8000 GitHub - mbscit/BetterChatGPT-Securityaware: BetterChatGPT with enhanced security-awareness, reducing vulnerabilities in generated code
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

mbscit/BetterChatGPT-Securityaware

BranchesTags
ย 
ย 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

ย 

History

334 Commits
.github
.github
ย 
ย 
assets
assets
ย 
ย 
electron
electron
ย 
ย 
public
public
ย 
ย 
src
src
ย 
ย 
.dockerignore
.dockerignore
ย 
ย 
.env.example
.env.example
ย 
ย 
.gitignore
.gitignore
ย 
ย 
.prettierrc
.prettierrc
ย 
ย 
Dockerfile
Dockerfile
ย 
ย 
LICENSE
LICENSE
ย 
ย 
README-zh_CN.md
README-zh_CN.md
ย 
ย 
README.md
README.md
ย 
ย 
docker-compose.yml
docker-compose.yml
ย 
ย 
index.html
index.html
ย 
ย 
package.json
package.json
ย 
ย 
postcss.config.cjs
postcss.config.cjs
ย 
ย 
tailwind.config.cjs
tailwind.config.cjs
ย 
ย 
tsconfig.json
tsconfig.json
ย 
ย 
tsconfig.node.json
tsconfig.node.json
ย 
ย 
vite.config.ts
vite.config.ts
ย 
ย 
yarn.lock
yarn.lock
ย 
ย 

Repository files navigation

Security-Aware ChatGPT

Better ChatGPT

ChatGPT, with more secure code.

๐Ÿ‘‹๐Ÿป Introducing Security Aware ChatGPT

Our fork of Better ChatGPT is introducing two new security-enhancing features.

๐Ÿ”ฅ Security Features

Code Security Prefix

This feature can be enabled or disabled for each individual prompt. When enabled, it adds the a prefix the prompt:

landing

This prefix reduced the number code vulnerabilities on average by 47% for gpt-4o-mini, and by 56% for gpt-4o (snapshot 2024-08-06) on the Secure Prompt Benchmark.

Code Security Agent (Experimental)

The "Code Security Agent" and can be enabled in the settings. If enabled, markdown code-blocks in the response are intercepted.

landing

The intercepted blocks are sent to the LLM for security-critique and improvement. The code from the improvement response is then extracted and inserted back into the original answer.

Using the Code Security Agent with gpt-4o-2024-08-06 can reduce the number of vulnerabilities on average by 64.7% without, and 68.7% with the Code Security Prefix on the Secure Prompt Benchmark.

Since the Code Security Agent is interacting with the LLM multiple times, it can be very slow. It can also make the code snippets overly verbose, and sometimes even break the code. This feature is intended to gain insights into the implications of using this technique, and is therefore marked as experimental.

Disclaimer

While these features can help reduce the number of code vulnerabilities, they are not a substitute for a sec 8000 urity audit by a professional.
The features are experimental and may not work as expected in all cases.

Features form Better ChatGPT

Security-Aware ChatGPT comes with a bundle of amazing features from Better ChatGPT! Here are some of them:

  • Proxy to bypass ChatGPT regional restrictions
  • Prompt library
  • Organize chats into folders (with colours)
  • Filter chats and folders
  • Token count and pricing
  • ShareGPT integration
  • Custom model parameters (e.g. presence_penalty)
  • Chat as user / assistant / system
  • Edit, reorder and insert any messages, anywhere
  • Chat title generator
  • Save chat automatically to local storage
  • Import / Export chat
  • Download chat (markdown / image / json)
  • Sync to Google Drive
  • Azure OpenAI endpoint support
  • Multiple language support (i18n)

๐Ÿ› ๏ธ Usage

To get started, run it locally or host your own instance. There are 3 ways for you to start using Security Aware ChatGPT.

  1. Enter into the API menu your OpenAI API Key obtained from OpenAI API Keys.
  2. Utilise the api endpoint proxy provided by ayaka14732/ChatGPTAPIFree (if you are in a region with no access to ChatGPT)
  3. Host your own API endpoint by following the instructions provided here: https://github.com/ayaka14732/ChatGPTAPIFree. Subsequently, enter the API endpoint into the API menu.

๐Ÿ›ซ Host your own Instance

If you'd like to run your own instance of Security Aware ChatGPT, you can easily do so by following these steps:

Vercel

One click deploy with Vercel

Vercel

GitHub Pages

Steps

  1. Create a GitHub account (if you don't have one already)
  2. Star this repository โญ๏ธ
  3. Fork this repository
  4. In your forked repository, navigate to the Settings tab image
  5. In the left sidebar, click on Pages and in the right section, select GitHub Actions for source. image
  6. Now, click on Actions image
  7. In the left sidebar, click on Deploy to GitHub Pages image
  8. Above the list of workflow runs, select Run workflow. image
  9. Navigate back to the Settings tab image
  10. In the left sidebar, click on Pages and in the right section. Then at the top section, you can see that "Your site is live at XXX". image

Running it locally

  1. Ensure that you have the following installed:

  2. Clone this repository by running git clone https://github.com/mbscit/BetterChatGPT-Securityaware.git

  3. Navigate into the directory by running cd BetterChatGPT-Securityaware

  4. Run yarn or npm install, depending on whether you have yarn or npm installed.

  5. Launch the app by running yarn dev or npm run dev

Running it locally using docker compose

  1. Ensure that you have the following installed:

    • docker (v24.0.7 or above) 
      curl https://get.docker.com | sh \
&& sudo usermod -aG docker $USER

  2. Build the docker image

    docker compose build

  3. Build and start the container using docker compose

    docker compose build
docker compose up -d

  4. Stop the container

    docker compose down

โค๏ธ Contributors of Better ChatGPT

Thanks to all the contributors of BetterChatGPT, who provided the foundation of this fork!

๐Ÿ™ Support

If you have enjoyed using our app, we kindly ask you to give this project a โญ๏ธ. Your endorsement means a lot to us and encourages us to work harder towards delivering the best possible experience.

If you would like to support the team behind Better ChatGPT, consider sponsoring them through one of the methods below. Every contribution, no matter how small, helps us to maintain and improve their service.

Payment Method Link
GitHub GitHub Sponsor
KoFi support
Alipay (Ayaka)
Wechat (Ayaka)

Thank you for being a part of our community, and we look forward to serving you better in the future.

About

BetterChatGPT with enhanced security-awareness, reducing vulnerabilities in generated code

Resources

Readme

License

CC0-1.0 license
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • TypeScript 93.5%
  • CSS 3.0%
  • JavaScript 2.9%
  • Other 0.6%
0