-
-
The go mascot- defending your AI!
Guardian
An open-source ethical telemetry and governance platform for AI applications
Why Guardian?
As AI systems become increasingly integrated into applications, organizations face growing challenges in monitoring usage, preventing misuse, and responding to security incidents. While the cybersecurity industry has mature tools for monitoring and incident response, the AI governance space lacks comparable solutions:
- Jailbreak attempts are constantly evolving, making it difficult for individual applications to stay ahead
- Distributed security risks arise as AI capabilities are integrated across different services
- Lack of visibility into how AI services are being used and potentially misused
- No standardized approach to AI governance and incident response
Guardian addresses these challenges by providing a language-agnostic middleware solution that enables comprehensive monitoring, detection, and governance of AI applications.
Features
Guardian goes beyond simple telemetry to provide true AI governance capabilities:
1. Comprehensive Telemetry
- Automatic monitoring of all AI chat/completions endpoints
- Integration with OpenTelemetry and the LGTM stack (Grafana, Tempo, Prometheus)
- Customizable dashboards for visualizing AI system usage
2. Multi-layered Security
Distributed NLP Analysis: Low-resource natural language processing to identify potential policy violations
Static Analysis: Pattern matching using regex and other techniques to catch known attack vectors
Guardian supports customizable security preferences through user submitted jsons. These rules use regex and pattern matching to identify potential security threats. Guardian will automatically register any rules either passed into the config over by reading a guardian_rules.json file in the root or src directory.
{
"rules": [
{
"name": "prompt-injection-basic",
"pattern": "\\b(system prompt|ignore previous instructions)\\b",
"severity": "high",
"description": "Basic prompt injection attempt"
},
{
"name": "scenario-nesting",
"pattern": "pretend|imagine|role-play|simulation",
"severity": "medium",
"description": "Possible scenario nesting attack"
}
]
}
- Pre-prompting Management: Standardized security controls applied across all AI endpoints
Guardian supports custom configs upon instantiaion that prepend a standardized prompt across all endpoints, ensuring universal protection.
const DEFAULT_CONFIG = { prePrompt: "Refuse to answer any questions related to politics or world affairs.", };
3. Governance Tools
- Real-time alerting for suspicious activity
- Automated incident triage and categorization
- Message flagging and blocking capabilities
- Trend analysis to identify emerging attack patterns
Architecture
Guardian is designed as a lightweight, embeddable middleware that integrates seamlessly with your existing AI applications:
┌─────────────────┐ ┌───────────────┐ ┌─────────────────┐
│ │ │ │ │ │
│ Your AI App │─────▶│ Guardian │─────▶│ AI Provider │
│ │ │ Middleware │ │ API │
└─────────────────┘ └───────────────┘ └─────────────────┘
│
▼
┌───────────────┐
│ │
│ OTEL-LGTM │
│ │
└───────────────┘
Getting Started
Guardian supports multiple programming languages through native implementations. Choose the one that fits your project:
Setting up the Monitoring Stack
Before using any of the language implementations, you should set up the monitoring stack:
Start the LGTM Stack:
# Start the LGTM stack (Loki, Grafana, Tempo, Mimir/Prometheus) ./run-lgtm.shAccess Grafana Dashboard: Open http://localhost:3000 in your browser
JavaScript/Node.js Implementation
Installation
# Using npm
npm install guardian-ai
# Using yarn
yarn add guardian-ai
Usage
const Guardian = require('guardian-ai');
// Initialize Guardian with your configuration
const guardian = new Guardian({
serviceName: 'my-js-app',
environment: 'development',
debug: true
});
No further configuration needed - Guardian will automatically monitor AI API calls made through the standard Node.js HTTP/HTTPS APIs and fetch.
Python Implementation
Installation
# Using pip
pip install guardian-ai
# Using poetry
poetry add guardian-ai
Usage
from guardian-ai import Guardian
# Initialize Guardian
guardian = Guardian()
# Guardian will automatically monitor AI API calls
Go Implementation
Installation
go get github.com/rohanadwankar/guardian
Usage
package main
import (
"github.com/rohanadwankar/guardian"
)
func main() {
// Create Guardian configuration
config := guardian.DefaultConfig()
config.ServiceName = "my-go-app"
config.Environment = "development"
// Initialize Guardian
g, err := guardian.New(config)
if err != nil {
panic(err)
}
// Use Guardian middleware with your HTTP handlers
http.ListenAndServe(":8080", g.Middleware.HTTPHandler(yourHandler))
}
Building from Source
To build the Guardian binary:
# Build the main Guardian executable
cd ~/guardian && bash build-binaries.sh
Example Application
You can run the example Node.js application to see Guardian in action:
# Start the example application
cd ~/guardian/examples/mock-node-app && npm start
# Run tests against the example application
cd ~/guardian/examples/mock-node-app && npm test
You can also run the example Python application:
# Start the example application
cd ~/guardian/examples/mock-python-app && python src/run.py
# Run tests against the example application
cd ~/guardian/examples/mock-python-app && python src/client_test.py
Future Features
Incident Response
- Centralized incident management console
- Attack mitigation workflows
- Forensic logging for security investigations
- Automated remediation options
- Review Agent: Optional batch analysis of chat logs to detect sophisticated misuse patterns
Log in or sign up for Devpost to join the conversation.