功能描述

Batch anonymize DICOM medical images by removing patient sensitive information (name, ID, birth date) while preserving image data for research use. Trigger w...

使用说明 (SKILL.md)

DICOM Anonymizer

Name: Dicom Anonymizer
Author: aipoch-ai

A clinical-grade tool for batch anonymization of DICOM medical images, removing patient identifiable information while preserving essential imaging data for research and analysis.

Overview

This skill anonymizes DICOM (Digital Imaging and Communications in Medicine) files by removing or replacing Protected Health Information (PHI) while maintaining the integrity of the medical image data. It supports batch processing of entire directories and generates audit logs for compliance documentation.

Features

Batch Processing: Process single files or entire directories recursively
18 PHI Tags Anonymized: Patient name, ID, birth date, institution, physician, etc.
Configurable Anonymization: Choose between removal, hashing, or replacement strategies
Study Linkage Preservation: Option to maintain study/series relationships using pseudonyms
Audit Trail: Complete logging of all anonymization actions
HIPAA Safe Harbor Compliant: Meets de-identification standards for research use

Usage

Command Line

# Anonymize a single file
python scripts/main.py --input patient_scan.dcm --output anonymized.dcm

# Batch process a directory
python scripts/main.py --input /path/to/dicom/folder/ --output /path/to/output/ --batch

# Preserve study relationships with pseudonyms
python scripts/main.py --input scans/ --output clean/ --batch --preserve-studies

# Custom anonymization (keep age, remove birth date)
python scripts/main.py --input scan.dcm --output clean.dcm --keep-tags PatientAge

Python API

from scripts.main import DICOMAnonymizer

anonymizer = DICOMAnonymizer(preserve_studies=True)
result = anonymizer.anonymize_file("input.dcm", "output.dcm")
print(f"Tags anonymized: {len(result.anonymized_tags)}")

# Batch processing
results = anonymizer.anonymize_directory("input_folder/", "output_folder/")

Parameters

Parameter	Type	Default	Required	Description
`--input`, `-i`	string	-	Yes	Input DICOM file or directory path
`--output`, `-o`	string	-	Yes	Output DICOM file or directory path
`--batch`, `-b`	flag	false	No	Enable batch/directory processing
`--preserve-studies`	flag	false	No	Maintain study relationships with pseudonyms
`--keep-tags`	string	-	No	Comma-separated list of tags to preserve
`--remove-private`	flag	true	No	Remove private/unknown tags
`--audit-log`	string	-	No	Path for JSON audit log
`--overwrite`	flag	false	No	Overwrite existing output files

Anonymized DICOM Tags

The following PHI tags are anonymized by default:

Patient Information

Tag	Attribute	Action
(0010,0010)	PatientName	Removed / Replaced
(0010,0020)	PatientID	Hashed / Pseudonym
(0010,0030)	PatientBirthDate	Removed
(0010,0040)	PatientSex	Preserved (demographic research)
(0010,1010)	PatientAge	Preserved (calculated from birth date)
(0010,1020)	PatientSize	Preserved
(0010,1030)	PatientWeight	Preserved

Institution & Provider

Tag	Attribute	Action
(0008,0080)	InstitutionName	Removed
(0008,0081)	InstitutionAddress	Removed
(0008,0090)	ReferringPhysicianName	Removed
(0008,1048)	PhysiciansOfRecord	Removed
(0008,1050)	PerformingPhysicianName	Removed
(0008,1060)	NameOfPhysiciansReadingStudy	Removed
(0008,1070)	OperatorsName	Removed

Study & Series

Tag	Attribute	Action
(0008,0050)	AccessionNumber	Hashed / Removed
(0020,0010)	StudyID	Hashed (if preserve-studies)
(0020,000D)	StudyInstanceUID	Hashed (if preserve-studies)
(0020,000E)	SeriesInstanceUID	Hashed (if preserve-studies)
(0020,4000)	ImageComments	Removed

Device & Acquisition

Tag	Attribute	Action
(0018,1030)	ProtocolName	Preserved / Anonymized
(0018,1000)	DeviceSerialNumber	Removed
(0008,1010)	StationName	Removed
(0008,0018)	SOPInstanceUID	Regenerated

Output Format

Anonymized DICOM File

Original PHI tags replaced with empty values, "ANONYMOUS", or hashed pseudonyms
Image pixel data (7FE0,0010) preserved unchanged
Essential metadata (modality, dimensions, acquisition params) preserved

Audit Log JSON

{
  "timestamp": "2024-01-15T10:30:00Z",
  "input_file": "/path/to/original.dcm",
  "output_file": "/path/to/anonymized.dcm",
  "original_patient_id_hash": "sha256:abc123...",
  "pseudonym": "ANON_0001",
  "tags_anonymized": [
    {"tag": "(0010,0010)", "attribute": "PatientName", "action": "cleared"},
    {"tag": "(0010,0020)", "attribute": "PatientID", "action": "hashed"},
    {"tag": "(0010,0030)", "attribute": "PatientBirthDate", "action": "cleared"}
  ],
  "statistics": {
    "total_tags_processed": 150,
    "phi_tags_removed": 12,
    "private_tags_removed": 5,
    "image_data_preserved": true
  }
}

Technical Architecture

DICOM Loading: Use pydicom to read DICOM files with validation
Tag Analysis: Identify and categorize PHI-containing tags
Anonymization Engine: Apply configured anonymization rules per tag
UID Handling: Regenerate or hash UIDs to maintain/break linkage
Private Tag Removal: Strip manufacturer-specific private tags
Validation: Verify output is valid DICOM and image data intact
Audit Logging: Record all transformations for compliance

Dependencies

Python 3.9+
pydicom >= 2.3.0 (DICOM file handling)
cryptography >= 3.0 (for secure hashing, optional)

See references/requirements.txt for full dependency list.

