trickle-cli
Zero-code runtime observability for JS/Python + AI agent debugging. Traces LangChain, CrewAI, OpenAI, Anthropic, Gemini. Eval, security, compliance, cost tracking. Free, local-first.
Found 2113 results for compliance
Zero-code runtime observability for JS/Python + AI agent debugging. Traces LangChain, CrewAI, OpenAI, Anthropic, Gemini. Eval, security, compliance, cost tracking. Free, local-first.
Ory plugin for OpenClaw: scaffolding skills, a local Ory instance, and authentication, authorization, and audit for every tool call
Collection of useful platform constructs for modern applications deployed with AWS CDK
Nigeria Data Protection Toolkit — enterprise-grade compliance components for the Nigeria Data Protection Act (NDPA) 2023
Chainlink Automated Compliance Engine (ACE) Contracts
Ory plugin for Codex: scaffolding skills, a local Ory instance, and authentication, authorization, and audit for every tool call
Enterprise security and compliance module for Wundr platform
Infrastructure as Code security and compliance evaluation tool (WASI build). Fork of fugue/regula with security patches.
Specora Platform SDK for Node.js - AI governance and policy enforcement
Client-side consent management package using the Secure API Gateway
PII cloaking and tamper-evident audit logs for LLM API calls. EU AI Act Article 12 compliance.
AGLedger™ SDK: accountability and audit infrastructure for agentic systems.
n8n nodes for integrating with the Probo compliance platform API
Fail-closed Cedar policy gate + Ed25519 signed receipts for AI agent tool calls. Denies on any policy error, proves the gate is live with a startup self-test, and turns every decision into a local searchable record you own. The open gate behind Legate by
Ory plugin for OpenCode: scaffolding skills, a local Ory instance, and authentication, authorization, and audit for every tool call
Kognai sovereign orchestrator — interactive REPL (kognai) + one-shot CLI (kognai-build). Triple-supervisor + compliance review + TICKET-135 optimization profiles + TICKET-203/207 workspace integration.
n8n community node for Signatrust — generate, verify, and retrieve cryptographically signed AI Decision Receipts (Ed25519) for autonomous AI agents. Cloud and self-hosted enterprise.
Enterprise AI agent governance framework. Hook-based enforcement, compliance packs (SOC 2, HIPAA, GDPR, PCI DSS, DORA, EU AI Act, ISO 27001), audit trails, multi-LLM adapter architecture (Claude production today; additional providers on roadmap).
Ory extension for Gemini CLI: scaffolding skills, a local Ory instance, and authentication, authorization, and audit for every tool call
Common utilities for STATUS compliance Node-RED packages
Grepture proxy SDK — drop-in fetch wrapper for AI API governance
Open-source security firewall for MCP (Model Context Protocol) servers. Scan, monitor, and enforce policies on AI agent tool calls.
Bootstrap installer for the ControlKeel native CLI - a control plane for agent-generated software delivery.
Append-only audit + cost-tracking log for VentureKit applications
A tool for managing compliance as code in your GitHub repositories.
Pa11y is your automated accessibility testing pal
Test whether your repo AI instructions actually survive execution.
Machine-readable regulatory database mapping WCAG to EN 301 549 and national accessibility law across 17 jurisdictions, with enforcement-body lookups.
Validate tax identification numbers (TIN, VAT, EIN, GST, ITIN, SSN) for 76+ countries. Regex, checksum, and online VIES/government verification. TypeScript-first with LLM tool definitions.
RCF CLI — Active Integrity & Protection Framework (TypeScript Edition)
Screen names against the consolidated OFAC, EU, UK, and UN sanctions lists and resolve legal entities against GLEIF, fuzzy-matched offline over a local SQLite + FTS5 mirror. A screening aid, not a compliance determination.
validate compliance of a javascript module against a test suite module
Audit-focused helpers for Autotel (force-keep + structured audit instrumentation)
bouncer — static compliance-controls checker. Verifies the controls a regulation requires actually exist in your code (UK Online Safety Act, ICO Children's Code), as deterministic rule packs. No LLM required.
