JSPM

AgenticMail Enterprise — cloud-hosted AI agent identity, email, auth & compliance for organizations

CLI and MCP servers for Cutline, including SlopBurn: a product quality engineering roguelike RPG for vibecoding workflows.

In-memory MVA lifecycle emulator for Vurb. Runs the full pipeline (Zod Input → Middlewares → Handler → Egress Firewall) without network transport. Returns structured MvaTestResult objects — zero coupling to Jest/Vitest.

Stop AI from breaking code you told it not to touch. Enforces .cursorrules, CLAUDE.md, and AGENTS.md — not just suggests. Zero-config: npx speclock protect reads your existing AI rule files, extracts constraints, installs pre-commit hooks, and makes your

n8n nodes for integrating with the Probo compliance platform API

NoData Guard — continuous security scanner. Runs locally, reports only metadata. Your data never leaves your machine.

CLI and MCP servers for Cutline — authenticate, then run constraint-aware MCP servers in Cursor or any MCP client.

Compliance as a Service CLI — scan dependencies, secrets, and IaC, then auto-map every finding to NIST 800-53, SOC 2, CMMC, FedRAMP, ASVS, and SSDF controls

React components, hooks, and services for CIA triad security assessment, compliance management, and risk analysis — supporting ISO 27001, NIST 800-53, SOC 2, GDPR, HIPAA, and EU CRA frameworks

AEGIS scanner registry — 39 built-in regex/AST checkers + 1 AST cross-file taint analyzer + 16 external-tool wrappers (Semgrep, Gitleaks, Trivy, ZAP, …). Framework-specific security rules for Next.js + Supabase: multi-tenant isolation, RLS bypass, Zod enf

Secure Code — scan, fix, and automate security for any codebase. SOC 2, NIST CSF, OWASP Top 10 & CWE.

87/100 compliance score in 60 seconds. EU AI Act + Colorado AI Act — gets more accurate with every scan. Free local check included.

Security-hardened MCP server for NotebookLM API with compliance-ready architecture (GDPR, SOC2, CSSF controls implemented)

Lightweight tamper-evident audit log with HMAC-SHA256 hash chain. Zero dependencies. Framework-agnostic.

VAR-Core deterministic YAML policy engine with pre-built compliance control packs

Governance runtime for AI-generated code. Scan, gate, and trace compliance automatically.

Legal vertical MCP server for document analysis - contract summarization, risk assessment, version comparison, compliance checking, and plain-English summaries.

AEGIS CLI — paranoid stack-specific security scanner for Next.js + Supabase. 0-1000 score, 40 built-in checkers (+16 external-tool wrappers), AST-based cross-file taint analysis, 4 compliance frameworks (GDPR / SOC 2 / ISO 27001 / PCI-DSS), inline + confi

Generate auditor-ready access review reports from GitHub orgs. SOC2 CC6.3 quarterly access reviews made easy.

AI security MCP server and enforcement gate for Claude Code, Cursor, GitHub Copilot, Codex, Replit, and any MCP-compatible editor. Applies OWASP, MITRE ATT&CK, NIST, Zero Trust, PCI DSS, SOC 2, and ISO 27001.

Always-on security agent — file watcher, git hooks, scheduled scans, notifications. Zero data access.

Enterprise AI governance gateway — PII detection, prompt injection guard, budget control, audit logging, RAG, multi-tenant. Drop into any Node.js app.

TypeScript SDK client for the QNSP audit-service API. Provides audit log querying and compliance reporting.

AI-powered Flutter development with full automation + official extension support - Generate 32 security-audited guides & auto-implement in 2-3 hours. NEW v5.1: Official Claude Code plugin with hooks, Gemini TOML commands, Qwen MCP settings. Features: Comp

Official SDK for Tethora - AI agent governance and compliance platform. Log every agent action, enforce policies, and generate compliance reports.

Public Preview — AgentOS GitHub Copilot Extension: Build safe AI agents with natural language and 0% policy violations

Enterprise SMS relay SDK with E2E encryption, provider fallback, and PCI DSS v4 compliance

MergeWhy CLI — record change evidence, attestations, and compliance data from any CI/CD pipeline

Security-themed React component library for dashboards, scanners, and threat visualization

SOC2-grade security controls for DoNotDev — audit logging, rate limiting, PII encryption, auth hardening, anomaly detection, privacy management

In-memory MVA lifecycle emulator for MCP Fusion. Runs the full pipeline (Zod Input → Middlewares → Handler → Egress Firewall) without network transport. Returns structured MvaTestResult objects — zero coupling to Jest/Vitest.

