Summary
A security layer that sits between your AI agent and the outside world, providing six tools for input validation, output filtering, and policy enforcement. It blocks prompt injection attempts through regex patterns, redacts PII like SSNs and credit cards, prevents malicious code execution, and enforces RBAC policies with rate limiting. The audit logger captures every request with metrics and supports external handlers. You'd reach for this when you need to lock down an AI agent that handles sensitive data or operates in a regulated environment. Configuration updates happen at runtime, and the policy engine lets you block specific paths, restrict dangerous tools, or enforce maintenance windows without redeploying.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
guardrails-mcp-server
[!License: MIT](https://opensource.org/licenses/MIT) [!MCP](https://modelcontextprotocol.io) [!Node.js](https://nodejs.org)
MCP server for AI agent security guardrails. Provides input validation, prompt injection detection, PII redaction, output filtering, policy enforcement, rate limiting, and comprehensive audit logging.
Tools
| Tool | Description |
|---|---|
validate_input | Validate and sanitize incoming requests through all guardrail checks |
filter_output | Filter and redact sensitive data (PII, secrets, credentials) from responses |
check_policy | Evaluate a request against security policies (RBAC, resource access, quotas) |
get_audit_logs | Query the audit log with filtering by type, user, time range |
get_stats | Get engine statistics including active users, block rate, request counts |
update_config | Update guardrail configuration at runtime |
Security Features
- Prompt Injection Detection -- 12 regex patterns for jailbreak, DAN mode, system prompt override
- PII Detection and Redaction -- SSN, credit card, email, phone, IP, API keys, AWS keys, JWT, passwords, private keys, connection strings
- Malicious Code Blocking -- eval, exec, subprocess, child_process, shell injection
- Policy Engine -- Block sensitive paths, dangerous tools, unauthenticated destructive ops, URL allowlist, maintenance windows
- Rate Limiting -- Per-user sliding window (configurable requests/minute)
- Audit Logging -- Timestamped events with metrics, log rotation, external handler support
Install
npm install
Configuration
{
"mcpServers": {
"guardrails": {
"type": "stdio",
"command": "node",
"args": ["/path/to/guardrails-mcp-server/index.js"]
}
}
}
Project Structure
src/engine/GuardrailsEngine.js # Core orchestration
src/validators/InputValidator.js # Prompt injection and PII detection
src/filters/OutputFilter.js # Redaction and harmful content blocking
src/policies/PolicyEngine.js # RBAC, quotas, maintenance windows
src/audit/AuditLogger.js # Event logging and metrics
License
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →Categories
Registryactive
Packageguardrails-mcp-server
TransportSTDIO
UpdatedFeb 14, 2026
