Documentation edits made through Mintlify web editor

Author: mintlify[bot]

docs.json

@@ -111,8 +111,7 @@
                 "group": "Web Applications",
                 "pages": [
                   "quickstart/web-applications/webapps-and-apis",
-                  "quickstart/web-applications/http-proxy",
-                  "quickstart/web-applications/jump-hosts"
+                  "quickstart/web-applications/http-proxy"
                 ]
               },
               {
@@ -210,7 +209,8 @@
               "integrations/teams",
               "integrations/jira",
               "integrations/svix",
-              "integrations/aws"
+              "integrations/aws",
+              "integrations/ms-presidio"
             ]
           }
         ]

integrations/ms-presidio.mdx

@@ -0,0 +1,72 @@
+---
+title: "Microsoft Presidio"
+description: "Enable sensitive data detection, masking, and guardrail enforcement using Microsoft Presidio."
+---
+
+Hoop.dev’s Microsoft Presidio integration provides a powerful framework for detecting, classifying, and masking sensitive data within infrastructure sessions and workflows. It strengthens security and compliance by enforcing guardrails and protecting personally identifiable information (PII) across your organization’s resources.
+
+## Key Features
+
+### AI Data Masking
+
+- Automatically identify and mask sensitive information such as PII and secrets within session logs or command inputs
+- Ensure compliance with data protection policies while maintaining operational visibility
+- Apply consistent masking across multiple environments and data flows
+
+### Guardrails and Policy Enforcement
+
+- Create and enforce custom guardrails that restrict sensitive actions or access patterns
+- Prevent risky operations by applying rule-based controls to session activity
+- Integrate seamlessly with approval workflows and policy evaluation mechanisms
+
+### Extensible Detection
+
+- Utilize Microsoft Presidio’s analyzers and recognizers to detect sensitive entities
+- Extend detection logic with custom patterns to meet specific organizational requirements
+- Benefit from Presidio’s open-source flexibility and ongoing improvements
+
+## Benefits
+
+- **Security:** Protect sensitive data in real time through automated masking and rule enforcement
+- **Compliance:** Simplify adherence to privacy and governance standards by integrating PII protection directly into access flows
+- **Control:** Define fine-grained policies for data handling and operational boundaries
+- **Transparency:** Maintain a complete audit trail of masking and enforcement actions
+
+## Integration with Other Features
+
+Microsoft Presidio works seamlessly with other Hoop.dev capabilities:
+
+- **Sessions:** Mask sensitive data in session recordings and live streams
+- **Guardrails:** Apply Presidio-powered rules to restrict or log sensitive operations
+- **Approvals:** Automatically trigger approvals or alerts when guardrail conditions are met
+- **Logging & Monitoring:** Ensure all sensitive data is masked before being stored or transmitted
+
+## Configuration
+
+<Steps>
+  <Step title="Install">
+    Check the Microsoft Presidio documentation to install it.
+
+    <CardGroup cols={2}>
+      <Card title="Microsoft Presidio Docker Installation" icon="microsoft" href="https://microsoft.github.io/presidio/installation/#docker-installation">
+        Visit the Microsoft Presidio documentation to install it using Docker.
+      </Card>
+      <Card title="Microsoft Presidio Kubernetes Installation" icon="microsoft" href="https://microsoft.github.io/presidio/samples/deployments/k8s/">
+        Visit the Microsoft Presidio documentation to install it using Kubernetes.
+      </Card>
+    </CardGroup>
+  </Step>
+  <Step title="Set up">
+    Set the new environment variables in hoop.dev's Gateway with the following values:
+
+    | Environment variable key    | Value                       |
+    | --------------------------- | --------------------------- |
+    | `DLP_PROVIDER`              | mspresidio                  |
+    | `DLP_MODE`                  | `best-effort` or `strict`   |
+    | `MSPRESIDIO_ANALYZER_URL`   | `<host-to-analyzer:port>`   |
+    | `MSPRESIDIO_ANONYMIZER_URL` | `<host-to-anonymizer:port>` |
+  </Step>
+  <Step title="Run hoop.dev's Gateway with the new configs">
+    After setting up the environment variables, hoop.dev will use Microsoft Presidio to mask sensitive data in real-time in the data stream of any connection you configure.
+  </Step>
+</Steps>

setup/configuration/ai-data-masking/get-started.mdx

@@ -4,76 +4,73 @@ description: "Set up and know better about hoop.dev's AI Data Masking"
 ---
 
