shroud-privacy 2.2.3 → 2.2.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/NOTICE +1 -1
  2. package/README.md +7 -3
  3. package/package.json +5 -5
package/NOTICE CHANGED
@@ -2,6 +2,6 @@ Shroud — Privacy Obfuscation for AI Agents
2
2
  Copyright 2026 Walter Keating
3
3
 
4
4
  This product includes software developed as the Shroud project
5
- (https://github.com/walterkeating-stack/shroud).
5
+ (https://github.com/wkeything/shroud).
6
6
 
7
7
  Licensed under the Apache License, Version 2.0.
package/README.md CHANGED
@@ -28,7 +28,7 @@
28
28
  | `message_sending` | Agent → User | Deobfuscate outbound messages (all channels) |
29
29
  | `globalThis.__shroudDeobfuscate` | Agent → Channel | Global deobfuscation hook — called by OpenClaw before ANY channel send |
30
30
 
31
- > **Privacy guarantee:** Shroud intercepts ALL outbound LLM API calls (Anthropic, OpenAI, Google, any provider) at the `fetch` level and obfuscates PII in every message — including assistant history and Slack `<mailto:>` markup — before it leaves the process. No PII reaches the LLM. On the channel delivery side, Shroud registers `globalThis.__shroudDeobfuscate` — a single function that OpenClaw calls before sending to ANY channel (Slack, WhatsApp, Signal, web, etc.). One hook, all channels, transparent no-op if Shroud isn't loaded.
31
+ > **Privacy guarantee:** Shroud intercepts ALL outbound LLM API calls (Anthropic, OpenAI, Google, any provider) at the `fetch` level and obfuscates detected PII in every message — including assistant history and Slack `<mailto:>` markup — before it leaves the process. Detected PII never reaches the LLM. Detection covers 100+ entity types; see [SECURITY.md](SECURITY.md) for known limitations. On the channel delivery side, Shroud registers `globalThis.__shroudDeobfuscate` — a single function that OpenClaw calls before sending to ANY channel (Slack, WhatsApp, Signal, web, etc.). One hook, all channels, transparent no-op if Shroud isn't loaded.
32
32
 
33
33
  > **Requires OpenClaw 2026.3.24 or later** with the channel delivery patch (see [OpenClaw patch](#openclaw-channel-delivery-patch) below).
34
34
 
@@ -101,7 +101,7 @@ Other methods: `reset`, `stats`, `health`, `configure`, `shutdown`.
101
101
  ### From source (development)
102
102
 
103
103
  ```bash
104
- git clone https://github.com/walterkeating-stack/shroud.git
104
+ git clone https://github.com/wkeything/shroud.git
105
105
  cd shroud
106
106
  npm install && npm run build
107
107
  openclaw plugins install --path .
@@ -287,7 +287,7 @@ The **Shroud Enterprise Edition** adds features for teams and regulated environm
287
287
  - **Provenance tagging** — invisible audit markers in output
288
288
  - **Corpus pre-scanning** — batch obfuscation for RAG pipelines
289
289
 
290
- Contact for licensing: https://github.com/walterkeating-stack/shroud
290
+ Contact for licensing: https://github.com/wkeything/shroud
291
291
 
292
292
  ## Detection intelligence
293
293
 
@@ -509,6 +509,10 @@ The repo includes `.github/workflows/ci.yml` which runs lint + test + build on e
509
509
 
510
510
  `person_name`, `email`, `phone`, `ip_address`, `api_key`, `url`, `org_name`, `location`, `file_path`, `credit_card`, `ssn`, `mac_address`, `hostname`, `snmp_community`, `bgp_asn`, `network_credential`, `vlan_id`, `interface_desc`, `route_map`, `ospf_id`, `acl_name`, `iban`, `national_id`, `jwt`, `ics_identifier`, `gps_coordinate`, `certificate`, `custom`
511
511
 
512
+ ## Disclaimer
513
+
514
+ This software is provided "as is", without warranty of any kind, express or implied. Shroud uses regex-based detection which may not catch all sensitive data. It reduces PII exposure but does not eliminate it. See [SECURITY.md](SECURITY.md) for known limitations. The authors assume no responsibility for data leakage, compliance failures, or any damages arising from use of this software.
515
+
512
516
  ## License
513
517
 
514
518
  [Apache 2.0](LICENSE)
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "shroud-privacy",
3
- "version": "2.2.3",
3
+ "version": "2.2.5",
4
4
  "description": "Privacy obfuscation for AI agents — detects PII and replaces with deterministic fake values before anything reaches the LLM. Works with OpenClaw (plugin) or any agent (APP protocol).",
5
5
  "type": "module",
6
6
  "main": "dist/index.js",
@@ -39,7 +39,7 @@
39
39
  "openclaw-plugin",
40
40
  "app-protocol"
41
41
  ],
42
- "author": "walterkeating-stack",
42
+ "author": "wkeything",
43
43
  "license": "Apache-2.0",
44
44
  "publishConfig": {
45
45
  "access": "public"
@@ -56,10 +56,10 @@
56
56
  },
57
57
  "repository": {
58
58
  "type": "git",
59
- "url": "git+https://github.com/walterkeating-stack/shroud.git"
59
+ "url": "git+https://github.com/wkeything/shroud.git"
60
60
  },
61
- "homepage": "https://github.com/walterkeating-stack/shroud#readme",
61
+ "homepage": "https://github.com/wkeything/shroud#readme",
62
62
  "bugs": {
63
- "url": "https://github.com/walterkeating-stack/shroud/issues"
63
+ "url": "https://github.com/wkeything/shroud/issues"
64
64
  }
65
65
  }