Clarid Compliance

8.0

Check bank marketing for FDIC, NCUA, TILA, Reg DD, Reg Z, UDAAP, and Equal Housing compliance.

Installation

Claude Desktop config (remote)

{
  "mcpServers": {
    "ai-clarid-compliance": {
      "type": "streamable-http",
      "url": "https://mcp.clarid.ai/mcp"
    }
  }
}

Cursor config

{
  "mcpServers": {
    "ai-clarid-compliance": {
      "url": "https://mcp.clarid.ai/mcp"
    }
  }
}

Security Report

Score Breakdown

Description10

Permissions10

Behavior6

Stability--

Findings (5)

medium

network-access

Remote HTTP Endpoint Without Visible Authentication

Server operates as a remote HTTP endpoint (streamable-http) at https://mcp.clarid.ai/mcp. While this enables integration, remote endpoints are inherently higher risk than local stdio servers. No authentication mechanism is documented in the provided metadata.

medium

excessive-scope

Broad Regulatory Compliance Scope

Server claims to check compliance across 7 different regulatory frameworks (FDIC, NCUA, TILA, Reg DD, Reg Z, UDAAP, Equal Housing). This is a wide scope for a single compliance tool. Without seeing tool definitions, it's unclear if capabilities are appropriately constrained.

low

vague-description

Limited Operational Detail

Description states what regulations are checked but doesn't clarify what 'checking' entails. Does it analyze documents? Review marketing copy? Validate data? The mechanism is unclear.

info

excessive-tools

Tool Definitions Not Available for Review

Tool definitions could not be fetched from the server. This prevents assessment of input validation, prompt injection risks, data handling, and actual capability scope.

info

vague-description

Semantic Analysis Summary

Clarid Compliance is a remote HTTP-based regulatory compliance checker with reasonable trust signals (public repository, website, clear domain focus). However, the broad scope across 7 regulatory frameworks, lack of visible authentication documentation, and unavailable tool definitions prevent full security assessment. The remote endpoint and inability to verify input validation constraints warrant a moderate risk rating.

Last scanned 1h ago

Details

Version: 1.0.0
Transport: streamable-http
Capabilities
Repository: clarid-ai/compliance-checker
Website: clarid.ai