DORA (EU Digital Operational Resilience Act) compliance for AI agents. 5-pillar audit, incident classification, Article 28 Register of Information, TLPT readiness. Regulation (EU) 2022/2554. By MEOK AI Labs.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Nicholastempleman from gravatar.com Nicholastempleman

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT License)
  • Author: MEOK AI Labs
  • Tags banking-compliance , digital-operational-resilience-act , dora , eu-dora , eu-regulation , financial-compliance , fintech-compliance , ict-risk , mcp , meok-ai-labs , regulation
  • Requires: Python >=3.10
Classifiers
Report project as malware

Project description

dora-compliance-mcp MCP server MCP Registry PyPI

dora-compliance-mcp MCP server

PyPI Downloads GitHub stars License: MIT

DORA Compliance MCP

Automate DORA (Digital Operational Resilience Act) compliance for EU financial entities.

Regulation (EU) 2022/2554 — enforcement live since 17 January 2025. Penalties: up to 1% of average daily worldwide turnover for CTPPs.

MEOK AI Labs

Install · Tools · Pricing · Attestation API

Why This Exists

DORA has been enforceable since January 2025. Every EU bank, insurer, investment firm, and their critical ICT providers must demonstrate operational resilience across 5 pillars. The regulation requires ICT risk management frameworks, incident reporting within 4 hours, threat-led penetration testing (TLPT), and third-party risk registers.

Traditional DORA compliance involves hiring consultancies at €800-1,500/day for 6-12 months. This MCP automates the 5-pillar assessment, generates Article 28 register entries, runs TLPT planning checklists, and produces incident classification templates — all from a single Claude prompt.

Install

pip install dora-compliance-mcp

Tools

Tool DORA Pillar What it does
assess_ict_risk Pillar 1 ICT risk management framework assessment
classify_incident Pillar 2 Incident classification per Article 18 criteria
plan_tlpt Pillar 3 Threat-led penetration testing planning
assess_third_party Pillar 4 Article 28 ICT third-party risk register
check_information_sharing Pillar 5 Information sharing arrangement audit
run_full_audit All 5 Complete 5-pillar DORA readiness assessment
sign_attestation HMAC-SHA256 signed compliance certificate

Example

Prompt: "Our bank uses 3 cloud providers and 2 SaaS fintech tools.
Run a full DORA 5-pillar assessment. Flag any ICT concentration risk
and generate the Article 28 register entries."

Result: 5-pillar assessment with ICT concentration risk flagged on
cloud provider dependency, Article 28 register entries for all 5
third parties, incident reporting template, TLPT scope recommendation.
Each section signed with attestation cert.

Pricing

Tier Price What you get
Free £0 10 calls/day — risk assessment + incident classification
Pro £199/mo Unlimited + HMAC-signed attestations + verify URLs
Enterprise £1,499/mo Multi-tenant + co-branded reports + webhooks

Subscribe to Pro · Enterprise

Attestation API

POST https://meok-attestation-api.vercel.app/sign
GET  https://meok-attestation-api.vercel.app/verify/{cert_id}

Zero-dep verifier: pip install meok-attestation-verify

Links

License

MIT

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Nicholastempleman from gravatar.com Nicholastempleman

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT License)
  • Author: MEOK AI Labs
  • Tags banking-compliance , digital-operational-resilience-act , dora , eu-dora , eu-regulation , financial-compliance , fintech-compliance , ict-risk , mcp , meok-ai-labs , regulation
  • Requires: Python >=3.10
Classifiers

Release history Release notifications | RSS feed

1.4.7

1.4.6

1.4.5

1.4.4

1.4.3

1.4.2

1.4.1

1.4.0

1.3.0

1.2.14

1.2.13

1.2.12

1.2.11

1.2.10

1.2.9

1.2.8

1.2.7

1.2.6

1.2.5

This version

1.2.4

1.2.3

1.2.2

1.2.1

1.2.0

1.1.0

1.0.1

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

dora_compliance_mcp-1.2.4.tar.gz (16.5 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

dora_compliance_mcp-1.2.4-py3-none-any.whl (15.4 kB view details)

Uploaded Python 3

File details

Details for the file dora_compliance_mcp-1.2.4.tar.gz.

File metadata

  • Download URL: dora_compliance_mcp-1.2.4.tar.gz
  • Upload date:
  • Size: 16.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.9.6

File hashes

Hashes for dora_compliance_mcp-1.2.4.tar.gz
Algorithm Hash digest
SHA256 38bbe8e3e794a0f3efffab87354cf2e307e76e26ce3c311593c8ac297acaf0d9
MD5 33e27ad4aa40cfaf23e9a145a1c1e0f3
BLAKE2b-256 13754a5c87f6d18eb5e008328bc81bb97b767aa9918e5f9af330d5160c12c226

See more details on using hashes here.

File details

Details for the file dora_compliance_mcp-1.2.4-py3-none-any.whl.

File metadata

File hashes

Hashes for dora_compliance_mcp-1.2.4-py3-none-any.whl
Algorithm Hash digest
SHA256 d39e4b9ce0d05469b5374e66a2939423a730bea8a5542f85a0b82c02fd925b65
MD5 8458ce033d72e2b3cde127aa2f0127c6
BLAKE2b-256 653d24af9b998abca91008dc319e65a72e409ec7a5767e1b36afe4d57c9c402a

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page