Guardrails AI

registryPyPI

package nameguardrails-ai

maintainerGuardrails AI

Guardrails AI is a Python framework for adding input and output validation to LLM applications, enforcing schemas, detecting sensitive data, and applying content policies. It sits between the application and the model, validating every prompt and response. Enterprise deployments use it to enforce compliance policies on AI outputs.

api usage

Checking Guardrails AI

guardrails-ai 0.5.0 is a clean version with no known supply chain compromise. The response returns compromised: false with an empty sources array.

bash

curl "https://api.attestd.io/v1/check?product=guardrails-ai&version=0.5.0" \
  -H "Authorization: Bearer YOUR_API_KEY"

json

{
  "product": "guardrails-ai",
  "version": "0.5.0",
  "supported": true,
  "risk_state": "none",
  "supply_chain": {
    "compromised": false,
    "sources": [],
    "malware_type": null,
    "description": null,
    "advisory_url": null,
    "compromised_at": null,
    "removed_at": null
  },
  "last_updated": "2026-05-01T00:00:00Z"
}

attack surface

Why this package is monitored

Security validation middleware is a high-value target because a backdoored version can selectively pass through malicious content while appearing to block it, silently undermining the security controls that depend on it.

Attestd monitors guardrails-ai using the following detection sources:

registry

Manually curated advisories in the Attestd registry, verified by a human analyst. Confidence 1.0.

osv

OSV.dev malicious-package advisories with IDs prefixed MAL-. Confidence 0.95.

pypi_yank

Versions yanked on PyPI with a security-related yanked_reason annotation. Confidence 0.80.

Supply chain overview All PyPI packages LangChain OpenAI SDK (Python)Pydantic Response fields