Security●●Solid
Cardea, SSH bastion with per-key ACLs, TPM keys and session recording
File-based ACLs reviewable in PRs beat database-backed bastions for small teams.
Big BrainNiche Gem
hectorm
102mo ago
Back to browse
GitHub Repository
:computer: :key: ssh-agent for TPMs
714 starsGo
SSH-TPM-agent · Release v0.9.0
by Foxboron·May 4, 2026·6 points·3 comments
AI Analysis
●●●BangerWizardrySolve My Problem
Hardware-bound SSH keys sealed in TPM without messy PKCS11 config.
Strengths
- •Eliminates the need to side-load complex PKCS11 libraries into ssh-agent.
- •Keys are hardware-bound and cannot be exfiltrated from the TPM chip.
- •Supports software TPM (swtpm) for testing without dedicated hardware.
Weaknesses
- •Requires a TPM 2.0 chip, limiting use on older hardware or VMs.
- •Niche audience compared to standard ssh-keygen workflows.
Category
Target Audience
DevOps engineers and security-conscious developers
Similar To
ssh-agent · YubiKey · 1Password SSH Agent
Similar Projects
Security●●●Banger
Cardea, SSH bastion with per-key ACLs, TPM keys and session recording
SSH bastion with per-key ACLs, zero database, TPM-backed host keys—rules live in Git.
WizardryNiche Gem
hectorm
403mo ago
Infrastructure●●Solid
TryMyClaw – Managed OpenClaw hosting with full SSH and root access
Full SSH root access on managed OpenClaw hosting beats black-box alternatives.
Solve My ProblemShip It
howardV
103mo ago
Security●Mid
Sshifu – SSH Login with SSO. Alternative to Teleport and Smallstep
Yet another SSH SSO tool competing with Teleport and Smallstep without clear differentiation.
Ship It
azophy_2
302mo ago
Infrastructure●Mid
Manage Cursor agents from your smartphone
Mobile infra dashboard with SSH and metrics, but Cursor integration feels secondary to the core app.
SlickSolve My Problem
pmdfgy
303mo ago
Developer Tools●●Solid
I built a tool to manage work and personal Git repos
Directory-based Git profile switching; cleaner than manual SSH/gitconfig wrangling.
Solve My Problem
tomquirk
613mo ago