npm - @pensar/apex - Versions diffs - 0.0.109 → 0.0.110-canary.f2a52b35 - Mend

@pensar/apex 0.0.109 → 0.0.110-canary.f2a52b35

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -1,6 +1,10 @@
 <h1 align="center">Pensar Apex</h1>
-<p align="center">AI-powered penetration testing tool that enables you to use an AI agent to perform comprehensive blackbox and whitebox pentesting - directly in your terminal.
+<p align="center">AI-powered penetration testing using an AI agent to perform comprehensive blackbox and whitebox pentesting - directly in your terminal.
+</p>
+<p align="center">
+Want to run from the cloud or integrate it with your CI/CD? See <a href="https://docs.pensar.dev/console">Pensar Console</a>.
 </p>
 <p align="center">
@@ -12,9 +16,57 @@
   <a href="https://discord.gg/pensar"><img src="https://img.shields.io/badge/Discord-Join%20Us-5865F2?logo=discord&logoColor=white" alt="Discord"></a>
 </p>
-<p align="center">
+<!-- <p align="center">
   <img src="screenshot.png" alt="Pensar Apex Screenshot" width="800">
-</p>
+</p> -->
+## Use Cases
+Apex enables both developers and security professionals to run autonomous and assisted penetration testing directly from the terminal.
+### Developers: Run a Pentest in Minutes
+Apex makes it easy for developers to run a real penetration test without needing deep offensive security expertise.
+Using the autonomous `/pentest` mode, Apex will perform reconnaissance, attack surface discovery, vulnerability testing, and exploitation attempts automatically.
+This allows teams to quickly identify security issues before they reach production.
+```bash
+/pentest
+```
+Examples:
+- Test a staging environment before deploying
+- Scan a newly launched domain or API
+- Run quick security checks during development
+- Identify exposed services or misconfigurations
+This is the **fastest way to get real pentesting coverage without becoming a security expert.**
+---
+### Security Engineers: Advanced Operator Workflows
+Security professionals can use Apex as an **agentic offensive security harness** that orchestrates tools and reasoning workflows.
+The `/operator` mode allows engineers to work interactively with the Offensive Security Agent, guiding investigations and chaining tools dynamically.
+```bash
+/operator
+```
+Examples:
+- Deep investigation of suspicious endpoints
+- Manual exploitation of discovered vulnerabilities
+- Tool orchestration across recon and exploitation phases
+- Validation and reproduction of vulnerabilities
+- Open-source security research / testing
+This turns Apex into a **terminal-native AI pentesting partner** rather than just a scanner.
 ## Installation
@@ -45,17 +97,13 @@ npm install -g @pensar/apex
 ## Usage
-Run Apex:
+Open the Apex TUI:
 ```bash
 pensar
 ```
-## AI Provider Support
-Apex supports **OpenAI**, **Anthropic**, **AWS Bedrock**, and **vLLM** (local models). **Anthropic models provide the best performance** and are recommended for optimal results.
-## Kali Linux Container (Recommended)
+## Kali Linux Container (Optional)
 For **best performance**, run Apex in the included Kali Linux container with preconfigured pentest tools:
@@ -72,20 +120,6 @@ Inside the container, run:
 pensar
 ```
-**Note:** On Linux hosts, consider using `network_mode: host` in `docker-compose.yml` for comprehensive network scanning.
-## vLLM Local Model Support
-To use a local vLLM server:
-1. Set the vLLM endpoint:
-```bash
-export LOCAL_MODEL_URL="http://localhost:8000/v1"
-```
-2. In the Apex Models screen, enter your model name in the "Custom local model (vLLM)" input.
