External/securelens-backend
1
0
Fork 0
mirror of https://github.com/Rarebuffalo/securelens-backend.git synced 2026-06-19 07:00:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

updated the requirements and options

Browse Source
This commit is contained in:
rarebuffalo
2026-05-07 10:48:49 +05:30
parent 8e45532240
commit d1a9ecadbf
1 changed files with 39 additions and 53 deletions
Download Patch File Download Diff File Expand all files Collapse all files

92
.env.example
View File

@@ -1,87 +1,73 @@
# ============================================================ # copy this to .env and fill in your values
# SecureLens AI — Environment Configuration # don't commit your actual .env file
# ============================================================
# Copy this file to .env and fill in your values.
# Never commit your actual .env file to version control.
# ------------------------------------------------------------
# Application
# ------------------------------------------------------------
APP_NAME=SecureLens AI APP_NAME=SecureLens AI
APP_VERSION=1.1.0 APP_VERSION=1.1.0
DEBUG=true DEBUG=true
# ------------------------------------------------------------
# Server
# ------------------------------------------------------------
HOST=0.0.0.0 HOST=0.0.0.0
PORT=8000 PORT=8000
# ------------------------------------------------------------ # comma-separated, add your frontend origin here
# CORS — comma-separated list of allowed origins
# ------------------------------------------------------------
CORS_ORIGINS=http://localhost:3000,http://localhost:5173 CORS_ORIGINS=http://localhost:3000,http://localhost:5173
# ------------------------------------------------------------
# Rate Limiting
# ------------------------------------------------------------
RATE_LIMIT=30/minute RATE_LIMIT=30/minute
# ------------------------------------------------------------ # how long to wait when scanning a URL (seconds)
# Scanner Timeouts (seconds)
# ------------------------------------------------------------
SCAN_TIMEOUT=5 SCAN_TIMEOUT=5
PATH_CHECK_TIMEOUT=3 PATH_CHECK_TIMEOUT=3
# ------------------------------------------------------------
# Database
# ------------------------------------------------------------
DATABASE_URL=postgresql+asyncpg://securelens:securelens@localhost:5433/securelens DATABASE_URL=postgresql+asyncpg://securelens:securelens@localhost:5433/securelens
# ------------------------------------------------------------ # change this in production, use something long and random
# JWT Auth
# ------------------------------------------------------------
JWT_SECRET=change-me-in-production-use-a-long-random-string JWT_SECRET=change-me-in-production-use-a-long-random-string
# ------------------------------------------------------------ # AI provider - uses LiteLLM so you can swap models by changing these two lines
# AI Provider (LiteLLM — pick ONE of the options below) # gemini (default)
# ------------------------------------------------------------
# Option 1: Google Gemini (default)
AI_MODEL=gemini/gemini-2.0-flash AI_MODEL=gemini/gemini-2.0-flash
AI_API_KEY=your-gemini-api-key-here AI_API_KEY=your-api-key-here
# Option 2: OpenAI # openai — uncomment to use instead
# AI_MODEL=gpt-4o-mini # AI_MODEL=gpt-4o-mini
# AI_API_KEY=your-openai-api-key-here # AI_API_KEY=sk-...
# Option 3: Anthropic Claude # anthropic claude — uncomment to use instead
# AI_MODEL=claude-3-5-haiku-20241022 # AI_MODEL=claude-3-5-haiku-20241022
# AI_API_KEY=your-anthropic-api-key-here # AI_API_KEY=sk-ant-...
# Option 4: OpenRouter (access to all models with one key) # openrouter — one key for all models
# AI_MODEL=openrouter/google/gemini-2.0-flash-exp:free # AI_MODEL=openrouter/google/gemini-2.0-flash-exp:free
# AI_API_KEY=your-openrouter-api-key-here # AI_API_KEY=sk-or-...
# Option 5: Ollama (local, free — no key needed) # ollama (local, no key needed)
# AI_MODEL=ollama/llama3.1 # AI_MODEL=ollama/llama3.1
# AI_API_KEY= # AI_API_KEY=
# Legacy: still works for Gemini backward compatibility # old gemini key still works if you haven't migrated yet
# GEMINI_API_KEY=your-gemini-api-key-here # GEMINI_API_KEY=
# ------------------------------------------------------------ # threat intelligence — both have free tiers, leave blank to skip
# Threat Intelligence (Optional — free tier available) # virustotal.com — 500 lookups/day free
# ------------------------------------------------------------
# VirusTotal: https://www.virustotal.com/ (500 lookups/day free)
VIRUSTOTAL_API_KEY= VIRUSTOTAL_API_KEY=
# abuseipdb.com — 1000 lookups/day free
# AbuseIPDB: https://www.abuseipdb.com/ (1000 lookups/day free)
ABUSEIPDB_API_KEY= ABUSEIPDB_API_KEY=
# ------------------------------------------------------------ # nuclei active scanner — leave blank if nuclei isn't installed
# Scheduled Scans # it'll search PATH automatically, or set an explicit path here
# ------------------------------------------------------------ # install: go install github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest
# No extra configuration needed. The scheduler starts automatically NUCLEI_BINARY_PATH=
# with the app and checks every hour for scans that are due.
# Users create scheduled scans via POST /scheduled-scans (requires JWT auth). # slack alerts — paste your incoming webhook URL here to get notified on scan completion
# Webhooks fire automatically if a scheduled scan detects a score drop. # and score regressions. leave blank to skip
# create one at: https://api.slack.com/messaging/webhooks
SLACK_WEBHOOK_URL=
# email alerts via SMTP — leave SMTP_HOST blank to skip
# works with gmail app passwords, sendgrid, etc.
SMTP_HOST=
SMTP_PORT=587
SMTP_USERNAME=
SMTP_PASSWORD=
SMTP_FROM_EMAIL=
# set to true if your provider uses port 465 (SSL), false for port 587 (STARTTLS)
SMTP_USE_SSL=false