Guardrails
The checks around a model that catch bad inputs and outputs — policy enforced outside the weights.
Guardrails are the programmatic layer wrapped around an LLM: input filters (injection, abuse, PII), output validators (schema, toxicity, groundedness), and action gates (approval before dangerous tool calls). The principle: never rely on the model to police itself — enforce policy in code you control, because the model is exactly the thing an attacker is trying to steer.