@spences10/pi-redact
Advanced tools
Tool-output redaction for Pi that replaces likely secrets before they reach the model context
Prevent accidental secret exposure before tool output reaches the
model. pi-redact scans command results for likely tokens, keys, and
credentials, replacing them with safe placeholders while preserving
enough context to debug.
pi install npm:@spences10/pi-redact
Local development from this monorepo:
pnpm --filter @spences10/pi-redact run build
pi install ./packages/pi-redact
# or for one run only
pi -e ./packages/pi-redact
@spences10/pi-redact listens for Pi tool_result events and
rewrites text content before it is added to model context. It is
intended as a last-mile safety net for accidental secrets in command
output, file reads, logs, and config files.
It currently detects and redacts:
password, secret, token, and
api_keyHost, HostName, User,
IdentityFile, ProxyJump, and forwarding directivesRedactions preserve a short prefix where helpful and append a marker
such as [REDACTED:GitHub Token].
/redact-statsShows how many values were redacted in the current Pi session.
/redact-stats
If a tool returns:
GITHUB_TOKEN=ghp_abcdefghijklmnopqrstuvwxyz1234567890
The model receives something like:
GITH********************[REDACTED:GitHub Token]
import redact from '@spences10/pi-redact';
// pass `redact` as an ExtensionFactory to your Pi runtime
my-pi imports this package directly and enables it as the built-in
filter-output extension.
This extension is defensive, not a guarantee. It can miss novel secret formats, and broad patterns can occasionally redact benign values. Use proper secret hygiene as the primary control:
.env files into model contextPackage scripts build transitive workspace dependencies first, then
run local tools through Vite+ with vp exec.
pnpm --filter @spences10/pi-redact run check
pnpm --filter @spences10/pi-redact run test
pnpm --filter @spences10/pi-redact run build
MIT
FAQs
Tool-output redaction for Pi that replaces likely secrets before they reach the model context
The npm package @spences10/pi-redact receives a total of 159 weekly downloads. As such, @spences10/pi-redact popularity was classified as not popular.
We found that @spences10/pi-redact demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket MCP now lets AI assistants review org alerts, investigate threats using the Socket threat feed, and inspect package files in addition to dependency scoring.
Product
Socket Firewall blocks malicious VS Code and Open VSX extensions before install, protecting developers from compromised editor marketplaces.
Research
More than 140 Mastra npm packages were compromised in a supply chain attack that used a typosquatted dependency to deliver a cross-platform infostealer during installation.