CLI

The fruxon command ships with the Python SDK (pip install fruxon) and turns Fruxon into a terminal-first workflow: sign in once, list agents, run them, chat with them, and inspect any past execution.

Install

pip install fruxon

Verify:

fruxon --version
fruxon doctor       # diagnoses interpreter, SDK version, API reachability, auth

Requires Python 3.10+.

fruxon login

This opens your dashboard, polls for completion, and stores the resulting API key in your OS keychain (macOS Keychain, Linux Secret Service, Windows Credential Manager). The org and base URL go to ~/.fruxon/credentials as plain JSON.

Non-interactive sign-in (e.g. CI):

fruxon login --api-key fxn_... --org acme-corp

Want to know which credential the CLI is actually using? fruxon whoami shows the active values and where each came from — flag, env var, keychain, file, or default.

Browse agents

fruxon agents list                   # human-readable table
fruxon agents list --output json     # full payload, for scripting
fruxon agents list --output id       # one ID per line, pipe-safe
fruxon agents list --all             # include disabled agents

In the table, the Rev column doubles as a runnability indicator: a yellow (none) means no revision is deployed yet, so fruxon run will fail until one is published.

Inspect a single agent:

fruxon agents get support-agent
fruxon agents get support-agent --output json

When the agent has a deployed revision, the output ends with a copy-pasteable fruxon run line including the right -p flags.

Author and deploy agents

agents create makes a new agent shell from a JSON definition; agents revisions author and deploy the flow that runs inside it.

fruxon agents create --file ./agent.json                # new agent shell
fruxon agents revisions create my-agent --file ./rev.json
fruxon agents revisions get my-agent 42                 # seed for the next revision
fruxon agents revisions deploy my-agent 42              # makes `fruxon run` use it

get prints the full revision body so you can fork from a known-good one — pipe it back through revisions create after edits.

Test a draft flow

fruxon agents test runs a draft flow definition against an existing agent — without publishing it. The "validate before you ship" loop.

fruxon agents test my-agent --file ./agent.json -p query="hello"
fruxon agents test my-agent --file ./agent.json --no-stream -o json
cat agent.json | fruxon agents test my-agent --file -

--file is an AgentTestRequest JSON body — the candidate flow plus its subAgents, assets, integrationConfigs, llmConfigs, and baseRevision. The my-agent argument scopes the run to an existing agent: it gates Editor access and resolves any masked secrets from the base revision's stored configs.

Flag	Effect
`--file` / `-f`	Draft definition JSON. `-` reads stdin. Required.
`-p key=value`	Runtime parameter, overlaid onto the file's `parameters` (flags win). Repeatable.
`--base-revision N`	Override the file's `baseRevision`; defaults to the agent's current revision.
`--session` / `-s`	Session ID for multi-turn continuity.
`--stream / --no-stream`	Stream by default; `json`/`table` imply `--no-stream`.
`--output` / `-o`	`text` / `json` / `table`.

The result is identical in shape to fruxon run — same streaming view, --output formats, and duration/cost/record footer — because :test returns the same envelope as :execute. Exit code is 0 on success, non-zero on failure, so keeping the definition file in your repo turns this into a CI gate for agent changes. Requires Editor access to the agent.

Manage integrations

An integration is a connection to an external service — an HTTP API, a SaaS product, an MCP server. It's the container tools live under, and the first rung of building an agent: connect an integration → define tools on it → reference those tools from the agent's flow.

fruxon integrations list [--search X] [--type T] [--tag T]
fruxon integrations get <id>
fruxon integrations create  --file <int.json>
fruxon integrations update <id> --file <int.json>
fruxon integrations verify <id> --file <auth.json>
fruxon integrations open    <id>                       # dashboard page in default browser

list / get take plain flags. create / update take a --file JSON body — the CreateIntegration / UpdateIntegration payload (id, displayName, configMetadata); - reads stdin. On update, omit credential fields to keep existing values (the API never returns secrets).

verify checks that an auth config actually connects: --file is a VerifyAuthConfigRequest. A failed check is a normal result — the detail is printed and the exit code is 1, so it works as a pre-flight gate.

