Enable a template
Starter packs
These templates match common risky action patterns. Exact keys depend on your Apie workspace — check the dashboard for available templates.| Template key | Typically guards |
|---|---|
prod-secrets | Secret and vault reads in production |
prod-deploys | Deployment and release executions |
prod-database | Database writes and schema changes |
prod-shell | Destructive shell commands (rm -rf, etc.) |
prod-merge | Production branch merges |
Test templates in monitor mode
Before enforcing, exercise templates in monitor mode to see which decisions they produce:What you’ll see
agent.guardrail.evaluated events showing which templates matched and what decision they returned (allow, warn, block, require_approval).
Workflow
- Enable templates via CLI
- Run in monitor mode and review evaluations
- Declare capabilities so templates have accurate context
- Switch to Enforce mode
Next steps
Enforce guardrails
Block actions that templates flag.
Guardrail packs recipe
Walk through all five smoke scenarios.
