npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

n8n-nodes-soterai

v0.2.7

Published

SoterAI adds prompt injection, jailbreak, PII leakage, and unsafe output protection to AI workflows.

Readme

n8n-nodes-soterai

npm version n8n community node License: MIT

SoterAI community node for n8n -- protect your AI workflows from prompt injection, jailbreaks, PII leakage, and unsafe outputs.

SoterAI is an AI security platform that sits between your users and your LLMs. It analyses every input and output in real time, blocks threats, redacts sensitive data, and records incidents for audit review. This n8n node lets you add that protection to any n8n workflow with drag-and-drop.

Installation

From the n8n GUI (recommended)

  1. Open your n8n instance.
  2. Go to Settings > Community Nodes.
  3. Enter n8n-nodes-soterai and click Install.
  4. The SoterAI node will appear in your node panel.

From npm

cd ~/.n8n
npm install n8n-nodes-soterai

Restart n8n after installation.

Credentials Setup

  1. Sign up at https://soterai.in and create a project.
  2. Generate an API key from the project dashboard (it starts with sk_).
  3. In n8n, go to Credentials > New Credential > SoterAI API.
  4. Paste your API key.
  5. Keep the default Base URL: https://soterai.in.
  6. (Optional) Set a default Project ID -- this can also be overridden per node.

For self-hosted deployments, replace the Base URL with your own HTTPS SoterAI API endpoint.

Full credential documentation: https://soterai.in/docs

Actions

SoterAI Input Guard

Check user messages for prompt injection, jailbreaks, and other threats before they reach the LLM.

| Field | Type | Description | |-------|------|-------------| | Input Text | string | The user message to analyse | | On Threat | BLOCK / REDACT / WARN / CONTINUE | Local behavior when a threat is detected | | Project ID | string | Optional project override | | Metadata JSON | string | Optional audit metadata (JSON object) |

SoterAI Output Guard

Check AI-generated responses for unsafe content, hallucinated PII, or policy violations before sending them to users.

| Field | Type | Description | |-------|------|-------------| | AI Output Text | string | The AI response to analyse | | On Threat | BLOCK / REDACT / WARN / CONTINUE | Local behavior when a threat is detected | | Project ID | string | Optional project override | | Metadata JSON | string | Optional audit metadata (JSON object) |

SoterAI PII Redactor

Detect and redact sensitive data (emails, phone numbers, API keys, secrets) from any text.

| Field | Type | Description | |-------|------|-------------| | Text | string | The text to scan for PII | | Project ID | string | Optional project override | | Metadata JSON | string | Optional audit metadata (JSON object) |

SoterAI RAG Scanner

Scan documents and text chunks for embedded threats, hidden instructions, or data poisoning before adding them to a vector database.

| Field | Type | Description | |-------|------|-------------| | Document Text | string | The document or chunk text to scan | | Document ID | string | Stable identifier used to track the document scan | | Document Source | API / Email / File Upload / URL / Unknown | Where the document entered the RAG pipeline | | Project ID | string | Optional project override | | Metadata JSON | string | Optional audit metadata (JSON object) |

Output Fields

Input Guard / Output Guard

| Field | Type | Description | |-------|------|-------------| | allowed | boolean | Whether the API considers the text safe | | blocked | boolean | Whether the node blocked the item (based on On Threat) | | riskScore | number | Risk score from 0.0 to 1.0 | | categories | string[] | Array of detected risk types | | safeText | string | Redacted/safe version of the text | | outputText | string | The text to use downstream (empty if blocked) | | reason | string | Human-readable explanation | | warning | string | Present when On Threat is WARN | | incidentId | string | Incident ID if one was created | | rawResponse | object | Full API response for advanced use |

PII Redactor

| Field | Type | Description | |-------|------|-------------| | safeText | string | Text with PII redacted | | detectedEntities | array | List of detected PII entities with type, label, severity | | riskScore | number | Overall risk score | | rawResponse | object | Full API response |

RAG Scanner

| Field | Type | Description | |-------|------|-------------| | trustScore | number | Document trust score from 0.0 to 1.0 | | trustLevel | string | Trust classification (e.g. TRUSTED, NEEDS_REVIEW, UNTRUSTED) | | findings | array | List of issues found in the document | | recommendedAction | string | Suggested action (e.g. ALLOW, REVIEW, REJECT) | | rawResponse | object | Full API response |

Example Workflow

An importable example workflow is included at examples/protected-chatbot-workflow.json.

The workflow implements a protected chatbot pattern:

[Webhook] -> [SoterAI Input Guard] -> [IF blocked?]
                                          |-- Yes -> [Reply: "Blocked"]
                                          |-- No  -> [OpenAI Chat] -> [SoterAI Output Guard] -> [Reply]

To import: in n8n, go to Workflows > Import from File and select the JSON file.

Privacy and Security

  • API keys are stored in n8n's encrypted credential store and are never logged or exposed in workflow outputs.
  • All security analysis happens server-side via the SoterAI policy engine. No user data is analysed locally.
  • Nodes are stateless connectors -- no user data, messages, or documents are stored locally by the node.
  • Network traffic uses HTTPS exclusively. The node communicates only with your configured SoterAI API endpoint.
  • No telemetry is collected by this node.

Resources

Support

License

MIT