From f76fe560e7ba85f68f4334b8a8c87f4c0cae4a05 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Thu, 2 Apr 2026 08:55:14 +0000
Subject: [PATCH] docs: update CLI and helm reference for v2.15.0

---
 client_reference/kosli_evaluate_input.md  | 86 +++++++++++++++++++++++
 client_reference/kosli_evaluate_trail.md  |  2 +-
 client_reference/kosli_evaluate_trails.md |  2 +-
 client_reference/overview.md              |  2 +-
 4 files changed, 89 insertions(+), 3 deletions(-)
 create mode 100644 client_reference/kosli_evaluate_input.md

diff --git a/client_reference/kosli_evaluate_input.md b/client_reference/kosli_evaluate_input.md
new file mode 100644
index 0000000..8c29224
--- /dev/null
+++ b/client_reference/kosli_evaluate_input.md
@@ -0,0 +1,86 @@
+---
+title: "kosli evaluate input"
+beta: false
+deprecated: false
+description: "Evaluate a local JSON input against a Rego policy."
+---
+
+## Synopsis
+
+```shell
+kosli evaluate input [flags]
+```
+
+Evaluate a local JSON input against a Rego policy.
+Read JSON from a file or stdin and evaluate it against a Rego policy.
+The input file should contain the raw JSON object your policy expects —
+not the wrapper produced by `--show-input`. Use `jq '.input'` to extract
+the policy input from a `--show-input --output json` capture.
+
+The policy must use `package policy` and define an `allow` rule.
+An optional `violations` rule (a set of strings) can provide human-readable denial reasons.
+The command exits with code 0 when allowed and code 1 when denied.
+
+When `--input-file` is omitted, JSON is read from stdin.
+
+## Flags
+| Flag | Description |
+| :--- | :--- |
+|    -h, --help  |  help for input  |
+|    -i, --input-file string  |  [optional] Path to a JSON input file. Reads from stdin if omitted.  |
+|    -o, --output string  |  [defaulted] The format of the output. Valid formats are: [table, json]. (default "table")  |
+|    -p, --policy string  |  Path to a Rego policy file to evaluate against the input.  |
+|        --show-input  |  [optional] Include the policy input data in the output.  |
+
+
+## Flags inherited from parent commands
+| Flag | Description |
+| :--- | :--- |
+|    -a, --api-token string  |  The Kosli API token.  |
+|    -c, --config-file string  |  [optional] The Kosli config file path. (default "kosli")  |
+|        --debug  |  [optional] Print debug logs to stdout. A boolean flag [docs](/faq/#boolean-flags) (default false)  |
+|    -H, --host string  |  [defaulted] The Kosli endpoint. (default "https://app.kosli.com")  |
+|        --http-proxy string  |  [optional] The HTTP proxy URL including protocol and port number. e.g. 'http://proxy-server-ip:proxy-port'  |
+|    -r, --max-api-retries int  |  [defaulted] How many times should API calls be retried when the API host is not reachable. (default 3)  |
+|        --org string  |  The Kosli organization.  |
+
+
+## Examples Use Cases
+
+These examples all assume that the flags  `--api-token`, `--org`, `--host`, (and `--flow`, `--trail` when required), are [set/provided](/getting_started/install/#assigning-flags-via-environment-variables). 
+
+<AccordionGroup>
+<Accordion title="capture trail data for local policy iteration">
+```shell
+kosli evaluate trail TRAIL --flow FLOW 
+	--policy allow-all.rego 
+	--show-input --output json | jq '.input' > trail-data.json
+
+```
+</Accordion>
+<Accordion title="then iterate on your policy locally">
+```shell
+kosli evaluate input 
+	--input-file trail-data.json 
+	--policy policy.rego
+
+```
+</Accordion>
+<Accordion title="evaluate and show the data passed to the policy">
+```shell
+kosli evaluate input 
+	--input-file trail-data.json 
+	--policy policy.rego 
+	--show-input 
+	--output json
+
+```
+</Accordion>
+<Accordion title="read input from stdin">
+```shell
+cat trail-data.json | kosli evaluate input 
+	--policy policy.rego
+```
+</Accordion>
+</AccordionGroup>
+
diff --git a/client_reference/kosli_evaluate_trail.md b/client_reference/kosli_evaluate_trail.md
index bc1c0c9..f70b6f2 100644
--- a/client_reference/kosli_evaluate_trail.md
+++ b/client_reference/kosli_evaluate_trail.md
@@ -12,7 +12,7 @@ kosli evaluate trail TRAIL-NAME [flags]
 ```
 
 Evaluate a trail against a policy.
-Fetch a single trail from Kosli and evaluate it against a Rego policy using OPA.
+Fetch a single trail from Kosli and evaluate it against a Rego policy.
 The trail data is passed to the policy as `input.trail`.
 
 Use `--attestations` to enrich the input with detailed attestation data
diff --git a/client_reference/kosli_evaluate_trails.md b/client_reference/kosli_evaluate_trails.md
index 1da4969..7d7a6fb 100644
--- a/client_reference/kosli_evaluate_trails.md
+++ b/client_reference/kosli_evaluate_trails.md
@@ -12,7 +12,7 @@ kosli evaluate trails TRAIL-NAME [TRAIL-NAME...] [flags]
 ```
 
 Evaluate multiple trails against a policy.
-Fetch multiple trails from Kosli and evaluate them together against a Rego policy using OPA.
+Fetch multiple trails from Kosli and evaluate them together against a Rego policy.
 The trail data is passed to the policy as `input.trails` (an array), unlike
 `evaluate trail` which passes `input.trail` (a single object).
 
diff --git a/client_reference/overview.md b/client_reference/overview.md
index d3efd51..d59f5cc 100644
--- a/client_reference/overview.md
+++ b/client_reference/overview.md
@@ -4,7 +4,7 @@ description: "Reference documentation for the Kosli CLI."
 ---
 
 <Info>
-  This reference was generated from Kosli CLI **v2.14.0**.
+  This reference was generated from Kosli CLI **v2.15.0**.
 </Info>
 
 The Kosli CLI allows you to interact with Kosli from your terminal and CI/CD pipelines.