Agent Capability Contract Aims to Bridge AI Tool Access and Business Governance
A proposed specification called the Agent Capability Contract (ACC) seeks to address a gap in AI agent deployments: while tools like OpenAPI and MCP handle how APIs are described and discovered, they do not define how an agent-facing system should govern those operations. ACC adds a machine-readable declaration alongside API operations, specifying metadata such as risk level, whether a trusted subject is required, approval conditions, and audit sensitivity. The specification is designed to sit between tool connectivity layers and final business authorization systems, rather than replacing existing standards. It is intended to work alongside tools like OpenAPI, MCP, OPA, and runtime policy frameworks within the same deployment. The goal is to give compatible runtimes portable governance context before a business system ever receives an API call.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in