Configure the monitors you need, review the alerts they raise, and enable tool filters that block unsafe requests before they reach connected systems.

Defense in depth
Protoguard's reviews sit on top of Metorial's runtime isolation, so even a request that slips past a filter stays contained within its own boundary.
Providers and custom code run in isolated enclaves. Every action is sandboxed and contained.
Firewalls control which destinations a provider can reach. Outbound and inbound traffic always stays within the rules you set.
Secrets live in Metorial Vault, encrypted with KMS and resolved at the gateway, never shared with the model, client, or user.
Visibility in production
When a monitor fires, your team needs to know what happened and act fast. Protoguard turns flagged activity into alerts with context, surfaced in one place and recorded for review.
Every alert shows what triggered it, which agent was involved, and the user identity behind the request.
Message reviews, policy checks, and blocked requests all land in the Protoguard console, so your team works from a single view.
Reviews, alerts, and blocked requests are recorded, giving security and compliance a clear history to audit.
Every interaction runs through the same checks, so unsafe instructions, risky tool use, and provider changes are caught before an agent acts.
Incoming messages are scanned for instructions that try to override your agent before it acts.
Protoguard tracks when a provider changes its tools, so updates that could break or hijack behavior are caught early.
Every tool request is matched against your filters and access policies, with the user identity behind the agent.
Outbound activity is watched so sensitive data cannot leave through a connected system.
Each request is tied to the user behind the agent, so policy checks run with the right context.
Tool requests are matched against your allowed filters before they can reach a connected system.
Secrets stay out of model context and are resolved at the gateway when a request is allowed.
Common questions about Protoguard.