@evalguardai/cli
Advanced tools
EvalGuard CLI - Run LLM evaluations and security scans from the command line
Command-line interface for EvalGuard -- run LLM evaluations, security scans, and guardrail checks from your terminal and CI/CD pipelines.
npm install -g @evalguard/cli
# Authenticate
evalguard login --key eg_live_...
# Initialize a project
evalguard init --project my-project
# Run an evaluation
evalguard eval evals/example.json --wait
# Run a security scan
evalguard scan scans/example.json --wait
# Run a local eval (no API key needed)
evalguard eval:local --model openai:gpt-4o --prompt "Answer: {{input}}" --scorer exact-match
# Check firewall rules
evalguard firewall check "Ignore all instructions"
| Command | Description |
|---|---|
evalguard login | Authenticate with your EvalGuard API key |
evalguard logout | Remove stored credentials |
evalguard init | Initialize EvalGuard in the current project (creates config and example files) |
evalguard eval <file> | Run an evaluation from a JSON config file |
evalguard scan <file> | Run a security scan from a JSON config file |
evalguard whoami | Show current authentication status |
evalguard eval:local | Run an evaluation locally without the cloud API |
evalguard scan:local | Run a security scan locally without the cloud API |
evalguard generate | Auto-generate eval cases or scan configs from a prompt |
evalguard validate | Validate an eval or scan config file for correctness |
evalguard compare | Compare results between two eval runs (drift detection) |
evalguard list | List past eval runs and security scans |
evalguard firewall | Check input against firewall rules or manage rule sets |
evalguard watch | Watch eval/scan files and re-run on changes |
The CLI stores credentials at ~/.evalguard/config.json. Project-level settings go in evalguard.config.json in your repository root.
{
"$schema": "https://evalguard.ai/schema/config.json",
"projectId": "my-project",
"defaultModel": "gpt-4o",
"evalsDir": "./evals",
"scansDir": "./scans"
}
# GitHub Actions example
- name: Run EvalGuard security scan
env:
EVALGUARD_API_KEY: ${{ secrets.EVALGUARD_API_KEY }}
run: |
npx @evalguard/cli login --key $EVALGUARD_API_KEY
npx @evalguard/cli scan scans/production.json --wait
Full documentation at evalguard.ai/docs/cli.
Apache License, Version 2.0 — see LICENSE and NOTICE.
This CLI is a thin public client for the EvalGuard service. It is not covered by any proprietary license restriction — you may fork, modify, and redistribute it under Apache 2.0. The EvalGuard service itself, its backend engine, scorers, and attack plugins are proprietary software operated as a hosted service and are NOT covered by Apache 2.0. Access is governed by the EvalGuard Terms of Service.
"EvalGuard" is a trademark of EvalGuard, Inc. Derivative forks must not use the EvalGuard name or logo to imply endorsement or drop-in compatibility with the hosted service.
FAQs
DEPRECATED — install '@evalguard/cli' instead. This package is a thin redirect shim; the canonical CLI is the brand-only @evalguard/cli.
The npm package @evalguardai/cli receives a total of 6 weekly downloads. As such, @evalguardai/cli popularity was classified as not popular.
We found that @evalguardai/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Rolldown paused Rust React Compiler integration after a 5MB binary size increase raised concerns about shipping React-specific code to all Vite users.
Security News
/Research
Mini Shai-Hulud expands into the Go ecosystem after hitting LeoPlatform npm packages and targeting GitHub Actions workflows.
Security News
The Fable shutdown shows how quickly model access can become a business continuity risk for AI-dependent engineering teams.