 <Frame>
-  <img
-    src="/images/ai-data-masking.png"
-  />
+  ![](/images/ai-data-masking.png)
 </Frame>
 
 ## Prerequisites
 
- - Have properly installed hoop.dev through one of the options available in the [deployment overview](/setup/deployment/overview)
- - Be on an enterprise plan
- - Enough access to your infrastructure so you can load environment variables to your hoop.dev instance
- - Have admin access to your hoop.dev instance
+- Have properly installed hoop.dev through one of the options available in the [deployment overview](/setup/deployment/overview)
+- Be on an enterprise plan
+- Enough access to your infrastructure so you can load environment variables to your hoop.dev instance
+- Have admin access to your hoop.dev instance
 
 <Note>
   This page is dedicated to the setup of AI Data Masking in self-hosted instances. If you are looking for the Learn Guides of AI Data Masking, [click here](/learn/ai-data-masking).
 </Note>
 
-## Set up
+## Setup
 
-You can either use Google Cloud Data Loss Prevention hosted by Google on GCP, or Microsoft Presidio, an open-source project that you can host yourself.
+This service currently supports Microsoft Presidio for data classification and PII detection.
 
-### Google Cloud Data Loss Prevention (DLP)
+Google Cloud Data Loss Prevention (DLP) is still available for existing customers but is deprecated for new installations.
 
 <Info>
   You must be on an enterprise plan to have access to the AI Data Masking feature.
 </Info>
 
-Create an account at [Google Cloud Data Loss Prevention](https://cloud.google.com/security/products/dlp) and a service account with the permission `roles/dlp.user`.
-
-When installing hoop.dev, you need to set the environment variable `GOOGLE_APPLICATION_CREDENTIALS_JSON` with your GCP DLP credentials in hoop's Gateway. 
-Hoop.dev uses Google Cloud's DLP at our protocol layer to mask sensitive data in real-time in the data stream of any connection you configure.
-
 ### Microsoft Presidio
 
 <Steps>
-    <Step title="Install">
-        Check the Microsoft Presidio documentation to install it.
-        <CardGroup cols={2}>
-            <Card
-                title="Microsoft Presidio Docker Installation"
-                icon="microsoft"
-                href="https://microsoft.github.io/presidio/installation/#docker-installation">
-                Visit the Microsoft Presidio documentation to install it using Docker.
-            </Card>
-            <Card
-                title="Microsoft Presidio Kubernetes Installation"
-                icon="microsoft"
-                href="https://microsoft.github.io/presidio/samples/deployments/k8s/">
-                Visit the Microsoft Presidio documentation to install it using Kubernetes.
-            </Card>
-        </CardGroup>
-    </Step>
-    <Step title="Set up">
-        Set the new environment variables in hoop.dev's Gateway with the following values:
-        | Environment variable key    | Value |
-        | --------------------------- | ----- |
-        | `DLP_PROVIDER`              | mspresidio |
-        | `DLP_MODE`                  |  `best-effort` or `strict` |
-        | `MSPRESIDIO_ANALYZER_URL`   | `<host-to-analyzer:port>` |
-        | `MSPRESIDIO_ANONYMIZER_URL` | `<host-to-anonymizer:port>` |
-    </Step>
-    <Step title="Run hoop.dev's Gateway with the new configs">
-        After setting up the environment variables, hoop.dev will use Microsoft Presidio to mask sensitive data in real-time in the data stream of any connection you configure.
-    </Step>
+  <Step title="Install">
+    Check the Microsoft Presidio documentation to install it.
+
+    <CardGroup cols={2}>
+      <Card title="Microsoft Presidio Docker Installation" icon="microsoft" href="https://microsoft.github.io/presidio/installation/#docker-installation">
+        Visit the Microsoft Presidio documentation to install it using Docker.
+      </Card>
+      <Card title="Microsoft Presidio Kubernetes Installation" icon="microsoft" href="https://microsoft.github.io/presidio/samples/deployments/k8s/">
+        Visit the Microsoft Presidio documentation to install it using Kubernetes.
+      </Card>
+    </CardGroup>
+  </Step>
+  <Step title="Set up">
+    Set the new environment variables in hoop.dev's Gateway with the following values:
+
+    | Environment variable key    | Value                       |
+    | --------------------------- | --------------------------- |
+    | `DLP_PROVIDER`              | mspresidio                  |
+    | `DLP_MODE`                  | `best-effort` or `strict`   |
+    | `MSPRESIDIO_ANALYZER_URL`   | `<host-to-analyzer:port>`   |
+    | `MSPRESIDIO_ANONYMIZER_URL` | `<host-to-anonymizer:port>` |
+  </Step>
+  <Step title="Run hoop.dev's Gateway with the new configs">
+    After setting up the environment variables, hoop.dev will use Microsoft Presidio to mask sensitive data in real-time in the data stream of any connection you configure.
+  </Step>
 </Steps>
 
