npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

cloakclaw

v0.1.2

Published

Local AI privacy proxy — redact sensitive data before sending to cloud LLMs, then restore originals in the response.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

canonflipcanonflip

Keywords

privacyaillmredactioncloakingollamaopenclaw

Readme

Your data never leaves your machine. Zero cloud dependency for cloaking. Zero telemetry.

How It Works

📄 Your Document               🔒 Cloaked Version              ☁️ Cloud LLM
─────────────────────────────────────────────────────────────────────────────
"Sarah Chen, CEO of            "James Park, CEO of             Sees only
 Acme Corp, owes               Northstar Solutions, owes       fake data —
 $4.2M on invoice               $3.8M on invoice               analyzes it
 #INV-2024-0847"                #INV-2024-0293"                normally

☁️ LLM Response                🔓 Restored Response
─────────────────────────────────────────────────────────────────────────────
"James Park should             "Sarah Chen should
 restructure the $3.8M          restructure the $4.2M
 obligation..."                  obligation..."

Two-pass detection catches what regex alone misses:

  1. Regex pass — fast pattern matching (SSNs, emails, IPs, dollar amounts, etc.)
  2. 🧠 LLM pass — local Ollama model finds names, companies, and ambiguous entities in context

Works without Ollama in regex-only mode. LLM pass catches significantly more.

Install

npm install -g cloakclaw

Optional but recommended:

brew install poppler          # Better PDF text extraction (macOS)
apt install poppler-utils     # Linux equivalent
ollama pull qwen2.5:7b        # AI-powered name/company detection

Verify: cloakclaw --version

Quick Start

# Cloak a document
cloakclaw cloak contract.pdf --profile legal

# See the entity mapping
cloakclaw diff -s <session-id>

# After getting LLM response, restore originals
cloakclaw decloak -s <session-id> -f response.txt

Web UI

cloakclaw serve
# → http://localhost:3900

Drag-and-drop files, paste text, toggle entity types, real-time streaming progress, session history, and a built-in decloaker.

24 Entity Types

| Category | Types | |----------|-------| | 👤 Identity | People, Companies, Passports, Drivers License | | 📞 Contact | Emails, Phones, Addresses | | 💰 Financial | Dollars, Percentages, Accounts, Banks, SSNs | | ⚖️ Legal | Case Numbers, Jurisdictions | | 💻 Tech | IP Addresses, MAC Addresses, Passwords, API Keys, URLs | | 🔧 Other | Crypto Wallets, GPS Coordinates, VINs, Medical IDs, Dates |

6 Document Profiles

| Profile | Use Case | Types | |---------|----------|-------| | 🛡️ General | Catch-all | All 24 | | 📜 Legal | Contracts, NDAs, filings | 10 | | 💰 Financial | Bank statements, P&L, investor docs | 11 | | ✉️ Email | Business correspondence | 10 | | 💻 Code | .env files, configs, infra docs | 9 | | 🏥 Medical | HIPAA-adjacent records | 11 |

Security

  • 🔐 AES-256-GCM encrypted mapping database
  • 🔑 Optional password protection (scrypt-derived key)
  • ♻️ Auto-expiry — sessions purged after 7 days
  • 📏 50MB upload limit
  • 🚫 Zero telemetry — nothing phones home, ever
  • 🏠 100% local — cloaking never touches the internet

CLI Reference

cloakclaw cloak [file]              Cloak a file or stdin
  -p, --profile <name>              general|legal|financial|email|code|medical
  -i, --interactive                  Approve each entity
  --no-llm                           Skip Ollama LLM pass
  -o, --output <file>                Write to file
  -c, --copy                         Copy to clipboard

cloakclaw decloak                    Restore originals in LLM response
  -s, --session <id>                 Session ID from cloak
  -f, --file <file>                  Read from file (or stdin)

cloakclaw diff -s <id>               Show entity mapping table
cloakclaw sessions                   List recent sessions
cloakclaw session <id>               Session details + mappings

cloakclaw password set               Set database password
cloakclaw password remove            Remove password

cloakclaw config show                Show config
cloakclaw config set <key> <val>     Set config value
cloakclaw serve                      Start web UI (:3900)
cloakclaw doctor                     Check dependencies

Configuration

Config: ~/.cloakclaw/config.yaml

ollama:
  url: http://localhost:11434
  model: qwen2.5:7b

Recommended Models by RAM

| RAM | Model | Detection Quality | |-----|-------|-------------------| | 8GB | qwen2.5:3b | Basic (regex carries most weight) | | 16GB | qwen2.5:7b | Good | | 32GB+ | qwen2.5:32b | Very good | | 64GB+ | qwen2.5:72b | Excellent |

OpenClaw Integration

CloakClaw works as an OpenClaw skill — documents sent to your agent are automatically cloaked before reaching cloud LLMs:

clawhub install cloakclaw

How It Works Under the Hood

  1. Extract — PDF via poppler (pdftotext), with pdfjs-dist fallback. Supports PDF, TXT, MD, CSV, JSON, DOCX, and more.
  2. Detect — Two-pass NER: regex patterns → Ollama LLM contextual analysis
  3. Replace — Generate realistic fake data (consistent within session). Dollars scale proportionally, dates shift consistently, names get plausible alternatives.
  4. Store — Encrypted SQLite mapping (original ↔ replacement)
  5. Decloak — Reverse substitution using session mappings

Built With

  • Ollama — local LLM inference
  • pdfjs-dist — PDF extraction fallback
  • better-sqlite3 — encrypted mapping store
  • Node.js 22+ — native Web API multipart parsing

Contributing

Issues and PRs welcome. See SPEC.md for architecture details.

⚠️ Disclaimer

CloakClaw is NOT HIPAA, GDPR, SOC 2, PCI-DSS, or CCPA compliant. It is a best-effort privacy tool that may miss entities or produce false positives. You are solely responsible for reviewing cloaked output before sharing with any third party. See cloakclaw.com for full terms.

License

MIT — © 2026 Canonflip