Quickstart

Get AgentGuard running in 5 minutes.

1. Run AgentGuard

docker run -p 7777:7777 \
  -e AGENTGUARD_UPSTREAM_URL=http://your-mcp-server:8080 \
  -e SUPABASE_URL=https://xxx.supabase.co \
  -e SUPABASE_SERVICE_KEY=eyJ... \
  -v $(pwd)/policy.yaml:/app/policy.yaml \
  nascentist/agentguard:latest

2. Create policy.yaml

version: "1"
default: block

agents:
  - id: my-agent
    allow:
      - tool: read_file
      - tool: search
    block:
      - tool: delete_file
    escalate:
      - tool: send_payment

3. Point your agent at AgentGuard

Python:

from agentguard import guard
client = MCPClient(guard("http://my-mcp-server:8080"))

Node.js:

import { guard } from 'agentguard'
const client = new MCPClient(guard('http://my-mcp-server:8080'))

4. Verify it works

curl http://localhost:7777/health
# {"status":"ok","version":"1.0.0",...}

# Test a block:
curl -X POST http://localhost:7777 \
  -H "Content-Type: application/json" \
  -H "X-Agent-ID: my-agent" \
  -d '{"jsonrpc":"2.0","id":"1","method":"tools/call",
       "params":{"name":"delete_file","arguments":{}}}'
# {"error":{"code":-32600,"message":"AgentGuard: tool call blocked"}}

Open /dashboard/agents to see the live interception log.