Gonka Broker / Decentralized AI API

Security

Account, API-key, billing, and gateway safeguards used by gonka.broker.

Gateway safeguards

  • HTTPS API transport
  • Hashed customer API credentials
  • Prepaid balances, daily limits, and concurrency controls
  • Bounded retries and an upstream kill switch
  • Reasoning-field sanitization before responses reach clients
  • Integer accounting for usage and balance records

Protect your API key

Keep API keys in environment variables or a secret manager. Do not embed a key in public browser JavaScript or source control. Revoke and replace a suspected key through support.

Billing records

Successful requests are charged against the prepaid balance using integer minor units. Review the balance and current rate in the authenticated customer dashboard.

Responsible disclosure

A dedicated security reporting channel will be published before general availability. Do not submit vulnerability details through account registration.