top | item 46557823

Show HN: EuConform – Offline-first EU AI Act compliance tool (open source)

71 points| hiepler | 1 month ago |github.com

I built this as a personal open-source project to explore how EU AI Act requirements can be translated into concrete, inspectable technical checks.

The core idea is local-first compliance: – risk classification (Articles 5–15, incl. prohibited use cases) – bias evaluation using CrowS-Pairs – automatic Annex IV–oriented PDF reports – no cloud services or external APIs (browser-based + Ollama)

I’m especially interested in feedback on whether this kind of technical framing of AI regulation makes sense in real-world projects.

49 comments

dabedee|1 month ago

Hey there! I find the idea super relevant and I think compliance tools that can be used like this are the way forward.

Given the timeline of the commits and some other tells (e.g. using forwardRef despite using React 19 which deprecates it), it seems like you used coding assistants extensively. That's a personal preference, but I would mention that explicitly (if that's the case), if only for intellectual honesty.

9dev|1 month ago

Hard disagree from me there. I don’t care what language a tool is built with, I’m neither interested in their choice of code editor, nor whether they use AI in the process or not. It’s a means to an end, not some flaw to be ashamed of and forced to disclose.

If something gets built with AI or not at all, that’s a net positive as far as I’m concerned.

hiepler|1 month ago

Thanks, appreciate the thoughtful feedback.

You’re right that the commit history doesn’t fully reflect the raw development process. I did some cleanup and squashing before publishing, since this is an open-source project and I wanted the history to be readable and reviewable.

I do use coding assistants as part of my workflow, mostly for iteration speed and boilerplate, but the architectural decisions, evaluation logic, and compliance mapping are intentional and manually reasoned through.

Happy to clarify any part of the implementation or assumptions if something looks odd.

dmitrygr|1 month ago

"EuConform" <- I love the name. Not sure if you meant it as it reads, but I love it.

petcat|1 month ago

"you conform" is how it reads to me. which leaves a bad taste given the nature of it.

PeterStuer|1 month ago

The problem is that the interpretation of what the defacto requirements for what compliance with the ai act entails still is in high flux and changing on a weekly basis.

hiepler|1 month ago

[deleted]

ushakov|1 month ago

[deleted]

InsideOutSanta|1 month ago

You could have written a comment that would have created a positive impact on people, but you chose to aggressively attack somebody who created a helpful open-source tool.

agentifysh|1 month ago

You are getting down voted for being politically incorrect but you should expect hall monitors.

imiric|1 month ago

Ah, yes. You mean technology like "AI" that creates a positive impact on people?

ankit219|1 month ago

Calling it "Conform" is very 1984esque. There is also a 2025 book (a dystopian romance) called the same: https://www.goodreads.com/book/show/223239535-conform

lawlessone|1 month ago

TIL 1984-esque is when i can't use my customers data to train bots.

mort96|1 month ago

Needing to conform to various rules and regulations isn't exactly a new thing

pennaMan|1 month ago

in this case the best compliance is non compliance

degrowth decels are a scourge

troyvit|1 month ago

A scourge to what, exactly?

hash872|1 month ago

Glad to see future builders focusing on bureaucratic compliance first & foremost. It's a stirring vision. This is a great European VC on Twitter you may want to tag about your project, he invests solely in GDPR-compliant European tech https://x.com/compliantvc

tpetry|1 month ago

You know that this is a parody account?

agentifysh|1 month ago

If you are not European, it doesn't seem very attractive for non-Europeans to deal with all the anti-business regulations.

Also just from the data that has been shared with me chargebacks/complaints/nitpicking/stinginess alone from this region seems to demoralizing compared to Americans/East Asia

We have this idealized view of a rich affluent "Europe" born from Marshall Plan but that certainly is not the actual reality today.

Kim_Bruning|1 month ago

The EU started out as an economic union. They are still very capitalist. Which means they protect consumers, promote fair competition, and encourage trade between member states. They're neither mercantilist nor plutocratic.

pyrale|1 month ago

> all the anti-business regulations.

Regulation is made to protect customers. Consumer trust is favorable to business in the long run.

It's really sad that US technologists confuse business and grift these days. Maybe it's related to their main customers being VCs, and the people using service just being props needed to have the line go up.

troupo|1 month ago

> non-Europeans to deal with all the anti-business regulations.

These are not "anti-business regulations".

rvz|1 month ago

What innovation do we have here from the EU? Its official name should be:

The Official EU AI Act Compliance Regulation Conformance Tool MMXXVI v1.0

If you are one patch version behind, you are "non-complaint" and you will get fined immediately.

We <3 EU!

bigyabai|1 month ago

This but unironically. Snuff Google, Microsoft and Apple with the passion of a thousand suns and never let their ashes rise again to threaten fair people.

Signed, an American who is fed up with adslop and saasslop propaganda. Do not reward immoral megacorps.