PyPI - exaai-agent - Versions diffs - 2.1.2__tar.gz → 2.2.0__tar.gz - Mend

exaai-agent 2.1.2tar.gz → 2.2.0tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (161) hide show

{exaai_agent-2.1.2 → exaai_agent-2.2.0}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: exaai-agent
-Version: 2.1.2
+Version: 2.2.0
 Summary: ExaAi - Advanced AI Security Agent for Comprehensive Penetration Testing
 License: Apache-2.0
 License-File: LICENSE
@@ -151,8 +151,7 @@ ExaAiAgent is an elite AI-powered cybersecurity agent that acts like a real pene
 # Install ExaAiAgent
 # Method 1: Automated Script (Recommended)
-curl -sSL https://raw.githubusercontent.com/hleliofficiel/ExaAiAgent/main/install.sh | bash
+pip install exaai-agent
 # Method 2: pipx
 pipx install exaai-agent
@@ -366,6 +365,33 @@ export PERPLEXITY_API_KEY="key"       # For search capabilities
 ---
+## 🛠️ Troubleshooting
+### 🔧 Troubleshooting
+#### Problem: "LLM Connection Failed" or Model Not Found
+Modern models (like `gemini-3-pro-preview`) require the latest version of `litellm` to be recognized correctly.
+**Solution: Update LiteLLM**
+```bash
+pip install -U litellm
+```
+**Linux/Debian Users (Externally Managed Environment):**
+If you encounter permission errors or "externally-managed-environment", you may need to use a virtual environment (`venv`) or force a user install:
+```bash
+# Option 1: Virtual Environment (Recommended for Servers)
+python3 -m venv venv
+source venv/bin/activate
+pip install exaai-agent
+# Option 2: Force User Install
+pip install -U litellm --user --break-system-packages
+```
+---
 ## 🤝 Contributing
 We welcome contributions! Check out our [Contributing Guide](CONTRIBUTING.md).

{exaai_agent-2.1.2 → exaai_agent-2.2.0}/README.md RENAMED Viewed

@@ -109,8 +109,7 @@ ExaAiAgent is an elite AI-powered cybersecurity agent that acts like a real pene
 # Install ExaAiAgent
 # Method 1: Automated Script (Recommended)
-curl -sSL https://raw.githubusercontent.com/hleliofficiel/ExaAiAgent/main/install.sh | bash
+pip install exaai-agent
 # Method 2: pipx
 pipx install exaai-agent
@@ -324,6 +323,33 @@ export PERPLEXITY_API_KEY="key"       # For search capabilities
 ---
+## 🛠️ Troubleshooting
+### 🔧 Troubleshooting
+#### Problem: "LLM Connection Failed" or Model Not Found
+Modern models (like `gemini-3-pro-preview`) require the latest version of `litellm` to be recognized correctly.
+**Solution: Update LiteLLM**
+```bash
+pip install -U litellm
+```
+**Linux/Debian Users (Externally Managed Environment):**
+If you encounter permission errors or "externally-managed-environment", you may need to use a virtual environment (`venv`) or force a user install:
+```bash
+# Option 1: Virtual Environment (Recommended for Servers)
+python3 -m venv venv
+source venv/bin/activate
+pip install exaai-agent
+# Option 2: Force User Install
+pip install -U litellm --user --break-system-packages
+```
+---
 ## 🤝 Contributing
 We welcome contributions! Check out our [Contributing Guide](CONTRIBUTING.md).

