ai.agentrapay/agentra
ai.agentrapay/agentra
Identity oracle and trust layer for autonomous AI agents. Bidirectional KYA and trust scoring.
Status
Healthy
Score
74.0
Transport
sse
Tools
6
Production readiness
Verdict
Needs remediation
Current validation evidence shows operational or discovery gaps that should be fixed first.
Critical alerts
0
Production verdicts degrade quickly when critical alerts are active.
Evidence confidence
Confidence score
62.5
Based on 18 recent validations, 26 captured checks, and validation age of 607.3 hours.
Live checks captured
26
More direct checks increase trust in the current verdict.
Validation age
607.3h
Lower age means fresher evidence.
Recommended for
Claude Desktop
Claude Desktop is marked compatible with score 83.
Smithery
Smithery is marked compatible with score 80.
Generic Streamable HTTP
Generic Streamable HTTP is marked compatible with score 100.
Client readiness verdicts
Ready for ChatGPT custom connector
Partial
Requires a streamable HTTP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Transport compliance should be in good shape.
Confidence: medium (62.5)
Evidence provenance
Winner: live_validation
Supporting sources: live_validation, history, server_card
Disagreements: none
initialize• OKtools_list• OKtransport_compliance_probe• Errorstep_up_auth_probe• Missingconnector_replay_probe• OK — Frozen tool snapshots must survive refresh.request_association_probe• Missing — Roots, sampling, and elicitation should stay request-scoped.
Ready for Claude remote MCP
Ready
Transport behavior should match Claude-compatible HTTP expectations.
Confidence: medium (62.5)
Evidence provenance
Winner: live_validation
Supporting sources: live_validation, history, server_card
Disagreements: none
initialize• OKtools_list• OKtransport_compliance_probe• Error
Unsafe for write actions
No
Current write surface is bounded enough for cautious review.
Confidence: medium (62.5)
Evidence provenance
Winner: live_validation
Supporting sources: live_validation, history
Disagreements: none
action_safety_probe• OK
Snapshot churn risk
Low
No material tool-surface churn detected in the latest comparison.
Confidence: medium (62.5)
Evidence provenance
Winner: history
Supporting sources: history, live_validation
Disagreements: none
tool_snapshot_probe• OKconnector_replay_probe• OK
Why not ready by client
ChatGPT custom connector
Partial
Remediation checklist
- No explicit blockers recorded.
Claude remote MCP
Ready
Remediation checklist
- No explicit blockers recorded.
Write-safe publishing
Ready
Remediation checklist
- No explicit blockers recorded.
Verdict traces
Production verdict
Needs remediation
Current validation evidence shows operational or discovery gaps that should be fixed first.
Confidence: medium (62.5)
Winning source: live_validation
Triggering alerts
validation_stale• medium • Validation evidence is stale
Client verdict trace table
| Verdict | Status | Checks | Winning source | Conflicts |
|---|---|---|---|---|
openai_connectors |
Partial | initialize, tools_list, transport_compliance_probe, step_up_auth_probe, connector_replay_probe, request_association_probe | live_validation | none |
claude_desktop |
Ready | initialize, tools_list, transport_compliance_probe | live_validation | none |
unsafe_for_write_actions |
No | action_safety_probe | live_validation | none |
snapshot_churn_risk |
Low | tool_snapshot_probe, connector_replay_probe | history | none |
Publishability policy profiles
ChatGPT custom connector publishability
Caution
Requires a streamable HTTP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Transport compliance should be in good shape.
- Search Fetch Only: Yes
- Write Actions Present: No
- Oauth Configured: No
- Admin Refresh Required: No
- Safe For Company Knowledge: Yes
- Safe For Messages Api Remote Mcp: No
Claude remote MCP publishability
Ready
Transport behavior should match Claude-compatible HTTP expectations.
- Search Fetch Only: Yes
- Write Actions Present: No
- Oauth Configured: No
- Admin Refresh Required: No
- Safe For Company Knowledge: Yes
- Safe For Messages Api Remote Mcp: No
Compatibility fixtures
ChatGPT custom connector fixture
Degraded
Requires a streamable HTTP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Transport compliance should be in good shape.
- remote_http_endpoint: Passes
- oauth_discovery: Degraded
- frozen_tool_snapshot_refresh: Passes
- request_association: Passes
Anthropic remote MCP fixture
Degraded
Transport behavior should match Claude-compatible HTTP expectations.
- remote_transport: Passes
- tool_discovery: Passes
- auth_connect: Passes
- safe_write_review: Passes
Authenticated validation sessions
Latest profile
remote_mcp
Authenticated session used
Public score isolation
Preview endpoint
/v1/verifyCI preview endpoint
/v1/ci/previewPublic server reputation
Validation success 7d
n/a
Validation success 30d
1.0
Mean time to recover
n/a
Breaking diffs 30d
0
Registry drift frequency 30d
0
Snapshot changes 30d
0
Incident & change feed
| Timestamp | Event | Details |
|---|---|---|
| Apr 08, 2026 11:28:36 PM UTC | Latest validation: healthy | Score 74.0 with status healthy. |
Capabilities
- OAuth:
- DCR/CIMD:
- Prompts:
- Homepage: none
- Docs: none
- Support: none
- Icon: none
- Remote endpoint: https://api.agentrapay.ai/mcp
- Server card: none
Use-case taxonomy
development security finance files
Security posture
Tools analyzed
6
High-risk tools
0
Destructive tools
0
Exec tools
0
Egress tools
0
Secret tools
0
Bulk-access tools
1
Risk distribution
low:1, medium:5
Tool capability & risk inventory
| Tool | Capabilities | Risk | Findings | Notes |
|---|---|---|---|---|
agentra_create_wallet |
read write admin | Medium | admin mutation | No explicit safeguard hints detected. |
agentra_verify_identity |
write | Medium | none | No explicit safeguard hints detected. |
agentra_check_reputation |
read write | Medium | none | Safeguards hinted in metadata. |
agentra_authorize_payment |
read write network | Medium | none | No explicit safeguard hints detected. |
agentra_set_mandate |
write export | Medium | bulk data access | No explicit safeguard hints detected. |
agentra_get_wallet |
read filesystem | Low | none | Safeguards hinted in metadata. |
Write-action governance
Governance status
OK
Safe to publish
Auth boundary
public_or_unclear
Blast radius
High
High-risk tools
0
Confirmation signals
none
Safeguard count
2
Status detail: No unsafe write-action governance gaps detected on the latest validation.
| Tool | Risk | Flags | Safeguards |
|---|---|---|---|
| No high-risk tools were detected on the latest run. | |||
Action-controls diff
Snapshot changed
no
Disabled-by-default candidates
none
Manual review candidates
none
New actions
| Action | Risk | Flags |
|---|---|---|
| No newly added actions. | ||
Changed actions
| Action | Change types | Risk |
|---|---|---|
| No materially changed actions. | ||
Why this score?
Access & Protocol
29/44
Connectivity, auth, and transport expectations for common clients.
Interface Quality
39/56
How well the tool/resource interface communicates and behaves under automation.
Security Posture
26.5/36
How safely the exposed tool surface handles destructive actions, egress, execution, secrets, and risky inputs.
Reliability & Trust
22/24
Operational stability, consistency, and trustworthiness over time.
Discovery & Governance
23.5/28
How well the server is documented, listed, and governed in public registries.
