# Cordon

## Docs

- [cordon doctor](https://docs.codezero.io/cli/doctor.md): Diagnose common setup issues.
- [cordon env](https://docs.codezero.io/cli/env.md): Print scope-aware env vars to route traffic through cordon.
- [cordon integration](https://docs.codezero.io/cli/integration.md): Enable or disable tool integrations without re-running full setup.
- [cordon listener](https://docs.codezero.io/cli/listener.md): Add, edit, list, show, and remove PostgreSQL listeners in cordon.toml.
- [cordon route](https://docs.codezero.io/cli/route.md): Add, edit, list, show, and remove routes in cordon.toml.
- [cordon secret](https://docs.codezero.io/cli/secret.md): Manage secrets in the OS keyring.
- [cordon service](https://docs.codezero.io/cli/service.md): Install and manage cordon as a background service.
- [cordon setup](https://docs.codezero.io/cli/setup.md): Interactive setup — generates certificates, creates config, and configures integrations.
- [cordon start](https://docs.codezero.io/cli/start.md): Start the proxy server.
- [cordon status](https://docs.codezero.io/cli/status.md): Show running cordon instances and their health.
- [cordon stop](https://docs.codezero.io/cli/stop.md): Stop a running cordon proxy.
- [cordon trust / untrust](https://docs.codezero.io/cli/trust.md): Manage the CA certificate in the system trust store.
- [cordon wait](https://docs.codezero.io/cli/wait.md): Wait for the proxy to be ready before starting your application.
- [Configuration Overview](https://docs.codezero.io/configuration/overview.md): The cordon.toml config file controls which routes are proxied and how credentials are injected.
- [Routes](https://docs.codezero.io/configuration/routes.md): Configure which hosts are intercepted and how credentials are injected.
- [Secret Sources](https://docs.codezero.io/configuration/secret-sources.md): Configure where cordon fetches credentials — 1Password or the OS keyring.
- [TLS](https://docs.codezero.io/configuration/tls.md): How cordon intercepts HTTPS traffic using a local CA certificate.
- [Claude Code](https://docs.codezero.io/guides/claude-code.md): Set up cordon to give Claude Code secure API access without exposing secrets.
- [Codex](https://docs.codezero.io/guides/codex.md): Set up cordon to give OpenAI Codex secure API access without exposing secrets.
- [Database Connections](https://docs.codezero.io/guides/databases.md): Inject credentials into PostgreSQL connections at the wire protocol level.
- [Any tool (generic)](https://docs.codezero.io/guides/generic.md): Route any application through cordon using environment variables.
- [Hermes Agent](https://docs.codezero.io/guides/hermes.md): Set up cordon to give Hermes Agent secure API access without exposing secrets.
- [MCP Servers](https://docs.codezero.io/guides/mcp-servers.md): Route MCP server traffic through cordon for transparent credential injection.
- [1Password](https://docs.codezero.io/guides/onepassword.md): Use 1Password as Cordon's credential backend — setup, configuration, security model, and operational guidance.
- [Process Management](https://docs.codezero.io/guides/process-management.md): Run cordon alongside your application using Procfiles, launchd, or systemd.
- [SDK Compatibility](https://docs.codezero.io/guides/sdk-compatibility.md): Which HTTP clients and AI SDKs work with cordon out of the box, and how to configure the ones that don't.
- [Installation](https://docs.codezero.io/installation.md): Install cordon via npm.
- [Introduction](https://docs.codezero.io/introduction.md): The credential containment layer that mediates credential usage at the moment of need. Applications, agents, and pipelines never hold real secrets.
- [Quickstart](https://docs.codezero.io/quickstart.md): Get cordon running and proxying your first API request in 5 minutes.
- [Security Model](https://docs.codezero.io/security/overview.md): Architecture, design principles, and trust boundaries for credential injection.
- [OWASP Risk Coverage](https://docs.codezero.io/security/owasp.md): How Cordon addresses risks identified by OWASP across agentic AI, LLM, web, API, and CI/CD security frameworks.
- [Threat Model](https://docs.codezero.io/security/threat-model.md): Systematic analysis of threats, mitigations, and residual risks using the STRIDE framework.

## OpenAPI Specs

- [openapi](https://docs.codezero.io/api-reference/openapi.json)