data-detector 0.0.3

A general-purpose engine that detects and masks personal information by country and information type

Data Detector

Data Detector is a high-performance, extensible engine for detecting, redacting, and generating sensitive data. It provides a comprehensive toolkit for everything from simple PII masking in logs to securing advanced AI pipelines.

Motivation

In today's data-driven world, managing sensitive information is more critical than ever. Developers and data scientists need a tool that is not only fast and accurate but also flexible enough to handle a wide variety of data formats and use cases. Existing solutions were often too slow, too narrow in focus, or too difficult to extend.

Data Detector was built to address these challenges. It was born from the need for a unified engine that could:

1. Standardize PII Management: Provide a single, consistent way to handle sensitive data across different applications and environments.
2. Deliver High Performance: Ensure that data protection doesn't become a bottleneck, even in high-throughput systems.
3. Secure Modern AI Pipelines: Offer specialized tools, like the RAGSecurityMiddleware, to prevent PII leakage in Retrieval-Augmented Generation (RAG) and other LLM applications, securing data at every stage—input, storage, and output.
4. Empower Developers: Make it easy to add new detection patterns, create fake data for testing, and integrate data protection into any workflow.

Solution Architecture

Data Detector is built on a layered and highly efficient architecture designed for speed and extensibility.

1. Pattern Files: The foundation of the system is a set of human-readable YAML files located in the patterns/ directory. These files define the sensitive data patterns to be detected, including their regex, validation rules, and redaction policies.

2. The Pattern Registry: When the application starts, the PatternRegistry loads all pattern files into memory. It pre-compiles and caches every regex pattern. This one-time-ahead compilation is the secret to Data Detector's high performance, as it eliminates the overhead of compiling patterns on every request.

3. The Engine: The core logic resides in the stateless Engine. It takes the pre-compiled patterns from the registry and uses them to perform its operations (find, redact, validate). The project provides multiple engine implementations to suit different needs:

   • Engine: A synchronous engine for general-purpose use.
   • AsyncEngine: An asyncio-based engine for high-concurrency applications.
   • StreamEngine: An engine designed for processing data streams with low memory overhead.

4. Interfaces: Data Detector can be used in multiple ways, providing flexibility for different environments:

   • Library API: A clean and simple Python API.
   • CLI: A command-line interface for quick scans and scripting.
   • Server: An HTTP/gRPC server for use as a centralized service.

This architecture makes the system not only fast but also incredibly flexible. You can add new patterns without writing any code, and the engine's stateless design makes it easy to scale horizontally.

Features

• 🌍 Global Support: Patterns organized by country (ISO2) and information type.
• 🔍 Detection: Find PII in text using multiple patterns.
• ✅ Validation: Validate text against specific patterns with optional verification functions.
• 🔒 Redaction: Mask, hash, or tokenize sensitive information.
• 🎲 Fake Data Generation: Generate realistic fake PII for testing and development across various file formats (CSV, JSON, Office documents, images, and more).
• 📚 Bulk Training Data: Generate large labeled datasets for ML model training.
• 🛡️ AI Security: Specialized middleware to protect RAG/LLM pipelines from data leakage.
• 🔄 Async Support: Full async/await API for high-concurrency processing.
• 🚀 Multiple Interfaces: Use it as a library, a CLI, or a standalone server.
• ⚡ High Performance: Designed for low latency and high throughput.
• 🔄 Hot Reload: Reload patterns without restarting the server.
• 📊 Observability: Prometheus metrics and health checks.

Performance

Data Detector is engineered for high performance. Thanks to its architecture of pre-compiling and caching patterns, it can process a high volume of data with very low latency.

While performance can vary based on the hardware, the number of patterns loaded, and the size of the input text, the system is designed to be highly efficient, capable of handling thousands of operations per second on modest hardware. The availability of synchronous, asynchronous, and streaming engines ensures you can choose the right tool for your performance needs.

Quick Start

Clone repository

git clone https://github.com/data-detector.git

Installation

pip install data-detector

See Installation Guide for more options.

Library Usage

from datadetector import Engine, load_registry

# Load patterns from directory
registry = load_registry(paths=["patterns/"])
engine = Engine(registry)

# Validate
is_valid = engine.validate("010-1234-5678", "kr/mobile_01")

# Find PII (searches all loaded patterns)
results = engine.find("My phone: 01012345678, email: test@example.com")

# Redact
redacted = engine.redact("SSN: 900101-1234567", namespaces=["kr"])
print(redacted.redacted_text)

Fake Data Generation

Generate fake PII data for testing, demos, and development:

from datadetector import FakeDataGenerator, OfficeFileGenerator, ImageGenerator, PDFGenerator