TypeScript client SDK for MeshFlow — Zero Trust AI agents, HIPAA/SOX/GDPR compliance, tamper-evident audit chain, wire-level tool call enforcement
WasmAgent Compliance Engine — TaskSpec-driven verification, local repair, and evidence export for LLM agent runs.
EU AI Act Article 50 transparency compliance toolkit — scan your code, audit your site, generate the fix before August 2, 2026.
Compliance checks for apps published on proappstore.online — used by the CLI for local feedback and by CI for gating.
Ory plugin for Claude Code: scaffolding skills, a local Ory instance, and authentication, authorization, and audit for every tool call
Bylaw ALCV runtime enforcement SDK for AI agent actions with policy-gated clearance, A-JWT authorization, and audit evidence
AWS Lambda handler for Pipeline Builder that ingests CodePipeline state-change events from EventBridge and forwards normalized payloads to the reporting service.
Observability framework for Node.js powered by a native Rust engine: declarative correlation, PII masking, per-level field control and retention enforced on every log, serialized + masked + sanitized in one native pass (transparent JS fallback). Failsafe
CLI tool and MCP server that tests MCP servers for spec compliance
Audit log plugin for AdminForth with CRUD diffs, actor tracking, and activity history
Collection of STATUS project components used for compliance checks
A focus trap library that pierces that shadow dom. So you can use it with native web components. Deep Focus Trap is a lightweight library written in vanilla js with only one dependency (that is tree-shakable if not in use).
Open-source HIPAA compliance scanner for healthcare code. 131 rules, 5 HIPAA categories. CLI + CI/CD + VS Code.
Certus CLI for compliance enforcement at the merge gate with 5 scanners, 18 blueprints, and signed evidence workflows.
A2A TrustGate CLI — Safety, compliance, and governance for AI agents. Screen every action before it executes.
ESLint and governance tooling package for ZinTrust.
[](https://www.npmjs.com/package/dpdp-erasure-cli)
TypeScript SDK for the AtlaSent authorization API
EvalGuard core — LLM evaluation, security testing, firewall, gateway, and monitoring engine. Runtime dep of @evalguard/sdk and @evalguard/cli.
ATHENA SDK for JavaScript and TypeScript
Bun-native full-stack framework with generative AI, fintech compliance, and real-time performance - built for Tanzanian digital economy
MCP server for the Nozom Cybersecurity GRC Platform — exposes GRC API endpoints as Model Context Protocol tools. R-EXTSPEC: @modelcontextprotocol/sdk v1.29.0 — https://modelcontextprotocol.io/specification/latest
ido4 MCP server — context intelligence, task distribution, and governance for AI-hybrid software development in Claude Code
MVA (Model-View-Agent) framework for the Model Context Protocol. Structured perception packages with Presenters, cognitive guardrails, self-healing errors, action consolidation, and tRPC-style type safety — so AI agents perceive and act on your data deter
Audit logging and event trail for HazelJS applications
Official ACF® Model Context Protocol server — Agentic Commerce Framework governance copilot for AI assistants.
Stop AI from breaking code you told it not to touch. Enforces .cursorrules, CLAUDE.md, and AGENTS.md — not just suggests. Zero-config: npx speclock protect reads your existing AI rule files, extracts constraints, installs pre-commit hooks, and makes your
Agent Evidence Protocol — runtime action evidence and run provenance types for WasmAgent
Security-hardened MCP server for NotebookLM API with compliance-ready architecture (GDPR, SOC2, CSSF controls implemented)
A React Native package for regulatory compliance.
Reference implementation of the Ironclad standard — multi-agent dev harness for Claude Code.
Pre-execution scope enforcement for AI agent workflows. Validates workflow definitions against role-based authorization scopes (SOC1, SOC2, Production Readiness) before they run, with cryptographically signed attestation tokens for audit.
MVA (Model-View-Agent) framework for the Model Context Protocol. Structured perception packages with Presenters, cognitive guardrails, self-healing errors, action consolidation, and tRPC-style type safety — so AI agents perceive and act on your data deter
This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.
WCAG and EN 301 549 accessibility test engine that maps failures to national law and enforcement bodies across 17 jurisdictions. CLI and CI reporting.
