RedactKit - AI Privacy Scrubber
ReviewAudited by ClawScan on May 10, 2026.
Overview
RedactKit appears to be a local privacy redaction tool; the main caution is that reversible mapping files store the original sensitive values in plaintext.
This looks reasonable for local, user-invoked redaction. Before installing, understand that detection is regex-based and not guaranteed, and treat mapping files like secrets because they can restore the original sensitive data.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Anyone with access to a mapping file may be able to recover the original emails, API keys, passwords, or other redacted values.
The skill intentionally persists original sensitive values so redaction can be reversed. This is disclosed and purpose-aligned, but the mapping file becomes sensitive data that must be protected.
Mapping files are stored as plain JSON. If someone gets the mapping file, they can restore your redacted data.
Store mapping files in an encrypted or access-restricted location, avoid syncing them unintentionally, and delete them when restoration is no longer needed.
If pointed at a large or sensitive directory, the tool may create many redacted outputs and plaintext mapping files containing original sensitive values.
Batch mode recursively walks a user-supplied directory and processes matching files. This is consistent with the documented batch redaction feature, but broad directory choices can affect many local files.
for root, dirs, files in os.walk(input_dir):
Use report mode first, choose narrow input directories, and keep output and mapping directories separate from shared or synced locations.