What hardening does it offer for self-hosted Langfuse?

It provides optimized Docker Compose configurations that enforce SSO, disable open registration, and set up data-at-rest encryption.

Does it help with credential validation?

Yes, it includes startup validation logic that checks for common errors, such as swapping public and secret keys, to prevent configuration failures.

How does this skill handle PII in LLM traces?

The skill provides patterns and utility functions to identify and redact sensitive data such as emails, phone numbers, and credit card info before the data is transmitted to Langfuse for tracing.

Can this skill prevent API key leaks in GitHub?

Yes, it includes templates for secret scanning workflows and .gitignore configurations to ensure Langfuse secret keys are never committed to source control.

Langfuse Security Basics

Name: Langfuse Security Basics
Author: jeremylongshore

byjeremylongshore

•

1,687

•

セキュリティとテスト

Secures Langfuse LLM observability integrations through credential management, PII scrubbing, and hardened self-hosting configurations.

This skill provides a comprehensive security framework for developers using Langfuse to monitor Large Language Models. It streamlines the implementation of critical security measures, including the prevention of API key leaks, automated PII (Personally Identifiable Information) scrubbing from trace data, and the deployment of hardened self-hosted instances. By integrating these best practices into your workflow, you ensure that sensitive user data is protected and that your observability infrastructure meets industry standards like GDPR, HIPAA, and SOC2.

主な機能

01Pre-configured GitHub Actions for secret scanning and leak prevention

02Automated API key validation to prevent credential swapping

03RegEx-based PII scrubbing for inputs and outputs before tracing

04Least-privilege API scoping and access control patterns

051,687 GitHub stars

06Production-hardened Docker configurations for self-hosted instances

ユースケース

01Hardening self-hosted Langfuse environments for enterprise deployment

02Securing CI/CD pipelines against accidental API key exposure

03Redacting sensitive user information from LLM logs to maintain compliance

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills langfuse-security-basics

For use in Claude.ai and ChatGPT

Download Skill

主な機能

01Pre-configured GitHub Actions for secret scanning and leak prevention

02Automated API key validation to prevent credential swapping

03RegEx-based PII scrubbing for inputs and outputs before tracing

04Least-privilege API scoping and access control patterns

051,687 GitHub stars

06Production-hardened Docker configurations for self-hosted instances

ユースケース

01Hardening self-hosted Langfuse environments for enterprise deployment

02Securing CI/CD pipelines against accidental API key exposure

03Redacting sensitive user information from LLM logs to maintain compliance

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills langfuse-security-basics

For use in Claude.ai and ChatGPT

Download Skill