"Monetary amounts MUST use Decimal128, never Number."
total = new Decimal128(cart.sum)
VibeDefend wires your coding agent to CybeDefend in one command. Business rules mined from the way you code. Security rules from the frameworks your auditors expect. Action guards that block dangerous calls before they fire.
npx -y @cybedefend/vibedefend@latest installRun the installer once; it auto-detects every agent on your laptop and wires the ones you pick.
Each layer hands the agent context the moment it needs it: before the edit, before the commit, before the dangerous call, and every vulnerability your scanners already found.
VibeDefend learns the conventions in your repo and proposes them as explicit rules. The autopilot keeps mining as you code, every drift becomes a one-click rule, every rule lands back in the agent's context.
"Monetary amounts MUST use Decimal128, never Number."
total = new Decimal128(cart.sum)
OWASP, SOC 2, GDPR, ISO 27001, the canonical security playbooks load the day you install. Add your custom rules on top. The agent reads every reminder before each edit.
"Parameterise every query that mixes user input, never string-concat into SQL."
db.query('SELECT … WHERE id = $1', [uid])rm -rf, sudo, raw secret reads, ad-hoc database writes, Action Guard intercepts the agent's call before it fires. Toggle warn / block per rule. Add your own forbidden patterns. On top of the pattern denylist, an LLM judges each risky call in context, catching what a raw regex waves through. Every plan includes 500 LLM judgments, then falls back to the regex layer; full LLM judgment ships from the Scale plan up. Every interception is logged in the audit trail.
"Destructive sudo is never permitted in interactive coding sessions."
eu.cybedefend.com/audit/0xb2e8a4
VibeDefend wires the agent into CybeDefend's full AppSec platform. Its scanners, SAST with reachability, SCA, secrets, IaC and CI/CD, scan continuously, and every finding is live in the agent's context. So the agent does not only write safe code, it triages and fixes the vulnerabilities already in your repo.
"Untrusted req.body.q flows into a raw SQL string, parameterise it."
db.query('… WHERE q = $1', [req.body.q])Privacy by default. Self-hosted Mistral models, zero third-party LLM dependency, EU + US data regions, on-prem or air-gapped deployment available.
Source code never leaves the editor. Rule decisions happen in-process; the agent only ever sees its own context.
Block events, rule proposals and gap signals are reported as structured metadata. No raw code, no prompt content, ever.
Pick your region at install time. Audit trail stored in the matching CybeDefend tenant, no cross-region replication.
An MCP server connection between your agent and CybeDefend, plus the hooks the agent exposes (session start, session review, pre-write, pre-compact when available). Re-run vibedefend install any time to toggle agents on or off.
Claude Code, Cursor, OpenAI Codex, Windsurf and VS Code Copilot. The installer auto-detects which ones live on your laptop and only wires those. Re-running the installer adds or removes agents idempotently.
No. VibeDefend lives next to your agent on your machine. Rule decisions happen locally. Only governance metadata (block events, drift signals, audit entries) reaches the CybeDefend platform.
The mining pass runs locally and produces a structured rule proposal: a small natural-language rule plus a reference to the file path. You review and accept; the body of the file is never transmitted.
The agent gets a friendly refusal explaining the rule, the developer sees the block in their editor, and an entry lands in your CybeDefend audit trail. You can switch any rule between warn and block at any time.
VibeDefend is included on every CybeDefend plan, including the free tier. The installer itself is free and open to inspect. The platform side (audit trail, dashboard, multi-team) is what the paid plans unlock.
One command wires every coding agent on your machine to CybeDefend: your business rules, your compliance frameworks, and guards that block destructive calls before they fire.
npx -y @cybedefend/vibedefend@latest install