Claude Code has deep access to your codebase. AxSentinel ensures your secrets stay local.
Claude Code operates in your terminal with access to your entire project. It reads files, runs commands, and sends large code contexts to Anthropic's API. If your repo contains .env files, hardcoded credentials, database connection strings, or customer data in fixtures, Claude Code may include them in API requests without you realizing it.
Set ANTHROPIC_BASE_URL to the AxSentinel proxy. Every API call Claude Code makes is intercepted, scanned for secrets and PII, and only forwarded if clean. Your workflow doesn't change — Claude Code works exactly the same, but your sensitive data never leaves your machine.
Run the proxy on port 8990. It will listen for Anthropic API requests.
~/.axsentinel/sentinel --proxy --port 8990Add this to your ~/.bashrc, ~/.zshrc, or shell profile so it persists across sessions.
export ANTHROPIC_BASE_URL=http://localhost:8990Claude Code will automatically route through the proxy. You'll see [telemetry] logs in the proxy terminal when detections occur.
Claude Code doesn't know the proxy exists. Zero changes to your workflow.
Scans the entire API payload — file contents, tool results, and conversation history.
Every detection is logged to your compliance dashboard with provider, source, and detection type.
Use --fast for regex-only scanning without an internet connection. Upload results later.
Free tier includes regex scanning for unlimited developers. Pro adds ML-powered detection and the compliance dashboard.