# Create generator (use seed for reproducibility)
generator = FakeDataGenerator(seed=12345)

# Generate individual PII values
email = generator.from_pattern("comm/email_01")  # user@example.com
ssn = generator.from_pattern("us/ssn_01")  # 123-45-6789
phone = generator.from_pattern("kr/mobile_01")  # 010-1234-5678
aws_key = generator.from_pattern("comm/aws_access_key_01")  # AKIAIOSFODNN7EXAMPLE

# Generate files with fake data
generator.create_csv_file("users.csv", rows=1000, include_pii=True)
generator.create_json_file("users.json", records=500, include_pii=True)
generator.create_sqlite_file("users.db", records=1000, include_pii=True)
generator.create_log_file("app.log", lines=5000, log_format="apache")

# Generate Office files
office_gen = OfficeFileGenerator(generator)
office_gen.create_word_file("document.docx", paragraphs=10, include_pii=True)
office_gen.create_excel_file("data.xlsx", rows=500, include_pii=True)
office_gen.create_powerpoint_file("presentation.pptx", slides=10, include_pii=True)

# Generate images with embedded text
img_gen = ImageGenerator(generator)
img_gen.create_image_with_text("document.png", width=800, height=600, include_pii=True)
img_gen.create_screenshot_like_image("config.png", include_pii=True)

# Generate PDF files
pdf_gen = PDFGenerator(generator)
pdf_gen.create_pdf_file("document.pdf", pages=5, include_pii=True)
pdf_gen.create_pdf_invoice("invoice.pdf", include_pii=True)

Supported Pattern Types: emails, phone numbers, SSNs, credit cards, AWS/GitHub/Google API keys, IP addresses, coordinates, URLs, and more.

File Formats: CSV, JSON, SQLite, XML, logs (Apache/JSON/syslog), text, Word (.docx), Excel (.xlsx), PowerPoint (.pptx), PDF, PNG/JPEG images.

See examples/fake_data_quickstart.py and examples/fake_data_demo.py for complete examples.

Bulk Training Data Generation

Generate large labeled datasets for machine learning training:

from datadetector import BulkDataGenerator

# Create bulk generator
bulk_gen = BulkDataGenerator(seed=12345)

# Generate 10,000 labeled training records in JSONL format
bulk_gen.save_bulk_data_jsonl(
    "training_data.jsonl",
    num_records=10000,
    patterns_per_record=(3, 10)
)

# Generate binary classification pairs (has PII / no PII)
bulk_gen.save_detection_pairs(
    "detection_pairs.jsonl",
    num_pairs=5000,
    positive_ratio=0.7,
    format='jsonl'
)

# Generate with specific patterns only
specific_patterns = ["comm/email_01", "us/ssn_01", "comm/credit_card_visa_01"]
bulk_gen.save_bulk_data_json(
    "email_ssn_data.json",
    num_records=1000,
    include_patterns=specific_patterns
)

# Get statistics about generated dataset
records = bulk_gen.generate_bulk_labeled_data(num_records=100)
stats = bulk_gen.generate_statistics(records)
print(f"Total PII items: {stats['total_pii_items']}")
print(f"Pattern distribution: {stats['pattern_distribution']}")

Output Formats:

• JSONL - One JSON per line (streaming-friendly, ideal for ML pipelines)
• JSON - Complete dataset with global metadata
• CSV - Tabular format with JSON columns

Each Record Contains:

• text: Full text with embedded PII
• pii_items: List of PII with pattern IDs, values, and positions
• metadata: Number of PII items, patterns used, text length

Use Cases:

• Train PII detection models
• Create labeled datasets for supervised learning
• Binary classification training data
• Testing at scale (millions of records)
• Benchmarking detection performance

See examples/bulk_training_data_demo.py for comprehensive examples.

Async Support

Full async/await API for concurrent processing:

import asyncio
from datadetector import AsyncEngine, load_registry

async def main():
    registry = load_registry()
    engine = AsyncEngine(registry)

    # Process single text
    result = await engine.find("Email: user@example.com")

    # Process multiple texts concurrently
    texts = ["Email: user1@example.com", "Phone: 010-1234-5678", ...]
    results = await engine.find_batch(texts)

    # Concurrent validation and redaction
    validation = await engine.validate("010-1234-5678", "kr/mobile_01")
    redaction = await engine.redact("SSN: 123-45-6789")

asyncio.run(main())

YAML Pattern Management

Create and manage pattern files programmatically:

from datadetector import PatternFileHandler

# Create a new pattern file
PatternFileHandler.create_pattern_file(
    file_path="custom_patterns.yml",
    namespace="custom",
    description="My custom patterns",
    patterns=[
        {
            "id": "api_key_01",
            "location": "custom",
            "category": "token",
            "pattern": r"API-[A-Z0-9]{32}",
            "mask": "API-" + "*" * 32,
            "policy": {
                "store_raw": False,
                "action_on_match": "redact",
                "severity": "critical"
            }
        }
    ]
)

# Add, update, or remove patterns
PatternFileHandler.add_pattern_to_file("custom_patterns.yml", new_pattern)
PatternFileHandler.update_pattern_in_file("custom_patterns.yml", "api_key_01", {{...}})
PatternFileHandler.remove_pattern_from_file("custom_patterns.yml", "api_key_01")

See YAML Utilities Documentation for complete guide.

