Note

We don't yet have an official Arcjet SDK validated specifically for TanStack Start. This example uses the @arcjet/node package with a small adapter located in src/lib/arcjet.ts. Please report any issues you encounter to the Arcjet examples monorepo.

Arcjet TanStack Start example app

Arcjet helps developers protect their apps in just a few lines of code. Bot detection. Rate limiting. Email validation. Attack protection. Data redaction. A developer-first approach to security.

This is an example TanStack Start application demonstrating the use of multiple features.

Features

• Signup form protection uses Arcjet's server-side email verification configured to block disposable providers and ensure that the domain has a valid MX record. It also includes rate limiting and bot protection to prevent automated abuse.
• Bot protection shows how a page can be protected from automated clients.
• Rate limiting shows the use of different rate limit configurations depending on the authenticated user. A logged-in user can make more requests than an anonymous user.
• Attack protection demonstrates Arcjet Shield, which detects suspicious behavior, such as SQL injection and cross-site scripting attacks.
• Sensitive info protects against clients sending you sensitive information such as PII that you do not wish to handle.

Run locally

1. Register for a free Arcjet account.

2. Install dependencies:

npm ci

3. Rename .env.example to .env and add your Arcjet key.

4. Start the dev server

npm run dev

5. Open http://localhost:3000 in your browser.

Need help?

Check out the docs, contact support, or join our Discord server.

Stack

• TanStack Start: TanStack Start
• Security: Arcjet

Contributing

All development for Arcjet examples is done in the arcjet/examples repository.

You are welcome to open an issue here or in arcjet/examples directly. However, please direct all pull requests to arcjet/examples. Take a look at our contributing guide for more information.