Prove your homelab matches your intent — YAML network specs, live VLAN/VPN audits, drift detection, Omada/OPNsense import. Cross-platform CLI with MCP for AI agents.
OFAC, sanctions, PEP & KYB screening for Node.js — screen names, companies & crypto wallets against OFAC SDN, EU, UK, UN + 100+ watchlists; EU VAT (VIES) validation; EU consolidated (FSF) sanctions screen; OIG-LEIE healthcare-exclusion + fuzzy SDN matchin
Mima AI Governance SDK for TypeScript and Node.js
Privacy on the edge — drop-in AI proxy with automatic PII routing
Inline PII, credential, and regulated-data classifier for AI agent I/O. Dual-layer: deterministic regex + optional semantic Guard. Library + CLI.
n8n community node for TracePass — automate EU Digital Product Passport workflows: products, passports, EPCIS supply-chain events.
Compliance validation - security validation (secrets, headers, crypto) for regulated industries
SWT3 AI Witness SDK: cryptographic attestation for AI inference. 103 procedures, 52 namespaces, 7 languages, 18 profiles. EU AI Act, NIST AI RMF, CMMC, SR 11-7.
In-memory MVA lifecycle emulator for Vurb. Runs the full pipeline (Zod Input → Middlewares → Handler → Egress Firewall) without network transport. Returns structured MvaTestResult objects — zero coupling to Jest/Vitest.
Multi-framework policy-as-code compliance scanner for infrastructure and application code.
Apache-2.0 attestation and audit substrate for AI agent evidence chains.
KYB API for Latin American legal entities. 20+ public registry sources for Peru — SUNAT, OSCE, OECE and more. Offline MPHF search, full OCDS data, updated daily.
Official DriftGard Node.js SDK — evaluate LLM interactions against your compliance policy
Streaming PII redaction for AI applications. The hiding place for sensitive data flowing into LLMs. Secrets pack, SSE-aware streaming, audit events, drop-in middlewares for Express / fetch / OpenAI / Anthropic.
MCP server exposing Leo — the deterministic EU AI Act (Regulation (EU) 2024/1689) classifier — as tools for AI agents. Every answer cites the law verbatim.
React SDK for MetaKYC due diligence workflows with configurable API endpoints and comprehensive step coverage
The authorization and audit layer for AI agents
🚀 Comprehensive blockchain integration suite with multi-chain cryptocurrency support, NFT marketplace, smart contracts, DeFi protocols, and enterprise-grade wallet management
MCP server — AI governance evidence for EU AI Act, SOC 2, ISO 42001, and NIST AI RMF
Lightweight SBOM/license checker with allowlist, exceptions, and upstream chains.
Compliance report generator + tamper-evident audit log for @datacules/agent-identity — SOC 2, GDPR, HIPAA reports, SHA-256 chain verification CLI
A Babel plugin thad adds configurable data-ot-ignore and className='optanon-category-C0001' to all React elements which have src attribute
Composable AI safety pipeline framework with industry compliance packs (HIPAA, SOX, GDPR, FedRAMP)
OpsContext for AI Agents — read-only fleet visibility (PM2/nginx/Docker/git/cron) + tamper-evident audit log + policy-as-code hooks. The ops + compliance layer Claude Code can't grow natively.
MCP server that lets Claude, Cursor, LangGraph, and other agents record AI decisions to a tamper-evident ledger.
Shulam SDK — compliance screening, trust scoring, and x402 payment facilitation
ESLint rules ensuring mutations are audited, audit writes are fire-and-forget, and audit metadata never carries PII.
Nice2Dev UI Enterprise - Compliance & enterprise-grade React components: DataExportCenter, AuditTrail, ContractEditor, GDPRConsent, GlobalSearch, InvoiceDesigner, AccessLog
Deterministic finish-line gates for AI coding agents. A model-independent evaluator that blocks commit/publish until your definition-of-done passes. Works in opencode, Claude Code, pre-commit and CI.
