Ocultar Pii

Name: Ocultar Pii
Author: Edu963

Edu963/ocultar

Redact personally identifiable information locally before prompts or logs reach the model, keeping sensitive strings on your infrastructure with zero egress.

Overview

Ocultar PII is an MCP server for the Ship phase that performs local, zero-egress PII redaction for Claude by calling your Ocultar Refinery instance.

What is this MCP server?

Zero-egress PII redaction oriented to Claude workflows via ocultar-claude-mcp (v0.1.2)
Connects to locally running Ocultar Refinery through OCULTAR_URL
Optional OCULTAR_API_KEY and OCULTAR_AUDITOR_TOKEN for reveal_tokens when server tokens match
PyPI stdio package plus optional mcpb bundle release on GitHub Edu963/ocultar
Primary package version 0.1.2 (ocultar-claude-mcp)
Alternate mcpb artifact version 0.1.0 with published fileSha256 in manifest
Three Ocultar-related environment variables documented in server schema

Compatible agents: Claude Code, Cursor, any compatible agent

What problem does it solve?

You want AI help on real customer or test data but cannot risk PII leaking into cloud model logs or third-party pipelines.

Who is it for?

Privacy-sensitive indie SaaS builders running Claude Code who can host Ocultar Refinery beside their dev environment.

Skip if: Builders who only need casual anonymization in public docs without running a local refinery service.

What do I get? / Deliverables

With Ocultar Refinery and ocultar-claude-mcp configured, agent-bound text is redacted locally and auditor-controlled reveal stays on your network.

Agent-callable local PII redaction before model exposure
Zero-egress privacy posture for sensitive prompts
Optional controlled token reveal for auditors on your network

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

PII handling is a Ship concern because you harden what data leaves your machine right before launch, support, and production agent workflows. Security is the shelf for redaction, privacy controls, and secret hygiene tied to Claude and MCP toolchains.

How it compares

Local PII redaction MCP gateway, not a cloud DLP subscription or generic regex linter skill.

Common Questions / FAQ

Who is Ocultar PII for?

Solo builders and small teams using Claude with MCP who must redact PII on their own infrastructure before agent processing.

When should I use Ocultar PII?

Use it during ship and security hardening when pasting support tickets, exports, or fixtures into the agent and you need zero-egress redaction first.

How do I add Ocultar PII to my agent?

Run Ocultar Refinery locally, set OCULTAR_URL (and optional OCULTAR_API_KEY), register ocultar-claude-mcp via PyPI or mcpb stdio, then match OCULTAR_AUDITOR_TOKEN if you need reveal_tokens.

Ocultar Pii

Edu963/ocultar

Redact personally identifiable information locally before prompts or logs reach the model, keeping sensitive strings on your infrastructure with zero egress.

Overview

Ocultar PII is an MCP server for the Ship phase that performs local, zero-egress PII redaction for Claude by calling your Ocultar Refinery instance.

What is this MCP server?

Zero-egress PII redaction oriented to Claude workflows via ocultar-claude-mcp (v0.1.2)
Connects to locally running Ocultar Refinery through OCULTAR_URL
Optional OCULTAR_API_KEY and OCULTAR_AUDITOR_TOKEN for reveal_tokens when server tokens match
PyPI stdio package plus optional mcpb bundle release on GitHub Edu963/ocultar
Primary package version 0.1.2 (ocultar-claude-mcp)
Alternate mcpb artifact version 0.1.0 with published fileSha256 in manifest
Three Ocultar-related environment variables documented in server schema

Compatible agents: Claude Code, Cursor, any compatible agent

What problem does it solve?

You want AI help on real customer or test data but cannot risk PII leaking into cloud model logs or third-party pipelines.

Who is it for?

Privacy-sensitive indie SaaS builders running Claude Code who can host Ocultar Refinery beside their dev environment.

Skip if: Builders who only need casual anonymization in public docs without running a local refinery service.

What do I get? / Deliverables

With Ocultar Refinery and ocultar-claude-mcp configured, agent-bound text is redacted locally and auditor-controlled reveal stays on your network.

Agent-callable local PII redaction before model exposure
Zero-egress privacy posture for sensitive prompts
Optional controlled token reveal for auditors on your network

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

Local PII redaction MCP gateway, not a cloud DLP subscription or generic regex linter skill.

Common Questions / FAQ

Who is Ocultar PII for?

Solo builders and small teams using Claude with MCP who must redact PII on their own infrastructure before agent processing.

When should I use Ocultar PII?

Use it during ship and security hardening when pasting support tickets, exports, or fixtures into the agent and you need zero-egress redaction first.

How do I add Ocultar PII to my agent?

Run Ocultar Refinery locally, set OCULTAR_URL (and optional OCULTAR_API_KEY), register ocultar-claude-mcp via PyPI or mcpb stdio, then match OCULTAR_AUDITOR_TOKEN if you need reveal_tokens.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Ocultar PII for?

When should I use Ocultar PII?

How do I add Ocultar PII to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Ocultar PII for?

When should I use Ocultar PII?

How do I add Ocultar PII to my agent?