Opencomplai core risk assessment engine for EU AI Act compliance
Project description
opencomplai-core
The EU AI Act compliance risk engine at the heart of Opencomplai.
opencomplai-core turns a declared system-manifest.json and your source tree into a
deterministic, rule-based risk classification — no LLM calls, no network access, fully
reproducible.
It powers risk classification (UnacceptableRiskRule, AnnexIIIClassifierRule,
ProfilingDetectionRule, SubstantialModificationRule) and the code-corroboration scan
engine that cross-checks what a manifest claims against what the code actually does.
Install
pip install opencomplai-core
For PDF report generation, install the optional extra:
pip install "opencomplai-core[reports]"
Most users want the
opencomplaimeta-package (engine + CLI) or theopencomplai-clicommand-line tool. Installopencomplai-coredirectly when you are embedding the engine in your own application.
Quick start
Classify a model from a declared manifest
from opencomplai import assess, AssessmentInput, ModelMetadata
result = assess(AssessmentInput(
model=ModelMetadata(
name="loan-scorer",
version="1.0.0",
modality="tabular",
use_case="creditworthiness scoring for consumer loans",
deployment_context="production",
)
))
print(result.risk_level) # e.g. RiskLevel.HIGH
for rule in result.rule_results:
print(rule.rule_id, "PASS" if rule.passed else "FAIL")
Corroborate a manifest against the code
from pathlib import Path
from opencomplai_core.scan_engine import run_scan
report = run_scan(
repo_root=Path("."),
commit_ref="HEAD",
)
print(report.summary.result) # PASS / CONTROL_FAIL / ...
for finding in report.findings:
print(finding.finding_id, finding.mapped_taxonomy)
The scan engine extracts features from the repository, fuses evidence across detectors, and maps findings to EU AI Act taxonomy (Annex III high-risk areas, Article 5 prohibited practices, profiling under Article 6).
What you get
- Deterministic risk classification — same inputs always produce the same output, so results are auditable and CI-gateable.
- Code corroboration — detect when a manifest under-declares (claims minimal risk while the code does biometric identification, profiling, etc.).
- Merkle-linked evidence — findings carry verifiable evidence items for audit trails.
Documentation
Full docs, the EU AI Act concepts guide, and the SDK reference live at docs.opencomplai.com.
License
AGPL-3.0-only. See LICENSE.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file opencomplai_core-0.1.2.tar.gz.
File metadata
- Download URL: opencomplai_core-0.1.2.tar.gz
- Upload date:
- Size: 79.1 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
4f2a80edfbb9346fd0c0ba4f677c6bb9f017513a88bd7b2d2defe7e058df6a44
|
|
| MD5 |
dbc18256b57376138b6f931a9f69749e
|
|
| BLAKE2b-256 |
47bc7c9e54c60da5082b7bfc5b0f5710b5906e401932e8ddcf05735e9281c742
|
File details
Details for the file opencomplai_core-0.1.2-py3-none-any.whl.
File metadata
- Download URL: opencomplai_core-0.1.2-py3-none-any.whl
- Upload date:
- Size: 88.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
cb8dd3b979026f475e394b57767b396cad9f9896d7cbdf6282cce5243e2cf81f
|
|
| MD5 |
75a0b7187178ac9120d2b64724f5f4ff
|
|
| BLAKE2b-256 |
984c6fe99087e5ecbab97b1380e96c0133d59160b1dc33498a29900da69db506
|