API Reference

One gateway,
six endpoints.

REST + gRPC. Idempotent. Versioned. Trace-id-correlated end to end.

POST

/v1/intercept

Evaluate a prompt against the active policy bundle and return a verdict.

POST

/v1/scan/output

Scan a model response for PII, PHI, and policy violations before egress.

GET

/v1/policies

List active policy bundles, versions, and rule counts.

POST

/v1/policies

Apply or update a policy bundle. Hot-reloaded in <2s.

GET

/v1/audit/:traceId

Fetch the immutable, signed audit record for a given trace.

GET

/v1/health

Gateway liveness and dependency status.

Example · intercept request

request.sh

curl -X POST https://gateway.evedy.com/v1/intercept \
  -H "Authorization: Bearer $EVEDY_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "identity": "user:dev@acme",
    "model": "openai/gpt-4o",
    "prompt": "Show me the CEO payroll."
  }'

response.json

{
  "verdict": "BLOCK",
  "rule": "APRA_CPS234",
  "rationale": "Role Engineer not entitled to payroll scope.",
  "latency_ms": 42,
  "trace_id": "tr_01HZK4M0X2QYJ8N3V",
  "signed_by": "evedy-gateway:demo"
}

One gateway,six endpoints.

Example · intercept request

One gateway,
six endpoints.