| Action | Meaning |
|---|---|
allow | Answer passes all checks; return as-is |
rewrite | Answer modified (caveats added, content redacted) |
regenerate | Answer rejected; LLM asked again with stronger grounding |
block | Policy violation; no answer returned |
The deciders
Configuration
SetPOLICY_MODE per deployment:
enforce(default) — apply decisions as-isobserve— log decisions but always allow (shadow mode, useful for rollout)
Custom policies
In the dashboard, create policies per tenant with:- Pattern matchers (regex)
- Keyword lists
- Severity (low / medium / high / critical)
- Action (allow / rewrite / block)