Mirogate Open Source

Open-source projects that show how Mirogate thinks about reliable systems.

These projects are designed to be useful on their own: secure AI engineering frameworks, cascaded secure-coding and web performance skills for AI agents, auditing public trust signals, defending Worker-backed forms, handling browser risk signals, hardening a new cloud server, migrating a browser-identification dependency with less risk, and building bilingual enterprise forms that can survive production workflows.

GitHub organization Read launch articles

AI securityData boundary

secure-ai-engineering-framework

A high-security AI engineering framework: GPT-5.5 for code, Claude Opus for review, local models for sensitive data, private context packs, synthetic mocks, and secure-code checks.

Project page · README

AI securityCodex skill

secure-code-skill-cascade

A cascaded, editable secure-coding skill system for AI agents: OWASP, CWE, auth, input, data, dependencies, cloud, and AI-agent security modules.

Project page · README

AI performanceLighthouse

web-performance-skill-cascade

A cascaded web performance skill system and CLI toolkit for AI agents: Lighthouse analysis, Core Web Vitals, budgets, JavaScript, media, caching, and CI checks.

Project page · README

Web securityCrawler readiness

web-security-baseline-audit

A small CLI that checks whether public pages expose the trust basics search engines, AI crawlers, and security reviewers expect to see.

Project page · README

CloudflareAbuse defense

cloudflare-worker-abuse-defense-kit

Worker patterns for public forms and lightweight APIs: KV rate limiting, Turnstile verification, honeypots, freshness checks, and safe JSON responses.

Project page · README

Risk signalsFingerprintJS

fingerprintjs-risk-signal-lab

An unofficial defensive lab for turning browser visitor and abuse signals into explainable server-side decisions.

Project page · README

Cloud securityCodex skill

secure-droplet-bootstrap

A lockout-safe hardening kit for new DigitalOcean Ubuntu droplets: SSH, firewall, updates, baseline checks, and a Codex skill for assisted setup.

Project page · README

Readiness labFingerprintJS

fingerprintjs-v6-readiness-lab

An unofficial readiness checklist and contract-test lab for teams preparing browser-identification code for a future major FingerprintJS upgrade.

Project page · README

Bilingual UXCloudflare Worker

bilingual-enterprise-form-kit

Arabic and English form patterns with RTL/LTR behavior, validation, honeypot protection, rate-limit examples, and accessible labels.

Project page · README

Credibility standard

Each project needs to be boring in the right ways.

  • Clear README, license, security notes, and changelog from day one.
  • Small test or verification command so a clean clone can prove the project works.
  • Article and social posts that explain tradeoffs without overstating capability.
  • Maintenance signals: issue templates, release notes, and visible updates after launch.