exaai_agent-2.2.0/exaaiagnt/dashboard/server.py ADDED Viewed

@@ -0,0 +1,99 @@
+from fastapi import FastAPI, WebSocket, WebSocketDisconnect
+from fastapi.staticfiles import StaticFiles
+from fastapi.responses import HTMLResponse
+import uvicorn
+import json
+import asyncio
+import logging
+from typing import List, Dict, Any
+import os
+from exaaiagnt.telemetry.tracer import get_global_tracer
+app = FastAPI(title="ExaAi Live Dashboard")
+# Serve static files
+static_dir = os.path.join(os.path.dirname(__file__), "static")
+app.mount("/static", StaticFiles(directory=static_dir), name="static")
+class ConnectionManager:
+    def __init__(self):
+        self.active_connections: List[WebSocket] = []
+    async def connect(self, websocket: WebSocket):
+        await websocket.accept()
+        self.active_connections.append(websocket)
+    def disconnect(self, websocket: WebSocket):
+        self.active_connections.remove(websocket)
+    async def broadcast(self, message: str):
+        for connection in self.active_connections:
+            try:
+                await connection.send_text(message)
+            except Exception:
+                pass
+manager = ConnectionManager()
+@app.get("/")
+async def get_dashboard():
+    html_path = os.path.join(os.path.dirname(__file__), "templates", "index.html")
+    with open(html_path, "r") as f:
+        return HTMLResponse(content=f.read())
+@app.get("/api/stats")
+async def get_stats():
+    tracer = get_global_tracer()
+    if not tracer:
+        return {"status": "Waiting for agent..."}
+    return {
+        "agents_count": len(tracer.agents),
+        "vulnerabilities": len(tracer.vulnerability_reports),
+        "tool_calls": len(tracer.tool_executions),
+        "start_time": tracer.start_time,
+        "run_name": tracer.run_name
+    }
+@app.get("/api/vulnerabilities")
+async def get_vulns():
+    tracer = get_global_tracer()
+    if not tracer:
+        return []
+    return tracer.vulnerability_reports
+@app.websocket("/ws")
+async def websocket_endpoint(websocket: WebSocket):
+    await manager.connect(websocket)
+    try:
+        while True:
+            # Send updates every second
+            tracer = get_global_tracer()
+            if tracer:
+                data = {
+                    "agents": tracer.agents,
+                    "stats": {
+                        "active": sum(1 for a in tracer.agents.values() if a.get("status") == "running"),
+                        "completed": sum(1 for a in tracer.agents.values() if a.get("status") == "completed"),
+                        "failed": sum(1 for a in tracer.agents.values() if a.get("status") == "failed"),
+                    },
+                    "recent_logs": tracer.chat_messages[-10:] if tracer.chat_messages else []
+                }
+                await websocket.send_json(data)
+            await asyncio.sleep(1)
+    except WebSocketDisconnect:
+        manager.disconnect(websocket)
+    except Exception as e:
+        logging.error(f"WebSocket error: {e}")
+        manager.disconnect(websocket)
+def start_dashboard(host="0.0.0.0", port=8000):
+    """Start the dashboard server in a background thread or process."""
+    config = uvicorn.Config(app, host=host, port=port, log_level="error")
+    server = uvicorn.Server(config)
+    # We'll run this in a thread from the main agent
+    import threading
+    t = threading.Thread(target=server.run, daemon=True)
+    t.start()
+    return t

