Coworkguard

CoworkGuard: Runtime Visibility for AI Tools on Your Mac

AI tools read files, access credentials, download models, and make outbound requests, often silently. CoworkGuard shows you exactly what they're doing, and stops sensitive data before it leaves your machine.

This extension requires the free CoworkGuard macOS app. Download it first at coworkguard.com

WHAT'S NEW IN V1.0.7

AI session detection: CoworkGuard now logs when you open AI web apps in your browser, so you have a complete picture of your AI activity across all tools..

Model download alerts: detects when Large Language Models are downloaded silently to your Mac.

Behavioural correlation: surfaces sequences like "AI tool accessed private data, then connected outward 4 seconds later".

Live session panel: see which AI web apps are currently open in your browser at a glance.

WHAT IT PROTECTS AGAINST

Sensitive data leaving your machine:
- SSNs, credit cards, passport numbers, email addresses
- API keys and credentials across all major AI providers
- Private keys, JWTs, and authentication tokens
- Database connection strings and infrastructure secrets
- .env file values and environment variables

AI tool supply chain attacks:
- Prompt injection in MCP tool responses
- Hidden instructions and unicode steganography in tool output
- Tool metadata changes and rug-pull attacks
- Suspicious extensions harvesting your AI conversations by overriding fetch()

Silent local AI activity:
- Large Language Models downloaded without a permission prompt
- Websites using locally installed AI models without your knowledge
- AI web app sessions you may not have noticed are open

SEVEN LAYERS OF PROTECTION

1. Payload scanner — intercepts every outbound AI API request across 19 providers and blocks sensitive data before transmission

2. MCP Trust Gateway — scans tool responses before they reach the model, blocks injection attacks and credential leaks

3. Skill scanner — watches MCP skill files for supply chain attacks before they execute

4. Clipboard monitor — alerts when sensitive data is copied to clipboard while an AI session is active

5. File write monitor — warns when sensitive data is written outside your approved folders, with exact triggering line shown

6. AI session tracker — logs when AI web apps are opened and closed, giving you a complete browser AI activity trail

7. Local AI detector — detects when browsers use locally installed AI models and flags extensions intercepting your AI conversations

BEHAVIOURAL CORRELATION

CoworkGuard doesn't just log events — it connects them. When an AI tool accesses private data and then makes an outbound request within seconds, CoworkGuard surfaces the sequence in plain English.

No packet inspection. No SIEM dashboards. Just: what happened, in order, explained.

PRIVACY

Everything runs locally on your Mac. No accounts. No cloud. No telemetry. Your data never leaves your machine. Raw payload content is never stored — only hashes and redacted previews.

REQUIREMENTS

- macOS 12 (Monterey) or later
- CoworkGuard macOS app (free): coworkguard.com
- Works with Chrome, Brave, and Edge

Download the free macOS app: coworkguard.com