AI Safety Gate
Automation Safety Layer
Get protected
Documentation
n8n Safety Gate — Drop-In Workflow
⬅️ Back to Docs Home

n8n Safety Gate – Drop-In Workflow (Complete Guide)

[← Back to Docs](/docs)

This guide is for teams who already use n8n and want a production-ready Safety Gate workflow.

n8n is optional. If you are not using n8n, use the HTTP API instead.

How It Works (end-to-end)

This section describes the exact production flow implemented by the drop-in workflow.

Step 1 — Your workflow produces AI output

An upstream node (LLM/agent) produces the final AI output you intend to use to trigger a real-world action.

Step 2 — The workflow calls the Safety Gate

The workflow sends the AI output and context to:

  • POST https://aisafegate.com/api/validate

Step 3 — The workflow enforces the decision

#### If status is PASS

The workflow continues directly to your downstream action nodes.

#### If status is BLOCK

The workflow stops immediately.

#### If status is WARN

The workflow pauses and enters a polling loop.

The WARN response includes:

  • decision_id
  • approval_token

The workflow persists both values and polls for approval.

Step 4 — Human approval (WARN only)

The workflow polls:

  • GET https://aisafegate.com/api/decisions/:id/approval?approval_token=...

until either:

  • it receives { "approved": true } and continues, or
  • its built-in timeout/maximum poll count is reached and it stops.

Step 5 — Fail closed on errors and timeouts

The workflow is designed so that failures do not become execution:

  • Missing/invalid responses, missing approval parameters, or malformed approval responses stop the workflow.
  • Approval polling treats { "approved": false } as “not approved yet” (or “could not be safely evaluated”) and never as approval.
  • If approval is not observed in time, the workflow stops instead of executing.

Clarification — n8n is optional

This workflow is a convenience integration.

If you do not use n8n, you can integrate directly via HTTP using the same contract (POST https://aisafegate.com/api/validate and, for WARN, GET https://aisafegate.com/api/decisions/:id/approval?approval_token=...).

A. What this workflow is

The Safety Gate concept

AI Safety Gate is an enforcement layer that sits between **AI output** and **real-world execution**.

In n8n terms: put the Safety Gate between your LLM/agent node and anything that creates side effects (sending messages, updating systems of record, calling payment/fulfillment APIs, writing to your data stores).

Why PASS / WARN / BLOCK exist

The Safety Gate returns one of three enforcement outcomes:

  • PASS: safe to proceed.
  • BLOCK: not safe to proceed; stop immediately.
  • WARN: ambiguous/borderline; execution is paused until a human explicitly approves.

Why WARN requires human approval

WARN exists for cases where the system must not guess.

In production systems, “probably safe” is not sufficient—especially when AI output can trigger irreversible actions. WARN forces human review and prevents silent unsafe execution.

What problems this solves in real systems

  • Prevents accidental execution of policy-violating content.
  • Prevents AI from triggering irreversible side effects during outages or misconfigurations.
  • Provides a human review path (WARN) without you building a separate approval system.

B. When to use this workflow

Use the workflow when AI output is being used to:

  • **LLM outputs**: emails, chat messages, summaries, recommended next steps.
  • **User-generated content**: anything untrusted that will be published or executed.
  • **Automated pipelines**: automations that write to external systems.

When NOT to use it

Do not use this workflow:

  • For purely non-executing analysis where there are no side effects.
  • As a client-side control (do not put API keys in browsers/mobile apps).
  • As a substitute for authentication/authorization of the underlying action. The Safety Gate is an enforcement decision, not an identity system.

C. Step-by-step walkthrough (safe, production-ready)

1) Import the workflow

1. Open n8n.

2. Go to **Workflows**.

3. Choose **Import from File**.

4. Select:

- n8n-nodes-ai-safety-gate/ai-safety-gate-workflow.json

2) Add your API key (required)

Create an **HTTP Header Auth** credential in n8n with:

  • Header name: Authorization
  • Header value: Bearer <YOUR_AI_SAFETY_GATE_API_KEY>

Attach it to:

  • AI Safety Gate1
  • Poll Approval

3) Confirm the production base URL

The workflow should call:

  • https://aisafegate.com/api/validate
  • https://aisafegate.com/api/decisions/.../approval

4) Connect your AI output

Feed your AI output into the workflow so it becomes the ai_output value that is validated.

5) Connect the next step (side effect)

Connect your irreversible step (send message, publish, update record, etc.) to the workflow’s PASS path.

6) Run safely

Run the workflow and verify:

  • PASS continues to your next step
  • WARN pauses until approval is confirmed
  • BLOCK stops

D. Zero-mistake change rules

DO NOT CHANGE

ItemWhy it matters
Safety Gate HTTP Request nodeIt must call POST https://aisafegate.com/api/validate before your side effect
decision_id handlingRequired to check approval for the correct decision
approval_token handlingRequired to poll GET https://aisafegate.com/api/decisions/{decision_id}/approval?approval_token=...
STOP / error nodesErrors must stop the workflow (fail-closed)
Approval polling logicWARN must not execute until approval is confirmed

SAFE TO CHANGE

ItemWhat you can customize
Poll delayHow often the workflow checks for approval
Max approval timeHow long the workflow waits before stopping
What happens after PASSYour downstream action(s)
Disclaimer
This documentation is provided for general information only. It is not legal advice, not a guarantee of compliance, and not a substitute for your own security review. You are responsible for evaluating and meeting any legal, regulatory, and contractual obligations applicable to your use case.