|
1 | | -# agent-bom demo — run with: vhs docs/demo.tape |
| 1 | +# agent-bom v0.72.0 demo — run with: vhs docs/demo.tape |
2 | 2 | # |
3 | | -# Install vhs: brew install vhs |
4 | | -# Prereqs (run in a CLEAN venv to avoid ModuleNotFoundError): |
5 | | -# python -m venv /tmp/abom-demo && source /tmp/abom-demo/bin/activate |
6 | | -# pip install agent-bom |
7 | | -# Verify: agent-bom --version (must show no errors) |
| 3 | +# 3 hero commands that show what agent-bom does: |
| 4 | +# 1. scan --demo → discovery + blast radius + remediation (the core value) |
| 5 | +# 2. check → pre-install CVE gate (simple, powerful) |
| 6 | +# 3. scan -f cyclonedx → AI BOM export with tool capabilities |
8 | 7 | # |
9 | | -# IMPORTANT: Run every command manually BEFORE recording to verify success. |
10 | | -# A demo with errors is worse than no demo. |
| 8 | +# All output is real — --demo uses bundled inventory, no mocked data. |
11 | 9 |
|
12 | | -# Output filename — update README.md img src to match after recording |
13 | | -Output docs/images/demo-v0.71.0.gif |
| 10 | +Output docs/images/demo-v0.72.0.gif |
14 | 11 |
|
15 | 12 | Set Shell "bash" |
16 | 13 | Set FontSize 15 |
17 | 14 | Set Width 1400 |
18 | 15 | Set Height 800 |
19 | 16 | Set Theme "Dracula" |
20 | 17 | Set Padding 24 |
21 | | -Set TypingSpeed 40ms |
| 18 | +Set TypingSpeed 35ms |
22 | 19 | Set PlaybackSpeed 1.0 |
23 | 20 |
|
24 | | -# ── 0. Version ──────────────────────────────────────────────────────────────── |
25 | | -Type "agent-bom --version" |
| 21 | +# Setup: correct binary, clean prompt, no personal paths |
| 22 | +Hide |
| 23 | +Type "export PS1='$ ' && export PATH=/opt/homebrew/Caskroom/miniconda/base/bin:$PATH && mkdir -p /tmp/abom-demo && cd /tmp/abom-demo && clear" |
26 | 24 | Enter |
27 | | -Sleep 3s |
28 | | - |
29 | | -# ── 1. Pre-install guard — catch CVEs before they land ──────────────────────── |
30 | | -Type "agent-bom check django@3.2.0 --ecosystem pypi" |
31 | | -Enter |
32 | | -Sleep 8s |
33 | | - |
34 | | -Type "agent-bom check lodash@4.17.20 --ecosystem npm" |
35 | | -Enter |
36 | | -Sleep 6s |
| 25 | +Sleep 1s |
| 26 | +Show |
37 | 27 |
|
38 | | -# ── 2. Full scan — discovery + vuln scan + blast radius ─────────────────────── |
| 28 | +# ── Hero 1: Full scan — blast radius mapping (the core product) ────────────── |
39 | 29 | Type "agent-bom scan --demo" |
40 | 30 | Enter |
41 | | -Sleep 18s |
| 31 | +Sleep 22s |
42 | 32 |
|
43 | | -# ── 3. Output formats — SARIF for GitHub Security tab ───────────────────────── |
44 | | -Type "agent-bom scan --demo -f sarif -o /tmp/results.sarif -q && echo '✓ SARIF written to /tmp/results.sarif'" |
| 33 | +# ── Hero 2: Pre-install CVE gate — one command, instant answer ─────────────── |
| 34 | +Type "agent-bom check django@3.2.0 --ecosystem pypi" |
45 | 35 | Enter |
46 | 36 | Sleep 8s |
47 | 37 |
|
48 | | -# ── 4. Focused commands — fs, cloud, proxy ──────────────────────────────────── |
49 | | -Type "agent-bom fs --help | head -8" |
50 | | -Enter |
51 | | -Sleep 4s |
52 | | - |
53 | | -Type "agent-bom proxy --help | head -12" |
| 38 | +# ── Hero 3: AI BOM export — CycloneDX with MCP tool capabilities ──────────── |
| 39 | +Type "agent-bom scan --demo -f cyclonedx -o sbom.json -q && echo '✓ AI BOM exported' && head -25 sbom.json" |
54 | 40 | Enter |
55 | | -Sleep 5s |
| 41 | +Sleep 6s |
56 | 42 |
|
57 | | -Sleep 1s |
| 43 | +Sleep 2s |
0 commit comments