Command Palette

Search for a command to run...

UnylyUnyly
Browse all

Phi Guard

FreeNot checked

MCP server and CLI for detecting, redacting, and auditing PHI in medical text before it reaches AI agents.

GitHubEmbed

About

MCP server and CLI for detecting, redacting, and auditing PHI in medical text before it reaches AI agents.

README

CI Release PyPI Python License

MCP server and CLI for detecting, redacting, and auditing PHI before medical text is sent to AI agents.

phi-guard-mcp is healthcare AI safety infrastructure, not a clinical product. It is a local, rule-based guardrail that helps developers identify PHI-like identifiers in plain text, redact them with stable placeholders, and produce audit-friendly JSON before content reaches an AI agent or MCP workflow.

Proof points for maintainers:

  • Synthetic benchmark with exact-match PHI finding evaluation.
  • Safe Harbor mapping audit fields for review workflows.
  • CI privacy gate that blocks PHI-like identifiers in maintained source and docs.
  • CLI, Python API, and MCP stdio tools sharing one stable JSON result model.

Important scope limits:

  • Not for diagnosis, treatment, triage, medical advice, or medication recommendations.
  • Not a HIPAA compliance guarantee and not a substitute for legal, privacy, or security review.
  • Not an FDA-regulated clinical decision support or device software function.
  • Do not test with real patient records. The examples in this repo are synthetic.

The project aligns its documentation vocabulary with HHS HIPAA de-identification concepts such as Safe Harbor and Expert Determination, while intentionally avoiding clinical decision support scope. See HHS de-identification guidance, FDA CDS guidance, and FDA device software functions.

Install

Install from PyPI:

python -m pip install phi-guard-mcp

The current GitHub release also includes wheel and source distribution artifacts: v0.1.2.

For local development:

python -m pip install -e ".[dev]"

Quickstart

Scan a synthetic note:

phi-guard scan examples/synthetic_clinical_note.txt

Redact PHI-like identifiers:

phi-guard redact examples/synthetic_clinical_note.txt --out /tmp/synthetic_redacted.txt

Audit a note:

phi-guard audit examples/synthetic_clinical_note.txt

Validate text before it enters an AI agent:

phi-guard validate examples/synthetic_clean_note.txt

Run the synthetic benchmark:

phi-guard benchmark benchmarks/synthetic/cases --out benchmarks/synthetic-report.json

Run the repository privacy gate:

phi-guard gate --config .phi-guard.toml

All CLI commands output stable JSON for automation.

See docs/demo.md for a complete CLI and MCP transcript.

MCP Server

Run the stdio MCP server:

phi-guard-mcp

Available tools:

  • scan_phi(text)
  • redact_phi(text, mode="placeholder")
  • audit_deidentification(text)
  • validate_no_phi(text)

MCP tools return the same finding schema as the CLI, including safe_harbor_identifier.

Example MCP client config:

{
  "mcpServers": {
    "phi-guard": {
      "command": "phi-guard-mcp"
    }
  }
}

Python API

from phi_guard_mcp import audit_text, evaluate_benchmark, redact_text, scan_text, validate_no_phi

result = scan_text("Patient Name: Jordan Rivera, MRN: MRN-48291")
redacted = redact_text("Patient Name: Jordan Rivera, MRN: MRN-48291")
audit = audit_text("Patient Name: Jordan Rivera, MRN: MRN-48291")
validation = validate_no_phi("No identifiers are present in this synthetic note.")
benchmark = evaluate_benchmark("benchmarks/synthetic/cases")

What It Detects

The first release focuses on plain text and common PHI-like identifiers:

  • Names in clinical label contexts
  • Dates
  • Phone numbers
  • Email addresses
  • Address-like fragments
  • Medical record numbers
  • Social Security numbers
  • URLs and IP addresses
  • Medical facility names
  • Account, member, policy, and patient ID tokens

This is a deterministic heuristic engine. It favors transparent behavior and repeatable JSON over opaque model judgment.

Safe Harbor mapping is included as a review aid only. It does not make output HIPAA compliant and does not replace Expert Determination or legal review.

Project Docs

Development

python -m compileall -q src tests
python -m pytest -q
ruff check .
phi-guard gate --config .phi-guard.toml
python -m build
twine check dist/*

from github.com/charlesree826/phi-guard-mcp

Install Phi Guard in Claude Desktop, Claude Code & Cursor

Recommended · one command, every IDE
unyly install phi-guard-mcp

Installs into Claude Desktop, Claude Code, Cursor & VS Code — handles npx, uvx and build-from-source repos for you.

First time? Get the CLI: curl -fsSL https://unyly.org/install | sh

Or configure manually

Run in your terminal:

claude mcp add phi-guard-mcp -- uvx phi-guard-mcp

FAQ

Is Phi Guard MCP free?

Yes, Phi Guard MCP is free — one-click install via Unyly at no cost.

Does Phi Guard need an API key?

No, Phi Guard runs without API keys or environment variables.

Is Phi Guard hosted or self-hosted?

Self-hosted: the server runs locally on your machine via the install command above.

How do I install Phi Guard in Claude Desktop, Claude Code or Cursor?

Open Phi Guard on unyly.org, pick your client tab (Claude Desktop, Claude Code, Cursor) and press Install — the config is generated automatically, no JSON editing.

Related MCPs

Compare Phi Guard with

Not sure what to pick?

Find your stack in 60 seconds

Author?

Embed badge for your README

Browse similar

All ai MCPs