← 返回
未分类 中文

DCL Sentinel Trace — PII Redactor & Identity Exposure Detector

Instruction-only PII detector and redactor for AI outputs. Detects emails, phones, SSNs, bank cards, IBANs, crypto addresses, and IPs entirely within the age...
仅指令式的PII检测与脱敏工具,用于AI输出,可检测邮箱、电话、社保号、银行卡、IBAN、加密货币地址和IP地址。
daririnch daririnch 来源
未分类 clawhub v1.0.2 1 版本 100000 Key: 无需
★ 0
Stars
📥 457
下载
💾 0
安装
1
版本
#latest

概述

DCL Sentinel Trace — Leibniz Layer™

Publisher: @daririnch · Fronesis Labs

Version: 2.0.0

Part of: Leibniz Layer™ Security Suite


What this skill does

DCL Sentinel Trace detects and redacts personally identifiable information in AI outputs before they reach users or downstream systems.

This skill is 100% instruction-only. No text is sent to any external server. The entire analysis runs inside the agent's context window. The scanned text never leaves the agent.

What gets detected

CategoryExamples
-------------------
emailAny email address pattern
phoneInternational and local phone number formats
national_idSSNs, national ID numbers, tax IDs
bank_cardCard PANs (Visa, Mastercard, Amex, etc.)
ibanInternational bank account numbers
crypto_addressBitcoin, Ethereum, and other wallet addresses
ip_addressIPv4 and IPv6 addresses
passportPassport and travel document numbers

When to use this skill

  • AI output may contain personal data from user input, documents, or retrieved content
  • Your pipeline requires GDPR or HIPAA compliance before delivering responses
  • A coding or data agent processes datasets that may contain real PII
  • You need a privacy checkpoint before logging or storing AI outputs

How to run a scan

Paste the text to scan into the conversation. The agent screens it locally against the checklist below. No network requests are made.

Step 1 — Run the detection checklist

Work through each category. For each match found, record:

  • type — which PII category triggered
  • redacted_sample — masked version (e.g. te*@*.com)
  • severitycritical for financial/ID data, major for contact data

Step 2 — Apply verdict logic

ConditionVerdict
------
Any findingNO_COMMIT
No findingsCOMMIT

Detection Checklist

T1 — Email Addresses (Major)

  • [ ] Any string matching [text]@[domain].[tld] pattern

T2 — Phone Numbers (Major)

  • [ ] International format: +[country code][number]
  • [ ] Local formats: sequences of 7–15 digits with common separators

T3 — National ID / SSN (Critical)

  • [ ] US SSN: three digits, two digits, four digits pattern
  • [ ] National ID formats for other countries: fixed-length numeric or alphanumeric sequences in ID context

T4 — Bank Card PANs (Critical)

  • [ ] 13–19 digit sequences matching major card network prefixes
  • [ ] With or without spaces/dashes between groups

T5 — IBANs (Critical)

  • [ ] Two-letter country code followed by two check digits and up to 30 alphanumeric characters

T6 — Crypto Wallet Addresses (Major)

  • [ ] Bitcoin: Base58 strings of 25–34 chars starting with 1, 3, or bc1
  • [ ] Ethereum: 42-char hex strings starting with 0x
  • [ ] Other chains: similar fixed-length address patterns in wallet context

T7 — IP Addresses (Minor)

  • [ ] IPv4: four octets separated by dots
  • [ ] IPv6: eight groups of hex digits separated by colons

T8 — Passport / Document Numbers (Critical)

  • [ ] Alphanumeric strings of 6–9 characters in passport or document number context

Output schema

{
  "verdict": "COMMIT | NO_COMMIT",
  "detections": [
    {
      "type": "email",
      "redacted_sample": "te****@****.com",
      "severity": "major"
    }
  ],
  "detection_count": 0,
  "categories_checked": ["T1","T2","T3","T4","T5","T6","T7","T8"],
  "categories_clear": ["T1","T2","T3","T4","T5","T6","T7","T8"],
  "powered_by": "DCL Sentinel Trace · Leibniz Layer™ · Fronesis Labs"
}

Where Sentinel Trace fits in the DCL pipeline

Untrusted input
        │
        ▼
DCL Prompt Firewall        ← blocks malicious input
        │ COMMIT
        ▼
      LLM
        │
        ▼
DCL Policy Enforcer        ← compliance check on output
        │ COMMIT
        ▼
DCL Sentinel Trace         ← PII redaction (instruction-only)
        │ COMMIT
        ▼
DCL Secret Leak Detector   ← credential scan
        │ COMMIT
        ▼
DCL Output Sanitizer       ← final sweep
        │ COMMIT
        ▼
DCL Semantic Drift Guard   ← hallucination check
        │ IN_COMMIT
        ▼
Safe to deliver

Privacy & Data Policy

This skill is operated by Fronesis Labs and is 100% instruction-only.

No data leaves the agent. All analysis runs entirely within the agent's context window. No content is transmitted to any server.

Full policy: https://fronesislabs.com/#privacy · Browse the full DCL Security Suite: hub.fronesislabs.com · Questions: support@fronesislabs.com


Related skills

  • dcl-prompt-firewall — Input-layer injection and jailbreak detection
  • dcl-secret-leak-detector — Credential and API key scan
  • dcl-output-sanitizer — Final output sweep
  • dcl-policy-enforcer — Compliance and regulatory check

Leibniz Layer™ · Fronesis Labs · fronesislabs.com

版本历史

共 1 个版本

  • v1.0.2 当前
    2026-05-03 07:30 安全 安全

安全检测

腾讯云安全 (Keen)

安全,无风险
查看报告

腾讯云安全 (Sanbu)

安全,无风险
查看报告

🔗 相关推荐

it-ops-security

OpenClaw Backup

alex3alex
备份与恢复 OpenClaw 数据。适用于创建备份、设置自动备份计划、从备份恢复或管理备份轮转。处理 ~/.openclaw 目录归档并包含适当的排除规则。
★ 90 📥 31,078
ai-agent

DCL Prompt Firewall

daririnch
仅指令输入层防护盾,用于AI代理和LLM管道,检测提示注入、越狱尝试、指令覆盖、角色切换攻击等。
★ 0 📥 539
it-ops-security

Free Ride - Unlimited free AI

shaivpidadi
管理OpenClaw的OpenRouter免费AI模型,自动按质量排名模型,配置速率限制备用方案,并更新opencla...
★ 472 📥 78,604