Cap & guard your AI — the one-page checklist
A free PDF of the whole playbook on a page: the controls that keep an AI feature from running up an
unbounded bill — or being turned against you. Spend caps that actually stop spend, per-user quotas,
abuse guardrails, and key/auth hygiene — all defaulting to fail-closed.
One page, six groups:
- Route every call through one gateway — so the controls have somewhere to live
- Cap the spend — the hard cap that stops, not the alert that just emails you
- Cut the spend you don't need — caching, cheap-model routing
- Guard against abuse — injection, least agency, output handling
- Own the keys & the door — server-side keys, auth on every endpoint
- The one rule: default to closed
One field. I'll email you the PDF — and the download appears on the next page too. No spam,
read by me, never shared.