Running Scans from the CLI
Run DAST scans from your terminal, a container, a Kubernetes worker, or a CI pipeline. The CLI is the shadownet binary, shipped in the levoai/levoai-shadownet Docker image.
If you haven't run a scan yet, start with the CLI quickstart β it takes you from docker pull to a first finding.
Choose your deploymentβ
Run ad-hoc scans or a long-lived worker from a container. Best for local use and most CI systems.
Deploy the scanner as a worker in your cluster via Helm. Best for on-premise and scheduled scans.
Every shadownet command, flag, and exit code.
Environment variables, volume mounts, LLM keys, and proxy setup.
Prefer a config file?β
For repeatable scans, check the options into version control with levo-dast.yml instead of long flag lists. CLI flags still take precedence for one-off overrides.