
Oso
Cerbos
authzed
Aserto
Warrant
Ory
Permit.io
Topaz.sh
Bytesafe
Verdaccio
vulert
Byteimpulse
Web Development and Digital Services
Aident.ai
Synk.io
BitBalloon
Drop Oso Cloud into your apps to quickly add roles, sharing, fine-grained access, or any other access model you can think of.
Oso
BytesafeNo Bytesafe videos yet. You could help us improve this page by suggesting one.
Bytesafe might be a bit more popular than Oso. We know about 10 links to it since March 2021 and only 7 links to Oso. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
When the third case starts popping up, that's when an authorization provider like Oso or Permit.io starts to sound appealing. Centralized, easily readable authorization logic combined with easy queries for "what users are allowed to perform this action?" sounds great when your authorization logic starts to get a bit too complex. And we're finding a few cases where our authorization logic is getting too hard to... - Source: dev.to / almost 2 years ago
I know of warrant.dev, osohq.com, and Ory Keto but I don't see that these evaluate based on attributes. Source: over 3 years ago
Oso supports applying authorization logic at the ORM layer so that you can efficiently authorize entire data sets. For example, suppose you have millions of posts in a social media application created by thousands of users, and regular users are only authorized to view posts from their friends. It would be inefficient to fetch all of the posts and authorize them one by one. It would be much more efficient to... Source: almost 5 years ago
Oso's Node library now provides a configuration-based approach to adding role-based access control (RBAC) to your application. This new library speeds up the time it takes to build fine-grained permissions using roles and related patterns. Here are the docs + quickstart. Source: almost 5 years ago
> It's crazy this still is part of the stack where there are no great solutions. Seems like a few others have come to the same conclusion :) We're working on this at Oso (https://osohq.com) - I'm the CTO. Oso is an open source framework for authorization. Policies can reference application directly, so any authorization decisions can be made dynamically based on the data. And your data doesn't need to leave your... - Source: Hacker News / about 5 years ago
Another option is to use a Dependency Firewall, such as Bytesafe, which allows you to quarantine unwanted open source packages with vulnerabilities or non-compliant licenses. The platform provides a policy engine where you define the open source usage and security rules and the Dependency Firewall does the enforcement. - Source: dev.to / over 3 years ago
There are a few companies in this space that are trying to do the "Security Seal of Approval" thing to various degrees. Tidelift is one company that has a bunch of "catalogs"[0] of packages. I'm not sure how their package metadata is generated though -- maybe semi-manually? There is also Bytesafe[1] which is supposed to help give you a way to "firewall" yourself from unapproved dependencies. I don't think they... - Source: Hacker News / almost 4 years ago
I was trying bytesafe.dev recently and it was good for me, as it would stop the npm install of any package that had a security issue. But now that I am out of the free trial, it is to limited for me without paying for an upgraded plan. And their support never replies to my requests. Source: over 4 years ago
These steps will let you get your own private repository using Bytesafe:. - Source: dev.to / over 4 years ago
When using private repositories from Bytesafe, public dependencies will be proxied, pulling any required (and allowed) version into your private Maven repository. Using public repositories like Maven Central as an upstream makes sure you can access your organization's required open source dependencies - while maintaining security and control. - Source: dev.to / over 4 years ago
Cerbos - Cerbos helps teams separate their authorization process from their core application code, making their authorization system more scalable, more secure and easier to change as the application evolves.
Verdaccio - Verdaccio is a lightweight private npm proxy registry built in Node.js
authzed - The platform to store, compute, and validate app permissions
vulert - Vulert notifies you if a SECURITY ISSUE is found in any of the open-source software you use. No installation needed.
Aserto - Fine-grained, scalable authorization in minutes
Byteimpulse - Modern Digital Solutions for Business Growth