https://github.com/shreesh1/optimuspii

Extension to block pasting PII in ChatGPT, Claude etc.... ( Future Browser DLP )
https://github.com/shreesh1/optimuspii

ai browser chatgpt dlp extension

Last synced: about 2 months ago
JSON representation

Extension to block pasting PII in ChatGPT, Claude etc.... ( Future Browser DLP )

• Host: GitHub
• URL: https://github.com/shreesh1/optimuspii
• Owner: shreesh1
• License: apache-2.0
• Created: 2025-03-13T12:02:12.000Z (7 months ago)
• Default Branch: main
• Last Pushed: 2025-03-22T14:01:43.000Z (7 months ago)
• Last Synced: 2025-03-22T15:19:12.636Z (7 months ago)
• Topics: ai, browser, chatgpt, dlp, extension
• Language: JavaScript
• Homepage:
• Size: 376 KB
• Stars: 0
• Watchers: 1
• Forks: 1
• Open Issues: 5
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# OptimusPII



  



A comprehensive security extension that protects against leaking PII (Personally Identifiable Information) through advanced detection, blocking, and redaction capabilities in ChatGPT, Claude, and other web applications, with customizable policies, multi-mode operation, and robust security monitoring features.

## Features

- **Intelligent PII Detection**: Real-time scanning for various PII types (emails, credit cards, phone numbers, SSNs, passport numbers, Aadhaar numbers, PAN cards, passwords) with support for custom regex patterns

- **Flexible Protection Options**: Multiple operational modes including interactive confirmation, automatic blocking, alert-only, silent blocking, and redaction capabilities

- **Customizable Security**: Tailor protection with website-specific rules, custom replacement text, and configurable URL monitoring

- **Policy Management**: Create, apply and manage domain-specific security policies through an intuitive interface

- **Comprehensive Monitoring**: Track security events through alerts dashboard, detailed activity logs, and configurable notification system

- **Network Security**: Detection and warning system for potentially malicious phishing URLs and other threats

## Development Features

- **Testing Framework**: Built-in tools to validate detection patterns and extension functionality

- **Webpack Configuration**: Optimized build process for both development and production environments

- **Component-Based Architecture**: OOP-based structure for content script allowing easier maintenance and future enhancements

- **React UI Framework**: Modern React-based options page with component structure for better development experience

- **Theme Support**: Built-in light and dark theme support with Bootstrap styling

- **Hot Reloading**: Development environment with watch mode for faster development cycles

- **Cross-Browser Compatibility**: Configurations for both Chrome and Firefox development

## Screenshots

1. Interactive Module for Blocking or Allowing

![image](https://github.com/user-attachments/assets/a72b2bc6-d1ba-4e32-8da6-c23448f8ed5d)

2. Notifications for other modes if paste is directly blocked or detected in alert mode

Block Mode

![image](https://github.com/user-attachments/assets/e6937119-f2b9-4c91-9db8-a9aaad2112be)

Alert Mode

![image](https://github.com/user-attachments/assets/94486d8b-62e6-4d46-a871-f472c0bf44be)

Redact & Paste

![image](https://github.com/user-attachments/assets/fe8b5aaa-ab2a-4473-af72-61148d5bd713)

3. Policy Based Configurations

![image](https://github.com/user-attachments/assets/b2e98e4a-8473-4f42-8ed3-86d8a129d8ab)

![image](https://github.com/user-attachments/assets/9b2c5da5-44cf-4a78-bb82-9e7bbd129edb)

![image](https://github.com/user-attachments/assets/d78dbedb-36a0-4d2b-a2d1-daaf320cae57)

![image](https://github.com/user-attachments/assets/ac7bee1e-db49-4d2d-a801-55daa86b8595)

![image](https://github.com/user-attachments/assets/8eb72ab9-a88f-47b5-a3bc-4e2e0ddbbfa0)

4. Global Settings

![image](https://github.com/user-attachments/assets/dd391e2b-5ca4-47df-8b8d-9aac8c29040b)

5. Alerts Page

![image](https://github.com/user-attachments/assets/46bf5b52-642b-49f4-a3a2-caa92b73232e)

6. Logs Page

![image](https://github.com/user-attachments/assets/8c4754d9-0886-4bae-97d6-c9b09a28d18d)

7. Dark Mode

![image](https://github.com/user-attachments/assets/08e227ea-a0a6-4bd8-beee-f6ff2b2de2b1)

8. Phishing Warning Page

![image](https://github.com/user-attachments/assets/68e12b21-0d7d-4f42-b10c-283e30385df3)

9. Alert Notifications

![image](https://github.com/user-attachments/assets/777d0ab1-a460-4dcb-90f0-027612c33f8a)

## How it works

The extension monitors paste events on web pages and checks for patterns that match known PII formats. When detected, it can block the paste operation and/or notify the user based on the selected operational mode.

## PII Detection Types

- **Email Addresses**: Standard email format detection

- **Credit Card Numbers**: Major card formats (Visa, Mastercard, Amex, etc.) with or without spaces/dashes

- **Phone Numbers**: Various international formats with different separators and country codes

- **Social Security Numbers**: US SSN formats (XXX-XX-XXXX, XXX XX XXXX, or XXXXXXXXX) with validation rules

- **Passport Number**: Common international passport number formats

- **Aadhaar Number**: Indian national ID number format

- **PAN Card**: Indian tax ID format

- **Passwords**: Common password patterns with symbols, numbers, and mixed case

- **Custom Patterns**: User-defined regex patterns for detecting specific types of sensitive information

- **Phishing URLs**: Detection of potentially malicious URLs with configurable sensitivity levels

## Developer Installation

### Chrome/

1. Download the source code

2. Go to `chrome://extensions/` (Chrome)

3. Enable "Developer mode"

4. Click "Load unpacked"

5. Select the extension folder ( If issues rename manifest_chrome.json to manifest.json )

### Firefox

1. Download the source code

2. Go to `about:debugging#/runtime/this-firefox`

3. Click "Load Temporary Add-on"

4. Select the manifest_firefox.json file ( If issues rename manifest_firefox.json to manifest.json )

## Supported Websites

By default, the extension monitors:

- ChatGPT (https://chatgpt.com/*)

- Claude AI (https://claude.ai/*)

You can add or remove website patterns through the options page.

> Note : Tested it on google also, it works. Don't give them everything.

## Configuration Options

Access the extension options to customize how OptimusPII works:

1. **Operation Mode**: Select how the extension should respond to detected PII

   - Interactive mode provides a detailed popup showing detected information

   - Other modes provide varying levels of blocking and notifications

2. **Websites to Monitor**: Customize which websites the extension should monitor

   - Add new websites using URL patterns like "https://example.com/*"

   - Use wildcard patterns like "*://*.example.com/*" to match all protocols and subdomains

3. **Built-in Detection Patterns**: Toggle and customize default patterns

   - Enable/disable specific types of detection

   - Customize sample replacement text for each pattern

   - View the regex pattern being used for detection

4. **Custom Detection Patterns**: Add your own regex patterns to detect specific types of sensitive information

   - Name your pattern (e.g., "API Key", "Database Password")

   - Provide a regex pattern to match the sensitive information

   - Set sample replacement text for when using "Paste Redacted" option

   - Enable/disable patterns as needed

5. **Network Security Settings**: Configure protection against malicious content

   - Adjust phishing URL detection sensitivity

   - Control notification preferences for different security events

   - Enable/disable specific security features

6. **Policy-Based Protection**: Manage policies to control security behaviors

   - Create policies to define specific detection and blocking rules

   - Apply policies to specific websites or domains

   - Enable, disable, or customize policies through the options interface