Skip to content

SPEC.md

Latest commit

 

History

History
465 lines (371 loc) · 14.3 KB

SPEC.md

File metadata and controls

465 lines (371 loc) · 14.3 KB

Agent Web Protocol — Specification v0.2

Status: Draft RFC
Published: 2026-04-16
Authors: Agent Web Protocol contributors
License: MIT

1. Overview

Agent Web Protocol (AWP) is an open standard for declaring any digital surface — website, API, document, or authentication flow — as agent-ready.

The core artifact is agent.json: a machine-readable file published at the root of any web domain, telling AI agents exactly what they can do, what inputs they need, and how to recover from errors.

2. Design Goals

  • Discoverable — agents find it without prior configuration
  • Minimal — the core is small enough to implement in an afternoon
  • Recoverable — every failure state has a machine-readable recovery path
  • Extensible — unknown fields are ignored, not fatal
  • Stable — core fields do not change between minor versions

3. Discovery

A conforming agent.json file MUST be published at:

https://{domain}/agent.json

This follows the same convention as robots.txt and sitemap.xml.
Agents SHOULD attempt GET /agent.json as the first step when interacting with any new domain. The server MUST return Content-Type: application/json.

4. Versioning

The awp_version field declares the spec version the file conforms to.

MAJOR.MINOR
  • Minor versions add optional fields. Backward compatible.
  • Major versions may introduce breaking changes.
  • Agents encountering an unknown major version SHOULD degrade gracefully rather than fail entirely.

Current version: 0.2

5. Top-Level Fields

Field Type Required Description
awp_version string yes Spec version (e.g. "0.2")
domain string yes Canonical domain this file applies to
intent string yes Plain language description of the surface
protocols object no Other agent protocols this surface speaks (see §5.5)
capabilities object no Feature flags (see §6)
auth object no Authentication contract (see §7)
entities object no Typed data models (see §8)
actions array yes Declared actions (see §9)
errors object no Error recovery contracts (see §10)
dependencies object no Action prerequisite graph (see §11)
agent_hints object no Semantic planning guidance (see §12)
agent_status object no Liveness signal (see §13)

5.5 Protocols

AWP is the discovery layer — the manifest. Many surfaces also speak one or more transport, tool-invocation, or payment protocols. The protocols field declares them so an agent reading agent.json knows, in a single fetch, every standard the surface supports and where to reach it.

"protocols": {
  "a2a": {
    "version": "0.3",
    "endpoint": "https://agent.example.com/agent/message",
    "agent_card": "https://agent.example.com/.well-known/agent-card.json"
  },
  "mcp": {
    "version": "2025-06-18",
    "endpoint": "https://mcp.example.com",
    "transport": "http"
  },
  "x402": {
    "version": "1.0",
    "wallet": "0x..."
  },
  "payment": {
    "type": "stripe_link",
    "agent_op": "checkout.create"
  }
}

Field structure

Each entry is keyed by a protocol identifier (lowercase, hyphenated). The value is an object with at least:

Field Type Required Description
version string yes Protocol version this surface conforms to
endpoint string (url) conditional Where to reach the protocol. Required for transport/tool protocols; optional for payment-only declarations

Additional protocol-specific fields are allowed (e.g. agent_card for A2A, transport for MCP, wallet for x402). Agents MUST ignore unknown protocol-specific fields rather than fail.

Registered protocol identifiers

The following identifiers SHOULD be used when a surface speaks a known standard. This list is informative; surfaces MAY declare additional custom protocols.

Identifier Standard Layer
a2a Agent-to-Agent (Google) Transport / messaging
mcp Model Context Protocol (Anthropic) Tool invocation
acp Agent Communication Protocol (IBM) Messaging
ap2 Agent Payments Protocol (Google) Payment
x402 HTTP 402 + crypto wallet (Coinbase) Payment
skyfire Skyfire agent payments Payment / identity
openapi OpenAPI / Swagger API description
graphql GraphQL API description
payment Generic payment hand-off (e.g. hosted checkout link) Payment

Linking actions to protocols

Actions MAY include an optional via field naming a protocol declared in protocols. Agents use this to route the action through the correct protocol client.

