EU Cyber Resilience Act (Regulation 2024/2847) compliance for AI agents. Product classification, Annex I audit, SBOM generation, conformity assessment roadmap, vulnerability reporting readiness. For manufacturers of products with digital elements. By MEOK AI Labs.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Nicholastempleman from gravatar.com Nicholastempleman

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT License)
  • Author: MEOK AI Labs
  • Tags annex-i , ce-marking , conformity-assessment , cra , cyber-resilience-act , cyclonedx , eu-cra , eu-regulation , iot-security , manufacturer-compliance , mcp , meok-ai-labs , product-with-digital-elements , sbom
  • Requires: Python >=3.10
Classifiers
Report project as malware

Project description

cra-compliance-mcp MCP server

PyPI Downloads GitHub stars License: MIT

CRA Compliance MCP

Automate EU Cyber Resilience Act (Regulation 2024/2847) compliance for products with digital elements.

Manufacturers · Importers · Distributors · Open-source stewards

Full applicability: 11 December 2027. Penalties: up to EUR 15M or 2.5% of global turnover.

MEOK AI Labs

Install · Tools · Pricing

Why This Exists

The CRA applies to every product with digital elements sold in the EU — software, IoT devices, industrial controllers, SaaS platforms. Manufacturers must ensure security by design, handle vulnerabilities within 24 hours, and maintain technical documentation for 10 years. Open-source projects used commercially have a new "open-source steward" category with lighter obligations.

This MCP classifies your product against CRA categories, assesses essential security requirements, checks vulnerability handling processes, and generates the conformity documentation.

Install

pip install cra-compliance-mcp

Tools

Tool CRA Reference What it does
classify_product Art 6-8 Product category classification (default/important/critical)
assess_security_requirements Annex I Essential cybersecurity requirements check
check_vulnerability_handling Art 14 24-hour vulnerability disclosure readiness
generate_documentation Annex VII Technical documentation generator
assess_supply_chain Art 13 Software bill of materials + dependency audit
check_open_source_obligations Art 25 Open-source steward obligations
run_full_audit All Complete CRA readiness assessment
sign_attestation HMAC-SHA256 signed compliance certificate

Key Dates

Milestone Date
Entry into force 10 December 2024
Vulnerability reporting obligations 11 September 2026
Full applicability 11 December 2027

Pricing

Tier Price What you get
Free £0 10 calls/day
Pro £199/mo Unlimited + HMAC-signed attestations
Enterprise £1,499/mo Multi-tenant + co-branded reports

Subscribe to Pro · Enterprise

Attestation API

POST https://meok-attestation-api.vercel.app/sign
GET  https://meok-attestation-api.vercel.app/verify/{cert_id}

Also see: CRA Annex IV Classifier MCP for detailed Annex IV essential requirements.

Links

License

MIT

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Nicholastempleman from gravatar.com Nicholastempleman

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT License)
  • Author: MEOK AI Labs
  • Tags annex-i , ce-marking , conformity-assessment , cra , cyber-resilience-act , cyclonedx , eu-cra , eu-regulation , iot-security , manufacturer-compliance , mcp , meok-ai-labs , product-with-digital-elements , sbom
  • Requires: Python >=3.10
Classifiers

Release history Release notifications | RSS feed

1.3.3

1.3.2

1.3.1

1.3.0

1.2.9

1.2.8

1.2.7

1.2.6

1.2.5

1.2.4

1.2.3

1.2.2

1.2.1

1.2.0

1.1.0

This version

1.0.1

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

cra_compliance_mcp-1.0.1.tar.gz (9.3 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

cra_compliance_mcp-1.0.1-py3-none-any.whl (11.1 kB view details)

Uploaded Python 3

File details

Details for the file cra_compliance_mcp-1.0.1.tar.gz.

File metadata

  • Download URL: cra_compliance_mcp-1.0.1.tar.gz
  • Upload date:
  • Size: 9.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.15

File hashes

Hashes for cra_compliance_mcp-1.0.1.tar.gz
Algorithm Hash digest
SHA256 9db387e03ac137c1398b97181c443720135f6d6db0bb4ae0e815b2d791a717e5
MD5 c88988963c129313c9d291e3670105e1
BLAKE2b-256 0d4c2a694e6871071650c6f35f526aeb938fdca879756d7fb50f1f689fe3626a

See more details on using hashes here.

File details

Details for the file cra_compliance_mcp-1.0.1-py3-none-any.whl.

File metadata

File hashes

Hashes for cra_compliance_mcp-1.0.1-py3-none-any.whl
Algorithm Hash digest
SHA256 21670ca8f9edb7410e2c53028a65ca70740fcdcee8c8b7530fa54ff05537b66a
MD5 6613c291ee54edca51d4ded675f2d83f
BLAKE2b-256 6fd93c2a9dba6405cc5f8ad7aca826705f992f541f7e161b66f4781ca8b4bd82

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page