158 repositorios
Mechanisms for securing API access via cryptographically generated keys and rate limiting.
Distinguishing note: Focuses on API-specific access control rather than general authentication.
Explore 158 awesome GitHub repositories matching security & cryptography · API Access Security. Refine with filters or upvote what's useful.
Developer Roadmap es una plataforma impulsada por la comunidad que proporciona rutas de aprendizaje estructuradas basadas en grafos para la ingeniería de software. Sirve como un repositorio de conocimiento integral donde los dominios técnicos se organizan en secuencias visuales para guiar la adquisición de habilidades profesionales y el crecimiento profesional. El proyecto se distingue por un ecosistema colaborativo que permite a los usuarios contribuir con roadmaps, curar las mejores prácticas de la industria y mantener perfiles profesionales. Integra marcos de evaluación de diagnóstico para evaluar la competencia técnica, ayudando a los desarrolladores a identificar brechas de conocimiento y prepararse para entrevistas profesionales a través de secuencias de aprendizaje específicas. Más allá de sus capacidades principales de mapeo, la plataforma ofrece ideas de proyectos prácticos y tutoría interactiva para reforzar los conceptos de ingeniería. Proporciona un espacio centralizado para que la comunidad comparta recursos, rastree el desarrollo progresivo de habilidades y navegue por paisajes técnicos complejos.
Manages authentication and authorization policies for secure cluster API access.
Odysseus is a self-hosted AI workspace and autonomous agent framework designed for deploying and managing large language models. It serves as a centralized platform for orchestrating agentic tasks, utilizing a model context protocol server to connect AI models to external system utilities, browser automation, and local hardware. The system distinguishes itself through a combination of retrieval-augmented generation and a RAG knowledge base, using vector stores and local embeddings to provide persistent semantic memory. It further integrates AI-driven communication management to triage email i
Restricts unauthorized access to administrative functions using credentials and origin-based filtering.
Context7 is an AI-powered documentation retrieval engine designed to provide developers and AI agents with real-time, context-aware access to technical documentation and code snippets. By integrating external library documentation as callable tools, the platform equips AI coding assistants with project-specific knowledge, helping to improve generation accuracy and reduce hallucinations during inference. The platform distinguishes itself through a robust security and governance framework that manages documentation as a centralized knowledge base. It employs a multi-source ingestion pipeline to
Secures API access using cryptographically generated keys with support for manual rotation and rate limiting.
This project is an AI model API gateway and proxy server designed to provide a unified interface for interacting with diverse artificial intelligence service providers. It functions as a centralized middleware platform that routes, load balances, and translates API requests across multiple models, enabling developers to access text, image, audio, and video generation capabilities through a single, standardized integration. The gateway distinguishes itself through comprehensive administrative and financial controls, including event-driven usage accounting, real-time token consumption tracking,
Validates incoming API requests against centralized credentials to ensure authorized access to model endpoints.
CLIProxyAPI is a command-line utility designed for routing, inspecting, and managing API network traffic directly from the terminal. It functions as a local proxy server that intercepts outgoing system-level requests, allowing users to monitor and troubleshoot connectivity without the need for external proxy software or browser-based tools. The tool distinguishes itself by providing a unified workflow for managing authentication credentials and connection settings through environment-based injection. It utilizes a middleware request pipeline that enables the real-time inspection and modificat
Manages authentication credentials and connection settings for secure API interfacing.
This project is a comprehensive set of architectural and coding standards for organizing and maintaining high-quality JavaScript applications. It provides a framework for JavaScript project best practices across the full software development lifecycle, establishing unified guidelines for project organization and development. The guidelines cover specific standards for REST API design, utilizing resource-oriented interfaces and standardized HTTP methods. It also includes a web accessibility standard focused on semantic HTML and automated audits, alongside a defined Git workflow standard for br
Sets security standards for API endpoints using encryption, tokens, and rate limiting to prevent unauthorized access.
This is an HTTP client library used for sending and receiving network requests. It functions as an HTTP traffic replicator, a multipart form uploader, and an OAuth request signer, while also serving as an HTTP client capable of routing traffic through Unix domain sockets for local inter-process communication. The project distinguishes itself with the ability to import and parse HTTP Archive JSON files to reproduce recorded network traffic. It also provides cryptographic OAuth signing to secure API access using hashing algorithms and supports routing requests through Unix domain sockets using
Secures API access using cryptographic OAuth signing, TLS certificates, and authentication headers.
FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface compone
Implements authentication mechanisms like OAuth and token verification to restrict access to server capabilities.
Prefect is a workflow orchestration platform designed to define, schedule, and monitor complex data pipelines as Python code. It functions as a container-native engine that wraps individual tasks in isolated environments, ensuring consistent dependencies and resource allocation across diverse infrastructure. By utilizing a state-machine-based orchestration model, the system tracks execution progress through discrete transitions and persistent event logs to maintain reliable and observable task processing. The platform distinguishes itself through a decoupled worker-API architecture, which sep
Provides automated injection of sensitive credentials into execution environments to ensure secure access to remote services.
Parse Server is a backend-as-a-service solution and Node.js framework that provides a ready-to-use REST and GraphQL API for mobile and web applications. It functions as a core backend infrastructure for managing database schemas, user authentication, and API routing. The system distinguishes itself with a real-time data engine that pushes database updates to clients via WebSockets and a GraphQL server that automatically generates schemas based on application data models. It also features an adapter-based storage layer that abstracts interactions with various cloud and local backends. The pla
Restricts API access via IP-based filters, route allow-lists, and protected field exemptions.