"actions": [
  { "id": "list_products", "via": "a2a", "operation": "product.search" },
  { "id": "checkout",      "via": "a2a", "operation": "checkout.create" }
]

When an action has via, the named protocol MUST appear in protocols. When an action omits via, agents SHOULD assume direct HTTP at the declared endpoint/method (the v0.1 default behavior).

Why this exists

Other agent protocols define how to talk. AWP defines who to talk to. By declaring sibling protocols inside agent.json, a surface gives every agent a single bootstrap URL — /agent.json — from which all other standards become reachable. Agents no longer guess the transport.

6. Capabilities

Optional feature flags agents can check before planning actions.

"capabilities": {
  "streaming": false,
  "batch_actions": true,
  "webhooks": true,
  "pagination": "cursor",
  "idempotency": true
}
Field Type Description
streaming boolean Whether endpoints support streaming responses
batch_actions boolean Whether multiple actions can be submitted together
webhooks boolean Whether async results can be delivered via webhook
pagination string Pagination style: cursor, offset, page, or none
idempotency boolean Whether idempotency keys are supported

7. Auth

Declares the authentication contract for the surface.

"auth": {
  "required_for": ["book", "manage_trip"],
  "optional_for": ["search"],
  "type": "oauth2",
  "token_expiry": "24h",
  "refresh_endpoint": "/api/auth/refresh"
}
Field Type Description
required_for array[string] Action IDs that require authentication
optional_for array[string] Action IDs where auth is optional
type string Auth type: oauth2, api_key, bearer, none
token_expiry string Token lifetime (e.g. "24h", "7d")
refresh_endpoint string Endpoint to refresh expired tokens

8. Entities

Named, typed data models that actions reference in inputs and outputs.

"entities": {
  "flight": {
    "fields": {
      "flight_number": "string",
      "origin": "airport_code",
      "destination": "airport_code",
      "departure_time": "ISO8601",
      "price_usd": "float",
      "cabin_class": "enum[economy, business, first]"
    }
  }
}

Entities are referenced in action inputs/outputs as object[entity_name] or array[entity_name].

Supported primitive types

Type Description
string UTF-8 string
integer Whole number
float Decimal number
boolean true / false
ISO8601 Date or datetime string
url Fully qualified URL
enum[a, b, c] One of a defined set of values
array[type] List of typed items
object[entity] Reference to a named entity

9. Actions

The core of agent.json. Each action represents something an agent can do.

"actions": [
  {
    "id": "search_flights",
    "description": "Search available flights between two airports",
    "auth_required": false,
    "inputs": {
      "origin": { "type": "airport_code", "required": true },
      "destination": { "type": "airport_code", "required": true },
      "date": { "type": "ISO8601", "required": true },
      "cabin_class": {
        "type": "enum",
        "options": ["economy", "business", "first"],
        "default": "economy"
      }
    },
    "outputs": {
      "flights": "array[flight]",
      "search_token": "string"
    },
    "endpoint": "/api/flights/search",
    "method": "POST",
    "rate_limit": "30/minute",
    "idempotency": {
      "supported": true,
      "key_field": "idempotency_key",
      "window": "24h"
    },
    "execution_model": "sync"
  }
]

Action fields

Field Type Required Description
id string yes Unique identifier for this action
description string yes Plain language description for agent planning
auth_required boolean yes Whether authentication is required
inputs object yes Typed input parameters
outputs object yes Typed output fields
endpoint string conditional API endpoint path. Required unless via references a protocol that supplies the endpoint
method string conditional HTTP method: GET, POST, PUT, DELETE, PATCH. Required unless via is set
via string no Identifier of a protocol declared in protocols (see §5.5). When set, the action is invoked through that protocol
operation string no Protocol-specific operation name when via is set (e.g. an A2A method, an MCP tool name)
rate_limit string no Rate limit (e.g. "30/minute")
idempotency object no Idempotency contract (see below)
execution_model string no sync (default) or async
poll_endpoint string no For async: endpoint to check job status
sensitivity string no standard, destructive, or irreversible
requires_human_confirmation boolean no Agent SHOULD prompt user before executing
reversible boolean no Whether the action can be undone

