Keep sensitive information
off your screen
StreamBlur is the essential security layer for your developer workflow. It automatically detects and masks API keys, passwords, and tokens in real time so secrets never flash on screen during demos, streams, or screen shares.
100% local. Your screen never leaves your device.
Sensitive information appears in busy workflows
Live streams move quickly between apps, files, and dashboards. Emails, API keys, and internal data can appear on screen without warning.
API Keys & Tokens
OpenAI, AWS, Stripe keys visible in terminals and code editors. Once broadcast, they're difficult to contain.
Credentials Exposed
API keys, tokens, and login credentials can appear in browser tabs and popups while you stream.
Private Messages Shown
Discord DMs, Slack messages, emails appearing on screen when you least expect it.
Secrets leak in agent workflows and codebases too
AI agents, CI/CD pipelines, and coding assistants surface secrets constantly. One exposed key in a screen share or log dump can compromise your entire stack.
Agent & MCP Outputs
AI coding agents like Claude Code, Copilot, and Cursor echo API keys and tokens directly into chat windows and terminal outputs during demos.
See developer docs →CI/CD & Pipeline Logs
GitHub Actions, Vercel, and Netlify build logs can expose env vars and secrets when shared on screen during code reviews or pair programming sessions.
See developer docs →.env Files & Config
Opening .env files, config.json, or secrets.yaml during screen shares instantly broadcasts every key to your entire audience. No warning..
See developer docs →Built for peace of mind
Intelligent protection designed to work seamlessly in the background.
Intelligent Detection
Recognizes 75+ secret patterns including API keys, tokens, and credentials across all major platforms.
Local Processing
Everything runs on your device. No data leaves your machine, no lag, no external dependencies.
Click to Reveal
Temporarily view masked content with a click. Auto-hides after a few seconds for safety.
Works Everywhere
GitHub, YouTube, Twitter, Discord, Twitch - protection follows you across tabs. VS Code, Notion, Slack - Coming Soon
Fine-Grained Control
Enable or disable per site. Choose which categories to protect. Your workflow, your rules.
Stream Mode
One toggle for maximum coverage. Optimized settings when you're live and sharing your screen.
Built for the way developers actually work
From agent pipelines to CI logs, StreamBlur MCP drops into your existing workflow with zero config, protecting secrets at the source, not just on screen.
77+ Secret Patterns, MCP-Native
The same detection engine powering the extension. Now available as an MCP tool. Scans agent outputs, terminal logs, and file contents before they ever reach your screen.
Install via npm →Zero-Egress Architecture
No telemetry. No cloud calls. Detection runs entirely in your local process. Secrets never leave your machine, even during the scan itself. Audit-ready by default.
Architecture docs →Inline Reveal for Debugging
Need to verify a value mid-session? Temporarily unmask any detected secret with a single action. Auto-remasked after inspection. Debug without disabling protection.
Read the guide →Agent Pipeline Integration
Works as an MCP tool inside Claude, Cursor, Copilot, and other agent runtimes. Intercepts outputs before they render. Protection baked into the agent loop, not bolted on after.
Integration guide →Per-Tool & Per-Repo Rules
Configure which pattern categories fire in which contexts. Suppress false positives for test fixtures, scope rules to specific repos or agent sessions. Your stack, your rules.
Config reference →Screen Share Safe by Default
Whether it's a code review, pair programming session, or conference talk. StreamBlur ensures your terminal, browser, and agent outputs stay clean the moment you share your screen.
Read: MCP & Agent Privacy →~/.env
OPENAI_API_KEY=sk-proj-abc123xyz...
STRIPE_SECRET_KEY=sk_live_4eC39Hq...
StreamBlur intercepts ↓
OPENAI_API_KEY=[REDACTED:openai_key]
STRIPE_SECRET_KEY=[REDACTED:stripe_live]
One click. Every tab protected.
Going live? Hit Stream Mode. StreamBlur activates real-time protection across all your browser tabs instantly. For streamers and developers sharing their screen.
Up and running in 30 seconds
Zero configuration required. Install once and stay protected automatically, whether you stream, code, or share your screen.
Install in Seconds
Add the Chrome Extension in one click, or run npx @streamblur/mcp --setup for AI workflow protection. No account needed.
Automatic Detection
StreamBlur scans in real-time across 77+ secret patterns. API keys, tokens, .env values, caught the moment they appear, whether on screen or in your agent's context. Using AI agents? StreamBlur MCP extends protection into your workflow.
