LAUNCHING JUNE 24, 2027

API security
without the
complexity.

Rate limiting, IP blocking, brute force detection, and full audit logs. One SDK. Five minutes to integrate. Works with Python, Node.js, Go, and any language via REST.

Python
Node.js
Go
REST
$pip install shieldgate
Successfully installed shieldgate-1.0.0
#settings.py — two lines to protect your API
SHIELDGATE_API_KEY = "sg_live_abc123"
MIDDLEWARE = ["shieldgate.ShieldGateMiddleware", ...]
✓ Rate limiting active — 500K req/day ✓ IP blacklist synced — 0.8ms latency ✓ Brute force detection enabled ✓ Audit logging active
2.4M
Requests protected today
+12% from yesterday
0.8ms
Gateway overhead
p99 — healthy
99.98%
Uptime last 30 days
all systems operational
// HOW IT WORKS
Three steps.
Your API is
protected.

No DevOps knowledge required. No infrastructure to manage. Install the SDK, add your API key, and ShieldGate handles the rest from a dashboard you control.

01
Create an account — get your API key
Sign up at shieldgate.dev. Your API key is generated instantly. No credit card required on the free plan.
sg_live_4xK9mR2nPqWz...
02
Install the SDK for your language
Python, Node.js, or Go — install the package, add two lines of config. Any language that can make an HTTP request works via REST.
pip install shieldgate  |  npm install shieldgate  |  go get shieldgate/sdk
03
Manage everything from the dashboard
View live threats, manage IP blacklists, configure rate limit thresholds, set alert rules, and rotate API keys — no command line needed after setup.
// BUILT FOR PRODUCTION
Every request inspected.
In milliseconds.

ShieldGate middleware runs inside your app — checking Redis for blacklists and rate counters before your endpoint ever sees the request.

Rate limiting engine
Atomic Redis INCR counters — the block happens in under 1ms, before your view function runs. Configurable per API key, per IP, or both.
Redis INCRsub-1msper-keyper-IP
// Live threat feed 3 active blocks
CRITICALBrute force — 94 failed logins/60s45.33.12.882m ago
WARNINGRate limit — 500 req/min exceeded198.51.100.27m ago
INFOEndpoint scan — 34 routes in 2min172.16.0.3318m ago
CRITICALPermanent block — bypass attempts103.21.244.01h ago
Brute force detection
Counts failed authentication attempts per IP. Automatic lockout after the threshold you set. Duration fully configurable from your dashboard.
auto-blockconfigurableemail alerts
Full audit logging
Every request recorded — method, path, IP, status code, latency, whether it was blocked. Searchable and filterable. Retained 7 days on free, up to 1 year on Scale.
searchableexportablecompliance-ready
IP blacklisting
Manual and automatic blocking, propagated across every request in under one second via Redis. Block a bad actor from the dashboard once — it's gone everywhere instantly.
manual + auto<1s propagation
Per-endpoint rate limitingNEW
Set different limits per route instead of one blanket limit per key — stricter on /login, looser on /search. The same principle Tyk and Gravitee apply to AI tool calls, useful for any API.
per-routeconfigurable
AI traffic awarenessNEW
Detects when a request hits a known LLM/AI provider pattern, tags it distinctly in the audit log, and applies a separate rate-limit tier. Not a full AI gateway — just enough so ShieldGate isn't blind to agent traffic.
pattern detectionseparate tier
API key management
Generate, rotate, and revoke keys with full lifecycle control from the dashboard. Keys are stored hashed in the database — ShieldGate only keeps a short prefix for identification.
hashed storageinstant revoke
Alert system
Email and webhook alerts when threat score or usage/spend threshold exceeds a configured value. Set cooldowns so one incident doesn't flood your inbox.
email + webhookusage/spend alerts NEW
// MULTI-LANGUAGE SUPPORT
Works with your stack.

Native SDKs for Python, Node.js, and Go. TypeScript is covered by the Node.js SDK with full type definitions. Any other language uses the REST API directly.

Python
pip install shieldgate
Available at launch
Node.js + TS
npm install shieldgate
Available at launch
Go
go get shieldgate/sdk
Available at launch
REST API
Any language
PHP · Ruby · Java · Swift
// WHY AFRICA FIRST
Built for the developers
every other gateway ignores.

Kong, AWS, Unkey, and Zuplo all price, bill, and design for Western developer salaries. ShieldGate starts where they stop.

$449.64M
Nigeria's SaaS market in 2025 — real, growing local spend on software.
700K–1.1M+
Nigerian developers on GitHub, growing 28–100% year on year.
$25–60/hr
Typical Nigerian senior developer rate — vs $100–200/hr in the US.

The closest proof this model works: Termii — a Nigerian, YC-backed, API-first developer infrastructure company — built wallet-based billing tied to Naira and mobile money, then expanded to Ghana, Kenya, Morocco, and Benin. It's direct evidence that African developers and companies pay for API infrastructure when billing is localized and usage-based. ShieldGate is built on the same premise, for API security instead of messaging.

// EARLY ACCESS
Join the waitlist.

Be the first to know when ShieldGate launches — June 24, 2027.
Early access users get 3 months free on any paid plan.

// No spam. Unsubscribe anytime.
// GETTING STARTED
Introduction
Quick start
Authentication
// SDKs
Python SDK
Node.js SDK
Go SDK
REST API
// FEATURES
Rate limiting
IP blacklisting
Brute force
Audit logs
Alert rules
// FRAMEWORKS
Django
FastAPI
Express
NestJS
Gin
Docs SDKs Python SDK
Python SDK
The ShieldGate Python SDK is a lightweight middleware package for Django, FastAPI, and Flask. It connects your application to ShieldGate's security layer in under five minutes.
// Installation
BASH pip install shieldgate
// Django integration
Add your API key and the middleware class to settings.py. That is all the configuration required.
PYTHON # settings.py
SHIELDGATE_API_KEY = "sg_live_abc123"

MIDDLEWARE = [
  "shieldgate.ShieldGateMiddleware", # add first
  # ... your existing middleware
]
The ShieldGate middleware must be placed at the top of your MIDDLEWARE list so it inspects every request before any other middleware runs.
← PREVIOUS
Authentication
NEXT →
Node.js SDK