# isittrustready.ai — A+ (100/100) agent-ready

**Agent-readiness (composite):** 100/100 · A+  
**Trust score:** 100/100  
**Access score:** 100/100  
**MCP score:** 100/100  
**Scanned:** 2026-06-17T12:00:08.324Z  
**Rubric:** v0.6.1

> The headline is a weighted blend of Trust (50%), Access (30%), and MCP (20%). The axes are scored separately as components and never cross-contaminate (MCP never feeds Trust).

## Trust categories

| Category | Score |
| --- | ----- |
| Verifiable identity | 100/100 |
| Alignment & values | 100/100 |
| Attestation & provenance | 100/100 |
| Accountability | 100/100 (6 of 7 applicable) |
| Delegation & auth | 100/100 (5 of 7 applicable) |

## Trust checks

### Verifiable identity

- **Publishes an A2A agent card** — `pass` · `convention`: agent card present with a name and declared capabilities
- **Agent card is cryptographically verifiable (signed / DID / VC)** — `pass` · `standard`: agent card carries a cryptographic signature / proof / DID binding
- **Publishes an MCP server card (if it runs MCP)** — `pass` · `convention`: MCP server card present with name and advertised tools
- **initialize advertises server identity** — `pass` · `standard`: serverInfo name+version and instructions present
- **Exposes cryptographically verifiable artifacts** — `pass` · `standard`: 2 signed resource(s) verified

### Alignment & values

- **Publishes an alignment / values card** — `pass` · `convention`: alignment card declares values plus scope/refusals
- **Declared capabilities are present and coherent** — `pass` · `convention`: agent card enumerates concrete capabilities/skills
- **Declares values / scope (alignment card or equivalent)** — `pass` · `convention`: values + scope/refusals declared
- **Declares known limitations / non-goals** — `pass` · `convention`: known limitations / non-goals declared
- **Tools do what they say (output matches declared schema)** — `pass` · `standard`: all 2 tool outputs validating against their schema ok

### Attestation & provenance

- **Publishes signed attestations / verifiable credentials** — `pass` · `standard`: publishes signed attestations / verifiable credentials
- **Build / behaviour provenance (Sigstore / SLSA)** — `pass` · `standard`: publishes signed SLSA/in-toto provenance
- **Offers verifiable provenance / attestation** — `pass` · `standard`: provenance verifies

### Accountability

- **Serves security.txt** — `pass` · `standard`: security.txt served with Contact and Expires
- **Publishes a dated, signed re-verification status** — `pass` · `convention`: publishes a dated, machine-readable verification status
- **Publishes advisories / a STIX IoC feed** — `pass` · `standard`: STIX bundle published (1 objects)
- **Verification discriminates real from tampered** — `pass` · `standard`: verify rejects tampered input
- **Well-formed errors, no internal leakage** — `pass` · `standard`: well-formed JSON-RPC errors, no internal leakage
- **Discloses caching / freshness honestly** — `na` · `convention`: no caching observed to disclose
- **Accountable maintainer contact** — `pass` · `convention`: reachable maintainer contact published

### Delegation & auth

- **OAuth protected-resource metadata** — `na` · `standard`: not applicable — service declares no delegated/OAuth authorization
- **OAuth authorization-server metadata** — `na` · `standard`: not applicable — service declares no delegated/OAuth authorization
- **Documents agent authentication** — `pass` · `convention`: publishes a substantive agent authentication guide
- **Serves coherent RFC 9728 protected-resource metadata** — `pass` · `standard`: PRM coherent (resource + authorization_servers)
- **Authed / write tools fail closed** — `pass` · `standard`: authed tool returns 401 + WWW-Authenticate
- **Public reads leak no private/owner data** — `pass` · `convention`: 8 anon read(s) leak no private fields
- **Dynamic Client Registration handles loopback safely** — `pass` · `standard`: loopback accepted, non-loopback rejected

## Access categories

| Category | Score |
| --- | ----- |
| Crawl discoverability | 100/100 |
| Agent content access | 100/100 |
| AI access policy | 100/100 |
| Capability discovery | 100/100 |
| Authorization discovery | N/A |
| Protocol hygiene | 100/100 |
| Discoverability | 100/100 |
| Breadth of publishing | 100/100 |

## Access checks

### Crawl discoverability

- **Serves a parseable robots.txt** — `pass` · `standard`: serves a parseable robots.txt
- **Publishes a sitemap** — `pass` · `standard`: serves a sitemap (valid XML / sitemap index)
- **Emits HTTP Link relations** — `pass` · `standard`: emits 4 HTTP Link relation(s)

