MCP.so

Regulated Ai Compliance

Created By
Uchit Vyas15 days ago
EU AI Act · APRA · NIST AI RMF · ISO 42001 · AU AI Safety — 6 tools, 53 resources, 5 prompts. Grounded compliance citations for any MCP client.
# compliance
# eu-ai-act
OverviewContentToolsComments
Overview

mcp-regulated-ai-compliance

A Model Context Protocol server exposing the regulated-industry AI compliance knowledge from hellouchit.com as tools, resources, and prompts callable from any MCP-compatible AI client — Claude Desktop, Cursor, Zed, Windsurf, OpenAI ChatGPT, Continue, Cline, and ~40 other clients.

Free + open-source (Apache 2.0, dataset CC BY 4.0). Built by Uchit Vyas.

Disclaimer: This is a personal, open-source, non-commercial project. Views are my own. It is not affiliated with, endorsed by, or representative of my employer.

Why this exists

The OpenAI GPT Store hosts the EU AI Act and AU AI Safety Standard coaches as ChatGPT-only assets. The Claude Project equivalents are private to each user's Claude Pro account (no public sharing). Neither reaches the practitioners who work primarily inside Cursor, Zed, Continue, Cline, or the Claude API directly.

An MCP server is the only Claude-side asset that is genuinely shareable + multi-client. It surfaces the same dataset, anti-patterns, decision trees, and classification logic — but as tools any AI agent in any compatible client can call. One published server → 40+ client surfaces → the practitioner who never opens ChatGPT or claude.ai still ends up citing your work.

What's in this folder

mcp-regulated-ai-compliance/
├── README.md                          ← you are here
├── scope/                             ← the design docs (read FIRST)
│   ├── 00-product-brief.md            What this is + who it's for
│   ├── 01-architecture.md             System design + transport choices
│   ├── 02-tools-spec.md               The 10 tools the server exposes
│   ├── 03-resources-spec.md           The resources + prompts
│   ├── 04-distribution-strategy.md    Where to list + how to get installs
│   └── 05-build-roadmap.md            v0.1 → v1.0 in 4 phases
├── src/
│   ├── index.ts                       ← MCP server entry point (working stub)
│   ├── tools/                         ← one file per tool
│   │   └── lookup-control.ts          ← FULLY IMPLEMENTED as reference
│   ├── resources/                     ← one file per resource type
│   ├── prompts/                       ← pre-built prompt templates
│   ├── data/                          ← embedded knowledge (dataset, anti-patterns, playbooks)
│   │   ├── dataset.json               ← 56 controls × 28 regulations × 261 tools
│   │   ├── dataset.csv                ← same data, CSV format
│   │   ├── anti-patterns.md           ← 15 named failure modes
│   │   └── playbooks/                 ← 90-day playbooks
│   └── lib/
├── docs/
│   └── install/                       ← per-client install guides
├── examples/                          ← sample conversations / use-cases
├── tests/
├── package.json                       ← npm config (working)
├── tsconfig.json                      ← TypeScript config
├── LICENSE                            ← Apache 2.0 (code) + CC BY 4.0 (dataset)
├── .gitignore
└── .github/workflows/                 ← CI: build + publish to npm

Status — v0.2.1 shipped 2026-05-29

v0.2.1 = data-source abstraction so the same codebase runs on Node (stdio, node:http) AND on Cloudflare Workers / Deno Deploy / Vercel Edge. See worker/ for the Cloudflare scaffold.

CI npm version npm downloads License: Apache 2.0 Provenance MCP Registry Glama MCP score smithery badge

PhaseStatus
Phase 0 — Scope + skeleton✅ done
Phase 1 — Working server + reference tool✅ done
Phase 2 — 6 core tools✅ done
Phase 3 — 4 resource providers + 5 prompts✅ done
Phase 4 — npm publish + directory submissions✅ done
Phase 5 — HTTP transport + 4 playbooks + parserdone (v0.2.0)

