← 返回 Skills 市场
Presidio Pii Scrubber for sensitive info
作者
Sebastian The Claw
· GitHub ↗
· v0.1.1
284
总下载
0
收藏
1
当前安装
2
版本数
在 OpenClaw 中安装
/install presidio-pii-skill
功能描述
Local PII protection for OpenClaw agents. Scrubs customer data (names, phones, emails, addresses, credit cards, vessel names) before it reaches any AI model....
安全使用建议
This skill appears to do what it says: run local Presidio containers, anonymize customer data before sending it to models, then restore locally. Before installing: 1) Ensure you run the Presidio containers from a trusted source (the skill references mcr.microsoft.com/presidio images). 2) Treat the mapping directory (~/.openclaw/presidio/mappings by default) as highly sensitive — restrict access, exclude it from backups if appropriate, and monitor deletion success. 3) Test failure modes: confirm that mapping files are deleted after restore and that blocked behavior triggers when containers are down. 4) If you operate on shared machines or backups, consider changing PRESIDIO_MAPPING_DIR to a secure location and audit it. 5) Review network rules so containers cannot exfiltrate data (the scripts call localhost only but container config matters). If you need, run a short security review or penetration test focused on mapping file handling and container network isolation before deploying in production.
功能分析
Type: OpenClaw Skill
Name: presidio-pii-skill
Version: 0.1.1
The presidio-pii skill implements local PII protection by routing sensitive data through Microsoft Presidio Docker containers on localhost. It features scripts for health monitoring (presidio-health.sh), reversible anonymization (presidio-scrub.py), and restoration (presidio-restore.py) using local mapping files with restricted permissions (chmod 600). The logic is transparent, lacks external network calls, and includes a 'fail-closed' policy in SKILL.md to prevent data leakage if the protection service is offline, aligning perfectly with its stated security purpose.
能力评估
Purpose & Capability
Name/description (local PII scrubber) match the required binaries (docker, python3, curl), included scripts, and the declared container images (Microsoft Presidio). The dependencies are proportionate to the stated goal.
Instruction Scope
Runtime instructions only call local endpoints (analyzer/anonymizer on localhost) and tell the agent to scrub before model queries and restore afterward. The scripts use environment variables (PRESIDIO_ANALYZER_URL, PRESIDIO_ANONYMIZER_URL, PRESIDIO_MAPPING_DIR) if present — SKILL.md does not list those env vars explicitly but their use is limited and reasonable. The fail-closed behavior is enforced in scripts.
Install Mechanism
There is no remote arbitrary code download; images referenced are from mcr.microsoft.com (official Microsoft container registry). The skill has no install script that fetches code from unknown URLs. It's instruction-only with local scripts included.
Credentials
The skill requests no external credentials and runs entirely against localhost. However it writes reversible mapping files containing original PII to a local mapping directory (default ~/.openclaw/presidio/mappings). The mapping files are chmod 600 and deleted by default after restore, but deletion can fail or be overridden via --keep; users should treat this as sensitive data and secure the mapping directory and backups.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges. It does persist mapping files locally for the duration of a session, which is expected for reversible pseudonymization.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install presidio-pii-skill - 安装完成后,直接呼叫该 Skill 的名称或使用
/presidio-pii-skill触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.1
presidio-pii-skill 0.1.1
- Updated versioning from 1.0.0 to 1.0.1 in SKILL.md to match semantic versioning.
- No functional or behavioral changes; documentation and metadata version bump only.
- All usage, configuration, and trust guidance remains unchanged.
v0.1.0
- Initial release of Presidio PII Protection skill for OpenClaw agents.
- Provides local PII scrubbing using Microsoft Presidio in Docker containers.
- Supports reversible pseudonymization, mapping files, and a fail-closed policy if Presidio is offline.
- Includes scripts for health checks, anonymization, and restoration of PII.
- Easily customizable recognizers for domain-specific entities.
- Ensures customer data is never sent to external services; all sensitive data is handled and stored locally.
元数据
常见问题
Presidio Pii Scrubber for sensitive info 是什么?
Local PII protection for OpenClaw agents. Scrubs customer data (names, phones, emails, addresses, credit cards, vessel names) before it reaches any AI model.... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 284 次。
如何安装 Presidio Pii Scrubber for sensitive info?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install presidio-pii-skill」即可一键安装,无需额外配置。
Presidio Pii Scrubber for sensitive info 是免费的吗?
是的,Presidio Pii Scrubber for sensitive info 完全免费(开源免费),可自由下载、安装和使用。
Presidio Pii Scrubber for sensitive info 支持哪些平台?
Presidio Pii Scrubber for sensitive info 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Presidio Pii Scrubber for sensitive info?
由 Sebastian The Claw(@sebclawops)开发并维护,当前版本 v0.1.1。
推荐 Skills