Comparison · July 2026

Lakera alternatives: the 2026 comparison

Six credible options compared by deployment model, self-host, data residency and pricing — including when Lakera remains the best choice.

Yohann Sidot·July 2026·Facts verified July 15, 2026

The short answer

Lakera, the best-known prompt-injection defense vendor, was acquired by Check Point (announced September 2025, a reported ~$300M; completed October 2025). The credible alternatives in 2026 depend on what you need: LLM Guard (open source, now archived), Cloudflare AI Gateway (managed edge gateway), NeuralTrust (European, open-source gateway), HiddenLayer (broad enterprise AI-security platform) or Senthex (independent European LLM proxy with a verifiable audit trail). This page compares all six — including the cases where Lakera is still the right answer.

6
options compared
by deployment, residency, pricing
3
vendors acquired since 2024
Lakera, Protect AI, Robust Intelligence
Jul 9, 2026
LLM Guard repo archived
no longer maintained

Why teams are looking for a Lakera alternative in 2026

The runtime LLM-security market consolidated fast. Check Point announced the acquisition of Lakera in September 2025 — press reports put the price around $300M, a figure Check Point itself has not confirmed — and closed it in October 2025. Palo Alto Networks completed its acquisition of Protect AI (the company behind LLM Guard) in July 2025 and folded it into Prisma AIRS. Cisco had already absorbed Robust Intelligence in September 2024, now part of Cisco AI Defense.

Acquisition is not a bad thing in itself: it brings resources, enterprise support and longevity. But it changes the vendor profile you are buying. Roadmaps bend toward the acquirer's platform — Check Point's own announcement frames Lakera's technology inside "Check Point AI Agent Security" — pricing tends to move up-market, and open-source side projects can stop being a priority: LLM Guard's repository was archived on July 9, 2026, and is no longer maintained.

The other common reasons teams look elsewhere are more mundane: wanting to self-host, needing data to stay in the EU, needing a price a startup can actually pay, or needing only a focused runtime firewall rather than an enterprise platform.

The six options at a glance

OptionType & deploymentSelf-hostData residencyPricingBest for
Lakera Guard (Check Point)Runtime GenAI security — SaaS or self-hosted (Kubernetes/Helm, Docker, air-gapped) [1],[3]Yes — Enterprise licence [3]Via self-host; SaaS regions not publicly documentedFree tier; paid plans on quoteEnterprises — mature red-teaming assets (Gandalf, PINT benchmark) [1],[4]
LLM Guard (Protect AI / Palo Alto Networks)Open-source Python library, 15 input / 20 output scanners [5]Yes — that is the modelYour infrastructure; nothing leavesFree (MIT)Full pipeline control — but the repo was archived on July 9, 2026 and is no longer maintained [5]
Cloudflare AI GatewayManaged LLM gateway on Cloudflare’s network — analytics, caching, rate limiting [7]NoCloudflare network; no regional processing controls for AI Gateway as of mid-2026Core features free; prompt-injection detection is a separate Enterprise WAF add-on [8],[10]Teams already on Cloudflare wanting observability and cost control
NeuralTrustEuropean AI gateway + security platform; TrustGate gateway is open source (Apache-2.0, Go) [11],[12]Yes — TrustGate: Docker, Kubernetes or single binary [11]Self-host, or managed by an EU company (Barcelona) [12]TrustGate free (open source); platform on requestEuropean teams wanting an open-source gateway plus red teaming (TrustTest)
HiddenLayerBroad AI-security platform: model scanning, red teaming, runtime detection (AIDR) [13]Not publicly documentedNot publicly documentedSales-led, no public pricing; AWS/Azure/GCP marketplaces [13]Enterprises needing model supply-chain security beyond a prompt firewall
SenthexRuntime LLM proxy (firewall) + verifiable, tamper-evident audit trail (pilot capability, v1.1.7)Yes (incl. Azure)EU-hosted (Hetzner Falkenstein, Germany) or your infrastructurePublic pricing with a free tier — see pricingEU startups and scale-ups needing EU AI Act record-keeping (Articles 12 & 19)

Facts verified against the sources listed at the bottom of this page on July 15, 2026. “Not publicly documented” means exactly that — we did not find an official public statement, so we do not guess.

When to choose which

When Lakera (Check Point) remains the best choice

Honest answer: for many enterprises, it still is. Lakera has the strongest brand in the category, adversarial data collected at scale through the Gandalf game — Check Point's announcement cites over 80 million adversarial patterns — a published prompt-injection benchmark (PINT), and a documented self-host path including fully air-gapped deployments. If you are already a Check Point customer, or you want the category leader with enterprise support behind it, staying with (or choosing) Lakera is a defensible decision. The trade-offs are the classic post-acquisition ones: sales-gated pricing and a roadmap that now serves the Check Point platform first.

When LLM Guard makes sense — with one big caveat

LLM Guard was the reference open-source option: an MIT-licensed Python library with 15 input and 20 output scanners you compose into your own pipeline. Nothing leaves your infrastructure and it costs nothing. The caveat is now decisive: the repository was archived on July 9, 2026 — a year after Palo Alto Networks completed its acquisition of Protect AI — and its README states the project and its models are no longer maintained. Choosing it today means forking and maintaining a frozen detection stack yourself, against attacks that evolve monthly. If you want open source that is still moving, look at NeuralTrust's TrustGate instead.

When Cloudflare AI Gateway is enough

If your stack already runs on Cloudflare and your primary need is operational — usage analytics, caching, rate limiting, retries and model fallback across providers — AI Gateway is hard to beat: the core features are free on any Cloudflare account. Be precise about what it is not, though. Its Guardrails feature is content moderation (harmful-content categories, powered by Llama Guard); prompt-injection detection lives in a separate product, Cloudflare's AI security add-on in the WAF, gated to Enterprise plans. There is no self-hosting, and AI Gateway offers no regional processing controls, which matters if EU data residency is a requirement.

