Comp AI MCP Server

Connect your AI assistant directly to your Comp AI compliance workspace. Manage risks, tasks, vendors, policies, and more — without leaving your editor or chat interface.

Hosted server: https://mcp.trycomp.ai/mcp

---

Quickstart (hosted)

No installation needed. Just point your MCP client at the hosted server.

Step 1 — Add to your MCP client config

Claude Desktop (~/Library/Application Support/Claude/claude_desktop_config.json):

{
  "mcpServers": {
    "comp-ai": {
      "url": "https://mcp.trycomp.ai/mcp"
    }
  }
}

Cursor (.cursor/mcp.json in your project, or ~/.cursor/mcp.json globally):

{
  "mcpServers": {
    "comp-ai": {
      "url": "https://mcp.trycomp.ai/mcp"
    }
  }
}

Windsurf (~/.codeium/windsurf/mcp_config.json):

{
  "mcpServers": {
    "comp-ai": {
      "url": "https://mcp.trycomp.ai/mcp"
    }
  }
}

Step 2 — Get your API key

Go to Comp AI → Settings → API Keys and create a key.

Step 3 — Authenticate

Tell your AI assistant:

set-api-key <your-api-key>

That's it. You're connected.

---

Example prompts

Show me my compliance dashboard

List all open high-severity risks

Create a risk: "Third-party vendor data breach" with high likelihood and major impact

Assign task <id> to <person> and set the due date to end of month

Draft a data retention policy for our AWS setup

Show me all vendors that haven't been assessed yet

Trigger evidence collection for task <id>

Add context: our primary cloud provider is AWS with multi-region setup in us-east-1 and eu-west-1

---

Available tools

Tool	Description
set-api-key	Authenticate with your Comp AI API key — do this first
compliance-dashboard	Full overview: org info, risk/task/vendor/policy counts
list-people	List org members with IDs, roles, and departments
list-risks	List risks, filterable by severity and status
get-risk	Get full details of a single risk
manage-risk	Create or update a risk
list-tasks	List compliance tasks, filterable by status or assignee
get-task	Get full details of a single task including evidence
update-task	Update a task's status, assignee, or due date
get-findings	Get findings/gaps for a compliance task
list-vendors	List vendors
manage-vendor	Create or update a vendor
list-policies	List organizational policies
manage-policy	Create or update a policy
list-context	List AI context entries (Q&A pairs for policy generation)
add-context	Add context to help Comp AI understand your org better
collect-evidence	Trigger automated evidence collection for a task

---

MCP Resources

The server also exposes these resources for direct access:

• comp://risks — All organizational risks
• comp://vendors — All vendors
• comp://policies — All policies
• comp://tasks — All compliance tasks

---

Self-hosting

Requires Node.js 18+.

git clone https://github.com/trycompai/comp-mcp
cd comp-mcp
npm install
npm run build
npm start

The server listens on http://localhost:3000/mcp by default.

To point your MCP client at a self-hosted instance:

{
  "mcpServers": {
    "comp-ai": {
      "url": "http://localhost:3000/mcp"
    }
  }
}

Environment variables:

Variable	Default	Description
PORT	3000	Port to listen on
TRYCOMP_API_KEY	—	Pre-configure an API key (optional, can also use set-api-key tool)
TRYCOMP_API_URL	https://api.trycomp.ai/v1	Override the Comp AI API base URL

---

Privacy

Anonymous usage analytics collected via Agnost AI. No sensitive data is recorded.

---

License

MIT