Show HN: PII-Shield – Log Sanitization Sidecar with JSON Integrity (Go, Entropy)
7 by aragoss | 1 comments on Hacker News.
What PII-Shield does: It's a K8s sidecar (or CLI tool) that pipes application logs, detects secrets using Shannon entropy (catching unknown keys like "sk-live-..." without predefined patterns), and redacts them deterministically using HMAC. Why deterministic? So that "pass123" always hashes to the same "[HIDDEN:a1b2c]", allowing QA/Devs to correlate errors without seeing the raw data. Key features: 1. JSON Integrity: It parses JSON, sanitizes values, and rebuilds it. It guarantees valid JSON output for your SIEM (ELK/Datadog). 2. Entropy Detection: Uses context-aware entropy analysis to catch high-randomness strings. 3. Fail-Open: Designed as a transparent pipe wrapper to preserve app uptime. The project is open-source (Apache 2.0). Repo: https://ift.tt/qW2jcFG Docs: https://pii-shield.gitbook.io/docs/ I'd love your feedback on the entropy/threshold logic!
Tuesday, February 3, 2026
Monday, February 2, 2026
Sunday, February 1, 2026
Saturday, January 31, 2026
New top story on Hacker News: US has investigated claims WhatsApp chats aren't private
US has investigated claims WhatsApp chats aren't private
7 by 1vuio0pswjnm7 | 183 comments on Hacker News.
https://ift.tt/FDRPsbU https://ift.tt/nNRLhtu...
7 by 1vuio0pswjnm7 | 183 comments on Hacker News.
https://ift.tt/FDRPsbU https://ift.tt/nNRLhtu...
Subscribe to:
Comments (Atom)