Skip to main content

A trusted boundary for intent‑safe AI execution.

Project description

MirginCipher Blackbox (MGC) — Encrypted AI Agent Execution Layer

A secure local execution layer for AI agents — encrypted storage, sealed scripts, zero plaintext leakage.
Protect API keys, credentials, and scripts from AI agents with AES‑256 + RSA hybrid encryption and a Cython‑compiled secure core.

License Platform MCP PyPI

📌 Roadmap: MGC Blackbox — 2026 Development Plan


What is MGC Blackbox?

MirginCipher Blackbox (MGC) is a Local Encrypted Execution Layer designed to protect sensitive human intent and enable secure, deterministic AI execution.
It provides a trusted device‑level encrypted boundary for agents — MGC is not an agent itself.

MGC ensures:

  • Sensitive data never leaves the device
  • AI agents cannot access plaintext
  • Scripts execute inside a sealed, encrypted environment
  • Cross‑node execution is possible without exposing code

Why MGC?

  • 🔐 End‑to‑End Encrypted Storage
    AES‑256 encrypted vault for API keys, credentials, configs — never exposed to AI agents or external systems.

  • 🧱 Local‑First Security Boundary
    All execution and decryption happen on‑device. No cloud dependency, no plaintext leakage, no telemetry.

  • 🧩 Sealed Script Execution (Unique)
    Convert scripts into unreadable execution capsules.
    Only trusted nodes can decrypt & run them — even the sender cannot read sealed scripts.

  • Deterministic Local Execution
    Stable, reproducible behavior across macOS / Linux / Windows with a Cython‑compiled secure core.

  • 🛠️ Native MCP / Skill Integration
    Exposes mgc_save / mgc_get / mgc_list / mgc_seal / mgc_open_webui as standard MCP tools.
    Works out‑of‑the‑box with Copilot, Claude, Trae, IDE Agents.

  • 🔄 Zero Integration Cost
    Any MCP‑compatible agent can immediately use MGC as its secure execution backend — no SDK, no custom code.

  • 🛡️ Designed for AI Agent Security
    Protects human intent, prevents agent overreach, and enforces strict execution boundaries.


Use Cases

1. Protect API Keys & Credentials from AI Agents

Store secrets encrypted. Agents can use them, but never see plaintext.

2. Secure Local Automation

Run Python / Shell / Node scripts locally without exposing sensitive data to AI logs or cloud systems.

3. Sealed Script Distribution

Share scripts with collaborators or devices without exposing source code — they can execute but cannot read.

4. Cross‑Node Execution

Send sealed scripts to trusted remote nodes:

  • Sender cannot read the sealed content
  • Recipient cannot read the sealed content
  • Only the target node can decrypt and execute

5. Local‑First AI Agent Security Boundary

Provides a local security layer for Copilot / Claude / Trae / IDE Agents.

6. Privacy‑Preserving AI Workflows

Enables financial automation, personal data processing, and enterprise internal workflows with privacy protection.


📘 Value Scenarios

MGC Blackbox provides a trusted, encrypted execution boundary for different roles and environments.
Detailed scenario documents:


Architecture


Crypto Layer & Performance

MGC uses a hybrid cryptographic design:

  • AES‑256‑GCM — bulk data encryption
  • RSA‑2048/4096 — key encapsulation & node authorization

The crypto layer is Cython‑compiled to:

  • Improve AES & RSA performance
  • Reduce Python overhead
  • Provide a sealed, tamper‑resistant execution boundary
  • Maintain deterministic behavior across nodes

Features

  • Local encrypted storage
  • Encrypted execution
  • Store‑once authorization
  • Environment migration
  • Cross‑agent availability
  • Cross‑platform support
  • No delete function (manual DB deletion only)
  • Script sealing for cross‑node execution

Quick Start

1. Install

pip install mgc-blackbox

2. Start Service

mgc

3. Open WebUI

http://127.0.0.1:57218

4. Store a Secret

from mgc import save
save("openai_key", "sk-xxxx")

5. Execute Scripts Securely

Scripts run inside MGC's encrypted boundary.


Example: Save & Retrieve Secrets

from mgc import save, get

save("openai_key", "sk-xxxx")
print(get("openai_key"))

MCP Integration

MGC exposes a local MCP tools interface:

  • mgc_save
  • mgc_get
  • mgc_list
  • mgc_seal
  • mgc_open_webui

Compatible with Copilot, Claude, Trae, IDE Agents.


Usage Overview

1. Through AI agents (Skills / MCP)

Agents can store secrets, retrieve encrypted items, execute scripts, and seal scripts.

2. Through system scripts (REST API)

External scripts can fetch encrypted items at runtime.


Security Model

  • All data remains local
  • No cloud upload
  • No plaintext logging
  • Deterministic execution
  • User‑controlled authorization

AI Skill Specification

See: docs/skill_spec.md


Authorization

Integration into any third‑party products or AI agents is free,
but requires official authorization to ensure ecosystem integrity.

Contact: zkeviny@icloud.com


License

See the LICENSE file for full terms.

© 2026 MirginCipher Team. All rights reserved.


