Open source solutions for SOC2, GDPR, and ISO27001

Complete AI governance and LLM Evals platform with support for EU AI Act, ISO 42001, NIST AI RMF and 20+ more AI frameworks and regulations. Join our Discord channel: https://discord.com/invite/d3k3E4uEpR

Claude Skills for Governance, Risk & Compliance (GRC): Expert-level compliance guidance for ISO 27001, SOC 2, FedRAMP, GDPR, HIPAA, NIST CSF, PCI DSS, TSA Cybersecurity, and ISO 42001 AI Management System. Skills scored 94% vs a baseline of 72% without using Skills.

⚕️ the world's first unified, lifecycle-centric regulatory framework specifically designed for autonomous AI agents in medical environments (270+ requirements, 3 risk categories).

NIST AI RMF applied to a real research cluster. We govern our own AI tools, document decisions, and share templates. Practical governance for small teams.

Frictionless Governance for AI

Hardened Public Release of KAIROS invocation governance framework. Includes invocation terms, ethical compliance clauses, regulatory mapping, and sample outputs. Licensed under CC BY-NC-ND 4.0. License: Do not auto-generate via GitHub. Use hardened License.txt

AWS AI Governance Framework - Serverless Edition with Lambda, Aurora Serverless v2, and 60% cost savings. Features ISO 27001/27701/42001 compliance, OPA policies, and AWS resource scanners.

The most comprehensive open-source mapping of OWASP GenAI risks to industry frameworks — 37 files, 16 frameworks, 3 source lists: LLM Top 10, Agentic Top 10, DSGAI 2026. OT/ICS, EU AI Act, NIST, ISO 27001, ISO 42001, CIS, SAMM, ENISA, NHI, AIVSS.

Multi-tenant AI SaaS platform for SMEs using serviced offices, combining operational, compliance, and growth tools.

Open reference documentation for AI Governance, Risk, & Compliance. Contains a risk lexicon, audit interview guides, oversight reporting templates, maturity models — and much more, all inspired by ISO 42001 and other major AI regulatory standards.

Black box recorder for AI agents. Session replay, compliance reports, real-time monitoring.

Guide GRC teams with Claude Skills for ISO 27001, SOC 2, FedRAMP, GDPR, HIPAA, NIST CSF, PCI DSS, TSA, and ISO 42001

🤖 Streamline AI-assisted development with a governance kit for rules, enforcement, and decision-making, ensuring speed and oversight in your projects.

Automated GRC evidence collection for GCP and Google Workspace — PCI-DSS, SOC 2, ISO 27001, ISO 42001

LegalAIze - EU AI Act & ISO/IEC 42001 Audit Compliance Assistant. An automated MLOps pipeline acting as a digital auditor to evaluate AI systems' compliance. It leverages a Pre-computed RAG architecture to map legal requirements with technical controls in a reproducible way.

Python library for AI-driven agricultural zoning with ISO 42001 compliance.