Now on Chrome Web Store

A firewall for
AI agents.

AI agents operate with full access to your environment. None of them ship with a payload scanner, audit trail, or data loss prevention layer. CoworkGuard is the firewall they don't include.

Step 1
Download & Install
CoworkGuard_1.0.0_aarch64.dmg
macOS 12+ · Apple Silicon
Step 2
🧩 Add Chrome Extension
Domain warnings · Popup status
Works with or without the app

After downloading: open the .dmg → drag to Applications → open CoworkGuard → follow setup wizard

Free · Open source · No account required · All data stays on your machine

Case study — Claude Cowork

Anthropic have been transparent that Cowork activity is not yet captured in Audit Logs, the Compliance API, or Data Exports — this is an early research preview and those features are still being developed. Within 48 hours of launch, security researchers demonstrated that a Word document containing hidden white text could trick Cowork into uploading files containing partial Social Security numbers to an attacker's account. CoworkGuard was built to fill that gap — and the same gap exists across every AI agent tool.

10
AI APIs monitored
48
Detection patterns
100%
Runs locally
0
Data sent externally
Coverage

Every major AI agent.
One privacy layer.

CoworkGuard monitors outbound requests across the AI tools your team actually uses.

Case study
Anthropic
api.anthropic.com
Claude Cowork, Claude Code, Claude in Chrome
OpenAI
api.openai.com
ChatGPT, GPT-4, Assistants API
Google
generativelanguage.googleapis.com
Gemini
Cursor
api.cursor.sh
Cursor IDE
GitHub
copilot-proxy.githubusercontent.com
GitHub Copilot
Mistral
api.mistral.ai
Mistral
Perplexity
api.perplexity.ai
Perplexity
Cohere
api.cohere.com
Cohere
Groq
api.groq.com
Groq
xAI
api.x.ai
Grok
Features

The audit layer
AI agents don't provide.

One local proxy. Every AI tool. Full visibility over what leaves your machine.

Universal Payload Scanner
Every outbound POST to any monitored AI API is scanned against 48 patterns before it leaves your machine — SSNs, API keys, private keys, database credentials, and more.
Domain Guard
When an AI agent is active, an in-page warning appears the moment you navigate to a sensitive domain — AWS Console, Gmail, GitHub, Stripe, Salesforce, and 15 others.
Unified Audit Log
A single timestamped, filterable record of every intercepted request across all AI tools — tagged by provider. The compliance trail that none of them provide natively.
Payload Trend Chart
A 24-hour view of data volume sent across all AI APIs, colour-coded by risk level. See which tools are sending the most data and when.
Configurable Blocking
Toggle blocking independently for Critical, High, and Medium severity. Add your own regex patterns for internal data formats. No configuration files to edit.
No Cloud Dependency
Everything runs on localhost. No accounts, no telemetry, no analytics. Raw content is never stored — only SHA-256 hashes and redacted previews are written to disk.
Detection

48 patterns across
every common vector.

From personal data to MCP supply chain attack vectors.

Critical — blocked by default
SSNCredit CardPrivate KeyAWS KeyAnthropic KeyGCP Service AccountAzure Connection StringCertificateMCP Credential
High — flagged, optionally blocked
OpenAI KeyHugging FaceGroqxAIReplicatePerplexityJWTBearer TokenGitHub TokenGitLab TokenStripe KeySlack TokenSendGridnpm TokenFirebaseDB Connection
Medium — flagged
Email addressPhone numberDate of birthPassport numberIP addressInternal URLVPN hostname.env values
Privacy

A privacy tool that
guards its own data too.

CoworkGuard was built on a straightforward principle: a privacy tool that collects data about you is not a privacy tool. Everything it does happens on localhost, and the design reflects that from the ground up.

No cloud dependency. The proxy, scanner, and dashboard all run on your own machine.
No raw content stored. Only SHA-256 hashes and redacted previews are written to disk.
No telemetry or analytics. Zero data leaves your device.
No account required. Install it and it works.
Open source. Every line is auditable on GitHub.
Request flow — any AI API
AI Agent Tool
CoworkGuard scanner
├─
SSN detected → BLOCKED
├─
JWT found → FLAGGED
└─
Clean → ALLOWED
Allowed requests only
AI API endpoint
Audit log → ~/.coworkguard/logs/
Tagged by provider. Stored locally. Never transmitted.

A firewall for
AI agents.

Download the macOS app or install the Chrome extension. Free, open source, no account required.

⬇ Download macOS App — Free Add Chrome Extension View Source

After downloading: open .dmg → drag to Applications → open app → follow setup wizard