npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

pii-paladin

v2.0.2

Published

A Node.js package to censor PII in a string using a hybrid NER and Regex approach with comprehensive test coverage. SERVER-SIDE ONLY - will not work in browsers or frontend frameworks. For browser support, see pii-paladin-lite.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jeeemjeeem

Keywords

piinertransformersofflinecensorregexprivacyserver-sidemlmachine-learning

Readme

PII-PALADIN

⚠️ IMPORTANT: This is a NODE.JS ONLY package! ⚠️

This package will NOT work in your React, Next.js, Vue, or any other frontend framework!

This package uses a NER (Named Entity Recognition) language model that requires Node.js server-side execution. It will NOT work in browsers, client-side JavaScript, or frontend frameworks.

🚫 What This Package WON'T Work In:

  • React (client-side)
  • Next.js (client-side components)
  • Vue.js (client-side)
  • Angular (client-side)
  • Browser JavaScript
  • Frontend frameworks
  • Client-side applications

✅ What This Package WILL Work In:

  • Node.js servers
  • Express.js applications
  • Next.js API routes (server-side only)
  • Backend services
  • Command-line tools
  • Server-side applications

📋 What It Does

PII-PALADIN is a Node.js package designed to detect and censor Personally Identifiable Information (PII) from a string. It uses a hybrid approach combining a pre-trained Named Entity Recognition (NER) model with regular expressions for comprehensive and accurate PII detection.

🎯 Features

  • Hybrid PII Detection: Combines the contextual understanding of an NER model for names, organizations, and locations with the precision of regex for structured PII like SSN, credit cards, emails, and phone numbers.
  • Offline Inference: All model and regex processing is performed locally, ensuring no internet access is required at runtime.
  • Comprehensive Coverage: Aims for high accuracy across a wide range of PII types.
  • Censoring Style: Replaces detected PII with [CENSORED].
  • Server-Side Only: Designed specifically for Node.js environments.

🚀 Getting Started

Prerequisites

  • Node.js (version 14 or higher)
  • npm or yarn
  • Server environment (not browser)

Installation

Install the package using npm:

npm install pii-paladin

Usage

This package is an ES module, so you should use import syntax in your project. Make sure your project's package.json has "type": "module".

Here's a simple example:

import { censorPII } from 'pii-paladin';

async function main() {
  const text = "Contact John Doe at [email protected] or (123) 456-7890. He lives at 123 Main St, Anytown, and his SSN is 987-65-4321.";

  console.log("Original Text:");
  console.log(text);

  try {
    const censoredText = await censorPII(text);
    console.log("\nCensored Text:");
    console.log(censoredText);
  } catch (error) {
    console.error("\nAn error occurred during censoring:", error);
  }
}

main();

Example Input/Output

Input:

Contact John Doe at [email protected] or (123) 456-7890. He lives at 123 Main St, Anytown, and his SSN is 987-65-4321.

Output:

Contact [CENSORED] at [CENSORED] or [CENSORED]. He lives at [CENSORED], [CENSORED], and his SSN is [CENSORED].

🔧 API Reference

censorPII(input: string): Promise<string>

Censors detected Personally Identifiable Information (PII) in the input string.

  • input: The string to be censored.
  • Returns: A Promise that resolves to the censored string.

⚠️ Limitations

While this package aims for high accuracy, it's important to understand its current limitations:

  • Server-Side Only: This package cannot run in browsers or frontend frameworks.
  • Model-Specific PII Types: The underlying Xenova/bert-base-NER model is primarily trained to detect Person (PER), Organization (ORG), Location (LOC), and Miscellaneous (MISC) entities. It does not reliably detect general dates, or other descriptive PII that doesn't fit a specific regex pattern.
  • Regex Specificity: Regex patterns are precise but can be brittle. Variations in formatting (e.g., unusual phone number formats, driver's license numbers from different states/countries) might not be detected.
  • Biometric and Medical Data: Detection of biometric data (e.g., fingerprints, retinal scans) and highly unstructured medical record information is beyond the scope of this package's current implementation.
  • Contextual Ambiguity: While the NER model provides some context, it might not always correctly identify PII if the context is highly ambiguous or requires deep semantic understanding.

