Frontguard CLI is the repeatable, scriptable companion to the Frontguard browser extension.
Use it for:
- Local frontend builds
- Public URLs
- Localhost development servers
- HAR files exported from DevTools
- Interactive deep browser sessions
- CI checks
- Copy-friendly reports for issues, PRs, and AI-assisted fixes
npm install
npm run build
node dist/index.js scan ./distUseful commands:
frontguard start
fguard start
node dist/index.js scan ./dist --copy
node dist/index.js scan http://localhost:3000 --copy
node dist/index.js scan-har ./session.har --markdown
node dist/index.js deep-scan http://localhost:3000 --copy
node dist/index.js rules listWhen installed globally or published, the command name should be:
frontguard scan ./distShort alias:
fguard scan ./distFor the friendliest workflow, run:
frontguard startThe wizard asks:
- What you want to scan: normal scan, deep active scan, HAR file, or saved JSON report.
- What target to use: folder, build output, URL, localhost URL, HAR path, or report path.
- How to output results: terminal text, copy-friendly Markdown, Markdown file, JSON file, or SARIF file.
- Whether to include third-party evidence.
This is best for non-technical users or anyone who does not want to memorize commands.
Frontguard CLI is defensive by default:
- It does not replay requests.
- It does not fuzz endpoints.
- It does not submit forms automatically.
- It does not mutate data by itself.
deep-scanonly captures traffic while you use the browser.- Reports mask secret values by default.
Use it only on apps you own or are authorized to assess.