Security

PII redaction

Scrub emails, phones, SSNs, keys before they leave your process.

import { createPIIRedactor, DEFAULT_PII_RULES } from '@agentskit/core/security'

const redactor = createPIIRedactor({ rules: DEFAULT_PII_RULES })

const clean = redactor.redact('Ping me at ada@example.com, SSN 123-45-6789')
// => 'Ping me at [EMAIL], SSN [SSN]'

Built-in rules

EMAIL · PHONE · SSN · CREDIT_CARD · IPV4 · IPV6 · API_KEY_PREFIX · AWS_ACCESS_KEY_ID.

Custom rules

createPIIRedactor({
  rules: [
    ...DEFAULT_PII_RULES,
    { name: 'ORG_ID', pattern: /org_[a-zA-Z0-9]{16}/g, replacement: '[ORG]' },
  ],
})

Pipeline integration

Attach as observer to redact events, or pre-process user input before chat.send.

✎ Edit this page on GitHub·Found a problem? Open an issue →·How to contribute →

Security

The five primitives most production agents want — PII, injection, rate limits, audit, sandbox.

Prompt injection

Detect and block jailbreak patterns in user input or tool results.

On this page

Built-in rules Custom rules Pipeline integration Related