Local, open source privacy controls
docker run -d -p 8989:8989 ghcr.io/stacklok/codegate
CodeGate encrypts secrets in your prompts to protect your privacy, and augments an LLM’s knowledge base with up-to-date risk insight to protect your code.
CodeGate addresses the privacy and security shortcomings of AI coding assistants and LLMs
We built CodeGate to be:
Local
CodeGate is local, never passing your secrets to a service or to the cloud. Your secrets are safest when they stay on your desktop.
Open
CodeGate is open source because solving for privacy requires transparency. You can see how CodeGate works and contribute to its evolution.
Quiet
CodeGate is largely invisible—it works in the background to keep you safe and only alerts you to secret leakage and security risks.
The questions we hope you’re asking…
The team at Stacklok built CodeGate. It was important to us that CodeGate be open source, so we can build this with the community.
We’ve launched CodeGate as an MVP so we can start collaborating with other open source developers from the jump. This is a solution for developers, by developers. Come build with us in our Github repository.
Every other gateway we’ve found suffers from three major shortcomings: (1) they live in the cloud, so your secrets don’t stay on your desktop, (2) they are built by security professionals for security teams who want to measure risk, but not action it, and (3) they are not open source and therefore lack transparency.
No! CodeGate is a partner to, not an enemy of, coding assistants. Stacklok engineers created CodeGate to ensure we could embrace coding assistants without losing privacy and control of our own development environment.
It’s actually the underlying LLMs that have stale training data. They’re so expensive and cumbersome to update that their training cutoffs are months or even years in the past; so, they don’t always know when a dependency has been deprecated or compromised.
Stacklok supports this use case; just get in touch with us at hello@stacklok.com for more details.
Loose lips sink software ships. Take control right now with a single container:
docker run -d -p 8989:8989 ghcr.io/stacklok/codegate
LINKS
SUPPORT
