Server data from the Official MCP Registry
AI governance evidence for EU AI Act, ISO 42001, SOC 2, and NIST AI RMF.
AI governance evidence for EU AI Act, ISO 42001, SOC 2, and NIST AI RMF.
This MCP server implements a governance/compliance evidence collection tool with proper API-based authentication, appropriate permission scoping, and clean code patterns. The server requires API keys for all operations (no unauthenticated access), uses environment variables for credential storage, and implements proper input validation and error handling. No malicious patterns, credential leakage, or dangerous operations were detected. Supply chain analysis found 4 known vulnerabilities in dependencies (2 critical, 2 high severity). Package verification found 1 issue.
7 files analyzed · 9 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Set these up before or after installing:
Environment variable: MIMA_API_KEY
Environment variable: MIMA_WORKSPACE_ID
Add this to your MCP configuration file:
{
"mcpServers": {
"works-mima-governance-mcp": {
"env": {
"MIMA_API_KEY": "your-mima-api-key-here",
"MIMA_WORKSPACE_ID": "your-mima-workspace-id-here"
},
"args": [
"-y",
"@mima-ai/governance-mcp"
],
"command": "npx"
}
}
}From the project's GitHub README.
MCP server for AI governance — push compliance evidence to Mima from any agent, any stack, 4 lines of config.
One tool call maps to EU AI Act, ISO 42001, SOC 2, and NIST AI RMF simultaneously. Your readiness score updates automatically.
npx @mima-ai/governance-mcp
Or add to your MCP config:
{
"mcpServers": {
"mima-governance": {
"command": "npx",
"args": ["-y", "@mima-ai/governance-mcp"],
"env": {
"MIMA_API_KEY": "mima_ext_...",
"MIMA_WORKSPACE_ID": "ws-..."
}
}
}
}
| Tool | What it does |
|---|---|
get_posture | Overall readiness score + per-framework breakdown |
list_systems | All AI systems — registered vs unregistered |
list_evidence | Evidence records filtered by system and time |
dry_run_attest | Preview which controls an attestation would earn |
attest | Write a GRC evidence record |
register_system | Register an AI system under EU AI Act Art. 9 |
acknowledge_policy | Record a policy acknowledgment |
derive_controls | Recommended evidence types for a system description |
check_gates | Gate pass/fail status with exit codes |
suggest_gates | Prioritised gate recommendations |
Add to ~/.claude/settings.json:
{
"mcpServers": {
"mima-governance": {
"command": "npx",
"args": ["-y", "@mima-ai/governance-mcp"],
"env": {
"MIMA_API_KEY": "mima_ext_...",
"MIMA_WORKSPACE_ID": "ws-..."
}
}
}
}
Then ask Claude: "Check our compliance posture" or "Register this AI system and suggest which controls we need."
Add to .cursor/mcp.json or .windsurf/mcp.json in your project root:
{
"mcpServers": {
"mima-governance": {
"command": "npx",
"args": ["-y", "@mima-ai/governance-mcp"],
"env": {
"MIMA_API_KEY": "mima_ext_...",
"MIMA_WORKSPACE_ID": "ws-..."
}
}
}
}
All write tools support dry-run — preview what controls you'd earn before committing:
dry_run_attest({ record_type: "ai_risk_assessment", system_name: "loan-scorer" })
// → { mapped_controls: ["EUAIA_ART9", "ISO42001_6_1", "NIST_AIRF_MAP_1"] }
| Framework | What it covers |
|---|---|
| EU AI Act | Art. 9–15 risk management, oversight, accuracy obligations |
| ISO 42001 | AI management system controls — A.6.x risk, A.9.x performance |
| SOC 2 | CC3.x–CC8.x risk, change, and incident management |
| NIST AI RMF | GOVERN, MAP, MEASURE, MANAGE functions |
mima.works → sign up → copy your key from the dashboard.
For app-code attestation (decorators, batch pushes, pre-approval gates):
pip install mima-governance
Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
by Microsoft · Content & Media
Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption
by mcp-marketplace · Developer Tools
Search and install MCP servers from inside your AI client.