soma
Verified Safeby trysoma
Overview
An agent orchestration platform that manages tools (providers/functions), credentials, authentication, and facilitates agent-to-agent (A2A) communication and task management. It also supports secure storage of secrets and environment variables, with a focus on fault-tolerance via Restate.
Installation
soma devEnvironment Variables
- SOMA_SERVER_SOCK
- RESTATE_SERVICE_PORT
- SOMA_SERVER_BASE_URL
- OPENAI_API_KEY
- DB_CONN_STRING
- DB_AUTH_TOKEN
- RESTATE_ADMIN_ADDRESS
- RESTATE_INGRESS_ADDRESS
- RESTATE_ADMIN_TOKEN
Security Notes
The system implements robust encryption for credentials and secrets using envelope encryption with support for AWS KMS and local keys. Authentication mechanisms include API keys and OAuth/OIDC with role-based access control. Dynamically generated SDK server code imports predefined agent/function logic, mitigating direct code injection risks from arbitrary client-side input. The server communicates via HTTP/2 and supports TLS. While generally well-designed for security, misconfigurations in access control or encryption key management could introduce vulnerabilities. No direct 'eval' of untrusted user input was observed for execution paths.
Similar Servers
trigger.dev
Local development and AI agent interface for Trigger.dev workflows, enabling Python script execution and managing tasks, runs, and deployments.
agentgateway
A flexible API gateway designed for routing and managing network traffic, with specialized capabilities for integrating AI/LLM models, Model Context Protocol (MCP) agents, and Agent-to-Agent (A2A) communications through configurable listeners, routes, and policies.
arcade-mcp
A framework and collection of toolkits for building and deploying AI agent servers that integrate with various external services.
pg-aiguide
Provides AI-optimized PostgreSQL expertise through semantic search and curated best-practice skills for coding assistants.