Enterprise Security by Design
EDDI eliminates entire classes of security vulnerabilities by design. There is no eval(), no code execution blocks, and no dynamic code injection — agent behavior is defined through declarative JSON configuration only.
Security Features
- Zero eval() — No dynamic code execution (eliminates CVSS 10.0 RCE risks)
- OIDC/Keycloak — Enterprise authentication and authorization
- Vault Integration — Secure secret management for API keys
- Path Traversal Protection — Input validation at every boundary
- URL Validation — Prevent SSRF and redirect attacks
- Cryptographic Audit Trails — Immutable, tamper-evident operation logs
- EU AI Act Ready — Built-in governance capabilities for regulatory compliance