Zero-code log sanitization sidecar for Kubernetes. Prevents data leaks (GDPR/SOC2) by redacting PII from logs before they leave the pod.
Why PII-Shield?
Developers often forget to mask sensitive data. Traditional regex filters in Fluentd/Logstash are slow, hard to maintain, and consume expensive CPU on log aggregators.
PII-Shield sits right next to your app container:
High Performance: Written in Go, designed for low-latency log processing.
Written in Go, designed for low-latency log processing. Context-Aware Entropy Analysis: Detected high-entropy secrets even without keys (e.g. Error: ... 44saCk9... ) by analyzing context keywords.
Detected high-entropy secrets even without keys (e.g. ) by analyzing context keywords. 100% Accuracy: Verified against "Wild" stress tests including binary garbage, JSON nesting, and multilingual logs.
Verified against "Wild" stress tests including binary garbage, JSON nesting, and multilingual logs. Deterministic Hashing: Replaces secrets with unique hashes (e.g., [HIDDEN:a1b2c] ), allowing QA to correlate errors without seeing the raw data.
Replaces secrets with unique hashes (e.g., ), allowing QA to correlate errors without seeing the raw data. Drop-in: No code changes required. Works with any language (Node, Python, Java, Go).
Installation
... continue reading