{"audit":{"version":"1.3","generated_at":"2026-05-22T23:51:26.195070+00:00","generated_by":"Agenstry","report_url":"https://agenstry.com/agents/x402-endpoint-risk-corpus.mtree.workers.dev","methodology_url":"https://agenstry.com/methodology","verifier_jwks_url":"https://agenstry.com/.well-known/jwks.json","subject":{"domain":"x402-endpoint-risk-corpus.mtree.workers.dev","name":"x402-endpoint-risk-corpus","url":"https://x402-endpoint-risk-corpus.mtree.workers.dev/.well-known/agent-card.json"}},"identity":{"provider":{"organization":"x402-endpoint-risk-corpus.mtree.workers.dev","url":"https://x402-endpoint-risk-corpus.mtree.workers.dev"},"registry_verification":null,"signature":{"signed":false,"signature_valid":null}},"protocol":{"version":null,"supports_streaming":false,"supports_push_notifications":false},"operational":{"live_state":"endpoint_404","live_responds":false,"last_status_code":200,"last_elapsed_ms":19,"last_error":null},"track_record":{"first_seen":"2026-05-16T16:53:57.920777+00:00","last_checked":"2026-05-22T14:44:36.387173+00:00","last_seen_ok":"2026-05-22T14:44:36.387173+00:00","checks_total":4,"checks_ok":4,"uptime_pct":100.0,"archived":false,"archived_reason":null},"conformance":{"score":30,"grade":"F","summary":"F-grade: card is reachable but fails most operational signals.","criteria":[{"key":"valid_card","label":"Valid AgentCard","points":10,"max_points":10,"status":"pass","detail":"Schema-validated A2A AgentCard returned by the well-known endpoint."},{"key":"live_responds","label":"Live JSON-RPC","points":0,"max_points":25,"status":"fail","detail":"Card declares a URL but that URL returns 404."},{"key":"protocol_version","label":"Protocol version","points":0,"max_points":10,"status":"fail","detail":"No protocolVersion in card."},{"key":"signature","label":"JWS signature","points":0,"max_points":10,"status":"info","detail":"Card is unsigned (most published agents are)."},{"key":"uptime","label":"Uptime track record","points":0,"max_points":15,"status":"info","detail":"Only 4 probes so far — need ≥5 for an uptime grade."},{"key":"skills","label":"Skill declaration","points":10,"max_points":10,"status":"pass","detail":"Declares 5 skills with structured metadata."},{"key":"verified_identity","label":"Verified Identity","points":5,"max_points":10,"status":"partial","detail":"Provider declared: x402-endpoint-risk-corpus.mtree.workers.dev (https://x402-endpoint-risk-corpus.mtree.workers.dev). Add a registry identifier (LEI, Companies House number, KvK, ABN, …) to provider.legalEntity for full verified-business credit."},{"key":"freshness","label":"Freshness + modern flags","points":5,"max_points":5,"status":"pass","detail":"declares 1 modern capability flag(s) (x402); seen in upstream source within 0d"},{"key":"security","label":"Security declaration","points":0,"max_points":5,"status":"info","detail":"No securitySchemes declared (common for open agents — not penalised)."}]},"skills":[{"id":"x402-risk-report","name":"x402 risk report","description":"Return risk score, evidence, and mitigations for an x402 endpoint URL.","tags":["x402","security","payments","risk"],"examples":[],"inputModes":[],"outputModes":[]},{"id":"x402-top-risks","name":"x402 top risks","description":"Return highest-risk endpoints in the hosted corpus.","tags":["x402","dataset","security"],"examples":[],"inputModes":[],"outputModes":[]},{"id":"x402-payee-reputation","name":"x402 payee reputation","description":"Return allow/warn/block policy, aggregate spend guidance, and evidence for an x402 payee, domain, or endpoint.","tags":["x402","payee","reputation","wallet-policy"],"examples":[],"inputModes":[],"outputModes":[]},{"id":"x402-autopay-policy","name":"x402 autopay policy","description":"Return allow/limit/review/deny policy and spend limits for a candidate x402 call plan.","tags":["x402","autopay","wallet-policy","risk"],"examples":[],"inputModes":[],"outputModes":[]},{"id":"x402-attack-surface-check","name":"x402 attack surface check","description":"Return an attack-class checklist for authorization binding, replay windows, paid-but-denied outcomes, discovery drift, and price-drain controls.","tags":["x402","security","attack-surface","payment-safety"],"examples":[],"inputModes":[],"outputModes":[]}],"provenance":[{"source":"agentic_market","first_seen":"2026-05-16T16:53:57.920777+00:00"},{"source":"recrawl_hot","first_seen":"2026-05-21T00:08:50.871822+00:00"}],"recent_probes":[{"fetched_at":"2026-05-22T14:44:36.387173+00:00","ok":true,"status_code":200,"error":null,"elapsed_ms":19,"live_responds":false},{"fetched_at":"2026-05-22T09:30:47.652200+00:00","ok":true,"status_code":200,"error":null,"elapsed_ms":19,"live_responds":false},{"fetched_at":"2026-05-21T00:08:50.871822+00:00","ok":true,"status_code":200,"error":null,"elapsed_ms":15,"live_responds":false}],"catalog_attestation":null,"verification_history":[]}