llm-config-security
| Crates.io | llm-config-security |
| lib.rs | llm-config-security |
| version | 0.5.0 |
| created_at | 2025-11-21 21:38:12.482169+00 |
| updated_at | 2025-11-21 21:38:12.482169+00 |
| description | Security hardening and validation for LLM Config Manager with input validation, rate limiting, and threat protection |
| homepage | https://github.com/globalbusinessadvisors/llm-config-manager |
| repository | https://github.com/globalbusinessadvisors/llm-config-manager |
| max_upload_size | |
| id | 1944302 |
| size | 144,763 |
GBA (globalbusinessadvisors)
documentation
https://docs.rs/llm-config-manager
README
llm-config-security
Security hardening and validation for LLM Config Manager with input validation, rate limiting, and threat protection.
Features
- Input Validation: Comprehensive validation of user inputs
- Rate Limiting: Token bucket algorithm for API protection
- SQL Injection Prevention: Detection and blocking of SQL injection attempts
- XSS Protection: HTML/JavaScript sanitization
- CSRF Protection: Token-based CSRF prevention
- Password Policies: Configurable password strength requirements
- Secret Detection: Prevent accidental secret exposure
Usage
[dependencies]
llm-config-security = "0.5.0"
use llm_config_security::{Validator, RateLimiter};
// Input validation
let validator = Validator::new();
validator.validate_key("app.database.url")?;
validator.validate_value("SELECT * FROM users")?;
// Rate limiting
let limiter = RateLimiter::new(100, Duration::from_secs(60));
if limiter.check_rate_limit(&client_id).await? {
// Allow request
}
Security Features
- OWASP Top 10 protections
- Constant-time comparisons
- Secure random generation
- Automatic secret redaction
- Security headers enforcement
License
Licensed under the Apache License, Version 2.0.