actionable results
Findings are grouped by severity with file location and rule ID.
Terminal
VEXLIT Security Scanner v0.1.0
Scanning 47 files...
CRITICAL VEXLIT-002 SQL Injection api/users.js:42
CRITICAL VEXLIT-001 Hardcoded Secret config/auth.ts:12
WARNING VEXLIT-012 SSRF lib/fetch.ts:28
INFO VEXLIT-019 Debugger Statement utils/debug.js:5
Found 4 vulnerabilities (2 critical, 1 warning, 1 info)
Scan completed in 2.4s