v0.2.0 ships with

  • Streamable HTTP transportnpx mcp-regulated-ai-compliance-http boots a Node HTTP server on port 3000 (configurable) at /mcp. Unlocks Smithery, ChatGPT MCP directory, browser-based clients, and any platform that prefers HTTP over stdio. Stateless by default; set MCP_STATEFUL=true for per-session UUIDs.
  • All 4 playbooks fully structured — markdown parser extracts 12-week / 12-gate / phase / anti-pattern / source-URL data:
    • eu-ai-act-12-weeks — Piloting → Articles 9-15 ready by 2 Aug 2026
    • cisa-attestation-90-days — Federal contractor SSDF + Common Form 3201-NEW
    • cloud-cost-aware-to-controlled — FinOps Aware → Controlled (AWS / Azure / GCP)
    • vault-theatre-to-workload-identity — Long-lived creds → OIDC federation
  • 6 toolslookup_control · get_anti_pattern · crosswalk · walk_playbook · classify_use_case · list_regulations
  • 4 resource providers (56 URIs) — full dataset (+ by-regulation + by-category), 15 anti-patterns (bundled + per-slug), 4 playbooks, the 20-entry crosswalk matrix
  • 5 promptseu-ai-act-classify · au-ai-safety-walkthrough · crosswalk-frameworks · playbook-week · anti-pattern-diagnostic
  • Embedded knowledge — 56 controls × 28 regulations × 261 tools, 15 named anti-patterns, 4 × 12-week playbooks, 20 crosswalks
  • CI + tests — GitHub Actions on Node 22 + 24, 24/24 unit tests, automated npm publish --provenance on version tag (sigstore-anchored)

Where you can find it

ChannelStatus
npm@hellouchit/mcp-regulated-ai-compliance@0.2.0
Official MCP Registryio.github.uchit/mcp-regulated-ai-compliance@0.2.1 (latest)
Glamaverified
mcp.so⏳ awaiting review
PulseMCP⏳ auto-pulls from Official Registry (~24h)
awesome-mcp-servers (Security)PR #7084
Hosted endpointhttps://mcp.hellouchit.com/mcp (Cloudflare Worker · stateless)
Smitherysmithery.ai/server/@uchit86/regulated-ai-compliance

See scope/05-build-roadmap.md for the v0.2+ roadmap.

Quick install

For Claude Desktop:

# In your Claude Desktop config file (~/Library/Application Support/Claude/claude_desktop_config.json):
{
  "mcpServers": {
    "regulated-ai-compliance": {
      "command": "npx",
      "args": ["-y", "@hellouchit/mcp-regulated-ai-compliance"]
    }
  }
}

Then restart Claude Desktop → you'll see new tools available: lookup_control, classify_use_case, get_anti_pattern, etc.

Regulation slugs (use these exact values in tool arguments)

eu_ai_act · cps234 · cps230 · soci · ai_safety_au · privacy_au · e8 · irap · dora · nis2 · gdpr · circia · hipaa · fda_samd · cisa_ssa · ssdf · ai_rmf · sp80053 · iso42001 · iso27001 · slsa · owasp_llm · atlas · bcbs239 · pci · iec62443 · iso13485 · iec62304

Local development

npm install
npm run build
npm run dev          # runs server in dev mode (stdio transport)
npm test             # runs the test suite

See scope/01-architecture.md for the dev-loop details.

License

Code: Apache 2.0. Patent grant included. Dataset (regulations × controls × tooling, anti-patterns, playbooks, crosswalks): CC BY 4.0 — attribution to hellouchit.com required.

This is a personal, non-commercial project shared for the community. Contributions and issues are welcome on GitHub.

Try in Playground

Server Config

{
  "mcpServers": {
    "regulated-ai-compliance": {
      "command": "npx",
      "args": [
        "-y",
        "@hellouchit/mcp-regulated-ai-compliance"
      ]
    }
  }
}
Project Info
Created At
15 days ago
Updated At
14 hours ago
Author Name
Uchit Vyas
Star
-
Language
-
License
-
Category
Tags
compliance
eu-ai-act
Homepage
https://github.com/uchit/mcp-regulated-ai-compliance

Recommend Servers

View All
MCP Server with 10 Tools
@Ritika Bhati

A powerful MCP Server with 10 tools - weather, web search, currency converter, news, translator, QR code, image generator, IP info, Hacker News, URL fetcher. All free APIs!

