Spaces:

vn6295337
/

Enterprise-AI-Gateway

Sleeping

vn6295337 Claude Opus 4.5 commited on Feb 13

Commit

279e3dc

1 Parent(s): 5acaaf5

Add phone, IBAN, password, and DB connection PII patterns

New patterns:
- Phone numbers (US and international formats)
- IBAN (international bank account numbers)
- Password (labeled patterns like "password: X")
- Database connection strings with credentials

Detection rate: 14/15 test cases
Only physical addresses skipped (high false positive risk)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

Files changed (2) hide show

src/security/__init__.py +13 -0
static/index.html +14 -1

src/security/__init__.py CHANGED Viewed

@@ -73,6 +73,19 @@ PII_PATTERNS = {
     "medical_dob": r"(DOB|date\s+of\s+birth|d\.o\.b\.?)[\s:]+\d{1,2}[/\-]\d{1,2}[/\-]\d{2,4}",
     # Medical Records - MRN patterns
     "medical_mrn": r"(MRN|medical\s+record|patient\s+id|patient\s+number)[\s:#\-]+\d{4,}",
 }
 def detect_pii(prompt: str) -> dict:

     "medical_dob": r"(DOB|date\s+of\s+birth|d\.o\.b\.?)[\s:]+\d{1,2}[/\-]\d{1,2}[/\-]\d{2,4}",
     # Medical Records - MRN patterns
     "medical_mrn": r"(MRN|medical\s+record|patient\s+id|patient\s+number)[\s:#\-]+\d{4,}",
+    # Phone Numbers - US formats
+    "phone_us": r"\b(\+?1[\s\-.]?)?\(?\d{3}\)?[\s\-.]?\d{3}[\s\-.]?\d{4}\b",
+    # Phone Numbers - International with + prefix
+    "phone_intl": r"\+\d{1,3}[\s\-.]?\d{2,4}[\s\-.]?\d{3,4}[\s\-.]?\d{3,4}\b",
+    # IBAN - International Bank Account Number
+    "iban": r"\b[A-Z]{2}\d{2}[\s]?[A-Z0-9]{4}[\s]?[A-Z0-9]{4}[\s]?[A-Z0-9]{4}[\s]?[A-Z0-9]{0,14}\b",
+    # Password - Labeled patterns
+    "password_labeled": r"(password|passwd|pwd|pass)[\s:=]+\S+",
+    # Database connection strings with credentials
+    "db_connection": r"(postgres|mysql|mongodb|redis)://[^:]+:[^@]+@",
 }
 def detect_pii(prompt: str) -> dict:

static/index.html CHANGED Viewed

@@ -490,7 +490,20 @@
         // Medical Records - DOB patterns
         medicalDOB: new RegExp('(DOB|date\\s+of\\s+birth|d\\.o\\.b\\.?)[\\s:]+\\d{1,2}[/\\-]\\d{1,2}[/\\-]\\d{2,4}', 'i'),
         // Medical Records - MRN patterns
-        medicalMRN: new RegExp('(MRN|medical\\s+record|patient\\s+id|patient\\s+number)[\\s:#\\-]+\\d{4,}', 'i')
       };
       let detected = [];

         // Medical Records - DOB patterns
         medicalDOB: new RegExp('(DOB|date\\s+of\\s+birth|d\\.o\\.b\\.?)[\\s:]+\\d{1,2}[/\\-]\\d{1,2}[/\\-]\\d{2,4}', 'i'),
         // Medical Records - MRN patterns
+        medicalMRN: new RegExp('(MRN|medical\\s+record|patient\\s+id|patient\\s+number)[\\s:#\\-]+\\d{4,}', 'i'),
+        // Phone Numbers - US formats
+        phoneUS: new RegExp('\\b(\\+?1[\\s\\-.]?)?\\(?\\d{3}\\)?[\\s\\-.]?\\d{3}[\\s\\-.]?\\d{4}\\b'),
+        // Phone Numbers - International with + prefix
+        phoneIntl: new RegExp('\\+\\d{1,3}[\\s\\-.]?\\d{2,4}[\\s\\-.]?\\d{3,4}[\\s\\-.]?\\d{3,4}\\b'),
+        // IBAN - International Bank Account Number
+        iban: new RegExp('\\b[A-Z]{2}\\d{2}[\\s]?[A-Z0-9]{4}[\\s]?[A-Z0-9]{4}[\\s]?[A-Z0-9]{4}[\\s]?[A-Z0-9]{0,14}\\b'),
+        // Password - Labeled patterns
+        passwordLabeled: new RegExp('(password|passwd|pwd|pass)[\\s:=]+\\S+', 'i'),
+        // Database connection strings with credentials
+        dbConnection: new RegExp('(postgres|mysql|mongodb|redis)://[^:]+:[^@]+@', 'i')
       };
       let detected = [];