CLI ToolsMay 12, 2026·2 min read

Lyrie — Autonomous Security Agent CLI + ATP SDK

Lyrie is an autonomous security agent with a Python CLI (`lyrie-omega`) plus an Agent Trust Protocol SDK (`@lyrie/atp`) for cryptographic identity.

Agent ready

Safe staging for this asset

This asset is staged first. The copied prompt tells the agent to inspect the staged files and ask before activating scripts, MCP config, or global config.

Stage only · 17/100Policy: stage
Agent surface
Any MCP/CLI agent
Kind
CLI Tool
Install
Stage only
Trust
Trust: Established
Entrypoint
Asset
Safe staging command
npx -y tokrepo@latest install 0c93812a-b8b1-5e13-b9b7-28a435862a05 --target codex

Stages files first; activation requires review of the staged README and plan.

Intro

Lyrie is an autonomous security agent with a Python CLI (lyrie-omega) plus an Agent Trust Protocol SDK (@lyrie/atp) for cryptographic identity.

  • Best for: Security teams who want one CLI for scanning/pentesting plus a trust/identity layer for agents
  • Works with: Python CLI (lyrie-omega) + Node SDK (@lyrie/atp); supports scan/hack/redteam commands (per README)
  • Setup time: 10–20 minutes

Practical Notes

  • GitHub: 532 stars · 52 forks; pushed 2026-05-12 (verified via GitHub API).
  • README lists “25 commands are real and tested” and includes lyrie hack (7-phase pentest) and lyrie redteam strategies.
  • README claims ATP spec has 143 tests passing and “Lyrie Shield” has 31 tests passing.

Main

What to do with Lyrie beyond a demo:

  1. Use lyrie doctor as your “preflight” before long scans—treat failures as environment issues, not model issues.
  2. Split workflows into:
    • scan for broad coverage
    • hack for deeper, staged work (URL or local source tree)
    • redteam for LLM endpoint testing
  3. For agent platforms, ATP gives you a vocabulary for identity + scope: certificates, delegation, and audit trails. Use it to reduce “mystery tools” risk.

If you already have tools, Lyrie is most valuable as a unifying CLI + trust layer, not as yet another scanner.

FAQ

Q: What are the two installs? A: Per README: lyrie-omega is the Python CLI and @lyrie/atp is the TypeScript SDK for Agent Trust Protocol.

Q: What’s the quickest sanity check? A: Run lyrie init once, then lyrie doctor to verify setup (README examples).

Q: Can it red-team LLM endpoints? A: Yes. README includes lyrie redteam <endpoint> --strategy crescendo --dry-run.

🙏

Source & Thanks

Source: https://github.com/OTT-Cybersecurity-LLC/lyrie-ai > License: MIT > GitHub stars: 532 · forks: 52

Discussion

Sign in to join the discussion.
No comments yet. Be the first to share your thoughts.

Related Assets