single binary

Let your agents
run amok.

trollbridge is an HTTP proxy that gates every request your agents make — by policy, by you, or by an LLM. So you can let your agents go places you wouldn't go yourself.

curl -fsSL https://trollbridge.dev/install.sh | bash

Linux & macOS · amd64 & arm64 · installs to ~/.local/bin · no sudo. View the script.

View on GitHub →

What you can let your agents do.

Click links you wouldn't.

Your agent finds a sketchy GitHub repo, a stranger's API, a freshly-published MCP server. Let it click. The proxy holds the wire so you can look before bytes move.

Try the stranger's MCP server.

Experimental servers get the same treatment as production endpoints. Approve once with a keystroke; make the next one sticky and it never asks again.

Run unattended.

Held requests wait until you come back. Sticky approvals and policy rules clear the queue while you sleep; the rest is still there in the morning.

How it works.

Policy.

Inline allow/deny lists handle the obvious cases at the wire. api.openai.com allowed, *.suspicious.tld denied — decided before the request reaches the network.

Manual.

Anything policy doesn't cover gets held. Approve or deny with a keystroke in the operator UI. Sticky decisions become new policy without you editing a file.

LLM.

When "is this domain ok?" needs judgment, an LLM advisor reads the request and recommends allow or deny. You stay in the loop with less friction.

Quickstart.

Install
```
curl -fsSL https://trollbridge.dev/install.sh | bash
```
User-mode install to ~/.local/bin. No sudo, no system files.
Run & point your agent
```
trollbridge quickstart
eval "$(trollbridge env)"
```
Starts the proxy on 127.0.0.1:8080 and exports HTTP_PROXY / HTTPS_PROXY for the current shell. Works with any HTTP client.
Approve, deny, observe

Each held request appears in the operator UI. Approve once or make it sticky. Tail the audit log for a record of every decision.

Ready in 30 seconds.