Anything pulled from a CRM, email API, support log, or production database is going to contain PII. Sending that PII into LLM context is usually undesirable and sometimes illegal. A tool_end hook with regex replacements (emails, phones, IDs) catches the structured leaks, a dedicated PII module handles semantic ones (names, addresses).
Engineering notes from the Digitorn team. No marketing, no launch announcements, no "10 prompts that will change your life". Just the things we write that we'd want to read.