Integration configs

A config is one filled-in instance of an integration — an auth credential plus any connection params. The shape is authored via integrations create; the values are entered through the dashboard (the CLI never accepts secrets).

fruxon integrations configs list <id>     # tenant-level configs registered for this integration
fruxon integrations configs get  <id> <config-id>

MCP servers

Each integration can be exposed as an MCP server so Claude Desktop, Cursor, and other MCP-capable clients can call its tools directly.

fruxon integrations mcp status <id>
fruxon integrations mcp enable <id> --config <config-id>

enable mints a dedicated mcp:invoke-scoped key bound to this MCP only and prints the secret exactly once — store it where your MCP client reads its config.

Manage tools

A tool is a single callable capability an agent can invoke. Tools are integration-scoped — every command takes the integration as its first positional argument.

fruxon tools list   <integration> [--type T]
fruxon tools get    <integration> <tool>
fruxon tools create <integration> --file <tool.json>
fruxon tools update <integration> <tool> --file <tool.json> [--python]
fruxon tools delete <integration> <tool>
fruxon tools test   <integration> --file <tool-test.json> [-p k=v]

Write commands take a --file JSON body (CreateToolRequest / Tool / ToolTestRequest) carrying the structured descriptor + parametersMetadata. update --python routes Python-script tools through their separate backend endpoint; update is a wholesale replace, not a patch. test runs the tool with sample parameters before you wire it into an agent — -p key=value overlays runtime params onto the file's, and the tool's response goes to stdout (pipe-safe).

The CLI auto-fills integrationId in the body from the positional argument on both create and update, so you can omit it. If you do include it and it doesn't match, the CLI rejects loudly rather than letting the server 400 with a less helpful message.

Placeholders in tool definitions. Tool URLs, headers, query params, and bodies template via double curly braces — {{name}} (not {name}, which is passed through literally and silently breaks at runtime). Names are flat — no auth. / config. / param. prefix. All sources (tool call parameters, the integration config's non-secret parameters, and built-ins like {{tenant}}) merge into one namespace.

Don't write the Authorization header in your tool. The auth provider injects it automatically based on the integration's authMetadata.type (BEARER_TOKEN → Authorization: Bearer <token>, API_KEY → whichever header is configured). Need a non-standard scheme like Discord's Bot or G2's Token token=? Set authSettings: { Scheme: "Bot", ValuePrefix: "" } on the authMetadata — still no template needed in the tool itself.

Generate request schemas (`--schema`)

Every write command that takes --file <body.json> also accepts --schema. It pulls the live OpenAPI spec from the server you're talking to and prints the JSON Schema for the request body — $ref closure included, allOf inheritance flattened — as a single self-contained document on stdout.

This is the agent-native equivalent of Postman's "see the request shape" affordance: pipe the schema into your LLM context, generate a valid body, and submit it.

fruxon agents create --schema > create-agent.schema.json
fruxon agents revisions create my-agent --schema > revision.schema.json
fruxon agents test my-agent --schema > test-request.schema.json
fruxon integrations create --schema > integration.schema.json
fruxon integrations update <id> --schema
fruxon integrations verify <id> --schema
fruxon tools create <integration> --schema
fruxon tools update <integration> <tool> --schema
fruxon tools test <integration> --schema

Properties:

Live, not bundled — fetched from /swagger/v1/swagger.json on the configured --base-url, so the schema always matches the server's contract. Switch base URLs and you get that server's shape.
No auth required — the OpenAPI spec is public; --schema short-circuits before credentials are touched.
Self-contained — $refs rebased to #/$defs/…, polymorphic allOf collapsed into discriminated variants with const-pinned discriminator values, so strict validators (jsonschema.validate) accept exactly what the server does.

Typical LLM-driven flow:

fruxon tools create github --schema > schema.json
# feed schema.json + your intent to your coding agent, get back tool.json
fruxon tools create github --file ./tool.json

Drop into your coding agent

Paste this into Claude Code, Cursor, or any coding agent to bootstrap a Fruxon build session. The agent uses --schema to discover the exact request shape from the live OpenAPI spec — no guessing field names, no stale examples.

You're building on Fruxon. The `fruxon` CLI is installed and I've already run `fruxon login`.