exaai_agent-2.2.0/exaaiagnt/dashboard/templates/index.html ADDED Viewed

@@ -0,0 +1,232 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>ExaAi Mission Control</title>
+    <script src="https://cdn.tailwindcss.com"></script>
+    <script src="https://cdn.jsdelivr.net/npm/chart.js"></script>
+    <style>
+        body { background-color: #0f172a; color: #e2e8f0; font-family: 'Courier New', Courier, monospace; }
+        .neon-text { text-shadow: 0 0 5px #3b82f6, 0 0 10px #3b82f6; }
+        .neon-border { box-shadow: 0 0 5px #3b82f6; border-color: #3b82f6; }
+        .agent-card { transition: all 0.3s ease; }
+        .agent-card:hover { transform: translateY(-2px); box-shadow: 0 4px 6px -1px rgba(0, 0, 0, 0.1), 0 2px 4px -1px rgba(0, 0, 0, 0.06); }
+        .vuln-critical { border-left: 4px solid #ef4444; background: rgba(239, 68, 68, 0.1); }
+        .vuln-high { border-left: 4px solid #f97316; background: rgba(249, 115, 22, 0.1); }
+        .vuln-medium { border-left: 4px solid #eab308; background: rgba(234, 179, 8, 0.1); }
+        ::-webkit-scrollbar { width: 8px; }
+        ::-webkit-scrollbar-track { background: #1e293b; }
+        ::-webkit-scrollbar-thumb { background: #475569; border-radius: 4px; }
+        ::-webkit-scrollbar-thumb:hover { background: #64748b; }
+    </style>
+</head>
+<body class="h-screen flex flex-col overflow-hidden">
+    <!-- Header -->
+    <header class="bg-slate-900 border-b border-slate-700 p-4 flex justify-between items-center shadow-lg z-10">
+        <div class="flex items-center gap-3">
+            <div class="w-3 h-3 rounded-full bg-green-500 animate-pulse"></div>
+            <h1 class="text-2xl font-bold tracking-wider text-blue-400 neon-text">EXAAI <span class="text-white">MISSION CONTROL</span></h1>
+        </div>
+        <div class="flex gap-6 text-sm">
+            <div class="flex flex-col items-end">
+                <span class="text-slate-400">STATUS</span>
+                <span class="text-green-400 font-bold">ONLINE</span>
+            </div>
+            <div class="flex flex-col items-end">
+                <span class="text-slate-400">AGENTS</span>
+                <span id="total-agents" class="text-blue-400 font-bold">0</span>
+            </div>
+            <div class="flex flex-col items-end">
+                <span class="text-slate-400">VULNERABILITIES</span>
+                <span id="total-vulns" class="text-red-500 font-bold neon-text">0</span>
+            </div>
+        </div>
+    </header>
+    <!-- Main Content -->
+    <main class="flex-1 flex overflow-hidden">
+        <!-- Sidebar: Agent Tree -->
+        <aside class="w-1/4 bg-slate-900 border-r border-slate-700 flex flex-col">
+            <div class="p-3 border-b border-slate-700 bg-slate-800">
+                <h2 class="font-bold text-slate-300 flex items-center gap-2">
+                    <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 24 24"><path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M19 11H5m14 0a2 2 0 012 2v6a2 2 0 01-2 2H5a2 2 0 01-2-2v-6a2 2 0 012-2m14 0V9a2 2 0 00-2-2M5 11V9a2 2 0 012-2m0 0V5a2 2 0 012-2h6a2 2 0 012 2v2M7 7h10"></path></svg>
+                    Active Operations
+                </h2>
+            </div>
+            <div id="agent-list" class="flex-1 overflow-y-auto p-3 space-y-2">
+                <!-- Agents injected here -->
+            </div>
+        </aside>
+        <!-- Center: Live Feed & Stats -->
+        <section class="flex-1 flex flex-col bg-slate-900/50 relative">
+            <!-- Matrix Rain Background Effect (Optional/Subtle) -->
+            <div class="absolute inset-0 pointer-events-none opacity-5 bg-[url('data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHdpZHRoPSI0IiBoZWlnaHQ9IjQiPgo8cmVjdCB3aWR0aD0iNCIgaGVpZ2h0PSI0IiBmaWxsPSIjMWUyOTNiIi8+CjxyZWN0IHdpZHRoPSIxIiBoZWlnaHQ9IjEiIGZpbGw9IiMzMzQxNTUiLz4KPC9zdmc+')]"></div>
+            <div class="h-1/2 border-b border-slate-700 flex">
+                <!-- Live Terminal Log -->
+                <div class="w-2/3 border-r border-slate-700 flex flex-col">
+                    <div class="p-2 bg-slate-800 border-b border-slate-700 flex justify-between">
+                        <span class="text-xs font-mono text-slate-400">>_ SYSTEM LOGS</span>
+                        <span class="text-xs text-green-500">● LIVE</span>
+                    </div>
+                    <div id="console-logs" class="flex-1 overflow-y-auto p-4 font-mono text-xs text-slate-300 space-y-1 bg-black/40">
+                        <!-- Logs injected here -->
+                    </div>
+                </div>
+                <!-- Quick Stats Chart -->
+                <div class="w-1/3 p-4 bg-slate-800/30 flex flex-col items-center justify-center">
+                    <canvas id="statusChart"></canvas>
+                </div>
+            </div>
+            <!-- Vulnerabilities Panel -->
+            <div class="h-1/2 flex flex-col bg-slate-900">
+                <div class="p-3 border-b border-slate-700 bg-slate-800 flex justify-between items-center">
+                    <h2 class="font-bold text-red-400 flex items-center gap-2">
+                        <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 24 24"><path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 9v2m0 4h.01m-6.938 4h13.856c1.54 0 2.502-1.667 1.732-3L13.732 4c-.77-1.333-2.694-1.333-3.464 0L3.34 16c-.77 1.333.192 3 1.732 3z"></path></svg>
+                        Detected Vulnerabilities
+                    </h2>
+                    <span class="text-xs text-slate-500">Auto-refreshing...</span>
+                </div>
+                <div id="vuln-list" class="flex-1 overflow-y-auto p-4 grid grid-cols-1 md:grid-cols-2 lg:grid-cols-3 gap-4">
+                    <!-- Vulns injected here -->
+                </div>
+            </div>
+        </section>
