Policy-as-Code Firewall
Guardian Firewall
The Semantic Firewall for Autonomous Agents. Intercepting and validating tool calls, SQL queries, and code execution in real-time.
GUARDIANCONSOLE
SYSTEM READY
Payload Input
Security Scan Trace
Awaiting Payload
for Inspection
Policy Engine
Enforce business logic policies (e.g., "No refunds > $100") using a dynamic rule engine.
AST Analysis
Statically analyze generated code to detect dangerous imports, syscalls, and RCE attempts.
Sentinel Integration
Leverage Sentinel to detect Prompt Injection and PII leakage within tool arguments.
The Defense-in-Depth Architecture
Guardian validates the Structure of a tool call (AST, Policies), while automatically offloading the Payload (strings, emails, prompts) to Sentinel for deep content inspection.