Skip to main content

A trusted boundary for intent‑safe AI execution.

Project description

MirginCipher Blackbox (MGC) — Encrypted AI Agent Execution Layer

A secure local execution layer for AI agents — encrypted storage, sealed scripts, zero plaintext leakage.
Protect API keys, credentials, and scripts from AI agents with AES‑256 + RSA hybrid encryption and a Cython‑compiled secure core.

License Platform MCP PyPI

📌 Roadmap: MGC Blackbox — 2026 Development Plan


What is MGC Blackbox?

MirginCipher Blackbox (MGC) is a Local Encrypted Execution Layer designed to protect sensitive human intent and enable secure, deterministic AI execution.
It provides a trusted device‑level encrypted boundary for agents — MGC is not an agent itself.

MGC ensures:

  • Sensitive data never leaves the device
  • AI agents cannot access plaintext
  • Scripts execute inside a sealed, encrypted environment
  • Cross‑node execution is possible without exposing code

Why MGC?

  • 🔐 End‑to‑End Encrypted Storage
    AES‑256 encrypted vault for API keys, credentials, configs — never exposed to AI agents or external systems.

  • 🧱 Local‑First Security Boundary
    All execution and decryption happen on‑device. No cloud dependency, no plaintext leakage, no telemetry.

  • 🧩 Sealed Script Execution (Unique)
    Convert scripts into unreadable execution capsules.
    Only trusted nodes can decrypt & run them — even the sender cannot read sealed scripts.

  • Deterministic Local Execution
    Stable, reproducible behavior across macOS / Linux / Windows with a Cython‑compiled secure core.

  • 🛠️ Native MCP / Skill Integration
    Exposes mgc_save / mgc_get / mgc_list / mgc_seal / mgc_open_webui as standard MCP tools.
    Works out‑of‑the‑box with Copilot, Claude, Trae, IDE Agents.

  • 🔄 Zero Integration Cost
    Any MCP‑compatible agent can immediately use MGC as its secure execution backend — no SDK, no custom code.

  • 🛡️ Designed for AI Agent Security
    Protects human intent, prevents agent overreach, and enforces strict execution boundaries.


Use Cases

1. Protect API Keys & Credentials from AI Agents

Store secrets encrypted. Agents can use them, but never see plaintext.

2. Secure Local Automation

Run Python / Shell / Node scripts locally without exposing sensitive data to AI logs or cloud systems.

3. Sealed Script Distribution

Share scripts with collaborators or devices without exposing source code — they can execute but cannot read.

4. Cross‑Node Execution

Send sealed scripts to trusted remote nodes:

  • Sender cannot read the sealed content
  • Recipient cannot read the sealed content
  • Only the target node can decrypt and execute

5. Local‑First AI Agent Security Boundary

Provides a local security layer for Copilot / Claude / Trae / IDE Agents.

6. Privacy‑Preserving AI Workflows

Enables financial automation, personal data processing, and enterprise internal workflows with privacy protection.


📘 Value Scenarios

MGC Blackbox provides a trusted, encrypted execution boundary for different roles and environments.
Detailed scenario documents:


Architecture


Crypto Layer & Performance

MGC uses a hybrid cryptographic design:

  • AES‑256‑GCM — bulk data encryption
  • RSA‑2048/4096 — key encapsulation & node authorization

The crypto layer is Cython‑compiled to:

  • Improve AES & RSA performance
  • Reduce Python overhead
  • Provide a sealed, tamper‑resistant execution boundary
  • Maintain deterministic behavior across nodes

Features

  • Local encrypted storage
  • Encrypted execution
  • Store‑once authorization
  • Environment migration
  • Cross‑agent availability
  • Cross‑platform support
  • No delete function (manual DB deletion only)
  • Script sealing for cross‑node execution

Quick Start

1. Install

pip install mgc-blackbox

2. Start Service

mgc

3. Open WebUI

http://127.0.0.1:57218

4. Store a Secret

from mgc import save
save("openai_key", "sk-xxxx")

5. Execute Scripts Securely

Scripts run inside MGC's encrypted boundary.


Example: Save & Retrieve Secrets

from mgc import save, get

save("openai_key", "sk-xxxx")
print(get("openai_key"))

MCP Integration

MGC exposes a local MCP tools interface:

  • mgc_save
  • mgc_get
  • mgc_list
  • mgc_seal
  • mgc_open_webui

Compatible with Copilot, Claude, Trae, IDE Agents.


Usage Overview

1. Through AI agents (Skills / MCP)

Agents can store secrets, retrieve encrypted items, execute scripts, and seal scripts.

2. Through system scripts (REST API)

External scripts can fetch encrypted items at runtime.


Security Model

  • All data remains local
  • No cloud upload
  • No plaintext logging
  • Deterministic execution
  • User‑controlled authorization

AI Skill Specification

See: docs/skill_spec.md


Authorization

Integration into any third‑party products or AI agents is free,
but requires official authorization to ensure ecosystem integrity.

Contact: zkeviny@icloud.com


License

See the LICENSE file for full terms.

© 2026 MirginCipher Team. All rights reserved.


