|
Website | Documentation | YouTube | Discord
From Stacklok
CodeGate is the ultimate toolkit for developers using coding assistants to build AI applications. It streamlines multi-environment workflows, enabling you to consume AI with confidence from development to production. It empowers ongoing AI application management by optimizing model routing, prompt tracking and security enforcement, ensuring privacy, compliance, and robust operational integrity.
AI unlocks new levels of productivity, but you need to use consume with confidence. CodeGate helps you do just that, by providing a suite of features that make AI development safe and efficient.
- Workspaces: Organize and personalize your AI tooling and environments.
- Prompt & Alert History: Track AI suggestions and security insights in one place.
- Model Muxing: Switch seamlessly between AI models per project or route specfic file types to a particular model or provider.
- Custom Instructions: Tailor your AIβs behavior to match your coding style, by providing custom prompts or instructions per project or workspace.
- Prompt Database: Leverage a growing collection of developer-contributed prompts or create and store your own, to make them available across all your projects and workspaces.
π Built-in Security, Zero Effort
- Secrets Protection: Prevent sensitive data from leaking to AI cloud service providers.
- Malicious Package Detection: Block risky dependencies before they reach your code, using Stackloks free AI / ML inteligence threat detection pipeline.
- Command Execution Monitoring: Stop AI-generated shell commands from running unsafe actions within your agent or coding assistant.
- PII Protection: Prevent personally identifiable information from being exposed to AI cloud service providers, such as credit card numbers, social security numbers, and more.
CodeGate is distributed as a Docker container. You need a container runtime like Docker Desktop or Docker Engine. Podman and Podman Desktop are also supported. CodeGate works on Windows, macOS, and Linux operating systems with x86_64 and arm64 (ARM and Apple Silicon) CPU architectures.
These instructions assume the docker CLI is available. If you use Podman,
replace docker with podman in all commands.
To start CodeGate, run this simple command:
docker run --name codegate -d -p 8989:8989 -p 9090:9090 -p 8990:8990 \
--mount type=volume,src=codegate_volume,dst=/app/codegate_volume \
--restart unless-stopped ghcr.io/stacklok/codegate:latestThatβs it! CodeGate is now running locally.
Now it's time to configure your preferred AI coding assistant to use CodeGate See supported AI Coding Assistants and providers
βοΈ For advanced configurations and parameter references, check out the CodeGate Install and Upgrade documentation.
CodeGate includes a web dashboard that provides:
- Manage workspaces and AI model / provider routing rules.
- Track security risks detected by CodeGate.
- Manage project prompts and apply them across all your projects and
workspaces. - History of interactions between your AI coding assistant and your LLM.
Open http://localhost:9090 in your web browser to access the dashboard.
To learn more, visit the CodeGate Dashboard documentation.
Workspaces are a way to organize your AI tooling and environments. You can create multiple workspaces to switch between them as needed.
Workspaces can be used to:
- Switch between different AI models or providers.
- Apply different prompts or instructions to different projects.
- Isolate projects by applying different settings or rules.
Workspaces are then available within all the different AI coding assistants and tools that CodeGate supports (i.e. Aider, Cline, Continue, Copilot, Open-Interpreter, etc.)
The Prompt Database is a collection of prompts that you can use across all your projects and workspaces. You can also contribute your own prompts to the database.
Model Muxing is a feature that allows you to route different workspaces or to different AI models or providers, even down the level of a single file.
CodeGate helps you protect sensitive information from being accidentally exposed to AI models and third-party AI provider systems by redacting detected secrets from your prompts using encryption. Learn more
LLMsβ knowledge cutoff date is often months or even years in the past. They might suggest outdated, vulnerable, or non-existent packages (hallucinations), exposing you and your users to security risks.
CodeGate scans direct, transitive, and development dependencies in your package definition files, installation scripts, and source code imports that you supply as context to an LLM. Learn more
CodeGate performs security-centric code reviews, identifying insecure patterns or potential vulnerabilities to help you adopt more secure coding practices. Learn more
- Local / self-managed:
- Ollama
- Hosted:
- OpenAI and compatible APIs
π₯ Getting started with CodeGate and aider - watch on YouTube
- Local / self-managed:
- Ollama
- LM Studio
- Hosted:
- Anthropic
- OpenAI and compatible APIs
- Local / self-managed:
- Ollama
- llama.cpp
- vLLM
- Hosted:
- Anthropic
- OpenAI and compatible APIs
- The Copilot plugin works with Visual Studio Code (VS Code) (JetBrains is coming soon!)
Unlike other tools, with CodeGate your code never leaves your machine. CodeGate is built with privacy at its core:
- π Everything stays local
- π« No external data collection
- π No calling home or telemetry
- πͺ Complete control over your data
Are you a developer looking to contribute? Dive into our technical resources:
CodeGate is licensed under the terms specified in the LICENSE file.
Love CodeGate? Starring this repository and sharing it with others helps CodeGate grow π±
We welcome contributions! Whether you're submitting bug reports, feature requests, or code contributions, your input makes CodeGate better for everyone. We thank you β€οΈ!
Start by reading our Contributor guidelines.
Made with contrib.rocks.
![@dependabot[bot]](/~https://avatars.githubusercontent.com/in/29110?s=64&v=4){kind=small}
![@github-actions[bot]](/~https://avatars.githubusercontent.com/in/15368?s=64&v=4){kind=small}
