CLI Quickstart

Drive CloudBooster from your terminal. Audit a live AWS account against CloudBooster's curated rules — without leaving your shell.

Prerequisites

• A CloudBooster account — sign up via the portal first (see the Platform Quickstart). The audit grounds findings in CloudBooster's knowledge API, so an account is required.
• AWS credentials on your machine (an ~/.aws profile or AWS_PROFILE).
• A local LLM CLI on your PATH — claude (Claude Code) by default, or codex. cbx audit aws drives it locally; the CLI owns its own auth.

1. Install

# macOS / Linux (Homebrew)
brew install cloudbooster/tap/cbx-cli
cbx version

For Windows (Scoop), Linux without Homebrew, and verification with cosign, see Install cbx-cli.

2. Log in

cbx login

Opens your browser for PKCE OAuth. Pairs the CLI with your CloudBooster account.

3. Set up an LLM executor

cbx audit aws runs a local LLM CLI to analyze discovered resources. Verify the local Claude Code executor is reachable:

cbx llm cli test claude-code   # or: cbx llm cli test codex

If you prefer to use an API key instead of the local CLI's own auth, store one:

cbx llm api login claude        # or: cbx llm api login codex

To make codex the default executor that cbx audit aws picks up:

cbx llm default codex

4. Run your first audit

cbx audit aws --region us-east-1

cbx audit aws discovers resources in the live account, fetches CloudBooster's curated rule pack and AWS knowledge, runs the local LLM CLI to ground its findings, and writes a markdown report alongside the terminal output.

Audit several regions with repeated --region flags, or every enabled region with --region all:

cbx audit aws prod --region us-east-1 --region eu-west-1
cbx audit aws --region all -o json

Where next?