PolicyForge — AI Agent Security Policy Platform

PolicyForge is an enterprise AI agent security platform that solves a critical gap: security teams cannot write or manage AI agent policies because existing tools require deep YAML expertise. With PolicyForge, any CISO or compliance officer can type a security intent in plain English and have it enforced in seconds. How it works: The user types a natural language policy such as "Block any agent that reads patient SSN or medical records." Gemini 2.0 Flash instantly converts this into a Lobster Trap YAML enforcement rule. The rule is activated and enforced immediately by the Veea Lobster Trap deep prompt inspection proxy — a MIT-licensed tool that sits between AI agents and LLM backends. Key features include a real-time security dashboard showing blocked threats, active policies, and risk scores. An attack simulator lets teams fire 10 real adversarial attacks — prompt injection, PII exfiltration, credential theft, SQL injection, jailbreak attempts — and watch them get blocked live. One-click compliance reports generate HIPAA, SOC2, and finance audit documents directly from the audit trail. PolicyForge directly addresses every Track 1 focus area: guardrails and safety layers, monitoring and observability, access control, audit trails with explainability for regulated industries, and red-teaming frameworks. The tech stack uses Gemini 2.0 Flash for policy generation, Veea Lobster Trap for DPI enforcement, FastAPI for the backend, and Next.js 15 for the frontend — deployed on Railway and Vercel.