deepsecure
Verified Safeby DeepTrail
Overview
Provides a zero-trust security control plane for AI agents, enabling cryptographic identity, authenticated ephemeral credentials, fine-grained policy enforcement, secret injection, and secure delegation for AI agent-to-agent interactions.
Installation
docker-compose up -dEnvironment Variables
- DATABASE_URL
- SECRET_KEY
- BACKEND_API_TOKEN
- GATEWAY_URL
- GATEWAY_INTERNAL_API_TOKEN
- CONTROL_PLANE_URL
- REDIS_URL
- GATEWAY_ENCRYPTION_KEY
- MACAROON_SECRET_KEY
- DOCKER_RUNTIME_SECRET
- DEEPTRAIL_CONTROL_URL
- DEEPTRAIL_GATEWAY_URL
- DEEPSECURE_API_TOKEN
Security Notes
The project uses strong cryptographic primitives (Ed25519, Shamir's Secret Sharing) and a robust dual-service architecture with JWT-based authentication. Client-side agent private keys are securely stored in the OS keyring. However, it ships with numerous insecure default values for critical environment variables (e.g., `SECRET_KEY`, `BACKEND_API_TOKEN`, `GATEWAY_INTERNAL_API_TOKEN`, PostgreSQL password, `GATEWAY_ENCRYPTION_KEY`) directly in `docker-compose.yml` and `app/core/config.py`. While the documentation advises changing these for production, their default presence poses a significant risk if not addressed by deployers.
Similar Servers
agentgateway
An API Gateway specialized for agent-to-agent and agent-to-tool communication, providing routing, security, and AI/LLM integration capabilities.
mcp-gateway-registry
Provides a programmatic interface to interact with the main MCP Gateway Registry API, enabling tasks like registering/toggling services, managing groups/users, and intelligently discovering tools across registered services using semantic search and access control.
mcpproxy-go
MCPProxy super-charges AI agents with intelligent tool discovery, massive token savings, and built-in security quarantine against malicious Model Context Protocol (MCP) servers.
AgentUp
A developer-first framework for building, deploying, and managing AI agents, bringing Docker-like consistency and operational ease to AI agent development.