LLM (CLI)
CLI and Python library to access many LLM providers with a plugin system and SQLite logging.
LLM (simonw/llm)
LLM is a command-line tool and Python library by Simon Willison for interacting with large language models — from OpenAI and Anthropic to dozens of local and hosted models via a plugin system.
It supports prompting, chat, embeddings, and logging every interaction to a local SQLite database, and its plugin architecture lets you add new model providers and tools.
Apache-2.0 licensed and lightweight; a versatile connector for scripting and piping LLMs into shell workflows.
Compromise signals — malicious or tampered code (leaked secrets, backdoors, a dropped executable) — reduce the score, and known dependency CVEs carry a bounded penalty (they warrant review but never QUARANTINE — update the dependency to clear). Other dangerous-by-capability traits are risk surface, expected for some capabilities. Every finding is mapped to its OWASP control below.
Findings mapped to the OWASP Top 10 for LLM Applications (2025) and the OWASP Machine Learning Security Top 10. Expand any flagged control for the exact findings — compromise reduces the score; expected/risk-surface do not.
The same gate an agent runs before installing (POST /api/v1/trust/llm-cli/check). Click a policy:
Consume LLM (CLI) programmatically. Authenticate with an API key or session — see Authorize an agent.
# Agents: CHECK BEFORE YOU INSTALL (no auth) — score, grade, level, capability manifest
curl https://ai-supply.store/api/v1/trust/llm-cli
# Gate against your org policy (returns { pass, violations })
curl -X POST https://ai-supply.store/api/v1/trust/llm-cli/check \
-H "Content-Type: application/json" \
-d '{"minGrade":"B","denyPermissions":["shell"],"denyUnknownEgress":true}'
# CLI
npx ai-supply add llm-cli
# REST (install → download)
curl -X POST https://ai-supply.store/api/v1/listings/llm-cli/install \
-H "Authorization: Bearer $AIM_KEY"
# MCP tool
install_listing({ "slug": "llm-cli" })OpenAPI spec →Curated mirror — latest upstream source. See the repository for tagged releases.