rmBug

The tool provides identity‑based access control for databases, allowing engineers, AI agents, and automation to connect using single‑sign‑on (SSO) or API keys instead of shared credentials. Each connection is tied to a named identity, with time‑limited grants that can be approved manually, automatically, or set as always‑on for trusted teams. A gateway deployed in the user’s VPC forwards traffic, so existing client applications such as psql, MySQL, TablePlus, DBeaver, and DataGrip continue to work without network reconfiguration.

All activity is recorded in a centralized audit log that captures metadata, query text, and security decisions for every request. The log can be exported and filtered by actor or time window to support compliance and review processes. Machine identities are treated the same as human users, giving CI/CD pipelines, security scanners, and other automated agents their own credentials and audit trails.

The solution consists of three components—an agent, a control plane, and a gateway—installed via a single command and usable across platforms. Setup is designed to be completed in under ten minutes, providing a secure, transparent path to database access without altering existing network layouts.