# Required
npm install -g cloakclaw
# Optional but recommended
brew install poppler # Better PDF text extraction
ollama pull qwen2.5:7b # AI-powered name/company detection
Verify: cloakclaw --version should return 0.1.2 or higher.
| Category | Types |
|---|---|
| ---------- | ------- |
| Identity | People, Companies, Passports, Drivers License |
| Contact | Emails, Phones, Addresses |
| Financial | Dollars, Percentages, Accounts, Banks, SSNs |
| Legal | Case Numbers, Jurisdictions |
| Tech | IP Addresses, MAC Addresses, Passwords/Secrets, API Keys, URLs |
| Other | Crypto Wallets, GPS Coordinates, VIN Numbers, Medical IDs, Dates |
Always cloak (document attached):
legal profilefinancial profilecode profilegeneral profileAlways cloak (sensitive content in text):
Skip cloaking:
node scripts/cloak.js --profile <general|legal|financial|email|code|medical> --input /path/to/file
Output JSON:
{
"sessionId": "a5cc1496-15b9-4b43-8506-3ea75dfe1304",
"cloaked": "...cloaked text...",
"entityCount": 20,
"profile": "legal"
}
Or use the CLI directly:
cloakclaw cloak document.pdf --profile legal -o cloaked.txt
Use the cloaked text as the document content. The user's question stays unchanged — only the document data is cloaked.
node scripts/decloak.js --session <sessionId> --input /path/to/response.txt
Or CLI:
cloakclaw decloak -s <sessionId> -f response.txt
Output: restored text with original entities.
Append to the response:
🔒 CloakClaw: {entityCount} entities protected | Profile: {profile} | Session: {sessionId_short}
cloakclaw off — disable auto-cloaking for this sessioncloakclaw on — re-enable auto-cloakingcloakclaw status — show current settings and recent sessionscloakclaw diff — show what was cloakedConfig at ~/.cloakclaw/config.yaml:
ollama:
url: http://localhost:11434
model: qwen2.5:7b
| RAM | Model | Quality |
|---|---|---|
| ----- | ------- | --------- |
| 8GB | qwen2.5:3b | Basic (regex does most work) |
| 16GB | qwen2.5:7b | Good |
| 32GB+ | qwen2.5:32b | Very good |
| 64GB+ | qwen2.5:72b | Excellent |
cloakclaw password set)CloakClaw is NOT HIPAA, GDPR, SOC 2, PCI-DSS, or CCPA compliant. It is a best-effort privacy tool. Users are responsible for reviewing cloaked output before sharing.
共 1 个版本