A simple HTTP proxy that fogs over naughty URLs
AI Analysis
Smokescreen is an HTTP CONNECT proxy developed by Stripe that enforces hostname and IP-based access controls to safely proxy external traffic while preventing attacks against internal infrastructure. It is specifically designed for enterprises needing centralized, secure egress with per-client ACLs, certificate-based authentication, and stable outbound IP addresses — not a general-purpose proxy for typical users.
Inferred from signals mentioned in the README (tests, CI, type safety) — not a review of the actual code.
AI's overall editorial judgment — not an average of the bars above, can weigh other factors too.
Stripe's egress proxy that blocks SSRF and internal network scans via allowlist and DNS validation
Smokescreen is an HTTP CONNECT proxy built by Stripe to control outbound traffic from internal services. It enforces hostname allowlists, prevents SSRF attacks by validating DNS resolution against public IP ranges, and centralizes egress for stable IP presentation to external partners. Adoption appears limited to organizations with high security and egress control requirements, particularly fintech and SaaS platforms handling webhooks or third-party integrations.
Created by Stripe in 2016, Smokescreen emerged from the company's need to safely proxy webhook traffic and outbound requests while preventing attackers from using internal infrastructure to scan the company's own network. It remains maintained as an open-source tool reflecting Stripe's production practices.
The project gained 1,313 stars over a decade, with minimal acceleration—4 stars in the last week suggests stable, niche adoption rather than rapid growth. The steady maintenance pattern (last push 2026-07-06) indicates it serves a real operational need at Stripe and similar organizations, but has not achieved broad ecosystem adoption outside security-focused deployments.
Explicitly stated in README: 'used at Stripe' for proxying webhooks and egress traffic. No public case studies, customer list, or adoption metrics beyond Stripe's own documentation. Adoption not verified outside Stripe ecosystem, though the tool's maturity (decade-long maintenance) and Stripe's reputation suggest real production use.
Based on README: a single-purpose HTTP CONNECT proxy written in Go that sits between clients and external services. Clients authenticate via mTLS (certificate validation), requests are checked against per-client ACLs, and destination IPs are validated to exclude private/reserved ranges. Appears to use a custom fork of goproxy to enable context passing and granular timeouts. Supports both static allowlists and dynamic IP/CIDR range rules.
README mentions test workflow status badge and Coveralls integration, indicating automated testing is in place, but specific coverage percentage not documented.
Last push on 2026-07-06 (3 days before evaluation date) indicates active maintenance. Test workflow badge present in README. No evidence of issue backlog or frequency provided in README. Appears to be maintained in support of Stripe's production use; unlikely to experience long dormancy, but also unlikely to see rapid feature expansion.
ADOPT IF: your organization needs to centralize HTTP egress, enforce strict hostname allowlists, prevent SSRF attacks via DNS validation, and provide stable outbound IPs to external partners—especially relevant for fintech, webhooks, and high-security SaaS. AVOID IF: you need a general-purpose proxy, consumer VPN, or traffic inspection tool; Smokescreen is narrowly scoped to egress security policy enforcement. MONITOR IF: you are evaluating egress control solutions and want to understand whether Stripe's production-grade tool fits your architecture—maturity and active maintenance make it a credible alternative to building custom solutions, but adoption appears concentrated in similar-scale organizations.
Independent dimensions
Mainstream potential
3/10
Technical importance
7/10
Adoption evidence
4/10
- Adoption appears concentrated at Stripe; limited public evidence of production use elsewhere creates uncertainty about stability in other contexts.
- Single-purpose tool with narrow use case may not justify operational overhead if your organization only needs basic proxy functionality.
- Likely depends on Go 1.x toolchain and custom goproxy fork; maintenance of these dependencies could create friction if upstream breaks compatibility.
- mTLS-based client authentication requires certificate infrastructure; not suitable for environments without PKI.
- No clear documentation of performance limits or horizontal scaling; README does not discuss clustering or load distribution.
Smokescreen will remain a stable, slowly-growing niche tool used primarily by organizations with high-assurance egress requirements and Stripe-like operational maturity. It is unlikely to achieve mainstream adoption but probable to remain actively maintained as long as Stripe operates it internally.
Newsletter
Get analyses like this every Monday
Free weekly digest of the most interesting open-source discoveries.
Languages
Information
- Language
- Go
- License
- MIT
- Last updated
- 4d ago
- Created
- 122mo ago
- Analyzed with
- anthropic/claude-haiku-4-5
Stars over time
Contributors over time
Top 100 contributors only — repos with more will plateau at 100.
Top contributors
Recent releases
No releases published yet.
Similar repos
projectdiscovery/proxify
Proxify is a portable HTTP/HTTPS proxy tool written in Go that captures,...
stripe/stripe-mock
stripe-mock is a lightweight HTTP mock server that mimics Stripe's API surface...
| Repository | Stars | Week Δ | Language | Score | Updated |
|---|---|---|---|---|---|
|
|
1.3k | +3 | Go | 8/10 | 4d ago |
|
|
3k | — | Go | 7/10 | 3w ago |
|
|
1.6k | — | Go | 8/10 | 1w ago |
|
|
9.3k | — | C++ | 7/10 | 7d ago |
|
|
17k | — | Go | 7/10 | 10mo ago |
|
|
31.3k | — | Dart | 8/10 | 3w ago |
General-purpose HTTP/SOCKS proxy (16k stars). Smokescreen is purpose-built for security-first egress control with SSRF prevention; goproxy is more general and does not enforce hostname/IP validation by default.
Lightweight proxy for pentesters and security researchers (3k stars). Smokescreen is operator-focused (mTLS, per-client ACLs, internal IP blocking); proxify is researcher-focused for traffic inspection and testing.
Censorship circumvention proxy (9k stars, C++). Smokescreen is enterprise egress control; naiveproxy is end-user-focused for bypassing firewalls in hostile environments.
Stripe's own mock API server (1.6k stars). Smokescreen controls real outbound traffic; stripe-mock simulates Stripe's service for testing.
Many enterprises build or use proprietary egress proxies. Smokescreen provides an open, configurable alternative specifically designed to prevent SSRF and internal network scanning.