Join the Growing cleansh Community
cleansh is quickly gaining traction among developers who prioritize security and efficiency. See our adoption on crates.io:
Downloads (crates.io)
High‑Trust. Secure by Default. Zero Config.
cleansh is a powerful, single‑purpose CLI tool that intelligently redacts IP addresses, emails, tokens, and absolute paths from your logs and terminal output.
Built in Rust, it's fully local, open‑source, and privacy‑first. Currently in active development (v0.1.2). We value your feedback—please report any issues.
Paste your logs below and see cleansh instantly redact sensitive information. No data leaves your browser.
Note: This is a client-sided demo. For production-grade redaction, use the CLI tool for full capabilities and performance. (Live `cleansh` integration via WASM or API coming soon!)
cleansh Community
cleansh is quickly gaining traction among developers who prioritize security and efficiency. See our adoption on crates.io:
Downloads (crates.io)
cleansh? Secure, Comprehensive, Flexible.All redaction logic is static and regex‑based, preventing arbitrary code execution. cleansh runs entirely locally—no external network calls or telemetry. Your sensitive data stays private.
Supports detection of sensitive data like emails, IPv4 addresses, tokens, JWTs, SSH/AWS/GCP keys, hex secrets, and absolute paths out-of-the-box.
Extend cleansh with your own regex rules via YAML, merging intelligently with defaults to suit industry- or project-specific requirements.
Use the `--clipboard` or `-c` flag to automatically copy sanitized output to your system clipboard—ready to paste.
Supports stdin (piped) and file input, and outputs to stdout, clipboard, or a specified file using `--out` or `-o`.
Use the `--diff` or `-d` flag to display a colored diff between original and sanitized output, highlighting changes.
cleansh? Common Scenarios.Whether you're debugging, collaborating, or ensuring compliance, cleansh simplifies secure log sharing.
Share logs safely with teammates or support without exposing API keys or user data.
Redact PII or regulated data automatically to comply with GDPR, CCPA, HIPAA, or internal policies.
Integrate cleansh into your CI/CD workflows to sanitize logs before storage or sharing.
Use cleansh to redact sensitive info from issue descriptions, code snippets, and public discussions.
As cleansh evolves beyond v0.1.2, we plan to expand its integration and redaction capabilities.
Support a modular plugin architecture to enable community and industry-specific redaction logic extensions.
Developing WASM version for browser-based redaction, VS Code extension, and lightweight GUIs.
Implement Git pre-commit or post-merge hooks to sanitize logs or commit messages automatically.
Plan support for cloud-specific tokens, dynamic secrets, and enterprise-grade redaction levels.
Installing cleansh is quick and easy. For full instructions, see our GitHub docs.
Install via Script (macOS / Linux)
curl -sSf https://github.com/KarmaYama/cleansh/releases/latest/download/cleansh-installer.sh | sh
Downloads the latest pre‑compiled binary. Recommended for most users.
Alternatively, download binaries for Windows, macOS, or Linux from releases, or build from source.
Try the Live Demo