158 repository-uri
Mechanisms for securing API access via cryptographically generated keys and rate limiting.
Distinguishing note: Focuses on API-specific access control rather than general authentication.
Explore 158 awesome GitHub repositories matching security & cryptography · API Access Security. Refine with filters or upvote what's useful.
Developer Roadmap este o platformă condusă de comunitate care oferă căi de învățare structurate, bazate pe grafuri, pentru ingineria software. Servește drept repository cuprinzător de cunoștințe unde domeniile tehnice sunt organizate în secvențe vizuale pentru a ghida dobândirea competențelor profesionale și creșterea în carieră. Proiectul se distinge printr-un ecosistem colaborativ care permite utilizatorilor să contribuie cu roadmap-uri, să cureție cele mai bune practici din industrie și să mențină profiluri profesionale. Acesta integrează framework-uri de evaluare diagnostică pentru a evalua competența tehnică, ajutând dezvoltatorii să identifice lacunele de cunoștințe și să se pregătească pentru interviurile profesionale prin secvențe de învățare țintite. Dincolo de capabilitățile sale de bază de mapare, platforma oferă idei practice de proiecte și tutorat interactiv pentru a consolida conceptele de inginerie. Oferă un spațiu centralizat pentru ca comunitatea să partajeze resurse, să urmărească dezvoltarea progresivă a competențelor și să navigheze prin peisaje tehnice complexe.
Manages authentication and authorization policies for secure cluster API access.
Odysseus is a self-hosted AI workspace and autonomous agent framework designed for deploying and managing large language models. It serves as a centralized platform for orchestrating agentic tasks, utilizing a model context protocol server to connect AI models to external system utilities, browser automation, and local hardware. The system distinguishes itself through a combination of retrieval-augmented generation and a RAG knowledge base, using vector stores and local embeddings to provide persistent semantic memory. It further integrates AI-driven communication management to triage email i
Restricts unauthorized access to administrative functions using credentials and origin-based filtering.
Context7 is an AI-powered documentation retrieval engine designed to provide developers and AI agents with real-time, context-aware access to technical documentation and code snippets. By integrating external library documentation as callable tools, the platform equips AI coding assistants with project-specific knowledge, helping to improve generation accuracy and reduce hallucinations during inference. The platform distinguishes itself through a robust security and governance framework that manages documentation as a centralized knowledge base. It employs a multi-source ingestion pipeline to
Secures API access using cryptographically generated keys with support for manual rotation and rate limiting.
This project is an AI model API gateway and proxy server designed to provide a unified interface for interacting with diverse artificial intelligence service providers. It functions as a centralized middleware platform that routes, load balances, and translates API requests across multiple models, enabling developers to access text, image, audio, and video generation capabilities through a single, standardized integration. The gateway distinguishes itself through comprehensive administrative and financial controls, including event-driven usage accounting, real-time token consumption tracking,
Validates incoming API requests against centralized credentials to ensure authorized access to model endpoints.
CLIProxyAPI is a command-line utility designed for routing, inspecting, and managing API network traffic directly from the terminal. It functions as a local proxy server that intercepts outgoing system-level requests, allowing users to monitor and troubleshoot connectivity without the need for external proxy software or browser-based tools. The tool distinguishes itself by providing a unified workflow for managing authentication credentials and connection settings through environment-based injection. It utilizes a middleware request pipeline that enables the real-time inspection and modificat
Manages authentication credentials and connection settings for secure API interfacing.
This project is a comprehensive set of architectural and coding standards for organizing and maintaining high-quality JavaScript applications. It provides a framework for JavaScript project best practices across the full software development lifecycle, establishing unified guidelines for project organization and development. The guidelines cover specific standards for REST API design, utilizing resource-oriented interfaces and standardized HTTP methods. It also includes a web accessibility standard focused on semantic HTML and automated audits, alongside a defined Git workflow standard for br
Sets security standards for API endpoints using encryption, tokens, and rate limiting to prevent unauthorized access.
This is an HTTP client library used for sending and receiving network requests. It functions as an HTTP traffic replicator, a multipart form uploader, and an OAuth request signer, while also serving as an HTTP client capable of routing traffic through Unix domain sockets for local inter-process communication. The project distinguishes itself with the ability to import and parse HTTP Archive JSON files to reproduce recorded network traffic. It also provides cryptographic OAuth signing to secure API access using hashing algorithms and supports routing requests through Unix domain sockets using
Secures API access using cryptographic OAuth signing, TLS certificates, and authentication headers.
FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface compone
Implements authentication mechanisms like OAuth and token verification to restrict access to server capabilities.
Prefect is a workflow orchestration platform designed to define, schedule, and monitor complex data pipelines as Python code. It functions as a container-native engine that wraps individual tasks in isolated environments, ensuring consistent dependencies and resource allocation across diverse infrastructure. By utilizing a state-machine-based orchestration model, the system tracks execution progress through discrete transitions and persistent event logs to maintain reliable and observable task processing. The platform distinguishes itself through a decoupled worker-API architecture, which sep
Provides automated injection of sensitive credentials into execution environments to ensure secure access to remote services.
Parse Server is a backend-as-a-service solution and Node.js framework that provides a ready-to-use REST and GraphQL API for mobile and web applications. It functions as a core backend infrastructure for managing database schemas, user authentication, and API routing. The system distinguishes itself with a real-time data engine that pushes database updates to clients via WebSockets and a GraphQL server that automatically generates schemas based on application data models. It also features an adapter-based storage layer that abstracts interactions with various cloud and local backends. The pla
Restricts API access via IP-based filters, route allow-lists, and protected field exemptions.
WordPress is an open-source content management system and PHP-based application framework designed for building and maintaining websites. It functions as a visual, block-based website builder that allows users to construct layouts and manage digital content without manual code entry. The platform supports a wide range of operational needs, from managing individual sites to administering complex multi-site networks from a single installation. The system is distinguished by its highly extensible, plugin-driven modular architecture, which allows for the integration of third-party modules to add
Protects site data and restricts unauthorized access to administrative functions.
Letta is a framework for building, deploying, and managing autonomous AI agents that maintain persistent state across long-term interactions. It provides a comprehensive suite of primitives for defining agents with configurable personas, modular memory blocks, and tool-use capabilities, enabling them to retain user preferences and conversation history over extended sessions. The platform distinguishes itself through its advanced memory management and orchestration capabilities. It allows agents to autonomously update their own memory, perform retrieval-augmented generation, and coordinate com
Enforces secure bearer token authentication for all incoming API requests to protect server endpoints.
Wekan este un instrument de management de proiect Kanban open-source, auto-găzduit, utilizat pentru organizarea fluxurilor de lucru prin panouri, liste și carduri. Este o aplicație web în timp real care permite echipelor să gestioneze sarcinile pe infrastructură privată. Platforma se distinge prin instrumente extinse de migrare a datelor, în special pentru importul panourilor și cardurilor din Trello. Suportă integrarea identității la nivel enterprise prin LDAP, OpenID Connect și OAuth2 și oferă opțiuni flexibile de stocare, inclusiv PostgreSQL ca backend relațional primar și stocare cloud conectabilă pentru atașamente. Sistemul acoperă o gamă largă de capabilități de gestionare a sarcinilor, inclusiv vizualizări de diagrame Gantt, urmărirea timpului și agregarea sarcinilor între panouri. Include instrumente administrative pentru controlul accesului bazat pe roluri, programarea automată a backup-urilor și extensibilitate programatică printr-un API REST și webhook-uri bazate pe evenimente. Aplicația este disponibilă pentru implementare prin Docker și suportă configurații multi-tenant.
Secures file operations using token authentication and payload limits to prevent resource exhaustion.
Excelize is a library for reading and writing spreadsheet files in the Office Open XML format. It provides a comprehensive suite of tools for programmatically creating, modifying, and analyzing workbooks, worksheets, and cell data, ensuring compatibility across various office software suites through structured XML serialization. The library distinguishes itself with a built-in formula calculation engine that evaluates complex mathematical and logical expressions directly against workbook data. It also features a memory-mapped streaming architecture, which allows for the efficient processing o
Provides mechanisms for restricting unauthorized access to administrative functions.
Wagtail is an open-source content management system built on the Django web framework. It provides a structured, tree-based approach to content modeling, allowing developers to define custom page types and reusable content components that are managed through a highly customizable administrative interface. The platform distinguishes itself through its flexible, block-based content composition system, which enables editors to assemble complex page layouts dynamically. It also offers robust support for multi-site and multi-lingual environments, allowing organizations to manage distinct websites
Applies authentication and permission classes to API views to restrict access to sensitive content.
Cube is a semantic data layer that provides a unified framework for defining business metrics, dimensions, and relationships across diverse data sources. By acting as a headless business intelligence engine, it transforms raw data into a governed model that can be queried via SQL, REST, and GraphQL interfaces. This architecture ensures consistent data definitions and logic across all downstream analytical applications and reporting tools. The platform distinguishes itself through its integrated conversational AI capabilities, which allow users to explore data using natural language. It orches
Secures analytical endpoints and sensitive data access using token-based authentication for incoming requests.
Netlify CMS is a Git-based headless content management system designed for static sites. It provides a decoupled administration interface that allows users to edit markdown and JSON files stored in a version control repository without interacting directly with the code. The system functions as a version-controlled editor that leverages Git commits and branches to track changes and manage site deployments. It separates the backend data management from the frontend presentation layer, enabling content creation and modification through a user interface. The project covers content model definiti
Restricts access to the administrative content management area through user authentication.
DevOps-Roadmap is a comprehensive educational repository and knowledge base designed to guide technical professionals through the complexities of modern software engineering. It functions as a structured curriculum and reference library, covering the full spectrum of skills required to master system architecture, infrastructure management, and cloud operations. The project distinguishes itself by bridging the gap between high-level architectural design and the practical realities of engineering leadership. It provides curated insights into distributed systems, data consistency, and scalable d
Implements dynamic rate limiting and monitoring to protect infrastructure from automated agent threats.
9router is an AI model gateway designed to route requests from AI coding tools to multiple model providers through a single unified API. It provides administration for self-hosted AI proxy deployments, allowing users to manage API keys and model access on local servers or edge networks. The system differentiates itself through multi-provider API normalization, which translates incompatible request and response formats to ensure compatibility across different AI models. It features AI provider failover management to automatically switch between providers or accounts when quotas are exhausted o
Secures the gateway by validating incoming requests using API keys or secrets.
Leon is a framework for building personal AI assistants that integrates large language models with local tool execution and persistent memory. It functions as an agentic workflow orchestrator and modular skill engine, enabling the creation of autonomous assistants capable of planning and executing multi-step tasks. The system features a retrieval-augmented generation memory architecture that indexes conversation history and user facts for context-aware grounding. It utilizes a modular skill system to interact with external binaries and APIs, supported by a loop that handles tool calling, sche
Secures the remote HTTP API using generated keys and middleware authentication.