Agent Guardrails — Tiered HITL Governance for AI Agent Writes
by Ivan Fodjo
Deterministic tiered governance and human-in-the-loop guardrails for AI agent write-actions.
Free
Works with the AI tools you already use
About this skill
The problem
Autonomous agents are safe when reading data but represent a massive liability when granted write access. Without strict governance, agents can trigger irreversible side effects, drain funds, or corrupt production databases through bulk operations.
What it does
- Classifies every proposed agent action into one of four risk tiers (Deny, Tier 3 Human, Tier 2 Confirm, Tier 1 Auto).
- Enforces an non-negotiable human-in-the-loop (HITL) requirement for high-stakes domains like payments, auth, and PII.
- Prevents destructive "Deny" actions (like truncate or mass delete) from ever reaching an approval stage.
- Generates a mandatory, append-only JSON-lines audit trail for every governance decision made.
- Provides a reference Python logic for integrating these gates into existing agentic loops.
Frameworks & tools
Technology-agnostic logic. Reference implementation available in Python with zero third-party dependencies.
Why this beats prompting it yourself
LLMs are notoriously bad at self-policing and often hallucinate that a dangerous action is "safe." This skill provides a deterministic classification procedure that favors over-asking over catastrophic failure, ensuring the agent's self-assessment never overrides hard-coded safety invariants.
Use cases
- Governing financial agents that execute refunds or payouts over specific thresholds.
- Adding an approval gate to DevOps agents before they deploy to production or modify infrastructure.
- Protecting CRM data from bulk deletion or unauthorized PII exports by an AI.
- Managing database migrations where irreversible mutations require manual sign-off.
Known limitations
Requires an implementation of an "Approver" interface (like a CLI prompt or Slack webhook) to handle Tier 2 and Tier 3 actions.
Details
How to install
Drop the file into your AI Agent. Works with Claude, Cursor, ChatGPT, and 20+ more.
Reviews
No reviews yet - be the first to share your experience.
Only users who have downloaded or purchased this skill can leave a review.
No reviews yet - be the first to share your experience.
Only users who have downloaded or purchased this skill can leave a review.
Security Scanned
Passed automated security review
Permissions
No special permissions declared or detected
Creator
Frequently Asked Questions
Browse More Skills
designing-hybrid-context-layers
Architects the right retrieval strategy for every query — teaching your agent when to use RAG, a knowledge graph, or a temporal index instead of defaulting to vector search for everything.
Bounty Security Pattern Master Library — 399 Vulnerability Patterns
A premium library of 399 vulnerability patterns and DeFi attack vectors for AI-driven bug hunting and security audits.
synthesizing-institutional-knowledge
Builds the organizational memory schema your AI agent needs to answer why — capturing decision provenance, causal chains, and event context that embedding-based retrieval permanently discards.
code-reviewer
Reviews your code for bugs, security vulnerabilities, logic errors, performance issues, and style violations. Organizes findings by severity and suggests fixes with code examples.