Adoption & Market
5/8
Adoption clues and public evidence that the server is intended for external use.
Algorithmic score breakdown
Auth Operability
2/4
Measures whether auth discovery and protected access behave predictably for clients.
Error Contract Quality
0/4
Grades machine-readable error structure, status alignment, and remediation hints.
Rate-Limit Semantics
2/4
Checks whether quota/throttle responses are deterministic and automation-friendly.
Schema Completeness
3/4
Completeness of tool descriptions, parameter docs, examples, and schema shape.
Backward Compatibility
4/4
Stability score across tool schema/name drift relative to prior validations.
SLO Health
3/4
Availability, latency, and burst-failure profile across recent validation history.
Security Hygiene
2.5/4
HTTPS posture, endpoint hygiene, and response-surface hardening checks.
Task Success
4/4
Can an agent reliably initialize, enumerate tools, and execute core MCP flows?
Trust Confidence
3/4
Confidence-adjusted reliability score that penalizes low evidence volume.
Abuse/Noise Resilience
4/4
How well the server preserves core behavior in the presence of noisy traffic patterns.
Prompt Contract
3/4
Quality of prompt metadata, argument shape, and prompt discoverability for clients.
Resource Contract
4/4
How completely resources and resource templates describe URIs, types, and usage shape.
Discovery Metadata
3/4
Homepage, docs, icon, repository, support, and license coverage for directory consumers.
Registry Consistency
2/4
Agreement between stored registry metadata, live server-card data, and current validation output.
Installability
4/4
How cleanly a real client can connect, initialize, enumerate tools, and proceed through auth.
Session Semantics
4/4
Determinism and state behavior across repeated MCP calls, including sticky-session surprises.
Tool Surface Design
3/4
Naming clarity, schema ergonomics, and parameter complexity across the tool surface.
Result Shape Stability
3/4
Stability of declared output schemas across validations, with penalties for drift or missing shapes.
OAuth Interop
3/4
Depth and client compatibility of OAuth/OIDC metadata beyond the minimal protected-resource check.
Recovery Semantics
0/4
Whether failures include actionable machine-readable next steps such as retry or upgrade guidance.
Maintenance Signal
4/4
Versioning, update recency, and historical validation cadence that indicate active stewardship.
Adoption Signal
2/4
Directory presence and distribution clues that suggest the server is intended for external use.
Freshness Confidence
4/4
Confidence that recent validations are current enough and dense enough to trust operationally.
Transport Fidelity
3/4
Whether declared transport metadata matches the observed endpoint behavior and response formats.
Spec Recency
2/4
How close the server’s claimed MCP protocol version is to the latest known public revision.
Session Resume
3/4
Whether Streamable HTTP session identifiers and resumed requests behave cleanly for real clients.
Step-Up Auth
3/4
Whether OAuth metadata and WWW-Authenticate challenges support granular, incremental consent instead of broad upfront scopes.
Transport Compliance
0/4
Checks session headers, protocol-version enforcement, session teardown, and expired-session behavior.
Utility Coverage
2/4
Signals support for completions, pagination, and task-oriented utility surfaces that larger clients increasingly expect.
Advanced Capability Coverage
3/4
Coverage of newer MCP surfaces like roots, sampling, elicitation, structured output, and related metadata.
Connector Publishability
3/4
How ready the server looks for client catalogs and managed connector programs.
Tool Snapshot Churn
4/4
Stability of the tool surface across recent validations, including add/remove and output-shape drift.
Connector Replay
4/4
Whether a previously published frozen connector snapshot would remain backward compatible after the latest tool refresh.
Request Association
3/4
Whether roots, sampling, and elicitation appear tied to active client requests instead of arriving unsolicited on idle sessions.
Interactive Flow Safety
3/4
Whether prompts and docs steer users toward safe auth flows instead of pasting secrets directly.
Action Safety
3/4
Risk-weighted view of destructive, exec, egress, and confirmation semantics across the tool surface.
Official Registry Presence
4/4
Whether the server appears directly or indirectly in the official MCP registry.
Provenance Divergence
4/4
How closely official registry metadata, the live server card, and public repo/package signals agree with each other.
Safety Transparency
4/4
Clarity of docs, auth disclosure, support links, and other trust signals visible to integrators.
Tool Capability Clarity
4/4
How clearly the tool surface communicates whether each action reads, writes, deletes, executes, or exports data.
Destructive Operation Safety
3/4
Penalizes delete/revoke/destroy style tools unless auth and safeguards reduce blast radius.
Egress / SSRF Resilience
3/4
Assesses arbitrary URL fetch, crawl, webhook, and remote-request exposure on the tool surface.
Execution / Sandbox Safety
4/4
Evaluates shell, code, script, and command-execution exposure and whether that surface appears contained.
Data Exfiltration Resilience
2/4
Assesses export, dump, backup, and bulk-read behavior against the surrounding auth and safeguard signals.
Least Privilege Scope
2/4
Rewards scoped auth metadata and penalizes broad or missing scopes around privileged tools.
Secret Handling Hygiene
3/4
Assesses secret-bearing tools, token leakage risk, and whether the public surface avoids obvious secret exposure.
Supply Chain Signal
2.5/4
Public metadata signal for repository, changelog, license, versioning, and recency that supports supply-chain trust.
Input Sanitization Safety
3/4
Penalizes risky freeform string inputs when schemas do not constrain URLs, code, paths, queries, or templates.
Tool Namespace Clarity
4/4
Measures naming uniqueness and ambiguity across the tool namespace to reduce collision and confusion risk.
Compatibility profiles
OpenAI Connectors
55.6
partial
Requires a streamable HTTP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Transport compliance should be in good shape.
Connector URL: https://api.agentrapay.ai/mcp # No OAuth metadata detected. # Server: ai.agentrapay/agentra
Claude Desktop
83.3
compatible
Transport behavior should match Claude-compatible HTTP expectations.
{
"mcpServers": {
"agentra": {
"command": "npx",
"args": ["mcp-remote", "https://api.agentrapay.ai/mcp"]
}
}
}
Smithery
80.0
compatible
Machine-readable failure semantics should be present.
smithery mcp add "https://api.agentrapay.ai/mcp"
Generic Streamable HTTP
100.0
compatible
No major blockers detected.
