Metadata-Version: 2.4
Name: xsource-cli
Version: 0.2.0
Summary: XSource Security CLI - AI Agent Security Scanner (Free Tier: 50 vectors)
Project-URL: Homepage, https://xsourcesec.com
Project-URL: Documentation, https://docs.xsourcesec.com/cli
Project-URL: Repository, https://github.com/XSource-Sec/xsource-cli
Project-URL: Issues, https://github.com/XSource-Sec/xsource-cli/issues
Project-URL: Pricing, https://xsourcesec.com/pricing
Author-email: XSource Security <support@xsourcesec.com>
License-Expression: MIT
Keywords: ai,jailbreak,llm,owasp,prompt-injection,scanning,security
Classifier: Development Status :: 4 - Beta
Classifier: Environment :: Console
Classifier: Intended Audience :: Developers
Classifier: Intended Audience :: System Administrators
Classifier: License :: OSI Approved :: MIT License
Classifier: Operating System :: OS Independent
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Topic :: Security
Classifier: Topic :: Software Development :: Testing
Requires-Python: >=3.10
Requires-Dist: httpx>=0.25.0
Requires-Dist: rich>=13.0.0
Requires-Dist: typer[all]>=0.9.0
Provides-Extra: dev
Requires-Dist: black>=23.0.0; extra == 'dev'
Requires-Dist: pytest-asyncio>=0.21.0; extra == 'dev'
Requires-Dist: pytest>=7.0.0; extra == 'dev'
Requires-Dist: ruff>=0.1.0; extra == 'dev'
Description-Content-Type: text/markdown

# XSource CLI

**AI Agent Security Scanner** - Free Tier (50 attack vectors)

Test your LLM endpoints for security vulnerabilities using curated OWASP-aligned attack vectors.

## Installation

```bash
pip install xsource-cli
```

## Quick Start

```bash
# Scan OpenAI endpoint (uses OPENAI_API_KEY env var)
export OPENAI_API_KEY=sk-...
xsource scan --provider openai

# Scan Anthropic Claude
export ANTHROPIC_API_KEY=sk-ant-...
xsource scan --provider anthropic

# Scan custom endpoint
xsource scan --url https://api.example.com/v1/chat --api-key sk-xxx

# Save report to file
xsource scan --provider openai --output report.json

# List available attack vectors
xsource vectors
```

## Attack Vector Categories

| Category | Vectors | Description |
|----------|---------|-------------|
| Prompt Injection | 10 | Direct & indirect instruction hijacking |
| Jailbreak | 15 | DAN, roleplay, encoding bypasses |
| PII Leakage | 10 | Email, SSN, credit card extraction |
| System Prompt Leak | 10 | Instruction disclosure attacks |
| MCP/Tool Abuse | 5 | Function calling vulnerabilities |

**Total: 50 vectors** (Free Tier)

## Output Example

```
╭─────────────────── Scan Summary ───────────────────╮
│ Security Score: 72.5/100 (MODERATE)                │
│                                                    │
│ Vectors Tested: 50                                 │
│ Vulnerabilities: 8                                 │
│ Safe: 42                                           │
╰────────────────────────────────────────────────────╯

Severity Breakdown:
  🔴 CRITICAL  ████░░░░░░░░░░░░░░░░ 2
  🟠 HIGH      ████████░░░░░░░░░░░░ 4
  🟡 MEDIUM    ████░░░░░░░░░░░░░░░░ 2
```

## Commands

| Command | Description |
|---------|-------------|
| `xsource scan` | Scan an LLM endpoint for vulnerabilities |
| `xsource vectors` | List available attack vectors |
| `xsource version` | Show version information |

## Environment Variables

| Variable | Description |
|----------|-------------|
| `OPENAI_API_KEY` | OpenAI API key |
| `ANTHROPIC_API_KEY` | Anthropic API key |

## Upgrade

Want more attack vectors?

- **STARTER** - 300 vectors
- **PRO** - 1,000 vectors
- **ENTERPRISE** - 2,700+ vectors

Visit [xsourcesec.com/pricing](https://xsourcesec.com/pricing) to upgrade.

## License

MIT License

---

Made with ❤️ by [XSource Security](https://xsourcesec.com)
