Skip to main content
Before Vijil can evaluate or protect an agent, you need to register it. Registration tells Vijil how to communicate with your agent and how much visibility you’re granting for analysis.

The Agent Registry

Navigate to Agents in the sidebar to open the Agent Registry.
Agent Registry showing registered agents with status, access level, and Trust Score
The registry displays all agents in your workspace with key information:
ColumnWhat It Shows
Agent NameIdentifier you assigned during registration
OwnerTeam member who registered the agent
StatusDraft, Active, Under Review, or Archived
Access LevelBlack Box, Grey Box, or White Box
Last EvaluatedWhen Diamond last ran an evaluation
Trust ScoreCurrent score from most recent evaluation

Access Levels

Vijil supports three access levels, each enabling progressively deeper evaluation. The access level you choose determines what Vijil can analyze and what vulnerabilities it can detect.
Access LevelWhat You ProvideWhat Vijil Can Test
Black BoxAPI endpoint and credentialsInput/output behavior only
Grey BoxModel config, MCP config, A2A configVulnerabilities traced to agent composition
White BoxFull configuration and source codeSAST and DAST analysis for thorough audit

Black Box

Black Box registration requires minimal information: your agent’s API endpoint and authentication. Vijil treats the agent as an opaque system, testing only its observable behavior. This approach works well for:
  • Third-party agents you don’t control
  • Initial evaluations before deeper analysis
  • Agents where you want to test the API contract
Register Agent modal showing Black Box configuration
Required fields:
  • Agent Name: A descriptive identifier
  • Status: Start with Draft for initial setup
  • Agent URL: Where your agent accepts requests
  • API Key: Authentication credentials (you can add multiple keys)
  • Rate Limit Per Minute: Matches your provider’s limits to avoid throttling

Grey Box

Grey Box expands visibility into your agent’s composition. This enables Vijil to trace vulnerabilities to specific components whether a prompt injection succeeded because of the model choice, MCP tool exposure, or delegated agent behavior.
Grey Box configuration showing model and external resource settings
Additional fields:
SectionFieldsPurpose
Role & InstructionsRole, System PromptHelps Vijil understand expected behavior
Model ConfigurationHub, Model Name, ParametersIdentifies model-specific vulnerabilities
External ResourcesMCP Proxy/Server, Access LevelTests tool-use attack surfaces
Delegated AgentsA2A Card URLsEvaluates multi-agent orchestration risks
The Hub dropdown supports major providers:
ProviderModel HubOut-of-the-box model examplesDefault rate limit*
OpenAIopenaigpt-4.1, gpt-4.5-preview, gpt-4o, gpt-4o-mini, o1, o1-mini, o3-mini, gpt-4-turbo, gpt-4, gpt-3.5-turbo500 requests / 60s
Anthropicanthropicclaude-opus-4-0, claude-sonnet-4-0, claude-3-7-sonnet-latest, claude-3-5-sonnet-latest, claude-3-5-haiku-latest500 requests / 60s
Together AItogetherdeepseek-ai/DeepSeek-R1, meta-llama/Llama-3.3-70B-Instruct-Turbo, Qwen/QwQ-32B-Preview, google/gemma-2-27b-it, mistralai/Mixtral-8x22B-Instruct-v0.1600 requests / 60s
Mistral AImistralmistral-large-latest, mistral-saba-latest, ministral-3b-latest, ministral-8b-latest, mistral-small-latest, open-mixtral-8x22b300 requests / 60s
Fireworks AIfireworksllama-v3p2-1b-instruct, llama-v3p2-3b-instruct, llama-v3p2-11b-vision-instruct, llama-v3p2-90b-vision-instruct, mixtral-8x22b-instruct, qwen2p5-72b-instruct, deepseek-r1600 requests / 60s
NVIDIA NIMnvidianvidia/llama3-chatqa-1.5-8b, nvidia/llama3-chatqa-1.5-70b, nvidia/nemotron-4-340b-instruct60 requests / 60s
Google Cloud Vertex AIvertexgoogle/gemini-2.5-pro, google/gemini-2.0-flash-001, google/gemini-1.5-flash-001, google/gemini-1.5-pro-001, google/gemini-1.0-pro-00260 requests / 60s
AWS Bedrockbedrockus.amazon.nova-lite-v1:0, us.amazon.nova-micro-v1:0, us.amazon.nova-pro-v1:0, us.anthropic.claude-3-7-sonnet-20250219-v1:0, anthropic.claude-3-5-sonnet-20241022-v2:0, meta.llama3-1-70b-instruct-v1:0, meta.llama3-1-405b-instruct-v1:0, mistral.mistral-large-2407-v1:060 requests / 60s
AWS Bedrock AgentsbedrockAgentsBedrock-hosted agents configured by agent_id / agent_alias_id30 requests / 60s
Google Cloud (Agentforce)agentforceAgentforce-hosted agents (via Agentforce configuration)30 requests / 60s
AzureazureAzure-hosted deployments (models configured in your Azure account)60 requests / 60s
DigitalOceandigitaloceanDigitalOcean-hosted deployments (models configured in your DO account)30 requests / 60s
OpenRouteropenroutermicrosoft/phi-4, google/gemini-2.5-flash-preview, x-ai/grok-3-beta60 requests / 60s
Groqgroqllama-3.1-8b-instant, llama-3.3-70b-versatile, openai/gpt-oss-120b, openai/gpt-oss-20b30 requests / 60s
If your agent uses MCP tools or delegates to sub-agents, Grey Box registration enables Vijil to test the full execution graph—not just the top-level API.

