About CitrusGlaze

AI tools are transforming how software gets built. Developers send thousands of prompts every day — and those prompts contain source code, credentials, internal documentation, and proprietary logic.

Enterprise DLP solutions cost $200–536/user/year, take months to deploy, and route your data through their cloud. They weren't built for the way developers actually use AI — CLI tools, code editors, SDK calls, autonomous agents.

CitrusGlaze was built to close that gap. A local MITM proxy that intercepts AI API calls, detects secrets and injection attempts, enforces policies, and logs everything — without sending a single byte to our servers.

Rust + Swift. The security engine is 17 Rust crates with 560+ tests. The macOS desktop app is built with Tauri. Secret detection, policy evaluation, and inspection all happen in Rust for performance and safety.

Local-first. Every AI request is inspected on the developer's machine. No cloud routing, no telemetry, no phone-home. Logs stay in a local SQLite database. The user controls their data completely.

Transparent. The scanner is MIT licensed and fully open source — audit every detection pattern. The proxy is proprietary but runs 100% locally. We believe you should be able to verify what's scanning your data.