@pensar/apex 2.0.0 → 2.0.1-canary.1323a969
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +20 -0
- package/build/{agent-x1tnsg7n.js → agent-5yw4rt31.js} +7 -10
- package/build/{agent-z8043nrm.js → agent-enzjjh3p.js} +9 -12
- package/build/agent-qpe15pqf.js +19 -0
- package/build/{apps-gdze0s68.js → apps-9jkxtw5k.js} +15 -18
- package/build/{auth-24ca1qwx.js → auth-jjxmbz3c.js} +16 -19
- package/build/authentication-hbf46frk.js +19 -0
- package/build/blackboxAgent-32p5rmqn.js +19 -0
- package/build/{blackboxPentest-xwc031xm.js → blackboxPentest-v4qg5zh4.js} +13 -16
- package/build/{cli-wdmqkshz.js → cli-25gmbqdz.js} +2 -2
- package/build/{cli-k8mvghe1.js → cli-74z800rg.js} +462 -921
- package/build/{cli-31cara07.js → cli-7xwazrpr.js} +8 -6
- package/build/{cli-ntd42071.js → cli-c4c0m5xq.js} +1 -1
- package/build/{cli-h6nw89zf.js → cli-d2s4qht9.js} +1 -1
- package/build/{cli-zvq4gy61.js → cli-dbmt5ch6.js} +13 -6
- package/build/{cli-zpvmaxem.js → cli-e2n0y5wq.js} +2 -2
- package/build/{cli-pkdjamer.js → cli-grarnwb0.js} +15 -5
- package/build/{cli-cb5va0cs.js → cli-ja3nfvsr.js} +10 -1
- package/build/{cli-5fr9k6m4.js → cli-nyva7e0c.js} +60 -37
- package/build/{cli-a20jcpmp.js → cli-q0mxfm7a.js} +2 -2
- package/build/{cli-948dk60p.js → cli-qyn3qn7v.js} +1 -1
- package/build/{cli-0v9x0eby.js → cli-rjt9z7cd.js} +1 -1
- package/build/{cli-sw5swz40.js → cli-w8r23raq.js} +3 -3
- package/build/{cli-mswm4k81.js → cli-xfzthz2e.js} +11 -1
- package/build/{cli-h825qzmd.js → cli-yad21pf2.js} +1492 -53
- package/build/cli.js +106 -46
- package/build/{config-cmq1cxz3.js → config-xtntd3sb.js} +3 -3
- package/build/{doctor-2bkpddws.js → doctor-qkqrmx77.js} +8 -1
- package/build/{fixes-a4qscvkx.js → fixes-7vk5xzbc.js} +15 -18
- package/build/{index-48pjf9d2.js → index-2w6yn4hr.js} +94 -126
- package/build/{index-54ep0ery.js → index-3c4jv928.js} +9 -12
- package/build/{index-s17r2akv.js → index-613j3re1.js} +4 -4
- package/build/{index-2a1x5nnv.js → index-ede3zysk.js} +3 -3
- package/build/{index-aymt8k9w.js → index-fnwceb8q.js} +2 -2
- package/build/{index-hfhkjj2g.js → index-nct87zem.js} +8 -11
- package/build/{index-0fnbx38r.js → index-v9373cg2.js} +20 -14
- package/build/{issues-5pnrspt7.js → issues-rv7rcrpp.js} +15 -18
- package/build/{logs-1mfm901x.js → logs-7ykdy0tj.js} +15 -18
- package/build/{offesecAgent-mrbyc93d.js → offesecAgent-a6tjzzef.js} +8 -11
- package/build/pentest-fgxbafqv.js +28 -0
- package/build/{pentests-htmtq66d.js → pentests-jxrtweg8.js} +15 -18
- package/build/{targetedPentest-cpbd87rc.js → targetedPentest-xydwzy9c.js} +9 -12
- package/build/threatModel-3wxpxf54.js +26 -0
- package/build/{uninstall-6y9dkgyt.js → uninstall-sgkmb1hb.js} +1 -1
- package/build/{upload-7wtbr768.js → upload-1p7766rk.js} +8 -1
- package/build/{utils-trqnyj77.js → utils-w8xavwv5.js} +6 -8
- package/package.json +2 -2
- package/build/agent-84enr6xn.js +0 -22
- package/build/authentication-0k43jay4.js +0 -22
- package/build/blackboxAgent-76tnwwg7.js +0 -22
- package/build/cli-1yavz2pb.js +0 -17
- package/build/cli-3knnkdps.js +0 -666
- package/build/cli-s1nckt4k.js +0 -20
- package/build/pentest-wy4eeagc.js +0 -31
- package/build/threatModel-9n56z6a6.js +0 -29
package/README.md
CHANGED
|
@@ -84,6 +84,26 @@ pensar targeted-pentest --target https://example.com --objective "Test authentic
|
|
|
84
84
|
| `--threat-model <text\|@file>` | pentest | Threat model to guide testing |
|
|
85
85
|
| `--objective <text>` | targeted-pentest | Testing objective (repeatable) |
|
|
86
86
|
|
|
87
|
+
### Logging
|
|
88
|
+
|
|
89
|
+
Apex routes diagnostic/operational logging through a centralized structured logger
|
|
90
|
+
(`src/core/logger`). It writes one-line JSON to **stderr** when output is not a TTY — keeping
|
|
91
|
+
it separate from the program's stdout and easy to ship to a log pipeline (e.g. CloudWatch) —
|
|
92
|
+
and pretty, colorized output in an interactive terminal. User-facing CLI/TUI output stays on
|
|
93
|
+
stdout.
