What it does
The PII Data Leak Scanner is a specialized audit tool designed to identify sensitive Personal Identifiable Information (PII) within your codebase and data artifacts. It performs heuristic scans across SQL schemas, CSV datasets, JSON files, seed data, fixtures, and application logs to detect accidental exposure of emails, SSNs, credit card numbers, and sensitive column names.
Why use this skill
Prompting a standard AI to "find PII" often leads to inconsistent results and missed patterns. This skill provides a structured, developer-focused workflow using a dedicated Python scanner and an industry-standard audit checklist. It ensures that before you push code to a public repo or share a database dump, you have an evidence-based report citing exact filenames and line numbers for remediation.
Supported tools
- File Formats: .sql, .csv, .json, .log
- Frameworks: Optimized for Rails/Django/Node seed and fixture directories
- Standard Library: Pure Python implementation with no external dependencies required
What the output looks like
You receive a structured Markdown report categorized by severity (Critical to Info). Each finding includes the file path, line number, the specific evidence found (e.g., a regex match for a phone number), the potential impact, and a templated remediation step you can apply immediately.