repopilot 0.11.0

Local-first CLI for repository audit, architecture risk detection, baseline tracking, and CI-friendly code review.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131

# Configuration

RepoPilot can run with built-in defaults, CLI overrides, and a project-level
`repopilot.toml`.

## Create a config

```bash
repopilot init
```

Overwrite an existing file:

```bash
repopilot init --force
```

Write to a custom path:

```bash
repopilot init --path ./config/repopilot.toml
```

## Precedence

Configuration is resolved in this order:

```text
CLI arguments > repopilot.toml > built-in defaults
```

Use CLI flags for one-off local experiments. Use `repopilot.toml` for team-wide
settings that should be committed.

## Example

```toml
[scan]
ignore = [
  ".git",
  ".repopilot",
  "target",
  "node_modules",
  "dist",
  "build",
  ".next",
  ".nuxt",
  ".cache",
  "coverage",
  "vendor",
  "Pods",
  "DerivedData"
]
max_file_bytes = 2097152

[architecture]
max_file_lines = 300
huge_file_lines = 1000
max_directory_modules = 20
max_directory_depth = 5
max_function_lines = 50
max_fan_out = 15
instability_hub_min_fan_in = 5
instability_hub_min_instability_pct = 75

[testing]
detect_missing_tests = true

[security]
detect_secret_like_names = true

[output]
default_format = "console"
```

## Common CLI overrides

```bash
repopilot scan . --max-file-loc 500
repopilot scan . --max-directory-modules 30
repopilot scan . --max-directory-depth 8
repopilot scan . --max-file-size 1mb
repopilot scan . --max-files 1000
repopilot scan . --exclude generated
repopilot scan . --include-low-signal
```

## Presets

Use presets when you want fast tuning without editing config:

```bash
repopilot scan . --preset strict
repopilot scan . --preset balanced
repopilot scan . --preset lenient
```

Suggested use:

| Preset | Best for |
|---|---|
| `strict` | new projects and green-field code |
| `balanced` | default project checks |
| `lenient` | legacy repositories adopting RepoPilot gradually |

## Ignore files

RepoPilot respects `.gitignore` and supports `.repopilotignore` for audit-specific
exclusions.

Use `.repopilotignore` for files that should stay in the repository but not affect
audit quality:

```text
fixtures/
snapshots/
generated/
vendor/
```

## Baseline adoption

For legacy repositories, create a baseline before enforcing CI gates:

```bash
repopilot baseline create .
repopilot scan . --baseline .repopilot/baseline.json --fail-on new-high
```

Do not refresh the baseline just to silence CI. Refresh it only when the team
explicitly accepts the current findings as technical debt.