3 hours ago
Linkpulse
@Joost Boer

Know what every affiliate link actually earns, and fix what's bleeding revenue. See revenue per article, catch dead links before they cost you, and ask it anything in plain English. Works on any site.

a day ago
Brave Search
@modelcontextprotocol

Web and local search using Brave's Search API

a year ago
Serper MCP Server
@garymengcom

A Serper MCP Server

Python
a year ago
Chess.com Mcp (interactive Views)
@nbialk

Chess.com player, game, and daily-puzzle tools where each tool ships its own interactive React view — board replays and a playable puzzle widget, not just text. Built with Skybridge for ChatGPT & Claude.

4 hours ago
Linkedai
@DatTheMaster

LinkedIn for AI agents. Agents register structured profiles, list projects, evaluate fit via FitReports, and propose connections — all through a hosted MCP server. 27 tools, zero install. Handlers (humans) approve connections. Built on Cloudflare Workers + KV.

17 hours ago
Redis
@modelcontextprotocol

A Model Context Protocol server that provides access to Redis databases. This server enables LLMs to interact with Redis key-value stores through a set of standardized tools.

a year ago
Mailtrap Email Sending MCP
@Mailtrap

An MCP server that provides a tool for sending transactional emails via Mailtrap

a year ago
Trainzilla Mcp

2 hours ago
Vectoralix Healthy Food
@vectoralix

Healthy Food MCP is a public MCP server that gives AI agents structured access to healthy recipe content. It lets Claude, Cursor, Gemini, and other MCP-compatible clients browse recipes by calorie category, diet group, meal type, macros, and keywords. The server includes tools for listing recipe categories, exploring diet and meal groups, browsing available recipe files, fetching full structured recipes, and searching the recipe collection. It is designed as a practical example of how MCP can be used beyond developer tools — turning curated food knowledge into something AI agents can query, understand, and use in real conversations. Healthy Food MCP is powered by Vectoralix and includes connection metadata, plugin manifests, reusable skills, documentation, assets, and validation scripts for easier installation and testing.

a day ago
UniversalBench: run code, web, databases, and any LLM from your AI, safely
@UniversalBench

An MCP execution platform that gives any AI real infrastructure to act. Through three tools it can run code and shell commands, install packages, run tasks in parallel, search the web, make HTTP calls, read write and query databases, call any LLM, commit to GitHub, take screenshots, handle files, and keep persistent memory across sessions, all with safety checks before results reach the model. AI never ships broken code, never burns your wallet, and cannot reach your internal network. Up to 96.5 percent fewer tokens than doing the work in chat. Works with Claude, ChatGPT, Gemini, and any MCP-compatible AI.

5 hours ago
Memara Memory
@Memara

Persistent memory API and MCP server for AI agents and workflows. Store, search, and retrieve memories with semantic search across Claude, ChatGPT, n8n, Zapier, Dify, and more. Built for developers who need reliable, long-term context for their AI applications.

21 hours ago
Bucket Feature Flags MCP Server
@bucketco

Flag features directly from chat in your code editor, including VS Code, Cursor, Windsurf, Claude Code—any IDE with MCP support.

a year ago
Aws Kb Retrieval Server
@modelcontextprotocol

An MCP server implementation for retrieving information from the AWS Knowledge Base using the Bedrock Agent Runtime.

a year ago
MiniMax MCP
@MiniMax-AI

Official MiniMax Model Context Protocol (MCP) server that enables interaction with powerful Text to Speech, image generation and video generation APIs.

Python
a year ago
Memory
@modelcontextprotocol

a year ago
Measurement Uncertainty (gum / Iso 17025)
@kyb8801

The first Model Context Protocol server for GUM-compliant measurement uncertainty analysis. Built for ISO/IEC 17025 calibration labs, ISO 10012:2026 measurement management systems, and KOLAS / A2LA / UKAS accredited testing. Exposes 10 tools: Type A/B uncertainty, combined standard uncertainty, Welch-Satterthwaite effective DoF, expanded uncertainty with coverage factor k, Monte Carlo propagation (JCGM 101:2008), and pre-built KOLAS-ready uncertainty budget templates (CMM, CD-SEM, DMM, thermocouple, balance, OCD). Standards-referenceable to JCGM 100:2008 (GUM). Works in Claude Desktop, Cursor, Windsurf, Cline. Hosted endpoint, no install required.

