AI tool comparison
CrabTrap vs Ferretlog
Which one should you ship with? Here is the side-by-side panel verdict, pricing read, reviewer split, and community vote comparison.
Developer Tools
CrabTrap
Open-source HTTP proxy that enforces security policies on AI agent API calls
50%
Panel ship
—
Community
Paid
Entry
CrabTrap is an open-source HTTP/HTTPS proxy built by Brex's engineering team that sits between AI agents and the external internet, evaluating every outbound request against configurable security policies before it reaches any third-party API. It uses a two-tier evaluation system: fast deterministic static rules handle the obvious cases (block this domain, require this header), while an LLM-as-a-judge handles ambiguous requests that need semantic understanding — like determining whether a request to send an email is within scope of the current task. Built in Go with a TypeScript frontend, CrabTrap ships with a PostgreSQL-backed audit log and a web UI for policy management. It supports MITM inspection of HTTPS traffic, request/response logging, and policy versioning — making it suitable for production agentic systems where compliance or security teams need a paper trail. Version 0.0.1 was released April 17, 2026 and is MIT licensed. The problem it solves is real: as AI agents gain more autonomy and access to external APIs, the attack surface grows. A compromised or misbehaving agent that can freely call any URL is a significant risk. CrabTrap gives engineering teams a single chokepoint to enforce least-privilege access — something that's been missing from most agentic frameworks that assume a trusted execution environment.
Developer Tools
Ferretlog
git log for your Claude Code agent runs — local, zero dependencies
50%
Panel ship
—
Community
Free
Entry
Ferretlog is a zero-dependency pure Python CLI that treats your Claude Code session logs like a git repository. It parses the raw JSONL logs in `~/.claude/projects/` and gives you git-style history browsing, diff between runs, per-tool-call breakdowns, and cost/token stats — entirely locally, with no network calls and no configuration required. If you've been using Claude Code heavily, you've likely experienced the frustration of losing track of what changed across sessions, what tools were called how many times, and how much each session actually cost across sub-agent calls. Ferretlog makes that history explorable and comparable the same way `git log` makes code history explorable. This is an indie solo project from Eitan Lebras, submitted as a Show HN. It's genuinely useful as a power-user tool for anyone doing serious Claude Code work, especially those managing multi-session agent pipelines where debugging "what did the agent do last time?" is a real pain. The zero-dependency, local-only design means there's no trust surface and no setup friction.
Reviewer scorecard
“This fills a gap that every production agentic system needs but almost no one has solved yet. The two-tier policy engine — static rules for speed, LLM for ambiguity — is the right architecture. The fact that Brex built and open-sourced this suggests they've already battle-tested it against real agent deployments.”
“If you run Claude Code daily, you need this immediately. Being able to diff two sessions like git commits and see exactly which tools fired and what they cost is something that should have existed from day one. Zero-dependency Python means it just works.”
“v0.0.1 with 126 GitHub stars is a weekend project right now, not infrastructure you should bet your production agents on. The LLM-as-a-judge for policy evaluation is also expensive and introduces its own latency — you're adding an AI call to evaluate every AI agent call. The operational complexity of running MITM HTTPS inspection in production is non-trivial.”
“This is a niche tool for a niche user (heavy Claude Code power users) and the session log format Anthropic uses is undocumented and could change at any update. Tying workflows to internal log parsing is fragile infrastructure — treat it as a convenience, not a dependency.”
“Agent security tooling is where network security tooling was in the early 2000s — primitive, fragmented, and urgently needed. CrabTrap is an early bet on a category that will be worth billions once enterprises start mandating audit trails for agentic systems. Brex building this in-house and open-sourcing it is a strong signal of what production agent operators actually need.”
“Agent observability tooling built by the community, not the vendor, is how this ecosystem will mature. Ferretlog is primitive but it points at a real gap: we need git-style versioning and auditability for agent sessions, not just for code.”
“This is deeply in the DevOps/infrastructure lane — not something a creator or designer would ever touch directly. But if the tools you use to generate content are backed by CrabTrap-style security, you'd want that. For now, it's a ship for the engineers who configure your AI stack, a skip for everyone else.”
“Terminal-only, Claude Code-specific, no visuals — this tool exists entirely outside my workflow. The underlying insight (session replay and cost tracking) is useful, but it needs a UI before it reaches anyone outside the developer community.”
Weekly AI Tool Verdicts
Get the next comparison in your inbox
New AI tools ship daily. We compare them before you waste an afternoon.