|
|
94
|
+
|
|
95
|
+
Set the level (most → least verbose: `debug` < `info` < `warn` < `error`, default `info`):
|
|
96
|
+
|
|
97
|
+
```bash
|
|
98
|
+
pensar pentest --target https://example.com --log-level debug # or --verbose / --quiet
|
|
99
|
+
PENSAR_LOG_LEVEL=debug pensar ... # via environment
|
|
100
|
+
PENSAR_DEBUG=1 pensar ... # back-compat alias for debug
|
|
101
|
+
```
|
|
102
|
+
|
|
103
|
+
Resolution order: CLI flag → `PENSAR_LOG_LEVEL` → `PENSAR_DEBUG` → default `info`.
|
|
104
|
+
`PENSAR_LOG_FORMAT=json|pretty` forces the output format. When Apex runs as a managed agent,
|
|
105
|
+
`PENSAR_LOG_LEVEL` is supplied by the host environment.
|
|
106
|
+
|
|
87
107
|
### W&B Weave Tracing
|
|
88
108
|
|
|
89
109
|
Stream step-level agent traces to Weights & Biases Weave for analysis and fine-tuning:
|
|
@@ -1,26 +1,23 @@
|
|
|
1
1
|
import {
|
|
2
2
|
OffensiveSecurityAgent
|
|
3
|
-
} from "./cli-
|
|
3
|
+
} from "./cli-74z800rg.js";
|
|
4
4
|
import {
|
|
5
5
|
detectOSAndEnhancePrompt
|
|
6
|
-
} from "./cli-
|
|
7
|
-
import"./cli-3knnkdps.js";
|
|
6
|
+
} from "./cli-xfzthz2e.js";
|
|
8
7
|
import"./cli-c8131c4q.js";
|
|
9
|
-
import"./cli-s1nckt4k.js";
|
|
10
|
-
import"./cli-1yavz2pb.js";
|
|
11
8
|
import {
|
|
12
9
|
init_dist,
|
|
13
10
|
stepCountIs
|
|
14
|
-
} from "./cli-
|
|
15
|
-
import"./cli-
|
|
11
|
+
} from "./cli-yad21pf2.js";
|
|
12
|
+
import"./cli-qyn3qn7v.js";
|
|
16
13
|
import {
|
|
17
14
|
exports_external1 as exports_external,
|
|
18
15
|
init_zod
|
|
19
16
|
} from "./cli-e6rgwtpb.js";
|
|
20
|
-
import"./cli-h6nw89zf.js";
|
|
21
17
|
import"./cli-gpnb45ck.js";
|
|
22
|
-
import"./cli-
|
|
23
|
-
import"./cli-
|
|
18
|
+
import"./cli-d2s4qht9.js";
|
|
19
|
+
import"./cli-rjt9z7cd.js";
|
|
20
|
+
import"./cli-q0mxfm7a.js";
|
|
24
21
|
import"./cli-8rxa073f.js";
|
|
25
22
|
|
|
26
23
|
// src/core/agents/specialized/findingJudge/agent.ts
|
|
@@ -3,22 +3,19 @@ import {
|
|
|
3
3
|
buildPentestActiveTools,
|
|
4
4
|
buildPentestPrompt,
|
|
5
5
|
buildPentestSystemPrompt
|
|
6
|
-
} from "./cli-
|
|
6
|
+
} from "./cli-ja3nfvsr.js";
|
|
7
7
|
import"./cli-9fsre5pt.js";
|
|
8
|
-
import"./cli-
|
|
9
|
-
import"./cli-
|
|
10
|
-
import"./cli-
|
|
11
|
-
import"./cli-3knnkdps.js";
|
|
8
|
+
import"./cli-c4c0m5xq.js";
|
|
9
|
+
import"./cli-74z800rg.js";
|
|
10
|
+
import"./cli-xfzthz2e.js";
|
|
12
11
|
import"./cli-c8131c4q.js";
|
|
13
|
-
import"./cli-
|
|
14
|
-
import"./cli-
