
Product
Introducing Module Reachability: Focus on the Vulnerabilities That Matter
Module Reachability filters out unreachable CVEs so you can focus on vulnerabilities that actually matter to your application.
@brightsec/cli
Advanced tools
Bright CLI is a CLI tool that can initialize, stop, poll and maintain scans in Bright solutions.
Bright is a powerful dynamic application & API security testing (DAST) platform. With its effective automation and integration capabilities, Bright allows developers to scan multiple targets, uncover security vulnerabilities without false positives, get detailed reports on every finding, and quickly fix security issues by following the remediation guidelines.
The NPM allows you to install the Bright Command Line Interface (CLI) on your machine. You can use the Bright CLI to run and manage security scans directly from your development environment. In addition, the container includes a preconfigured Repeater (scan proxy), which enables you to scan local targets securely, without exposing them to the Internet.
Before you can use Bright CLI make sure you have the following:
bot
, scans:run
and scans:read
. You can watch video about creating API keys.npm install @brightsec/cli -g
You can make sure the installation worked by executing the following command:
bright-cli --version
It should return the latest Bright CLI version.
bright-cli repeater \
--token {TOKEN} \
--id {ID}
bright-cli scan:run \
--token {TOKEN} \
--repeater {ID} \
--name "Bright scan" \
--crawler {TARGET_URL} \
--project {PROJECT_ID} \ #If you do not have any custom projects, specify the Default Project ID.
--smart
This command will initialize a new scan engine on the cloud, which will start scanning the target in the Repeater mode.
We recommend that you use the --smart
option to optimize the scan coverage and time. This enables you to use automatic smart decisions, such as parameter skipping, detection phases and so on.
You can follow the scan status in the Bright app or by using the Bright CLI polling command.
The Bright CLI can do so much more! You can find a full guide with the usage examples in the Bright docs.
Copyright © 2024 Bright Security Inc.
This project is licensed under the MIT License - see the LICENSE file for details.
FAQs
Bright CLI is a CLI tool that can initialize, stop, poll and maintain scans in Bright solutions.
The npm package @brightsec/cli receives a total of 188 weekly downloads. As such, @brightsec/cli popularity was classified as not popular.
We found that @brightsec/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Module Reachability filters out unreachable CVEs so you can focus on vulnerabilities that actually matter to your application.
Company News
Socket is bringing best-in-class reachability analysis into the platform — cutting false positives, accelerating triage, and cementing our place as the leader in software supply chain security.
Product
Socket is introducing a new way to organize repositories and apply repository-specific security policies.