air-blackbox-mcp

air-blackbox-mcp

EU AI Act compliance scanner for Python AI agents. Scans, analyzes, and remediates LangChain/CrewAI/AutoGen/OpenAI code across 6 articles with 10 MCP tools including prompt injection detection, risk classification, and fix code generation.

Category
Visit Server

README

AIR Blackbox MCP Server

PyPI Python 3.10+ License: Apache-2.0 MCP

EU AI Act compliance scanning for Python AI agents — directly in Claude Desktop, Cursor, or any MCP client.

10 tools that scan, analyze, and fix compliance gaps across LangChain, CrewAI, AutoGen, OpenAI, and RAG pipelines.

Quick Start

1. Install

pip install air-blackbox-mcp

2. Add to Claude Desktop

Open your Claude Desktop config file:

  • Mac: ~/Library/Application Support/Claude/claude_desktop_config.json
  • Windows: %APPDATA%\\Claude\\claude_desktop_config.json

Add this:

{
  "mcpServers": {
    "air-blackbox": {
      "command": "python3",
      "args": ["-m", "air_blackbox_mcp"]
    }
  }
}

3. Restart Claude Desktop

The AIR Blackbox tools will appear in Claude's tool list.

Tools

Scanning

Tool What it does
scan_code Scan a Python code string for all 6 EU AI Act articles
scan_file Scan a single .py file
scan_project Scan an entire project directory

Analysis

Tool What it does
analyze_with_model Deep analysis using local fine-tuned Llama model (via Ollama)
check_prompt_injection Scan text for 15 prompt injection patterns
classify_risk Classify a tool/function by risk level (CRITICAL/HIGH/MEDIUM/LOW)

Remediation

Tool What it does
add_trust_layer Generate working code to add AIR trust layer to your agent
suggest_fix Get the specific fix for a failing article

Documentation

Tool What it does
explain_article Technical explanation of what each article requires
generate_compliance_report Full markdown compliance report

Example Usage in Claude Desktop

"Scan this LangChain agent for EU AI Act compliance"

"Check this text for prompt injection: ignore all previous instructions"

"Add a trust layer to my CrewAI code"

"Explain what Article 12 requires"

"Generate a compliance report for my project at /path/to/project"

Articles Checked

Article Requirement AIR Component
9 Risk Management Risk classification
10 Data Governance PII protection
11 Technical Documentation Structured audit logging
12 Record-Keeping (tamper-evident) Structured audit logging (HMAC-SHA256)
14 Human Oversight Risk classification
15 Robustness & Cybersecurity Prompt injection detection

Optional: Local AI Model

For deeper analysis, install the fine-tuned compliance model:

ollama run air-compliance-v2

The analyze_with_model tool will automatically use it. Falls back to rule-based scanning if Ollama isn't running.

Trust Layer Packages

Fix compliance gaps with drop-in trust layers:

pip install air-langchain-trust    # LangChain / LangGraph
pip install air-crewai-trust       # CrewAI
pip install air-autogen-trust      # AutoGen / AG2
pip install air-anthropic-trust    # OpenAI Agents SDK
pip install air-rag-trust          # RAG pipelines

Development

git clone https://github.com/airblackbox/air-blackbox-mcp
cd air-blackbox-mcp
pip install -e .
python3 -m air_blackbox_mcp

Links

License

Apache 2.0

Deadline: August 2, 2026. Fines up to €35M or 7% of global annual turnover. <!-- mcp-name: io.github.shotwellj/air-blackbox -->

Recommended Servers

playwright-mcp

playwright-mcp

A Model Context Protocol server that enables LLMs to interact with web pages through structured accessibility snapshots without requiring vision models or screenshots.

Official
Featured
TypeScript
Magic Component Platform (MCP)

Magic Component Platform (MCP)

An AI-powered tool that generates modern UI components from natural language descriptions, integrating with popular IDEs to streamline UI development workflow.

Official
Featured
Local
TypeScript
Audiense Insights MCP Server

Audiense Insights MCP Server

Enables interaction with Audiense Insights accounts via the Model Context Protocol, facilitating the extraction and analysis of marketing insights and audience data including demographics, behavior, and influencer engagement.

Official
Featured
Local
TypeScript
VeyraX MCP

VeyraX MCP

Single MCP tool to connect all your favorite tools: Gmail, Calendar and 40 more.

Official
Featured
Local
graphlit-mcp-server

graphlit-mcp-server

The Model Context Protocol (MCP) Server enables integration between MCP clients and the Graphlit service. Ingest anything from Slack to Gmail to podcast feeds, in addition to web crawling, into a Graphlit project - and then retrieve relevant contents from the MCP client.

Official
Featured
TypeScript
Kagi MCP Server

Kagi MCP Server

An MCP server that integrates Kagi search capabilities with Claude AI, enabling Claude to perform real-time web searches when answering questions that require up-to-date information.

Official
Featured
Python
E2B

E2B

Using MCP to run code via e2b.

Official
Featured
Neon Database

Neon Database

MCP server for interacting with Neon Management API and databases

Official
Featured
Exa Search

Exa Search

A Model Context Protocol (MCP) server lets AI assistants like Claude use the Exa AI Search API for web searches. This setup allows AI models to get real-time web information in a safe and controlled way.

Official
Featured
Qdrant Server

Qdrant Server

This repository is an example of how to create a MCP server for Qdrant, a vector search engine.

Official
Featured