# Scanner rules Run `velinstyle scan [path]` for security, a11y, CSS, and PII checks. `velinstyle perf audit` for performance. ```bash velinstyle scan . --severity warning velinstyle scan . --only pii --fix-dry-run velinstyle perf audit samples/ ``` ## a11y | Rule ID | Severity | Message | Fix hint | | --- | --- | --- | --- | | `a11y/autocomplete-auth` | warning | Auth field missing autocomplete (WCAG 2.2). | Add autocomplete="username" or "current-password". | | `a11y/button-label` | warning | without visible text or aria-label. | Add text or aria-label. | | `a11y/heading-order` | warning | Heading levels skip (e.g. h2 → h4). | Use sequential heading levels. | | `a11y/html-lang` | error | missing lang attribute. | Add lang="de" or appropriate locale — --fix. | | `a11y/iframe-title` | error |