+### Google Cloud Data Loss Prevention (DLP)
+
+Create an account at [Google Cloud Data Loss Prevention](https://cloud.google.com/security/products/dlp) and a service account with the permission `roles/dlp.user`.
+
+When installing hoop.dev, you need to set the environment variable `GOOGLE_APPLICATION_CREDENTIALS_JSON` with your GCP DLP credentials in hoop's Gateway. Hoop.dev uses Google Cloud's DLP at our protocol layer to mask sensitive data in real-time in the data stream of any connection you configure.
+
+<Note>
+  Google Cloud Data Loss Prevention (DLP) is still available for existing customers but is deprecated for new installations.
+</Note>
 
 ## Redact Modes
 
-The gateway now supports two operational modes that control how redaction failures are handled.
-Configure your preferred mode by setting the environment variable **DLP_MODE** to either `strict` or `best-effort`.
+The gateway now supports two operational modes that control how redaction failures are handled. Configure your preferred mode by setting the environment variable **DLP_MODE** to either `strict` or `best-effort`.
 
 ### best-effort
 
@@ -89,15 +86,14 @@ This mode will return an error in case it find any redaction issue
 
 ## Activate to your connections
 
-Navigate to your Web App instance > Open the Manage toggle > click at AI Data Masking > Activate by connection and to configure which fields you want to set, hit the "Configure" button.
+Navigate to your Web App instance \> Open the Manage toggle \> click at AI Data Masking \> Activate by connection and to configure which fields you want to set, hit the "Configure" button.
 
 <Frame>
-  <img src="/images/configure/ai-data-masking-activate-connection.png" />
+  ![](/images/configure/ai-data-masking-activate-connection.png)
 </Frame>
 
 ## How it works
 
 At the protocol layer when communicating with a database or server, hoop.dev will open the package and communicate with DLP provider to mask sensitive data in it. This happens in memory and in real-time, so the data is never stored in the database or server in its original form.
 
-After the setup, we automatically give you a bunch of default and most used fields, so you don't need to worry much about that part either. You can remove or add fields as much as you like. To see all fields available, check our [documentation page for all fields supported](/setup/configuration/ai-data-masking/fields).
-
+After the setup, we automatically give you a bunch of default and most used fields, so you don't need to worry much about that part either. You can remove or add fields as much as you like. To see all fields available, check our [documentation page for all fields supported](/setup/configuration/ai-data-masking/fields).

setup/configuration/guardrails-configuration.mdx

@@ -4,31 +4,69 @@ description: "Create and manage custom rules to protect and guide usage within y
 ---
 
 <Frame>
-  <img src="/images/clients/webapp/guardrails-light.png" className="block dark:hidden" />
-  <img src="/images/clients/webapp/guardrails-dark.png" className="hidden dark:block" />
+  <img
+    src="/images/clients/webapp/guardrails-light.png"
+    className="block dark:hidden"
+  />
+
+  <img
+    src="/images/clients/webapp/guardrails-dark.png"
+    className="hidden dark:block"
+  />
 </Frame>
 
 Guardrails allow you to create custom rules that protect and guide how your connections are used. These rules can be applied to specific connections or serve as default policies across your organization.
 
