{"id":48631619,"url":"https://github.com/adhit-r/aran","last_synced_at":"2026-04-09T05:31:43.068Z","repository":{"id":298577721,"uuid":"1000416472","full_name":"adhit-r/aran","owner":"adhit-r","description":"Aran API Sentinel: Your AI-Powered API Security \u0026 Governance Platform","archived":false,"fork":false,"pushed_at":"2025-11-11T18:41:14.000Z","size":33350,"stargazers_count":3,"open_issues_count":21,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-11-11T20:28:44.574Z","etag":null,"topics":["ai","api","cybersecurity","ml","security"],"latest_commit_sha":null,"homepage":"https://deepwiki.com/radhi1991/aran/1-overview","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/adhit-r.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":null,"code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":".github/SECURITY.md","support":null,"governance":null,"roadmap":"ROADMAP.md","authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-11T18:43:22.000Z","updated_at":"2025-11-11T18:41:08.000Z","dependencies_parsed_at":"2025-06-11T21:25:27.508Z","dependency_job_id":"4224249b-b8a7-4db2-bd23-ab6d48063f61","html_url":"https://github.com/adhit-r/aran","commit_stats":null,"previous_names":["radhi1991/aran","adhit-r/aran"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/adhit-r/aran","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/adhit-r%2Faran","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/adhit-r%2Faran/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/adhit-r%2Faran/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/adhit-r%2Faran/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/adhit-r","download_url":"https://codeload.github.com/adhit-r/aran/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/adhit-r%2Faran/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31587770,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-08T14:31:17.711Z","status":"online","status_checked_at":"2026-04-09T02:00:06.848Z","response_time":112,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ai","api","cybersecurity","ml","security"],"created_at":"2026-04-09T05:31:42.392Z","updated_at":"2026-04-09T05:31:43.040Z","avatar_url":"https://github.com/adhit-r.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Aran API Sentinel\n\n## Enterprise-Grade API Security \u0026 Governance Platform\n\n```mermaid\ngraph TD\n    A[API Requests] --\u003e B{Threat Detection}\n    B --\u003e|Malicious| C[Incident Response]\n    B --\u003e|Benign| D[Process Request]\n    C --\u003e E[Alerting \u0026 Logging]\n    E --\u003e F[Remediation]\n    F --\u003e G[Reporting \u0026 Analytics]\n```\n\n## Table of Contents\n- [Key Features](#key-features)\n- [Technology Stack](#technology-stack)\n- [Quick Start](#quick-start)\n- [Architecture](#architecture)\n- [Configuration](#configuration)\n- [Development](#development)\n- [License](#license)\n\n## Key Features\n\n### 🛡️ API Security \u0026 Protection\n- **API Discovery \u0026 Inventory**\n  - Automated API endpoint discovery\n  - Comprehensive API catalog with versioning\n  - Real-time API traffic monitoring\n  - Schema validation and drift detection\n\n- **Threat Detection \u0026 Prevention**\n  - Real-time API traffic analysis\n  - OWASP API Security Top 10 protection\n  - Rate limiting and throttling\n  - Bot detection and mitigation\n  - Anomaly detection using machine learning\n\n- **Authentication \u0026 Authorization**\n  - OAuth 2.0 and OpenID Connect support\n  - API key management\n  - JWT validation\n  - Role-based access control (RBAC)\n  - Fine-grained permissions\n\n### 🏢 Enterprise Features\n- **Multi-tenancy**\n  - Isolated environments for different teams/organizations\n  - Custom security policies per tenant\n  - Tenant-specific analytics and reporting\n  - Centralized administration\n\n- **Compliance \u0026 Governance**\n  - Automated compliance checks (GDPR, HIPAA, PCI-DSS)\n  - Audit logging and trail\n  - Data classification and protection\n  - Policy as Code support\n\n### 🤖 AI \u0026 Automation\n- **Intelligent Threat Detection**\n  - Anomaly detection using ML models\n  - Behavioral analysis of API traffic\n  - Predictive threat intelligence\n  - Automated incident response\n\n- **AI-Powered Analysis**\n  - Natural language API documentation\n  - Automated API testing\n  - Smart traffic pattern recognition\n  - Root cause analysis\n\n### 📊 Analytics \u0026 Reporting\n- **Real-time Dashboards**\n  - API performance metrics\n  - Security incident tracking\n  - Traffic analysis\n  - User activity monitoring\n\n- **Custom Reports**\n  - Scheduled report generation\n  - Export to multiple formats (PDF, CSV, JSON)\n  - Custom metrics and KPIs\n  - SLA monitoring\n\n### 🛠️ Integration \u0026 Extensibility\n- **Threat Intelligence Feeds**\n  - Integration with leading threat feeds\n  - Custom feed support\n  - Automatic IOC (Indicators of Compromise) updates\n  - Threat reputation scoring\n\n- **Developer Experience**\n  - OpenAPI/Swagger support\n  - API mocking\n  - Automated documentation\n  - SDK generation\n\n### 🔄 Workflow Automation\n- **Incident Response**\n  - Automated alerting\n  - Playbook integration\n  - Remediation workflows\n  - Escalation policies\n\n- **CI/CD Integration**\n  - Shift-left security\n  - Automated security testing\n  - Policy enforcement in pipelines\n  - Deployment gating\n\n## Technology Stack\n\n### Frontend\n| Technology | Purpose |\n|------------|---------|\n| Next.js 15 | React framework with App Router |\n| React 18 | UI components and hooks |\n| Tailwind CSS | Utility-first styling |\n| Radix UI | Accessible component primitives |\n\n### Backend\n| Technology | Purpose |\n|------------|---------|\n| PocketBase | Real-time backend with auth |\n| SQLite | Local database for metadata |\n| Bun | JavaScript runtime and package manager |\n\n## Quick Start\n\n### Prerequisites\n- [Bun](https://bun.sh/) (\u003e=1.0.0)\n- [Git](https://git-scm.com/)\n- [Podman](https://podman.io/) (optional)\n\n### Local Development\n\n```bash\n# Clone the repository\ngit clone https://github.com/radhi1991/aran.git\ncd aran\n\n# Install dependencies\nbun install\n\n# Run setup (downloads PocketBase, creates collections, seeds data)\nbun run setup\n\n# Start development server\nbun run dev\n```\n\n### Access URLs\n- **Frontend**: http://localhost:9002\n- **PocketBase Admin**: http://127.0.0.1:8090/_/\n- **Documentation**: https://radhi1991.github.io/aran/\n\n## Architecture\n\n### Multi-Tenant Design\n```mermaid\ngraph LR\n    A[Client] --\u003e B[Load Balancer]\n    B --\u003e C[API Gateway]\n    C --\u003e D[Authentication]\n    D --\u003e E[Rate Limiter]\n    E --\u003e F[Threat Detection]\n    F --\u003e G[Business Logic]\n    G --\u003e H[Database]\n```\n\n### Security Features\n1. **Authentication**\n   - JWT-based authentication\n   - Role-based access control\n   - Session management\n\n2. **API Protection**\n   - Rate limiting\n   - Request validation\n   - Data sanitization\n\n## Configuration\n\n### Environment Variables\n```bash\n# Core\nNODE_ENV=development\nPORT=3000\n\n# Database\nDATABASE_URL=file:./dev.db\n\n# Authentication\nNEXTAUTH_SECRET=your-secret-key\nNEXTAUTH_URL=http://localhost:3000\n\n# Email (for notifications)\nSMTP_HOST=smtp.example.com\nSMTP_PORT=587\nSMTP_USER=user@example.com\nSMTP_PASSWORD=your-password\n```\n\n## Development\n\n### Available Scripts\n| Command | Description |\n|---------|-------------|\n| `bun run dev` | Start development server |\n| `bun run build` | Build for production |\n| `bun run start` | Start production server |\n| `bun run lint` | Run linter |\n| `bun run format` | Format code |\n| `bun run test` | Run tests |\n\n## Project Planning \u0026 Improvements\n\nThis project tracks improvements and future development:\n\n- **[ROADMAP.md](./ROADMAP.md)** - Complete project roadmap with 22 phases of development\n- **[IMPROVEMENTS.md](./IMPROVEMENTS.md)** - Detailed analysis of 45+ improvement features across 8 categories\n- **[QUICK_WINS.md](./QUICK_WINS.md)** - High-impact, low-effort improvements (4 weeks of quick wins)\n- **[CONTRIBUTING.md](./CONTRIBUTING.md)** - Contribution guidelines\n\n### Current Focus\n- **Phase 15**: Testing \u0026 Quality Assurance (Unit, Integration, E2E tests)\n- **Phase 16**: Developer Experience (Documentation, tooling, automation)\n- **Phase 17**: Monitoring \u0026 Observability (Error tracking, logging, metrics)\n\nSee [ROADMAP.md](./ROADMAP.md) for complete implementation plan.\n\n## License\n\nThis project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.\n\n---\n\n\u003cdiv align=\"center\"\u003e\n  \u003cp\u003eAran API Sentinel - Enterprise API Security Platform\u003c/p\u003e\n  \u003cp\u003e 2025 Aran Security. All rights reserved.\u003c/p\u003e\n\u003c/div\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fadhit-r%2Faran","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fadhit-r%2Faran","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fadhit-r%2Faran/lists"}