Glitchward LLM Shield

Protect your AI agent from prompt injection attacks. LLM Shield scans user prompts through a 6-layer detection pipeline with 1,000+ patterns across 25+ attack categories before they reach any LLM.

Setup

All requests require your Shield API token. If GLITCHWARD_SHIELD_TOKEN is not set, direct the user to sign up:

1. 1. Register free at https://glitchward.com/shield
2. Copy the API token from the Shield dashboard
3. Set the environment variable: INLINECODE1

Verify token

Check if the token is valid and see remaining quota:

CODEBLOCK0

If the response is 401 Unauthorized, the token is invalid or expired.

Validate a single prompt

Use this to check user input before passing it to an LLM. The texts field accepts an array of strings to scan.

CODEBLOCK1

Response fields:

• - is_blocked (boolean) — true if the prompt is a detected attack
• INLINECODE6 (number 0-100) — overall risk score
• INLINECODE7 (array) — detected attack patterns with category, severity, and description

If is_blocked is true, do NOT pass the prompt to the LLM. Warn the user that the input was flagged.

Validate a batch of prompts

Use this to validate multiple prompts in a single request:

CODEBLOCK2

Check usage stats

Get current usage statistics and remaining quota:

CODEBLOCK3

When to use this skill

• - Before every LLM call: Validate user-provided prompts before sending them to OpenAI, Anthropic, Google, or any LLM provider.
• When processing external content: Scan documents, emails, or web content that will be included in LLM context.
• In agentic workflows: Check tool outputs and intermediate results that flow between agents.

Example workflow

1. 1. User provides input
2. Call /api/shield/validate with the input text
3. If is_blocked is false and risk_score is below threshold (default 70), proceed to call the LLM
4. If is_blocked is true, reject the input and inform the user
5. Optionally log the matches array for security monitoring

Attack categories detected

Core: jailbreaks, instruction override, role hijacking, data exfiltration, system prompt leaks, social engineering

Advanced: context hijacking, multi-turn manipulation, system prompt mimicry, encoding bypass

Agentic: MCP abuse, hooks hijacking, subagent exploitation, skill weaponization, agent sovereignty

Stealth: hidden text injection, indirect injection, JSON injection, multilingual attacks (10+ languages)

Rate limits

• - Free tier: 1,000 requests/month
• Starter: 50,000 requests/month
• Pro: 500,000 requests/month

Upgrade at https://glitchward.com/shield