curl -sS https://api.agentrapay.ai/mcp -H 'content-type: application/json' -d '{"jsonrpc":"2.0","id":1,"method":"initialize","params":{"protocolVersion":"2025-03-26","capabilities":{},"clientInfo":{"name":"mcp-verify","version":"0.1.0"}}}'
Actionable remediation
| Severity | Remediation | Why it matters | Recommended action |
|---|---|---|---|
| High | Align session and protocol behavior with Streamable HTTP expectations | Clients increasingly rely on MCP-Protocol-Version, session teardown, and expired-session semantics. | Align MCP-Protocol-Version, MCP-Session-Id, DELETE teardown, and expired-session handling with the transport spec.Playbook
|
| High | Associate roots, sampling, and elicitation with active client requests | Modern MCP guidance expects roots, sampling, and elicitation traffic to be tied to an active client request instead of arriving unsolicited on idle sessions. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| High | Expose /.well-known/oauth-protected-resource | Without a protected-resource document, OAuth clients cannot discover auth requirements reliably. | Serve /.well-known/oauth-protected-resource and point it at your authorization server metadata.Playbook
|
| High | Publish OAuth authorization-server metadata | Clients need authorization-server metadata to discover issuer, endpoints, and DCR support. | Publish /.well-known/oauth-authorization-server from your issuer and include registration_endpoint when supported.Playbook
|
| High | Publish a complete server card | Missing or incomplete server-card metadata weakens discovery, documentation, and trust signals. | Serve /.well-known/mcp/server-card.json and include tools, prompts/resources, homepage, and support links.Playbook
|
| High | Stop asking users to paste secrets directly | Public MCP servers should prefer OAuth or browser-based auth guidance over in-band secret collection. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| Medium | Adopt a current MCP protocol revision | Older protocol revisions reduce compatibility with newer clients and registry programs. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| Medium | Close connector-publishing gaps | Connector catalogs care about protocol recency, session behavior, auth clarity, and tool-surface stability. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| Medium | Document minimal scopes and return cleaner auth challenges | Modern clients expect granular scopes and step-up auth signals such as WWW-Authenticate scope hints. | Return granular scopes and WWW-Authenticate challenge hints instead of forcing overly broad auth upfront.Playbook
|
| Medium | Publish OpenID configuration | OIDC metadata improves token validation and client compatibility. | Expose /.well-known/openid-configuration with issuer, jwks_uri, and supported grants.Playbook
|
| Medium | Respond to validation evidence is stale | Latest validation is 607.3 hours old. | Trigger a fresh validation run or increase scheduler priority for this server.Playbook
|
| Medium | Support resumable HTTP sessions cleanly | Modern MCP clients increasingly expect resumable session behavior on streamable HTTP transports. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| Low | Expose modern utility surfaces like completions, pagination, or tasks | Utility coverage improves interoperability with larger clients and long-lived agent workflows. | Expose completions, pagination, and task metadata where supported so larger clients can plan and resume work safely.Playbook
|
| Low | Publish newer MCP capability signals | Roots, sampling, elicitation, structured outputs, and related metadata improve client understanding and ranking. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
Point loss breakdown
| Component | Current | Points missing |
|---|---|---|
| Transport Compliance | 0/4 | -4.0 |
| Recovery Semantics | 0/4 | -4.0 |
| Error Contract | 0/4 | -4.0 |
| Utility Coverage | 2/4 | -2.0 |
| Spec Recency | 2/4 | -2.0 |
| Registry Consistency | 2/4 | -2.0 |
| Rate Limit Semantics | 2/4 | -2.0 |
| Least Privilege Scope | 2/4 | -2.0 |
| Data Exfiltration Resilience | 2/4 | -2.0 |
| Auth Operability | 2/4 | -2.0 |
| Adoption Signal | 2/4 | -2.0 |
| Security Hygiene | 2.5/4 | -1.5 |
Validation diff
Score delta
0
Summary changed
no
Tool delta
0
Prompt delta
0
Auth mode changed
no
Write surface expanded
no
Protocol regressed
no
Registry drift changed
no
Regressed checks: none
Improved checks: none
| Component | Previous | Latest | Delta |
|---|---|---|---|
| No component deltas between the latest two runs. | |||
Tool snapshot diff & changelog
Snapshot changed
no
Added tools
none
Removed tools
none
Required-argument changes
| Tool | Added required args | Removed required args |
|---|---|---|
| No required-argument changes detected. | ||
Output-schema drift
| Tool | Previous properties | Latest properties |
|---|---|---|
| No output-schema drift detected. | ||
Connector replay
Status
OK
Backward compatible
Would break after refresh
Added tools
none
Removed tools
none
Additive output changes
none
Required-argument replay breaks
| Tool | Added required args | Removed required args |
|---|---|---|
| No required-argument replay breaks detected. | ||
Output-schema replay breaks
| Tool | Removed properties | Added properties |
|---|---|---|
| No output-schema replay breaks detected. | ||
Transport compliance drilldown
Probe status
Error
Transport
sse
Session header
no
Protocol header
no
Bad protocol response
200
DELETE teardown
n/a
Expired session retry
n/a
Last-Event-ID visible
no
Issues: missing_session_id, missing_protocol_header, bad_protocol_not_rejected
Request association
Status
Missing
Advertised capabilities
none
Observed idle methods
none
Violating methods
none
Probe HTTP status
n/a
Issues
none
Utility coverage
Probe status
Missing
Completions
not detected
Completion probe target: {
"argument_name": "agent_name",
"name": "onboard",
"type": "prompt"
}
Pagination
not detected
No nextCursor evidence.
Tasks
Missing
Advertised: no
Benchmark tasks
| Benchmark task | Status | Evidence |
|---|---|---|
| Discover tools | Passes |
|
| Read-only fetch flow | Passes |
|
| OAuth-required connect | Degraded |
|
| Safe write flow with confirmation | Passes |
|
Registry & provenance divergence
Probe status
OK
Direct official match
yes
Drift fields
none
| Field | Registry | Live server card |
|---|---|---|
| Title | n/a | n/a |
| Version | n/a | n/a |
| Homepage | n/a | n/a |
Active alerts
- Validation evidence is stale (medium)
Latest validation is 607.3 hours old.
Aliases & registry graph
| Identifier | Source | Canonical | Score |
|---|---|---|---|
ai.agentrapay/agentra |
official_registry | yes | 73.98 |
Alias consolidation
Canonical identifier
ai.agentrapay/agentra
Duplicate aliases
0
Registry sources
official_registry
Remote URLs
Homepages
none
Source disagreements
| Field | What differs | Observed values |
|---|---|---|
| No source disagreements detected. | ||
Install snippets
Openai Connectors
Connector URL: https://api.agentrapay.ai/mcp # No OAuth metadata detected. # Server: ai.agentrapay/agentra
Claude Desktop
{
"mcpServers": {
"agentra": {
"command": "npx",
"args": ["mcp-remote", "https://api.agentrapay.ai/mcp"]
}
}
}
Smithery
smithery mcp add "https://api.agentrapay.ai/mcp"
Generic Http
curl -sS https://api.agentrapay.ai/mcp -H 'content-type: application/json' -d '{"jsonrpc":"2.0","id":1,"method":"initialize","params":{"protocolVersion":"2025-03-26","capabilities":{},"clientInfo":{"name":"mcp-verify","version":"0.1.0"}}}'
Agent access & tool surface
Live server tools
agentra_create_wallet agentra_verify_identity agentra_check_reputation agentra_authorize_payment agentra_set_mandate agentra_get_wallet
Observed from the latest live validation against https://api.agentrapay.ai/mcp. This is the target server surface, not Verify's own inspection tools.
Live capability counts
6 tools • 2 prompts • 3 resources
Counts come from the latest
tools/list, prompts/list, and resources/list checks.Inspect with Verify
search_servers recommend_servers get_server_report compare_servers
Use Verify itself to search, recommend, compare, and fetch the full report for
ai.agentrapay/agentra.Direct machine links
Claims & monitoring
Server ownership
No verified maintainer claim recorded.
