PR
feat: add config.yaml support for nuclei scans
projectdiscovery/nuclei#7211
Proposed Changes
Adds support for loading scan configuration via a YAML config file.
Users can now run:
nuclei -config config.yaml
The config file can include targets, template options, and other runtime flags.
CLI flags override config values to preserve existing behavior.
Proof
Example config.yaml:
name: test-scan list:
- scanme.sh timeout: 10
Command:
nuclei -config config.yaml
Targets and options are successfully loaded from the config file.
Tests
Added tests in config_extras_test.go to validate config parsing and option merging.
/claim #5567 Fixes #5567
Summary by CodeRabbit
- New Features
- Config files can include inline targets (block scalars or YAML lists) and inline secrets, removing the need for external files.
- Behavior
- CLI-provided target file paths take precedence over inline targets; processing failures emit warnings but don’t break startup.
- Chores
- Temporary files created during config processing are automatically cleaned up on exit.
- Tests
- Added tests covering inline lists, secrets, precedence, and cleanup.
Claim
Total prize pool
$152
Total paid
$0
Status
Pending
Submitted
March 14, 2026
Last updated
March 14, 2026
Contributors
HA
Harsh Singh
@singhharsh1708
Sponsors
PR
ProjectDiscovery
@projectdiscovery
$150
ST
starmovie12
@starmovie12
$2