---

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distributions

If you're not sure about the file name format, learn more about wheel file names.

mgc_blackbox-1.4.5-cp312-cp312-win_amd64.whl (1.1 MB view details)

Uploaded CPython 3.12Windows x86-64

mgc_blackbox-1.4.5-cp312-cp312-manylinux_2_17_x86_64.whl (4.2 MB view details)

Uploaded CPython 3.12manylinux: glibc 2.17+ x86-64

mgc_blackbox-1.4.5-cp311-cp311-win_amd64.whl (1.1 MB view details)

Uploaded CPython 3.11Windows x86-64

mgc_blackbox-1.4.5-cp311-cp311-manylinux_2_17_x86_64.whl (4.1 MB view details)

Uploaded CPython 3.11manylinux: glibc 2.17+ x86-64

mgc_blackbox-1.4.5-cp311-cp311-macosx_11_0_arm64.whl (1.6 MB view details)

Uploaded CPython 3.11macOS 11.0+ ARM64

mgc_blackbox-1.4.5-cp310-cp310-win_amd64.whl (1.1 MB view details)

Uploaded CPython 3.10Windows x86-64

mgc_blackbox-1.4.5-cp310-cp310-manylinux_2_17_x86_64.whl (3.9 MB view details)

Uploaded CPython 3.10manylinux: glibc 2.17+ x86-64

mgc_blackbox-1.4.5-cp310-cp310-macosx_11_0_arm64.whl (1.7 MB view details)

Uploaded CPython 3.10macOS 11.0+ ARM64

File details

Details for the file mgc_blackbox-1.4.5-cp312-cp312-win_amd64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp312-cp312-win_amd64.whl
Algorithm Hash digest
SHA256 94b245771cf21fded1f27639cf9a064ae79b9b8bd469c24eb80b695e5cd561de
MD5 ac0f2d799235c786ab6f45fc08d850d1
BLAKE2b-256 397b2add8574a7579539dc25170013095ebb1092198c7bec67b36f58bf166957

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.5-cp312-cp312-manylinux_2_17_x86_64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp312-cp312-manylinux_2_17_x86_64.whl
Algorithm Hash digest
SHA256 a519b57764454198a7a53577d3e8067b9f07e6325983d85fc840930a8e5a8451
MD5 904147740bcbfe70b97f3ed1d0fc5cea
BLAKE2b-256 8cbf412a28dec5a90f1ffc043221bb1af4ca070a70ef7590d2474959d3efa563

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.5-cp311-cp311-win_amd64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp311-cp311-win_amd64.whl
Algorithm Hash digest
SHA256 fad1544b3cac774da75c77d2f16c430519e35d44b393c201eefea75f5ad54fe4
MD5 e79f58429c6e54d034fbf028e1c5e19d
BLAKE2b-256 6a0e6f88df79c09b42f10918b22802e3509e65bf473e7e4f95a12b614997d40c

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.5-cp311-cp311-manylinux_2_17_x86_64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp311-cp311-manylinux_2_17_x86_64.whl
Algorithm Hash digest
SHA256 af50144de650c46fe0a4d5b0801b128d8089e62eec97dcec47512a8ddc6f04a6
MD5 32395ce6ec7d19b69be699ba564df9a5
BLAKE2b-256 afb9ddfe1132dbd590bf87e0ec9abdc715a7174de5274967de170e75850a57b4

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.5-cp311-cp311-macosx_11_0_arm64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp311-cp311-macosx_11_0_arm64.whl
Algorithm Hash digest
SHA256 6af8adf8115cdebfb8b4a6154fd7e308e23dbcfa179a31481e190993871cbb6f
MD5 d2c4baae393e770f973d2127130447c8
BLAKE2b-256 42ce2a54965a734050d8cd58b6469f22797d01c58ed16d93f4839fec15513b1a

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.5-cp310-cp310-win_amd64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp310-cp310-win_amd64.whl
Algorithm Hash digest
SHA256 8f107121328bbefea3ca4911bd0fb54ba700aa31eff2ea375d1f0e7d771db8a3
MD5 c32b82a7ee63d612627f6dc5f6923e3f
BLAKE2b-256 1c1fad053a32e126a83f64352bfded492643ad61c73e7dc23dd9d7fc031bca1c

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.5-cp310-cp310-manylinux_2_17_x86_64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp310-cp310-manylinux_2_17_x86_64.whl
Algorithm Hash digest
SHA256 c521356dc16758bc580efded613369c3a7edaf348fd40b3f0d3f1258e045acc1
MD5 25c987ff63aa4cf4ba7656f0f6268e3c
BLAKE2b-256 c0b52b4dbd795d074c994b56dfd856c996d4ef37f4dc510fe055dbc7173b9a78

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.5-cp310-cp310-macosx_11_0_arm64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.5-cp310-cp310-macosx_11_0_arm64.whl
Algorithm Hash digest
SHA256 27bf6a8d533519112434c5185629cd5669ba116df317a549ef70f6cd40175316
MD5 18fef258de9fee91494fd4c9ca10f3d0
BLAKE2b-256 8c535835182d8ff3165c8992364a533846fb5700741c9d471c1dabb673cc09fa

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page