Yes, Compliance is free to use.

How do I install Compliance?

Compliance supports both local and remote installation. For local use, install it via the provided package manager and add the configuration to your AI app. For remote access, add the server URL to your MCP configuration.

What AI apps work with Compliance?

Compliance uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Compliance MCP Server

by FoundryNet

SecurityUse Caution3.2MCP RegistryLocalRemote

Free

Server data from the Official MCP Registry

Regulatory compliance, FDA recalls, federal register, enforcement actions & comment deadlines.

About

Regulatory compliance, FDA recalls, federal register, enforcement actions & comment deadlines.

Remote endpoints: streamable-http: https://compliance-mcp-production.up.railway.app/mcp

Security Report

3.2

Use Caution3.2High Risk

This MCP server implements a regulatory compliance intelligence service with several notable security gaps. The codebase lacks proper input validation on user-supplied filters (industry, agency, keyword) before passing them to database queries, creating injection risks. Authentication is implemented via optional Bearer tokens and x402 payment verification, but the auth model is permissive—unauthenticated access is allowed up to a daily free tier. Critical infrastructure secrets (Supabase service key, admin token) are accessed via environment variables but could be accidentally logged. The payment verification logic via Solana RPC is complex and relies on external state, introducing replay and timing vulnerabilities. Supply chain analysis found 5 known vulnerabilities in dependencies (1 critical, 3 high severity).

7 files analyzed · 15 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

File System Write

Writes or modifies files on your machine. Check that this is expected for the tool.

How to Install & Connect

Available as Local & Remote

This plugin can run on your machine or connect to a hosted endpoint. during install.

Documentation

View on GitHub

From the project's GitHub README.

Regulatory & Compliance Intelligence MCP

Regulatory & compliance intelligence for AI agents — rules, recalls, enforcement actions, and comment deadlines from free government sources, classified by industry and severity.

Part of the FoundryNet Data Network. Attest your agent's compliance analysis with MINT Protocol. See also: gov-contracts-mcp, brand-intel-mcp, patent-intel-mcp, financial-signals-mcp, weather-intel-mcp.

Live MCP endpoint (Streamable HTTP): https://compliance-mcp-production.up.railway.app/mcp

Tools

Tool	Price	What it does
`search_regulations`	$0.01	Filtered regulatory entries (industry/agency/type/keyword/severity)
`compliance_alerts`	$0.01	Active alerts for an industry, deadline-urgent — "what do I worry about in pharma this week?"
`recall_check`	$0.01	FDA (food/drug/device) + CPSC product recalls with severity
`enforcement_actions`	$0.01	Enforcement actions with parsed penalty amounts
`comment_deadlines`	$0.01	Upcoming proposed-rule comment deadlines
`daily_digest`	$0.02	Structured daily digest organized by severity
`mint_info`	free	FoundryNet Data Network + MINT Protocol

Free tier: 25 paid-tool queries/day per agent. Then x402: the tool returns an HTTP-402 with a Solana USDC payment memo — pay it, re-call with the same args plus payment_tx=<signature>. An Authorization: Bearer fnet_… key bypasses the paywall.

How it works

Every 12 hours the aggregator fetches new entries from Federal Register (rules/proposed/notices), openFDA (food/drug/device recall & enforcement), and CPSC (consumer product recalls), classifies each by industry (keyword taxonomy across 12 sectors) and severity (info → warning → action_required → critical), and stores them in a standalone Supabase project.

Severity logic: Class I / injury-or-death recalls + emergency rules → critical; final rules with a compliance deadline ≤ 90 days or enforcement penalties > $100K → action_required; proposed rules in comment period → warning; notices/guidance → info.

Honesty note: EPA ECHO, OSHA, and SEC enforcement (their public endpoints need multi-step queries or scraping) are planned additional sources; enforcement penalties are currently parsed from Federal Register notices.

Connect

Smithery: @foundrynet/compliance-intel · MCP registry: io.github.FoundryNet/compliance-mcp

{ "mcpServers": { "compliance": { "url": "https://compliance-mcp-production.up.railway.app/mcp" } } }

Built by FoundryNet · hello@foundrynet.io

Reviews

No reviews yet

Be the first to review this server!

More Security MCP Servers

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

MarkItDown

Free

by Microsoft · Content & Media

Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption

Compliance MCP Server

About

Security Report

Findings (15)Action required

Permissions Required

How to Install & Connect

Documentation

Regulatory & Compliance Intelligence MCP

Tools

How it works

Connect

Reviews

No reviews yet

More Security MCP Servers

Toleno

mcp-creator-python

MarkItDown

FinAgent

mcp-creator-typescript

Google Workspace MCP