CLI Commands
cnspec
The cnspec CLI is a cloud-native security testing tool for assessing the security of your entire infrastructure.
cnspec is a cloud-native security testing tool for your entire infrastructure. Use it to scan assets for misconfigurations and vulnerabilities using security policies, so you can find and fix security issues before they become problems.
To learn more, read What Is cnspec?. To get started, read Installation Overview.
Options
--api-proxy string Set the proxy for communications with Mondoo Platform API
--auto-update Enable automatic provider installation and update (default true)
--config string Set config file path (default $HOME/.config/mondoo/mondoo.yml)
-h, --help help for cnspec
--log-level string Set the log level: error, warn, info, debug, trace (default "info")
-v, --verbose Enable verbose outputSEE ALSO
- cnspec framework - Manage local and Mondoo Platform hosted compliance frameworks
- cnspec login - Register with Mondoo Platform
- cnspec logout - Log out from Mondoo Platform
- cnspec lsp - Launch the MQL Language Server
- cnspec migrate - Migrate cnspec CLI configuration to the latest version
- cnspec policy - Manage local and upstream policies
- cnspec providers - Providers add connectivity to all assets
- cnspec run - Run an MQL query
- cnspec scan - Scan assets with one or more policies
- cnspec serve - Start cnspec in background mode
- cnspec shell - Interactive query shell for MQL
- cnspec status - Verify access to Mondoo Platform
- cnspec vault - Manage vault environments
- cnspec version - Display the cnspec version
- cnspec vuln - Scan a target for vulnerabilities