+    </main>
+    <script>
+        const wsProtocol = window.location.protocol === 'https:' ? 'wss:' : 'ws:';
+        const socket = new WebSocket(`${wsProtocol}//${window.location.host}/ws`);
+        // Chart setup
+        const ctx = document.getElementById('statusChart').getContext('2d');
+        const statusChart = new Chart(ctx, {
+            type: 'doughnut',
+            data: {
+                labels: ['Active', 'Completed', 'Failed'],
+                datasets: [{
+                    data: [0, 0, 0],
+                    backgroundColor: ['#3b82f6', '#22c55e', '#ef4444'],
+                    borderWidth: 0
+                }]
+            },
+            options: {
+                responsive: true,
+                plugins: {
+                    legend: { position: 'bottom', labels: { color: '#94a3b8' } }
+                },
+                cutout: '70%'
+            }
+        });
+        socket.onmessage = function(event) {
+            const data = JSON.parse(event.data);
+            updateDashboard(data);
+        };
+        function updateDashboard(data) {
+            // Update Headers
+            document.getElementById('total-agents').textContent = Object.keys(data.agents).length;
+            // Update Agent List
+            const agentList = document.getElementById('agent-list');
+            agentList.innerHTML = '';
+            Object.values(data.agents).forEach(agent => {
+                const div = document.createElement('div');
+                div.className = `agent-card p-3 rounded bg-slate-800 border border-slate-700 ${agent.status === 'running' ? 'border-l-4 border-l-blue-500' : ''}`;
+                div.innerHTML = `
+                    <div class="flex justify-between items-start mb-1">
+                        <span class="font-bold text-xs text-slate-200 truncate" title="${agent.name}">${agent.name}</span>
+                        <span class="text-[10px] px-1.5 py-0.5 rounded ${getStatusColor(agent.status)}">${agent.status}</span>
+                    </div>
+                    <div class="text-[10px] text-slate-500 truncate">${agent.id.substring(0, 8)}...</div>
+                    <div class="text-[11px] text-slate-400 mt-1 line-clamp-2">${agent.task || 'No task description'}</div>
+                `;
+                agentList.appendChild(div);
+            });
+            // Update Logs
+            const logContainer = document.getElementById('console-logs');
+            logContainer.innerHTML = '';
+            data.recent_logs.forEach(log => {
+                const div = document.createElement('div');
+                const time = new Date(log.timestamp * 1000).toLocaleTimeString();
+                const color = log.role === 'assistant' ? 'text-blue-400' : 'text-slate-400';
+                div.innerHTML = `<span class="text-slate-600">[${time}]</span> <span class="${color}">${log.role.toUpperCase()}:</span> <span class="text-slate-300">${escapeHtml(log.content.substring(0, 150))}...</span>`;
+                logContainer.appendChild(div);
+            });
+            // Update Chart
+            statusChart.data.datasets[0].data = [
+                data.stats.active,
+                data.stats.completed,
+                data.stats.failed
+            ];
+            statusChart.update();
+            // Update Vulns (Fetching separately or from WS if included)
+            fetchVulns();
+        }
+        async function fetchVulns() {
+            try {
+                const response = await fetch('/api/vulnerabilities');
+                const vulns = await response.json();
+                document.getElementById('total-vulns').textContent = vulns.length;
+                const container = document.getElementById('vuln-list');
+                container.innerHTML = '';
+                if (vulns.length === 0) {
+                    container.innerHTML = '<div class="col-span-full text-center text-slate-500 py-10">No vulnerabilities detected... yet.</div>';
+                    return;
+                }
+                vulns.forEach(v => {
+                    const div = document.createElement('div');
+                    const severityClass = `vuln-${v.severity.toLowerCase()}`;
+                    div.className = `p-4 rounded bg-slate-800 border border-slate-700 ${severityClass}`;
+                    div.innerHTML = `
+                        <div class="flex justify-between items-center mb-2">
+                            <h3 class="font-bold text-sm text-white">${v.title}</h3>
+                            <span class="text-[10px] font-bold uppercase tracking-wider px-2 py-1 bg-black/30 rounded text-white">${v.severity}</span>
+                        </div>
+                        <p class="text-xs text-slate-400 line-clamp-3 mb-2">${v.content}</p>
+                        <div class="text-[10px] text-slate-500">ID: ${v.report_id}</div>
+                    `;
+                    container.appendChild(div);
+                });
+            } catch (e) {
+                console.error("Failed to fetch vulns", e);
+            }
+        }
+        function getStatusColor(status) {
+            switch(status) {
+                case 'running': return 'bg-blue-900 text-blue-300';
+                case 'completed': return 'bg-green-900 text-green-300';
+                case 'failed': return 'bg-red-900 text-red-300';
+                default: return 'bg-slate-700 text-slate-300';
+            }
+        }
+        function escapeHtml(text) {
+            if (!text) return "";
+            return text
+                .replace(/&/g, "&amp;")
+                .replace(/</g, "&lt;")
+                .replace(/>/g, "&gt;")
+                .replace(/"/g, "&quot;")
+                .replace(/'/g, "&#039;");
+        }
+        // Initial load
+        fetchVulns();
+    </script>
+</body>
+</html>

{exaai_agent-2.1.2 → exaai_agent-2.2.0}/exaaiagnt/interface/cli.py RENAMED Viewed

@@ -30,7 +30,18 @@ BANNER = r"""
 """
+from exaaiagnt.dashboard.server import start_dashboard
 async def run_cli(args: Any) -> None:  # noqa: PLR0915
+    # Start the live dashboard
+    try:
+        start_dashboard()
+        console_temp = Console()
+        console_temp.print("[bold green]🚀 Live Dashboard available at: http://localhost:8000[/]")
+    except Exception as e:
+        import logging
+        logging.error(f"Failed to start dashboard: {e}")
     # Detect if running in a real terminal or headless (pipe/background)
     is_tty = sys.stdout.isatty()
     console = Console(force_terminal=is_tty, no_color=not is_tty)

{exaai_agent-2.1.2 → exaai_agent-2.2.0}/exaaiagnt/llm/llm.py RENAMED Viewed

@@ -424,19 +424,54 @@ class LLM:
             else:
                 completion_args["reasoning_effort"] = "high"
-        # Use Adaptive Traffic Controller for intelligent rate limiting
+        # Use Adaptive Traffic Controller for intelligent rate limiting with retries
         controller = get_traffic_controller()
         agent_id = self.agent_id or "unknown_agent"
         async def do_request():
-            from litellm import completion
-            return completion(**completion_args, stream=False)
-        response = await controller.queue_request(
-            do_request,
-            agent_id=agent_id,
-            priority=RequestPriority.NORMAL
+            try:
+                from litellm import completion
+                return await completion(**completion_args, stream=False)
+            except litellm.RateLimitError:
+                # Let tenacity (in controller) handle retry
+                raise
+            except Exception as e:
+                # Log other transient errors for potential retry
+                logger.warning(f"Transient LLM error: {e}")
+                raise
+        # Wrap in retry logic
+        from tenacity import (
+            retry,
+            stop_after_attempt,
+            wait_exponential,
+            retry_if_exception_type,
+        )
+        import litellm
+        @retry(
+            retry=retry_if_exception_type((
+                litellm.RateLimitError,
+                litellm.ServiceUnavailableError,
+                litellm.APIConnectionError,
+                litellm.Timeout
+            )),
+            wait=wait_exponential(multiplier=1, min=4, max=60),
+            stop=stop_after_attempt(5),
+            reraise=True
         )
+        async def execute_with_retries():
+            return await controller.queue_request(
+                do_request,
+                agent_id=agent_id,
+                priority=RequestPriority.NORMAL
+            )
+        try:
+            response = await execute_with_retries()
+        except Exception:
+            self._total_stats.failed_requests += 1
+            raise
         self._total_stats.requests += 1
         self._last_request_stats = RequestStats(requests=1)

{exaai_agent-2.1.2 → exaai_agent-2.2.0}/exaaiagnt/telemetry/tracer.py RENAMED Viewed

@@ -137,19 +137,35 @@ class Tracer:
     ) -> int:
         message_id = self._next_message_id
         self._next_message_id += 1
+        # Ensure imports if missing
+        import time
         message_data = {
             "message_id": message_id,
             "content": content,
             "role": role,
             "agent_id": agent_id,
-            "timestamp": datetime.now(UTC).isoformat(),
+            "timestamp": time.time(),  # Use epoch time for easier frontend handling
             "metadata": metadata or {},
         }
         self.chat_messages.append(message_data)
+        # Removed auto-save on every message to improve performance
         return message_id
+    def get_dashboard_data(self) -> dict[str, Any]:
+        """Return data formatted for the live dashboard."""
+        return {
+            "agents": self.agents,
+            "vulnerabilities": self.vulnerability_reports,
+            "stats": {
+                "active_agents": sum(1 for a in self.agents.values() if a.get("status") == "running"),
+                "total_requests": sum(1 for msg in self.chat_messages if msg["role"] == "assistant"),
+                "total_vulns": len(self.vulnerability_reports)
+            }
+        }
     def log_tool_execution_start(self, agent_id: str, tool_name: str, args: dict[str, Any]) -> int:
         execution_id = self._next_execution_id
         self._next_execution_id += 1

{exaai_agent-2.1.2 → exaai_agent-2.2.0}/exaaiagnt/tools/executor.py RENAMED Viewed

@@ -90,11 +90,23 @@ async def _execute_tool_locally(tool_name: str, agent_state: Any | None, **kwarg
     if needs_agent_state(tool_name):
         if agent_state is None:
             raise ValueError(f"Tool '{tool_name}' requires agent_state but none was provided.")
-        result = tool_func(agent_state=agent_state, **converted_kwargs)
+        # Check if the tool function is a coroutine (async)
+        if inspect.iscoroutinefunction(tool_func):
+            result = await tool_func(agent_state=agent_state, **converted_kwargs)
+        else:
+            # Run synchronous blocking tools in a separate thread
+            import asyncio
+            result = await asyncio.to_thread(tool_func, agent_state=agent_state, **converted_kwargs)
     else:
-        result = tool_func(**converted_kwargs)
+        # Check if the tool function is a coroutine (async)
+        if inspect.iscoroutinefunction(tool_func):
+            result = await tool_func(**converted_kwargs)
+        else:
+            # Run synchronous blocking tools in a separate thread
+            import asyncio
+            result = await asyncio.to_thread(tool_func, **converted_kwargs)
-    return await result if inspect.isawaitable(result) else result
+    return result
 def validate_tool_availability(tool_name: str | None) -> tuple[bool, str]:

{exaai_agent-2.1.2 → exaai_agent-2.2.0}/exaaiagnt/tools/k8s_scanner/k8s_actions.py RENAMED Viewed

@@ -55,6 +55,9 @@ class SecurityFinding:
     status: CheckStatus = CheckStatus.FAIL
+from exaaiagnt.tools.registry import register_tool
+@register_tool
 class K8sScanner:
     """
     Kubernetes Security Scanner.
@@ -292,6 +295,7 @@ class K8sScanner:
 # === Convenience Functions ===
+@register_tool
 def scan_cluster(context: Optional[str] = None) -> Dict[str, Any]:
     """Run a full cluster scan."""
     scanner = K8sScanner(context=context)
@@ -299,6 +303,7 @@ def scan_cluster(context: Optional[str] = None) -> Dict[str, Any]:
     return scanner.export_report()
+@register_tool
 def check_rbac(namespace: str = "default") -> List[Dict[str, Any]]:
     """Run RBAC checks only."""
     scanner = K8sScanner()
@@ -306,6 +311,7 @@ def check_rbac(namespace: str = "default") -> List[Dict[str, Any]]:
     return scanner.export_report()["findings"]
+@register_tool
 def check_pod_security(namespace: str = "default") -> List[Dict[str, Any]]:
     """Run Pod Security checks only."""
     scanner = K8sScanner()

exaai_agent-2.2.0/exaaiagnt/tools/k8s_scanner/k8s_actions_schema.xml ADDED Viewed

@@ -0,0 +1,36 @@
+<tool name="scan_cluster">
+    <description>
+        Run a full security scan on the connected Kubernetes cluster.
+        Checks for RBAC misconfigurations, Pod Security Standards violations,
+        missing NetworkPolicies, and insecure secret management.
+    </description>
+    <parameters>
+        <parameter name="context" type="string" optional="true">
+            The kubeconfig context to use. Defaults to current context.
+        </parameter>
+    </parameters>
+</tool>
+<tool name="check_rbac">
+    <description>
+        Check for dangerous RBAC permissions in a specific namespace.
+        Detects wildcard permissions, cluster-admin abuse, and risky role bindings.
+    </description>
+    <parameters>
+        <parameter name="namespace" type="string" optional="true">
+            Target namespace. Defaults to "default".
+        </parameter>
+    </parameters>
+</tool>
+<tool name="check_pod_security">
+    <description>
+        Audit pods against Pod Security Standards (PSS).
+        Finds privileged containers, host namespace usage, and capability issues.
+    </description>
+    <parameters>
+        <parameter name="namespace" type="string" optional="true">
+            Target namespace. Defaults to "default".
+        </parameter>
+    </parameters>
+</tool>

exaai-agent 2.1.2__tar.gz → 2.2.0__tar.gz

exaai-agent 2.1.2tar.gz → 2.2.0tar.gz