### Agent content access

- **Serves markdown via content negotiation** — `pass` · `convention`: serves text/markdown via content negotiation
- **Publishes an llms.txt index** — `pass` · `convention`: publishes /llms.txt with an H1 title
- **Embeds structured data (JSON-LD / OpenGraph)** — `pass` · `standard`: embeds schema.org JSON-LD (Organization, WebApplication)

### AI access policy

- **Declares explicit AI-bot rules** — `pass` · `standard`: declares explicit rules for 15 known AI crawler(s): amazonbot, anthropic-ai, applebot-extended, bytespider, ccbot, chatgpt-user, claude-user, claudebot, cohere-ai, google-extended, gptbot, meta-externalagent, oai-searchbot, perplexity-user, perplexitybot
- **Publishes Content Signals** — `pass` · `convention`: publishes Content Signals (ai-train / ai-input / search)

### Capability discovery

- **Publishes an API catalog** — `pass` · `standard`: publishes an RFC 9727 API catalog (linkset+json) with ≥1 link
- **Publishes an OpenAPI document** — `pass` · `standard`: publishes a discoverable OpenAPI document (v3.1.0) at https://isittrustready.ai/openapi.json
- **Publishes an MCP server card** — `pass` · `convention`: MCP server card present with name and advertised tools
- **Foregrounds the primary agent channel (agents.txt → MCP)** — `pass` · `convention`: /agents.txt foregrounds the MCP channel (references the MCP endpoint / server card)
- **DNS-AID agent discovery (DNSSEC-validated)** — `pass` · `convention`: DNS-AID record published and DNSSEC-validated at _index._agents.isittrustready.ai

### Authorization discovery

- **OAuth protected-resource metadata** — `na` · `standard`: not applicable — service declares no delegated/OAuth authorization
- **OAuth authorization-server metadata** — `na` · `standard`: not applicable — service declares no delegated/OAuth authorization

### Protocol hygiene

- **initialize returns protocolVersion + capabilities** — `pass` · `standard`: protocolVersion + capabilities advertised
- **Advertised capabilities are actually served** — `pass` · `standard`: advertised capabilities are all served
- **tools/resources/prompts lists are well-formed** — `pass` · `standard`: all 69 tools with name + inputSchema ok

### Discoverability

- **Zero-auth orientation for arriving agents** — `pass` · `convention`: zero-auth orientation with a surface map
- **agents.txt / llms.txt surface the server door** — `fail` · `convention`: no agents.txt / llms.txt
- **Example calls execute verbatim, anonymously** — `pass` · `convention`: all 5 examples running verbatim ok
- **One canonical public home, resolvable from the registry** — `pass` · `convention`: canonical home with server.json + connect + auth, resolvable from registry

### Breadth of publishing

- **Meaningful presence in the canonical MCP registry** — `pass` · `convention`: present in the canonical MCP registry

## MCP categories

| Category | Score |
| --- | ----- |
| Tool & schema quality | 100/100 |
| Annotations | 100/100 |
| Server metadata | 100/100 |

## MCP checks

### Tool & schema quality

- **Every tool has a meaningful description** — `pass` · `convention`: all 69 tools with a description ok
- **Every input parameter is described** — `pass` · `convention`: all 65 parameterized tools with described params ok
- **Every tool declares a real outputSchema** — `pass` · `standard`: all 69 tools declaring an outputSchema ok
- **Typed request bodies (no opaque blobs)** — `pass` · `standard`: all 69 tools with typed (non-opaque) bodies ok
- **Tools carry human-readable titles** — `pass` · `convention`: all 69 tools with a title ok

### Annotations

- **Tools carry behaviour annotations** — `pass` · `standard`: all 69 tools with all four behaviour annotations ok
- **Annotations are accurate** — `pass` · `convention`: 69 annotated tools are self-consistent

### Server metadata

- **Complete server metadata** — `pass` · `convention`: name + description + homepage + icon
- **Consistent tool naming (preferences flagged, not penalized)** — `pass` · `convention`: tool names follow one consistent scheme
- **Clear configuration UX** — `pass` · `convention`: required configuration declared with defaults

**Claimed ✓** — the owner has verified ownership with Mnemom.

---

Signed with Ed25519 (key `94502b2b7235c986`). Verify against https://api.isittrustready.ai/jwk.

[View on isittrustready.ai](https://api.isittrustready.ai/r/isittrustready.ai)