🔓 unclaimed — this page was auto-generated from GitHub. Are you the creator?
Claim this page →
pasteguard
AI gets the context. Not your secrets. Open-source privacy proxy for LLMs.
git clone https://github.com/sgasser/pasteguard
AI gets the context. Not your secrets.
Automatically hides names, emails, and API keys before you send prompts to AI.
Quick Start · Chat · Coding Tools · Documentation
Detects personal data and secrets in many languages.
Your data never leaves your machine.
Works Everywhere
Chat — Masks PII and secrets when you paste into ChatGPT, Claude, and Gemini. You see originals, AI sees placeholders.
Apps — Open WebUI, LibreChat, or any self-hosted AI setup. Optionally routes sensitive requests to a local model.
Coding Tools — Cursor, Claude Code, Copilot, Windsurf — your codebase context flows to the provider. PasteGuard masks secrets and PII before they leave.
API Integration — Sits between your code and OpenAI-compatible or Anthropic APIs. Change one URL, your users' data stays protected.
Quick Start
Run PasteGuard as a local proxy:
docker run --rm -p 3000:3000 ghcr.io/sgasser/pasteguard:latest
Open localhost:3000 for the dashboard.
Point your tools or app to PasteGuard instead of the provider:
| Target | PasteGuard URL | Original URL |
|---|---|---|
| OpenAI | http://localhost:3000/openai/v1 | https://api.openai.com/v1 |
| Anthropic | http://localhost:3000/anthropic | https://api.anthropic.com |
| Codex CLI | http://localhost:3000/codex | https://chatgpt.com/backend-api/codex |
# One line to protect your data
client = OpenAI(base_url="http://localhost:3000/openai/v1")
Detection is multilingual out of the box — no per-language images or setup. For custom config or persistent logs: Read the docs →
Route Mode
Route Mode sends requests containing sensitive data to a local LLM (Ollama, vLLM, llama.cpp). Everything else goes to the configured cloud provider. Sensitive data stays on your network.
Chat
Open-source browser extension for ChatGPT, Claude, and Gemini.
- Paste customer data → masked before it reaches the AI
- AI responds with placeholders → you see the originals
- Works with the same detection engine as the proxy
Currently in beta. Apache 2.0.
Coding Tools
Protect your codebase context and secrets when using AI coding assistants.
Claude Code:
ANTHROPIC_BASE_URL=http://localhost:3000/anthropic claude
Cursor: Settings → Models → Enable "Override OpenAI Base URL" → http://localhost:3000/openai/v1
Codex CLI: Configure a custom provider with base_url = "http://127.0.0.1:3000/codex". See the coding tools docs for the full snippet.
Dashboard
Every request is logged with masking details. See what was detected, what was masked, and what reached the provider.
What it catches
Personal data — Names, locations, emails, phone numbers, credit cards, IBANs, IP addresses, and EU VAT numbers. Works in many languages.
Secrets — API keys (OpenAI, Anthropic, Stripe, AWS, GitHub), SSH and PEM private keys, JWT tokens, bearer tokens, passwords, connection strings.
Both detected and masked in real time, including streaming responses.
How detection works
Detection runs as a separate service that PasteGuard calls over HTTP, so you can run it wherever you like. It mixes exact checks with checksums (IBANs, credit cards, emails, phones, IPs) and a small AI model (GLiNER) for names and places. It works the same in any language. Phone numbers are international-only by default; add phone_regions if you need local formats.
Code, Docker image, and tests are in detector/.
Tech Stack
Bun · Hono · GLiNER + python-stdnum (detector/) · SQLite
Contributing
See CONTRIBUTING.md for guidelines on how to contribute.
License
// compatibility
| Platforms | cli, api, web |
|---|---|
| Operating systems | — |
| AI compatibility | claude |
| License | Apache-2.0 |
| Pricing | open-source |
| Language | TypeScript |
// faq
What is pasteguard?
AI gets the context. Not your secrets. Open-source privacy proxy for LLMs.. It is open-source on GitHub.
Is pasteguard free to use?
pasteguard is open-source under the Apache-2.0 license, so it is free to use.
What category does pasteguard belong to?
pasteguard is listed under security in the Claudeers registry of Claude-compatible tools.
// embed badge
[](https://claudeers.com/pasteguard)
// retro hit counter
[](https://claudeers.com/pasteguard)
// reviews
// guestbook
// related in Developer Tools
The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Curs…
Use Garry Tan's exact Claude Code setup: 23 opinionated tools that serve as CEO, Designer, Eng Manager, Release Manager, Doc Engineer, and QA
🙌 OpenHands: AI-Driven Development
AI coding assistant skill (Claude Code, Codex, OpenCode, Cursor, Gemini CLI, and more). Turn any folder of code, SQL schemas, R scripts, shell scripts, docs,…