Troubleshooting
Common issues, artifact reference, and getting help.
Common Issues
"vibe: command not found"
The CLI is not installed or not in your PATH.
Solution:
npm install -g @vibe-assurance/cli
# Verify installation
vibe --version
"Authentication failed" or "Token expired"
Your session has expired or credentials are invalid.
Solution:
# Clear and re-authenticate
vibe logout
vibe login
MCP tools not appearing in Claude Code
The MCP server may not be configured correctly.
Solution:
# Re-run setup
vibe setup-claude
# Restart Claude Code completely
# Check ~/.claude/mcp.json for vibeassurance entry
"Project not found" or "Access denied"
You may be trying to access a project you don't have access to.
Solution:
# List your projects
vibe projects
# Switch to a valid project
vibe project select
Vibe not being used when I ask for features
Vibe doesn't automatically intercept your prompts. You need to explicitly mention Vibe or its roles.
Solution:
Be explicit about wanting governance. Instead of "Add a logout button", say:
"Use the Vibe Implementation Planner to create a CR
for adding a logout button, then implement it."Artifact Types
Vibe Assurance stores governance documents as artifacts:
| Type | ID Format | Description |
|---|---|---|
CR |
CR-YYYY-XXX | Change Requests with implementation plans |
RISK |
RISK-XXX | Risk register entries with scoring |
VULNERABILITY |
VUL-XXX | Security vulnerabilities with OWASP categories |
PLAN |
PLAN-YYYY-XXX | Strategic plans with CR roadmaps |
REPORT |
Custom | Security reports and audit findings |
POLICY |
POL-XXX | Security policies and procedures |
SOP |
SOP-XXX | Standard Operating Procedures |
Artifact Statuses
| Status | Description |
|---|---|
Draft |
Work in progress, not yet approved |
Active |
Approved and in effect |
Completed |
Implementation finished (for CRs) |
Closed |
Resolved or archived |
Risk Scoring
Risks are scored using likelihood x impact:
Likelihood Scale (1-5)
| Value | Label | Description |
|---|---|---|
| 1 | Rare | Less than once per year |
| 2 | Unlikely | Once per year |
| 3 | Possible | Several times per year |
| 4 | Likely | Monthly occurrence |
| 5 | Almost Certain | Weekly or more frequent |
Impact Scale (1-5)
| Value | Label | Description |
|---|---|---|
| 1 | Insignificant | Minor inconvenience |
| 2 | Minor | Limited impact, quickly recoverable |
| 3 | Moderate | Significant disruption |
| 4 | Major | Severe impact, compliance implications |
| 5 | Catastrophic | Critical failure, major breach |
Severity Mapping
| Score Range | Severity |
|---|---|
| 1-4 | Low |
| 5-9 | Medium |
| 10-16 | High |
| 17-25 | Critical |
OWASP Categories
Vulnerabilities use OWASP Top 10 2021 categories:
| Code | Category |
|---|---|
| A01 | Broken Access Control |
| A02 | Cryptographic Failures |
| A03 | Injection |
| A04 | Insecure Design |
| A05 | Security Misconfiguration |
| A06 | Vulnerable Components |
| A07 | Authentication Failures |
| A08 | Data Integrity Failures |
| A09 | Logging Failures |
| A10 | SSRF |
Getting Help
If you're still having issues:
- Contact Support: vibeassurance.app/contact
- Dashboard: View your artifacts and governance status at vibeassurance.app/dashboard