CalvinBackup/agentic_security
1
0
Fork 0
mirror of https://github.com/msoedov/agentic_security.git synced 2026-06-25 22:59:56 +02:00
Code Issues Packages Projects Releases Wiki Activity

feat: add PII leak detector

Browse Source
This commit is contained in:
Edneam
2026-05-14 22:18:22 +05:30
parent 2896974005
commit 81d2ee76c7
4 changed files with 129 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/refusal_classifier_plugins.md
+20
View File
@@ -74,6 +74,26 @@ from agentic_security.probe_actor.refusal import refusal_heuristic
is_refusal = refusal_heuristic(request_json)
```
## PII Leak Detection
The built-in `PIIDetector` follows the same boolean detector interface and can be registered with the manager or added to a hybrid classifier. A `True` result means the response appears to contain sensitive personal or credential material.
```python
from agentic_security.probe_actor.refusal import refusal_classifier_manager
from agentic_security.refusal_classifier import PIIDetector
refusal_classifier_manager.register_plugin("pii", PIIDetector())
```
`PIIDetector` currently checks for common leak signals including email addresses, US SSNs, phone numbers, private key blocks, API-token style secrets, and credit card candidates that pass Luhn validation.
For reporting or debugging, use `detected_types` to see which leak categories matched:
```python
detector = PIIDetector()
matched_types = detector.detected_types(response)
```
## Conclusion
The refusal classifier plugin system provides a flexible and extensible way to add custom refusal detection logic to the Agentic Security project. This documentation serves as a guide to creating, registering, and using custom refusal classifier plugins.