|
|
15
|
-
import"./cli-h825qzmd.js";
|
|
16
|
-
import"./cli-948dk60p.js";
|
|
12
|
+
import"./cli-yad21pf2.js";
|
|
13
|
+
import"./cli-qyn3qn7v.js";
|
|
17
14
|
import"./cli-e6rgwtpb.js";
|
|
18
|
-
import"./cli-h6nw89zf.js";
|
|
19
15
|
import"./cli-gpnb45ck.js";
|
|
20
|
-
import"./cli-
|
|
21
|
-
import"./cli-
|
|
16
|
+
import"./cli-d2s4qht9.js";
|
|
17
|
+
import"./cli-rjt9z7cd.js";
|
|
18
|
+
import"./cli-q0mxfm7a.js";
|
|
22
19
|
import"./cli-8rxa073f.js";
|
|
23
20
|
export {
|
|
24
21
|
buildPentestSystemPrompt,
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
import {
|
|
2
|
+
CodeAgent
|
|
3
|
+
} from "./cli-e2n0y5wq.js";
|
|
4
|
+
import"./cli-9fsre5pt.js";
|
|
5
|
+
import"./cli-c4c0m5xq.js";
|
|
6
|
+
import"./cli-74z800rg.js";
|
|
7
|
+
import"./cli-xfzthz2e.js";
|
|
8
|
+
import"./cli-c8131c4q.js";
|
|
9
|
+
import"./cli-yad21pf2.js";
|
|
10
|
+
import"./cli-qyn3qn7v.js";
|
|
11
|
+
import"./cli-e6rgwtpb.js";
|
|
12
|
+
import"./cli-gpnb45ck.js";
|
|
13
|
+
import"./cli-d2s4qht9.js";
|
|
14
|
+
import"./cli-rjt9z7cd.js";
|
|
15
|
+
import"./cli-q0mxfm7a.js";
|
|
16
|
+
import"./cli-8rxa073f.js";
|
|
17
|
+
export {
|
|
18
|
+
CodeAgent
|
|
19
|
+
};
|
|
@@ -12,29 +12,26 @@ import {
|
|
|
12
12
|
searchEndpoints,
|
|
13
13
|
updateApp,
|
|
14
14
|
updateEndpoint
|
|
15
|
-
} from "./cli-
|
|
16
|
-
import"./cli-
|
|
17
|
-
import"./cli-
|
|
18
|
-
import"./cli-
|
|
19
|
-
import"./cli-
|
|
20
|
-
import"./cli-
|
|
21
|
-
import"./cli-
|
|
15
|
+
} from "./cli-7xwazrpr.js";
|
|
16
|
+
import"./cli-nyva7e0c.js";
|
|
17
|
+
import"./cli-w8r23raq.js";
|
|
18
|
+
import"./cli-ja3nfvsr.js";
|
|
19
|
+
import"./cli-dbmt5ch6.js";
|
|
20
|
+
import"./cli-e2n0y5wq.js";
|
|
21
|
+
import"./cli-25gmbqdz.js";
|
|
22
22
|
import"./cli-9fsre5pt.js";
|
|
23
|
-
import"./cli-
|
|
24
|
-
import"./cli-
|
|
25
|
-
import"./cli-
|
|
26
|
-
import"./cli-3knnkdps.js";
|
|
23
|
+
import"./cli-c4c0m5xq.js";
|
|
24
|
+
import"./cli-74z800rg.js";
|
|
25
|
+
import"./cli-xfzthz2e.js";
|
|
27
26
|
import"./cli-fw5r7pfj.js";
|
|
28
27
|
import"./cli-c8131c4q.js";
|
|
29
|
-
import"./cli-
|
|
30
|
-
import"./cli-
|
|
31
|
-
import"./cli-h825qzmd.js";
|
|
32
|
-
import"./cli-948dk60p.js";
|
|
28
|
+
import"./cli-yad21pf2.js";
|
|
29
|
+
import"./cli-qyn3qn7v.js";
|
|
33
30
|
import"./cli-e6rgwtpb.js";
|
|
34
|
-
import"./cli-h6nw89zf.js";
|
|
35
31
|
import"./cli-gpnb45ck.js";
|
|
36
|
-
import"./cli-
|
|
37
|
-
import"./cli-
