{"id":13903178,"url":"https://github.com/quicsec/quicsec","last_synced_at":"2025-04-12T00:31:38.293Z","repository":{"id":149512775,"uuid":"534290556","full_name":"quicsec/quicsec","owner":"quicsec","description":"HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0-Okta), AuthZ (OPA), defense-in-depth (WAAP/WAF),  and observability (metrics, logs, alerting, dashboard).","archived":false,"fork":false,"pushed_at":"2024-03-20T19:59:39.000Z","size":771,"stargazers_count":74,"open_issues_count":12,"forks_count":3,"subscribers_count":4,"default_branch":"main","last_synced_at":"2025-03-25T20:46:16.733Z","etag":null,"topics":["auth0","authentication","cert-manager","cloud-native","grafana","http","http3","kubernetes","loki","metrics","mtls","oidc","okta","open-policy-agent","prometheus","quic","security","spiffe","waf","zero-trust"],"latest_commit_sha":null,"homepage":"https://quicsec.io/","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/quicsec.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING_CODE.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"docs/security/security-jwt.md","support":null,"governance":"GOVERNANCE.md","roadmap":null,"authors":null,"dei":null}},"created_at":"2022-09-08T16:06:14.000Z","updated_at":"2025-02-23T20:13:49.000Z","dependencies_parsed_at":"2024-01-29T16:13:08.634Z","dependency_job_id":"6f23c9ad-43c1-4de2-8948-354e42a22900","html_url":"https://github.com/quicsec/quicsec","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/quicsec%2Fquicsec","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/quicsec%2Fquicsec/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/quicsec%2Fquicsec/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/quicsec%2Fquicsec/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/quicsec","download_url":"https://codeload.github.com/quicsec/quicsec/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248501278,"owners_count":21114642,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["auth0","authentication","cert-manager","cloud-native","grafana","http","http3","kubernetes","loki","metrics","mtls","oidc","okta","open-policy-agent","prometheus","quic","security","spiffe","waf","zero-trust"],"created_at":"2024-08-06T22:01:44.066Z","updated_at":"2025-04-12T00:31:37.760Z","avatar_url":"https://github.com/quicsec.png","language":"Go","readme":"# QuicSec\n\n## Why\n\n\n\nQuicSec middleware streamlines application migration to HTTP/3 and automates the injection of plugins for identity/certificate management and rotation, authentication/authorization and observability. The current QuicSec [Feature List](docs/Features.md) lists the current supported capabilities.\n\n## Overview\n\nUpgrading your application to HTTP/3 can be done in 3 steps\n1. Build: Import QuicSec HTTP library  \n2. Run with automated identity \u0026 security policies \u0026 observability \u0026 connection management\n\n\n## Detailed How To\n\n1. Build\n\nUpdate your HTTP call with QuicSec Middleware [Detailed guide](https://quicsec.io/docs/porting)\n\n![Update HTTP Service](https://quicsec.io/images/desktop/quicsec-listen-and-serve.png)\n\n2. Run\n\nEnable identity, security and observability plugins dynamically at runtime.\n\n* Enable pluggable workload identity solution (E.g., [cert-manager-csi-spiffe](https://github.com/quicsec/quicsec/blob/main/examples/bookstore/CERT-MANAGER.md))\n* (Optional) Enable pluggable external security/policy engines and WAFs or use built-in [policy configuration](https://quicsec.io/docs/use-cases/mtls)\n* (Optional) Integrate with runtime observability platforms for log aggregation, telemetry, dashboards or use built-in [observability platform example](https://quicsec.io/docs/use-cases/observability)\n\n## Sample App: Adding QuicSec to BookStore\n\n### Running Applications with QuicSec\n\nThe [Bookstore Example](https://quicsec.io/docs/example-bookstore) illustrates how a set of microservices can be migrated with a one-line change to add HTTP/3 support, and in the process gain automatic identity management (certificate injection and rotation), security (mTLS with AuthN/Z) and observability (metrics, logs, performance analysis).\n\nIn addition, application access over HTTP/3 improves latency by up to a third vs using previous versions of HTTP.\n","funding_links":[],"categories":["security"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fquicsec%2Fquicsec","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fquicsec%2Fquicsec","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fquicsec%2Fquicsec/lists"}