Skip to main content

Policy Rules

Policy rules control how KoreShield evaluates and blocks risky inputs, outputs, and RAG content. Policies are managed in the Dashboard for hosted customers and in the managed configuration bundle for self-hosted deployments.

Typical Policy Controls

Prompt-injection detection thresholds
Data-loss prevention (PII/PHI/PCI)
Allowed tools and function calls
RAG document scanning policies

Recommendations

Start with default_action = warn in staging.
Move to block once you confirm false-positive rates are acceptable.
Use per-account policies for regulated environments.

Typical Policy Controls
Recommendations