 ---
 ### ⚠️ Responsible Use

package/build/auth.js CHANGED Viewed

@@ -8,7 +8,7 @@ import fs from "fs/promises";
 // package.json
 var package_default = {
   name: "@pensar/apex",
-  version: "0.0.109",
+  version: "0.0.110-canary.f2a52b35",
   description: "AI-powered penetration testing CLI tool with terminal UI",
   module: "src/tui/index.tsx",
   main: "build/index.js",

package/build/index.js CHANGED Viewed

@@ -31892,12 +31892,6 @@ var init_pensar = __esm(() => {
       provider: "pensar",
       contextLength: 200000
     },
-    {
-      id: "pensar:anthropic.claude-opus-4-1-20250805-v1:0",
-      name: "Claude Opus 4.1 (Pensar)",
-      provider: "pensar",
-      contextLength: 200000
-    },
     {
       id: "pensar:anthropic.claude-haiku-4-5-20251001-v1:0",
       name: "Claude Haiku 4.5 (Pensar)",
@@ -31977,7 +31971,7 @@ var package_default2;
 var init_package = __esm(() => {
   package_default2 = {
     name: "@pensar/apex",
-    version: "0.0.109",
+    version: "0.0.110-canary.f2a52b35",
     description: "AI-powered penetration testing CLI tool with terminal UI",
     module: "src/tui/index.tsx",
     main: "build/index.js",
@@ -273281,7 +273275,7 @@ var PROVIDER_PREFERENCE_ORDER = [
   "bedrock"
 ];
 var PREFERRED_MODEL_BY_PROVIDER = {
-  pensar: "pensar:anthropic.claude-opus-4-1-20250805-v1:0",
+  pensar: "pensar:anthropic.claude-opus-4-6-v1",
   anthropic: "claude-opus-4-6",
   openai: "gpt-5.2-pro",
   google: "gemini-3.1-pro-preview",
@@ -279246,7 +279240,9 @@ function AuthFlow({ onClose }) {
   const { colors: colors2 } = useTheme();
   const appConfig = useConfig();
   const alreadyConnected = isConnected(appConfig.data);
-  const [step, setStep] = import_react48.useState(alreadyConnected ? "success" : "start");
+  const hasWorkspace = !!appConfig.data.workspaceId;
+  const needsWorkspace = alreadyConnected && !hasWorkspace && !!appConfig.data.accessToken;
+  const [step, setStep] = import_react48.useState(needsWorkspace ? "requesting" : alreadyConnected ? "success" : "start");
   const [error40, setError] = import_react48.useState(null);
   const [flowInfo, setFlowInfo] = import_react48.useState(null);
   const [workspaces, setWorkspaces] = import_react48.useState([]);
@@ -279457,6 +279453,14 @@ function AuthFlow({ onClose }) {
       setStep("error");
     }
   };
+  import_react48.useEffect(() => {
+    if (!needsWorkspace)
+      return;
+    const ac = new AbortController;
+    abortRef.current = ac;
+    const apiUrl = getPensarApiUrl();
+    handleFetchWorkspaces(apiUrl, appConfig.data.accessToken, ac);
+  }, []);
   const handleDisconnect = async () => {
     await disconnect();
     appConfig.reload();
@@ -279948,7 +279952,11 @@ function ProviderManager() {
     });
   };
   const handleAuthClose = () => {
-    route.navigate({ type: "base", path: "home" });
+    if (isOnboarding) {
+      setFlowState("choosing");
+    } else {
+      route.navigate({ type: "base", path: "home" });
+    }
   };
   const otherProviders = AVAILABLE_PROVIDERS.filter((p) => p.id !== "pensar");
   const selectedProviderInfo = AVAILABLE_PROVIDERS.find((p) => p.id === selectedProvider);
@@ -291750,8 +291758,8 @@ function AppContent({
       return;
     if (!config3.data.responsibleUseAccepted && route.data.path !== "disclosure") {
       route.navigate({ type: "base", path: "disclosure" });
-    } else if (config3.data.responsibleUseAccepted && !hasAnyProviderConfigured(config3.data) && route.data.path !== "providers" && route.data.path !== "disclosure") {
-      route.navigate({ type: "base", path: "providers" });
+    } else if (config3.data.responsibleUseAccepted && !hasAnyProviderConfigured(config3.data) && route.data.path !== "auth" && route.data.path !== "providers" && route.data.path !== "disclosure") {
+      route.navigate({ type: "base", path: "auth" });
     }
   }, [config3.data.responsibleUseAccepted, route.data]);
   import_react90.useEffect(() => {
@@ -291879,7 +291887,7 @@ function CommandDisplay({
     await config3.update({ responsibleUseAccepted: true });
     route.navigate({
       type: "base",
-      path: "providers"
+      path: "auth"
     });
   };
   if (route.data.type === "base") {
@@ -291925,6 +291933,18 @@ function CommandDisplay({
             when: "models",
             children: /* @__PURE__ */ import_jsx_dev_runtime2.jsxDEV(ModelsDisplay, {}, undefined, false, undefined, this)
           }, undefined, false, undefined, this),
+          /* @__PURE__ */ import_jsx_dev_runtime2.jsxDEV(RouteSwitch.Case, {
+            when: "auth",
+            children: /* @__PURE__ */ import_jsx_dev_runtime2.jsxDEV(AuthFlow, {
+              onClose: () => {
+                if (hasAnyProviderConfigured(config3.data)) {
+                  route.navigate({ type: "base", path: "home" });
+                } else {
+                  route.navigate({ type: "base", path: "providers" });
+                }
+              }
+            }, undefined, false, undefined, this)
+          }, undefined, false, undefined, this),
           /* @__PURE__ */ import_jsx_dev_runtime2.jsxDEV(RouteSwitch.Case, {
             when: "providers",
             children: /* @__PURE__ */ import_jsx_dev_runtime2.jsxDEV(ProviderManager, {}, undefined, false, undefined, this)

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@pensar/apex",
-  "version": "0.0.109",
+  "version": "0.0.110-canary.f2a52b35",
   "description": "AI-powered penetration testing CLI tool with terminal UI",
   "module": "src/tui/index.tsx",
   "main": "build/index.js",