Add Input Length Limit guardrail plugin against DoW attacks [#3582856]

[Tracker]
Update Summary: [One-line status update for stakeholders]
Short Description: Add Input Length Limit guardrail plugin
Check-in Date: MM/DD/YYYY
[/Tracker]

Problem/Motivation

There is currently no guardrail to limit the length of user input sent to AI providers. Excessively long inputs can be used for context stuffing attacks, denial-of-wallet attacks (consuming expensive API tokens), or to overwhelm the AI model's context window.

A simple input length limit guardrail would provide a configurable safety net that blocks requests exceeding a character or token count before they reach the provider API.

Proposed resolution

Create a new InputLengthLimit guardrail plugin that implements processInput().
Allow configuring a maximum length in characters, with an option to use the ai.tokenizer service for token-based counting instead.
The limit should apply to the last user message by default, with a configurable option to apply to the total conversation length (all messages combined).
Return a StopResult when the input exceeds the limit, with a configurable violation message.
Add tests covering both character-based and token-based limits.

AI usage (if applicable)

[x] AI Assisted Issue
This issue was generated with AI assistance, but was reviewed and refined by the creator.

[ ] AI Assisted Code
[x] AI Generated Code
[ ] Vibe Coded

- This issue was created with the help of AI

Comment	File	Size	Author
#4	screencapture-drupal11-test-ddev-site-admin-config-ai-guardrails-length-limit-2026-04-02-17_15_37.png	194.45 KB	marcus_johansson
#4	screencapture-drupal11-test-ddev-site-admin-config-ai-explorers-chat-generator-2026-04-02-17_15_43.png	262.57 KB	marcus_johansson

Issue fork ai-3582856

Show commands

Start within a Git clone of the project using the version control instructions.

Add & fetch this issue fork’s repository

Or, if you do not have SSH keys set up on git.drupalcode.org:

Add & fetch this issue fork’s repository

3582856-add-input-length changes, plain diff MR !1407
Check out this branch for the first time

Check out existing branch, if you already have it locally

About issue forks

Comments

Comment #1

2 April 2026 at 14:04

marcus_johansson created an issue. See original summary.

Comment #2

marcus_johansson commented 2 April 2026 at 15:08

Issue summary:

View changes

Comment #3

2 April 2026 at 15:14

marcus_johansson opened merge request !1407

Comment #4

marcus_johansson commented 2 April 2026 at 15:18

Status:

Active

» Needs review

Status	File	Size
new	screencapture-drupal11-test-ddev-site-admin-config-ai-explorers-chat-generator-2026-04-02-17_15_43.png	262.57 KB
new	screencapture-drupal11-test-ddev-site-admin-config-ai-guardrails-length-limit-2026-04-02-17_15_37.png	194.45 KB

Generated using the following skill: #3582575: Add agent skill and drush generator for Guardrail plugins

Results:

Comment #5

marcus_johansson commented 2 April 2026 at 19:38

This also found that schemas was not correctly set and fixed it, I should probably split that up though, since its a bug and should be ported back.

Comment #6

ahmad khader commented 2 April 2026 at 19:53

Assigned:

Unassigned

» ahmad khader

Comment #7

ahmad khader commented 5 April 2026 at 23:13

Status:

Needs review

» Reviewed & tested by the community

Tys, @marcus.
Tested the guardrailis working as expected, small bug is the tokenizer_model visibility, which is not working correctly, should be ':input[name="guardrail_settings[use_tokens]"]' => ['checked' => TRUE], instead of ':input[name="use_tokens"]' => ['checked' => TRUE],.

Since it's a small bug, I'll fix it and move to RTBC.

Comment #8

ahmad khader commented 6 April 2026 at 18:09

Assigned:

ahmad khader

» Unassigned

Comment #9

marcus_johansson commented 7 April 2026 at 14:21

Status:

Reviewed & tested by the community

» Needs work

I will split this up into one bug issue for the schema missing in Guardrails in general, so it can be backported.

Will assume that its RTBC'd on both, but setting back to Needs Work, so no one merges it by mistake.

Comment #10

ahmad khader commented 8 April 2026 at 21:17

Created #3583785: Fix: Guardrail and Guardrail Set config entities have incomplete config schema for backporting the bug fix.

Comment #11

marcus_johansson commented 9 April 2026 at 10:14

Status:

Needs work

» Reviewed & tested by the community

Setting RTBC again and then merge.

Comment #12

marcus_johansson commented 9 April 2026 at 10:15

Status:	Reviewed & tested by the community	» Fixed
Issue tags:		+AI Initiative Sprint, +AI Innovation, +needs forward port

Comment #13

9 April 2026 at 10:15

Now that this issue is closed, review the contribution record.

As a contributor, attribute any organization that helped you, or if you volunteered your own time.

Maintainers, credit people who helped resolve this issue.

Comment #14

9 April 2026 at 10:26

marcus_johansson committed f79dbd30 on 1.4.x
```
Resolve #3582856 "Add input length"
```

Comment #15

9 April 2026 at 10:27

marcus_johansson committed fba11c8a on 1.x

Resolve #3582856 "Add input length"

(cherry picked from commit...

Comment #16

9 April 2026 at 10:29

marcus_johansson committed de0b0af0 on 2.0.x

Resolve #3582856 "Add input length"

(cherry picked from commit...

Comment #17

9 April 2026 at 13:47

marcus_johansson committed 9af5bb0e on 2.x

Resolve #3582856 "Add input length"

(cherry picked from commit...

Add Input Length Limit guardrail plugin against DoW attacks

Problem/Motivation

Proposed resolution

AI usage (if applicable)

Issue fork ai-3582856

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Comment #7

Comment #8

Comment #9

Comment #10

Comment #11

Comment #12

Comment #13

Comment #14

Comment #15

Comment #16

Comment #17

Child issues

News items

Our community

Documentation

Drupal code base

Governance of community