Show HN: FOSS sandbox platform that hides infra secrets from devs and AI agents

Category: infrastructure

Tags: sandbox, kubernetes, zero-trust, secretless, developer-tools, ai-agents, remote-development

Score: 7.5/10 (Innovation: 7, Technical: 8, Documentation: 8, Utility: 7)

Cordium is a self-hosted, Kubernetes-based sandbox platform that provides isolated environments for developers, AI agents, and CI/CD, with a key differentiator being secretless, identity-based access to infrastructure via Octelium ZTNA. It eliminates credential injection by proxying access at the protocol layer, combining sandbox isolation with policy-driven zero-trust infrastructure access. This approach fills a known gap in secure remote development and agent workloads.

Target audience: backend devs, devops, platform engineers, security engineers

Repository: https://github.com/octelium/cordium · TypeScript · Apache-2.0 · 38 stars

View on Hacker News