Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/chainstacklabs/chainstack-dlp-browser-extension

Chrome extension that redacts potentially sensitive information before querying ChatGPT
https://github.com/chainstacklabs/chainstack-dlp-browser-extension

chainstack chatgpt dlp security

Last synced: about 2 months ago
JSON representation

Chrome extension that redacts potentially sensitive information before querying ChatGPT

Awesome Lists containing this project

README

        

Labs


Chainstack is the leading suite of services connecting developers with Web3 infrastructure


 
 
 
 
 


Homepage
Supported protocols
Chainstack blog
Chainstack docs
Blockchain API reference

Start for free

# Chainstack DLP for ChatGPT

In the digital age, data privacy, and security have become paramount. As we increasingly rely on artificial intelligence (AI) models for various tasks, we must ensure that our interactions with these models do not inadvertently expose sensitive information. This is particularly relevant when using AI-powered chatbots like ChatGPT, where users often input data that could be personal or sensitive.

The Chatinstack DLP browser extension is designed to enhance the privacy and security of your interactions with ChatGPT. This extension works by redacting potentially sensitive information before it's sent to ChatGPT for processing, including names, addresses, API keys, JWT tokens, etc.

## Processing sensitive data

To function as a genuine Data Loss Prevention (DLP) tool, the Chainstack DLP performs all processing locally. This means the extension does not rely on any external APIs, ensuring that your data never leaves your local environment. Trust is a critical factor in data security, and to uphold this trust, we've made our tool 100% open-source. This transparency allows you to verify the security measures we've implemented. You can install the extension directly from the store, or, for those who prefer, you can also install it locally using this repository.

The Chainstack DLP tool employs regular expression patterns to detect potentially sensitive data, such as API keys, credit card numbers, JWT tokens, etc. Additionally, it utilizes the [compromise package](https://github.com/spencermountain/compromise), a robust JavaScript library for natural language processing (NLP). This library aids in the identification of personal and business identifiers, including names, addresses, and company names.

> The extension uses a bundled version of the compromise library V 14.9.0.

## Quickstart

1. **Install Browserify**: [Browserify](https://browserify.org/) is a tool that allows you to use `require()` style CommonJS modules in the browser. It bundles up all of your dependencies into one JavaScript file so that you can include it in your HTML file. Install it globally using npm with the following command:

```
npm install -g browserify
```

2. **Bundle `index.js`**: Once Browserify is installed, you can use it to bundle your `index.js` file. Navigate to the root directory of your project and run the following command:

```
browserify lib/index.js -o dist/bundle.js
```

This command tells Browserify to take `lib/index.js` as the entry point of your application, bundle up all its dependencies, and output the result to `dist/bundle.js`. The `-o` flag is used to specify the output file.

3. **Install the Extension from Developer Tools**: After bundling your JavaScript files, the next step is to install the extension in your browser. This process can vary depending on the browser you're using. For Chrome, you can do this by:

- Open the Extension Management page by navigating to `chrome://extensions`. Alternatively, open this page by clicking browser settings > Extensions > Manage extensions.
- Enable Developer Mode by clicking the toggle switch next to Developer mode.
- Click the ` Load unpacked`` button and select the extension directory, `chainstack-dlp` in this case.

Now, your browser extension is installed and ready to use.

> Note that you must re-run the bundle command whenever you edit `index.js`.

## Usage

The Chainstack DLP introduces two buttons and a small preview window above the ChatGPT input bar. The `↕` button serves two functions: expanding and minimizing the preview window. Meanwhile, the clear button deletes all content within the ChatGPT input bar.

A popup window is provided to manage the redaction tool. Users can enable or disable the tool and select or deselect specific types of data to redact. However, particularly sensitive data such as credit card patterns, JSON Web Tokens, Ethereum Private Keys, and phone numbers cannot be disabled.

Any changes made within the popup window will update live. However, you must empty the ChatGPT input bar and re-enter the content to see these changes. A preview is available to check the content before submitting it to ChatGPT. If something appears malfunctioning, reloading the page should resolve the issue.

Preview image of the Chainstack DLP popup

> Chainstack DLP popup preview.