Watch subscriptions
0
Teams: none
Alert routing
Active watches
0
Generic webhooks
0
Slack routes
0
Teams routes
0
Email routes
0
| Watch | Team | Channels | Minimum severity |
|---|---|---|---|
| No active watch destinations. | |||
Maintainer analytics
Validation Run Count
18
Average Latency Ms
2415.18
Healthy Run Ratio Recent
1.0
Registry Presence Count
1
Active Alert Count
1
Watcher Count
0
Verified Claim
False
Taxonomy Tags
development, security, finance, files
Score Trend
73.98, 73.98, 73.98, 73.98, 73.98, 73.98, 73.98, 73.98, 73.98, 73.47
Remediation Count
14
High Risk Tool Count
0
Destructive Tool Count
0
Exec Tool Count
0
Maintainer response quality
Score
16.67
Verified claim
Support contact
Changelog present
Incident notes present
Tool changes documented
Annotation history
Annotation count
0
Maintainer annotations
No maintainer annotations have been recorded yet.
Maintainer rebuttals & expected behavior
No maintainer rebuttals or expected-behavior overrides are recorded yet.
Latest validation evidence
Latest summary
Healthy
Validation profile
remote_mcp
Started
Apr 08, 2026 11:28:34 PM UTC
Latency
1871.8 ms
Failures
oauth_authorization_serverno authorization serveroauth_protected_resourceClient error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/oauth-protected-resource' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404openid_configurationno authorization serverserver_cardClient error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/mcp/server-card.json' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404transport_compliance_probeIssues: missing session id, missing protocol header, bad protocol not rejected (bad protocol=200).
Checks
| Check | Status | Latency | Evidence |
|---|---|---|---|
action_safety_probe |
OK | n/a | No high-risk write, destructive, or exec tools detected. |
advanced_capabilities_probe |
Warning | n/a | Only 3 capability signal(s): prompts, resource links, resources. |
connector_publishability_probe |
Warning | n/a | Publishability blockers: transport compliance, server card. |
connector_replay_probe |
OK | n/a | Backward compatible with no breaking tool-surface changes. |
determinism_probe |
OK | 89.9 ms | Check completed |
initialize |
OK | 127.3 ms | Protocol 2025-03-26 |
interactive_flow_probe |
Missing | n/a | Check completed |
oauth_authorization_server |
Missing | n/a | no authorization server |
oauth_protected_resource |
Error | 207.5 ms | Client error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/oauth-protected-resource' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404 |
official_registry_probe |
OK | n/a | Check completed |
openid_configuration |
Missing | n/a | no authorization server |
probe_noise_resilience |
OK | 193.5 ms | Fetched https://api.agentrapay.ai/robots.txt |
prompt_get |
OK | 141.3 ms | 1 prompt message(s) returned |
prompts_list |
OK | 85.6 ms | 2 prompt(s) exposed |
protocol_version_probe |
Warning | n/a | Claims 2025-03-26; 2 release(s) behind 2025-11-25. |
provenance_divergence_probe |
OK | n/a | Check completed |
request_association_probe |
Missing | n/a | No request-association capabilities were advertised. |
resource_read |
OK | 143.9 ms | 1 resource content item(s) returned |
resources_list |
OK | 147.5 ms | 3 resource item(s) exposed |
server_card |
Error | 248.4 ms | Client error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/mcp/server-card.json' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404 |
session_resume_probe |
Warning | n/a | no session id |
step_up_auth_probe |
Missing | n/a | No OAuth or incremental-scope signals detected. |
tool_snapshot_probe |
OK | n/a | Check completed |
tools_list |
OK | 162.5 ms | 6 tool(s) exposed |
transport_compliance_probe |
Error | 84.2 ms | Issues: missing session id, missing protocol header, bad protocol not rejected (bad protocol=200). |
utility_coverage_probe |
Missing | 90.9 ms | No completions evidence; no pagination evidence; tasks missing. |
Raw evidence view
Show raw JSON evidence
{
"checks": {
"action_safety_probe": {
"details": {
"auth_present": false,
"confirmation_signals": [],
"safeguard_count": 2,
"summary": {
"bulk_access_tools": 1,
"capability_distribution": {
"admin": 1,
"export": 1,
"filesystem": 1,
"network": 1,
"read": 4,
"write": 5
},
"destructive_tools": 0,
"egress_tools": 0,
"exec_tools": 0,
"high_risk_tools": 0,
"risk_distribution": {
"critical": 0,
"high": 0,
"low": 1,
"medium": 5
},
"secret_tools": 0,
"tool_count": 6
}
},
"latency_ms": null,
"status": "ok"
},
"advanced_capabilities_probe": {
"details": {
"capabilities": {
"completions": false,
"elicitation": false,
"prompts": true,
"resource_links": true,
"resources": true,
"roots": false,
"sampling": false,
"structured_outputs": false
},
"enabled": [
"prompts",
"resource_links",
"resources"
],
"enabled_count": 3,
"initialize_capability_keys": [
"prompts",
"resources",
"tools"
]
},
"latency_ms": null,
"status": "warning"
},
"connector_publishability_probe": {
"details": {
"blockers": [
"transport_compliance",
"server_card"
],
"criteria": {
"action_safety": true,
"auth_flow": true,
"connector_replay": true,
"initialize": true,
"protocol_version": true,
"remote_transport": true,
"request_association": true,
"server_card": false,
"session_resume": true,
"step_up_auth": true,
"tool_surface": true,
"tools_list": true,
"transport_compliance": false
},
"high_risk_tools": 0,
"tool_count": 6,
"transport": "sse"
},
"latency_ms": null,
"status": "warning"
},
"connector_replay_probe": {
"details": {
"added_tools": [],
"additive_output_changes": [],
"backward_compatible": true,
"output_breaks": [],
"removed_tools": [],
"required_arg_breaks": [],
"would_break_after_refresh": false
},
"latency_ms": null,
"status": "ok"
},
"determinism_probe": {
"details": {
"attempts": 2,
"baseline_signature": "40add99c8cc46bbb1589cac82675795a4a2840f4b5b1cc29c69f8ca2ee06e359",
"errors": [],
"matches": 2,
"stable_ratio": 1.0,
"successful": 2
},
"latency_ms": 89.86,
"status": "ok"
},
"initialize": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"id": 1,
"jsonrpc": "2.0",
"result": {
"capabilities": {
"prompts": {
"listChanged": false
},
"resources": {
"listChanged": false,
"subscribe": false
},
"tools": {
"listChanged": false
}
},
"protocolVersion": "2025-03-26",
"serverInfo": {
"name": "agentra",
"version": "1.0.0"
}
}
},
"url": "https://api.agentrapay.ai/mcp"
},
"latency_ms": 127.27,
"status": "ok"
},
"interactive_flow_probe": {
"details": {
"oauth_supported": false,
"prompt_available": true,
"risk_hits": [],
"safe_hits": []
},
"latency_ms": null,
"status": "missing"
},
"oauth_authorization_server": {
"details": {
"reason": "no_authorization_server"
},
"latency_ms": null,
"status": "missing"
},
"oauth_protected_resource": {
"details": {
"error": "Client error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/oauth-protected-resource'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.agentrapay.ai/.well-known/oauth-protected-resource"
},
"latency_ms": 207.53,
"status": "error"
},
"official_registry_probe": {
"details": {
"direct_match": true,
"official_peer_count": 1,
"registry_identifier": "ai.agentrapay/agentra",
"registry_source": "official_registry"
},
"latency_ms": null,
"status": "ok"
},
"openid_configuration": {
"details": {
"reason": "no_authorization_server"
},
"latency_ms": null,
"status": "missing"
},
"probe_noise_resilience": {
"details": {
"headers": {
"content-type": "text/plain; charset=utf-8"
},
"http_status": 200,
"url": "https://api.agentrapay.ai/robots.txt"
},
"latency_ms": 193.51,
"status": "ok"
},
"prompt_get": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"id": 4,
"jsonrpc": "2.0",
"result": {
"description": "Agentra onboarding guide",
"messages": [
{
"content": {
"text": "I want to onboard an agent named 'my-agent' to Agentra. Walk me through the steps:\n1. Call agentra_create_wallet with name='my-agent'\n2. Save the returned agent_id and api_key (agn_ prefix)\n3. Call agentra_verify_identity with the agent_id\n4. Call agentra_get_wallet to confirm your trust tier\n\nAgentra is non-custodial: you hold your own keys via Turnkey. Agentra never touches your private key or moves your funds.",
"type": "text"
},
"role": "user"
}
]
}
},
"prompt_arguments": [
{
"description": "Name for your agent",
"name": "agent_name",
"required": true
}
],
"prompt_name": "onboard",
"url": "https://api.agentrapay.ai/mcp"
},
"latency_ms": 141.31,
"status": "ok"
},
"prompts_list": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"id": 3,
"jsonrpc": "2.0",
"result": {
"prompts": [
{
"arguments": [
{
"description": "Name for your agent",
"name": "agent_name",
"required": true
}
],
"description": "Guided onboarding: register agent, provision wallet, verify identity",
"name": "onboard"
},
{
"arguments": [
{
"description": "Agent ID of the counterparty you want to pay",
"name": "counterparty_id",
"required": true
}
],
"description": "Safety check before authorizing a payment to another agent",
"name": "pre_transaction_check"
}
]
}
},
"url": "https://api.agentrapay.ai/mcp"
},
"latency_ms": 85.64,
"status": "ok"
},
"protocol_version_probe": {
"details": {
"claimed_version": "2025-03-26",
"lag_days": 244,
"latest_known_version": "2025-11-25",
"releases_behind": 2,
"validator_protocol_version": "2025-03-26"
},
"latency_ms": null,
"status": "warning"
},
"provenance_divergence_probe": {
"details": {
"direct_official_match": true,
"drift_fields": [],
"metadata_document_count": 1,
"registry_homepage": null,
"registry_repository": null,
"registry_title": null,
"registry_version": null,
"server_card_homepage": null,
"server_card_repository": null,
"server_card_title": null,
"server_card_version": null
},
"latency_ms": null,
"status": "ok"
},
"request_association_probe": {
"details": {
"reason": "no_request_association_capabilities_advertised"
},
"latency_ms": null,
"status": "missing"
},
"resource_read": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"id": 6,
"jsonrpc": "2.0",
"result": {
"contents": [
{
"mimeType": "application/json",
"text": "{\n \"scoring_model\": {\n \"bidirectional\": true,\n \"description\": \"Agentra scores BOTH the sending agent AND the receiving counterparty on every transaction. No competitor does both.\",\n \"factors\": [\n \"Identity verification level\",\n \"Transaction history (volume, success rate)\",\n \"Counterparty feedback\",\n \"Time since registration\",\n \"Dispute history\"\n ]\n },\n \"trust_tiers\": [\n {\n \"daily_limit_usd\": 250,\n \"per_transaction_limit_usd\": 100,\n \"reputation_zone\": \"Red\",\n \"requirements\": \"Agent registration only (agentra_create_wallet)\",\n \"tier\": \"Unverified\",\n \"tier_int\": 0,\n \"trust_score_range\": [\n 0,\n 24\n ],\n \"upgrade_path\": \"Submit operator attestation via agentra_verify_identity\"\n },\n {\n \"daily_limit_usd\": 5000,\n \"per_transaction_limit_usd\": 1000,\n \"reputation_zone\": \"Yellow\",\n \"requirements\": \"Operator attestation submitted\",\n \"tier\": \"Basic\",\n \"tier_int\": 1,\n \"trust_score_range\": [\n 25,\n 49\n ],\n \"upgrade_path\": \"Complete 10+ successful transactions with no disputes\"\n },\n {\n \"daily_limit_usd\": 10000,\n \"per_transaction_limit_usd\": 5000,\n \"reputation_zone\": \"Green\",\n \"requirements\": \"Verified identity + positive transaction history\",\n \"tier\": \"Standard\",\n \"tier_int\": 2,\n \"trust_score_range\": [\n 50,\n 74\n ],\n \"upgrade_path\": \"Sustained high-volume activity with zero disputes\"\n },\n {\n \"daily_limit_usd\": 100000,\n \"per_transaction_limit_usd\": 25000,\n \"reputation_zone\": \"Green\",\n \"requirements\": \"Extended verified history + EAS on-chain attestations\",\n \"tier\": \"Enhanced\",\n \"tier_int\": 3,\n \"trust_score_range\": [\n 75,\n 100\n ],\n \"upgrade_path\": \"Maximum tier\"\n }\n ]\n}",
"uri": "agentra://trust-tiers"
}
]
}
},
"resource_uri": "agentra://trust-tiers",
"url": "https://api.agentrapay.ai/mcp"
},
"latency_ms": 143.95,
"status": "ok"
},
"resources_list": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"id": 5,
"jsonrpc": "2.0",
"result": {
"resources": [
{
"description": "Current trust tier definitions with spending limits, requirements, and upgrade paths",
"mimeType": "application/json",
"name": "Trust tier reference",
"uri": "agentra://trust-tiers"
},
{
"description": "List of supported blockchains, tokens, and settlement protocols",
"mimeType": "application/json",
"name": "Supported chains and tokens",
"uri": "agentra://supported-chains"
},
{
"description": "Current plans, per-handshake fees, and Trust Score API pricing",
"mimeType": "application/json",
"name": "Pricing and fee schedule",
"uri": "agentra://pricing"
}
]
}
},
"url": "https://api.agentrapay.ai/mcp"
},
"latency_ms": 147.46,
"status": "ok"
},
"server_card": {
"details": {
"error": "Client error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/mcp/server-card.json'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.agentrapay.ai/.well-known/mcp/server-card.json"
},
"latency_ms": 248.38,
"status": "error"
},
"session_resume_probe": {
"details": {
"protocol_version": "2025-03-26",
"reason": "no_session_id",
"resume_expected": true,
"transport": "sse"
},
"latency_ms": null,
"status": "warning"
},
"step_up_auth_probe": {
"details": {
"auth_required_checks": [],
"broad_scopes": [],
"challenge_headers": [],
"minimal_scope_documented": false,
"oauth_present": false,
"scope_specificity_ratio": 0.0,
"step_up_signals": [],
"supported_scopes": []
},
"latency_ms": null,
"status": "missing"
},
"tool_snapshot_probe": {
"details": {
"added": [],
"changed_outputs": [],
"current_tool_count": 6,
"previous_tool_count": 6,
"removed": [],
"similarity": 1.0
},
"latency_ms": null,
"status": "ok"
},
"tools_list": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"id": 2,
"jsonrpc": "2.0",
"result": {
"tools": [
{
"annotations": {
"destructiveHint": false,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Register as an agent and provision a non-custodial wallet. This is your FIRST CALL when onboarding to Agentra. Returns your agent_id, API key (agn_ prefix), and a Turnkey-managed wallet address on Base Sepolia. You hold the keys via Turnkey; Agentra never touches your private key. After this, call agentra_verify_identity to upgrade your trust tier.",
"inputSchema": {
"properties": {
"name": {
"description": "Human-readable name for your agent (e.g. 'ShoppingBot-v2')",
"maxLength": 255,
"minLength": 1,
"type": "string"
},
"operator": {
"description": "Optional. Your organization or operator name.",
"type": "string"
},
"purpose": {
"description": "What this agent does (e.g. 'automated trading', 'API access'). Defaults to 'autonomous'.",
"type": "string"
}
},
"required": [
"name"
],
"type": "object"
},
"name": "agentra_create_wallet"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Submit identity verification to upgrade your trust tier. Higher tiers unlock larger transaction limits. Provide your agent_id (from agentra_create_wallet) and operator attestation. Verification is instant. Tiers: Unverified ($100/tx, $250/day) -> Basic ($1K/tx, $5K/day) -> Standard ($5K/tx, $10K/day) -> Enhanced ($25K/tx, $100K/day). Your API key (agn_ prefix) must be passed via X-API-Key header.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your agent ID from registration",
