Hey, sharing something I've been building. KAIRO is a TypeScript HTTP framework where every request passes through a structured security pipeline before touching your handler. Think of it as Express but the middleware stack is a threat model. What's new in v1.1: Intent Graph — declare which services can call which routes; enforces HMAC-signed requests with replay protection Semantic Route Guards — attach risk, intent, tags to routes and guards auto-enforce appropriate trust levels Behavioral Biometrics — browser SDK + server analysis, scores mouse/keystroke patterns to catch bots Dashboard — real-time monitoring UI with SSE event stream, route table, entropy tracking Hot-patch Bus — inject/remove middleware atomically at runtime without restart GitHub: https://github.com/thekairojs/kairo.js Happy to answer questions about the architecture — the entropy scoring and taint propagation system in particular has some interesting design decisions. submitted by /u/mr_vengeance_72 [link] [comments]