Endo

Get Started

Hardened JavaScript Security

Secure
JavaScript
Execution

Build distributed applications with object capability security, hardened compartments, and the SES standard.

Get Started
View Documentation

What is Endo?

A distributed secure computing platform that enables safe execution of untrusted code through object capability security and hardened JavaScript environments.

Revolutionary Security Model

Unlike traditional security approaches, Endo implements object capability security where authority is represented by unforgeable references to objects.

Principle of Least Authority

Components only get the permissions they absolutely need

Secure Compartmentalization

Isolated execution environments with controlled communication

Standards-Based Hardening

Built on TC39 SES specification for secure JavaScript

// Principle of Least Authority

import { makeCompartment } from ‘endo’;

const compartment = makeCompartment({
// Hardened JavaScript environment
globals: { console },
transforms: [hardenTransform],
});

// Safe execution of untrusted code
const result = compartment.evaluate(`
// This code runs in isolation
const data = processUserInput(input);
return sanitize(data);
`);

// Secure Compartment

import { makeCompartment } from ‘endo’;

const compartment = makeCompartment({
// Hardened JavaScript environment
globals: { console },
transforms: [hardenTransform],
});

// Safe execution of untrusted code
const result = compartment.evaluate(`
// This code runs in isolation
const data = processUserInput(input);
return sanitize(data);
`);

// Standards-Based Hardening

import { makeCompartment } from ‘endo’;

const compartment = makeCompartment({
// Hardened JavaScript environment
globals: { console },
transforms: [hardenTransform],
});

// Safe execution of untrusted code
const result = compartment.evaluate(`
// This code runs in isolation
const data = processUserInput(input);
return sanitize(data);
`);

Powerful Features

Discover how Endo’s innovative approach enables safer, more reliable distributed computing

Object Capability Security

Fine-grained security through unforgeable object references, eliminating ambient authority.

Hardened JavaScript (SES)

Secure, deterministic JavaScript execution that prevents prototype pollution and attacks.

Secure Compartments

Isolated code execution with controlled communication channels and limited authority.

Distributed Computing

Build distributed applications with secure message passing across network boundaries.

Composable Architecture

Create modular applications where components interact safely without compromising security.

Standards Compliance

Built on TC39 standards including SES and emerging JavaScript security specifications.

Featured Projects

See how leading organizations use Endo to build secure, distributed applications

MetaMask Snaps

Secure plugin architecture using Endo's compartmentalization for safe third-party code execution.

Agoric Platform

Smart contract platform built on Endo's secure JavaScript execution for DeFi applications.

SES Shim

Reference implementation of the SES specification for hardened JavaScript environments.

Ready to Build Secure Applications?

Join the growing community of developers building the next generation of secure, distributed applications with Endo’s revolutionary security model.

Get Started Now
View on GitHub

Endo

Secure JavaScript execution platform built on object capability security and hardened compartments.

Twitter Linkedin Envelope

Product

  • About Endo
  • Technology
  • Hardened JavaScript
  • Object Capabilities

Developers

  • Documentation
  • Quick Start
  • API Reference
  • GitHub

Community

  • Get Involved
  • Blog
  • News
  • Contact

© 2025 Endo. All rights reserved.

  • Privacy Policy
  • Terms of Use
  • Security