Skip to main content
COMPEL Body of Knowledge
Get Certified Platform

COMPEL Glossary / guardrail

Guardrail

A control placed between the user or environment and an LLM that blocks, rewrites, or classifies content at one of four architectural layers: input filter, policy filter, output filter, or tool-call validator.

What this means in practice

Taught as a layered architecture rather than a single product.

Synonyms

LLM guardrails , AI safety layer

Related Terms Network

This diagram shows how Guardrail connects to other concepts in the COMPEL body of knowledge. Each linked node is a term you can explore in turn.

Related terms for Guardrail Network graph showing 3 related glossary terms connected to Guardrail. Guardrail Content sa… Excessive … Red-team (…
3 related concepts connected to Guardrail.

The COMPEL Glossary Graph visualizes relationships between framework terminology, showing how concepts interconnect across domains, stages, and pillars. Term nodes cluster by pillar affiliation while cross-references reveal semantic dependencies — for example, how risk appetite connects to control effectiveness, model governance, and assurance requirements. This network representation helps practitioners navigate the framework vocabulary and understand that COMPEL terminology forms a coherent conceptual system rather than isolated definitions.

Accessible list of related terms
  • Content safety classifier — A model or rule system that detects policy-violating output categories — violence, self-harm, CSAM, targeted harassment, dangerous instructions, and similar.
  • Excessive agency — A failure mode in which an LLM has been wired into tools and permissions whose blast radius exceeds what its supervision and validation logic can safely bound.
  • Red-team (for LLMs) — A structured adversarial exercise against an LLM feature using human, automated, or hybrid techniques drawn from MITRE ATLAS or OWASP LLM Top 10 to discover failure modes before attackers do.

See also

  • Content safety classifier — A model or rule system that detects policy-violating output categories — violence, self-harm, CSAM, targeted harassment, dangerous instructions, and similar.
  • Excessive agency — A failure mode in which an LLM has been wired into tools and permissions whose blast radius exceeds what its supervision and validation logic can safely bound.
  • Red-team (for LLMs) — A structured adversarial exercise against an LLM feature using human, automated, or hybrid techniques drawn from MITRE ATLAS or OWASP LLM Top 10 to discover failure modes before attackers do.

Related articles in the Body of Knowledge