The prompt injection firewall for AI agents.
Benchspan is a real-time classifier that blocks prompt injection attacks aimed at your AI agent. Drop the SDK into your existing LangChain, CrewAI, OpenAI Agents, Vercel AI, or Google ADK stack and every tool output and user message gets scanned before it reaches the LLM. - Inline. Runs as a callback or middleware in your existing framework, not a separate service to orchestrate. - Built for the agent era. Detects indirect prompt injection hiding in tool outputs, HTML, and email, not just user jailbreaks. - Free up to 50,000 requests / month, forever. No credit card to start. ## How it works What Benchspan scans, what it blocks, and the verdicts it returns. ## Framework integrations LangChain, CrewAI, OpenAI Agents, Vercel AI, Google ADK, raw SDKs. ## REST API Use Benchspan directly from any language. Full HTTP reference. ## At a glance ```python from benchspan import BenchGuard from langchain_anthropic import ChatAnthropic guard = BenchGuard(api_key="ag_live_...") llm = ChatAnthropic(model="claude-sonnet-4-6") # Injection in any message will raise InjectionDetectedError before Claude is called. result = llm.invoke(messages, config={"callbacks": [guard]}) ``` ```typescript import { BenchGuard } from "@benchspan/sdk"; const guard = new BenchGuard({ apiKey: "ag_live_..." }); const { injection, verdict } = await guard.scan(toolOutput, { role: "tool" }); if (injection) throw new Error("Blocked by Benchspan"); ``` ## Who uses Benchspan Teams shipping agents in production that read untrusted content: email, uploaded documents, web pages, third-party tool outputs. The attack surface expanded the moment your agent started calling tools. Benchspan sits between the tool and the model.
For AI researchers, Benchspan enables rapid comparison of different LLM agents on standardized benchmarks. Example: Compare GPT-4o and Claude 3.5 Sonnet on HumanEval, identifying which model yields higher code generation accuracy in under an hour.
For software engineers, Benchspan facilitates quick regression testing of AI coding assistants. Example: Run a suite of 50 SWE-bench instances after a prompt update to ensure core functionality remains intact, preventing costly production bugs.
For startup CTOs, Benchspan provides a centralized dashboard to track and validate improvements in agentic workflows. Example: Monitor performance metrics across multiple agent versions on a custom internal benchmark, ensuring a 10% reduction in task completion time before deployment.
For independent developers, Benchspan simplifies the onboarding and testing of new AI agents. Example: Integrate a custom web-browsing agent using a single runner.sh script and verify its performance on Terminal-Bench, getting initial results within minutes.
Benchspan offers a free tier that includes 50,000 requests per month indefinitely. This allows users to get started with real-time security for their AI agents without initial cost.
Benchspan provides a free tier with 50,000 requests per month. For higher usage needs, they offer paid plans, with pricing details typically available upon request or through a demo.
Benchspan is an AI agent security platform designed to provide real-time protection against prompt injection and other attacks. It focuses on securing AI agents in production by detecting and blocking threats before they can impact the agent's operations.
Key features include a prompt injection firewall for AI agents, real-time threat detection, AI observability to see all agents in an environment, and AI security to block various attacks. They also offer AI red teaming services for pre-launch testing.
Benchspan provides a free tier that allows for 50,000 requests per month, which can be used indefinitely. This serves as a way to try out their security features for AI agents.
Alternatives to Benchspan in the AI security and observability space include platforms like Lakera, Azure AI Security, and Meta's security offerings. These tools also aim to protect AI agents from various threats.
Benchspan acts as a prompt injection firewall, detecting and blocking attacks that target AI agents. It is specifically built to handle indirect prompt injection, where malicious instructions are hidden within data the agent processes.
We're still verifying the official pricing for Benchspan. In the meantime, the most up-to-date plans and prices are available directly on the publisher's website.
Are you the publisher of this tool? to edit this information.
Suggested comparisons in the same category
Or pick another tool
Be the first to leave a review (no signup required)
No reviews yet.
Be the first to share your opinion!
This space lets you connect with other users of the tool: ask questions, share tips and your experience to move forward together.
agents-ia
MrChief
FreemiumStop doing everything yourself. Delegate to your AI team.
GenerativeDriveOS
FreemiumGovernance-driven operating system for deterministic AI decisions
MCP Keeper
FreemiumMCP Keeper - Monetize your MCP servers without writing payment code
Sentifyd
FreemiumYour first AI employee for your website
WebScope
FreeEnables AI agents to understand the web without screenshots by rendering pages into structured text grids.
Memorable
PaidUnlimited recall. Unlocked genius.
Just Call AI
PaidAccess AI via phone call, with up-to-date information.
MeetCRM
FreemiumCRM for AI agent-driven prospecting
Snow chat
FreemiumBuild your personal AI workspace
PolyVerge
FreemiumAsk a question. 4 AIs compete. Discover who lies.
