EU AI Act compliance, in your editor
Shipping an AI feature to EU users? The Act applies to you — Article 50 transparency from Aug 2026, high-risk obligations from Dec 2027. Catch it where you code, in seconds — no 100-page read, no lawyer to get started.
npx @legalithm/cli setupA cited starting point that tells you when to get a human — not legal advice.
Compliance in the coding loop
Three surfaces, one source of truth — the dated record in your repo.
In your editor
An offline MCP server gives Cursor & Claude Code four tools — classify risk, explain the cited obligations, generate an Article 50 disclosure. No API key.
In your repo
legalithm init writes a dated, cited compliance/legalithm.json — your risk tier, obligations, and the Article it matched. A record you can show.
In your CI
legalithm check (and the GitHub Action) re-verify the record and fail the build on drift — your code changed, or the rules did.
From zero to a compliance record in three commands
1.Wire it into your editor + CI
Installs the Claude Code hooks, the Cursor rule, and the MCP server. Idempotent, non-destructive.
npx @legalithm/cli setup2.Generate the record
Detects your stack, classifies the use case, and writes compliance/legalithm.json + the Annex IV draft + a checklist.
npx @legalithm/cli init3.Keep it honest in CI
Re-verifies the record; exits non-zero on input, rule, or risk drift. Add it as a GitHub Action.
npx @legalithm/cli checkBuilt to be trusted, not just used
Cited. Every classification names the Article/Annex it matched, with the EUR-Lex link.
Honest when unsure. Low-confidence results are flagged for review and defer to a human instead of guessing.
Offline & private. The editor tools run with no network and no key; detection reads dependency names only.
Free & open. CLI, MCP server, and Action — open-source, free through the high-risk deadline.
FAQ
Is it free?
Yes — the CLI, MCP server, and GitHub Action are free and open-source, and stay free through the EU AI Act high-risk deadline (Dec 2027).
Does it need an API key?
No for the editor tools — classify, explain, and disclosure run fully offline. Only generating a persisted record talks to the API (free key).
Is this legal advice?
No. Legalithm detects patterns and cites the Article it matched — a starting point. When it is not confident it flags the result for human review instead of guessing. Not legal advice, not a certification.
Which stacks does it detect?
Node, Python, Go, Rust, Java, .NET, PHP, and Ruby — by dependency manifest. Privacy-safe: it reads dependency names only, never your env values or file contents.
How accurate is it?
It is a rule engine grounded in the Act, with calibrated confidence and an abstention path. It is honest about uncertainty; a lawyer-reviewed accuracy case-study is on the roadmap.
Ship AI to the EU with a clear conscience
One command. Free. In the editor you already use.