AI Act Sentinel
БесплатноНе проверенMCP server for EU AI Act compliance analysis — classify any AI system or workflow against Regulation (EU) 2024/1689, updated with AI Omnibus 2026.
Описание
MCP server for EU AI Act compliance analysis — classify any AI system or workflow against Regulation (EU) 2024/1689, updated with AI Omnibus 2026.
README
MCP server for EU AI Act compliance analysis — classify any AI system or workflow against Regulation (EU) 2024/1689, updated with AI Omnibus 2026.
Python License EU AI Act MCP Last Updated
Pass a PDF project document or plain text description — get back a structured English compliance report: risk level, violated articles, operator obligations, and remediation steps.
Why AI Act Sentinel?
The EU AI Act (Reg. EU 2024/1689) is the world's first comprehensive AI regulation. With the main deadline on 2 August 2026 and fines up to €35 million or 7% of worldwide turnover, understanding your compliance position is not optional.
Existing tools either:
- Cover only ~30% of the Act (outdated repos from late 2024)
- Require expensive legal consultations for every new workflow
- Provide no automated pipeline integration
AI Act Sentinel runs locally as an MCP server, integrates directly with Claude Code, and fires automatically every time you build or modify an AI system.
Features
- 🔴 Prohibited practice detection — all 10 Art. 5 cases including AI Omnibus 2026 (NCII + CSAM)
- 🟠 High-risk classification — all 8 Annex III categories + Annex I safety components
- 🟡 Transparency obligations — all 5 Art. 50 rules (chatbot disclosure, C2PA watermarking, deepfake labeling)
- 🔵 GPAI model detection — Chapter V obligations + systemic risk threshold (10²⁵ FLOPs)
- 📄 PDF project analysis — extract text from any project document and run full compliance check
- 👤 Role-aware reports — obligations differ by role (provider, deployer, importer, distributor…)
- 🔗 Ansvar integration — optional live article lookup via Ansvar Systems EU Compliance MCP gateway
- 🇬🇧 English reports — structured output in English with article citations and remediation steps
Risk Levels
| Level | Trigger | Max Penalty |
|---|---|---|
| 🔴 PROHIBITED | Art. 5 violation | €35M or 7% worldwide turnover |
| 🟠 HIGH_RISK | Annex III or Annex I safety component | €15M or 3% worldwide turnover |
| 🟡 LIMITED_RISK | Art. 50 transparency obligations only | €15M or 3% worldwide turnover |
| 🔵 GPAI | General Purpose AI model (Chapter V) | €15M or 3% worldwide turnover |
| 🟢 MINIMAL_RISK | No mandatory obligations | — |
| ⚪ OUT_OF_SCOPE | Military / personal / pre-commercial R&D | — |
Coverage
| Chapter | Articles | Status |
|---|---|---|
| Ch. II — Prohibited Practices | Art. 5 (10 cases incl. Omnibus 2026) | ✅ Complete |
| Ch. III — High-Risk Systems | Art. 6, Annex III (8 categories) | ✅ Complete |
| Ch. IV — Transparency | Art. 50 (5 rules) | ✅ Complete |
| Ch. V — GPAI Models | Art. 51-55, systemic risk | ✅ Complete |
| Ch. XI-XIII — Sanctions | Art. 99-101 | ✅ Complete |
| Roles & Obligations | 6 operator roles | ✅ Complete |
| Implementation Timeline | 2024-2031 | ✅ Complete |
MCP Tools
| Tool | Description |
|---|---|
analyze_pdf |
Analyze a PDF project document — full compliance pipeline |
classify_text |
Classify any text description against the Act |
generate_report |
Generate full compliance report |
lookup_article |
Fetch article text from Ansvar gateway |
search_act |
Full-text search across EU AI Act |
get_obligations |
Get obligations by operator role |
Installation
Prerequisites
pip install pymupdf
Add to Claude Code (MCP config)
Add to ~/.mcp.json or ~/Orchestrator/.mcp.json:
{
"mcpServers": {
"ai-act-sentinel": {
"command": "python3",
"args": ["/path/to/ai-act-sentinel/server.py"]
}
}
}
Restart Claude Code. The 6 tools will be available in your session.
Usage
Analyze a PDF project
analyze_pdf(pdf_path="/path/to/your/project.pdf")
Classify a text description
classify_text(
description="AI recruitment system with automated CV filtering and candidate ranking",
generate_full_report=True
)
Quick Python test
cd ai-act-sentinel
python3 -c "
from tools.classifier import classify
from tools.reporter import generate_report
desc = 'AI system for creditworthiness assessment of individuals for bank mortgages'
result = classify(desc)
print(generate_report(result, source='test'))
"
Sample output
======================================================================
AI ACT SENTINEL — COMPLIANCE REPORT
Analysis date: 2026-06-18
Source: test
======================================================================
RISK LEVEL: 🟠 HIGH RISK (Annex III / Art. 6)
DESCRIPTION: The AI system falls under high-risk categories.
Full Chapter III requirements are mandatory.
SUMMARY: System matches 1 Annex III high-risk category.
MAXIMUM PENALTY: €15,000,000 or 3% of worldwide annual turnover
POTENTIALLY VIOLATED ARTICLES:
• Annex III(5)
ISSUES DETECTED:
1. 5. Essential Public & Private Services (Annex III(5))
Keywords matched: creditworthiness, individuals, bank mortgages
APPLICABLE OBLIGATIONS:
✓ Art. 9 — Risk management system
✓ Art. 10 — Data governance
✓ Art. 11 — Technical documentation
✓ Art. 43 — Conformity assessment
✓ Art. 49 — EU database registration
...
