Show HN: GitRails-Let agents call only the GitHub endpoints and params you allow

Category: security

Tags: github-api, ai-agents, access-control, proxy, security

Score: 6.8/10 (Innovation: 7, Technical: 6, Documentation: 8, Utility: 6)

GitRails is a proxy server that lets humans grant AI agents scoped access to the GitHub API, controlling which endpoints and parameters each agent can use. It provides a permissions model using regex-based rules per endpoint, enabling fine-grained access control for untrusted agents. This addresses a growing need for secure AI agent integration with development workflows.

Target audience: backend devs, devops, security engineers

Repository: https://github.com/maxawzsinger/gitrails/blob/main/README.md · TypeScript · MIT

View on Hacker News