by catlifeonmars
7 subcomments
- This tool looks like it unconditionally disables tls verification for upstream requests.
It shells out to mitmproxy with
"--set", "ssl_insecure=true"
This took all of 5 minutes to find reading through main.py on my phone.
https://github.com/jmuncor/sherlock/blob/fb76605fabbda351828...
Edit: In case it’s not clear, you should not use this.
- As someone who just set up mitmproxy to do something very similar, I wish this would've been a plugin/add-on instead of a standalone thing.
I know and trust mitmproxy. I'm warier and less likely to use a new, unknown tool that has such broad security/privacy implications. Especially these days with so many vibe-coded projects being released (no idea if that's the case here, but it's a concern I have nonetheless).
- This is great.
When I work with AI on large, tricky code bases I try to do a collaboration where it hands off things to me that may result in large number of tokens (excess tool calls, unprecise searches, verbose output, reading large files without a range specified, etc.).
This will help narrow down exactly which to still handle manually to best keep within token budgets.
Note: "yourusername" in install git clone instructions should be replaced.
by david_shaw
2 subcomments
- Nice work! I'm sure the data gleaned here is illuminating for many users.
I'm surprised that there isn't a stronger demand for enterprise-wide tools like this. Yes, there are a few solutions, but when you contrast the new standard of "give everyone at the company agentic AI capabilities" with the prior paradigm of strong data governance (at least at larger orgs), it's a stark difference.
I think we're not far from the pendulum swinging back a bit. Not just because AI can't be used for everything, but because the governance on widespread AI use (without severely limiting what tools can actually do) is a difficult and ongoing problem.
- You don't need to mess with certificates - you can point CC at a HTTP endpoint and it'll happily play along.
If you build a DIY proxy you can also mess with the prompt on the wire. Cut out portions of the system prompt etc. Or redirect it to a different endpoint based on specific conditions etc.
by syntaxing
2 subcomments
- It’s actually really easy to use mitmproxy as a…proxy. You set it up as a SOCKS proxy (or whatever) and point your network or browser to the proxy. I did this recently when a python tool was too aggressive on crawling the web and the server would reject me. Forced my session to limit 5 requests per second and it worked rather than finding the exact file to change in the library. Just do the same to your browser and then turn on the capture mode and you’ll see the requests
- I use litellm (slightly modified to allow cloud code telemetry pass through) and langfuse.
There is no need for MitM, you can set Api base address to your own proxy in all the coding assistants (at least all I know - Claude Code, opencode, gemini, vc plugin).
The changes I made allow use of the models endpoint in litellm at the same base url as telemetry and passing through Claude Max auth. This is not about using your Max with another cli tool, but about recording everything that happens.
There is a tool that can send CC json logs to langfuse but the results are much inferior. You loose parts of the tool call results, timing info etc.
I'm quite happy with this. If anyone is interested I can post a github link.
- I usually have small mini-pc with at least two ethernet ports and configure it as a transparent bridge sitting between my desktop and the router/switch. Give the bridge a local IP, set up some packet inspection stuff, and you can easily monitor anything and everything going in and out. It's not all I use, but it's one part.
I also run ai models locally and like to verify that things aren't talking to the internet if they aren't supposed to be.
by canadiantim
0 subcomment
- Reminds me of claude-trace: https://simonwillison.net/2025/Jun/2/claude-trace/
- A more advanced LLM API proxy with a nice dashboard: https://github.com/bazumo/clancy
- Activate controlled folder access and filesystem access to see what is trying to change every time loading and using a llm.
Most LLM models are programmed to call home at first loading.
Then the libs you are loading them with also log and smt looking to send bytes (check with firewall for details).
HugstonOne uses Enforced Offline policy/ Offline switch because of that.
Our Users are so happy lately :) and will realize it clearly in the future.
by vitorbaptistaa
1 subcomments
- That looks great! Any plans on allowing exports to OpenTelemetry apps like Arize Phoenix? I am looking for ways to connect my Claude Code using Max plan (no API) to it and the best I found was https://arize.com/blog/claude-code-observability-and-tracing..., but it seems kinda overweight.
- Pretty slick. I've been wanting something like this that gets stored with a hash that is stored in the corresponding code change commit message. It'd be good for postmortems of unnoticed hallucinations, and might even be useful to "revive" the agent and see if it can help debug the problem it created.
by mrbluecoat
2 subcomments
- So is it just a wrapper around MitM Proxy?
by winchester6788
0 subcomment
- interesting that you chose to go the MITM way.
https://github.com/quilrai/LLMWatcher
here is my take on the same thing, but as a mac app and using BASE_URL for intercepting codex, claude code and hooks for cursor.
by FEELmyAGI
1 subcomments
- Dang how will Tailscale make any money on its latest vibe coded feature [0] when others can vibe code it themselves? I guess your SaaS really is someones weekend vibe prompt.
[0]https://news.ycombinator.com/item?id=46782091
- I understand this helps if we have our own LLM run time. What if we use external services like ChatGPT / Gemini (LLM Providers)? Shouldn't they provide this feature to all their clients out of the box?
by maxkfranz
2 subcomments
- Could you use an approach like this much like a traditional network proxy, to block or sanitise some requests?
E.g. if a request contains confidential information (whatever you define that to be), then block it?
- This is fantastic. Claude doesn't make it easy to inspect what it's sending - which would actually be really useful for refining the project-specific prompts.
- Amusingly, I had the same question and asked Claude Code to vibe code me something similar. :)
- I built something similar after seeing this post: https://wiretaps.ai (repo: https://github.com/marcosgabbardo/wiretaps)
Different approach:
- No TLS verification bypass — works by setting OPENAI_BASE_URL
- Built-in PII detection (SSN, credit cards, emails, phone numbers across ~20 countries)
- Crypto detection (BTC/ETH addresses, private keys, seed phrases)
- SQLite by default, zero config: pip install wiretaps && wiretaps start
Still early (v0.3), but the PII detection is solid — 45+ regex patterns for global compliance (GDPR, LGPD, etc).
Would love feedback from folks here.
- Nice work! Do i need to update Claude Code config after start this proxy service?
- Or we could just demand agents that offer this level of introspection?
- LiteLLM does this, and can do a lot more beyond that.
by hunter-xue
0 subcomment
- more vibe coding tools support will be better, or capture any apps will more awesome
by andrewstuart
1 subcomments
- What about SSL/certificates ?
- The amount of AI slop hitting the HN front page is getting out of hand.
Then you open the comments and there are obvious LLM bots commenting on it.
Wonder if this is the end of HN.
- Say it with me:
If I wanted an AI written tool for this, I would have prompted an AI, not opened HN.
by someguy101010
1 subcomments
- Does this support bedrock?
- [dead]
by asyncadventure
2 subcomments
- [dead]
by lifetimerubyist
1 subcomments
- lmao WTAF is this?
build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/build/lib/sherlock
Hacker News