What We Block

Everything that shouldn't end up in an AI's training data. Because let's face it, your secrets deserve better than becoming part of a machine learning model. Here's what LeakSnitch blocks (so you don't have to explain it to your boss later):

🔑 API Keys, Tokens & Secrets

  • • OAuth Access Tokens (GitHub, Google, Notion, Slack, etc.)
  • • Firebase API Secrets
  • • Stripe Secret Keys (sk_live_, sk_test_)
  • • OpenAI / HuggingFace / Anthropic API Keys
  • • JWT Tokens, Bearer Tokens
  • • Password Assignments
  • • Environment Variables
  • • Database URIs

If it unlocks something, we block it. Sorry, hackers.

🌐 Web, SaaS & Cloud Oddities

  • • Session Cookies or HTTP Headers (Authorization: Bearer, Set-Cookie: session=...)
  • • SaaS Admin URLs with tokens (?auth_token=...)
  • • Internal Document Text (Notion, GDocs, Confluence, etc.)
  • • S3 Bucket Names / GCS Paths (s3://..., gs://...)
  • • Google Analytics IDs or Tracking Codes (UA-XXXXXXX, G-XXXXXXX)
  • • Slack Channel Names / References (#security-incidents, #dev-secrets, etc.)
  • • Authentication Headers (Base64 credentials, Basic Auth, OAuth headers)
  • • Environment YAML / DevOps Configs (.github/workflows/.yml, GitLab CI, etc. with secrets)

If it looks like a dev forgot to clean up, we're on it.

🧑‍💼 Personal, Financial & Medical

  • • Bank Account Numbers + IFSC Codes
  • • Medical or Prescription Data
  • • Student Data (Name, Roll Number, CGPA)
  • • Invoice Numbers or Tax IDs (TIN, GSTIN)
  • • Employee or Customer IDs (EMP12345, CUST8790, etc.)
  • • UPI IDs (john@oksbi, steve@ybl, etc)

Because your health, grades, and money shouldn't be AI's business.

🔒 IDs, Codes & Numbers

  • • Aadhaar Numbers
  • • Credit Card Numbers
  • • PAN Cards
  • • Phone Numbers (IN/US)
  • • Email Addresses

If it's a number you'd never post on Twitter, we block it.

🕵️‍♂️ Browser & Tracking Data

  • • Browser Fingerprint Data (User-Agent, IP addresses, session debug info)

Because even your browser deserves privacy.

🎯 Custom Patterns & Company Secrets

  • • Custom Regex Patterns
  • • Company-Specific Data
  • • Internal Codes
  • • Proprietary Information

Add your own patterns—because we know you're creative (and paranoid).

📝 Redact Mode

Toggle Redact Mode and watch as password: secret123 magically becomes password: redacted. API keys, tokens, and other sensitive values? redacted faster than you can say "oops." Because sometimes, less is more (especially when it comes to secrets).

How We Catch Everything

🔍

Pattern Recognition

We use advanced regex patterns to identify sensitive data formats across multiple categories.

Real-time Detection

Instant detection as you type or paste, with zero delay to your workflow.

🛡️

Smart Blocking

Intelligent blocking that prevents data leaks while allowing legitimate use cases.

Ready to Protect Your Secrets?

Join thousands of users who trust LeakSnitch to keep their sensitive data safe from AI tools.

Join Discord