When NeuralTrust fits

NeuralTrust (Barcelona) is the other independent European option in this list. Its TrustGate gateway is open source (Apache-2.0, written in Go), self-hostable via Docker, Kubernetes or a single binary, and the platform adds runtime protection, posture management and red teaming (TrustTest). The company raised a €17.2M seed in June 2026 and is independent as of this writing. The honest counterpoint: community adoption of the open-source gateway is still small, so expect to lean on the vendor rather than a large ecosystem.

When HiddenLayer is the better tool

HiddenLayer is not primarily a prompt firewall — it is a broad AI-security (MLSecOps) platform: scanning model files for backdoors and serialization exploits across 35+ formats, AI asset discovery, attack simulation, plus a runtime detection module. If your risk register is dominated by model supply chain — third-party model files, fine-tunes, registries — HiddenLayer (or Palo Alto's Prisma AIRS) addresses problems a runtime proxy like Lakera or Senthex does not. Pricing is sales-led with no public numbers, and the deployment model is not publicly documented, so plan a real procurement cycle.

When Senthex fits — and when it doesn't

Disclosure: Senthex is us — judge this section accordingly, and check the claims against the linked pages.

Senthex is an independent, European runtime LLM firewall: a proxy between your app and OpenAI, Anthropic, Mistral or Gemini, integrated by swapping a base URL — one line of code. It is EU-hosted (Hetzner Falkenstein, Germany) and self-hostable, including on Azure. Raw request and response bodies are excluded from storage by default (data minimisation). Two things are genuinely distinctive. First, the audit trail is designed to be verifiable: in the v1.1.7 pilot, each record is chained with SHA-256 and anchored to an RFC 3161 timestamp so you can verify it offline — tamper-evident, not tamper-proof — aligned with EU AI Act record-keeping (Articles 12 & 19). You can verify a real bundle yourself. Second, we publish original research on multi-agent attacks — the ATLAS and RELAY studies — with frozen datasets, so you can see how the firewall behaves before buying. Pricing is public, with a free tier.

When Senthex is not the right choice: if you need model-file scanning and AI supply-chain security (HiddenLayer, Prisma AIRS); if you are all-in on Cloudflare and only need gateway operations (AI Gateway); if you want a large-scale enterprise red-teaming program attached to the category leader (Lakera/Check Point); or if your policy is to run only self-maintained open source (TrustGate). See also what we do and do not claim on EU AI Act compliance.

How this comparison was made

All competitor facts on this page are public, and were verified against the official documentation and press releases listed below on July 15, 2026. Where something is not publicly documented — Lakera's SaaS regions, HiddenLayer's deployment model — we say so instead of guessing. Reported figures that vendors have not confirmed (the ~$300M Lakera price) are labelled as press reports. Senthex is one of the six vendors compared, which is a bias you should factor in; if you find an error, tell us and we will correct it.

Frequently asked questions

Was Lakera acquired?

Yes. Check Point announced the acquisition of Lakera on September 16, 2025 — press reports put the value around $300M, a figure Check Point has not confirmed — and the deal completed in October 2025. Check Point is integrating Lakera's technology into its own AI security offering.

Is LLM Guard still maintained?

No. The LLM Guard GitHub repository was archived on July 9, 2026, and its README states the project and its models are no longer under active development. This followed Palo Alto Networks' acquisition of Protect AI, completed in July 2025. The MIT-licensed code can still be used or forked, but receives no updates.

What is the best open-source alternative to Lakera?

LLM Guard (MIT, 15 input / 20 output scanners) was the reference, but it was archived in July 2026 and is no longer maintained. NeuralTrust's TrustGate (Apache-2.0, Go) is an actively developed open-source AI gateway, though its community is still small.

Is there a European alternative to Lakera?

Two independent European options: NeuralTrust (Barcelona; open-source TrustGate gateway plus a security platform) and Senthex (EU-hosted in Germany, self-hostable, with EU AI Act record-keeping under Articles 12 & 19 and a verifiable, tamper-evident audit trail as a pilot capability in v1.1.7).

Does Lakera have a free tier?

Yes — Lakera offers a free community tier (around 10,000 requests per month according to third-party sources); paid plans are on quote. For comparison: Cloudflare AI Gateway's core features are free, LLM Guard and TrustGate are free open source, and Senthex has a free tier with public pricing.

Trying Senthex costs nothing

If the independent European option fits your shortlist: the free tier needs one base-URL swap, and you can verify the audit trail yourself before talking to anyone.

Sources

  1. Check Point — press release, acquisition of Lakera (Sept 16, 2025)
  2. Calcalist Tech — reported ~$300M deal value (press estimate)
  3. Lakera docs — self-hosting (Kubernetes/Helm, Docker, air-gapped)
  4. Lakera — PINT benchmark (GitHub)
  5. LLM Guard — GitHub repository (MIT, archived July 9, 2026)
  6. Palo Alto Networks — completion of Protect AI acquisition (July 22, 2025)
  7. Cloudflare — AI Gateway docs
  8. Cloudflare — AI Gateway pricing
  9. Cloudflare — Guardrails in AI Gateway (launch post)
  10. Cloudflare — Firewall for AI / AI security in the WAF (docs)
  11. NeuralTrust — TrustGate (GitHub, Apache-2.0)
  12. NeuralTrust — $20M / €17.2M seed announcement (June 2026)
  13. HiddenLayer — AISec Platform
  14. Cisco — intent to acquire Robust Intelligence (Aug 2024)