Secure AI API Gateway

A lightweight, production-ready proxy (Nenya) that sits between applications and AI APIs to add security, rate limiting, audit logging, and credential management. Targets teams using multiple LLMs who need centralized security controls.

Enterprise adoption of LLMs is accelerating faster than security tooling, and most teams are duct-taping together API key rotation, rate limiting, and audit logs across three or four different providers — that gap is real and growing. The closest incumbent is Portkey, which already offers a production LLM gateway with observability and routing, so differentiation needs to be sharp and defensible, likely on the security and compliance angle rather than features Portkey already ships. The $5k–20k/mo revenue band is plausible for a dev-tools product targeting mid-market engineering teams, but it requires landing on annual contracts rather than surviving on self-serve, which pushes the sales motion toward something heavier than a two-person indie shop can usually sustain. The biggest risk is commoditization from the AI providers themselves — OpenAI, Anthropic, and the cloud hyperscalers all have obvious incentives to bake gateway functionality into their own platforms, which could erode the market before a small player reaches profitability.