Skip to content

brandoncardamone/IntentGuard

BranchesTags

Repository files navigation

IntentGuard — Real-Time AI Intent Drift Firewall

A zero-trust firewall for autonomous AI intent.

IntentGuard is a production-grade system that continuously monitors AI agents for intent drift, detecting when benign workflows evolve into fraud, social engineering, or policy-violating behavior—before damage occurs.

New here?

What It Does

IntentGuard wraps your AI agents and:

  1. Intercepts tool calls before execution
  2. Infers intent using Google's Gemini API
  3. Detects drift by comparing current intent against baseline
  4. Enforces policies with allow/warn/block decisions
  5. Escalates to human review when needed

Quick Start

Follow these steps to get IntentGuard running locally.

New to this?

  • Start here: QUICKSTART.md - Step-by-step guide for getting started

TL;DR (If you're in a hurry)

npm install                    # Install dependencies
cp .env.example .env          # Create config file
# Edit .env and add your GEMINI_API_KEY
npm start                      # Start server (keep running)
# In another terminal:
npm run example                # Run example
# Or: python3 -m http.server 8000  # Then open http://localhost:8000

Step 1: Check Prerequisites

Make sure you have:

  • Node.js 18+ installed (check with node --version)
  • npm installed (comes with Node.js, check with npm --version)
  • A Google Gemini API key (Get one here)

Step 2: Install Dependencies

Open your terminal in the IntentGuard directory and run:

npm install

This will install all required packages. You should see a node_modules/ folder created.

Expected output: You'll see a lot of package installation messages. Wait until it finishes (may take 1-2 minutes).

Verify installation: After installing, run:

npm run verify

This will check if everything is set up correctly.

Step 3: Configure Environment Variables

  1. Copy the example environment file:

    cp .env.example .env

  2. Open .env in a text editor (VS Code, nano, vim, or any text editor) and find this line:

    GEMINI_API_KEY=your_gemini_api_key_here

    Replace your_gemini_api_key_here with your actual API key from Google.

    Example:

    GEMINI_API_KEY=AIzaSyDvSycUiDL52RnWWR89HLdPTWeakh7yYi0

  3. Save the file.

Important:

  • Never commit your .env file to git (it's already in .gitignore)
  • Keep your API key secret
  • The .env.example file is just a template - your real key goes in .env

Step 4: Start the Backend Server

In your terminal, run:

npm start

You should see output like:

[2026-01-24 ...] [server] info: Storage initialized
[2026-01-24 ...] [server] info: IntentGuard server running on port 3000

Keep this terminal window open - the server needs to keep running.

Tip: If you want auto-reload during development, use npm run dev instead.

Step 5: Test the Server

Open a new terminal window (keep the server running in the first one) and test:

curl http://localhost:3000/health

You should see:

{"status":"healthy","service":"IntentGuard","version":"1.0.0",...}

If you see this, the server is working!

Step 6: Run an Example

Option A: Node.js Example

In a new terminal (server still running in the first one):

npm run example

You should see the example agent running and IntentGuard detecting intent drift.

Option B: Python Example

  1. Install Python dependencies:

    cd examples
pip install -r requirements.txt

  2. Run the example:

    python3 python_example.py

Step 7: View the Web Demo

  1. Open a new terminal (server still running)

  2. Start a web server to serve the frontend:

    # Option 1: Python
python3 -m http.server 8000

# Option 2: Node.js (if you have npx)
npx serve .

  3. Open your browser and go to:

    http://localhost:8000

  4. Scroll down to the "Demo" section and click "Run Simulation"

  5. Watch IntentGuard detect intent drift in real-time!

Troubleshooting

"Cannot find module" or "npm install" errors

Solution: Make sure you're in the IntentGuard directory and run npm install again.

"GEMINI_API_KEY not set" error

Solution:

  1. Test your .env file:

    npm run test-env

    This will tell you exactly what's wrong.

  2. Check .env file format:

    • Make sure it's: GEMINI_API_KEY=your_key_here (no spaces, no quotes)
    • File should be in project root (same folder as package.json)

  3. Restart the server after making changes:

    • Stop server (Ctrl+C)
    • Run npm start again

  4. See TROUBLESHOOTING.md for detailed help

"Port 3000 already in use"

Solution:

  1. Change the port in .env: PORT=3001
  2. Or stop whatever is using port 3000
  3. Restart the server

"Backend not available" in web demo

Solution:

  1. Make sure the backend server is running (npm start)
  2. Check http://localhost:3000/health in your browser
  3. The demo will fall back to mock mode if backend is unavailable

"Failed to create session" or API errors

Solution:

  1. Check your Gemini API key is correct in .env
  2. Make sure you have internet connection (Gemini API requires it)
  3. Check server logs for detailed error messages

Database errors

Solution:

# Create the data directory
mkdir -p data

Then restart the server.

