Scan your project for AI framework usage and check EU AI Act / GDPR compliance

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for Arkforge from gravatar.com Arkforge
Meta

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License Expression: MIT
    SPDX License Expression
  • Tags eu-ai-act , compliance , gdpr , ai , regulation , scanner , audit , mcp
  • Requires: Python >=3.9
Classifiers
Report project as malware

Project description

EU AI Act Scanner

GitHub Stars PyPI version npm version License: MIT Python 3.9+

Scan your codebase for AI framework usage and check EU AI Act + GDPR compliance in seconds.

Zero dependencies. Works offline. Detects 26 AI frameworks including OpenAI, Anthropic, LangChain, HuggingFace, and more.

Quick Start

pip install eu-ai-act-scanner
eu-ai-act-scanner scan ./my-project

Or with npx (no install):

npx eu-ai-act-scanner scan ./my-project

What It Does

  1. Scans your project for AI framework usage (imports, dependencies, model references)
  2. Maps each framework to its EU AI Act risk level and obligations
  3. Checks your compliance documentation against requirements
  4. Reports what's missing with actionable fix instructions

Example Output

EU AI Act Scanner v0.1.0
Scan your project for AI framework usage and EU AI Act / GDPR compliance

Scanning: ./my-ai-app

Scan Results
  Files scanned: 47
  AI files found: 3

  Detected Frameworks:
    openai (2 files)
    langchain (1 file)

  Risk Assessment:
    [HIGH] openai: Art. 51-53 (GPAI obligations)
           Document OpenAI model usage, register as GPAI deployer...
    [MEDIUM] langchain: Art. 50 (transparency), Art. 6 + Annex III
           Audit your LangChain pipeline for chained AI models...

  Compliance: 1/3 (33.3%) for limited-risk

    PASS transparency
    FAIL user_disclosure
         Clearly inform users that AI is involved in the system
         Art. 52(1) - Natural persons must be notified of AI interaction
           - Add an 'AI Disclosure' section to your README.md
           - Include: which AI models are used, what they do, what data they process
    FAIL content_marking
         Mark AI-generated content so users can distinguish it from human content
         Art. 52(3) - AI-generated text/image/audio/video must be labeled
           - Add metadata or visible label to AI-generated outputs

Supported Frameworks (26)

Provider Frameworks Risk Level
GPAI Providers OpenAI, Anthropic, Gemini, Mistral, Cohere, DeepSeek, Vertex AI, AWS Bedrock, Azure OpenAI, ZhipuAI, Qwen, Moonshot High
Orchestration LangChain, LlamaIndex, LiteLLM, CrewAI, AutoGen, Semantic Kernel, Haystack, DSPy, Groq, Replicate, Ollama Medium
ML Infrastructure HuggingFace, TensorFlow, PyTorch Low (use-case dependent)

Usage

Basic Scan

# Scan current directory
eu-ai-act-scanner scan

# Scan a specific project
eu-ai-act-scanner scan ./path/to/project

# Scan with explicit risk category
eu-ai-act-scanner scan ./project --risk high

GDPR Scan

# Include GDPR compliance check
eu-ai-act-scanner scan ./project --gdpr

JSON Output

# Full report as JSON (for CI/CD integration)
eu-ai-act-scanner scan ./project --json

Python API

from eu_ai_act_scanner import EUAIActScanner, GDPRScanner

# EU AI Act scan
scanner = EUAIActScanner("./my-project")
results = scanner.scan()
print(f"Found: {list(results['detected_models'].keys())}")

# Compliance check
compliance = scanner.check_compliance("limited")
print(f"Score: {compliance['compliance_score']}")

# GDPR scan
gdpr = GDPRScanner("./my-project")
gdpr_results = gdpr.scan()
print(f"Personal data: {gdpr_results['processing_summary']['processes_personal_data']}")

CI/CD Integration

Add to your GitHub Actions workflow:

- name: EU AI Act Compliance Check
  run: |
    pip install eu-ai-act-scanner
    eu-ai-act-scanner scan . --json > compliance-report.json

How Risk Levels Work

The EU AI Act classifies AI systems into 4 risk categories:

  • Unacceptable: Banned (social scoring, mass biometric surveillance)
  • High: Strict requirements (recruitment, credit scoring, medical devices)
  • Limited: Transparency obligations (chatbots, content generation)
  • Minimal: No specific obligations (spam filters, games)

This scanner detects which frameworks you use and maps them to their default risk level. Your actual risk category depends on your specific use case — the scanner suggests a starting point.

MCP Server

This scanner is also available as an MCP server for AI coding assistants (Claude, Cursor, Windsurf, etc.). Run compliance scans directly from your IDE.

# Connect via direct URL
https://arkforge.fr/mcp

See arkforge.fr/mcp for setup instructions.

Troubleshooting

CLI not found after pip install

If eu-ai-act-scanner is not found after install, your Python user scripts directory may not be on PATH:

# Add to your shell profile (~/.bashrc, ~/.zshrc)
export PATH="$HOME/.local/bin:$PATH"

Or run directly with Python:

python -m eu_ai_act_scanner scan ./my-project

Contributing

Issues and PRs welcome at github.com/ark-forge/eu-ai-act-scanner.

License

MIT — Built by ArkForge

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for Arkforge from gravatar.com Arkforge
Meta

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License Expression: MIT
    SPDX License Expression
  • Tags eu-ai-act , compliance , gdpr , ai , regulation , scanner , audit , mcp
  • Requires: Python >=3.9
Classifiers

Release history Release notifications | RSS feed

2.0.31

2.0.30

2.0.27

2.0.26

2.0.24

2.0.22

2.0.19

2.0.15

2.0.14

2.0.13

2.0.12

2.0.11

2.0.10

2.0.9

2.0.8

2.0.7

2.0.6

2.0.5

2.0.4

2.0.0

This version

0.1.2

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

eu_ai_act_scanner-0.1.2.tar.gz (22.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

eu_ai_act_scanner-0.1.2-py3-none-any.whl (22.7 kB view details)

Uploaded Python 3

File details

Details for the file eu_ai_act_scanner-0.1.2.tar.gz.

File metadata

  • Download URL: eu_ai_act_scanner-0.1.2.tar.gz
  • Upload date:
  • Size: 22.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for eu_ai_act_scanner-0.1.2.tar.gz
Algorithm Hash digest
SHA256 edf583a4d2ca2a595f2fc64f28e332391d964aa0e5ff02c4e12ac1a7c786a495
MD5 16be14e3d7ce9c9f25d38cf1316a7090
BLAKE2b-256 fa8cb8f88af76edc3898e58bbbdc616e211dde76561428bca0dd6fc39182050b

See more details on using hashes here.

Provenance

The following attestation bundles were made for eu_ai_act_scanner-0.1.2.tar.gz:

Publisher: publish-pypi.yml on ark-forge/eu-ai-act-scanner

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file eu_ai_act_scanner-0.1.2-py3-none-any.whl.

File metadata

File hashes

Hashes for eu_ai_act_scanner-0.1.2-py3-none-any.whl
Algorithm Hash digest
SHA256 a43e29284fdc0e70f689d9374a961279192f6b2cc044c6863a46522417476668
MD5 970a3382e51778d535a5ff441128ac12
BLAKE2b-256 586e7891addf4bc3cd6e9ae10abfe242706b923069eafccc13f1b3dbf13f396e

See more details on using hashes here.

Provenance

The following attestation bundles were made for eu_ai_act_scanner-0.1.2-py3-none-any.whl:

Publisher: publish-pypi.yml on ark-forge/eu-ai-act-scanner

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page