Question 1

What happens when Quint blocks an agent action?

Accepted Answer

The agent receives a structured error response explaining which policy was violated and why the action was blocked. Developers see a clear message — not a cryptic timeout. Blocked events are logged with full context (agent, tool call, risk score, matched policy) and routed to your alert channels. You can configure block, flag, or allow per policy — flagged actions still execute but generate an alert for review.

Question 2

How is this different from a CASB or API gateway?

Accepted Answer

CASBs and API gateways sit at the network perimeter — they see traffic leaving your infrastructure. Quint sits at the endpoint, intercepting tool calls before they execute. It sees the full conversation context: which agent, what it was asked to do, what tools it's calling, and what data it's accessing. A gateway can't tell you that Claude Code is running rm -rf after reading your .env file. Quint can, and it blocks it in real time.

Question 3

We have 500+ developers. How does fleet deployment work?

Accepted Answer

Quint ships as a single Go binary with no dependencies. Deploy via your existing MDM (Jamf, Intune, Kandji), configuration management (Ansible, Chef, Puppet), or a one-liner in your onboarding script. Each machine registers with your org's cloud dashboard automatically. Policies push on heartbeat — change a policy in the dashboard, and every machine picks it up within seconds. Machine inventory, health monitoring, and agent census are built in.

Question 4

Does Quint read our source code or proprietary data?

Accepted Answer

Quint audits the agent, not the developer. It inspects tool call metadata — the action verb, target path, parameters, and risk signals. It does not store, index, or transmit your source code, conversation content, or file contents. Only lightweight metadata (event type, risk score, agent ID, timestamp) is synced to the cloud dashboard. Full request/response payloads stay on the machine and are never transmitted. Enterprise customers can audit exactly what leaves the machine via the local event log.

Question 5

What if an agent uses a tool Quint doesn't recognize?

Accepted Answer

Quint's detection layer operates at the transport level — it intercepts HTTP/HTTPS traffic and MCP protocol messages regardless of the specific tool. Unknown tools are scored using the intrinsic action risk layer (verb + target sensitivity) and flagged for review. You can create custom policies for specific tools, endpoints, or data patterns. The system is protocol-aware, not tool-specific.

Question 6

How does the Ed25519 audit trail hold up in a compliance audit?

Accepted Answer

Every event is signed with a per-machine Ed25519 key and chained via SHA-256 hashes — each entry includes the hash of the previous entry, so any modification, insertion, or deletion breaks the chain and is cryptographically detectable. Run quint verify --all to validate the entire chain locally. Auditors can independently verify the chain without access to Quint's infrastructure. The format maps directly to SOC 2 CC6.1 (logical access), GDPR Article 30 (records of processing), and EU AI Act Article 12 (logging requirements).

Question 7

Can we write custom policies beyond the built-in frameworks?

Accepted Answer

Yes. Policies are defined as declarative rules in the dashboard — match on agent type, tool name, target path patterns, risk score thresholds, time windows, or any combination. Examples: block all file writes to /etc/** from any agent, flag any agent accessing files matching *.pem or *.key, require approval for any action with risk score above 70 outside business hours. Policies compose — multiple rules can match the same action, and the strictest verdict wins.

Question 8

What's the latency impact on developer workflows?

Accepted Answer

Risk scoring runs in real time at the edge — the daemon processes everything locally with no cloud round-trip for enforcement decisions. In benchmarks, added latency is negligible. Agents like Claude Code and Cursor make tool calls that take 50-500ms to execute; Quint's overhead is invisible. The daemon uses minimal memory and negligible CPU. Developers genuinely cannot tell it's running.

Question 9

What is divergence detection?

Accepted Answer

Quint operates at two layers simultaneously: a proxy that captures what agents say they'll do (intent), and an OS-level sensor that captures what they actually do (truth). The gap between intent and truth is the most reliable signal for detecting compromised, misconfigured, or malicious agents.

Question 10

Does Quint monitor developer activity?

Accepted Answer

No. Quint audits the agent, not the developer. We monitor AI agent tool calls and system actions — we do not track keystrokes, browsing history, or developer productivity. Agent security is a security control, not employee surveillance.

Your AI agents are

See Quint in action.

Intent vs. Truth. That's the Signal.

One Command Install

Two Layers Capture Everything

Divergence Detection

Enforce & Audit

Two layers. One truth.

Everything you need to secure AI agents.

See every agent and every action

Know every agent on your network

Score in real time. Enforce at the edge.

Declarative rules, fleet-wide control

Tamper-proof evidence, 16 frameworks

Every machine. Your existing stack.

16 frameworks. Continuous evaluation.

Divergence-powered risk scoring. Per agent, in real time.

Multi-Layer Scoring Pipeline

Frequently Asked Questions

Secure your agents.
Ship with confidence.