Pattern Restoration Utility

The tokens.yml pattern file may use modified patterns (with rk_ prefix) during development to avoid triggering GitHub's push protection. Use the restoration utility to convert these back to real-world Stripe API key patterns:

# After installing via pip
data-detector-restore-tokens

# Or run directly
python restore_tokens.py

# Or as a module
python -m datadetector.restore_tokens

What it does:

• Converts fake rk_(live|test)_ patterns to real [sp]k_(live|test)_ Stripe patterns
• Updates examples to use proper sk_test_, sk_live_, pk_test_ prefixes
• Uses obviously fake example keys to avoid secret scanner detection

Security Note: All examples use FAKE keys like "EXAMPLEKEY" for security scanner compatibility. This is a defensive security tool - the patterns help detect real leaked credentials.

CLI Usage

# Find PII
data-detector find --text "010-1234-5678" --ns kr

# Redact PII
data-detector redact --in input.log --out redacted.log --ns kr us

# Start server
data-detector serve --port 8080

REST API

# Start server
data-detector serve --port 8080

# Find PII
curl -X POST http://localhost:8080/find \
  -H "Content-Type: application/json" \
  -d '{"text": "010-1234-5678", "namespaces": ["kr"]}'

Documentation

• Architecture - System architecture and design overview
• Quick Start Guide - Get started quickly
• Pattern Structure - Learn about pattern definitions
• Custom Patterns - Create your own patterns
• YAML Utilities - NEW! Programmatically create and manage pattern files
• Verification Functions - Add custom validation logic
• Configuration - Server and registry configuration
• API Reference - Complete API documentation
• Supported Patterns - Built-in pattern catalog
• Testing - Test suite documentation and coverage

Supported Pattern Types

• 📱 Phone numbers (KR, US, TW, JP, CN, IN)
• 🆔 National IDs (SSN, RRN, Aadhaar, etc.)
• 📧 Email addresses
• 🏦 Bank accounts & IBANs (with Mod-97 verification)
• 💳 Credit cards (Visa, MasterCard, Amex, etc.)
• 🛂 Passport numbers
• 📍 Physical addresses
• 🌐 IP addresses & URLs

Total: 60+ patterns across 7 locations (Common, KR, US, TW, JP, CN, IN)

See Supported Patterns for the complete list.

Verification Functions

Patterns can include verification functions for additional validation beyond regex:

- id: iban_01
  category: iban
  pattern: '[A-Z]{2}\d{2}[A-Z0-9]{11,30}'
  verification: iban_mod97  # Validates IBAN checksum

Built-in verification functions:

• iban_mod97 - IBAN Mod-97 checksum validation
• luhn - Luhn algorithm for credit cards

You can also register custom verification functions. See Verification Functions for details.

Security & Privacy

• No raw PII is logged (only hashes/metadata)
• TLS support for server
• Configurable rate limiting
• GDPR/CCPA compliant operations

Development

# Install with dev dependencies
pip install -e ".[dev]"

# Run tests
pytest

# Format code
black src/ tests/
ruff check src/ tests/

# Validate patterns
python -c "from datadetector import load_registry; load_registry(validate_examples=True)"

Docker

# Build
docker build -t data-detector:latest .

# Run
docker run -p 8080:8080 -v ./patterns:/app/patterns data-detector:latest

License

MIT License - see LICENSE file for details.

Contributing

Contributions are welcome! Please read our contributing guidelines and submit pull requests.

Support

• 📖 Documentation
• 🐛 Issue Tracker
• 💬 Discussions

Next Steps

The following are planned enhancements for the future:

• Pattern Expansion: We plan to add support for more countries (e.g., EU, UK, Canada, Australia) and new PII types (e.g., Social Security Numbers, Vehicle Numbers, Driver's License Numbers). We will also improve the contribution guidelines to make it easier for the community to add new patterns.
• Web UI/Test Tool: To improve usability, we will develop a web-based UI or a VS Code extension that will allow users to test patterns and see results in real-time.
• Enhanced Asynchronous/Streaming API: For large-scale data processing, we will enhance our asyncio-based APIs and explore connectors for systems like Kafka and Flink.
• Automated Pattern Management: We will implement a system for managing the pattern catalog in a remote repository with version control, allowing for automatic updates and deployments.
• Other Language Bindings: To increase adoption, we will provide wrapper libraries for other popular languages, such as Node.js and Java.
• Advanced Monitoring and Deployment: We will provide more detailed benchmarks (including memory usage and parallel processing performance) and create deployment examples for Kubernetes/Helm to facilitate adoption by operations teams.