A Cloudflare Workers-powered smart honeypot and security gateway that detects, rate-limits, and decoys malicious bots to protect OpenWebUI services and conserve API tokens.
A smart honeypot & security gateway for OpenWebUI, powered by Cloudflare Workers. Blocks bots, prevents token waste, and protects your service.
This tool is designed for administrators of OpenWebUI services who want to protect their backend from malicious bots and automated scanners that waste API tokens and degrade service quality. It provides a security gateway that identifies threats, applies rate limits, and returns deceptive responses to confuse attackers, thereby safeguarding resources and improving network security.
Use the malicious ASN blocking feature with caution as it may cause false positives. Regularly update your blocklists via the HONEYPOT_CONFIG environment variable to maintain effective protection. This tool requires a publicly accessible OpenWebUI backend URL and a Cloudflare account for deployment.
Click the 'Deploy to Cloudflare' button in the repository.
Authorize Cloudflare to access your GitHub repository.
Fill in the required environment variables in the deployment wizard: UPSTREAM_URL (your real OpenWebUI backend URL) and optionally HONEYPOT_CONFIG (custom JSON blocklist).
Click 'Deploy' to let Cloudflare automatically create the Worker service and KV namespace with all configurations.
After deployment, point your domain to the newly created Cloudflare Worker.Deploy to Cloudflare button
Initiates one-click deployment of the honeypot to your Cloudflare account.