@aegis-sdk/google
Advanced tools
Google Gemini SDK adapter for Aegis prompt injection defense. Scans messages in Gemini's parts[] content format and monitors streaming responses.
Part of the Aegis.js prompt injection defense toolkit.
npm install @aegis-sdk/google @aegis-sdk/core @google/generative-ai
Wrap the Gemini model client for automatic protection:
import { GoogleGenerativeAI } from '@google/generative-ai';
import { Aegis } from '@aegis-sdk/core';
import { wrapGoogleClient } from '@aegis-sdk/google';
const aegis = new Aegis({ policy: 'strict' });
const genAI = new GoogleGenerativeAI(process.env.GEMINI_API_KEY!);
const model = genAI.getGenerativeModel({ model: 'gemini-pro' });
const wrapped = wrapGoogleClient(model, aegis);
// Contents are scanned before sending.
// Streaming responses are monitored in real-time.
const result = await wrapped.generateContent({
contents: [{ role: 'user', parts: [{ text: 'Hello!' }] }],
});
Or scan messages manually:
import { Aegis } from '@aegis-sdk/core';
import { guardMessages } from '@aegis-sdk/google';
const aegis = new Aegis({ policy: 'strict' });
const contents = [
{ role: 'user' as const, parts: [{ text: userInput }] },
];
const systemInstruction = {
parts: [{ text: 'You are a helpful assistant.' }],
};
// Throws AegisInputBlocked if injection is detected
const safe = await guardMessages(aegis, contents, systemInstruction);
wrapGoogleClient(client, aegis, options?)Proxy a Gemini model instance (from getGenerativeModel()) to automatically guard generateContent() and generateContentStream(). Input contents are scanned before sending and streaming responses are monitored. All other methods pass through unchanged.
guardMessages(aegis, contents, systemInstruction?, options?)Scan an array of GeminiContent[] for prompt injection. Extracts text from Gemini's parts[] format (text parts, function responses) and runs them through aegis.guardInput(). An optional systemInstruction is included as a system-role message during scanning. Returns the original contents if safe, throws AegisInputBlocked if blocked.
createStreamTransform(aegis)Create a TransformStream<string, string> for monitoring extracted text content from Gemini streaming chunks.
getAuditLog(aegis)Convenience accessor for the Aegis audit log.
Gemini uses role: 'model' instead of 'assistant'. The adapter handles this mapping automatically. Gemini's systemInstruction is provided separately from contents and is scanned as a system-role message.
MIT
FAQs
Google Gemini SDK adapter for Aegis prompt injection defense
The npm package @aegis-sdk/google receives a total of 6 weekly downloads. As such, @aegis-sdk/google popularity was classified as not popular.
We found that @aegis-sdk/google demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
/Research
Socket detected malicious node-ipc versions with obfuscated stealer/backdoor behavior in a developing npm supply chain attack.
Security News
TeamPCP and BreachForums are promoting a Shai-Hulud supply chain attack contest with a $1,000 prize for the biggest package compromise.
Security News
Packagist urges PHP projects to update Composer after a GitHub token format change exposed some GitHub Actions tokens in CI logs.