|
|
32
|
+
import"./cli-d2s4qht9.js";
|
|
33
|
+
import"./cli-rjt9z7cd.js";
|
|
34
|
+
import"./cli-q0mxfm7a.js";
|
|
38
35
|
import"./cli-8rxa073f.js";
|
|
39
36
|
|
|
40
37
|
// src/cli/apps.ts
|
|
@@ -1,21 +1,18 @@
|
|
|
1
1
|
#!/usr/bin/env bun
|
|
2
|
-
import"./cli-
|
|
3
|
-
import"./cli-
|
|
4
|
-
import"./cli-
|
|
5
|
-
import"./cli-
|
|
6
|
-
import"./cli-
|
|
7
|
-
import"./cli-
|
|
8
|
-
import"./cli-
|
|
2
|
+
import"./cli-7xwazrpr.js";
|
|
3
|
+
import"./cli-nyva7e0c.js";
|
|
4
|
+
import"./cli-w8r23raq.js";
|
|
5
|
+
import"./cli-ja3nfvsr.js";
|
|
6
|
+
import"./cli-dbmt5ch6.js";
|
|
7
|
+
import"./cli-e2n0y5wq.js";
|
|
8
|
+
import"./cli-25gmbqdz.js";
|
|
9
9
|
import"./cli-9fsre5pt.js";
|
|
10
|
-
import"./cli-
|
|
11
|
-
import"./cli-
|
|
12
|
-
import"./cli-
|
|
13
|
-
import"./cli-3knnkdps.js";
|
|
10
|
+
import"./cli-c4c0m5xq.js";
|
|
11
|
+
import"./cli-74z800rg.js";
|
|
12
|
+
import"./cli-xfzthz2e.js";
|
|
14
13
|
import"./cli-fw5r7pfj.js";
|
|
15
14
|
import"./cli-c8131c4q.js";
|
|
16
|
-
import"./cli-
|
|
17
|
-
import"./cli-1yavz2pb.js";
|
|
18
|
-
import"./cli-h825qzmd.js";
|
|
15
|
+
import"./cli-yad21pf2.js";
|
|
19
16
|
import {
|
|
20
17
|
disconnect,
|
|
21
18
|
fetchWorkspaces,
|
|
@@ -28,15 +25,15 @@ import {
|
|
|
28
25
|
pollWorkOSToken,
|
|
29
26
|
selectWorkspace,
|
|
30
27
|
startDeviceFlow
|
|
31
|
-
} from "./cli-
|
|
28
|
+
} from "./cli-qyn3qn7v.js";
|
|
32
29
|
import"./cli-e6rgwtpb.js";
|
|
30
|
+
import"./cli-gpnb45ck.js";
|
|
33
31
|
import {
|
|
34
32
|
config,
|
|
35
33
|
init_config
|
|
36
|
-
} from "./cli-
|
|
37
|
-
import"./cli-
|
|
38
|
-
import"./cli-
|
|
39
|
-
import"./cli-a20jcpmp.js";
|
|
34
|
+
} from "./cli-d2s4qht9.js";
|
|
35
|
+
import"./cli-rjt9z7cd.js";
|
|
36
|
+
import"./cli-q0mxfm7a.js";
|
|
40
37
|
import {
|
|
41
38
|
__require
|
|
42
39
|
} from "./cli-8rxa073f.js";
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
import {
|
|
2
|
+
runAuthenticationAgent
|
|
3
|
+
} from "./cli-dbmt5ch6.js";
|
|
4
|
+
import"./cli-9fsre5pt.js";
|
|
5
|
+
import"./cli-c4c0m5xq.js";
|
|
6
|
+
import"./cli-74z800rg.js";
|
|
7
|
+
import"./cli-xfzthz2e.js";
|
|
8
|
+
import"./cli-c8131c4q.js";
|
|
9
|
+
import"./cli-yad21pf2.js";
|
|
10
|
+
import"./cli-qyn3qn7v.js";
|
|
11
|
+
import"./cli-e6rgwtpb.js";
|
|
12
|
+
import"./cli-gpnb45ck.js";
|
|
13
|
+
import"./cli-d2s4qht9.js";
|
|
14
|
+
import"./cli-rjt9z7cd.js";
|
|
15
|
+
import"./cli-q0mxfm7a.js";
