frontpage.

What it is:

PEC (Protocol-Embedded Compliance) is an academic proposal to extend Model Context Protocol (MCP) with compliance metadata, so AI agents can make compliance-aware tool selections.

The problem:

When an AI agent discovers tools via MCP, it has no standard way to know where that tool processes data, what certifications it holds, or what use restrictions apply. Each deployer has to figure this out manually.

The proposal:

A JSON schema extension where MCP servers declare processing locations (e.g., "EU-only", specific countries), certifications (HIPAA, PCI-DSS, ISO 27001, etc.), and use restrictions. This lets compliance-aware orchestrators filter tools before invocation.

Current status:

Draft paper targeting Q1 2026 publication. Draft schema available at https://usepec.eu. No adoption yet — seeking feedback from the MCP ecosystem.

What it's not:

This doesn't guarantee compliance or replace legal review. It standardises how tools declare compliance characteristics. The bet is that protocol-level standardisation is worth the coordination cost.

Happy to discuss the technical approach, alternative designs, or why this might be a terrible idea.

Show HN: I Hacked My Family's Meal Planning with an App

Sony BMG copy protection rootkit scandal

The Future of Systems

NASA now allowing astronauts to bring their smartphones on space missions

Claude Code Is the Inflection Point

Show HN: MicroClaw – Agentic AI Assistant for Telegram, Built in Rust

Show HN: Omni-BLAS – 4x faster matrix multiplication via Monte Carlo sampling

The AI-Ready Software Developer: Conclusion – Same Game, Different Dice

AI Agent Automates Google Stock Analysis from Financial Reports

Voxtral Realtime 4B Pure C Implementation

I Was Trapped in Chinese Mafia Crypto Slavery [video]

U.S. CBP Reported Employee Arrests (FY2020 – FYTD)

Show HN: I built a free UCP checker – see if AI agents can find your store

Show HN: SVGV – A Real-Time Vector Video Format for Budget Hardware

Study of 150 developers shows AI generated code no harder to maintain long term

Spotify now requires premium accounts for developer mode API access

When Albert Einstein Moved to Princeton

Agents.md as a Dark Signal

System time, clocks, and their syncing in macOS

McCLIM and 7GUIs – Part 1: The Counter

So whats the next word, then? Almost-no-math intro to transformer models

Ed Zitron: The Hater's Guide to Microsoft

UK infants ill after drinking contaminated baby formula of Nestle and Danone

Show HN: Android-based audio player for seniors – Homer Audio Player

Starter Template for Ory Kratos

LLMs are powerful, but enterprises are deterministic by nature

Make your iPad 3 a touchscreen for your computer

Internationalization and Localization in the Age of Agents

Building a Custom Clawdbot Workflow to Automate Website Creation

Why the "Taiwan Dome" won't survive a Chinese attack