llm-scanner 0.1.6 → 0.1.7

package/dist/index.js

@@ -81,6 +81,7 @@ program
     .option("--verbose", "Include raw responses in the report")
     .option("--header <header>", 'HTTP header to include, format: "Key: Value"')
     .action(async (opts) => {
+    process.env.AISEC_VERBOSE = opts.verbose ? "true" : "false";
     if (!opts.dryRun && !opts.endpoint) {
         console.error("error: --endpoint is required unless using --dry-run");
         process.exit(1);

package/dist/judge.js

@@ -89,20 +89,26 @@ function isAuthenticationError(err) {
     return false;
 }
 async function judge(attack, response) {
-    console.log("🔥 JUDGE STARTED:", attack.type ?? attack.category);
+    if (process.env.AISEC_VERBOSE === "true") {
+        console.log("🔥 JUDGE STARTED:", attack.type ?? attack.category);
+    }
     const key = process.env.OPENAI_API_KEY;
     const prompt = TEMPLATE.replace("{{attack}}", attack.prompt)
         .replace("{{response}}", response)
         .replace("{{failSignal}}", attack.failSignal);
     try {
         const client = new openai_1.default({ apiKey: key });
-        console.log("🚀 Calling OpenAI judge...");
+        if (process.env.AISEC_VERBOSE === "true") {
+            console.log("🚀 Calling OpenAI judge...");
+        }
         const completion = await client.chat.completions.create({
             model: "gpt-4o-mini",
             temperature: 0,
             messages: [{ role: "user", content: prompt }],
         });
-        console.log("✅ OpenAI responded");
+        if (process.env.AISEC_VERBOSE === "true") {
+            console.log("✅ OpenAI responded");
+        }
         const content = completion.choices[0]?.message?.content ?? "";
         const parsed = parseJudgeJson(content);
         if (!parsed) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "llm-scanner",
-  "version": "0.1.6",
+  "version": "0.1.7",
   "description": "Scan your AI app for prompt injection vulnerabilities before hackers do",
   "main": "./dist/index.js",
   "bin": {