Keep your Claude Code or
ChatGPT subscription.
Or run hundreds of models directly through Gate.
Threats → defense
Relying on the model to defend itself will never be enough. Gate blocks attacks before they reach the model.
One line of attacker text can override your system prompt — exfiltrating data, calling tools, or hijacking the conversation.
Blocked before the model sees it.
A customer's SSN, an API key, an internal note — one wrong response is all it takes to send a secret somewhere it shouldn't be.
Redacted before the response returns.
Your agent trusts whatever its tools return. An attacker-controlled webpage, ticket, or doc becomes its next set of orders.
Stopped before your agent acts.
Gate accepts the same calls your agent already makes and forwards them to the model.
Checked in either direction for injection attempts, credential leaks, and PII.
Gate enforces it inline: blocking attacks, redacting secrets, flagging the rest, and sealing every decision to a tamper-evident audit log.
Benchmarks
F1 across 16 public prompt-injection benchmarks
ranked #1 on 8 of them · 1% FPR
Across 16 cited prompt-injection benchmarks, Gate leads the pack on overall performance. Head-to-head against the leading enterprise vendor, Gate averages 96.6% F1 versus 83.7%. Read the methodology, the data, and every per-benchmark score in the report.
across 4 public benchmarks with published head-to-head F1
Cost
Gate applies compression and caching to your requests, saving you tokens without changing model outputs. Most users can expect 20% savings or more, without changing workflows.
Gate's lossless, cache-aware compression shrinks every outbound prompt without changing what the model sees. Same response back, fewer tokens billed.
−20%+ tokens per request
Gate marks reusable prefixes such as system, tools, and history so upstream providers bill them at the discounted cached rate. Works across any provider with a prompt cache.
2–10× cheaper on the cached prefix
Private beta
Leave your email and we'll send you an invite when space opens up.
Audit trail
Every prompt, reply, and rule decision Gate handles is written to a blockchain-backed audit trail and anchored to Constellation Digital Evidence. Independently verifiable by anyone, without going through Gate.
Immutable on write. Each entry is cryptographically chained to the one before it and anchored on-chain. Nothing can be quietly altered after the fact — not by your team, not by us.
Independently verifiable. Hand a single record to an auditor, regulator, or counterparty. They confirm it against the Digital Evidence record themselves. Zero trust required.
Built to outlast us. The proofs live on Constellation's Digital Evidence layer, not on our servers. If we disappear tomorrow, your audit trail stays verifiable.
Get going
Connect the AI tools you already use, then keep your provider or pay as you go. One endpoint, every model. Same scanning and audit trail either way.
01 How you connect
A desktop app that detects the AI tools you already use and routes each through Gate with one click per tool. Install Connect, sign in once, and the app handles the rest. Most setups complete in under a minute.
Point your existing SDK at Gate. Same code, same provider key, same response shape. Every request is now scanned and audited.
# Point your existing SDK at the gateway. # No other code changes. from openai import OpenAI client = OpenAI( base_url="https://gate.constellationgate.ai/v1", api_key=os.getenv("GATE_API_KEY"), )
02 How you pay
Already have an Anthropic, OpenAI, or another provider account? Keep paying them directly. Gate adds the security inspection, redaction, and audit trail on top. The model side stays exactly as it was.
Your provider, your bill. Gate adds security and audit on top.
No provider account, no contracts. Top up a balance with Gate and run any model from a single endpoint. Frontier closed-source and the best open-source models, side by side.
+ hundreds more · frontier and open-source · one endpoint
Made it this far? Grab a beta seat →