Skip to content

Add AI Model Scanning and Red Teaming APIs #930

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Add AI Model Scanning and Red Teaming APIs #930

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
2ec061d
Add AI Model Scanning and Red Teaming APIs
divyabhushan Jun 5, 2025
7e3d08e
Rebrand to Prisma AIRS
divyabhushan Jun 5, 2025
f582eec
Merge branch 'master' into airs-apis-redteaming-modelscan
divyabhushan Jun 13, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
30 changes: 26 additions & 4 deletions docusaurus.config.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -192,7 +192,7 @@ const config = {
"Learn how to make the most of the PAN-OS APIs, SDKs, Expedition, Terraform, Ansible, and more.",
products: [
{
label: "AI Runtime Security",
label: "Prisma AIRS",
to: "#",
logoClass: "panos",
docs: [
Expand All @@ -204,10 +204,20 @@ const config = {
],
apiDocs: [
{
to: "ai-runtime-security/scan/api/",
to: "prisma-airs/scan/api/",
label: "AI Runtime Security API",
icon: "api-doc",
},
{
to: "prisma-airs/airedteaming/api/",
label: "AI Red Teaming API",
icon: "api-doc",
},
{
to: "prisma-airs/aimodelscanning/api/",
label: "AI Model Scanning",
icon: "api-doc",
},
],
},
{
Expand Down Expand Up @@ -997,8 +1007,20 @@ const config = {
sidebarOptions: { groupPathsBy: "tag", categoryLinkSource: "info" },
},
airuntimesecurity: {
specPath: "openapi-specs/ai-runtime-security/scan",
outputDir: "products/ai-runtime-security/api",
specPath: "openapi-specs/prisma-airs/scan",
outputDir: "products/prisma-airs/api/airuntimesecurity",
proxy: "https://cors.pan.dev",
sidebarOptions: { groupPathsBy: "tag", categoryLinkSource: "tag" },
},
airedteaming: {
specPath: "openapi-specs/prisma-airs/airedteaming",
outputDir: "products/prisma-airs/api/airedteaming",
proxy: "https://cors.pan.dev",
sidebarOptions: { groupPathsBy: "tag", categoryLinkSource: "tag" },
},
aimodelscanning: {
specPath: "openapi-specs/prisma-airs/aimodelscanning",
outputDir: "products/prisma-airs/api/aimodelscanning",
proxy: "https://cors.pan.dev",
sidebarOptions: { groupPathsBy: "tag", categoryLinkSource: "tag" },
},
Expand Down
288 changes: 288 additions & 0 deletions openapi-specs/prisma-airs/aimodelscanning/aimodelscanning.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,288 @@
openapi: 3.0.3
info:
contact:
email: https://www.paloaltonetworks.com/company/contact-support
title: AI Model Scan
description:
"This Open API spec file represents the APIs available for the AI Model Scan capabilities.\n
\nThese APIs use the bearer authentication.\n
\nTo use the APIs, you must first activate and associate a deployment profile in Customer Support Portal for AI Model Scan and then onboard in Strata Cloud Manager.\
For licensing, onboarding, activation, and to obtain the API authentication key and profile name, refer to the AI Runtime Security documentation.\n\n
This Open API spec file was created on xxxx xx, 2025.\
\n\n\xA9 2024 Palo Alto Networks, Inc. Palo Alto Networks is a registered trademark of Palo Alto Networks.\
A list of our trademarks can be found at https://www.paloaltonetworks.com/company/trademarks.html. \
All other marks mentioned herein may be trademarks of their respective companies.\n"
license:
name: Palo Alto Networks EULA
url: https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/legal/palo-alto-networks-end-user-license-agreement-eula.pdf
version: 0.0.0

servers:
- url: "https://api.strata.paloaltonetworks.com"
description: AI Model Scan

