Gluon Quickstart

Runtime Security Telemetry. Monitor secrets exposure, track network activity, and generate SBOMs.

Installation

npm install -g @dotsetlabs/gluon

Or use directly with npx:

npx @dotsetlabs/gluon run -- npm start

Initialize a Project

gln init

This creates .dotset/gluon/ with configuration files.

Static Analysis

Analyze your codebase for security issues:

gln analyze

Detects:

Exposed secrets in code
Vulnerable dependencies
Security misconfigurations

Runtime Monitoring

Run your app with monitoring:

gln run -- npm start

Monitors:

Secret exposure in stdout/stderr
Outbound network connections
File system access patterns

Secret Protection Modes

# Default: Detect and warn
gln run -- npm start

# Redact secrets in output
gln run --mode redact -- npm start

# Block output containing secrets
gln run --mode block -- npm start

Generate SBOM

Create a Software Bill of Materials:

gln sbom
gln sbom --format spdx --output sbom.json

Next Steps

CLI Reference

Complete list of all CLI commands.

Runtime Monitoring

Deep dive into runtime hooks and monitoring.

SBOM Generation

Learn about SBOM formats and compliance.

Gluon

​Gluon Quickstart

​Installation

​Initialize a Project

​Static Analysis

​Runtime Monitoring

​Secret Protection Modes

​Generate SBOM

​Next Steps

CLI Reference

Runtime Monitoring

SBOM Generation

Gluon Quickstart

Installation

Initialize a Project

Static Analysis

Runtime Monitoring

Secret Protection Modes

Generate SBOM

Next Steps