Website | Documentation | YouTube | Discord
CodeGate: secure AI code generationBy Stacklok
CodeGate is a local gateway that makes AI agents and coding assistants safer. It ensures AI-generated recommendations adhere to best practices while safeguarding your code's integrity and protecting your privacy. With CodeGate, you can confidently leverage AI in your development workflow without sacrificing security or productivity.
AI coding assistants are powerful, but they can inadvertently introduce risks. CodeGate protects your development process by:
CodeGate is distributed as a Docker container. You need a container runtime like Docker Desktop or Docker Engine. Podman and Podman Desktop are also supported. CodeGate works on Windows, macOS, and Linux operating systems with x86_64 and arm64 (ARM and Apple Silicon) CPU architectures.
These instructions assume the docker CLI is available. If you use Podman, replace docker with podman in all commands.
To start CodeGate, run this simple command:
docker run --name codegate -d -p 8989:8989 -p 9090:9090 -p 8990:8990 \ --mount type=volume,src=codegate_volume,dst=/app/codegate_volume \ --restart unless-stopped ghcr.io/stacklok/codegate:latest
Thatβs it! CodeGate is now running locally.
Now it's time to configure your preferred AI coding assistant to use CodeGate See supported AI Coding Assistants and providers
βοΈ For advanced configurations and parameter references, check out the CodeGate Install and Upgrade documentation.
CodeGate includes a web dashboard that provides:
Open http://localhost:9090 in your web browser to access the dashboard.
To learn more, visit the CodeGate Dashboard documentation.
CodeGate helps you protect sensitive information from being accidentally exposed to AI models and third-party AI provider systems by redacting detected secrets from your prompts using encryption. Learn more
Dependency risk awarenessLLMsβ knowledge cutoff date is often months or even years in the past. They might suggest outdated, vulnerable, or non-existent packages (hallucinations), exposing you and your users to security risks.
CodeGate scans direct, transitive, and development dependencies in your package definition files, installation scripts, and source code imports that you supply as context to an LLM. Learn more
CodeGate performs security-centric code reviews, identifying insecure patterns or potential vulnerabilities to help you adopt more secure coding practices. Learn more
π€ Supported AI coding assistants and providersπ₯ Getting started with CodeGate and aider - watch on YouTube
Unlike other tools, with CodeGate your code never leaves your machine. CodeGate is built with privacy at its core:
Are you a developer looking to contribute? Dive into our technical resources:
CodeGate is licensed under the terms specified in the LICENSE file.
Love CodeGate? Starring this repository and sharing it with others helps CodeGate grow π±
We welcome contributions! Whether you're submitting bug reports, feature requests, or code contributions, your input makes CodeGate better for everyone. We thank you β€οΈ!
Start by reading our Contributor guidelines.
Made with contrib.rocks.
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4