Bounded autonomy
for AI agents.
Define what your agents can do. Approve what's risky. Audit everything. Tollgate is the policy and approval layer between your agents and the real world.
issue_refund
$30 · customer c_001
issue_refund
$1,200 · customer c_002
Exceeds auto-approve threshold
Approval request sent to #approvals
How it works
From risky to safe in three steps.
Define your policy
Write a YAML policy that specifies which actions are allowed, which need approval, and which are always blocked. Version-controlled, auditable.
rules:
- action: issue_refund
conditions:
- field: amount
op: lte
value: 50
decision: allow
- action: issue_refund
conditions:
- field: amount
op: lte
value: 500
decision: pending
notify:
slack: "#approvals"
Wrap agent actions
Add a single decorator to your agent functions. Zero changes to agent logic — Tollgate intercepts before execution.
import tollgate as tg
client = tg.Tollgate(
api_key=os.environ["TG_KEY"]
)
@client.guard("issue_refund")
def issue_refund(amount, customer_id):
# only runs if policy allows
stripe.refund(amount, customer_id)
Approve in Slack
High-risk actions pause and notify your team in Slack. One click to approve or reject — with full context and audit trail.
🔔 Approval required
Decision engine
Every action evaluated. Before it runs.
Write a YAML policy. Tollgate intercepts every tool call and returns a decision in under 50ms — allow, deny, or hold for human approval.
policy.yaml
version: 1
rules:
- action: issue_refund
when:
amount: { lte: 50 }
decide: allow
- action: issue_refund
when:
amount: { lte: 500 }
decide: require_approval
approvers: ["#approvals"]
- action: delete_account
decide: deny
reason: "Manual only"
default: allow
Agent activity
0 evaluated
< 50ms
median decision latency
100%
action coverage
0 code changes
to your agent
Use cases
Every team deploying agents needs this.
Customer support agents
Let agents handle tier-1 tickets autonomously — password resets, status checks, small refunds. Escalate anything that touches money or account standing.
- Issue refunds under $50
- Reset passwords
- Update shipping address
Requires approval: Cancel subscriptions, large credits
Finance automation
Automate AP/AR workflows with guardrails. Agents process invoices, flag anomalies, and route large transactions for human sign-off.
- Process invoices under $10k
- Flag duplicate vendors
- Auto-reconcile
Requires approval: Wire transfers, new vendor creation
DevOps & infra agents
Give agents read access everywhere and write access where it's safe. Production deployments and config changes still require a human in the loop.
- Scale read replicas
- Rotate non-prod secrets
- Restart services
Requires approval: Production deploys, DB migrations
Sales & CRM agents
Agents can enrich leads, draft emails, and update CRM fields. Approvals kick in before sending external-facing messages or changing deal stage.
- Enrich lead data
- Draft outreach
- Log call notes
Requires approval: Send emails, update pipeline stage
Simple, predictable pricing.
Start free. Pay when you scale. No per-seat nonsense.
- Up to 10 agents
- 10,000 checks / month
- Slack approvals
- Policy-as-code (YAML)
- Full audit log
- 7-day retention
- Everything in Pro
- Unlimited agents & checks
- Custom approval workflows
- SSO / SAML
- 90-day retention
- SLA + dedicated support
- Custom integrations
Get started today
Deploy your agents. Safely.
Start free. No credit card required. Takes 10 minutes to wrap your first agent action.