hoverfly
Hoverfly is a lightweight, open-source API mocking and service virtualization tool written in Go. It allows developers and testers to replace slow or flaky API dependencies with realistic, configurable simulations that can mimic latency, failures, and rate limits.
Key facts
Objective fields from the source. Values we can't verify are shown as “Unknown” rather than guessed.
| Field | Value |
|---|---|
| Repository | SpectoLabs/hoverfly |
| Owner | SpectoLabs |
| Primary language | Go |
| License | Apache-2.0 — OSI-approved |
| Stars | 2.5k |
| Forks | 228 |
| Open issues | 33 |
| Latest release | v1.12.10 (2026-06-21) |
| Last updated | 2026-06-22 |
| Source | https://github.com/SpectoLabs/hoverfly |
What hoverfly is
Hoverfly operates as a lightweight HTTP(S) proxy and MITM tool that intercepts and simulates API responses. It provides a REST API, CLI, language bindings (Java included), and supports export/import of simulation configurations for reproducible testing environments.
Get the hoverfly source
Clone the repository and explore it locally.
git clone https://github.com/SpectoLabs/hoverfly.gitcd hoverfly# follow the project's README for install & configurationNeed it deployed, integrated, or customized instead? DEV.co ships production installs.
Best use cases
Implementation considerations
- Verify Go runtime availability and version compatibility in your target deployment environment (Windows, Linux, macOS support documented).
- Plan proxy configuration: Hoverfly intercepts traffic via MITM; ensure network routing and TLS certificate trust chains are properly configured for your clients.
- Design simulation lifecycle: establish a workflow for recording, storing, versioning, and synchronizing API simulation files across development and CI/CD pipelines.
- Test middleware extensions if using custom matchers or request transformations; Ruby and Python dependencies are optional but required for some built-in middleware.
- Consider performance baseline: while described as 'lightweight,' validate latency and throughput against your application's SLA under expected load.
When to avoid it — and what to weigh
- Need real-time protocol support beyond HTTP(S) — Hoverfly is HTTP/HTTPS-focused; projects requiring WebSocket, gRPC, AMQP, or other protocol simulation should evaluate alternatives or use Hoverfly alongside complementary tools.
- Require graphical UI for simulation management — Hoverfly relies on CLI, REST API, and configuration files; teams preferring drag-and-drop or visual workflow builders may find the interaction model less intuitive.
- Existing monolithic legacy architecture with embedded HTTP clients — Projects using proprietary or tightly-coupled HTTP stacks may struggle to route traffic through Hoverfly's proxy without significant refactoring.
- Heavy reliance on request/response bodies with binary or streaming content — While Hoverfly handles binary payloads, complex streaming scenarios or large file transfers may require custom middleware or careful tuning.
License & commercial use
Apache License 2.0: permissive open-source license allowing commercial use, modification, and distribution with attribution and patent protection clauses.
Apache 2.0 is a permissive OSI license that explicitly permits commercial use and modification. However, this evaluation is limited to the open-source core; Hoverfly Cloud (a paid managed service) is referenced in the README and may have separate terms. Review Hoverfly Cloud terms separately if considering the hosted offering.
DEV.co evaluation signals
Editorial assessment — not user reviews. Directional, with an explicit confidence level.
| Signal | Assessment |
|---|---|
| Maintenance | Active |
| Documentation | Strong |
| License clarity | Clear |
| Deployment complexity | Low |
| DEV.co fit | Strong |
| Assessment confidence | High |
Hoverfly performs MITM proxying and TLS interception; ensure TLS certificate management and proxy configuration follow your organization's security policies. No specific vulnerability disclosure process, audit history, or security claims are stated in the provided data—conduct threat modeling for sensitive API simulation scenarios. Trust boundary: only simulate non-production or sanitized data in shared or CI/CD environments.
Alternatives to consider
Prism (Stoplight)
OpenAPI-driven mock server; better for spec-first workflows and visual design tools, but heavier resource footprint and different maturity posture.
WireMock
JVM-based HTTP mocking library; mature ecosystem, Java-native integration, but requires Java runtime and less lightweight than Hoverfly for standalone use.
MockServer
Python/JVM mock server with flexible request matching; broader protocol support, but steeper learning curve and heavier deployment footprint than Hoverfly.
Build on hoverfly with DEV.co software developers
Hoverfly is a proven, actively-maintained tool for API mocking in development and CI/CD. Contact us to evaluate fit for your testing strategy, integration approach, and deployment environment.
Talk to DEV.coRelated on DEV.co
Explore the category and the services that help you build with it.
hoverfly FAQ
Can Hoverfly simulate HTTPS endpoints?
What programming languages can integrate with Hoverfly?
How do I version-control and share API simulations across teams?
Is Hoverfly suitable for production use or only testing?
Custom software development services
DEV.co is a software development agency delivering custom software development services to companies building on open source. Our software developers and web developers design, integrate, and ship production systems — spanning web development, APIs, AI, data, and cloud. If hoverfly is part of your open-source testing roadmap, our team can implement, customize, migrate, and maintain it.
Ready to isolate your API dependencies?
Hoverfly is a proven, actively-maintained tool for API mocking in development and CI/CD. Contact us to evaluate fit for your testing strategy, integration approach, and deployment environment.