npm - @pensar/apex - Versions diffs - 0.0.1 → 0.0.2 - Mend

@pensar/apex 0.0.1 → 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/README.md CHANGED Viewed

@@ -6,13 +6,12 @@
 **Pensar Apex** is an AI-powered penetration testing CLI tool that enables you to use an AI agent to perform comprehensive black box testing.
-## Quick Start
+## Installation
 ### Prerequisites
-- **Bun** v1.0+ (required - [install from bun.sh](https://bun.sh))
 - **nmap** (required for network scanning)
-- **Anthropic API Key** (get one at [console.anthropic.com](https://console.anthropic.com/))
+- **API Key** for your chosen AI provider
 #### Install nmap
@@ -35,117 +34,64 @@ sudo dnf install -y nmap
 ```
 Windows:
 Download installer from `https://nmap.org/download.html` and ensure `nmap` is on your PATH.
-### Installation
-#### Install Bun First
-If you don't have Bun installed:
+### Install Apex
 ```bash
-curl -fsSL https://bun.sh/install | bash
-```
-#### Option 1: Global Installation (Recommended)
-```bash
-# Install globally with bun
-bun install -g @pensar/apex
-# Or with npm (still requires bun to run)
 npm install -g @pensar/apex
 ```
-#### Option 2: Local Development
-```bash
-# Clone the repository
-git clone https://github.com/your-org/apex.git
-cd apex
-# Install dependencies
-npm install
-# or
-bun install
-# Build the project
-npm run build
-# or
-bun run build
-```
 ### Configuration
-Set your Anthropic API key as an environment variable:
+Set your AI provider API key as an environment variable:
 ```bash
 export ANTHROPIC_API_KEY="your-api-key-here"
-```
-To make it permanent, add it to your shell profile (`~/.bashrc`, `~/.zshrc`, etc.):
-```bash
-echo 'export ANTHROPIC_API_KEY="your-api-key-here"' >> ~/.zshrc
-source ~/.zshrc
+# or for other providers:
+# export OPENAI_API_KEY="your-api-key-here"
+# export AWS_ACCESS_KEY_ID="..." and AWS_SECRET_ACCESS_KEY="..."
 ```
 ## Usage
-### Running Pensar
-If installed globally:
+Run Apex:
 ```bash
 pensar
 ```
-If running locally:
+## AI Provider Support
-```bash
-npm start
-# or
-bun start
-```
+Apex supports **OpenAI**, **Anthropic**, **AWS Bedrock**, and **vLLM** (local models). **Anthropic models provide the best performance** and are recommended for optimal results.
-### Run in Container (Kali-based)
+## Kali Linux Container (Recommended)
-If you prefer a preconfigured environment with `nmap` and common pentest tools, use the included container setup.
+For **best performance**, run Apex in the included Kali Linux container with preconfigured pentest tools:
 ```bash
 cd container
-cp env.example .env # add your ANTHROPIC_API_KEY and others
+cp env.example .env  # add your API keys
 docker compose up --build -d
 docker compose exec kali-apex bash
 ```
-Inside the container:
+Inside the container, run:
 ```bash
-cd ~/app
-bun install
-bun run build
-node build/index.js
-# or
 pensar
 ```
-Notes:
+**Note:** On Linux hosts, consider using `network_mode: host` in `docker-compose.yml` for comprehensive network scanning.
-- The host repo is mounted into the container at `/home/ctf/app`.
-- On Linux, consider `network_mode: host` in `container/docker-compose.yml` for comprehensive scanning.
+## vLLM Local Model Support
-### vLLM (Local model) Support
+To use a local vLLM server:
-You can run against a local vLLM server by setting a custom model and a base URL:
-1. Set `LOCAL_MODEL_URL` to your vLLM HTTP endpoint (e.g., `http://localhost:8000/v1`):
+1. Set the vLLM endpoint:
 ```bash
 export LOCAL_MODEL_URL="http://localhost:8000/v1"
 ```
-2. In the Models screen, enter your model name in the "Custom local model (vLLM)" input and press Enter. This will select a local provider model with the ID you entered.
-That’s it—no other keys required for local. The app will route via OpenAI-compatible API to `LOCAL_MODEL_URL` when the selected provider is `local`.
+2. In the Apex Models screen, enter your model name in the "Custom local model (vLLM)" input.

package/bin/pensar.js CHANGED Viewed

@@ -4,7 +4,9 @@
  * Pensar - AI-Powered Penetration Testing CLI
  *
  * This is the main entry point for the Pensar CLI tool.
- * It launches the OpenTUI-based terminal interface.
+ * It supports:
+ * - Default (no args): Launches the OpenTUI-based terminal interface
+ * - benchmark command: Runs the benchmark CLI
  */
 import { fileURLToPath } from "url";
@@ -13,8 +15,56 @@ import { dirname, join } from "path";
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = dirname(__filename);
-// Path to the main application
-const appPath = join(__dirname, "..", "build", "index.js");
+// Get command-line arguments (skip node/bun and script path)
+const args = process.argv.slice(2);
+const command = args[0];
-// Import and run the application directly with Bun
-await import(appPath);
+// Handle different commands
+if (command === "benchmark") {
+  // Run benchmark CLI
+  const benchmarkPath = join(__dirname, "..", "build", "benchmark.js");
+  // Remove "benchmark" from args and pass the rest to benchmark script
+  process.argv = [process.argv[0], benchmarkPath, ...args.slice(1)];
+  // Import and run benchmark
+  await import(benchmarkPath);
+} else if (command === "--help" || command === "-h") {
+  // Show help
+  console.log("Pensar - AI-Powered Penetration Testing CLI");
+  console.log();
+  console.log("Usage:");
+  console.log("  pensar              Launch the TUI (Terminal User Interface)");
+  console.log("  pensar benchmark    Run the benchmark CLI");
+  console.log();
+  console.log("Options:");
+  console.log("  -h, --help         Show this help message");
+  console.log();
+  console.log("Benchmark Usage:");
+  console.log("  pensar benchmark <repo-path> [options] [branch1 branch2 ...]");
+  console.log();
+  console.log("Benchmark Options:");
+  console.log("  --all-branches       Test all branches in the repository");
+  console.log("  --limit <number>     Limit the number of branches to test");
+  console.log("  --skip <number>      Skip the first N branches");
+  console.log(
+    "  --model <model>      Specify the AI model to use (default: claude-sonnet-4-5)"
+  );
+  console.log();
+  console.log("Examples:");
+  console.log("  pensar");
+  console.log("  pensar benchmark /path/to/vulnerable-app");
+  console.log("  pensar benchmark /path/to/app main develop");
+  console.log("  pensar benchmark /path/to/app --all-branches --limit 3");
+  console.log("  pensar benchmark /path/to/app --model gpt-4o");
+} else if (args.length === 0) {
+  // No command specified, run the TUI
+  const appPath = join(__dirname, "..", "build", "index.js");
+  await import(appPath);
+} else {
+  // Unknown command
+  console.error(`Error: Unknown command '${command}'`);
+  console.error();
+  console.error("Run 'pensar --help' for usage information");
+  process.exit(1);
+}