Probo

Probo is a governance, risk, and compliance platform built for engineering and security teams. It covers the GRC lifecycle: risk identification, control tracking, vendor and third-party risk, data privacy, access reviews, audit programs, and document approval workflows in one system.

Every entity is reachable through a web console, the prb CLI, a Model Context Protocol API, and a GraphQL API, so compliance work can run from code, scripts, or an LLM agent. It includes 270+ MCP tools, a CLI with 44+ command groups, policy-based RBAC, immutable audit logs, electronic document sign-off with evidence chains, and an n8n community node for no-code automation. Risk scoring, custom framework import, and a Statement of Applicability are built in.

Probo is ISC licensed and self-hostable on your own infrastructure with Docker, using a Go backend and PostgreSQL. It is backed by Y Combinator and ships with no vendor lock-in.