Find the insights and best practices about our product.
General
FAQs
System & Network Requirements
Getting Started
My AI Dashboard Overview
Cranium Release Notes
2026.6.1 Release Notes
2026.4.2 Release Notes
2026.4.1 Release Notes
2026.3.1 Release Notes
2026.2.2 Release Notes
2026.2.1 Release Notes
2026.1.1 Release Notes
2025.12.1 Release Notes
2025.11.1 Release Notes
2025.10.3 Release Notes
2025.10.1 Release Notes
2025.9.1 Release Notes
2025.8.1 Release Notes
2025.7.1 Release Notes
2025.4.1 Release Notes
2025.3.1 Release Notes
2025.1.1 Release Notes
2024.12.1 Release Notes
Aiceberg Release Notes
Aiceberg 2026.6.1 Release Notes
AI Manager
My AI Systems
My AI Systems Overview
AI System Details Overview
Adding a New AI System
Self-Attesting to a Compliance Framework
Compliance Scoring
Compliance Agent [Beta]
My AI Supply Chain
Supply Chain Overview
Managing Outgoing AI Card Requests
Responding to an AI Card Request
Publishing an AI Card Without a Request
My Vendors Overview
Artifacts
Bill of Materials
Bill of Materials Overview
Creating a Bill of Materials with CodeSensor
Self-Attest to a Bill of Materials
AgentSensor Overview
Technology Search Overview
Document Library
Document Library Overview
Vulnerability Management
Arena Shield
Arena Shield Overview
Shield YAML Implementation Guide
Arena
AI Arena Overview
Vulnerability Assessment
Vulnerability Management
Vulnerability Assessment Overview
Accessing a Vulnerability Assessment
Adversarial Inputs Detector
Vulnerabilities Overview
Settings
User Manager Overview
Detect AI
Integrations
Accessing a Private VCS
Registering SSH for CodeSensor
Integrating Bitbucket with Cranium
Integrating GitHub with Cranium
Integrating GitLab with Cranium
Integrating Azure DevOps with Cranium
Continuous Monitoring Overview
VCS Service Rate Limits
CloudSensor
CloudSensor Overview
Public API
Public API Overview
Authentication & Generating Credentials
Pagination & Incremental Sync
Rate Limits & Error Handling
Endpoint Reference
Bills of Materials
Technology Vulnerabilities
Arena Models
Arena Model Vulnerabilities
Aiceberg
Listen vs Enforce Overview
Guardian Overview
Inventory
Inventory Overview
How to Create a Model
How to Create a Profile
How to Create a Use Case
Activity
Sessions Activity Overview
Session Events Overview
Monitoring Activity Overview
Monitoring Events Overview
Playground Overview
Trace Overview
Cannon
Cannon Overview
Cannon Runs Overview
Cannon Results Overview
Collections Overview
How to Create a Collection
Observe
Use Case Overview
Profile Analysis Overview
Shadow AI Overview
Admin
Admin Overview
User Management Overview
Roles Overview
Shadow AI
Shadow AI Activity Tables
Guardian Overview

Guardian is the core of the Aiceberg platform. It is the engine that evaluates your AI traffic, classifying prompts and responses against the signals a profile is configured to detect and acting on or recording what it finds. The monitoring, analysis, and testing surfaces across the platform all work from waht Guardian produces.

What Guardian Does

Guardian inspects the traffic flowing between your AI tool and the LLM it calls. For each prompt and response, it detects the signals defined in the governing profile, such as toxicity, sensitive data, adversarial inputs, intent, and others, and determines what action to take based on the profile's settings. Depending on how the profile is configured, Guardian can block content, modify it, or allow it through, and it records the results of every evaluation.

Because Guardian evaluates traffic as it happens, it can operate in real time when set up to sit in the path of your traffic. The results it produces are what populate the monitoring and analysis views, so the activity you review across the platform reflects what Guardian detected and did.

How Guardian is Configured

A profile defines how Guardian behaves. The profile determines which signals Guardian detects, how it responds when a signal fires, and what actions it takes on inputs and outputs. One profile can govern many use cases, and the same profile can be applied where you need consistent handling of AI traffic.

A profile runs in one of two modes, which determines whether Guardian acts on traffic or only observes it:

  • Enforce places Guardian in-line, in the path between your AI tool and the LLM, where it can block or modify content before it reaches its destination.
  • Listen places Guardian in parallel, evaluating a copy of the traffic without sitting in its path, so it records what it finds and reports a recommended action without changing the traffic.

For the full explanation of the two modes, see Listen vs Enforce.

Working With Guardian

The platform's other surfaces are built around what Guardian evaluates:

  • Monitoring surfaces live and recent activity, letting you review the events Guardian processed and the actions it took.
  • Use Case Analysis breaks down the activity of a single deployment so you can understand what is driving its numbers.
  • Cannon runs collections of prompts through a profile in bulk, so you can validate how Guardian responds across a defined set of inputs before real traffic flows.
  • Trace explains individual classifications, showing what Guardian detected, where in the text it was found, and why it was classified that way.

Together these let you configure how Guardian governs your AI traffic, confirm it behaves the way you expect, and review what it detects and does once it is in place.

Did this answer your question?