Écluse
A draughtsman's section of a canal lock: a barge of stacked shipping containers waits in the low chamber below the closed gate.

Écluse

A supply-chain resilience proxy for package registries, the controlled passage every dependency clears before it reaches your build.

I leaned on an LLM heavily to build this, during bootstrapping, behind a documented process. Here's how, and how to verify it.

Why Écluse?

The problem, the resilience-not-detection bet, and the design that follows.

Operating Écluse

Deploy it, connect your clients, and lock down network egress.

Alternatives

Other tools in this space, and when they might suit you better.

API reference

The library Haddock, auto-published from main.

Source repository

The code, the architecture docs, and the roadmap on GitHub.