Enterprise-grade security and compliance layer for CodeCraft CLI

Scan your codebase, generate compliance documents. Privacy Policy, Terms of Service, AI Disclosure, Cookie Policy, DPA — all from your actual code.

MergeWhy Collector — Change evidence collection for CI pipelines and regulated environments. Score PRs, detect compliance gaps, and push signed attestations.

Enterprise-grade MCP (Model Context Protocol) server for Perforce P4 integration with AI assistants. Includes 59 MCP tools, native-style batch and flag support, rich review/search workflow helpers, and comprehensive security controls such as audit logging

Multi-framework policy-as-code compliance scanner for infrastructure and application code.

Verification library for DSR/1.0 production incident receipts

Lightweight, zero-infrastructure audit logging for Node.js and TypeScript

Official TypeScript SDK for Recalled — audit logs as a service for your product.

MCP server for Custodia — scan GitHub repos for security vulnerabilities from Claude Desktop, Cursor, and Claude.ai.

MCP server for compliance intelligence — 692 frameworks, 13,700+ controls, 819K+ cross-framework mappings. Works with Claude Desktop, Cursor, and any MCP client.

🚀 Enterprise SQL database analyzer with AI insights, security auditing, performance optimization, real-time monitoring, and beautiful reports

SOC 1 & SOC 2 exposure scanner — deep analysis, runs locally, never uploads code

Compliance static analysis tool for Java and JS/TS projects

ASCEND SDK - Enterprise AI Governance with fail mode, circuit breaker, and MCP integration

CLI and MCP servers for Cutline — authenticate, then run constraint-aware MCP servers in Cursor or any MCP client.

ASCEND governance integration for MCP (Model Context Protocol) servers - Enterprise-grade AI agent security

Portable release pack — bundle binaries, SBOMs and provenance into one offline-verifiable package

Official MCP (Model Context Protocol) server for Claw GRC — the AI-native GRC platform. Connect any MCP-compatible AI assistant to your compliance data.

🚨 EMERGENCY Bitnami Migration Scanner - Critical Timeline Aug 28/Sep 29, 2025. Enterprise scanner for 280+ Bitnami images, 118+ Helm charts with emergency migration automation to AWS alternatives.

MCP audit trail and compliance middleware — logs every tool call for FCA, GDPR, SOC2, and ISO 27001 compliance

The Reference Architecture for Local AI Governance & Firewalling. Secure, deterministic protection for Agents, MCP, and LLMs.

The Reference Architecture for Local AI Governance & Firewalling. Secure, deterministic protection for Agents, MCP, and LLMs.

Evidence SDK - SOC 2 compliance evidence collector library

REST API for HoloScript compilation and export with SOC 2 compliance foundations - async job processing, RBAC, audit logging, rate limiting

Optimisely Cloud SDK - Extract, analyze, and generate Terraform Infrastructure as Code from cloud resources across AWS, Azure, and GCP

Enterprise-grade authentication solution with OAuth2, API keys, email verification, SAML2, SSO, WebAuthn, 2FA, RBAC, and subscription management

Official Node.js SDK for LogSeal - Audit logging for B2B SaaS

AI-powered global compliance checker, document generator, and risk assessor for GDPR, CCPA, SOC2, ISO27001, and more

Evidence CLI - Command-line interface for evidence collection

The Omniscient Auditor - Forensic-grade security, compliance, and code auditing for Claude via MCP. 35 professional tools across 8 audit domains.

