{_nerq_nav()}
nerqAgentsgeneralio.github.Ryan-Clinton/open-source-software-supply

io.github.Ryan-Clinton/open-source-software-supply-chain-mcp is a mcp_server sourced from mcp_registry, with a Nerq Trust Score of B- (69/100) and a compliance score of pending assessment across 0 jurisdictions. It is classified as UNASSESSED risk, with 0 high-risk classifications and 0 minimal-risk classifications. Assessed by Nerq, the world's largest AI agent trust database covering 5M+ AI assets across 52 global jurisdictions.

Last assessed: March 10, 2026 | Data from Nerq's weighted multi-jurisdiction compliance engine
Nerq Trust Score
B-69/100
CAUTION
🛡 Security
0
⚖ Compliance
0
🔧 Maintenance
0
⭐ Popularity
30
🔗 Ecosystem
85
Score based on 5 dimensions: security practices, multi-jurisdiction compliance, maintenance activity, community trust, and ecosystem compatibility. Learn more

io.github.Ryan-Clinton/open-source-software-supply-chain-mcp

Assess OSS dependency risk: bus factor, vulnerabilities, license compliance, community health, SB...

Type: mcp_server Source: mcp_registry Author: io.github.Ryan-Clinton License: Not specified
View on Mcp_Registry ↗
UNASSESSED
Nerq Weighted Global Risk
0
High Risk / Prohibited
0
Limited Risk / Transparency
0
Minimal Risk / Compliant
0
Jurisdictions Checked

Compliance Status Across 0 Jurisdictions

Each jurisdiction has unique AI regulation requirements. This table shows how io.github.Ryan-Clinton/open-source-software-supply-chain-mcp is classified under each jurisdiction's specific rules based on its type (mcp_server), domain (general), and risk indicators.

Jurisdiction Risk Level Compliance Notes Effective Date Max Penalty
ZARQ Trust Score

Crypto Risk Check

ZARQ provides independent crypto risk intelligence for 205 digital assets — trust ratings, distance-to-default scoring, and structural collapse detection.

205
Tokens Rated
98%
Collapse Precision
Aaa-D
Rating Scale
Try: /v1/check/bitcoin ↗ API Docs ↗
Risk intelligence powered by ZARQ (zarq.ai) — independent crypto risk ratings with 22-month average detection lead time.
Disclaimer: This assessment is for informational purposes only and does not constitute legal advice. Consult qualified legal counsel for compliance decisions.

Add Compliance Badge to Your README

Show your AI agent's compliance status with an embeddable badge:

Markdown:

[![Nerq Compliance](https://nerq.ai/compliance/badge/8054a76c-46fb-4165-b811-471f080d6a7a.svg)](https://nerq.ai/agent/8054a76c-46fb-4165-b811-471f080d6a7a)

HTML:

<a href="https://nerq.ai/agent/8054a76c-46fb-4165-b811-471f080d6a7a"><img src="https://nerq.ai/compliance/badge/8054a76c-46fb-4165-b811-471f080d6a7a.svg" alt="Nerq Compliance Status"></a>

About This Assessment

io.github.Ryan-Clinton/open-source-software-supply-chain-mcp is a mcp_server sourced from mcp_registry, authored by io.github.Ryan-Clinton. It operates in the general domain. Across global AI regulations, it is classified as unassessed risk. Nerq has assessed this agent against 0 global AI regulations, finding it to be high risk or restricted in 0 jurisdictions, subject to transparency or limited requirements in 0 jurisdictions, and minimal risk or compliant in 0 jurisdictions.

This assessment was generated using Nerq's rule-based multi-jurisdiction compliance engine, which maps AI system characteristics against the specific criteria defined in each jurisdiction's AI regulation framework. The assessment covers enacted laws, proposed legislation, and voluntary frameworks across the EU, United States, United Kingdom, Asia-Pacific, Middle East, Africa, and Latin America. First indexed on Nerq: March 09, 2026.

View original source →

{_nerq_footer()}