
Security News
npm v12 Ships With Install Scripts Off by Default, Begins Deprecating 2FA-Bypass Tokens
npm v12 is generally available, turning install scripts off by default and beginning the deprecation of 2FA-bypass publishing tokens.
@ansvar/ch-environmental-compliance-mcp
Advanced tools
Swiss environmental compliance data via MCP -- GSchG, LRV, BFF, ammonia rules, Pa.Iv. 19.475, UVP, VBBo
Swiss environmental compliance data for agriculture via the Model Context Protocol. Water protection zones, buffer strips, ammonia emissions, biodiversity areas, nutrient loss targets, EIA thresholds, and soil contamination limits -- all from your AI assistant.
Part of Ansvar Open Agriculture.
Swiss farms must comply with federal environmental regulations across several domains: Gewaesserschutz (GSchG/GSchV), ammonia emissions (LRV), Biodiversitaetsfoerderflaechen (DZV), the Pa.Iv. 19.475 nutrient loss reduction pathway, and UVP/VBBo for building permits and soil protection. These rules are published by BAFU, BLW, and Agroscope but scattered across ordinances, fact sheets, and cantonal guidance. This MCP server brings them together in a structured, searchable format.
Add to claude_desktop_config.json:
{
"mcpServers": {
"ch-environmental-compliance": {
"command": "npx",
"args": ["-y", "@ansvar/ch-environmental-compliance-mcp"]
}
}
}
claude mcp add ch-environmental-compliance npx @ansvar/ch-environmental-compliance-mcp
https://mcp.ansvar.eu/ch-environmental-compliance/mcp
docker run -p 3000:3000 ghcr.io/ansvar-systems/ch-environmental-compliance-mcp:latest
npx @ansvar/ch-environmental-compliance-mcp
Ask your AI assistant:
| Metric | Value |
|---|---|
| Tools | 11 (3 meta + 8 domain) |
| Jurisdiction | CH |
| Data sources | BAFU (GSchG/GSchV, LRV, VBBo), BLW (DZV, OELN), Agroscope (Agrammon), Parlament (Pa.Iv. 19.475) |
| License (data) | Swiss Federal Administration -- free reuse |
| License (code) | Apache-2.0 |
| Transport | stdio + Streamable HTTP |
| Tool | Description |
|---|---|
about | Server metadata and links |
list_sources | Data sources with freshness info |
check_data_freshness | Staleness status and refresh command |
search_environmental_rules | FTS5 search across all environmental compliance topics |
get_water_protection_zones | Grundwasserschutzzonen S1-S3/Sm/Zu with restrictions |
get_buffer_zone_rules | Pufferstreifen distances and requirements |
get_ammonia_rules | Ammoniakemissionen by technique (LRV) |
get_bff_requirements | BFF types, QI/QII payment rates, botanical criteria |
get_nutrient_loss_limits | Pa.Iv. 19.475 N/P reduction targets through 2030 |
get_eip_requirements | UVP thresholds and VBBo soil contamination limits |
check_environmental_compliance | Applicable rules for a given agricultural operation |
See TOOLS.md for full parameter documentation.
This repository runs security checks on every push:
See SECURITY.md for reporting policy.
This data is for reference only. Always consult the relevant cantonal authority or BAFU before taking action. This tool is not legal or environmental compliance advice. See DISCLAIMER.md.
Issues and pull requests welcome. For security vulnerabilities, email security@ansvar.eu (do not open a public issue).
Apache-2.0. Data sourced from Swiss Federal Administration publications under free-reuse principles.
FAQs
Swiss environmental compliance data via MCP -- GSchG, LRV, BFF, ammonia rules, Pa.Iv. 19.475, UVP, VBBo
We found that @ansvar/ch-environmental-compliance-mcp demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
npm v12 is generally available, turning install scripts off by default and beginning the deprecation of 2FA-bypass publishing tokens.

Research
/Security News
Socket tracks the activity as Operation “Muck and Load”: a threat actor uses commit-farming workflows, public dead drops, and protected archives to stage Windows RAT and infostealer malware.

Security News
pnpm 11.10 hardens registry auth to block token redirection, tightens pack-app and deploy, and makes the Rust port (v12) installable.