120.6K
AI Governance

Govern AI agents on infrastructure you control.

Authenticate every AI request, audit every prompt, and contain agents behind a default-deny network.

Request demoDownload solution brief
Two Column Masthead Background

AI is already in your software development lifecycle. But how do you manage it?

Uncontrolled AI development tools introduce security risk, shadow usage, and rising costs, while blocking AI slows progress and delivery. With Coder, AI agents (bring your own or use Coder Agents) run on self-hosted infrastructure with enforced access controls and centralized audits of every AI interaction.

Visibility and attribution

  • Coder authenticates every AI request and ties it to a named user.
  • Prompts, token usage, models, and tool invocations are logged centrally.
  • Provider API keys never leave the control plane.

Blast radius containment

  • Run agents in isolated ephemeral workspaces behind default-deny networks.
  • Only approved domains and services are accessible.
  • Log every allow and deny centrally.

Self-hosted control

  • Deploy Coder on cloud, on-prem, or air-gapped infrastructure.
  • Integrate with your IdP via OIDC and SCIM.
  • Export audit events from Coder to your SIEM.
We are reliant on Coder right now to roll out Claude Code and Codex since it's the path of least resistance for centralizing model configuration.

Get visibility and control with Coder

  • Govern agent interactions with LLM providers for auditing and cost control.

Build with tools you love

Claude
Goose
Aider
Kiro
Gemini
GitHub
OpenCode
OpenAI
Auggie
Sourcegraph Amp
Cursor
Claude
Goose
Aider
Kiro
Gemini
GitHub
OpenCode
OpenAI
Auggie
Sourcegraph Amp
Cursor
Claude
Goose
Aider
Kiro
Gemini
GitHub
OpenCode
OpenAI
Auggie
Sourcegraph Amp
Cursor

Move AI agents into production with Coder. Coder provides a self-hosted control plane for managing model access, agent identity, MCP tools, network egress, and audit visibility across every AI coding agent your developers use.

Bring your own or run Coder Agents

  • Run Claude Code, Codex, or any HTTP agent in self-hosted workspaces behind a default-deny network.
  • Or use Coder Agents on the control plane with no separate deployment.
  • Trigger agents from chat or via API for CI, GitHub Actions, Slack, and Jira.
  • Identity, audit, and credentials apply consistently, so teams can switch vendors without re-architecting.
Workspaces
Coder Agents
Coder Agents UI listing 5 different chats, including both Opus 4.6 Max and Haiku 4.6 models.

Get centralized visibility and auditability

  • Coder's AI Gateway centralizes access for coding agents like Claude Code and Codex.
  • Centralize authentication, user-level tracking, cost monitoring, and audit trails across all developer laptops.
  • Enable compliant AI adoption without slowing developers down.
AI Gateway
Product UI to manage AI usage for your organization in Coder Workspaces. Information about each logged agent includes initiator, prompt, tokens, and model.

Restrict AI agent access by default

  • Coder's Agent Firewall enforces default-deny network policies, restricting which domains and HTTP methods agents can access.
  • Admins define explicit allow lists in templates controlling access to registries, internal services, and external APIs.
  • All policy decisions are logged and streamed to the control plane for centralized auditing.
Agent Firewall
Developer permissions: Repository controls, Network access, Filesystem access. Coding Agent permissions: Allow outbound HTTP/HTTPS to allowlisted domains, Block unproxied access via namespace isolation, Optionally forward audit logs to coderd
Gradient Background
From Day 30 to Day One: How a Global FinTech Is Modernizing Developer Onboarding for 15,000+ Engineers
Fortune 500 Financial Technology logo

Related content

Datasheet: AI Governance Add-On
Datasheet

AI Governance Add-On

See more
Inside the Stack: Secure and Scale AI Coding Agents with Coder
Blog

Inside the Stack: Secure and Scale AI Coding Agents with Coder

See more
How Credit Karma Accelerated Secure, Compliant, and Scalable Data Workflows with Coder. November 12 at 10:00AM PT
Webinar

How Credit Karma Accelerated Secure, Compliant, and Scalable Data Workflows with Coder

See more
State of Development Environments 2025
Whitepaper

State of Development Environments 2025

See more

FAQs

Is Coder compliant with regulations like GDPR or DORA?
Coder helps you meet compliance goals by running entirely within your own infrastructure. This means your data stays where you control it—critical for meeting FedRAMP, GDPR, DORA, and similar requirements.
Is Coder SOC 2 Type II certified?
Does Coder work with my existing tools?
How does Coder support compliance in highly regulated industries like banking?
What IDEs and languages are supported?
Is Coder secure enough for regulated industries?
Can I use Coder with AI coding agents or ML workloads?