"format": "uuid",
"type": "string"
},
"operator_attestation": {
"description": "Operator-signed attestation of agent identity and capabilities",
"properties": {
"attested_capabilities": {
"items": {
"type": "string"
},
"type": "array"
},
"operator_domain": {
"type": "string"
},
"operator_name": {
"type": "string"
}
},
"type": "object"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_verify_identity"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "CALL THIS BEFORE paying or transacting with unknown agents. Returns the target agent's trust score (0-100), trust tier, reputation zone (Green/Yellow/Red), and transaction history summary. Agentra scores BOTH sides of every transaction: you and your counterparty. This is a read-only lookup with no side effects. Monetized endpoint: response detail varies by your plan tier.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "The agent ID to check reputation for",
"format": "uuid",
"type": "string"
},
"include_history": {
"default": false,
"description": "Include recent transaction history summary (Standard+ plans)",
"type": "boolean"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_check_reputation"
},
{
"annotations": {
"destructiveHint": true,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Request authorization for a payment to another agent or service. Agentra is NON-CUSTODIAL: this returns an authorization attestation and an unsigned transaction. Agentra never touches your private keys or moves your funds. YOU sign and submit the transaction yourself. Flow: (1) Call this endpoint -> (2) Receive unsigned tx + attestation -> (3) Sign with your Turnkey wallet -> (4) Submit to Base network -> (5) Call settle to record completion. If counterparty is unverified and require_counterparty_kya is true (default), you get a 402 challenge with instructions for the counterparty to onboard. This is Agentra's viral growth mechanism.",
"inputSchema": {
"properties": {
"amount_usdc": {
"description": "Transaction amount in USDC as a string (e.g. '25.00')",
"type": "string"
},
"purpose": {
"description": "Human-readable transaction purpose",
"maxLength": 64,
"type": "string"
},
"receiver_address": {
"description": "Recipient agent ID or external wallet address",
"type": "string"
},
"require_counterparty_kya": {
"default": true,
"description": "Require counterparty to be KYA-verified. Default true. This is the viral growth hook: unverified counterparties must onboard to receive funds.",
"type": "boolean"
},
"sender_agent_id": {
"description": "Your agent ID (the sender)",
"format": "uuid",
"type": "string"
}
},
"required": [
"sender_agent_id",
"receiver_address",
"amount_usdc"
],
"type": "object"
},
"name": "agentra_authorize_payment"
},
{
"annotations": {
"destructiveHint": true,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Create or update spending mandates that define your agent's autonomous transaction boundaries. Mandates enforce: max per-transaction amount, daily spending cap, allowed recipient types, minimum counterparty reputation score, and expiration. Your human operator sets these; your agent operates within them. require_counterparty_kya defaults to true. Recommended: true. This recruits counterparties into verification.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your agent ID",
"format": "uuid",
"type": "string"
},
"daily_limit_usd": {
"description": "Maximum total USD spend per rolling 24h",
"minimum": 0.001,
"type": "number"
},
"expires_at": {
"description": "Mandate expiration. Authorization rejected after this time.",
"format": "date-time",
"type": "string"
},
"max_per_tx_usd": {
"description": "Maximum USD per single transaction",
"minimum": 0.001,
"type": "number"
},
"min_counterparty_score": {
"description": "Minimum reputation score (0-100) for counterparties. 40 = exclude Red zone.",
"maximum": 100,
"minimum": 0,
"type": "number"
},
"require_counterparty_kya": {
"default": true,
"description": "Require counterparty KYA verification on all outbound transactions",
"type": "boolean"
}
},
"required": [
"agent_id",
"max_per_tx_usd",
"daily_limit_usd"
],
"type": "object"
},
"name": "agentra_set_mandate"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get your agent profile and wallet details: trust tier, trust score, wallet address, registration status, and current verification level. Use to check your status before initiating transactions. Read-only, no side effects.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your Agentra agent ID",
"format": "uuid",
"type": "string"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_get_wallet"
}
]
}
},
"url": "https://api.agentrapay.ai/mcp"
},
"latency_ms": 162.5,
"status": "ok"
},
"transport_compliance_probe": {
"details": {
"bad_protocol_error": null,
"bad_protocol_headers": {
"content-type": "application/json"
},
"bad_protocol_payload": {
"id": 410,
"jsonrpc": "2.0",
"result": {
"tools": [
{
"annotations": {
"destructiveHint": false,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Register as an agent and provision a non-custodial wallet. This is your FIRST CALL when onboarding to Agentra. Returns your agent_id, API key (agn_ prefix), and a Turnkey-managed wallet address on Base Sepolia. You hold the keys via Turnkey; Agentra never touches your private key. After this, call agentra_verify_identity to upgrade your trust tier.",
"inputSchema": {
"properties": {
"name": {
"description": "Human-readable name for your agent (e.g. 'ShoppingBot-v2')",
"maxLength": 255,
"minLength": 1,
"type": "string"
},
"operator": {
"description": "Optional. Your organization or operator name.",
"type": "string"
},
"purpose": {
"description": "What this agent does (e.g. 'automated trading', 'API access'). Defaults to 'autonomous'.",
"type": "string"
}
},
"required": [
"name"
],
"type": "object"
},
"name": "agentra_create_wallet"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Submit identity verification to upgrade your trust tier. Higher tiers unlock larger transaction limits. Provide your agent_id (from agentra_create_wallet) and operator attestation. Verification is instant. Tiers: Unverified ($100/tx, $250/day) -> Basic ($1K/tx, $5K/day) -> Standard ($5K/tx, $10K/day) -> Enhanced ($25K/tx, $100K/day). Your API key (agn_ prefix) must be passed via X-API-Key header.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your agent ID from registration",
"format": "uuid",
"type": "string"
},
"operator_attestation": {
"description": "Operator-signed attestation of agent identity and capabilities",
"properties": {
"attested_capabilities": {
"items": {
"type": "string"
},
"type": "array"
},
"operator_domain": {
"type": "string"
},
"operator_name": {
"type": "string"
}
},
"type": "object"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_verify_identity"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "CALL THIS BEFORE paying or transacting with unknown agents. Returns the target agent's trust score (0-100), trust tier, reputation zone (Green/Yellow/Red), and transaction history summary. Agentra scores BOTH sides of every transaction: you and your counterparty. This is a read-only lookup with no side effects. Monetized endpoint: response detail varies by your plan tier.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "The agent ID to check reputation for",
"format": "uuid",
"type": "string"
},
"include_history": {
