158 个仓库
Mechanisms for securing API access via cryptographically generated keys and rate limiting.
Distinguishing note: Focuses on API-specific access control rather than general authentication.
Explore 158 awesome GitHub repositories matching security & cryptography · API Access Security. Refine with filters or upvote what's useful.
Developer Roadmap 是一个社区驱动的平台,提供结构化的、基于图谱的软件工程学习路径。它作为一个综合知识仓库,将技术领域组织成可视化序列,以指导专业技能获取和职业成长。 该项目通过协作生态系统脱颖而出,使用户能够贡献路线图、策划行业最佳实践并维护个人职业档案。它集成了诊断评估框架来评估技术熟练度,帮助开发者识别知识缺口,并通过有针对性的学习序列为专业面试做准备。 除了核心映射能力外,该平台还提供实用的项目创意和交互式辅导,以巩固工程概念。它为社区提供了一个共享资源、跟踪技能进步和导航复杂技术领域的中心化空间。
Manages authentication and authorization policies for secure cluster API access.
Odysseus is a self-hosted AI workspace and autonomous agent framework designed for deploying and managing large language models. It serves as a centralized platform for orchestrating agentic tasks, utilizing a model context protocol server to connect AI models to external system utilities, browser automation, and local hardware. The system distinguishes itself through a combination of retrieval-augmented generation and a RAG knowledge base, using vector stores and local embeddings to provide persistent semantic memory. It further integrates AI-driven communication management to triage email i
Restricts unauthorized access to administrative functions using credentials and origin-based filtering.
Context7 is an AI-powered documentation retrieval engine designed to provide developers and AI agents with real-time, context-aware access to technical documentation and code snippets. By integrating external library documentation as callable tools, the platform equips AI coding assistants with project-specific knowledge, helping to improve generation accuracy and reduce hallucinations during inference. The platform distinguishes itself through a robust security and governance framework that manages documentation as a centralized knowledge base. It employs a multi-source ingestion pipeline to
Secures API access using cryptographically generated keys with support for manual rotation and rate limiting.
This project is an AI model API gateway and proxy server designed to provide a unified interface for interacting with diverse artificial intelligence service providers. It functions as a centralized middleware platform that routes, load balances, and translates API requests across multiple models, enabling developers to access text, image, audio, and video generation capabilities through a single, standardized integration. The gateway distinguishes itself through comprehensive administrative and financial controls, including event-driven usage accounting, real-time token consumption tracking,
Validates incoming API requests against centralized credentials to ensure authorized access to model endpoints.
CLIProxyAPI is a command-line utility designed for routing, inspecting, and managing API network traffic directly from the terminal. It functions as a local proxy server that intercepts outgoing system-level requests, allowing users to monitor and troubleshoot connectivity without the need for external proxy software or browser-based tools. The tool distinguishes itself by providing a unified workflow for managing authentication credentials and connection settings through environment-based injection. It utilizes a middleware request pipeline that enables the real-time inspection and modificat
Manages authentication credentials and connection settings for secure API interfacing.
This project is a comprehensive set of architectural and coding standards for organizing and maintaining high-quality JavaScript applications. It provides a framework for JavaScript project best practices across the full software development lifecycle, establishing unified guidelines for project organization and development. The guidelines cover specific standards for REST API design, utilizing resource-oriented interfaces and standardized HTTP methods. It also includes a web accessibility standard focused on semantic HTML and automated audits, alongside a defined Git workflow standard for br
Sets security standards for API endpoints using encryption, tokens, and rate limiting to prevent unauthorized access.
This is an HTTP client library used for sending and receiving network requests. It functions as an HTTP traffic replicator, a multipart form uploader, and an OAuth request signer, while also serving as an HTTP client capable of routing traffic through Unix domain sockets for local inter-process communication. The project distinguishes itself with the ability to import and parse HTTP Archive JSON files to reproduce recorded network traffic. It also provides cryptographic OAuth signing to secure API access using hashing algorithms and supports routing requests through Unix domain sockets using
Secures API access using cryptographic OAuth signing, TLS certificates, and authentication headers.
FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface compone
Implements authentication mechanisms like OAuth and token verification to restrict access to server capabilities.
Prefect is a workflow orchestration platform designed to define, schedule, and monitor complex data pipelines as Python code. It functions as a container-native engine that wraps individual tasks in isolated environments, ensuring consistent dependencies and resource allocation across diverse infrastructure. By utilizing a state-machine-based orchestration model, the system tracks execution progress through discrete transitions and persistent event logs to maintain reliable and observable task processing. The platform distinguishes itself through a decoupled worker-API architecture, which sep
Provides automated injection of sensitive credentials into execution environments to ensure secure access to remote services.
Parse Server is a backend-as-a-service solution and Node.js framework that provides a ready-to-use REST and GraphQL API for mobile and web applications. It functions as a core backend infrastructure for managing database schemas, user authentication, and API routing. The system distinguishes itself with a real-time data engine that pushes database updates to clients via WebSockets and a GraphQL server that automatically generates schemas based on application data models. It also features an adapter-based storage layer that abstracts interactions with various cloud and local backends. The pla
Restricts API access via IP-based filters, route allow-lists, and protected field exemptions.
