# Aphoria Configuration for StemeDB
#
# This configures the code-level truth linter for the StemeDB project.

[project]
name = "stemedb"

[scan]
# Exclude patterns (supports globs)
exclude = [
    # Build outputs
    "target/**",
    "node_modules/**",
    ".git/**",

    # Intentionally vulnerable demo app
    "docs/demo/vulnbank/**",

    # Test fixtures (intentionally insecure patterns)
    "**/uat/fixtures/**",
    "**/test_fixtures/**",

    # Extractor source files (contain detection patterns as test strings, not real issues)
    "applications/aphoria/src/extractors/**",

    # Report modules (contain example output, not real issues)
    "applications/aphoria/src/report/**",

    # Learning modules (contain pattern examples)
    "applications/aphoria/src/learning/**",

    # Community modules (contain anonymization examples)
    "applications/aphoria/src/community/**",
]

# Include test files in scan (we'll use inline ignores for specific patterns)
include_tests = false

# Max file size to scan (1MB)
max_file_size = 1048576

[extractors]
# All extractors enabled by default

[corpus]
# Include all corpus sources
include_hardcoded = true
include_rfc = true
include_owasp = true

[aliases]
# Auto-create aliases when conflicts are detected
auto_create_aliases = true

[hosted]
# Local StemeDB instance for observations sync
url = "http://127.0.0.1:18180"
project_id = "stemedb"
sync_mode = "local-and-remote"
offline_fallback = "skip"
api_key_env = "STEMEDB_API_KEY"
max_retries = 3
retry_delay_ms = 1000