ABS Core
SDK

Scanner CLI

CI/CD Integration & Local Scanning

Scanner CLI

The ABS Scanner is a standalone CLI tool for scanning repositories and artifacts for policy violations. It is ideal for CI/CD pipelines (GitHub Actions, GitLab CI).

Installation

npm install -g @abs/scan

Commands

abs scan

Scans the current directory recursively.

$ abs scan .

[+] Scanning 42 files...
[!] Found 3 issues:
    - src/config.ts: Hardcoded AWS Key (Line 12) [CRITICAL]
    - db/seed.sql: PII (Email) in comments [LOW]

abs check

Checks a specific input string against policies (useful for git hooks).

$ abs check --input "rm -rf /"
[BLOCK] Malicious command detected (Rule: sys-001)

CI/CD Integration

Add to your .github/workflows/security.yml:

steps:
  - uses: actions/checkout@v3
  - run: npm install -g @abs/scan
  - run: abs scan . --fail-on critical

Offline / Local Mode

Run ABS policy enforcement with zero network latency using WASM Kernel.

VS Code Extension

ABS Kernel — IDE governance for Cursor, Copilot, Windsurf, and VS Code

On this page

Scanner CLIInstallationCommandsabs scanabs checkCI/CD Integration