Guardrails (AI Guardrails)

## What Are Guardrails? Guardrails (AI Guardrails) is a collective term for safety mechanisms that monitor LLM inputs and outputs to automatically detect and block harmful content generation, sensitive information leakage, and policy violations. Just as roadside guardrails prevent vehicles from veering off course, they keep AI behavior within acceptable boundaries. ### Input Side and Output Side Guardrails function across two primary layers. **Input Guardrails**: Inspect user input before it reaches the model. This includes prompt injection detection, personally identifiable information (PII) masking, and topic restrictions (blocking off-topic queries). **Output Guardrails**: Inspect model responses before they are returned to the user. This involves filtering harmful expressions, verifying factual accuracy (grounding), and checking for sensitive data leakage. ### Implementation Approaches It is common practice to combine rule-based approaches (regular expressions, keyword lists) with ML-based approaches (classification models, evaluation by a separate LLM). Designing guardrails in alignment with the risk categories outlined in the OWASP LLM Top 10 improves overall coverage. ### Operational Pitfalls Excessive guardrails degrade the user experience. When legitimate work-related queries are incorrectly blocked — so-called "false positives" — users stop using AI tools altogether. Threshold tuning and transparent feedback explaining why a query was blocked are key to effective operation.