README

Laravel Guardrail is an enterprise-grade input/output safety & compliance layer for the Laravel AI SDK. It acts as a firewall for your AI agents, ensuring that both user inputs and LLM responses adhere to your security, privacy, and domain policies.

Features

Input Guarding: Block prompt injections, redact PII (Personally Identifiable Information), and enforce input length constraints.
Output Guarding: Prevent topic drift, toxicity, system prompt leakage, and PII leakage in LLM responses.
AI SDK Middleware: Seamlessly hooks into the native Laravel AI SDK agent middleware system.
Violation Logging: Automatically persists safety violations for auditing and fine-tuning.
Zero Configuration: Sensible defaults that work out of the box with standard Laravel configurations.

Installation

You can install the package via composer:

composer require fr3on/laravel-guardrail

You can publish the config file with:

php artisan vendor:publish --tag="guardrail-config"

Usage

namespace App\Ai\Agents;

use Fr3on\Guardrail\Middleware\Guardrail;
use Laravel\Ai\Contracts\Agent;
use Laravel\Ai\Contracts\HasMiddleware;

class CustomerSupportAgent implements Agent, HasMiddleware
{
    public function middleware(): array
    {
        return [
            new Guardrail([
                // Input rules
                'prompt_injection' => 'block',
                'pii_redaction' => 'redact',
                
                // Output rules
                'toxicity' => 'retry',
                'topic_drift' => 'fallback',
            ]),
        ];
    }
}

Testing

composer test

Changelog

Please see CHANGELOG for more information on what has changed recently.

Contributing

Please see CONTRIBUTING for details.

Security Vulnerabilities

Please review our security policy on how to report security vulnerabilities.

Credits

License

The MIT License (MIT). Please see License File for more information.

fr3on / laravel-guardrail

Maintainers

Package info

Statistics

Security