Open-source AI infrastructure stack: gateway, guardrails, policies, observability, audit in one Docker Compose
An open-source application layer that integrates LiteLLM, guardrails, PII masking, policies, evals, audit, lineage, and vector search into a single Docker Compose setup. It provides governed, compliant, and auditable AI for organizations, solving the problem of wiring together disparate open-source components.
Entities
Related
Attestor: open-source zero-trust boundary for autonomous AI agents
Attestor is an open-source execution boundary that enforces zero-trust security for autonomous AI agents. It uses LLMs to define and enforce policies that restrict agent actions, preventing unauthorized access or data leaks. This solves the problem of safely deploying autonomous agents in production environments.
Enola: engineering intelligence layer for AI coding agents
Enola is an open-source engineering intelligence layer that helps AI coding agents understand existing codebases. It answers questions about change impact, dependency reachability, safe module deletion, refactoring priorities, and architecture drift. The tool uses LLMs to analyze code context and provide insights that reduce mistakes from both humans and AI agents.
CodeInspectus: open-source security scanner for AI-generated code
CodeInspectus is a fully open-source, local security scanner that checks AI-generated code for vulnerabilities. It covers 32 checks (13 AI-specific + 19 SAST) and 200+ secret/API-key patterns, catching issues like hardcoded secrets in client-side code, exposed API keys, and insecure RLS policies. It helps developers secure projects built with LLM-generated code.
AI agent converting threat intel to Sigma rules and SIEM detections
DetectionForge is an open-source AI agent that autonomously converts raw threat intelligence into validated Sigma rules and ready-to-deploy SIEM detections. It uses LLMs to translate intelligence and validate/repair its own outputs, solving the problem of security teams needing days to operationalize threat intel.
Local-first CLI that masks PII and secrets before sending to LLMs
LocalMask is a command-line tool that runs locally to detect and mask personally identifiable information (PII) and secrets before data is sent to large language models. It solves the privacy and compliance problem for developers and organizations that need to use LLMs without exposing sensitive data.


