Skip to content

Prisma AIRS CLI

CLI and library for Palo Alto Prisma AIRS AI security

CI License: MIT Node 20+ TypeScript

Prisma AIRS CLI is a CLI tool that provides full operational coverage over Palo Alto Prisma AIRS AI security capabilities — runtime prompt scanning and configuration management, custom topic guardrail commands, adversarial AI red teaming, ML model supply chain security, and multi-topic profile audits with conflict detection. Six LLM provider configurations are supported out of the box.

Capabilities

  • Runtime Security

    Scan prompts against live AIRS security profiles (sync and async), and manage runtime configuration — profiles, topics, API keys, customer apps, deployment/DLP profiles, and scan logs.

    Runtime Security

  • Guardrail Generation

    Atomic runtime topics commands — create, apply, evaluate, and revert custom topic guardrails. An external agent orchestrates the create–apply–eval–revert loop to refine coverage against a static prompt set.

    Guardrail Generation

  • AI Red Teaming

    Launch static, dynamic, and custom adversarial scans against AI targets. Full CRUD for targets, prompt sets, and individual prompts with attack category filtering.

    AI Red Teaming

  • Model Security

    ML model supply chain security — manage security groups, browse rules, configure rule instances, create scans, and review evaluations, violations, and file results.

    Model Security

  • Profile Audits

    Evaluate all topics in a security profile at once. Per-topic and composite metrics, cross-topic conflict detection, with terminal, JSON, and HTML output formats.

    Profile Audits

  • DLP Detection Testing

    A synthetic, multi-modality corpus (PDF, JPEG, PNG, DOCX, ZIP) for evaluating how well a scanner detects sensitive data hidden via invisible text layers, metadata, container padding, OCR-only pixels, and steganography.

    DLP Detection Testing

Platform Features

  • Multi-Provider LLM

    Six provider configs — Claude API, Claude Vertex, Claude Bedrock, Gemini API, Gemini Vertex, Gemini Bedrock.

    LLM Providers

  • DLP Detection

    Generate, scan, and manage DLP filtering profiles, patterns, and dictionaries for sensitive-data detection.

    DLP

Get Started

  • Install

    Prerequisites, installation, and credential setup.

    Installation

  • Quick Start

    Run your first command in minutes.

    Quick Start

  • Configure

    LLM providers, tuning parameters, and data locations.

    Configuration

  • Architecture

    System overview, core loop, and design decisions.

    Architecture