RECOMMENDATIONS:
1. Implement a risk management system (Art. 9)
2. Prepare complete technical documentation (Art. 11)
3. Carry out conformity assessment (Art. 43)
4. Register in EU database (Art. 49) before deployment
Project Structure
ai-act-sentinel/
├── server.py # MCP server — JSON-RPC 2.0 over stdio
├── knowledge/
│ ├── prohibited.py # Art. 5 — 10 prohibited practices
│ ├── annex_iii.py # Annex III — 8 high-risk categories
│ ├── transparency.py # Art. 50 — 5 transparency rules
│ ├── gpai.py # Chapter V — GPAI + systemic risk
│ ├── roles.py # 6 operator roles + obligations matrix
│ └── sanctions.py # Art. 99-101 sanction tiers
├── tools/
│ ├── classifier.py # 6-question decision tree (Q1→Q6)
│ ├── reporter.py # English report generator
│ ├── pdf_analyzer.py # PDF text extraction (PyMuPDF)
│ └── ansvar.py # HTTP client → gateway.ansvar.eu/mcp
└── requirements.txt
Classification Decision Tree
Q1: In scope? (not military / personal / pre-commercial)
Q2: Art. 5 prohibited practice? → PROHIBITED (stop)
Q3: Annex III use case? → HIGH_RISK (or exception if only procedural + no profiling)
Q4: Annex I safety component? → HIGH_RISK Art. 6(1)
Q5: Art. 50 trigger? (chatbot / synthetic content / emotion / deepfake) → LIMITED_RISK
Q6: GPAI model? → Chapter V obligations (+ Art. 55 if >10²⁵ FLOPs)
→ else: MINIMAL_RISK
Key Deadlines
| Date | What enters into force |
|---|---|
| ✅ 2 Feb 2025 | Art. 5 prohibited practices + AI literacy (Art. 4) |
| ✅ 2 Aug 2025 | GPAI obligations (Ch. V) + governance + sanctions |
| ⚠️ 2 Aug 2026 | Everything else: high-risk, Art. 50, deployer obligations, EU DB registration |
| 2 Aug 2027 | Art. 6(1) Annex I products + pre-2025 GPAI compliance |
| 7 May 2026 | AI Omnibus: NCII/CSAM prohibitions, SME relief, EU sandboxes |
External Data Layer
For live article lookups, AI Act Sentinel integrates with Ansvar Systems EU Compliance MCP:
- 126 AI Act articles, 68 definitions, 181 recitals
- Updated daily from EUR-Lex
- 50 free queries/day at
https://gateway.ansvar.eu/mcp - Graceful fallback to local knowledge if gateway is unavailable
Auto-Trigger Integration
When used with Claude Code and the provided CLAUDE.md configuration, AI Act Sentinel fires automatically:
- Every time you create or modify an N8N / Make workflow
- Every time you build an AI-powered application
- Every time you describe a system that processes personal data with ML
- When you pass a PDF project document for review
Behavior by risk level:
- PROHIBITED → Claude stops and refuses to deploy
- HIGH_RISK → Report shown, user confirmation required before deploy
- LIMITED_RISK → Art. 50 disclosures added to system design automatically
Privacy
AI Act Sentinel is designed to be private by default:
- 🖥️ Runs entirely on your machine — it's a local MCP server. Your project documents and descriptions never leave your computer for processing.
- 🔑 No API keys required — the classifier and report generator need no credentials and read no environment secrets.
- 🚫 No data collection, no telemetry — nothing is logged to or sent to the author or any analytics service.
- 🔗 One optional external call — only the
lookup_article/search_acttools may contact the public Ansvar Systems gateway (gateway.ansvar.eu) for live article text. Only the article ID or query you request is sent, from your machine. If the gateway is unavailable, it falls back to the bundled local knowledge base — so the tool works fully offline too.
Disclaimer
AI Act Sentinel is an automated compliance screening tool for informational purposes only. It does not constitute legal advice. For deployment decisions involving high-risk AI systems, consult a qualified legal professional specializing in EU AI regulation.
Regulatory basis: Regulation (EU) 2024/1689 (EU AI Act) as amended by AI Omnibus (May 2026). Last knowledge update: June 2026.
License
MIT — see LICENSE
Built with ❤️ for the EU AI compliance ecosystem.
Установка AI Act Sentinel
У этого сервера нет опубликованного пакета — он собирается из исходников. Открой репозиторий и следуй инструкции в README.
▸ github.com/PierpyRenda/ai-act-sentinelFAQ
AI Act Sentinel MCP бесплатный?
Да, AI Act Sentinel MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для AI Act Sentinel?
Нет, AI Act Sentinel работает без API-ключей и переменных окружения.
AI Act Sentinel — hosted или self-hosted?
Self-hosted: сервер запускается локально на твоей машине командой из раздела установки.
Как установить AI Act Sentinel в Claude Desktop, Claude Code или Cursor?
Открой AI Act Sentinel на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
Fetch
Web content fetching and conversion for efficient LLM usage.
AWS KB Retrieval
Retrieval from AWS Knowledge Base using Bedrock Agent Runtime.
автор: modelcontextprotocolSpring AI MCP Server
Provides auto-configuration for setting up an MCP server in Spring Boot applications.
llm-analysis-assistant
A very streamlined mcp client that supports calling and monitoring stdio/sse/streamableHttp, and can also view request responses through the /logs page. It also
автор: xuzexin-hzCompare AI Act Sentinel with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории ai