"default": false,
"description": "Include recent transaction history summary (Standard+ plans)",
"type": "boolean"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_check_reputation"
},
{
"annotations": {
"destructiveHint": true,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Request authorization for a payment to another agent or service. Agentra is NON-CUSTODIAL: this returns an authorization attestation and an unsigned transaction. Agentra never touches your private keys or moves your funds. YOU sign and submit the transaction yourself. Flow: (1) Call this endpoint -> (2) Receive unsigned tx + attestation -> (3) Sign with your Turnkey wallet -> (4) Submit to Base network -> (5) Call settle to record completion. If counterparty is unverified and require_counterparty_kya is true (default), you get a 402 challenge with instructions for the counterparty to onboard. This is Agentra's viral growth mechanism.",
"inputSchema": {
"properties": {
"amount_usdc": {
"description": "Transaction amount in USDC as a string (e.g. '25.00')",
"type": "string"
},
"purpose": {
"description": "Human-readable transaction purpose",
"maxLength": 64,
"type": "string"
},
"receiver_address": {
"description": "Recipient agent ID or external wallet address",
"type": "string"
},
"require_counterparty_kya": {
"default": true,
"description": "Require counterparty to be KYA-verified. Default true. This is the viral growth hook: unverified counterparties must onboard to receive funds.",
"type": "boolean"
},
"sender_agent_id": {
"description": "Your agent ID (the sender)",
"format": "uuid",
"type": "string"
}
},
"required": [
"sender_agent_id",
"receiver_address",
"amount_usdc"
],
"type": "object"
},
"name": "agentra_authorize_payment"
},
{
"annotations": {
"destructiveHint": true,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Create or update spending mandates that define your agent's autonomous transaction boundaries. Mandates enforce: max per-transaction amount, daily spending cap, allowed recipient types, minimum counterparty reputation score, and expiration. Your human operator sets these; your agent operates within them. require_counterparty_kya defaults to true. Recommended: true. This recruits counterparties into verification.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your agent ID",
"format": "uuid",
"type": "string"
},
"daily_limit_usd": {
"description": "Maximum total USD spend per rolling 24h",
"minimum": 0.001,
"type": "number"
},
"expires_at": {
"description": "Mandate expiration. Authorization rejected after this time.",
"format": "date-time",
"type": "string"
},
"max_per_tx_usd": {
"description": "Maximum USD per single transaction",
"minimum": 0.001,
"type": "number"
},
"min_counterparty_score": {
"description": "Minimum reputation score (0-100) for counterparties. 40 = exclude Red zone.",
"maximum": 100,
"minimum": 0,
"type": "number"
},
"require_counterparty_kya": {
"default": true,
"description": "Require counterparty KYA verification on all outbound transactions",
"type": "boolean"
}
},
"required": [
"agent_id",
"max_per_tx_usd",
"daily_limit_usd"
],
"type": "object"
},
"name": "agentra_set_mandate"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get your agent profile and wallet details: trust tier, trust score, wallet address, registration status, and current verification level. Use to check your status before initiating transactions. Read-only, no side effects.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your Agentra agent ID",
"format": "uuid",
"type": "string"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_get_wallet"
}
]
}
},
"bad_protocol_status_code": 200,
"delete_error": null,
"delete_status_code": null,
"expired_session_error": null,
"expired_session_status_code": null,
"issues": [
"missing_session_id",
"missing_protocol_header",
"bad_protocol_not_rejected"
],
"last_event_id_visible": false,
"protocol_header_present": false,
"requested_protocol_version": "2025-03-26",
"session_id_present": false,
"transport": "sse"
},
"latency_ms": 84.2,
"status": "error"
},
"utility_coverage_probe": {
"details": {
"completions": {
"advertised": false,
"live_probe": "not_executed",
"sample_target": {
"argument_name": "agent_name",
"name": "onboard",
"type": "prompt"
}
},
"initialize_capability_keys": [
"prompts",
"resources",
"tools"
],
"pagination": {
"metadata_signal": false,
"next_cursor_methods": [],
"supported": false
},
"tasks": {
"advertised": false,
"http_status": 200,
"probe_status": "missing"
}
},
"latency_ms": 90.92,
"status": "missing"
}
},
"failures": {
"oauth_authorization_server": {
"reason": "no_authorization_server"
},
"oauth_protected_resource": {
"error": "Client error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/oauth-protected-resource'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.agentrapay.ai/.well-known/oauth-protected-resource"
},
"openid_configuration": {
"reason": "no_authorization_server"
},
"server_card": {
"error": "Client error '404 Not Found' for url 'https://api.agentrapay.ai/.well-known/mcp/server-card.json'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.agentrapay.ai/.well-known/mcp/server-card.json"
},
"transport_compliance_probe": {
"bad_protocol_error": null,
"bad_protocol_headers": {
"content-type": "application/json"
},
"bad_protocol_payload": {
"id": 410,
"jsonrpc": "2.0",
"result": {
"tools": [
{
"annotations": {
"destructiveHint": false,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Register as an agent and provision a non-custodial wallet. This is your FIRST CALL when onboarding to Agentra. Returns your agent_id, API key (agn_ prefix), and a Turnkey-managed wallet address on Base Sepolia. You hold the keys via Turnkey; Agentra never touches your private key. After this, call agentra_verify_identity to upgrade your trust tier.",
"inputSchema": {
"properties": {
"name": {
"description": "Human-readable name for your agent (e.g. 'ShoppingBot-v2')",
"maxLength": 255,
"minLength": 1,
"type": "string"
},
"operator": {
"description": "Optional. Your organization or operator name.",
"type": "string"
},
"purpose": {
"description": "What this agent does (e.g. 'automated trading', 'API access'). Defaults to 'autonomous'.",
"type": "string"
}
},
"required": [
"name"
],
"type": "object"
},
"name": "agentra_create_wallet"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Submit identity verification to upgrade your trust tier. Higher tiers unlock larger transaction limits. Provide your agent_id (from agentra_create_wallet) and operator attestation. Verification is instant. Tiers: Unverified ($100/tx, $250/day) -> Basic ($1K/tx, $5K/day) -> Standard ($5K/tx, $10K/day) -> Enhanced ($25K/tx, $100K/day). Your API key (agn_ prefix) must be passed via X-API-Key header.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your agent ID from registration",
"format": "uuid",
"type": "string"
},
"operator_attestation": {
"description": "Operator-signed attestation of agent identity and capabilities",
"properties": {
"attested_capabilities": {
"items": {
"type": "string"
},
"type": "array"
},
"operator_domain": {
"type": "string"
},
"operator_name": {
"type": "string"
}
},
"type": "object"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_verify_identity"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "CALL THIS BEFORE paying or transacting with unknown agents. Returns the target agent's trust score (0-100), trust tier, reputation zone (Green/Yellow/Red), and transaction history summary. Agentra scores BOTH sides of every transaction: you and your counterparty. This is a read-only lookup with no side effects. Monetized endpoint: response detail varies by your plan tier.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "The agent ID to check reputation for",
