Skip to main content
Commands

vg push

Upload scan results to Vibgrate Cloud for team visibility and trend analysis.

Overview

vg push uploads scan artifacts to the Vibgrate Cloud for team visibility, trend analysis, and portfolio-level insights.

Optional Feature: The CLI provides full value locally. Uploading to Vibgrate Cloud is always opt-in.


Usage

vg push [options]

Options

FlagDefaultDescription
--dsn <token>VIBGRATE_DSN envDSN token for authentication
--file <path>.vibgrate/scan_result.jsonScan artifact to upload
--region <code>autoData residency override: us, eu
--strictfalseExit with error if upload fails

Vibgrate Cloud Benefits

FeatureDescription
📊 Shared ViewTeam-wide visibility into drift across projects
📈 Trend ChartsHistorical drift score over time
🏢 Portfolio ViewRisk assessment across all repositories
🔔 AlertsNotifications when drift exceeds thresholds

DSN Authentication

Vibgrate uses HMAC-signed DSN tokens for secure authentication:

vibgrate+https://<key_id>:<secret>@<ingest_host>/<workspace_id>

Setting Up DSN

# Option 1: Environment variable (recommended for CI)
export VIBGRATE_DSN="vibgrate+https://key:secret@us.ingest.vibgrate.com/ws-123"

# Option 2: Command-line flag
vg push --dsn "vibgrate+https://..."

Security: Store DSN as a CI secret. Never commit to source control.


Examples

Basic Push

# Uses VIBGRATE_DSN environment variable
vg push

Output:

✓ Uploading scan artifact...
✓ Upload complete
→ View at: https://dash.vibgrate.com/ws-123/scan/abc456

Strict Mode (CI)

# Fail pipeline if upload fails
vg push --strict --file .vibgrate/scan_result.json

EU Data Residency

vg push --region eu

Combined with Scan

# Scan and push in one command
vg scan --push --strict

Data Residency

RegionEndpointLocation
🇺🇸 US (default)us.ingest.vibgrate.comUnited States
🇪🇺 EUeu.ingest.vibgrate.comEuropean Union

Note: Data residency is determined by your DSN. Use --region only to override for testing.


CI Integration

GitHub Actions

- name: Scan and push to dashboard
  env:
    VIBGRATE_DSN: ${{ secrets.VIBGRATE_DSN }}
  run: npx @vibgrate/cli scan --push --strict

Azure DevOps

- script: npx @vibgrate/cli scan --push --strict
  env:
    VIBGRATE_DSN: $(VIBGRATE_DSN)

Best Practices

PracticeRationale
✅ Use --strict in CIEnsure pipeline fails if upload fails
🔐 Store DSN as secretNever expose in logs or source code
📁 Ignore scan_result.jsonAdd to .gitignore
🔄 Push on main branch onlyAvoid noise from PR builds

Related Commands

No live demo for this command

vg push uploads your scan results to Vibgrate Cloud over the network and needs a DSN or login, so it cannot run as an in-browser replay. The usage above shows the exact command.

Related Documentation

Related Help Articles