pub struct ScanConfig {Show 39 fields
pub format: Option<String>,
pub strict: bool,
pub scan_type: Option<String>,
pub recursive: bool,
pub ci: bool,
pub verbose: bool,
pub min_confidence: Option<String>,
pub skip_comments: bool,
pub fix_hint: bool,
pub compact: bool,
pub no_malware_scan: bool,
pub watch: bool,
pub malware_db: Option<String>,
pub custom_rules: Option<String>,
pub output: Option<String>,
pub deep_scan: bool,
pub fix: bool,
pub fix_dry_run: bool,
pub warn_only: bool,
pub min_severity: Option<String>,
pub min_rule_severity: Option<String>,
pub strict_secrets: bool,
pub remote: Option<String>,
pub git_ref: Option<String>,
pub remote_auth: Option<String>,
pub parallel_clones: Option<usize>,
pub remote_list: Option<String>,
pub awesome_claude_code: bool,
pub badge: bool,
pub badge_format: Option<String>,
pub summary: bool,
pub all_clients: bool,
pub client: Option<String>,
pub no_cve_scan: bool,
pub cve_db: Option<String>,
pub sbom: bool,
pub sbom_format: Option<String>,
pub sbom_npm: bool,
pub sbom_cargo: bool,
}Expand description
Scan configuration (corresponds to CLI options).
Fields§
§format: Option<String>Output format: “terminal”, “json”, “sarif”, “html”, “markdown”.
strict: boolStrict mode: show medium/low severity findings and treat warnings as errors.
scan_type: Option<String>Scan type: “skill”, “hook”, “mcp”, “command”, “rules”, “docker”, “dependency”, “subagent”, “plugin”.
recursive: boolRecursive scan.
ci: boolCI mode: non-interactive output.
verbose: boolVerbose output.
min_confidence: Option<String>Minimum confidence level: “tentative”, “firm”, “certain”.
skip_comments: boolSkip comment lines when scanning.
fix_hint: boolShow fix hints in terminal output.
compact: boolUse compact output format (disable friendly advice).
no_malware_scan: boolDisable malware signature scanning.
watch: boolWatch mode: continuously monitor files for changes.
malware_db: Option<String>Path to a custom malware signatures database (JSON).
custom_rules: Option<String>Path to a custom rules file (YAML format).
output: Option<String>Output file path (for HTML/JSON/SARIF output).
deep_scan: boolEnable deep scan with deobfuscation.
fix: boolAuto-fix issues (where possible).
fix_dry_run: boolPreview auto-fix changes without applying them.
warn_only: boolWarn-only mode: treat all findings as warnings (always exit 0).
min_severity: Option<String>Minimum severity level to include: “critical”, “high”, “medium”, “low”.
min_rule_severity: Option<String>Minimum rule severity to treat as errors: “error”, “warn”.
strict_secrets: boolStrict secrets mode: disable dummy key heuristics for test files.
remote: Option<String>Remote repository URL to scan.
git_ref: Option<String>Git reference to checkout (branch, tag, commit).
remote_auth: Option<String>GitHub authentication token (also reads from GITHUB_TOKEN env var).
parallel_clones: Option<usize>Number of parallel clones for batch scanning.
remote_list: Option<String>File containing list of repository URLs to scan.
awesome_claude_code: boolScan all repositories from awesome-claude-code.
badge: boolGenerate a badge for the scan result.
badge_format: Option<String>Badge format: “markdown”, “html”, “json”.
summary: boolShow summary only (useful for batch scanning).
all_clients: boolScan all installed AI coding clients (Claude Code, Cursor, etc.).
client: Option<String>Specific client to scan: “claude-code”, “cursor”, “windsurf”, “cline”, “roo-code”, “claude-desktop”, “amazon-q”.
no_cve_scan: boolDisable CVE vulnerability scanning.
cve_db: Option<String>Path to a custom CVE database (JSON).
sbom: boolGenerate SBOM (Software Bill of Materials).
sbom_format: Option<String>SBOM output format: “cyclonedx”, “spdx”.
sbom_npm: boolInclude npm dependencies in SBOM.
sbom_cargo: boolInclude Cargo dependencies in SBOM.
Trait Implementations§
Source§impl Clone for ScanConfig
impl Clone for ScanConfig
Source§fn clone(&self) -> ScanConfig
fn clone(&self) -> ScanConfig
1.0.0 (const: unstable) · Source§fn clone_from(&mut self, source: &Self)
fn clone_from(&mut self, source: &Self)
source. Read moreSource§impl Debug for ScanConfig
impl Debug for ScanConfig
Source§impl Default for ScanConfig
impl Default for ScanConfig
Source§fn default() -> ScanConfig
fn default() -> ScanConfig
Source§impl<'de> Deserialize<'de> for ScanConfigwhere
ScanConfig: Default,
impl<'de> Deserialize<'de> for ScanConfigwhere
ScanConfig: Default,
Source§fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>where
__D: Deserializer<'de>,
fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>where
__D: Deserializer<'de>,
Auto Trait Implementations§
impl Freeze for ScanConfig
impl RefUnwindSafe for ScanConfig
impl Send for ScanConfig
impl Sync for ScanConfig
impl Unpin for ScanConfig
impl UnsafeUnpin for ScanConfig
impl UnwindSafe for ScanConfig
Blanket Implementations§
Source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
Source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
Source§impl<T> CloneToUninit for Twhere
T: Clone,
impl<T> CloneToUninit for Twhere
T: Clone,
impl<T> DeserializeOwned for Twhere
T: for<'de> Deserialize<'de>,
Source§impl<T> Instrument for T
impl<T> Instrument for T
Source§fn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
Source§fn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
Source§impl<T> IntoEither for T
impl<T> IntoEither for T
Source§fn into_either(self, into_left: bool) -> Either<Self, Self>
fn into_either(self, into_left: bool) -> Either<Self, Self>
self into a Left variant of Either<Self, Self>
if into_left is true.
Converts self into a Right variant of Either<Self, Self>
otherwise. Read moreSource§fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
self into a Left variant of Either<Self, Self>
if into_left(&self) returns true.
Converts self into a Right variant of Either<Self, Self>
otherwise. Read more