Aegis 0.1.0

Aegis 0.1.0

First public release. Aegis is a transparent, constitution-bound defensive
security copilot. Ships a CLI, an MCP server, optional Claude/Ollama LLM
advisors, HTML reports, and an evaluation harness.

Install (any MCP client)

{
  "mcpServers": {
    "aegis": {
      "command": "uvx",
      "args": ["--from", "aegis-sec", "aegis-mcp"]
    }
  }
}

Codex uses servers instead of mcpServers. See client guide.

What's included

• Mythos charter: 6 hard rules + 3 soft rules, hashed in memory, immutable at runtime.
• Glasswing journal: append-only JSONL audit trail. Every decision recorded.
• Shared SQLite index (JetBrains-style): copy data/index.sqlite to share an audit baseline.
• 7 scanners: secrets, obfuscation, dependencies, filesystem, dockerfile, IaC, optional YARA.
• MCP server: 5 tools (scan_path, report_findings, explain_finding, show_charter, tail_journal) + 2 resources.
• LLM adapters: Anthropic API, local Ollama, deterministic mock for CI.
• Differential gate: aegis-diff baseline.sqlite current.sqlite --fail-on critical,high.
• Evaluation harness: deterministic precision/recall fixtures + LLM-advise rubric scorer + LLM-as-judge phase 2.

Inspirations

• Project Glasswing (Anthropic) — defensive collaboration; shareable security artifacts.
• Claude Mythos — constitution-as-character; refuse to act outside the charter.
• JetBrains Shared Indexes — heavy analysis built once, distributed.

Verified

• 28/28 tests pass (pytest, py3.11 + py3.12).
• Eval harness: P=R=F1=1.0 on bundled fixtures.
• Detection of the original abuse-loader smoke test: critical with 6 signals.
• Published to PyPI under aegis-sec via PyPI trusted publishing + sigstore.
• Listed in the official MCP Registry as io.github.verrysimatupang99/aegis.

Links

• PyPI: https://pypi.org/project/aegis-sec/0.1.0/
• MCP Registry: https://registry.modelcontextprotocol.io/v0/servers?search=io.github.verrysimatupang99/aegis
• Architecture: docs/architecture.md
• Client setup: docs/clients/README.md
• Marketplace + benchmarks: docs/marketplace.md

Roadmap

See README. Highlights: more scanners (browser ext manifests, mobile permissions),
HTML diff exporter, sigstore-attested baselines.