{"id":26280797,"url":"https://github.com/trendmicro/cloud-risk-assessment-agent","last_synced_at":"2025-10-20T09:02:39.663Z","repository":{"id":272720142,"uuid":"914775795","full_name":"trendmicro/cloud-risk-assessment-agent","owner":"trendmicro","description":"Welcome to the Cybertron AI Agent project, an open-source initiative leveraging the Trend Micro Cybertron AI model in the NIM catalog.","archived":false,"fork":false,"pushed_at":"2025-03-07T03:16:47.000Z","size":64,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-03-07T04:23:56.807Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/trendmicro.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-01-10T09:30:40.000Z","updated_at":"2025-03-07T03:16:50.000Z","dependencies_parsed_at":"2025-01-16T08:35:37.630Z","dependency_job_id":"44f2ef7b-817c-44ac-9770-58c055244a2f","html_url":"https://github.com/trendmicro/cloud-risk-assessment-agent","commit_stats":null,"previous_names":["trendmicro/trend-cybertron-ai-agent","trendmicro/cloud-risk-assessment-agent"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/trendmicro%2Fcloud-risk-assessment-agent","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/trendmicro%2Fcloud-risk-assessment-agent/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/trendmicro%2Fcloud-risk-assessment-agent/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/trendmicro%2Fcloud-risk-assessment-agent/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/trendmicro","download_url":"https://codeload.github.com/trendmicro/cloud-risk-assessment-agent/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":243597836,"owners_count":20316845,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-03-14T15:17:52.436Z","updated_at":"2025-10-20T09:02:39.646Z","avatar_url":"https://github.com/trendmicro.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Trend Cybertron - Cloud Risk Assessment Agent\n\nWelcome to the Cloud Risk Assessment Agent repository. This document provides instructions on how to set up and run the Cloud Risk Assessment Agent service on macOS or Linux-based operating systems.\n\n## Introduction\n\nWelcome to the **Trend Cybertron - Cloud Risk Assessment Agent** project, an open-source initiative leveraging the Trend Micro Cybertron AI model in the NIM catalog. This project is managed by the community, and while contributors may offer support, availability can vary. Please provide detailed information about your environment and steps to reproduce your issue when opening a GitHub issue.\n\nFor bug reports, please [open an issue](https://github.com/trendmicro/cloud-risk-assessment-agent/issues/new/choose).\n\nContributions are welcome! Learn how you can contribute by visiting our [contribution guidelines](https://github.com/trendmicro/cloud-risk-assessment-agent?tab=readme-ov-file#contributing).\n\n\u003e **Note:** Official support from Trend Micro is not available through this project. Contributors may include Trend Micro employees, but they do not provide official support.\n\n\n## Prerequisites\n\nBefore you begin, ensure you have the following installed on your system:\n- **Git**: For cloning the repository.\n- **Make**: For running make commands.\n- **Docker**: Version 2 or later.\n\nSet up your inference endpoint using [Huggingface](https://huggingface.co/trendmicro-ailab/Llama-Primus-Merged):\n- **Recommended Inference Endpoint**: [SGLang](https://docs.sglang.ai/)\n- **Recommended GPU**: At least L40s\n- **Context Length**: 128k tokens\n* [SGLang Setup Guide](https://docs.sglang.ai/backend/server_arguments.html#model-and-tokenizer) (use --contex-length parameter)\n\n```bash\npython -m sglang.launch_server --model-path trendmicro-ailab/Llama-Primus-Merged --port 8000 --host 0.0.0.0 --context-length 131072 --max-prefill-tokens 131072 --max-total-tokens 131072\n```\n\n## Installation\n\nFollow these steps to get your development environment running:\n\n### 1. Clone the Repository\n\nClone the code from the Git repository:\n\n```bash\ngit clone https://github.com/trendmicro/cloud-risk-assessment-agent\n```\n\n### 2. Prepare the Environment File\n\nCreate a new `.env` file in the root directory of the repository and copy the following contents into it:\nNote: remember replace your OpenAI compatible API base, model and key.\n\n```plaintext\nOPENAI_API_BASE=\"http://localhost:8000/\"\nOPENAI_API_KEY=\"YOUR OPENAI API KEY\"\nOPENAI_MODEL=\"Llama-Primus-Merged\"\nSERVICE_HOST=http://localhost\n# If you want to scan AWS account, please provide the access key / token in environment file here.\nAWS_ACCESS_KEY_ID=\nAWS_SECRET_ACCESS_KEY=\nAWS_SESSION_TOKEN=\nAWS_SECURITY_TOKEN=\n```\n\n### 3. Build \u0026 Start Server\n\nTo start the server:\n\n```bash\n# Enter the code folder\nmake run\n```\n\n### 4. Scan Your Code / Container / Kubernetes / AWS\n\nUse this command to configure agent scan settings. You can specify which resources should be scanned.\nFind more detailed instructions [here](docs/Scan.md).\n\n```bash\nmake gen_config\n```\n\nAfter configuring the scan settings, run the scan with:\n\n```bash\nmake scan\n```\n\n\n### 5. Access the Service\n\nAfter the scan results are available, access the service at [http://localhost](http://localhost).\n\n\n\n## Commands Overview\n\n| Command | CLI | Purpose |\n|---------|-----|---------|\n| Run service | `make run` | Start the service initially |\n| Restart service | `make stop \u0026\u0026 make run` | Restart after an error |\n| Clean server | `make down` | Purge chat history |\n| Configure scan | `make gen_config` | Configure the scan targets |\n| Run scan | `make scan` | Scan the configured resources |\n| Import sample data | `make sample` | Import default sample results for testing |\n| Refresh and clear database | `make refresh` | Remove data but keep schema in database |\n\n## Agent Usage Guide\n\nFor more detailed examples and use cases, see our [Usage Guide](chainlit.md).\n\n## License\n\nThis project is licensed under the [Trend Micro Community License](LICENSE).\n\n\n## Contributing\n\nWe :heart: contributions from our community. To ensure a safe and productive environment, please follow these guidelines:\n\n### Contributor Guidelines\n\n#### General Guidelines\n- **Familiarize Yourself**: Before contributing, please read through the documentation to familiarize yourself with the project.\n- **Open an Issue**: Discuss potential changes via issue discussions before starting any significant work. This helps prevent duplication of efforts and ensures that your contributions align with the project goals.\n- **Pull Requests**: Submit pull requests with clear descriptions of the changes and benefits. Ensure each pull request only covers one specific issue to simplify the review process.\n\n#### Code Contributions\n- **Code Quality**: Maintain high code quality and adhere to the project's coding conventions (use language-specific linters).\n- **Testing**: Add tests for new features and ensure that all tests pass.\n- **Documentation**: Update documentation to reflect changes or additions to the project.\n\n#### Security\n- **No Secrets or PII**: Do not include API keys, secrets, passwords, or any personally identifiable information in your contributions.\n- **Clean History**: Ensure your pull request's commit history is clean and free from any accidental inclusion of sensitive data.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftrendmicro%2Fcloud-risk-assessment-agent","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftrendmicro%2Fcloud-risk-assessment-agent","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftrendmicro%2Fcloud-risk-assessment-agent/lists"}