Make API keys worthless to steal.

Pick how you install

Solo dev

pipx install worthless. Done in 90 seconds.

Get started →

Docker

Signed multi-arch image from GHCR. No build.

Pull image →

Claude Code, Cursor, Windsurf

MCP server. Point your editor’s SDK at the proxy.

Wire it up →

GitHub Actions

Protect keys during CI runs. Scan for leaks.

Add to CI →

How it works

Three invariants. No exceptions.

• Client-side splitting. Your key is split on your machine. The server only ever sees half.
• Gate before reconstruction. Budget exceeded? The key never forms. Zero provider calls.
• Direct upstream. The reconstructed key calls the LLM provider directly. It never returns to the proxy.

Read the security model and wire protocol for the full picture.