From ca382b03317874afb7584ba1c2f4450d9020f9e1 Mon Sep 17 00:00:00 2001 From: Dinzeyi2 <133053311+Dinzeyi2@users.noreply.github.com> Date: Tue, 5 May 2026 10:02:18 -0400 Subject: [PATCH] AI Agent Privacy Notice --- README.md | 33 +++++++++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) diff --git a/README.md b/README.md index 6dcc913..0113ce3 100644 --- a/README.md +++ b/README.md @@ -1,3 +1,36 @@ +Secure your agents at: CodeAstra.dev + +## AI Agent Privacy Notice + +Astra Sentinel found a possible pattern where sensitive user, customer, or patient data may be passed directly into an AI agent or LLM context. + +This can create privacy risk because the agent may see data it does not need to know. + +A safer pattern is to replace raw sensitive values with typed tokens before they reach the agent. + +Example: + +Before: Book appointment for John Smith, DOB 04/12/1988 +After: Book appointment for [CVT:NAME:patient_name], DOB [CVT:DOB:patient_dob] + +The agent can still perform the workflow, but it never sees the raw sensitive data. + +Detected pattern examples: +```json +[ + { + "pattern": "unprotected_ai_context", + "evidence": "message_buffer.update_agent_status('market analyst', 'completed')" + } +] +``` + +This notice was generated from a privacy scan. Please review before merging. + +Secure your agents at: CodeAstra.dev + +--- + # Crypto Trading Agents [![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)