EU AI Act Compliance Scanner

Development teams struggle to understand if their codebase triggers EU AI Act obligations. This CLI tool scans repositories for AI framework usage and flags regulatory risks automatically in CI/CD pipelines. Target users are companies shipping EU-facing AI products and compliance teams.

The EU AI Act's phased enforcement schedule—with prohibitions active from February 2025 and high-risk system obligations kicking in through 2026—creates a genuine compliance deadline that enterprises cannot ignore, and most development teams have no tooling to surface where their code even intersects with the regulation. No clear incumbent owns this space; legal firms and consultancies are filling the gap manually, which is exactly the inefficiency a CLI tool can exploit. The $2k–10k/mo revenue band is plausible if sold as a per-seat or per-repo SaaS add-on to mid-market engineering teams, though it likely requires landing compliance or legal buyers rather than developers, which lengthens the sales cycle. The biggest risk is that static code scanning only catches framework imports and model calls, not the actual risk classification logic the Act cares about—meaning the tool could give false confidence, eroding trust fast once buyers realize it can't answer "is this a high-risk system?" without significant human judgment layered on top.