ZeroLeaks Package
CLI Usage
zeroleaks scan, zeroleaks probes, zeroleaks techniques. Options for prompt, file, turns, models, output.
CLI Usage
zeroleaks provides a CLI for running scans and inspecting the probe library.
zeroleaks scan
Run a security scan from the command line.
zeroleaks scan --prompt "You are a helpful assistant."
zeroleaks scan --file ./system-prompt.txtOptions
| Option | Description | Default |
|---|---|---|
--prompt | System prompt to scan (inline) | — |
--file | Path to file containing system prompt | — |
--turns | Maximum attack turns | 15 |
--attacker-model | OpenRouter model for attacker | anthropic/claude-opus-4.6 |
--target-model | OpenRouter model for target | anthropic/claude-sonnet-4.5 |
--evaluator-model | OpenRouter model for evaluator | anthropic/claude-sonnet-4.5 |
--json | Output result as JSON | false |
--mode | extraction, injection, or dual | dual |
Examples
# Scan with custom turn limit
zeroleaks scan --prompt "You are a coding assistant." --turns 10
# Scan from file, JSON output
zeroleaks scan --file ./prompt.txt --json > result.json
# Extraction-only scan
zeroleaks scan --prompt "..." --mode extraction
# Custom models
zeroleaks scan --prompt "..." --target-model openai/gpt-5.2 --evaluator-model anthropic/claude-sonnet-4.6zeroleaks probes
List available probes and filter by category.
zeroleaks probes
zeroleaks probes --category direct
zeroleaks probes --category crescendo
zeroleaks probes --jsonOptions
| Option | Description |
|---|---|
--category | Filter by category (direct, encoding, persona, social, technical, crescendo, many_shot, cot_hijack, ascii_art, policy_puppetry, hybrid, tool_exploit, injection, garak_inspired) |
--json | Output as JSON |
zeroleaks techniques
List documented attack techniques from the knowledge base.
zeroleaks techniques
zeroleaks techniques --category zero_click_injection
zeroleaks techniques --jsonOptions
| Option | Description |
|---|---|
--category | Filter by technique category |
--json | Output as JSON |
Environment
The CLI reads OPENROUTER_API_KEY from the environment. Ensure it is set before running:
export OPENROUTER_API_KEY=sk-or-v1-...
zeroleaks scan --prompt "..."