Cordova plugin for privacy-preserving age assurance using the Google Play Age Signals API (Android/Kotlin) and the Apple Declared Age Range API (iOS/Swift). Exposes a unified, Promise-based JavaScript API with TypeScript definitions.
n8n community node for Mediavox: mediaAPI (48+ endpoints — sanctions, threats, data quality, OCR, KYC), Turing AI (chat with RAG), DocumentPower (NER, semantic search), HealthPower (clinical data: RIPS, appointments, adherence, authorization), Sales Copil
African AI governance compliance — enforcement engine and sector packs for NDPA, CBN, NHA, NAICOM, KDPA, POPIA and 15+ African regulatory frameworks
TypeScript/JavaScript SDK for Lians — financial-grade AI memory with bitemporal model, SEC 17a-4 audit chain, and GDPR crypto-shred
Official TypeScript/JavaScript SDK for PyAI — speech-to-text (Hear), text-to-speech (Speak), realtime voice agents (Omni), and call compliance (Trace).
Generate HTML with license text from NPM/Yarn dependencies
Czech & EU due diligence in one call — company facts, insolvency (ISIR), EU+OFAC sanctions, VAT reliability, risk scoring (0-100), and statutory chain. EU coverage via GLEIF/LEI. Official state registries only, no Cribis/Bisnode reselling.
Attesto TypeScript SDK - log verifiable AI events to Attesto with production-safe defaults.
TrustLint is a local compliance validation tool for your development workflow. Instantly check your code for compliance issues, integrate with CI/CD, and stay ahead of regulatory risks.
Dependency license scanner across npm, Cargo, Go, Python, Ruby, PHP, Java, Dart, and C/C++ with commercial risk reporting
Accessibility tool for source files — scans JSX, Vue, Angular, and HTML without a running server. Exact line numbers, watch mode, CI gates, AI fix prompts. WCAG 2.1 AA, WCAG 2.2 AA, and WCAG AAA (automated rules) with optional RTL support.
Official TypeScript SDK for the COHESION Judgment Independence Score API. Real-time oversight scoring for AI-assisted human decisions, per EU AI Act Article 14, Colorado SB 205, and NYC Local Law 144.
AgenticMail Enterprise — cloud-hosted AI agent identity, email, auth & compliance for organizations
SOTA AI agent security SDK. F1 1.000 on BIPIA/HackAPrompt/MCPTox/Multilingual benchmarks. 400+ exports, 100+ modules. Zero dependencies, runs locally.
Independently verify AxioRank audit receipts, agent-commerce conformance seals, agent reputation credentials, and coding-session seals offline. Merkle inclusion proofs, Ed25519 signed tree heads, delegation provenance, human-approval signatures, witness c
EU AI Act compliance: scan, attest, document — from your IDE. Source-available, MCP-native, AI-assisted.
EU AI Act Article 50 cryptographic transparency receipts, anchored to Bitcoin. The TypeScript SDK with the Stripe-style attach() pattern.
A bundler-agnostic plugin to generate third-party license notices for bundled packages. Supports webpack 5, Rspack, and Vite.
Audit trail module for tracking and querying system events
Get list of licenses for third-party packages using in Next.js.
MCP server for InsumerAPI — condition-based access infrastructure. Send a wallet and conditions, get a signed boolean across 37 chains. 27 tools: attestation, wallet trust profiles (49 checks across 27 chains incl. Solana, XRPL, Bitcoin, Tron, Stellar, Su
Sanctions screening for KYC/AML — check Czech companies and individuals against EU Financial Sanctions (FSF) and US OFAC SDN lists. Per-entity and per-statutory-member checks. Official consolidated lists, updated from source.
MCP server for the complete 49 CFR 172.101 Hazardous Materials Table: hazmat lookup, special-provision decoding, parsing, and basic compliance checks — every field cited to a pinned eCFR revision.
Governance receipts for AI agents — automated compliance scoring against EU AI Act Art. 12, Colorado AI Act (SB 24-205), and NIST AI RMF. 60-second scan, free local check included, more accurate with every run.
Governance for AI agents: a deny-by-default policy layer for Claude Code and agent/skill builds. Every tool call is authorized, contained, and audited. Apache-2.0.
A lightweight, security-first logging utility with automatic data redaction for Node.js applications - the first logging library with built-in PII protection.
Access EPA environmental data — facility compliance (ECHO), toxic releases (TRI), Superfund sites, drinking water systems, and real-time air quality (AirNow) via MCP. STDIO or Streamable HTTP.
