v1.4.0 — Injection Catcher

What's new

• Injection Catcher — renamed from "Hook Guard" for clarity
• Disable button — easily remove hooks from the menu
• Transparent commands — all copied commands reference the GitHub repo directly, so you can verify the source code before running
• Copies npx -p github:kobzevvv/vibe-sec vibe-sec <command> instead of npx vibe-sec <command>

Install (one-liner)

pkill -x VibeSec 2>/dev/null; curl -sL $(curl -s https://api.github.com/repos/kobzevvv/vibe-sec-app/releases/latest | grep -m1 browser_download_url | cut -d'"' -f4) -o /tmp/VibeSec.zip && unzip -oq /tmp/VibeSec.zip -d /Applications && xattr -cr /Applications/VibeSec.app && open /Applications/VibeSec.app

v1.3.3

What's new

• Update button fixed — copies install command to clipboard (reliable, no hanging)
• Version shown in menu — always see which version is running

Install / Update

pkill -x VibeSec 2>/dev/null; curl -sL $(curl -s https://api.github.com/repos/kobzevvv/vibe-sec-app/releases/latest | grep -m1 browser_download_url | cut -d'"' -f4) -o /tmp/VibeSec.zip && unzip -oq /tmp/VibeSec.zip -d /Applications && xattr -cr /Applications/VibeSec.app && open /Applications/VibeSec.app

Full Changelog: v1.3.2...v1.3.3

v1.3.2

Install / Update

pkill -x VibeSec 2>/dev/null; curl -sL $(curl -s https://api.github.com/repos/kobzevvv/vibe-sec-app/releases/latest | grep -m1 browser_download_url | cut -d'"' -f4) -o /tmp/VibeSec.zip && unzip -oq /tmp/VibeSec.zip -d /Applications && xattr -cr /Applications/VibeSec.app && open /Applications/VibeSec.app

v1.3.1

Kill duplicate instances on launch, show version in menu title

v1.3.0

What's new

• Auto-update — app checks GitHub for newer versions (every 6h) and shows "↑ Update available" in the menu. One click to update + relaunch.
• Hook Guard status — shows if hook guard is active or copyable setup command

Install (one-liner)

curl -sL $(curl -s https://api.github.com/repos/kobzevvv/vibe-sec-app/releases/latest | grep browser_download_url | cut -d'"' -f4) -o /tmp/VibeSec.zip && unzip -oq /tmp/VibeSec.zip -d /Applications && xattr -cr /Applications/VibeSec.app && open /Applications/VibeSec.app

Requires vibe-sec installed: npx vibe-sec setup

v1.2.0

What's new

• Open Report opens static HTML file directly (no node server needed)

Install (one-liner)

curl -sL $(curl -s https://api.github.com/repos/kobzevvv/vibe-sec-app/releases/latest | grep browser_download_url | cut -d'"' -f4) -o /tmp/VibeSec.zip && unzip -oq /tmp/VibeSec.zip -d /Applications && xattr -cr /Applications/VibeSec.app && open /Applications/VibeSec.app

Or download manually → unzip → move to /Applications → run:

xattr -cr /Applications/VibeSec.app

Why? macOS blocks apps downloaded from the internet that aren't notarized through Apple. The xattr -cr command removes the quarantine flag. This is standard for open-source Mac apps.

Requires vibe-sec installed: npx vibe-sec setup

v1.1.0

Full Changelog: v1.0.1...v1.1.0

v1.0.1

Full Changelog: v1.0.0...v1.0.1

VibeSec 1.0.0

macOS Menubar App for vibe-sec

Sits in your menu bar and shows security status of your machine at a glance.

Install

1. Download VibeSec-1.0.0.zip below
2. Unzip → drag VibeSec.app to /Applications
3. Open — if macOS blocks it: System Settings → Privacy & Security → Open Anyway

Requirements

• macOS 13+
• vibe-sec installed: npx vibe-sec setup