Ansvar: Security Frameworks
Query 262 cited security control frameworks (NIST, ISO 27001, OWASP) from your agent while you harden and document controls before launch.
Overview
eu.ansvar/security-frameworks is a MCP server for the Ship phase that delivers cited lookups across 262 NIST, ISO 27001, and OWASP control frameworks via the Ansvar Gateway.
What is this MCP server?
- 262 control frameworks exposed via Ansvar Gateway with cited responses
- Covers NIST, ISO 27001, and OWASP-style catalogs through one streamable-http remote
- Remote MCP endpoint gateway.ansvar.eu/security-frameworks/mcp (no local stdio package in registry)
- OAuth-authenticated paid gateway service documented at ansvar.eu/gateway
- Ansvar-Systems ansvar-mcp-gateway repository for gateway implementation reference
- 262 control frameworks per registry description
- Remote transport: streamable-http at gateway.ansvar.eu/security-frameworks/mcp
- Gateway version 1.0.aac6263c; OAuth plus paid access required
What problem does it solve?
Pre-launch security work stalls when you manually hunt controls across NIST, ISO, and OWASP PDFs while your agent cannot quote authoritative framework text.
Who is it for?
Indie SaaS and agent builders preparing security reviews, customer security questionnaires, or launch checklists who already use paid MCP gateways.
Skip if: Builders who only need free regional statute search, lack OAuth setup patience, or want a fully offline stdio-only MCP with no gateway account.
What do I get? / Deliverables
After OAuth setup, your agent can pull cited framework controls through MCP and populate review checklists, architecture notes, and compliance matrices faster.
- Cited control framework excerpts usable in security review and launch checklists
- Agent-assisted mapping across NIST, ISO 27001, and OWASP catalogs
- Centralized framework queries without manual PDF hunting
Recommended MCP Servers
Journey fit
Security framework mapping belongs in Ship because solo builders apply NIST, ISO, and OWASP controls when reviewing architecture, policies, and release readiness—not during raw idea brainstorming. Security subphase fits a gateway MCP that returns framework controls with citations for reviews, checklists, and pentest prep rather than generic coding helpers.
How it compares
Paid cited security-framework gateway MCP, not a jurisdiction legislation search server or a local npm law corpus.
Common Questions / FAQ
Who is eu.ansvar/security-frameworks for?
Solo builders and small teams shipping software who want MCP-connected, cited NIST ISO 27001 and OWASP control references inside Claude Code, Cursor, or compatible agents.
When should I use eu.ansvar/security-frameworks?
Use it during Ship security and review work when you are mapping controls, drafting security narratives, or answering audit-style questions before launch.
How do I add eu.ansvar/security-frameworks to my agent?
Register the remote streamable-http MCP URL https://gateway.ansvar.eu/security-frameworks/mcp in your client, complete OAuth through ansvar.eu/gateway, and enable the paid Ansvar Gateway access described in server.json.