+## Setup
+
+This service currently supports Microsoft Presidio for configuring Guardrails rules.
+
+<Steps>
+  <Step title="Install">
+    Check the Microsoft Presidio documentation to install it.
+
+    <CardGroup cols={2}>
+      <Card title="Microsoft Presidio Docker Installation" icon="microsoft" href="https://microsoft.github.io/presidio/installation/#docker-installation">
+        Visit the Microsoft Presidio documentation to install it using Docker.
+      </Card>
+      <Card title="Microsoft Presidio Kubernetes Installation" icon="microsoft" href="https://microsoft.github.io/presidio/samples/deployments/k8s/">
+        Visit the Microsoft Presidio documentation to install it using Kubernetes.
+      </Card>
+    </CardGroup>
+  </Step>
+  <Step title="Set up">
+    Set the new environment variables in hoop.dev's Gateway with the following values:
+
+    | Environment variable key    | Value                       |
+    | :-------------------------- | :-------------------------- |
+    | `DLP_PROVIDER`              | mspresidio                  |
+    | `DLP_MODE`                  | `best-effort` or `strict`   |
+    | `MSPRESIDIO_ANALYZER_URL`   | `<host-to-analyzer:port>`   |
+    | `MSPRESIDIO_ANONYMIZER_URL` | `<host-to-anonymizer:port>` |
+  </Step>
+  <Step title="Run hoop.dev's Gateway with the new configs">
+    After setting up the environment variables, hoop.dev will use Microsoft Presidio to create a secure layer with custom rules that protect and guide how your resources are used.
+  </Step>
+</Steps>
+
 ## Creating a Guardrail
 
 <Steps>
   <Step title="Access Guardrails">
     Navigate to the Guardrails section from the sidebar menu
   </Step>
-  
   <Step title="Create New">
     Click the "Create a new Guardrail" button in the top-right corner
   </Step>
-  
   <Step title="Set Basic Information">
     Provide:
+
     - Name for the guardrail
     - Description (Optional) explaining its purpose
   </Step>
-
   <Step title="Configure Rules">
     Provide:
+
     - Input Rules
     - Output Rules
   </Step>
@@ -37,12 +75,14 @@ Guardrails allow you to create custom rules that protect and guide how your conn
 ## Configuring Rules
 
 ### Input Rules
+
 Rules that evaluate incoming commands or queries:
 
 - **Pattern Matching**: Define patterns to match specific commands or queries
 - **Conditions**: Set conditions that trigger the rule
 
 ### Output Rules
+
 Rules that control or modify the output of commands:
 
 - **Information Control**: Control what information can be returned
@@ -52,20 +92,21 @@ Rules that control or modify the output of commands:
 <AccordionGroup>
   <Accordion title="Pattern Rules">
     Create rules based on command or query patterns:
+
     - Regular expressions
     - Exact matches
     - Wildcard patterns
   </Accordion>
-  
   <Accordion title="Security Rules">
     Enforce security policies:
+
     - Block dangerous commands
     - Require additional approvals
     - Limit access to sensitive data
   </Accordion>
-  
   <Accordion title="Compliance Rules">
     Ensure compliance requirements:
+
     - Data access restrictions
     - Audit logging requirements
     - Regulatory compliance rules
@@ -75,17 +116,17 @@ Rules that control or modify the output of commands:
 ## Applying Guardrails
 
 ### Connection Assignment
+
 <Steps>
   <Step title="Select Connections">
     Choose which connections will use the guardrail
   </Step>
-  
   <Step title="Set Priority">
     Define the order of rule evaluation when multiple guardrails apply
   </Step>
-  
   <Step title="Configure Behavior">
     Specify how rules should be enforced:
+
     - Block non-compliant actions
     - Warn users
     - Require approval
@@ -98,15 +139,12 @@ Rules that control or modify the output of commands:
   <Card title="Start Simple" icon="list-check">
     Begin with basic rules and expand as needed
   </Card>
-  
   <Card title="Test Rules" icon="vial">
     Validate rules in a test environment first
   </Card>
-  
   <Card title="Document Purpose" icon="file-lines">
     Clearly describe what each rule does
   </Card>
-  
   <Card title="Regular Review" icon="rotate">
     Periodically review and update rules
   </Card>
@@ -134,7 +172,6 @@ Keep your guardrails effective and current:
   <Card title="Managing Access" icon="users" href="/clients/webapp/managing-access">
     Learn about access control configuration
   </Card>
-  
   <Card title="Command Reviews" icon="shield-check" href="/setup/configuration/reviews/command-reviews-configuration">
     Configure command review workflows
   </Card>