9 hours ago
Erabi
@HMAKT99

ERABI is the open, cryptographically auditable intent exchange for AI agents: register an identity in one command, discover providers ranked by reputation (never by payment), fire intents, and build verifiable reputation and earnings from dual-signed outcomes on a public hash-chained ledger. Zero-config — `npx -y erabi-mcp` joins the live public network with no accounts, no API keys. Six tools: register, discover, intent, report_outcome, my_reputation, my_earnings. Live explorer: https://erabi-explorer.vercel.app

a day ago
Conformi Eu Legal Search
@conformi-eu

EU legal research for AI agents: semantic + full-text search over ~48,000 EUR-Lex acts including consolidated versions, daily drift monitoring, answers with verifiable CELEX citations. German, English, French. Remote MCP server at https://conformi.eu/api/mcp — free tier, no key required for article and timeline tools.

a day ago
Disclos — EU AI Act
@Disclos

Remote MCP server for EU AI Act compliance. Add one URL to Claude, Cursor, or Windsurf — no install — and your AI classifies any AI system against Regulation (EU) 2024/1689, returns the three-wave timeline, explains risk tiers, and crosswalks to ISO 42001, NIST AI RMF, and GDPR.

6 hours ago
Riley Craig X402 Agent Store
@rccola990-cloud

Remote MCP server with 10 tools: live brand AI-visibility audits (score 0-100, who AI recommends instead), AI Visibility Index dataset (25 brands, 5 industries), trucking profit & cost-per-mile calculators, DeFi yields, crypto prices, US Treasury rates, and macro risk-spread. Free catalog tool; paid tools are machine-payable per call via x402 (USDC on Base) — no API keys or subscriptions. Endpoint: https://x402-agent-store.rileycraig14.workers.dev/mcp

a day ago
Almega
@almega-ai

Give your AI agents a wallet they can't abuse. Almega is an MCP server that puts a control layer in front of every payment: per-agent spending limits, allow-listed categories, 1-click human approval on sensitive transactions, and a full audit ledger. Two backends ship in one file — `memory` (zero-config, 30-second demo) and `stripe` (real Stripe Issuing test-mode virtual cards, no real money). 7 tools, stdio transport, Python 3.10+, MIT.

19 hours ago
Primerfp Scout
@PrimeRFP

Remote govcon intelligence MCP for US federal + SLED contracting: semantic opportunity search, USASpending awards, recompete pipeline, congressional policy intel, GAO protests, capture/teaming, and 32 read-only tools. Streamable HTTP at https://mcp.primerfp.com/mcp.

2 days ago
GBOX Android MCP
@babelcloud

GBOX provides environments for AI Agents to operate computer and mobile devices. Mobile Scenario: Your agents can use GBOX to develop/test android apps, or run apps on the Android to complete various tasks(mobile automation). Desktop Scenario: Your agents can use GBOX to operate desktop apps such as browser, terminal, VSCode, etc(desktop automation). MCP: You can also plug GBOX MCP to any Agent you like, such as Cursor, Claude Code. These agents will instantly get the ability to operate computer and mobile devices.

10 months ago
Fetch
@test

Web content fetching and conversion for efficient LLM usage

8 months ago
Rightblogger
@RightBlogger

RightBlogger MCP gives any AI agent direct access to SEO keyword research, Google Search Console performance, and your WordPress/Ghost/Webflow CMS — research keywords, read posts, and pull GSC data straight from Claude, Cursor, or any MCP client.

2 days ago
MCP Server for Milvus
@zilliztech

The Milvus MCP server enables AI applications to interact with Milvus vector databases using natural language commands. It allows AI models to perform vector searches, manage collections, and retrieve data without writing custom database queries. This integration facilitates seamless access to vector data, enhancing the capabilities of AI tools like Claude Desktop and Cursor.

a year ago
Agentline
@Sameer

AgentLine is the telephony layer for AI agents. It gives your agent a real phone number making outbound calls, receiving inbound calls, and handling SMS all through a single API. No telecom infrastructure, no WebSocket wrangling, no separate STT/TTS providers to configure.

a day ago
Deckextract

Download DocSend and Papermark links as files. Converts decks to PDF or PPTX and data rooms to a ZIP of PDFs, including email-gated and passcode-protected links.

a day ago
Puppeteer
@modelcontextprotocol

Browser automation and web scraping

a year ago