io.github.CSOAI-ORG/meok-enterprise-compliance-suiteother

meok-enterprise-compliance-suite

Flagged

MEOK Enterprise Compliance Suite — End-to-end EU AI Act, GDPR, NIS2, DORA, ISO, SOC2, HIPAA, PCI

Our take

Part of a 300+ listing flood from a single operator (MEOK AI Labs / CSOAI): templated repos mass-published across every category, most decorated with an "MCP Scorecard 86/100" badge from proofof.ai — a domain the same operator owns, a self-issued trust signal dressed up as independent review. It presents as an enterprise compliance suite. Here the badge lives in the PyPI package description while the GitHub repository the registry points at has been deleted — you cannot audit the advertised source at all, only install a black-box package from an operator whose trust signals are self-issued. Working code doesn't offset manufactured trust signals at this scale.

reviewed by hand · 2026-07-05

Something wrong or dead here? Report it

Verification record

in registry since
2026-06-10

github.com/CSOAI-ORG/meok-enterprise-compliance-suite