Operating rules:

1. **Discover shape before writing JSON.** Every write command accepts `--schema` and prints the live JSON Schema for its `--file` body. Always run `--schema` before authoring a body, never invent field names.
2. **Use `--file` for writes, `-o json` for reads.** All write commands take `--file body.json` (or `--file -` for stdin). All read commands accept `-o json` for machine-parseable output.
3. **Build order:** integration → tools on it → agent + revision that references them → deploy → run.
4. **Validate before deploy.** Use `fruxon agents test <id> --file ./rev.json` to dry-run a draft revision against an existing agent; only `fruxon agents revisions create` + `... deploy` once it passes.
5. **Never put secrets in files you commit.** Credential fields stay in the dashboard or are submitted ephemerally. On `integrations update`, omit credential fields to keep existing values.

Reference loop you'll use repeatedly:

```bash
fruxon <resource> <verb> --schema > schema.json   # live request shape
# author body.json from schema.json + the user's intent
fruxon <resource> <verb> --file ./body.json       # submit
```

Useful commands:

```bash
fruxon agents list -o json
fruxon integrations list -o json
fruxon tools list <integration> -o json
fruxon agents get <id> -o json                    # full revision body — fork from a known-good one
fruxon agents test <id> --file ./rev.json         # validate draft without deploying
fruxon agents revisions create <id> --file ./rev.json
fruxon agents revisions deploy <id> <n>
fruxon run <id> -p key=value                      # execute
fruxon trace <id> <record-id>                     # post-mortem
fruxon doctor                                     # diagnose setup
```

Now: <describe what to build>

Run an agent

One-shot execution. Streams the response by default.

fruxon run my-agent

Pass parameters

-p accepts four input forms:

# String value
fruxon run my-agent -p question="Hello" -p lang=en

# Typed JSON (number, bool, list, object)
fruxon run my-agent -p temperature:=0.7 -p tags:='["a","b"]'

# Read value from a file
fruxon run my-agent -p prompt=@./prompt.md

# Whole-object input from a file
fruxon run my-agent --params ./params.json

# Whole-object input from stdin
cat params.json | fruxon run my-agent --stdin

# Multi-line prompt via $EDITOR
fruxon run my-agent -e question

Output formats

fruxon run my-agent                  # stream text to your terminal
fruxon run my-agent --output json    # full execution envelope (implies --no-stream)
fruxon run my-agent --output table   # human-readable breakdown
fruxon run my-agent --no-stream      # wait for full response; show duration/cost

Pin a specific revision

fruxon run my-agent --revision 42

Every run ends with a footer like:

56.8s  ·  $0.3265  ·  record 72c3c346-…
→ fruxon trace my-agent 72c3c346-…

The second line is copy-pasteable — jump straight to a post-mortem without retyping the IDs.

Interactive REPL

For multi-turn conversation with session continuity:

fruxon chat my-agent

Each turn streams, and the session ID is threaded into the next turn automatically so the agent remembers context.

fruxon chat my-agent --input-key question     # if the agent's param isn't `prompt`
fruxon chat my-agent -p lang=en               # static params sent on every turn
fruxon chat my-agent --session sess-abc       # resume an existing session

Slash commands inside the REPL:

Command	Effect
`/help`	List commands.
`/exit`	Quit (also: Ctrl-D, Ctrl-C, empty line).
`/clear`	Start a fresh session.
`/edit`	Pop `$EDITOR` to compose a multi-line message.
`/session`	Show the current session ID.

Manage API keys

fruxon keys covers the read-and-revoke half of key management. Minting and rotation deliberately happen in the dashboard, not the CLI — fruxon keys mint opens the browser so the secret is only revealed to a human-authenticated session, never to an LLM agent or CI logger reading the terminal.

For the scope vocabulary, presets (Runner / Builder / Read-only / Admin), audit history, MCP auto-mint, and inbound:deliver semantics, see the API Keys guide.

fruxon keys mint                  # open the dashboard's API-keys page in your browser
fruxon keys list                  # all keys in your org (prefix-only)
fruxon keys revoke <id>           # flip inactive (reversible from dashboard)
fruxon keys delete <id>           # hard delete (irreversible)
fruxon keys history <id>          # audit timeline
fruxon keys scopes                # every scope the server mints against

Why minting isn't a CLI command. When an LLM agent runs the CLI (Claude Code, Cursor, Aider, etc.), its stdout enters the agent's context window — durably part of the conversation, often persisted on the AI provider's backend. A keys create that prints fx_live_<secret> would leak the value into that pipeline every time. The browser handoff is the only channel where "the secret reaches the user without traversing the agent" is structurally guaranteed.

