Vaikora for Code Assistants

AI code assistants ship more code per developer per day, but they also propose actions that span the full risk spectrum: read a public README, refactor a file, delete a migration, merge a pull request, push to production. Vaikora enforces deterministic policy on every proposed agent action.

Get a demo · Open-source gateway on GitHub · MCP server

The CRUD matrix for code

Reads of public source: auto-approve with logging. Edits to dev branches: auto-approve. Edits to release branches: developer Slack OOB approval. Deletes, force-pushes, and merges to protected branches: SecOps escalation with the agent held in WAIT state. The matrix ships pre-built and is configurable per repo or per team.

Credential and secret blocking

The Vaikora MDP module blocks the embedding of AWS keys, GCP service account JSON, OpenAI keys, Slack tokens, and private keys in prompts or in code suggestions. Static patterns plus learned heuristics. Decisions land in under 500ms.

Compatibility

Compatible with Cursor, GitHub Copilot, Claude Code, Codeium, Cody, and any code-assistant that issues HTTP calls or MCP requests. The MCP server integration is one configuration line for MCP-capable clients.

Audit and review

Every agent decision is signed into the audit chain with the diff, the matched policy, the decision, and the developer who triggered it. Engineering managers and SecOps get the same replay surface.

Related pages