Analysis updated 2026-05-18
Block an AI agent from deleting files, dropping database tables, or making payments without approval.
Scan AI agent tool calls for personally identifiable information before it leaves your system.
Detect prompt injection attempts trying to hijack an AI agent's actions.
Track sensitive data across multiple tool calls to catch it leaking into a later, unrelated call.
| inbharatai/jak-shield | 0xkinno/neuralvault | 0xmayurrr/ai-contractauditor | |
|---|---|---|---|
| Stars | 1 | 1 | 1 |
| Language | TypeScript | TypeScript | TypeScript |
| Setup difficulty | moderate | hard | easy |
| Complexity | 3/5 | 4/5 | 2/5 |
| Audience | developer | developer | developer |
Figures from each repo's GitHub metadata at analysis time.
Sits in front of existing AI agent tool calls, requires wiring it into your agent's MCP or tool layer.
JAK Shield is a security gateway that sits between AI agents and the real-world tools they control. When an AI agent, such as one built on Claude, OpenAI, Cursor, or frameworks like LangChain, tries to send an email, run a shell command, query a database, or call an external API, every request passes through JAK Shield first. Shield decides whether to allow, block, or flag the action for human approval before it reaches the actual tool. The policy engine is deterministic, meaning rule-based rather than AI-based, so it behaves consistently and predictably. It scans for 28 types of personally identifiable information such as social security numbers and health data, and runs a multi-stage check for prompt injection, meaning attempts by malicious content to hijack what the agent does. Cross-call taint tracking watches whether sensitive data seen in one tool call shows up unexpectedly in a later one. Every decision is cryptographically signed so it can be audited. Certain critical categories, deleting files without a safe path, dropping database tables without a filter, production deployments, and payments, are permanently blocked and cannot be overridden. For less severe blocks, a user can explicitly override a decision by writing a reason, which opens a short window of heightened scrutiny for the following calls. A timed pause mode lets teams temporarily suspend non-critical blocks during planned maintenance windows. The project is written in TypeScript, implements the Model Context Protocol for compatibility with AI clients, processes requests in under 2.3 milliseconds at the 95th percentile, is released under the MIT license, and has 179 tests passing a 45 out of 45 adversarial benchmark. The full README is longer than what was shown.
A rule-based security gateway that checks every action an AI agent tries to take before it reaches real tools like email, shell, or a database.
Mainly TypeScript. The stack also includes TypeScript, MCP.
MIT license: free to use, modify, and reuse for any purpose, including commercial use, as long as you keep the copyright notice.
Setup difficulty is rated moderate, with roughly 30min to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.