@firmislabs/ai-inventory
v0.2.0
Published
AI tech stack discovery for agents. Detect frameworks, LLM SDKs, vector stores, and model files. Machine-readable inventory for agent orchestration and inter-agent discovery.
Readme
ai-inventory
Detect AI frameworks, LLM dependencies, and model files in any project. One command to know what AI is in your codebase.
Quick start
npx @firmis/ai-inventory .Output:
AI Inventory: /path/to/your/project
──────────────────────────────────────────────────
Framework: LangChain
Dependencies (5):
LLM SDKs:
- openai@^1.12.0
- @anthropic-ai/sdk@^0.20.0
Agent Frameworks:
- @langchain/core@^0.1.0
Vector Databases:
- @pinecone-database/pinecone@^2.0.0
- chromadb@^1.8.0
Model Files (1):
- model.safetensors [SafeTensors] (245.3 MB)
──────────────────────────────────────────────────
Found: 5 deps, 1 models
Scan for security threats: npx @firmis/scanner scan .What it detects
Frameworks: CrewAI, LangChain, AutoGen, MetaGPT, AutoGPT, LangFlow, MCP Server, n8n
Dependencies (50+): OpenAI, Anthropic, Google AI, Cohere, Replicate, Ollama, LangChain, LlamaIndex, Pinecone, ChromaDB, Weaviate, Qdrant, HuggingFace, PyTorch, TensorFlow, and more — across npm and pip.
Model files: GGUF, SafeTensors, ONNX, PyTorch (.pt/.pth), HDF5/Keras (.h5), TFLite, Ollama Modelfiles, TensorFlow.js, HuggingFace configs.
Programmatic API
import { inventory } from '@firmis/ai-inventory'
const result = await inventory('./my-project')
console.log(result.summary.hasAI) // true
console.log(result.framework?.label) // "LangChain"
console.log(result.dependencies.length) // 5
console.log(result.models.length) // 1Individual detectors are also exported:
import {
detectFramework,
detectAIDependencies,
detectModelFiles,
} from '@firmis/ai-inventory'CLI options
npx @firmis/ai-inventory [path] [options]
Options:
--json Output as JSON
--help Show helpFound AI? Scan it for threats.
npx firmis-scanner scan .Firmis Scanner detects security threats across 9 AI agent platforms with 227 rules.
License
Apache-2.0