Dawnguard MCP Server - Cloud security insights and guardrail guidance for Azure and AWS architectures
ILAL Protocol CLI — compliant swaps and credential management for Uniswap v4
Government/compliance roles - conservative, by-the-book formatting
Interactive and scriptable CLI that generates a correct LICENSE file from the full SPDX catalog, syncs the chosen license into your package.json/composer.json, stamps source-file headers, and verifies everything stays in sync in CI.
Official TypeScript SDK for the Fola form-filling API — auto-fill USCIS, EOIR immigration court, DOL ETA/PERM, and US district court PDFs from typed JSON. 72 forms ship typed; pay-per-fill via API key.
Structured comparison of HDF evaluation results — tracks what changed, why, and by how much
A Strapi plugin that audits content blocks for compliance with category requirements. Specifically checks for blocks that don't have the 'kennisartikel' category assigned, helping maintain content standards across products.
gate — one ship/no-ship verdict from aiglare, bouncer, tieline & repoctx. The unified merge gate for the nugehs toolchain: run four deterministic checks, get one normalized verdict.
Zentity smart contracts, ABIs, deployments, and typed helpers
Terminal-based developer chat assistant. Permanent hard fork of gsd-pi with LangFlow flow triggers, a flow builder, and optional gateway routing for compliance environments.
GDPR-compliant cookie consent management for React with script blocking and Google Consent Mode V2
Language-agnostic linter for repository structure, file existence, filename conventions, and file content rules. This package downloads and wraps the platform-matched native alint binary.
Automatically add standardized git trailers to AI-assisted commits for compliance, audit trails, and attribution
n8n community node for Scorechain Risk Scoring API — analyse crypto addresses and transactions on 20+ blockchains
NoData Guard — continuous security scanner. Runs locally, reports only metadata. Your data never leaves your machine.
React SDK for MetaKYC due diligence workflows with configurable API endpoints and comprehensive step coverage
AWS CDK: A Real-Time S3 Protector
Driftgard CLI — governance-as-code for AI compliance
Verified UK sanctions screening for AI agents — official FCDO UK Sanctions List, not guesses.
Manifesto Governance - decorator runtime for legitimacy, approval, and governed execution
SAGE - Open-source governance runtime harness for agentic coding systems. Intercepts, evaluates, and audits developer prompts before code is written, and performs code security scans/fixes after AI code generation.
MergeGuide MCP server — AI-assisted code governance for Claude Code, Cursor & Copilot. Injects your security & compliance policy at generation time so AI writes compliant code by default.
Open-source GDPR, WCAG 2.2 & security compliance scanner. The ESLint of web compliance.
The SCADABLE setup wizard. Detects your framework and wires your always-current legal documents (privacy policy, terms of use) into any app, live from SCADABLE.
Open-source legal template filling CLI and library
MCP server exposing regulated-industry AI compliance knowledge (EU AI Act · APRA CPS 230/234 · NIST AI RMF · ISO 42001 · AU AI Safety Standard · SLSA · SSDF · OWASP LLM Top 10) as tools, resources, and prompts. Apache 2.0 (code) + CC BY 4.0 (dataset). By
Official AgeKey SDK for age verification integration
Official TypeScript SDK for Recalled — audit logs as a service for your product.
The only agent execution layer that enforces governance before consequences land. x402-native paid execution, financial control plane, immutable receipts, output verification, agent reputation, and memory continuity.
Deterministic governance infrastructure for immutable policy lineage, governed admissibility evaluation, replay-safe execution semantics, and independently verifiable policy enforcement.
Governance receipts for AI agents — financial analysis with forecasting, audit prep, and regulatory checks (SOX, GAAP, IFRS, AML), every output signed and receipted for EU AI Act, Colorado AI Act (SB 24-205), and NIST AI RMF audit trails.
CLI tool to check End-of-Life (EOL) status of code, infrastructure, containers, and AI models. Supports Docker, Terraform, AWS, Serverless, and more.
Official TypeScript SDK for Agent Action Firewall - AI agent security platform
Open-source toolkit to pass Google CASA Tier 2 security assessments without consulting-firm costs.