tags:
- name: AI Model Scanning APIs

paths:
/airt/model-scan/v1/url:
post:
summary: Scan Model URL
description: Scan Model URL
security:
- Bearer: []
operationId: scan_model_url_airt_model_scan_v1_url_post
tags:
- AI Model Scanning APIs
parameters:
- name: URL
description: Hugging Face model URL to scan. You can provide a link to the HuggingFace model s card or a link to a specific commit hash. If you provide a link to the main card, the most recent version of the model will be scanned
in: query
required: true
schema:
type: string
format: string
description: Valid Hugging Face model URL to be scanned
requestBody:
content:
application/json:
schema:
$ref: "#/components/schemas/ModelUrlInput"
required: true
responses:
"200":
description: Successful Response
content:
application/json:
schema:
$ref: "#/components/schemas/ScanModelURLResponse"
"422":
description: Validation Error
content:
application/json:
schema:
$ref: "#/components/schemas/HTTPValidationError"
/airt/model-scan/v1/result:
get:
summary: Scan Model Result
security:
- Bearer: []
operationId: scan_model_result_airt_model_scan_v1_result_get
tags:
- AI Model Scannning APIs
parameters:
- name: scan_id
in: query
required: true
schema:
type: string
title: Scan Id
responses:
"200":
description: Successful Response
content:
application/json:
schema: {}
"422":
description: Validation Error
content:
application/json:
schema:
$ref: "#/components/schemas/HTTPValidationError"
/airt/model-scan/v1/file:
post:
summary: Scan Model File
security:
- Bearer: []
operationId: scan_model_file_airt_model_scan_v1_file_post
tags:
- AI Model Scanning APIs
requestBody:
content:
application/json:
schema:
$ref: "#/components/schemas/ModelFileInput"
required: true
responses:
"200":
description: Successful Response
content:
application/json:
schema:
$ref: "#/components/schemas/ScanModelFileResponse"
"422":
description: Validation Error
content:
application/json:
schema:
$ref: "#/components/schemas/HTTPValidationError"
/airt/simulation/v1/validate-schema:
post:
summary: Validate Schema
security:
- Bearer: []
operationId: validate_schema_airt_simulation_v1_validate_schema_post
tags:
- AI Model Scanning APIs
requestBody:
content:
multipart/form-data:
schema:
$ref: "#/components/schemas/Body_validate_schema_airt_simulation_v1_validate_schema_post"
required: true
responses:
"200":
description: Successful Response
content:
application/json:
schema:
$ref: "#/components/schemas/SchemaValidationResponse"
"422":
description: Validation Error
content:
application/json:
schema:
$ref: "#/components/schemas/HTTPValidationError"

components:
securitySchemes:
Bearer:
scheme: bearer
type: http
description: This is the API access token which you create with your client ID and client secret. For details, see https://pan.dev/sase/api/auth/post-auth-v-1-oauth-2-access-token/.
schemas:
Body_validate_schema_airt_simulation_v1_validate_schema_post:
properties:
endpoint_schema:
type: string
description: Endpoint Schema (YAML format) for a target endpoint
format: binary
title: Endpoint Schema
maxLength: 65536
type: object
required:
- endpoint_schema
title: Body_validate_schema_airt_simulation_v1_validate_schema_post
HTTPValidationError:
properties:
detail:
items:
$ref: "#/components/schemas/ValidationError"
type: array
title: Detail
type: object
title: HTTPValidationError
ModelFileInput:
properties:
model_name:
type: string
description: AI model name to scan
maxLength: 128
minLength: 1
title: Model Name
model_version:
type: string
description: (Optional) Model version you want to scan
maxLength: 128
minLength: 1
title: Model Version
type: object
required:
- model_name
example:
model_name: "example-llm-model"
title: ModelFileInput
ModelUrlInput:
properties:
url:
type: string
description: Hugging Face AI model URL to scan. You can provide a link to the HuggingFace model s card or a link to a specific commit hash. If you provide a link to the main card, the most recent version of the model will be scanned
minLength: 1
pattern: ^http
title: Url
model_name:
type: string
description: AI model name you want to scan
maxLength: 128
minLength: 1
title: Model Name
model_version:
type: string
description: (Optional) Model version you want to scan
maxLength: 128
minLength: 1
title: Model Version
type: object
required:
- url
- model_name
example:
url: "https://huggingface.co/example-model"
model_name: "example-llm-model"
title: ModelUrlInput
ScanModelFileResponse:
properties:
scan_id:
type: string
description: Scan Id obtained from create model URL response
title: Scan Id
upload_url:
type: string
title: Upload Url
status:
type: integer
title: Status
default: 1
type: object
required:
- scan_id
- upload_url
title: ScanModelFileResponse
ScanModelURLResponse:
properties:
scan_id:
description: Scan Id obtained from create model URL response
type: string
title: Scan Id
status:
type: integer
title: Status
default: 2
type: object
required:
- scan_id
title: ScanModelURLResponse
SchemaValidationResponse:
properties:
errors:
items:
type: string
type: array
title: Errors
default: []
prompt:
anyOf:
- type: string
- type: "null"
title: Prompt
answer:
anyOf:
- type: string
- type: "null"
title: Answer
type: object
title: SchemaValidationResponse
ValidationError:
properties:
loc:
items:
anyOf:
- type: string
- type: integer
type: array
title: Location
msg:
type: string
title: Message
type:
type
Loading