Inside the dashboard you pick a scope preset (runner / builder / read-only / admin) and copy the secret into your password manager or CI secrets store. Hand the agent the prefix (fx_live_aB3z) so it can identify the key for revoke / history calls — never the full secret.

CI workflows should pre-mint a key in the dashboard once and store the secret in their secrets manager (GITHUB_SECRETS, etc.), not call out to keys mint at runtime. Runtime self-minting is harder to audit and rarely what you actually want.

Browse skills

Skills are Fruxon's procedural knowledge — playbooks an agent can load before tackling a task. fruxon skills is the read-only surface for browsing the catalog from your terminal.

fruxon skills list                       # every skill visible to your org
fruxon skills show fruxon-create-integration   # full procedural content to stdout

show outputs raw markdown — pipe it into glow for a rendered view, or into a file to read alongside other docs.

Browse LLM providers

Read-only inspection of the LLM providers (OpenAI, Anthropic, Google, …) and models wired to your tenant.

fruxon llm-providers list                # providers + status
fruxon llm-providers get <provider-id>   # full payload: metadata, config schema, models
fruxon llm-providers models <provider-id>

Inspect a past execution

fruxon trace my-agent rec-abc123                    # record summary + step-by-step trace
fruxon trace my-agent rec-abc123 --summary-only     # just the summary
fruxon trace my-agent rec-abc123 --json | jq .trace # machine-readable

The record ID is printed by fruxon run at the end of every execution.

Diagnose your setup

fruxon doctor                  # full check
fruxon doctor --offline        # skip network probes
fruxon doctor --output json    # machine-readable, for CI

Doctor walks through interpreter version, SDK version (with "newer release available" check), credentials, API reachability, and an authenticated probe. Exit code is 0 on green, 1 on any warning or failure — useful as a CI precheck.

Manage configuration

Non-secrets live in ~/.fruxon/credentials; the API key lives in your OS keychain.

fruxon config list                                # show everything, api_key redacted
fruxon config get org                             # raw value to stdout — usable in $(...)
fruxon config set org=acme base_url=https://staging.fruxon.com
fruxon config unset base_url                      # clear a single field
fruxon logout                                     # clear everything

Credentials & precedence

The CLI resolves auth in this order — first non-empty wins:

Explicit flags — --api-key / --org / --base-url.
Environment variables — FRUXON_API_KEY / FRUXON_ORG / FRUXON_BASE_URL.
Stored credentials (managed by fruxon login).

The stored layer is split for safety:

Field	Storage
`api_key`	OS keychain (macOS Keychain, Linux Secret Service, Windows Credential Manager). Falls back to the JSON file with `0600` perms when the keyring is unavailable.
`org`, `base_url`	`~/.fruxon/credentials` (plain JSON).

Set FRUXON_NO_KEYRING=1 to force the JSON-file fallback.

Environment variables

Var	Effect
`FRUXON_API_KEY`	Default API key.
`FRUXON_ORG`	Default organization.
`FRUXON_BASE_URL`	Override the API base URL (staging / self-hosted).
`FRUXON_CONFIG_DIR`	Override the credentials directory (default `~/.fruxon`).
`FRUXON_AGENT_MODE=1`	Optimize output for AI agents / scripts (also auto-detected from `CLAUDECODE=1` / `CI=1`).
`FRUXON_NO_KEYRING=1`	Force the JSON-file fallback for the API key.
`FRUXON_NO_BANNER=1`	Suppress all branding chrome.
`FRUXON_NO_UPDATE_CHECK=1`	Opt out of the "newer version available" notifier.
`NO_COLOR=1`	Standard convention — disables color output.

Agent mode

When CLAUDECODE=1, CI=1, or FRUXON_AGENT_MODE=1 is set, the CLI:

Defaults --output to json for run, agents list/get/test, integrations list/get, tools list/get, doctor.
Suppresses banners and color chrome.
On bare fruxon invocation, emits a one-line JSON manifest describing auth state + next-step commands.

This makes the CLI ergonomic for LLM agents and CI pipelines without extra flags. Explicit --output X always wins.

Shell completion

fruxon --install-completion          # bash, zsh, fish, PowerShell

CLI