For PII types not covered by this package, or for higher accuracy in specific domains, a more specialized NER model or a dedicated PII detection library might be necessary.

🤔 "But I want to use this in my React/Next.js app!"

If you need PII censoring in a frontend application, you have a few options:

  1. Use this package in your backend API and call it from your frontend
  2. Use PII-PALADIN LITE - our companion package for browser environments
  3. Use PII-PALADIN INTERNATIONAL - our enterprise-grade global compliance package
  4. Implement a simple regex-based solution for basic PII detection

Remember: This package uses a large language model (~90MB) and requires Node.js APIs that don't exist in browsers.

🌍 The PII PALADIN Ecosystem

We've created a comprehensive suite of PII detection packages to meet different needs:

🚀 PII-PALADIN LITE - Browser & Fast Development

npm package

Perfect for:

  • Frontend applications (React, Next.js, Vue, Angular)
  • Browser extensions
  • Quick development and prototyping
  • When you need "good enough" accuracy with maximum speed

Features:

  • Browser Compatible - Works everywhere
  • Lightning Fast - Pure regex-based, no ML models
  • Tiny Bundle - Only ~5KB
  • Zero Configuration - Just 2 lines of code to get started

🌍 PII-PALADIN INTERNATIONAL - Global Compliance

npm package

Perfect for:

  • Global PII detection across 60+ countries
  • Enterprise compliance (GDPR, CCPA, LGPD, etc.)
  • Multi-language support with cultural context awareness
  • Professional-grade security and accuracy

Features:

  • 🌍 60+ Countries Supported - Native language recognition
  • 🏛️ Enterprise Compliance - GDPR, CCPA, LGPD ready
  • 🌐 Multi-language Support - Cultural context awareness
  • Real-time Processing - Aparavi DTC GPU infrastructure
  • 🔒 Professional Security - Enterprise-grade accuracy
  • 📦 Tiny Bundle - Only ~5KB

⚠️ Requires API Key: Get your free Aparavi DTC API key at https://bit.ly/pii-paladin-dtc

📊 Complete Package Comparison

| Feature | PII-PALADIN (This Package) | PII-PALADIN LITE | PII-PALADIN INTERNATIONAL | |---------|----------------------------------|----------------------|--------------------------------| | Environment | Node.js only | Browser + Node.js | Browser + Node.js | | Bundle Size | ~90MB (ML models) | ~5KB (regex only) | ~5KB (API client) | | Speed | Slower (ML inference) | Lightning fast | Fast (API calls) | | Accuracy | Highest (ML + regex) | Good (regex only) | Enterprise-grade (Aparavi DTC) | | Setup | Complex (model files) | Zero configuration | API key required | | Use Case | Production/accuracy | Development/speed | Global compliance | | Countries | US-focused | US-focused | 60+ countries | | Languages | English | English | 15+ languages | | Compliance | Basic | Basic | GDPR, CCPA, LGPD |

Choose PII-PALADIN when you need:

  • Maximum accuracy for production
  • Advanced ML-based detection
  • Can handle 90MB bundle size
  • Server-side processing

Choose PII-PALADIN LITE when you need:

  • Browser compatibility
  • Lightning-fast performance
  • Tiny bundle size
  • Quick development setup

Choose PII-PALADIN INTERNATIONAL when you need:

  • 🌍 Global PII detection across 60+ countries
  • 🏛️ Enterprise compliance standards
  • 🌐 Multi-language support
  • ⚡ Real-time GPU processing
  • 🔒 Professional-grade security

📚 Contributing

This project is open source and contributions are welcome. If you want to contribute, please check out the GitHub repository.

📄 License

ISC License