Does Privatemode store my source code or prompts?

No. All inference happens inside hardware-isolated confidential computing environments. Your prompts and code context are encrypted before leaving your machine, decrypted only inside the secure enclave for processing, and discarded after the response is generated. Nothing is stored or used for model training.

How does encryption affect response speed?

The Privatemode proxy adds only milliseconds for encryption, decryption, and remote attestation. Response times are comparable to standard cloud AI APIs. You can also enable prompt caching with the --sharedPromptCache flag on the proxy to speed up repeated context windows.

Can I verify that the server is actually running in a secure enclave?

Yes. The Privatemode proxy performs remote attestation before every session, verifying the server’s integrity against known cryptographic hashes. The proxy and server code are open source with reproducible builds, so you can audit exactly what runs on the server side.

Does Pi work the same way through Privatemode?

Yes. Privatemode provides an OpenAI-compatible API, so you add it as a standard custom provider in ~/.pi/agent/models.json using the openai-completions API. Pi’s read, write, edit, and bash tools, skills, and session features all work as usual, the only difference is that your data is encrypted end-to-end.

Use Confidential AI with Pi

Pi is an open-source, terminal-based coding agent that lets you bring your own models. Add Privatemode as a provider and every prompt and response is encrypted end-to-end through confidential computing. So your codebase stays private even when you reach for a frontier-scale model.

Introduction

Pi integration

Benefits

Why use Pi with Privatemode

Introduction

Use Pi for AI-assisted coding without exposing your source code

Bring-your-own-model coding in the terminal

Pi is a minimal, open-source agent harness that runs in your terminal and connects to any OpenAI- or Anthropic-compatible provider. It has become a favorite in the local-model community: developers running Ollama, LM Studio, or vLLM who want their code to stay well protected on their own hardware.

Privatemode gives you frontier models without giving up privacy

Privatemode exposes an OpenAI-compatible API backed by large open models running inside confidential computing environments. Add it as a provider in Pi and your prompts, code, and AI responses are encrypted end-to-end. The same privacy you expect from a local model, but with models far too large for a local setup.

Hardware-enforced, not just policy

The Privatemode proxy runs locally on your machine and encrypts all data before it leaves. On the server side, inference runs inside hardware-isolated confidential computing environments (AMD SEV / Intel TDX together with Nvidia Confidential Computing). The proxy verifies server integrity through remote attestation before every session. Your code is never stored and never used for model training.

Benefits

Why use Privatemode AI with Pi?

Privacy that scales past your local GPU

The local-model community reached for Pi to keep code on their own hardware. Privatemode extends that same guarantee to models that won’t fit locally. You get bigger, faster models without sending your source code to a cloud provider.

Drop-in provider, no workflow changes

Pi already supports custom providers through ~/.pi/agent/models.json.

Point it at the Privatemode proxy with the openai-completions API and keep the Pi workflow you know.

Open and verifiable on both ends

Pi is open source, and so is the Privatemode proxy and server, with reproducible builds and remote attestation before every session. You can verify exactly what runs on your machine and inside the enclave.

How Privatemode works

How to get started

Set up Pi to use Privatemode

Five steps take an existing Pi setup from cloud or local models to fully encrypted inference through Privatemode.

1. Install Pi

Install the Pi coding agent by following the official quickstart guide.

2. Get a Privatemode API key

Create a Privatemode account and generate an API key. You’ll pass it to the proxy in the next step.

3. Start the Privatemode proxy

Run the local Privatemode proxy with your API key. It encrypts every request before it leaves your machine and serves an OpenAI-compatible endpoint at http://localhost:8080/v1. For details visit the documentation.

4. Add Privatemode to your Pi models.json

Adjust the provider block in ~/.pi/agent/models.json and point it to the privatemode proxy. Pi reloads the file whenever you open /model, so there’s no need to restart your session.

5. Start coding with Pi

Start pi in your project, run /model, and choose kimi-latest or gpt-oss-120b. Every message is now encrypted end-to-end.

FAQ

Frequently asked questions about Pi with Privatemode

Privatemode offers a range of models running inside confidential computing environments with full encryption. See the model overview.