Claude Relay Service (CRS): Open-Source Unified Proxy for Claude, OpenAI, Gemini, and Droid Subscriptions with Cost Sharing and Critical Security Update
The Claude Relay Service (CRS) is an open-source proxy solution designed to unify access for various AI subscriptions, including Claude, OpenAI, Gemini, and Droid. It enables users to build their own Claude Code mirror and offers a one-stop relay service that supports 'carpooling' for shared access, aiming to efficiently distribute costs. The service also promises seamless integration with native tools. A critical security update has been issued, warning users of versions v1.1.248 and below about a severe administrator authentication bypass vulnerability that allows unauthorized access to the management panel.
The Claude Relay Service (CRS) is presented as an open-source, one-stop relay solution that allows users to establish their own Claude Code mirror. This service is designed to unify access for various AI subscriptions, including Claude, OpenAI, Gemini, and Droid, under a single platform. A key feature of CRS is its support for 'carpooling' or shared access, which aims to more efficiently distribute and reduce the costs associated with these subscriptions. The service also emphasizes seamless integration with native tools, suggesting a user-friendly experience.
However, a significant security alert has been issued regarding the CRS. Users are strongly cautioned about a critical vulnerability present in versions v1.1.248 and earlier. This vulnerability is described as a severe administrator authentication bypass, which could allow attackers to gain unauthorized access to the management panel. This highlights the importance for current users to update their installations to a patched version to mitigate potential security risks.