Installation

Prerequisites

Rust 1.85+ (for building from source)
PostgreSQL 16+ (for the platform API)
Node.js 20+ (for the catalog compiler and dashboard)

Install from Source

Clone the repository:

git clone https://github.com/crabnebula-dev/fleet.git
cd fleet

Compile the catalog:

cd catalog/compiler
pnpm install
pnpm run compile
cd ../..

Build Fleet:
Terminal window
```
cargo build --release
```
Verify installation:
Terminal window
```
./target/release/fleet scan --help
```

Docker (for CI)

docker build -f integrations/Dockerfile.scanner -t fleet-scanner:latest .
docker run --rm -v $(pwd):/workspace fleet-scanner:latest \
  fleet scan --path /workspace --output pretty

Database Setup (for Platform API)

If you want the dashboard, evidence storage, and API:

Create a PostgreSQL database:
Terminal window
```
createdb fleet
```

Set the database URL:

export DATABASE_URL="postgres://$(whoami)@localhost/fleet"

Run migrations:

./target/release/fleet-server
# Migrations run automatically on startup

Dashboard Setup

cd dashboard
pnpm install
pnpm dev
# Opens at http://localhost:3000

Quick Verification

# Scan the fleet project itself
fleet scan --path . --output pretty

Expected output:

Fleet CRA Assessment Scanner
Scanning: .

Catalog: CRA Default v1.0.0 (401 requirements)
Languages: rust, javascript
Source files: 93, Manifests: 4, Lockfiles: 4
CBOM: 314 crypto primitives (301 approved, 6 deprecated, 7 prohibited)

=== CRA Assessment Results ===

  Findings:     152
    Pass:       55
    Fail:       40
    Review:     57

  Scan completed in 12.0s

Next Steps

Your First Scan — detailed walkthrough of scanning a project
CI Integration — set up continuous scanning in your pipeline
LLM Configuration — enable AI-powered evidence review