ProductDocsPricingBlog
AI AGENT GOVERNANCE

Govern every tool callbefore it executes.

NjiraAI intercepts agent tool calls before execution. Block unsafe actions, redact sensitive data, and route risky requests to human approval — with a full audit trail.

Book a demoRead the docs

Watch NjiraAI evaluate live tool calls

Audit trace
2026-02-05 14:12:09Z
Tool call
{
  'tool': "db.query",
  'args': {
    "sql": "DROP TABLE customers;"
  }
}
Verdict
BLOCK
DB.DESTRUCTIVE_QUERY

Destructive query stopped before execution.

trace_idtr_9f2c…a13b
policyprod/tool-safety@v12
Tool call → verdict → trace
Audit trace
2026-02-05 14:11:32Z
Tool call
{
  'tool': "email.send",
  'args': {
    "to": "[REDACTED]",
    "body": "Your info..."
  }
}
Verdict
MODIFY
PII_REDACTION

Email address auto-redacted from arguments.

trace_idtr_8a1b…c45d
policyprod/privacy-guard@v4
Tool call → verdict → trace
Audit trace
2026-02-05 14:10:58Z
Tool call
{
  'tool': "stripe.refund",
  'args': {
    "amount": 750.00,
    "reason": "customer_request"
  }
}
Verdict
ESCALATE
HIGH_VALUE_TX

High-value refund routed to human approval.

trace_idtr_3e4f…b21a
policyprod/finance-controls@v2
Tool call → verdict → trace

How it works

One gateway between your agents and their tools.

Every tool call is intercepted, evaluated against policy, and logged — before anything touches your systems.

AgentNjiraAITools
01

Intercept

Every tool call passes through NjiraAI before reaching your APIs, databases, or external services.

02

Evaluate

Policies check arguments in real time — block destructive queries, redact PII, route high-risk actions for human approval.

03

Record

Every verdict is traced: what the agent tried, what policy matched, what happened, and why.

ALLOWMODIFYBLOCKESCALATE

Four verdicts. Every tool call gets one.

What NjiraAI catches

Real scenarios. Real tool calls. Stopped before they cause damage.

BLOCKdb.query

Stop destructive SQL

Agent hallucinates a DROP TABLE. NjiraAI blocks the query before it reaches the database.

MODIFYapi.request

Prevent PII exfiltration

Support agent sends customer SSN to a third-party API. NjiraAI redacts the PII from arguments before execution.

ESCALATEstripe.refund

Require approval for high-risk actions

Agent tries to issue a $5,000 refund. NjiraAI holds the action and routes it to a human for sign-off.

See these scenarios live in a demo

Enterprise ready

Built for production, not just prototypes.

Deploy with the controls your security and compliance teams require before signing off.

Shadow Mode
Observe live traffic without enforcing. Validate policies against real agent behavior before flipping to active.
Policy Versioning
Version, test, and stage policy changes. Roll out per tool, per environment — roll back in seconds.
Audit Exports
Full trace logs with verdict, reason code, and payload diffs. Structured for SOC 2, ISO 27001, and internal review.
SSO / SAML + RBAC
Role-based access with scoped API keys per environment, team, or workflow. Enterprise SSO included.
VPC / On-Prem
Deploy in your own infrastructure. Private deployment options for teams with strict data residency requirements.
Trace Replay
Replay any historical tool call through current policies. Test changes against real traffic without risk.

Works with your stack

AGENT FRAMEWORKS

LangChain
LangGraph
CrewAI
Google ADK
LlamaIndex
Vercel AI SDK

LLMs

OpenAI
Anthropic
Gemini
Ollama
Quickstart guide →|Python & TypeScript SDKs →|Shadow → Enforce →

Frequently asked questions

You define what's unsafe. NjiraAI ships with default policy packs (destructive queries, PII exposure, high-value transactions), but every rule is customizable. Write your own policies or extend the defaults to match your threat model.

We assume the model can be tricked. NjiraAI enforces policies at the tool-call boundary — so even if injected instructions reach the model, the unsafe tool call is caught and stopped before execution.

In shadow mode, tool calls flow through normally while NjiraAI logs what it would have done. Once you're confident in your policies, switch to active enforcement. You can switch per tool, per environment.

Yes. NjiraAI can be deployed in your VPC, on-prem, or as a managed service. Reach out to discuss deployment options for strict compliance requirements.

Route your agent's tool traffic through our gateway or use our SDK. Integration typically takes under an hour. Latency overhead is minimal — lightweight policy evaluation with async logging.

Tool name, input arguments, policy verdict, reason code, and a trace ID. Response bodies are not stored unless you configure it. You can set up auto-redaction policies for sensitive fields.

See it stop a real tool call.

Book a 20-minute demo and we'll run NjiraAI against your agent live.

Book a demo