pii-scrublisted

# PII Scrub A defensive scanner for personal data. The goal is to catch PII **before** it leaves your machine — to a git push, a public file share, a chat, a forum, or an LLM context. The skill does NOT auto-rewrite your files. It reports matches and waits for human review. This is deliberate: auto-rewriting risks corrupting data the user wanted to keep. ## Privacy contract (READ FIRST) This skill contains generic regex patterns. It MUST NOT contain your own real PII (e.g. your actual phone number, your real score, your school name). Add those to `user-patterns.txt` (gitignored) — never to the skill itself. | Rule | Why | |---|---| | Never put a real value (phone, score, school) into `references/pii-patterns.md` | That file ships in the skill; values would leak | | User-specific patterns go in `user-patterns.txt` | That file is `.gitignore`d from the skill's own repo | | The skill NEVER echoes your data anywhere | Output is file:line + matched text, not a full file dump | | The skill NEVER auto-rewrites | It reports; you decide | ## When to use this skill Run `pii-scrub` before any of these: - `git push` to a public / shared / open-source repo - Uploading a file to a public share (S3, gist, pastebin, WeChat / 公众号) - Sharing screenshots / logs in a public channel - Sending files to a third party (vendor, recruiter, lawyer) - Committing a config file that may have started life with real values If the user just says "publish" or "发" or "push" or "share this", trigger th