WordPress is an open-source content management system and PHP-based application framework designed for building and maintaining websites. It functions as a visual, block-based website builder that allows users to construct layouts and manage digital content without manual code entry. The platform supports a wide range of operational needs, from managing individual sites to administering complex multi-site networks from a single installation. The system is distinguished by its highly extensible, plugin-driven modular architecture, which allows for the integration of third-party modules to add
Protects site data and restricts unauthorized access to administrative functions.
Letta is a framework for building, deploying, and managing autonomous AI agents that maintain persistent state across long-term interactions. It provides a comprehensive suite of primitives for defining agents with configurable personas, modular memory blocks, and tool-use capabilities, enabling them to retain user preferences and conversation history over extended sessions. The platform distinguishes itself through its advanced memory management and orchestration capabilities. It allows agents to autonomously update their own memory, perform retrieval-augmented generation, and coordinate com
Enforces secure bearer token authentication for all incoming API requests to protect server endpoints.
Wekan es una herramienta de gestión de proyectos Kanban de código abierto y autohospedada utilizada para organizar flujos de trabajo a través de tableros, listas y tarjetas. Es una aplicación web en tiempo real que permite a los equipos gestionar tareas en infraestructura privada. La plataforma se distingue por herramientas de migración de datos extensas, específicamente para importar tableros y tarjetas desde Trello. Admite integración de identidad de nivel empresarial a través de LDAP, OpenID Connect y OAuth2, y ofrece opciones de almacenamiento flexibles, incluyendo PostgreSQL como backend relacional principal y almacenamiento en la nube conectable para archivos adjuntos. El sistema cubre una amplia gama de capacidades de gestión de tareas, incluyendo visualizaciones de diagramas de Gantt, seguimiento de tiempo y agregación de tareas entre tableros. Incluye herramientas administrativas para control de acceso basado en roles, programación de copias de seguridad automatizadas y extensibilidad programática a través de una API REST y webhooks basados en eventos. La aplicación está disponible para su despliegue a través de Docker y admite configuraciones multi-inquilino.
Secures file operations using token authentication and payload limits to prevent resource exhaustion.
Excelize is a library for reading and writing spreadsheet files in the Office Open XML format. It provides a comprehensive suite of tools for programmatically creating, modifying, and analyzing workbooks, worksheets, and cell data, ensuring compatibility across various office software suites through structured XML serialization. The library distinguishes itself with a built-in formula calculation engine that evaluates complex mathematical and logical expressions directly against workbook data. It also features a memory-mapped streaming architecture, which allows for the efficient processing o
Provides mechanisms for restricting unauthorized access to administrative functions.
Wagtail is an open-source content management system built on the Django web framework. It provides a structured, tree-based approach to content modeling, allowing developers to define custom page types and reusable content components that are managed through a highly customizable administrative interface. The platform distinguishes itself through its flexible, block-based content composition system, which enables editors to assemble complex page layouts dynamically. It also offers robust support for multi-site and multi-lingual environments, allowing organizations to manage distinct websites
Applies authentication and permission classes to API views to restrict access to sensitive content.
Cube is a semantic data layer that provides a unified framework for defining business metrics, dimensions, and relationships across diverse data sources. By acting as a headless business intelligence engine, it transforms raw data into a governed model that can be queried via SQL, REST, and GraphQL interfaces. This architecture ensures consistent data definitions and logic across all downstream analytical applications and reporting tools. The platform distinguishes itself through its integrated conversational AI capabilities, which allow users to explore data using natural language. It orches
Secures analytical endpoints and sensitive data access using token-based authentication for incoming requests.
Netlify CMS is a Git-based headless content management system designed for static sites. It provides a decoupled administration interface that allows users to edit markdown and JSON files stored in a version control repository without interacting directly with the code. The system functions as a version-controlled editor that leverages Git commits and branches to track changes and manage site deployments. It separates the backend data management from the frontend presentation layer, enabling content creation and modification through a user interface. The project covers content model definiti
Restricts access to the administrative content management area through user authentication.
DevOps-Roadmap is a comprehensive educational repository and knowledge base designed to guide technical professionals through the complexities of modern software engineering. It functions as a structured curriculum and reference library, covering the full spectrum of skills required to master system architecture, infrastructure management, and cloud operations. The project distinguishes itself by bridging the gap between high-level architectural design and the practical realities of engineering leadership. It provides curated insights into distributed systems, data consistency, and scalable d
Implements dynamic rate limiting and monitoring to protect infrastructure from automated agent threats.
9router is an AI model gateway designed to route requests from AI coding tools to multiple model providers through a single unified API. It provides administration for self-hosted AI proxy deployments, allowing users to manage API keys and model access on local servers or edge networks. The system differentiates itself through multi-provider API normalization, which translates incompatible request and response formats to ensure compatibility across different AI models. It features AI provider failover management to automatically switch between providers or accounts when quotas are exhausted o
Secures the gateway by validating incoming requests using API keys or secrets.
Leon is a framework for building personal AI assistants that integrates large language models with local tool execution and persistent memory. It functions as an agentic workflow orchestrator and modular skill engine, enabling the creation of autonomous assistants capable of planning and executing multi-step tasks. The system features a retrieval-augmented generation memory architecture that indexes conversation history and user facts for context-aware grounding. It utilizes a modular skill system to interact with external binaries and APIs, supported by a loop that handles tool calling, sche
Secures the remote HTTP API using generated keys and middleware authentication.