// GLOSSARY -- POLICY ENFORCEMENT

What is a Kill Switch for AI Agents?

1 min read Updated

An emergency mechanism that instantly blocks all agent tool calls — denying every request with a single action for immediate harm cessation when an agent is misbehaving, compromised, or in a runaway state.

WHY IT MATTERS

When things go wrong — a compromised agent, a runaway loop, a detected exploit — you need to stop everything immediately. A kill switch provides that single-action halt.

A kill switch must be: instant (sub-second effect), comprehensive (blocks all tool types), reliable (works even if the agent is malfunctioning), and accessible (can be triggered quickly by operators).

The kill switch is the last resort. Normal policies, rate limits, and circuit breakers handle routine situations. The kill switch is there when those mechanisms are not enough and you need to halt all agent activity immediately.

HOW POLICYLAYER USES THIS

Intercept provides kill switch functionality by switching to a deny-all policy. Since Intercept is fail-closed by default, replacing the active YAML policy with an empty or deny-all policy immediately blocks every tool call. The switch takes effect on the next policy evaluation — which happens before every tool call. No pending calls can bypass it.

FREQUENTLY ASKED QUESTIONS

How fast does the kill switch take effect?
Immediately on the next tool call evaluation. Since Intercept evaluates the YAML policy before every tool call, switching to a deny-all policy means the very next call is denied. In-flight calls that have already been forwarded to the server cannot be stopped.
Can I kill-switch a single agent without affecting others?
Yes. If each agent connects through its own Intercept instance (or configuration), you can switch one agent to deny-all without affecting others.
How do I re-enable an agent after a kill switch?
Restore the original YAML policy file. Intercept detects the change and begins evaluating calls against the restored policy. This ensures the re-enable is a deliberate operator action.

FURTHER READING

Enforce policies on every tool call

Intercept is the open-source MCP proxy that enforces YAML policies on AI agent tool calls. No code changes needed.

npx -y @policylayer/intercept
github.com/policylayer/intercept →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.