Limitations & Warnings

⚠️ CRITICAL: This tool is designed as a helper, not a replacement for institutional review.

Burned-in Annotations: Text/annotations "burned into" the image pixels are NOT removed. Pre-process with OCR-based tools if needed.
Structured Reports: DICOM SR (Structured Reporting) files may contain PHI in narrative text that may not be fully detected.
Private Tags: Some private tags may contain PHI in non-standard formats.
Secondary Captures: Scanned documents/images may have PHI visible in the pixel data.
Always perform manual QA on output before research release.
AI Autonomous Acceptance Status: 需人工检查 (Requires Manual Review)

References

references/dicom_standard_ps3.15.pdf - DICOM Standard Part 15: Security and System Management
references/hipaa_deidentification_guide.pdf - HIPAA Safe Harbor de-identification standards
references/phi_tags.json - Complete list of PHI-related DICOM tags
references/requirements.txt - Python dependencies

Technical Difficulty: High

Complex DICOM data structures, UID management, regulatory compliance requirements, potential pixel-data PHI.

Risk Assessment

Risk Indicator	Assessment	Level
Code Execution	Python/R scripts executed locally	Medium
Network Access	No external API calls	Low
File System Access	Read input files, write output files	Medium
Instruction Tampering	Standard prompt guidelines	Low
Data Exposure	Output files saved to workspace	Low

Security Checklist

No hardcoded credentials or API keys
No unauthorized file system access (../)
Output does not expose sensitive information
Prompt injection protections in place
Input file paths validated (no ../ traversal)
Output directory restricted to workspace
Script execution in sandboxed environment
Error messages sanitized (no stack traces exposed)
Dependencies audited

Prerequisites

# Python dependencies
pip install -r requirements.txt

Evaluation Criteria

Success Metrics

Successfully executes main functionality
Output meets quality standards
Handles edge cases gracefully
Performance is acceptable

Test Cases

Basic Functionality: Standard input → Expected output
Edge Case: Invalid input → Graceful error handling
Performance: Large dataset → Acceptable processing time

Lifecycle Status

Current Stage: Draft
Next Review Date: 2026-03-06
Known Issues: None
Planned Improvements:
- Performance optimization
- Additional feature support

安全使用建议

This appears to be a locally-run DICOM anonymizer and is internally consistent, but before using it on real patient data: 1) Review the full scripts/main.py (truncated portions) to confirm there are no hidden network calls, telemetry, or code paths that write PHI elsewhere. 2) Verify the hashing/pseudonymization approach (is a salt used? how are pseudonym mappings stored?) so hashes cannot be trivially correlated across datasets or leaked. 3) Ensure audit logs do not leak raw PHI (store them securely and limit access). 4) Test on synthetic data to confirm pixel data and burned-in text (if any) are handled as you expect — many anonymizers do not OCR burned-in patient identifiers. 5) Install pydicom and other dependencies from trusted sources (official PyPI) and run in an isolated environment until you're confident. If you want, I can scan the remaining/truncated parts of scripts/main.py for specific concerns (network calls, subprocess usage, writing to unexpected locations) — provide the full file and I'll review it.

功能分析

Type: OpenClaw Skill Name: dicom-anonymizer Version: 0.1.0 The dicom-anonymizer skill is a legitimate clinical tool designed to remove Protected Health Information (PHI) from DICOM medical images. The core logic in scripts/main.py uses the standard pydicom library to identify and clear or hash sensitive tags (e.g., PatientName, PatientID) while preserving image data for research. The code includes features like batch processing, UID regeneration, and audit logging, and it lacks any indicators of data exfiltration, unauthorized network access, or malicious intent. While references/phi_tags.json is incorrectly formatted as Python code rather than JSON, this is a minor documentation flaw and not a security risk.

能力评估

✓ Purpose & Capability

The name/description (batch DICOM anonymization) matches the included SKILL.md and scripts/main.py: code targets DICOM tags, uses pydicom, supports batch processing, hashing/pseudonyms, and audit logs. Required dependencies (pydicom) are appropriate and proportionate.

✓ Instruction Scope

SKILL.md directs the agent to read DICOM files/directories, produce anonymized outputs and audit logs — all within the skill's stated purpose. There are no instructions to read unrelated system files or to transmit data externally in the provided materials.

✓ Install Mechanism

No install spec is present (instruction-only), and dependencies are standard Python packages (pydicom). This minimizes installer risk; users should install dependencies from trusted PyPI sources.

✓ Credentials

The skill requests no environment variables, credentials, or config paths. The functionality (local file processing and logging) does not require secrets, so the absence of requested credentials is appropriate.

✓ Persistence & Privilege

always is false and the skill does not request persistent system privileges or to modify other skills. Autonomous invocation is allowed by default (disable-model-invocation is false), which is normal and expected.

版本历史

v0.1.0

Initial release of dicom-anonymizer: a tool for batch anonymization of DICOM medical images. - Removes or replaces PHI (e.g., patient name, ID, birth date) while preserving image data for research. - Supports single-file and bulk directory processing via CLI and Python API. - Offers configurable anonymization strategies (removal, hashing, or replacement) and preserves study linkage with pseudonyms if desired. - Generates comprehensive audit logs for compliance and supports HIPAA Safe Harbor standards. - Includes options to retain selected tags, remove private/unknown tags, and validate output DICOM files. - Designed for research sharing; manual review still required for full compliance (does not remove burned-in pixel annotations).

元数据

Slug dicom-anonymizer

版本 0.1.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题