Skip to content
AI guardrails

AI Guardrails for PII and Prompt Injection

Ferro Labs lets platform and security teams apply AI guardrails at the gateway before risky prompts, responses, or tool flows spread across applications.

Enforce AI guardrails for PII, prompt injection, moderation, consent, external evaluators, and CEL policies.

Buyer Problem

Every new AI feature creates another place for PII leakage, unsafe content, prompt injection, and policy drift. App-by-app guardrails are hard to audit and easy to bypass.

Target Outcome

Teams can enforce consistent policy for AI requests and responses with OSS plugins, Pro evaluators, CEL rules, PII controls, prompt injection checks, moderation, and policy simulation.

Capabilities

Gateway controls for this solution

These are the gateway-level capabilities this solution depends on.

OSS gateway plugins for request filtering, token limits, logging, rate limits, cache controls, and budget guards.
Pro evaluators for PII redaction, prompt injection detection, moderation, and security checks.
CEL policy expressions for organization-specific request, response, user, key, and project rules.
External provider evaluators for specialized safety, moderation, and policy review workflows.
Consent-aware policies that can gate processing based on configured data-use requirements.
Policy simulator for testing guardrail behavior before enforcement changes go live.

Proof Points

Evaluation evidence to review

OSS plugins and Pro guardrail evaluators are implemented.

PII, prompt injection, moderation, external providers, consent checks, CEL, and policy simulation are supported.

Policies can run before or after provider calls depending on the control being enforced.

Policy decisions are visible in logs and traces for audit and debugging.

Status note

Live: OSS plugins, Pro evaluators, CEL, PII, prompt injection, moderation, external providers, consent, and policy simulator. Future: compliance templates.

FAQ

Common evaluation questions

Does Ferro Labs support PII redaction?

Yes. PII controls are implemented as Pro guardrail evaluators and can be combined with gateway policies, logging, and audit workflows.

Can it detect prompt injection?

Yes. Prompt injection detection is implemented through Pro evaluators and can be enforced alongside moderation, consent, and CEL policies.

Are compliance templates available?

Not yet. Guardrail engines, evaluators, CEL policies, consent controls, external providers, and the policy simulator are implemented. Compliance templates are future roadmap items.

Solution Review

Validate this solution against your deployment model

Start with the open-source gateway, review the docs, or scope a managed deployment with Ferro Labs.