Quick Reference

Start server:

npm start

Verify setup:

npm run verify

Test environment variables:

npm run test-env

Run example:

npm run example

View web demo:

# Terminal 1: Start backend
npm start

# Terminal 2: Start web server
python3 -m http.server 8000

# Browser: Open http://localhost:8000

Check if server is running:

Next Steps

Once you have it running:

  1. Read the code: Check out src/ directory to see how it works
  2. Try the examples: Modify examples/ to test different scenarios
  3. Read architecture: See ARCHITECTURE.md for deep dive
  4. Integrate your agent: Use the wrapper in your own projects

Usage

Basic Wrapper Usage (Node.js)

import { IntentGuardWrapper } from './src/wrapper/intentguard-wrapper.js';

// Initialize wrapper
const wrapper = new IntentGuardWrapper({
  apiUrl: 'http://localhost:3000',
  agentName: 'my-agent',
  baselineIntent: 'assist users with customer support'
});

await wrapper.initialize();

// Wrap your tool functions
const safeSendEmail = wrapper.wrapTool('send_email', sendEmailFunction, {
  sensitivity: 'medium'
});

// Use normally - IntentGuard intercepts automatically
await safeSendEmail({ to: '[email protected]', subject: 'Hello' });

Python Usage

from examples.python_example import IntentGuardWrapper

wrapper = IntentGuardWrapper(api_url="http://localhost:3000")
wrapper.initialize(
    agent_name="my-agent",
    baseline_intent="assist users with customer support"
)

# Wrap tools
safe_query = wrapper.wrap_tool("query_db", query_database, sensitivity="high")

# Use normally
result = safe_query(fields=["email", "name"], justification="support ticket")

Architecture

See ARCHITECTURE.md for detailed architecture documentation.

High-level flow:

Agent → IntentGuard Wrapper → Backend API
                              ↓
                         Gemini API (Intent Inference)
                              ↓
                         Policy Engine (Allow/Warn/Block)
                              ↓
                         Decision → Agent

Configuration

Environment variables (see .env.example):

  • PORT - Server port (default: 3000)
  • GEMINI_API_KEY - Your Gemini API key (required)
  • DRIFT_THRESHOLD_ALLOW - Drift score threshold for allow (default: 0.3)
  • DRIFT_THRESHOLD_WARN - Drift score threshold for warn (default: 0.6)
  • DB_PATH - SQLite database path (default: ./data/intentguard.db)
  • LOG_LEVEL - Logging level (default: info)

API Endpoints

Sessions

  • POST /api/sessions - Create a new session
  • GET /api/sessions/:sessionId - Get session details
  • GET /api/sessions - List sessions

Tool Calls

  • POST /api/tool-calls - Intercept and evaluate a tool call
  • GET /api/tool-calls/:sessionId - Get tool call history

Intent

  • POST /api/intent/infer - Manually trigger intent inference
  • GET /api/intent/:sessionId/history - Get intent inference history

Policy

  • GET /api/policy/config - Get policy configuration
  • GET /api/policy/:sessionId/decisions - Get policy decision history

Health

  • GET /health - Health check endpoint

Docker

# Build image
docker build -t intentguard .

# Run container
docker run -p 3000:3000 \
  -e GEMINI_API_KEY=your_key_here \
  intentguard

# Or use docker-compose
docker-compose up

Testing

# Run tests (when implemented)
npm test

# Lint code
npm run lint

Project Structure

IntentGuard/
├── src/
│   ├── server/          # Express backend
│   ├── intent/          # Gemini integration
│   ├── policy/          # Policy engine
│   ├── wrapper/         # Agent wrapper
│   ├── storage/         # Database layer
│   └── utils/           # Utilities
├── examples/            # Example agents
├── tests/               # Tests
├── docs/                # Documentation
└── data/                # SQLite database (gitignored)

Security

  • Never commit API keys - Use .env file (gitignored)
  • Input validation - All inputs are validated
  • SQL injection protection - Using parameterized queries
  • CORS - Configured for security
  • Error handling - No sensitive data in error messages

Development

# Install dependencies
npm install

# Run in development mode (auto-reload)
npm run dev

# Check code style
npm run lint

License

MIT License - see LICENSE file.

Contributing

This is a hackathon project. Contributions welcome!

Acknowledgments

  • Built with Google Gemini
  • Inspired by zero-trust security principles
  • Designed for the future of autonomous AI agents

Built for AI safety in the next 5–10 years.

About

hoya hacks project

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages