whatisgithub

What is jak-shield?

inbharatai/jak-shield — explained in plain English

Analysis updated 2026-05-18

1TypeScriptAudience · developerComplexity · 3/5LicenseSetup · moderate

In one sentence

A rule-based security gateway that checks every action an AI agent tries to take before it reaches real tools like email, shell, or a database.

Mindmap

mindmap
  root((JAK Shield))
    What it does
      Action gateway
      Rule based policy engine
      Signed decisions
    Tech stack
      TypeScript
      Model Context Protocol
    Use cases
      Blocking risky actions
      PII scanning
      Prompt injection detection
    Audience
      Developers
      AI agent operators
    Safety
      Critical category blocks
      Override with scrutiny
      Cross call taint tracking

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Block an AI agent from deleting files, dropping database tables, or making payments without approval.

USE CASE 2

Scan AI agent tool calls for personally identifiable information before it leaves your system.

USE CASE 3

Detect prompt injection attempts trying to hijack an AI agent's actions.

USE CASE 4

Track sensitive data across multiple tool calls to catch it leaking into a later, unrelated call.

What is it built with?

TypeScriptMCP

How does it compare?

inbharatai/jak-shield0xkinno/neuralvault0xmayurrr/ai-contractauditor
Stars111
LanguageTypeScriptTypeScriptTypeScript
Setup difficultymoderatehardeasy
Complexity3/54/52/5
Audiencedeveloperdeveloperdeveloper

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · moderate Time to first run · 30min

Sits in front of existing AI agent tool calls, requires wiring it into your agent's MCP or tool layer.

MIT license: free to use, modify, and reuse for any purpose, including commercial use, as long as you keep the copyright notice.

So what is it?

JAK Shield is a security gateway that sits between AI agents and the real-world tools they control. When an AI agent, such as one built on Claude, OpenAI, Cursor, or frameworks like LangChain, tries to send an email, run a shell command, query a database, or call an external API, every request passes through JAK Shield first. Shield decides whether to allow, block, or flag the action for human approval before it reaches the actual tool. The policy engine is deterministic, meaning rule-based rather than AI-based, so it behaves consistently and predictably. It scans for 28 types of personally identifiable information such as social security numbers and health data, and runs a multi-stage check for prompt injection, meaning attempts by malicious content to hijack what the agent does. Cross-call taint tracking watches whether sensitive data seen in one tool call shows up unexpectedly in a later one. Every decision is cryptographically signed so it can be audited. Certain critical categories, deleting files without a safe path, dropping database tables without a filter, production deployments, and payments, are permanently blocked and cannot be overridden. For less severe blocks, a user can explicitly override a decision by writing a reason, which opens a short window of heightened scrutiny for the following calls. A timed pause mode lets teams temporarily suspend non-critical blocks during planned maintenance windows. The project is written in TypeScript, implements the Model Context Protocol for compatibility with AI clients, processes requests in under 2.3 milliseconds at the 95th percentile, is released under the MIT license, and has 179 tests passing a 45 out of 45 adversarial benchmark. The full README is longer than what was shown.

Copy-paste prompts

Prompt 1
Help me connect JAK Shield in front of my Claude or LangChain agent's tool calls.
Prompt 2
Explain how JAK Shield's cross-call taint tracking catches sensitive data leaking between tool calls.
Prompt 3
Show me how to configure JAK Shield's critical category blocks so payments can never be overridden.
Prompt 4
Walk me through JAK Shield's override flow when a user needs to bypass a non-critical block.

Frequently asked questions

What is jak-shield?

A rule-based security gateway that checks every action an AI agent tries to take before it reaches real tools like email, shell, or a database.

What language is jak-shield written in?

Mainly TypeScript. The stack also includes TypeScript, MCP.

What license does jak-shield use?

MIT license: free to use, modify, and reuse for any purpose, including commercial use, as long as you keep the copyright notice.

How hard is jak-shield to set up?

Setup difficulty is rated moderate, with roughly 30min to a first successful run.

Who is jak-shield for?

Mainly developer.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.