|
|
16
|
+
import"./cli-8rxa073f.js";
|
|
17
|
+
export {
|
|
18
|
+
runAuthenticationAgent
|
|
19
|
+
};
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
import {
|
|
2
|
+
BlackboxAttackSurfaceAgent
|
|
3
|
+
} from "./cli-w8r23raq.js";
|
|
4
|
+
import"./cli-9fsre5pt.js";
|
|
5
|
+
import"./cli-c4c0m5xq.js";
|
|
6
|
+
import"./cli-74z800rg.js";
|
|
7
|
+
import"./cli-xfzthz2e.js";
|
|
8
|
+
import"./cli-c8131c4q.js";
|
|
9
|
+
import"./cli-yad21pf2.js";
|
|
10
|
+
import"./cli-qyn3qn7v.js";
|
|
11
|
+
import"./cli-e6rgwtpb.js";
|
|
12
|
+
import"./cli-gpnb45ck.js";
|
|
13
|
+
import"./cli-d2s4qht9.js";
|
|
14
|
+
import"./cli-rjt9z7cd.js";
|
|
15
|
+
import"./cli-q0mxfm7a.js";
|
|
16
|
+
import"./cli-8rxa073f.js";
|
|
17
|
+
export {
|
|
18
|
+
BlackboxAttackSurfaceAgent
|
|
19
|
+
};
|
|
@@ -1,26 +1,23 @@
|
|
|
1
1
|
import {
|
|
2
2
|
runPentestWorkflow
|
|
3
|
-
} from "./cli-
|
|
4
|
-
import"./cli-
|
|
5
|
-
import"./cli-
|
|
6
|
-
import"./cli-
|
|
7
|
-
import"./cli-
|
|
3
|
+
} from "./cli-nyva7e0c.js";
|
|
4
|
+
import"./cli-w8r23raq.js";
|
|
5
|
+
import"./cli-ja3nfvsr.js";
|
|
6
|
+
import"./cli-e2n0y5wq.js";
|
|
7
|
+
import"./cli-25gmbqdz.js";
|
|
8
8
|
import"./cli-9fsre5pt.js";
|
|
9
|
-
import"./cli-
|
|
10
|
-
import"./cli-
|
|
11
|
-
import"./cli-
|
|
12
|
-
import"./cli-3knnkdps.js";
|
|
9
|
+
import"./cli-c4c0m5xq.js";
|
|
10
|
+
import"./cli-74z800rg.js";
|
|
11
|
+
import"./cli-xfzthz2e.js";
|
|
13
12
|
import"./cli-fw5r7pfj.js";
|
|
14
13
|
import"./cli-c8131c4q.js";
|
|
15
|
-
import"./cli-
|
|
16
|
-
import"./cli-
|
|
17
|
-
import"./cli-h825qzmd.js";
|
|
18
|
-
import"./cli-948dk60p.js";
|
|
14
|
+
import"./cli-yad21pf2.js";
|
|
15
|
+
import"./cli-qyn3qn7v.js";
|
|
19
16
|
import"./cli-e6rgwtpb.js";
|
|
20
|
-
import"./cli-h6nw89zf.js";
|
|
21
17
|
import"./cli-gpnb45ck.js";
|
|
22
|
-
import"./cli-
|
|
23
|
-
import"./cli-
|
|
18
|
+
import"./cli-d2s4qht9.js";
|
|
19
|
+
import"./cli-rjt9z7cd.js";
|
|
20
|
+
import"./cli-q0mxfm7a.js";
|
|
24
21
|
import"./cli-8rxa073f.js";
|
|
25
22
|
|
|
26
23
|
// src/core/api/blackboxPentest.ts
|
|
@@ -1,10 +1,10 @@
|
|
|
1
1
|
import {
|
|
2
2
|
OffensiveSecurityAgent
|
|
3
|
-
} from "./cli-
|
|
3
|
+
} from "./cli-74z800rg.js";
|
|
4
4
|
import {
|
|
5
5
|
hasToolCall,
|
|
6
6
|
init_dist
|
|
7
|
-
} from "./cli-
|
|
7
|
+
} from "./cli-yad21pf2.js";
|
|
8
8
|
import {
|
|
9
9
|
exports_external1 as exports_external,
|
|
10
10
|
init_zod,
|