WordPress is an open-source content management system and PHP-based application framework designed for building and maintaining websites. It functions as a visual, block-based website builder that allows users to construct layouts and manage digital content without manual code entry. The platform supports a wide range of operational needs, from managing individual sites to administering complex multi-site networks from a single installation. The system is distinguished by its highly extensible, plugin-driven modular architecture, which allows for the integration of third-party modules to add
Protects site data and restricts unauthorized access to administrative functions.
Letta is a framework for building, deploying, and managing autonomous AI agents that maintain persistent state across long-term interactions. It provides a comprehensive suite of primitives for defining agents with configurable personas, modular memory blocks, and tool-use capabilities, enabling them to retain user preferences and conversation history over extended sessions. The platform distinguishes itself through its advanced memory management and orchestration capabilities. It allows agents to autonomously update their own memory, perform retrieval-augmented generation, and coordinate com
Enforces secure bearer token authentication for all incoming API requests to protect server endpoints.
Wekan 是一个开源、自托管的看板项目管理工具,用于通过看板、列表和卡片组织工作流。它是一个实时 Web 应用程序,允许团队在私有基础设施上管理任务。 该平台的特色在于其广泛的数据迁移工具,特别是用于从 Trello 导入看板和卡片。它支持通过 LDAP、OpenID Connect 和 OAuth2 进行企业级身份集成,并提供灵活的存储选项,包括作为主要关系后端的 PostgreSQL 和用于附件的可插拔云存储。 该系统涵盖了广泛的任务管理功能,包括甘特图可视化、时间跟踪和跨看板任务聚合。它包括用于基于角色的访问控制、自动化备份调度以及通过 REST API 和事件驱动 Webhook 进行编程扩展的管理工具。 该应用程序可通过 Docker 部署,并支持多租户配置。
Secures file operations using token authentication and payload limits to prevent resource exhaustion.
Excelize is a library for reading and writing spreadsheet files in the Office Open XML format. It provides a comprehensive suite of tools for programmatically creating, modifying, and analyzing workbooks, worksheets, and cell data, ensuring compatibility across various office software suites through structured XML serialization. The library distinguishes itself with a built-in formula calculation engine that evaluates complex mathematical and logical expressions directly against workbook data. It also features a memory-mapped streaming architecture, which allows for the efficient processing o
Provides mechanisms for restricting unauthorized access to administrative functions.
Wagtail is an open-source content management system built on the Django web framework. It provides a structured, tree-based approach to content modeling, allowing developers to define custom page types and reusable content components that are managed through a highly customizable administrative interface. The platform distinguishes itself through its flexible, block-based content composition system, which enables editors to assemble complex page layouts dynamically. It also offers robust support for multi-site and multi-lingual environments, allowing organizations to manage distinct websites
Applies authentication and permission classes to API views to restrict access to sensitive content.
Cube is a semantic data layer that provides a unified framework for defining business metrics, dimensions, and relationships across diverse data sources. By acting as a headless business intelligence engine, it transforms raw data into a governed model that can be queried via SQL, REST, and GraphQL interfaces. This architecture ensures consistent data definitions and logic across all downstream analytical applications and reporting tools. The platform distinguishes itself through its integrated conversational AI capabilities, which allow users to explore data using natural language. It orches
Secures analytical endpoints and sensitive data access using token-based authentication for incoming requests.
Netlify CMS is a Git-based headless content management system designed for static sites. It provides a decoupled administration interface that allows users to edit markdown and JSON files stored in a version control repository without interacting directly with the code. The system functions as a version-controlled editor that leverages Git commits and branches to track changes and manage site deployments. It separates the backend data management from the frontend presentation layer, enabling content creation and modification through a user interface. The project covers content model definiti
Restricts access to the administrative content management area through user authentication.
DevOps-Roadmap is a comprehensive educational repository and knowledge base designed to guide technical professionals through the complexities of modern software engineering. It functions as a structured curriculum and reference library, covering the full spectrum of skills required to master system architecture, infrastructure management, and cloud operations. The project distinguishes itself by bridging the gap between high-level architectural design and the practical realities of engineering leadership. It provides curated insights into distributed systems, data consistency, and scalable d
Implements dynamic rate limiting and monitoring to protect infrastructure from automated agent threats.
9router is an AI model gateway designed to route requests from AI coding tools to multiple model providers through a single unified API. It provides administration for self-hosted AI proxy deployments, allowing users to manage API keys and model access on local servers or edge networks. The system differentiates itself through multi-provider API normalization, which translates incompatible request and response formats to ensure compatibility across different AI models. It features AI provider failover management to automatically switch between providers or accounts when quotas are exhausted o
Secures the gateway by validating incoming requests using API keys or secrets.
Leon is a framework for building personal AI assistants that integrates large language models with local tool execution and persistent memory. It functions as an agentic workflow orchestrator and modular skill engine, enabling the creation of autonomous assistants capable of planning and executing multi-step tasks. The system features a retrieval-augmented generation memory architecture that indexes conversation history and user facts for context-aware grounding. It utilizes a modular skill system to interact with external binaries and APIs, supported by a loop that handles tool calling, sche
Secures the remote HTTP API using generated keys and middleware authentication.