Obiguard sits in front of your AI calls as a lightweight proxy. Every prompt, response, and tool-call passes through the inspection pipeline — where policy is evaluated, violations are surfaced, and evidence is written to the ledger.
Set OPENAI_BASE_URL (or the equivalent for Anthropic, Bedrock, Vertex) to your Obiguard gateway endpoint. All existing code continues to work.
Each request and response passes through the inspection pipeline: PII detection, injection classifiers, tool-scope checks, and your custom Policy Sets — all evaluated before the call completes.
If a violation matches a Policy Set, Obiguard takes the configured action — block, redact, flag, or allow with log. Violations route to the Review Queue for human sign-off when configured.
A lightweight HTTP proxy that speaks OpenAI, Anthropic, AWS Bedrock, Google Vertex, and Azure OpenAI. Evaluates each request and response against your active Policy Sets before forwarding. Adds ~18ms p50 latency.
Policy Sets group enforcement rules (Criteria) and are assigned to specific AI Agents. Each Criterion defines a detector, a direction (prompt or response), and an action. Criteria are versioned and can be promoted or rolled back independently.
Every policy breach creates a Violation record with the full event context. Violations can be auto-resolved or routed to the Review Queue for human annotation. All decisions are written to the Audit Log.
A project-scoped registry of every AI Agent and Use Case your team has defined. Agents are linked to Policy Sets — ensuring enforcement follows the workload. Use Cases capture the business intent behind each agent.
An append-only record of every prompt, response, tool-call, and policy decision. Timestamped and exportable. Stream to your SIEM (Splunk, Sumo Logic, custom webhook) or export a signed manifest for auditors.
Org-level Controls define what behaviour is prohibited or required. Each Control maps to one or more Criteria and to external frameworks — NIST AI RMF, EU AI Act, ISO 42001, SOC 2 CC6/CC7, and HIPAA.
OpenAI, Anthropic, AWS Bedrock, Google Vertex AI, Azure OpenAI, and any self-hosted model behind an OpenAI-compatible API. No special SDK required — just change the base URL.
Audit Log events stream in real time to Splunk, Sumo Logic, Panther, or any custom webhook. Export signed manifests for SOC 2, HIPAA, and ISO 42001 audits without manual evidence collection.
Connect in under 30 minutes. Content is processed in-memory and never stored. Only policy decisions and metadata are persisted. Ideal for teams that want governance without infrastructure overhead.
Run Obiguard inside your AWS, GCP, or Azure VPC. Your data never leaves your perimeter. We ship a signed Helm chart — your team owns the deployment, we own the updates.
For regulated industries that require zero outbound connectivity. Obiguard ships signed images and policy bundles with no external dependencies. Available on Enterprise plans.