---

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distributions

If you're not sure about the file name format, learn more about wheel file names.

mgc_blackbox-1.4.6-cp312-cp312-win_amd64.whl (1.1 MB view details)

Uploaded CPython 3.12Windows x86-64

mgc_blackbox-1.4.6-cp312-cp312-manylinux_2_17_x86_64.whl (4.2 MB view details)

Uploaded CPython 3.12manylinux: glibc 2.17+ x86-64

mgc_blackbox-1.4.6-cp311-cp311-win_amd64.whl (1.1 MB view details)

Uploaded CPython 3.11Windows x86-64

mgc_blackbox-1.4.6-cp311-cp311-manylinux_2_17_x86_64.whl (4.1 MB view details)

Uploaded CPython 3.11manylinux: glibc 2.17+ x86-64

mgc_blackbox-1.4.6-cp311-cp311-macosx_11_0_arm64.whl (1.6 MB view details)

Uploaded CPython 3.11macOS 11.0+ ARM64

mgc_blackbox-1.4.6-cp310-cp310-win_amd64.whl (1.1 MB view details)

Uploaded CPython 3.10Windows x86-64

mgc_blackbox-1.4.6-cp310-cp310-manylinux_2_17_x86_64.whl (3.9 MB view details)

Uploaded CPython 3.10manylinux: glibc 2.17+ x86-64

mgc_blackbox-1.4.6-cp310-cp310-macosx_11_0_arm64.whl (1.7 MB view details)

Uploaded CPython 3.10macOS 11.0+ ARM64

File details

Details for the file mgc_blackbox-1.4.6-cp312-cp312-win_amd64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp312-cp312-win_amd64.whl
Algorithm Hash digest
SHA256 511d72f4452414c9ca448a079e26791051e8cadf321b6bf57d2710562a038228
MD5 075dbe88e391670a05befcfed7f548aa
BLAKE2b-256 dcb4787e6346e773240104f0bcba378d477456ec8b960eafe1c9344ed125359d

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.6-cp312-cp312-manylinux_2_17_x86_64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp312-cp312-manylinux_2_17_x86_64.whl
Algorithm Hash digest
SHA256 6c763adaa16e5a2c7540d2f930c4196ab3fb3e05349a7731cc7b892ed54224ee
MD5 cf8a86d9a7ed1062a067f2973126023a
BLAKE2b-256 cc1ba34cc85ba472d4bf8ac8edcea0dbba28243ba1e546fb00e07d236e49beca

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.6-cp311-cp311-win_amd64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp311-cp311-win_amd64.whl
Algorithm Hash digest
SHA256 8960886c2e12af52c730389e3a301ffe818f60ac787c2bc2122071da22c674fc
MD5 32cb0c9599d14648bfc2d6d4ba5bbd38
BLAKE2b-256 37f5fb5d71564131aefb6294a430d7fff55145983ba5072c31cf0a2fddba3e65

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.6-cp311-cp311-manylinux_2_17_x86_64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp311-cp311-manylinux_2_17_x86_64.whl
Algorithm Hash digest
SHA256 4afe206e51fc7850f771af49c98ca2fb191106f09263419abe9b4e269f641cdc
MD5 6b95f2579ab60e87bd3db40fe8ded1d9
BLAKE2b-256 f542692ae20f560c9282046b8fe9fc7c765ab60b6a15a563e1642a308abebba0

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.6-cp311-cp311-macosx_11_0_arm64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp311-cp311-macosx_11_0_arm64.whl
Algorithm Hash digest
SHA256 5e0961b479c2bf91520d3b3212563f2d49ef4cb58a1652126f67d062d094348b
MD5 526ebb6a18f216497edf0b2602ee14d0
BLAKE2b-256 244db68e2f265cc6d18282365b6e7303b975ae1334e0ae7490b9fa3ba81d7db0

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.6-cp310-cp310-win_amd64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp310-cp310-win_amd64.whl
Algorithm Hash digest
SHA256 8bbd3a9b2d5350eaf9504e105e1cee40277f91bf8b07de19a8716dc06cd6761a
MD5 5adf0581efae0fe26ac0c35cde4a0047
BLAKE2b-256 cf6dabcb4d4904c6c67dd093d68569a54e89be82538e5d7c61d048957b174f8f

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.6-cp310-cp310-manylinux_2_17_x86_64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp310-cp310-manylinux_2_17_x86_64.whl
Algorithm Hash digest
SHA256 318d51aac6320a63250f028ff1bfc9661a2c912733c2802157f53c71fbf49d47
MD5 732abbe8c20d6fc60824bc2ad09e5bea
BLAKE2b-256 e9964e1c6310a1e7c7c217baa6642d4178d08193c9ff6f4bb9ca7de5867a5be3

See more details on using hashes here.

File details

Details for the file mgc_blackbox-1.4.6-cp310-cp310-macosx_11_0_arm64.whl.

File metadata

File hashes

Hashes for mgc_blackbox-1.4.6-cp310-cp310-macosx_11_0_arm64.whl
Algorithm Hash digest
SHA256 a09920a0c2784b1273a76ac94a10fcf8f9834927b63fd925c53cae791ab38f22
MD5 b727195758c5b6174e975ec888bf7557
BLAKE2b-256 f896afe4e882584a3cd6060220740db836590a85d9c6f29dc480c5d5dd3c361a

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page