White Box

White Box provides full source code access for static analysis (SAST) combined with dynamic testing (DAST). This is the most thorough evaluation path.
White Box configuration showing source code and GitHub repository settings
Additional fields:
  • Source Code: Paste code directly, or leave empty to pull from repository
  • GitHub Repository: URL, username, and access token for private repos
White Box evaluation can identify vulnerabilities that Black Box testing would miss—hardcoded secrets, unsafe deserialization, SQL injection in tool implementations, and similar code-level issues.

Registering an Agent

  1. Click + Register Agent to open the registration modal
  2. Choose Manual for direct entry or Import to load from a file
  3. Fill in the Black Box fields (required for all agents)
  4. Expand Grey Box if you want compositional analysis
  5. Expand White Box if you want source code analysis
  6. Click Register Agent
Your agent appears in the registry with status Draft. Change to Active when ready for evaluation.

Managing Agents

Click the More Actions menu (three dots) on any agent row to access management options.
Agent actions menu showing Edit, Clone, Export JSON, Archive, and Delete options
ActionWhat It Does
EditModify agent configuration
CloneCreate a copy with a new name
Export JSONDownload configuration for backup or migration
ArchiveRemove from active list while preserving history
DeletePermanently remove agent and all associated data

Editing an Agent

Select Edit to open the agent configuration modal with current values populated.
Edit Agent modal showing populated configuration fields
Make your changes and click Save Changes.
Changing an agent’s configuration may affect ongoing evaluations. If you need to test different configurations, consider using Clone to create a variant instead.

Agent Status

Agents progress through lifecycle states:
StatusMeaning
DraftConfiguration in progress, not ready for evaluation
ActiveReady for evaluation and protection
Under ReviewCurrently being evaluated
ArchivedPreserved for reference but inactive
Set status to Active before running evaluations or configuring Dome protection.

Integration Guides

For provider-specific configuration details, use our dedicated UI walk-through guides.

OpenAI

Anthropic

Google Vertex

Mistral AI

AWS Bedrock

DigitalOcean

Groq

Together Web

OpenRouter

Fireworks AI

NVIDIA NIM

Custom Agents

OpenAI-compatible endpoints

Next Steps

Define Personas

Create user profiles for evaluation

Define Policies

Set organizational rules your agent must follow
Last modified on April 21, 2026