Production-grade NestJS encryption module for PII protection with AES-256-GCM and KMS
This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.
MCP bridge to LogicNodes: 8 deterministic on-chain service tools plus agent-marketplace discovery, payable per call in USDC via x402 on Base.
Heuristic release checks and smoke tests for Roblox projects via MCP
Runtime governance layer for generative AI agents. Works with any MCP-compatible client — Claude, GPT, Gemini, Cursor, or custom frameworks. MAI classification, forensic audit trails, human-in-the-loop gates, EU AI Act compliance, NIST/SOC 2/CMMC mapping.
ARCA (ex-AFIP) Constancia de Inscripción: the official, legally-citable fiscal document, including the PDF artifact, as a typed tool for AI agents on the Vercel AI SDK. Browser-backed: drives the public web form (no Clave Fiscal) behind a stable adapter c
Deterministic audit persistence infrastructure for immutable governance lineage, replay-safe execution history, provenance continuity, and independently verifiable governance evidence storage.
Manifesto Lineage - decorator runtime for seal-aware continuity, history, and restore
BigDataCorp API client for Node.js and browsers
AI-powered contract review, risk analysis, document generation, and compliance auditing with 12 skills and 5 parallel agents
Deterministic governance contract infrastructure for immutable schema continuity, typed admissibility semantics, cross-runtime compatibility, and independently verifiable governance interfaces.
Official OrigoID Model Context Protocol server. Exposes every OrigoID API endpoint as an MCP tool — works with Claude Code/Desktop, Cursor, Windsurf, ChatGPT Desktop, Codex CLI, Gemini, and any MCP-compatible client.
A React Native Native Module (Legacy Architecture) that provides access to store-level age signals, including Android Play Age Range and iOS Declared Age, to assist with state-level age verification compliance (e.g., Texas).
MCP server for Malaysian LHDN e-invoicing (MyInvois) compliance rules — scope, field rules, invoice validation, and change-diffs. Thin client over the public API; no database needed.
License rug-pull detection and dependency license compliance for open source projects
TypeScript client for G8R Agent Shield — wrap LLM and agent calls with policy enforcement, local-first redaction, and audit logging.
TypeScript/JavaScript security logging module for sending structured security logs to AWS SNS
MCP server for Regulatory Signals repo audits
FormaAI SDK for Node.js — AI agent governance. Capture · Approve · Kill · Prove · Redact
TypeScript SEC EDGAR client for filing discovery and contract exhibit acquisition. SEC-compliant rate limiting, retry, and deterministic normalization.
Compliance checks for games published on freegamestore.online — used by the CLI for local feedback and by CI for gating.
Occasio — cryptographically verifiable behavioral attestation for AI coding agents. Tool-call interception + policy enforcement + tamper-evident audit chain + Sigstore-signed in-toto attestations + windowed EDR detection. Same engine for Claude Code and M
Independent deterministic verification infrastructure for replay-safe governance execution, runtime provenance continuity, cryptographic attestations, release lineage validation, and portable trust reconstruction.
Argentine Boletín Oficial as a structured firehose for AI agents on the Vercel AI SDK. Search, filter by sección, match by CUIT or keyword, and turn the daily JSON dump into typed records. The 'Vercel for legal monitoring' missing from the AR ecosystem.
CLI scanner for DEPTIC.io — scan local projects for vulnerabilities and NTIA compliance
Multi-framework compliance orchestrator (OSS-license, OWASP ASVS, ISO 27001, SOC 2, GDPR) for repo and CI/CD.
CLI tool to scan websites for GDPR cookie consent compliance
RGAA v4.1.2 accessibility compliance analyzer for NextJS projects
AI claim verification CLI. Paste what an AI told you — Faultline extracts every claim, verifies against live sources, scores the risk, and generates audit evidence. Provider-agnostic: Gemini, OpenAI, Claude, Perplexity.
Vendor-neutral control plane client for AI agents — capture and govern agent activity. Node/TypeScript SDK.
RFC 2119 keyword normalizer extension for the Pi coding agent.
