gateway,type,self_hosted,compliance,markup,security,stability,observability,cve Cloudflare AI Gateway,hosted,False,4.5,0%,4.0,4.5,5.0, Portkey (cloud),hosted,False,4.5,free tier + usage,4.5,4.0,5.0, Vercel AI Gateway,hosted,False,4.0,0%,3.5,4.0,4.0, Helicone (cloud),hosted,False,3.5,0% passthrough,3.5,3.0,4.5, Requesty,hosted,False,3.5,~5%,3.5,3.0,3.0, OpenRouter,hosted,False,3.5,~5.5% credit fee,3.0,3.0,4.5, Eden AI,hosted,False,3.5,~5.5% platform fee,3.0,3.5,3.0, Martian,hosted,False,3.0,volume (undisclosed),3.5,3.0,2.5, Azure OpenAI,first-party,False,5.0,n/a,5.0,4.5,4.5, AWS Bedrock,first-party,False,5.0,n/a,5.0,4.5,4.0, Google Vertex AI,first-party,False,4.5,n/a,5.0,4.5,4.0, OpenAI (direct),first-party,False,4.0,n/a,4.0,4.0,4.0, Portkey Gateway (OSS),self-hosted,True,3.0,$0,4.0,4.0,2.0, Kong AI Gateway,self-hosted,True,3.5,$0 core,4.5,4.0,3.5, Envoy AI Gateway,self-hosted,True,3.0,$0,4.0,4.0,4.0, Bifrost (Maxim),self-hosted,True,3.0,$0,3.5,4.5,5.0, TensorZero,self-hosted,True,3.0,$0,3.0,4.0,4.5, Higress,self-hosted,True,3.0,$0,3.5,4.0,4.5, Apache APISIX,self-hosted,True,3.0,$0,3.0,4.0,3.5, LiteLLM,self-hosted,True,3.0,$0,2.5,4.0,5.0,"CVE-2026-42208 (pre-auth SQLi); CVE-2026-42271 (unauth RCE, CISA KEV)" GPT-Load,self-hosted,True,2.0,$0,2.5,3.5,1.5, new-api,self-hosted,True,2.0,$0,1.5,3.0,2.5,CVE-2026-30886 (IDOR auth-bypass); CVE-2026-42339 (SSRF); CVE-2025-59146 (SSRF); CVE-2026-25591 (SQLi/DoS) one-api,self-hosted,True,2.0,$0,2.0,2.5,2.0,