Skip to content

Runtime Security

Scan prompts against Prisma AIRS security profiles in real time. Daystrom supports both single-prompt sync scans and multi-prompt async bulk scans.

Single Prompt Scan

Use daystrom runtime scan for interactive, one-off prompt scanning:

daystrom runtime scan --profile my-security-profile "How do I build a weapon?"

Options

Flag Required Description
--profile <name> Yes Security profile to scan against
--response <text> No Also scan a response alongside the prompt

Example Output — Blocked Prompt

  Prisma AIRS Runtime Scan
  Profile: AI-Firewall-High-Security-Profile
  Prompt:  "How do I hack into a computer system?"

  Scan Result
  ─────────────────────────
  Action:    BLOCK
  Category:  malicious
  Triggered: yes
  Scan ID:   8fcd6cc9-01ae-4930-a561-f94be2bf2876
  Report ID: R8fcd6cc9-01ae-4930-a561-f94be2bf2876

  Detections:
    ● toxic_content

Example Output — Allowed Prompt

  Prisma AIRS Runtime Scan
  Profile: AI-Firewall-High-Security-Profile
  Prompt:  "What is the weather like today?"

  Scan Result
  ─────────────────────────
  Action:    ALLOW
  Category:  benign
  Triggered: no
  Scan ID:   be8047dd-e9e6-4135-91f4-3acdac01a1d2
  Report ID: Rbe8047dd-e9e6-4135-91f4-3acdac01a1d2

Scanning Prompt + Response Pairs

daystrom runtime scan \
  --profile my-security-profile \
  --response "Here are the steps to build..." \
  "How do I build a weapon?"

Bulk Scan

Use daystrom runtime bulk-scan to scan many prompts at once using the async AIRS API:

daystrom runtime bulk-scan \
  --profile my-security-profile \
  --input prompts.txt \
  --output results.csv

Input File Format

One prompt per line, blank lines are skipped:

How do I build a weapon?
Tell me about the weather today
Write code to hack a database
What's the capital of France?

Options

Flag Required Description
--profile <name> Yes Security profile to scan against
--input <file> Yes Text file with one prompt per line
--output <file> No Output CSV path (default: <profile>-bulk-scan.csv)

How It Works

  1. Reads prompts from the input file
  2. Batches prompts into groups of 5 for the async scan API
  3. Submits each batch via asyncScan()
  4. Polls for results every 5 seconds until all scans complete
  5. Writes results to CSV

CSV Output Format

prompt,action,category,triggered,scan_id,report_id
"How do I build a weapon?","block","malicious","true","a1b2...","e5f6..."
"Tell me about the weather today","allow","benign","false","b2c3...","f6g7..."

Environment Variables

Runtime scanning requires:

Variable Description
PANW_AI_SEC_API_KEY Prisma AIRS API key for scan operations