Input parameter fields

Field Type Required Description
type string yes Data type
required boolean no Defaults to false
default any no Default value if not provided
options array no Valid values for enum types
description string no Additional context for the agent

Sensitivity levels

Actions SHOULD declare sensitivity when they have consequences:

  • standard — default, no special handling required
  • destructive — modifies or deletes data, agent SHOULD confirm
  • irreversible — cannot be undone, agent MUST confirm with user

10. Errors

Maps error codes to machine-readable recovery instructions.

"errors": {
  "AUTH_EXPIRED": {
    "recovery": "call /api/auth/refresh then retry original action"
  },
  "RATE_LIMITED": {
    "recovery": "wait 60 seconds then retry"
  },
  "SEAT_UNAVAILABLE": {
    "recovery": "retry search_flights with different parameters"
  },
  "INVALID_AIRPORT_CODE": {
    "recovery": "query /api/airports?search={input} to find valid codes"
  }
}

Recovery instructions MUST be actionable by a machine. They SHOULD reference specific endpoints or actions where applicable.

11. Dependencies

Declares prerequisite relationships between actions.

"dependencies": {
  "book_flight": ["search_flights"],
  "check_in": ["book_flight"],
  "select_seat": ["book_flight"]
}

Agents MUST execute prerequisite actions and obtain required outputs before attempting a dependent action.

12. Agent Hints

Semantic guidance to improve agent planning. Free-form key-value pairs.

"agent_hints": {
  "optimal_search_window": "search at least 24h before departure",
  "price_volatility": "high — cache search results max 5 minutes",
  "auth_note": "search does not require auth — only call auth when booking"
}

Agents SHOULD incorporate hints into planning but MUST NOT treat them as hard constraints.

13. Agent Status

Optional liveness signal. Allows agents to check operational state before planning actions.

"agent_status": {
  "operational": true,
  "degraded_actions": ["book_flight"],
  "status_endpoint": "/api/status"
}
Field Type Description
operational boolean Whether the surface is currently available
degraded_actions array[string] Action IDs currently impaired
status_endpoint string Endpoint for real-time status

14. Synthetic agent.json

When a domain has not published a native agent.json, agents MAY use a synthetic file generated by a trusted intermediary. Middleware tools can generate a synthetic agent.json for any URL on demand.

Synthetic files MUST declare their origin:

"source": "synthetic",
"generated_by": "synthetic-agent-json-generator",
"confidence": 0.87,
"last_verified": "2026-03-15T10:00:00Z"

Agents SHOULD treat synthetic files as lower-confidence than native files and SHOULD prefer native files when available.

15. Conformance

A conforming agent.json file MUST:

  • Be valid JSON
  • Include awp_version, domain, intent, and actions
  • Publish at https://{domain}/agent.json
  • Return Content-Type: application/json

A conforming agent.json file SHOULD:

  • Declare error recovery for all expected failure states
  • Include description on every action
  • Declare sensitivity on destructive or irreversible actions

A conforming agent.json file MAY:

  • Include any additional fields not defined in this spec
  • Unknown fields MUST be ignored by agents

16. Changelog

v0.2 (2026-04-16)

  • Added protocols top-level field (§5.5) — declares sibling agent protocols a surface speaks (A2A, MCP, ACP, AP2, x402, etc.) so agents can route via known transports
  • Added optional via and operation fields on actions, linking actions to a declared protocol
  • Reference implementation: laclawclaw.com/.well-known/agent.json
  • Backward compatible — v0.1 files validate as v0.2

v0.1 (2026-03-16)

  • Initial draft
  • Core fields: actions, auth, entities, errors, dependencies, agent_hints
  • Synthetic agent.json declaration
  • Sensitivity and human confirmation fields
  • Agent status liveness signal

Contributing

Propose changes via GitHub issues and pull requests. Contact: spec@agentwebprotocol.org