Security Overview
Eliminate the attack vector · Run your first scan to get started
Critical Threats
0
Run a scan to detect threats
Over-Privileged Agents
0
No agents scanned yet
Agents Monitored
0
Add your first agent
Scans This Month
0
No scans run yet
Active Threat Findings
View all →
ThreatSeverityTypeDescriptionDetected
🛡
No threats detected yet
Run a scan or red team session to populate your threat feed
⚡ Red Team
Agent Risk Scores
Manage →
promptwall — activity log
Attack Vectors (30 days)
Full report →
🔑 Connect PromptWall AI
Paste your Anthropic API key to enable real AI-powered scanning. Your key is never stored — it lives in memory only for this session.
Your key is held in memory only. Close the tab and it's gone.
Get a key at console.anthropic.com → API Keys
🛡 New Agent Scan
Paste your agent's system prompt or describe what it does. PromptWall will identify every attack vector.
💡 Tip: Paste the actual system prompt for the deepest analysis
🚀
Coming Soon
This feature is under active development.
Coming Soon
Active Threats
All findings from scans and red team sessions
FindingSeverityTypeSourceTime
⚡ Red Team 📋 Report
Scan History
Every scan run this session — sorted newest first
⚡ Red Team
Security Policies
NullVector PromptWall · Default Policy Framework v1.0
P-001 · CRITICAL Prompt Injection Prevention
All AI agents must include explicit anti-injection instructions in their system prompt. Agents must not execute instructions embedded within user-provided content, external documents, or tool outputs. Any agent failing this policy must be quarantined before production deployment.
Applies to: All agents · Enforcement: Mandatory · Review: Monthly
P-002 · CRITICAL Least Privilege Data Access
Agents must only access data belonging to the currently authenticated user. Cross-account data access is prohibited. Agents must not return bulk data exports, structured PII dumps, or aggregated records. All data access must be scoped to the minimum required for the stated task.
Applies to: All agents with data access · Enforcement: Mandatory · Review: Monthly
P-003 · HIGH System Prompt Confidentiality
Agents must not reveal, summarise, paraphrase, or confirm the existence of their system prompt under any circumstances. Agents must be tested for prompt leakage before each production deployment and after every system prompt change.
Applies to: All agents · Enforcement: Mandatory · Review: On each deployment
P-004 · HIGH Human-in-the-Loop for High-Risk Actions
Agents must not autonomously execute irreversible actions — including financial transactions, bulk data deletion, external communications, or privilege changes — without human approval. Session-level caps must be enforced for all financial tool calls.
Applies to: Agents with action tools · Enforcement: Mandatory · Review: Quarterly
P-005 · MEDIUM Regular Red Team Testing
All production AI agents must undergo a full PromptWall red team scan at minimum once per month and after every system prompt update. Red team results must be logged, reviewed by a responsible owner, and critical findings remediated within 72 hours.
Applies to: All production agents · Enforcement: Recommended · Review: Monthly
P-006 · STANDARD EU AI Act Compliance Baseline
All AI agents processing EU citizen data must comply with the EU AI Act and GDPR Article 32. Agents classified as high-risk under the EU AI Act must maintain an audit log of all interactions, undergo documented conformity assessment, and register with the EU AI database prior to deployment.
Applies to: EU-facing agents · Enforcement: Legal obligation · Review: On regulation update
Policy Framework v1.0 · NullVector Ltd
These policies represent the minimum security baseline recommended by NullVector for all AI agent deployments. Full policy enforcement and custom policy creation is available on the Growth and Enterprise plans. Last reviewed: March 2025 · Next review: June 2025
⚡ Test Against These Policies
Settings
Account, API key, and preferences
Account
First Name
Company
Email
Plan
Starter (Free)
Upgrade →
Anthropic API Key
Your API key powers PromptWall's AI scan engine and red team attacks. It's stored in memory only — never persisted to disk or sent to our servers.
No key loaded this session
Scan Preferences
Auto-update dashboard after scan
Automatically refresh stats when a scan completes
Show scan terminal log
Display live terminal output during scans
Red team notifications
Alert when a critical breach is detected
Danger Zone
Clear all data
Wipes scan history, red team logs, and account data
PW
PromptWall
by NullVector Ltd · v1.0.0
AI agent security platform. Eliminate the attack vector before attackers do.
promptwall.io [email protected] Cork, Ireland · EU
Permission Auditor
Analyse agent permission scope · detect over-privilege
Agent Name
What is this agent's purpose?
Current Permissions & Tools
List everything this agent can access — APIs, databases, tools, data types, external services
What the AI analyses
PromptWall will evaluate each permission against the agent's stated purpose, flag anything excessive, score overall privilege level, and recommend a minimal permission set following the principle of least privilege.
Live Agents
Monitoring
Every agent tracked by PromptWall — full risk profile and scan history
Integrations
Connect PromptWall to your existing security stack
● Available Now
🤖
Anthropic API CONNECTED
Powers all AI scan analysis, red team evaluation, permission auditing, and hardened prompt generation.
○ Coming Soon — Growth & Enterprise Plans
💬
Slack COMING SOON
Get instant alerts in your security channel when critical threats or red team breaches are detected.
PagerDuty COMING SOON
Trigger on-call incidents automatically when a critical vulnerability is found in a production agent.
GitHub Actions COMING SOON
Run PromptWall scans automatically on every pull request that modifies an agent's system prompt.
🔍
Splunk / SIEM COMING SOON
Forward all PromptWall findings and audit logs directly into your SIEM platform for centralised security monitoring.
📋
Jira COMING SOON
Auto-create Jira tickets for every critical finding with full vulnerability details and remediation steps attached.
EU AI Act Compliance
All PromptWall integrations are designed to meet EU AI Act Article 9 risk management requirements. Audit logs generated by every integration are retained for 10 years in compliance with Article 12.
Attack Vector Report
Full breakdown across all scans and red team sessions
📋 Full Security Report