Back to AI Glossary
Evaluation & Safety

Guardrails

Programmatic constraints placed around AI model inputs and outputs to prevent harmful, off-topic, or policy-violating behavior.

Why it matters

Guardrails are how you ship AI to production without anxiety. They are the safety net between a capable-but-unpredictable model and real users.

Input vs. output guardrails

Input guardrails screen user messages before they reach the model — blocking prompt injection attempts, filtering PII, and enforcing topic boundaries. Output guardrails validate model responses before they reach the user — checking for toxicity, factual consistency, format compliance, and policy adherence.

Implementation patterns

  • Rule-based — regex, keyword blocklists, format validators. Fast and predictable.
  • Classifier-based — lightweight ML models that detect toxicity, PII, or off-topic content.
  • LLM-as-judge — use a second LLM call to evaluate whether the output meets quality criteria.
  • Constitutional AI — self-critique loops where the model checks its own output against principles.

Frameworks

Guardrails AI, NeMo Guardrails (NVIDIA), and Anthropic's built-in safety layers are the main options. Many teams also build custom guardrail pipelines tailored to their domain.

Related Terms

HallucinationWhen an AI model generates information that sounds plausible but is factually incorrect, fabricated, or unsupported by its training data or provided context.ObservabilityThe practice of monitoring, tracing, and evaluating AI system behavior in production — including LLM calls, latency, costs, retrieval quality, and output correctness.

On the AI Radar

Prompt Injection DefenseTechniques and tools for defending AI applications against prompt injection attacks — where malicious inputs manipulate model behaviour. Still the #1 OWASP vulnerability for LLM applications.AI Red TeamingSystematic adversarial testing of AI systems to identify vulnerabilities, biases, and failure modes before deployment. Combines traditional security testing with AI-specific attack techniques.
Back to AI Glossary