React SDK for MetaKYC due diligence workflows with configurable API endpoints and comprehensive step coverage
Pure, dependency-free catalog of AWS cost, security & governance rules. Feed it discovered resources, get findings back.
Drop-in replacements for OpenAI, Anthropic, Google, xAI, and Meta SDKs with built-in AI governance. One-line import change adds permit-first policy enforcement, budget controls, audit trails, and usage reporting to every AI call.
Linter and risk screener for EU Digital Product Passports. Validates battery passport payloads against DIN DKE SPEC 99100 and screens raw material origins against open due-diligence risk data. By Pangea Intelligence.
MCP server for U.S. public-records data: business registration (KYB) across 25 states, new business filings, federal watchlist screening (OFAC/BIS/State Dept), and federal awards (USAspending). Powered by the Whetstone actors on Apify.
Policy-enforced AI agent runtime for TrustOps. Ed25519-signed audit logs and PreToolUse policy hooks for Claude Code.
Static scanner for EU AI Act Article 9 & 12 compliance gaps in Terraform and CloudFormation - checks AWS Bedrock guardrails, logging, retention, and traceability against EU AI Act, NIST AI RMF, and ISO/IEC 42001
Cryptographic audit trail for AI agents — sign, chain-verify and export every decision. GDPR / HIPAA / EU AI Act ready. Free & open source.
CLI for AgentTrail audit receipt verification
Deterministic governance infrastructure for enforceable decisions requiring independently verifiable trust.
Governance receipts for AI agents — AI code review for security, quality, and performance that learns your team's patterns, with every review signed and receipted for EU AI Act, Colorado AI Act (SB 24-205), and NIST AI RMF audit trails.
Zero-dependency architecture compliance enforcer for Next.js monorepos. Flags violations, suggests fixes, detects patterns, and tracks trend over time.
AxonFlow SDK - Add invisible AI governance to your applications in 3 lines of code
Deterministic governance bundle infrastructure for portable admissibility artifacts, canonical manifest continuity, cryptographic signature validation, and independently verifiable governance distribution.
Scan node_modules and report licenses for all installed packages — zero dependencies.
Connects to AxonFlow (SaaS or self-hosted) for policy enforcement, PII scanning, approval gates, and audit trails in OpenClaw agents
Open-source HIPAA compliance scanner for healthcare code — CLI for verification-layer.
CCS v1.0 - Conformance Protocol for Agentic Runtime Systems
Sigma / YARA → ATR YAML converter (community edition). Open-source detection rule migration for AI agent security.
Tool to scan for licenses in our dependencies, and report on any that are not allow-listed.
Open-source autonomous coding agent with a cryptographic audit trail. Delegate coding work, verify every action. Runs against local (Ollama/LM Studio/vLLM) or cloud LLMs.
Deterministic governance verification CLI for replay-safe execution validation, provenance continuity inspection, release lineage verification, and portable trust reconstruction.
Agent Skills-compatible commercial-safe license scanner and replacement recommender for Claude Code, Codex, OpenClaw, Hermes, Gemini CLI, and GitHub Copilot.
Supply-chain security firewall for Node.js — resolves dependencies, scans via OSV.dev and NVD, and enforces configurable vulnerability policies before anything reaches node_modules.
n8n community node for U.S. public-records data: business registration (KYB) across 25 states, new business filings, federal watchlist screening (OFAC/BIS/State Dept), and federal awards (USAspending). Powered by the Whetstone actors on Apify.
JavaScript/TypeScript SDK for the RAIL Score API - evaluate responsible AI content, enforce compliance (GDPR, HIPAA, EU AI Act, India DPDP), assess agent tool calls, and run DPDP PII scanning
n8n community nodes for invoice-api.xhub E-Invoice API - Generate, parse, and validate e-invoices across 28 European countries with 18+ formats
Official TypeScript SDK for Scopebound — runtime authorization and pre-execution scope enforcement for AI agent workflows.
EU AI Act compliance MCP server - risk classification with structured signals, article grounding, GPAI systemic risk, Art. 6(3) exception assessment, Annex III/IV resources, deadlines, obligations, penalties, and FAQ. By Lexbeam Software.
beliq MCP server: validate, parse, generate, and convert EU e-invoices (XRechnung, ZUGFeRD, Factur-X, Peppol BIS) against authority-pinned, drift-checked rules, for MCP clients.
