-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy path.env.example
More file actions
64 lines (52 loc) · 2.43 KB
/
Copy path.env.example
File metadata and controls
64 lines (52 loc) · 2.43 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
# ── Database ──
AILA_DATABASE_URL=postgresql+asyncpg://postgres:changeme@localhost:5432/aila
# ── Redis (task queue + SSE) ──
AILA_PLATFORM_REDIS_URL=redis://127.0.0.1:6379/0
# ── Auth ──
AILA_JWT_SECRET_KEY=generate-with: openssl rand -hex 32
# Required ONLY on first boot when no admin user exists.
# The startup hook reads this env var, creates user 'admin' with this password
# (argon2id-hashed), then logs a notice. Remove the variable after first boot.
# Never commit a real value to source control.
AILA_ADMIN_PASSWORD=AilaHarkonnen42
# ── CORS ──
AILA_CORS_ORIGINS=http://localhost:3000,http://localhost:5173
# ── LLM ──
OPENAI_API_KEY=your-openai-api-key
AILA_PLATFORM_LLM_DEFAULT_MODEL=gpt-4o
AILA_PLATFORM_LLM_BASE_URL=https://api.openai.com/v1
AILA_PLATFORM_LLM_DEFAULT_MAX_TOKENS=32000
AILA_LLM_TIMEOUT_SECONDS=300
# Comma-separated model name substrings that reject temperature parameter:
# AILA_LLM_MODELS_REJECTING_TEMPERATURE=o1,o3,o4,gpt-5
# ── LLM Pipeline Behavior ──
AILA_PLATFORM_LLM_PIPELINE_CLASSIFY_RESTRICTED_BEHAVIOR_SCORING=transparent
AILA_PLATFORM_LLM_PIPELINE_CLASSIFY_RESTRICTED_BEHAVIOR_SYNTHESIS=transparent
AILA_PLATFORM_DATA_POSTURE_MODE=transparent
# ── Forensics Module (optional) ──
# AILA_PLATFORM_LLM_MODEL_FORENSICS_FREEFLOW=gpt-4o
# AILA_PLATFORM_LLM_MODEL_FORENSICS_RESOLVER=gpt-4o
# AILA_PLATFORM_LLM_MODEL_FORENSICS_WRITEUP=gpt-4o
# AILA_PLATFORM_LLM_MAX_TOKENS_FORENSICS_FREEFLOW=32000
# AILA_PLATFORM_LLM_MAX_TOKENS_FORENSICS_RESOLVER=32000
# AILA_PLATFORM_LLM_MAX_TOKENS_FORENSICS_WRITEUP=32000
# AILA_FORENSICS_CAPA_RULES=/path/to/capa-rules
# AILA_FORENSICS_CAPA_SIGS=/path/to/capa-sigs
# ── MCP Servers (only if using the `vr` or `malware` modules) ──
# See docs/QUICKSTART.md section 4 for install steps, and
# docs/VR_INSTALLATION_GUIDE.md for full tuning knobs.
# audit-mcp: source-code indexing + semantic search. Required for `vr`.
# AUDIT_MCP_URL=http://127.0.0.1:18822
# AUDIT_MCP_TIMEOUT=300
# AUDIT_MCP_WORKERS=1
# AUDIT_MCP_THREAD_POOL_LIMIT=64
# ida-headless-mcp: binary decompilation via IDA Pro. Required for `malware`
# and for `vr` on binary targets.
# IDA_HEADLESS_URL=http://127.0.0.1:18821
# IDA_HEADLESS_TIMEOUT=120
# android-mcp: APK audit (apktool, jadx, androguard, MobSF). Required for `vr`
# on `android_apk` targets.
# ANDROID_MCP_URL=http://127.0.0.1:18823
# ANDROID_MCP_TIMEOUT=1800
# ── Server ──
AILA_API_HOST=0.0.0.0