docs: tweak tool guardrail documentation

Author: seratch

docs/guardrails.md

@@ -49,48 +49,7 @@ Tool guardrails wrap **function tools** and let you validate or block tool calls
 - Output tool guardrails run after the tool executes and can replace the output or raise a tripwire.
 - Tool guardrails apply only to function tools created with [`function_tool`][agents.function_tool]; hosted tools (`WebSearchTool`, `FileSearchTool`, `HostedMCPTool`, `CodeInterpreterTool`, `ImageGenerationTool`) and local runtime tools (`ComputerTool`, `ShellTool`, `ApplyPatchTool`, `LocalShellTool`) do not use this guardrail pipeline.
 
-```python
-import json
-from agents import (
-    Agent,
-    Runner,
-    ToolGuardrailFunctionOutput,
-    function_tool,
-    tool_input_guardrail,
-    tool_output_guardrail,
-)
-
-@tool_input_guardrail
-def block_secrets(data):
-    args = json.loads(data.context.tool_arguments or "{}")
-    if "sk-" in json.dumps(args):
-        return ToolGuardrailFunctionOutput.reject_content(
-            "Remove secrets before calling this tool."
-        )
-    return ToolGuardrailFunctionOutput.allow()
-
-
-@tool_output_guardrail
-def redact_output(data):
-    text = str(data.output or "")
-    if "sk-" in text:
-        return ToolGuardrailFunctionOutput.reject_content("Output contained sensitive data.")
-    return ToolGuardrailFunctionOutput.allow()
-
-
-@function_tool(
-    tool_input_guardrails=[block_secrets],
-    tool_output_guardrails=[redact_output],
-)
-def classify_text(text: str) -> str:
-    """Classify text for internal routing."""
-    return f"length:{len(text)}"
-
-
-agent = Agent(name="Classifier", tools=[classify_text])
-result = Runner.run_sync(agent, "hello world")
-print(result.final_output)
-```
+See the code snippet below for details.
 
 ## Tripwires
 
@@ -213,3 +172,48 @@ async def main():
 2. This is the guardrail's output type.
 3. This is the guardrail function that receives the agent's output, and returns the result.
 4. This is the actual agent that defines the workflow.
+
+Lastly, here are examples of tool guardrails.
+
+```python
+import json
+from agents import (
+    Agent,
+    Runner,
+    ToolGuardrailFunctionOutput,
+    function_tool,
+    tool_input_guardrail,
+    tool_output_guardrail,
+)
+
+@tool_input_guardrail
+def block_secrets(data):
+    args = json.loads(data.context.tool_arguments or "{}")
+    if "sk-" in json.dumps(args):
+        return ToolGuardrailFunctionOutput.reject_content(
+            "Remove secrets before calling this tool."
+        )
+    return ToolGuardrailFunctionOutput.allow()
+
+
+@tool_output_guardrail
+def redact_output(data):
+    text = str(data.output or "")
+    if "sk-" in text:
+        return ToolGuardrailFunctionOutput.reject_content("Output contained sensitive data.")
+    return ToolGuardrailFunctionOutput.allow()
+
+
+@function_tool(
+    tool_input_guardrails=[block_secrets],
+    tool_output_guardrails=[redact_output],
+)
+def classify_text(text: str) -> str:
+    """Classify text for internal routing."""
+    return f"length:{len(text)}"
+
+
+agent = Agent(name="Classifier", tools=[classify_text])
+result = Runner.run_sync(agent, "hello world")
+print(result.final_output)
+```