Work with Confidence
Stream, demo, pair program, or run AI agents. Your secrets stay hidden. Click to reveal privately when you need to verify a value. It re-blurs automatically.
Real-Time Screen Protection
Experience instant masking of sensitive data. Toggle protection to see how StreamBlur shields your credentials during live streams.
Concept demo. Illustrates how protection works in-browser. Full masking runs via the Chrome Extension & MCP.
Stream with confidence. Pay once.
The essential security layer for your streaming tech stack.
Free
- 75+ secret patterns
- YouTube & Twitter protection
- Hover to reveal
- Granular controls
- Auto-updates
- Works offline
- MCP Tools
redact_text· redact secrets from any stringscan_text· detect secret types & positions
Pro
Chrome Extension + StreamBlur MCP. Two security layers, one payment.
- Everything in Free, plus
- Twitch, Discord, GitHub protection
- Stream Mode
- Future features included
- 🔧 MCP Pro Tools (all 7)
redact_file· redact any file without modifying itscan_directory· recursively scan foldersscan_repo· full repo security auditaudit_env_file· deep .env analysischeck_gitignore— find .gitignore gapsexplain_detection· plain-English revoke stepsgenerate_env_template· safe .env.example gen- Works in Claude · Cursor · Windsurf · Zed
A security layer between your AI assistant and your files. 77+ patterns. 100% local. Zero data leaves your machine.
redact_file
Read any file, return redacted. Original never touched.
scan_directory
Recursively scan folders. Returns file paths + line numbers.
scan_repo
Full repo audit. Every relevant file, full security report.
audit_env_file
Deep .env analysis: secrets, placeholders, rotation tips.
check_gitignore
Verify .gitignore covers .env, keys, secret dirs.
explain_detection
Plain-English blast radius + exact revoke steps.
generate_env_template
Safe .env.example for Next.js, Rails, Django + more.
11 Times a Developer's Stream Destroyed Their Security
17-page post-mortem guide: 11 real credential leak case studies, a complete pre-stream security stack, and the 7-item checklist serious streamers run before every session.
Protection everywhere you work
Two tools live today. More protection points on the way for every surface developers and creators use.
Live Now
Chrome Extension
Real-time masking for streamers, demo creators, and screen sharers. 75+ patterns, works across all major sites.
✓ Live on Chrome Web StoreStreamBlur MCP
AI coding workflow protection. Sits between your agent and your files. Works in Claude, Cursor, Windsurf, Zed.
✓ Live on npmOn the Roadmap
VS Code Extension
Secret detection inside your editor. Catch exposed keys before you share your screen in a code review or demo.
Q2 2026Pipeline Scanner
GitHub Actions, GitLab, and Jenkins integration. Catch leaked secrets in CI/CD logs before they hit production.
Q2 2026Desktop App
System-wide protection beyond the browser. Covers OBS, Terminal, VS Code, and any app on your machine.
Q2 2026Mobile App
iOS and Android protection for on-the-go demos, IRL streams, and mobile screen shares.
Q3 2026Companies That Stream With Confidence
Trusted by developers, creators, and teams who share their screen professionally.
"Stream Mode is the reason we upgraded. We go live on Twitch and Discord weekly for client demos and internal reviews. With Stream Mode on, nothing sensitive ever makes it to the broadcast. It just works in the background and we never think about it."
"The custom pattern rules sold us on Pro. We have internal project IDs and client account numbers that no off-the-shelf tool would recognize. StreamBlur lets us define exactly what to blur. Covers Stripe keys, env variables, and our own formats. All in one place."
"We pitch on Zoom and share screens in Discord daily. Pro covers both without any extra setup. API keys, contract details, client dashboards. All blurred automatically across every platform we use. $2.99 for that kind of peace of mind is a no-brainer."
"I stream coding sessions on Twitch a few times a week. After upgrading to Pro, Stream Mode caught an API key I would have absolutely missed mid-session. One close call and it already paid for itself ten times over."
Using StreamBlur? We'd love to hear from you.
Leave a Review on Chrome Web StoreLatest articles
Guides, deep dives, and practical advice for developers who can't afford a credential leak.
MCP & Agentic AI Privacy: How StreamBlur Protects Your Workflow
AI agents read your files, echo your env vars, and log outputs you didn't expect. Here's how StreamBlur MCP intercepts secrets before they ever enter the AI's context window.
Read article →Start Streaming Safely
with StreamBlur.
Join creators who never worry about leaking secrets again.
Get StreamBlur Free