ASCEND governance integration for MCP (Model Context Protocol) servers - Enterprise-grade AI agent security

Enterprise-grade Audit Trail Plugin for Node.js with TypeScript - Performance Monitoring, System Integration Audit, Data Accountability & User Activity Tracking with Advanced Security Features

AstraOS — The most complete AI agent operating system. Multi-LLM, MCP, A2A, GraphRAG, Computer Use, RBAC, Multi-Tenancy, Marketplace (55+ skills), Admin Dashboard, Workflow Builder, SSO (SAML+OIDC), Audit Log, Data Residency, Billing (Stripe), Edge Runtim

AI Constraint Engine by Sandeep Roy — AI Patch Firewall. Diff-native review (interface breaks, protected symbols, dependency drift, schema changes, API impact), Patch Gateway (ALLOW/WARN/BLOCK verdicts), Spec Compiler (NL→constraints), Code Graph (blast r

AWS Container Image Scanner - Enterprise tool for scanning EKS clusters, analyzing Bitnami container dependencies, and generating migration guidance for AWS ECR alternatives with security best practices.

Automated SOC2 and Security Compliance Auditor

LogVault CLI - Audit logging setup in 2 minutes

## Project setup ``` npm install ```

World-class comprehensive coding standards for Cursor AI. 4,800+ lines covering 72 topics: OWASP Top 10, SRE practices, 15+ languages, 9 compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI-DSS, GDPR). Perfect 10/10 rating.

GitHub Action for Evidence SDK

Type-safe Zod schemas for LogVault audit events

Review Policy CLI - AI-powered code review with policy-as-code

AI Software Bill of Materials (AI-SBOM) CLI - Generate, verify, and audit cryptographically-signed records for AI-generated code

Official TypeScript SDK for Trailbase — audit logs, RBAC, and compliance for B2B SaaS

CORSAIR - CPOE ingestion and trust exchange platform

Enterprise-grade PostgreSQL storage adapter for @kitiumai/auth with full support for users, sessions, OAuth links, API keys, 2FA, RBAC, and SSO

Security-hardened MCP server for NotebookLM API with enterprise compliance (GDPR, SOC2, CSSF)

AI compliance infrastructure — tamper-evident audit trail for AI agents in regulated industries

SafeKeyLab Enterprise MCP Server - Agent Security, RAG Protection, and Compliance

CLI installer for noopkg - Claude Code skills and agents for IT professionals

Compliance engine for AstraCipher — pluggable framework for regulatory compliance modules (DPDP, EU AI Act, SEBI CSCRF, SOC 2, HIPAA)

F.A.I.L. Kit Core - Receipt generation, validation, and utilities for AI agent audit trails

ISL Standard Library - Audit Logging for Compliance

Zero-friction DreamFactory setup: Governed database APIs for AI agents in minutes. The only self-hosted MCP server with field-level RBAC across 25+ databases (PostgreSQL, MySQL, Oracle, SQL Server, Snowflake). Blocks AI agents from accessing PII, prevents

Tamper-proof memory, chain-of-custody, and OS-grade runtime for AI agents — native Rust bindings via NAPI-RS with HTTP fallback

Comprehensive audit logging plugin for Better Auth - Track all authentication events for compliance and security

Audit-Log-as-a-Service client library with type-safe logging

SDK for interacting with Vanta API for compliance and security monitoring, with GitHub coverage calculator integration

Enterprise-grade MongoDB storage adapter for @kitiumai/auth with full support for users, sessions, OAuth links, API keys, 2FA, RBAC, and SSO

Tamper-proof memory and chain-of-custody for AI agents

Enterprise-grade encrypted agent memory. If it leaks, you're going to OpenShart yourself.

Juro - providing compliance as a service: Enterprise-grade MCP server for automated compliance scanning with AI-powered analysis

In-memory MVA lifecycle emulator for MCP Fusion. Runs the full pipeline (Zod Input → Middlewares → Handler → Egress Firewall) without network transport. Returns structured MvaTestResult objects — zero coupling to Jest/Vitest.

Enterprise-grade Audit Trail Plugin for Node.js with TypeScript - Performance Monitoring, System Integration Audit, Data Accountability & User Activity Tracking with Advanced Security Features

PaiTIENT - HIPAA/SOC2 compliant secure model hosting SDK

MCP server for the Comp AI compliance platform API

MCP server for compliance policy document generation — create security policies, SOPs, incident response plans, risk assessment templates, and training outlines aligned to regulatory frameworks

MCP server for compliance auditing — run audits against SOC2, ISO 27001, HIPAA, GDPR, PCI-DSS frameworks, identify gaps, and generate remediation plans