Security · 2h ago
Anthropic Debuts OIDC Gateway to Replace Developer Secrets for Claude Code
Anthropic released a self-hosted gateway that uses OpenID Connect to replace long-lived per-developer secrets for Claude Code on Amazon Bedrock or Google Cloud. The stateless container centralizes identity, policy enforcement, and usage tracking, issuing short-lived sessions. This moves the trust boundary from developer laptops to the enterprise identity provider, reducing blast radius.
Meridian48 take
This is a necessary security upgrade that brings coding agents in line with standard CI/CD practices, but organizations must ensure their IdP is robust and the gateway's policy knobs are flexible enough.
Read the full reporting
Anthropic swaps per-developer Claude Code secrets for an OIDC gateway →
DEV Community
claude-codeoidc-gateway