Governance receipts for AI agents — universal, MCP-native, fail-closed governance layer compliant with EU AI Act Art. 12, Colorado AI Act (SB 24-205), and NIST AI RMF. LNN interpretability, IPFS audit proofs, and rollback for any agent in any framework.
Country code → email-marketing-consent rules. Informational only, not legal advice.
Deterministic cryptographic infrastructure for canonical payload signing, trust-root continuity, reproducible verification, and independently verifiable governance trust chains.
Immutable dual-hash audit trail for AI agent governance decisions (SHA-256 + SHA3-256 chain, Ed25519 signatures)
Standalone audit chain verifier for Undisk MCP — verify hash-chain integrity of audit exports offline
Travel Rule SDK for VASPs to exchange required originator/beneficiary data securely and meet global compliance requirements.
Rubric Protocol MCP server — attest, verify, ZK proofs, compliance tagging, framework detection. Free local tier, Hedera mainnet anchoring with API key.
Official TypeScript/Node.js SDK for the Invoance compliance API
DevSecOps toolkit for AI-assisted secure development — security scanner, ISMS dashboard, asset management
Headless KYC collection SDK with optional prefixed Tailwind UI
EnfinitOS Auditor/Verifier SDK — cryptographic verification library that regulators, auditors, courts, and third parties use to verify signed proof packs issued by EnfinitOS without trusting the vendor. Parses signed proof packs, verifies Ed25519 signatur
One-command OpenAPI contract compliance audit. 9 mechanical checks (< 5s) + parallel LLM semantic analysis.
Financial-grade eKYC MCP Server for AI agents: face comparison, photo/video liveness, document OCR, and risk media labeling. Supports stdio, SSE, and Streamable HTTP.
비개발자 산출물 작업 setup wizard + PRD→Plan→Execute→Review 4단계 파이프라인 하네스 (5-skill)
Enterprise-grade ADA accessibility, GDPR/CCPA cookie consent, and AI assistant widgets with white-label branding, theme customization, and reseller license program
A React Native SDK for integrating DigiLocker verification flows into mobile applications
Vertex AI Agent Engine deployment inspector and runtime validator
Platform-agnostic AI development methodology with TDD, quality gates, and structured workflows
Typed deterministic governance SDK for replay-safe execution, provenance-aware integrations, runtime compatibility validation, and independently verifiable governance workflows.
Governance receipts for AI agents — healthcare compliance that adapts to your specialty, with HIPAA checks, clinical documentation, and audit prep. Every review signed and receipted for EU AI Act, Colorado AI Act (SB 24-205), and NIST AI RMF audit trails.
Integrity-chained audit middleware for mcpose — HMAC chain, Merkle proofs, ReplayManifest
TLNT - HMS-Powered Multi-Agent Platform with Government Agency Analysis, Deep Research, and Enterprise-Ready Deployment. Self-optimizing multi-domain AI agent with continuous learning and enterprise-grade performance monitoring.
EU AI Act compliance in your coding loop — detect AI deps, generate a dated compliance record, and gate CI/agents on it.
Core TREZA SDK: secure enclaves, KYC, signing, x402 payments, and PII redaction
Immutable append-only audit log for dAvePi. Subscribes to the in-process record event bus and writes one row per CRUD mutation (with before/after, JSON-patch diff, actor, IP, user-agent, and request ID) into an auto-registered `audit` collection that's qu
Enterprise PDF SDK for Node.js — rendering, text extraction, forms, annotations, redaction, encryption, and PDF/A compliance.
MCP stdio server for Nordic Data — global B2B intelligence for AI agents (35M+ companies, 1.6M sanctions, per-fact provenance, 78 tools). Plug into Claude Desktop, Cursor, ChatGPT, Base44, n8n, or any MCP-compatible runtime.
Code PushUp plugin for detecting accessibility issues using Axe 🌐
Deterministic execution infrastructure for replay-safe governance evaluation, admissibility enforcement, runtime provenance continuity, and independently verifiable governed execution.
Decision infrastructure for autonomous AI — Official TypeScript SDK