starpod-proxy 0.3.0

Opaque secret proxy for Starpod - intercepts outbound HTTP and swaps tokens for real values

Coverage
100%
24 out of 24 items documented2 out of 13 items with examples
Size
Source code size: 123.28 kB This is the summed size of all the files inside the crates.io package for this release.
Documentation size: 1.1 MB This is the summed size of all files generated by rustdoc for all configured targets
Ø build duration
this release: 1m 4s Average build duration of successful builds.
all releases: 1m 7s Average build duration of successful builds in releases after 2024-10-23.
Links
Homepage
sinaptik-ai/starpod
68 11 0
crates.io
Dependencies
Versions
- 0.3.1 (2026-03-30)
- 0.3.0 (2026-03-30)
Owners

Opaque secret proxy for Starpod.

A local HTTP proxy that intercepts outbound traffic from tool subprocesses, finds starpod:v1: opaque tokens, decrypts them, verifies host binding, and replaces them with real secret values before forwarding.

Features

mitm — HTTPS MITM with ephemeral certificates (scans HTTPS traffic)
netns — Linux network namespace isolation (Phase 4)

Usage

# async fn example() -> starpod_core::Result<()> {
let handle = starpod_proxy::start_proxy(starpod_proxy::ProxyConfig {
    master_key: [0u8; 32],
    data_dir: std::path::PathBuf::from(".starpod/db"),
}).await?;

// Inject into tool subprocesses:
// HTTP_PROXY=http://127.0.0.1:{handle.port()}
// HTTPS_PROXY=http://127.0.0.1:{handle.port()}

// Shutdown when done
handle.shutdown().await;
# Ok(())
# }