Back to Directory/Developer Tools

io.github.shotwellj/air-blackbox

EU AI Act compliance scanner for Python AI agents — scan, analyze, and remediate

Developer ToolsPythonv0.1.2
View on GitHub

AIR Blackbox MCP Server

EU AI Act compliance scanning for Claude Desktop, Cursor, and any MCP-compatible client.

Unlike other compliance scanners that only report problems, AIR Blackbox also remediates — generating working code fixes, trust layer integrations, and full compliance reports.

10 Tools

TierToolWhat it does
Scanningscan_codeScan Python code string for all 6 EU AI Act articles
Scanningscan_fileRead and scan a single Python file
Scanningscan_projectRecursively scan all .py files in a directory
Analysisanalyze_with_modelDeep analysis via local fine-tuned model (Ollama)
Analysischeck_injectionDetect prompt injection attacks (15 patterns)
Analysisclassify_riskClassify tools by EU AI Act risk level
Remediationadd_trust_layerGenerate trust layer integration code
Remediationsuggest_fixGet article-specific fix recommendations
Documentationexplain_articleTechnical explanation of EU AI Act articles
Documentationgenerate_compliance_reportFull markdown compliance report

Supported Frameworks

LangChain, CrewAI, AutoGen, OpenAI, Haystack, LlamaIndex, Semantic Kernel, and generic RAG pipelines.

Install

bash
pip install air-blackbox-mcp

Claude Desktop Setup

Edit ~/Library/Application Support/Claude/claude_desktop_config.json:

json
{
  "mcpServers": {
    "air-blackbox": {
      "command": "python3",
      "args": ["-m", "air_blackbox_mcp"]
    }
  }
}

Restart Claude Desktop. The 10 tools will appear automatically.

Cursor Setup

Add to .cursor/mcp.json in your project:

json
{
  "mcpServers": {
    "air-blackbox": {
      "command": "python3",
      "args": ["-m", "air_blackbox_mcp"]
    }
  }
}

Usage Examples

In Claude Desktop or Cursor, just ask:

  • "Scan this code for EU AI Act compliance"
  • "Add a trust layer to this LangChain agent"
  • "Check this text for prompt injection"
  • "What does Article 12 require?"
  • "Generate a compliance report for my project at ~/myproject"
  • "Classify the risk level of send_email"

Optional: Deep Analysis with Ollama

For AI-powered analysis beyond regex patterns:

bash
# Install Ollama
brew install ollama

# Pull the fine-tuned compliance model
ollama pull air-compliance-v2

# The analyze_with_model tool will automatically use it

What Makes This Different

Other MCP compliance tools only scan. AIR Blackbox:

  1. Scans — 18+ regex patterns across 6 EU AI Act articles
  2. Analyzes — local fine-tuned model catches what regex misses
  3. Remediates — generates working code to fix findings
  4. Verifies — checks for prompt injection with 15 weighted patterns
  5. Classifies — maps tools to EU AI Act risk levels
  6. Documents — produces full compliance reports

Links

Learn More

Best MCP Servers for DevOps: GitHub, Docker, CloudflareMCPFind indexes 3,141 devtools MCP servers and 164 cloud servers, making DevOps one of the richest categories in the directory. We analyzed both to surface the strongest options for CI/CD automation, container management, and cloud infrastructure operations.Read articleHow to Set Up MCP Servers in JetBrains IDEs (2026 Guide)JetBrains IDEs added MCP support through their AI Assistant plugin, giving IntelliJ IDEA, WebStorm, PyCharm, and GoLand users access to the same MCP server ecosystem as Cursor and VS Code. This guide covers how to configure MCP in JetBrains, which devtools servers work well, and how the experience compares to other MCP-enabled IDEs.Read articleHow to Deploy an MCP Server with DockerMost MCP servers fail in production because they depend on local system state that Docker eliminates. This guide shows how to write Dockerfiles for Node.js and Python MCP servers, expose the right ports, and push to a container registry for reliable remote deployment.Read article