Back to Browse
About
Soc2 Compliance Ai MCP Server by MEOK AI Labs
Security Report
3.2
Use Caution3.2High RiskThis SOC 2 compliance MCP server provides legitimate compliance assessment tools with rate-limited access and tier-based authentication. However, several security concerns lower the score: (1) the auth_middleware module is referenced but not provided for review, creating an unverifiable authentication layer; (2) environment variable handling for API keys is mentioned but not explicitly validated in the shown code; (3) the rate-limiting implementation uses in-memory state that could be bypassed or reset; (4) error messages expose implementation details about subscription tiers and URLs. The server's purpose (compliance assessment) matches its permissions, but the incomplete code visibility and authentication opacity require caution. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.
4 files analyzed · 11 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-csoai-org-soc2-compliance-ai-mcp": {
"args": [
"-y",
"soc2-compliance-ai-mcp"
],
"command": "npx"
}
}
}Documentation
View on GitHubFrom the project's GitHub README.
Soc2 Compliance Ai MCP
⚖️ Built by MEOK AI Labs / CSOAI. Need this applied to your system fast? Book a 30-min Founder Office Hour (£29) → https://meok.ai/work · Full governance platform → https://meok.ai
SOC 2 Type II compliance MCP — Trust Service Criteria audit, access review, change management, co... mcp-name: io.github.CSOAI-ORG/soc2-compliance-ai-mcp
SOC 2 Compliance MCP
SOC 2 Trust Service Criteria — Security, Availability, Processing Integrity, Confidentiality, Privacy
SOC 2 Type II compliance MCP — Trust Service Criteria audit, access review, change management, control evidence automation.
🚀 Quick Start
# Install via pip
pip install soc2_compliance_ai_mcp
# Or install via Smithery
npx -y @smithery/cli@latest install soc2-compliance-ai-mcp --client claude
✨ Features
- MCP protocol compliant
- Easy installation
- Well-documented API
- Production-ready
- Active maintenance
📖 Documentation
🛡️ Compliance
This MCP server is built with EU AI Act compliance built-in:
- ✅ Article 9 — Risk Management System
- ✅ Article 13 — Transparency & Instructions for Use
- ✅ Article 15 — Bias Detection & Testing
- ✅ Article 26 — FRIA Support (where applicable)
- ✅ Article 50 — AI Content Watermarking (where applicable)
Need help getting compliant? Book a free 15-min diagnostic →
🏢 Enterprise
Need custom development, SLA guarantees, or white-label deployment?
- Pro: $99/mo — Full MCP suite + EU AI Act tracking
- Enterprise: $499/mo — Custom dev + SLA + Dedicated support
View Pricing → | Contact Sales →
🤝 Part of the MEOK Ecosystem
This server is part of the MEOK AI Labs ecosystem — 300+ MCP servers for sovereign AI governance.
| Domain | Purpose |
|---|---|
| councilof.ai | EU AI Act compliance marketplace |
| safetyof.ai | AI safety & monitoring |
| meok.ai | Sovereign AI platform |
| cobolbridge.ai | Legacy modernization |
📜 License
MIT © CSOAI-ORG
Tools
| Tool | Description | Parameters |
|---|---|---|
assess_trust_principles | Assess controls against all 5 TSC principles | principle, controls |
control_gap_analysis | Identify gaps between existing controls and SOC 2 | current_controls, principle |
generate_control_matrix | Generate a SOC 2 control matrix | principle, controls, evidence |
audit_readiness | Overall SOC 2 audit readiness score | all_controls, principles |
evidence_checklist | Generate evidence checklist by principle | principle (str, required) |
remediation_plan | Prioritized remediation plan for gaps | findings, timeline |
Installation
pip install mcp
Claude Desktop / Cursor / VS Code / Windsurf
{
"mcpServers": {
"soc2-compliance": {
"command": "python",
"args": ["path/to/server.py"]
}
}
}
Usage Examples
Assess security principle
{
"principle": "security",
"controls": ["firewall", "encryption", "access control", "no monitoring"]
}
Generate control matrix
{
"principle": "availability",
"controls": ["redundant servers", "backup power", "DR plan"],
"evidence": ["uptime reports", "DR test results"]
}
Pricing
- Free: 10 assessments/day
- Pro: $99/mo — unlimited assessments + matrices
- Enterprise: $499/mo — full audit trail + readiness scoring
Built by MEOK AI Labs | meok.ai
💸 Try MEOK in 30 seconds — instant buy ladder
| Tier | Price | What you get | Stripe |
|---|---|---|---|
| Smoke test | £1 | Signed sample MCP-Hardening report + Article 50 PDF | https://buy.stripe.com/5kQ6oJ0xS3ce8sl7ew8k91j |
| Quick Kit | £9 | EU AI Act Article 50 implementation guide (C2PA + EU-Icon) | https://buy.stripe.com/5kQ6oJ0xS3ce8sl7ew8k91j |
| Founder Call | £29 | 30-min 1-on-1 with the founder | https://buy.stripe.com/5kQ6oJ0xS3ce8sl7ew8k91j |
Refundable. UK Stripe — VAT-clean. Builds on the 81-MCP MEOK fleet. Verify any signed report at https://meok.ai/verify.
Reviews
No reviews yet
Be the first to review this server!
More Security MCP Servers
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
137
Stars
517
Installs
8.0
Security
4.8
Local
mcp-creator-python
Freeby mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
-
Stars
72
Installs
10.0
Security
4.6
Local
MarkItDown
Freeby Microsoft · Content & Media
Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption
156.1K
Stars
33
Installs
6.0
Security
5.0
Local