Clampd is an open-source security proxy that intercepts, analyzes, and controls every tool call your AI agents make. Stop prompt injection, data exfiltration, and privilege escalation — before they happen.
⚡ Coming Q2 2026 · Rust proxy + Python SDK
AI agents call tools with full credentials. One prompt injection turns your helpful assistant into an attacker with insider access.
Malicious instructions hidden in retrieved documents redirect your agent to execute harmful tool calls.
Agents inherit broad OAuth scopes. One compromised chain grants access to delete databases, send emails, transfer funds.
Injected payloads silently exfil sensitive data through tool calls — API keys, PII, credentials sent to attacker endpoints.
Multi-step agents amplify risk. A single poisoned step cascades through the entire chain with compounding damage.
Developers spin up agents with API keys. No logging, no approval, no audit trail. Your CISO doesn't know they exist.
When an agent goes rogue, there's no way to cut access in real-time. By the time you notice, the damage is done.
Clampd sits between your agent and its tools. Every call passes through a 7-stage security pipeline — in under 2ms.
Agent calls clampd proxy instead of the tool directly. Zero code changes — just swap the endpoint.
Clampd verifies the agent's identity via scoped tokens. No more shared API keys. Every agent gets least-privilege credentials.
Intent analysis engine inspects the call payload. Pattern matching catches SQL injection, path traversal, data exfil attempts, and SSRF.
Policy engine checks allow/deny rules against the agent's scope, the tool, and the payload. Violations are blocked instantly.
Clean calls proxy through with minimal latency. Threats trigger the kill switch — revoke tokens, alert the team, log everything.
Join the waitlist. Be the first to secure your AI agents when we launch.
No spam. Just launch updates. Unsubscribe anytime.