LeakSnitch Logo

What We Block

Everything that shouldn't end up in an AI's training data. Because let's face it, your secrets deserve better than becoming part of a machine learning model. Here's what LeakSnitch blocks (so you don't have to explain it to your boss later):

Text We Block

  • • API keys, tokens, secrets (OpenAI, Stripe, AWS, OAuth, JWT)
  • • Password assignments and environment variables
  • • Database URIs and internal URLs
  • • PII and sensitive IDs (Aadhaar, PAN, credit cards, emails, phones)
  • • Financial/medical/student identifiers and UPI IDs
  • • Auth headers and cookies
  • • DevOps configs referencing secrets

Files We Scan

Scanned client‑side before upload:

  • • Text-like: .txt, .md, .log, .env, .ini, .cfg, .conf, .properties, .toml
  • • Data/config: .json, .yaml/.yml, .xml, .csv, Dockerfile, .yarnrc, .npmrc, .gradle
  • • Code/web: .html/.htm, .js/.ts/.jsx/.tsx, .py, .rb, .php, .java, .go, .rs, .sh, .bat, .ps1, .sql
  • • Office: .docx, .xlsx
  • • PDF: basic text from uncompressed PDFs

Note: Large files are scanned up to ~2–4MB per file for speed.

API Keys, Tokens & Secrets

  • • OAuth tokens
  • • API keys (OpenAI, HuggingFace, Anthropic)
  • • Payment secrets (Stripe, etc.)
  • • JWT / Bearer tokens
  • • Passwords & environment variables
  • • Database URIs

If it unlocks something, we block it.

Web, SaaS & Cloud Oddities

  • • Auth headers & cookies
  • • Admin URLs with tokens
  • • Internal doc references (Notion, GDocs, Confluence)
  • • S3/GCS paths
  • • Analytics/tracking IDs
  • • DevOps configs with secrets

If it looks unclean, we catch it.

Personal, Financial & Medical

  • • Bank accounts + IFSC
  • • Medical/prescription data
  • • Student identifiers
  • • Invoice/tax IDs
  • • Employee/customer IDs
  • • UPI IDs

Your health, grades, and money stay private.

IDs, Codes & Numbers

  • • Aadhaar Numbers
  • • Credit Card Numbers
  • • PAN Cards
  • • Phone Numbers (IN/US)
  • • Email Addresses

If it's a number you'd never post on Twitter, we block it.

Browser & Tracking Data

  • • Browser Fingerprint Data (User-Agent, IP addresses, session debug info)

Because even your browser deserves privacy.

Custom Patterns & Company Secrets

  • • Custom Regex Patterns
  • • Company-Specific Data
  • • Internal Codes
  • • Proprietary Information

Add your own patterns. We know you're creative (and paranoid).

Redact Mode

Toggle Redact Mode and watch as password: secret123 magically becomes password: redacted. API keys, tokens, and other sensitive values are redacted automatically. Because sometimes, less is more.

How We Catch Everything

Pattern Recognition

We use advanced regex patterns to identify sensitive data formats across multiple categories.

Real-time Detection

Instant detection as you type or paste, with zero delay to your workflow.

Smart Blocking

Intelligent blocking that prevents data leaks while allowing legitimate use cases.

Ready to Protect Your Secrets?

Join thousands of users who trust LeakSnitch to keep their sensitive data safe from AI tools.

Join Discord