Skip to content
@opena2a-standards

OpenA2A

README.md

OpenA2A

Standards

Open specifications for AI agent security: identity, trust credentials, threat models, behavioral governance, and the conformance suites that test them. Vendor-neutral. Apache 2.0 unless noted per repo.

  • Agent Threat Matrix: tactics and techniques for attacks on AI agent systems. 57 techniques across 9 tactics, mapped to MITRE, ATLAS, and OWASP. MITRE submission in flight.
  • Agent Identity Protocol (AIP): open standard for AI agent identity, capabilities, and trust.
  • Agent Trust Protocol (ATP): open standard for verifiable trust assertions about AI agents.
  • ATX: Agent Trust eXtension credential format and protocol architecture.
  • ABGS: Agent Behavioral Governance Specification. What goes in a SOUL.md file.
  • AIIS Signatures: AI Injection Signature Standard. YARA-style signatures for AI agent prompt injections in web content.
  • OTel SemConv for agent identity: OpenTelemetry semantic conventions for AI agent authorization observability.

Conformance suites:

See GOVERNANCE.md for how decisions are made and how to contribute. The catalog of all OpenA2A organizations and projects lives at opena2a.org/projects.

Popular repositories Loading

  1. agent-threat-matrix agent-threat-matrix Public

    AI Agent Threat Matrix: A structured framework for classifying, detecting, and defending against attacks on AI agent systems

    3

  2. agent-governance-spec agent-governance-spec Public

    Agent Governance Specification (AGS) — Behavioral safety framework for AI agents

    2

  3. agent-trust-protocol agent-trust-protocol Public

    Agent Trust Protocol (ATP) — an open standard for verifiable trust assertions about AI agents

    Shell 2

  4. agent-identity-protocol agent-identity-protocol Public

    Agent Identity Protocol (AIP) — an open standard for AI agent identity, capabilities, and trust

    1

  5. aiis-signatures aiis-signatures Public

    AI Injection Signature Standard — YARA-style signatures for AI agent prompt injections in web content. Apache 2.0.

  6. opena2a-parity opena2a-parity Public

    Cross-CLI parity gate for the opena2a-org CLI fleet (hackmyagent, opena2a, ai-trust). Harness + fixtures + contract that proves byte-identical output across the fleet.

    JavaScript

Repositories

Showing 10 of 12 repositories
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Loading…

Most used topics

Loading…