"format": "uuid",
"type": "string"
},
"include_history": {
"default": false,
"description": "Include recent transaction history summary (Standard+ plans)",
"type": "boolean"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_check_reputation"
},
{
"annotations": {
"destructiveHint": true,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Request authorization for a payment to another agent or service. Agentra is NON-CUSTODIAL: this returns an authorization attestation and an unsigned transaction. Agentra never touches your private keys or moves your funds. YOU sign and submit the transaction yourself. Flow: (1) Call this endpoint -> (2) Receive unsigned tx + attestation -> (3) Sign with your Turnkey wallet -> (4) Submit to Base network -> (5) Call settle to record completion. If counterparty is unverified and require_counterparty_kya is true (default), you get a 402 challenge with instructions for the counterparty to onboard. This is Agentra's viral growth mechanism.",
"inputSchema": {
"properties": {
"amount_usdc": {
"description": "Transaction amount in USDC as a string (e.g. '25.00')",
"type": "string"
},
"purpose": {
"description": "Human-readable transaction purpose",
"maxLength": 64,
"type": "string"
},
"receiver_address": {
"description": "Recipient agent ID or external wallet address",
"type": "string"
},
"require_counterparty_kya": {
"default": true,
"description": "Require counterparty to be KYA-verified. Default true. This is the viral growth hook: unverified counterparties must onboard to receive funds.",
"type": "boolean"
},
"sender_agent_id": {
"description": "Your agent ID (the sender)",
"format": "uuid",
"type": "string"
}
},
"required": [
"sender_agent_id",
"receiver_address",
"amount_usdc"
],
"type": "object"
},
"name": "agentra_authorize_payment"
},
{
"annotations": {
"destructiveHint": true,
"idempotentHint": false,
"openWorldHint": true,
"readOnlyHint": false
},
"description": "Create or update spending mandates that define your agent's autonomous transaction boundaries. Mandates enforce: max per-transaction amount, daily spending cap, allowed recipient types, minimum counterparty reputation score, and expiration. Your human operator sets these; your agent operates within them. require_counterparty_kya defaults to true. Recommended: true. This recruits counterparties into verification.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your agent ID",
"format": "uuid",
"type": "string"
},
"daily_limit_usd": {
"description": "Maximum total USD spend per rolling 24h",
"minimum": 0.001,
"type": "number"
},
"expires_at": {
"description": "Mandate expiration. Authorization rejected after this time.",
"format": "date-time",
"type": "string"
},
"max_per_tx_usd": {
"description": "Maximum USD per single transaction",
"minimum": 0.001,
"type": "number"
},
"min_counterparty_score": {
"description": "Minimum reputation score (0-100) for counterparties. 40 = exclude Red zone.",
"maximum": 100,
"minimum": 0,
"type": "number"
},
"require_counterparty_kya": {
"default": true,
"description": "Require counterparty KYA verification on all outbound transactions",
"type": "boolean"
}
},
"required": [
"agent_id",
"max_per_tx_usd",
"daily_limit_usd"
],
"type": "object"
},
"name": "agentra_set_mandate"
},
{
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get your agent profile and wallet details: trust tier, trust score, wallet address, registration status, and current verification level. Use to check your status before initiating transactions. Read-only, no side effects.",
"inputSchema": {
"properties": {
"agent_id": {
"description": "Your Agentra agent ID",
"format": "uuid",
"type": "string"
}
},
"required": [
"agent_id"
],
"type": "object"
},
"name": "agentra_get_wallet"
}
]
}
},
"bad_protocol_status_code": 200,
"delete_error": null,
"delete_status_code": null,
"expired_session_error": null,
"expired_session_status_code": null,
"issues": [
"missing_session_id",
"missing_protocol_header",
"bad_protocol_not_rejected"
],
"last_event_id_visible": false,
"protocol_header_present": false,
"requested_protocol_version": "2025-03-26",
"session_id_present": false,
"transport": "sse"
}
},
"remote_url": "https://api.agentrapay.ai/mcp",
"server_card_payload": null,
"server_identifier": "ai.agentrapay/agentra"
}
Known versions
1.0.0
Validation history
7 day score delta
+0.0
30 day score delta
+0.0
Recent healthy ratio
100%
Freshness
607.3h
| Timestamp | Status | Score | Latency | Tools |
|---|---|---|---|---|
| Apr 08, 2026 11:28:36 PM UTC | Healthy | 74.0 | 1871.8 ms | 6 |
| Apr 07, 2026 11:28:24 PM UTC | Healthy | 74.0 | 1736.8 ms | 6 |
| Apr 06, 2026 11:28:10 PM UTC | Healthy | 74.0 | 2274.3 ms | 6 |
| Apr 05, 2026 11:27:21 PM UTC | Healthy | 74.0 | 1828.0 ms | 6 |
| Apr 04, 2026 11:25:33 PM UTC | Healthy | 74.0 | 1929.6 ms | 6 |
| Apr 03, 2026 11:24:13 PM UTC | Healthy | 74.0 | 1902.4 ms | 6 |
| Apr 02, 2026 11:22:57 PM UTC | Healthy | 74.0 | 2279.1 ms | 6 |
| Apr 01, 2026 11:21:07 PM UTC | Healthy | 74.0 | 1893.6 ms | 6 |
Validation timeline
| Validated | Summary | Score | Protocol | Auth mode | Tools | High-risk tools | Changes |
|---|---|---|---|---|---|---|---|
| Apr 08, 2026 11:28:36 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Apr 07, 2026 11:28:24 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Apr 06, 2026 11:28:10 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Apr 05, 2026 11:27:21 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Apr 04, 2026 11:25:33 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Apr 03, 2026 11:24:13 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Apr 02, 2026 11:22:57 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Apr 01, 2026 11:21:07 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Mar 31, 2026 11:18:22 PM UTC | Healthy | 74.0 | 2025-03-26 | public | 6 | 0 | none |
| Mar 30, 2026 11:16:31 PM UTC | Healthy | 73.5 | 2025-03-26 | public | 6 | 0 | none |
| Mar 29, 2026 11:12:51 PM UTC | Healthy | 73.0 | 2025-03-26 | public | 6 | 0 | none |
| Mar 28, 2026 08:22:10 PM UTC | Healthy | 73.0 | 2025-03-26 | public | 6 | 0 | none |
Recent validation runs
| Started | Status | Summary | Latency | Checks |
|---|---|---|---|---|
| Apr 08, 2026 11:28:34 PM UTC | Completed | Healthy | 1871.8 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 07, 2026 11:28:22 PM UTC | Completed | Healthy | 1736.8 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 06, 2026 11:28:08 PM UTC | Completed | Healthy | 2274.3 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 05, 2026 11:27:19 PM UTC | Completed | Healthy | 1828.0 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 04, 2026 11:25:32 PM UTC | Completed | Healthy | 1929.6 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 03, 2026 11:24:11 PM UTC | Completed | Healthy | 1902.4 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 02, 2026 11:22:55 PM UTC | Completed | Healthy | 2279.1 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 01, 2026 11:21:05 PM UTC | Completed | Healthy | 1893.6 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Mar 31, 2026 11:18:20 PM UTC | Completed | Healthy | 1890.1 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Mar 30, 2026 11:16:29 PM UTC | Completed | Healthy | 2018.2 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |