alprina-cli 0.1.0

Alprina CLI - AI-powered cybersecurity command-line tool for developers

🛡️ Alprina CLI

AI-powered cybersecurity command-line tool for developers

"Build fast. Guard faster."

Alprina CLI merges intelligent security scanning with developer-friendly tooling, combining the power of Kimi CLI and CAI (Cybersecurity AI).

Features

• 💬 Interactive AI Chat - Conversational security assistant powered by Claude/GPT
• 🔍 Remote & Local Scanning - Scan APIs, websites, and local codebases
• 🧠 AI-Powered Analysis - Smart vulnerability detection and risk assessment
• 🛠️ Automated Mitigation - Get actionable remediation guidance
• 📊 Rich Reporting - HTML, PDF, and JSON reports
• 🔐 Policy-Based Security - Enforce scope and guardrails
• 💳 Usage-Based Billing - Flexible plans with Stripe integration
• 🔌 IDE Integration - Works with Zed, VSCode via ACP

Quick Start

Installation

# Clone the repository
git clone https://github.com/alprina/alprina-cli
cd alprina-cli/cli

# Create virtual environment
python -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate

# Install dependencies
pip install -e .

Authentication

# Login with API key
alprina auth login --api-key YOUR_API_KEY

# Check authentication status
alprina auth status

Basic Usage

# Interactive AI chat (NEW!)
alprina chat

# Scan local code
alprina scan ./src --profile code-audit

# Scan remote endpoint
alprina scan https://api.example.com --profile web-recon

# Generate report
alprina report --format html

# Get mitigation suggestions
alprina mitigate

# Check billing status
alprina billing status

💬 Chat with Alprina AI

The new interactive chat interface lets you scan, analyze, and fix vulnerabilities conversationally:

# Start chat session
alprina chat

# Chat with scan context
alprina scan ./src --output results.json
alprina chat --load results.json

# Use different AI models
alprina chat --model gpt-4
alprina chat --model claude-3-opus-20240229

Chat Examples:

You: Scan my Python Flask app for SQL injection vulnerabilities
Alprina: [Performs targeted scan and explains findings]

You: Show me how to fix the issue in login.py
Alprina: [Provides code examples and step-by-step guidance]

You: Generate a security report
Alprina: [Creates comprehensive report]

Special Commands:

• /scan <target> - Run security scan
• /explain <id> - Explain vulnerability
• /fix <id> - Get mitigation steps
• /report - Generate report
• /help - Show all commands

CLI Commands

Command	Description
alprina chat	💬 Interactive AI security assistant
alprina auth login	Authenticate with Alprina
alprina auth logout	Logout from Alprina
alprina auth status	Check authentication status
alprina scan <target>	Run security scan on target
alprina recon <target>	Perform reconnaissance
alprina mitigate	Get mitigation suggestions
alprina report	Generate security report
alprina policy init	Initialize policy configuration
alprina policy test <target>	Test target against policy
alprina config --init	Initialize configuration
alprina billing status	View billing and usage
alprina --acp	Start ACP mode for IDE integration

Configuration

Policy Configuration

Create ~/.alprina/policy.yml:

project: "My Project Security Audit"

scope:
  allow_domains:
    - "example.com"
    - "api.example.com"

  allow_cidrs:
    - "192.168.0.0/16"

  forbid_ports:
    - 22
    - 3389

policies:
  allow_intrusive: false
  require_terms_ack: true
  max_concurrent_scans: 5

billing:
  plan: "free"
  max_scans_per_day: 10

Environment Variables

# Backend API URL
export ALPRINA_BACKEND="https://api.alprina.ai"

# JWT Secret (for local development)
export JWT_SECRET_KEY="your-secret-key"

Development

Setup Development Environment

# Install development dependencies
make dev

# Or manually
pip install -e ".[dev]"

Run Tests

make test

# Or
pytest

Code Formatting

make format

Linting

make lint

Architecture

User
│
▼
┌─────────────────────────────┐
│ Alprina CLI Shell           │
│ (Typer + Rich UI)           │
└──────────────┬──────────────┘
               │
    ┌──────────┴──────────┐
    │                     │
┌───┴─────┐    ┌─────────┴────┐
│ Policy  │    │ Auth & Billing│
│ Layer   │    │ (FastAPI)     │
└───┬─────┘    └──────────────┘
    │
    ▼
┌─────────────────────────────┐
│ CAI Framework (Agents)      │
│ Recon, Scan, Mitigation     │
└──────────────┬──────────────┘
               ▼
┌─────────────────────────────┐
│ Reporting Layer             │
│ JSONL, HTML, PDF            │
└─────────────────────────────┘

Example Workflow

# 1. Authenticate
alprina auth login --api-key test-api-key-123

# 2. Initialize policy
alprina policy init

# 3. Scan local project
alprina scan ./my-app --profile code-audit

# 4. Scan remote API
alprina scan https://api.myapp.com --profile web-recon --safe-only

# 5. Generate report
alprina report --format html --output report.html

# 6. Get mitigation guidance
alprina mitigate

# 7. Check usage
alprina billing status

Scan Profiles

• code-audit - Static analysis of source code
• web-recon - Passive reconnaissance of web targets
• vuln-scan - Active vulnerability scanning (requires policy approval)
• secret-detection - Find hardcoded secrets and credentials
• config-audit - Analyze configuration files

IDE Integration

Zed Editor

Add to your Zed assistant configuration:

{
  "assistant": {
    "agents": [
      {
        "name": "Alprina",
        "command": "alprina",
        "args": ["--acp"]
      }
    ]
  }
}

VSCode

Install the Alprina extension (coming soon) or use ACP integration.

License

Copyright © 2025 Alprina All rights reserved. Licensed under a proprietary commercial license.

Support

• Documentation: https://docs.alprina.ai
• Issues: https://github.com/alprina/alprina-cli/issues
• Email: support@alprina.ai

Roadmap

• Full CAI integration
• Stripe billing implementation
• OAuth providers (GitHub, Google)
• Web dashboard
• VSCode extension
• CI/CD integrations
• Custom agent marketplace
• Team collaboration features

---

Build fast. Guard faster. 🛡️