Add Trust & Governance section (A2A protocol alignment)#4
Merged
up2itnow0822 merged 1 commit intomainfrom Apr 2, 2026
Merged
Conversation
Map agentpay-mcp's spend governance controls (daily caps, human approval, on-chain audit trails) to Google's A2A protocol architecture (Agent Cards, security schemes, human-in-the-loop, extensions). Careful not to overstate — notes that A2A v1.0.0 does not yet define trust scoring, while positioning our controls as compatible with future trust-related extensions.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Maps agentpay-mcp's spend governance controls to Google's A2A protocol v1.0.0 architecture. Adds a new 'Trust & Governance — A2A Protocol Alignment' section that shows how daily caps, human approval, and on-chain audit trails complement A2A's Agent Cards, security schemes, and human-in-the-loop task management.
Careful not to overstate — explicitly notes A2A v1.0.0 does not define trust scoring, while positioning our controls as forward-compatible.