> ## Documentation Index
> Fetch the complete documentation index at: https://docs.kazzle.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Security overview

> How Kazzle protects your system - tool policies, limits, and prompt injection defense.

Kazzle gives the AI real tools - shell, file editing, browsing, deployments. You stay in control of what it can and can't do.

|                                                        |                                                               |
| ------------------------------------------------------ | ------------------------------------------------------------- |
| [Tool policies](/security/tool-policies)               | Choose which commands, domains, and file paths the AI can use |
| [Prompt injection defense](/security/prompt-injection) | External content can't hijack the AI                          |

Kazzle ships with sensible defaults. Adjust them in **Settings > AI safety**.

## Limits

Limits pause the AI when it exceeds a threshold in a single response. The AI stops, shows what it's done so far, and asks whether to continue or stop.

This prevents runaway behavior. An AI that starts editing 50 files when you expected 3 gets caught early.

### Default limits

| Counter          | Default threshold |
| ---------------- | ----------------- |
| Files modified   | 20 per response   |
| Files deleted    | 5 per response    |
| Browser actions  | 30 per response   |
| Total tool calls | 150 per response  |

Counters accumulate across all tool calls within one response and reset when the response finishes.

### Configuring limits

Open **Settings > AI safety > Limits** to adjust thresholds per space. Set higher limits for trusted workflows, lower for exploratory ones.

The AI can also adjust limits via tool calls, but those tool calls themselves always require approval.
